5244][T15165] __copy_msghdr_from_user+0x4e4/0xc20 [ 638.360715][T15165] __sys_sendmmsg+0x650/0x1060 [ 638.365493][T15165] __se_sys_sendmmsg+0xbd/0xe0 [ 638.370791][T15165] __x64_sys_sendmmsg+0x56/0x70 [ 638.375656][T15165] do_syscall_64+0x9f/0x140 [ 638.380180][T15165] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 638.386087][T15165] [ 638.388449][T15165] Uninit was stored to memory at: [ 638.393497][T15165] kmsan_internal_chain_origin+0xad/0x130 [ 638.399232][T15165] __msan_chain_origin+0x57/0xa0 [ 638.404191][T15165] __copy_msghdr_from_user+0x4e4/0xc20 [ 638.409671][T15165] __sys_sendmmsg+0x650/0x1060 [ 638.414450][T15165] __se_sys_sendmmsg+0xbd/0xe0 [ 638.419228][T15165] __x64_sys_sendmmsg+0x56/0x70 [ 638.424093][T15165] do_syscall_64+0x9f/0x140 [ 638.428611][T15165] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 638.434499][T15165] [ 638.436826][T15165] Uninit was stored to memory at: [ 638.441871][T15165] kmsan_internal_chain_origin+0xad/0x130 [ 638.447606][T15165] __msan_chain_origin+0x57/0xa0 [ 638.452562][T15165] __copy_msghdr_from_user+0x4e4/0xc20 [ 638.458033][T15165] __sys_sendmmsg+0x650/0x1060 [ 638.462814][T15165] __se_sys_sendmmsg+0xbd/0xe0 [ 638.467594][T15165] __x64_sys_sendmmsg+0x56/0x70 [ 638.472462][T15165] do_syscall_64+0x9f/0x140 [ 638.477005][T15165] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 638.482894][T15165] [ 638.485226][T15165] Uninit was stored to memory at: [ 638.490273][T15165] kmsan_internal_chain_origin+0xad/0x130 [ 638.496007][T15165] __msan_chain_origin+0x57/0xa0 [ 638.500962][T15165] __copy_msghdr_from_user+0x4e4/0xc20 [ 638.506439][T15165] __sys_sendmmsg+0x650/0x1060 [ 638.511217][T15165] __se_sys_sendmmsg+0xbd/0xe0 [ 638.516095][T15165] __x64_sys_sendmmsg+0x56/0x70 [ 638.520963][T15165] do_syscall_64+0x9f/0x140 [ 638.525481][T15165] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 638.531378][T15165] [ 638.533712][T15165] Local variable ----msg_sys@__sys_sendmmsg created at: [ 638.540689][T15165] __sys_sendmmsg+0xbe/0x1060 [ 638.545383][T15165] __sys_sendmmsg+0xbe/0x1060 09:42:58 executing program 0: openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040)='/dev/hwrng\x00', 0x880, 0x0) 09:42:58 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x10000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:42:58 executing program 4: mmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2, 0x1071, 0xffffffffffffffff, 0x0) 09:42:58 executing program 5: open$dir(&(0x7f00000000c0)='./file0\x00', 0x40040, 0x10) 09:42:58 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x11}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:42:58 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_SB_GET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x8010) 09:42:58 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[], 0x14}}, 0x4000000) 09:42:58 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x40000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:42:58 executing program 5: socketpair(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) 09:42:59 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x12}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) [ 639.884600][T15165] netlink: 256 bytes leftover after parsing attributes in process `syz-executor.3'. [ 639.894371][T15165] netlink: 25 bytes leftover after parsing attributes in process `syz-executor.3'. [ 639.922751][T15165] bridge0: port 42(veth89) entered blocking state [ 639.929402][T15165] bridge0: port 42(veth89) entered disabled state [ 639.939001][T15165] device veth89 entered promiscuous mode 09:42:59 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6819, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:42:59 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$FOU_CMD_ADD(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x4010) 09:42:59 executing program 0: sendmsg$DEVLINK_CMD_SB_GET(0xffffffffffffffff, 0x0, 0x0) 09:42:59 executing program 5: openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x2500, 0x0) 09:42:59 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x80000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) [ 640.361915][T15220] netlink: 256 bytes leftover after parsing attributes in process `syz-executor.3'. [ 640.373674][T15220] netlink: 25 bytes leftover after parsing attributes in process `syz-executor.3'. 09:43:00 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x8050) 09:43:00 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_CALIPSO_C_LISTALL(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x4040080) 09:43:00 executing program 4: openat$tun(0xffffffffffffff9c, &(0x7f0000000000)='/dev/net/tun\x00', 0x10000, 0x0) 09:43:00 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x803e0000000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) [ 640.535290][T15220] bridge0: port 43(veth91) entered blocking state [ 640.541968][T15220] bridge0: port 43(veth91) entered disabled state [ 640.551597][T15220] device veth91 entered promiscuous mode [ 640.675991][T15220] netlink: 256 bytes leftover after parsing attributes in process `syz-executor.3'. [ 640.686097][T15220] netlink: 25 bytes leftover after parsing attributes in process `syz-executor.3'. 09:43:00 executing program 0: socketpair(0x1, 0x3, 0x0, &(0x7f00000002c0)={0xffffffffffffffff}) setsockopt$inet6_tcp_TLS_TX(r0, 0x6, 0x1, 0x0, 0x0) [ 640.830751][T15220] bridge0: port 44(veth93) entered blocking state [ 640.837592][T15220] bridge0: port 44(veth93) entered disabled state 09:43:00 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x1d}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:00 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_TRAP_SET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x4c044) [ 641.009220][T15220] device veth93 entered promiscuous mode 09:43:00 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x681a, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:00 executing program 4: r0 = socket$packet(0x11, 0x3, 0x300) getsockopt$packet_int(r0, 0x107, 0x11, &(0x7f0000000080), &(0x7f0000000000)=0x4) 09:43:00 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0xca9a3b00000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:01 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x14d}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:01 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_PORT_SPLIT(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x8000) 09:43:01 executing program 5: r0 = socket(0x2, 0x3, 0xffffffff) write$binfmt_elf32(r0, 0x0, 0x0) [ 641.596288][T15256] netlink: 256 bytes leftover after parsing attributes in process `syz-executor.3'. [ 641.606617][T15256] netlink: 25 bytes leftover after parsing attributes in process `syz-executor.3'. [ 641.635742][T15256] bridge0: port 45(veth95) entered blocking state [ 641.642578][T15256] bridge0: port 45(veth95) entered disabled state [ 641.652454][T15256] device veth95 entered promiscuous mode 09:43:01 executing program 4: r0 = socket(0x2, 0x3, 0xffffffff) connect$unix(r0, &(0x7f0000000000)=@file={0x0, './file0\x00'}, 0x6e) 09:43:01 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0xd0070000000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:01 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x29a}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) [ 641.975741][T15256] bridge0: port 46(veth97) entered blocking state [ 641.982548][T15256] bridge0: port 46(veth97) entered disabled state [ 641.991947][T15256] device veth97 entered promiscuous mode 09:43:01 executing program 5: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$TIOCSIG(r1, 0x40045436, 0x0) 09:43:01 executing program 0: socketpair(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff}) sendmsg$TEAM_CMD_NOOP(r0, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={0x0}}, 0x0) 09:43:01 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x100000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:02 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x681c, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:02 executing program 4: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop-control\x00', 0x0, 0x0) dup3(r0, r1, 0x0) 09:43:02 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x300}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:02 executing program 5: sendmsg$DEVLINK_CMD_PORT_SPLIT(0xffffffffffffffff, 0x0, 0x64e5a34b9b4436ba) 09:43:02 executing program 0: semctl$GETZCNT(0x0, 0x2, 0xf, &(0x7f0000000000)=""/116) [ 642.798956][T15297] bridge0: port 47(veth99) entered blocking state [ 642.805913][T15297] bridge0: port 47(veth99) entered disabled state [ 642.815494][T15297] device veth99 entered promiscuous mode 09:43:02 executing program 4: r0 = socket$packet(0x11, 0x3, 0x300) getsockopt$packet_int(r0, 0x107, 0xc, &(0x7f0000000080), &(0x7f0000000100)=0x4) 09:43:02 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x200000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:02 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x500}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:02 executing program 5: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000180)={'team0\x00'}) [ 643.164849][T15297] __nla_validate_parse: 4 callbacks suppressed [ 643.164896][T15297] netlink: 256 bytes leftover after parsing attributes in process `syz-executor.3'. [ 643.181177][T15297] netlink: 25 bytes leftover after parsing attributes in process `syz-executor.3'. [ 643.209764][T15297] bridge0: port 48(veth101) entered blocking state [ 643.216582][T15297] bridge0: port 48(veth101) entered disabled state [ 643.226208][T15297] device veth101 entered promiscuous mode 09:43:02 executing program 0: sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0xda650fb8b059ee09) 09:43:03 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_PORT_SPLIT(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x4c1d5) 09:43:03 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x600}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:03 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x7ffffffff000, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:03 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$FOU_CMD_ADD(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x24000000) 09:43:03 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x300000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:03 executing program 0: prlimit64(0x0, 0x7, &(0x7f0000000040), 0x0) openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x0, 0x0) 09:43:03 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$NL80211_CMD_STOP_AP(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={0x0}}, 0x0) [ 644.103025][T15337] netlink: 256 bytes leftover after parsing attributes in process `syz-executor.3'. [ 644.112987][T15337] netlink: 25 bytes leftover after parsing attributes in process `syz-executor.3'. [ 644.267904][T15337] bridge0: port 49(veth103) entered blocking state [ 644.274761][T15337] bridge0: port 49(veth103) entered disabled state [ 644.284558][T15337] device veth103 entered promiscuous mode 09:43:03 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x700}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:03 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x400000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:04 executing program 5: pipe2(&(0x7f0000000000)={0xffffffffffffffff}, 0x0) sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r0, 0x0, 0x0) 09:43:04 executing program 0: r0 = inotify_init() r1 = dup(r0) setsockopt$packet_add_memb(r1, 0x107, 0x1, 0x0, 0x0) [ 644.518405][T15337] netlink: 256 bytes leftover after parsing attributes in process `syz-executor.3'. [ 644.528054][T15337] netlink: 25 bytes leftover after parsing attributes in process `syz-executor.3'. [ 644.710461][T15337] bridge0: port 50(veth105) entered blocking state [ 644.717473][T15337] bridge0: port 50(veth105) entered disabled state [ 644.727384][T15337] device veth105 entered promiscuous mode 09:43:04 executing program 4: socketpair(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$TIPC_NL_PUBL_GET(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={0x0}}, 0x0) 09:43:04 executing program 5: r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000040)='ns/net\x00') r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000)='/dev/net/tun\x00', 0x0, 0x0) r2 = dup3(r1, r0, 0x0) ioctl$BLKGETSIZE64(r2, 0x80081272, 0x0) 09:43:04 executing program 0: socketpair(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$IPVS_CMD_SET_SERVICE(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={0x0}}, 0x0) 09:43:04 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x0, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:04 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x900}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:04 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x500000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:04 executing program 5: r0 = syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/user\x00') dup(r0) 09:43:05 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) pipe2(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r2 = dup3(r0, r1, 0x0) sendmsg$NLBL_MGMT_C_VERSION(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) 09:43:05 executing program 0: semget$private(0x0, 0x4, 0x48f) [ 645.542302][T15380] netlink: 256 bytes leftover after parsing attributes in process `syz-executor.3'. [ 645.551903][T15380] netlink: 25 bytes leftover after parsing attributes in process `syz-executor.3'. [ 645.580767][T15380] bridge0: port 51(veth107) entered blocking state [ 645.589263][T15380] bridge0: port 51(veth107) entered disabled state [ 645.598963][T15380] device veth107 entered promiscuous mode 09:43:05 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0xa00}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:05 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x600000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:05 executing program 5: r0 = epoll_create1(0x0) ioctl$TUNSETOWNER(r0, 0x400454cc, 0xffffffffffffffff) [ 645.916375][T15380] netlink: 256 bytes leftover after parsing attributes in process `syz-executor.3'. [ 645.926219][T15380] netlink: 25 bytes leftover after parsing attributes in process `syz-executor.3'. [ 645.955311][T15380] bridge0: port 52(veth109) entered blocking state [ 645.962209][T15380] bridge0: port 52(veth109) entered disabled state [ 645.971796][T15380] device veth109 entered promiscuous mode 09:43:05 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) pipe2(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) dup3(r0, r1, 0x0) connect$unix(r1, &(0x7f0000000000)=@abs, 0x6e) 09:43:05 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0xb00}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:05 executing program 0: r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040)='/dev/hwrng\x00', 0x0, 0x0) ioctl$BLKRRPART(r0, 0x125f, 0x0) 09:43:06 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x700000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:06 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x2, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:06 executing program 5: r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454d9, 0x0) 09:43:06 executing program 4: r0 = syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0x3, 0x0) sendmsg$DEVLINK_CMD_PORT_GET(r0, 0x0, 0x0) 09:43:06 executing program 0: pipe2(&(0x7f0000000300), 0x80800) 09:43:06 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0xd00}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:06 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x800000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:06 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_CALIPSO_C_LISTALL(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[], 0x44}}, 0x50) 09:43:06 executing program 4: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) connect(r0, &(0x7f0000000140)=@pppoe={0x18, 0x0, {0x0, @remote, 'veth1_virt_wifi\x00'}}, 0x80) 09:43:06 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x3, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:06 executing program 0: getitimer(0xffffffffffffffff, &(0x7f0000000000)) 09:43:07 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0xe00}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:07 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x900000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:07 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x80242, 0x0) 09:43:07 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x4, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:07 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$MPTCP_PM_CMD_DEL_ADDR(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x4000090) 09:43:07 executing program 0: pipe2(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_SET(r0, 0x0, 0x0) 09:43:07 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0xf00}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:07 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0xa00000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:07 executing program 4: r0 = socket$inet6(0xa, 0x2, 0x0) ioctl$sock_inet6_tcp_SIOCOUTQNSD(r0, 0x894b, &(0x7f0000000000)) 09:43:07 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x5, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:07 executing program 0: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$BTRFS_IOC_QUOTA_RESCAN_WAIT(r0, 0x942e, 0x0) 09:43:07 executing program 5: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0xe1}) 09:43:08 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x1100}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:08 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = dup(r0) sendmsg$GTP_CMD_DELPDP(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0}}, 0x0) 09:43:08 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x6, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:08 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0xb00000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:08 executing program 5: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x420c2, 0x0) 09:43:08 executing program 0: socketpair(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff}) sendmsg$NLBL_CALIPSO_C_ADD(r0, &(0x7f0000000240)={&(0x7f0000000040), 0xc, &(0x7f00000000c0)={0x0}}, 0x0) 09:43:08 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x7, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:08 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000280)={0xffffffffffffffff}) r1 = epoll_create(0x200) r2 = dup3(r0, r1, 0x0) sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) 09:43:08 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) pipe2(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) dup3(r0, r1, 0x0) sendmsg$MPTCP_PM_CMD_GET_ADDR(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) 09:43:08 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0xb00020000000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:09 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x1200}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:09 executing program 0: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000040)='ns/net\x00') r2 = dup3(r0, r1, 0x0) sendmsg$GTP_CMD_DELPDP(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) 09:43:09 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$FOU_CMD_DEL(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x4) 09:43:09 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x8, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:09 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x494) 09:43:09 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0xd00000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:09 executing program 0: openat$tun(0xffffffffffffff9c, &(0x7f0000000200)='/dev/net/tun\x00', 0x80, 0x0) 09:43:09 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x157c}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:09 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_SB_POOL_SET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x44000) 09:43:09 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x9, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:09 executing program 5: r0 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x0, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) dup3(r1, r0, 0x0) 09:43:10 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0xe00000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:10 executing program 0: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) dup3(r0, r1, 0x0) 09:43:10 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x1d00}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:10 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$FOU_CMD_ADD(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x10004000) 09:43:10 executing program 5: socketpair(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$packet_int(r0, 0x107, 0x0, 0x0, 0x0) 09:43:10 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0xa, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:10 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0xf00000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:10 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_SB_POOL_GET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x984f34cc6709aac8}}, 0x0) 09:43:10 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x1f00}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:10 executing program 4: openat$null(0xffffffffffffff9c, &(0x7f0000000800)='/dev/null\x00', 0x101040, 0x0) 09:43:11 executing program 5: socketpair(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$NLBL_CALIPSO_C_LISTALL(r0, &(0x7f0000000200)={&(0x7f0000000000), 0xc, &(0x7f0000000080)={0x0}}, 0x0) 09:43:11 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0xb, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:11 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x1000000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:11 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$nl_crypto(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) recvfrom(r0, 0x0, 0x0, 0x0, 0x0, 0x29) 09:43:11 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) getpeername(r0, 0x0, &(0x7f00000000c0)) 09:43:11 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x1f40}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:11 executing program 5: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000280)={0xffffffffffffffff}) r1 = inotify_init() r2 = dup3(r0, r1, 0x0) sendmsg$NLBL_MGMT_C_VERSION(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000002c0)=ANY=[], 0x78}}, 0x0) 09:43:11 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0xc, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:11 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x1100000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:11 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$packet_drop_memb(r0, 0x107, 0x2, 0x0, 0x0) 09:43:11 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={0x0}}, 0x8040) 09:43:11 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x2000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:12 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) pipe2(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) dup3(r0, r1, 0x0) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[], 0x24}}, 0x0) 09:43:12 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0xd, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:12 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$GTP_CMD_NEWPDP(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0}}, 0x48000) 09:43:12 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x1200000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:12 executing program 4: prlimit64(0x0, 0x7, &(0x7f0000000000), 0x0) openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000080)='tasks\x00', 0x2, 0x0) 09:43:12 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x3f00}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:12 executing program 5: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_SET(r0, &(0x7f0000000340)={&(0x7f0000000000), 0xc, &(0x7f0000000040)={0x0}}, 0x0) 09:43:12 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0xe, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:12 executing program 0: semctl$GETALL(0x0, 0x0, 0xd, &(0x7f0000000040)=""/121) 09:43:13 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x1d00000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:13 executing program 4: socketpair(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff}) sendmsg$NL80211_CMD_GET_MPP(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) 09:43:13 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x4000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:13 executing program 5: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000400)='/dev/autofs\x00', 0x0, 0x0) vmsplice(r0, 0x0, 0x0, 0x0) 09:43:13 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0xf, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:13 executing program 0: r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000040)='ns/pid\x00') r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000)='/dev/net/tun\x00', 0x0, 0x0) dup3(r1, r0, 0x0) ioctl$BLKBSZGET(r0, 0x80081270, 0x0) 09:43:13 executing program 4: socketpair(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$TIPC_NL_MON_SET(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={0x0}}, 0x0) 09:43:13 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x1f00000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:13 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x401f}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:14 executing program 5: socketpair(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff}) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000000)={@initdev={0xfe, 0x88, [], 0x0, 0x0}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @private2}) 09:43:14 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x10, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:14 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$FOU_CMD_DEL(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x800) 09:43:14 executing program 4: socketpair(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$IPVS_CMD_SET_CONFIG(r0, &(0x7f0000000080)={&(0x7f0000000000), 0xc, &(0x7f0000000040)={0x0}}, 0x0) 09:43:14 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x2000000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:14 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x4d01}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:14 executing program 5: openat$tun(0xffffffffffffff9c, 0x0, 0x624100, 0x0) 09:43:14 executing program 0: r0 = semget$private(0x0, 0x4, 0x0) semctl$GETPID(r0, 0x1, 0xb, &(0x7f0000000180)=""/27) 09:43:14 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x11, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:15 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) pipe2(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) dup3(r0, r1, 0x0) sendmsg$BATADV_CMD_GET_NEIGHBORS(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) 09:43:15 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x3f00000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:15 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_COALESCE_GET(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x24000800) 09:43:15 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x7c15}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:15 executing program 0: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, 0x0) 09:43:15 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x12, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:15 executing program 4: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = dup3(r0, r1, 0x0) write$cgroup_devices(r2, 0x0, 0x0) 09:43:15 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x4000000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:16 executing program 5: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000)='/dev/net/tun\x00', 0x0, 0x0) fsetxattr(r0, &(0x7f0000000080)=@known='trusted.syz\x00', 0x0, 0x0, 0x0) 09:43:16 executing program 0: r0 = socket$inet6(0xa, 0x3, 0xfffffc15) ioctl$sock_inet6_tcp_SIOCATMARK(r0, 0x8905, &(0x7f0000000000)) 09:43:16 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x19, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:16 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x9a02}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:16 executing program 4: syz_open_dev$loop(&(0x7f00000002c0)='/dev/loop#\x00', 0x0, 0x2) 09:43:16 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x401f000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:16 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) pipe2(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) dup3(r0, r1, 0x0) sendmsg$DEVLINK_CMD_PORT_SPLIT(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}}, 0x0) 09:43:16 executing program 0: r0 = socket(0x2, 0x3, 0xffffffff) dup(r0) 09:43:16 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x25, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:16 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x2000b}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:17 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x8000) 09:43:17 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x4d01000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:17 executing program 0: socketpair(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r0, &(0x7f0000000100)={&(0x7f0000000000), 0xc, &(0x7f00000000c0)={0x0}}, 0x0) 09:43:17 executing program 5: semget(0x2, 0x4, 0x51) 09:43:17 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x2a, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:17 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x40000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:17 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$nl_crypto(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) recvfrom(r0, 0x0, 0x20, 0x142, 0x0, 0x29) 09:43:17 executing program 0: socketpair(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff}) sendmsg$IPVS_CMD_SET_DEST(r0, &(0x7f0000000180)={&(0x7f0000000000), 0xc, &(0x7f0000000100)={0x0}}, 0x0) 09:43:17 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x4d2a39cc6d000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:17 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_TRAP_GET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[], 0x50}}, 0x50) 09:43:17 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x2f, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:18 executing program 4: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r0, 0xc0c89425, &(0x7f0000000140)={"c40e1e13ea2249cff15cf449522d2bd4"}) 09:43:18 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x7d000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:18 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$MPTCP_PM_CMD_DEL_ADDR(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x8800) 09:43:18 executing program 0: prlimit64(0x0, 0x7, &(0x7f0000000000), 0x0) openat$hwrng(0xffffffffffffff9c, &(0x7f0000000200)='/dev/hwrng\x00', 0x0, 0x0) 09:43:18 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x7c15000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:18 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x3a, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:18 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$MPTCP_PM_CMD_GET_LIMITS(r0, &(0x7f00000016c0)={0x0, 0x0, &(0x7f0000001680)={&(0x7f0000001640)=ANY=[], 0x14}}, 0x4000800) 09:43:18 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x100000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:18 executing program 5: r0 = socket(0x2, 0x3, 0xffffffff) pipe2(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) dup3(r0, r1, 0x0) 09:43:18 executing program 0: open$dir(&(0x7f0000000100)='./file0\x00', 0x40, 0x0) 09:43:19 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x9a02000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:19 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x3c, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:19 executing program 4: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$BTRFS_IOC_SNAP_DESTROY(r0, 0x5000940f, 0x0) 09:43:19 executing program 5: openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x42200, 0x0) 09:43:19 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x3e8000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:19 executing program 0: socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$nl_crypto(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) recvfrom(r0, 0x0, 0x0, 0x40000060, 0x0, 0x0) 09:43:19 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0xfefdffff00000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:19 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x48, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:19 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_COALESCE_GET(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0}}, 0xc084) 09:43:19 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_TRAP_GET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x24004000) 09:43:20 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x400000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:20 executing program 0: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) r2 = dup(r1) sendmmsg$unix(r2, 0x0, 0x0, 0x0) 09:43:20 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0xfeffffff00000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:20 executing program 4: r0 = syz_open_dev$loop(&(0x7f00000002c0)='/dev/loop#\x00', 0x0, 0x0) ioctl$BLKIOOPT(r0, 0x1279, &(0x7f0000000080)) 09:43:20 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x4a, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:20 executing program 5: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/loop-control\x00', 0x0, 0x0) ioctl$BTRFS_IOC_START_SYNC(r0, 0x80089418, 0x0) 09:43:20 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x800000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:20 executing program 0: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = dup(r0) ioctl$TIOCOUTQ(r1, 0x5411, &(0x7f00000001c0)) 09:43:20 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0xffffff7f00000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:20 executing program 4: r0 = semget$private(0x0, 0x1, 0x0) semctl$IPC_INFO(r0, 0x2, 0x3, &(0x7f0000000040)=""/38) 09:43:20 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x4c, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:21 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_SET(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={0x0, 0xfffffffffffffe71}}, 0x0) 09:43:21 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x803e00}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:21 executing program 0: socketpair(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff}) recvfrom$packet(r0, 0x0, 0x0, 0x2001, 0x0, 0x0) 09:43:21 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0xffffffff00000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:21 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x51, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:21 executing program 4: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = dup(r0) ioctl$BLKRESETZONE(r1, 0x40101283, 0x0) 09:43:21 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = dup(r0) ioctl$KDSKBENT(r1, 0x4b47, 0x0) 09:43:21 executing program 0: prlimit64(0x0, 0x7, &(0x7f0000000000), 0x0) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsa\x00', 0x0, 0x0) 09:43:22 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0xd00700}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:22 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0xffffffffffffffff}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:22 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) pipe2(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) dup3(r0, r1, 0x0) sendmsg$DEVLINK_CMD_SB_PORT_POOL_GET(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) 09:43:22 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x52, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:22 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmmsg$sock(r0, &(0x7f0000000040), 0x0, 0x20000854) 09:43:22 executing program 0: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) sendmsg$DEVLINK_CMD_PORT_UNSPLIT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000001540)=ANY=[], 0x38}}, 0x24040000) 09:43:22 executing program 4: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = dup(r0) sendmsg$ETHTOOL_MSG_COALESCE_GET(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x120}}, 0x0) 09:43:22 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$FOU_CMD_ADD(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x40000) 09:43:22 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x60, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:22 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x2}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:22 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x1000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:22 executing program 0: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) sendmsg$DEVLINK_CMD_PORT_GET(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x80) 09:43:23 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x121240, 0x182) 09:43:23 executing program 5: r0 = socket$packet(0x11, 0x3, 0x300) mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x1071, r0, 0x0) 09:43:23 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x68, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:23 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x3}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:23 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x2000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:23 executing program 0: r0 = inotify_init() r1 = dup(r0) dup3(r1, r0, 0x0) 09:43:23 executing program 4: r0 = socket(0x2, 0x3, 0xffffffff) sendto$unix(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)=@abs, 0x6e) 09:43:23 executing program 5: semget(0x0, 0x1, 0x44) 09:43:23 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x6c, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:24 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x3000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:24 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x4}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:24 executing program 0: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$BTRFS_IOC_GET_FEATURES(r0, 0x80189439, 0x0) 09:43:24 executing program 4: socketpair(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff}) sendmsg$NL80211_CMD_SET_MAC_ACL(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={0x0}}, 0x0) 09:43:24 executing program 5: semget(0x3, 0x3, 0x0) 09:43:24 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x74, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:24 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x5}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:24 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x4000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:24 executing program 0: semget(0x3, 0x0, 0x401) 09:43:24 executing program 4: pselect6(0x40, &(0x7f0000000080), &(0x7f00000000c0)={0x4}, 0x0, 0x0, 0x0) 09:43:24 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[], 0x4c}}, 0xc000) 09:43:24 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x7a, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:25 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x6}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:25 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x5000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:25 executing program 0: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000280)={0xffffffffffffffff}) r1 = inotify_init() r2 = dup3(r0, r1, 0x0) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x20000010) 09:43:25 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_SB_GET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x48010) 09:43:25 executing program 5: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$sock_SIOCGIFCONF(r1, 0x8912, &(0x7f0000000080)) 09:43:25 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0xba, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:25 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x6000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:25 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$BTRFS_IOC_GET_FEATURES(r0, 0x80189439, 0x0) 09:43:25 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x7}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:25 executing program 4: mknodat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x2c80, 0x2) 09:43:26 executing program 5: openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x20000, 0x0) 09:43:26 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0xc0, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:26 executing program 0: pipe2(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mknodat(r0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) 09:43:26 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x7000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:26 executing program 4: openat$dir(0xffffffffffffff9c, &(0x7f0000001240)='.\x00', 0x0, 0x40) 09:43:26 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x8}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:26 executing program 5: ioctl$LOOP_SET_STATUS(0xffffffffffffffff, 0x4c02, 0x0) 09:43:26 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x13a, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:26 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_FEATURES_GET(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={0x0}}, 0x4000) 09:43:27 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x8000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:27 executing program 4: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) sendmmsg$unix(r0, &(0x7f0000004680)=[{0x0, 0x0, 0x0}], 0x1, 0x81) 09:43:27 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x9}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:27 executing program 5: openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/loop-control\x00', 0x202000, 0x0) 09:43:27 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x164, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:27 executing program 0: r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000040)='ns/pid\x00') r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000)='/dev/net/tun\x00', 0x0, 0x0) r2 = dup3(r1, r0, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000380)={'batadv_slave_0\x00'}) 09:43:27 executing program 4: prlimit64(0x0, 0x7, &(0x7f0000000000), 0x0) syz_genetlink_get_family_id$devlink(0x0) 09:43:27 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0xa}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:27 executing program 5: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) write$cgroup_subtree(r1, 0x0, 0x0) 09:43:27 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x9000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:27 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x1ae, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:28 executing program 0: r0 = syz_open_dev$loop(&(0x7f0000000100)='/dev/loop#\x00', 0x0, 0x0) ioctl$BLKROTATIONAL(r0, 0x127e, &(0x7f00000000c0)) 09:43:28 executing program 4: r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) ioctl$CHAR_RAW_DISCARD(r0, 0x1277, &(0x7f0000000100)) 09:43:28 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0xb}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:28 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0xa000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:28 executing program 5: r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000002d40)='/dev/vcsa\x00', 0x0, 0x0) syz_io_uring_setup(0x78aa, &(0x7f0000000000)={0x0, 0x0, 0x20, 0x0, 0x0, 0x0, r0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000080), &(0x7f0000000100)) 09:43:28 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x1c0, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:28 executing program 0: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) epoll_create1(0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) sendto$inet(r2, 0x0, 0x0, 0x20008800, &(0x7f0000000300)={0x2, 0x4e23, @remote}, 0x10) mkdir(&(0x7f0000000140)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) mount(0x0, 0x0, &(0x7f0000000380)='hugetlbfs\x00', 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) clone(0x20002100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) openat$ptmx(0xffffff9c, 0x0, 0x200000, 0x0) perf_event_open(&(0x7f0000000500)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000580)=ANY=[@ANYBLOB="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"/987], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000040), 0x1f1}, 0x48) exit(0x0) 09:43:28 executing program 4: r0 = eventfd2(0x0, 0x0) ioctl$INCFS_IOC_CREATE_FILE(r0, 0xc058671e, 0x0) 09:43:28 executing program 5: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x8971, &(0x7f00000000c0)={'ip6tnl0\x00', 0x0}) 09:43:28 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0xd}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:28 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0xb000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:29 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x1dc, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:29 executing program 4: r0 = syz_open_dev$loop(&(0x7f0000000140)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "b1266dec5977fa68bffdc0958ffef117113ff1ce60fd72e7782f40bc43bd5fab43dc7a1a40b4c67ccd558691a9c6f16fc646c8174dfdf5f2d4b2a9becc22425c", "c89ca547d2b3d52a770c7deb75d0df20c22a2891741d535eb11da07b6a257b0f788b4a51bfef7344636150ed2c95c4a1fe339a93cde6182cbd3171f6310467a6", "d4fce893683cc72a10c4fc9b3f2b4f3d4433306599cf21d14a5144fc34c2b0ea"}) 09:43:29 executing program 5: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x8924, &(0x7f00000000c0)={'ip6tnl0\x00', 0x0}) 09:43:29 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0xe}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:29 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0xb000200}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:29 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x1ea, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:29 executing program 4: bpf$BPF_PROG_WITH_BTFID_LOAD(0x16, 0x0, 0x0) 09:43:30 executing program 0: r0 = socket(0x11, 0x800000003, 0x0) bind(r0, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r0, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) r2 = socket(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000180)=@newqdisc={0x68, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}, [@TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}}, {0x6, 0x2, [0x0]}}]}, @qdisc_kind_options=@q_pfifo_head_drop={{0x14, 0x1, 'pfifo_head_drop\x00'}, {0x8}}]}, 0x68}}, 0x0) sendmsg$NL80211_CMD_LEAVE_OCB(0xffffffffffffffff, 0x0, 0x0) 09:43:30 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write$binfmt_misc(r3, &(0x7f0000000140)=ANY=[], 0x4240a2a0) r4 = socket$alg(0x26, 0x5, 0x0) bind$alg(r4, &(0x7f0000000940)={0x26, 'hash\x00', 0x0, 0x0, 'vmac64(aes-generic)\x00'}, 0x58) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000080)="cb56ac2ca37d66000000000000000000", 0x10) r5 = accept4(r4, 0x0, 0x0, 0x0) splice(r2, 0x0, r5, 0x0, 0x1e8604, 0x0) 09:43:30 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0xf}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:30 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0xd000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:30 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x234, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:30 executing program 4: getresuid(&(0x7f00000002c0), &(0x7f0000000300), &(0x7f0000000340)) 09:43:30 executing program 0: shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x5000) 09:43:30 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0xe000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:30 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x10}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:30 executing program 4: r0 = socket(0x10, 0x2, 0x0) sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0) 09:43:30 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x246, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:31 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$GTP_CMD_GETPDP(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[], 0x2c}}, 0x48000) 09:43:31 executing program 5: open$dir(&(0x7f0000001080)='./file0\x00', 0x840, 0x0) open(&(0x7f00000023c0)='./file0\x00', 0x204000, 0x0) 09:43:31 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0xf000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:31 executing program 4: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$sock_SIOCINQ(r0, 0x541b, &(0x7f0000000080)) 09:43:31 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x11}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:31 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x300, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:31 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_SET_WIPHY_NETNS(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) 09:43:31 executing program 4: r0 = shmget$private(0x0, 0x3000, 0x0, &(0x7f0000ffa000/0x3000)=nil) shmat(r0, &(0x7f0000ffc000/0x3000)=nil, 0x7000) 09:43:31 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x10000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:32 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={0x0}}, 0x40000) 09:43:32 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x3cc, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:32 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x12}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:32 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = dup(r0) sendmsg$TEAM_CMD_PORT_LIST_GET(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x20001804) 09:43:32 executing program 4: r0 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x0, 0x0) sendmsg$SEG6_CMD_GET_TUNSRC(r0, 0x0, 0x0) 09:43:32 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x11000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:32 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_FEATURES_GET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0xc800) 09:43:32 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x3d0, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:32 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x1d}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:32 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_LINKINFO_SET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={0x0, 0xfffffffffffffdd3}}, 0x0) 09:43:33 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={0x0}}, 0x8044) 09:43:33 executing program 4: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$TIPC_NL_PUBL_GET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x48000) 09:43:33 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x3d4, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:33 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x12000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:33 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x14d}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:33 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x200000c4) 09:43:33 executing program 5: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_SIOCDELRT(r0, 0x890c, &(0x7f0000000080)={0x0, @generic={0x0, "b63be95e383493217e3e7c381e88"}, @xdp, @tipc=@name, 0xc9fb}) 09:43:33 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_inet_udp_SIOCINQ(r0, 0x541b, &(0x7f0000000040)) 09:43:33 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x500, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:34 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_PORT_SET(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={0x0}}, 0x24000010) 09:43:34 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x1d000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:34 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x29a}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:34 executing program 4: r0 = socket(0x10, 0x2, 0x0) sendmsg$NL80211_CMD_SET_QOS_MAP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) 09:43:34 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$SOCK_DESTROY(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x8000) 09:43:34 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x5dc, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:34 executing program 0: ioctl$LOOP_SET_CAPACITY(0xffffffffffffffff, 0x4c07) 09:43:34 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_CONTROL_PORT_FRAME(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x14) 09:43:34 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x300}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:34 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x1f000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:34 executing program 5: socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000006c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r0, 0x0, 0x0, 0x20008004) 09:43:35 executing program 0: r0 = socket$inet_tcp(0x2, 0x1, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) 09:43:35 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x600, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:35 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_PAUSE_GET(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x8000) 09:43:35 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x20000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:35 executing program 5: r0 = socket$nl_sock_diag(0x10, 0x3, 0x4) sendmsg$SOCK_DIAG_BY_FAMILY(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x20000000) 09:43:35 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x500}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:35 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$GTP_CMD_GETPDP(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x4) 09:43:35 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = dup2(r0, r0) write$eventfd(r1, 0x0, 0x0) 09:43:35 executing program 4: r0 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x0, 0x0) ioctl$int_out(r0, 0x5460, &(0x7f0000000080)) 09:43:35 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x700, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:36 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$SEG6_CMD_GET_TUNSRC(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x4000080) 09:43:36 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x600}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:36 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_DEL_TX_TS(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x4) 09:43:36 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x3f000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:36 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000000140)='/dev/input/event#\x00', 0x4f47, 0x0) ioctl$TUNGETDEVNETNS(r0, 0x54e3, 0x0) 09:43:36 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x900, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:36 executing program 0: r0 = socket(0x10, 0x2, 0x0) sendmsg$NL80211_CMD_SET_PMK(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) 09:43:37 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x700}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:37 executing program 4: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000)='/dev/net/tun\x00', 0x0, 0x0) dup(r0) 09:43:37 executing program 5: open$dir(&(0x7f0000001080)='./file0\x00', 0x840, 0x20) 09:43:37 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x40000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:37 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0xa00, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:37 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_MGMT_C_PROTOCOLS(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0xc70e89d581c3288) 09:43:37 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000006c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r0, &(0x7f0000001e40), 0x0, 0x48000) 09:43:37 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x900}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:37 executing program 5: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) getsockopt$IP6T_SO_GET_ENTRIES(r0, 0x29, 0x41, 0x0, &(0x7f0000000180)) 09:43:37 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x401f0000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:37 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0xb00, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:38 executing program 0: socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000006c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendto$unix(r1, 0x0, 0x0, 0x0, 0x0, 0x0) recvfrom$unix(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 09:43:38 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0xa00}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:38 executing program 4: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = dup(r0) r2 = dup2(r1, r0) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r2, 0x10e, 0x4, 0x0, 0x52) 09:43:38 executing program 5: open$dir(&(0x7f0000001080)='./file0\x00', 0x103c40, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x20900, 0x2e) 09:43:38 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0xc00, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:38 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x4d010000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:38 executing program 0: r0 = socket(0x10, 0x2, 0x0) sendmsg$SEG6_CMD_GET_TUNSRC(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0}}, 0x0) 09:43:38 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0xb00}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:38 executing program 4: open(&(0x7f00000023c0)='./file0\x00', 0x101042, 0x0) 09:43:38 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = dup2(r0, r0) sendmsg$DCCPDIAG_GETSOCK(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={0x0}}, 0x0) 09:43:38 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0xd00, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:39 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x7c150000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:39 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TEAM_CMD_OPTIONS_SET(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0, 0xfffffffffffffee8}}, 0x0) 09:43:39 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x40000e0) 09:43:39 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0xd00}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:39 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_STATUS(r0, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={0x0}}, 0x4000) 09:43:39 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0xe00, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:39 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x9a020000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:39 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_MGMT_C_ADD(r0, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000980)={0x0}}, 0x4040040) 09:43:39 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_PORT_GET(r0, &(0x7f0000000280)={&(0x7f0000000040), 0xfffffffffffffcbb, &(0x7f0000000240)={&(0x7f00000000c0)={0x168, 0x0, 0x0, 0x0, 0x0, {}, [{{@pci={{0x8, 0x1, 'pci\x00'}, {0x11, 0x2, '0000:00:10.0\x00'}}, {0x8}}}, {{@pci={{0x8, 0x1, 'pci\x00'}, {0x11, 0x2, '0000:00:10.0\x00'}}, {0x8}}}, {{@pci={{0x8, 0x1, 'pci\x00'}, {0x11, 0x2, '0000:00:10.0\x00'}}, {0x8}}}, {{@pci={{0x8, 0x1, 'pci\x00'}, {0x11, 0x2, '0000:00:10.0\x00'}}, {0x8}}}, {{@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}}, {{@pci={{0x8, 0x1, 'pci\x00'}, {0x11, 0x2, '0000:00:10.0\x00'}}, {0x8}}}, {{@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}}, {{@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}}, {{@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}}]}, 0x168}}, 0x0) 09:43:40 executing program 5: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs\x00', 0x0, 0x0) ioctl$INCFS_IOC_GET_FILLED_BLOCKS(r0, 0x80286722, 0x0) 09:43:40 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0xfeffffff}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:40 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0xe00}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:40 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0xe81, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:40 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_CMD_SET_LINK_PRI(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={0x0, 0xfffffffffffffda2}}, 0x0) 09:43:40 executing program 4: pipe2$9p(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RSTATu(r0, 0x0, 0x0) 09:43:40 executing program 5: socket(0x0, 0x29d1c537ed6d095a, 0x0) 09:43:40 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0xe82, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:40 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0xffffff7f}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:40 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0xf00}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:40 executing program 0: r0 = socket(0x2, 0xa, 0x0) sendmsg$ETHTOOL_MSG_LINKINFO_SET(r0, &(0x7f00000001c0)={&(0x7f0000000100), 0xc, &(0x7f0000000240)={0x0, 0x24}}, 0x0) 09:43:41 executing program 4: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_mreq(r0, 0x29, 0x0, 0x0, 0x0) 09:43:41 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = dup(r0) connect$netlink(r1, &(0x7f0000000000)=@proc, 0xc) 09:43:41 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0xe83, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:41 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0xfffffffe}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:41 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x1100}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:41 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_STATUS(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[], 0x40}}, 0x40000) 09:43:41 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={0x0}}, 0x40000) 09:43:41 executing program 5: io_setup(0x7, &(0x7f0000001340)=0x0) io_submit(r0, 0x0, &(0x7f0000001840)) 09:43:41 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0xe84, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:41 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x8f25dc6f53}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:41 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x1200}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:42 executing program 0: openat$pidfd(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self\x00', 0x36bd80, 0x0) 09:43:42 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x2) write$evdev(r0, &(0x7f0000057fa0)=[{}, {}], 0xfffffd24) ioctl$EVIOCREVOKE(r0, 0x40044591, 0x0) mprotect(&(0x7f00004ce000/0x1000)=nil, 0x1000, 0x0) ioctl$EVIOCGEFFECTS(r0, 0x80044584, 0x0) 09:43:42 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0xe85, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:42 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_CMD_DISABLE_BEARER(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={0x0}}, 0x20040084) 09:43:42 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x10000000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:42 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x157c}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:42 executing program 0: r0 = geteuid() r1 = signalfd(0xffffffffffffffff, &(0x7f0000003180), 0x8) fchown(r1, r0, 0x0) 09:43:42 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0xe86, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:43 executing program 5: r0 = openat$apparmor_thread_current(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/attr/current\x00', 0x2, 0x0) sync_file_range(r0, 0x0, 0x0, 0x0) 09:43:43 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x1000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:43 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x1d00}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:43 executing program 0: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_buf(r0, 0x29, 0x1b, &(0x7f0000000080)="92eeafbd2db999fcf321b375005cf73e26dc6b6a", 0x14) 09:43:43 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0xec1, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:44 executing program 4: openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000002900)='/dev/vga_arbiter\x00', 0x45d289444a0bd9cd, 0x0) 09:43:44 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmmsg(r0, 0x0, 0x0, 0x0) 09:43:44 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x1f00}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:44 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x4000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:44 executing program 0: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_inet_SIOCSIFBRDADDR(r0, 0x891a, &(0x7f0000000000)={'wlan0\x00', {0x2, 0x0, @dev}}) 09:43:44 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0xf00, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:45 executing program 5: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x0, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, 0x0) 09:43:45 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x10000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:45 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x1f40}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:45 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_SB_POOL_SET(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000000)={0x0, 0xffffffffffffff48}}, 0x0) 09:43:45 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x20044800) 09:43:45 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x1100, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:45 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TEAM_CMD_NOOP(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x40) 09:43:45 executing program 4: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) getpeername(r0, 0x0, 0x0) 09:43:45 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_NEIGHBORS(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={0x0}}, 0x4010) 09:43:45 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x40000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:45 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x1200, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:45 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x2000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:46 executing program 4: open$dir(&(0x7f0000001080)='./file0\x00', 0x840, 0x88) 09:43:46 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = dup2(r0, r0) ioctl$TIOCGPTLCK(r1, 0x80045439, 0x0) 09:43:46 executing program 5: socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000006c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r0, 0x0, 0x0, 0x48000) 09:43:46 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x1568, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:46 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x80000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:46 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x3f00}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:46 executing program 4: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) write$binfmt_aout(r0, 0x0, 0x0) 09:43:46 executing program 0: r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0) dup(r0) 09:43:47 executing program 5: pipe2$9p(&(0x7f00000010c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r1 = dup(r0) write$P9_RXATTRWALK(r1, 0x0, 0x0) 09:43:47 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x803e0000000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:47 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x1900, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:47 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x4000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:47 executing program 4: sched_getattr(0x0, &(0x7f0000000480)={0x38}, 0x38, 0x0) 09:43:47 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_NL_SOCK_GET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x804) 09:43:47 executing program 5: r0 = socket(0x10, 0x3, 0x0) sendto$packet(r0, &(0x7f0000000340)="ba", 0x1, 0x4000000, 0x0, 0x0) 09:43:47 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x2000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:47 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0xd0070000000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:47 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x401f}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:47 executing program 0: r0 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFVLAN_GET_VLAN_EGRESS_PRIORITY_CMD(r0, 0x8982, &(0x7f0000004700)) 09:43:47 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) recvmmsg(r0, &(0x7f0000007680)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) 09:43:48 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_MGMT_C_LISTALL(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000540)=ANY=[], 0x28}}, 0x8840) 09:43:48 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x2500, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:48 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x100000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:48 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x4d01}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:48 executing program 0: sched_setscheduler(0x0, 0x5, &(0x7f0000000000)) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) getsockopt$SO_COOKIE(r0, 0x1, 0x2b, 0x0, 0x0) sendmsg$SMC_PNETID_DEL(0xffffffffffffffff, 0x0, 0x0) 09:43:48 executing program 5: r0 = socket$nl_sock_diag(0x10, 0x3, 0x4) sendmsg$DCCPDIAG_GETSOCK(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={0x0}}, 0xc0) 09:43:48 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x2a00, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:48 executing program 5: r0 = signalfd(0xffffffffffffffff, &(0x7f0000003180), 0x8) ioctl$TUNGETDEVNETNS(r0, 0x54e3, 0x0) 09:43:49 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x7c15}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:49 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x200000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:49 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x2f00, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:49 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000006c0)={0xffffffffffffffff}) sendto$unix(r0, &(0x7f0000000000), 0x0, 0x400c0, &(0x7f0000000040)=@abs, 0x6e) 09:43:49 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$DEVLINK_CMD_TRAP_GET(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0xfffffffffffffeba}}, 0x0) 09:43:49 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x9a02}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:49 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x300000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:49 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x3402, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:50 executing program 0: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x0, 0x0) ioctl$FS_IOC_FIEMAP(r0, 0xc020660b, 0x0) 09:43:50 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) accept$inet6(r0, 0x0, 0xfffffffffffffffd) 09:43:50 executing program 5: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000c80)='/dev/loop-control\x00', 0x0, 0x0) ioctl$BTRFS_IOC_BALANCE_V2(r0, 0xc4009420, 0x0) 09:43:50 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x2000b}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:50 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x3a00, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:50 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x400000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:50 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$GTP_CMD_NEWPDP(r0, &(0x7f0000000ec0)={0x0, 0x0, &(0x7f0000000e80)={0x0}}, 0x4000000) 09:43:50 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x40000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:50 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x500000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:50 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x3a01, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:50 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x800) 09:43:50 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$SOCK_DIAG_BY_FAMILY(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x10) 09:43:51 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = signalfd(0xffffffffffffffff, &(0x7f0000003180), 0x8) r2 = dup2(r0, r1) connect$netlink(r2, &(0x7f0000000040)=@proc, 0xc) 09:43:51 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x7d000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:51 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000006c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendto$unix(r1, 0x0, 0x0, 0x0, 0x0, 0x0) recvfrom$unix(r0, 0x0, 0x0, 0x2000, 0x0, 0x0) 09:43:51 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x3c00, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:51 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x600000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:51 executing program 0: r0 = socket$netlink(0x10, 0x3, 0xb) sendmsg$TEAM_CMD_OPTIONS_GET(r0, &(0x7f0000000ec0)={0x0, 0x0, &(0x7f0000000e80)={&(0x7f0000000500)=ANY=[], 0x950}}, 0x0) 09:43:51 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x100000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:51 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_LINKINFO_GET(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={0x0}}, 0x0) 09:43:51 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={0x0}}, 0x20040000) 09:43:51 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x3f00, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:52 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x700000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:52 executing program 0: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TLS_TX(r0, 0x6, 0x1, &(0x7f0000000000)=@gcm_128={{}, "8b8f6cab224556ce", "5ac6e3a7fe0d36d70455d35a618ce95b", "046117d3", "38b39d6071c5d440"}, 0x28) 09:43:52 executing program 4: openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop-control\x00', 0x20000, 0x0) 09:43:52 executing program 5: r0 = open$dir(&(0x7f0000001080)='./file0\x00', 0x840, 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0) dup2(r1, r0) 09:43:52 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x3e8000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:52 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) 09:43:52 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x4000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:52 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x800000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:53 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x40) 09:43:53 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_NEIGHBORS(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={0x0}}, 0x4890) 09:43:53 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x400000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:53 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = dup(r0) sendmsg$NBD_CMD_STATUS(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x20000040) 09:43:53 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x900000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:53 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x4602, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:53 executing program 4: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS3\x00', 0x0, 0x0) vmsplice(r0, &(0x7f0000000140), 0x0, 0x5) 09:43:53 executing program 5: open$dir(&(0x7f0000001080)='./file0\x00', 0x80840, 0x0) 09:43:53 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x800000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:53 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x4) 09:43:53 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x4788, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:53 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0xa00000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:54 executing program 5: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, 0x0) 09:43:54 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x8800) 09:43:54 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x803e00}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:54 executing program 0: open(&(0x7f0000000040)='./file0\x00', 0x101042, 0x131) 09:43:54 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x4800, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:54 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0xb00000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:54 executing program 5: r0 = signalfd(0xffffffffffffffff, &(0x7f0000003180), 0x8) fchown(r0, 0x0, 0x0) 09:43:54 executing program 4: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) dup(r0) 09:43:54 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0xca9a3b}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:54 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_CMD_DISABLE_BEARER(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x4004) 09:43:55 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x4888, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:55 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TEAM_CMD_OPTIONS_GET(r0, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000008c0)={0x0}}, 0x40) 09:43:55 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0xb00020000000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:55 executing program 5: r0 = socket(0x2, 0xa, 0x0) sendmsg$ETHTOOL_MSG_LINKINFO_SET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x24}}, 0x0) 09:43:55 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0xd00700}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:55 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000300)={0x0}}, 0x4000000) 09:43:55 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x4a00, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:55 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$SEG6_CMD_SET_TUNSRC(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[], 0x5c}}, 0x2404c040) 09:43:55 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_SET_WDS_PEER(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}}, 0x200008e4) 09:43:55 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0xd00000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:55 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x1000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:56 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = dup2(r0, r0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) 09:43:56 executing program 4: r0 = socket$inet_tcp(0x2, 0x1, 0x0) recvmmsg(r0, &(0x7f00000037c0), 0x0, 0x120, 0x0) 09:43:56 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x4c00, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:56 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_SB_POOL_GET(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={0x0}}, 0x2400c800) 09:43:56 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0xe00000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:56 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x2000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:56 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$GTP_CMD_GETPDP(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x800) 09:43:56 executing program 4: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$TIPC_CMD_SET_LINK_TOL(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0}}, 0x40000) 09:43:56 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x5100, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:57 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_HARDIF(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000400)={0x0}}, 0x4800) 09:43:57 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0xf00000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:57 executing program 5: openat$tun(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/net/tun\x00', 0x400, 0x0) 09:43:57 executing program 4: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000740)) 09:43:57 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x3000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:57 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x5200, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:57 executing program 5: open$dir(&(0x7f0000001080)='./file0\x00', 0x103c40, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x181c02, 0x25) 09:43:57 executing program 0: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000000)={'team0\x00'}) 09:43:57 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x1000000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:57 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r0, 0x0, 0x0, 0x800) 09:43:57 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x4000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:58 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x5865, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:58 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$SOCK_DESTROY(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[], 0x28}}, 0x20004000) 09:43:58 executing program 5: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCL_BLANKSCREEN(r0, 0x541c, 0x0) 09:43:58 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x1100000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:58 executing program 4: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000005e80)={'batadv_slave_0\x00'}) 09:43:58 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x6000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:58 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x5000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:58 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_NL_SOCK_GET(r0, &(0x7f0000003c80)={0x0, 0x0, &(0x7f0000003c40)={0x0}}, 0x40) 09:43:58 executing program 5: pipe2$9p(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RSTATu(r0, &(0x7f0000000140)=ANY=[], 0xffffff6a) vmsplice(r0, &(0x7f0000000280)=[{&(0x7f0000000140)='t', 0x1}], 0x1, 0x0) 09:43:58 executing program 4: poll(0x0, 0x0, 0xe5) clone(0x2000411cf7c, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = socket(0x1, 0x5, 0x0) setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, 0x0, 0x0) 09:43:58 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x1200000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:59 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x6401, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:59 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x6000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:59 executing program 0: socketpair$unix(0x1, 0x200000005, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmmsg(r0, &(0x7f0000000880)=[{{&(0x7f0000002d80)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x80, 0x0, 0x0, 0x0, 0x1a1}}], 0x4000246, 0x0, 0x0) clone(0x2000411cf7c, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='stat\x00') preadv(r1, 0x0, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) 09:43:59 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x1d00000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:43:59 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x6558, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:43:59 executing program 4: poll(0x0, 0x0, 0xe5) clone(0x2000411cf7c, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) pipe2(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r1 = dup(r0) symlinkat(&(0x7f0000000000)='./file0\x00', r1, &(0x7f0000000040)='./file0\x00') 09:43:59 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x7000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:43:59 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x1f00000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:44:00 executing program 5: poll(0x0, 0x0, 0xe5) clone(0x2000411cf7c, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = socket(0x10, 0x3, 0x0) getpeername$unix(r0, 0x0, 0x0) r1 = socket(0x10, 0x3, 0x0) write(r1, 0x0, 0x0) 09:44:00 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x6800, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:44:00 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x8000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:44:00 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x2000000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:44:00 executing program 4: socketpair$unix(0x1, 0x200000005, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmmsg(r0, &(0x7f0000000880)=[{{&(0x7f0000002d80)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x80, 0x0, 0x0, 0x0, 0x1a1}}], 0x4000246, 0x0, 0x0) clone(0x2000411cf7c, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) timer_create(0x0, &(0x7f0000001380), 0x0) 09:44:00 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x6815, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) [ 701.491763][T16887] not chained 20000 origins [ 701.496329][T16887] CPU: 1 PID: 16887 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 701.505102][T16887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 701.515191][T16887] Call Trace: [ 701.518509][T16887] dump_stack+0x21c/0x280 [ 701.522865][T16887] kmsan_internal_chain_origin+0x6f/0x130 [ 701.528864][T16887] ? __msan_get_context_state+0x9/0x20 [ 701.534338][T16887] ? kmsan_get_metadata+0x116/0x180 [ 701.539562][T16887] ? kmsan_internal_check_memory+0xb1/0x520 [ 701.545482][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 701.551137][T16887] ? kmsan_check_memory+0xd/0x10 [ 701.556091][T16887] ? ____sys_recvmsg+0xa2d/0xd80 [ 701.561052][T16887] ? __msan_get_context_state+0x9/0x20 [ 701.566538][T16887] ? kfree+0x29/0x11b0 [ 701.570630][T16887] ? kmsan_get_metadata+0x116/0x180 [ 701.575855][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 701.581513][T16887] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 701.587601][T16887] ? _copy_from_user+0x1cd/0x2d0 [ 701.592554][T16887] ? kmsan_get_metadata+0x116/0x180 [ 701.597750][T16887] __msan_chain_origin+0x57/0xa0 [ 701.602690][T16887] do_recvmmsg+0x17ee/0x2300 [ 701.607292][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 701.612917][T16887] ? __msan_poison_alloca+0xe9/0x110 [ 701.618195][T16887] ? __se_sys_recvmmsg+0xd3/0x410 [ 701.623214][T16887] __se_sys_recvmmsg+0x247/0x410 [ 701.628147][T16887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 701.633951][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 701.638798][T16887] do_syscall_64+0x9f/0x140 [ 701.643295][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 701.649176][T16887] RIP: 0033:0x45e159 [ 701.653065][T16887] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 701.672794][T16887] RSP: 002b:00007f92e7375c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 701.681209][T16887] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 701.689175][T16887] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 701.697142][T16887] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 701.705109][T16887] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 701.713074][T16887] R13: 00000000016afb7f R14: 00007f92e73769c0 R15: 000000000119bf8c [ 701.721040][T16887] Uninit was stored to memory at: [ 701.726079][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 701.731787][T16887] __msan_chain_origin+0x57/0xa0 [ 701.736719][T16887] do_recvmmsg+0x17ee/0x2300 [ 701.741299][T16887] __se_sys_recvmmsg+0x247/0x410 [ 701.746248][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 701.751088][T16887] do_syscall_64+0x9f/0x140 [ 701.755583][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 701.761451][T16887] [ 701.763765][T16887] Uninit was stored to memory at: [ 701.768786][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 701.774494][T16887] __msan_chain_origin+0x57/0xa0 [ 701.779421][T16887] do_recvmmsg+0x17ee/0x2300 [ 701.784001][T16887] __se_sys_recvmmsg+0x247/0x410 [ 701.788928][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 701.793775][T16887] do_syscall_64+0x9f/0x140 [ 701.798270][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 701.804146][T16887] [ 701.806460][T16887] Uninit was stored to memory at: [ 701.811480][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 701.817190][T16887] __msan_chain_origin+0x57/0xa0 [ 701.822120][T16887] do_recvmmsg+0x17ee/0x2300 [ 701.826701][T16887] __se_sys_recvmmsg+0x247/0x410 [ 701.831630][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 701.836474][T16887] do_syscall_64+0x9f/0x140 [ 701.840970][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 701.846840][T16887] [ 701.849154][T16887] Uninit was stored to memory at: [ 701.854174][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 701.859882][T16887] __msan_chain_origin+0x57/0xa0 [ 701.864820][T16887] do_recvmmsg+0x17ee/0x2300 [ 701.869404][T16887] __se_sys_recvmmsg+0x247/0x410 [ 701.874336][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 701.879180][T16887] do_syscall_64+0x9f/0x140 [ 701.883678][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 701.889635][T16887] [ 701.891952][T16887] Uninit was stored to memory at: [ 701.896974][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 701.902686][T16887] __msan_chain_origin+0x57/0xa0 [ 701.907627][T16887] do_recvmmsg+0x17ee/0x2300 [ 701.912209][T16887] __se_sys_recvmmsg+0x247/0x410 [ 701.917136][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 701.921982][T16887] do_syscall_64+0x9f/0x140 [ 701.926478][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 701.932349][T16887] [ 701.934659][T16887] Uninit was stored to memory at: [ 701.939685][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 701.945392][T16887] __msan_chain_origin+0x57/0xa0 [ 701.950321][T16887] do_recvmmsg+0x17ee/0x2300 [ 701.954901][T16887] __se_sys_recvmmsg+0x247/0x410 [ 701.959830][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 701.964677][T16887] do_syscall_64+0x9f/0x140 [ 701.969172][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 701.975044][T16887] [ 701.977359][T16887] Uninit was stored to memory at: [ 701.982388][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 701.988096][T16887] __msan_chain_origin+0x57/0xa0 [ 701.993027][T16887] do_recvmmsg+0x17ee/0x2300 [ 701.997608][T16887] __se_sys_recvmmsg+0x247/0x410 [ 702.002539][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 702.007380][T16887] do_syscall_64+0x9f/0x140 [ 702.011882][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 702.017753][T16887] [ 702.023412][T16887] Local variable ----msg_sys@do_recvmmsg created at: [ 702.030079][T16887] do_recvmmsg+0xbc/0x2300 [ 702.034483][T16887] do_recvmmsg+0xbc/0x2300 [ 702.309152][T16929] not chained 30000 origins [ 702.313707][T16929] CPU: 0 PID: 16929 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 702.322472][T16929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 702.332536][T16929] Call Trace: [ 702.335842][T16929] dump_stack+0x21c/0x280 [ 702.340198][T16929] kmsan_internal_chain_origin+0x6f/0x130 [ 702.345934][T16929] ? __msan_get_context_state+0x9/0x20 [ 702.352275][T16929] ? kmsan_get_metadata+0x116/0x180 [ 702.357501][T16929] ? kmsan_internal_check_memory+0xb1/0x520 [ 702.363415][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 702.369068][T16929] ? kmsan_check_memory+0xd/0x10 [ 702.374025][T16929] ? ____sys_recvmsg+0xa2d/0xd80 [ 702.379052][T16929] ? __msan_get_context_state+0x9/0x20 [ 702.384575][T16929] ? kfree+0x29/0x11b0 [ 702.388660][T16929] ? kmsan_get_metadata+0x116/0x180 [ 702.393876][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 702.399529][T16929] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 702.405616][T16929] ? _copy_from_user+0x1cd/0x2d0 [ 702.410587][T16929] ? kmsan_get_metadata+0x116/0x180 [ 702.415804][T16929] __msan_chain_origin+0x57/0xa0 [ 702.420760][T16929] do_recvmmsg+0x17ee/0x2300 [ 702.425384][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 702.431036][T16929] ? __msan_poison_alloca+0xe9/0x110 [ 702.436338][T16929] ? __se_sys_recvmmsg+0xd3/0x410 [ 702.441378][T16929] __se_sys_recvmmsg+0x247/0x410 [ 702.446330][T16929] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 702.452165][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 702.457034][T16929] do_syscall_64+0x9f/0x140 [ 702.461557][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 702.467469][T16929] RIP: 0033:0x45e159 [ 702.471386][T16929] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 702.491007][T16929] RSP: 002b:00007f7ad6bc8c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 702.499442][T16929] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 702.507429][T16929] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 702.515425][T16929] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 702.523412][T16929] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 702.531400][T16929] R13: 00000000016afb7f R14: 00007f7ad6bc99c0 R15: 000000000119bf8c [ 702.539385][T16929] Uninit was stored to memory at: [ 702.544442][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 702.550176][T16929] __msan_chain_origin+0x57/0xa0 [ 702.555139][T16929] do_recvmmsg+0x17ee/0x2300 [ 702.559745][T16929] __se_sys_recvmmsg+0x247/0x410 [ 702.564696][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 702.569562][T16929] do_syscall_64+0x9f/0x140 [ 702.574074][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 702.579955][T16929] [ 702.582268][T16929] Uninit was stored to memory at: [ 702.587288][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 702.593086][T16929] __msan_chain_origin+0x57/0xa0 [ 702.598028][T16929] do_recvmmsg+0x17ee/0x2300 [ 702.602621][T16929] __se_sys_recvmmsg+0x247/0x410 [ 702.607551][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 702.612571][T16929] do_syscall_64+0x9f/0x140 [ 702.617066][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 702.622943][T16929] [ 702.625261][T16929] Uninit was stored to memory at: [ 702.630286][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 702.636101][T16929] __msan_chain_origin+0x57/0xa0 [ 702.641043][T16929] do_recvmmsg+0x17ee/0x2300 [ 702.645642][T16929] __se_sys_recvmmsg+0x247/0x410 [ 702.650576][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 702.655419][T16929] do_syscall_64+0x9f/0x140 [ 702.659912][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 702.665782][T16929] [ 702.668095][T16929] Uninit was stored to memory at: [ 702.673291][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 702.678997][T16929] __msan_chain_origin+0x57/0xa0 [ 702.683926][T16929] do_recvmmsg+0x17ee/0x2300 [ 702.688508][T16929] __se_sys_recvmmsg+0x247/0x410 [ 702.693437][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 702.698281][T16929] do_syscall_64+0x9f/0x140 [ 702.702775][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 702.708646][T16929] [ 702.710956][T16929] Uninit was stored to memory at: [ 702.715978][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 702.721685][T16929] __msan_chain_origin+0x57/0xa0 [ 702.726617][T16929] do_recvmmsg+0x17ee/0x2300 [ 702.731205][T16929] __se_sys_recvmmsg+0x247/0x410 [ 702.736135][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 702.740979][T16929] do_syscall_64+0x9f/0x140 [ 702.745473][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 702.751343][T16929] [ 702.753656][T16929] Uninit was stored to memory at: [ 702.758676][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 702.764386][T16929] __msan_chain_origin+0x57/0xa0 [ 702.770272][T16929] do_recvmmsg+0x17ee/0x2300 [ 702.774855][T16929] __se_sys_recvmmsg+0x247/0x410 [ 702.779784][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 702.784631][T16929] do_syscall_64+0x9f/0x140 [ 702.789130][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 702.795003][T16929] [ 702.797316][T16929] Uninit was stored to memory at: [ 702.802335][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 702.808055][T16929] __msan_chain_origin+0x57/0xa0 [ 702.813003][T16929] do_recvmmsg+0x17ee/0x2300 [ 702.817702][T16929] __se_sys_recvmmsg+0x247/0x410 [ 702.822635][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 702.827480][T16929] do_syscall_64+0x9f/0x140 [ 702.831986][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 702.837857][T16929] [ 702.840169][T16929] Local variable ----msg_sys@do_recvmmsg created at: [ 702.846834][T16929] do_recvmmsg+0xbc/0x2300 [ 702.851239][T16929] do_recvmmsg+0xbc/0x2300 [ 703.468008][T16891] not chained 40000 origins [ 703.472555][T16891] CPU: 0 PID: 16891 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 703.481318][T16891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 703.491383][T16891] Call Trace: [ 703.494709][T16891] dump_stack+0x21c/0x280 [ 703.499064][T16891] kmsan_internal_chain_origin+0x6f/0x130 [ 703.504799][T16891] ? __msan_get_context_state+0x9/0x20 [ 703.510280][T16891] ? kmsan_get_metadata+0x116/0x180 [ 703.515501][T16891] ? kmsan_internal_check_memory+0xb1/0x520 [ 703.521418][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 703.527069][T16891] ? kmsan_check_memory+0xd/0x10 [ 703.532031][T16891] ? ____sys_recvmsg+0xa2d/0xd80 [ 703.536988][T16891] ? __msan_get_context_state+0x9/0x20 [ 703.542462][T16891] ? kfree+0x29/0x11b0 [ 703.546548][T16891] ? kmsan_get_metadata+0x116/0x180 [ 703.551765][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 703.557418][T16891] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 703.563505][T16891] ? _copy_from_user+0x1cd/0x2d0 [ 703.568460][T16891] ? kmsan_get_metadata+0x116/0x180 [ 703.573676][T16891] __msan_chain_origin+0x57/0xa0 [ 703.578631][T16891] do_recvmmsg+0x17ee/0x2300 [ 703.583258][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 703.588904][T16891] ? __msan_poison_alloca+0xe9/0x110 [ 703.594207][T16891] ? __se_sys_recvmmsg+0xd3/0x410 [ 703.599254][T16891] __se_sys_recvmmsg+0x247/0x410 [ 703.604205][T16891] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 703.610035][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 703.614906][T16891] do_syscall_64+0x9f/0x140 [ 703.619425][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 703.625333][T16891] RIP: 0033:0x45e159 [ 703.629245][T16891] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 703.648869][T16891] RSP: 002b:00007f92e7354c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 703.657307][T16891] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 703.665296][T16891] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 703.673283][T16891] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 703.681269][T16891] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 703.689260][T16891] R13: 00000000016afb7f R14: 00007f92e73559c0 R15: 000000000119c034 [ 703.697245][T16891] Uninit was stored to memory at: [ 703.702295][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 703.708027][T16891] __msan_chain_origin+0x57/0xa0 [ 703.712975][T16891] do_recvmmsg+0x17ee/0x2300 [ 703.717578][T16891] __se_sys_recvmmsg+0x247/0x410 [ 703.722533][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 703.727397][T16891] do_syscall_64+0x9f/0x140 [ 703.731917][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 703.737800][T16891] [ 703.740122][T16891] Uninit was stored to memory at: [ 703.745171][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 703.750882][T16891] __msan_chain_origin+0x57/0xa0 [ 703.755814][T16891] do_recvmmsg+0x17ee/0x2300 [ 703.760396][T16891] __se_sys_recvmmsg+0x247/0x410 [ 703.765328][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 703.770171][T16891] do_syscall_64+0x9f/0x140 [ 703.774667][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 703.780539][T16891] [ 703.782873][T16891] Uninit was stored to memory at: [ 703.787904][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 703.793612][T16891] __msan_chain_origin+0x57/0xa0 [ 703.798540][T16891] do_recvmmsg+0x17ee/0x2300 [ 703.803120][T16891] __se_sys_recvmmsg+0x247/0x410 [ 703.808047][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 703.812890][T16891] do_syscall_64+0x9f/0x140 [ 703.817384][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 703.823253][T16891] [ 703.825566][T16891] Uninit was stored to memory at: [ 703.830590][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 703.836297][T16891] __msan_chain_origin+0x57/0xa0 [ 703.841228][T16891] do_recvmmsg+0x17ee/0x2300 [ 703.845811][T16891] __se_sys_recvmmsg+0x247/0x410 [ 703.850768][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 703.855621][T16891] do_syscall_64+0x9f/0x140 [ 703.860122][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 703.866002][T16891] [ 703.868317][T16891] Uninit was stored to memory at: [ 703.873338][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 703.879048][T16891] __msan_chain_origin+0x57/0xa0 [ 703.883977][T16891] do_recvmmsg+0x17ee/0x2300 [ 703.888560][T16891] __se_sys_recvmmsg+0x247/0x410 [ 703.893492][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 703.898335][T16891] do_syscall_64+0x9f/0x140 [ 703.902832][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 703.908709][T16891] [ 703.911024][T16891] Uninit was stored to memory at: [ 703.916044][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 703.921753][T16891] __msan_chain_origin+0x57/0xa0 [ 703.926683][T16891] do_recvmmsg+0x17ee/0x2300 [ 703.931262][T16891] __se_sys_recvmmsg+0x247/0x410 [ 703.936192][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 703.941033][T16891] do_syscall_64+0x9f/0x140 [ 703.945536][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 703.951407][T16891] [ 703.953720][T16891] Uninit was stored to memory at: [ 703.958738][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 703.964447][T16891] __msan_chain_origin+0x57/0xa0 [ 703.969374][T16891] do_recvmmsg+0x17ee/0x2300 [ 703.973954][T16891] __se_sys_recvmmsg+0x247/0x410 [ 703.978908][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 703.983749][T16891] do_syscall_64+0x9f/0x140 [ 703.988243][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 703.994113][T16891] [ 703.996428][T16891] Local variable ----msg_sys@do_recvmmsg created at: [ 704.003093][T16891] do_recvmmsg+0xbc/0x2300 [ 704.007500][T16891] do_recvmmsg+0xbc/0x2300 [ 704.173629][T16931] not chained 50000 origins [ 704.178187][T16931] CPU: 0 PID: 16931 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 704.186951][T16931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 704.197016][T16931] Call Trace: [ 704.200335][T16931] dump_stack+0x21c/0x280 [ 704.204686][T16931] kmsan_internal_chain_origin+0x6f/0x130 [ 704.210510][T16931] ? __msan_get_context_state+0x9/0x20 [ 704.215985][T16931] ? kmsan_get_metadata+0x116/0x180 [ 704.221206][T16931] ? kmsan_internal_check_memory+0xb1/0x520 [ 704.227122][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 704.232892][T16931] ? kmsan_check_memory+0xd/0x10 [ 704.237845][T16931] ? ____sys_recvmsg+0xa2d/0xd80 [ 704.242797][T16931] ? __msan_get_context_state+0x9/0x20 [ 704.248271][T16931] ? kfree+0x29/0x11b0 [ 704.252354][T16931] ? kmsan_get_metadata+0x116/0x180 [ 704.257567][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 704.263234][T16931] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 704.269318][T16931] ? _copy_from_user+0x1cd/0x2d0 [ 704.274270][T16931] ? kmsan_get_metadata+0x116/0x180 [ 704.279484][T16931] __msan_chain_origin+0x57/0xa0 [ 704.284447][T16931] do_recvmmsg+0x17ee/0x2300 [ 704.289066][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 704.294711][T16931] ? __msan_poison_alloca+0xe9/0x110 [ 704.300011][T16931] ? __se_sys_recvmmsg+0xd3/0x410 [ 704.305052][T16931] __se_sys_recvmmsg+0x247/0x410 [ 704.310003][T16931] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 704.315830][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 704.320698][T16931] do_syscall_64+0x9f/0x140 [ 704.325220][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 704.331119][T16931] RIP: 0033:0x45e159 [ 704.335026][T16931] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 704.354648][T16931] RSP: 002b:00007f7ad6ba7c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 704.363079][T16931] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 704.371069][T16931] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 704.379055][T16931] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 704.387043][T16931] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 704.395030][T16931] R13: 00000000016afb7f R14: 00007f7ad6ba89c0 R15: 000000000119c034 [ 704.403010][T16931] Uninit was stored to memory at: [ 704.408058][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 704.413791][T16931] __msan_chain_origin+0x57/0xa0 [ 704.418740][T16931] do_recvmmsg+0x17ee/0x2300 [ 704.423340][T16931] __se_sys_recvmmsg+0x247/0x410 [ 704.428289][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 704.433151][T16931] do_syscall_64+0x9f/0x140 [ 704.437666][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 704.443551][T16931] [ 704.445882][T16931] Uninit was stored to memory at: [ 704.450922][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 704.456649][T16931] __msan_chain_origin+0x57/0xa0 [ 704.461600][T16931] do_recvmmsg+0x17ee/0x2300 [ 704.466209][T16931] __se_sys_recvmmsg+0x247/0x410 [ 704.471186][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 704.476050][T16931] do_syscall_64+0x9f/0x140 [ 704.480556][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 704.486441][T16931] [ 704.488768][T16931] Uninit was stored to memory at: [ 704.493810][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 704.499540][T16931] __msan_chain_origin+0x57/0xa0 [ 704.504486][T16931] do_recvmmsg+0x17ee/0x2300 [ 704.509088][T16931] __se_sys_recvmmsg+0x247/0x410 [ 704.514044][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 704.518902][T16931] do_syscall_64+0x9f/0x140 [ 704.523412][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 704.529298][T16931] [ 704.531624][T16931] Uninit was stored to memory at: [ 704.536661][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 704.542379][T16931] __msan_chain_origin+0x57/0xa0 [ 704.547322][T16931] do_recvmmsg+0x17ee/0x2300 [ 704.551917][T16931] __se_sys_recvmmsg+0x247/0x410 [ 704.556861][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 704.561715][T16931] do_syscall_64+0x9f/0x140 [ 704.566220][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 704.572102][T16931] [ 704.574436][T16931] Uninit was stored to memory at: [ 704.579471][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 704.585200][T16931] __msan_chain_origin+0x57/0xa0 [ 704.590146][T16931] do_recvmmsg+0x17ee/0x2300 [ 704.594744][T16931] __se_sys_recvmmsg+0x247/0x410 [ 704.599687][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 704.604554][T16931] do_syscall_64+0x9f/0x140 [ 704.609073][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 704.614952][T16931] [ 704.617275][T16931] Uninit was stored to memory at: [ 704.622314][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 704.628036][T16931] __msan_chain_origin+0x57/0xa0 [ 704.632976][T16931] do_recvmmsg+0x17ee/0x2300 [ 704.637584][T16931] __se_sys_recvmmsg+0x247/0x410 [ 704.642536][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 704.647398][T16931] do_syscall_64+0x9f/0x140 [ 704.651921][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 704.657806][T16931] [ 704.660141][T16931] Uninit was stored to memory at: [ 704.665224][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 704.670948][T16931] __msan_chain_origin+0x57/0xa0 [ 704.675899][T16931] do_recvmmsg+0x17ee/0x2300 [ 704.680503][T16931] __se_sys_recvmmsg+0x247/0x410 [ 704.685448][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 704.690307][T16931] do_syscall_64+0x9f/0x140 [ 704.694813][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 704.700691][T16931] [ 704.703011][T16931] Local variable ----msg_sys@do_recvmmsg created at: [ 704.709692][T16931] do_recvmmsg+0xbc/0x2300 [ 704.714115][T16931] do_recvmmsg+0xbc/0x2300 [ 704.775497][T16887] not chained 60000 origins [ 704.780053][T16887] CPU: 1 PID: 16887 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 704.788820][T16887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 704.800724][T16887] Call Trace: [ 704.804039][T16887] dump_stack+0x21c/0x280 [ 704.808395][T16887] kmsan_internal_chain_origin+0x6f/0x130 [ 704.814131][T16887] ? __msan_get_context_state+0x9/0x20 [ 704.819599][T16887] ? kmsan_get_metadata+0x116/0x180 [ 704.824815][T16887] ? kmsan_internal_check_memory+0xb1/0x520 [ 704.830725][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 704.836373][T16887] ? kmsan_check_memory+0xd/0x10 [ 704.841323][T16887] ? ____sys_recvmsg+0xa2d/0xd80 [ 704.846276][T16887] ? __msan_get_context_state+0x9/0x20 [ 704.851750][T16887] ? kfree+0x29/0x11b0 [ 704.855830][T16887] ? kmsan_get_metadata+0x116/0x180 [ 704.861050][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 704.866706][T16887] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 704.872827][T16887] ? _copy_from_user+0x1cd/0x2d0 [ 704.877780][T16887] ? kmsan_get_metadata+0x116/0x180 [ 704.882990][T16887] __msan_chain_origin+0x57/0xa0 [ 704.887946][T16887] do_recvmmsg+0x17ee/0x2300 [ 704.892563][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 704.898209][T16887] ? __msan_poison_alloca+0xe9/0x110 [ 704.903512][T16887] ? __se_sys_recvmmsg+0xd3/0x410 [ 704.908557][T16887] __se_sys_recvmmsg+0x247/0x410 [ 704.913509][T16887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 704.919333][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 704.924202][T16887] do_syscall_64+0x9f/0x140 [ 704.928722][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 704.934625][T16887] RIP: 0033:0x45e159 [ 704.938536][T16887] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 704.958158][T16887] RSP: 002b:00007f92e7375c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 704.966595][T16887] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 704.974580][T16887] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 704.982565][T16887] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 704.990555][T16887] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 704.998716][T16887] R13: 00000000016afb7f R14: 00007f92e73769c0 R15: 000000000119bf8c [ 705.006802][T16887] Uninit was stored to memory at: [ 705.011852][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 705.017581][T16887] __msan_chain_origin+0x57/0xa0 [ 705.022530][T16887] do_recvmmsg+0x17ee/0x2300 [ 705.027134][T16887] __se_sys_recvmmsg+0x247/0x410 [ 705.032078][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 705.036940][T16887] do_syscall_64+0x9f/0x140 [ 705.041456][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 705.047344][T16887] [ 705.049686][T16887] Uninit was stored to memory at: [ 705.054731][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 705.060461][T16887] __msan_chain_origin+0x57/0xa0 [ 705.065413][T16887] do_recvmmsg+0x17ee/0x2300 [ 705.070020][T16887] __se_sys_recvmmsg+0x247/0x410 [ 705.074973][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 705.079837][T16887] do_syscall_64+0x9f/0x140 [ 705.084351][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 705.090238][T16887] [ 705.092562][T16887] Uninit was stored to memory at: [ 705.097604][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 705.103333][T16887] __msan_chain_origin+0x57/0xa0 [ 705.108286][T16887] do_recvmmsg+0x17ee/0x2300 [ 705.112884][T16887] __se_sys_recvmmsg+0x247/0x410 [ 705.117830][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 705.122710][T16887] do_syscall_64+0x9f/0x140 [ 705.127225][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 705.133112][T16887] [ 705.135462][T16887] Uninit was stored to memory at: [ 705.140502][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 705.146230][T16887] __msan_chain_origin+0x57/0xa0 [ 705.151181][T16887] do_recvmmsg+0x17ee/0x2300 [ 705.155781][T16887] __se_sys_recvmmsg+0x247/0x410 [ 705.160730][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 705.165594][T16887] do_syscall_64+0x9f/0x140 [ 705.170107][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 705.175994][T16887] [ 705.178321][T16887] Uninit was stored to memory at: [ 705.183364][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 705.189102][T16887] __msan_chain_origin+0x57/0xa0 [ 705.194056][T16887] do_recvmmsg+0x17ee/0x2300 [ 705.198658][T16887] __se_sys_recvmmsg+0x247/0x410 [ 705.203613][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 705.208480][T16887] do_syscall_64+0x9f/0x140 [ 705.212995][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 705.218887][T16887] [ 705.221218][T16887] Uninit was stored to memory at: [ 705.226268][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 705.231997][T16887] __msan_chain_origin+0x57/0xa0 [ 705.237041][T16887] do_recvmmsg+0x17ee/0x2300 [ 705.241640][T16887] __se_sys_recvmmsg+0x247/0x410 [ 705.246597][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 705.251461][T16887] do_syscall_64+0x9f/0x140 [ 705.255978][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 705.261864][T16887] [ 705.264192][T16887] Uninit was stored to memory at: [ 705.269234][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 705.274965][T16887] __msan_chain_origin+0x57/0xa0 [ 705.279918][T16887] do_recvmmsg+0x17ee/0x2300 [ 705.284522][T16887] __se_sys_recvmmsg+0x247/0x410 [ 705.289469][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 705.294328][T16887] do_syscall_64+0x9f/0x140 [ 705.298852][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 705.304824][T16887] [ 705.307152][T16887] Local variable ----msg_sys@do_recvmmsg created at: [ 705.313835][T16887] do_recvmmsg+0xbc/0x2300 [ 705.318268][T16887] do_recvmmsg+0xbc/0x2300 [ 705.757294][T16891] not chained 70000 origins [ 705.761850][T16891] CPU: 1 PID: 16891 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 705.770724][T16891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 705.780791][T16891] Call Trace: [ 705.784104][T16891] dump_stack+0x21c/0x280 [ 705.788456][T16891] kmsan_internal_chain_origin+0x6f/0x130 [ 705.794191][T16891] ? __msan_get_context_state+0x9/0x20 [ 705.799662][T16891] ? kmsan_get_metadata+0x116/0x180 [ 705.804883][T16891] ? kmsan_internal_check_memory+0xb1/0x520 [ 705.810794][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 705.816445][T16891] ? kmsan_check_memory+0xd/0x10 [ 705.821396][T16891] ? ____sys_recvmsg+0xa2d/0xd80 [ 705.826346][T16891] ? __msan_get_context_state+0x9/0x20 [ 705.831828][T16891] ? kfree+0x29/0x11b0 [ 705.835908][T16891] ? kmsan_get_metadata+0x116/0x180 [ 705.841126][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 705.846779][T16891] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 705.852859][T16891] ? _copy_from_user+0x1cd/0x2d0 [ 705.857799][T16891] ? kmsan_get_metadata+0x116/0x180 [ 705.863001][T16891] __msan_chain_origin+0x57/0xa0 [ 705.867950][T16891] do_recvmmsg+0x17ee/0x2300 [ 705.872575][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 705.878214][T16891] ? __msan_poison_alloca+0xe9/0x110 [ 705.883537][T16891] ? __se_sys_recvmmsg+0xd3/0x410 [ 705.888586][T16891] __se_sys_recvmmsg+0x247/0x410 [ 705.893539][T16891] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 705.899368][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 705.904239][T16891] do_syscall_64+0x9f/0x140 [ 705.908760][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 705.914660][T16891] RIP: 0033:0x45e159 [ 705.918571][T16891] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 705.938191][T16891] RSP: 002b:00007f92e7354c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 705.946621][T16891] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 705.954609][T16891] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 705.962599][T16891] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 705.970589][T16891] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 705.978586][T16891] R13: 00000000016afb7f R14: 00007f92e73559c0 R15: 000000000119c034 [ 705.986578][T16891] Uninit was stored to memory at: [ 705.991621][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 705.997353][T16891] __msan_chain_origin+0x57/0xa0 [ 706.002305][T16891] do_recvmmsg+0x17ee/0x2300 [ 706.006909][T16891] __se_sys_recvmmsg+0x247/0x410 [ 706.011851][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 706.016716][T16891] do_syscall_64+0x9f/0x140 [ 706.022186][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 706.028068][T16891] [ 706.030414][T16891] Uninit was stored to memory at: [ 706.035453][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 706.041176][T16891] __msan_chain_origin+0x57/0xa0 [ 706.046124][T16891] do_recvmmsg+0x17ee/0x2300 [ 706.050718][T16891] __se_sys_recvmmsg+0x247/0x410 [ 706.055654][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 706.060515][T16891] do_syscall_64+0x9f/0x140 [ 706.065028][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 706.070915][T16891] [ 706.073240][T16891] Uninit was stored to memory at: [ 706.078274][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 706.083997][T16891] __msan_chain_origin+0x57/0xa0 [ 706.088940][T16891] do_recvmmsg+0x17ee/0x2300 [ 706.093536][T16891] __se_sys_recvmmsg+0x247/0x410 [ 706.098479][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 706.103334][T16891] do_syscall_64+0x9f/0x140 [ 706.107846][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 706.113731][T16891] [ 706.116055][T16891] Uninit was stored to memory at: [ 706.121091][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 706.126810][T16891] __msan_chain_origin+0x57/0xa0 [ 706.131749][T16891] do_recvmmsg+0x17ee/0x2300 [ 706.136347][T16891] __se_sys_recvmmsg+0x247/0x410 [ 706.141294][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 706.146160][T16891] do_syscall_64+0x9f/0x140 [ 706.150669][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 706.156585][T16891] [ 706.158913][T16891] Uninit was stored to memory at: [ 706.163947][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 706.169674][T16891] __msan_chain_origin+0x57/0xa0 [ 706.174623][T16891] do_recvmmsg+0x17ee/0x2300 [ 706.179225][T16891] __se_sys_recvmmsg+0x247/0x410 [ 706.184172][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 706.189040][T16891] do_syscall_64+0x9f/0x140 [ 706.193553][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 706.199439][T16891] [ 706.201759][T16891] Uninit was stored to memory at: [ 706.206799][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 706.212532][T16891] __msan_chain_origin+0x57/0xa0 [ 706.217499][T16891] do_recvmmsg+0x17ee/0x2300 [ 706.222104][T16891] __se_sys_recvmmsg+0x247/0x410 [ 706.227057][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 706.231921][T16891] do_syscall_64+0x9f/0x140 [ 706.236433][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 706.239425][T16931] not chained 80000 origins [ 706.242319][T16891] [ 706.246820][T16931] CPU: 0 PID: 16931 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 706.249118][T16891] Uninit was stored to memory at: [ 706.257853][T16931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 706.262865][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 706.272885][T16931] Call Trace: [ 706.278593][T16891] __msan_chain_origin+0x57/0xa0 [ 706.281857][T16931] dump_stack+0x21c/0x280 [ 706.286770][T16891] do_recvmmsg+0x17ee/0x2300 [ 706.291081][T16931] kmsan_internal_chain_origin+0x6f/0x130 [ 706.295636][T16891] __se_sys_recvmmsg+0x247/0x410 [ 706.301333][T16931] ? __msan_get_context_state+0x9/0x20 [ 706.306266][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 706.311698][T16931] ? kmsan_get_metadata+0x116/0x180 [ 706.316527][T16891] do_syscall_64+0x9f/0x140 [ 706.321704][T16931] ? kmsan_internal_check_memory+0xb1/0x520 [ 706.326198][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 706.326214][T16891] [ 706.332120][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 706.337970][T16891] Local variable ----msg_sys@do_recvmmsg created at: [ 706.340289][T16931] ? kmsan_check_memory+0xd/0x10 [ 706.345896][T16891] do_recvmmsg+0xbc/0x2300 [ 706.352568][T16931] ? ____sys_recvmsg+0xa2d/0xd80 [ 706.357497][T16891] do_recvmmsg+0xbc/0x2300 [ 706.361890][T16931] ? __msan_get_context_state+0x9/0x20 [ 706.376667][T16931] ? kfree+0x29/0x11b0 [ 706.380748][T16931] ? kmsan_get_metadata+0x116/0x180 [ 706.386073][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 706.392144][T16931] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 706.398770][T16931] ? _copy_from_user+0x1cd/0x2d0 [ 706.404133][T16931] ? kmsan_get_metadata+0x116/0x180 [ 706.409341][T16931] __msan_chain_origin+0x57/0xa0 [ 706.414292][T16931] do_recvmmsg+0x17ee/0x2300 [ 706.418906][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 706.424803][T16931] ? __msan_poison_alloca+0xe9/0x110 [ 706.430213][T16931] ? __se_sys_recvmmsg+0xd3/0x410 [ 706.435244][T16931] __se_sys_recvmmsg+0x247/0x410 [ 706.440795][T16931] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 706.446617][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 706.451479][T16931] do_syscall_64+0x9f/0x140 [ 706.456911][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 706.462806][T16931] RIP: 0033:0x45e159 [ 706.466704][T16931] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 706.487176][T16931] RSP: 002b:00007f7ad6ba7c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 706.495607][T16931] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 706.503669][T16931] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 706.511840][T16931] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 706.520300][T16931] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 706.528564][T16931] R13: 00000000016afb7f R14: 00007f7ad6ba89c0 R15: 000000000119c034 [ 706.536768][T16931] Uninit was stored to memory at: [ 706.542219][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 706.548841][T16931] __msan_chain_origin+0x57/0xa0 [ 706.554383][T16931] do_recvmmsg+0x17ee/0x2300 [ 706.558981][T16931] __se_sys_recvmmsg+0x247/0x410 [ 706.563932][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 706.569367][T16931] do_syscall_64+0x9f/0x140 [ 706.574776][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 706.581338][T16931] [ 706.583664][T16931] Uninit was stored to memory at: [ 706.589468][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 706.595193][T16931] __msan_chain_origin+0x57/0xa0 [ 706.600135][T16931] do_recvmmsg+0x17ee/0x2300 [ 706.604733][T16931] __se_sys_recvmmsg+0x247/0x410 [ 706.610252][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 706.615949][T16931] do_syscall_64+0x9f/0x140 [ 706.620472][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 706.626358][T16931] [ 706.628884][T16931] Uninit was stored to memory at: [ 706.634473][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 706.640215][T16931] __msan_chain_origin+0x57/0xa0 [ 706.645170][T16931] do_recvmmsg+0x17ee/0x2300 [ 706.649768][T16931] __se_sys_recvmmsg+0x247/0x410 [ 706.654826][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 706.660293][T16931] do_syscall_64+0x9f/0x140 [ 706.664806][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 706.670695][T16931] [ 706.673473][T16931] Uninit was stored to memory at: [ 706.678517][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 706.684244][T16931] __msan_chain_origin+0x57/0xa0 [ 706.689188][T16931] do_recvmmsg+0x17ee/0x2300 [ 706.694632][T16931] __se_sys_recvmmsg+0x247/0x410 [ 706.700177][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 706.705038][T16931] do_syscall_64+0x9f/0x140 [ 706.709548][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 706.716133][T16931] [ 706.718462][T16931] Uninit was stored to memory at: [ 706.723500][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 706.729222][T16931] __msan_chain_origin+0x57/0xa0 [ 706.734169][T16931] do_recvmmsg+0x17ee/0x2300 [ 706.738765][T16931] __se_sys_recvmmsg+0x247/0x410 [ 706.743705][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 706.748561][T16931] do_syscall_64+0x9f/0x140 [ 706.753074][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 706.758956][T16931] [ 706.761281][T16931] Uninit was stored to memory at: [ 706.766314][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 706.772029][T16931] __msan_chain_origin+0x57/0xa0 [ 706.776969][T16931] do_recvmmsg+0x17ee/0x2300 [ 706.781565][T16931] __se_sys_recvmmsg+0x247/0x410 [ 706.786505][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 706.791359][T16931] do_syscall_64+0x9f/0x140 [ 706.795867][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 706.801754][T16931] [ 706.804888][T16931] Uninit was stored to memory at: [ 706.809931][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 706.815665][T16931] __msan_chain_origin+0x57/0xa0 [ 706.820610][T16931] do_recvmmsg+0x17ee/0x2300 [ 706.825207][T16931] __se_sys_recvmmsg+0x247/0x410 [ 706.830867][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 706.835724][T16931] do_syscall_64+0x9f/0x140 [ 706.840228][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 706.846107][T16931] [ 706.848429][T16931] Local variable ----msg_sys@do_recvmmsg created at: [ 706.855108][T16931] do_recvmmsg+0xbc/0x2300 [ 706.859530][T16931] do_recvmmsg+0xbc/0x2300 [ 707.088385][T16887] not chained 90000 origins [ 707.092933][T16887] CPU: 1 PID: 16887 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 707.101699][T16887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 707.111764][T16887] Call Trace: [ 707.115075][T16887] dump_stack+0x21c/0x280 [ 707.119430][T16887] kmsan_internal_chain_origin+0x6f/0x130 [ 707.125187][T16887] ? __msan_get_context_state+0x9/0x20 [ 707.130664][T16887] ? kmsan_get_metadata+0x116/0x180 [ 707.135882][T16887] ? kmsan_internal_check_memory+0xb1/0x520 [ 707.141800][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 707.147456][T16887] ? kmsan_check_memory+0xd/0x10 [ 707.152414][T16887] ? ____sys_recvmsg+0xa2d/0xd80 [ 707.157365][T16887] ? __msan_get_context_state+0x9/0x20 [ 707.162835][T16887] ? kfree+0x29/0x11b0 [ 707.166915][T16887] ? kmsan_get_metadata+0x116/0x180 [ 707.172126][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 707.178468][T16887] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 707.184549][T16887] ? _copy_from_user+0x1cd/0x2d0 [ 707.189498][T16887] ? kmsan_get_metadata+0x116/0x180 [ 707.194707][T16887] __msan_chain_origin+0x57/0xa0 [ 707.199661][T16887] do_recvmmsg+0x17ee/0x2300 [ 707.204286][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 707.209932][T16887] ? __msan_poison_alloca+0xe9/0x110 [ 707.215236][T16887] ? __se_sys_recvmmsg+0xd3/0x410 [ 707.220272][T16887] __se_sys_recvmmsg+0x247/0x410 [ 707.225221][T16887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 707.231043][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 707.235908][T16887] do_syscall_64+0x9f/0x140 [ 707.240429][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 707.246328][T16887] RIP: 0033:0x45e159 [ 707.250237][T16887] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 707.269855][T16887] RSP: 002b:00007f92e7375c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 707.278286][T16887] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 707.286274][T16887] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 707.294263][T16887] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 707.302248][T16887] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 707.310236][T16887] R13: 00000000016afb7f R14: 00007f92e73769c0 R15: 000000000119bf8c [ 707.318222][T16887] Uninit was stored to memory at: [ 707.323273][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 707.329028][T16887] __msan_chain_origin+0x57/0xa0 [ 707.333980][T16887] do_recvmmsg+0x17ee/0x2300 [ 707.338581][T16887] __se_sys_recvmmsg+0x247/0x410 [ 707.343553][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 707.348418][T16887] do_syscall_64+0x9f/0x140 [ 707.352934][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 707.358833][T16887] [ 707.361158][T16887] Uninit was stored to memory at: [ 707.366204][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 707.371944][T16887] __msan_chain_origin+0x57/0xa0 [ 707.376893][T16887] do_recvmmsg+0x17ee/0x2300 [ 707.381496][T16887] __se_sys_recvmmsg+0x247/0x410 [ 707.386447][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 707.391312][T16887] do_syscall_64+0x9f/0x140 [ 707.395829][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 707.401717][T16887] [ 707.404043][T16887] Uninit was stored to memory at: [ 707.409086][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 707.414817][T16887] __msan_chain_origin+0x57/0xa0 [ 707.419766][T16887] do_recvmmsg+0x17ee/0x2300 [ 707.424371][T16887] __se_sys_recvmmsg+0x247/0x410 [ 707.429320][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 707.434184][T16887] do_syscall_64+0x9f/0x140 [ 707.438697][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 707.444582][T16887] [ 707.446934][T16887] Uninit was stored to memory at: [ 707.451972][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 707.457700][T16887] __msan_chain_origin+0x57/0xa0 [ 707.462653][T16887] do_recvmmsg+0x17ee/0x2300 [ 707.467253][T16887] __se_sys_recvmmsg+0x247/0x410 [ 707.472197][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 707.477057][T16887] do_syscall_64+0x9f/0x140 [ 707.481567][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 707.487454][T16887] [ 707.489779][T16887] Uninit was stored to memory at: [ 707.494822][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 707.500547][T16887] __msan_chain_origin+0x57/0xa0 [ 707.505503][T16887] do_recvmmsg+0x17ee/0x2300 [ 707.510108][T16887] __se_sys_recvmmsg+0x247/0x410 [ 707.515061][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 707.519919][T16887] do_syscall_64+0x9f/0x140 [ 707.524443][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 707.530326][T16887] [ 707.532652][T16887] Uninit was stored to memory at: [ 707.537691][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 707.543425][T16887] __msan_chain_origin+0x57/0xa0 [ 707.548375][T16887] do_recvmmsg+0x17ee/0x2300 [ 707.552974][T16887] __se_sys_recvmmsg+0x247/0x410 [ 707.557916][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 707.562771][T16887] do_syscall_64+0x9f/0x140 [ 707.567282][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 707.573163][T16887] [ 707.575486][T16887] Uninit was stored to memory at: [ 707.580520][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 707.586246][T16887] __msan_chain_origin+0x57/0xa0 [ 707.591187][T16887] do_recvmmsg+0x17ee/0x2300 [ 707.595784][T16887] __se_sys_recvmmsg+0x247/0x410 [ 707.600724][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 707.605587][T16887] do_syscall_64+0x9f/0x140 [ 707.610091][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 707.615970][T16887] [ 707.618297][T16887] Local variable ----msg_sys@do_recvmmsg created at: [ 707.624978][T16887] do_recvmmsg+0xbc/0x2300 [ 707.629393][T16887] do_recvmmsg+0xbc/0x2300 [ 707.805460][T16929] not chained 100000 origins [ 707.810106][T16929] CPU: 1 PID: 16929 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 707.818869][T16929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 707.828930][T16929] Call Trace: [ 707.832232][T16929] dump_stack+0x21c/0x280 [ 707.836582][T16929] kmsan_internal_chain_origin+0x6f/0x130 [ 707.842314][T16929] ? __msan_get_context_state+0x9/0x20 [ 707.847785][T16929] ? kmsan_get_metadata+0x116/0x180 [ 707.852996][T16929] ? kmsan_internal_check_memory+0xb1/0x520 [ 707.858902][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 707.864548][T16929] ? kmsan_check_memory+0xd/0x10 [ 707.869494][T16929] ? ____sys_recvmsg+0xa2d/0xd80 [ 707.874433][T16929] ? __msan_get_context_state+0x9/0x20 [ 707.879899][T16929] ? kfree+0x29/0x11b0 [ 707.883979][T16929] ? kmsan_get_metadata+0x116/0x180 [ 707.889193][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 707.894836][T16929] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 707.900910][T16929] ? _copy_from_user+0x1cd/0x2d0 [ 707.905861][T16929] ? kmsan_get_metadata+0x116/0x180 [ 707.911066][T16929] __msan_chain_origin+0x57/0xa0 [ 707.916014][T16929] do_recvmmsg+0x17ee/0x2300 [ 707.920636][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 707.926285][T16929] ? __msan_poison_alloca+0xe9/0x110 [ 707.931582][T16929] ? __se_sys_recvmmsg+0xd3/0x410 [ 707.936629][T16929] __se_sys_recvmmsg+0x247/0x410 [ 707.941581][T16929] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 707.947409][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 707.952286][T16929] do_syscall_64+0x9f/0x140 [ 707.956813][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 707.962718][T16929] RIP: 0033:0x45e159 [ 707.966643][T16929] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 707.986262][T16929] RSP: 002b:00007f7ad6bc8c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 707.995041][T16929] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 708.003027][T16929] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 708.011011][T16929] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 708.018994][T16929] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 708.026977][T16929] R13: 00000000016afb7f R14: 00007f7ad6bc99c0 R15: 000000000119bf8c [ 708.034957][T16929] Uninit was stored to memory at: [ 708.040001][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 708.045760][T16929] __msan_chain_origin+0x57/0xa0 [ 708.050712][T16929] do_recvmmsg+0x17ee/0x2300 [ 708.055318][T16929] __se_sys_recvmmsg+0x247/0x410 [ 708.060282][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 708.065147][T16929] do_syscall_64+0x9f/0x140 [ 708.069665][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 708.075555][T16929] [ 708.077882][T16929] Uninit was stored to memory at: [ 708.082918][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 708.088644][T16929] __msan_chain_origin+0x57/0xa0 [ 708.093609][T16929] do_recvmmsg+0x17ee/0x2300 [ 708.098211][T16929] __se_sys_recvmmsg+0x247/0x410 [ 708.103159][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 708.108017][T16929] do_syscall_64+0x9f/0x140 [ 708.112538][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 708.118422][T16929] [ 708.120741][T16929] Uninit was stored to memory at: [ 708.125778][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 708.131504][T16929] __msan_chain_origin+0x57/0xa0 [ 708.136457][T16929] do_recvmmsg+0x17ee/0x2300 [ 708.141075][T16929] __se_sys_recvmmsg+0x247/0x410 [ 708.146022][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 708.150889][T16929] do_syscall_64+0x9f/0x140 [ 708.155430][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 708.161329][T16929] [ 708.163665][T16929] Uninit was stored to memory at: [ 708.168711][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 708.174436][T16929] __msan_chain_origin+0x57/0xa0 [ 708.179380][T16929] do_recvmmsg+0x17ee/0x2300 [ 708.183991][T16929] __se_sys_recvmmsg+0x247/0x410 [ 708.188938][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 708.193803][T16929] do_syscall_64+0x9f/0x140 [ 708.198311][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 708.204189][T16929] [ 708.206514][T16929] Uninit was stored to memory at: [ 708.211553][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 708.217281][T16929] __msan_chain_origin+0x57/0xa0 [ 708.222230][T16929] do_recvmmsg+0x17ee/0x2300 [ 708.226832][T16929] __se_sys_recvmmsg+0x247/0x410 [ 708.231777][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 708.236640][T16929] do_syscall_64+0x9f/0x140 [ 708.241154][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 708.247055][T16929] [ 708.249381][T16929] Uninit was stored to memory at: [ 708.254421][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 708.260151][T16929] __msan_chain_origin+0x57/0xa0 [ 708.265100][T16929] do_recvmmsg+0x17ee/0x2300 [ 708.269700][T16929] __se_sys_recvmmsg+0x247/0x410 [ 708.274655][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 708.279510][T16929] do_syscall_64+0x9f/0x140 [ 708.281183][T16891] not chained 110000 origins [ 708.284017][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 708.288590][T16891] CPU: 0 PID: 16891 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 708.294446][T16929] [ 708.303182][T16891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 708.305485][T16929] Uninit was stored to memory at: [ 708.315540][T16891] Call Trace: [ 708.320560][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 708.323814][T16891] dump_stack+0x21c/0x280 [ 708.329506][T16929] __msan_chain_origin+0x57/0xa0 [ 708.333817][T16891] kmsan_internal_chain_origin+0x6f/0x130 [ 708.338727][T16929] do_recvmmsg+0x17ee/0x2300 [ 708.344421][T16891] ? __msan_get_context_state+0x9/0x20 [ 708.348999][T16929] __se_sys_recvmmsg+0x247/0x410 [ 708.354439][T16891] ? kmsan_get_metadata+0x116/0x180 [ 708.359355][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 708.364532][T16891] ? kmsan_internal_check_memory+0xb1/0x520 [ 708.369355][T16929] do_syscall_64+0x9f/0x140 [ 708.375228][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 708.379702][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 708.385308][T16891] ? kmsan_check_memory+0xd/0x10 [ 708.391169][T16929] [ 708.391187][T16929] Local variable ----msg_sys@do_recvmmsg created at: [ 708.396128][T16891] ? ____sys_recvmsg+0xa2d/0xd80 [ 708.398433][T16929] do_recvmmsg+0xbc/0x2300 [ 708.405083][T16891] ? __msan_get_context_state+0x9/0x20 [ 708.410001][T16929] do_recvmmsg+0xbc/0x2300 [ 708.414397][T16891] ? kfree+0x29/0x11b0 [ 708.428277][T16891] ? kmsan_get_metadata+0x116/0x180 [ 708.433496][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 708.439146][T16891] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 708.445315][T16891] ? _copy_from_user+0x1cd/0x2d0 [ 708.450295][T16891] ? kmsan_get_metadata+0x116/0x180 [ 708.455909][T16891] __msan_chain_origin+0x57/0xa0 [ 708.460867][T16891] do_recvmmsg+0x17ee/0x2300 [ 708.465494][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 708.471141][T16891] ? __msan_poison_alloca+0xe9/0x110 [ 708.476475][T16891] ? __se_sys_recvmmsg+0xd3/0x410 [ 708.481510][T16891] __se_sys_recvmmsg+0x247/0x410 [ 708.486550][T16891] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 708.493285][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 708.498337][T16891] do_syscall_64+0x9f/0x140 [ 708.503324][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 708.509224][T16891] RIP: 0033:0x45e159 [ 708.513608][T16891] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 708.533928][T16891] RSP: 002b:00007f92e7354c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 708.543678][T16891] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 708.551812][T16891] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 708.559789][T16891] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 708.568663][T16891] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 708.576652][T16891] R13: 00000000016afb7f R14: 00007f92e73559c0 R15: 000000000119c034 [ 708.585745][T16891] Uninit was stored to memory at: [ 708.591161][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 708.596885][T16891] __msan_chain_origin+0x57/0xa0 [ 708.601829][T16891] do_recvmmsg+0x17ee/0x2300 [ 708.606424][T16891] __se_sys_recvmmsg+0x247/0x410 [ 708.611368][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 708.616489][T16891] do_syscall_64+0x9f/0x140 [ 708.621440][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 708.627326][T16891] [ 708.629833][T16891] Uninit was stored to memory at: [ 708.635025][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 708.641820][T16891] __msan_chain_origin+0x57/0xa0 [ 708.646987][T16891] do_recvmmsg+0x17ee/0x2300 [ 708.651978][T16891] __se_sys_recvmmsg+0x247/0x410 [ 708.657123][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 708.662198][T16891] do_syscall_64+0x9f/0x140 [ 708.667198][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 708.674171][T16891] [ 708.677167][T16891] Uninit was stored to memory at: [ 708.682341][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 708.689226][T16891] __msan_chain_origin+0x57/0xa0 [ 708.694402][T16891] do_recvmmsg+0x17ee/0x2300 [ 708.699472][T16891] __se_sys_recvmmsg+0x247/0x410 [ 708.704903][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 708.710197][T16891] do_syscall_64+0x9f/0x140 [ 708.715166][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 708.721050][T16891] [ 708.723506][T16891] Uninit was stored to memory at: [ 708.728740][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 708.735627][T16891] __msan_chain_origin+0x57/0xa0 [ 708.740750][T16891] do_recvmmsg+0x17ee/0x2300 [ 708.745883][T16891] __se_sys_recvmmsg+0x247/0x410 [ 708.751026][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 708.756221][T16891] do_syscall_64+0x9f/0x140 [ 708.761242][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 708.767126][T16891] [ 708.769450][T16891] Uninit was stored to memory at: [ 708.774488][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 708.781524][T16891] __msan_chain_origin+0x57/0xa0 [ 708.786749][T16891] do_recvmmsg+0x17ee/0x2300 [ 708.791796][T16891] __se_sys_recvmmsg+0x247/0x410 [ 708.797001][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 708.802117][T16891] do_syscall_64+0x9f/0x140 [ 708.807240][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 708.814210][T16891] [ 708.817239][T16891] Uninit was stored to memory at: [ 708.822418][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 708.829354][T16891] __msan_chain_origin+0x57/0xa0 [ 708.834626][T16891] do_recvmmsg+0x17ee/0x2300 [ 708.839694][T16891] __se_sys_recvmmsg+0x247/0x410 [ 708.844916][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 708.850068][T16891] do_syscall_64+0x9f/0x140 [ 708.855208][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 708.861091][T16891] [ 708.864065][T16891] Uninit was stored to memory at: [ 708.869311][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 708.876005][T16891] __msan_chain_origin+0x57/0xa0 [ 708.881182][T16891] do_recvmmsg+0x17ee/0x2300 [ 708.886356][T16891] __se_sys_recvmmsg+0x247/0x410 [ 708.891524][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 708.896778][T16891] do_syscall_64+0x9f/0x140 [ 708.901950][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 708.909008][T16891] [ 708.912036][T16891] Local variable ----msg_sys@do_recvmmsg created at: [ 708.919257][T16891] do_recvmmsg+0xbc/0x2300 [ 708.924388][T16891] do_recvmmsg+0xbc/0x2300 [ 709.315584][T16887] not chained 120000 origins [ 709.320347][T16887] CPU: 1 PID: 16887 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 709.329120][T16887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 709.339186][T16887] Call Trace: [ 709.342494][T16887] dump_stack+0x21c/0x280 [ 709.346839][T16887] kmsan_internal_chain_origin+0x6f/0x130 [ 709.352568][T16887] ? __msan_get_context_state+0x9/0x20 [ 709.358053][T16887] ? kmsan_get_metadata+0x116/0x180 [ 709.363286][T16887] ? kmsan_internal_check_memory+0xb1/0x520 [ 709.369202][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 709.374845][T16887] ? kmsan_check_memory+0xd/0x10 [ 709.379793][T16887] ? ____sys_recvmsg+0xa2d/0xd80 [ 709.384743][T16887] ? __msan_get_context_state+0x9/0x20 [ 709.390213][T16887] ? kfree+0x29/0x11b0 [ 709.394295][T16887] ? kmsan_get_metadata+0x116/0x180 [ 709.399504][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 709.405146][T16887] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 709.411249][T16887] ? _copy_from_user+0x1cd/0x2d0 [ 709.416202][T16887] ? kmsan_get_metadata+0x116/0x180 [ 709.421398][T16887] __msan_chain_origin+0x57/0xa0 [ 709.426347][T16887] do_recvmmsg+0x17ee/0x2300 [ 709.430962][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 709.436607][T16887] ? __msan_poison_alloca+0xe9/0x110 [ 709.441896][T16887] ? __se_sys_recvmmsg+0xd3/0x410 [ 709.446924][T16887] __se_sys_recvmmsg+0x247/0x410 [ 709.451863][T16887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 709.457682][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 709.462540][T16887] do_syscall_64+0x9f/0x140 [ 709.467057][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 709.472946][T16887] RIP: 0033:0x45e159 [ 709.476844][T16887] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 709.496490][T16887] RSP: 002b:00007f92e7375c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 709.504937][T16887] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 709.512912][T16887] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 709.521325][T16887] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 709.529312][T16887] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 709.537299][T16887] R13: 00000000016afb7f R14: 00007f92e73769c0 R15: 000000000119bf8c [ 709.545277][T16887] Uninit was stored to memory at: [ 709.550320][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 709.556052][T16887] __msan_chain_origin+0x57/0xa0 [ 709.560995][T16887] do_recvmmsg+0x17ee/0x2300 [ 709.565587][T16887] __se_sys_recvmmsg+0x247/0x410 [ 709.570523][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 709.575378][T16887] do_syscall_64+0x9f/0x140 [ 709.579885][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 709.585766][T16887] [ 709.588093][T16887] Uninit was stored to memory at: [ 709.593129][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 709.598854][T16887] __msan_chain_origin+0x57/0xa0 [ 709.603802][T16887] do_recvmmsg+0x17ee/0x2300 [ 709.608395][T16887] __se_sys_recvmmsg+0x247/0x410 [ 709.613334][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 709.618192][T16887] do_syscall_64+0x9f/0x140 [ 709.622708][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 709.628586][T16887] [ 709.630924][T16887] Uninit was stored to memory at: [ 709.635978][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 709.641712][T16887] __msan_chain_origin+0x57/0xa0 [ 709.646668][T16887] do_recvmmsg+0x17ee/0x2300 [ 709.651265][T16887] __se_sys_recvmmsg+0x247/0x410 [ 709.656218][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 709.661091][T16887] do_syscall_64+0x9f/0x140 [ 709.665618][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 709.671509][T16887] [ 709.673839][T16887] Uninit was stored to memory at: [ 709.678887][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 709.684626][T16887] __msan_chain_origin+0x57/0xa0 [ 709.689582][T16887] do_recvmmsg+0x17ee/0x2300 [ 709.694187][T16887] __se_sys_recvmmsg+0x247/0x410 [ 709.699129][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 709.703983][T16887] do_syscall_64+0x9f/0x140 [ 709.708496][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 709.714382][T16887] [ 709.716408][T16931] not chained 130000 origins [ 709.716713][T16887] Uninit was stored to memory at: [ 709.721296][T16931] CPU: 0 PID: 16931 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 709.726306][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 709.735022][T16931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 709.740721][T16887] __msan_chain_origin+0x57/0xa0 [ 709.750743][T16931] Call Trace: [ 709.755664][T16887] do_recvmmsg+0x17ee/0x2300 [ 709.758933][T16931] dump_stack+0x21c/0x280 [ 709.763494][T16887] __se_sys_recvmmsg+0x247/0x410 [ 709.767886][T16931] kmsan_internal_chain_origin+0x6f/0x130 [ 709.772795][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 709.778486][T16931] ? __msan_get_context_state+0x9/0x20 [ 709.783314][T16887] do_syscall_64+0x9f/0x140 [ 709.788743][T16931] ? kmsan_get_metadata+0x116/0x180 [ 709.793223][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 709.798399][T16931] ? kmsan_internal_check_memory+0xb1/0x520 [ 709.804251][T16887] [ 709.810133][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 709.812425][T16887] Uninit was stored to memory at: [ 709.818040][T16931] ? kmsan_check_memory+0xd/0x10 [ 709.823055][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 709.828398][T16931] ? ____sys_recvmsg+0xa2d/0xd80 [ 709.834088][T16887] __msan_chain_origin+0x57/0xa0 [ 709.838999][T16931] ? __msan_get_context_state+0x9/0x20 [ 709.843911][T16887] do_recvmmsg+0x17ee/0x2300 [ 709.849354][T16931] ? kfree+0x29/0x11b0 [ 709.853917][T16887] __se_sys_recvmmsg+0x247/0x410 [ 709.857959][T16931] ? kmsan_get_metadata+0x116/0x180 [ 709.862871][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 709.868046][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 709.872960][T16887] do_syscall_64+0x9f/0x140 [ 709.878567][T16931] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 709.883055][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 709.889105][T16931] ? _copy_from_user+0x1cd/0x2d0 [ 709.894981][T16887] [ 709.899903][T16931] ? kmsan_get_metadata+0x116/0x180 [ 709.902201][T16887] Uninit was stored to memory at: [ 709.907381][T16931] __msan_chain_origin+0x57/0xa0 [ 709.912386][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 709.917294][T16931] do_recvmmsg+0x17ee/0x2300 [ 709.922983][T16887] __msan_chain_origin+0x57/0xa0 [ 709.927555][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 709.932465][T16887] do_recvmmsg+0x17ee/0x2300 [ 709.938086][T16931] ? __msan_poison_alloca+0xe9/0x110 [ 709.942653][T16887] __se_sys_recvmmsg+0x247/0x410 [ 709.947911][T16931] ? __se_sys_recvmmsg+0xd3/0x410 [ 709.953094][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 709.958093][T16931] __se_sys_recvmmsg+0x247/0x410 [ 709.962919][T16887] do_syscall_64+0x9f/0x140 [ 709.967841][T16931] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 709.972317][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 709.978096][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 709.983951][T16887] [ 709.988790][T16931] do_syscall_64+0x9f/0x140 [ 709.991086][T16887] Local variable ----msg_sys@do_recvmmsg created at: [ 709.995587][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 710.002233][T16887] do_recvmmsg+0xbc/0x2300 [ 710.008123][T16931] RIP: 0033:0x45e159 [ 710.012515][T16887] do_recvmmsg+0xbc/0x2300 [ 710.016396][T16931] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 710.040367][T16931] RSP: 002b:00007f7ad6ba7c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 710.048794][T16931] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 710.056778][T16931] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 710.064890][T16931] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 710.072923][T16931] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 710.080892][T16931] R13: 00000000016afb7f R14: 00007f7ad6ba89c0 R15: 000000000119c034 [ 710.088855][T16931] Uninit was stored to memory at: [ 710.093876][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 710.099588][T16931] __msan_chain_origin+0x57/0xa0 [ 710.104517][T16931] do_recvmmsg+0x17ee/0x2300 [ 710.109096][T16931] __se_sys_recvmmsg+0x247/0x410 [ 710.114043][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 710.118883][T16931] do_syscall_64+0x9f/0x140 [ 710.123377][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 710.129245][T16931] [ 710.131555][T16931] Uninit was stored to memory at: [ 710.136574][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 710.142280][T16931] __msan_chain_origin+0x57/0xa0 [ 710.147206][T16931] do_recvmmsg+0x17ee/0x2300 [ 710.151786][T16931] __se_sys_recvmmsg+0x247/0x410 [ 710.156713][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 710.161552][T16931] do_syscall_64+0x9f/0x140 [ 710.166057][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 710.171927][T16931] [ 710.174242][T16931] Uninit was stored to memory at: [ 710.179262][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 710.184967][T16931] __msan_chain_origin+0x57/0xa0 [ 710.189897][T16931] do_recvmmsg+0x17ee/0x2300 [ 710.194475][T16931] __se_sys_recvmmsg+0x247/0x410 [ 710.199402][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 710.204242][T16931] do_syscall_64+0x9f/0x140 [ 710.208736][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 710.214603][T16931] [ 710.216913][T16931] Uninit was stored to memory at: [ 710.221928][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 710.227639][T16931] __msan_chain_origin+0x57/0xa0 [ 710.232562][T16931] do_recvmmsg+0x17ee/0x2300 [ 710.237140][T16931] __se_sys_recvmmsg+0x247/0x410 [ 710.242065][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 710.246903][T16931] do_syscall_64+0x9f/0x140 [ 710.251394][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 710.257263][T16931] [ 710.259574][T16931] Uninit was stored to memory at: [ 710.264592][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 710.270296][T16931] __msan_chain_origin+0x57/0xa0 [ 710.275222][T16931] do_recvmmsg+0x17ee/0x2300 [ 710.279802][T16931] __se_sys_recvmmsg+0x247/0x410 [ 710.284727][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 710.289567][T16931] do_syscall_64+0x9f/0x140 [ 710.294060][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 710.299929][T16931] [ 710.302240][T16931] Uninit was stored to memory at: [ 710.307273][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 710.312978][T16931] __msan_chain_origin+0x57/0xa0 [ 710.317903][T16931] do_recvmmsg+0x17ee/0x2300 [ 710.322483][T16931] __se_sys_recvmmsg+0x247/0x410 [ 710.327407][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 710.332247][T16931] do_syscall_64+0x9f/0x140 [ 710.336736][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 710.342607][T16931] [ 710.344919][T16931] Uninit was stored to memory at: [ 710.349953][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 710.355658][T16931] __msan_chain_origin+0x57/0xa0 [ 710.360583][T16931] do_recvmmsg+0x17ee/0x2300 [ 710.365162][T16931] __se_sys_recvmmsg+0x247/0x410 [ 710.370089][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 710.374932][T16931] do_syscall_64+0x9f/0x140 [ 710.379425][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 710.385305][T16931] [ 710.387618][T16931] Local variable ----msg_sys@do_recvmmsg created at: [ 710.394296][T16931] do_recvmmsg+0xbc/0x2300 [ 710.398701][T16931] do_recvmmsg+0xbc/0x2300 [ 711.479033][T16929] not chained 140000 origins [ 711.483679][T16929] CPU: 1 PID: 16929 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 711.492446][T16929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 711.502617][T16929] Call Trace: [ 711.505928][T16929] dump_stack+0x21c/0x280 [ 711.510277][T16929] kmsan_internal_chain_origin+0x6f/0x130 [ 711.516012][T16929] ? __msan_get_context_state+0x9/0x20 [ 711.521482][T16929] ? kmsan_get_metadata+0x116/0x180 [ 711.526697][T16929] ? kmsan_internal_check_memory+0xb1/0x520 [ 711.532606][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 711.538284][T16929] ? kmsan_check_memory+0xd/0x10 [ 711.543241][T16929] ? ____sys_recvmsg+0xa2d/0xd80 [ 711.548193][T16929] ? __msan_get_context_state+0x9/0x20 [ 711.553674][T16929] ? kfree+0x29/0x11b0 [ 711.557750][T16929] ? kmsan_get_metadata+0x116/0x180 [ 711.562965][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 711.568612][T16929] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 711.574691][T16929] ? _copy_from_user+0x1cd/0x2d0 [ 711.579639][T16929] ? kmsan_get_metadata+0x116/0x180 [ 711.584839][T16929] __msan_chain_origin+0x57/0xa0 [ 711.589790][T16929] do_recvmmsg+0x17ee/0x2300 [ 711.594404][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 711.600038][T16929] ? __msan_poison_alloca+0xe9/0x110 [ 711.605332][T16929] ? __se_sys_recvmmsg+0xd3/0x410 [ 711.610369][T16929] __se_sys_recvmmsg+0x247/0x410 [ 711.615317][T16929] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 711.621139][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 711.626005][T16929] do_syscall_64+0x9f/0x140 [ 711.630539][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 711.636444][T16929] RIP: 0033:0x45e159 [ 711.640357][T16929] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 711.659979][T16929] RSP: 002b:00007f7ad6bc8c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 711.668415][T16929] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 711.676400][T16929] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 711.684381][T16929] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 711.692368][T16929] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 711.700353][T16929] R13: 00000000016afb7f R14: 00007f7ad6bc99c0 R15: 000000000119bf8c [ 711.708330][T16929] Uninit was stored to memory at: [ 711.713373][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 711.719101][T16929] __msan_chain_origin+0x57/0xa0 [ 711.724049][T16929] do_recvmmsg+0x17ee/0x2300 [ 711.728641][T16929] __se_sys_recvmmsg+0x247/0x410 [ 711.733585][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 711.738447][T16929] do_syscall_64+0x9f/0x140 [ 711.742956][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 711.748840][T16929] [ 711.751164][T16929] Uninit was stored to memory at: [ 711.756206][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 711.761924][T16929] __msan_chain_origin+0x57/0xa0 [ 711.766858][T16929] do_recvmmsg+0x17ee/0x2300 [ 711.771443][T16929] __se_sys_recvmmsg+0x247/0x410 [ 711.776384][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 711.781242][T16929] do_syscall_64+0x9f/0x140 [ 711.785754][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 711.791632][T16929] [ 711.793955][T16929] Uninit was stored to memory at: [ 711.798988][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 711.804714][T16929] __msan_chain_origin+0x57/0xa0 [ 711.809661][T16929] do_recvmmsg+0x17ee/0x2300 [ 711.814258][T16929] __se_sys_recvmmsg+0x247/0x410 [ 711.819199][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 711.824049][T16929] do_syscall_64+0x9f/0x140 [ 711.828551][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 711.834433][T16929] [ 711.836772][T16929] Uninit was stored to memory at: [ 711.841814][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 711.847541][T16929] __msan_chain_origin+0x57/0xa0 [ 711.852487][T16929] do_recvmmsg+0x17ee/0x2300 [ 711.857079][T16929] __se_sys_recvmmsg+0x247/0x410 [ 711.862019][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 711.866876][T16929] do_syscall_64+0x9f/0x140 [ 711.871386][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 711.877271][T16929] [ 711.879599][T16929] Uninit was stored to memory at: [ 711.881837][T16891] not chained 150000 origins [ 711.884650][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 711.889217][T16891] CPU: 0 PID: 16891 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 711.894914][T16929] __msan_chain_origin+0x57/0xa0 [ 711.903727][T16891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 711.908660][T16929] do_recvmmsg+0x17ee/0x2300 [ 711.918682][T16891] Call Trace: [ 711.923254][T16929] __se_sys_recvmmsg+0x247/0x410 [ 711.926516][T16891] dump_stack+0x21c/0x280 [ 711.931426][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 711.935734][T16891] kmsan_internal_chain_origin+0x6f/0x130 [ 711.940556][T16929] do_syscall_64+0x9f/0x140 [ 711.946245][T16891] ? __msan_get_context_state+0x9/0x20 [ 711.950724][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 711.956155][T16891] ? kmsan_get_metadata+0x116/0x180 [ 711.962007][T16929] [ 711.967321][T16891] ? kmsan_internal_check_memory+0xb1/0x520 [ 711.969616][T16929] Uninit was stored to memory at: [ 711.975501][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 711.980519][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 711.986137][T16891] ? kmsan_check_memory+0xd/0x10 [ 711.991830][T16929] __msan_chain_origin+0x57/0xa0 [ 711.996758][T16891] ? ____sys_recvmsg+0xa2d/0xd80 [ 712.001684][T16929] do_recvmmsg+0x17ee/0x2300 [ 712.006603][T16891] ? __msan_get_context_state+0x9/0x20 [ 712.011174][T16929] __se_sys_recvmmsg+0x247/0x410 [ 712.016605][T16891] ? kfree+0x29/0x11b0 [ 712.021521][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 712.025560][T16891] ? kmsan_get_metadata+0x116/0x180 [ 712.030388][T16929] do_syscall_64+0x9f/0x140 [ 712.035563][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 712.040057][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 712.045667][T16891] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 712.051517][T16929] [ 712.057584][T16891] ? _copy_from_user+0x1cd/0x2d0 [ 712.059877][T16929] Uninit was stored to memory at: [ 712.064796][T16891] ? kmsan_get_metadata+0x116/0x180 [ 712.069801][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 712.074983][T16891] __msan_chain_origin+0x57/0xa0 [ 712.080675][T16929] __msan_chain_origin+0x57/0xa0 [ 712.085588][T16891] do_recvmmsg+0x17ee/0x2300 [ 712.090514][T16929] do_recvmmsg+0x17ee/0x2300 [ 712.095088][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 712.099645][T16929] __se_sys_recvmmsg+0x247/0x410 [ 712.105270][T16891] ? __msan_poison_alloca+0xe9/0x110 [ 712.110182][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 712.115440][T16891] ? __se_sys_recvmmsg+0xd3/0x410 [ 712.120266][T16929] do_syscall_64+0x9f/0x140 [ 712.125274][T16891] __se_sys_recvmmsg+0x247/0x410 [ 712.129750][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 712.134749][T16891] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 712.140602][T16929] [ 712.146406][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 712.148701][T16929] Local variable ----msg_sys@do_recvmmsg created at: [ 712.153535][T16891] do_syscall_64+0x9f/0x140 [ 712.160178][T16929] do_recvmmsg+0xbc/0x2300 [ 712.164671][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 712.169094][T16929] do_recvmmsg+0xbc/0x2300 [ 712.174955][T16891] RIP: 0033:0x45e159 [ 712.183227][T16891] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 712.202852][T16891] RSP: 002b:00007f92e7354c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 712.211282][T16891] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 712.219267][T16891] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 712.227250][T16891] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 712.235235][T16891] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 712.244548][T16891] R13: 00000000016afb7f R14: 00007f92e73559c0 R15: 000000000119c034 [ 712.252701][T16891] Uninit was stored to memory at: [ 712.258705][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 712.265062][T16891] __msan_chain_origin+0x57/0xa0 [ 712.271164][T16891] do_recvmmsg+0x17ee/0x2300 [ 712.277279][T16891] __se_sys_recvmmsg+0x247/0x410 [ 712.283497][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 712.289694][T16891] do_syscall_64+0x9f/0x140 [ 712.295771][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 712.302140][T16891] [ 712.304769][T16891] Uninit was stored to memory at: [ 712.310936][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 712.317294][T16891] __msan_chain_origin+0x57/0xa0 [ 712.323463][T16891] do_recvmmsg+0x17ee/0x2300 [ 712.329573][T16891] __se_sys_recvmmsg+0x247/0x410 [ 712.335753][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 712.341857][T16891] do_syscall_64+0x9f/0x140 [ 712.347989][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 712.353875][T16891] [ 712.357122][T16891] Uninit was stored to memory at: [ 712.363393][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 712.369870][T16891] __msan_chain_origin+0x57/0xa0 [ 712.376090][T16891] do_recvmmsg+0x17ee/0x2300 [ 712.382192][T16891] __se_sys_recvmmsg+0x247/0x410 [ 712.388405][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 712.394597][T16891] do_syscall_64+0x9f/0x140 [ 712.400642][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 712.407084][T16891] [ 712.410583][T16891] Uninit was stored to memory at: [ 712.416846][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 712.423201][T16891] __msan_chain_origin+0x57/0xa0 [ 712.429420][T16891] do_recvmmsg+0x17ee/0x2300 [ 712.435566][T16891] __se_sys_recvmmsg+0x247/0x410 [ 712.441717][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 712.448361][T16891] do_syscall_64+0x9f/0x140 [ 712.452877][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 712.460043][T16891] [ 712.463672][T16891] Uninit was stored to memory at: [ 712.469965][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 712.476386][T16891] __msan_chain_origin+0x57/0xa0 [ 712.482601][T16891] do_recvmmsg+0x17ee/0x2300 [ 712.488774][T16891] __se_sys_recvmmsg+0x247/0x410 [ 712.495011][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 712.501192][T16891] do_syscall_64+0x9f/0x140 [ 712.507368][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 712.513783][T16891] [ 712.516429][T16891] Uninit was stored to memory at: [ 712.522687][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 712.529137][T16891] __msan_chain_origin+0x57/0xa0 [ 712.535460][T16891] do_recvmmsg+0x17ee/0x2300 [ 712.541573][T16891] __se_sys_recvmmsg+0x247/0x410 [ 712.547864][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 712.554193][T16891] do_syscall_64+0x9f/0x140 [ 712.560528][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 712.567016][T16891] [ 712.569611][T16891] Uninit was stored to memory at: [ 712.575931][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 712.582351][T16891] __msan_chain_origin+0x57/0xa0 [ 712.588650][T16891] do_recvmmsg+0x17ee/0x2300 [ 712.594849][T16891] __se_sys_recvmmsg+0x247/0x410 [ 712.601049][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 712.607335][T16891] do_syscall_64+0x9f/0x140 [ 712.613577][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 712.620131][T16891] [ 712.623770][T16891] Local variable ----msg_sys@do_recvmmsg created at: [ 712.630525][T16891] do_recvmmsg+0xbc/0x2300 [ 712.636870][T16891] do_recvmmsg+0xbc/0x2300 [ 713.071202][T16931] not chained 160000 origins [ 713.075834][T16931] CPU: 1 PID: 16931 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 713.084594][T16931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 713.094656][T16931] Call Trace: [ 713.097965][T16931] dump_stack+0x21c/0x280 [ 713.102311][T16931] kmsan_internal_chain_origin+0x6f/0x130 [ 713.108034][T16931] ? __msan_get_context_state+0x9/0x20 [ 713.113484][T16931] ? kmsan_get_metadata+0x116/0x180 [ 713.118697][T16931] ? kmsan_internal_check_memory+0xb1/0x520 [ 713.124582][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 713.130205][T16931] ? kmsan_check_memory+0xd/0x10 [ 713.135133][T16931] ? ____sys_recvmsg+0xa2d/0xd80 [ 713.140081][T16931] ? __msan_get_context_state+0x9/0x20 [ 713.145529][T16931] ? kfree+0x29/0x11b0 [ 713.149586][T16931] ? kmsan_get_metadata+0x116/0x180 [ 713.154778][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 713.160499][T16931] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 713.166560][T16931] ? _copy_from_user+0x1cd/0x2d0 [ 713.171498][T16931] ? kmsan_get_metadata+0x116/0x180 [ 713.176689][T16931] __msan_chain_origin+0x57/0xa0 [ 713.181620][T16931] do_recvmmsg+0x17ee/0x2300 [ 713.186215][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 713.191842][T16931] ? __msan_poison_alloca+0xe9/0x110 [ 713.197117][T16931] ? __se_sys_recvmmsg+0xd3/0x410 [ 713.202136][T16931] __se_sys_recvmmsg+0x247/0x410 [ 713.207082][T16931] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 713.212887][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 713.217738][T16931] do_syscall_64+0x9f/0x140 [ 713.222688][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 713.228571][T16931] RIP: 0033:0x45e159 [ 713.232462][T16931] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 713.252179][T16931] RSP: 002b:00007f7ad6ba7c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 713.260591][T16931] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 713.268562][T16931] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 713.276573][T16931] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 713.284566][T16931] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 713.292632][T16931] R13: 00000000016afb7f R14: 00007f7ad6ba89c0 R15: 000000000119c034 [ 713.300598][T16931] Uninit was stored to memory at: [ 713.305652][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 713.311366][T16931] __msan_chain_origin+0x57/0xa0 [ 713.316299][T16931] do_recvmmsg+0x17ee/0x2300 [ 713.320883][T16931] __se_sys_recvmmsg+0x247/0x410 [ 713.325845][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 713.330694][T16931] do_syscall_64+0x9f/0x140 [ 713.335222][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 713.341097][T16931] [ 713.343414][T16931] Uninit was stored to memory at: [ 713.348440][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 713.354259][T16931] __msan_chain_origin+0x57/0xa0 [ 713.359242][T16931] do_recvmmsg+0x17ee/0x2300 [ 713.363831][T16931] __se_sys_recvmmsg+0x247/0x410 [ 713.368768][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 713.373622][T16931] do_syscall_64+0x9f/0x140 [ 713.378124][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 713.384009][T16931] [ 713.386330][T16931] Uninit was stored to memory at: [ 713.391360][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 713.397099][T16931] __msan_chain_origin+0x57/0xa0 [ 713.402036][T16931] do_recvmmsg+0x17ee/0x2300 [ 713.406626][T16931] __se_sys_recvmmsg+0x247/0x410 [ 713.411560][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 713.416410][T16931] do_syscall_64+0x9f/0x140 [ 713.420909][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 713.426789][T16931] [ 713.429110][T16931] Uninit was stored to memory at: [ 713.434140][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 713.439862][T16931] __msan_chain_origin+0x57/0xa0 [ 713.444805][T16931] do_recvmmsg+0x17ee/0x2300 [ 713.449398][T16931] __se_sys_recvmmsg+0x247/0x410 [ 713.454338][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 713.459189][T16931] do_syscall_64+0x9f/0x140 [ 713.463757][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 713.469639][T16931] [ 713.471962][T16931] Uninit was stored to memory at: [ 713.476996][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 713.482713][T16931] __msan_chain_origin+0x57/0xa0 [ 713.487652][T16931] do_recvmmsg+0x17ee/0x2300 [ 713.492240][T16931] __se_sys_recvmmsg+0x247/0x410 [ 713.497179][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 713.502035][T16931] do_syscall_64+0x9f/0x140 [ 713.506542][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 713.512419][T16931] [ 713.514743][T16931] Uninit was stored to memory at: [ 713.519772][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 713.525487][T16931] __msan_chain_origin+0x57/0xa0 [ 713.530422][T16931] do_recvmmsg+0x17ee/0x2300 [ 713.535012][T16931] __se_sys_recvmmsg+0x247/0x410 [ 713.539949][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 713.544799][T16931] do_syscall_64+0x9f/0x140 [ 713.549303][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 713.555183][T16931] [ 713.557505][T16931] Uninit was stored to memory at: [ 713.562680][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 713.568398][T16931] __msan_chain_origin+0x57/0xa0 [ 713.573335][T16931] do_recvmmsg+0x17ee/0x2300 [ 713.577925][T16931] __se_sys_recvmmsg+0x247/0x410 [ 713.582864][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 713.587716][T16931] do_syscall_64+0x9f/0x140 [ 713.592221][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 713.598102][T16931] [ 713.600445][T16931] Local variable ----msg_sys@do_recvmmsg created at: [ 713.607118][T16931] do_recvmmsg+0xbc/0x2300 [ 713.611536][T16931] do_recvmmsg+0xbc/0x2300 [ 714.276168][T16887] not chained 170000 origins [ 714.280971][T16887] CPU: 1 PID: 16887 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 714.289747][T16887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 714.299823][T16887] Call Trace: [ 714.303145][T16887] dump_stack+0x21c/0x280 [ 714.307510][T16887] kmsan_internal_chain_origin+0x6f/0x130 [ 714.313246][T16887] ? __msan_get_context_state+0x9/0x20 [ 714.318873][T16887] ? kmsan_get_metadata+0x116/0x180 [ 714.324099][T16887] ? kmsan_internal_check_memory+0xb1/0x520 [ 714.330009][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 714.335662][T16887] ? kmsan_check_memory+0xd/0x10 [ 714.340619][T16887] ? ____sys_recvmsg+0xa2d/0xd80 [ 714.345576][T16887] ? __msan_get_context_state+0x9/0x20 [ 714.351063][T16887] ? kfree+0x29/0x11b0 [ 714.355234][T16887] ? kmsan_get_metadata+0x116/0x180 [ 714.360454][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 714.366156][T16887] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 714.372242][T16887] ? _copy_from_user+0x1cd/0x2d0 [ 714.377202][T16887] ? kmsan_get_metadata+0x116/0x180 [ 714.382420][T16887] __msan_chain_origin+0x57/0xa0 [ 714.387376][T16887] do_recvmmsg+0x17ee/0x2300 [ 714.392082][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 714.397727][T16887] ? __msan_poison_alloca+0xe9/0x110 [ 714.403035][T16887] ? __se_sys_recvmmsg+0xd3/0x410 [ 714.408079][T16887] __se_sys_recvmmsg+0x247/0x410 [ 714.413037][T16887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 714.418864][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 714.423738][T16887] do_syscall_64+0x9f/0x140 [ 714.428259][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 714.434167][T16887] RIP: 0033:0x45e159 [ 714.438166][T16887] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 714.457793][T16887] RSP: 002b:00007f92e7375c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 714.466233][T16887] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 714.474220][T16887] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 714.482289][T16887] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 714.490403][T16887] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 714.498399][T16887] R13: 00000000016afb7f R14: 00007f92e73769c0 R15: 000000000119bf8c [ 714.506388][T16887] Uninit was stored to memory at: [ 714.511438][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 714.517178][T16887] __msan_chain_origin+0x57/0xa0 [ 714.522139][T16887] do_recvmmsg+0x17ee/0x2300 [ 714.526751][T16887] __se_sys_recvmmsg+0x247/0x410 [ 714.531709][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 714.536571][T16887] do_syscall_64+0x9f/0x140 [ 714.541089][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 714.547132][T16887] [ 714.549474][T16887] Uninit was stored to memory at: [ 714.554598][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 714.560324][T16887] __msan_chain_origin+0x57/0xa0 [ 714.565275][T16887] do_recvmmsg+0x17ee/0x2300 [ 714.569875][T16887] __se_sys_recvmmsg+0x247/0x410 [ 714.574822][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 714.579681][T16887] do_syscall_64+0x9f/0x140 [ 714.584202][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 714.590091][T16887] [ 714.592426][T16887] Uninit was stored to memory at: [ 714.596069][T16929] not chained 180000 origins [ 714.597468][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 714.602193][T16929] CPU: 0 PID: 16929 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 714.607899][T16887] __msan_chain_origin+0x57/0xa0 [ 714.616633][T16929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 714.621774][T16887] do_recvmmsg+0x17ee/0x2300 [ 714.631806][T16929] Call Trace: [ 714.636393][T16887] __se_sys_recvmmsg+0x247/0x410 [ 714.639668][T16929] dump_stack+0x21c/0x280 [ 714.644587][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 714.649043][T16929] kmsan_internal_chain_origin+0x6f/0x130 [ 714.653889][T16887] do_syscall_64+0x9f/0x140 [ 714.659609][T16929] ? kmsan_get_metadata+0x116/0x180 [ 714.664110][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 714.669451][T16929] ? kmsan_internal_check_memory+0xb1/0x520 [ 714.675447][T16887] [ 714.681352][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 714.683649][T16887] Uninit was stored to memory at: [ 714.689290][T16929] ? kmsan_check_memory+0xd/0x10 [ 714.694306][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 714.699228][T16929] ? ____sys_recvmsg+0xa2d/0xd80 [ 714.704926][T16887] __msan_chain_origin+0x57/0xa0 [ 714.709848][T16929] ? __msan_get_context_state+0x9/0x20 [ 714.714774][T16887] do_recvmmsg+0x17ee/0x2300 [ 714.720217][T16929] ? kfree+0x29/0x11b0 [ 714.724788][T16887] __se_sys_recvmmsg+0x247/0x410 [ 714.728840][T16929] ? kmsan_get_metadata+0x116/0x180 [ 714.733765][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 714.738948][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 714.743799][T16887] do_syscall_64+0x9f/0x140 [ 714.749418][T16929] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 714.753902][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 714.759966][T16929] ? _copy_from_user+0x1cd/0x2d0 [ 714.765832][T16887] [ 714.770765][T16929] ? kmsan_get_metadata+0x116/0x180 [ 714.773077][T16887] Uninit was stored to memory at: [ 714.778263][T16929] __msan_chain_origin+0x57/0xa0 [ 714.783371][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 714.788295][T16929] do_recvmmsg+0x17ee/0x2300 [ 714.794241][T16887] __msan_chain_origin+0x57/0xa0 [ 714.798835][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 714.803821][T16887] do_recvmmsg+0x17ee/0x2300 [ 714.809437][T16929] ? __msan_poison_alloca+0xe9/0x110 [ 714.814016][T16887] __se_sys_recvmmsg+0x247/0x410 [ 714.819284][T16929] ? __se_sys_recvmmsg+0xd3/0x410 [ 714.824210][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 714.829225][T16929] __se_sys_recvmmsg+0x247/0x410 [ 714.834061][T16887] do_syscall_64+0x9f/0x140 [ 714.838981][T16929] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 714.843467][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 714.849261][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 714.855125][T16887] [ 714.859972][T16929] do_syscall_64+0x9f/0x140 [ 714.862274][T16887] Uninit was stored to memory at: [ 714.866770][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 714.871783][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 714.877652][T16929] RIP: 0033:0x45e159 [ 714.883359][T16887] __msan_chain_origin+0x57/0xa0 [ 714.887241][T16929] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 714.892168][T16887] do_recvmmsg+0x17ee/0x2300 [ 714.911803][T16929] RSP: 002b:00007f7ad6bc8c68 EFLAGS: 00000246 [ 714.916381][T16887] __se_sys_recvmmsg+0x247/0x410 [ 714.916398][T16929] ORIG_RAX: 000000000000012b [ 714.922516][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 714.927436][T16929] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 714.932108][T16887] do_syscall_64+0x9f/0x140 [ 714.936934][T16929] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 714.944899][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 714.949384][T16929] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 714.957338][T16887] [ 714.963329][T16929] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 714.971283][T16887] Uninit was stored to memory at: [ 714.973606][T16929] R13: 00000000016afb7f R14: 00007f7ad6bc99c0 R15: 000000000119bf8c [ 714.981578][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 714.986571][T16929] Uninit was stored to memory at: [ 714.994666][T16887] __msan_chain_origin+0x57/0xa0 [ 715.000432][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 715.005444][T16887] do_recvmmsg+0x17ee/0x2300 [ 715.010365][T16929] __msan_chain_origin+0x57/0xa0 [ 715.016070][T16887] __se_sys_recvmmsg+0x247/0x410 [ 715.020643][T16929] do_recvmmsg+0x17ee/0x2300 [ 715.025567][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 715.030639][T16929] __se_sys_recvmmsg+0x247/0x410 [ 715.035205][T16887] do_syscall_64+0x9f/0x140 [ 715.035230][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 715.040068][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 715.044977][T16887] [ 715.049479][T16929] do_syscall_64+0x9f/0x140 [ 715.055433][T16887] Local variable ----msg_sys@do_recvmmsg created at: [ 715.060280][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 715.062595][T16887] do_recvmmsg+0xbc/0x2300 [ 715.067071][T16929] [ 715.073743][T16887] do_recvmmsg+0xbc/0x2300 [ 715.079715][T16929] Uninit was stored to memory at: [ 715.095956][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 715.101692][T16929] __msan_chain_origin+0x57/0xa0 [ 715.106734][T16929] do_recvmmsg+0x17ee/0x2300 [ 715.111379][T16929] __se_sys_recvmmsg+0x247/0x410 [ 715.116337][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 715.121210][T16929] do_syscall_64+0x9f/0x140 [ 715.125727][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 715.133062][T16929] [ 715.135405][T16929] Uninit was stored to memory at: [ 715.140461][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 715.146346][T16929] __msan_chain_origin+0x57/0xa0 [ 715.153420][T16929] do_recvmmsg+0x17ee/0x2300 [ 715.158030][T16929] __se_sys_recvmmsg+0x247/0x410 [ 715.167468][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 715.174472][T16929] do_syscall_64+0x9f/0x140 [ 715.178998][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 715.188623][T16929] [ 715.192632][T16929] Uninit was stored to memory at: [ 715.199762][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 715.207084][T16929] __msan_chain_origin+0x57/0xa0 [ 715.214215][T16929] do_recvmmsg+0x17ee/0x2300 [ 715.218945][T16929] __se_sys_recvmmsg+0x247/0x410 [ 715.224590][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 715.231699][T16929] do_syscall_64+0x9f/0x140 [ 715.236232][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 715.242501][T16929] [ 715.246583][T16929] Uninit was stored to memory at: [ 715.253717][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 715.260959][T16929] __msan_chain_origin+0x57/0xa0 [ 715.268089][T16929] do_recvmmsg+0x17ee/0x2300 [ 715.272698][T16929] __se_sys_recvmmsg+0x247/0x410 [ 715.278673][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 715.285710][T16929] do_syscall_64+0x9f/0x140 [ 715.290238][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 715.297540][T16929] [ 715.300525][T16929] Uninit was stored to memory at: [ 715.307715][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 715.314976][T16929] __msan_chain_origin+0x57/0xa0 [ 715.320057][T16929] do_recvmmsg+0x17ee/0x2300 [ 715.325302][T16929] __se_sys_recvmmsg+0x247/0x410 [ 715.332422][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 715.339489][T16929] do_syscall_64+0x9f/0x140 [ 715.344015][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 715.351276][T16929] [ 715.354334][T16929] Uninit was stored to memory at: [ 715.361469][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 715.368780][T16929] __msan_chain_origin+0x57/0xa0 [ 715.375898][T16929] do_recvmmsg+0x17ee/0x2300 [ 715.382895][T16929] __se_sys_recvmmsg+0x247/0x410 [ 715.390033][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 715.397199][T16929] do_syscall_64+0x9f/0x140 [ 715.401722][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 715.409024][T16929] [ 715.412023][T16929] Local variable ----msg_sys@do_recvmmsg created at: [ 715.419557][T16929] do_recvmmsg+0xbc/0x2300 [ 715.424008][T16929] do_recvmmsg+0xbc/0x2300 [ 715.709707][T16891] not chained 190000 origins [ 715.715085][T16891] CPU: 0 PID: 16891 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 715.723858][T16891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 715.733933][T16891] Call Trace: [ 715.737246][T16891] dump_stack+0x21c/0x280 [ 715.741800][T16891] kmsan_internal_chain_origin+0x6f/0x130 [ 715.747539][T16891] ? __msan_get_context_state+0x9/0x20 [ 715.753032][T16891] ? kmsan_get_metadata+0x116/0x180 [ 715.759829][T16891] ? kmsan_internal_check_memory+0xb1/0x520 [ 715.765755][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 715.771405][T16891] ? kmsan_check_memory+0xd/0x10 [ 715.776379][T16891] ? ____sys_recvmsg+0xa2d/0xd80 [ 715.781331][T16891] ? __msan_get_context_state+0x9/0x20 [ 715.786812][T16891] ? kfree+0x29/0x11b0 [ 715.792712][T16891] ? kmsan_get_metadata+0x116/0x180 [ 715.797930][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 715.803582][T16891] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 715.809668][T16891] ? _copy_from_user+0x1cd/0x2d0 [ 715.816423][T16891] ? kmsan_get_metadata+0x116/0x180 [ 715.821780][T16891] __msan_chain_origin+0x57/0xa0 [ 715.826738][T16891] do_recvmmsg+0x17ee/0x2300 [ 715.831350][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 715.837433][T16891] ? __msan_poison_alloca+0xe9/0x110 [ 715.842830][T16891] ? __se_sys_recvmmsg+0xd3/0x410 [ 715.847873][T16891] __se_sys_recvmmsg+0x247/0x410 [ 715.852831][T16891] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 715.858768][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 715.863634][T16891] do_syscall_64+0x9f/0x140 [ 715.868152][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 715.875751][T16891] RIP: 0033:0x45e159 [ 715.879670][T16891] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 715.899415][T16891] RSP: 002b:00007f92e7354c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 715.907854][T16891] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 715.915932][T16891] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 715.923918][T16891] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 715.931901][T16891] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 715.941748][T16891] R13: 00000000016afb7f R14: 00007f92e73559c0 R15: 000000000119c034 [ 715.949745][T16891] Uninit was stored to memory at: [ 715.954884][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 715.960611][T16891] __msan_chain_origin+0x57/0xa0 [ 715.966495][T16891] do_recvmmsg+0x17ee/0x2300 [ 715.971102][T16891] __se_sys_recvmmsg+0x247/0x410 [ 715.976059][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 715.980923][T16891] do_syscall_64+0x9f/0x140 [ 715.985443][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 715.991335][T16891] [ 715.993668][T16891] Uninit was stored to memory at: [ 715.998714][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 716.005910][T16891] __msan_chain_origin+0x57/0xa0 [ 716.013336][T16891] do_recvmmsg+0x17ee/0x2300 [ 716.017944][T16891] __se_sys_recvmmsg+0x247/0x410 [ 716.022893][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 716.027760][T16891] do_syscall_64+0x9f/0x140 [ 716.032283][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 716.038285][T16891] [ 716.040624][T16891] Uninit was stored to memory at: [ 716.045670][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 716.053317][T16891] __msan_chain_origin+0x57/0xa0 [ 716.060601][T16891] do_recvmmsg+0x17ee/0x2300 [ 716.065212][T16891] __se_sys_recvmmsg+0x247/0x410 [ 716.070170][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 716.075043][T16891] do_syscall_64+0x9f/0x140 [ 716.079571][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 716.085459][T16891] [ 716.087794][T16891] Uninit was stored to memory at: [ 716.095074][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 716.102565][T16891] __msan_chain_origin+0x57/0xa0 [ 716.107522][T16891] do_recvmmsg+0x17ee/0x2300 [ 716.112129][T16891] __se_sys_recvmmsg+0x247/0x410 [ 716.119381][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 716.124257][T16891] do_syscall_64+0x9f/0x140 [ 716.128777][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 716.134678][T16891] [ 716.137011][T16891] Uninit was stored to memory at: [ 716.142055][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 716.147789][T16891] __msan_chain_origin+0x57/0xa0 [ 716.152742][T16891] do_recvmmsg+0x17ee/0x2300 [ 716.157353][T16891] __se_sys_recvmmsg+0x247/0x410 [ 716.162304][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 716.167170][T16891] do_syscall_64+0x9f/0x140 [ 716.171684][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 716.178501][T16891] [ 716.182649][T16891] Uninit was stored to memory at: [ 716.187703][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 716.193613][T16891] __msan_chain_origin+0x57/0xa0 [ 716.198567][T16891] do_recvmmsg+0x17ee/0x2300 [ 716.203171][T16891] __se_sys_recvmmsg+0x247/0x410 [ 716.208136][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 716.213005][T16891] do_syscall_64+0x9f/0x140 [ 716.217525][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 716.224140][T16891] [ 716.224650][T16931] not chained 200000 origins [ 716.226473][T16891] Uninit was stored to memory at: [ 716.231068][T16931] CPU: 1 PID: 16931 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 716.236087][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 716.244816][T16931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 716.250527][T16891] __msan_chain_origin+0x57/0xa0 [ 716.260574][T16931] Call Trace: [ 716.265509][T16891] do_recvmmsg+0x17ee/0x2300 [ 716.268782][T16931] dump_stack+0x21c/0x280 [ 716.273444][T16891] __se_sys_recvmmsg+0x247/0x410 [ 716.277764][T16931] kmsan_internal_chain_origin+0x6f/0x130 [ 716.282680][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 716.288393][T16931] ? __msan_get_context_state+0x9/0x20 [ 716.293234][T16891] do_syscall_64+0x9f/0x140 [ 716.298672][T16931] ? kmsan_get_metadata+0x116/0x180 [ 716.303157][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 716.308345][T16931] ? kmsan_internal_check_memory+0xb1/0x520 [ 716.314205][T16891] [ 716.320157][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 716.322461][T16891] Local variable ----msg_sys@do_recvmmsg created at: [ 716.328088][T16931] ? kmsan_check_memory+0xd/0x10 [ 716.334746][T16891] do_recvmmsg+0xbc/0x2300 [ 716.339668][T16931] ? ____sys_recvmsg+0xa2d/0xd80 [ 716.344066][T16891] do_recvmmsg+0xbc/0x2300 [ 716.348987][T16931] ? __msan_get_context_state+0x9/0x20 [ 716.358836][T16931] ? kfree+0x29/0x11b0 [ 716.362924][T16931] ? kmsan_get_metadata+0x116/0x180 [ 716.368147][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 716.373806][T16931] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 716.379894][T16931] ? _copy_from_user+0x1cd/0x2d0 [ 716.384849][T16931] ? kmsan_get_metadata+0x116/0x180 [ 716.390258][T16931] __msan_chain_origin+0x57/0xa0 [ 716.395217][T16931] do_recvmmsg+0x17ee/0x2300 [ 716.399851][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 716.405500][T16931] ? __msan_poison_alloca+0xe9/0x110 [ 716.410890][T16931] ? __se_sys_recvmmsg+0xd3/0x410 [ 716.415927][T16931] __se_sys_recvmmsg+0x247/0x410 [ 716.420876][T16931] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 716.426698][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 716.431564][T16931] do_syscall_64+0x9f/0x140 [ 716.436081][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 716.441979][T16931] RIP: 0033:0x45e159 [ 716.445889][T16931] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 716.465512][T16931] RSP: 002b:00007f7ad6ba7c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 716.473948][T16931] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 716.481932][T16931] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 716.489918][T16931] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 716.497905][T16931] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 716.506009][T16931] R13: 00000000016afb7f R14: 00007f7ad6ba89c0 R15: 000000000119c034 [ 716.514033][T16931] Uninit was stored to memory at: [ 716.519078][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 716.524880][T16931] __msan_chain_origin+0x57/0xa0 [ 716.529834][T16931] do_recvmmsg+0x17ee/0x2300 [ 716.534433][T16931] __se_sys_recvmmsg+0x247/0x410 [ 716.539379][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 716.544243][T16931] do_syscall_64+0x9f/0x140 [ 716.548757][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 716.554647][T16931] [ 716.556975][T16931] Uninit was stored to memory at: [ 716.559519][T16887] not chained 210000 origins [ 716.562015][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 716.566594][T16887] CPU: 0 PID: 16887 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 716.572298][T16931] __msan_chain_origin+0x57/0xa0 [ 716.581034][T16887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 716.585966][T16931] do_recvmmsg+0x17ee/0x2300 [ 716.596001][T16887] Call Trace: [ 716.600586][T16931] __se_sys_recvmmsg+0x247/0x410 [ 716.603861][T16887] dump_stack+0x21c/0x280 [ 716.608787][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 716.613111][T16887] kmsan_internal_chain_origin+0x6f/0x130 [ 716.617941][T16931] do_syscall_64+0x9f/0x140 [ 716.623645][T16887] ? __msan_get_context_state+0x9/0x20 [ 716.628124][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 716.628138][T16931] [ 716.633594][T16887] ? kmsan_get_metadata+0x116/0x180 [ 716.639480][T16931] Uninit was stored to memory at: [ 716.641814][T16887] ? kmsan_internal_check_memory+0xb1/0x520 [ 716.647057][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 716.652059][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 716.657934][T16931] __msan_chain_origin+0x57/0xa0 [ 716.663636][T16887] ? kmsan_check_memory+0xd/0x10 [ 716.669414][T16931] do_recvmmsg+0x17ee/0x2300 [ 716.674462][T16887] ? ____sys_recvmsg+0xa2d/0xd80 [ 716.679396][T16931] __se_sys_recvmmsg+0x247/0x410 [ 716.684035][T16887] ? __msan_get_context_state+0x9/0x20 [ 716.688960][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 716.693884][T16887] ? kfree+0x29/0x11b0 [ 716.699327][T16931] do_syscall_64+0x9f/0x140 [ 716.704161][T16887] ? kmsan_get_metadata+0x116/0x180 [ 716.708226][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 716.712770][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 716.717935][T16931] [ 716.723918][T16887] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 716.729554][T16931] Uninit was stored to memory at: [ 716.731883][T16887] ? _copy_from_user+0x1cd/0x2d0 [ 716.737940][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 716.742945][T16887] ? kmsan_get_metadata+0x116/0x180 [ 716.747866][T16931] __msan_chain_origin+0x57/0xa0 [ 716.753569][T16887] __msan_chain_origin+0x57/0xa0 [ 716.758783][T16931] do_recvmmsg+0x17ee/0x2300 [ 716.763705][T16887] do_recvmmsg+0x17ee/0x2300 [ 716.768631][T16931] __se_sys_recvmmsg+0x247/0x410 [ 716.773210][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 716.777779][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 716.782698][T16887] ? __msan_poison_alloca+0xe9/0x110 [ 716.788316][T16931] do_syscall_64+0x9f/0x140 [ 716.793162][T16887] ? __se_sys_recvmmsg+0xd3/0x410 [ 716.798492][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 716.802984][T16887] __se_sys_recvmmsg+0x247/0x410 [ 716.808022][T16931] [ 716.813910][T16887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 716.818819][T16931] Uninit was stored to memory at: [ 716.821146][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 716.826939][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 716.831947][T16887] do_syscall_64+0x9f/0x140 [ 716.836781][T16931] __msan_chain_origin+0x57/0xa0 [ 716.842487][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 716.846973][T16931] do_recvmmsg+0x17ee/0x2300 [ 716.851890][T16887] RIP: 0033:0x45e159 [ 716.857771][T16931] __se_sys_recvmmsg+0x247/0x410 [ 716.862344][T16887] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 716.866225][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 716.871142][T16887] RSP: 002b:00007f92e7375c68 EFLAGS: 00000246 [ 716.890742][T16931] do_syscall_64+0x9f/0x140 [ 716.895567][T16887] ORIG_RAX: 000000000000012b [ 716.901630][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 716.906110][T16887] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 716.910764][T16931] [ 716.916636][T16887] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 716.916656][T16887] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 716.924611][T16931] Uninit was stored to memory at: [ 716.926933][T16887] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 716.934902][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 716.942851][T16887] R13: 00000000016afb7f R14: 00007f92e73769c0 R15: 000000000119bf8c [ 716.947859][T16931] __msan_chain_origin+0x57/0xa0 [ 716.955808][T16887] Uninit was stored to memory at: [ 716.961656][T16931] do_recvmmsg+0x17ee/0x2300 [ 716.969635][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 716.974557][T16931] __se_sys_recvmmsg+0x247/0x410 [ 716.979567][T16887] __msan_chain_origin+0x57/0xa0 [ 716.984143][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 716.989848][T16887] do_recvmmsg+0x17ee/0x2300 [ 716.994773][T16931] do_syscall_64+0x9f/0x140 [ 716.999690][T16887] __se_sys_recvmmsg+0x247/0x410 [ 717.004613][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 717.009189][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 717.013667][T16931] [ 717.018659][T16887] do_syscall_64+0x9f/0x140 [ 717.024525][T16931] Uninit was stored to memory at: [ 717.029553][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 717.031874][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 717.036349][T16887] [ 717.041374][T16931] __msan_chain_origin+0x57/0xa0 [ 717.047240][T16887] Uninit was stored to memory at: [ 717.052957][T16931] do_recvmmsg+0x17ee/0x2300 [ 717.055291][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 717.060212][T16931] __se_sys_recvmmsg+0x247/0x410 [ 717.065222][T16887] __msan_chain_origin+0x57/0xa0 [ 717.069799][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 717.075503][T16887] do_recvmmsg+0x17ee/0x2300 [ 717.080435][T16931] do_syscall_64+0x9f/0x140 [ 717.085355][T16887] __se_sys_recvmmsg+0x247/0x410 [ 717.090233][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 717.094806][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 717.099278][T16931] [ 717.104216][T16887] do_syscall_64+0x9f/0x140 [ 717.110082][T16931] Local variable ----msg_sys@do_recvmmsg created at: [ 717.115013][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 717.117328][T16931] do_recvmmsg+0xbc/0x2300 [ 717.121805][T16887] [ 717.128478][T16931] do_recvmmsg+0xbc/0x2300 [ 717.134344][T16887] Uninit was stored to memory at: [ 717.150593][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 717.156409][T16887] __msan_chain_origin+0x57/0xa0 [ 717.161478][T16887] do_recvmmsg+0x17ee/0x2300 [ 717.166202][T16887] __se_sys_recvmmsg+0x247/0x410 [ 717.171153][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 717.176026][T16887] do_syscall_64+0x9f/0x140 [ 717.180544][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 717.186437][T16887] [ 717.188774][T16887] Uninit was stored to memory at: [ 717.193821][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 717.199643][T16887] __msan_chain_origin+0x57/0xa0 [ 717.204599][T16887] do_recvmmsg+0x17ee/0x2300 [ 717.209213][T16887] __se_sys_recvmmsg+0x247/0x410 [ 717.214179][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 717.220942][T16887] do_syscall_64+0x9f/0x140 [ 717.225468][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 717.231368][T16887] [ 717.236265][T16887] Uninit was stored to memory at: [ 717.241318][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 717.247180][T16887] __msan_chain_origin+0x57/0xa0 [ 717.252144][T16887] do_recvmmsg+0x17ee/0x2300 [ 717.256834][T16887] __se_sys_recvmmsg+0x247/0x410 [ 717.261792][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 717.266685][T16887] do_syscall_64+0x9f/0x140 [ 717.271210][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 717.277228][T16887] [ 717.279566][T16887] Uninit was stored to memory at: [ 717.286605][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 717.294695][T16887] __msan_chain_origin+0x57/0xa0 [ 717.299655][T16887] do_recvmmsg+0x17ee/0x2300 [ 717.304268][T16887] __se_sys_recvmmsg+0x247/0x410 [ 717.309226][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 717.316558][T16887] do_syscall_64+0x9f/0x140 [ 717.321392][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 717.327288][T16887] [ 717.329623][T16887] Uninit was stored to memory at: [ 717.337017][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 717.342759][T16887] __msan_chain_origin+0x57/0xa0 [ 717.347713][T16887] do_recvmmsg+0x17ee/0x2300 [ 717.352326][T16887] __se_sys_recvmmsg+0x247/0x410 [ 717.357288][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 717.362158][T16887] do_syscall_64+0x9f/0x140 [ 717.366684][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 717.373736][T16887] [ 717.377192][T16887] Local variable ----msg_sys@do_recvmmsg created at: [ 717.383888][T16887] do_recvmmsg+0xbc/0x2300 [ 717.388320][T16887] do_recvmmsg+0xbc/0x2300 [ 717.637606][T16929] not chained 220000 origins [ 717.642403][T16929] CPU: 0 PID: 16929 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 717.653343][T16929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 717.663432][T16929] Call Trace: [ 717.667289][T16929] dump_stack+0x21c/0x280 [ 717.671640][T16929] kmsan_internal_chain_origin+0x6f/0x130 [ 717.677384][T16929] ? __msan_get_context_state+0x9/0x20 [ 717.682866][T16929] ? kmsan_get_metadata+0x116/0x180 [ 717.690800][T16929] ? kmsan_internal_check_memory+0xb1/0x520 [ 717.699243][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 717.707356][T16929] ? kmsan_check_memory+0xd/0x10 [ 717.712321][T16929] ? ____sys_recvmsg+0xa2d/0xd80 [ 717.717285][T16929] ? __msan_get_context_state+0x9/0x20 [ 717.724360][T16929] ? kfree+0x29/0x11b0 [ 717.729282][T16929] ? kmsan_get_metadata+0x116/0x180 [ 717.734505][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 717.741661][T16929] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 717.749895][T16929] ? _copy_from_user+0x1cd/0x2d0 [ 717.754862][T16929] ? kmsan_get_metadata+0x116/0x180 [ 717.760075][T16929] __msan_chain_origin+0x57/0xa0 [ 717.767934][T16929] do_recvmmsg+0x17ee/0x2300 [ 717.774898][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 717.780554][T16929] ? __msan_poison_alloca+0xe9/0x110 [ 717.786475][T16929] ? __se_sys_recvmmsg+0xd3/0x410 [ 717.791527][T16929] __se_sys_recvmmsg+0x247/0x410 [ 717.796594][T16929] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 717.803665][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 717.808708][T16929] do_syscall_64+0x9f/0x140 [ 717.813232][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 717.820712][T16929] RIP: 0033:0x45e159 [ 717.825545][T16929] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 717.846569][T16929] RSP: 002b:00007f7ad6bc8c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 717.855201][T16929] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 717.864214][T16929] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 717.872930][T16929] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 717.881611][T16929] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 717.889613][T16929] R13: 00000000016afb7f R14: 00007f7ad6bc99c0 R15: 000000000119bf8c [ 717.898273][T16929] Uninit was stored to memory at: [ 717.903486][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 717.910531][T16929] __msan_chain_origin+0x57/0xa0 [ 717.915582][T16929] do_recvmmsg+0x17ee/0x2300 [ 717.920301][T16929] __se_sys_recvmmsg+0x247/0x410 [ 717.927567][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 717.932593][T16929] do_syscall_64+0x9f/0x140 [ 717.937113][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 717.944797][T16929] [ 717.949290][T16929] Uninit was stored to memory at: [ 717.954342][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 717.961501][T16929] __msan_chain_origin+0x57/0xa0 [ 717.966617][T16929] do_recvmmsg+0x17ee/0x2300 [ 717.971225][T16929] __se_sys_recvmmsg+0x247/0x410 [ 717.978557][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 717.983551][T16929] do_syscall_64+0x9f/0x140 [ 717.989838][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 717.998065][T16929] [ 718.002494][T16929] Uninit was stored to memory at: [ 718.007549][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 718.014872][T16929] __msan_chain_origin+0x57/0xa0 [ 718.020002][T16929] do_recvmmsg+0x17ee/0x2300 [ 718.024608][T16929] __se_sys_recvmmsg+0x247/0x410 [ 718.031976][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 718.037068][T16929] do_syscall_64+0x9f/0x140 [ 718.041588][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 718.049334][T16929] [ 718.054177][T16929] Uninit was stored to memory at: [ 718.059230][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 718.066591][T16929] __msan_chain_origin+0x57/0xa0 [ 718.071607][T16929] do_recvmmsg+0x17ee/0x2300 [ 718.076215][T16929] __se_sys_recvmmsg+0x247/0x410 [ 718.083681][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 718.091017][T16929] do_syscall_64+0x9f/0x140 [ 718.095543][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 718.103272][T16929] [ 718.107812][T16929] Uninit was stored to memory at: [ 718.112864][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 718.120084][T16929] __msan_chain_origin+0x57/0xa0 [ 718.125122][T16929] do_recvmmsg+0x17ee/0x2300 [ 718.129731][T16929] __se_sys_recvmmsg+0x247/0x410 [ 718.137289][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 718.142296][T16929] do_syscall_64+0x9f/0x140 [ 718.146817][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 718.154663][T16929] [ 718.159220][T16929] Uninit was stored to memory at: [ 718.164276][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 718.171602][T16929] __msan_chain_origin+0x57/0xa0 [ 718.176733][T16929] do_recvmmsg+0x17ee/0x2300 [ 718.181339][T16929] __se_sys_recvmmsg+0x247/0x410 [ 718.188965][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 718.196202][T16929] do_syscall_64+0x9f/0x140 [ 718.200728][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 718.208496][T16929] [ 718.212991][T16929] Uninit was stored to memory at: [ 718.218041][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 718.225400][T16929] __msan_chain_origin+0x57/0xa0 [ 718.230522][T16929] do_recvmmsg+0x17ee/0x2300 [ 718.235127][T16929] __se_sys_recvmmsg+0x247/0x410 [ 718.242620][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 718.247779][T16929] do_syscall_64+0x9f/0x140 [ 718.252301][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 718.260068][T16929] [ 718.264633][T16929] Local variable ----msg_sys@do_recvmmsg created at: [ 718.273284][T16929] do_recvmmsg+0xbc/0x2300 [ 718.277717][T16929] do_recvmmsg+0xbc/0x2300 [ 718.679368][T16891] not chained 230000 origins [ 718.684003][T16891] CPU: 0 PID: 16891 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 718.692764][T16891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 718.702824][T16891] Call Trace: [ 718.706124][T16891] dump_stack+0x21c/0x280 [ 718.710478][T16891] kmsan_internal_chain_origin+0x6f/0x130 [ 718.716189][T16891] ? __msan_get_context_state+0x9/0x20 [ 718.721650][T16891] ? kmsan_get_metadata+0x116/0x180 [ 718.726848][T16891] ? kmsan_internal_check_memory+0xb1/0x520 [ 718.732752][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 718.738376][T16891] ? kmsan_check_memory+0xd/0x10 [ 718.743305][T16891] ? ____sys_recvmsg+0xa2d/0xd80 [ 718.748233][T16891] ? __msan_get_context_state+0x9/0x20 [ 718.753684][T16891] ? kfree+0x29/0x11b0 [ 718.757754][T16891] ? kmsan_get_metadata+0x116/0x180 [ 718.762947][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 718.768572][T16891] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 718.774647][T16891] ? _copy_from_user+0x1cd/0x2d0 [ 718.779576][T16891] ? kmsan_get_metadata+0x116/0x180 [ 718.784763][T16891] __msan_chain_origin+0x57/0xa0 [ 718.789699][T16891] do_recvmmsg+0x17ee/0x2300 [ 718.794291][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 718.799910][T16891] ? __msan_poison_alloca+0xe9/0x110 [ 718.805187][T16891] ? __se_sys_recvmmsg+0xd3/0x410 [ 718.810203][T16891] __se_sys_recvmmsg+0x247/0x410 [ 718.815132][T16891] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 718.820935][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 718.825780][T16891] do_syscall_64+0x9f/0x140 [ 718.830276][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 718.836155][T16891] RIP: 0033:0x45e159 [ 718.840045][T16891] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 718.859642][T16891] RSP: 002b:00007f92e7354c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 718.868049][T16891] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 718.876012][T16891] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 718.883971][T16891] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 718.891932][T16891] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 718.899898][T16891] R13: 00000000016afb7f R14: 00007f92e73559c0 R15: 000000000119c034 [ 718.907858][T16891] Uninit was stored to memory at: [ 718.912880][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 718.918589][T16891] __msan_chain_origin+0x57/0xa0 [ 718.923518][T16891] do_recvmmsg+0x17ee/0x2300 [ 718.928097][T16891] __se_sys_recvmmsg+0x247/0x410 [ 718.933023][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 718.937865][T16891] do_syscall_64+0x9f/0x140 [ 718.942360][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 718.948231][T16891] [ 718.950541][T16891] Uninit was stored to memory at: [ 718.955559][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 718.961265][T16891] __msan_chain_origin+0x57/0xa0 [ 718.966279][T16891] do_recvmmsg+0x17ee/0x2300 [ 718.970859][T16891] __se_sys_recvmmsg+0x247/0x410 [ 718.975787][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 718.980628][T16891] do_syscall_64+0x9f/0x140 [ 718.985121][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 718.990990][T16891] [ 718.993310][T16891] Uninit was stored to memory at: [ 718.998347][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 719.004064][T16891] __msan_chain_origin+0x57/0xa0 [ 719.009028][T16891] do_recvmmsg+0x17ee/0x2300 [ 719.013616][T16891] __se_sys_recvmmsg+0x247/0x410 [ 719.018564][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 719.023600][T16891] do_syscall_64+0x9f/0x140 [ 719.028095][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 719.033964][T16891] [ 719.036276][T16891] Uninit was stored to memory at: [ 719.041291][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 719.046998][T16891] __msan_chain_origin+0x57/0xa0 [ 719.051942][T16891] do_recvmmsg+0x17ee/0x2300 [ 719.056553][T16891] __se_sys_recvmmsg+0x247/0x410 [ 719.061507][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 719.066358][T16891] do_syscall_64+0x9f/0x140 [ 719.070963][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 719.076838][T16891] [ 719.079151][T16891] Uninit was stored to memory at: [ 719.084174][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 719.089882][T16891] __msan_chain_origin+0x57/0xa0 [ 719.094808][T16891] do_recvmmsg+0x17ee/0x2300 [ 719.099387][T16891] __se_sys_recvmmsg+0x247/0x410 [ 719.104316][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 719.109155][T16891] do_syscall_64+0x9f/0x140 [ 719.113648][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 719.119520][T16891] [ 719.121830][T16891] Uninit was stored to memory at: [ 719.126848][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 719.132556][T16891] __msan_chain_origin+0x57/0xa0 [ 719.137481][T16891] do_recvmmsg+0x17ee/0x2300 [ 719.142062][T16891] __se_sys_recvmmsg+0x247/0x410 [ 719.146987][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 719.151932][T16891] do_syscall_64+0x9f/0x140 [ 719.156430][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 719.162299][T16891] [ 719.164609][T16891] Uninit was stored to memory at: [ 719.169634][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 719.175339][T16891] __msan_chain_origin+0x57/0xa0 [ 719.180268][T16891] do_recvmmsg+0x17ee/0x2300 [ 719.184868][T16891] __se_sys_recvmmsg+0x247/0x410 [ 719.189798][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 719.194638][T16891] do_syscall_64+0x9f/0x140 [ 719.199150][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 719.205028][T16891] [ 719.207341][T16891] Local variable ----msg_sys@do_recvmmsg created at: [ 719.214003][T16891] do_recvmmsg+0xbc/0x2300 [ 719.218406][T16891] do_recvmmsg+0xbc/0x2300 [ 719.508831][T16929] not chained 240000 origins [ 719.513466][T16929] CPU: 0 PID: 16929 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 719.522228][T16929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 719.532287][T16929] Call Trace: [ 719.535592][T16929] dump_stack+0x21c/0x280 [ 719.539930][T16929] kmsan_internal_chain_origin+0x6f/0x130 [ 719.547062][T16929] ? __msan_get_context_state+0x9/0x20 [ 719.552537][T16929] ? kmsan_get_metadata+0x116/0x180 [ 719.557749][T16929] ? kmsan_internal_check_memory+0xb1/0x520 [ 719.563656][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 719.569301][T16929] ? kmsan_check_memory+0xd/0x10 [ 719.574235][T16929] ? ____sys_recvmsg+0xa2d/0xd80 [ 719.579168][T16929] ? __msan_get_context_state+0x9/0x20 [ 719.584619][T16929] ? kfree+0x29/0x11b0 [ 719.588682][T16929] ? kmsan_get_metadata+0x116/0x180 [ 719.593874][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 719.599505][T16929] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 719.605565][T16929] ? _copy_from_user+0x1cd/0x2d0 [ 719.610492][T16929] ? kmsan_get_metadata+0x116/0x180 [ 719.615679][T16929] __msan_chain_origin+0x57/0xa0 [ 719.620617][T16929] do_recvmmsg+0x17ee/0x2300 [ 719.625224][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 719.630847][T16929] ? __msan_poison_alloca+0xe9/0x110 [ 719.636124][T16929] ? __se_sys_recvmmsg+0xd3/0x410 [ 719.641144][T16929] __se_sys_recvmmsg+0x247/0x410 [ 719.646081][T16929] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 719.651881][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 719.656724][T16929] do_syscall_64+0x9f/0x140 [ 719.661217][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 719.667099][T16929] RIP: 0033:0x45e159 [ 719.670985][T16929] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 719.690595][T16929] RSP: 002b:00007f7ad6bc8c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 719.699009][T16929] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 719.706987][T16929] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 719.714956][T16929] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 719.722923][T16929] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 719.730892][T16929] R13: 00000000016afb7f R14: 00007f7ad6bc99c0 R15: 000000000119bf8c [ 719.739119][T16929] Uninit was stored to memory at: [ 719.744145][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 719.749867][T16929] __msan_chain_origin+0x57/0xa0 [ 719.754798][T16929] do_recvmmsg+0x17ee/0x2300 [ 719.759378][T16929] __se_sys_recvmmsg+0x247/0x410 [ 719.764401][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 719.769242][T16929] do_syscall_64+0x9f/0x140 [ 719.773734][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 719.779604][T16929] [ 719.781915][T16929] Uninit was stored to memory at: [ 719.786933][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 719.792639][T16929] __msan_chain_origin+0x57/0xa0 [ 719.797564][T16929] do_recvmmsg+0x17ee/0x2300 [ 719.802146][T16929] __se_sys_recvmmsg+0x247/0x410 [ 719.807072][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 719.811912][T16929] do_syscall_64+0x9f/0x140 [ 719.816403][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 719.822292][T16929] [ 719.824605][T16929] Uninit was stored to memory at: [ 719.829622][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 719.835327][T16929] __msan_chain_origin+0x57/0xa0 [ 719.840270][T16929] do_recvmmsg+0x17ee/0x2300 [ 719.844851][T16929] __se_sys_recvmmsg+0x247/0x410 [ 719.849775][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 719.854616][T16929] do_syscall_64+0x9f/0x140 [ 719.859106][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 719.864973][T16929] [ 719.867286][T16929] Uninit was stored to memory at: [ 719.872303][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 719.878095][T16929] __msan_chain_origin+0x57/0xa0 [ 719.883021][T16929] do_recvmmsg+0x17ee/0x2300 [ 719.887602][T16929] __se_sys_recvmmsg+0x247/0x410 [ 719.892535][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 719.897393][T16929] do_syscall_64+0x9f/0x140 [ 719.901884][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 719.907752][T16929] [ 719.910063][T16929] Uninit was stored to memory at: [ 719.915080][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 719.920787][T16929] __msan_chain_origin+0x57/0xa0 [ 719.925717][T16929] do_recvmmsg+0x17ee/0x2300 [ 719.930297][T16929] __se_sys_recvmmsg+0x247/0x410 [ 719.935225][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 719.940066][T16929] do_syscall_64+0x9f/0x140 [ 719.944561][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 719.950434][T16929] [ 719.952744][T16929] Uninit was stored to memory at: [ 719.957780][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 719.963484][T16929] __msan_chain_origin+0x57/0xa0 [ 719.968412][T16929] do_recvmmsg+0x17ee/0x2300 [ 719.972990][T16929] __se_sys_recvmmsg+0x247/0x410 [ 719.977917][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 719.982756][T16929] do_syscall_64+0x9f/0x140 [ 719.987249][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 719.993119][T16929] [ 719.995429][T16929] Uninit was stored to memory at: [ 720.000447][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 720.006156][T16929] __msan_chain_origin+0x57/0xa0 [ 720.011082][T16929] do_recvmmsg+0x17ee/0x2300 [ 720.015665][T16929] __se_sys_recvmmsg+0x247/0x410 [ 720.020594][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 720.025435][T16929] do_syscall_64+0x9f/0x140 [ 720.029924][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 720.035792][T16929] [ 720.038105][T16929] Local variable ----msg_sys@do_recvmmsg created at: [ 720.044768][T16929] do_recvmmsg+0xbc/0x2300 [ 720.049173][T16929] do_recvmmsg+0xbc/0x2300 [ 720.318696][T16891] not chained 250000 origins [ 720.323491][T16891] CPU: 0 PID: 16891 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 720.332251][T16891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 720.342312][T16891] Call Trace: [ 720.346357][T16891] dump_stack+0x21c/0x280 [ 720.351621][T16891] kmsan_internal_chain_origin+0x6f/0x130 [ 720.357349][T16891] ? __msan_get_context_state+0x9/0x20 [ 720.362814][T16891] ? kmsan_get_metadata+0x116/0x180 [ 720.368250][T16891] ? kmsan_internal_check_memory+0xb1/0x520 [ 720.374155][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 720.379814][T16891] ? kmsan_check_memory+0xd/0x10 [ 720.387105][T16891] ? ____sys_recvmsg+0xa2d/0xd80 [ 720.392048][T16891] ? __msan_get_context_state+0x9/0x20 [ 720.397510][T16891] ? kfree+0x29/0x11b0 [ 720.401587][T16891] ? kmsan_get_metadata+0x116/0x180 [ 720.407125][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 720.412766][T16891] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 720.418837][T16891] ? _copy_from_user+0x1cd/0x2d0 [ 720.426444][T16891] ? kmsan_get_metadata+0x116/0x180 [ 720.431649][T16891] __msan_chain_origin+0x57/0xa0 [ 720.436601][T16891] do_recvmmsg+0x17ee/0x2300 [ 720.441215][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 720.446853][T16891] ? __msan_poison_alloca+0xe9/0x110 [ 720.452150][T16891] ? __se_sys_recvmmsg+0xd3/0x410 [ 720.460332][T16891] __se_sys_recvmmsg+0x247/0x410 [ 720.465784][T16891] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 720.471606][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 720.476784][T16891] do_syscall_64+0x9f/0x140 [ 720.482174][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 720.488070][T16891] RIP: 0033:0x45e159 [ 720.491969][T16891] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 720.511673][T16891] RSP: 002b:00007f92e7354c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 720.521789][T16891] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 720.529776][T16891] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 720.537758][T16891] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 720.548648][T16891] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 720.556634][T16891] R13: 00000000016afb7f R14: 00007f92e73559c0 R15: 000000000119c034 [ 720.566992][T16891] Uninit was stored to memory at: [ 720.572038][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 720.577872][T16891] __msan_chain_origin+0x57/0xa0 [ 720.582817][T16891] do_recvmmsg+0x17ee/0x2300 [ 720.587450][T16891] __se_sys_recvmmsg+0x247/0x410 [ 720.592390][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 720.597243][T16891] do_syscall_64+0x9f/0x140 [ 720.601757][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 720.607675][T16891] [ 720.611582][T16891] Uninit was stored to memory at: [ 720.616619][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 720.622347][T16891] __msan_chain_origin+0x57/0xa0 [ 720.627940][T16891] do_recvmmsg+0x17ee/0x2300 [ 720.632534][T16891] __se_sys_recvmmsg+0x247/0x410 [ 720.637475][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 720.642333][T16891] do_syscall_64+0x9f/0x140 [ 720.647651][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 720.653651][T16891] [ 720.655983][T16891] Uninit was stored to memory at: [ 720.661021][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 720.667684][T16891] __msan_chain_origin+0x57/0xa0 [ 720.672631][T16891] do_recvmmsg+0x17ee/0x2300 [ 720.677226][T16891] __se_sys_recvmmsg+0x247/0x410 [ 720.682165][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 720.687761][T16891] do_syscall_64+0x9f/0x140 [ 720.692272][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 720.698153][T16891] [ 720.700513][T16891] Uninit was stored to memory at: [ 720.707439][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 720.713164][T16891] __msan_chain_origin+0x57/0xa0 [ 720.718103][T16891] do_recvmmsg+0x17ee/0x2300 [ 720.722697][T16891] __se_sys_recvmmsg+0x247/0x410 [ 720.727646][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 720.732501][T16891] do_syscall_64+0x9f/0x140 [ 720.737007][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 720.742883][T16891] [ 720.747801][T16891] Uninit was stored to memory at: [ 720.753691][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 720.759414][T16891] __msan_chain_origin+0x57/0xa0 [ 720.767545][T16891] do_recvmmsg+0x17ee/0x2300 [ 720.772145][T16891] __se_sys_recvmmsg+0x247/0x410 [ 720.777093][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 720.781949][T16891] do_syscall_64+0x9f/0x140 [ 720.787460][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 720.793343][T16891] [ 720.795664][T16891] Uninit was stored to memory at: [ 720.800700][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 720.807490][T16891] __msan_chain_origin+0x57/0xa0 [ 720.812432][T16891] do_recvmmsg+0x17ee/0x2300 [ 720.817025][T16891] __se_sys_recvmmsg+0x247/0x410 [ 720.821967][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 720.828295][T16891] do_syscall_64+0x9f/0x140 [ 720.832804][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 720.838681][T16891] [ 720.841002][T16891] Uninit was stored to memory at: [ 720.847631][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 720.853357][T16891] __msan_chain_origin+0x57/0xa0 [ 720.858303][T16891] do_recvmmsg+0x17ee/0x2300 [ 720.862901][T16891] __se_sys_recvmmsg+0x247/0x410 [ 720.867842][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 720.872698][T16891] do_syscall_64+0x9f/0x140 [ 720.877206][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 720.883083][T16891] [ 720.887247][T16891] Local variable ----msg_sys@do_recvmmsg created at: [ 720.893925][T16891] do_recvmmsg+0xbc/0x2300 [ 720.898340][T16891] do_recvmmsg+0xbc/0x2300 [ 721.165452][T16887] not chained 260000 origins [ 721.170096][T16887] CPU: 0 PID: 16887 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 721.181769][T16887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 721.191846][T16887] Call Trace: [ 721.195149][T16887] dump_stack+0x21c/0x280 [ 721.199498][T16887] kmsan_internal_chain_origin+0x6f/0x130 [ 721.205221][T16887] ? __msan_get_context_state+0x9/0x20 [ 721.210679][T16887] ? kmsan_get_metadata+0x116/0x180 [ 721.215888][T16887] ? kmsan_internal_check_memory+0xb1/0x520 [ 721.221793][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 721.228890][T16887] ? kmsan_check_memory+0xd/0x10 [ 721.233840][T16887] ? ____sys_recvmsg+0xa2d/0xd80 [ 721.238785][T16887] ? __msan_get_context_state+0x9/0x20 [ 721.244250][T16887] ? kfree+0x29/0x11b0 [ 721.248319][T16887] ? kmsan_get_metadata+0x116/0x180 [ 721.253523][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 721.262444][T16887] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 721.268520][T16887] ? _copy_from_user+0x1cd/0x2d0 [ 721.273464][T16887] ? kmsan_get_metadata+0x116/0x180 [ 721.278665][T16887] __msan_chain_origin+0x57/0xa0 [ 721.286869][T16887] do_recvmmsg+0x17ee/0x2300 [ 721.291485][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 721.297124][T16887] ? __msan_poison_alloca+0xe9/0x110 [ 721.302417][T16887] ? __se_sys_recvmmsg+0xd3/0x410 [ 721.307446][T16887] __se_sys_recvmmsg+0x247/0x410 [ 721.312381][T16887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 721.320797][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 721.325664][T16887] do_syscall_64+0x9f/0x140 [ 721.330178][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 721.336076][T16887] RIP: 0033:0x45e159 [ 721.339974][T16887] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 721.359616][T16887] RSP: 002b:00007f92e7375c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 721.368075][T16887] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 721.376863][T16887] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 721.384843][T16887] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 721.392816][T16887] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 721.400791][T16887] R13: 00000000016afb7f R14: 00007f92e73769c0 R15: 000000000119bf8c [ 721.411267][T16887] Uninit was stored to memory at: [ 721.416311][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 721.422027][T16887] __msan_chain_origin+0x57/0xa0 [ 721.426966][T16887] do_recvmmsg+0x17ee/0x2300 [ 721.431561][T16887] __se_sys_recvmmsg+0x247/0x410 [ 721.437178][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 721.442034][T16887] do_syscall_64+0x9f/0x140 [ 721.446545][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 721.452422][T16887] [ 721.454765][T16887] Uninit was stored to memory at: [ 721.459824][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 721.468559][T16887] __msan_chain_origin+0x57/0xa0 [ 721.473509][T16887] do_recvmmsg+0x17ee/0x2300 [ 721.478104][T16887] __se_sys_recvmmsg+0x247/0x410 [ 721.485834][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 721.491485][T16887] do_syscall_64+0x9f/0x140 [ 721.495994][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 721.501874][T16887] [ 721.504200][T16887] Uninit was stored to memory at: [ 721.509242][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 721.515073][T16887] __msan_chain_origin+0x57/0xa0 [ 721.520019][T16887] do_recvmmsg+0x17ee/0x2300 [ 721.527270][T16887] __se_sys_recvmmsg+0x247/0x410 [ 721.532221][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 721.537083][T16887] do_syscall_64+0x9f/0x140 [ 721.541595][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 721.547483][T16887] [ 721.549806][T16887] Uninit was stored to memory at: [ 721.557853][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 721.563587][T16887] __msan_chain_origin+0x57/0xa0 [ 721.568544][T16887] do_recvmmsg+0x17ee/0x2300 [ 721.573142][T16887] __se_sys_recvmmsg+0x247/0x410 [ 721.578085][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 721.582940][T16887] do_syscall_64+0x9f/0x140 [ 721.587448][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 721.593330][T16887] [ 721.595654][T16887] Uninit was stored to memory at: [ 721.603079][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 721.608811][T16887] __msan_chain_origin+0x57/0xa0 [ 721.613751][T16887] do_recvmmsg+0x17ee/0x2300 [ 721.618348][T16887] __se_sys_recvmmsg+0x247/0x410 [ 721.623296][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 721.628162][T16887] do_syscall_64+0x9f/0x140 [ 721.632678][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 721.638561][T16887] [ 721.640908][T16887] Uninit was stored to memory at: [ 721.645951][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 721.651672][T16887] __msan_chain_origin+0x57/0xa0 [ 721.656623][T16887] do_recvmmsg+0x17ee/0x2300 [ 721.661222][T16887] __se_sys_recvmmsg+0x247/0x410 [ 721.666170][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 721.671142][T16887] do_syscall_64+0x9f/0x140 [ 721.675658][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 721.681541][T16887] [ 721.686734][T16887] Uninit was stored to memory at: [ 721.692448][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 721.698180][T16887] __msan_chain_origin+0x57/0xa0 [ 721.701345][T16931] not chained 270000 origins [ 721.703371][T16887] do_recvmmsg+0x17ee/0x2300 [ 721.707944][T16931] CPU: 1 PID: 16931 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 721.712512][T16887] __se_sys_recvmmsg+0x247/0x410 [ 721.721238][T16931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 721.726157][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 721.736178][T16931] Call Trace: [ 721.741013][T16887] do_syscall_64+0x9f/0x140 [ 721.744294][T16931] dump_stack+0x21c/0x280 [ 721.748770][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 721.753086][T16931] kmsan_internal_chain_origin+0x6f/0x130 [ 721.759107][T16887] [ 721.764809][T16931] ? __msan_get_context_state+0x9/0x20 [ 721.767108][T16887] Local variable ----msg_sys@do_recvmmsg created at: [ 721.772548][T16931] ? kmsan_get_metadata+0x116/0x180 [ 721.779215][T16887] do_recvmmsg+0xbc/0x2300 [ 721.784393][T16931] ? kmsan_internal_check_memory+0xb1/0x520 [ 721.788779][T16887] do_recvmmsg+0xbc/0x2300 [ 721.794646][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 721.804648][T16931] ? kmsan_check_memory+0xd/0x10 [ 721.809595][T16931] ? ____sys_recvmsg+0xa2d/0xd80 [ 721.814544][T16931] ? __msan_get_context_state+0x9/0x20 [ 721.820010][T16931] ? kfree+0x29/0x11b0 [ 721.824093][T16931] ? kmsan_get_metadata+0x116/0x180 [ 721.829300][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 721.835033][T16931] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 721.841145][T16931] ? _copy_from_user+0x1cd/0x2d0 [ 721.846101][T16931] ? kmsan_get_metadata+0x116/0x180 [ 721.851311][T16931] __msan_chain_origin+0x57/0xa0 [ 721.856260][T16931] do_recvmmsg+0x17ee/0x2300 [ 721.860868][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 721.866514][T16931] ? __msan_poison_alloca+0xe9/0x110 [ 721.871808][T16931] ? __se_sys_recvmmsg+0xd3/0x410 [ 721.876843][T16931] __se_sys_recvmmsg+0x247/0x410 [ 721.881786][T16931] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 721.887601][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 721.892463][T16931] do_syscall_64+0x9f/0x140 [ 721.896971][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 721.902859][T16931] RIP: 0033:0x45e159 [ 721.906759][T16931] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 721.926376][T16931] RSP: 002b:00007f7ad6ba7c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 721.934801][T16931] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 721.942775][T16931] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 721.950750][T16931] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 721.958736][T16931] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 721.966716][T16931] R13: 00000000016afb7f R14: 00007f7ad6ba89c0 R15: 000000000119c034 [ 721.974695][T16931] Uninit was stored to memory at: [ 721.979739][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 721.985457][T16931] __msan_chain_origin+0x57/0xa0 [ 721.990394][T16931] do_recvmmsg+0x17ee/0x2300 [ 721.994981][T16931] __se_sys_recvmmsg+0x247/0x410 [ 721.999932][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 722.004785][T16931] do_syscall_64+0x9f/0x140 [ 722.009290][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 722.015168][T16931] [ 722.017490][T16931] Uninit was stored to memory at: [ 722.022542][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 722.028258][T16931] __msan_chain_origin+0x57/0xa0 [ 722.033216][T16931] do_recvmmsg+0x17ee/0x2300 [ 722.037803][T16931] __se_sys_recvmmsg+0x247/0x410 [ 722.042740][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 722.047592][T16931] do_syscall_64+0x9f/0x140 [ 722.052097][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 722.057981][T16931] [ 722.060386][T16931] Uninit was stored to memory at: [ 722.065419][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 722.071134][T16931] __msan_chain_origin+0x57/0xa0 [ 722.076068][T16931] do_recvmmsg+0x17ee/0x2300 [ 722.080661][T16931] __se_sys_recvmmsg+0x247/0x410 [ 722.085595][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 722.090436][T16931] do_syscall_64+0x9f/0x140 [ 722.094930][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 722.100798][T16931] [ 722.103110][T16931] Uninit was stored to memory at: [ 722.108146][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 722.113871][T16931] __msan_chain_origin+0x57/0xa0 [ 722.119158][T16931] do_recvmmsg+0x17ee/0x2300 [ 722.123760][T16931] __se_sys_recvmmsg+0x247/0x410 [ 722.128688][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 722.133533][T16931] do_syscall_64+0x9f/0x140 [ 722.138047][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 722.143916][T16931] [ 722.146229][T16931] Uninit was stored to memory at: [ 722.151247][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 722.156952][T16931] __msan_chain_origin+0x57/0xa0 [ 722.161877][T16931] do_recvmmsg+0x17ee/0x2300 [ 722.166460][T16931] __se_sys_recvmmsg+0x247/0x410 [ 722.171406][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 722.176253][T16931] do_syscall_64+0x9f/0x140 [ 722.180746][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 722.186621][T16931] [ 722.188930][T16931] Uninit was stored to memory at: [ 722.193947][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 722.199653][T16931] __msan_chain_origin+0x57/0xa0 [ 722.204577][T16931] do_recvmmsg+0x17ee/0x2300 [ 722.209155][T16931] __se_sys_recvmmsg+0x247/0x410 [ 722.214082][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 722.218925][T16931] do_syscall_64+0x9f/0x140 [ 722.223419][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 722.229289][T16931] [ 722.231600][T16931] Uninit was stored to memory at: [ 722.236620][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 722.242323][T16931] __msan_chain_origin+0x57/0xa0 [ 722.247250][T16931] do_recvmmsg+0x17ee/0x2300 [ 722.251862][T16931] __se_sys_recvmmsg+0x247/0x410 [ 722.256788][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 722.261646][T16931] do_syscall_64+0x9f/0x140 [ 722.266138][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 722.272010][T16931] [ 722.274325][T16931] Local variable ----msg_sys@do_recvmmsg created at: [ 722.280987][T16931] do_recvmmsg+0xbc/0x2300 [ 722.285392][T16931] do_recvmmsg+0xbc/0x2300 [ 722.426054][T16891] not chained 280000 origins [ 722.430691][T16891] CPU: 0 PID: 16891 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 722.442753][T16891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 722.452818][T16891] Call Trace: [ 722.457995][T16891] dump_stack+0x21c/0x280 [ 722.462652][T16891] kmsan_internal_chain_origin+0x6f/0x130 [ 722.468374][T16891] ? __msan_get_context_state+0x9/0x20 [ 722.473843][T16891] ? kmsan_get_metadata+0x116/0x180 [ 722.482421][T16891] ? kmsan_internal_check_memory+0xb1/0x520 [ 722.488326][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 722.493971][T16891] ? kmsan_check_memory+0xd/0x10 [ 722.498920][T16891] ? ____sys_recvmsg+0xa2d/0xd80 [ 722.503891][T16891] ? __msan_get_context_state+0x9/0x20 [ 722.513016][T16891] ? kfree+0x29/0x11b0 [ 722.517100][T16891] ? kmsan_get_metadata+0x116/0x180 [ 722.522309][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 722.528313][T16891] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 722.534394][T16891] ? _copy_from_user+0x1cd/0x2d0 [ 722.539338][T16891] ? kmsan_get_metadata+0x116/0x180 [ 722.547446][T16891] __msan_chain_origin+0x57/0xa0 [ 722.552396][T16891] do_recvmmsg+0x17ee/0x2300 [ 722.557008][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 722.563051][T16891] ? __msan_poison_alloca+0xe9/0x110 [ 722.568348][T16891] ? __se_sys_recvmmsg+0xd3/0x410 [ 722.573385][T16891] __se_sys_recvmmsg+0x247/0x410 [ 722.578422][T16891] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 722.584419][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 722.589282][T16891] do_syscall_64+0x9f/0x140 [ 722.596711][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 722.602691][T16891] RIP: 0033:0x45e159 [ 722.606596][T16891] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 722.626213][T16891] RSP: 002b:00007f92e7354c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 722.634640][T16891] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 722.646088][T16891] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 722.654089][T16891] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 722.662073][T16891] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 722.673051][T16891] R13: 00000000016afb7f R14: 00007f92e73559c0 R15: 000000000119c034 [ 722.681037][T16891] Uninit was stored to memory at: [ 722.687390][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 722.693398][T16891] __msan_chain_origin+0x57/0xa0 [ 722.698347][T16891] do_recvmmsg+0x17ee/0x2300 [ 722.705973][T16891] __se_sys_recvmmsg+0x247/0x410 [ 722.711764][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 722.716620][T16891] do_syscall_64+0x9f/0x140 [ 722.721129][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 722.727008][T16891] [ 722.729331][T16891] Uninit was stored to memory at: [ 722.737439][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 722.743164][T16891] __msan_chain_origin+0x57/0xa0 [ 722.748103][T16891] do_recvmmsg+0x17ee/0x2300 [ 722.752700][T16891] __se_sys_recvmmsg+0x247/0x410 [ 722.758257][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 722.763114][T16891] do_syscall_64+0x9f/0x140 [ 722.767618][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 722.777022][T16891] [ 722.781246][T16891] Uninit was stored to memory at: [ 722.786281][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 722.792001][T16891] __msan_chain_origin+0x57/0xa0 [ 722.797662][T16891] do_recvmmsg+0x17ee/0x2300 [ 722.802257][T16891] __se_sys_recvmmsg+0x247/0x410 [ 722.807198][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 722.812062][T16891] do_syscall_64+0x9f/0x140 [ 722.817934][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 722.824047][T16891] [ 722.826371][T16891] Uninit was stored to memory at: [ 722.831406][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 722.837629][T16891] __msan_chain_origin+0x57/0xa0 [ 722.843481][T16891] do_recvmmsg+0x17ee/0x2300 [ 722.848078][T16891] __se_sys_recvmmsg+0x247/0x410 [ 722.856501][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 722.861362][T16891] do_syscall_64+0x9f/0x140 [ 722.865869][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 722.871751][T16891] [ 722.876338][T16891] Uninit was stored to memory at: [ 722.881373][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 722.887283][T16891] __msan_chain_origin+0x57/0xa0 [ 722.892222][T16891] do_recvmmsg+0x17ee/0x2300 [ 722.896813][T16891] __se_sys_recvmmsg+0x247/0x410 [ 722.901755][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 722.906612][T16891] do_syscall_64+0x9f/0x140 [ 722.911124][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 722.918066][T16891] [ 722.922344][T16891] Uninit was stored to memory at: [ 722.927379][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 722.933099][T16891] __msan_chain_origin+0x57/0xa0 [ 722.938692][T16891] do_recvmmsg+0x17ee/0x2300 [ 722.943487][T16891] __se_sys_recvmmsg+0x247/0x410 [ 722.948425][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 722.953280][T16891] do_syscall_64+0x9f/0x140 [ 722.958343][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 722.964223][T16891] [ 722.966545][T16891] Uninit was stored to memory at: [ 722.971577][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 722.978261][T16891] __msan_chain_origin+0x57/0xa0 [ 722.983200][T16891] do_recvmmsg+0x17ee/0x2300 [ 722.987791][T16891] __se_sys_recvmmsg+0x247/0x410 [ 722.992732][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 722.998039][T16891] do_syscall_64+0x9f/0x140 [ 723.002827][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 723.008705][T16891] [ 723.011036][T16891] Local variable ----msg_sys@do_recvmmsg created at: [ 723.017712][T16891] do_recvmmsg+0xbc/0x2300 [ 723.022139][T16891] do_recvmmsg+0xbc/0x2300 [ 723.398886][T16929] not chained 290000 origins [ 723.403858][T16929] CPU: 0 PID: 16929 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 723.412644][T16929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 723.422704][T16929] Call Trace: [ 723.428051][T16929] dump_stack+0x21c/0x280 [ 723.432910][T16929] kmsan_internal_chain_origin+0x6f/0x130 [ 723.438642][T16929] ? __msan_get_context_state+0x9/0x20 [ 723.447462][T16929] ? kmsan_get_metadata+0x116/0x180 [ 723.452682][T16929] ? kmsan_internal_check_memory+0xb1/0x520 [ 723.458587][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 723.467642][T16929] ? kmsan_check_memory+0xd/0x10 [ 723.472588][T16929] ? ____sys_recvmsg+0xa2d/0xd80 [ 723.477589][T16929] ? __msan_get_context_state+0x9/0x20 [ 723.483069][T16929] ? kfree+0x29/0x11b0 [ 723.489317][T16929] ? kmsan_get_metadata+0x116/0x180 [ 723.494529][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 723.500174][T16929] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 723.509218][T16929] ? _copy_from_user+0x1cd/0x2d0 [ 723.514168][T16929] ? kmsan_get_metadata+0x116/0x180 [ 723.519371][T16929] __msan_chain_origin+0x57/0xa0 [ 723.524321][T16929] do_recvmmsg+0x17ee/0x2300 [ 723.528938][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 723.537945][T16929] ? __msan_poison_alloca+0xe9/0x110 [ 723.543244][T16929] ? __se_sys_recvmmsg+0xd3/0x410 [ 723.548279][T16929] __se_sys_recvmmsg+0x247/0x410 [ 723.553229][T16929] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 723.562325][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 723.567188][T16929] do_syscall_64+0x9f/0x140 [ 723.571698][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 723.578277][T16929] RIP: 0033:0x45e159 [ 723.583007][T16929] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 723.603798][T16929] RSP: 002b:00007f7ad6bc8c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 723.612228][T16929] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 723.620215][T16929] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 723.628197][T16929] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 723.636178][T16929] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 723.644154][T16929] R13: 00000000016afb7f R14: 00007f7ad6bc99c0 R15: 000000000119bf8c [ 723.653785][T16929] Uninit was stored to memory at: [ 723.658830][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 723.668248][T16929] __msan_chain_origin+0x57/0xa0 [ 723.673321][T16929] do_recvmmsg+0x17ee/0x2300 [ 723.677919][T16929] __se_sys_recvmmsg+0x247/0x410 [ 723.682864][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 723.688597][T16929] do_syscall_64+0x9f/0x140 [ 723.693481][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 723.699365][T16929] [ 723.701686][T16929] Uninit was stored to memory at: [ 723.706724][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 723.712448][T16929] __msan_chain_origin+0x57/0xa0 [ 723.718840][T16929] do_recvmmsg+0x17ee/0x2300 [ 723.726031][T16929] __se_sys_recvmmsg+0x247/0x410 [ 723.730997][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 723.738101][T16929] do_syscall_64+0x9f/0x140 [ 723.742958][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 723.748842][T16929] [ 723.751167][T16929] Uninit was stored to memory at: [ 723.756205][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 723.761927][T16929] __msan_chain_origin+0x57/0xa0 [ 723.766870][T16929] do_recvmmsg+0x17ee/0x2300 [ 723.771471][T16929] __se_sys_recvmmsg+0x247/0x410 [ 723.778519][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 723.783456][T16929] do_syscall_64+0x9f/0x140 [ 723.787964][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 723.793845][T16929] [ 723.796168][T16929] Uninit was stored to memory at: [ 723.801201][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 723.806924][T16929] __msan_chain_origin+0x57/0xa0 [ 723.811863][T16929] do_recvmmsg+0x17ee/0x2300 [ 723.816458][T16929] __se_sys_recvmmsg+0x247/0x410 [ 723.821398][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 723.827486][T16929] do_syscall_64+0x9f/0x140 [ 723.832374][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 723.838253][T16929] [ 723.840585][T16929] Uninit was stored to memory at: [ 723.845623][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 723.851348][T16929] __msan_chain_origin+0x57/0xa0 [ 723.856290][T16929] do_recvmmsg+0x17ee/0x2300 [ 723.860886][T16929] __se_sys_recvmmsg+0x247/0x410 [ 723.867776][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 723.872739][T16929] do_syscall_64+0x9f/0x140 [ 723.877242][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 723.883122][T16929] [ 723.885443][T16929] Uninit was stored to memory at: [ 723.890479][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 723.896203][T16929] __msan_chain_origin+0x57/0xa0 [ 723.901147][T16929] do_recvmmsg+0x17ee/0x2300 [ 723.905744][T16929] __se_sys_recvmmsg+0x247/0x410 [ 723.910686][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 723.915568][T16929] do_syscall_64+0x9f/0x140 [ 723.920073][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 723.929588][T16929] [ 723.934099][T16929] Uninit was stored to memory at: [ 723.939137][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 723.944859][T16929] __msan_chain_origin+0x57/0xa0 [ 723.949800][T16929] do_recvmmsg+0x17ee/0x2300 [ 723.954394][T16929] __se_sys_recvmmsg+0x247/0x410 [ 723.959335][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 723.964199][T16929] do_syscall_64+0x9f/0x140 [ 723.969137][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 723.975015][T16929] [ 723.977338][T16929] Local variable ----msg_sys@do_recvmmsg created at: [ 723.984016][T16929] do_recvmmsg+0xbc/0x2300 [ 723.988435][T16929] do_recvmmsg+0xbc/0x2300 [ 724.203192][T16931] not chained 300000 origins [ 724.207819][T16931] CPU: 1 PID: 16931 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 724.216564][T16931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 724.226605][T16931] Call Trace: [ 724.229892][T16931] dump_stack+0x21c/0x280 [ 724.234219][T16931] kmsan_internal_chain_origin+0x6f/0x130 [ 724.239931][T16931] ? __msan_get_context_state+0x9/0x20 [ 724.245382][T16931] ? kmsan_get_metadata+0x116/0x180 [ 724.250576][T16931] ? kmsan_internal_check_memory+0xb1/0x520 [ 724.256548][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 724.262173][T16931] ? kmsan_check_memory+0xd/0x10 [ 724.267101][T16931] ? ____sys_recvmsg+0xa2d/0xd80 [ 724.272028][T16931] ? __msan_get_context_state+0x9/0x20 [ 724.277474][T16931] ? kfree+0x29/0x11b0 [ 724.281531][T16931] ? kmsan_get_metadata+0x116/0x180 [ 724.286722][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 724.292347][T16931] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 724.298404][T16931] ? _copy_from_user+0x1cd/0x2d0 [ 724.303333][T16931] ? kmsan_get_metadata+0x116/0x180 [ 724.308605][T16931] __msan_chain_origin+0x57/0xa0 [ 724.313535][T16931] do_recvmmsg+0x17ee/0x2300 [ 724.318127][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 724.323751][T16931] ? __msan_poison_alloca+0xe9/0x110 [ 724.329023][T16931] ? __se_sys_recvmmsg+0xd3/0x410 [ 724.334040][T16931] __se_sys_recvmmsg+0x247/0x410 [ 724.338968][T16931] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 724.344765][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 724.349608][T16931] do_syscall_64+0x9f/0x140 [ 724.354102][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 724.359981][T16931] RIP: 0033:0x45e159 [ 724.363868][T16931] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 724.383462][T16931] RSP: 002b:00007f7ad6ba7c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 724.391867][T16931] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 724.399831][T16931] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 724.407792][T16931] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 724.415753][T16931] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 724.423713][T16931] R13: 00000000016afb7f R14: 00007f7ad6ba89c0 R15: 000000000119c034 [ 724.431672][T16931] Uninit was stored to memory at: [ 724.436695][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 724.442401][T16931] __msan_chain_origin+0x57/0xa0 [ 724.447325][T16931] do_recvmmsg+0x17ee/0x2300 [ 724.451904][T16931] __se_sys_recvmmsg+0x247/0x410 [ 724.456921][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 724.461764][T16931] do_syscall_64+0x9f/0x140 [ 724.466256][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 724.472129][T16931] [ 724.474446][T16931] Uninit was stored to memory at: [ 724.479466][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 724.485606][T16931] __msan_chain_origin+0x57/0xa0 [ 724.490548][T16931] do_recvmmsg+0x17ee/0x2300 [ 724.495141][T16931] __se_sys_recvmmsg+0x247/0x410 [ 724.500081][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 724.504930][T16931] do_syscall_64+0x9f/0x140 [ 724.509433][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 724.515305][T16931] [ 724.517617][T16931] Uninit was stored to memory at: [ 724.522636][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 724.528343][T16931] __msan_chain_origin+0x57/0xa0 [ 724.533270][T16931] do_recvmmsg+0x17ee/0x2300 [ 724.537848][T16931] __se_sys_recvmmsg+0x247/0x410 [ 724.542776][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 724.547616][T16931] do_syscall_64+0x9f/0x140 [ 724.552111][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 724.557981][T16931] [ 724.560291][T16931] Uninit was stored to memory at: [ 724.565309][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 724.571015][T16931] __msan_chain_origin+0x57/0xa0 [ 724.575945][T16931] do_recvmmsg+0x17ee/0x2300 [ 724.580523][T16931] __se_sys_recvmmsg+0x247/0x410 [ 724.585450][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 724.590289][T16931] do_syscall_64+0x9f/0x140 [ 724.594782][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 724.600652][T16931] [ 724.602963][T16931] Uninit was stored to memory at: [ 724.607980][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 724.613685][T16931] __msan_chain_origin+0x57/0xa0 [ 724.618616][T16931] do_recvmmsg+0x17ee/0x2300 [ 724.623197][T16931] __se_sys_recvmmsg+0x247/0x410 [ 724.628125][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 724.632963][T16931] do_syscall_64+0x9f/0x140 [ 724.637481][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 724.643362][T16931] [ 724.645686][T16931] Uninit was stored to memory at: [ 724.650717][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 724.656426][T16931] __msan_chain_origin+0x57/0xa0 [ 724.661356][T16931] do_recvmmsg+0x17ee/0x2300 [ 724.665939][T16931] __se_sys_recvmmsg+0x247/0x410 [ 724.670869][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 724.675728][T16931] do_syscall_64+0x9f/0x140 [ 724.680227][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 724.686100][T16931] [ 724.688414][T16931] Uninit was stored to memory at: [ 724.693528][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 724.699248][T16931] __msan_chain_origin+0x57/0xa0 [ 724.704199][T16931] do_recvmmsg+0x17ee/0x2300 [ 724.708779][T16931] __se_sys_recvmmsg+0x247/0x410 [ 724.713708][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 724.718551][T16931] do_syscall_64+0x9f/0x140 [ 724.723049][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 724.728918][T16931] [ 724.731233][T16931] Local variable ----msg_sys@do_recvmmsg created at: [ 724.737897][T16931] do_recvmmsg+0xbc/0x2300 [ 724.742301][T16931] do_recvmmsg+0xbc/0x2300 [ 725.245714][T16887] not chained 310000 origins [ 725.250346][T16887] CPU: 1 PID: 16887 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 725.259106][T16887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 725.269174][T16887] Call Trace: [ 725.272477][T16887] dump_stack+0x21c/0x280 [ 725.276821][T16887] kmsan_internal_chain_origin+0x6f/0x130 [ 725.282547][T16887] ? __msan_get_context_state+0x9/0x20 [ 725.288012][T16887] ? kmsan_get_metadata+0x116/0x180 [ 725.293222][T16887] ? kmsan_internal_check_memory+0xb1/0x520 [ 725.299132][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 725.304773][T16887] ? kmsan_check_memory+0xd/0x10 [ 725.309716][T16887] ? ____sys_recvmsg+0xa2d/0xd80 [ 725.314659][T16887] ? __msan_get_context_state+0x9/0x20 [ 725.320127][T16887] ? kfree+0x29/0x11b0 [ 725.324203][T16887] ? kmsan_get_metadata+0x116/0x180 [ 725.329411][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 725.335052][T16887] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 725.341125][T16887] ? _copy_from_user+0x1cd/0x2d0 [ 725.346082][T16887] ? kmsan_get_metadata+0x116/0x180 [ 725.351288][T16887] __msan_chain_origin+0x57/0xa0 [ 725.356235][T16887] do_recvmmsg+0x17ee/0x2300 [ 725.360846][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 725.366492][T16887] ? __msan_poison_alloca+0xe9/0x110 [ 725.371785][T16887] ? __se_sys_recvmmsg+0xd3/0x410 [ 725.376817][T16887] __se_sys_recvmmsg+0x247/0x410 [ 725.381761][T16887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 725.387579][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 725.392437][T16887] do_syscall_64+0x9f/0x140 [ 725.396969][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 725.402861][T16887] RIP: 0033:0x45e159 [ 725.406762][T16887] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 725.426376][T16887] RSP: 002b:00007f92e7375c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 725.434803][T16887] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 725.442780][T16887] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 725.450751][T16887] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 725.458727][T16887] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 725.466708][T16887] R13: 00000000016afb7f R14: 00007f92e73769c0 R15: 000000000119bf8c [ 725.474684][T16887] Uninit was stored to memory at: [ 725.479725][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 725.485443][T16887] __msan_chain_origin+0x57/0xa0 [ 725.490378][T16887] do_recvmmsg+0x17ee/0x2300 [ 725.494971][T16887] __se_sys_recvmmsg+0x247/0x410 [ 725.499919][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 725.504809][T16887] do_syscall_64+0x9f/0x140 [ 725.509319][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 725.515200][T16887] [ 725.517523][T16887] Uninit was stored to memory at: [ 725.522558][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 725.528283][T16887] __msan_chain_origin+0x57/0xa0 [ 725.533227][T16887] do_recvmmsg+0x17ee/0x2300 [ 725.537818][T16887] __se_sys_recvmmsg+0x247/0x410 [ 725.542755][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 725.547609][T16887] do_syscall_64+0x9f/0x140 [ 725.552118][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 725.557997][T16887] [ 725.560318][T16887] Uninit was stored to memory at: [ 725.565355][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 725.571076][T16887] __msan_chain_origin+0x57/0xa0 [ 725.576016][T16887] do_recvmmsg+0x17ee/0x2300 [ 725.580605][T16887] __se_sys_recvmmsg+0x247/0x410 [ 725.585544][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 725.590402][T16887] do_syscall_64+0x9f/0x140 [ 725.594911][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 725.600790][T16887] [ 725.603114][T16887] Uninit was stored to memory at: [ 725.608144][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 725.613874][T16887] __msan_chain_origin+0x57/0xa0 [ 725.618824][T16887] do_recvmmsg+0x17ee/0x2300 [ 725.623429][T16887] __se_sys_recvmmsg+0x247/0x410 [ 725.628374][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 725.633240][T16887] do_syscall_64+0x9f/0x140 [ 725.637765][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 725.643655][T16887] [ 725.645978][T16887] Uninit was stored to memory at: [ 725.651014][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 725.656743][T16887] __msan_chain_origin+0x57/0xa0 [ 725.661699][T16887] do_recvmmsg+0x17ee/0x2300 [ 725.666297][T16887] __se_sys_recvmmsg+0x247/0x410 [ 725.671239][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 725.676104][T16887] do_syscall_64+0x9f/0x140 [ 725.680629][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 725.686519][T16887] [ 725.688844][T16887] Uninit was stored to memory at: [ 725.693884][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 725.699607][T16887] __msan_chain_origin+0x57/0xa0 [ 725.704550][T16887] do_recvmmsg+0x17ee/0x2300 [ 725.709147][T16887] __se_sys_recvmmsg+0x247/0x410 [ 725.714098][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 725.718958][T16887] do_syscall_64+0x9f/0x140 [ 725.723464][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 725.729342][T16887] [ 725.731663][T16887] Uninit was stored to memory at: [ 725.736700][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 725.742773][T16887] __msan_chain_origin+0x57/0xa0 [ 725.744289][T16931] not chained 320000 origins [ 725.747737][T16887] do_recvmmsg+0x17ee/0x2300 [ 725.752309][T16931] CPU: 0 PID: 16931 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 725.756876][T16887] __se_sys_recvmmsg+0x247/0x410 [ 725.765599][T16931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 725.770522][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 725.780544][T16931] Call Trace: [ 725.785380][T16887] do_syscall_64+0x9f/0x140 [ 725.788642][T16931] dump_stack+0x21c/0x280 [ 725.793120][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 725.797428][T16931] kmsan_internal_chain_origin+0x6f/0x130 [ 725.803276][T16887] [ 725.808996][T16931] ? __msan_get_context_state+0x9/0x20 [ 725.811296][T16887] Local variable ----msg_sys@do_recvmmsg created at: [ 725.816735][T16931] ? kmsan_get_metadata+0x116/0x180 [ 725.823383][T16887] do_recvmmsg+0xbc/0x2300 [ 725.828560][T16931] ? kmsan_internal_check_memory+0xb1/0x520 [ 725.832945][T16887] do_recvmmsg+0xbc/0x2300 [ 725.838836][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 725.848833][T16931] ? kmsan_check_memory+0xd/0x10 [ 725.853784][T16931] ? ____sys_recvmsg+0xa2d/0xd80 [ 725.858721][T16931] ? __msan_get_context_state+0x9/0x20 [ 725.864266][T16931] ? kfree+0x29/0x11b0 [ 725.868373][T16931] ? kmsan_get_metadata+0x116/0x180 [ 725.876184][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 725.881831][T16931] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 725.890180][T16931] ? _copy_from_user+0x1cd/0x2d0 [ 725.896502][T16931] ? kmsan_get_metadata+0x116/0x180 [ 725.901870][T16931] __msan_chain_origin+0x57/0xa0 [ 725.908168][T16931] do_recvmmsg+0x17ee/0x2300 [ 725.913464][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 725.919936][T16931] ? __msan_poison_alloca+0xe9/0x110 [ 725.925275][T16931] ? __se_sys_recvmmsg+0xd3/0x410 [ 725.931612][T16931] __se_sys_recvmmsg+0x247/0x410 [ 725.936993][T16931] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 725.943499][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 725.948806][T16931] do_syscall_64+0x9f/0x140 [ 725.955050][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 725.960940][T16931] RIP: 0033:0x45e159 [ 725.966667][T16931] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 725.986365][T16931] RSP: 002b:00007f7ad6ba7c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 725.997312][T16931] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 726.008412][T16931] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 726.019554][T16931] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 726.030684][T16931] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 726.041864][T16931] R13: 00000000016afb7f R14: 00007f7ad6ba89c0 R15: 000000000119c034 [ 726.053210][T16931] Uninit was stored to memory at: [ 726.059818][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 726.065568][T16931] __msan_chain_origin+0x57/0xa0 [ 726.071684][T16931] do_recvmmsg+0x17ee/0x2300 [ 726.078302][T16931] __se_sys_recvmmsg+0x247/0x410 [ 726.084660][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 726.089993][T16931] do_syscall_64+0x9f/0x140 [ 726.096227][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 726.102120][T16931] [ 726.107472][T16931] Uninit was stored to memory at: [ 726.112793][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 726.119258][T16931] __msan_chain_origin+0x57/0xa0 [ 726.124558][T16931] do_recvmmsg+0x17ee/0x2300 [ 726.130783][T16931] __se_sys_recvmmsg+0x247/0x410 [ 726.136100][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 726.142406][T16931] do_syscall_64+0x9f/0x140 [ 726.147660][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 726.154137][T16931] [ 726.158869][T16931] Uninit was stored to memory at: [ 726.165265][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 726.170986][T16931] __msan_chain_origin+0x57/0xa0 [ 726.177157][T16931] do_recvmmsg+0x17ee/0x2300 [ 726.183698][T16931] __se_sys_recvmmsg+0x247/0x410 [ 726.190017][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 726.195338][T16931] do_syscall_64+0x9f/0x140 [ 726.201559][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 726.207447][T16931] [ 726.212830][T16931] Uninit was stored to memory at: [ 726.218220][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 726.224682][T16931] __msan_chain_origin+0x57/0xa0 [ 726.230039][T16931] do_recvmmsg+0x17ee/0x2300 [ 726.236326][T16931] __se_sys_recvmmsg+0x247/0x410 [ 726.241683][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 726.248000][T16931] do_syscall_64+0x9f/0x140 [ 726.253239][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 726.259785][T16931] [ 726.264625][T16931] Uninit was stored to memory at: [ 726.270989][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 726.276709][T16931] __msan_chain_origin+0x57/0xa0 [ 726.284246][T16931] do_recvmmsg+0x17ee/0x2300 [ 726.289532][T16931] __se_sys_recvmmsg+0x247/0x410 [ 726.295906][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 726.301246][T16931] do_syscall_64+0x9f/0x140 [ 726.307483][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 726.313365][T16931] [ 726.318778][T16931] Uninit was stored to memory at: [ 726.324162][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 726.330661][T16931] __msan_chain_origin+0x57/0xa0 [ 726.336003][T16931] do_recvmmsg+0x17ee/0x2300 [ 726.342262][T16931] __se_sys_recvmmsg+0x247/0x410 [ 726.347647][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 726.353987][T16931] do_syscall_64+0x9f/0x140 [ 726.359258][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 726.365819][T16931] [ 726.370611][T16931] Uninit was stored to memory at: [ 726.376983][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 726.382707][T16931] __msan_chain_origin+0x57/0xa0 [ 726.390147][T16931] do_recvmmsg+0x17ee/0x2300 [ 726.395421][T16931] __se_sys_recvmmsg+0x247/0x410 [ 726.401744][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 726.407082][T16931] do_syscall_64+0x9f/0x140 [ 726.413381][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 726.419264][T16931] [ 726.424816][T16931] Local variable ----msg_sys@do_recvmmsg created at: [ 726.431497][T16931] do_recvmmsg+0xbc/0x2300 [ 726.436803][T16931] do_recvmmsg+0xbc/0x2300 [ 726.825864][T16891] not chained 330000 origins [ 726.830497][T16891] CPU: 1 PID: 16891 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 726.839249][T16891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 726.849292][T16891] Call Trace: [ 726.852582][T16891] dump_stack+0x21c/0x280 [ 726.856909][T16891] kmsan_internal_chain_origin+0x6f/0x130 [ 726.862703][T16891] ? __msan_get_context_state+0x9/0x20 [ 726.868150][T16891] ? kmsan_get_metadata+0x116/0x180 [ 726.873341][T16891] ? kmsan_internal_check_memory+0xb1/0x520 [ 726.879230][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 726.884855][T16891] ? kmsan_check_memory+0xd/0x10 [ 726.889782][T16891] ? ____sys_recvmsg+0xa2d/0xd80 [ 726.894713][T16891] ? __msan_get_context_state+0x9/0x20 [ 726.900167][T16891] ? kfree+0x29/0x11b0 [ 726.904231][T16891] ? kmsan_get_metadata+0x116/0x180 [ 726.909440][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 726.915070][T16891] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 726.921131][T16891] ? _copy_from_user+0x1cd/0x2d0 [ 726.926070][T16891] ? kmsan_get_metadata+0x116/0x180 [ 726.931260][T16891] __msan_chain_origin+0x57/0xa0 [ 726.936195][T16891] do_recvmmsg+0x17ee/0x2300 [ 726.940788][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 726.946411][T16891] ? __msan_poison_alloca+0xe9/0x110 [ 726.951686][T16891] ? __se_sys_recvmmsg+0xd3/0x410 [ 726.956703][T16891] __se_sys_recvmmsg+0x247/0x410 [ 726.961629][T16891] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 726.967427][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 726.972274][T16891] do_syscall_64+0x9f/0x140 [ 726.976771][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 726.982658][T16891] RIP: 0033:0x45e159 [ 726.986544][T16891] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 727.006140][T16891] RSP: 002b:00007f92e7354c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 727.014548][T16891] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 727.022509][T16891] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 727.030467][T16891] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 727.038427][T16891] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 727.046390][T16891] R13: 00000000016afb7f R14: 00007f92e73559c0 R15: 000000000119c034 [ 727.054352][T16891] Uninit was stored to memory at: [ 727.059375][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 727.065081][T16891] __msan_chain_origin+0x57/0xa0 [ 727.070013][T16891] do_recvmmsg+0x17ee/0x2300 [ 727.074598][T16891] __se_sys_recvmmsg+0x247/0x410 [ 727.079529][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 727.084371][T16891] do_syscall_64+0x9f/0x140 [ 727.088864][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 727.094735][T16891] [ 727.097046][T16891] Uninit was stored to memory at: [ 727.102064][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 727.108466][T16891] __msan_chain_origin+0x57/0xa0 [ 727.113393][T16891] do_recvmmsg+0x17ee/0x2300 [ 727.117972][T16891] __se_sys_recvmmsg+0x247/0x410 [ 727.122900][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 727.127759][T16891] do_syscall_64+0x9f/0x140 [ 727.132264][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 727.138143][T16891] [ 727.140479][T16891] Uninit was stored to memory at: [ 727.145503][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 727.151210][T16891] __msan_chain_origin+0x57/0xa0 [ 727.156149][T16891] do_recvmmsg+0x17ee/0x2300 [ 727.160726][T16891] __se_sys_recvmmsg+0x247/0x410 [ 727.165656][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 727.170495][T16891] do_syscall_64+0x9f/0x140 [ 727.174986][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 727.180853][T16891] [ 727.183161][T16891] Uninit was stored to memory at: [ 727.188179][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 727.193883][T16891] __msan_chain_origin+0x57/0xa0 [ 727.198821][T16891] do_recvmmsg+0x17ee/0x2300 [ 727.208720][T16891] __se_sys_recvmmsg+0x247/0x410 [ 727.213647][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 727.218486][T16891] do_syscall_64+0x9f/0x140 [ 727.222979][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 727.228847][T16891] [ 727.231155][T16891] Uninit was stored to memory at: [ 727.236169][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 727.241874][T16891] __msan_chain_origin+0x57/0xa0 [ 727.246797][T16891] do_recvmmsg+0x17ee/0x2300 [ 727.251387][T16891] __se_sys_recvmmsg+0x247/0x410 [ 727.256311][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 727.261168][T16891] do_syscall_64+0x9f/0x140 [ 727.265669][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 727.271543][T16891] [ 727.273856][T16891] Uninit was stored to memory at: [ 727.278882][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 727.284599][T16891] __msan_chain_origin+0x57/0xa0 [ 727.289533][T16891] do_recvmmsg+0x17ee/0x2300 [ 727.294113][T16891] __se_sys_recvmmsg+0x247/0x410 [ 727.299040][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 727.303892][T16891] do_syscall_64+0x9f/0x140 [ 727.308383][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 727.314257][T16891] [ 727.316567][T16891] Uninit was stored to memory at: [ 727.321584][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 727.327290][T16891] __msan_chain_origin+0x57/0xa0 [ 727.332217][T16891] do_recvmmsg+0x17ee/0x2300 [ 727.336792][T16891] __se_sys_recvmmsg+0x247/0x410 [ 727.341715][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 727.346552][T16891] do_syscall_64+0x9f/0x140 [ 727.351042][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 727.356911][T16891] [ 727.359222][T16891] Local variable ----msg_sys@do_recvmmsg created at: [ 727.365881][T16891] do_recvmmsg+0xbc/0x2300 [ 727.370281][T16891] do_recvmmsg+0xbc/0x2300 [ 727.595877][T16887] not chained 340000 origins [ 727.600505][T16887] CPU: 0 PID: 16887 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 727.609262][T16887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 727.619317][T16887] Call Trace: [ 727.622618][T16887] dump_stack+0x21c/0x280 [ 727.626959][T16887] kmsan_internal_chain_origin+0x6f/0x130 [ 727.632684][T16887] ? __msan_get_context_state+0x9/0x20 [ 727.638410][T16887] ? kmsan_get_metadata+0x116/0x180 [ 727.645055][T16887] ? kmsan_internal_check_memory+0xb1/0x520 [ 727.650958][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 727.656596][T16887] ? kmsan_check_memory+0xd/0x10 [ 727.661538][T16887] ? ____sys_recvmsg+0xa2d/0xd80 [ 727.666479][T16887] ? __msan_get_context_state+0x9/0x20 [ 727.671937][T16887] ? kfree+0x29/0x11b0 [ 727.677370][T16887] ? kmsan_get_metadata+0x116/0x180 [ 727.684033][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 727.689710][T16887] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 727.695791][T16887] ? _copy_from_user+0x1cd/0x2d0 [ 727.700734][T16887] ? kmsan_get_metadata+0x116/0x180 [ 727.707514][T16887] __msan_chain_origin+0x57/0xa0 [ 727.714118][T16887] do_recvmmsg+0x17ee/0x2300 [ 727.718732][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 727.724369][T16887] ? __msan_poison_alloca+0xe9/0x110 [ 727.729662][T16887] ? __se_sys_recvmmsg+0xd3/0x410 [ 727.734694][T16887] __se_sys_recvmmsg+0x247/0x410 [ 727.739632][T16887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 727.747268][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 727.753934][T16887] do_syscall_64+0x9f/0x140 [ 727.758448][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 727.764342][T16887] RIP: 0033:0x45e159 [ 727.768238][T16887] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 727.788511][T16887] RSP: 002b:00007f92e7375c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 727.796936][T16887] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 727.804944][T16887] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 727.812916][T16887] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 727.820895][T16887] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 727.828870][T16887] R13: 00000000016afb7f R14: 00007f92e73769c0 R15: 000000000119bf8c [ 727.837578][T16887] Uninit was stored to memory at: [ 727.844247][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 727.849970][T16887] __msan_chain_origin+0x57/0xa0 [ 727.854913][T16887] do_recvmmsg+0x17ee/0x2300 [ 727.862821][T16887] __se_sys_recvmmsg+0x247/0x410 [ 727.867767][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 727.872621][T16887] do_syscall_64+0x9f/0x140 [ 727.877126][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 727.883001][T16887] [ 727.888248][T16887] Uninit was stored to memory at: [ 727.893903][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 727.899631][T16887] __msan_chain_origin+0x57/0xa0 [ 727.904578][T16887] do_recvmmsg+0x17ee/0x2300 [ 727.909175][T16887] __se_sys_recvmmsg+0x247/0x410 [ 727.918194][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 727.925134][T16887] do_syscall_64+0x9f/0x140 [ 727.929648][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 727.935535][T16887] [ 727.937865][T16887] Uninit was stored to memory at: [ 727.942899][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 727.948625][T16887] __msan_chain_origin+0x57/0xa0 [ 727.953574][T16887] do_recvmmsg+0x17ee/0x2300 [ 727.959124][T16887] __se_sys_recvmmsg+0x247/0x410 [ 727.964797][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 727.969656][T16887] do_syscall_64+0x9f/0x140 [ 727.974170][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 727.980050][T16887] [ 727.982377][T16887] Uninit was stored to memory at: [ 727.987409][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 727.993133][T16887] __msan_chain_origin+0x57/0xa0 [ 727.998974][T16887] do_recvmmsg+0x17ee/0x2300 [ 728.004609][T16887] __se_sys_recvmmsg+0x247/0x410 [ 728.009557][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 728.014415][T16887] do_syscall_64+0x9f/0x140 [ 728.018922][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 728.028484][T16887] [ 728.033585][T16887] Uninit was stored to memory at: [ 728.038631][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 728.044355][T16887] __msan_chain_origin+0x57/0xa0 [ 728.049300][T16887] do_recvmmsg+0x17ee/0x2300 [ 728.053899][T16887] __se_sys_recvmmsg+0x247/0x410 [ 728.058840][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 728.063781][T16887] do_syscall_64+0x9f/0x140 [ 728.069603][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 728.075483][T16887] [ 728.077798][T16887] Uninit was stored to memory at: [ 728.081053][T16929] not chained 350000 origins [ 728.082828][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 728.087393][T16929] CPU: 1 PID: 16929 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 728.093086][T16887] __msan_chain_origin+0x57/0xa0 [ 728.101814][T16929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 728.106734][T16887] do_recvmmsg+0x17ee/0x2300 [ 728.116856][T16929] Call Trace: [ 728.121444][T16887] __se_sys_recvmmsg+0x247/0x410 [ 728.124711][T16929] dump_stack+0x21c/0x280 [ 728.129611][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 728.129637][T16887] do_syscall_64+0x9f/0x140 [ 728.133948][T16929] kmsan_internal_chain_origin+0x6f/0x130 [ 728.138772][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 728.143247][T16929] ? __msan_get_context_state+0x9/0x20 [ 728.148930][T16887] [ 728.154806][T16929] ? kmsan_get_metadata+0x116/0x180 [ 728.160225][T16887] Uninit was stored to memory at: [ 728.162547][T16929] ? kmsan_internal_check_memory+0xb1/0x520 [ 728.167814][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 728.172810][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 728.178673][T16887] __msan_chain_origin+0x57/0xa0 [ 728.184361][T16929] ? kmsan_check_memory+0xd/0x10 [ 728.189968][T16887] do_recvmmsg+0x17ee/0x2300 [ 728.194880][T16929] ? ____sys_recvmsg+0xa2d/0xd80 [ 728.199793][T16887] __se_sys_recvmmsg+0x247/0x410 [ 728.204355][T16929] ? __msan_get_context_state+0x9/0x20 [ 728.209265][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 728.214173][T16929] ? kfree+0x29/0x11b0 [ 728.219606][T16887] do_syscall_64+0x9f/0x140 [ 728.224431][T16929] ? kmsan_get_metadata+0x116/0x180 [ 728.228501][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 728.232984][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 728.238138][T16887] [ 728.244032][T16929] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 728.249623][T16887] Local variable ----msg_sys@do_recvmmsg created at: [ 728.251937][T16929] ? _copy_from_user+0x1cd/0x2d0 [ 728.257974][T16887] do_recvmmsg+0xbc/0x2300 [ 728.264623][T16929] ? kmsan_get_metadata+0x116/0x180 [ 728.269533][T16887] do_recvmmsg+0xbc/0x2300 [ 728.273920][T16929] __msan_chain_origin+0x57/0xa0 [ 728.288409][T16929] do_recvmmsg+0x17ee/0x2300 [ 728.293024][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 728.298676][T16929] ? __msan_poison_alloca+0xe9/0x110 [ 728.303978][T16929] ? __se_sys_recvmmsg+0xd3/0x410 [ 728.309016][T16929] __se_sys_recvmmsg+0x247/0x410 [ 728.313960][T16929] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 728.319773][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 728.324633][T16929] do_syscall_64+0x9f/0x140 [ 728.329143][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 728.335031][T16929] RIP: 0033:0x45e159 [ 728.338948][T16929] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 728.358562][T16929] RSP: 002b:00007f7ad6bc8c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 728.366988][T16929] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 728.374960][T16929] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 728.382931][T16929] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 728.391165][T16929] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 728.399210][T16929] R13: 00000000016afb7f R14: 00007f7ad6bc99c0 R15: 000000000119bf8c [ 728.407213][T16929] Uninit was stored to memory at: [ 728.412247][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 728.417964][T16929] __msan_chain_origin+0x57/0xa0 [ 728.422904][T16929] do_recvmmsg+0x17ee/0x2300 [ 728.427498][T16929] __se_sys_recvmmsg+0x247/0x410 [ 728.432441][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 728.437297][T16929] do_syscall_64+0x9f/0x140 [ 728.441801][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 728.447680][T16929] [ 728.450000][T16929] Uninit was stored to memory at: [ 728.455031][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 728.460747][T16929] __msan_chain_origin+0x57/0xa0 [ 728.465684][T16929] do_recvmmsg+0x17ee/0x2300 [ 728.470276][T16929] __se_sys_recvmmsg+0x247/0x410 [ 728.475231][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 728.480080][T16929] do_syscall_64+0x9f/0x140 [ 728.484589][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 728.490481][T16929] [ 728.492805][T16929] Uninit was stored to memory at: [ 728.497834][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 728.503561][T16929] __msan_chain_origin+0x57/0xa0 [ 728.508509][T16929] do_recvmmsg+0x17ee/0x2300 [ 728.513111][T16929] __se_sys_recvmmsg+0x247/0x410 [ 728.518053][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 728.520271][T16931] not chained 360000 origins [ 728.522908][T16929] do_syscall_64+0x9f/0x140 [ 728.527485][T16931] CPU: 0 PID: 16931 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 728.531980][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 728.540718][T16931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 728.546575][T16929] [ 728.556605][T16931] Call Trace: [ 728.558909][T16929] Uninit was stored to memory at: [ 728.562181][T16931] dump_stack+0x21c/0x280 [ 728.567183][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 728.571483][T16931] kmsan_internal_chain_origin+0x6f/0x130 [ 728.577169][T16929] __msan_chain_origin+0x57/0xa0 [ 728.582859][T16931] ? __msan_get_context_state+0x9/0x20 [ 728.587769][T16929] do_recvmmsg+0x17ee/0x2300 [ 728.593200][T16931] ? kmsan_get_metadata+0x116/0x180 [ 728.597849][T16929] __se_sys_recvmmsg+0x247/0x410 [ 728.603029][T16931] ? kmsan_internal_check_memory+0xb1/0x520 [ 728.607937][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 728.613821][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 728.618654][T16929] do_syscall_64+0x9f/0x140 [ 728.624265][T16931] ? kmsan_check_memory+0xd/0x10 [ 728.628745][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 728.633657][T16931] ? ____sys_recvmsg+0xa2d/0xd80 [ 728.639510][T16929] [ 728.644446][T16931] ? __msan_get_context_state+0x9/0x20 [ 728.646756][T16929] Uninit was stored to memory at: [ 728.652207][T16931] ? kfree+0x29/0x11b0 [ 728.657215][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 728.661267][T16931] ? kmsan_get_metadata+0x116/0x180 [ 728.666977][T16929] __msan_chain_origin+0x57/0xa0 [ 728.672168][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 728.677093][T16929] do_recvmmsg+0x17ee/0x2300 [ 728.682706][T16931] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 728.687267][T16929] __se_sys_recvmmsg+0x247/0x410 [ 728.693323][T16931] ? _copy_from_user+0x1cd/0x2d0 [ 728.698233][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 728.703144][T16931] ? kmsan_get_metadata+0x116/0x180 [ 728.707971][T16929] do_syscall_64+0x9f/0x140 [ 728.713140][T16931] __msan_chain_origin+0x57/0xa0 [ 728.717620][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 728.722527][T16931] do_recvmmsg+0x17ee/0x2300 [ 728.728726][T16929] [ 728.733306][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 728.735597][T16929] Uninit was stored to memory at: [ 728.741213][T16931] ? __msan_poison_alloca+0xe9/0x110 [ 728.746226][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 728.751482][T16931] ? __se_sys_recvmmsg+0xd3/0x410 [ 728.757171][T16929] __msan_chain_origin+0x57/0xa0 [ 728.762169][T16931] __se_sys_recvmmsg+0x247/0x410 [ 728.767090][T16929] do_recvmmsg+0x17ee/0x2300 [ 728.772013][T16931] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 728.776574][T16929] __se_sys_recvmmsg+0x247/0x410 [ 728.782352][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 728.787259][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 728.792084][T16931] do_syscall_64+0x9f/0x140 [ 728.796905][T16929] do_syscall_64+0x9f/0x140 [ 728.801380][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 728.805855][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 728.811713][T16931] RIP: 0033:0x45e159 [ 728.817569][T16929] [ 728.821446][T16931] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 728.823740][T16929] Uninit was stored to memory at: [ 728.843324][T16931] RSP: 002b:00007f7ad6ba7c68 EFLAGS: 00000246 [ 728.848319][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 728.848325][T16931] ORIG_RAX: 000000000000012b [ 728.848344][T16931] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 728.854387][T16929] __msan_chain_origin+0x57/0xa0 [ 728.860079][T16931] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 728.864743][T16929] do_recvmmsg+0x17ee/0x2300 [ 728.872685][T16931] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 728.877601][T16929] __se_sys_recvmmsg+0x247/0x410 [ 728.885545][T16931] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 728.890111][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 728.898058][T16931] R13: 00000000016afb7f R14: 00007f7ad6ba89c0 R15: 000000000119c034 [ 728.902974][T16929] do_syscall_64+0x9f/0x140 [ 728.910909][T16931] Uninit was stored to memory at: [ 728.915742][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 728.923707][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 728.928166][T16929] [ 728.933170][T16931] __msan_chain_origin+0x57/0xa0 [ 728.939039][T16929] Local variable ----msg_sys@do_recvmmsg created at: [ 728.944738][T16931] do_recvmmsg+0x17ee/0x2300 [ 728.947040][T16929] do_recvmmsg+0xbc/0x2300 [ 728.951953][T16931] __se_sys_recvmmsg+0x247/0x410 [ 728.958597][T16929] do_recvmmsg+0xbc/0x2300 [ 728.963159][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 728.981691][T16931] do_syscall_64+0x9f/0x140 [ 728.986194][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 728.992163][T16931] [ 728.994487][T16931] Uninit was stored to memory at: [ 729.000482][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 729.006520][T16931] __msan_chain_origin+0x57/0xa0 [ 729.011457][T16931] do_recvmmsg+0x17ee/0x2300 [ 729.016051][T16931] __se_sys_recvmmsg+0x247/0x410 [ 729.020989][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 729.028611][T16931] do_syscall_64+0x9f/0x140 [ 729.036336][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 729.042215][T16931] [ 729.044536][T16931] Uninit was stored to memory at: [ 729.049571][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 729.057784][T16931] __msan_chain_origin+0x57/0xa0 [ 729.063680][T16931] do_recvmmsg+0x17ee/0x2300 [ 729.068274][T16931] __se_sys_recvmmsg+0x247/0x410 [ 729.073215][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 729.079514][T16931] do_syscall_64+0x9f/0x140 [ 729.085313][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 729.091189][T16931] [ 729.093510][T16931] Uninit was stored to memory at: [ 729.098546][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 729.108716][T16931] __msan_chain_origin+0x57/0xa0 [ 729.114621][T16931] do_recvmmsg+0x17ee/0x2300 [ 729.119235][T16931] __se_sys_recvmmsg+0x247/0x410 [ 729.128652][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 729.134511][T16931] do_syscall_64+0x9f/0x140 [ 729.139016][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 729.144895][T16931] [ 729.147217][T16931] Uninit was stored to memory at: [ 729.152253][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 729.159118][T16931] __msan_chain_origin+0x57/0xa0 [ 729.165023][T16931] do_recvmmsg+0x17ee/0x2300 [ 729.169616][T16931] __se_sys_recvmmsg+0x247/0x410 [ 729.174558][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 729.179416][T16931] do_syscall_64+0x9f/0x140 [ 729.183923][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 729.189804][T16931] [ 729.192130][T16931] Uninit was stored to memory at: [ 729.199177][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 729.205233][T16931] __msan_chain_origin+0x57/0xa0 [ 729.210174][T16931] do_recvmmsg+0x17ee/0x2300 [ 729.214769][T16931] __se_sys_recvmmsg+0x247/0x410 [ 729.219708][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 729.224565][T16931] do_syscall_64+0x9f/0x140 [ 729.229070][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 729.234948][T16931] [ 729.237267][T16931] Uninit was stored to memory at: [ 729.242300][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 729.248018][T16931] __msan_chain_origin+0x57/0xa0 [ 729.252959][T16931] do_recvmmsg+0x17ee/0x2300 [ 729.259236][T16931] __se_sys_recvmmsg+0x247/0x410 [ 729.265145][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 729.269997][T16931] do_syscall_64+0x9f/0x140 [ 729.274508][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 729.280386][T16931] [ 729.282710][T16931] Local variable ----msg_sys@do_recvmmsg created at: [ 729.289388][T16931] do_recvmmsg+0xbc/0x2300 [ 729.293809][T16931] do_recvmmsg+0xbc/0x2300 [ 729.597651][T16891] not chained 370000 origins [ 729.602285][T16891] CPU: 0 PID: 16891 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 729.615096][T16891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 729.625159][T16891] Call Trace: [ 729.628458][T16891] dump_stack+0x21c/0x280 [ 729.637240][T16891] kmsan_internal_chain_origin+0x6f/0x130 [ 729.644364][T16891] ? __msan_get_context_state+0x9/0x20 [ 729.649831][T16891] ? kmsan_get_metadata+0x116/0x180 [ 729.657734][T16891] ? kmsan_internal_check_memory+0xb1/0x520 [ 729.666281][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 729.671923][T16891] ? kmsan_check_memory+0xd/0x10 [ 729.676872][T16891] ? ____sys_recvmsg+0xa2d/0xd80 [ 729.681819][T16891] ? __msan_get_context_state+0x9/0x20 [ 729.688135][T16891] ? kfree+0x29/0x11b0 [ 729.694987][T16891] ? kmsan_get_metadata+0x116/0x180 [ 729.700199][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 729.705847][T16891] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 729.711919][T16891] ? _copy_from_user+0x1cd/0x2d0 [ 729.718454][T16891] ? kmsan_get_metadata+0x116/0x180 [ 729.725490][T16891] __msan_chain_origin+0x57/0xa0 [ 729.730434][T16891] do_recvmmsg+0x17ee/0x2300 [ 729.737694][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 729.744785][T16891] ? __msan_poison_alloca+0xe9/0x110 [ 729.750077][T16891] ? __se_sys_recvmmsg+0xd3/0x410 [ 729.755105][T16891] __se_sys_recvmmsg+0x247/0x410 [ 729.760046][T16891] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 729.768224][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 729.775184][T16891] do_syscall_64+0x9f/0x140 [ 729.779699][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 729.787752][T16891] RIP: 0033:0x45e159 [ 729.794523][T16891] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 729.817691][T16891] RSP: 002b:00007f92e7354c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 729.826118][T16891] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 729.838006][T16891] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 729.845986][T16891] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 729.853963][T16891] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 729.863989][T16891] R13: 00000000016afb7f R14: 00007f92e73559c0 R15: 000000000119c034 [ 729.871961][T16891] Uninit was stored to memory at: [ 729.877000][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 729.882720][T16891] __msan_chain_origin+0x57/0xa0 [ 729.889743][T16891] do_recvmmsg+0x17ee/0x2300 [ 729.895722][T16891] __se_sys_recvmmsg+0x247/0x410 [ 729.900663][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 729.908777][T16891] do_syscall_64+0x9f/0x140 [ 729.914675][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 729.920575][T16891] [ 729.922916][T16891] Uninit was stored to memory at: [ 729.927947][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 729.933667][T16891] __msan_chain_origin+0x57/0xa0 [ 729.939846][T16891] do_recvmmsg+0x17ee/0x2300 [ 729.945769][T16891] __se_sys_recvmmsg+0x247/0x410 [ 729.950709][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 729.958941][T16891] do_syscall_64+0x9f/0x140 [ 729.964843][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 729.970723][T16891] [ 729.973048][T16891] Uninit was stored to memory at: [ 729.978086][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 729.983806][T16891] __msan_chain_origin+0x57/0xa0 [ 729.990023][T16891] do_recvmmsg+0x17ee/0x2300 [ 729.995956][T16891] __se_sys_recvmmsg+0x247/0x410 [ 730.000893][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 730.005747][T16891] do_syscall_64+0x9f/0x140 [ 730.010252][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 730.019366][T16891] [ 730.024858][T16891] Uninit was stored to memory at: [ 730.029893][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 730.039301][T16891] __msan_chain_origin+0x57/0xa0 [ 730.045293][T16891] do_recvmmsg+0x17ee/0x2300 [ 730.049886][T16891] __se_sys_recvmmsg+0x247/0x410 [ 730.054829][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 730.059685][T16891] do_syscall_64+0x9f/0x140 [ 730.068770][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 730.076271][T16891] [ 730.078591][T16891] Uninit was stored to memory at: [ 730.083631][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 730.089614][T16891] __msan_chain_origin+0x57/0xa0 [ 730.098942][T16891] do_recvmmsg+0x17ee/0x2300 [ 730.104903][T16891] __se_sys_recvmmsg+0x247/0x410 [ 730.109847][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 730.118515][T16891] do_syscall_64+0x9f/0x140 [ 730.124457][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 730.130449][T16891] [ 730.132769][T16891] Uninit was stored to memory at: [ 730.137802][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 730.143523][T16891] __msan_chain_origin+0x57/0xa0 [ 730.149408][T16891] do_recvmmsg+0x17ee/0x2300 [ 730.155400][T16891] __se_sys_recvmmsg+0x247/0x410 [ 730.160339][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 730.168709][T16891] do_syscall_64+0x9f/0x140 [ 730.175966][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 730.181847][T16891] [ 730.184169][T16891] Uninit was stored to memory at: [ 730.189201][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 730.198768][T16891] __msan_chain_origin+0x57/0xa0 [ 730.204806][T16891] do_recvmmsg+0x17ee/0x2300 [ 730.209395][T16891] __se_sys_recvmmsg+0x247/0x410 [ 730.214334][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 730.219185][T16891] do_syscall_64+0x9f/0x140 [ 730.223696][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 730.229964][T16891] [ 730.235517][T16891] Local variable ----msg_sys@do_recvmmsg created at: [ 730.242196][T16891] do_recvmmsg+0xbc/0x2300 [ 730.249387][T16891] do_recvmmsg+0xbc/0x2300 [ 730.459793][T16887] not chained 380000 origins [ 730.464434][T16887] CPU: 0 PID: 16887 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 730.477537][T16887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 730.488318][T16887] Call Trace: [ 730.494287][T16887] dump_stack+0x21c/0x280 [ 730.498634][T16887] kmsan_internal_chain_origin+0x6f/0x130 [ 730.504360][T16887] ? __msan_get_context_state+0x9/0x20 [ 730.509826][T16887] ? kmsan_get_metadata+0x116/0x180 [ 730.518732][T16887] ? kmsan_internal_check_memory+0xb1/0x520 [ 730.524983][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 730.530623][T16887] ? kmsan_check_memory+0xd/0x10 [ 730.539225][T16887] ? ____sys_recvmsg+0xa2d/0xd80 [ 730.545279][T16887] ? __msan_get_context_state+0x9/0x20 [ 730.550742][T16887] ? kfree+0x29/0x11b0 [ 730.554812][T16887] ? kmsan_get_metadata+0x116/0x180 [ 730.560016][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 730.569321][T16887] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 730.575640][T16887] ? _copy_from_user+0x1cd/0x2d0 [ 730.580579][T16887] ? kmsan_get_metadata+0x116/0x180 [ 730.585782][T16887] __msan_chain_origin+0x57/0xa0 [ 730.590728][T16887] do_recvmmsg+0x17ee/0x2300 [ 730.598763][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 730.604975][T16887] ? __msan_poison_alloca+0xe9/0x110 [ 730.610267][T16887] ? __se_sys_recvmmsg+0xd3/0x410 [ 730.618769][T16887] __se_sys_recvmmsg+0x247/0x410 [ 730.624841][T16887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 730.630656][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 730.635521][T16887] do_syscall_64+0x9f/0x140 [ 730.640035][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 730.649321][T16887] RIP: 0033:0x45e159 [ 730.655216][T16887] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 730.676290][T16887] RSP: 002b:00007f92e7375c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 730.684718][T16887] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 730.692787][T16887] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 730.700768][T16887] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 730.713408][T16887] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 730.721392][T16887] R13: 00000000016afb7f R14: 00007f92e73769c0 R15: 000000000119bf8c [ 730.729371][T16887] Uninit was stored to memory at: [ 730.734413][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 730.740852][T16887] __msan_chain_origin+0x57/0xa0 [ 730.748225][T16887] do_recvmmsg+0x17ee/0x2300 [ 730.755326][T16887] __se_sys_recvmmsg+0x247/0x410 [ 730.760269][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 730.765125][T16887] do_syscall_64+0x9f/0x140 [ 730.769635][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 730.775515][T16887] [ 730.777836][T16887] Uninit was stored to memory at: [ 730.782872][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 730.788594][T16887] __msan_chain_origin+0x57/0xa0 [ 730.797596][T16887] do_recvmmsg+0x17ee/0x2300 [ 730.804722][T16887] __se_sys_recvmmsg+0x247/0x410 [ 730.809667][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 730.814525][T16887] do_syscall_64+0x9f/0x140 [ 730.819031][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 730.824911][T16887] [ 730.827233][T16887] Uninit was stored to memory at: [ 730.832268][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 730.837992][T16887] __msan_chain_origin+0x57/0xa0 [ 730.842932][T16887] do_recvmmsg+0x17ee/0x2300 [ 730.851137][T16887] __se_sys_recvmmsg+0x247/0x410 [ 730.858765][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 730.863624][T16887] do_syscall_64+0x9f/0x140 [ 730.868134][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 730.878127][T16887] [ 730.884925][T16887] Uninit was stored to memory at: [ 730.889963][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 730.895683][T16887] __msan_chain_origin+0x57/0xa0 [ 730.900623][T16887] do_recvmmsg+0x17ee/0x2300 [ 730.908296][T16887] __se_sys_recvmmsg+0x247/0x410 [ 730.915508][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 730.920365][T16887] do_syscall_64+0x9f/0x140 [ 730.927945][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 730.935289][T16887] [ 730.937610][T16887] Uninit was stored to memory at: [ 730.942644][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 730.948362][T16887] __msan_chain_origin+0x57/0xa0 [ 730.957339][T16887] do_recvmmsg+0x17ee/0x2300 [ 730.964467][T16887] __se_sys_recvmmsg+0x247/0x410 [ 730.969410][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 730.977628][T16887] do_syscall_64+0x9f/0x140 [ 730.984692][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 730.990574][T16887] [ 730.992895][T16887] Uninit was stored to memory at: [ 730.997927][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 731.004542][T16887] __msan_chain_origin+0x57/0xa0 [ 731.009493][T16887] do_recvmmsg+0x17ee/0x2300 [ 731.014094][T16887] __se_sys_recvmmsg+0x247/0x410 [ 731.020231][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 731.026386][T16887] do_syscall_64+0x9f/0x140 [ 731.030893][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 731.036772][T16887] [ 731.039097][T16887] Uninit was stored to memory at: [ 731.044127][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 731.055219][T16887] __msan_chain_origin+0x57/0xa0 [ 731.060159][T16887] do_recvmmsg+0x17ee/0x2300 [ 731.064754][T16887] __se_sys_recvmmsg+0x247/0x410 [ 731.069690][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 731.079280][T16887] do_syscall_64+0x9f/0x140 [ 731.085342][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 731.091222][T16887] [ 731.098253][T16887] Local variable ----msg_sys@do_recvmmsg created at: [ 731.104945][T16887] do_recvmmsg+0xbc/0x2300 [ 731.109360][T16887] do_recvmmsg+0xbc/0x2300 [ 731.421782][T16931] not chained 390000 origins [ 731.427881][T16931] CPU: 0 PID: 16931 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 731.436639][T16931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 731.449217][T16931] Call Trace: [ 731.455068][T16931] dump_stack+0x21c/0x280 [ 731.459412][T16931] kmsan_internal_chain_origin+0x6f/0x130 [ 731.465130][T16931] ? __msan_get_context_state+0x9/0x20 [ 731.470590][T16931] ? kmsan_get_metadata+0x116/0x180 [ 731.478900][T16931] ? kmsan_internal_check_memory+0xb1/0x520 [ 731.485249][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 731.490887][T16931] ? kmsan_check_memory+0xd/0x10 [ 731.499798][T16931] ? ____sys_recvmsg+0xa2d/0xd80 [ 731.507495][T16931] ? __msan_get_context_state+0x9/0x20 [ 731.512962][T16931] ? kfree+0x29/0x11b0 [ 731.517036][T16931] ? kmsan_get_metadata+0x116/0x180 [ 731.522239][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 731.529657][T16931] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 731.536051][T16931] ? _copy_from_user+0x1cd/0x2d0 [ 731.540994][T16931] ? kmsan_get_metadata+0x116/0x180 [ 731.546194][T16931] __msan_chain_origin+0x57/0xa0 [ 731.551143][T16931] do_recvmmsg+0x17ee/0x2300 [ 731.559501][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 731.565794][T16931] ? __msan_poison_alloca+0xe9/0x110 [ 731.571085][T16931] ? __se_sys_recvmmsg+0xd3/0x410 [ 731.576118][T16931] __se_sys_recvmmsg+0x247/0x410 [ 731.581060][T16931] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 731.589211][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 731.595381][T16931] do_syscall_64+0x9f/0x140 [ 731.599890][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 731.609855][T16931] RIP: 0033:0x45e159 [ 731.615837][T16931] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 731.638792][T16931] RSP: 002b:00007f7ad6ba7c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 731.647225][T16931] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 731.655199][T16931] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 731.663174][T16931] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 731.676063][T16931] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 731.684060][T16931] R13: 00000000016afb7f R14: 00007f7ad6ba89c0 R15: 000000000119c034 [ 731.696360][T16931] Uninit was stored to memory at: [ 731.701406][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 731.707130][T16931] __msan_chain_origin+0x57/0xa0 [ 731.712074][T16931] do_recvmmsg+0x17ee/0x2300 [ 731.719339][T16931] __se_sys_recvmmsg+0x247/0x410 [ 731.725541][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 731.730398][T16931] do_syscall_64+0x9f/0x140 [ 731.734905][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 731.740784][T16931] [ 731.743103][T16931] Uninit was stored to memory at: [ 731.750247][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 731.756582][T16931] __msan_chain_origin+0x57/0xa0 [ 731.761523][T16931] do_recvmmsg+0x17ee/0x2300 [ 731.766114][T16931] __se_sys_recvmmsg+0x247/0x410 [ 731.771048][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 731.779401][T16931] do_syscall_64+0x9f/0x140 [ 731.785510][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 731.791385][T16931] [ 731.793704][T16931] Uninit was stored to memory at: [ 731.798722][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 731.804450][T16931] __msan_chain_origin+0x57/0xa0 [ 731.809378][T16931] do_recvmmsg+0x17ee/0x2300 [ 731.813960][T16931] __se_sys_recvmmsg+0x247/0x410 [ 731.818886][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 731.823767][T16931] do_syscall_64+0x9f/0x140 [ 731.828258][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 731.834124][T16931] [ 731.836436][T16931] Uninit was stored to memory at: [ 731.841452][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 731.847156][T16931] __msan_chain_origin+0x57/0xa0 [ 731.852080][T16931] do_recvmmsg+0x17ee/0x2300 [ 731.856656][T16931] __se_sys_recvmmsg+0x247/0x410 [ 731.861580][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 731.866419][T16931] do_syscall_64+0x9f/0x140 [ 731.870909][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 731.876776][T16931] [ 731.879084][T16931] Uninit was stored to memory at: [ 731.884097][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 731.889801][T16931] __msan_chain_origin+0x57/0xa0 [ 731.894727][T16931] do_recvmmsg+0x17ee/0x2300 [ 731.899320][T16931] __se_sys_recvmmsg+0x247/0x410 [ 731.904245][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 731.909085][T16931] do_syscall_64+0x9f/0x140 [ 731.913574][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 731.919456][T16931] [ 731.921766][T16931] Uninit was stored to memory at: [ 731.926781][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 731.932483][T16931] __msan_chain_origin+0x57/0xa0 [ 731.937405][T16931] do_recvmmsg+0x17ee/0x2300 [ 731.941982][T16931] __se_sys_recvmmsg+0x247/0x410 [ 731.946905][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 731.951756][T16931] do_syscall_64+0x9f/0x140 [ 731.956246][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 731.962117][T16931] [ 731.964425][T16931] Uninit was stored to memory at: [ 731.969439][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 731.975144][T16931] __msan_chain_origin+0x57/0xa0 [ 731.980069][T16931] do_recvmmsg+0x17ee/0x2300 [ 731.984647][T16931] __se_sys_recvmmsg+0x247/0x410 [ 731.989576][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 731.994412][T16931] do_syscall_64+0x9f/0x140 [ 731.998901][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 732.004771][T16931] [ 732.007081][T16931] Local variable ----msg_sys@do_recvmmsg created at: [ 732.013740][T16931] do_recvmmsg+0xbc/0x2300 [ 732.018156][T16931] do_recvmmsg+0xbc/0x2300 [ 732.527887][T16887] not chained 400000 origins [ 732.532521][T16887] CPU: 1 PID: 16887 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 732.541276][T16887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 732.551350][T16887] Call Trace: [ 732.559328][T16887] dump_stack+0x21c/0x280 [ 732.566590][T16887] kmsan_internal_chain_origin+0x6f/0x130 [ 732.572349][T16887] ? __msan_get_context_state+0x9/0x20 [ 732.577811][T16887] ? kmsan_get_metadata+0x116/0x180 [ 732.583017][T16887] ? kmsan_internal_check_memory+0xb1/0x520 [ 732.589585][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 732.597030][T16887] ? kmsan_check_memory+0xd/0x10 [ 732.601975][T16887] ? ____sys_recvmsg+0xa2d/0xd80 [ 732.606917][T16887] ? __msan_get_context_state+0x9/0x20 [ 732.612379][T16887] ? kfree+0x29/0x11b0 [ 732.616446][T16887] ? kmsan_get_metadata+0x116/0x180 [ 732.621650][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 732.629317][T16887] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 732.635393][T16887] ? _copy_from_user+0x1cd/0x2d0 [ 732.641541][T16887] ? kmsan_get_metadata+0x116/0x180 [ 732.647980][T16887] __msan_chain_origin+0x57/0xa0 [ 732.652928][T16887] do_recvmmsg+0x17ee/0x2300 [ 732.657538][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 732.663180][T16887] ? __msan_poison_alloca+0xe9/0x110 [ 732.668524][T16887] ? __se_sys_recvmmsg+0xd3/0x410 [ 732.673557][T16887] __se_sys_recvmmsg+0x247/0x410 [ 732.681112][T16887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 732.687590][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 732.692480][T16887] do_syscall_64+0x9f/0x140 [ 732.696990][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 732.702881][T16887] RIP: 0033:0x45e159 [ 732.711509][T16887] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 732.731129][T16887] RSP: 002b:00007f92e7375c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 732.739639][T16887] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 732.750337][T16887] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 732.758311][T16887] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 732.766283][T16887] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 732.774250][T16887] R13: 00000000016afb7f R14: 00007f92e73769c0 R15: 000000000119bf8c [ 732.782219][T16887] Uninit was stored to memory at: [ 732.787253][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 732.792968][T16887] __msan_chain_origin+0x57/0xa0 [ 732.799900][T16887] do_recvmmsg+0x17ee/0x2300 [ 732.807217][T16887] __se_sys_recvmmsg+0x247/0x410 [ 732.812160][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 732.817009][T16887] do_syscall_64+0x9f/0x140 [ 732.821508][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 732.830845][T16887] [ 732.833254][T16887] Uninit was stored to memory at: [ 732.838286][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 732.844003][T16887] __msan_chain_origin+0x57/0xa0 [ 732.850673][T16887] do_recvmmsg+0x17ee/0x2300 [ 732.856923][T16887] __se_sys_recvmmsg+0x247/0x410 [ 732.861862][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 732.866715][T16887] do_syscall_64+0x9f/0x140 [ 732.871218][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 732.877180][T16887] [ 732.879497][T16887] Uninit was stored to memory at: [ 732.887186][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 732.892906][T16887] __msan_chain_origin+0x57/0xa0 [ 732.897845][T16887] do_recvmmsg+0x17ee/0x2300 [ 732.905991][T16887] __se_sys_recvmmsg+0x247/0x410 [ 732.910936][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 732.920536][T16887] do_syscall_64+0x9f/0x140 [ 732.925053][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 732.930562][T16929] not chained 410000 origins [ 732.930933][T16887] [ 732.935516][T16929] CPU: 0 PID: 16929 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 732.937810][T16887] Uninit was stored to memory at: [ 732.946560][T16929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 732.951596][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 732.961623][T16929] Call Trace: [ 732.967321][T16887] __msan_chain_origin+0x57/0xa0 [ 732.970587][T16929] dump_stack+0x21c/0x280 [ 732.975495][T16887] do_recvmmsg+0x17ee/0x2300 [ 732.979797][T16929] kmsan_internal_chain_origin+0x6f/0x130 [ 732.984354][T16887] __se_sys_recvmmsg+0x247/0x410 [ 732.990042][T16929] ? __msan_get_context_state+0x9/0x20 [ 732.994951][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 733.000378][T16929] ? kmsan_get_metadata+0x116/0x180 [ 733.005201][T16887] do_syscall_64+0x9f/0x140 [ 733.010373][T16929] ? kmsan_internal_check_memory+0xb1/0x520 [ 733.014849][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 733.020714][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 733.026563][T16887] [ 733.032177][T16929] ? kmsan_check_memory+0xd/0x10 [ 733.034471][T16887] Uninit was stored to memory at: [ 733.039392][T16929] ? ____sys_recvmsg+0xa2d/0xd80 [ 733.044390][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 733.049294][T16929] ? __msan_get_context_state+0x9/0x20 [ 733.054985][T16887] __msan_chain_origin+0x57/0xa0 [ 733.060420][T16929] ? kfree+0x29/0x11b0 [ 733.065331][T16887] do_recvmmsg+0x17ee/0x2300 [ 733.069369][T16929] ? kmsan_get_metadata+0x116/0x180 [ 733.073930][T16887] __se_sys_recvmmsg+0x247/0x410 [ 733.079104][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 733.084025][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 733.089646][T16929] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 733.094466][T16887] do_syscall_64+0x9f/0x140 [ 733.100516][T16929] ? _copy_from_user+0x1cd/0x2d0 [ 733.104992][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 733.109902][T16929] ? kmsan_get_metadata+0x116/0x180 [ 733.115776][T16887] [ 733.120955][T16929] __msan_chain_origin+0x57/0xa0 [ 733.123249][T16887] Uninit was stored to memory at: [ 733.128166][T16929] do_recvmmsg+0x17ee/0x2300 [ 733.133164][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 733.137741][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 733.143424][T16887] __msan_chain_origin+0x57/0xa0 [ 733.149028][T16929] ? __msan_poison_alloca+0xe9/0x110 [ 733.153937][T16887] do_recvmmsg+0x17ee/0x2300 [ 733.159195][T16929] ? __se_sys_recvmmsg+0xd3/0x410 [ 733.163754][T16887] __se_sys_recvmmsg+0x247/0x410 [ 733.168752][T16929] __se_sys_recvmmsg+0x247/0x410 [ 733.173673][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 733.178586][T16929] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 733.183408][T16887] do_syscall_64+0x9f/0x140 [ 733.189183][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 733.193659][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 733.198481][T16929] do_syscall_64+0x9f/0x140 [ 733.204330][T16887] [ 733.208817][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 733.211109][T16887] Uninit was stored to memory at: [ 733.216977][T16929] RIP: 0033:0x45e159 [ 733.221980][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 733.225844][T16929] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 733.231535][T16887] __msan_chain_origin+0x57/0xa0 [ 733.251109][T16929] RSP: 002b:00007f7ad6bc8c68 EFLAGS: 00000246 [ 733.256136][T16887] do_recvmmsg+0x17ee/0x2300 [ 733.256152][T16929] ORIG_RAX: 000000000000012b [ 733.262196][T16887] __se_sys_recvmmsg+0x247/0x410 [ 733.266752][T16929] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 733.271405][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 733.276308][T16929] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 733.284257][T16887] do_syscall_64+0x9f/0x140 [ 733.289072][T16929] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 733.297023][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 733.301492][T16929] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 733.309443][T16887] [ 733.315328][T16929] R13: 00000000016afb7f R14: 00007f7ad6bc99c0 R15: 000000000119bf8c [ 733.323350][T16887] Local variable ----msg_sys@do_recvmmsg created at: [ 733.323379][T16887] do_recvmmsg+0xbc/0x2300 [ 733.325699][T16929] Uninit was stored to memory at: [ 733.333646][T16887] do_recvmmsg+0xbc/0x2300 [ 733.340304][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 733.359864][T16929] __msan_chain_origin+0x57/0xa0 [ 733.364841][T16929] do_recvmmsg+0x17ee/0x2300 [ 733.369436][T16929] __se_sys_recvmmsg+0x247/0x410 [ 733.374371][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 733.379222][T16929] do_syscall_64+0x9f/0x140 [ 733.383729][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 733.389604][T16929] [ 733.391922][T16929] Uninit was stored to memory at: [ 733.396953][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 733.402670][T16929] __msan_chain_origin+0x57/0xa0 [ 733.407603][T16929] do_recvmmsg+0x17ee/0x2300 [ 733.412188][T16929] __se_sys_recvmmsg+0x247/0x410 [ 733.417139][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 733.421990][T16929] do_syscall_64+0x9f/0x140 [ 733.426497][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 733.432371][T16929] [ 733.434689][T16929] Uninit was stored to memory at: [ 733.439721][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 733.445440][T16929] __msan_chain_origin+0x57/0xa0 [ 733.450378][T16929] do_recvmmsg+0x17ee/0x2300 [ 733.454971][T16929] __se_sys_recvmmsg+0x247/0x410 [ 733.459908][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 733.464759][T16929] do_syscall_64+0x9f/0x140 [ 733.469259][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 733.475134][T16929] [ 733.477452][T16929] Uninit was stored to memory at: [ 733.482484][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 733.488198][T16929] __msan_chain_origin+0x57/0xa0 [ 733.493137][T16929] do_recvmmsg+0x17ee/0x2300 [ 733.497728][T16929] __se_sys_recvmmsg+0x247/0x410 [ 733.502670][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 733.507533][T16929] do_syscall_64+0x9f/0x140 [ 733.512039][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 733.517918][T16929] [ 733.520242][T16929] Uninit was stored to memory at: [ 733.525277][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 733.530992][T16929] __msan_chain_origin+0x57/0xa0 [ 733.535934][T16929] do_recvmmsg+0x17ee/0x2300 [ 733.540529][T16929] __se_sys_recvmmsg+0x247/0x410 [ 733.545470][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 733.550321][T16929] do_syscall_64+0x9f/0x140 [ 733.554832][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 733.560710][T16929] [ 733.563031][T16929] Uninit was stored to memory at: [ 733.568063][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 733.573780][T16929] __msan_chain_origin+0x57/0xa0 [ 733.578718][T16929] do_recvmmsg+0x17ee/0x2300 [ 733.583312][T16929] __se_sys_recvmmsg+0x247/0x410 [ 733.588252][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 733.593107][T16929] do_syscall_64+0x9f/0x140 [ 733.597614][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 733.603498][T16929] [ 733.605821][T16929] Uninit was stored to memory at: [ 733.610857][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 733.616578][T16929] __msan_chain_origin+0x57/0xa0 [ 733.621519][T16929] do_recvmmsg+0x17ee/0x2300 [ 733.626113][T16929] __se_sys_recvmmsg+0x247/0x410 [ 733.631054][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 733.635909][T16929] do_syscall_64+0x9f/0x140 [ 733.640422][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 733.646307][T16929] [ 733.648634][T16929] Local variable ----msg_sys@do_recvmmsg created at: [ 733.655317][T16929] do_recvmmsg+0xbc/0x2300 [ 733.659736][T16929] do_recvmmsg+0xbc/0x2300 [ 733.866205][T16931] not chained 420000 origins [ 733.870836][T16931] CPU: 0 PID: 16931 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 733.879593][T16931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 733.889645][T16931] Call Trace: [ 733.892953][T16931] dump_stack+0x21c/0x280 [ 733.897288][T16931] kmsan_internal_chain_origin+0x6f/0x130 [ 733.903005][T16931] ? __msan_get_context_state+0x9/0x20 [ 733.908463][T16931] ? kmsan_get_metadata+0x116/0x180 [ 733.913668][T16931] ? kmsan_internal_check_memory+0xb1/0x520 [ 733.919566][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 733.925200][T16931] ? kmsan_check_memory+0xd/0x10 [ 733.930140][T16931] ? ____sys_recvmsg+0xa2d/0xd80 [ 733.935083][T16931] ? __msan_get_context_state+0x9/0x20 [ 733.940538][T16931] ? kfree+0x29/0x11b0 [ 733.944609][T16931] ? kmsan_get_metadata+0x116/0x180 [ 733.949814][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 733.955454][T16931] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 733.961528][T16931] ? _copy_from_user+0x1cd/0x2d0 [ 733.966472][T16931] ? kmsan_get_metadata+0x116/0x180 [ 733.971676][T16931] __msan_chain_origin+0x57/0xa0 [ 733.976641][T16931] do_recvmmsg+0x17ee/0x2300 [ 733.981248][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 733.986884][T16931] ? __msan_poison_alloca+0xe9/0x110 [ 733.992173][T16931] ? __se_sys_recvmmsg+0xd3/0x410 [ 733.997200][T16931] __se_sys_recvmmsg+0x247/0x410 [ 734.002228][T16931] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 734.008044][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 734.012901][T16931] do_syscall_64+0x9f/0x140 [ 734.017407][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 734.023297][T16931] RIP: 0033:0x45e159 [ 734.027193][T16931] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 734.046801][T16931] RSP: 002b:00007f7ad6ba7c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 734.055220][T16931] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 734.063193][T16931] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 734.071162][T16931] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 734.079134][T16931] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 734.087109][T16931] R13: 00000000016afb7f R14: 00007f7ad6ba89c0 R15: 000000000119c034 [ 734.095080][T16931] Uninit was stored to memory at: [ 734.100113][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 734.105832][T16931] __msan_chain_origin+0x57/0xa0 [ 734.110769][T16931] do_recvmmsg+0x17ee/0x2300 [ 734.115358][T16931] __se_sys_recvmmsg+0x247/0x410 [ 734.120294][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 734.125143][T16931] do_syscall_64+0x9f/0x140 [ 734.129643][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 734.135519][T16931] [ 734.137848][T16931] Uninit was stored to memory at: [ 734.142880][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 734.148595][T16931] __msan_chain_origin+0x57/0xa0 [ 734.153534][T16931] do_recvmmsg+0x17ee/0x2300 [ 734.158147][T16931] __se_sys_recvmmsg+0x247/0x410 [ 734.163084][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 734.167932][T16931] do_syscall_64+0x9f/0x140 [ 734.172436][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 734.178312][T16931] [ 734.180635][T16931] Uninit was stored to memory at: [ 734.185664][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 734.191379][T16931] __msan_chain_origin+0x57/0xa0 [ 734.196318][T16931] do_recvmmsg+0x17ee/0x2300 [ 734.196391][T16891] not chained 430000 origins [ 734.200908][T16931] __se_sys_recvmmsg+0x247/0x410 [ 734.205479][T16891] CPU: 1 PID: 16891 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 734.210389][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 734.219110][T16891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 734.223941][T16931] do_syscall_64+0x9f/0x140 [ 734.233972][T16891] Call Trace: [ 734.238458][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 734.241715][T16891] dump_stack+0x21c/0x280 [ 734.247565][T16931] [ 734.251893][T16891] kmsan_internal_chain_origin+0x6f/0x130 [ 734.254181][T16931] Uninit was stored to memory at: [ 734.259877][T16891] ? __msan_get_context_state+0x9/0x20 [ 734.264875][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 734.270299][T16891] ? kmsan_get_metadata+0x116/0x180 [ 734.275986][T16931] __msan_chain_origin+0x57/0xa0 [ 734.281161][T16891] ? kmsan_internal_check_memory+0xb1/0x520 [ 734.286077][T16931] do_recvmmsg+0x17ee/0x2300 [ 734.291941][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 734.296499][T16931] __se_sys_recvmmsg+0x247/0x410 [ 734.302105][T16891] ? kmsan_check_memory+0xd/0x10 [ 734.307016][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 734.311925][T16891] ? ____sys_recvmsg+0xa2d/0xd80 [ 734.316746][T16931] do_syscall_64+0x9f/0x140 [ 734.321653][T16891] ? __msan_get_context_state+0x9/0x20 [ 734.326128][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 734.331561][T16891] ? kfree+0x29/0x11b0 [ 734.337425][T16931] [ 734.341474][T16891] ? kmsan_get_metadata+0x116/0x180 [ 734.343769][T16931] Uninit was stored to memory at: [ 734.348952][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 734.353948][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 734.359555][T16891] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 734.365258][T16931] __msan_chain_origin+0x57/0xa0 [ 734.371383][T16891] ? _copy_from_user+0x1cd/0x2d0 [ 734.376293][T16931] do_recvmmsg+0x17ee/0x2300 [ 734.381198][T16891] ? kmsan_get_metadata+0x116/0x180 [ 734.385760][T16931] __se_sys_recvmmsg+0x247/0x410 [ 734.390938][T16891] __msan_chain_origin+0x57/0xa0 [ 734.395848][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 734.400758][T16891] do_recvmmsg+0x17ee/0x2300 [ 734.405581][T16931] do_syscall_64+0x9f/0x140 [ 734.410149][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 734.414632][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 734.420233][T16891] ? __msan_poison_alloca+0xe9/0x110 [ 734.426132][T16931] [ 734.431411][T16891] ? __se_sys_recvmmsg+0xd3/0x410 [ 734.433703][T16931] Uninit was stored to memory at: [ 734.438710][T16891] __se_sys_recvmmsg+0x247/0x410 [ 734.443708][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 734.448614][T16891] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 734.454303][T16931] __msan_chain_origin+0x57/0xa0 [ 734.460083][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 734.464991][T16931] do_recvmmsg+0x17ee/0x2300 [ 734.469814][T16891] do_syscall_64+0x9f/0x140 [ 734.474372][T16931] __se_sys_recvmmsg+0x247/0x410 [ 734.478847][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 734.483759][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 734.489616][T16891] RIP: 0033:0x45e159 [ 734.494442][T16931] do_syscall_64+0x9f/0x140 [ 734.498317][T16891] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 734.502787][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 734.522372][T16891] RSP: 002b:00007f92e7354c68 EFLAGS: 00000246 [ 734.528224][T16931] [ 734.528242][T16891] ORIG_RAX: 000000000000012b [ 734.534278][T16931] Uninit was stored to memory at: [ 734.536589][T16891] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 734.541254][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 734.546244][T16891] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 734.554194][T16931] __msan_chain_origin+0x57/0xa0 [ 734.559880][T16891] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 734.567850][T16931] do_recvmmsg+0x17ee/0x2300 [ 734.572753][T16891] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 734.580709][T16931] __se_sys_recvmmsg+0x247/0x410 [ 734.585277][T16891] R13: 00000000016afb7f R14: 00007f92e73559c0 R15: 000000000119c034 [ 734.593240][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 734.598138][T16891] Uninit was stored to memory at: [ 734.606102][T16931] do_syscall_64+0x9f/0x140 [ 734.610927][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 734.615927][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 734.620397][T16891] __msan_chain_origin+0x57/0xa0 [ 734.626080][T16931] [ 734.631957][T16891] do_recvmmsg+0x17ee/0x2300 [ 734.636870][T16931] Local variable ----msg_sys@do_recvmmsg created at: [ 734.639181][T16891] __se_sys_recvmmsg+0x247/0x410 [ 734.643741][T16931] do_recvmmsg+0xbc/0x2300 [ 734.650385][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 734.655307][T16931] do_recvmmsg+0xbc/0x2300 [ 734.659696][T16891] do_syscall_64+0x9f/0x140 [ 734.673410][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 734.679285][T16891] [ 734.681603][T16891] Uninit was stored to memory at: [ 734.686704][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 734.692461][T16891] __msan_chain_origin+0x57/0xa0 [ 734.697402][T16891] do_recvmmsg+0x17ee/0x2300 [ 734.706143][T16891] __se_sys_recvmmsg+0x247/0x410 [ 734.712631][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 734.722254][T16891] do_syscall_64+0x9f/0x140 [ 734.726768][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 734.734157][T16891] [ 734.736475][T16891] Uninit was stored to memory at: [ 734.744421][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 734.751071][T16891] __msan_chain_origin+0x57/0xa0 [ 734.760679][T16891] do_recvmmsg+0x17ee/0x2300 [ 734.767056][T16891] __se_sys_recvmmsg+0x247/0x410 [ 734.774598][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 734.779453][T16891] do_syscall_64+0x9f/0x140 [ 734.786056][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 734.793769][T16891] [ 734.796090][T16891] Uninit was stored to memory at: [ 734.804389][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 734.810132][T16891] __msan_chain_origin+0x57/0xa0 [ 734.815072][T16891] do_recvmmsg+0x17ee/0x2300 [ 734.821506][T16891] __se_sys_recvmmsg+0x247/0x410 [ 734.827942][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 734.832796][T16891] do_syscall_64+0x9f/0x140 [ 734.840336][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 734.846923][T16891] [ 734.849244][T16891] Uninit was stored to memory at: [ 734.856200][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 734.864008][T16891] __msan_chain_origin+0x57/0xa0 [ 734.872556][T16891] do_recvmmsg+0x17ee/0x2300 [ 734.880236][T16891] __se_sys_recvmmsg+0x247/0x410 [ 734.885177][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 734.891434][T16891] do_syscall_64+0x9f/0x140 [ 734.897771][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 734.906721][T16891] [ 734.909045][T16891] Uninit was stored to memory at: [ 734.916376][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 734.925239][T16891] __msan_chain_origin+0x57/0xa0 [ 734.934247][T16891] do_recvmmsg+0x17ee/0x2300 [ 734.942734][T16891] __se_sys_recvmmsg+0x247/0x410 [ 734.950248][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 734.957688][T16891] do_syscall_64+0x9f/0x140 [ 734.965509][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 734.974412][T16891] [ 734.981351][T16891] Uninit was stored to memory at: [ 734.991402][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 734.997964][T16891] __msan_chain_origin+0x57/0xa0 [ 735.006727][T16891] do_recvmmsg+0x17ee/0x2300 [ 735.014257][T16891] __se_sys_recvmmsg+0x247/0x410 [ 735.024168][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 735.031766][T16891] do_syscall_64+0x9f/0x140 [ 735.036276][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 735.042831][T16891] [ 735.049912][T16891] Local variable ----msg_sys@do_recvmmsg created at: [ 735.057642][T16891] do_recvmmsg+0xbc/0x2300 [ 735.065283][T16891] do_recvmmsg+0xbc/0x2300 [ 735.738506][T16887] not chained 440000 origins [ 735.743133][T16887] CPU: 0 PID: 16887 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 735.751888][T16887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 735.761941][T16887] Call Trace: [ 735.765238][T16887] dump_stack+0x21c/0x280 [ 735.769574][T16887] kmsan_internal_chain_origin+0x6f/0x130 [ 735.775295][T16887] ? __msan_get_context_state+0x9/0x20 [ 735.780756][T16887] ? kmsan_get_metadata+0x116/0x180 [ 735.785965][T16887] ? kmsan_internal_check_memory+0xb1/0x520 [ 735.791872][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 735.797517][T16887] ? kmsan_check_memory+0xd/0x10 [ 735.802472][T16887] ? ____sys_recvmsg+0xa2d/0xd80 [ 735.807413][T16887] ? __msan_get_context_state+0x9/0x20 [ 735.812896][T16887] ? kfree+0x29/0x11b0 [ 735.816967][T16887] ? kmsan_get_metadata+0x116/0x180 [ 735.822175][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 735.827819][T16887] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 735.833889][T16887] ? _copy_from_user+0x1cd/0x2d0 [ 735.838828][T16887] ? kmsan_get_metadata+0x116/0x180 [ 735.844025][T16887] __msan_chain_origin+0x57/0xa0 [ 735.848971][T16887] do_recvmmsg+0x17ee/0x2300 [ 735.853577][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 735.859234][T16887] ? __msan_poison_alloca+0xe9/0x110 [ 735.864645][T16887] ? __se_sys_recvmmsg+0xd3/0x410 [ 735.869669][T16887] __se_sys_recvmmsg+0x247/0x410 [ 735.874609][T16887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 735.880421][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 735.885277][T16887] do_syscall_64+0x9f/0x140 [ 735.889782][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 735.895670][T16887] RIP: 0033:0x45e159 [ 735.899567][T16887] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 735.919285][T16887] RSP: 002b:00007f92e7375c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 735.927706][T16887] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 735.935681][T16887] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 735.943654][T16887] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 735.951627][T16887] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 735.959633][T16887] R13: 00000000016afb7f R14: 00007f92e73769c0 R15: 000000000119bf8c [ 735.968044][T16887] Uninit was stored to memory at: [ 735.973082][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 735.978796][T16887] __msan_chain_origin+0x57/0xa0 [ 735.983736][T16887] do_recvmmsg+0x17ee/0x2300 [ 735.988333][T16887] __se_sys_recvmmsg+0x247/0x410 [ 735.993278][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 735.998134][T16887] do_syscall_64+0x9f/0x140 [ 736.002641][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 736.008520][T16887] [ 736.010842][T16887] Uninit was stored to memory at: [ 736.015875][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 736.021598][T16887] __msan_chain_origin+0x57/0xa0 [ 736.026540][T16887] do_recvmmsg+0x17ee/0x2300 [ 736.031134][T16887] __se_sys_recvmmsg+0x247/0x410 [ 736.036082][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 736.040943][T16887] do_syscall_64+0x9f/0x140 [ 736.045451][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 736.051328][T16887] [ 736.053646][T16887] Uninit was stored to memory at: [ 736.058676][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 736.064393][T16887] __msan_chain_origin+0x57/0xa0 [ 736.069333][T16887] do_recvmmsg+0x17ee/0x2300 [ 736.073928][T16887] __se_sys_recvmmsg+0x247/0x410 [ 736.078867][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 736.083722][T16887] do_syscall_64+0x9f/0x140 [ 736.088227][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 736.094105][T16887] [ 736.096428][T16887] Uninit was stored to memory at: [ 736.101461][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 736.107179][T16887] __msan_chain_origin+0x57/0xa0 [ 736.112117][T16887] do_recvmmsg+0x17ee/0x2300 [ 736.116709][T16887] __se_sys_recvmmsg+0x247/0x410 [ 736.121648][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 736.126506][T16887] do_syscall_64+0x9f/0x140 [ 736.131012][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 736.136895][T16887] [ 736.139214][T16887] Uninit was stored to memory at: [ 736.144247][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 736.149964][T16887] __msan_chain_origin+0x57/0xa0 [ 736.154903][T16887] do_recvmmsg+0x17ee/0x2300 [ 736.159493][T16887] __se_sys_recvmmsg+0x247/0x410 [ 736.164430][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 736.169286][T16887] do_syscall_64+0x9f/0x140 [ 736.173788][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 736.179669][T16887] [ 736.181990][T16887] Uninit was stored to memory at: [ 736.183329][T16929] not chained 450000 origins [ 736.187023][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 736.191587][T16929] CPU: 1 PID: 16929 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 736.197281][T16887] __msan_chain_origin+0x57/0xa0 [ 736.206005][T16929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 736.210921][T16887] do_recvmmsg+0x17ee/0x2300 [ 736.220937][T16929] Call Trace: [ 736.225508][T16887] __se_sys_recvmmsg+0x247/0x410 [ 736.228768][T16929] dump_stack+0x21c/0x280 [ 736.233676][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 736.237979][T16929] kmsan_internal_chain_origin+0x6f/0x130 [ 736.242800][T16887] do_syscall_64+0x9f/0x140 [ 736.248487][T16929] ? __msan_get_context_state+0x9/0x20 [ 736.252963][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 736.258390][T16929] ? kmsan_get_metadata+0x116/0x180 [ 736.264241][T16887] [ 736.269425][T16929] ? kmsan_internal_check_memory+0xb1/0x520 [ 736.271713][T16887] Uninit was stored to memory at: [ 736.277590][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 736.282846][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 736.288444][T16929] ? kmsan_check_memory+0xd/0x10 [ 736.294131][T16887] __msan_chain_origin+0x57/0xa0 [ 736.299048][T16929] ? ____sys_recvmsg+0xa2d/0xd80 [ 736.303962][T16887] do_recvmmsg+0x17ee/0x2300 [ 736.308869][T16929] ? __msan_get_context_state+0x9/0x20 [ 736.313434][T16887] __se_sys_recvmmsg+0x247/0x410 [ 736.318864][T16929] ? kfree+0x29/0x11b0 [ 736.323788][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 736.327827][T16929] ? kmsan_get_metadata+0x116/0x180 [ 736.332651][T16887] do_syscall_64+0x9f/0x140 [ 736.338256][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 736.342729][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 736.348336][T16929] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 736.354184][T16887] [ 736.360232][T16929] ? _copy_from_user+0x1cd/0x2d0 [ 736.362527][T16887] Local variable ----msg_sys@do_recvmmsg created at: [ 736.367447][T16929] ? kmsan_get_metadata+0x116/0x180 [ 736.374091][T16887] do_recvmmsg+0xbc/0x2300 [ 736.379272][T16929] __msan_chain_origin+0x57/0xa0 [ 736.383662][T16887] do_recvmmsg+0xbc/0x2300 [ 736.388575][T16929] do_recvmmsg+0x17ee/0x2300 [ 736.397544][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 736.403181][T16929] ? __msan_poison_alloca+0xe9/0x110 [ 736.408553][T16929] ? __se_sys_recvmmsg+0xd3/0x410 [ 736.413616][T16929] __se_sys_recvmmsg+0x247/0x410 [ 736.418561][T16929] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 736.424375][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 736.429232][T16929] do_syscall_64+0x9f/0x140 [ 736.433745][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 736.439725][T16929] RIP: 0033:0x45e159 [ 736.443622][T16929] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 736.463231][T16929] RSP: 002b:00007f7ad6bc8c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 736.471654][T16929] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 736.484562][T16929] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 736.494880][T16929] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 736.504359][T16929] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 736.512460][T16929] R13: 00000000016afb7f R14: 00007f7ad6bc99c0 R15: 000000000119bf8c [ 736.521855][T16929] Uninit was stored to memory at: [ 736.527004][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 736.535250][T16929] __msan_chain_origin+0x57/0xa0 [ 736.543953][T16929] do_recvmmsg+0x17ee/0x2300 [ 736.551661][T16929] __se_sys_recvmmsg+0x247/0x410 [ 736.557968][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 736.562823][T16929] do_syscall_64+0x9f/0x140 [ 736.567328][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 736.575117][T16929] [ 736.577439][T16929] Uninit was stored to memory at: [ 736.587429][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 736.593159][T16929] __msan_chain_origin+0x57/0xa0 [ 736.598099][T16929] do_recvmmsg+0x17ee/0x2300 [ 736.605095][T16929] __se_sys_recvmmsg+0x247/0x410 [ 736.614525][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 736.619381][T16929] do_syscall_64+0x9f/0x140 [ 736.623887][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 736.629762][T16929] [ 736.636749][T16929] Uninit was stored to memory at: [ 736.641793][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 736.647518][T16929] __msan_chain_origin+0x57/0xa0 [ 736.652464][T16929] do_recvmmsg+0x17ee/0x2300 [ 736.660638][T16929] __se_sys_recvmmsg+0x247/0x410 [ 736.668258][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 736.673120][T16929] do_syscall_64+0x9f/0x140 [ 736.677622][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 736.684865][T16929] [ 736.687187][T16929] Uninit was stored to memory at: [ 736.692225][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 736.701872][T16929] __msan_chain_origin+0x57/0xa0 [ 736.706816][T16929] do_recvmmsg+0x17ee/0x2300 [ 736.711404][T16929] __se_sys_recvmmsg+0x247/0x410 [ 736.720354][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 736.725217][T16929] do_syscall_64+0x9f/0x140 [ 736.730070][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 736.735948][T16929] [ 736.741416][T16929] Uninit was stored to memory at: [ 736.747753][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 736.753474][T16929] __msan_chain_origin+0x57/0xa0 [ 736.758413][T16929] do_recvmmsg+0x17ee/0x2300 [ 736.763006][T16929] __se_sys_recvmmsg+0x247/0x410 [ 736.769725][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 736.774583][T16929] do_syscall_64+0x9f/0x140 [ 736.779085][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 736.786378][T16929] [ 736.788699][T16929] Uninit was stored to memory at: [ 736.793729][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 736.799445][T16929] __msan_chain_origin+0x57/0xa0 [ 736.807560][T16929] do_recvmmsg+0x17ee/0x2300 [ 736.812158][T16929] __se_sys_recvmmsg+0x247/0x410 [ 736.820719][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 736.825601][T16929] do_syscall_64+0x9f/0x140 [ 736.830107][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 736.840506][T16929] [ 736.846310][T16929] Uninit was stored to memory at: [ 736.851342][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 736.857063][T16929] __msan_chain_origin+0x57/0xa0 [ 736.862000][T16929] do_recvmmsg+0x17ee/0x2300 [ 736.870802][T16929] __se_sys_recvmmsg+0x247/0x410 [ 736.875742][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 736.880597][T16929] do_syscall_64+0x9f/0x140 [ 736.887228][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 736.893106][T16929] [ 736.895429][T16929] Local variable ----msg_sys@do_recvmmsg created at: [ 736.902578][T16929] do_recvmmsg+0xbc/0x2300 [ 736.906993][T16929] do_recvmmsg+0xbc/0x2300 [ 736.984706][T16931] not chained 460000 origins [ 736.989333][T16931] CPU: 0 PID: 16931 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 736.998090][T16931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 737.008141][T16931] Call Trace: [ 737.011442][T16931] dump_stack+0x21c/0x280 [ 737.015783][T16931] kmsan_internal_chain_origin+0x6f/0x130 [ 737.021506][T16931] ? __msan_get_context_state+0x9/0x20 [ 737.026977][T16931] ? kmsan_get_metadata+0x116/0x180 [ 737.032184][T16931] ? kmsan_internal_check_memory+0xb1/0x520 [ 737.038088][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 737.043725][T16931] ? kmsan_check_memory+0xd/0x10 [ 737.048668][T16931] ? ____sys_recvmsg+0xa2d/0xd80 [ 737.053609][T16931] ? __msan_get_context_state+0x9/0x20 [ 737.059073][T16931] ? kfree+0x29/0x11b0 [ 737.063140][T16931] ? kmsan_get_metadata+0x116/0x180 [ 737.068342][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 737.073977][T16931] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 737.080046][T16931] ? _copy_from_user+0x1cd/0x2d0 [ 737.085079][T16931] ? kmsan_get_metadata+0x116/0x180 [ 737.090277][T16931] __msan_chain_origin+0x57/0xa0 [ 737.095222][T16931] do_recvmmsg+0x17ee/0x2300 [ 737.099826][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 737.105458][T16931] ? __msan_poison_alloca+0xe9/0x110 [ 737.110743][T16931] ? __se_sys_recvmmsg+0xd3/0x410 [ 737.115770][T16931] __se_sys_recvmmsg+0x247/0x410 [ 737.120710][T16931] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 737.126524][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 737.131391][T16931] do_syscall_64+0x9f/0x140 [ 737.135898][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 737.141786][T16931] RIP: 0033:0x45e159 [ 737.145681][T16931] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 737.165289][T16931] RSP: 002b:00007f7ad6ba7c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 737.173705][T16931] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 737.181676][T16931] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 737.189649][T16931] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 737.197621][T16931] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 737.205716][T16931] R13: 00000000016afb7f R14: 00007f7ad6ba89c0 R15: 000000000119c034 [ 737.213684][T16931] Uninit was stored to memory at: [ 737.218720][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 737.224437][T16931] __msan_chain_origin+0x57/0xa0 [ 737.229376][T16931] do_recvmmsg+0x17ee/0x2300 [ 737.233968][T16931] __se_sys_recvmmsg+0x247/0x410 [ 737.238907][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 737.243757][T16931] do_syscall_64+0x9f/0x140 [ 737.248263][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 737.254140][T16931] [ 737.256458][T16931] Uninit was stored to memory at: [ 737.261493][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 737.267210][T16931] __msan_chain_origin+0x57/0xa0 [ 737.272147][T16931] do_recvmmsg+0x17ee/0x2300 [ 737.276737][T16931] __se_sys_recvmmsg+0x247/0x410 [ 737.281672][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 737.286527][T16931] do_syscall_64+0x9f/0x140 [ 737.291030][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 737.296907][T16931] [ 737.299225][T16931] Uninit was stored to memory at: [ 737.304255][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 737.309970][T16931] __msan_chain_origin+0x57/0xa0 [ 737.314905][T16931] do_recvmmsg+0x17ee/0x2300 [ 737.319494][T16931] __se_sys_recvmmsg+0x247/0x410 [ 737.324436][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 737.329287][T16931] do_syscall_64+0x9f/0x140 [ 737.333794][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 737.339671][T16931] [ 737.341990][T16931] Uninit was stored to memory at: [ 737.347020][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 737.352738][T16931] __msan_chain_origin+0x57/0xa0 [ 737.357673][T16931] do_recvmmsg+0x17ee/0x2300 [ 737.362264][T16931] __se_sys_recvmmsg+0x247/0x410 [ 737.367200][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 737.372047][T16931] do_syscall_64+0x9f/0x140 [ 737.376558][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 737.382431][T16931] [ 737.384749][T16931] Uninit was stored to memory at: [ 737.389784][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 737.395502][T16931] __msan_chain_origin+0x57/0xa0 [ 737.400442][T16931] do_recvmmsg+0x17ee/0x2300 [ 737.405031][T16931] __se_sys_recvmmsg+0x247/0x410 [ 737.409969][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 737.414842][T16931] do_syscall_64+0x9f/0x140 [ 737.419345][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 737.425222][T16931] [ 737.427543][T16931] Uninit was stored to memory at: [ 737.432569][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 737.438283][T16931] __msan_chain_origin+0x57/0xa0 [ 737.443221][T16931] do_recvmmsg+0x17ee/0x2300 [ 737.447810][T16931] __se_sys_recvmmsg+0x247/0x410 [ 737.452761][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 737.457611][T16931] do_syscall_64+0x9f/0x140 [ 737.462116][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 737.467992][T16931] [ 737.470310][T16931] Uninit was stored to memory at: [ 737.475337][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 737.481051][T16931] __msan_chain_origin+0x57/0xa0 [ 737.485991][T16931] do_recvmmsg+0x17ee/0x2300 [ 737.490583][T16931] __se_sys_recvmmsg+0x247/0x410 [ 737.495530][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 737.500384][T16931] do_syscall_64+0x9f/0x140 [ 737.504890][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 737.510767][T16931] [ 737.513087][T16931] Local variable ----msg_sys@do_recvmmsg created at: [ 737.519758][T16931] do_recvmmsg+0xbc/0x2300 [ 737.524175][T16931] do_recvmmsg+0xbc/0x2300 [ 737.719215][T16891] not chained 470000 origins [ 737.726361][T16891] CPU: 1 PID: 16891 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 737.739692][T16891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 737.754117][T16891] Call Trace: [ 737.761296][T16891] dump_stack+0x21c/0x280 [ 737.770265][T16891] kmsan_internal_chain_origin+0x6f/0x130 [ 737.776567][T16891] ? __msan_get_context_state+0x9/0x20 [ 737.783897][T16891] ? kmsan_get_metadata+0x116/0x180 [ 737.790215][T16891] ? kmsan_internal_check_memory+0xb1/0x520 [ 737.797729][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 737.805238][T16891] ? kmsan_check_memory+0xd/0x10 [ 737.812423][T16891] ? ____sys_recvmsg+0xa2d/0xd80 [ 737.818683][T16891] ? __msan_get_context_state+0x9/0x20 [ 737.825945][T16891] ? kfree+0x29/0x11b0 [ 737.832074][T16891] ? kmsan_get_metadata+0x116/0x180 [ 737.839350][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 737.845644][T16891] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 737.853103][T16891] ? _copy_from_user+0x1cd/0x2d0 [ 737.861047][T16891] ? kmsan_get_metadata+0x116/0x180 [ 737.866249][T16891] __msan_chain_origin+0x57/0xa0 [ 737.872635][T16891] do_recvmmsg+0x17ee/0x2300 [ 737.880432][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 737.887996][T16891] ? __msan_poison_alloca+0xe9/0x110 [ 737.894427][T16891] ? __se_sys_recvmmsg+0xd3/0x410 [ 737.901757][T16891] __se_sys_recvmmsg+0x247/0x410 [ 737.907926][T16891] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 737.915385][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 737.921708][T16891] do_syscall_64+0x9f/0x140 [ 737.928976][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 737.935304][T16891] RIP: 0033:0x45e159 [ 737.942248][T16891] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 737.964669][T16891] RSP: 002b:00007f92e7354c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 737.973090][T16891] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 737.981089][T16891] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 737.990292][T16891] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 737.998266][T16891] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 738.010227][T16891] R13: 00000000016afb7f R14: 00007f92e73559c0 R15: 000000000119c034 [ 738.018200][T16891] Uninit was stored to memory at: [ 738.024296][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 738.031629][T16891] __msan_chain_origin+0x57/0xa0 [ 738.037784][T16891] do_recvmmsg+0x17ee/0x2300 [ 738.045214][T16891] __se_sys_recvmmsg+0x247/0x410 [ 738.051389][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 738.060332][T16891] do_syscall_64+0x9f/0x140 [ 738.066443][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 738.074035][T16891] [ 738.076358][T16891] Uninit was stored to memory at: [ 738.081386][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 738.089559][T16891] __msan_chain_origin+0x57/0xa0 [ 738.096715][T16891] do_recvmmsg+0x17ee/0x2300 [ 738.101307][T16891] __se_sys_recvmmsg+0x247/0x410 [ 738.106243][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 738.111090][T16891] do_syscall_64+0x9f/0x140 [ 738.117879][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 738.125206][T16891] [ 738.127529][T16891] Uninit was stored to memory at: [ 738.132574][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 738.138286][T16891] __msan_chain_origin+0x57/0xa0 [ 738.147300][T16891] do_recvmmsg+0x17ee/0x2300 [ 738.154405][T16891] __se_sys_recvmmsg+0x247/0x410 [ 738.159347][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 738.168006][T16891] do_syscall_64+0x9f/0x140 [ 738.175154][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 738.181038][T16891] [ 738.183359][T16891] Uninit was stored to memory at: [ 738.188388][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 738.198938][T16891] __msan_chain_origin+0x57/0xa0 [ 738.206122][T16891] do_recvmmsg+0x17ee/0x2300 [ 738.210713][T16891] __se_sys_recvmmsg+0x247/0x410 [ 738.215647][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 738.220494][T16891] do_syscall_64+0x9f/0x140 [ 738.227698][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 738.235024][T16891] [ 738.237345][T16891] Uninit was stored to memory at: [ 738.247185][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 738.254488][T16891] __msan_chain_origin+0x57/0xa0 [ 738.259429][T16891] do_recvmmsg+0x17ee/0x2300 [ 738.264048][T16891] __se_sys_recvmmsg+0x247/0x410 [ 738.268982][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 738.277615][T16891] do_syscall_64+0x9f/0x140 [ 738.284756][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 738.290632][T16891] [ 738.292951][T16891] Uninit was stored to memory at: [ 738.297978][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 738.308907][T16891] __msan_chain_origin+0x57/0xa0 [ 738.316082][T16891] do_recvmmsg+0x17ee/0x2300 [ 738.320672][T16891] __se_sys_recvmmsg+0x247/0x410 [ 738.328378][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 738.336110][T16891] do_syscall_64+0x9f/0x140 [ 738.340614][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 738.346493][T16891] [ 738.348809][T16891] Uninit was stored to memory at: [ 738.353839][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 738.359552][T16891] __msan_chain_origin+0x57/0xa0 [ 738.364491][T16891] do_recvmmsg+0x17ee/0x2300 [ 738.369077][T16891] __se_sys_recvmmsg+0x247/0x410 [ 738.377501][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 738.384634][T16891] do_syscall_64+0x9f/0x140 [ 738.387191][T16931] not chained 480000 origins [ 738.389141][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 738.393708][T16931] CPU: 0 PID: 16931 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 738.399562][T16891] [ 738.408294][T16931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 738.410595][T16891] Local variable ----msg_sys@do_recvmmsg created at: [ 738.420635][T16931] Call Trace: [ 738.427293][T16891] do_recvmmsg+0xbc/0x2300 [ 738.430551][T16931] dump_stack+0x21c/0x280 [ 738.434936][T16891] do_recvmmsg+0xbc/0x2300 [ 738.439243][T16931] kmsan_internal_chain_origin+0x6f/0x130 [ 738.449319][T16931] ? __msan_get_context_state+0x9/0x20 [ 738.454777][T16931] ? kmsan_get_metadata+0x116/0x180 [ 738.459979][T16931] ? kmsan_internal_check_memory+0xb1/0x520 [ 738.465877][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 738.471508][T16931] ? kmsan_check_memory+0xd/0x10 [ 738.476544][T16931] ? ____sys_recvmsg+0xa2d/0xd80 [ 738.481520][T16931] ? __msan_get_context_state+0x9/0x20 [ 738.486977][T16931] ? kfree+0x29/0x11b0 [ 738.491043][T16931] ? kmsan_get_metadata+0x116/0x180 [ 738.496250][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 738.501886][T16931] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 738.507951][T16931] ? _copy_from_user+0x1cd/0x2d0 [ 738.512889][T16931] ? kmsan_get_metadata+0x116/0x180 [ 738.518197][T16931] __msan_chain_origin+0x57/0xa0 [ 738.523142][T16931] do_recvmmsg+0x17ee/0x2300 [ 738.527751][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 738.533384][T16931] ? __msan_poison_alloca+0xe9/0x110 [ 738.538678][T16931] ? __se_sys_recvmmsg+0xd3/0x410 [ 738.543706][T16931] __se_sys_recvmmsg+0x247/0x410 [ 738.548653][T16931] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 738.554471][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 738.559329][T16931] do_syscall_64+0x9f/0x140 [ 738.563839][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 738.569730][T16931] RIP: 0033:0x45e159 [ 738.573628][T16931] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 738.593243][T16931] RSP: 002b:00007f7ad6ba7c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 738.601672][T16931] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 738.609678][T16931] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 738.617654][T16931] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 738.625635][T16931] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 738.633623][T16931] R13: 00000000016afb7f R14: 00007f7ad6ba89c0 R15: 000000000119c034 [ 738.641601][T16931] Uninit was stored to memory at: [ 738.646642][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 738.652361][T16931] __msan_chain_origin+0x57/0xa0 [ 738.657303][T16931] do_recvmmsg+0x17ee/0x2300 [ 738.661896][T16931] __se_sys_recvmmsg+0x247/0x410 [ 738.666837][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 738.671692][T16931] do_syscall_64+0x9f/0x140 [ 738.676199][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 738.682079][T16931] [ 738.684400][T16931] Uninit was stored to memory at: [ 738.689435][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 738.695156][T16931] __msan_chain_origin+0x57/0xa0 [ 738.700094][T16931] do_recvmmsg+0x17ee/0x2300 [ 738.704690][T16931] __se_sys_recvmmsg+0x247/0x410 [ 738.709627][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 738.714478][T16931] do_syscall_64+0x9f/0x140 [ 738.718985][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 738.724861][T16931] [ 738.727180][T16931] Uninit was stored to memory at: [ 738.732211][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 738.737929][T16931] __msan_chain_origin+0x57/0xa0 [ 738.742869][T16931] do_recvmmsg+0x17ee/0x2300 [ 738.747460][T16931] __se_sys_recvmmsg+0x247/0x410 [ 738.752397][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 738.757250][T16931] do_syscall_64+0x9f/0x140 [ 738.761758][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 738.767634][T16931] [ 738.769952][T16931] Uninit was stored to memory at: [ 738.774984][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 738.780700][T16931] __msan_chain_origin+0x57/0xa0 [ 738.785640][T16931] do_recvmmsg+0x17ee/0x2300 [ 738.790235][T16931] __se_sys_recvmmsg+0x247/0x410 [ 738.795182][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 738.800038][T16931] do_syscall_64+0x9f/0x140 [ 738.804545][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 738.810423][T16931] [ 738.812740][T16931] Uninit was stored to memory at: [ 738.817770][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 738.823486][T16931] __msan_chain_origin+0x57/0xa0 [ 738.828426][T16931] do_recvmmsg+0x17ee/0x2300 [ 738.833019][T16931] __se_sys_recvmmsg+0x247/0x410 [ 738.837956][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 738.842807][T16931] do_syscall_64+0x9f/0x140 [ 738.847308][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 738.853185][T16931] [ 738.855501][T16931] Uninit was stored to memory at: [ 738.860530][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 738.866248][T16931] __msan_chain_origin+0x57/0xa0 [ 738.871189][T16931] do_recvmmsg+0x17ee/0x2300 [ 738.875783][T16931] __se_sys_recvmmsg+0x247/0x410 [ 738.880723][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 738.885572][T16931] do_syscall_64+0x9f/0x140 [ 738.890076][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 738.895952][T16931] [ 738.898274][T16931] Uninit was stored to memory at: [ 738.903303][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 738.909021][T16931] __msan_chain_origin+0x57/0xa0 [ 738.913961][T16931] do_recvmmsg+0x17ee/0x2300 [ 738.918551][T16931] __se_sys_recvmmsg+0x247/0x410 [ 738.923488][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 738.928340][T16931] do_syscall_64+0x9f/0x140 [ 738.932844][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 738.938721][T16931] [ 738.941040][T16931] Local variable ----msg_sys@do_recvmmsg created at: [ 738.947714][T16931] do_recvmmsg+0xbc/0x2300 [ 738.952128][T16931] do_recvmmsg+0xbc/0x2300 [ 739.271491][T16929] not chained 490000 origins [ 739.276125][T16929] CPU: 0 PID: 16929 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 739.284878][T16929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 739.294929][T16929] Call Trace: [ 739.298226][T16929] dump_stack+0x21c/0x280 [ 739.302570][T16929] kmsan_internal_chain_origin+0x6f/0x130 [ 739.308287][T16929] ? __msan_get_context_state+0x9/0x20 [ 739.313745][T16929] ? kmsan_get_metadata+0x116/0x180 [ 739.318947][T16929] ? kmsan_internal_check_memory+0xb1/0x520 [ 739.324842][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 739.330476][T16929] ? kmsan_check_memory+0xd/0x10 [ 739.335414][T16929] ? ____sys_recvmsg+0xa2d/0xd80 [ 739.340346][T16929] ? __msan_get_context_state+0x9/0x20 [ 739.345803][T16929] ? kfree+0x29/0x11b0 [ 739.349871][T16929] ? kmsan_get_metadata+0x116/0x180 [ 739.355077][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 739.360715][T16929] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 739.366780][T16929] ? _copy_from_user+0x1cd/0x2d0 [ 739.371720][T16929] ? kmsan_get_metadata+0x116/0x180 [ 739.377003][T16929] __msan_chain_origin+0x57/0xa0 [ 739.381942][T16929] do_recvmmsg+0x17ee/0x2300 [ 739.386549][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 739.392185][T16929] ? __msan_poison_alloca+0xe9/0x110 [ 739.397475][T16929] ? __se_sys_recvmmsg+0xd3/0x410 [ 739.402500][T16929] __se_sys_recvmmsg+0x247/0x410 [ 739.407441][T16929] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 739.413251][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 739.418111][T16929] do_syscall_64+0x9f/0x140 [ 739.422617][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 739.428508][T16929] RIP: 0033:0x45e159 [ 739.432404][T16929] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 739.452011][T16929] RSP: 002b:00007f7ad6bc8c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 739.460429][T16929] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 739.468402][T16929] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 739.476378][T16929] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 739.484349][T16929] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 739.492324][T16929] R13: 00000000016afb7f R14: 00007f7ad6bc99c0 R15: 000000000119bf8c [ 739.500291][T16929] Uninit was stored to memory at: [ 739.505326][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 739.511050][T16929] __msan_chain_origin+0x57/0xa0 [ 739.515995][T16929] do_recvmmsg+0x17ee/0x2300 [ 739.520595][T16929] __se_sys_recvmmsg+0x247/0x410 [ 739.525540][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 739.530401][T16929] do_syscall_64+0x9f/0x140 [ 739.534908][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 739.540786][T16929] [ 739.543105][T16929] Uninit was stored to memory at: [ 739.548137][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 739.553855][T16929] __msan_chain_origin+0x57/0xa0 [ 739.558791][T16929] do_recvmmsg+0x17ee/0x2300 [ 739.563380][T16929] __se_sys_recvmmsg+0x247/0x410 [ 739.568318][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 739.573171][T16929] do_syscall_64+0x9f/0x140 [ 739.577675][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 739.581109][T16887] not chained 500000 origins [ 739.583571][T16929] [ 739.588153][T16887] CPU: 1 PID: 16887 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 739.590462][T16929] Uninit was stored to memory at: [ 739.599196][T16887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 739.604206][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 739.614227][T16887] Call Trace: [ 739.619931][T16929] __msan_chain_origin+0x57/0xa0 [ 739.623193][T16887] dump_stack+0x21c/0x280 [ 739.628104][T16929] do_recvmmsg+0x17ee/0x2300 [ 739.632423][T16887] kmsan_internal_chain_origin+0x6f/0x130 [ 739.637001][T16929] __se_sys_recvmmsg+0x247/0x410 [ 739.642692][T16887] ? __msan_get_context_state+0x9/0x20 [ 739.647612][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 739.653145][T16887] ? kmsan_get_metadata+0x116/0x180 [ 739.657973][T16929] do_syscall_64+0x9f/0x140 [ 739.663230][T16887] ? kmsan_internal_check_memory+0xb1/0x520 [ 739.667705][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 739.673572][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 739.679421][T16929] [ 739.685055][T16887] ? kmsan_check_memory+0xd/0x10 [ 739.687350][T16929] Uninit was stored to memory at: [ 739.692283][T16887] ? ____sys_recvmsg+0xa2d/0xd80 [ 739.697288][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 739.702205][T16887] ? __msan_get_context_state+0x9/0x20 [ 739.707893][T16929] __msan_chain_origin+0x57/0xa0 [ 739.713325][T16887] ? kfree+0x29/0x11b0 [ 739.718323][T16929] do_recvmmsg+0x17ee/0x2300 [ 739.722363][T16887] ? kmsan_get_metadata+0x116/0x180 [ 739.726926][T16929] __se_sys_recvmmsg+0x247/0x410 [ 739.732099][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 739.737005][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 739.742614][T16887] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 739.747437][T16929] do_syscall_64+0x9f/0x140 [ 739.753473][T16887] ? _copy_from_user+0x1cd/0x2d0 [ 739.757950][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 739.762857][T16887] ? kmsan_get_metadata+0x116/0x180 [ 739.768709][T16929] [ 739.773885][T16887] __msan_chain_origin+0x57/0xa0 [ 739.776183][T16929] Uninit was stored to memory at: [ 739.781102][T16887] do_recvmmsg+0x17ee/0x2300 [ 739.786102][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 739.790667][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 739.796354][T16929] __msan_chain_origin+0x57/0xa0 [ 739.801971][T16887] ? __msan_poison_alloca+0xe9/0x110 [ 739.806881][T16929] do_recvmmsg+0x17ee/0x2300 [ 739.812138][T16887] ? __se_sys_recvmmsg+0xd3/0x410 [ 739.816697][T16929] __se_sys_recvmmsg+0x247/0x410 [ 739.821693][T16887] __se_sys_recvmmsg+0x247/0x410 [ 739.826603][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 739.831513][T16887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 739.836338][T16929] do_syscall_64+0x9f/0x140 [ 739.842116][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 739.846590][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 739.851412][T16887] do_syscall_64+0x9f/0x140 [ 739.857274][T16929] [ 739.861761][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 739.864055][T16929] Uninit was stored to memory at: [ 739.869924][T16887] RIP: 0033:0x45e159 [ 739.874928][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 739.878793][T16887] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 739.884479][T16929] __msan_chain_origin+0x57/0xa0 [ 739.904057][T16887] RSP: 002b:00007f92e7375c68 EFLAGS: 00000246 [ 739.908960][T16929] do_recvmmsg+0x17ee/0x2300 [ 739.908976][T16887] ORIG_RAX: 000000000000012b [ 739.915021][T16929] __se_sys_recvmmsg+0x247/0x410 [ 739.919577][T16887] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 739.924229][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 739.929135][T16887] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 739.937085][T16929] do_syscall_64+0x9f/0x140 [ 739.941902][T16887] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 739.949855][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 739.954323][T16887] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 739.962262][T16929] [ 739.968132][T16887] R13: 00000000016afb7f R14: 00007f92e73769c0 R15: 000000000119bf8c [ 739.976070][T16929] Uninit was stored to memory at: [ 739.978376][T16887] Uninit was stored to memory at: [ 739.986335][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 739.991343][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 739.996331][T16929] __msan_chain_origin+0x57/0xa0 [ 740.002019][T16887] __msan_chain_origin+0x57/0xa0 [ 740.007710][T16929] do_recvmmsg+0x17ee/0x2300 [ 740.012618][T16887] do_recvmmsg+0x17ee/0x2300 [ 740.017526][T16929] __se_sys_recvmmsg+0x247/0x410 [ 740.022088][T16887] __se_sys_recvmmsg+0x247/0x410 [ 740.026648][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 740.031559][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 740.036475][T16929] do_syscall_64+0x9f/0x140 [ 740.041296][T16887] do_syscall_64+0x9f/0x140 [ 740.046117][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 740.050593][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 740.055070][T16929] [ 740.060931][T16887] [ 740.066794][T16929] Local variable ----msg_sys@do_recvmmsg created at: [ 740.069093][T16887] Uninit was stored to memory at: [ 740.071406][T16929] do_recvmmsg+0xbc/0x2300 [ 740.078053][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 740.083051][T16929] do_recvmmsg+0xbc/0x2300 [ 740.087434][T16887] __msan_chain_origin+0x57/0xa0 [ 740.102429][T16887] do_recvmmsg+0x17ee/0x2300 [ 740.107021][T16887] __se_sys_recvmmsg+0x247/0x410 [ 740.111958][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 740.120858][T16887] do_syscall_64+0x9f/0x140 [ 740.127723][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 740.133787][T16887] [ 740.140221][T16887] Uninit was stored to memory at: [ 740.146176][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 740.153272][T16887] __msan_chain_origin+0x57/0xa0 [ 740.159285][T16887] do_recvmmsg+0x17ee/0x2300 [ 740.166121][T16887] __se_sys_recvmmsg+0x247/0x410 [ 740.172072][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 740.178969][T16887] do_syscall_64+0x9f/0x140 [ 740.184764][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 740.191828][T16887] [ 740.197138][T16887] Uninit was stored to memory at: [ 740.204144][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 740.211827][T16887] __msan_chain_origin+0x57/0xa0 [ 740.218782][T16887] do_recvmmsg+0x17ee/0x2300 [ 740.224623][T16887] __se_sys_recvmmsg+0x247/0x410 [ 740.229564][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 740.235339][T16887] do_syscall_64+0x9f/0x140 [ 740.241296][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 740.250993][T16887] [ 740.256384][T16887] Uninit was stored to memory at: [ 740.263482][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 740.269650][T16887] __msan_chain_origin+0x57/0xa0 [ 740.276526][T16887] do_recvmmsg+0x17ee/0x2300 [ 740.282493][T16887] __se_sys_recvmmsg+0x247/0x410 [ 740.289349][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 740.295204][T16887] do_syscall_64+0x9f/0x140 [ 740.302044][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 740.308161][T16887] [ 740.310483][T16887] Uninit was stored to memory at: [ 740.317171][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 740.323350][T16887] __msan_chain_origin+0x57/0xa0 [ 740.330198][T16887] do_recvmmsg+0x17ee/0x2300 [ 740.336025][T16887] __se_sys_recvmmsg+0x247/0x410 [ 740.340966][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 740.346839][T16887] do_syscall_64+0x9f/0x140 [ 740.352689][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 740.359786][T16887] [ 740.365163][T16887] Uninit was stored to memory at: [ 740.372198][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 740.378579][T16887] __msan_chain_origin+0x57/0xa0 [ 740.385439][T16887] do_recvmmsg+0x17ee/0x2300 [ 740.391275][T16887] __se_sys_recvmmsg+0x247/0x410 [ 740.396215][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 740.401066][T16887] do_syscall_64+0x9f/0x140 [ 740.408016][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 740.415692][T16887] [ 740.418014][T16887] Local variable ----msg_sys@do_recvmmsg created at: [ 740.428413][T16887] do_recvmmsg+0xbc/0x2300 [ 740.434166][T16887] do_recvmmsg+0xbc/0x2300 [ 740.823778][T16891] not chained 510000 origins [ 740.828406][T16891] CPU: 0 PID: 16891 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 740.837158][T16891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 740.847211][T16891] Call Trace: [ 740.850507][T16891] dump_stack+0x21c/0x280 [ 740.854853][T16891] kmsan_internal_chain_origin+0x6f/0x130 [ 740.860578][T16891] ? __msan_get_context_state+0x9/0x20 [ 740.866056][T16891] ? kmsan_get_metadata+0x116/0x180 [ 740.871263][T16891] ? kmsan_internal_check_memory+0xb1/0x520 [ 740.877160][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 740.882795][T16891] ? kmsan_check_memory+0xd/0x10 [ 740.887739][T16891] ? ____sys_recvmsg+0xa2d/0xd80 [ 740.892675][T16891] ? __msan_get_context_state+0x9/0x20 [ 740.898135][T16891] ? kfree+0x29/0x11b0 [ 740.902203][T16891] ? kmsan_get_metadata+0x116/0x180 [ 740.907407][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 740.913044][T16891] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 740.919112][T16891] ? _copy_from_user+0x1cd/0x2d0 [ 740.924051][T16891] ? kmsan_get_metadata+0x116/0x180 [ 740.929250][T16891] __msan_chain_origin+0x57/0xa0 [ 740.934194][T16891] do_recvmmsg+0x17ee/0x2300 [ 740.938797][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 740.944436][T16891] ? __msan_poison_alloca+0xe9/0x110 [ 740.949731][T16891] ? __se_sys_recvmmsg+0xd3/0x410 [ 740.954762][T16891] __se_sys_recvmmsg+0x247/0x410 [ 740.959705][T16891] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 740.965521][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 740.970386][T16891] do_syscall_64+0x9f/0x140 [ 740.974891][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 740.980780][T16891] RIP: 0033:0x45e159 [ 740.984677][T16891] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 741.004284][T16891] RSP: 002b:00007f92e7354c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 741.012702][T16891] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 741.020678][T16891] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 741.028662][T16891] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 741.036633][T16891] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 741.044603][T16891] R13: 00000000016afb7f R14: 00007f92e73559c0 R15: 000000000119c034 [ 741.052579][T16891] Uninit was stored to memory at: [ 741.057614][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 741.063349][T16891] __msan_chain_origin+0x57/0xa0 [ 741.068288][T16891] do_recvmmsg+0x17ee/0x2300 [ 741.072877][T16891] __se_sys_recvmmsg+0x247/0x410 [ 741.077816][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 741.082669][T16891] do_syscall_64+0x9f/0x140 [ 741.087173][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 741.093050][T16891] [ 741.095367][T16891] Uninit was stored to memory at: [ 741.100395][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 741.106111][T16891] __msan_chain_origin+0x57/0xa0 [ 741.111047][T16891] do_recvmmsg+0x17ee/0x2300 [ 741.115638][T16891] __se_sys_recvmmsg+0x247/0x410 [ 741.120586][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 741.125438][T16891] do_syscall_64+0x9f/0x140 [ 741.129944][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 741.135824][T16891] [ 741.138143][T16891] Uninit was stored to memory at: [ 741.143172][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 741.148888][T16891] __msan_chain_origin+0x57/0xa0 [ 741.153824][T16891] do_recvmmsg+0x17ee/0x2300 [ 741.158414][T16891] __se_sys_recvmmsg+0x247/0x410 [ 741.163352][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 741.168203][T16891] do_syscall_64+0x9f/0x140 [ 741.172708][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 741.178587][T16891] [ 741.180908][T16891] Uninit was stored to memory at: [ 741.185941][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 741.191659][T16891] __msan_chain_origin+0x57/0xa0 [ 741.196597][T16891] do_recvmmsg+0x17ee/0x2300 [ 741.201187][T16891] __se_sys_recvmmsg+0x247/0x410 [ 741.206129][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 741.210980][T16891] do_syscall_64+0x9f/0x140 [ 741.215482][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 741.221361][T16891] [ 741.223680][T16891] Uninit was stored to memory at: [ 741.228711][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 741.234428][T16891] __msan_chain_origin+0x57/0xa0 [ 741.239366][T16891] do_recvmmsg+0x17ee/0x2300 [ 741.243968][T16891] __se_sys_recvmmsg+0x247/0x410 [ 741.248904][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 741.253774][T16891] do_syscall_64+0x9f/0x140 [ 741.258282][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 741.264158][T16891] [ 741.266475][T16891] Uninit was stored to memory at: [ 741.271523][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 741.277259][T16891] __msan_chain_origin+0x57/0xa0 [ 741.282206][T16891] do_recvmmsg+0x17ee/0x2300 [ 741.286796][T16891] __se_sys_recvmmsg+0x247/0x410 [ 741.291731][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 741.296605][T16891] do_syscall_64+0x9f/0x140 [ 741.301114][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 741.306990][T16891] [ 741.309307][T16891] Uninit was stored to memory at: [ 741.314333][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 741.320053][T16891] __msan_chain_origin+0x57/0xa0 [ 741.324995][T16891] do_recvmmsg+0x17ee/0x2300 [ 741.329589][T16891] __se_sys_recvmmsg+0x247/0x410 [ 741.334528][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 741.339386][T16891] do_syscall_64+0x9f/0x140 [ 741.343891][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 741.349867][T16891] [ 741.352190][T16891] Local variable ----msg_sys@do_recvmmsg created at: [ 741.358871][T16891] do_recvmmsg+0xbc/0x2300 [ 741.363292][T16891] do_recvmmsg+0xbc/0x2300 [ 741.669401][T16929] not chained 520000 origins [ 741.678189][T16929] CPU: 1 PID: 16929 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 741.686954][T16929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 741.699013][T16929] Call Trace: [ 741.704537][T16929] dump_stack+0x21c/0x280 [ 741.708880][T16929] kmsan_internal_chain_origin+0x6f/0x130 [ 741.714599][T16929] ? __msan_get_context_state+0x9/0x20 [ 741.720054][T16929] ? kmsan_get_metadata+0x116/0x180 [ 741.728518][T16929] ? kmsan_internal_check_memory+0xb1/0x520 [ 741.734542][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 741.740179][T16929] ? kmsan_check_memory+0xd/0x10 [ 741.745119][T16929] ? ____sys_recvmsg+0xa2d/0xd80 [ 741.750059][T16929] ? __msan_get_context_state+0x9/0x20 [ 741.758616][T16929] ? kfree+0x29/0x11b0 [ 741.764263][T16929] ? kmsan_get_metadata+0x116/0x180 [ 741.769465][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 741.775103][T16929] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 741.781170][T16929] ? _copy_from_user+0x1cd/0x2d0 [ 741.788642][T16929] ? kmsan_get_metadata+0x116/0x180 [ 741.794506][T16929] __msan_chain_origin+0x57/0xa0 [ 741.799446][T16929] do_recvmmsg+0x17ee/0x2300 [ 741.804071][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 741.809701][T16929] ? __msan_poison_alloca+0xe9/0x110 [ 741.814990][T16929] ? __se_sys_recvmmsg+0xd3/0x410 [ 741.820017][T16929] __se_sys_recvmmsg+0x247/0x410 [ 741.828389][T16929] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 741.834390][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 741.839244][T16929] do_syscall_64+0x9f/0x140 [ 741.843749][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 741.849635][T16929] RIP: 0033:0x45e159 [ 741.853529][T16929] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 741.875038][T16929] RSP: 002b:00007f7ad6bc8c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 741.883562][T16929] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 741.891528][T16929] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 741.899497][T16929] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 741.908974][T16929] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 741.916947][T16929] R13: 00000000016afb7f R14: 00007f7ad6bc99c0 R15: 000000000119bf8c [ 741.924914][T16929] Uninit was stored to memory at: [ 741.929948][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 741.935663][T16929] __msan_chain_origin+0x57/0xa0 [ 741.936304][T16931] not chained 530000 origins [ 741.940602][T16929] do_recvmmsg+0x17ee/0x2300 [ 741.945171][T16931] CPU: 0 PID: 16931 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 741.949736][T16929] __se_sys_recvmmsg+0x247/0x410 [ 741.958458][T16931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 741.963375][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 741.973399][T16931] Call Trace: [ 741.978231][T16929] do_syscall_64+0x9f/0x140 [ 741.981515][T16931] dump_stack+0x21c/0x280 [ 741.985991][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 741.990297][T16931] kmsan_internal_chain_origin+0x6f/0x130 [ 741.996146][T16929] [ 742.001846][T16931] ? __msan_get_context_state+0x9/0x20 [ 742.004145][T16929] Uninit was stored to memory at: [ 742.009599][T16931] ? kmsan_get_metadata+0x116/0x180 [ 742.014599][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 742.019768][T16931] ? kmsan_internal_check_memory+0xb1/0x520 [ 742.025452][T16929] __msan_chain_origin+0x57/0xa0 [ 742.031323][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 742.036229][T16929] do_recvmmsg+0x17ee/0x2300 [ 742.041829][T16931] ? kmsan_check_memory+0xd/0x10 [ 742.046392][T16929] __se_sys_recvmmsg+0x247/0x410 [ 742.051388][T16931] ? ____sys_recvmsg+0xa2d/0xd80 [ 742.056389][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 742.061298][T16931] ? __msan_get_context_state+0x9/0x20 [ 742.066147][T16929] do_syscall_64+0x9f/0x140 [ 742.071563][T16931] ? kfree+0x29/0x11b0 [ 742.076037][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 742.080079][T16931] ? kmsan_get_metadata+0x116/0x180 [ 742.085930][T16929] [ 742.091113][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 742.093402][T16929] Uninit was stored to memory at: [ 742.099017][T16931] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 742.104013][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 742.110068][T16931] ? _copy_from_user+0x1cd/0x2d0 [ 742.115761][T16929] __msan_chain_origin+0x57/0xa0 [ 742.120676][T16931] ? kmsan_get_metadata+0x116/0x180 [ 742.125583][T16929] do_recvmmsg+0x17ee/0x2300 [ 742.130753][T16931] __msan_chain_origin+0x57/0xa0 [ 742.135322][T16929] __se_sys_recvmmsg+0x247/0x410 [ 742.140237][T16931] do_recvmmsg+0x17ee/0x2300 [ 742.145143][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 742.149715][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 742.154535][T16929] do_syscall_64+0x9f/0x140 [ 742.160141][T16931] ? __msan_poison_alloca+0xe9/0x110 [ 742.164616][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 742.169884][T16931] ? __se_sys_recvmmsg+0xd3/0x410 [ 742.175737][T16929] [ 742.180752][T16931] __se_sys_recvmmsg+0x247/0x410 [ 742.183045][T16929] Uninit was stored to memory at: [ 742.187962][T16931] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 742.192961][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 742.198737][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 742.204422][T16929] __msan_chain_origin+0x57/0xa0 [ 742.209247][T16931] do_syscall_64+0x9f/0x140 [ 742.214153][T16929] do_recvmmsg+0x17ee/0x2300 [ 742.218636][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 742.223197][T16929] __se_sys_recvmmsg+0x247/0x410 [ 742.229062][T16931] RIP: 0033:0x45e159 [ 742.233980][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 742.237859][T16931] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 742.242682][T16929] do_syscall_64+0x9f/0x140 [ 742.262254][T16931] RSP: 002b:00007f7ad6ba7c68 EFLAGS: 00000246 [ 742.266723][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 742.266740][T16931] ORIG_RAX: 000000000000012b [ 742.272770][T16929] [ 742.278653][T16931] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 742.283302][T16929] Uninit was stored to memory at: [ 742.285611][T16931] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 742.293569][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 742.298556][T16931] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 742.306506][T16929] __msan_chain_origin+0x57/0xa0 [ 742.312208][T16931] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 742.320158][T16929] do_recvmmsg+0x17ee/0x2300 [ 742.325062][T16931] R13: 00000000016afb7f R14: 00007f7ad6ba89c0 R15: 000000000119c034 [ 742.333012][T16929] __se_sys_recvmmsg+0x247/0x410 [ 742.337565][T16931] Uninit was stored to memory at: [ 742.345522][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 742.350432][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 742.355423][T16929] do_syscall_64+0x9f/0x140 [ 742.360247][T16931] __msan_chain_origin+0x57/0xa0 [ 742.365938][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 742.370414][T16931] do_recvmmsg+0x17ee/0x2300 [ 742.375308][T16929] [ 742.381182][T16931] __se_sys_recvmmsg+0x247/0x410 [ 742.385730][T16929] Uninit was stored to memory at: [ 742.388044][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 742.392959][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 742.397950][T16931] do_syscall_64+0x9f/0x140 [ 742.402769][T16929] __msan_chain_origin+0x57/0xa0 [ 742.408461][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 742.412933][T16929] do_recvmmsg+0x17ee/0x2300 [ 742.417826][T16931] [ 742.423699][T16929] __se_sys_recvmmsg+0x247/0x410 [ 742.428258][T16931] Uninit was stored to memory at: [ 742.430572][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 742.435482][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 742.440486][T16929] do_syscall_64+0x9f/0x140 [ 742.445306][T16931] __msan_chain_origin+0x57/0xa0 [ 742.450995][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 742.455467][T16931] do_recvmmsg+0x17ee/0x2300 [ 742.460363][T16929] [ 742.466239][T16931] __se_sys_recvmmsg+0x247/0x410 [ 742.470788][T16929] Uninit was stored to memory at: [ 742.473101][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 742.478012][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 742.483004][T16931] do_syscall_64+0x9f/0x140 [ 742.487832][T16929] __msan_chain_origin+0x57/0xa0 [ 742.493519][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 742.497991][T16929] do_recvmmsg+0x17ee/0x2300 [ 742.502889][T16931] [ 742.508765][T16929] __se_sys_recvmmsg+0x247/0x410 [ 742.513314][T16931] Uninit was stored to memory at: [ 742.515626][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 742.520548][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 742.525563][T16929] do_syscall_64+0x9f/0x140 [ 742.530408][T16931] __msan_chain_origin+0x57/0xa0 [ 742.536102][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 742.540579][T16931] do_recvmmsg+0x17ee/0x2300 [ 742.545475][T16929] [ 742.551349][T16931] __se_sys_recvmmsg+0x247/0x410 [ 742.555902][T16929] Local variable ----msg_sys@do_recvmmsg created at: [ 742.558213][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 742.563126][T16929] do_recvmmsg+0xbc/0x2300 [ 742.569779][T16931] do_syscall_64+0x9f/0x140 [ 742.574607][T16929] do_recvmmsg+0xbc/0x2300 [ 742.578996][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 742.593729][T16931] [ 742.596133][T16931] Uninit was stored to memory at: [ 742.601266][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 742.606983][T16931] __msan_chain_origin+0x57/0xa0 [ 742.611933][T16931] do_recvmmsg+0x17ee/0x2300 [ 742.616521][T16931] __se_sys_recvmmsg+0x247/0x410 [ 742.621461][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 742.626316][T16931] do_syscall_64+0x9f/0x140 [ 742.630819][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 742.636699][T16931] [ 742.639021][T16931] Uninit was stored to memory at: [ 742.644054][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 742.649775][T16931] __msan_chain_origin+0x57/0xa0 [ 742.654719][T16931] do_recvmmsg+0x17ee/0x2300 [ 742.659314][T16931] __se_sys_recvmmsg+0x247/0x410 [ 742.664254][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 742.669109][T16931] do_syscall_64+0x9f/0x140 [ 742.673615][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 742.679492][T16931] [ 742.681811][T16931] Uninit was stored to memory at: [ 742.686842][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 742.692672][T16931] __msan_chain_origin+0x57/0xa0 [ 742.697613][T16931] do_recvmmsg+0x17ee/0x2300 [ 742.702203][T16931] __se_sys_recvmmsg+0x247/0x410 [ 742.707142][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 742.712016][T16931] do_syscall_64+0x9f/0x140 [ 742.716521][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 742.722404][T16931] [ 742.724725][T16931] Uninit was stored to memory at: [ 742.729754][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 742.735475][T16931] __msan_chain_origin+0x57/0xa0 [ 742.740411][T16931] do_recvmmsg+0x17ee/0x2300 [ 742.745005][T16931] __se_sys_recvmmsg+0x247/0x410 [ 742.749940][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 742.754792][T16931] do_syscall_64+0x9f/0x140 [ 742.759296][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 742.765177][T16931] [ 742.767501][T16931] Local variable ----msg_sys@do_recvmmsg created at: [ 742.774262][T16931] do_recvmmsg+0xbc/0x2300 [ 742.778675][T16931] do_recvmmsg+0xbc/0x2300 [ 743.288140][T16887] not chained 540000 origins [ 743.292769][T16887] CPU: 0 PID: 16887 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 743.301527][T16887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 743.311589][T16887] Call Trace: [ 743.314889][T16887] dump_stack+0x21c/0x280 [ 743.319230][T16887] kmsan_internal_chain_origin+0x6f/0x130 [ 743.324951][T16887] ? __msan_get_context_state+0x9/0x20 [ 743.330409][T16887] ? kmsan_get_metadata+0x116/0x180 [ 743.335616][T16887] ? kmsan_internal_check_memory+0xb1/0x520 [ 743.341516][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 743.347151][T16887] ? kmsan_check_memory+0xd/0x10 [ 743.352094][T16887] ? ____sys_recvmsg+0xa2d/0xd80 [ 743.357033][T16887] ? __msan_get_context_state+0x9/0x20 [ 743.362496][T16887] ? kfree+0x29/0x11b0 [ 743.366567][T16887] ? kmsan_get_metadata+0x116/0x180 [ 743.371769][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 743.377408][T16887] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 743.383478][T16887] ? _copy_from_user+0x1cd/0x2d0 [ 743.388416][T16887] ? kmsan_get_metadata+0x116/0x180 [ 743.393616][T16887] __msan_chain_origin+0x57/0xa0 [ 743.398557][T16887] do_recvmmsg+0x17ee/0x2300 [ 743.403168][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 743.408801][T16887] ? __msan_poison_alloca+0xe9/0x110 [ 743.414094][T16887] ? __se_sys_recvmmsg+0xd3/0x410 [ 743.419122][T16887] __se_sys_recvmmsg+0x247/0x410 [ 743.424065][T16887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 743.429879][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 743.434735][T16887] do_syscall_64+0x9f/0x140 [ 743.439243][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 743.445134][T16887] RIP: 0033:0x45e159 [ 743.449029][T16887] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 743.468634][T16887] RSP: 002b:00007f92e7375c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 743.477054][T16887] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 743.485027][T16887] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 743.493001][T16887] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 743.500971][T16887] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 743.508951][T16887] R13: 00000000016afb7f R14: 00007f92e73769c0 R15: 000000000119bf8c [ 743.516919][T16887] Uninit was stored to memory at: [ 743.521956][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 743.527675][T16887] __msan_chain_origin+0x57/0xa0 [ 743.532614][T16887] do_recvmmsg+0x17ee/0x2300 [ 743.537212][T16887] __se_sys_recvmmsg+0x247/0x410 [ 743.542151][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 743.547005][T16887] do_syscall_64+0x9f/0x140 [ 743.551509][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 743.557388][T16887] [ 743.559713][T16887] Uninit was stored to memory at: [ 743.564745][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 743.570467][T16887] __msan_chain_origin+0x57/0xa0 [ 743.575407][T16887] do_recvmmsg+0x17ee/0x2300 [ 743.580002][T16887] __se_sys_recvmmsg+0x247/0x410 [ 743.584942][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 743.589798][T16887] do_syscall_64+0x9f/0x140 [ 743.594306][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 743.600183][T16887] [ 743.602500][T16887] Uninit was stored to memory at: [ 743.607621][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 743.613341][T16887] __msan_chain_origin+0x57/0xa0 [ 743.618282][T16887] do_recvmmsg+0x17ee/0x2300 [ 743.622876][T16887] __se_sys_recvmmsg+0x247/0x410 [ 743.627811][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 743.632667][T16887] do_syscall_64+0x9f/0x140 [ 743.637183][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 743.643067][T16887] [ 743.645387][T16887] Uninit was stored to memory at: [ 743.650418][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 743.656139][T16887] __msan_chain_origin+0x57/0xa0 [ 743.661084][T16887] do_recvmmsg+0x17ee/0x2300 [ 743.665678][T16887] __se_sys_recvmmsg+0x247/0x410 [ 743.670621][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 743.675480][T16887] do_syscall_64+0x9f/0x140 [ 743.679988][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 743.685870][T16887] [ 743.688192][T16887] Uninit was stored to memory at: [ 743.693229][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 743.698953][T16887] __msan_chain_origin+0x57/0xa0 [ 743.703908][T16887] do_recvmmsg+0x17ee/0x2300 [ 743.708505][T16887] __se_sys_recvmmsg+0x247/0x410 [ 743.713443][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 743.718299][T16887] do_syscall_64+0x9f/0x140 [ 743.722810][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 743.728689][T16887] [ 743.731009][T16887] Uninit was stored to memory at: [ 743.736044][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 743.741771][T16887] __msan_chain_origin+0x57/0xa0 [ 743.746719][T16887] do_recvmmsg+0x17ee/0x2300 [ 743.751314][T16887] __se_sys_recvmmsg+0x247/0x410 [ 743.756257][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 743.761112][T16887] do_syscall_64+0x9f/0x140 [ 743.765623][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 743.771503][T16887] [ 743.773824][T16887] Uninit was stored to memory at: [ 743.778860][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 743.784581][T16887] __msan_chain_origin+0x57/0xa0 [ 743.789520][T16887] do_recvmmsg+0x17ee/0x2300 [ 743.794114][T16887] __se_sys_recvmmsg+0x247/0x410 [ 743.799059][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 743.803914][T16887] do_syscall_64+0x9f/0x140 [ 743.808420][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 743.814298][T16887] [ 743.816622][T16887] Local variable ----msg_sys@do_recvmmsg created at: [ 743.823299][T16887] do_recvmmsg+0xbc/0x2300 [ 743.828237][T16887] do_recvmmsg+0xbc/0x2300 [ 744.566502][T16931] not chained 550000 origins [ 744.572539][T16931] CPU: 1 PID: 16931 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 744.581295][T16931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 744.591355][T16931] Call Trace: [ 744.594653][T16931] dump_stack+0x21c/0x280 [ 744.599001][T16931] kmsan_internal_chain_origin+0x6f/0x130 [ 744.604726][T16931] ? __msan_get_context_state+0x9/0x20 [ 744.613102][T16931] ? kmsan_get_metadata+0x116/0x180 [ 744.618309][T16931] ? kmsan_internal_check_memory+0xb1/0x520 [ 744.624212][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 744.629928][T16931] ? kmsan_check_memory+0xd/0x10 [ 744.634857][T16931] ? ____sys_recvmsg+0xa2d/0xd80 [ 744.639782][T16931] ? __msan_get_context_state+0x9/0x20 [ 744.645227][T16931] ? kfree+0x29/0x11b0 [ 744.649285][T16931] ? kmsan_get_metadata+0x116/0x180 [ 744.654564][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 744.660187][T16931] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 744.666245][T16931] ? _copy_from_user+0x1cd/0x2d0 [ 744.671170][T16931] ? kmsan_get_metadata+0x116/0x180 [ 744.676355][T16931] __msan_chain_origin+0x57/0xa0 [ 744.681283][T16931] do_recvmmsg+0x17ee/0x2300 [ 744.685893][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 744.691521][T16931] ? __msan_poison_alloca+0xe9/0x110 [ 744.696852][T16931] ? __se_sys_recvmmsg+0xd3/0x410 [ 744.701869][T16931] __se_sys_recvmmsg+0x247/0x410 [ 744.706796][T16931] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 744.712599][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 744.717442][T16931] do_syscall_64+0x9f/0x140 [ 744.721936][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 744.727821][T16931] RIP: 0033:0x45e159 [ 744.731708][T16931] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 744.751322][T16931] RSP: 002b:00007f7ad6ba7c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 744.759729][T16931] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 744.767812][T16931] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 744.775773][T16931] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 744.783732][T16931] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 744.791690][T16931] R13: 00000000016afb7f R14: 00007f7ad6ba89c0 R15: 000000000119c034 [ 744.799648][T16931] Uninit was stored to memory at: [ 744.804668][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 744.810376][T16931] __msan_chain_origin+0x57/0xa0 [ 744.815300][T16931] do_recvmmsg+0x17ee/0x2300 [ 744.819878][T16931] __se_sys_recvmmsg+0x247/0x410 [ 744.824803][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 744.829653][T16931] do_syscall_64+0x9f/0x140 [ 744.834145][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 744.840010][T16931] [ 744.842321][T16931] Uninit was stored to memory at: [ 744.847334][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 744.853043][T16931] __msan_chain_origin+0x57/0xa0 [ 744.857965][T16931] do_recvmmsg+0x17ee/0x2300 [ 744.862538][T16931] __se_sys_recvmmsg+0x247/0x410 [ 744.867473][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 744.872325][T16931] do_syscall_64+0x9f/0x140 [ 744.876814][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 744.882681][T16931] [ 744.884990][T16931] Uninit was stored to memory at: [ 744.890004][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 744.895705][T16931] __msan_chain_origin+0x57/0xa0 [ 744.900629][T16931] do_recvmmsg+0x17ee/0x2300 [ 744.905205][T16931] __se_sys_recvmmsg+0x247/0x410 [ 744.910127][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 744.914963][T16931] do_syscall_64+0x9f/0x140 [ 744.919714][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 744.925581][T16931] [ 744.927888][T16931] Uninit was stored to memory at: [ 744.932903][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 744.938607][T16931] __msan_chain_origin+0x57/0xa0 [ 744.943530][T16931] do_recvmmsg+0x17ee/0x2300 [ 744.948108][T16931] __se_sys_recvmmsg+0x247/0x410 [ 744.953031][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 744.957870][T16931] do_syscall_64+0x9f/0x140 [ 744.962447][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 744.968315][T16931] [ 744.970623][T16931] Uninit was stored to memory at: [ 744.975639][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 744.981341][T16931] __msan_chain_origin+0x57/0xa0 [ 744.986263][T16931] do_recvmmsg+0x17ee/0x2300 [ 744.990851][T16931] __se_sys_recvmmsg+0x247/0x410 [ 744.995773][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 745.000610][T16931] do_syscall_64+0x9f/0x140 [ 745.005100][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 745.010966][T16931] [ 745.013273][T16931] Uninit was stored to memory at: [ 745.018289][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 745.023990][T16931] __msan_chain_origin+0x57/0xa0 [ 745.028913][T16931] do_recvmmsg+0x17ee/0x2300 [ 745.033491][T16931] __se_sys_recvmmsg+0x247/0x410 [ 745.038414][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 745.043256][T16931] do_syscall_64+0x9f/0x140 [ 745.047745][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 745.053612][T16931] [ 745.055921][T16931] Uninit was stored to memory at: [ 745.060933][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 745.066635][T16931] __msan_chain_origin+0x57/0xa0 [ 745.071557][T16931] do_recvmmsg+0x17ee/0x2300 [ 745.076133][T16931] __se_sys_recvmmsg+0x247/0x410 [ 745.081058][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 745.085896][T16931] do_syscall_64+0x9f/0x140 [ 745.090389][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 745.096254][T16931] [ 745.098565][T16931] Local variable ----msg_sys@do_recvmmsg created at: [ 745.105225][T16931] do_recvmmsg+0xbc/0x2300 [ 745.109628][T16931] do_recvmmsg+0xbc/0x2300 [ 745.851625][T16891] not chained 560000 origins [ 745.856258][T16891] CPU: 0 PID: 16891 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 745.865012][T16891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 745.875066][T16891] Call Trace: [ 745.878363][T16891] dump_stack+0x21c/0x280 [ 745.882704][T16891] kmsan_internal_chain_origin+0x6f/0x130 [ 745.888428][T16891] ? __msan_get_context_state+0x9/0x20 [ 745.893888][T16891] ? kmsan_get_metadata+0x116/0x180 [ 745.899098][T16891] ? kmsan_internal_check_memory+0xb1/0x520 [ 745.905001][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 745.910646][T16891] ? kmsan_check_memory+0xd/0x10 [ 745.915590][T16891] ? ____sys_recvmsg+0xa2d/0xd80 [ 745.920530][T16891] ? __msan_get_context_state+0x9/0x20 [ 745.925992][T16891] ? kfree+0x29/0x11b0 [ 745.930080][T16891] ? kmsan_get_metadata+0x116/0x180 [ 745.935286][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 745.940928][T16891] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 745.946998][T16891] ? _copy_from_user+0x1cd/0x2d0 [ 745.951934][T16891] ? kmsan_get_metadata+0x116/0x180 [ 745.957134][T16891] __msan_chain_origin+0x57/0xa0 [ 745.962082][T16891] do_recvmmsg+0x17ee/0x2300 [ 745.966691][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 745.972330][T16891] ? __msan_poison_alloca+0xe9/0x110 [ 745.977624][T16891] ? __se_sys_recvmmsg+0xd3/0x410 [ 745.982656][T16891] __se_sys_recvmmsg+0x247/0x410 [ 745.987594][T16891] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 745.993410][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 745.998267][T16891] do_syscall_64+0x9f/0x140 [ 746.002773][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 746.008665][T16891] RIP: 0033:0x45e159 [ 746.012562][T16891] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 746.032173][T16891] RSP: 002b:00007f92e7354c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 746.040594][T16891] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 746.048569][T16891] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 746.056542][T16891] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 746.064515][T16891] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 746.072490][T16891] R13: 00000000016afb7f R14: 00007f92e73559c0 R15: 000000000119c034 [ 746.080463][T16891] Uninit was stored to memory at: [ 746.085507][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 746.091227][T16891] __msan_chain_origin+0x57/0xa0 [ 746.096166][T16891] do_recvmmsg+0x17ee/0x2300 [ 746.100758][T16891] __se_sys_recvmmsg+0x247/0x410 [ 746.105699][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 746.110557][T16891] do_syscall_64+0x9f/0x140 [ 746.115063][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 746.120940][T16891] [ 746.123262][T16891] Uninit was stored to memory at: [ 746.128302][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 746.134021][T16891] __msan_chain_origin+0x57/0xa0 [ 746.138959][T16891] do_recvmmsg+0x17ee/0x2300 [ 746.143550][T16891] __se_sys_recvmmsg+0x247/0x410 [ 746.148493][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 746.153350][T16891] do_syscall_64+0x9f/0x140 [ 746.157857][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 746.163742][T16891] [ 746.166064][T16891] Uninit was stored to memory at: [ 746.171096][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 746.176815][T16891] __msan_chain_origin+0x57/0xa0 [ 746.181755][T16891] do_recvmmsg+0x17ee/0x2300 [ 746.186348][T16891] __se_sys_recvmmsg+0x247/0x410 [ 746.191286][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 746.196141][T16891] do_syscall_64+0x9f/0x140 [ 746.200650][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 746.206529][T16891] [ 746.208849][T16891] Uninit was stored to memory at: [ 746.213886][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 746.219607][T16891] __msan_chain_origin+0x57/0xa0 [ 746.224549][T16891] do_recvmmsg+0x17ee/0x2300 [ 746.229144][T16891] __se_sys_recvmmsg+0x247/0x410 [ 746.234087][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 746.238944][T16891] do_syscall_64+0x9f/0x140 [ 746.243455][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 746.249335][T16891] [ 746.251656][T16891] Uninit was stored to memory at: [ 746.256690][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 746.262417][T16891] __msan_chain_origin+0x57/0xa0 [ 746.267355][T16891] do_recvmmsg+0x17ee/0x2300 [ 746.271946][T16891] __se_sys_recvmmsg+0x247/0x410 [ 746.276884][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 746.281742][T16891] do_syscall_64+0x9f/0x140 [ 746.286249][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 746.292130][T16891] [ 746.294452][T16891] Uninit was stored to memory at: [ 746.299487][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 746.305241][T16891] __msan_chain_origin+0x57/0xa0 [ 746.310183][T16891] do_recvmmsg+0x17ee/0x2300 [ 746.314774][T16891] __se_sys_recvmmsg+0x247/0x410 [ 746.319726][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 746.324582][T16891] do_syscall_64+0x9f/0x140 [ 746.329082][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 746.334959][T16891] [ 746.337277][T16891] Uninit was stored to memory at: [ 746.342306][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 746.348025][T16891] __msan_chain_origin+0x57/0xa0 [ 746.352965][T16891] do_recvmmsg+0x17ee/0x2300 [ 746.357551][T16891] __se_sys_recvmmsg+0x247/0x410 [ 746.362486][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 746.367338][T16891] do_syscall_64+0x9f/0x140 [ 746.371844][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 746.377725][T16891] [ 746.380043][T16891] Local variable ----msg_sys@do_recvmmsg created at: [ 746.386722][T16891] do_recvmmsg+0xbc/0x2300 [ 746.391136][T16891] do_recvmmsg+0xbc/0x2300 [ 746.987098][T16887] not chained 570000 origins [ 746.994047][T16887] CPU: 1 PID: 16887 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 747.006295][T16887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 747.018555][T16887] Call Trace: [ 747.023834][T16887] dump_stack+0x21c/0x280 [ 747.030347][T16887] kmsan_internal_chain_origin+0x6f/0x130 [ 747.036100][T16887] ? __msan_get_context_state+0x9/0x20 [ 747.042001][T16887] ? kmsan_get_metadata+0x116/0x180 [ 747.047211][T16887] ? kmsan_internal_check_memory+0xb1/0x520 [ 747.053107][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 747.059040][T16887] ? kmsan_check_memory+0xd/0x10 [ 747.064655][T16887] ? ____sys_recvmsg+0xa2d/0xd80 [ 747.069596][T16887] ? __msan_get_context_state+0x9/0x20 [ 747.075057][T16887] ? kfree+0x29/0x11b0 [ 747.082193][T16887] ? kmsan_get_metadata+0x116/0x180 [ 747.087400][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 747.096712][T16887] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 747.103517][T16887] ? _copy_from_user+0x1cd/0x2d0 [ 747.108455][T16887] ? kmsan_get_metadata+0x116/0x180 [ 747.113655][T16887] __msan_chain_origin+0x57/0xa0 [ 747.118595][T16887] do_recvmmsg+0x17ee/0x2300 [ 747.127292][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 747.134018][T16887] ? __msan_poison_alloca+0xe9/0x110 [ 747.139308][T16887] ? __se_sys_recvmmsg+0xd3/0x410 [ 747.147128][T16887] __se_sys_recvmmsg+0x247/0x410 [ 747.153707][T16887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 747.159523][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 747.167076][T16887] do_syscall_64+0x9f/0x140 [ 747.171585][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 747.177473][T16887] RIP: 0033:0x45e159 [ 747.181365][T16887] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 747.200972][T16887] RSP: 002b:00007f92e7375c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 747.209389][T16887] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 747.218745][T16887] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 747.226720][T16887] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 747.238353][T16887] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 747.246329][T16887] R13: 00000000016afb7f R14: 00007f92e73769c0 R15: 000000000119bf8c [ 747.257996][T16887] Uninit was stored to memory at: [ 747.263571][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 747.269289][T16887] __msan_chain_origin+0x57/0xa0 [ 747.274228][T16887] do_recvmmsg+0x17ee/0x2300 [ 747.278816][T16887] __se_sys_recvmmsg+0x247/0x410 [ 747.287818][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 747.293341][T16887] do_syscall_64+0x9f/0x140 [ 747.297847][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 747.303724][T16887] [ 747.309678][T16887] Uninit was stored to memory at: [ 747.315252][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 747.320969][T16887] __msan_chain_origin+0x57/0xa0 [ 747.325904][T16887] do_recvmmsg+0x17ee/0x2300 [ 747.330494][T16887] __se_sys_recvmmsg+0x247/0x410 [ 747.338253][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 747.343763][T16887] do_syscall_64+0x9f/0x140 [ 747.348266][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 747.358008][T16887] [ 747.362940][T16887] Uninit was stored to memory at: [ 747.367972][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 747.373693][T16887] __msan_chain_origin+0x57/0xa0 [ 747.377216][T16929] not chained 580000 origins [ 747.378632][T16887] do_recvmmsg+0x17ee/0x2300 [ 747.383209][T16929] CPU: 0 PID: 16929 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 747.387772][T16887] __se_sys_recvmmsg+0x247/0x410 [ 747.396494][T16929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 747.401408][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 747.411428][T16929] Call Trace: [ 747.416262][T16887] do_syscall_64+0x9f/0x140 [ 747.419520][T16929] dump_stack+0x21c/0x280 [ 747.423993][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 747.428309][T16929] kmsan_internal_chain_origin+0x6f/0x130 [ 747.434153][T16887] [ 747.439856][T16929] ? __msan_get_context_state+0x9/0x20 [ 747.442148][T16887] Uninit was stored to memory at: [ 747.447588][T16929] ? kmsan_get_metadata+0x116/0x180 [ 747.452589][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 747.457759][T16929] ? kmsan_internal_check_memory+0xb1/0x520 [ 747.463457][T16887] __msan_chain_origin+0x57/0xa0 [ 747.469326][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 747.474234][T16887] do_recvmmsg+0x17ee/0x2300 [ 747.479840][T16929] ? kmsan_check_memory+0xd/0x10 [ 747.484414][T16887] __se_sys_recvmmsg+0x247/0x410 [ 747.489323][T16929] ? ____sys_recvmsg+0xa2d/0xd80 [ 747.494231][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 747.499139][T16929] ? __msan_get_context_state+0x9/0x20 [ 747.503964][T16887] do_syscall_64+0x9f/0x140 [ 747.509392][T16929] ? kfree+0x29/0x11b0 [ 747.513867][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 747.517906][T16929] ? kmsan_get_metadata+0x116/0x180 [ 747.523756][T16887] [ 747.528940][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 747.531229][T16887] Uninit was stored to memory at: [ 747.536848][T16929] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 747.541845][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 747.547877][T16929] ? _copy_from_user+0x1cd/0x2d0 [ 747.553573][T16887] __msan_chain_origin+0x57/0xa0 [ 747.558482][T16929] ? kmsan_get_metadata+0x116/0x180 [ 747.563391][T16887] do_recvmmsg+0x17ee/0x2300 [ 747.568571][T16929] __msan_chain_origin+0x57/0xa0 [ 747.573139][T16887] __se_sys_recvmmsg+0x247/0x410 [ 747.578046][T16929] do_recvmmsg+0x17ee/0x2300 [ 747.582956][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 747.587527][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 747.592344][T16887] do_syscall_64+0x9f/0x140 [ 747.597944][T16929] ? __msan_poison_alloca+0xe9/0x110 [ 747.602420][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 747.607692][T16929] ? __se_sys_recvmmsg+0xd3/0x410 [ 747.613538][T16887] [ 747.618544][T16929] __se_sys_recvmmsg+0x247/0x410 [ 747.620836][T16887] Uninit was stored to memory at: [ 747.625767][T16929] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 747.630768][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 747.636562][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 747.642257][T16887] __msan_chain_origin+0x57/0xa0 [ 747.647085][T16929] do_syscall_64+0x9f/0x140 [ 747.652000][T16887] do_recvmmsg+0x17ee/0x2300 [ 747.656478][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 747.661047][T16887] __se_sys_recvmmsg+0x247/0x410 [ 747.666902][T16929] RIP: 0033:0x45e159 [ 747.671817][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 747.675684][T16929] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 747.680509][T16887] do_syscall_64+0x9f/0x140 [ 747.700097][T16929] RSP: 002b:00007f7ad6bc8c68 EFLAGS: 00000246 [ 747.704572][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 747.704589][T16929] ORIG_RAX: 000000000000012b [ 747.710622][T16887] [ 747.716494][T16929] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 747.721134][T16887] Uninit was stored to memory at: [ 747.723443][T16929] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 747.731405][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 747.736393][T16929] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 747.744359][T16887] __msan_chain_origin+0x57/0xa0 [ 747.750062][T16929] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 747.758017][T16887] do_recvmmsg+0x17ee/0x2300 [ 747.762957][T16929] R13: 00000000016afb7f R14: 00007f7ad6bc99c0 R15: 000000000119bf8c [ 747.770913][T16887] __se_sys_recvmmsg+0x247/0x410 [ 747.775467][T16929] Uninit was stored to memory at: [ 747.783432][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 747.788346][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 747.793339][T16887] do_syscall_64+0x9f/0x140 [ 747.798172][T16929] __msan_chain_origin+0x57/0xa0 [ 747.803881][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 747.808360][T16929] do_recvmmsg+0x17ee/0x2300 [ 747.813258][T16887] [ 747.819156][T16929] __se_sys_recvmmsg+0x247/0x410 [ 747.823708][T16887] Local variable ----msg_sys@do_recvmmsg created at: [ 747.826020][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 747.830927][T16887] do_recvmmsg+0xbc/0x2300 [ 747.837577][T16929] do_syscall_64+0x9f/0x140 [ 747.842396][T16887] do_recvmmsg+0xbc/0x2300 [ 747.846788][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 747.861505][T16929] [ 747.863826][T16929] Uninit was stored to memory at: [ 747.868926][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 747.874686][T16929] __msan_chain_origin+0x57/0xa0 [ 747.879627][T16929] do_recvmmsg+0x17ee/0x2300 [ 747.884223][T16929] __se_sys_recvmmsg+0x247/0x410 [ 747.889167][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 747.894022][T16929] do_syscall_64+0x9f/0x140 [ 747.898533][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 747.904413][T16929] [ 747.906757][T16929] Uninit was stored to memory at: [ 747.911786][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 747.917502][T16929] __msan_chain_origin+0x57/0xa0 [ 747.922438][T16929] do_recvmmsg+0x17ee/0x2300 [ 747.927028][T16929] __se_sys_recvmmsg+0x247/0x410 [ 747.931964][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 747.936818][T16929] do_syscall_64+0x9f/0x140 [ 747.941323][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 747.947197][T16929] [ 747.949521][T16929] Uninit was stored to memory at: [ 747.954549][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 747.960262][T16929] __msan_chain_origin+0x57/0xa0 [ 747.965200][T16929] do_recvmmsg+0x17ee/0x2300 [ 747.969814][T16929] __se_sys_recvmmsg+0x247/0x410 [ 747.974750][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 747.979599][T16929] do_syscall_64+0x9f/0x140 [ 747.984101][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 747.989979][T16929] [ 747.992299][T16929] Uninit was stored to memory at: [ 747.997324][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 748.003144][T16929] __msan_chain_origin+0x57/0xa0 [ 748.008081][T16929] do_recvmmsg+0x17ee/0x2300 [ 748.012754][T16929] __se_sys_recvmmsg+0x247/0x410 [ 748.017686][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 748.022538][T16929] do_syscall_64+0x9f/0x140 [ 748.027040][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 748.032916][T16929] [ 748.035233][T16929] Uninit was stored to memory at: [ 748.040271][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 748.045989][T16929] __msan_chain_origin+0x57/0xa0 [ 748.050923][T16929] do_recvmmsg+0x17ee/0x2300 [ 748.055507][T16929] __se_sys_recvmmsg+0x247/0x410 [ 748.058328][T16931] not chained 590000 origins [ 748.060446][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 748.065008][T16931] CPU: 1 PID: 16931 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 748.069833][T16929] do_syscall_64+0x9f/0x140 [ 748.078553][T16931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 748.083050][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 748.093071][T16931] Call Trace: [ 748.098931][T16929] [ 748.102202][T16931] dump_stack+0x21c/0x280 [ 748.104493][T16929] Uninit was stored to memory at: [ 748.108811][T16931] kmsan_internal_chain_origin+0x6f/0x130 [ 748.113806][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 748.119491][T16931] ? __msan_get_context_state+0x9/0x20 [ 748.125184][T16929] __msan_chain_origin+0x57/0xa0 [ 748.130614][T16931] ? kmsan_get_metadata+0x116/0x180 [ 748.135526][T16929] do_recvmmsg+0x17ee/0x2300 [ 748.140700][T16931] ? kmsan_internal_check_memory+0xb1/0x520 [ 748.145270][T16929] __se_sys_recvmmsg+0x247/0x410 [ 748.151136][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 748.156042][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 748.161647][T16931] ? kmsan_check_memory+0xd/0x10 [ 748.166470][T16929] do_syscall_64+0x9f/0x140 [ 748.171390][T16931] ? ____sys_recvmsg+0xa2d/0xd80 [ 748.175865][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 748.180772][T16931] ? __msan_get_context_state+0x9/0x20 [ 748.186624][T16929] [ 748.192065][T16931] ? kfree+0x29/0x11b0 [ 748.194359][T16929] Local variable ----msg_sys@do_recvmmsg created at: [ 748.198406][T16931] ? kmsan_get_metadata+0x116/0x180 [ 748.205054][T16929] do_recvmmsg+0xbc/0x2300 [ 748.210228][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 748.214615][T16929] do_recvmmsg+0xbc/0x2300 [ 748.220229][T16931] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 748.230650][T16931] ? _copy_from_user+0x1cd/0x2d0 [ 748.235593][T16931] ? kmsan_get_metadata+0x116/0x180 [ 748.240790][T16931] __msan_chain_origin+0x57/0xa0 [ 748.245730][T16931] do_recvmmsg+0x17ee/0x2300 [ 748.250343][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 748.255976][T16931] ? __msan_poison_alloca+0xe9/0x110 [ 748.265087][T16931] ? __se_sys_recvmmsg+0xd3/0x410 [ 748.270120][T16931] __se_sys_recvmmsg+0x247/0x410 [ 748.276442][T16931] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 748.282257][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 748.288655][T16931] do_syscall_64+0x9f/0x140 [ 748.293758][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 748.299645][T16931] RIP: 0033:0x45e159 [ 748.303544][T16931] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 748.323154][T16931] RSP: 002b:00007f7ad6ba7c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 748.334075][T16931] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 748.342054][T16931] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 748.350032][T16931] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 748.359663][T16931] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 748.367636][T16931] R13: 00000000016afb7f R14: 00007f7ad6ba89c0 R15: 000000000119c034 [ 748.378188][T16931] Uninit was stored to memory at: [ 748.383409][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 748.389130][T16931] __msan_chain_origin+0x57/0xa0 [ 748.394073][T16931] do_recvmmsg+0x17ee/0x2300 [ 748.398674][T16931] __se_sys_recvmmsg+0x247/0x410 [ 748.403613][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 748.408467][T16931] do_syscall_64+0x9f/0x140 [ 748.412973][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 748.418849][T16931] [ 748.423993][T16931] Uninit was stored to memory at: [ 748.429266][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 748.435552][T16931] __msan_chain_origin+0x57/0xa0 [ 748.440492][T16931] do_recvmmsg+0x17ee/0x2300 [ 748.445085][T16931] __se_sys_recvmmsg+0x247/0x410 [ 748.450022][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 748.456832][T16931] do_syscall_64+0x9f/0x140 [ 748.462860][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 748.468742][T16931] [ 748.474331][T16931] Uninit was stored to memory at: [ 748.479381][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 748.485102][T16931] __msan_chain_origin+0x57/0xa0 [ 748.490046][T16931] do_recvmmsg+0x17ee/0x2300 [ 748.494989][T16931] __se_sys_recvmmsg+0x247/0x410 [ 748.499927][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 748.506085][T16931] do_syscall_64+0x9f/0x140 [ 748.510597][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 748.517663][T16931] [ 748.523225][T16931] Uninit was stored to memory at: [ 748.528263][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 748.533984][T16931] __msan_chain_origin+0x57/0xa0 [ 748.538924][T16931] do_recvmmsg+0x17ee/0x2300 [ 748.546899][T16931] __se_sys_recvmmsg+0x247/0x410 [ 748.553004][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 748.557859][T16931] do_syscall_64+0x9f/0x140 [ 748.562363][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 748.568239][T16931] [ 748.570561][T16931] Uninit was stored to memory at: [ 748.577269][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 748.583514][T16931] __msan_chain_origin+0x57/0xa0 [ 748.588451][T16931] do_recvmmsg+0x17ee/0x2300 [ 748.593145][T16931] __se_sys_recvmmsg+0x247/0x410 [ 748.598078][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 748.602933][T16931] do_syscall_64+0x9f/0x140 [ 748.607441][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 748.613318][T16931] [ 748.615636][T16931] Uninit was stored to memory at: [ 748.620674][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 748.627826][T16931] __msan_chain_origin+0x57/0xa0 [ 748.633944][T16931] do_recvmmsg+0x17ee/0x2300 [ 748.638540][T16931] __se_sys_recvmmsg+0x247/0x410 [ 748.643483][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 748.648338][T16931] do_syscall_64+0x9f/0x140 [ 748.656359][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 748.662623][T16931] [ 748.664942][T16931] Uninit was stored to memory at: [ 748.669974][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 748.675692][T16931] __msan_chain_origin+0x57/0xa0 [ 748.680642][T16931] do_recvmmsg+0x17ee/0x2300 [ 748.688730][T16931] __se_sys_recvmmsg+0x247/0x410 [ 748.694861][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 748.699719][T16931] do_syscall_64+0x9f/0x140 [ 748.704233][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 748.710111][T16931] [ 748.712453][T16931] Local variable ----msg_sys@do_recvmmsg created at: [ 748.719126][T16931] do_recvmmsg+0xbc/0x2300 [ 748.723542][T16931] do_recvmmsg+0xbc/0x2300 [ 749.262479][T16891] not chained 600000 origins [ 749.267110][T16891] CPU: 0 PID: 16891 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 749.275864][T16891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 749.285914][T16891] Call Trace: [ 749.289217][T16891] dump_stack+0x21c/0x280 [ 749.293560][T16891] kmsan_internal_chain_origin+0x6f/0x130 [ 749.299286][T16891] ? __msan_get_context_state+0x9/0x20 [ 749.304747][T16891] ? kmsan_get_metadata+0x116/0x180 [ 749.309954][T16891] ? kmsan_internal_check_memory+0xb1/0x520 [ 749.315858][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 749.321495][T16891] ? kmsan_check_memory+0xd/0x10 [ 749.326439][T16891] ? ____sys_recvmsg+0xa2d/0xd80 [ 749.331378][T16891] ? __msan_get_context_state+0x9/0x20 [ 749.336949][T16891] ? kfree+0x29/0x11b0 [ 749.341020][T16891] ? kmsan_get_metadata+0x116/0x180 [ 749.346232][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 749.351870][T16891] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 749.357942][T16891] ? _copy_from_user+0x1cd/0x2d0 [ 749.362882][T16891] ? kmsan_get_metadata+0x116/0x180 [ 749.368085][T16891] __msan_chain_origin+0x57/0xa0 [ 749.373032][T16891] do_recvmmsg+0x17ee/0x2300 [ 749.377644][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 749.383280][T16891] ? __msan_poison_alloca+0xe9/0x110 [ 749.388569][T16891] ? __se_sys_recvmmsg+0xd3/0x410 [ 749.393601][T16891] __se_sys_recvmmsg+0x247/0x410 [ 749.398542][T16891] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 749.404356][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 749.409213][T16891] do_syscall_64+0x9f/0x140 [ 749.413724][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 749.419615][T16891] RIP: 0033:0x45e159 [ 749.423514][T16891] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 749.443121][T16891] RSP: 002b:00007f92e7354c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 749.451542][T16891] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 749.459516][T16891] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 749.467491][T16891] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 749.475465][T16891] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 749.483444][T16891] R13: 00000000016afb7f R14: 00007f92e73559c0 R15: 000000000119c034 [ 749.491439][T16891] Uninit was stored to memory at: [ 749.496479][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 749.502198][T16891] __msan_chain_origin+0x57/0xa0 [ 749.507141][T16891] do_recvmmsg+0x17ee/0x2300 [ 749.511740][T16891] __se_sys_recvmmsg+0x247/0x410 [ 749.516681][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 749.521538][T16891] do_syscall_64+0x9f/0x140 [ 749.526061][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 749.531945][T16891] [ 749.534265][T16891] Uninit was stored to memory at: [ 749.539297][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 749.545017][T16891] __msan_chain_origin+0x57/0xa0 [ 749.549958][T16891] do_recvmmsg+0x17ee/0x2300 [ 749.554550][T16891] __se_sys_recvmmsg+0x247/0x410 [ 749.559520][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 749.564373][T16891] do_syscall_64+0x9f/0x140 [ 749.568881][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 749.574760][T16891] [ 749.577085][T16891] Uninit was stored to memory at: [ 749.582128][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 749.587845][T16891] __msan_chain_origin+0x57/0xa0 [ 749.592871][T16891] do_recvmmsg+0x17ee/0x2300 [ 749.597464][T16891] __se_sys_recvmmsg+0x247/0x410 [ 749.602401][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 749.607255][T16891] do_syscall_64+0x9f/0x140 [ 749.611764][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 749.617651][T16891] [ 749.619971][T16891] Uninit was stored to memory at: [ 749.625003][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 749.630719][T16891] __msan_chain_origin+0x57/0xa0 [ 749.635661][T16891] do_recvmmsg+0x17ee/0x2300 [ 749.640254][T16891] __se_sys_recvmmsg+0x247/0x410 [ 749.645193][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 749.650045][T16891] do_syscall_64+0x9f/0x140 [ 749.654551][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 749.660432][T16891] [ 749.662756][T16891] Uninit was stored to memory at: [ 749.667790][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 749.673510][T16891] __msan_chain_origin+0x57/0xa0 [ 749.678455][T16891] do_recvmmsg+0x17ee/0x2300 [ 749.683060][T16891] __se_sys_recvmmsg+0x247/0x410 [ 749.688003][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 749.692859][T16891] do_syscall_64+0x9f/0x140 [ 749.697365][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 749.703246][T16891] [ 749.705569][T16891] Uninit was stored to memory at: [ 749.710599][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 749.716318][T16891] __msan_chain_origin+0x57/0xa0 [ 749.727002][T16891] do_recvmmsg+0x17ee/0x2300 [ 749.731599][T16891] __se_sys_recvmmsg+0x247/0x410 [ 749.736537][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 749.741384][T16891] do_syscall_64+0x9f/0x140 [ 749.745890][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 749.751767][T16891] [ 749.754088][T16891] Uninit was stored to memory at: [ 749.759116][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 749.764835][T16891] __msan_chain_origin+0x57/0xa0 [ 749.769776][T16891] do_recvmmsg+0x17ee/0x2300 [ 749.774369][T16891] __se_sys_recvmmsg+0x247/0x410 [ 749.779308][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 749.784164][T16891] do_syscall_64+0x9f/0x140 [ 749.788671][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 749.794551][T16891] [ 749.796868][T16891] Local variable ----msg_sys@do_recvmmsg created at: [ 749.803540][T16891] do_recvmmsg+0xbc/0x2300 [ 749.807964][T16891] do_recvmmsg+0xbc/0x2300 [ 750.116103][T16931] not chained 610000 origins [ 750.120734][T16931] CPU: 1 PID: 16931 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 750.129489][T16931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 750.139545][T16931] Call Trace: [ 750.142844][T16931] dump_stack+0x21c/0x280 [ 750.148628][T16931] kmsan_internal_chain_origin+0x6f/0x130 [ 750.154628][T16931] ? __msan_get_context_state+0x9/0x20 [ 750.160088][T16931] ? kmsan_get_metadata+0x116/0x180 [ 750.165297][T16931] ? kmsan_internal_check_memory+0xb1/0x520 [ 750.171197][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 750.179696][T16931] ? kmsan_check_memory+0xd/0x10 [ 750.185533][T16931] ? ____sys_recvmsg+0xa2d/0xd80 [ 750.190476][T16931] ? __msan_get_context_state+0x9/0x20 [ 750.195953][T16931] ? kfree+0x29/0x11b0 [ 750.200024][T16931] ? kmsan_get_metadata+0x116/0x180 [ 750.207020][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 750.213013][T16931] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 750.219085][T16931] ? _copy_from_user+0x1cd/0x2d0 [ 750.224026][T16931] ? kmsan_get_metadata+0x116/0x180 [ 750.229865][T16931] __msan_chain_origin+0x57/0xa0 [ 750.235697][T16931] do_recvmmsg+0x17ee/0x2300 [ 750.240311][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 750.245944][T16931] ? __msan_poison_alloca+0xe9/0x110 [ 750.251235][T16931] ? __se_sys_recvmmsg+0xd3/0x410 [ 750.256265][T16931] __se_sys_recvmmsg+0x247/0x410 [ 750.261202][T16931] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 750.267017][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 750.271873][T16931] do_syscall_64+0x9f/0x140 [ 750.279210][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 750.285202][T16931] RIP: 0033:0x45e159 [ 750.289100][T16931] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 750.312200][T16931] RSP: 002b:00007f7ad6ba7c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 750.320624][T16931] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 750.331998][T16931] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 750.339974][T16931] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 750.350792][T16931] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 750.358768][T16931] R13: 00000000016afb7f R14: 00007f7ad6ba89c0 R15: 000000000119c034 [ 750.368883][T16931] Uninit was stored to memory at: [ 750.373921][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 750.379638][T16931] __msan_chain_origin+0x57/0xa0 [ 750.384581][T16931] do_recvmmsg+0x17ee/0x2300 [ 750.389174][T16931] __se_sys_recvmmsg+0x247/0x410 [ 750.394114][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 750.401698][T16931] do_syscall_64+0x9f/0x140 [ 750.406404][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 750.412282][T16931] [ 750.414602][T16931] Uninit was stored to memory at: [ 750.419642][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 750.425369][T16931] __msan_chain_origin+0x57/0xa0 [ 750.430307][T16931] do_recvmmsg+0x17ee/0x2300 [ 750.434898][T16931] __se_sys_recvmmsg+0x247/0x410 [ 750.441340][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 750.446193][T16931] do_syscall_64+0x9f/0x140 [ 750.450699][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 750.456578][T16931] [ 750.458897][T16931] Uninit was stored to memory at: [ 750.465929][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 750.471653][T16931] __msan_chain_origin+0x57/0xa0 [ 750.476601][T16931] do_recvmmsg+0x17ee/0x2300 [ 750.481706][T16931] __se_sys_recvmmsg+0x247/0x410 [ 750.486650][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 750.491508][T16931] do_syscall_64+0x9f/0x140 [ 750.496012][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 750.501889][T16931] [ 750.504208][T16931] Uninit was stored to memory at: [ 750.509248][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 750.517725][T16931] __msan_chain_origin+0x57/0xa0 [ 750.522666][T16931] do_recvmmsg+0x17ee/0x2300 [ 750.527261][T16931] __se_sys_recvmmsg+0x247/0x410 [ 750.532201][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 750.537982][T16931] do_syscall_64+0x9f/0x140 [ 750.542618][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 750.548496][T16931] [ 750.550820][T16931] Uninit was stored to memory at: [ 750.555850][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 750.561571][T16931] __msan_chain_origin+0x57/0xa0 [ 750.566512][T16931] do_recvmmsg+0x17ee/0x2300 [ 750.572411][T16931] __se_sys_recvmmsg+0x247/0x410 [ 750.580174][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 750.585864][T16931] do_syscall_64+0x9f/0x140 [ 750.590369][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 750.596252][T16931] [ 750.598574][T16931] Uninit was stored to memory at: [ 750.603605][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 750.609322][T16931] __msan_chain_origin+0x57/0xa0 [ 750.614265][T16931] do_recvmmsg+0x17ee/0x2300 [ 750.620586][T16931] __se_sys_recvmmsg+0x247/0x410 [ 750.625533][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 750.630386][T16931] do_syscall_64+0x9f/0x140 [ 750.634891][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 750.641697][T16931] [ 750.645887][T16931] Uninit was stored to memory at: [ 750.650917][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 750.656635][T16931] __msan_chain_origin+0x57/0xa0 [ 750.661574][T16931] do_recvmmsg+0x17ee/0x2300 [ 750.667556][T16931] __se_sys_recvmmsg+0x247/0x410 [ 750.672494][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 750.677347][T16931] do_syscall_64+0x9f/0x140 [ 750.681850][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 750.688477][T16931] [ 750.692620][T16931] Local variable ----msg_sys@do_recvmmsg created at: [ 750.699302][T16931] do_recvmmsg+0xbc/0x2300 [ 750.703716][T16931] do_recvmmsg+0xbc/0x2300 [ 751.130303][T16929] not chained 620000 origins [ 751.135999][T16929] CPU: 1 PID: 16929 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 751.144756][T16929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 751.154808][T16929] Call Trace: [ 751.158102][T16929] dump_stack+0x21c/0x280 [ 751.162448][T16929] kmsan_internal_chain_origin+0x6f/0x130 [ 751.169547][T16929] ? __msan_get_context_state+0x9/0x20 [ 751.175010][T16929] ? kmsan_get_metadata+0x116/0x180 [ 751.180220][T16929] ? kmsan_internal_check_memory+0xb1/0x520 [ 751.186120][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 751.194652][T16929] ? kmsan_check_memory+0xd/0x10 [ 751.199596][T16929] ? ____sys_recvmsg+0xa2d/0xd80 [ 751.204540][T16929] ? __msan_get_context_state+0x9/0x20 [ 751.210689][T16929] ? kfree+0x29/0x11b0 [ 751.215159][T16929] ? kmsan_get_metadata+0x116/0x180 [ 751.220365][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 751.226003][T16929] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 751.232089][T16929] ? _copy_from_user+0x1cd/0x2d0 [ 751.237778][T16929] ? kmsan_get_metadata+0x116/0x180 [ 751.242979][T16929] __msan_chain_origin+0x57/0xa0 [ 751.247921][T16929] do_recvmmsg+0x17ee/0x2300 [ 751.252528][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 751.258168][T16929] ? __msan_poison_alloca+0xe9/0x110 [ 751.263457][T16929] ? __se_sys_recvmmsg+0xd3/0x410 [ 751.268490][T16929] __se_sys_recvmmsg+0x247/0x410 [ 751.276679][T16929] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 751.282499][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 751.287356][T16929] do_syscall_64+0x9f/0x140 [ 751.291865][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 751.297756][T16929] RIP: 0033:0x45e159 [ 751.301652][T16929] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 751.321263][T16929] RSP: 002b:00007f7ad6bc8c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 751.329687][T16929] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 751.337658][T16929] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 751.345633][T16929] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 751.353603][T16929] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 751.363926][T16929] R13: 00000000016afb7f R14: 00007f7ad6bc99c0 R15: 000000000119bf8c [ 751.371901][T16929] Uninit was stored to memory at: [ 751.376936][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 751.382653][T16929] __msan_chain_origin+0x57/0xa0 [ 751.389006][T16929] do_recvmmsg+0x17ee/0x2300 [ 751.394567][T16929] __se_sys_recvmmsg+0x247/0x410 [ 751.399507][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 751.404359][T16929] do_syscall_64+0x9f/0x140 [ 751.409214][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 751.415093][T16929] [ 751.417412][T16929] Uninit was stored to memory at: [ 751.422442][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 751.428159][T16929] __msan_chain_origin+0x57/0xa0 [ 751.435853][T16929] do_recvmmsg+0x17ee/0x2300 [ 751.441338][T16929] __se_sys_recvmmsg+0x247/0x410 [ 751.446279][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 751.451130][T16929] do_syscall_64+0x9f/0x140 [ 751.455634][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 751.461529][T16929] [ 751.463847][T16929] Uninit was stored to memory at: [ 751.468878][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 751.474595][T16929] __msan_chain_origin+0x57/0xa0 [ 751.479533][T16929] do_recvmmsg+0x17ee/0x2300 [ 751.484120][T16929] __se_sys_recvmmsg+0x247/0x410 [ 751.490360][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 751.495217][T16929] do_syscall_64+0x9f/0x140 [ 751.499719][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 751.505599][T16929] [ 751.507496][T16891] not chained 630000 origins [ 751.508271][T16929] Uninit was stored to memory at: [ 751.512849][T16891] CPU: 0 PID: 16891 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 751.517868][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 751.526589][T16891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 751.532294][T16929] __msan_chain_origin+0x57/0xa0 [ 751.542318][T16891] Call Trace: [ 751.547242][T16929] do_recvmmsg+0x17ee/0x2300 [ 751.550502][T16891] dump_stack+0x21c/0x280 [ 751.555065][T16929] __se_sys_recvmmsg+0x247/0x410 [ 751.559371][T16891] kmsan_internal_chain_origin+0x6f/0x130 [ 751.564278][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 751.569967][T16891] ? __msan_get_context_state+0x9/0x20 [ 751.574794][T16929] do_syscall_64+0x9f/0x140 [ 751.580224][T16891] ? kmsan_get_metadata+0x116/0x180 [ 751.584700][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 751.589871][T16891] ? kmsan_internal_check_memory+0xb1/0x520 [ 751.595718][T16929] [ 751.601594][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 751.603887][T16929] Uninit was stored to memory at: [ 751.609497][T16891] ? kmsan_check_memory+0xd/0x10 [ 751.614499][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 751.619405][T16891] ? ____sys_recvmsg+0xa2d/0xd80 [ 751.625093][T16929] __msan_chain_origin+0x57/0xa0 [ 751.630008][T16891] ? __msan_get_context_state+0x9/0x20 [ 751.634937][T16929] do_recvmmsg+0x17ee/0x2300 [ 751.640381][T16891] ? kfree+0x29/0x11b0 [ 751.644948][T16929] __se_sys_recvmmsg+0x247/0x410 [ 751.648986][T16891] ? kmsan_get_metadata+0x116/0x180 [ 751.653898][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 751.659072][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 751.663892][T16929] do_syscall_64+0x9f/0x140 [ 751.669497][T16891] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 751.673983][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 751.680021][T16891] ? _copy_from_user+0x1cd/0x2d0 [ 751.685875][T16929] [ 751.690823][T16891] ? kmsan_get_metadata+0x116/0x180 [ 751.693119][T16929] Uninit was stored to memory at: [ 751.700404][T16891] __msan_chain_origin+0x57/0xa0 [ 751.705409][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 751.710319][T16891] do_recvmmsg+0x17ee/0x2300 [ 751.716009][T16929] __msan_chain_origin+0x57/0xa0 [ 751.720581][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 751.725487][T16929] do_recvmmsg+0x17ee/0x2300 [ 751.731093][T16891] ? __msan_poison_alloca+0xe9/0x110 [ 751.735656][T16929] __se_sys_recvmmsg+0x247/0x410 [ 751.740909][T16891] ? __se_sys_recvmmsg+0xd3/0x410 [ 751.745815][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 751.750828][T16891] __se_sys_recvmmsg+0x247/0x410 [ 751.755658][T16929] do_syscall_64+0x9f/0x140 [ 751.760570][T16891] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 751.765058][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 751.770837][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 751.776688][T16929] [ 751.781527][T16891] do_syscall_64+0x9f/0x140 [ 751.783823][T16929] Uninit was stored to memory at: [ 751.788312][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 751.793311][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 751.799165][T16891] RIP: 0033:0x45e159 [ 751.804858][T16929] __msan_chain_origin+0x57/0xa0 [ 751.808726][T16891] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 751.813637][T16929] do_recvmmsg+0x17ee/0x2300 [ 751.833219][T16891] RSP: 002b:00007f92e7354c68 EFLAGS: 00000246 [ 751.837778][T16929] __se_sys_recvmmsg+0x247/0x410 [ 751.837795][T16891] ORIG_RAX: 000000000000012b [ 751.843840][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 751.848750][T16891] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 751.853406][T16929] do_syscall_64+0x9f/0x140 [ 751.858224][T16891] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 751.866176][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 751.870645][T16891] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 751.878600][T16929] [ 751.884476][T16891] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 751.892421][T16929] Local variable ----msg_sys@do_recvmmsg created at: [ 751.894730][T16891] R13: 00000000016afb7f R14: 00007f92e73559c0 R15: 000000000119c034 [ 751.902686][T16929] do_recvmmsg+0xbc/0x2300 [ 751.909321][T16891] Uninit was stored to memory at: [ 751.917277][T16929] do_recvmmsg+0xbc/0x2300 [ 751.921671][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 751.936754][T16891] __msan_chain_origin+0x57/0xa0 [ 751.941763][T16891] do_recvmmsg+0x17ee/0x2300 [ 751.946389][T16891] __se_sys_recvmmsg+0x247/0x410 [ 751.951325][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 751.956181][T16891] do_syscall_64+0x9f/0x140 [ 751.960687][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 751.966578][T16891] [ 751.968903][T16891] Uninit was stored to memory at: [ 751.973934][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 751.979655][T16891] __msan_chain_origin+0x57/0xa0 [ 751.984595][T16891] do_recvmmsg+0x17ee/0x2300 [ 751.989189][T16891] __se_sys_recvmmsg+0x247/0x410 [ 751.994131][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 751.998986][T16891] do_syscall_64+0x9f/0x140 [ 752.003493][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 752.009380][T16891] [ 752.011702][T16891] Uninit was stored to memory at: [ 752.016735][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 752.022453][T16891] __msan_chain_origin+0x57/0xa0 [ 752.027393][T16891] do_recvmmsg+0x17ee/0x2300 [ 752.031992][T16891] __se_sys_recvmmsg+0x247/0x410 [ 752.036932][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 752.041788][T16891] do_syscall_64+0x9f/0x140 [ 752.046294][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 752.052171][T16891] [ 752.054491][T16891] Uninit was stored to memory at: [ 752.059521][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 752.065238][T16891] __msan_chain_origin+0x57/0xa0 [ 752.070182][T16891] do_recvmmsg+0x17ee/0x2300 [ 752.074787][T16891] __se_sys_recvmmsg+0x247/0x410 [ 752.079727][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 752.084583][T16891] do_syscall_64+0x9f/0x140 [ 752.089088][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 752.094965][T16891] [ 752.097287][T16891] Uninit was stored to memory at: [ 752.102318][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 752.108040][T16891] __msan_chain_origin+0x57/0xa0 [ 752.112977][T16891] do_recvmmsg+0x17ee/0x2300 [ 752.117567][T16891] __se_sys_recvmmsg+0x247/0x410 [ 752.122506][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 752.127359][T16891] do_syscall_64+0x9f/0x140 [ 752.131864][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 752.137749][T16891] [ 752.140073][T16891] Uninit was stored to memory at: [ 752.145193][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 752.150910][T16891] __msan_chain_origin+0x57/0xa0 [ 752.155852][T16891] do_recvmmsg+0x17ee/0x2300 [ 752.160442][T16891] __se_sys_recvmmsg+0x247/0x410 [ 752.165384][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 752.170245][T16891] do_syscall_64+0x9f/0x140 [ 752.174753][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 752.180632][T16891] [ 752.182952][T16891] Uninit was stored to memory at: [ 752.187984][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 752.193704][T16891] __msan_chain_origin+0x57/0xa0 [ 752.198643][T16891] do_recvmmsg+0x17ee/0x2300 [ 752.203244][T16891] __se_sys_recvmmsg+0x247/0x410 [ 752.208182][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 752.213037][T16891] do_syscall_64+0x9f/0x140 [ 752.217548][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 752.223425][T16891] [ 752.225747][T16891] Local variable ----msg_sys@do_recvmmsg created at: [ 752.232423][T16891] do_recvmmsg+0xbc/0x2300 [ 752.236843][T16891] do_recvmmsg+0xbc/0x2300 [ 752.542783][T16887] not chained 640000 origins [ 752.547419][T16887] CPU: 0 PID: 16887 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 752.556236][T16887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 752.566287][T16887] Call Trace: [ 752.569585][T16887] dump_stack+0x21c/0x280 [ 752.573928][T16887] kmsan_internal_chain_origin+0x6f/0x130 [ 752.579656][T16887] ? __msan_get_context_state+0x9/0x20 [ 752.585121][T16887] ? kmsan_get_metadata+0x116/0x180 [ 752.590326][T16887] ? kmsan_internal_check_memory+0xb1/0x520 [ 752.596226][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 752.601863][T16887] ? kmsan_check_memory+0xd/0x10 [ 752.608752][T16887] ? ____sys_recvmsg+0xa2d/0xd80 [ 752.613695][T16887] ? __msan_get_context_state+0x9/0x20 [ 752.619157][T16887] ? kfree+0x29/0x11b0 [ 752.623230][T16887] ? kmsan_get_metadata+0x116/0x180 [ 752.628439][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 752.634102][T16887] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 752.640713][T16887] ? _copy_from_user+0x1cd/0x2d0 [ 752.645657][T16887] ? kmsan_get_metadata+0x116/0x180 [ 752.650859][T16887] __msan_chain_origin+0x57/0xa0 [ 752.655802][T16887] do_recvmmsg+0x17ee/0x2300 [ 752.660418][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 752.667110][T16887] ? __msan_poison_alloca+0xe9/0x110 [ 752.672407][T16887] ? __se_sys_recvmmsg+0xd3/0x410 [ 752.679850][T16887] __se_sys_recvmmsg+0x247/0x410 [ 752.685062][T16887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 752.690878][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 752.695847][T16887] do_syscall_64+0x9f/0x140 [ 752.700367][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 752.706360][T16887] RIP: 0033:0x45e159 [ 752.710262][T16887] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 752.730110][T16887] RSP: 002b:00007f92e7375c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 752.738529][T16887] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 752.746780][T16887] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 752.754754][T16887] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 752.762728][T16887] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 752.772825][T16887] R13: 00000000016afb7f R14: 00007f92e73769c0 R15: 000000000119bf8c [ 752.781359][T16887] Uninit was stored to memory at: [ 752.786660][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 752.792381][T16887] __msan_chain_origin+0x57/0xa0 [ 752.797323][T16887] do_recvmmsg+0x17ee/0x2300 [ 752.801917][T16887] __se_sys_recvmmsg+0x247/0x410 [ 752.806856][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 752.811716][T16887] do_syscall_64+0x9f/0x140 [ 752.816224][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 752.822104][T16887] [ 752.824426][T16887] Uninit was stored to memory at: [ 752.830336][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 752.836058][T16887] __msan_chain_origin+0x57/0xa0 [ 752.840997][T16887] do_recvmmsg+0x17ee/0x2300 [ 752.845593][T16887] __se_sys_recvmmsg+0x247/0x410 [ 752.852888][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 752.857747][T16887] do_syscall_64+0x9f/0x140 [ 752.863545][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 752.871994][T16887] [ 752.874317][T16887] Uninit was stored to memory at: [ 752.879349][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 752.885075][T16887] __msan_chain_origin+0x57/0xa0 [ 752.890013][T16887] do_recvmmsg+0x17ee/0x2300 [ 752.894610][T16887] __se_sys_recvmmsg+0x247/0x410 [ 752.899555][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 752.906732][T16887] do_syscall_64+0x9f/0x140 [ 752.911791][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 752.917671][T16887] [ 752.919994][T16887] Uninit was stored to memory at: [ 752.925025][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 752.933512][T16887] __msan_chain_origin+0x57/0xa0 [ 752.938454][T16887] do_recvmmsg+0x17ee/0x2300 [ 752.943051][T16887] __se_sys_recvmmsg+0x247/0x410 [ 752.950457][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 752.955553][T16887] do_syscall_64+0x9f/0x140 [ 752.960061][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 752.965941][T16887] [ 752.968282][T16887] Uninit was stored to memory at: [ 752.975384][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 752.981107][T16887] __msan_chain_origin+0x57/0xa0 [ 752.986060][T16887] do_recvmmsg+0x17ee/0x2300 [ 752.990662][T16887] __se_sys_recvmmsg+0x247/0x410 [ 752.995605][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 753.000460][T16887] do_syscall_64+0x9f/0x140 [ 753.004966][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 753.010846][T16887] [ 753.015895][T16887] Uninit was stored to memory at: [ 753.020933][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 753.026658][T16887] __msan_chain_origin+0x57/0xa0 [ 753.031599][T16887] do_recvmmsg+0x17ee/0x2300 [ 753.036198][T16887] __se_sys_recvmmsg+0x247/0x410 [ 753.041141][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 753.046158][T16887] do_syscall_64+0x9f/0x140 [ 753.051182][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 753.057059][T16887] [ 753.059382][T16887] Uninit was stored to memory at: [ 753.066138][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 753.074505][T16887] __msan_chain_origin+0x57/0xa0 [ 753.079449][T16887] do_recvmmsg+0x17ee/0x2300 [ 753.084044][T16887] __se_sys_recvmmsg+0x247/0x410 [ 753.088986][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 753.093841][T16887] do_syscall_64+0x9f/0x140 [ 753.098347][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 753.105465][T16887] [ 753.107789][T16887] Local variable ----msg_sys@do_recvmmsg created at: [ 753.114467][T16887] do_recvmmsg+0xbc/0x2300 [ 753.118882][T16887] do_recvmmsg+0xbc/0x2300 [ 753.325604][T16931] not chained 650000 origins [ 753.330242][T16931] CPU: 0 PID: 16931 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 753.340691][T16931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 753.350747][T16931] Call Trace: [ 753.356374][T16931] dump_stack+0x21c/0x280 [ 753.360719][T16931] kmsan_internal_chain_origin+0x6f/0x130 [ 753.366438][T16931] ? __msan_get_context_state+0x9/0x20 [ 753.371899][T16931] ? kmsan_get_metadata+0x116/0x180 [ 753.377103][T16931] ? kmsan_internal_check_memory+0xb1/0x520 [ 753.383004][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 753.388646][T16931] ? kmsan_check_memory+0xd/0x10 [ 753.395118][T16931] ? ____sys_recvmsg+0xa2d/0xd80 [ 753.400232][T16931] ? __msan_get_context_state+0x9/0x20 [ 753.405694][T16931] ? kfree+0x29/0x11b0 [ 753.409765][T16931] ? kmsan_get_metadata+0x116/0x180 [ 753.414970][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 753.423134][T16931] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 753.429204][T16931] ? _copy_from_user+0x1cd/0x2d0 [ 753.434142][T16931] ? kmsan_get_metadata+0x116/0x180 [ 753.439343][T16931] __msan_chain_origin+0x57/0xa0 [ 753.444283][T16931] do_recvmmsg+0x17ee/0x2300 [ 753.448895][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 753.456591][T16931] ? __msan_poison_alloca+0xe9/0x110 [ 753.464791][T16931] ? __se_sys_recvmmsg+0xd3/0x410 [ 753.469823][T16931] __se_sys_recvmmsg+0x247/0x410 [ 753.474772][T16931] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 753.480584][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 753.485444][T16931] do_syscall_64+0x9f/0x140 [ 753.489955][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 753.498485][T16931] RIP: 0033:0x45e159 [ 753.502385][T16931] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 753.521993][T16931] RSP: 002b:00007f7ad6ba7c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 753.532458][T16931] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 753.541086][T16931] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 753.549065][T16931] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 753.559389][T16931] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 753.567366][T16931] R13: 00000000016afb7f R14: 00007f7ad6ba89c0 R15: 000000000119c034 [ 753.575338][T16931] Uninit was stored to memory at: [ 753.580378][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 753.586097][T16931] __msan_chain_origin+0x57/0xa0 [ 753.591039][T16931] do_recvmmsg+0x17ee/0x2300 [ 753.595633][T16931] __se_sys_recvmmsg+0x247/0x410 [ 753.601862][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 753.606879][T16931] do_syscall_64+0x9f/0x140 [ 753.611389][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 753.617269][T16931] [ 753.619593][T16931] Uninit was stored to memory at: [ 753.626833][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 753.632558][T16931] __msan_chain_origin+0x57/0xa0 [ 753.637527][T16931] do_recvmmsg+0x17ee/0x2300 [ 753.642137][T16931] __se_sys_recvmmsg+0x247/0x410 [ 753.649660][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 753.654611][T16931] do_syscall_64+0x9f/0x140 [ 753.659117][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 753.665832][T16931] [ 753.670250][T16931] Uninit was stored to memory at: [ 753.675286][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 753.681008][T16931] __msan_chain_origin+0x57/0xa0 [ 753.685956][T16931] do_recvmmsg+0x17ee/0x2300 [ 753.690551][T16931] __se_sys_recvmmsg+0x247/0x410 [ 753.695496][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 753.700350][T16931] do_syscall_64+0x9f/0x140 [ 753.706596][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 753.714735][T16931] [ 753.717059][T16931] Uninit was stored to memory at: [ 753.722092][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 753.727806][T16931] __msan_chain_origin+0x57/0xa0 [ 753.732733][T16931] do_recvmmsg+0x17ee/0x2300 [ 753.737311][T16931] __se_sys_recvmmsg+0x247/0x410 [ 753.742238][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 753.747083][T16931] do_syscall_64+0x9f/0x140 [ 753.751582][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 753.757541][T16931] [ 753.759857][T16931] Uninit was stored to memory at: [ 753.764886][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 753.770595][T16931] __msan_chain_origin+0x57/0xa0 [ 753.775525][T16931] do_recvmmsg+0x17ee/0x2300 [ 753.780109][T16931] __se_sys_recvmmsg+0x247/0x410 [ 753.785037][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 753.789890][T16931] do_syscall_64+0x9f/0x140 [ 753.794386][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 753.800254][T16931] [ 753.802567][T16931] Uninit was stored to memory at: [ 753.807585][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 753.813290][T16931] __msan_chain_origin+0x57/0xa0 [ 753.818214][T16931] do_recvmmsg+0x17ee/0x2300 [ 753.822798][T16931] __se_sys_recvmmsg+0x247/0x410 [ 753.827729][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 753.832573][T16931] do_syscall_64+0x9f/0x140 [ 753.837063][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 753.842947][T16931] [ 753.845258][T16931] Uninit was stored to memory at: [ 753.850279][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 753.855998][T16931] __msan_chain_origin+0x57/0xa0 [ 753.860923][T16931] do_recvmmsg+0x17ee/0x2300 [ 753.865522][T16931] __se_sys_recvmmsg+0x247/0x410 [ 753.870447][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 753.875300][T16931] do_syscall_64+0x9f/0x140 [ 753.879790][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 753.885659][T16931] [ 753.887972][T16931] Local variable ----msg_sys@do_recvmmsg created at: [ 753.894804][T16931] do_recvmmsg+0xbc/0x2300 [ 753.899209][T16931] do_recvmmsg+0xbc/0x2300 [ 754.191452][T16887] not chained 660000 origins [ 754.197089][T16887] CPU: 0 PID: 16887 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 754.205848][T16887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 754.215900][T16887] Call Trace: [ 754.219202][T16887] dump_stack+0x21c/0x280 [ 754.223547][T16887] kmsan_internal_chain_origin+0x6f/0x130 [ 754.229273][T16887] ? __msan_get_context_state+0x9/0x20 [ 754.236848][T16887] ? kmsan_get_metadata+0x116/0x180 [ 754.242056][T16887] ? kmsan_internal_check_memory+0xb1/0x520 [ 754.247960][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 754.255481][T16887] ? kmsan_check_memory+0xd/0x10 [ 754.260427][T16887] ? ____sys_recvmsg+0xa2d/0xd80 [ 754.265370][T16887] ? __msan_get_context_state+0x9/0x20 [ 754.270832][T16887] ? kfree+0x29/0x11b0 [ 754.276892][T16887] ? kmsan_get_metadata+0x116/0x180 [ 754.284682][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 754.290325][T16887] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 754.297626][T16887] ? _copy_from_user+0x1cd/0x2d0 [ 754.302575][T16887] ? kmsan_get_metadata+0x116/0x180 [ 754.307779][T16887] __msan_chain_origin+0x57/0xa0 [ 754.312724][T16887] do_recvmmsg+0x17ee/0x2300 [ 754.319855][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 754.325491][T16887] ? __msan_poison_alloca+0xe9/0x110 [ 754.330784][T16887] ? __se_sys_recvmmsg+0xd3/0x410 [ 754.335840][T16887] __se_sys_recvmmsg+0x247/0x410 [ 754.340791][T16887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 754.346606][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 754.354135][T16887] do_syscall_64+0x9f/0x140 [ 754.358646][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 754.364537][T16887] RIP: 0033:0x45e159 [ 754.368440][T16887] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 754.388657][T16887] RSP: 002b:00007f92e7375c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 754.397080][T16887] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 754.406442][T16887] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 754.414688][T16887] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 754.422661][T16887] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 754.430635][T16887] R13: 00000000016afb7f R14: 00007f92e73769c0 R15: 000000000119bf8c [ 754.438605][T16887] Uninit was stored to memory at: [ 754.445170][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 754.452993][T16887] __msan_chain_origin+0x57/0xa0 [ 754.457939][T16887] do_recvmmsg+0x17ee/0x2300 [ 754.462534][T16887] __se_sys_recvmmsg+0x247/0x410 [ 754.467479][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 754.472338][T16887] do_syscall_64+0x9f/0x140 [ 754.476843][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 754.482724][T16887] [ 754.485044][T16887] Uninit was stored to memory at: [ 754.491457][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 754.497177][T16887] __msan_chain_origin+0x57/0xa0 [ 754.502120][T16887] do_recvmmsg+0x17ee/0x2300 [ 754.506714][T16887] __se_sys_recvmmsg+0x247/0x410 [ 754.511663][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 754.516828][T16887] do_syscall_64+0x9f/0x140 [ 754.521338][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 754.527225][T16887] [ 754.529544][T16887] Uninit was stored to memory at: [ 754.534575][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 754.540294][T16887] __msan_chain_origin+0x57/0xa0 [ 754.545240][T16887] do_recvmmsg+0x17ee/0x2300 [ 754.549836][T16887] __se_sys_recvmmsg+0x247/0x410 [ 754.554781][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 754.559633][T16887] do_syscall_64+0x9f/0x140 [ 754.565229][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 754.572956][T16887] [ 754.575279][T16887] Uninit was stored to memory at: [ 754.580313][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 754.586044][T16887] __msan_chain_origin+0x57/0xa0 [ 754.590985][T16887] do_recvmmsg+0x17ee/0x2300 [ 754.595578][T16887] __se_sys_recvmmsg+0x247/0x410 [ 754.600516][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 754.606747][T16887] do_syscall_64+0x9f/0x140 [ 754.611255][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 754.617131][T16887] [ 754.619451][T16887] Uninit was stored to memory at: [ 754.624484][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 754.630206][T16887] __msan_chain_origin+0x57/0xa0 [ 754.635148][T16887] do_recvmmsg+0x17ee/0x2300 [ 754.639736][T16887] __se_sys_recvmmsg+0x247/0x410 [ 754.645894][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 754.650752][T16887] do_syscall_64+0x9f/0x140 [ 754.655257][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 754.661133][T16887] [ 754.663452][T16887] Uninit was stored to memory at: [ 754.668483][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 754.674202][T16887] __msan_chain_origin+0x57/0xa0 [ 754.679148][T16887] do_recvmmsg+0x17ee/0x2300 [ 754.685457][T16887] __se_sys_recvmmsg+0x247/0x410 [ 754.690407][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 754.695268][T16887] do_syscall_64+0x9f/0x140 [ 754.699772][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 754.705650][T16887] [ 754.707974][T16887] Uninit was stored to memory at: [ 754.713009][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 754.718730][T16887] __msan_chain_origin+0x57/0xa0 [ 754.723668][T16887] do_recvmmsg+0x17ee/0x2300 [ 754.728266][T16887] __se_sys_recvmmsg+0x247/0x410 [ 754.734956][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 754.739813][T16887] do_syscall_64+0x9f/0x140 [ 754.746852][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 754.752729][T16887] [ 754.755054][T16887] Local variable ----msg_sys@do_recvmmsg created at: [ 754.762255][T16887] do_recvmmsg+0xbc/0x2300 [ 754.766673][T16887] do_recvmmsg+0xbc/0x2300 [ 754.855792][T16891] not chained 670000 origins [ 754.860446][T16891] CPU: 0 PID: 16891 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 754.869200][T16891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 754.879434][T16891] Call Trace: [ 754.882737][T16891] dump_stack+0x21c/0x280 [ 754.887079][T16891] kmsan_internal_chain_origin+0x6f/0x130 [ 754.894667][T16891] ? __msan_get_context_state+0x9/0x20 [ 754.900137][T16891] ? kmsan_get_metadata+0x116/0x180 [ 754.905346][T16891] ? kmsan_internal_check_memory+0xb1/0x520 [ 754.911250][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 754.916888][T16891] ? kmsan_check_memory+0xd/0x10 [ 754.921834][T16891] ? ____sys_recvmsg+0xa2d/0xd80 [ 754.926773][T16891] ? __msan_get_context_state+0x9/0x20 [ 754.932238][T16891] ? kfree+0x29/0x11b0 [ 754.937991][T16891] ? kmsan_get_metadata+0x116/0x180 [ 754.943199][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 754.948836][T16891] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 754.954907][T16891] ? _copy_from_user+0x1cd/0x2d0 [ 754.959848][T16891] ? kmsan_get_metadata+0x116/0x180 [ 754.965052][T16891] __msan_chain_origin+0x57/0xa0 [ 754.971407][T16891] do_recvmmsg+0x17ee/0x2300 [ 754.976016][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 754.981651][T16891] ? __msan_poison_alloca+0xe9/0x110 [ 754.986940][T16891] ? __se_sys_recvmmsg+0xd3/0x410 [ 754.991964][T16891] __se_sys_recvmmsg+0x247/0x410 [ 754.999342][T16891] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 755.005160][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 755.010020][T16891] do_syscall_64+0x9f/0x140 [ 755.014528][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 755.020415][T16891] RIP: 0033:0x45e159 [ 755.025163][T16891] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 755.044775][T16891] RSP: 002b:00007f92e7354c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 755.055364][T16891] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 755.063341][T16891] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 755.071312][T16891] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 755.079283][T16891] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 755.087274][T16891] R13: 00000000016afb7f R14: 00007f92e73559c0 R15: 000000000119c034 [ 755.095255][T16891] Uninit was stored to memory at: [ 755.102438][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 755.108157][T16891] __msan_chain_origin+0x57/0xa0 [ 755.113098][T16891] do_recvmmsg+0x17ee/0x2300 [ 755.117689][T16891] __se_sys_recvmmsg+0x247/0x410 [ 755.122627][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 755.127929][T16891] do_syscall_64+0x9f/0x140 [ 755.132432][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 755.138309][T16891] [ 755.141338][T16891] Uninit was stored to memory at: [ 755.146369][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 755.152088][T16891] __msan_chain_origin+0x57/0xa0 [ 755.157028][T16891] do_recvmmsg+0x17ee/0x2300 [ 755.161618][T16891] __se_sys_recvmmsg+0x247/0x410 [ 755.166552][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 755.171403][T16891] do_syscall_64+0x9f/0x140 [ 755.175908][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 755.181787][T16891] [ 755.184108][T16891] Uninit was stored to memory at: [ 755.189145][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 755.194864][T16891] __msan_chain_origin+0x57/0xa0 [ 755.199801][T16891] do_recvmmsg+0x17ee/0x2300 [ 755.205668][T16891] __se_sys_recvmmsg+0x247/0x410 [ 755.210609][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 755.216341][T16891] do_syscall_64+0x9f/0x140 [ 755.220851][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 755.226730][T16891] [ 755.229051][T16891] Uninit was stored to memory at: [ 755.234082][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 755.239803][T16891] __msan_chain_origin+0x57/0xa0 [ 755.244746][T16891] do_recvmmsg+0x17ee/0x2300 [ 755.250239][T16891] __se_sys_recvmmsg+0x247/0x410 [ 755.255183][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 755.260037][T16891] do_syscall_64+0x9f/0x140 [ 755.264547][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 755.270756][T16891] [ 755.273075][T16891] Uninit was stored to memory at: [ 755.278106][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 755.285458][T16891] __msan_chain_origin+0x57/0xa0 [ 755.290403][T16891] do_recvmmsg+0x17ee/0x2300 [ 755.294998][T16891] __se_sys_recvmmsg+0x247/0x410 [ 755.299941][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 755.304795][T16891] do_syscall_64+0x9f/0x140 [ 755.309300][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 755.315180][T16891] [ 755.317499][T16891] Uninit was stored to memory at: [ 755.322527][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 755.329387][T16891] __msan_chain_origin+0x57/0xa0 [ 755.334327][T16891] do_recvmmsg+0x17ee/0x2300 [ 755.338916][T16891] __se_sys_recvmmsg+0x247/0x410 [ 755.343854][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 755.348712][T16891] do_syscall_64+0x9f/0x140 [ 755.354802][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 755.360680][T16891] [ 755.363001][T16891] Uninit was stored to memory at: [ 755.368032][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 755.373754][T16891] __msan_chain_origin+0x57/0xa0 [ 755.380214][T16891] do_recvmmsg+0x17ee/0x2300 [ 755.384810][T16891] __se_sys_recvmmsg+0x247/0x410 [ 755.389744][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 755.394598][T16891] do_syscall_64+0x9f/0x140 [ 755.400540][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 755.406417][T16891] [ 755.408742][T16891] Local variable ----msg_sys@do_recvmmsg created at: [ 755.415413][T16891] do_recvmmsg+0xbc/0x2300 [ 755.419053][T16929] not chained 680000 origins [ 755.419828][T16891] do_recvmmsg+0xbc/0x2300 [ 755.424399][T16929] CPU: 1 PID: 16929 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 755.437509][T16929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 755.447563][T16929] Call Trace: [ 755.450861][T16929] dump_stack+0x21c/0x280 [ 755.455210][T16929] kmsan_internal_chain_origin+0x6f/0x130 [ 755.460935][T16929] ? __msan_get_context_state+0x9/0x20 [ 755.466399][T16929] ? kmsan_get_metadata+0x116/0x180 [ 755.471604][T16929] ? kmsan_internal_check_memory+0xb1/0x520 [ 755.477513][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 755.483156][T16929] ? kmsan_check_memory+0xd/0x10 [ 755.488098][T16929] ? ____sys_recvmsg+0xa2d/0xd80 [ 755.493036][T16929] ? __msan_get_context_state+0x9/0x20 [ 755.498498][T16929] ? kfree+0x29/0x11b0 [ 755.502576][T16929] ? kmsan_get_metadata+0x116/0x180 [ 755.507785][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 755.513423][T16929] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 755.519491][T16929] ? _copy_from_user+0x1cd/0x2d0 [ 755.524460][T16929] ? kmsan_get_metadata+0x116/0x180 [ 755.529660][T16929] __msan_chain_origin+0x57/0xa0 [ 755.534600][T16929] do_recvmmsg+0x17ee/0x2300 [ 755.539203][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 755.544835][T16929] ? __msan_poison_alloca+0xe9/0x110 [ 755.550124][T16929] ? __se_sys_recvmmsg+0xd3/0x410 [ 755.555148][T16929] __se_sys_recvmmsg+0x247/0x410 [ 755.560089][T16929] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 755.565903][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 755.571109][T16929] do_syscall_64+0x9f/0x140 [ 755.575613][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 755.581498][T16929] RIP: 0033:0x45e159 [ 755.585394][T16929] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 755.605000][T16929] RSP: 002b:00007f7ad6bc8c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 755.613506][T16929] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 755.621512][T16929] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 755.629490][T16929] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 755.637458][T16929] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 755.645428][T16929] R13: 00000000016afb7f R14: 00007f7ad6bc99c0 R15: 000000000119bf8c [ 755.653397][T16929] Uninit was stored to memory at: [ 755.658431][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 755.664150][T16929] __msan_chain_origin+0x57/0xa0 [ 755.669102][T16929] do_recvmmsg+0x17ee/0x2300 [ 755.673235][T16931] not chained 690000 origins [ 755.673694][T16929] __se_sys_recvmmsg+0x247/0x410 [ 755.678274][T16931] CPU: 0 PID: 16931 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 755.683175][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 755.691922][T16931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 755.696766][T16929] do_syscall_64+0x9f/0x140 [ 755.706784][T16931] Call Trace: [ 755.711273][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 755.714533][T16931] dump_stack+0x21c/0x280 [ 755.720383][T16929] [ 755.724700][T16931] kmsan_internal_chain_origin+0x6f/0x130 [ 755.726991][T16929] Uninit was stored to memory at: [ 755.732780][T16931] ? __msan_get_context_state+0x9/0x20 [ 755.737781][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 755.743211][T16931] ? kmsan_get_metadata+0x116/0x180 [ 755.748900][T16929] __msan_chain_origin+0x57/0xa0 [ 755.754076][T16931] ? kmsan_internal_check_memory+0xb1/0x520 [ 755.758995][T16929] do_recvmmsg+0x17ee/0x2300 [ 755.764949][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 755.769509][T16929] __se_sys_recvmmsg+0x247/0x410 [ 755.775112][T16931] ? kmsan_check_memory+0xd/0x10 [ 755.780024][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 755.784935][T16931] ? ____sys_recvmsg+0xa2d/0xd80 [ 755.789769][T16929] do_syscall_64+0x9f/0x140 [ 755.794683][T16931] ? __msan_get_context_state+0x9/0x20 [ 755.799161][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 755.806763][T16931] ? kfree+0x29/0x11b0 [ 755.812626][T16929] [ 755.816682][T16931] ? kmsan_get_metadata+0x116/0x180 [ 755.818977][T16929] Uninit was stored to memory at: [ 755.824163][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 755.829161][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 755.834767][T16931] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 755.840449][T16929] __msan_chain_origin+0x57/0xa0 [ 755.846489][T16931] ? _copy_from_user+0x1cd/0x2d0 [ 755.851399][T16929] do_recvmmsg+0x17ee/0x2300 [ 755.856305][T16931] ? kmsan_get_metadata+0x116/0x180 [ 755.860867][T16929] __se_sys_recvmmsg+0x247/0x410 [ 755.866046][T16931] __msan_chain_origin+0x57/0xa0 [ 755.870953][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 755.875861][T16931] do_recvmmsg+0x17ee/0x2300 [ 755.880688][T16929] do_syscall_64+0x9f/0x140 [ 755.885258][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 755.889728][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 755.895329][T16931] ? __msan_poison_alloca+0xe9/0x110 [ 755.901181][T16929] [ 755.906447][T16931] ? __se_sys_recvmmsg+0xd3/0x410 [ 755.908739][T16929] Uninit was stored to memory at: [ 755.913746][T16931] __se_sys_recvmmsg+0x247/0x410 [ 755.918752][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 755.923658][T16931] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 755.929350][T16929] __msan_chain_origin+0x57/0xa0 [ 755.935131][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 755.940038][T16929] do_recvmmsg+0x17ee/0x2300 [ 755.944862][T16931] do_syscall_64+0x9f/0x140 [ 755.949421][T16929] __se_sys_recvmmsg+0x247/0x410 [ 755.953897][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 755.958806][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 755.964665][T16931] RIP: 0033:0x45e159 [ 755.969514][T16929] do_syscall_64+0x9f/0x140 [ 755.973397][T16931] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 755.977872][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 755.997445][T16931] RSP: 002b:00007f7ad6ba7c68 EFLAGS: 00000246 [ 756.003291][T16929] [ 756.003308][T16931] ORIG_RAX: 000000000000012b [ 756.009339][T16929] Uninit was stored to memory at: [ 756.011650][T16931] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 756.016324][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 756.021313][T16931] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 756.029264][T16929] __msan_chain_origin+0x57/0xa0 [ 756.034951][T16931] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 756.042902][T16929] do_recvmmsg+0x17ee/0x2300 [ 756.047807][T16931] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 756.055757][T16929] __se_sys_recvmmsg+0x247/0x410 [ 756.060315][T16931] R13: 00000000016afb7f R14: 00007f7ad6ba89c0 R15: 000000000119c034 [ 756.068265][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 756.073177][T16931] Uninit was stored to memory at: [ 756.081122][T16929] do_syscall_64+0x9f/0x140 [ 756.086470][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 756.091463][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 756.095934][T16931] __msan_chain_origin+0x57/0xa0 [ 756.101615][T16929] [ 756.107489][T16931] do_recvmmsg+0x17ee/0x2300 [ 756.112407][T16929] Uninit was stored to memory at: [ 756.114721][T16931] __se_sys_recvmmsg+0x247/0x410 [ 756.119285][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 756.124278][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 756.129188][T16929] __msan_chain_origin+0x57/0xa0 [ 756.134883][T16931] do_syscall_64+0x9f/0x140 [ 756.139705][T16929] do_recvmmsg+0x17ee/0x2300 [ 756.144624][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 756.149098][T16929] __se_sys_recvmmsg+0x247/0x410 [ 756.153647][T16931] [ 756.159525][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 756.164423][T16931] Uninit was stored to memory at: [ 756.166757][T16929] do_syscall_64+0x9f/0x140 [ 756.171584][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 756.176576][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 756.181048][T16931] __msan_chain_origin+0x57/0xa0 [ 756.186814][T16929] [ 756.192688][T16931] do_recvmmsg+0x17ee/0x2300 [ 756.197586][T16929] Uninit was stored to memory at: [ 756.199899][T16931] __se_sys_recvmmsg+0x247/0x410 [ 756.204464][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 756.209458][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 756.214362][T16929] __msan_chain_origin+0x57/0xa0 [ 756.220053][T16931] do_syscall_64+0x9f/0x140 [ 756.224873][T16929] do_recvmmsg+0x17ee/0x2300 [ 756.229782][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 756.234257][T16929] __se_sys_recvmmsg+0x247/0x410 [ 756.238803][T16931] [ 756.244681][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 756.249587][T16931] Uninit was stored to memory at: [ 756.251906][T16929] do_syscall_64+0x9f/0x140 [ 756.256731][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 756.261724][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 756.266198][T16931] __msan_chain_origin+0x57/0xa0 [ 756.271877][T16929] [ 756.277751][T16931] do_recvmmsg+0x17ee/0x2300 [ 756.282648][T16929] Local variable ----msg_sys@do_recvmmsg created at: [ 756.284972][T16931] __se_sys_recvmmsg+0x247/0x410 [ 756.289532][T16929] do_recvmmsg+0xbc/0x2300 [ 756.296178][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 756.301087][T16929] do_recvmmsg+0xbc/0x2300 [ 756.305481][T16931] do_syscall_64+0x9f/0x140 [ 756.319181][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 756.325058][T16931] [ 756.327376][T16931] Uninit was stored to memory at: [ 756.332411][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 756.338130][T16931] __msan_chain_origin+0x57/0xa0 [ 756.343073][T16931] do_recvmmsg+0x17ee/0x2300 [ 756.347664][T16931] __se_sys_recvmmsg+0x247/0x410 [ 756.352604][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 756.357458][T16931] do_syscall_64+0x9f/0x140 [ 756.361962][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 756.369140][T16931] [ 756.371787][T16931] Uninit was stored to memory at: [ 756.376819][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 756.382541][T16931] __msan_chain_origin+0x57/0xa0 [ 756.387481][T16931] do_recvmmsg+0x17ee/0x2300 [ 756.392078][T16931] __se_sys_recvmmsg+0x247/0x410 [ 756.397110][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 756.401964][T16931] do_syscall_64+0x9f/0x140 [ 756.407033][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 756.412914][T16931] [ 756.416511][T16931] Uninit was stored to memory at: [ 756.421542][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 756.427260][T16931] __msan_chain_origin+0x57/0xa0 [ 756.433615][T16931] do_recvmmsg+0x17ee/0x2300 [ 756.439892][T16931] __se_sys_recvmmsg+0x247/0x410 [ 756.444832][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 756.449685][T16931] do_syscall_64+0x9f/0x140 [ 756.454196][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 756.460074][T16931] [ 756.462393][T16931] Uninit was stored to memory at: [ 756.468707][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 756.474429][T16931] __msan_chain_origin+0x57/0xa0 [ 756.479371][T16931] do_recvmmsg+0x17ee/0x2300 [ 756.483964][T16931] __se_sys_recvmmsg+0x247/0x410 [ 756.488904][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 756.495174][T16931] do_syscall_64+0x9f/0x140 [ 756.499680][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 756.505566][T16931] [ 756.507889][T16931] Local variable ----msg_sys@do_recvmmsg created at: [ 756.514850][T16931] do_recvmmsg+0xbc/0x2300 [ 756.519267][T16931] do_recvmmsg+0xbc/0x2300 [ 756.760424][T16891] not chained 700000 origins [ 756.765046][T16891] CPU: 0 PID: 16891 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 756.773801][T16891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 756.783925][T16891] Call Trace: [ 756.787211][T16891] dump_stack+0x21c/0x280 [ 756.791549][T16891] kmsan_internal_chain_origin+0x6f/0x130 [ 756.797261][T16891] ? __msan_get_context_state+0x9/0x20 [ 756.802715][T16891] ? kmsan_get_metadata+0x116/0x180 [ 756.807907][T16891] ? kmsan_internal_check_memory+0xb1/0x520 [ 756.813794][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 756.819415][T16891] ? kmsan_check_memory+0xd/0x10 [ 756.824341][T16891] ? ____sys_recvmsg+0xa2d/0xd80 [ 756.829266][T16891] ? __msan_get_context_state+0x9/0x20 [ 756.834711][T16891] ? kfree+0x29/0x11b0 [ 756.838766][T16891] ? kmsan_get_metadata+0x116/0x180 [ 756.843957][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 756.849580][T16891] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 756.855634][T16891] ? _copy_from_user+0x1cd/0x2d0 [ 756.860561][T16891] ? kmsan_get_metadata+0x116/0x180 [ 756.865745][T16891] __msan_chain_origin+0x57/0xa0 [ 756.870675][T16891] do_recvmmsg+0x17ee/0x2300 [ 756.875272][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 756.880889][T16891] ? __msan_poison_alloca+0xe9/0x110 [ 756.886163][T16891] ? __se_sys_recvmmsg+0xd3/0x410 [ 756.891175][T16891] __se_sys_recvmmsg+0x247/0x410 [ 756.896099][T16891] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 756.901897][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 756.906738][T16891] do_syscall_64+0x9f/0x140 [ 756.911230][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 756.917106][T16891] RIP: 0033:0x45e159 [ 756.920989][T16891] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 756.940584][T16891] RSP: 002b:00007f92e7354c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 756.948987][T16891] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 756.956950][T16891] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 756.964911][T16891] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 756.972868][T16891] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 756.980829][T16891] R13: 00000000016afb7f R14: 00007f92e73559c0 R15: 000000000119c034 [ 756.988786][T16891] Uninit was stored to memory at: [ 756.993807][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 756.999509][T16891] __msan_chain_origin+0x57/0xa0 [ 757.004450][T16891] do_recvmmsg+0x17ee/0x2300 [ 757.009137][T16891] __se_sys_recvmmsg+0x247/0x410 [ 757.014061][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 757.018900][T16891] do_syscall_64+0x9f/0x140 [ 757.023391][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 757.029258][T16891] [ 757.031579][T16891] Uninit was stored to memory at: [ 757.036592][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 757.042295][T16891] __msan_chain_origin+0x57/0xa0 [ 757.047233][T16891] do_recvmmsg+0x17ee/0x2300 [ 757.051811][T16891] __se_sys_recvmmsg+0x247/0x410 [ 757.056739][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 757.061576][T16891] do_syscall_64+0x9f/0x140 [ 757.066066][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 757.071937][T16891] [ 757.074249][T16891] Uninit was stored to memory at: [ 757.079263][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 757.084968][T16891] __msan_chain_origin+0x57/0xa0 [ 757.089892][T16891] do_recvmmsg+0x17ee/0x2300 [ 757.094468][T16891] __se_sys_recvmmsg+0x247/0x410 [ 757.099392][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 757.104231][T16891] do_syscall_64+0x9f/0x140 [ 757.108723][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 757.114589][T16891] [ 757.116897][T16891] Uninit was stored to memory at: [ 757.121910][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 757.127627][T16891] __msan_chain_origin+0x57/0xa0 [ 757.132554][T16891] do_recvmmsg+0x17ee/0x2300 [ 757.137132][T16891] __se_sys_recvmmsg+0x247/0x410 [ 757.142058][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 757.146897][T16891] do_syscall_64+0x9f/0x140 [ 757.151387][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 757.157256][T16891] [ 757.159565][T16891] Uninit was stored to memory at: [ 757.164581][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 757.170284][T16891] __msan_chain_origin+0x57/0xa0 [ 757.175208][T16891] do_recvmmsg+0x17ee/0x2300 [ 757.179786][T16891] __se_sys_recvmmsg+0x247/0x410 [ 757.184713][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 757.189554][T16891] do_syscall_64+0x9f/0x140 [ 757.194044][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 757.199912][T16891] [ 757.202230][T16891] Uninit was stored to memory at: [ 757.207246][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 757.212948][T16891] __msan_chain_origin+0x57/0xa0 [ 757.217869][T16891] do_recvmmsg+0x17ee/0x2300 [ 757.222446][T16891] __se_sys_recvmmsg+0x247/0x410 [ 757.227368][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 757.232205][T16891] do_syscall_64+0x9f/0x140 [ 757.236694][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 757.242563][T16891] [ 757.244871][T16891] Uninit was stored to memory at: [ 757.249885][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 757.255587][T16891] __msan_chain_origin+0x57/0xa0 [ 757.260510][T16891] do_recvmmsg+0x17ee/0x2300 [ 757.265141][T16891] __se_sys_recvmmsg+0x247/0x410 [ 757.270084][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 757.274934][T16891] do_syscall_64+0x9f/0x140 [ 757.279429][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 757.285300][T16891] [ 757.287616][T16891] Local variable ----msg_sys@do_recvmmsg created at: [ 757.294278][T16891] do_recvmmsg+0xbc/0x2300 [ 757.298682][T16891] do_recvmmsg+0xbc/0x2300 [ 757.676497][T16929] not chained 710000 origins [ 757.681452][T16929] CPU: 1 PID: 16929 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 757.690207][T16929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 757.700261][T16929] Call Trace: [ 757.703558][T16929] dump_stack+0x21c/0x280 [ 757.707894][T16929] kmsan_internal_chain_origin+0x6f/0x130 [ 757.714053][T16929] ? __msan_get_context_state+0x9/0x20 [ 757.719513][T16929] ? kmsan_get_metadata+0x116/0x180 [ 757.725484][T16929] ? kmsan_internal_check_memory+0xb1/0x520 [ 757.731489][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 757.737131][T16929] ? kmsan_check_memory+0xd/0x10 [ 757.742073][T16929] ? ____sys_recvmsg+0xa2d/0xd80 [ 757.747009][T16929] ? __msan_get_context_state+0x9/0x20 [ 757.752470][T16929] ? kfree+0x29/0x11b0 [ 757.757772][T16929] ? kmsan_get_metadata+0x116/0x180 [ 757.763620][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 757.769527][T16929] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 757.775596][T16929] ? _copy_from_user+0x1cd/0x2d0 [ 757.780532][T16929] ? kmsan_get_metadata+0x116/0x180 [ 757.785756][T16929] __msan_chain_origin+0x57/0xa0 [ 757.790699][T16929] do_recvmmsg+0x17ee/0x2300 [ 757.795305][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 757.800935][T16929] ? __msan_poison_alloca+0xe9/0x110 [ 757.806219][T16929] ? __se_sys_recvmmsg+0xd3/0x410 [ 757.811242][T16929] __se_sys_recvmmsg+0x247/0x410 [ 757.816183][T16929] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 757.821999][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 757.827200][T16929] do_syscall_64+0x9f/0x140 [ 757.832979][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 757.838867][T16929] RIP: 0033:0x45e159 [ 757.842768][T16929] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 757.863228][T16929] RSP: 002b:00007f7ad6bc8c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 757.872668][T16929] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 757.880642][T16929] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 757.888612][T16929] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 757.897051][T16929] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 757.905027][T16929] R13: 00000000016afb7f R14: 00007f7ad6bc99c0 R15: 000000000119bf8c [ 757.912999][T16929] Uninit was stored to memory at: [ 757.918392][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 757.924118][T16929] __msan_chain_origin+0x57/0xa0 [ 757.929060][T16929] do_recvmmsg+0x17ee/0x2300 [ 757.933652][T16929] __se_sys_recvmmsg+0x247/0x410 [ 757.938594][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 757.943443][T16929] do_syscall_64+0x9f/0x140 [ 757.947944][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 757.953905][T16929] [ 757.956912][T16929] Uninit was stored to memory at: [ 757.962653][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 757.968369][T16929] __msan_chain_origin+0x57/0xa0 [ 757.973305][T16929] do_recvmmsg+0x17ee/0x2300 [ 757.978679][T16929] __se_sys_recvmmsg+0x247/0x410 [ 757.983618][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 757.990078][T16929] do_syscall_64+0x9f/0x140 [ 757.994586][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 758.000467][T16929] [ 758.002783][T16929] Uninit was stored to memory at: [ 758.007809][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 758.013634][T16929] __msan_chain_origin+0x57/0xa0 [ 758.020180][T16929] do_recvmmsg+0x17ee/0x2300 [ 758.024770][T16929] __se_sys_recvmmsg+0x247/0x410 [ 758.030328][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 758.035185][T16929] do_syscall_64+0x9f/0x140 [ 758.039687][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 758.045560][T16929] [ 758.047879][T16929] Uninit was stored to memory at: [ 758.052904][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 758.060193][T16929] __msan_chain_origin+0x57/0xa0 [ 758.065131][T16929] do_recvmmsg+0x17ee/0x2300 [ 758.069721][T16929] __se_sys_recvmmsg+0x247/0x410 [ 758.071508][T16931] not chained 720000 origins [ 758.074656][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 758.079228][T16931] CPU: 0 PID: 16931 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 758.084054][T16929] do_syscall_64+0x9f/0x140 [ 758.092769][T16931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 758.097250][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 758.107269][T16931] Call Trace: [ 758.113130][T16929] [ 758.116404][T16931] dump_stack+0x21c/0x280 [ 758.118698][T16929] Uninit was stored to memory at: [ 758.123013][T16931] kmsan_internal_chain_origin+0x6f/0x130 [ 758.128005][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 758.133693][T16931] ? __msan_get_context_state+0x9/0x20 [ 758.139383][T16929] __msan_chain_origin+0x57/0xa0 [ 758.144812][T16931] ? kmsan_get_metadata+0x116/0x180 [ 758.149720][T16929] do_recvmmsg+0x17ee/0x2300 [ 758.154895][T16931] ? kmsan_internal_check_memory+0xb1/0x520 [ 758.159472][T16929] __se_sys_recvmmsg+0x247/0x410 [ 758.165338][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 758.170244][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 758.175845][T16931] ? kmsan_check_memory+0xd/0x10 [ 758.180669][T16929] do_syscall_64+0x9f/0x140 [ 758.185576][T16931] ? ____sys_recvmsg+0xa2d/0xd80 [ 758.190054][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 758.194961][T16931] ? __msan_get_context_state+0x9/0x20 [ 758.200812][T16929] [ 758.206252][T16931] ? kfree+0x29/0x11b0 [ 758.208553][T16929] Uninit was stored to memory at: [ 758.212602][T16931] ? kmsan_get_metadata+0x116/0x180 [ 758.217601][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 758.222771][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 758.228457][T16929] __msan_chain_origin+0x57/0xa0 [ 758.234082][T16931] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 758.238988][T16929] do_recvmmsg+0x17ee/0x2300 [ 758.245025][T16931] ? _copy_from_user+0x1cd/0x2d0 [ 758.249603][T16929] __se_sys_recvmmsg+0x247/0x410 [ 758.254505][T16931] ? kmsan_get_metadata+0x116/0x180 [ 758.259415][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 758.264585][T16931] __msan_chain_origin+0x57/0xa0 [ 758.269420][T16929] do_syscall_64+0x9f/0x140 [ 758.274330][T16931] do_recvmmsg+0x17ee/0x2300 [ 758.278817][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 758.283385][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 758.289230][T16929] [ 758.294854][T16931] ? __msan_poison_alloca+0xe9/0x110 [ 758.297162][T16929] Uninit was stored to memory at: [ 758.302428][T16931] ? __se_sys_recvmmsg+0xd3/0x410 [ 758.307426][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 758.312408][T16931] __se_sys_recvmmsg+0x247/0x410 [ 758.312433][T16931] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 758.318123][T16929] __msan_chain_origin+0x57/0xa0 [ 758.323034][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 758.328812][T16929] do_recvmmsg+0x17ee/0x2300 [ 758.333722][T16931] do_syscall_64+0x9f/0x140 [ 758.338541][T16929] __se_sys_recvmmsg+0x247/0x410 [ 758.343106][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 758.347584][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 758.352487][T16931] RIP: 0033:0x45e159 [ 758.358369][T16929] do_syscall_64+0x9f/0x140 [ 758.367882][T16931] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 758.371763][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 758.376219][T16931] RSP: 002b:00007f7ad6ba7c68 EFLAGS: 00000246 [ 758.395790][T16929] [ 758.401657][T16931] ORIG_RAX: 000000000000012b [ 758.407692][T16929] Local variable ----msg_sys@do_recvmmsg created at: [ 758.410000][T16931] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 758.414651][T16929] do_recvmmsg+0xbc/0x2300 [ 758.421291][T16931] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 758.429239][T16929] do_recvmmsg+0xbc/0x2300 [ 758.433622][T16931] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 758.453913][T16931] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 758.461887][T16931] R13: 00000000016afb7f R14: 00007f7ad6ba89c0 R15: 000000000119c034 [ 758.469858][T16931] Uninit was stored to memory at: [ 758.474894][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 758.480614][T16931] __msan_chain_origin+0x57/0xa0 [ 758.485562][T16931] do_recvmmsg+0x17ee/0x2300 [ 758.490166][T16931] __se_sys_recvmmsg+0x247/0x410 [ 758.495195][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 758.500051][T16931] do_syscall_64+0x9f/0x140 [ 758.504560][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 758.510437][T16931] [ 758.512756][T16931] Uninit was stored to memory at: [ 758.517800][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 758.523521][T16931] __msan_chain_origin+0x57/0xa0 [ 758.528463][T16931] do_recvmmsg+0x17ee/0x2300 [ 758.533674][T16931] __se_sys_recvmmsg+0x247/0x410 [ 758.538615][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 758.543470][T16931] do_syscall_64+0x9f/0x140 [ 758.547977][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 758.553856][T16931] [ 758.556197][T16931] Uninit was stored to memory at: [ 758.561229][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 758.566949][T16931] __msan_chain_origin+0x57/0xa0 [ 758.571889][T16931] do_recvmmsg+0x17ee/0x2300 [ 758.576481][T16931] __se_sys_recvmmsg+0x247/0x410 [ 758.581534][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 758.586390][T16931] do_syscall_64+0x9f/0x140 [ 758.590894][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 758.596773][T16931] [ 758.599099][T16931] Uninit was stored to memory at: [ 758.604136][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 758.609861][T16931] __msan_chain_origin+0x57/0xa0 [ 758.614800][T16931] do_recvmmsg+0x17ee/0x2300 [ 758.619391][T16931] __se_sys_recvmmsg+0x247/0x410 [ 758.624331][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 758.629191][T16931] do_syscall_64+0x9f/0x140 [ 758.633697][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 758.639578][T16931] [ 758.641901][T16931] Uninit was stored to memory at: [ 758.646934][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 758.652661][T16931] __msan_chain_origin+0x57/0xa0 [ 758.657620][T16931] do_recvmmsg+0x17ee/0x2300 [ 758.662213][T16931] __se_sys_recvmmsg+0x247/0x410 [ 758.667153][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 758.672016][T16931] do_syscall_64+0x9f/0x140 [ 758.676525][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 758.682532][T16931] [ 758.684855][T16931] Uninit was stored to memory at: [ 758.689889][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 758.695610][T16931] __msan_chain_origin+0x57/0xa0 [ 758.700548][T16931] do_recvmmsg+0x17ee/0x2300 [ 758.705142][T16931] __se_sys_recvmmsg+0x247/0x410 [ 758.710079][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 758.714934][T16931] do_syscall_64+0x9f/0x140 [ 758.719439][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 758.725317][T16931] [ 758.727638][T16931] Uninit was stored to memory at: [ 758.732669][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 758.738383][T16931] __msan_chain_origin+0x57/0xa0 [ 758.743319][T16931] do_recvmmsg+0x17ee/0x2300 [ 758.747911][T16931] __se_sys_recvmmsg+0x247/0x410 [ 758.752851][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 758.757703][T16931] do_syscall_64+0x9f/0x140 [ 758.762235][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 758.768113][T16931] [ 758.770437][T16931] Local variable ----msg_sys@do_recvmmsg created at: [ 758.777224][T16931] do_recvmmsg+0xbc/0x2300 [ 758.781640][T16931] do_recvmmsg+0xbc/0x2300 [ 759.390441][T16891] not chained 730000 origins [ 759.395178][T16891] CPU: 1 PID: 16891 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 759.403921][T16891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 759.413962][T16891] Call Trace: [ 759.417339][T16891] dump_stack+0x21c/0x280 [ 759.421662][T16891] kmsan_internal_chain_origin+0x6f/0x130 [ 759.427369][T16891] ? __msan_get_context_state+0x9/0x20 [ 759.432813][T16891] ? kmsan_get_metadata+0x116/0x180 [ 759.438002][T16891] ? kmsan_internal_check_memory+0xb1/0x520 [ 759.443887][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 759.449507][T16891] ? kmsan_check_memory+0xd/0x10 [ 759.454439][T16891] ? ____sys_recvmsg+0xa2d/0xd80 [ 759.459371][T16891] ? __msan_get_context_state+0x9/0x20 [ 759.464817][T16891] ? kfree+0x29/0x11b0 [ 759.468888][T16891] ? kmsan_get_metadata+0x116/0x180 [ 759.474090][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 759.479721][T16891] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 759.485786][T16891] ? _copy_from_user+0x1cd/0x2d0 [ 759.490721][T16891] ? kmsan_get_metadata+0x116/0x180 [ 759.495915][T16891] __msan_chain_origin+0x57/0xa0 [ 759.500846][T16891] do_recvmmsg+0x17ee/0x2300 [ 759.505441][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 759.511064][T16891] ? __msan_poison_alloca+0xe9/0x110 [ 759.516342][T16891] ? __se_sys_recvmmsg+0xd3/0x410 [ 759.521356][T16891] __se_sys_recvmmsg+0x247/0x410 [ 759.526283][T16891] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 759.532084][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 759.536926][T16891] do_syscall_64+0x9f/0x140 [ 759.541418][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 759.547304][T16891] RIP: 0033:0x45e159 [ 759.551188][T16891] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 759.570783][T16891] RSP: 002b:00007f92e7354c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 759.579188][T16891] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 759.587146][T16891] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 759.595106][T16891] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 759.603064][T16891] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 759.611022][T16891] R13: 00000000016afb7f R14: 00007f92e73559c0 R15: 000000000119c034 [ 759.619092][T16891] Uninit was stored to memory at: [ 759.624125][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 759.629833][T16891] __msan_chain_origin+0x57/0xa0 [ 759.634772][T16891] do_recvmmsg+0x17ee/0x2300 [ 759.639353][T16891] __se_sys_recvmmsg+0x247/0x410 [ 759.644279][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 759.649137][T16891] do_syscall_64+0x9f/0x140 [ 759.653640][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 759.659513][T16891] [ 759.661831][T16891] Uninit was stored to memory at: [ 759.666869][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 759.672582][T16891] __msan_chain_origin+0x57/0xa0 [ 759.677510][T16891] do_recvmmsg+0x17ee/0x2300 [ 759.682114][T16891] __se_sys_recvmmsg+0x247/0x410 [ 759.687042][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 759.691884][T16891] do_syscall_64+0x9f/0x140 [ 759.696377][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 759.702250][T16891] [ 759.704563][T16891] Uninit was stored to memory at: [ 759.709593][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 759.715304][T16891] __msan_chain_origin+0x57/0xa0 [ 759.720230][T16891] do_recvmmsg+0x17ee/0x2300 [ 759.724814][T16891] __se_sys_recvmmsg+0x247/0x410 [ 759.729741][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 759.734584][T16891] do_syscall_64+0x9f/0x140 [ 759.739079][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 759.744950][T16891] [ 759.747261][T16891] Uninit was stored to memory at: [ 759.752280][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 759.757983][T16891] __msan_chain_origin+0x57/0xa0 [ 759.762912][T16891] do_recvmmsg+0x17ee/0x2300 [ 759.767507][T16891] __se_sys_recvmmsg+0x247/0x410 [ 759.772445][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 759.777287][T16891] do_syscall_64+0x9f/0x140 [ 759.781778][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 759.787645][T16891] [ 759.789956][T16891] Uninit was stored to memory at: [ 759.794973][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 759.800674][T16891] __msan_chain_origin+0x57/0xa0 [ 759.805599][T16891] do_recvmmsg+0x17ee/0x2300 [ 759.810179][T16891] __se_sys_recvmmsg+0x247/0x410 [ 759.815107][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 759.819946][T16891] do_syscall_64+0x9f/0x140 [ 759.824440][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 759.830307][T16891] [ 759.832615][T16891] Uninit was stored to memory at: [ 759.837633][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 759.843335][T16891] __msan_chain_origin+0x57/0xa0 [ 759.848256][T16891] do_recvmmsg+0x17ee/0x2300 [ 759.852837][T16891] __se_sys_recvmmsg+0x247/0x410 [ 759.857761][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 759.862598][T16891] do_syscall_64+0x9f/0x140 [ 759.867088][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 759.872962][T16891] [ 759.875269][T16891] Uninit was stored to memory at: [ 759.880281][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 759.885986][T16891] __msan_chain_origin+0x57/0xa0 [ 759.890909][T16891] do_recvmmsg+0x17ee/0x2300 [ 759.895487][T16891] __se_sys_recvmmsg+0x247/0x410 [ 759.900410][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 759.905247][T16891] do_syscall_64+0x9f/0x140 [ 759.909736][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 759.915602][T16891] [ 759.917913][T16891] Local variable ----msg_sys@do_recvmmsg created at: [ 759.924572][T16891] do_recvmmsg+0xbc/0x2300 [ 759.928975][T16891] do_recvmmsg+0xbc/0x2300 [ 760.362586][T16929] not chained 740000 origins [ 760.367226][T16929] CPU: 0 PID: 16929 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 760.375984][T16929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 760.386065][T16929] Call Trace: [ 760.389365][T16929] dump_stack+0x21c/0x280 [ 760.393707][T16929] kmsan_internal_chain_origin+0x6f/0x130 [ 760.399432][T16929] ? __msan_get_context_state+0x9/0x20 [ 760.405589][T16929] ? kmsan_get_metadata+0x116/0x180 [ 760.410800][T16929] ? kmsan_internal_check_memory+0xb1/0x520 [ 760.417493][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 760.423625][T16929] ? kmsan_check_memory+0xd/0x10 [ 760.428570][T16929] ? ____sys_recvmsg+0xa2d/0xd80 [ 760.433511][T16929] ? __msan_get_context_state+0x9/0x20 [ 760.439918][T16929] ? kfree+0x29/0x11b0 [ 760.444390][T16929] ? kmsan_get_metadata+0x116/0x180 [ 760.450384][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 760.456065][T16929] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 760.462304][T16929] ? _copy_from_user+0x1cd/0x2d0 [ 760.468247][T16929] ? kmsan_get_metadata+0x116/0x180 [ 760.473447][T16929] __msan_chain_origin+0x57/0xa0 [ 760.478392][T16929] do_recvmmsg+0x17ee/0x2300 [ 760.483165][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 760.489248][T16929] ? __msan_poison_alloca+0xe9/0x110 [ 760.494540][T16929] ? __se_sys_recvmmsg+0xd3/0x410 [ 760.499578][T16929] __se_sys_recvmmsg+0x247/0x410 [ 760.505657][T16929] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 760.511747][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 760.516693][T16929] do_syscall_64+0x9f/0x140 [ 760.521201][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 760.527093][T16929] RIP: 0033:0x45e159 [ 760.531000][T16929] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 760.551126][T16929] RSP: 002b:00007f7ad6bc8c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 760.559971][T16929] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 760.568747][T16929] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 760.577486][T16929] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 760.586283][T16929] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 760.595031][T16929] R13: 00000000016afb7f R14: 00007f7ad6bc99c0 R15: 000000000119bf8c [ 760.603749][T16929] Uninit was stored to memory at: [ 760.608788][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 760.615348][T16929] __msan_chain_origin+0x57/0xa0 [ 760.621119][T16929] do_recvmmsg+0x17ee/0x2300 [ 760.625722][T16929] __se_sys_recvmmsg+0x247/0x410 [ 760.630662][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 760.635515][T16929] do_syscall_64+0x9f/0x140 [ 760.640020][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 760.646163][T16929] [ 760.648485][T16929] Uninit was stored to memory at: [ 760.653523][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 760.659419][T16929] __msan_chain_origin+0x57/0xa0 [ 760.665186][T16929] do_recvmmsg+0x17ee/0x2300 [ 760.669782][T16929] __se_sys_recvmmsg+0x247/0x410 [ 760.674724][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 760.679583][T16929] do_syscall_64+0x9f/0x140 [ 760.684097][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 760.690238][T16929] [ 760.692945][T16929] Uninit was stored to memory at: [ 760.698737][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 760.704462][T16929] __msan_chain_origin+0x57/0xa0 [ 760.710057][T16929] do_recvmmsg+0x17ee/0x2300 [ 760.715734][T16929] __se_sys_recvmmsg+0x247/0x410 [ 760.720681][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 760.725536][T16929] do_syscall_64+0x9f/0x140 [ 760.730039][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 760.735931][T16929] [ 760.738252][T16929] Uninit was stored to memory at: [ 760.743284][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 760.749057][T16929] __msan_chain_origin+0x57/0xa0 [ 760.754742][T16929] do_recvmmsg+0x17ee/0x2300 [ 760.759332][T16929] __se_sys_recvmmsg+0x247/0x410 [ 760.764270][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 760.770092][T16929] do_syscall_64+0x9f/0x140 [ 760.774601][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 760.780477][T16929] [ 760.783001][T16929] Uninit was stored to memory at: [ 760.788026][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 760.794451][T16929] __msan_chain_origin+0x57/0xa0 [ 760.800021][T16929] do_recvmmsg+0x17ee/0x2300 [ 760.804636][T16929] __se_sys_recvmmsg+0x247/0x410 [ 760.809572][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 760.814425][T16929] do_syscall_64+0x9f/0x140 [ 760.818932][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 760.824810][T16929] [ 760.827163][T16929] Uninit was stored to memory at: [ 760.832195][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 760.838806][T16929] __msan_chain_origin+0x57/0xa0 [ 760.843746][T16929] do_recvmmsg+0x17ee/0x2300 [ 760.848337][T16929] __se_sys_recvmmsg+0x247/0x410 [ 760.853274][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 760.858600][T16929] do_syscall_64+0x9f/0x140 [ 760.863321][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 760.870015][T16929] [ 760.872338][T16929] Uninit was stored to memory at: [ 760.877369][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 760.883087][T16929] __msan_chain_origin+0x57/0xa0 [ 760.888029][T16929] do_recvmmsg+0x17ee/0x2300 [ 760.892624][T16929] __se_sys_recvmmsg+0x247/0x410 [ 760.898067][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 760.902923][T16929] do_syscall_64+0x9f/0x140 [ 760.907428][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 760.913304][T16929] [ 760.916087][T16929] Local variable ----msg_sys@do_recvmmsg created at: [ 760.922851][T16929] do_recvmmsg+0xbc/0x2300 [ 760.927267][T16929] do_recvmmsg+0xbc/0x2300 [ 761.128606][T16931] not chained 750000 origins [ 761.133267][T16931] CPU: 0 PID: 16931 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 761.142022][T16931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 761.152766][T16931] Call Trace: [ 761.156064][T16931] dump_stack+0x21c/0x280 [ 761.160399][T16931] kmsan_internal_chain_origin+0x6f/0x130 [ 761.166174][T16931] ? __msan_get_context_state+0x9/0x20 [ 761.171693][T16931] ? kmsan_get_metadata+0x116/0x180 [ 761.176904][T16931] ? kmsan_internal_check_memory+0xb1/0x520 [ 761.182805][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 761.188439][T16931] ? kmsan_check_memory+0xd/0x10 [ 761.193378][T16931] ? ____sys_recvmsg+0xa2d/0xd80 [ 761.198316][T16931] ? __msan_get_context_state+0x9/0x20 [ 761.204313][T16931] ? kfree+0x29/0x11b0 [ 761.208437][T16931] ? kmsan_get_metadata+0x116/0x180 [ 761.213645][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 761.219288][T16931] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 761.225355][T16931] ? _copy_from_user+0x1cd/0x2d0 [ 761.230293][T16931] ? kmsan_get_metadata+0x116/0x180 [ 761.236073][T16931] __msan_chain_origin+0x57/0xa0 [ 761.241403][T16931] do_recvmmsg+0x17ee/0x2300 [ 761.246016][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 761.251687][T16931] ? __msan_poison_alloca+0xe9/0x110 [ 761.256978][T16931] ? __se_sys_recvmmsg+0xd3/0x410 [ 761.262007][T16931] __se_sys_recvmmsg+0x247/0x410 [ 761.266950][T16931] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 761.272880][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 761.277741][T16931] do_syscall_64+0x9f/0x140 [ 761.283175][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 761.289747][T16931] RIP: 0033:0x45e159 [ 761.293650][T16931] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 761.313264][T16931] RSP: 002b:00007f7ad6ba7c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 761.321686][T16931] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 761.329664][T16931] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 761.337666][T16931] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 761.345958][T16931] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 761.353933][T16931] R13: 00000000016afb7f R14: 00007f7ad6ba89c0 R15: 000000000119c034 [ 761.361902][T16931] Uninit was stored to memory at: [ 761.367309][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 761.373055][T16931] __msan_chain_origin+0x57/0xa0 [ 761.377996][T16931] do_recvmmsg+0x17ee/0x2300 [ 761.382587][T16931] __se_sys_recvmmsg+0x247/0x410 [ 761.387869][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 761.393065][T16931] do_syscall_64+0x9f/0x140 [ 761.397567][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 761.403445][T16931] [ 761.406670][T16931] Uninit was stored to memory at: [ 761.412105][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 761.417824][T16931] __msan_chain_origin+0x57/0xa0 [ 761.423253][T16931] do_recvmmsg+0x17ee/0x2300 [ 761.427848][T16931] __se_sys_recvmmsg+0x247/0x410 [ 761.432785][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 761.437634][T16931] do_syscall_64+0x9f/0x140 [ 761.442153][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 761.448030][T16931] [ 761.450347][T16931] Uninit was stored to memory at: [ 761.455378][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 761.461329][T16931] __msan_chain_origin+0x57/0xa0 [ 761.466267][T16931] do_recvmmsg+0x17ee/0x2300 [ 761.470855][T16931] __se_sys_recvmmsg+0x247/0x410 [ 761.476051][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 761.480909][T16931] do_syscall_64+0x9f/0x140 [ 761.485420][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 761.491299][T16931] [ 761.493621][T16931] Uninit was stored to memory at: [ 761.498657][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 761.504380][T16931] __msan_chain_origin+0x57/0xa0 [ 761.509320][T16931] do_recvmmsg+0x17ee/0x2300 [ 761.509542][T16887] not chained 760000 origins [ 761.513910][T16931] __se_sys_recvmmsg+0x247/0x410 [ 761.518480][T16887] CPU: 1 PID: 16887 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 761.523403][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 761.532166][T16887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 761.537003][T16931] do_syscall_64+0x9f/0x140 [ 761.547026][T16887] Call Trace: [ 761.551516][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 761.554777][T16887] dump_stack+0x21c/0x280 [ 761.560626][T16931] [ 761.564946][T16887] kmsan_internal_chain_origin+0x6f/0x130 [ 761.567234][T16931] Uninit was stored to memory at: [ 761.572933][T16887] ? __msan_get_context_state+0x9/0x20 [ 761.577933][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 761.583376][T16887] ? kmsan_get_metadata+0x116/0x180 [ 761.589067][T16931] __msan_chain_origin+0x57/0xa0 [ 761.594247][T16887] ? kmsan_internal_check_memory+0xb1/0x520 [ 761.599240][T16931] do_recvmmsg+0x17ee/0x2300 [ 761.605117][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 761.609687][T16931] __se_sys_recvmmsg+0x247/0x410 [ 761.615294][T16887] ? kmsan_check_memory+0xd/0x10 [ 761.620205][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 761.625114][T16887] ? ____sys_recvmsg+0xa2d/0xd80 [ 761.629951][T16931] do_syscall_64+0x9f/0x140 [ 761.634857][T16887] ? __msan_get_context_state+0x9/0x20 [ 761.639333][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 761.644773][T16887] ? kfree+0x29/0x11b0 [ 761.650636][T16931] [ 761.654687][T16887] ? kmsan_get_metadata+0x116/0x180 [ 761.656980][T16931] Uninit was stored to memory at: [ 761.662168][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 761.667165][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 761.672772][T16887] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 761.678476][T16931] __msan_chain_origin+0x57/0xa0 [ 761.684532][T16887] ? _copy_from_user+0x1cd/0x2d0 [ 761.689459][T16931] do_recvmmsg+0x17ee/0x2300 [ 761.694373][T16887] ? kmsan_get_metadata+0x116/0x180 [ 761.698943][T16931] __se_sys_recvmmsg+0x247/0x410 [ 761.704123][T16887] __msan_chain_origin+0x57/0xa0 [ 761.709048][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 761.713961][T16887] do_recvmmsg+0x17ee/0x2300 [ 761.718786][T16931] do_syscall_64+0x9f/0x140 [ 761.723355][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 761.727825][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 761.733426][T16887] ? __msan_poison_alloca+0xe9/0x110 [ 761.739276][T16931] [ 761.744545][T16887] ? __se_sys_recvmmsg+0xd3/0x410 [ 761.746839][T16931] Uninit was stored to memory at: [ 761.751859][T16887] __se_sys_recvmmsg+0x247/0x410 [ 761.756858][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 761.761763][T16887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 761.767451][T16931] __msan_chain_origin+0x57/0xa0 [ 761.773230][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 761.778137][T16931] do_recvmmsg+0x17ee/0x2300 [ 761.782960][T16887] do_syscall_64+0x9f/0x140 [ 761.787534][T16931] __se_sys_recvmmsg+0x247/0x410 [ 761.792010][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 761.796917][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 761.802785][T16887] RIP: 0033:0x45e159 [ 761.807613][T16931] do_syscall_64+0x9f/0x140 [ 761.811480][T16887] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 761.815954][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 761.835527][T16887] RSP: 002b:00007f92e7375c68 EFLAGS: 00000246 [ 761.841375][T16931] [ 761.841392][T16887] ORIG_RAX: 000000000000012b [ 761.847431][T16931] Local variable ----msg_sys@do_recvmmsg created at: [ 761.849760][T16887] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 761.854431][T16931] do_recvmmsg+0xbc/0x2300 [ 761.861079][T16887] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 761.861102][T16887] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 761.869504][T16931] do_recvmmsg+0xbc/0x2300 [ 761.873885][T16887] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 761.902148][T16887] R13: 00000000016afb7f R14: 00007f92e73769c0 R15: 000000000119bf8c [ 761.910126][T16887] Uninit was stored to memory at: [ 761.915164][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 761.920895][T16887] __msan_chain_origin+0x57/0xa0 [ 761.925839][T16887] do_recvmmsg+0x17ee/0x2300 [ 761.930436][T16887] __se_sys_recvmmsg+0x247/0x410 [ 761.935381][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 761.940320][T16887] do_syscall_64+0x9f/0x140 [ 761.944831][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 761.950715][T16887] [ 761.953039][T16887] Uninit was stored to memory at: [ 761.958074][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 761.963792][T16887] __msan_chain_origin+0x57/0xa0 [ 761.968731][T16887] do_recvmmsg+0x17ee/0x2300 [ 761.973323][T16887] __se_sys_recvmmsg+0x247/0x410 [ 761.978261][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 761.983115][T16887] do_syscall_64+0x9f/0x140 [ 761.987622][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 761.993508][T16887] [ 761.995823][T16887] Uninit was stored to memory at: [ 762.000854][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 762.006571][T16887] __msan_chain_origin+0x57/0xa0 [ 762.011508][T16887] do_recvmmsg+0x17ee/0x2300 [ 762.016105][T16887] __se_sys_recvmmsg+0x247/0x410 [ 762.021049][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 762.025898][T16887] do_syscall_64+0x9f/0x140 [ 762.030400][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 762.036275][T16887] [ 762.038595][T16887] Uninit was stored to memory at: [ 762.043622][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 762.049339][T16887] __msan_chain_origin+0x57/0xa0 [ 762.054275][T16887] do_recvmmsg+0x17ee/0x2300 [ 762.058863][T16887] __se_sys_recvmmsg+0x247/0x410 [ 762.063836][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 762.068761][T16887] do_syscall_64+0x9f/0x140 [ 762.073297][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 762.079188][T16887] [ 762.081509][T16887] Uninit was stored to memory at: [ 762.086554][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 762.092280][T16887] __msan_chain_origin+0x57/0xa0 [ 762.097313][T16887] do_recvmmsg+0x17ee/0x2300 [ 762.101916][T16887] __se_sys_recvmmsg+0x247/0x410 [ 762.106866][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 762.111727][T16887] do_syscall_64+0x9f/0x140 [ 762.116246][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 762.122132][T16887] [ 762.124458][T16887] Uninit was stored to memory at: [ 762.129497][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 762.135219][T16887] __msan_chain_origin+0x57/0xa0 [ 762.140159][T16887] do_recvmmsg+0x17ee/0x2300 [ 762.144750][T16887] __se_sys_recvmmsg+0x247/0x410 [ 762.149705][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 762.154558][T16887] do_syscall_64+0x9f/0x140 [ 762.159069][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 762.164950][T16887] [ 762.167275][T16887] Uninit was stored to memory at: [ 762.172317][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 762.178044][T16887] __msan_chain_origin+0x57/0xa0 [ 762.182992][T16887] do_recvmmsg+0x17ee/0x2300 [ 762.187589][T16887] __se_sys_recvmmsg+0x247/0x410 [ 762.192529][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 762.197387][T16887] do_syscall_64+0x9f/0x140 [ 762.201899][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 762.207779][T16887] [ 762.210105][T16887] Local variable ----msg_sys@do_recvmmsg created at: [ 762.216800][T16887] do_recvmmsg+0xbc/0x2300 [ 762.221224][T16887] do_recvmmsg+0xbc/0x2300 [ 762.461967][T16891] not chained 770000 origins [ 762.466598][T16891] CPU: 0 PID: 16891 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 762.475691][T16891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 762.485744][T16891] Call Trace: [ 762.489045][T16891] dump_stack+0x21c/0x280 [ 762.493921][T16891] kmsan_internal_chain_origin+0x6f/0x130 [ 762.500110][T16891] ? __msan_get_context_state+0x9/0x20 [ 762.505580][T16891] ? kmsan_get_metadata+0x116/0x180 [ 762.510792][T16891] ? kmsan_internal_check_memory+0xb1/0x520 [ 762.516706][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 762.522898][T16891] ? kmsan_check_memory+0xd/0x10 [ 762.527845][T16891] ? ____sys_recvmsg+0xa2d/0xd80 [ 762.532787][T16891] ? __msan_get_context_state+0x9/0x20 [ 762.538247][T16891] ? kfree+0x29/0x11b0 [ 762.542314][T16891] ? kmsan_get_metadata+0x116/0x180 [ 762.547520][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 762.553169][T16891] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 762.559234][T16891] ? _copy_from_user+0x1cd/0x2d0 [ 762.564526][T16891] ? kmsan_get_metadata+0x116/0x180 [ 762.569752][T16891] __msan_chain_origin+0x57/0xa0 [ 762.574697][T16891] do_recvmmsg+0x17ee/0x2300 [ 762.579302][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 762.584933][T16891] ? __msan_poison_alloca+0xe9/0x110 [ 762.590223][T16891] ? __se_sys_recvmmsg+0xd3/0x410 [ 762.595255][T16891] __se_sys_recvmmsg+0x247/0x410 [ 762.600194][T16891] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 762.606097][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 762.611165][T16891] do_syscall_64+0x9f/0x140 [ 762.615674][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 762.621559][T16891] RIP: 0033:0x45e159 [ 762.625457][T16891] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 762.645076][T16891] RSP: 002b:00007f92e7354c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 762.653495][T16891] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 762.661465][T16891] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 762.669446][T16891] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 762.677421][T16891] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 762.685401][T16891] R13: 00000000016afb7f R14: 00007f92e73559c0 R15: 000000000119c034 [ 762.693377][T16891] Uninit was stored to memory at: [ 762.698417][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 762.704467][T16891] __msan_chain_origin+0x57/0xa0 [ 762.709612][T16891] do_recvmmsg+0x17ee/0x2300 [ 762.714209][T16891] __se_sys_recvmmsg+0x247/0x410 [ 762.719147][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 762.724000][T16891] do_syscall_64+0x9f/0x140 [ 762.728874][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 762.734754][T16891] [ 762.737075][T16891] Uninit was stored to memory at: [ 762.742191][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 762.748715][T16891] __msan_chain_origin+0x57/0xa0 [ 762.753660][T16891] do_recvmmsg+0x17ee/0x2300 [ 762.758251][T16891] __se_sys_recvmmsg+0x247/0x410 [ 762.763724][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 762.768578][T16891] do_syscall_64+0x9f/0x140 [ 762.773085][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 762.778964][T16891] [ 762.781284][T16891] Uninit was stored to memory at: [ 762.786314][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 762.792035][T16891] __msan_chain_origin+0x57/0xa0 [ 762.796980][T16891] do_recvmmsg+0x17ee/0x2300 [ 762.801568][T16891] __se_sys_recvmmsg+0x247/0x410 [ 762.806737][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 762.811591][T16891] do_syscall_64+0x9f/0x140 [ 762.816097][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 762.821974][T16891] [ 762.824290][T16891] Uninit was stored to memory at: [ 762.829348][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 762.835072][T16891] __msan_chain_origin+0x57/0xa0 [ 762.836133][T16929] not chained 780000 origins [ 762.840013][T16891] do_recvmmsg+0x17ee/0x2300 [ 762.844580][T16929] CPU: 1 PID: 16929 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 762.849146][T16891] __se_sys_recvmmsg+0x247/0x410 [ 762.857871][T16929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 762.862792][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 762.872808][T16929] Call Trace: [ 762.878083][T16891] do_syscall_64+0x9f/0x140 [ 762.881347][T16929] dump_stack+0x21c/0x280 [ 762.885820][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 762.890125][T16929] kmsan_internal_chain_origin+0x6f/0x130 [ 762.895973][T16891] [ 762.901673][T16929] ? __msan_get_context_state+0x9/0x20 [ 762.903987][T16891] Uninit was stored to memory at: [ 762.909427][T16929] ? kmsan_get_metadata+0x116/0x180 [ 762.914441][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 762.919623][T16929] ? kmsan_internal_check_memory+0xb1/0x520 [ 762.925309][T16891] __msan_chain_origin+0x57/0xa0 [ 762.931180][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 762.936086][T16891] do_recvmmsg+0x17ee/0x2300 [ 762.941727][T16929] ? kmsan_check_memory+0xd/0x10 [ 762.946290][T16891] __se_sys_recvmmsg+0x247/0x410 [ 762.951213][T16929] ? ____sys_recvmsg+0xa2d/0xd80 [ 762.956123][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 762.961031][T16929] ? __msan_get_context_state+0x9/0x20 [ 762.965857][T16891] do_syscall_64+0x9f/0x140 [ 762.971287][T16929] ? kfree+0x29/0x11b0 [ 762.975765][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 762.979806][T16929] ? kmsan_get_metadata+0x116/0x180 [ 762.985671][T16891] [ 762.990857][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 762.993148][T16891] Uninit was stored to memory at: [ 762.998766][T16929] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 763.003774][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 763.009808][T16929] ? _copy_from_user+0x1cd/0x2d0 [ 763.015496][T16891] __msan_chain_origin+0x57/0xa0 [ 763.020407][T16929] ? kmsan_get_metadata+0x116/0x180 [ 763.025317][T16891] do_recvmmsg+0x17ee/0x2300 [ 763.030488][T16929] __msan_chain_origin+0x57/0xa0 [ 763.035065][T16891] __se_sys_recvmmsg+0x247/0x410 [ 763.040072][T16929] do_recvmmsg+0x17ee/0x2300 [ 763.044983][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 763.049559][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 763.054376][T16891] do_syscall_64+0x9f/0x140 [ 763.059980][T16929] ? __msan_poison_alloca+0xe9/0x110 [ 763.064457][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 763.069716][T16929] ? __se_sys_recvmmsg+0xd3/0x410 [ 763.075571][T16891] [ 763.080581][T16929] __se_sys_recvmmsg+0x247/0x410 [ 763.082886][T16891] Uninit was stored to memory at: [ 763.087819][T16929] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 763.092823][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 763.098608][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 763.104296][T16891] __msan_chain_origin+0x57/0xa0 [ 763.109122][T16929] do_syscall_64+0x9f/0x140 [ 763.114029][T16891] do_recvmmsg+0x17ee/0x2300 [ 763.118506][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 763.123075][T16891] __se_sys_recvmmsg+0x247/0x410 [ 763.128943][T16929] RIP: 0033:0x45e159 [ 763.133858][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 763.137725][T16929] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 763.142548][T16891] do_syscall_64+0x9f/0x140 [ 763.162124][T16929] RSP: 002b:00007f7ad6bc8c68 EFLAGS: 00000246 [ 763.166595][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 763.166612][T16929] ORIG_RAX: 000000000000012b [ 763.172656][T16891] [ 763.178544][T16929] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 763.183197][T16891] Local variable ----msg_sys@do_recvmmsg created at: [ 763.185504][T16929] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 763.193455][T16891] do_recvmmsg+0xbc/0x2300 [ 763.200097][T16929] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 763.208064][T16891] do_recvmmsg+0xbc/0x2300 [ 763.212449][T16929] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 763.232772][T16929] R13: 00000000016afb7f R14: 00007f7ad6bc99c0 R15: 000000000119bf8c [ 763.240745][T16929] Uninit was stored to memory at: [ 763.245788][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 763.251515][T16929] __msan_chain_origin+0x57/0xa0 [ 763.256461][T16929] do_recvmmsg+0x17ee/0x2300 [ 763.261060][T16929] __se_sys_recvmmsg+0x247/0x410 [ 763.266006][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 763.270877][T16929] do_syscall_64+0x9f/0x140 [ 763.275390][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 763.281270][T16929] [ 763.283592][T16929] Uninit was stored to memory at: [ 763.288639][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 763.294363][T16929] __msan_chain_origin+0x57/0xa0 [ 763.299299][T16929] do_recvmmsg+0x17ee/0x2300 [ 763.303890][T16929] __se_sys_recvmmsg+0x247/0x410 [ 763.308831][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 763.313686][T16929] do_syscall_64+0x9f/0x140 [ 763.318193][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 763.324071][T16929] [ 763.326413][T16929] Uninit was stored to memory at: [ 763.331450][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 763.337176][T16929] __msan_chain_origin+0x57/0xa0 [ 763.342116][T16929] do_recvmmsg+0x17ee/0x2300 [ 763.346702][T16929] __se_sys_recvmmsg+0x247/0x410 [ 763.351647][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 763.356500][T16929] do_syscall_64+0x9f/0x140 [ 763.361002][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 763.366881][T16929] [ 763.369202][T16929] Uninit was stored to memory at: [ 763.374243][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 763.379956][T16929] __msan_chain_origin+0x57/0xa0 [ 763.384897][T16929] do_recvmmsg+0x17ee/0x2300 [ 763.389490][T16929] __se_sys_recvmmsg+0x247/0x410 [ 763.394434][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 763.399294][T16929] do_syscall_64+0x9f/0x140 [ 763.403804][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 763.409708][T16929] [ 763.412027][T16929] Uninit was stored to memory at: [ 763.417073][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 763.422791][T16929] __msan_chain_origin+0x57/0xa0 [ 763.427733][T16929] do_recvmmsg+0x17ee/0x2300 [ 763.432327][T16929] __se_sys_recvmmsg+0x247/0x410 [ 763.437261][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 763.442111][T16929] do_syscall_64+0x9f/0x140 [ 763.446615][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 763.452497][T16929] [ 763.454821][T16929] Uninit was stored to memory at: [ 763.459852][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 763.465578][T16929] __msan_chain_origin+0x57/0xa0 [ 763.470529][T16929] do_recvmmsg+0x17ee/0x2300 [ 763.475131][T16929] __se_sys_recvmmsg+0x247/0x410 [ 763.480072][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 763.484934][T16929] do_syscall_64+0x9f/0x140 [ 763.489453][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 763.495451][T16929] [ 763.497775][T16929] Uninit was stored to memory at: [ 763.502808][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 763.508646][T16929] __msan_chain_origin+0x57/0xa0 [ 763.513599][T16929] do_recvmmsg+0x17ee/0x2300 [ 763.518226][T16929] __se_sys_recvmmsg+0x247/0x410 [ 763.523186][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 763.528044][T16929] do_syscall_64+0x9f/0x140 [ 763.532564][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 763.538814][T16929] [ 763.541141][T16929] Local variable ----msg_sys@do_recvmmsg created at: [ 763.547833][T16929] do_recvmmsg+0xbc/0x2300 [ 763.552265][T16929] do_recvmmsg+0xbc/0x2300 [ 763.789020][T16931] not chained 790000 origins [ 763.793752][T16931] CPU: 0 PID: 16931 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 763.802512][T16931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 763.812575][T16931] Call Trace: [ 763.816003][T16931] dump_stack+0x21c/0x280 [ 763.820345][T16931] kmsan_internal_chain_origin+0x6f/0x130 [ 763.826080][T16931] ? __msan_get_context_state+0x9/0x20 [ 763.831546][T16931] ? kmsan_get_metadata+0x116/0x180 [ 763.836761][T16931] ? kmsan_internal_check_memory+0xb1/0x520 [ 763.842665][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 763.848302][T16931] ? kmsan_check_memory+0xd/0x10 [ 763.853247][T16931] ? ____sys_recvmsg+0xa2d/0xd80 [ 763.858191][T16931] ? __msan_get_context_state+0x9/0x20 [ 763.863654][T16931] ? kfree+0x29/0x11b0 [ 763.867731][T16931] ? kmsan_get_metadata+0x116/0x180 [ 763.873036][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 763.878682][T16931] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 763.884759][T16931] ? _copy_from_user+0x1cd/0x2d0 [ 763.889711][T16931] ? kmsan_get_metadata+0x116/0x180 [ 763.894921][T16931] __msan_chain_origin+0x57/0xa0 [ 763.899874][T16931] do_recvmmsg+0x17ee/0x2300 [ 763.904488][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 763.910128][T16931] ? __msan_poison_alloca+0xe9/0x110 [ 763.915426][T16931] ? __se_sys_recvmmsg+0xd3/0x410 [ 763.920472][T16931] __se_sys_recvmmsg+0x247/0x410 [ 763.925420][T16931] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 763.931242][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 763.936114][T16931] do_syscall_64+0x9f/0x140 [ 763.940632][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 763.946535][T16931] RIP: 0033:0x45e159 [ 763.950439][T16931] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 763.970056][T16931] RSP: 002b:00007f7ad6ba7c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 763.978484][T16931] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 763.986587][T16931] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 763.994567][T16931] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 764.002554][T16931] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 764.010537][T16931] R13: 00000000016afb7f R14: 00007f7ad6ba89c0 R15: 000000000119c034 [ 764.018513][T16931] Uninit was stored to memory at: [ 764.023553][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 764.029279][T16931] __msan_chain_origin+0x57/0xa0 [ 764.034224][T16931] do_recvmmsg+0x17ee/0x2300 [ 764.038815][T16931] __se_sys_recvmmsg+0x247/0x410 [ 764.043757][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 764.048617][T16931] do_syscall_64+0x9f/0x140 [ 764.053129][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 764.059006][T16931] [ 764.061324][T16931] Uninit was stored to memory at: [ 764.066358][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 764.072080][T16931] __msan_chain_origin+0x57/0xa0 [ 764.077025][T16931] do_recvmmsg+0x17ee/0x2300 [ 764.081650][T16931] __se_sys_recvmmsg+0x247/0x410 [ 764.086595][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 764.091452][T16931] do_syscall_64+0x9f/0x140 [ 764.095959][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 764.101834][T16931] [ 764.104156][T16931] Uninit was stored to memory at: [ 764.109193][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 764.114917][T16931] __msan_chain_origin+0x57/0xa0 [ 764.119858][T16931] do_recvmmsg+0x17ee/0x2300 [ 764.124456][T16931] __se_sys_recvmmsg+0x247/0x410 [ 764.129396][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 764.134251][T16931] do_syscall_64+0x9f/0x140 [ 764.138755][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 764.144632][T16931] [ 764.146954][T16931] Uninit was stored to memory at: [ 764.151985][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 764.157721][T16931] __msan_chain_origin+0x57/0xa0 [ 764.162660][T16931] do_recvmmsg+0x17ee/0x2300 [ 764.167257][T16931] __se_sys_recvmmsg+0x247/0x410 [ 764.172197][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 764.177057][T16931] do_syscall_64+0x9f/0x140 [ 764.181573][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 764.187461][T16931] [ 764.189784][T16931] Uninit was stored to memory at: [ 764.194817][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 764.200541][T16931] __msan_chain_origin+0x57/0xa0 [ 764.205487][T16931] do_recvmmsg+0x17ee/0x2300 [ 764.210079][T16931] __se_sys_recvmmsg+0x247/0x410 [ 764.215019][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 764.219876][T16931] do_syscall_64+0x9f/0x140 [ 764.224383][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 764.230260][T16931] [ 764.232584][T16931] Uninit was stored to memory at: [ 764.237627][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 764.243347][T16931] __msan_chain_origin+0x57/0xa0 [ 764.248286][T16931] do_recvmmsg+0x17ee/0x2300 [ 764.252876][T16931] __se_sys_recvmmsg+0x247/0x410 [ 764.257818][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 764.262676][T16931] do_syscall_64+0x9f/0x140 [ 764.267189][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 764.273068][T16931] [ 764.275391][T16931] Uninit was stored to memory at: [ 764.280425][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 764.286145][T16931] __msan_chain_origin+0x57/0xa0 [ 764.291092][T16931] do_recvmmsg+0x17ee/0x2300 [ 764.295697][T16931] __se_sys_recvmmsg+0x247/0x410 [ 764.300646][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 764.305614][T16931] do_syscall_64+0x9f/0x140 [ 764.310473][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 764.316354][T16931] [ 764.318677][T16931] Local variable ----msg_sys@do_recvmmsg created at: [ 764.325360][T16931] do_recvmmsg+0xbc/0x2300 [ 764.329779][T16931] do_recvmmsg+0xbc/0x2300 [ 764.393785][T16887] not chained 800000 origins [ 764.398423][T16887] CPU: 1 PID: 16887 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 764.407186][T16887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 764.417275][T16887] Call Trace: [ 764.420581][T16887] dump_stack+0x21c/0x280 [ 764.424932][T16887] kmsan_internal_chain_origin+0x6f/0x130 [ 764.430656][T16887] ? __msan_get_context_state+0x9/0x20 [ 764.436122][T16887] ? kmsan_get_metadata+0x116/0x180 [ 764.441337][T16887] ? kmsan_internal_check_memory+0xb1/0x520 [ 764.447237][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 764.452875][T16887] ? kmsan_check_memory+0xd/0x10 [ 764.457819][T16887] ? ____sys_recvmsg+0xa2d/0xd80 [ 764.462793][T16887] ? __msan_get_context_state+0x9/0x20 [ 764.468261][T16887] ? kfree+0x29/0x11b0 [ 764.472340][T16887] ? kmsan_get_metadata+0x116/0x180 [ 764.477561][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 764.483213][T16887] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 764.489296][T16887] ? _copy_from_user+0x1cd/0x2d0 [ 764.494241][T16887] ? kmsan_get_metadata+0x116/0x180 [ 764.499874][T16887] __msan_chain_origin+0x57/0xa0 [ 764.504827][T16887] do_recvmmsg+0x17ee/0x2300 [ 764.509452][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 764.515106][T16887] ? __msan_poison_alloca+0xe9/0x110 [ 764.520411][T16887] ? __se_sys_recvmmsg+0xd3/0x410 [ 764.525533][T16887] __se_sys_recvmmsg+0x247/0x410 [ 764.530488][T16887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 764.536315][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 764.541172][T16887] do_syscall_64+0x9f/0x140 [ 764.545683][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 764.551591][T16887] RIP: 0033:0x45e159 [ 764.555505][T16887] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 764.575124][T16887] RSP: 002b:00007f92e7375c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 764.583553][T16887] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 764.591537][T16887] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 764.599528][T16887] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 764.607513][T16887] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 764.615495][T16887] R13: 00000000016afb7f R14: 00007f92e73769c0 R15: 000000000119bf8c [ 764.623474][T16887] Uninit was stored to memory at: [ 764.628516][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 764.634248][T16887] __msan_chain_origin+0x57/0xa0 [ 764.639198][T16887] do_recvmmsg+0x17ee/0x2300 [ 764.643807][T16887] __se_sys_recvmmsg+0x247/0x410 [ 764.648770][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 764.653633][T16887] do_syscall_64+0x9f/0x140 [ 764.658147][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 764.664035][T16887] [ 764.666380][T16887] Uninit was stored to memory at: [ 764.671426][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 764.677167][T16887] __msan_chain_origin+0x57/0xa0 [ 764.682122][T16887] do_recvmmsg+0x17ee/0x2300 [ 764.686732][T16887] __se_sys_recvmmsg+0x247/0x410 [ 764.691684][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 764.696557][T16887] do_syscall_64+0x9f/0x140 [ 764.701072][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 764.706954][T16887] [ 764.709287][T16887] Uninit was stored to memory at: [ 764.714330][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 764.720059][T16887] __msan_chain_origin+0x57/0xa0 [ 764.725009][T16887] do_recvmmsg+0x17ee/0x2300 [ 764.729611][T16887] __se_sys_recvmmsg+0x247/0x410 [ 764.734555][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 764.739418][T16887] do_syscall_64+0x9f/0x140 [ 764.743930][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 764.749810][T16887] [ 764.752130][T16887] Uninit was stored to memory at: [ 764.757163][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 764.762883][T16887] __msan_chain_origin+0x57/0xa0 [ 764.767829][T16887] do_recvmmsg+0x17ee/0x2300 [ 764.772425][T16887] __se_sys_recvmmsg+0x247/0x410 [ 764.777366][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 764.782223][T16887] do_syscall_64+0x9f/0x140 [ 764.786728][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 764.792615][T16887] [ 764.794934][T16887] Uninit was stored to memory at: [ 764.799969][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 764.805688][T16887] __msan_chain_origin+0x57/0xa0 [ 764.810627][T16887] do_recvmmsg+0x17ee/0x2300 [ 764.815215][T16887] __se_sys_recvmmsg+0x247/0x410 [ 764.820158][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 764.825025][T16887] do_syscall_64+0x9f/0x140 [ 764.829537][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 764.835416][T16887] [ 764.837738][T16887] Uninit was stored to memory at: [ 764.842781][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 764.848506][T16887] __msan_chain_origin+0x57/0xa0 [ 764.853446][T16887] do_recvmmsg+0x17ee/0x2300 [ 764.858042][T16887] __se_sys_recvmmsg+0x247/0x410 [ 764.862985][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 764.867559][T16891] not chained 810000 origins [ 764.867842][T16887] do_syscall_64+0x9f/0x140 [ 764.872414][T16891] CPU: 0 PID: 16891 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 764.876900][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 764.885642][T16891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 764.891503][T16887] [ 764.901535][T16891] Call Trace: [ 764.903841][T16887] Uninit was stored to memory at: [ 764.907113][T16891] dump_stack+0x21c/0x280 [ 764.912130][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 764.916433][T16891] kmsan_internal_chain_origin+0x6f/0x130 [ 764.922112][T16887] __msan_chain_origin+0x57/0xa0 [ 764.922127][T16887] do_recvmmsg+0x17ee/0x2300 [ 764.922152][T16887] __se_sys_recvmmsg+0x247/0x410 [ 764.927845][T16891] ? __msan_get_context_state+0x9/0x20 [ 764.932761][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 764.937321][T16891] ? kmsan_get_metadata+0x116/0x180 [ 764.942234][T16887] do_syscall_64+0x9f/0x140 [ 764.947669][T16891] ? kmsan_internal_check_memory+0xb1/0x520 [ 764.952489][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 764.957663][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 764.962124][T16887] [ 764.967998][T16891] ? kmsan_check_memory+0xd/0x10 [ 764.973856][T16887] Local variable ----msg_sys@do_recvmmsg created at: [ 764.979468][T16891] ? ____sys_recvmsg+0xa2d/0xd80 [ 764.981771][T16887] do_recvmmsg+0xbc/0x2300 [ 764.986680][T16891] ? __msan_get_context_state+0x9/0x20 [ 764.993336][T16887] do_recvmmsg+0xbc/0x2300 [ 764.998246][T16891] ? kfree+0x29/0x11b0 [ 765.016622][T16891] ? kmsan_get_metadata+0x116/0x180 [ 765.021871][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 765.027514][T16891] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 765.033588][T16891] ? _copy_from_user+0x1cd/0x2d0 [ 765.038534][T16891] ? kmsan_get_metadata+0x116/0x180 [ 765.043740][T16891] __msan_chain_origin+0x57/0xa0 [ 765.048691][T16891] do_recvmmsg+0x17ee/0x2300 [ 765.053306][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 765.058952][T16891] ? __msan_poison_alloca+0xe9/0x110 [ 765.064251][T16891] ? __se_sys_recvmmsg+0xd3/0x410 [ 765.069287][T16891] __se_sys_recvmmsg+0x247/0x410 [ 765.074236][T16891] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 765.080075][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 765.084939][T16891] do_syscall_64+0x9f/0x140 [ 765.089458][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 765.095397][T16891] RIP: 0033:0x45e159 [ 765.099301][T16891] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 765.119265][T16891] RSP: 002b:00007f92e7354c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 765.127696][T16891] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 765.135678][T16891] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 765.143662][T16891] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 765.151643][T16891] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 765.159632][T16891] R13: 00000000016afb7f R14: 00007f92e73559c0 R15: 000000000119c034 [ 765.167615][T16891] Uninit was stored to memory at: [ 765.172664][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 765.178387][T16891] __msan_chain_origin+0x57/0xa0 [ 765.183331][T16891] do_recvmmsg+0x17ee/0x2300 [ 765.187928][T16891] __se_sys_recvmmsg+0x247/0x410 [ 765.192879][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 765.197743][T16891] do_syscall_64+0x9f/0x140 [ 765.202287][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 765.208183][T16891] [ 765.210509][T16891] Uninit was stored to memory at: [ 765.215548][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 765.221382][T16891] __msan_chain_origin+0x57/0xa0 [ 765.226334][T16891] do_recvmmsg+0x17ee/0x2300 [ 765.230935][T16891] __se_sys_recvmmsg+0x247/0x410 [ 765.235890][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 765.240756][T16891] do_syscall_64+0x9f/0x140 [ 765.245271][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 765.251151][T16891] [ 765.253476][T16891] Uninit was stored to memory at: [ 765.258516][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 765.264240][T16891] __msan_chain_origin+0x57/0xa0 [ 765.269184][T16891] do_recvmmsg+0x17ee/0x2300 [ 765.273782][T16891] __se_sys_recvmmsg+0x247/0x410 [ 765.278726][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 765.283583][T16891] do_syscall_64+0x9f/0x140 [ 765.288087][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 765.294060][T16891] [ 765.296381][T16891] Uninit was stored to memory at: [ 765.301416][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 765.307150][T16891] __msan_chain_origin+0x57/0xa0 [ 765.312126][T16891] do_recvmmsg+0x17ee/0x2300 [ 765.316733][T16891] __se_sys_recvmmsg+0x247/0x410 [ 765.321683][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 765.326547][T16891] do_syscall_64+0x9f/0x140 [ 765.331057][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 765.336940][T16891] [ 765.339262][T16891] Uninit was stored to memory at: [ 765.344302][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 765.350026][T16891] __msan_chain_origin+0x57/0xa0 [ 765.354972][T16891] do_recvmmsg+0x17ee/0x2300 [ 765.359572][T16891] __se_sys_recvmmsg+0x247/0x410 [ 765.364518][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 765.369373][T16891] do_syscall_64+0x9f/0x140 [ 765.373880][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 765.381672][T16891] [ 765.383995][T16891] Uninit was stored to memory at: [ 765.389031][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 765.394750][T16891] __msan_chain_origin+0x57/0xa0 [ 765.399698][T16891] do_recvmmsg+0x17ee/0x2300 [ 765.404294][T16891] __se_sys_recvmmsg+0x247/0x410 [ 765.409237][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 765.414096][T16891] do_syscall_64+0x9f/0x140 [ 765.418604][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 765.424486][T16891] [ 765.426808][T16891] Uninit was stored to memory at: [ 765.431845][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 765.437568][T16891] __msan_chain_origin+0x57/0xa0 [ 765.442504][T16891] do_recvmmsg+0x17ee/0x2300 [ 765.447126][T16891] __se_sys_recvmmsg+0x247/0x410 [ 765.452068][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 765.456920][T16891] do_syscall_64+0x9f/0x140 [ 765.461423][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 765.468174][T16891] [ 765.470497][T16891] Local variable ----msg_sys@do_recvmmsg created at: [ 765.477176][T16891] do_recvmmsg+0xbc/0x2300 [ 765.481602][T16891] do_recvmmsg+0xbc/0x2300 [ 765.590742][T16929] not chained 820000 origins [ 765.595375][T16929] CPU: 1 PID: 16929 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 765.604156][T16929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 765.614212][T16929] Call Trace: [ 765.617512][T16929] dump_stack+0x21c/0x280 [ 765.621879][T16929] kmsan_internal_chain_origin+0x6f/0x130 [ 765.627604][T16929] ? __msan_get_context_state+0x9/0x20 [ 765.633073][T16929] ? kmsan_get_metadata+0x116/0x180 [ 765.638275][T16929] ? kmsan_internal_check_memory+0xb1/0x520 [ 765.644174][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 765.649813][T16929] ? kmsan_check_memory+0xd/0x10 [ 765.654757][T16929] ? ____sys_recvmsg+0xa2d/0xd80 [ 765.659697][T16929] ? __msan_get_context_state+0x9/0x20 [ 765.665188][T16929] ? kfree+0x29/0x11b0 [ 765.669265][T16929] ? kmsan_get_metadata+0x116/0x180 [ 765.674488][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 765.680141][T16929] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 765.686309][T16929] ? _copy_from_user+0x1cd/0x2d0 [ 765.691264][T16929] ? kmsan_get_metadata+0x116/0x180 [ 765.696473][T16929] __msan_chain_origin+0x57/0xa0 [ 765.701425][T16929] do_recvmmsg+0x17ee/0x2300 [ 765.706061][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 765.711697][T16929] ? __msan_poison_alloca+0xe9/0x110 [ 765.716993][T16929] ? __se_sys_recvmmsg+0xd3/0x410 [ 765.722024][T16929] __se_sys_recvmmsg+0x247/0x410 [ 765.726969][T16929] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 765.732875][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 765.737739][T16929] do_syscall_64+0x9f/0x140 [ 765.742249][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 765.748140][T16929] RIP: 0033:0x45e159 [ 765.752037][T16929] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 765.771654][T16929] RSP: 002b:00007f7ad6bc8c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 765.780086][T16929] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 765.788095][T16929] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 765.796071][T16929] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 765.804043][T16929] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 765.812020][T16929] R13: 00000000016afb7f R14: 00007f7ad6bc99c0 R15: 000000000119bf8c [ 765.819998][T16929] Uninit was stored to memory at: [ 765.825040][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 765.830764][T16929] __msan_chain_origin+0x57/0xa0 [ 765.835705][T16929] do_recvmmsg+0x17ee/0x2300 [ 765.840297][T16929] __se_sys_recvmmsg+0x247/0x410 [ 765.845235][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 765.850094][T16929] do_syscall_64+0x9f/0x140 [ 765.854694][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 765.860584][T16929] [ 765.862909][T16929] Uninit was stored to memory at: [ 765.867946][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 765.873662][T16929] __msan_chain_origin+0x57/0xa0 [ 765.878618][T16929] do_recvmmsg+0x17ee/0x2300 [ 765.883229][T16929] __se_sys_recvmmsg+0x247/0x410 [ 765.888173][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 765.893118][T16929] do_syscall_64+0x9f/0x140 [ 765.897628][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 765.903511][T16929] [ 765.905835][T16929] Uninit was stored to memory at: [ 765.910873][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 765.914033][T16891] not chained 830000 origins [ 765.916596][T16929] __msan_chain_origin+0x57/0xa0 [ 765.921170][T16891] CPU: 0 PID: 16891 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 765.926086][T16929] do_recvmmsg+0x17ee/0x2300 [ 765.934806][T16891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 765.939376][T16929] __se_sys_recvmmsg+0x247/0x410 [ 765.949394][T16891] Call Trace: [ 765.954315][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 765.957574][T16891] dump_stack+0x21c/0x280 [ 765.962398][T16929] do_syscall_64+0x9f/0x140 [ 765.966791][T16891] kmsan_internal_chain_origin+0x6f/0x130 [ 765.971262][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 765.976951][T16891] ? __msan_get_context_state+0x9/0x20 [ 765.982803][T16929] [ 765.988246][T16891] ? kmsan_get_metadata+0x116/0x180 [ 765.990542][T16929] Uninit was stored to memory at: [ 765.995725][T16891] ? kmsan_internal_check_memory+0xb1/0x520 [ 766.000728][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 766.006589][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 766.012275][T16929] __msan_chain_origin+0x57/0xa0 [ 766.017884][T16891] ? kmsan_check_memory+0xd/0x10 [ 766.022881][T16929] do_recvmmsg+0x17ee/0x2300 [ 766.027791][T16891] ? ____sys_recvmsg+0xa2d/0xd80 [ 766.032366][T16929] __se_sys_recvmmsg+0x247/0x410 [ 766.037285][T16891] ? __msan_get_context_state+0x9/0x20 [ 766.042196][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 766.047626][T16891] ? kfree+0x29/0x11b0 [ 766.052451][T16929] do_syscall_64+0x9f/0x140 [ 766.056500][T16891] ? kmsan_get_metadata+0x116/0x180 [ 766.060978][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 766.066153][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 766.073392][T16929] [ 766.079011][T16891] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 766.081404][T16929] Uninit was stored to memory at: [ 766.087451][T16891] ? _copy_from_user+0x1cd/0x2d0 [ 766.092471][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 766.097381][T16891] ? kmsan_get_metadata+0x116/0x180 [ 766.103514][T16929] __msan_chain_origin+0x57/0xa0 [ 766.108686][T16891] __msan_chain_origin+0x57/0xa0 [ 766.113599][T16929] do_recvmmsg+0x17ee/0x2300 [ 766.118524][T16891] do_recvmmsg+0x17ee/0x2300 [ 766.123102][T16929] __se_sys_recvmmsg+0x247/0x410 [ 766.127685][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 766.132591][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 766.138193][T16891] ? __msan_poison_alloca+0xe9/0x110 [ 766.143031][T16929] do_syscall_64+0x9f/0x140 [ 766.148287][T16891] ? __se_sys_recvmmsg+0xd3/0x410 [ 766.152763][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 766.157772][T16891] __se_sys_recvmmsg+0x247/0x410 [ 766.163626][T16929] [ 766.168540][T16891] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 766.170835][T16929] Uninit was stored to memory at: [ 766.176642][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 766.181649][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 766.186480][T16891] do_syscall_64+0x9f/0x140 [ 766.192173][T16929] __msan_chain_origin+0x57/0xa0 [ 766.196650][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 766.201566][T16929] do_recvmmsg+0x17ee/0x2300 [ 766.207437][T16891] RIP: 0033:0x45e159 [ 766.212004][T16929] __se_sys_recvmmsg+0x247/0x410 [ 766.215873][T16891] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 766.220784][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 766.240385][T16891] RSP: 002b:00007f92e7354c68 EFLAGS: 00000246 [ 766.245217][T16929] do_syscall_64+0x9f/0x140 [ 766.245237][T16891] ORIG_RAX: 000000000000012b [ 766.251292][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 766.255763][T16891] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 766.260415][T16929] [ 766.266287][T16891] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 766.274227][T16929] Uninit was stored to memory at: [ 766.276553][T16891] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 766.284512][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 766.289498][T16891] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 766.297449][T16929] __msan_chain_origin+0x57/0xa0 [ 766.303153][T16891] R13: 00000000016afb7f R14: 00007f92e73559c0 R15: 000000000119c034 [ 766.311116][T16929] do_recvmmsg+0x17ee/0x2300 [ 766.316013][T16891] Uninit was stored to memory at: [ 766.323971][T16929] __se_sys_recvmmsg+0x247/0x410 [ 766.328538][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 766.333537][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 766.338457][T16891] __msan_chain_origin+0x57/0xa0 [ 766.344150][T16929] do_syscall_64+0x9f/0x140 [ 766.348970][T16891] do_recvmmsg+0x17ee/0x2300 [ 766.353882][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 766.358355][T16891] __se_sys_recvmmsg+0x247/0x410 [ 766.362907][T16929] [ 766.368793][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 766.373694][T16929] Local variable ----msg_sys@do_recvmmsg created at: [ 766.376009][T16891] do_syscall_64+0x9f/0x140 [ 766.380831][T16929] do_recvmmsg+0xbc/0x2300 [ 766.387477][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 766.391949][T16929] do_recvmmsg+0xbc/0x2300 [ 766.396326][T16891] [ 766.409004][T16891] Uninit was stored to memory at: [ 766.414059][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 766.419785][T16891] __msan_chain_origin+0x57/0xa0 [ 766.424803][T16891] do_recvmmsg+0x17ee/0x2300 [ 766.429435][T16891] __se_sys_recvmmsg+0x247/0x410 [ 766.434376][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 766.439227][T16891] do_syscall_64+0x9f/0x140 [ 766.443828][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 766.449746][T16891] [ 766.452070][T16891] Uninit was stored to memory at: [ 766.457107][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 766.462827][T16891] __msan_chain_origin+0x57/0xa0 [ 766.467770][T16891] do_recvmmsg+0x17ee/0x2300 [ 766.472369][T16891] __se_sys_recvmmsg+0x247/0x410 [ 766.477312][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 766.482169][T16891] do_syscall_64+0x9f/0x140 [ 766.486707][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 766.492678][T16891] [ 766.495008][T16891] Uninit was stored to memory at: [ 766.500053][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 766.505780][T16891] __msan_chain_origin+0x57/0xa0 [ 766.510721][T16891] do_recvmmsg+0x17ee/0x2300 [ 766.515311][T16891] __se_sys_recvmmsg+0x247/0x410 [ 766.520246][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 766.525106][T16891] do_syscall_64+0x9f/0x140 [ 766.529610][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 766.535489][T16891] [ 766.537812][T16891] Uninit was stored to memory at: [ 766.542841][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 766.548558][T16891] __msan_chain_origin+0x57/0xa0 [ 766.553494][T16891] do_recvmmsg+0x17ee/0x2300 [ 766.558084][T16891] __se_sys_recvmmsg+0x247/0x410 [ 766.563020][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 766.567873][T16891] do_syscall_64+0x9f/0x140 [ 766.572377][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 766.578254][T16891] [ 766.580571][T16891] Uninit was stored to memory at: [ 766.585598][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 766.591313][T16891] __msan_chain_origin+0x57/0xa0 [ 766.596251][T16891] do_recvmmsg+0x17ee/0x2300 [ 766.600853][T16891] __se_sys_recvmmsg+0x247/0x410 [ 766.605787][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 766.608541][T16929] not chained 840000 origins [ 766.610638][T16891] do_syscall_64+0x9f/0x140 [ 766.615311][T16929] CPU: 1 PID: 16929 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 766.619789][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 766.628528][T16929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 766.634398][T16891] [ 766.644439][T16929] Call Trace: [ 766.646745][T16891] Uninit was stored to memory at: [ 766.650020][T16929] dump_stack+0x21c/0x280 [ 766.655019][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 766.659333][T16929] kmsan_internal_chain_origin+0x6f/0x130 [ 766.665021][T16891] __msan_chain_origin+0x57/0xa0 [ 766.670714][T16929] ? __msan_get_context_state+0x9/0x20 [ 766.675628][T16891] do_recvmmsg+0x17ee/0x2300 [ 766.681059][T16929] ? kmsan_get_metadata+0x116/0x180 [ 766.685621][T16891] __se_sys_recvmmsg+0x247/0x410 [ 766.690814][T16929] ? kmsan_internal_check_memory+0xb1/0x520 [ 766.695732][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 766.701950][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 766.706776][T16891] do_syscall_64+0x9f/0x140 [ 766.712378][T16929] ? kmsan_check_memory+0xd/0x10 [ 766.716855][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 766.721792][T16929] ? ____sys_recvmsg+0xa2d/0xd80 [ 766.727645][T16891] [ 766.732665][T16929] ? __msan_get_context_state+0x9/0x20 [ 766.734962][T16891] Local variable ----msg_sys@do_recvmmsg created at: [ 766.740400][T16929] ? kfree+0x29/0x11b0 [ 766.747060][T16891] do_recvmmsg+0xbc/0x2300 [ 766.751098][T16929] ? kmsan_get_metadata+0x116/0x180 [ 766.755500][T16891] do_recvmmsg+0xbc/0x2300 [ 766.760677][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 766.770718][T16929] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 766.776801][T16929] ? _copy_from_user+0x1cd/0x2d0 [ 766.781748][T16929] ? kmsan_get_metadata+0x116/0x180 [ 766.786953][T16929] __msan_chain_origin+0x57/0xa0 [ 766.791901][T16929] do_recvmmsg+0x17ee/0x2300 [ 766.796515][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 766.802161][T16929] ? __msan_poison_alloca+0xe9/0x110 [ 766.807458][T16929] ? __se_sys_recvmmsg+0xd3/0x410 [ 766.812526][T16929] __se_sys_recvmmsg+0x247/0x410 [ 766.817497][T16929] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 766.823318][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 766.828185][T16929] do_syscall_64+0x9f/0x140 [ 766.832721][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 766.838616][T16929] RIP: 0033:0x45e159 [ 766.842521][T16929] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 766.862140][T16929] RSP: 002b:00007f7ad6bc8c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 766.870573][T16929] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 766.878557][T16929] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 766.886543][T16929] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 766.894616][T16929] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 766.902599][T16929] R13: 00000000016afb7f R14: 00007f7ad6bc99c0 R15: 000000000119bf8c [ 766.910582][T16929] Uninit was stored to memory at: [ 766.915625][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 766.921349][T16929] __msan_chain_origin+0x57/0xa0 [ 766.926293][T16929] do_recvmmsg+0x17ee/0x2300 [ 766.930915][T16929] __se_sys_recvmmsg+0x247/0x410 [ 766.935860][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 766.940720][T16929] do_syscall_64+0x9f/0x140 [ 766.945236][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 766.951119][T16929] [ 766.953447][T16929] Uninit was stored to memory at: [ 766.958495][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 766.964220][T16929] __msan_chain_origin+0x57/0xa0 [ 766.969163][T16929] do_recvmmsg+0x17ee/0x2300 [ 766.973767][T16929] __se_sys_recvmmsg+0x247/0x410 [ 766.978708][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 766.983566][T16929] do_syscall_64+0x9f/0x140 [ 766.988071][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 766.993948][T16929] [ 766.996270][T16929] Uninit was stored to memory at: [ 767.001305][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 767.007027][T16929] __msan_chain_origin+0x57/0xa0 [ 767.011969][T16929] do_recvmmsg+0x17ee/0x2300 [ 767.016566][T16929] __se_sys_recvmmsg+0x247/0x410 [ 767.021509][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 767.026366][T16929] do_syscall_64+0x9f/0x140 [ 767.030876][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 767.036756][T16929] [ 767.039079][T16929] Uninit was stored to memory at: [ 767.044111][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 767.049834][T16929] __msan_chain_origin+0x57/0xa0 [ 767.054778][T16929] do_recvmmsg+0x17ee/0x2300 [ 767.059370][T16929] __se_sys_recvmmsg+0x247/0x410 [ 767.064308][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 767.069163][T16929] do_syscall_64+0x9f/0x140 [ 767.073666][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 767.079545][T16929] [ 767.081874][T16929] Uninit was stored to memory at: [ 767.086909][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 767.092630][T16929] __msan_chain_origin+0x57/0xa0 [ 767.097572][T16929] do_recvmmsg+0x17ee/0x2300 [ 767.102160][T16929] __se_sys_recvmmsg+0x247/0x410 [ 767.107095][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 767.112034][T16929] do_syscall_64+0x9f/0x140 [ 767.116537][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 767.122421][T16929] [ 767.124742][T16929] Uninit was stored to memory at: [ 767.129773][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 767.135491][T16929] __msan_chain_origin+0x57/0xa0 [ 767.140432][T16929] do_recvmmsg+0x17ee/0x2300 [ 767.145027][T16929] __se_sys_recvmmsg+0x247/0x410 [ 767.149965][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 767.154818][T16929] do_syscall_64+0x9f/0x140 [ 767.159322][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 767.165201][T16929] [ 767.167522][T16929] Uninit was stored to memory at: [ 767.172577][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 767.178293][T16929] __msan_chain_origin+0x57/0xa0 [ 767.183232][T16929] do_recvmmsg+0x17ee/0x2300 [ 767.187820][T16929] __se_sys_recvmmsg+0x247/0x410 [ 767.192757][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 767.197611][T16929] do_syscall_64+0x9f/0x140 [ 767.202118][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 767.208001][T16929] [ 767.210323][T16929] Local variable ----msg_sys@do_recvmmsg created at: [ 767.216996][T16929] do_recvmmsg+0xbc/0x2300 [ 767.221477][T16929] do_recvmmsg+0xbc/0x2300 [ 767.396306][T16931] not chained 850000 origins [ 767.400932][T16931] CPU: 1 PID: 16931 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 767.409687][T16931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 767.419739][T16931] Call Trace: [ 767.423041][T16931] dump_stack+0x21c/0x280 [ 767.427380][T16931] kmsan_internal_chain_origin+0x6f/0x130 [ 767.433103][T16931] ? __msan_get_context_state+0x9/0x20 [ 767.438567][T16931] ? kmsan_get_metadata+0x116/0x180 [ 767.443773][T16931] ? kmsan_internal_check_memory+0xb1/0x520 [ 767.449705][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 767.455340][T16931] ? kmsan_check_memory+0xd/0x10 [ 767.460278][T16931] ? ____sys_recvmsg+0xa2d/0xd80 [ 767.465217][T16931] ? __msan_get_context_state+0x9/0x20 [ 767.470941][T16931] ? kfree+0x29/0x11b0 [ 767.475016][T16931] ? kmsan_get_metadata+0x116/0x180 [ 767.480221][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 767.485862][T16931] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 767.491926][T16931] ? _copy_from_user+0x1cd/0x2d0 [ 767.496864][T16931] ? kmsan_get_metadata+0x116/0x180 [ 767.502093][T16931] __msan_chain_origin+0x57/0xa0 [ 767.507039][T16931] do_recvmmsg+0x17ee/0x2300 [ 767.511651][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 767.517293][T16931] ? __msan_poison_alloca+0xe9/0x110 [ 767.522586][T16931] ? __se_sys_recvmmsg+0xd3/0x410 [ 767.527617][T16931] __se_sys_recvmmsg+0x247/0x410 [ 767.532565][T16931] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 767.538380][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 767.543252][T16931] do_syscall_64+0x9f/0x140 [ 767.547759][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 767.553646][T16931] RIP: 0033:0x45e159 [ 767.557548][T16931] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 767.577185][T16931] RSP: 002b:00007f7ad6ba7c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 767.585610][T16931] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 767.593589][T16931] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 767.601562][T16931] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 767.609539][T16931] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 767.617536][T16931] R13: 00000000016afb7f R14: 00007f7ad6ba89c0 R15: 000000000119c034 [ 767.625527][T16931] Uninit was stored to memory at: [ 767.630566][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 767.636289][T16931] __msan_chain_origin+0x57/0xa0 [ 767.641231][T16931] do_recvmmsg+0x17ee/0x2300 [ 767.645829][T16931] __se_sys_recvmmsg+0x247/0x410 [ 767.650771][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 767.655628][T16931] do_syscall_64+0x9f/0x140 [ 767.660135][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 767.666015][T16931] [ 767.668356][T16931] Uninit was stored to memory at: [ 767.673392][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 767.679111][T16931] __msan_chain_origin+0x57/0xa0 [ 767.684053][T16931] do_recvmmsg+0x17ee/0x2300 [ 767.688644][T16931] __se_sys_recvmmsg+0x247/0x410 [ 767.693584][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 767.698440][T16931] do_syscall_64+0x9f/0x140 [ 767.702948][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 767.709257][T16931] [ 767.711576][T16931] Uninit was stored to memory at: [ 767.716610][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 767.722332][T16931] __msan_chain_origin+0x57/0xa0 [ 767.727277][T16931] do_recvmmsg+0x17ee/0x2300 [ 767.731868][T16931] __se_sys_recvmmsg+0x247/0x410 [ 767.736808][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 767.741662][T16931] do_syscall_64+0x9f/0x140 [ 767.746173][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 767.752052][T16931] [ 767.754372][T16931] Uninit was stored to memory at: [ 767.759404][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 767.765140][T16931] __msan_chain_origin+0x57/0xa0 [ 767.770094][T16931] do_recvmmsg+0x17ee/0x2300 [ 767.774688][T16931] __se_sys_recvmmsg+0x247/0x410 [ 767.779626][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 767.784481][T16931] do_syscall_64+0x9f/0x140 [ 767.788989][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 767.794867][T16931] [ 767.797188][T16931] Uninit was stored to memory at: [ 767.802219][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 767.807940][T16931] __msan_chain_origin+0x57/0xa0 [ 767.812877][T16931] do_recvmmsg+0x17ee/0x2300 [ 767.817466][T16931] __se_sys_recvmmsg+0x247/0x410 [ 767.822405][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 767.827261][T16931] do_syscall_64+0x9f/0x140 [ 767.831768][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 767.837645][T16931] [ 767.839963][T16931] Uninit was stored to memory at: [ 767.844992][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 767.850713][T16931] __msan_chain_origin+0x57/0xa0 [ 767.855654][T16931] do_recvmmsg+0x17ee/0x2300 [ 767.860245][T16931] __se_sys_recvmmsg+0x247/0x410 [ 767.865183][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 767.870039][T16931] do_syscall_64+0x9f/0x140 [ 767.874546][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 767.880426][T16931] [ 767.882744][T16931] Uninit was stored to memory at: [ 767.887775][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 767.893499][T16931] __msan_chain_origin+0x57/0xa0 [ 767.898441][T16931] do_recvmmsg+0x17ee/0x2300 [ 767.903058][T16931] __se_sys_recvmmsg+0x247/0x410 [ 767.907998][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 767.912855][T16931] do_syscall_64+0x9f/0x140 [ 767.917357][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 767.923233][T16931] [ 767.925555][T16931] Local variable ----msg_sys@do_recvmmsg created at: [ 767.932239][T16931] do_recvmmsg+0xbc/0x2300 [ 767.936659][T16931] do_recvmmsg+0xbc/0x2300 [ 768.209090][T16887] not chained 860000 origins [ 768.213724][T16887] CPU: 1 PID: 16887 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 768.222479][T16887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 768.232534][T16887] Call Trace: [ 768.235835][T16887] dump_stack+0x21c/0x280 [ 768.240181][T16887] kmsan_internal_chain_origin+0x6f/0x130 [ 768.245913][T16887] ? __msan_get_context_state+0x9/0x20 [ 768.251370][T16887] ? kmsan_get_metadata+0x116/0x180 [ 768.256578][T16887] ? kmsan_internal_check_memory+0xb1/0x520 [ 768.262479][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 768.268118][T16887] ? kmsan_check_memory+0xd/0x10 [ 768.273062][T16887] ? ____sys_recvmsg+0xa2d/0xd80 [ 768.277999][T16887] ? __msan_get_context_state+0x9/0x20 [ 768.283462][T16887] ? kfree+0x29/0x11b0 [ 768.287528][T16887] ? kmsan_get_metadata+0x116/0x180 [ 768.292731][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 768.298371][T16887] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 768.304443][T16887] ? _copy_from_user+0x1cd/0x2d0 [ 768.309382][T16887] ? kmsan_get_metadata+0x116/0x180 [ 768.314586][T16887] __msan_chain_origin+0x57/0xa0 [ 768.319526][T16887] do_recvmmsg+0x17ee/0x2300 [ 768.324134][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 768.329777][T16887] ? __msan_poison_alloca+0xe9/0x110 [ 768.335074][T16887] ? __se_sys_recvmmsg+0xd3/0x410 [ 768.340100][T16887] __se_sys_recvmmsg+0x247/0x410 [ 768.345047][T16887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 768.350867][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 768.355726][T16887] do_syscall_64+0x9f/0x140 [ 768.360234][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 768.366126][T16887] RIP: 0033:0x45e159 [ 768.370029][T16887] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 768.389657][T16887] RSP: 002b:00007f92e7375c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 768.398089][T16887] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 768.406075][T16887] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 768.414056][T16887] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 768.422028][T16887] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 768.430006][T16887] R13: 00000000016afb7f R14: 00007f92e73769c0 R15: 000000000119bf8c [ 768.437982][T16887] Uninit was stored to memory at: [ 768.443018][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 768.448868][T16887] __msan_chain_origin+0x57/0xa0 [ 768.453808][T16887] do_recvmmsg+0x17ee/0x2300 [ 768.458400][T16887] __se_sys_recvmmsg+0x247/0x410 [ 768.463341][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 768.468195][T16887] do_syscall_64+0x9f/0x140 [ 768.472700][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 768.478570][T16887] [ 768.480877][T16887] Uninit was stored to memory at: [ 768.485896][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 768.491601][T16887] __msan_chain_origin+0x57/0xa0 [ 768.496528][T16887] do_recvmmsg+0x17ee/0x2300 [ 768.501107][T16887] __se_sys_recvmmsg+0x247/0x410 [ 768.506047][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 768.510910][T16887] do_syscall_64+0x9f/0x140 [ 768.515402][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 768.521384][T16887] [ 768.523704][T16887] Uninit was stored to memory at: [ 768.528733][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 768.534448][T16887] __msan_chain_origin+0x57/0xa0 [ 768.539377][T16887] do_recvmmsg+0x17ee/0x2300 [ 768.543962][T16887] __se_sys_recvmmsg+0x247/0x410 [ 768.548889][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 768.553735][T16887] do_syscall_64+0x9f/0x140 [ 768.558230][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 768.564099][T16887] [ 768.566410][T16887] Uninit was stored to memory at: [ 768.571431][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 768.577140][T16887] __msan_chain_origin+0x57/0xa0 [ 768.582070][T16887] do_recvmmsg+0x17ee/0x2300 [ 768.586647][T16887] __se_sys_recvmmsg+0x247/0x410 [ 768.591574][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 768.596415][T16887] do_syscall_64+0x9f/0x140 [ 768.600925][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 768.606798][T16887] [ 768.609106][T16887] Uninit was stored to memory at: [ 768.614124][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 768.619829][T16887] __msan_chain_origin+0x57/0xa0 [ 768.624756][T16887] do_recvmmsg+0x17ee/0x2300 [ 768.629335][T16887] __se_sys_recvmmsg+0x247/0x410 [ 768.634260][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 768.639100][T16887] do_syscall_64+0x9f/0x140 [ 768.643603][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 768.649475][T16887] [ 768.651872][T16887] Uninit was stored to memory at: [ 768.656906][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 768.662621][T16887] __msan_chain_origin+0x57/0xa0 [ 768.667559][T16887] do_recvmmsg+0x17ee/0x2300 [ 768.672145][T16887] __se_sys_recvmmsg+0x247/0x410 [ 768.677077][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 768.681919][T16887] do_syscall_64+0x9f/0x140 [ 768.686417][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 768.692290][T16887] [ 768.694603][T16887] Uninit was stored to memory at: [ 768.699637][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 768.705353][T16887] __msan_chain_origin+0x57/0xa0 [ 768.710295][T16887] do_recvmmsg+0x17ee/0x2300 [ 768.714875][T16887] __se_sys_recvmmsg+0x247/0x410 [ 768.719802][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 768.724641][T16887] do_syscall_64+0x9f/0x140 [ 768.729139][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 768.735011][T16887] [ 768.737325][T16887] Local variable ----msg_sys@do_recvmmsg created at: [ 768.743985][T16887] do_recvmmsg+0xbc/0x2300 [ 768.748390][T16887] do_recvmmsg+0xbc/0x2300 [ 769.058888][T16931] not chained 870000 origins [ 769.063502][T16931] CPU: 1 PID: 16931 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 769.072263][T16931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 769.082319][T16931] Call Trace: [ 769.085615][T16931] dump_stack+0x21c/0x280 [ 769.089960][T16931] kmsan_internal_chain_origin+0x6f/0x130 [ 769.095681][T16931] ? __msan_get_context_state+0x9/0x20 [ 769.101139][T16931] ? kmsan_get_metadata+0x116/0x180 [ 769.106346][T16931] ? kmsan_internal_check_memory+0xb1/0x520 [ 769.112246][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 769.117882][T16931] ? kmsan_check_memory+0xd/0x10 [ 769.122828][T16931] ? ____sys_recvmsg+0xa2d/0xd80 [ 769.127771][T16931] ? __msan_get_context_state+0x9/0x20 [ 769.133231][T16931] ? kfree+0x29/0x11b0 [ 769.137299][T16931] ? kmsan_get_metadata+0x116/0x180 [ 769.142503][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 769.148416][T16931] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 769.154491][T16931] ? _copy_from_user+0x1cd/0x2d0 [ 769.159428][T16931] ? kmsan_get_metadata+0x116/0x180 [ 769.164629][T16931] __msan_chain_origin+0x57/0xa0 [ 769.169587][T16931] do_recvmmsg+0x17ee/0x2300 [ 769.174200][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 769.179832][T16931] ? __msan_poison_alloca+0xe9/0x110 [ 769.185140][T16931] ? __se_sys_recvmmsg+0xd3/0x410 [ 769.190170][T16931] __se_sys_recvmmsg+0x247/0x410 [ 769.195109][T16931] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 769.200967][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 769.205827][T16931] do_syscall_64+0x9f/0x140 [ 769.210382][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 769.216272][T16931] RIP: 0033:0x45e159 [ 769.220174][T16931] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 769.239787][T16931] RSP: 002b:00007f7ad6ba7c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 769.248212][T16931] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 769.256190][T16931] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 769.264948][T16931] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 769.272926][T16931] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 769.280903][T16931] R13: 00000000016afb7f R14: 00007f7ad6ba89c0 R15: 000000000119c034 [ 769.288875][T16931] Uninit was stored to memory at: [ 769.293911][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 769.299629][T16931] __msan_chain_origin+0x57/0xa0 [ 769.304573][T16931] do_recvmmsg+0x17ee/0x2300 [ 769.309166][T16931] __se_sys_recvmmsg+0x247/0x410 [ 769.314108][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 769.318967][T16931] do_syscall_64+0x9f/0x140 [ 769.323478][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 769.329359][T16931] [ 769.331679][T16931] Uninit was stored to memory at: [ 769.336714][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 769.342434][T16931] __msan_chain_origin+0x57/0xa0 [ 769.347373][T16931] do_recvmmsg+0x17ee/0x2300 [ 769.351987][T16931] __se_sys_recvmmsg+0x247/0x410 [ 769.356928][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 769.361782][T16931] do_syscall_64+0x9f/0x140 [ 769.366291][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 769.372169][T16931] [ 769.374488][T16931] Uninit was stored to memory at: [ 769.379518][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 769.385243][T16931] __msan_chain_origin+0x57/0xa0 [ 769.390183][T16931] do_recvmmsg+0x17ee/0x2300 [ 769.394786][T16931] __se_sys_recvmmsg+0x247/0x410 [ 769.399724][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 769.404583][T16931] do_syscall_64+0x9f/0x140 [ 769.409089][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 769.414967][T16931] [ 769.417292][T16931] Uninit was stored to memory at: [ 769.422324][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 769.428045][T16931] __msan_chain_origin+0x57/0xa0 [ 769.432987][T16931] do_recvmmsg+0x17ee/0x2300 [ 769.437581][T16931] __se_sys_recvmmsg+0x247/0x410 [ 769.442523][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 769.447382][T16931] do_syscall_64+0x9f/0x140 [ 769.451884][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 769.457764][T16931] [ 769.460085][T16931] Uninit was stored to memory at: [ 769.465120][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 769.470854][T16931] __msan_chain_origin+0x57/0xa0 [ 769.475799][T16931] do_recvmmsg+0x17ee/0x2300 [ 769.480394][T16931] __se_sys_recvmmsg+0x247/0x410 [ 769.485334][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 769.490190][T16931] do_syscall_64+0x9f/0x140 [ 769.494697][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 769.500577][T16931] [ 769.502897][T16931] Uninit was stored to memory at: [ 769.507931][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 769.513651][T16931] __msan_chain_origin+0x57/0xa0 [ 769.518596][T16931] do_recvmmsg+0x17ee/0x2300 [ 769.523188][T16931] __se_sys_recvmmsg+0x247/0x410 [ 769.528144][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 769.533006][T16931] do_syscall_64+0x9f/0x140 [ 769.537519][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 769.543400][T16931] [ 769.545724][T16931] Uninit was stored to memory at: [ 769.550756][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 769.556475][T16931] __msan_chain_origin+0x57/0xa0 [ 769.561416][T16931] do_recvmmsg+0x17ee/0x2300 [ 769.566007][T16931] __se_sys_recvmmsg+0x247/0x410 [ 769.570971][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 769.575828][T16931] do_syscall_64+0x9f/0x140 [ 769.580333][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 769.586208][T16931] [ 769.588522][T16931] Local variable ----msg_sys@do_recvmmsg created at: [ 769.595187][T16931] do_recvmmsg+0xbc/0x2300 [ 769.599618][T16931] do_recvmmsg+0xbc/0x2300 [ 769.959512][T16887] not chained 880000 origins [ 769.964148][T16887] CPU: 1 PID: 16887 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 769.972901][T16887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 769.982951][T16887] Call Trace: [ 769.986251][T16887] dump_stack+0x21c/0x280 [ 769.990591][T16887] kmsan_internal_chain_origin+0x6f/0x130 [ 769.996339][T16887] ? __msan_get_context_state+0x9/0x20 [ 770.001797][T16887] ? kmsan_get_metadata+0x116/0x180 [ 770.007006][T16887] ? kmsan_internal_check_memory+0xb1/0x520 [ 770.012911][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 770.018540][T16887] ? kmsan_check_memory+0xd/0x10 [ 770.023479][T16887] ? ____sys_recvmsg+0xa2d/0xd80 [ 770.028418][T16887] ? __msan_get_context_state+0x9/0x20 [ 770.033874][T16887] ? kfree+0x29/0x11b0 [ 770.037939][T16887] ? kmsan_get_metadata+0x116/0x180 [ 770.043146][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 770.048781][T16887] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 770.054853][T16887] ? _copy_from_user+0x1cd/0x2d0 [ 770.059791][T16887] ? kmsan_get_metadata+0x116/0x180 [ 770.064988][T16887] __msan_chain_origin+0x57/0xa0 [ 770.069930][T16887] do_recvmmsg+0x17ee/0x2300 [ 770.074540][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 770.080177][T16887] ? __msan_poison_alloca+0xe9/0x110 [ 770.085492][T16887] ? __se_sys_recvmmsg+0xd3/0x410 [ 770.090518][T16887] __se_sys_recvmmsg+0x247/0x410 [ 770.095458][T16887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 770.101268][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 770.106126][T16887] do_syscall_64+0x9f/0x140 [ 770.110639][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 770.116530][T16887] RIP: 0033:0x45e159 [ 770.120428][T16887] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 770.140038][T16887] RSP: 002b:00007f92e7375c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 770.148461][T16887] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 770.156433][T16887] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 770.161785][T16891] not chained 890000 origins [ 770.164508][T16887] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 770.177107][T16887] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 770.185062][T16887] R13: 00000000016afb7f R14: 00007f92e73769c0 R15: 000000000119bf8c [ 770.193017][T16887] Uninit was stored to memory at: [ 770.193032][T16891] CPU: 0 PID: 16891 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 770.193049][T16891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 770.198059][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 770.206770][T16891] Call Trace: [ 770.216810][T16887] __msan_chain_origin+0x57/0xa0 [ 770.222502][T16891] dump_stack+0x21c/0x280 [ 770.225764][T16887] do_recvmmsg+0x17ee/0x2300 [ 770.230679][T16891] kmsan_internal_chain_origin+0x6f/0x130 [ 770.234977][T16887] __se_sys_recvmmsg+0x247/0x410 [ 770.239537][T16891] ? __msan_get_context_state+0x9/0x20 [ 770.245229][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 770.250136][T16891] ? kmsan_get_metadata+0x116/0x180 [ 770.255571][T16887] do_syscall_64+0x9f/0x140 [ 770.260394][T16891] ? kmsan_internal_check_memory+0xb1/0x520 [ 770.265561][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 770.270036][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 770.275884][T16887] [ 770.281760][T16891] ? kmsan_check_memory+0xd/0x10 [ 770.287352][T16887] Uninit was stored to memory at: [ 770.289669][T16891] ? ____sys_recvmsg+0xa2d/0xd80 [ 770.294582][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 770.299574][T16891] ? __msan_get_context_state+0x9/0x20 [ 770.304482][T16887] __msan_chain_origin+0x57/0xa0 [ 770.310190][T16891] ? kfree+0x29/0x11b0 [ 770.315629][T16887] do_recvmmsg+0x17ee/0x2300 [ 770.320548][T16891] ? kmsan_get_metadata+0x116/0x180 [ 770.324589][T16887] __se_sys_recvmmsg+0x247/0x410 [ 770.329153][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 770.334323][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 770.339238][T16891] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 770.344838][T16887] do_syscall_64+0x9f/0x140 [ 770.349659][T16891] ? _copy_from_user+0x1cd/0x2d0 [ 770.355699][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 770.360173][T16891] ? kmsan_get_metadata+0x116/0x180 [ 770.365084][T16887] [ 770.370958][T16891] __msan_chain_origin+0x57/0xa0 [ 770.376116][T16887] Uninit was stored to memory at: [ 770.378432][T16891] do_recvmmsg+0x17ee/0x2300 [ 770.383345][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 770.388346][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 770.392903][T16887] __msan_chain_origin+0x57/0xa0 [ 770.398594][T16891] ? __msan_poison_alloca+0xe9/0x110 [ 770.404199][T16887] do_recvmmsg+0x17ee/0x2300 [ 770.409109][T16891] ? __se_sys_recvmmsg+0xd3/0x410 [ 770.414379][T16887] __se_sys_recvmmsg+0x247/0x410 [ 770.418942][T16891] __se_sys_recvmmsg+0x247/0x410 [ 770.423936][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 770.428845][T16891] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 770.433756][T16887] do_syscall_64+0x9f/0x140 [ 770.438579][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 770.444358][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 770.448875][T16891] do_syscall_64+0x9f/0x140 [ 770.453684][T16887] [ 770.459561][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 770.464024][T16887] Uninit was stored to memory at: [ 770.466350][T16891] RIP: 0033:0x45e159 [ 770.472223][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 770.477217][T16891] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 770.481082][T16887] __msan_chain_origin+0x57/0xa0 [ 770.486788][T16891] RSP: 002b:00007f92e7354c68 EFLAGS: 00000246 [ 770.506386][T16887] do_recvmmsg+0x17ee/0x2300 [ 770.511298][T16891] ORIG_RAX: 000000000000012b [ 770.517351][T16887] __se_sys_recvmmsg+0x247/0x410 [ 770.521906][T16891] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 770.526563][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 770.526593][T16887] do_syscall_64+0x9f/0x140 [ 770.531503][T16891] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 770.539479][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 770.544298][T16891] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 770.548765][T16887] [ 770.556723][T16891] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 770.562593][T16887] Uninit was stored to memory at: [ 770.570553][T16891] R13: 00000000016afb7f R14: 00007f92e73559c0 R15: 000000000119c034 [ 770.570568][T16891] Uninit was stored to memory at: [ 770.572890][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 770.580849][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 770.585841][T16887] __msan_chain_origin+0x57/0xa0 [ 770.593788][T16891] __msan_chain_origin+0x57/0xa0 [ 770.598785][T16887] do_recvmmsg+0x17ee/0x2300 [ 770.604475][T16891] do_recvmmsg+0x17ee/0x2300 [ 770.610167][T16887] __se_sys_recvmmsg+0x247/0x410 [ 770.615077][T16891] __se_sys_recvmmsg+0x247/0x410 [ 770.619986][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 770.624601][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 770.629165][T16887] do_syscall_64+0x9f/0x140 [ 770.634076][T16891] do_syscall_64+0x9f/0x140 [ 770.638984][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 770.643807][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 770.648626][T16887] [ 770.653099][T16891] [ 770.657573][T16887] Uninit was stored to memory at: [ 770.663433][T16891] Uninit was stored to memory at: [ 770.669310][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 770.671628][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 770.673929][T16887] __msan_chain_origin+0x57/0xa0 [ 770.678924][T16891] __msan_chain_origin+0x57/0xa0 [ 770.683943][T16887] do_recvmmsg+0x17ee/0x2300 [ 770.689655][T16891] do_recvmmsg+0x17ee/0x2300 [ 770.695368][T16887] __se_sys_recvmmsg+0x247/0x410 [ 770.700281][T16891] __se_sys_recvmmsg+0x247/0x410 [ 770.705195][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 770.709759][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 770.714328][T16887] do_syscall_64+0x9f/0x140 [ 770.719236][T16891] do_syscall_64+0x9f/0x140 [ 770.724148][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 770.728972][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 770.733782][T16887] [ 770.738254][T16891] [ 770.742730][T16887] Uninit was stored to memory at: [ 770.748592][T16891] Uninit was stored to memory at: [ 770.754732][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 770.757034][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 770.759335][T16887] __msan_chain_origin+0x57/0xa0 [ 770.764331][T16891] __msan_chain_origin+0x57/0xa0 [ 770.769329][T16887] do_recvmmsg+0x17ee/0x2300 [ 770.775019][T16891] do_recvmmsg+0x17ee/0x2300 [ 770.780710][T16887] __se_sys_recvmmsg+0x247/0x410 [ 770.785617][T16891] __se_sys_recvmmsg+0x247/0x410 [ 770.790531][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 770.795094][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 770.799675][T16887] do_syscall_64+0x9f/0x140 [ 770.804596][T16891] do_syscall_64+0x9f/0x140 [ 770.809506][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 770.814332][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 770.819145][T16887] [ 770.823617][T16891] [ 770.828094][T16887] Local variable ----msg_sys@do_recvmmsg created at: [ 770.833954][T16891] Uninit was stored to memory at: [ 770.839827][T16887] do_recvmmsg+0xbc/0x2300 [ 770.842138][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 770.844442][T16887] do_recvmmsg+0xbc/0x2300 [ 770.851086][T16891] __msan_chain_origin+0x57/0xa0 [ 770.875585][T16891] do_recvmmsg+0x17ee/0x2300 [ 770.880238][T16891] __se_sys_recvmmsg+0x247/0x410 [ 770.885181][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 770.890034][T16891] do_syscall_64+0x9f/0x140 [ 770.894540][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 770.900419][T16891] [ 770.902740][T16891] Uninit was stored to memory at: [ 770.907771][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 770.913490][T16891] __msan_chain_origin+0x57/0xa0 [ 770.918429][T16891] do_recvmmsg+0x17ee/0x2300 [ 770.923018][T16891] __se_sys_recvmmsg+0x247/0x410 [ 770.927957][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 770.932812][T16891] do_syscall_64+0x9f/0x140 [ 770.937320][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 770.943200][T16891] [ 770.945519][T16891] Uninit was stored to memory at: [ 770.950551][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 770.956269][T16891] __msan_chain_origin+0x57/0xa0 [ 770.961209][T16891] do_recvmmsg+0x17ee/0x2300 [ 770.965802][T16891] __se_sys_recvmmsg+0x247/0x410 [ 770.970743][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 770.975598][T16891] do_syscall_64+0x9f/0x140 [ 770.980106][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 770.985981][T16891] [ 770.988303][T16891] Uninit was stored to memory at: [ 770.993338][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 770.999058][T16891] __msan_chain_origin+0x57/0xa0 [ 771.003998][T16891] do_recvmmsg+0x17ee/0x2300 [ 771.008590][T16891] __se_sys_recvmmsg+0x247/0x410 [ 771.013532][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 771.018389][T16891] do_syscall_64+0x9f/0x140 [ 771.022901][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 771.028779][T16891] [ 771.031103][T16891] Local variable ----msg_sys@do_recvmmsg created at: [ 771.037774][T16891] do_recvmmsg+0xbc/0x2300 [ 771.042189][T16891] do_recvmmsg+0xbc/0x2300 [ 771.287360][T16931] not chained 900000 origins [ 771.291999][T16931] CPU: 0 PID: 16931 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 771.300749][T16931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 771.310800][T16931] Call Trace: [ 771.314097][T16931] dump_stack+0x21c/0x280 [ 771.318439][T16931] kmsan_internal_chain_origin+0x6f/0x130 [ 771.324159][T16931] ? __msan_get_context_state+0x9/0x20 [ 771.329625][T16931] ? kmsan_get_metadata+0x116/0x180 [ 771.334836][T16931] ? kmsan_internal_check_memory+0xb1/0x520 [ 771.340737][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 771.346372][T16931] ? kmsan_check_memory+0xd/0x10 [ 771.351362][T16931] ? ____sys_recvmsg+0xa2d/0xd80 [ 771.356299][T16931] ? __msan_get_context_state+0x9/0x20 [ 771.361755][T16931] ? kfree+0x29/0x11b0 [ 771.365823][T16931] ? kmsan_get_metadata+0x116/0x180 [ 771.371063][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 771.376714][T16931] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 771.382783][T16931] ? _copy_from_user+0x1cd/0x2d0 [ 771.387720][T16931] ? kmsan_get_metadata+0x116/0x180 [ 771.392917][T16931] __msan_chain_origin+0x57/0xa0 [ 771.397855][T16931] do_recvmmsg+0x17ee/0x2300 [ 771.402459][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 771.408090][T16931] ? __msan_poison_alloca+0xe9/0x110 [ 771.413382][T16931] ? __se_sys_recvmmsg+0xd3/0x410 [ 771.418410][T16931] __se_sys_recvmmsg+0x247/0x410 [ 771.423347][T16931] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 771.429155][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 771.434010][T16931] do_syscall_64+0x9f/0x140 [ 771.438520][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 771.444406][T16931] RIP: 0033:0x45e159 [ 771.448306][T16931] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 771.468057][T16931] RSP: 002b:00007f7ad6ba7c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 771.476475][T16931] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 771.484474][T16931] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 771.492449][T16931] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 771.500424][T16931] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 771.508403][T16931] R13: 00000000016afb7f R14: 00007f7ad6ba89c0 R15: 000000000119c034 [ 771.516400][T16931] Uninit was stored to memory at: [ 771.521437][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 771.527159][T16931] __msan_chain_origin+0x57/0xa0 [ 771.532100][T16931] do_recvmmsg+0x17ee/0x2300 [ 771.536694][T16931] __se_sys_recvmmsg+0x247/0x410 [ 771.541638][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 771.546491][T16931] do_syscall_64+0x9f/0x140 [ 771.550996][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 771.556873][T16931] [ 771.559191][T16931] Uninit was stored to memory at: [ 771.564220][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 771.569937][T16931] __msan_chain_origin+0x57/0xa0 [ 771.574875][T16931] do_recvmmsg+0x17ee/0x2300 [ 771.579534][T16931] __se_sys_recvmmsg+0x247/0x410 [ 771.584502][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 771.589796][T16931] do_syscall_64+0x9f/0x140 [ 771.594348][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 771.600245][T16931] [ 771.602564][T16931] Uninit was stored to memory at: [ 771.607594][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 771.613312][T16931] __msan_chain_origin+0x57/0xa0 [ 771.618251][T16931] do_recvmmsg+0x17ee/0x2300 [ 771.622845][T16931] __se_sys_recvmmsg+0x247/0x410 [ 771.627782][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 771.632640][T16931] do_syscall_64+0x9f/0x140 [ 771.637231][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 771.643113][T16931] [ 771.645437][T16931] Uninit was stored to memory at: [ 771.650469][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 771.656194][T16931] __msan_chain_origin+0x57/0xa0 [ 771.661145][T16931] do_recvmmsg+0x17ee/0x2300 [ 771.665850][T16931] __se_sys_recvmmsg+0x247/0x410 [ 771.670793][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 771.675649][T16931] do_syscall_64+0x9f/0x140 [ 771.680220][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 771.686104][T16931] [ 771.688424][T16931] Uninit was stored to memory at: [ 771.693456][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 771.699183][T16931] __msan_chain_origin+0x57/0xa0 [ 771.704121][T16931] do_recvmmsg+0x17ee/0x2300 [ 771.708714][T16931] __se_sys_recvmmsg+0x247/0x410 [ 771.713653][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 771.718510][T16931] do_syscall_64+0x9f/0x140 [ 771.723014][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 771.728892][T16931] [ 771.731213][T16931] Uninit was stored to memory at: [ 771.736255][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 771.741988][T16931] __msan_chain_origin+0x57/0xa0 [ 771.746933][T16931] do_recvmmsg+0x17ee/0x2300 [ 771.751526][T16931] __se_sys_recvmmsg+0x247/0x410 [ 771.756464][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 771.761316][T16931] do_syscall_64+0x9f/0x140 [ 771.765820][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 771.771700][T16931] [ 771.774023][T16931] Uninit was stored to memory at: [ 771.779054][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 771.784815][T16931] __msan_chain_origin+0x57/0xa0 [ 771.789756][T16931] do_recvmmsg+0x17ee/0x2300 [ 771.794349][T16931] __se_sys_recvmmsg+0x247/0x410 [ 771.799286][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 771.804138][T16931] do_syscall_64+0x9f/0x140 [ 771.808659][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 771.814623][T16931] [ 771.816944][T16931] Local variable ----msg_sys@do_recvmmsg created at: [ 771.823622][T16931] do_recvmmsg+0xbc/0x2300 [ 771.828036][T16931] do_recvmmsg+0xbc/0x2300 [ 772.036430][T16887] not chained 910000 origins [ 772.041057][T16887] CPU: 0 PID: 16887 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 772.049812][T16887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 772.059865][T16887] Call Trace: [ 772.063178][T16887] dump_stack+0x21c/0x280 [ 772.067521][T16887] kmsan_internal_chain_origin+0x6f/0x130 [ 772.073240][T16887] ? __msan_get_context_state+0x9/0x20 [ 772.078698][T16887] ? kmsan_get_metadata+0x116/0x180 [ 772.083902][T16887] ? kmsan_internal_check_memory+0xb1/0x520 [ 772.089817][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 772.095455][T16887] ? kmsan_check_memory+0xd/0x10 [ 772.100393][T16887] ? ____sys_recvmsg+0xa2d/0xd80 [ 772.105330][T16887] ? __msan_get_context_state+0x9/0x20 [ 772.110792][T16887] ? kfree+0x29/0x11b0 [ 772.114863][T16887] ? kmsan_get_metadata+0x116/0x180 [ 772.120067][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 772.125706][T16887] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 772.131815][T16887] ? _copy_from_user+0x1cd/0x2d0 [ 772.136753][T16887] ? kmsan_get_metadata+0x116/0x180 [ 772.141949][T16887] __msan_chain_origin+0x57/0xa0 [ 772.147414][T16887] do_recvmmsg+0x17ee/0x2300 [ 772.152021][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 772.157659][T16887] ? __msan_poison_alloca+0xe9/0x110 [ 772.162949][T16887] ? __se_sys_recvmmsg+0xd3/0x410 [ 772.167976][T16887] __se_sys_recvmmsg+0x247/0x410 [ 772.172914][T16887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 772.178726][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 772.183582][T16887] do_syscall_64+0x9f/0x140 [ 772.188088][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 772.193979][T16887] RIP: 0033:0x45e159 [ 772.200221][T16887] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 772.219827][T16887] RSP: 002b:00007f92e7375c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 772.228244][T16887] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 772.236215][T16887] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 772.245316][T16887] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 772.253286][T16887] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 772.261260][T16887] R13: 00000000016afb7f R14: 00007f92e73769c0 R15: 000000000119bf8c [ 772.269231][T16887] Uninit was stored to memory at: [ 772.274267][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 772.279986][T16887] __msan_chain_origin+0x57/0xa0 [ 772.284946][T16887] do_recvmmsg+0x17ee/0x2300 [ 772.289536][T16887] __se_sys_recvmmsg+0x247/0x410 [ 772.294473][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 772.299326][T16887] do_syscall_64+0x9f/0x140 [ 772.304435][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 772.310314][T16887] [ 772.312632][T16887] Uninit was stored to memory at: [ 772.317663][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 772.323380][T16887] __msan_chain_origin+0x57/0xa0 [ 772.328319][T16887] do_recvmmsg+0x17ee/0x2300 [ 772.332913][T16887] __se_sys_recvmmsg+0x247/0x410 [ 772.337848][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 772.342700][T16887] do_syscall_64+0x9f/0x140 [ 772.347638][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 772.353517][T16887] [ 772.355834][T16887] Uninit was stored to memory at: [ 772.360867][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 772.366587][T16887] __msan_chain_origin+0x57/0xa0 [ 772.371525][T16887] do_recvmmsg+0x17ee/0x2300 [ 772.376115][T16887] __se_sys_recvmmsg+0x247/0x410 [ 772.381057][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 772.385907][T16887] do_syscall_64+0x9f/0x140 [ 772.390409][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 772.396286][T16887] [ 772.398605][T16887] Uninit was stored to memory at: [ 772.403634][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 772.409443][T16887] __msan_chain_origin+0x57/0xa0 [ 772.414383][T16887] do_recvmmsg+0x17ee/0x2300 [ 772.418970][T16887] __se_sys_recvmmsg+0x247/0x410 [ 772.423919][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 772.428770][T16887] do_syscall_64+0x9f/0x140 [ 772.433272][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 772.439152][T16887] [ 772.441471][T16887] Uninit was stored to memory at: [ 772.446504][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 772.452221][T16887] __msan_chain_origin+0x57/0xa0 [ 772.457185][T16887] do_recvmmsg+0x17ee/0x2300 [ 772.461780][T16887] __se_sys_recvmmsg+0x247/0x410 [ 772.466746][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 772.471600][T16887] do_syscall_64+0x9f/0x140 [ 772.476106][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 772.481992][T16887] [ 772.484322][T16887] Uninit was stored to memory at: [ 772.489366][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 772.495086][T16887] __msan_chain_origin+0x57/0xa0 [ 772.500024][T16887] do_recvmmsg+0x17ee/0x2300 [ 772.504618][T16887] __se_sys_recvmmsg+0x247/0x410 [ 772.509658][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 772.514511][T16887] do_syscall_64+0x9f/0x140 [ 772.519027][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 772.524910][T16887] [ 772.527230][T16887] Uninit was stored to memory at: [ 772.532265][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 772.537982][T16887] __msan_chain_origin+0x57/0xa0 [ 772.542922][T16887] do_recvmmsg+0x17ee/0x2300 [ 772.547513][T16887] __se_sys_recvmmsg+0x247/0x410 [ 772.552455][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 772.557308][T16887] do_syscall_64+0x9f/0x140 [ 772.561812][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 772.567693][T16887] [ 772.570018][T16887] Local variable ----msg_sys@do_recvmmsg created at: [ 772.576691][T16887] do_recvmmsg+0xbc/0x2300 [ 772.581108][T16887] do_recvmmsg+0xbc/0x2300 [ 772.835580][T16929] not chained 920000 origins [ 772.840207][T16929] CPU: 0 PID: 16929 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 772.848962][T16929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 772.859020][T16929] Call Trace: [ 772.862318][T16929] dump_stack+0x21c/0x280 [ 772.866658][T16929] kmsan_internal_chain_origin+0x6f/0x130 [ 772.872380][T16929] ? __msan_get_context_state+0x9/0x20 [ 772.877841][T16929] ? kmsan_get_metadata+0x116/0x180 [ 772.883077][T16929] ? kmsan_internal_check_memory+0xb1/0x520 [ 772.888978][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 772.894614][T16929] ? kmsan_check_memory+0xd/0x10 [ 772.899990][T16929] ? ____sys_recvmsg+0xa2d/0xd80 [ 772.904926][T16929] ? __msan_get_context_state+0x9/0x20 [ 772.910385][T16929] ? kfree+0x29/0x11b0 [ 772.914453][T16929] ? kmsan_get_metadata+0x116/0x180 [ 772.919656][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 772.925297][T16929] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 772.931366][T16929] ? _copy_from_user+0x1cd/0x2d0 [ 772.936304][T16929] ? kmsan_get_metadata+0x116/0x180 [ 772.941501][T16929] __msan_chain_origin+0x57/0xa0 [ 772.946444][T16929] do_recvmmsg+0x17ee/0x2300 [ 772.951052][T16929] ? kmsan_internal_set_origin+0x85/0xc0 [ 772.956685][T16929] ? __msan_poison_alloca+0xe9/0x110 [ 772.961996][T16929] ? __se_sys_recvmmsg+0xd3/0x410 [ 772.967026][T16929] __se_sys_recvmmsg+0x247/0x410 [ 772.971972][T16929] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 772.977787][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 772.982728][T16929] do_syscall_64+0x9f/0x140 [ 772.987237][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 772.993127][T16929] RIP: 0033:0x45e159 [ 772.997022][T16929] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 773.016631][T16929] RSP: 002b:00007f7ad6bc8c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 773.025047][T16929] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 773.033045][T16929] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 773.041017][T16929] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 773.048986][T16929] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 773.057003][T16929] R13: 00000000016afb7f R14: 00007f7ad6bc99c0 R15: 000000000119bf8c [ 773.064990][T16929] Uninit was stored to memory at: [ 773.070065][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 773.075790][T16929] __msan_chain_origin+0x57/0xa0 [ 773.081597][T16929] do_recvmmsg+0x17ee/0x2300 [ 773.086188][T16929] __se_sys_recvmmsg+0x247/0x410 [ 773.091128][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 773.095982][T16929] do_syscall_64+0x9f/0x140 [ 773.100485][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 773.106364][T16929] [ 773.108684][T16929] Uninit was stored to memory at: [ 773.113718][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 773.119432][T16929] __msan_chain_origin+0x57/0xa0 [ 773.124373][T16929] do_recvmmsg+0x17ee/0x2300 [ 773.128964][T16929] __se_sys_recvmmsg+0x247/0x410 [ 773.133903][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 773.138756][T16929] do_syscall_64+0x9f/0x140 [ 773.143259][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 773.149135][T16929] [ 773.151455][T16929] Uninit was stored to memory at: [ 773.156487][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 773.162199][T16929] __msan_chain_origin+0x57/0xa0 [ 773.167134][T16929] do_recvmmsg+0x17ee/0x2300 [ 773.171740][T16929] __se_sys_recvmmsg+0x247/0x410 [ 773.176680][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 773.181531][T16929] do_syscall_64+0x9f/0x140 [ 773.186056][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 773.191936][T16929] [ 773.194255][T16929] Uninit was stored to memory at: [ 773.199284][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 773.205073][T16929] __msan_chain_origin+0x57/0xa0 [ 773.210045][T16929] do_recvmmsg+0x17ee/0x2300 [ 773.214744][T16929] __se_sys_recvmmsg+0x247/0x410 [ 773.219678][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 773.224533][T16929] do_syscall_64+0x9f/0x140 [ 773.229043][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 773.234920][T16929] [ 773.237239][T16929] Uninit was stored to memory at: [ 773.242268][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 773.248002][T16929] __msan_chain_origin+0x57/0xa0 [ 773.252938][T16929] do_recvmmsg+0x17ee/0x2300 [ 773.257525][T16929] __se_sys_recvmmsg+0x247/0x410 [ 773.262462][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 773.267314][T16929] do_syscall_64+0x9f/0x140 [ 773.271819][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 773.277695][T16929] [ 773.280020][T16929] Uninit was stored to memory at: [ 773.285658][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 773.291373][T16929] __msan_chain_origin+0x57/0xa0 [ 773.296314][T16929] do_recvmmsg+0x17ee/0x2300 [ 773.300909][T16929] __se_sys_recvmmsg+0x247/0x410 [ 773.305934][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 773.310784][T16929] do_syscall_64+0x9f/0x140 [ 773.315289][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 773.321169][T16929] [ 773.323494][T16929] Uninit was stored to memory at: [ 773.328523][T16929] kmsan_internal_chain_origin+0xad/0x130 [ 773.334247][T16929] __msan_chain_origin+0x57/0xa0 [ 773.339186][T16929] do_recvmmsg+0x17ee/0x2300 [ 773.343776][T16929] __se_sys_recvmmsg+0x247/0x410 [ 773.348714][T16929] __x64_sys_recvmmsg+0x62/0x80 [ 773.353566][T16929] do_syscall_64+0x9f/0x140 [ 773.358126][T16929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 773.364003][T16929] [ 773.366325][T16929] Local variable ----msg_sys@do_recvmmsg created at: [ 773.368440][T16931] not chained 930000 origins [ 773.372997][T16929] do_recvmmsg+0xbc/0x2300 [ 773.377568][T16931] CPU: 1 PID: 16931 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 773.381957][T16929] do_recvmmsg+0xbc/0x2300 [ 773.390681][T16931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 773.405527][T16931] Call Trace: [ 773.408814][T16931] dump_stack+0x21c/0x280 [ 773.413139][T16931] kmsan_internal_chain_origin+0x6f/0x130 [ 773.418846][T16931] ? __msan_get_context_state+0x9/0x20 [ 773.424294][T16931] ? kmsan_get_metadata+0x116/0x180 [ 773.429483][T16931] ? kmsan_internal_check_memory+0xb1/0x520 [ 773.435372][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 773.440994][T16931] ? kmsan_check_memory+0xd/0x10 [ 773.445922][T16931] ? ____sys_recvmsg+0xa2d/0xd80 [ 773.450846][T16931] ? __msan_get_context_state+0x9/0x20 [ 773.456293][T16931] ? kfree+0x29/0x11b0 [ 773.460351][T16931] ? kmsan_get_metadata+0x116/0x180 [ 773.465542][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 773.471169][T16931] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 773.477241][T16931] ? _copy_from_user+0x1cd/0x2d0 [ 773.482169][T16931] ? kmsan_get_metadata+0x116/0x180 [ 773.487364][T16931] __msan_chain_origin+0x57/0xa0 [ 773.492301][T16931] do_recvmmsg+0x17ee/0x2300 [ 773.496904][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 773.502537][T16931] ? __msan_poison_alloca+0xe9/0x110 [ 773.507812][T16931] ? __se_sys_recvmmsg+0xd3/0x410 [ 773.512839][T16931] __se_sys_recvmmsg+0x247/0x410 [ 773.517888][T16931] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 773.523698][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 773.528569][T16931] do_syscall_64+0x9f/0x140 [ 773.533075][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 773.539135][T16931] RIP: 0033:0x45e159 [ 773.543027][T16931] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 773.562639][T16931] RSP: 002b:00007f7ad6ba7c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 773.571048][T16931] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 773.585521][T16931] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 773.593487][T16931] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 773.601448][T16931] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 773.609408][T16931] R13: 00000000016afb7f R14: 00007f7ad6ba89c0 R15: 000000000119c034 [ 773.617370][T16931] Uninit was stored to memory at: [ 773.622396][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 773.628104][T16931] __msan_chain_origin+0x57/0xa0 [ 773.633053][T16931] do_recvmmsg+0x17ee/0x2300 [ 773.637631][T16931] __se_sys_recvmmsg+0x247/0x410 [ 773.642562][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 773.647403][T16931] do_syscall_64+0x9f/0x140 [ 773.651912][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 773.657785][T16931] [ 773.660096][T16931] Uninit was stored to memory at: [ 773.665209][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 773.670913][T16931] __msan_chain_origin+0x57/0xa0 [ 773.675844][T16931] do_recvmmsg+0x17ee/0x2300 [ 773.680528][T16931] __se_sys_recvmmsg+0x247/0x410 [ 773.685483][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 773.690331][T16931] do_syscall_64+0x9f/0x140 [ 773.694830][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 773.700704][T16931] [ 773.703019][T16931] Uninit was stored to memory at: [ 773.708042][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 773.713781][T16931] __msan_chain_origin+0x57/0xa0 [ 773.718709][T16931] do_recvmmsg+0x17ee/0x2300 [ 773.723288][T16931] __se_sys_recvmmsg+0x247/0x410 [ 773.728228][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 773.733069][T16931] do_syscall_64+0x9f/0x140 [ 773.737565][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 773.743434][T16931] [ 773.745743][T16931] Uninit was stored to memory at: [ 773.750758][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 773.756464][T16931] __msan_chain_origin+0x57/0xa0 [ 773.761387][T16931] do_recvmmsg+0x17ee/0x2300 [ 773.765964][T16931] __se_sys_recvmmsg+0x247/0x410 [ 773.770889][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 773.775728][T16931] do_syscall_64+0x9f/0x140 [ 773.780220][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 773.786087][T16931] [ 773.788396][T16931] Uninit was stored to memory at: [ 773.793425][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 773.799130][T16931] __msan_chain_origin+0x57/0xa0 [ 773.804057][T16931] do_recvmmsg+0x17ee/0x2300 [ 773.808636][T16931] __se_sys_recvmmsg+0x247/0x410 [ 773.813565][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 773.818428][T16931] do_syscall_64+0x9f/0x140 [ 773.822919][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 773.828788][T16931] [ 773.831097][T16931] Uninit was stored to memory at: [ 773.836147][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 773.841855][T16931] __msan_chain_origin+0x57/0xa0 [ 773.846779][T16931] do_recvmmsg+0x17ee/0x2300 [ 773.851357][T16931] __se_sys_recvmmsg+0x247/0x410 [ 773.856457][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 773.861296][T16931] do_syscall_64+0x9f/0x140 [ 773.865787][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 773.871656][T16931] [ 773.873965][T16931] Uninit was stored to memory at: [ 773.878979][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 773.884685][T16931] __msan_chain_origin+0x57/0xa0 [ 773.889610][T16931] do_recvmmsg+0x17ee/0x2300 [ 773.894189][T16931] __se_sys_recvmmsg+0x247/0x410 [ 773.899117][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 773.903958][T16931] do_syscall_64+0x9f/0x140 [ 773.908452][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 773.914668][T16931] [ 773.916981][T16931] Local variable ----msg_sys@do_recvmmsg created at: [ 773.923641][T16931] do_recvmmsg+0xbc/0x2300 [ 773.928056][T16931] do_recvmmsg+0xbc/0x2300 [ 774.183260][T16891] not chained 940000 origins [ 774.187891][T16891] CPU: 0 PID: 16891 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 774.196645][T16891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 774.206698][T16891] Call Trace: [ 774.210000][T16891] dump_stack+0x21c/0x280 [ 774.214341][T16891] kmsan_internal_chain_origin+0x6f/0x130 [ 774.220068][T16891] ? __msan_get_context_state+0x9/0x20 [ 774.225525][T16891] ? kmsan_get_metadata+0x116/0x180 [ 774.230727][T16891] ? kmsan_internal_check_memory+0xb1/0x520 [ 774.236625][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 774.242262][T16891] ? kmsan_check_memory+0xd/0x10 [ 774.247202][T16891] ? ____sys_recvmsg+0xa2d/0xd80 [ 774.252140][T16891] ? __msan_get_context_state+0x9/0x20 [ 774.257596][T16891] ? kfree+0x29/0x11b0 [ 774.261739][T16891] ? kmsan_get_metadata+0x116/0x180 [ 774.266943][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 774.272643][T16891] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 774.278723][T16891] ? _copy_from_user+0x1cd/0x2d0 [ 774.283685][T16891] ? kmsan_get_metadata+0x116/0x180 [ 774.288916][T16891] __msan_chain_origin+0x57/0xa0 [ 774.293863][T16891] do_recvmmsg+0x17ee/0x2300 [ 774.298476][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 774.304114][T16891] ? __msan_poison_alloca+0xe9/0x110 [ 774.309403][T16891] ? __se_sys_recvmmsg+0xd3/0x410 [ 774.314434][T16891] __se_sys_recvmmsg+0x247/0x410 [ 774.319417][T16891] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 774.325228][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 774.330090][T16891] do_syscall_64+0x9f/0x140 [ 774.334610][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 774.340496][T16891] RIP: 0033:0x45e159 [ 774.344398][T16891] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 774.364007][T16891] RSP: 002b:00007f92e7354c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 774.372427][T16891] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 774.380400][T16891] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 774.388371][T16891] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 774.396365][T16891] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 774.404338][T16891] R13: 00000000016afb7f R14: 00007f92e73559c0 R15: 000000000119c034 [ 774.412306][T16891] Uninit was stored to memory at: [ 774.417330][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 774.423037][T16891] __msan_chain_origin+0x57/0xa0 [ 774.427966][T16891] do_recvmmsg+0x17ee/0x2300 [ 774.432544][T16891] __se_sys_recvmmsg+0x247/0x410 [ 774.437471][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 774.442310][T16891] do_syscall_64+0x9f/0x140 [ 774.446814][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 774.452683][T16891] [ 774.454991][T16891] Uninit was stored to memory at: [ 774.460006][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 774.465712][T16891] __msan_chain_origin+0x57/0xa0 [ 774.470898][T16891] do_recvmmsg+0x17ee/0x2300 [ 774.475563][T16891] __se_sys_recvmmsg+0x247/0x410 [ 774.480487][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 774.485324][T16891] do_syscall_64+0x9f/0x140 [ 774.489987][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 774.495855][T16891] [ 774.498164][T16891] Uninit was stored to memory at: [ 774.503178][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 774.508884][T16891] __msan_chain_origin+0x57/0xa0 [ 774.513821][T16891] do_recvmmsg+0x17ee/0x2300 [ 774.518404][T16891] __se_sys_recvmmsg+0x247/0x410 [ 774.523335][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 774.528180][T16891] do_syscall_64+0x9f/0x140 [ 774.532680][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 774.538574][T16891] [ 774.540897][T16891] Uninit was stored to memory at: [ 774.546180][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 774.551891][T16891] __msan_chain_origin+0x57/0xa0 [ 774.556818][T16891] do_recvmmsg+0x17ee/0x2300 [ 774.561398][T16891] __se_sys_recvmmsg+0x247/0x410 [ 774.566337][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 774.571177][T16891] do_syscall_64+0x9f/0x140 [ 774.575670][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 774.581543][T16891] [ 774.583857][T16891] Uninit was stored to memory at: [ 774.588870][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 774.594574][T16891] __msan_chain_origin+0x57/0xa0 [ 774.599496][T16891] do_recvmmsg+0x17ee/0x2300 [ 774.604073][T16891] __se_sys_recvmmsg+0x247/0x410 [ 774.608998][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 774.613836][T16891] do_syscall_64+0x9f/0x140 [ 774.618326][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 774.624194][T16891] [ 774.626504][T16891] Uninit was stored to memory at: [ 774.631518][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 774.637227][T16891] __msan_chain_origin+0x57/0xa0 [ 774.642152][T16891] do_recvmmsg+0x17ee/0x2300 [ 774.646727][T16891] __se_sys_recvmmsg+0x247/0x410 [ 774.651652][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 774.656493][T16891] do_syscall_64+0x9f/0x140 [ 774.660993][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 774.666862][T16891] [ 774.669188][T16891] Uninit was stored to memory at: [ 774.674203][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 774.679905][T16891] __msan_chain_origin+0x57/0xa0 [ 774.684848][T16891] do_recvmmsg+0x17ee/0x2300 [ 774.689440][T16891] __se_sys_recvmmsg+0x247/0x410 [ 774.694377][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 774.699225][T16891] do_syscall_64+0x9f/0x140 [ 774.703727][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 774.709599][T16891] [ 774.711913][T16891] Local variable ----msg_sys@do_recvmmsg created at: [ 774.718577][T16891] do_recvmmsg+0xbc/0x2300 [ 774.722982][T16891] do_recvmmsg+0xbc/0x2300 [ 774.997589][T16891] not chained 950000 origins [ 775.002215][T16891] CPU: 0 PID: 16891 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 775.010981][T16891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 775.021033][T16891] Call Trace: [ 775.024331][T16891] dump_stack+0x21c/0x280 [ 775.028669][T16891] kmsan_internal_chain_origin+0x6f/0x130 [ 775.034423][T16891] ? __msan_get_context_state+0x9/0x20 [ 775.039883][T16891] ? kmsan_get_metadata+0x116/0x180 [ 775.045091][T16891] ? kmsan_internal_check_memory+0xb1/0x520 [ 775.050990][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 775.056628][T16891] ? kmsan_check_memory+0xd/0x10 [ 775.061569][T16891] ? ____sys_recvmsg+0xa2d/0xd80 [ 775.066506][T16891] ? __msan_get_context_state+0x9/0x20 [ 775.071963][T16891] ? kfree+0x29/0x11b0 [ 775.076033][T16891] ? kmsan_get_metadata+0x116/0x180 [ 775.081237][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 775.086876][T16891] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 775.092945][T16891] ? _copy_from_user+0x1cd/0x2d0 [ 775.097883][T16891] ? kmsan_get_metadata+0x116/0x180 [ 775.103082][T16891] __msan_chain_origin+0x57/0xa0 [ 775.108021][T16891] do_recvmmsg+0x17ee/0x2300 [ 775.112643][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 775.118275][T16891] ? __msan_poison_alloca+0xe9/0x110 [ 775.123567][T16891] ? __se_sys_recvmmsg+0xd3/0x410 [ 775.128594][T16891] __se_sys_recvmmsg+0x247/0x410 [ 775.133536][T16891] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 775.139348][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 775.144202][T16891] do_syscall_64+0x9f/0x140 [ 775.148712][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 775.154628][T16891] RIP: 0033:0x45e159 [ 775.158524][T16891] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 775.178129][T16891] RSP: 002b:00007f92e7354c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 775.186571][T16891] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 775.194543][T16891] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 775.202512][T16891] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 775.210482][T16891] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 775.218452][T16891] R13: 00000000016afb7f R14: 00007f92e73559c0 R15: 000000000119c034 [ 775.226422][T16891] Uninit was stored to memory at: [ 775.231457][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 775.237176][T16891] __msan_chain_origin+0x57/0xa0 [ 775.242208][T16891] do_recvmmsg+0x17ee/0x2300 [ 775.246798][T16891] __se_sys_recvmmsg+0x247/0x410 [ 775.251738][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 775.256590][T16891] do_syscall_64+0x9f/0x140 [ 775.261096][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 775.266974][T16891] [ 775.269292][T16891] Uninit was stored to memory at: [ 775.274320][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 775.280035][T16891] __msan_chain_origin+0x57/0xa0 [ 775.284972][T16891] do_recvmmsg+0x17ee/0x2300 [ 775.289573][T16891] __se_sys_recvmmsg+0x247/0x410 [ 775.294510][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 775.299363][T16891] do_syscall_64+0x9f/0x140 [ 775.303868][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 775.309790][T16891] [ 775.312110][T16891] Uninit was stored to memory at: [ 775.317140][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 775.322854][T16891] __msan_chain_origin+0x57/0xa0 [ 775.327793][T16891] do_recvmmsg+0x17ee/0x2300 [ 775.332389][T16891] __se_sys_recvmmsg+0x247/0x410 [ 775.337326][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 775.342262][T16891] do_syscall_64+0x9f/0x140 [ 775.346767][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 775.352643][T16891] [ 775.354964][T16891] Uninit was stored to memory at: [ 775.359992][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 775.365716][T16891] __msan_chain_origin+0x57/0xa0 [ 775.370659][T16891] do_recvmmsg+0x17ee/0x2300 [ 775.375250][T16891] __se_sys_recvmmsg+0x247/0x410 [ 775.380183][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 775.385033][T16891] do_syscall_64+0x9f/0x140 [ 775.389535][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 775.395412][T16891] [ 775.397737][T16891] Uninit was stored to memory at: [ 775.402767][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 775.408481][T16891] __msan_chain_origin+0x57/0xa0 [ 775.413418][T16891] do_recvmmsg+0x17ee/0x2300 [ 775.418003][T16891] __se_sys_recvmmsg+0x247/0x410 [ 775.422940][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 775.427790][T16891] do_syscall_64+0x9f/0x140 [ 775.432297][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 775.438171][T16891] [ 775.440485][T16891] Uninit was stored to memory at: [ 775.445515][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 775.451232][T16891] __msan_chain_origin+0x57/0xa0 [ 775.456180][T16891] do_recvmmsg+0x17ee/0x2300 [ 775.460774][T16891] __se_sys_recvmmsg+0x247/0x410 [ 775.465715][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 775.470569][T16891] do_syscall_64+0x9f/0x140 [ 775.475078][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 775.480953][T16891] [ 775.483271][T16891] Uninit was stored to memory at: [ 775.488317][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 775.494047][T16891] __msan_chain_origin+0x57/0xa0 [ 775.498982][T16891] do_recvmmsg+0x17ee/0x2300 [ 775.503574][T16891] __se_sys_recvmmsg+0x247/0x410 [ 775.508633][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 775.513484][T16891] do_syscall_64+0x9f/0x140 [ 775.517988][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 775.523978][T16891] [ 775.526313][T16891] Local variable ----msg_sys@do_recvmmsg created at: [ 775.532990][T16891] do_recvmmsg+0xbc/0x2300 [ 775.537405][T16891] do_recvmmsg+0xbc/0x2300 [ 775.632751][T16891] not chained 960000 origins [ 775.637384][T16891] CPU: 0 PID: 16891 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 775.646146][T16891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 775.656225][T16891] Call Trace: [ 775.659522][T16891] dump_stack+0x21c/0x280 [ 775.663861][T16891] kmsan_internal_chain_origin+0x6f/0x130 [ 775.669580][T16891] ? __msan_get_context_state+0x9/0x20 [ 775.675040][T16891] ? kmsan_get_metadata+0x116/0x180 [ 775.680250][T16891] ? kmsan_internal_check_memory+0xb1/0x520 [ 775.686145][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 775.691779][T16891] ? kmsan_check_memory+0xd/0x10 [ 775.696717][T16891] ? ____sys_recvmsg+0xa2d/0xd80 [ 775.701675][T16891] ? __msan_get_context_state+0x9/0x20 [ 775.707132][T16891] ? kfree+0x29/0x11b0 [ 775.711219][T16891] ? kmsan_get_metadata+0x116/0x180 [ 775.716425][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 775.722062][T16891] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 775.728127][T16891] ? _copy_from_user+0x1cd/0x2d0 [ 775.733934][T16891] ? kmsan_get_metadata+0x116/0x180 [ 775.739233][T16891] __msan_chain_origin+0x57/0xa0 [ 775.744173][T16891] do_recvmmsg+0x17ee/0x2300 [ 775.748929][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 775.754579][T16891] ? __msan_poison_alloca+0xe9/0x110 [ 775.759866][T16891] ? __se_sys_recvmmsg+0xd3/0x410 [ 775.764890][T16891] __se_sys_recvmmsg+0x247/0x410 [ 775.769828][T16891] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 775.775637][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 775.780491][T16891] do_syscall_64+0x9f/0x140 [ 775.784995][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 775.790904][T16891] RIP: 0033:0x45e159 [ 775.794804][T16891] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 775.814498][T16891] RSP: 002b:00007f92e7354c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 775.822913][T16891] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 775.830881][T16891] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 775.838852][T16891] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 775.846826][T16891] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 775.854800][T16891] R13: 00000000016afb7f R14: 00007f92e73559c0 R15: 000000000119c034 [ 775.862856][T16891] Uninit was stored to memory at: [ 775.867889][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 775.873606][T16891] __msan_chain_origin+0x57/0xa0 [ 775.878552][T16891] do_recvmmsg+0x17ee/0x2300 [ 775.883141][T16891] __se_sys_recvmmsg+0x247/0x410 [ 775.888078][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 775.892932][T16891] do_syscall_64+0x9f/0x140 [ 775.897432][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 775.903309][T16891] [ 775.905628][T16891] Uninit was stored to memory at: [ 775.910658][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 775.916373][T16891] __msan_chain_origin+0x57/0xa0 [ 775.921310][T16891] do_recvmmsg+0x17ee/0x2300 [ 775.925900][T16891] __se_sys_recvmmsg+0x247/0x410 [ 775.930836][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 775.935685][T16891] do_syscall_64+0x9f/0x140 [ 775.940184][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 775.942903][T16931] not chained 970000 origins [ 775.946066][T16891] [ 775.950647][T16931] CPU: 1 PID: 16931 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 775.952942][T16891] Uninit was stored to memory at: [ 775.961673][T16931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 775.966705][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 775.976724][T16931] Call Trace: [ 775.982421][T16891] __msan_chain_origin+0x57/0xa0 [ 775.985722][T16931] dump_stack+0x21c/0x280 [ 775.990611][T16891] do_recvmmsg+0x17ee/0x2300 [ 775.994916][T16931] kmsan_internal_chain_origin+0x6f/0x130 [ 775.999475][T16891] __se_sys_recvmmsg+0x247/0x410 [ 776.005162][T16931] ? __msan_get_context_state+0x9/0x20 [ 776.010072][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 776.015503][T16931] ? kmsan_get_metadata+0x116/0x180 [ 776.020328][T16891] do_syscall_64+0x9f/0x140 [ 776.025501][T16931] ? kmsan_internal_check_memory+0xb1/0x520 [ 776.029972][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 776.035837][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 776.041684][T16891] [ 776.047302][T16931] ? kmsan_check_memory+0xd/0x10 [ 776.049599][T16891] Uninit was stored to memory at: [ 776.054520][T16931] ? ____sys_recvmsg+0xa2d/0xd80 [ 776.059519][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 776.064423][T16931] ? __msan_get_context_state+0x9/0x20 [ 776.070113][T16891] __msan_chain_origin+0x57/0xa0 [ 776.075565][T16931] ? kfree+0x29/0x11b0 [ 776.080474][T16891] do_recvmmsg+0x17ee/0x2300 [ 776.084515][T16931] ? kmsan_get_metadata+0x116/0x180 [ 776.089078][T16891] __se_sys_recvmmsg+0x247/0x410 [ 776.094261][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 776.099166][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 776.104789][T16931] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 776.109609][T16891] do_syscall_64+0x9f/0x140 [ 776.115644][T16931] ? _copy_from_user+0x1cd/0x2d0 [ 776.120132][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 776.125039][T16931] ? kmsan_get_metadata+0x116/0x180 [ 776.130890][T16891] [ 776.136069][T16931] __msan_chain_origin+0x57/0xa0 [ 776.138364][T16891] Uninit was stored to memory at: [ 776.143283][T16931] do_recvmmsg+0x17ee/0x2300 [ 776.148280][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 776.152847][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 776.158530][T16891] __msan_chain_origin+0x57/0xa0 [ 776.164136][T16931] ? __msan_poison_alloca+0xe9/0x110 [ 776.169045][T16891] do_recvmmsg+0x17ee/0x2300 [ 776.174301][T16931] ? __se_sys_recvmmsg+0xd3/0x410 [ 776.178865][T16891] __se_sys_recvmmsg+0x247/0x410 [ 776.183863][T16931] __se_sys_recvmmsg+0x247/0x410 [ 776.188771][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 776.193680][T16931] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 776.198501][T16891] do_syscall_64+0x9f/0x140 [ 776.204292][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 776.208777][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 776.213599][T16931] do_syscall_64+0x9f/0x140 [ 776.220402][T16891] [ 776.224888][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 776.227183][T16891] Uninit was stored to memory at: [ 776.233050][T16931] RIP: 0033:0x45e159 [ 776.238051][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 776.241916][T16931] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 776.247607][T16891] __msan_chain_origin+0x57/0xa0 [ 776.267200][T16931] RSP: 002b:00007f7ad6ba7c68 EFLAGS: 00000246 [ 776.272107][T16891] do_recvmmsg+0x17ee/0x2300 [ 776.272123][T16931] ORIG_RAX: 000000000000012b [ 776.278189][T16891] __se_sys_recvmmsg+0x247/0x410 [ 776.282746][T16931] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 776.287403][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 776.292314][T16931] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 776.300274][T16891] do_syscall_64+0x9f/0x140 [ 776.305092][T16931] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 776.313061][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 776.317523][T16931] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 776.325464][T16891] [ 776.331336][T16931] R13: 00000000016afb7f R14: 00007f7ad6ba89c0 R15: 000000000119c034 [ 776.339277][T16891] Uninit was stored to memory at: [ 776.341582][T16931] Uninit was stored to memory at: [ 776.349546][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 776.354559][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 776.359546][T16891] __msan_chain_origin+0x57/0xa0 [ 776.365242][T16931] __msan_chain_origin+0x57/0xa0 [ 776.370935][T16891] do_recvmmsg+0x17ee/0x2300 [ 776.375842][T16931] do_recvmmsg+0x17ee/0x2300 [ 776.381018][T16891] __se_sys_recvmmsg+0x247/0x410 [ 776.385584][T16931] __se_sys_recvmmsg+0x247/0x410 [ 776.390152][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 776.395068][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 776.399977][T16891] do_syscall_64+0x9f/0x140 [ 776.404796][T16931] do_syscall_64+0x9f/0x140 [ 776.409618][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 776.414092][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 776.418568][T16891] [ 776.424430][T16931] [ 776.430298][T16891] Local variable ----msg_sys@do_recvmmsg created at: [ 776.432597][T16931] Uninit was stored to memory at: [ 776.434909][T16891] do_recvmmsg+0xbc/0x2300 [ 776.441562][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 776.446550][T16891] do_recvmmsg+0xbc/0x2300 [ 776.450940][T16931] __msan_chain_origin+0x57/0xa0 [ 776.465945][T16931] do_recvmmsg+0x17ee/0x2300 [ 776.470540][T16931] __se_sys_recvmmsg+0x247/0x410 [ 776.475484][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 776.480407][T16931] do_syscall_64+0x9f/0x140 [ 776.485011][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 776.490922][T16931] [ 776.493243][T16931] Uninit was stored to memory at: [ 776.498276][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 776.504085][T16931] __msan_chain_origin+0x57/0xa0 [ 776.509058][T16931] do_recvmmsg+0x17ee/0x2300 [ 776.513649][T16931] __se_sys_recvmmsg+0x247/0x410 [ 776.518591][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 776.523444][T16931] do_syscall_64+0x9f/0x140 [ 776.527945][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 776.533820][T16931] [ 776.536143][T16931] Uninit was stored to memory at: [ 776.541193][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 776.546912][T16931] __msan_chain_origin+0x57/0xa0 [ 776.551852][T16931] do_recvmmsg+0x17ee/0x2300 [ 776.556442][T16931] __se_sys_recvmmsg+0x247/0x410 [ 776.561381][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 776.566235][T16931] do_syscall_64+0x9f/0x140 [ 776.570741][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 776.576620][T16931] [ 776.578940][T16931] Uninit was stored to memory at: [ 776.583969][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 776.589682][T16931] __msan_chain_origin+0x57/0xa0 [ 776.594620][T16931] do_recvmmsg+0x17ee/0x2300 [ 776.599207][T16931] __se_sys_recvmmsg+0x247/0x410 [ 776.604150][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 776.608998][T16931] do_syscall_64+0x9f/0x140 [ 776.613503][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 776.619379][T16931] [ 776.621697][T16931] Uninit was stored to memory at: [ 776.626725][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 776.632439][T16931] __msan_chain_origin+0x57/0xa0 [ 776.637376][T16931] do_recvmmsg+0x17ee/0x2300 [ 776.641960][T16931] __se_sys_recvmmsg+0x247/0x410 [ 776.646898][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 776.651759][T16931] do_syscall_64+0x9f/0x140 [ 776.656269][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 776.662150][T16931] [ 776.664471][T16931] Uninit was stored to memory at: [ 776.669502][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 776.675219][T16931] __msan_chain_origin+0x57/0xa0 [ 776.680155][T16931] do_recvmmsg+0x17ee/0x2300 [ 776.684754][T16931] __se_sys_recvmmsg+0x247/0x410 [ 776.689698][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 776.694551][T16931] do_syscall_64+0x9f/0x140 [ 776.699058][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 776.704934][T16931] [ 776.707255][T16931] Local variable ----msg_sys@do_recvmmsg created at: [ 776.713930][T16931] do_recvmmsg+0xbc/0x2300 [ 776.718345][T16931] do_recvmmsg+0xbc/0x2300 [ 776.720003][T16887] not chained 980000 origins [ 776.727339][T16887] CPU: 0 PID: 16887 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 776.736094][T16887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 776.746150][T16887] Call Trace: [ 776.749443][T16887] dump_stack+0x21c/0x280 [ 776.753785][T16887] kmsan_internal_chain_origin+0x6f/0x130 [ 776.759506][T16887] ? __msan_get_context_state+0x9/0x20 [ 776.764989][T16887] ? kmsan_get_metadata+0x116/0x180 [ 776.770230][T16887] ? kmsan_internal_check_memory+0xb1/0x520 [ 776.776133][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 776.781790][T16887] ? kmsan_check_memory+0xd/0x10 [ 776.786736][T16887] ? ____sys_recvmsg+0xa2d/0xd80 [ 776.791678][T16887] ? __msan_get_context_state+0x9/0x20 [ 776.797141][T16887] ? kfree+0x29/0x11b0 [ 776.801209][T16887] ? kmsan_get_metadata+0x116/0x180 [ 776.806414][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 776.812058][T16887] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 776.818126][T16887] ? _copy_from_user+0x1cd/0x2d0 [ 776.823068][T16887] ? kmsan_get_metadata+0x116/0x180 [ 776.828287][T16887] __msan_chain_origin+0x57/0xa0 [ 776.833226][T16887] do_recvmmsg+0x17ee/0x2300 [ 776.837833][T16887] ? kmsan_internal_set_origin+0x85/0xc0 [ 776.843570][T16887] ? __msan_poison_alloca+0xe9/0x110 [ 776.848857][T16887] ? __se_sys_recvmmsg+0xd3/0x410 [ 776.853891][T16887] __se_sys_recvmmsg+0x247/0x410 [ 776.858829][T16887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 776.864642][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 776.869500][T16887] do_syscall_64+0x9f/0x140 [ 776.874007][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 776.879960][T16887] RIP: 0033:0x45e159 [ 776.883860][T16887] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 776.903574][T16887] RSP: 002b:00007f92e7375c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 776.911992][T16887] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 776.919964][T16887] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 776.927936][T16887] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 776.935916][T16887] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 776.943887][T16887] R13: 00000000016afb7f R14: 00007f92e73769c0 R15: 000000000119bf8c [ 776.951953][T16887] Uninit was stored to memory at: [ 776.956994][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 776.962802][T16887] __msan_chain_origin+0x57/0xa0 [ 776.967797][T16887] do_recvmmsg+0x17ee/0x2300 [ 776.972389][T16887] __se_sys_recvmmsg+0x247/0x410 [ 776.977328][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 776.982268][T16887] do_syscall_64+0x9f/0x140 [ 776.986818][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 776.992699][T16887] [ 776.995019][T16887] Uninit was stored to memory at: [ 777.000048][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 777.005768][T16887] __msan_chain_origin+0x57/0xa0 [ 777.010705][T16887] do_recvmmsg+0x17ee/0x2300 [ 777.015296][T16887] __se_sys_recvmmsg+0x247/0x410 [ 777.020233][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 777.025188][T16887] do_syscall_64+0x9f/0x140 [ 777.029693][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 777.035570][T16887] [ 777.037889][T16887] Uninit was stored to memory at: [ 777.042959][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 777.048678][T16887] __msan_chain_origin+0x57/0xa0 [ 777.053620][T16887] do_recvmmsg+0x17ee/0x2300 [ 777.058213][T16887] __se_sys_recvmmsg+0x247/0x410 [ 777.063152][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 777.068006][T16887] do_syscall_64+0x9f/0x140 [ 777.072515][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 777.078399][T16887] [ 777.080718][T16887] Uninit was stored to memory at: [ 777.085767][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 777.091484][T16887] __msan_chain_origin+0x57/0xa0 [ 777.096424][T16887] do_recvmmsg+0x17ee/0x2300 [ 777.101016][T16887] __se_sys_recvmmsg+0x247/0x410 [ 777.105996][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 777.110863][T16887] do_syscall_64+0x9f/0x140 [ 777.115366][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 777.121247][T16887] [ 777.123567][T16887] Uninit was stored to memory at: [ 777.128599][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 777.134316][T16887] __msan_chain_origin+0x57/0xa0 [ 777.139254][T16887] do_recvmmsg+0x17ee/0x2300 [ 777.143848][T16887] __se_sys_recvmmsg+0x247/0x410 [ 777.148788][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 777.153649][T16887] do_syscall_64+0x9f/0x140 [ 777.158152][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 777.164033][T16887] [ 777.166357][T16887] Uninit was stored to memory at: [ 777.171397][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 777.177118][T16887] __msan_chain_origin+0x57/0xa0 [ 777.182058][T16887] do_recvmmsg+0x17ee/0x2300 [ 777.186649][T16887] __se_sys_recvmmsg+0x247/0x410 [ 777.191587][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 777.196448][T16887] do_syscall_64+0x9f/0x140 [ 777.200955][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 777.206831][T16887] [ 777.209154][T16887] Uninit was stored to memory at: [ 777.214189][T16887] kmsan_internal_chain_origin+0xad/0x130 [ 777.219905][T16887] __msan_chain_origin+0x57/0xa0 [ 777.224842][T16887] do_recvmmsg+0x17ee/0x2300 [ 777.229432][T16887] __se_sys_recvmmsg+0x247/0x410 [ 777.234370][T16887] __x64_sys_recvmmsg+0x62/0x80 [ 777.239222][T16887] do_syscall_64+0x9f/0x140 [ 777.243725][T16887] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 777.249603][T16887] [ 777.251951][T16887] Local variable ----msg_sys@do_recvmmsg created at: [ 777.258625][T16887] do_recvmmsg+0xbc/0x2300 [ 777.263041][T16887] do_recvmmsg+0xbc/0x2300 [ 777.864737][T16931] not chained 990000 origins [ 777.869368][T16931] CPU: 1 PID: 16931 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 777.878122][T16931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 777.888177][T16931] Call Trace: [ 777.891477][T16931] dump_stack+0x21c/0x280 [ 777.895820][T16931] kmsan_internal_chain_origin+0x6f/0x130 [ 777.901539][T16931] ? __msan_get_context_state+0x9/0x20 [ 777.907001][T16931] ? kmsan_get_metadata+0x116/0x180 [ 777.912205][T16931] ? kmsan_internal_check_memory+0xb1/0x520 [ 777.918105][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 777.923740][T16931] ? kmsan_check_memory+0xd/0x10 [ 777.928688][T16931] ? ____sys_recvmsg+0xa2d/0xd80 [ 777.933624][T16931] ? __msan_get_context_state+0x9/0x20 [ 777.939086][T16931] ? kfree+0x29/0x11b0 [ 777.943153][T16931] ? kmsan_get_metadata+0x116/0x180 [ 777.948357][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 777.954002][T16931] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 777.960079][T16931] ? _copy_from_user+0x1cd/0x2d0 [ 777.965031][T16931] ? kmsan_get_metadata+0x116/0x180 [ 777.970227][T16931] __msan_chain_origin+0x57/0xa0 [ 777.975171][T16931] do_recvmmsg+0x17ee/0x2300 [ 777.979781][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 777.985420][T16931] ? __msan_poison_alloca+0xe9/0x110 [ 777.990715][T16931] ? __se_sys_recvmmsg+0xd3/0x410 [ 777.995746][T16931] __se_sys_recvmmsg+0x247/0x410 [ 778.000687][T16931] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 778.006502][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 778.011358][T16931] do_syscall_64+0x9f/0x140 [ 778.015863][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 778.021753][T16931] RIP: 0033:0x45e159 [ 778.025651][T16931] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 778.045273][T16931] RSP: 002b:00007f7ad6ba7c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 778.053713][T16931] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 778.061690][T16931] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 778.069665][T16931] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 778.077642][T16931] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 778.085619][T16931] R13: 00000000016afb7f R14: 00007f7ad6ba89c0 R15: 000000000119c034 [ 778.093594][T16931] Uninit was stored to memory at: [ 778.098728][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 778.104449][T16931] __msan_chain_origin+0x57/0xa0 [ 778.109388][T16931] do_recvmmsg+0x17ee/0x2300 [ 778.113983][T16931] __se_sys_recvmmsg+0x247/0x410 [ 778.118926][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 778.123780][T16931] do_syscall_64+0x9f/0x140 [ 778.128288][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 778.134165][T16931] [ 778.136489][T16931] Uninit was stored to memory at: [ 778.141523][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 778.147240][T16931] __msan_chain_origin+0x57/0xa0 [ 778.152183][T16931] do_recvmmsg+0x17ee/0x2300 [ 778.156772][T16931] __se_sys_recvmmsg+0x247/0x410 [ 778.161711][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 778.166566][T16931] do_syscall_64+0x9f/0x140 [ 778.172024][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 778.177902][T16931] [ 778.180224][T16931] Uninit was stored to memory at: [ 778.185264][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 778.190983][T16931] __msan_chain_origin+0x57/0xa0 [ 778.195925][T16931] do_recvmmsg+0x17ee/0x2300 [ 778.200517][T16931] __se_sys_recvmmsg+0x247/0x410 [ 778.205455][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 778.210305][T16931] do_syscall_64+0x9f/0x140 [ 778.214817][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 778.220695][T16931] [ 778.223017][T16931] Uninit was stored to memory at: [ 778.228051][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 778.233771][T16931] __msan_chain_origin+0x57/0xa0 [ 778.238712][T16931] do_recvmmsg+0x17ee/0x2300 [ 778.243303][T16931] __se_sys_recvmmsg+0x247/0x410 [ 778.248242][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 778.253104][T16931] do_syscall_64+0x9f/0x140 [ 778.257612][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 778.263490][T16931] [ 778.265809][T16931] Uninit was stored to memory at: [ 778.270850][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 778.276571][T16931] __msan_chain_origin+0x57/0xa0 [ 778.281511][T16931] do_recvmmsg+0x17ee/0x2300 [ 778.286104][T16931] __se_sys_recvmmsg+0x247/0x410 [ 778.291042][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 778.295901][T16931] do_syscall_64+0x9f/0x140 [ 778.300409][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 778.306286][T16931] [ 778.308608][T16931] Uninit was stored to memory at: [ 778.313640][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 778.319358][T16931] __msan_chain_origin+0x57/0xa0 [ 778.324298][T16931] do_recvmmsg+0x17ee/0x2300 [ 778.328892][T16931] __se_sys_recvmmsg+0x247/0x410 [ 778.333832][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 778.338774][T16931] do_syscall_64+0x9f/0x140 [ 778.343285][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 778.349166][T16931] [ 778.351485][T16931] Uninit was stored to memory at: [ 778.356517][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 778.362241][T16931] __msan_chain_origin+0x57/0xa0 [ 778.367188][T16931] do_recvmmsg+0x17ee/0x2300 [ 778.371777][T16931] __se_sys_recvmmsg+0x247/0x410 [ 778.376713][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 778.381569][T16931] do_syscall_64+0x9f/0x140 [ 778.386076][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 778.391955][T16931] [ 778.394278][T16931] Local variable ----msg_sys@do_recvmmsg created at: [ 778.400956][T16931] do_recvmmsg+0xbc/0x2300 [ 778.405373][T16931] do_recvmmsg+0xbc/0x2300 [ 778.638111][T16891] not chained 1000000 origins [ 778.642837][T16891] CPU: 0 PID: 16891 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 778.651590][T16891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 778.661654][T16891] Call Trace: [ 778.664951][T16891] dump_stack+0x21c/0x280 [ 778.669299][T16891] kmsan_internal_chain_origin+0x6f/0x130 [ 778.675023][T16891] ? __msan_get_context_state+0x9/0x20 [ 778.680487][T16891] ? kmsan_get_metadata+0x116/0x180 [ 778.685695][T16891] ? kmsan_internal_check_memory+0xb1/0x520 [ 778.691639][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 778.697278][T16891] ? kmsan_check_memory+0xd/0x10 [ 778.702219][T16891] ? ____sys_recvmsg+0xa2d/0xd80 [ 778.707164][T16891] ? __msan_get_context_state+0x9/0x20 [ 778.712627][T16891] ? kfree+0x29/0x11b0 [ 778.716698][T16891] ? kmsan_get_metadata+0x116/0x180 [ 778.721902][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 778.727548][T16891] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 778.733618][T16891] ? _copy_from_user+0x1cd/0x2d0 [ 778.738563][T16891] ? kmsan_get_metadata+0x116/0x180 [ 778.743762][T16891] __msan_chain_origin+0x57/0xa0 [ 778.748709][T16891] do_recvmmsg+0x17ee/0x2300 [ 778.753321][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 778.758954][T16891] ? __msan_poison_alloca+0xe9/0x110 [ 778.764243][T16891] ? __se_sys_recvmmsg+0xd3/0x410 [ 778.769274][T16891] __se_sys_recvmmsg+0x247/0x410 [ 778.774218][T16891] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 778.780034][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 778.784889][T16891] do_syscall_64+0x9f/0x140 [ 778.789398][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 778.795290][T16891] RIP: 0033:0x45e159 [ 778.799235][T16891] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 778.818842][T16891] RSP: 002b:00007f92e7354c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 778.827261][T16891] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 778.835228][T16891] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 778.843198][T16891] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 778.851171][T16891] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 778.859148][T16891] R13: 00000000016afb7f R14: 00007f92e73559c0 R15: 000000000119c034 [ 778.867121][T16891] Uninit was stored to memory at: [ 778.872281][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 778.878004][T16891] __msan_chain_origin+0x57/0xa0 [ 778.882944][T16891] do_recvmmsg+0x17ee/0x2300 [ 778.887543][T16891] __se_sys_recvmmsg+0x247/0x410 [ 778.892485][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 778.897339][T16891] do_syscall_64+0x9f/0x140 [ 778.901845][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 778.907726][T16891] [ 778.910049][T16891] Uninit was stored to memory at: [ 778.915088][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 778.920812][T16891] __msan_chain_origin+0x57/0xa0 [ 778.925752][T16891] do_recvmmsg+0x17ee/0x2300 [ 778.930346][T16891] __se_sys_recvmmsg+0x247/0x410 [ 778.935284][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 778.940143][T16891] do_syscall_64+0x9f/0x140 [ 778.944673][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 778.950654][T16891] [ 778.952981][T16891] Uninit was stored to memory at: [ 778.958105][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 778.963826][T16891] __msan_chain_origin+0x57/0xa0 [ 778.968769][T16891] do_recvmmsg+0x17ee/0x2300 [ 778.973391][T16891] __se_sys_recvmmsg+0x247/0x410 [ 778.978381][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 778.983244][T16891] do_syscall_64+0x9f/0x140 [ 778.987751][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 778.993630][T16891] [ 778.995948][T16891] Uninit was stored to memory at: [ 779.000985][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 779.006708][T16891] __msan_chain_origin+0x57/0xa0 [ 779.011650][T16891] do_recvmmsg+0x17ee/0x2300 [ 779.016242][T16891] __se_sys_recvmmsg+0x247/0x410 [ 779.021192][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 779.026060][T16891] do_syscall_64+0x9f/0x140 [ 779.030566][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 779.036441][T16891] [ 779.038761][T16891] Uninit was stored to memory at: [ 779.043790][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 779.049505][T16891] __msan_chain_origin+0x57/0xa0 [ 779.054443][T16891] do_recvmmsg+0x17ee/0x2300 [ 779.059135][T16891] __se_sys_recvmmsg+0x247/0x410 [ 779.064083][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 779.068933][T16891] do_syscall_64+0x9f/0x140 [ 779.073438][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 779.079343][T16891] [ 779.081662][T16891] Uninit was stored to memory at: [ 779.086693][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 779.092413][T16891] __msan_chain_origin+0x57/0xa0 [ 779.097356][T16891] do_recvmmsg+0x17ee/0x2300 [ 779.101946][T16891] __se_sys_recvmmsg+0x247/0x410 [ 779.106885][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 779.111738][T16891] do_syscall_64+0x9f/0x140 [ 779.116244][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 779.122127][T16891] [ 779.124447][T16891] Uninit was stored to memory at: [ 779.129479][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 779.135197][T16891] __msan_chain_origin+0x57/0xa0 [ 779.140134][T16891] do_recvmmsg+0x17ee/0x2300 [ 779.144725][T16891] __se_sys_recvmmsg+0x247/0x410 [ 779.150017][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 779.154876][T16891] do_syscall_64+0x9f/0x140 [ 779.159380][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 779.165259][T16891] [ 779.167580][T16891] Local variable ----msg_sys@do_recvmmsg created at: [ 779.174253][T16891] do_recvmmsg+0xbc/0x2300 [ 779.178665][T16891] do_recvmmsg+0xbc/0x2300 [ 779.520191][T16891] not chained 1010000 origins [ 779.524904][T16891] CPU: 0 PID: 16891 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 779.533659][T16891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 779.543710][T16891] Call Trace: [ 779.547007][T16891] dump_stack+0x21c/0x280 [ 779.551350][T16891] kmsan_internal_chain_origin+0x6f/0x130 [ 779.557069][T16891] ? __msan_get_context_state+0x9/0x20 [ 779.562526][T16891] ? kmsan_get_metadata+0x116/0x180 [ 779.567730][T16891] ? kmsan_internal_check_memory+0xb1/0x520 [ 779.573627][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 779.579262][T16891] ? kmsan_check_memory+0xd/0x10 [ 779.584203][T16891] ? ____sys_recvmsg+0xa2d/0xd80 [ 779.589148][T16891] ? __msan_get_context_state+0x9/0x20 [ 779.594610][T16891] ? kfree+0x29/0x11b0 [ 779.598677][T16891] ? kmsan_get_metadata+0x116/0x180 [ 779.603883][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 779.609521][T16891] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 779.615616][T16891] ? _copy_from_user+0x1cd/0x2d0 [ 779.620558][T16891] ? kmsan_get_metadata+0x116/0x180 [ 779.625755][T16891] __msan_chain_origin+0x57/0xa0 [ 779.630701][T16891] do_recvmmsg+0x17ee/0x2300 [ 779.635307][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 779.640950][T16891] ? __msan_poison_alloca+0xe9/0x110 [ 779.646240][T16891] ? __se_sys_recvmmsg+0xd3/0x410 [ 779.651263][T16891] __se_sys_recvmmsg+0x247/0x410 [ 779.656205][T16891] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 779.662026][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 779.666885][T16891] do_syscall_64+0x9f/0x140 [ 779.671390][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 779.677276][T16891] RIP: 0033:0x45e159 [ 779.681172][T16891] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 779.700779][T16891] RSP: 002b:00007f92e7354c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 779.709203][T16891] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 779.717177][T16891] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 779.725147][T16891] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 779.733120][T16891] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 779.741089][T16891] R13: 00000000016afb7f R14: 00007f92e73559c0 R15: 000000000119c034 [ 779.749061][T16891] Uninit was stored to memory at: [ 779.754095][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 779.759812][T16891] __msan_chain_origin+0x57/0xa0 [ 779.764749][T16891] do_recvmmsg+0x17ee/0x2300 [ 779.769336][T16891] __se_sys_recvmmsg+0x247/0x410 [ 779.774271][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 779.779123][T16891] do_syscall_64+0x9f/0x140 [ 779.783631][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 779.789505][T16891] [ 779.791820][T16891] Uninit was stored to memory at: [ 779.796849][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 779.802565][T16891] __msan_chain_origin+0x57/0xa0 [ 779.807675][T16891] do_recvmmsg+0x17ee/0x2300 [ 779.813653][T16891] __se_sys_recvmmsg+0x247/0x410 [ 779.818590][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 779.823442][T16891] do_syscall_64+0x9f/0x140 [ 779.827944][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 779.833824][T16891] [ 779.836145][T16891] Uninit was stored to memory at: [ 779.841175][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 779.846896][T16891] __msan_chain_origin+0x57/0xa0 [ 779.851833][T16891] do_recvmmsg+0x17ee/0x2300 [ 779.856422][T16891] __se_sys_recvmmsg+0x247/0x410 [ 779.861364][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 779.866322][T16891] do_syscall_64+0x9f/0x140 [ 779.870824][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 779.876700][T16891] [ 779.879021][T16891] Uninit was stored to memory at: [ 779.884059][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 779.889772][T16891] __msan_chain_origin+0x57/0xa0 [ 779.894706][T16891] do_recvmmsg+0x17ee/0x2300 [ 779.899298][T16891] __se_sys_recvmmsg+0x247/0x410 [ 779.904234][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 779.909084][T16891] do_syscall_64+0x9f/0x140 [ 779.913586][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 779.919471][T16891] [ 779.921791][T16891] Uninit was stored to memory at: [ 779.926821][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 779.932536][T16891] __msan_chain_origin+0x57/0xa0 [ 779.937475][T16891] do_recvmmsg+0x17ee/0x2300 [ 779.942065][T16891] __se_sys_recvmmsg+0x247/0x410 [ 779.946998][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 779.947380][T16931] not chained 1020000 origins [ 779.951849][T16891] do_syscall_64+0x9f/0x140 [ 779.956507][T16931] CPU: 1 PID: 16931 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 779.960984][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 779.969703][T16931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 779.975559][T16891] [ 779.985602][T16931] Call Trace: [ 779.987904][T16891] Uninit was stored to memory at: [ 779.991172][T16931] dump_stack+0x21c/0x280 [ 779.996172][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 780.000472][T16931] kmsan_internal_chain_origin+0x6f/0x130 [ 780.006156][T16891] __msan_chain_origin+0x57/0xa0 [ 780.011848][T16931] ? __msan_get_context_state+0x9/0x20 [ 780.016757][T16891] do_recvmmsg+0x17ee/0x2300 [ 780.022185][T16931] ? kmsan_get_metadata+0x116/0x180 [ 780.026747][T16891] __se_sys_recvmmsg+0x247/0x410 [ 780.031919][T16931] ? kmsan_internal_check_memory+0xb1/0x520 [ 780.036823][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 780.042692][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 780.047513][T16891] do_syscall_64+0x9f/0x140 [ 780.053114][T16931] ? kmsan_check_memory+0xd/0x10 [ 780.057593][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 780.062502][T16931] ? ____sys_recvmsg+0xa2d/0xd80 [ 780.068352][T16891] [ 780.073270][T16931] ? __msan_get_context_state+0x9/0x20 [ 780.075563][T16891] Uninit was stored to memory at: [ 780.081004][T16931] ? kfree+0x29/0x11b0 [ 780.086004][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 780.090042][T16931] ? kmsan_get_metadata+0x116/0x180 [ 780.095735][T16891] __msan_chain_origin+0x57/0xa0 [ 780.100911][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 780.105816][T16891] do_recvmmsg+0x17ee/0x2300 [ 780.111425][T16931] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 780.115984][T16891] __se_sys_recvmmsg+0x247/0x410 [ 780.122020][T16931] ? _copy_from_user+0x1cd/0x2d0 [ 780.126929][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 780.131834][T16931] ? kmsan_get_metadata+0x116/0x180 [ 780.136657][T16891] do_syscall_64+0x9f/0x140 [ 780.141836][T16931] __msan_chain_origin+0x57/0xa0 [ 780.146311][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 780.151221][T16931] do_recvmmsg+0x17ee/0x2300 [ 780.157074][T16891] [ 780.161655][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 780.163944][T16891] Local variable ----msg_sys@do_recvmmsg created at: [ 780.169556][T16931] ? __msan_poison_alloca+0xe9/0x110 [ 780.176200][T16891] do_recvmmsg+0xbc/0x2300 [ 780.181458][T16931] ? __se_sys_recvmmsg+0xd3/0x410 [ 780.185845][T16891] do_recvmmsg+0xbc/0x2300 [ 780.190855][T16931] __se_sys_recvmmsg+0x247/0x410 [ 780.200153][T16931] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 780.205968][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 780.210827][T16931] do_syscall_64+0x9f/0x140 [ 780.215332][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 780.221220][T16931] RIP: 0033:0x45e159 [ 780.225117][T16931] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 780.244725][T16931] RSP: 002b:00007f7ad6ba7c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 780.253404][T16931] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 780.261373][T16931] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 780.269347][T16931] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 780.277316][T16931] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 780.285286][T16931] R13: 00000000016afb7f R14: 00007f7ad6ba89c0 R15: 000000000119c034 [ 780.293253][T16931] Uninit was stored to memory at: [ 780.298283][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 780.304000][T16931] __msan_chain_origin+0x57/0xa0 [ 780.308939][T16931] do_recvmmsg+0x17ee/0x2300 [ 780.313602][T16931] __se_sys_recvmmsg+0x247/0x410 [ 780.318569][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 780.323421][T16931] do_syscall_64+0x9f/0x140 [ 780.327926][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 780.333805][T16931] [ 780.336126][T16931] Uninit was stored to memory at: [ 780.341154][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 780.346874][T16931] __msan_chain_origin+0x57/0xa0 [ 780.351810][T16931] do_recvmmsg+0x17ee/0x2300 [ 780.356399][T16931] __se_sys_recvmmsg+0x247/0x410 [ 780.361333][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 780.366185][T16931] do_syscall_64+0x9f/0x140 [ 780.370687][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 780.376560][T16931] [ 780.378875][T16931] Uninit was stored to memory at: [ 780.383905][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 780.389620][T16931] __msan_chain_origin+0x57/0xa0 [ 780.394557][T16931] do_recvmmsg+0x17ee/0x2300 [ 780.399147][T16931] __se_sys_recvmmsg+0x247/0x410 [ 780.404080][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 780.408939][T16931] do_syscall_64+0x9f/0x140 [ 780.413444][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 780.419319][T16931] [ 780.421636][T16931] Uninit was stored to memory at: [ 780.426663][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 780.432377][T16931] __msan_chain_origin+0x57/0xa0 [ 780.437312][T16931] do_recvmmsg+0x17ee/0x2300 [ 780.441899][T16931] __se_sys_recvmmsg+0x247/0x410 [ 780.446834][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 780.448863][T16891] not chained 1030000 origins [ 780.451689][T16931] do_syscall_64+0x9f/0x140 [ 780.456342][T16891] CPU: 0 PID: 16891 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 780.460819][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 780.469540][T16891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 780.475396][T16931] [ 780.485427][T16891] Call Trace: [ 780.487732][T16931] Uninit was stored to memory at: [ 780.491013][T16891] dump_stack+0x21c/0x280 [ 780.496011][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 780.500314][T16891] kmsan_internal_chain_origin+0x6f/0x130 [ 780.506002][T16931] __msan_chain_origin+0x57/0xa0 [ 780.511693][T16891] ? __msan_get_context_state+0x9/0x20 [ 780.516602][T16931] do_recvmmsg+0x17ee/0x2300 [ 780.522038][T16891] ? kmsan_get_metadata+0x116/0x180 [ 780.526603][T16931] __se_sys_recvmmsg+0x247/0x410 [ 780.531778][T16891] ? kmsan_internal_check_memory+0xb1/0x520 [ 780.536684][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 780.542551][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 780.547371][T16931] do_syscall_64+0x9f/0x140 [ 780.552975][T16891] ? kmsan_check_memory+0xd/0x10 [ 780.557459][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 780.562371][T16891] ? ____sys_recvmsg+0xa2d/0xd80 [ 780.568223][T16931] [ 780.573172][T16891] ? __msan_get_context_state+0x9/0x20 [ 780.575468][T16931] Uninit was stored to memory at: [ 780.580908][T16891] ? kfree+0x29/0x11b0 [ 780.585909][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 780.589948][T16891] ? kmsan_get_metadata+0x116/0x180 [ 780.595637][T16931] __msan_chain_origin+0x57/0xa0 [ 780.600810][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 780.605716][T16931] do_recvmmsg+0x17ee/0x2300 [ 780.611323][T16891] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 780.615880][T16931] __se_sys_recvmmsg+0x247/0x410 [ 780.621917][T16891] ? _copy_from_user+0x1cd/0x2d0 [ 780.626826][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 780.631833][T16891] ? kmsan_get_metadata+0x116/0x180 [ 780.636656][T16931] do_syscall_64+0x9f/0x140 [ 780.641822][T16891] __msan_chain_origin+0x57/0xa0 [ 780.646297][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 780.651207][T16891] do_recvmmsg+0x17ee/0x2300 [ 780.657058][T16931] [ 780.661640][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 780.663948][T16931] Uninit was stored to memory at: [ 780.669578][T16891] ? __msan_poison_alloca+0xe9/0x110 [ 780.675016][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 780.680274][T16891] ? __se_sys_recvmmsg+0xd3/0x410 [ 780.685973][T16931] __msan_chain_origin+0x57/0xa0 [ 780.690989][T16891] __se_sys_recvmmsg+0x247/0x410 [ 780.695899][T16931] do_recvmmsg+0x17ee/0x2300 [ 780.700810][T16891] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 780.705369][T16931] __se_sys_recvmmsg+0x247/0x410 [ 780.711151][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 780.716064][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 780.720892][T16891] do_syscall_64+0x9f/0x140 [ 780.725714][T16931] do_syscall_64+0x9f/0x140 [ 780.730193][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 780.735713][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 780.741571][T16891] RIP: 0033:0x45e159 [ 780.747426][T16931] [ 780.751305][T16891] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 780.753603][T16931] Local variable ----msg_sys@do_recvmmsg created at: [ 780.773185][T16891] RSP: 002b:00007f92e7354c68 EFLAGS: 00000246 [ 780.779824][T16931] do_recvmmsg+0xbc/0x2300 [ 780.779841][T16891] ORIG_RAX: 000000000000012b [ 780.785882][T16931] do_recvmmsg+0xbc/0x2300 [ 780.790267][T16891] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 780.807271][T16891] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 780.815245][T16891] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 780.823217][T16891] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 780.831192][T16891] R13: 00000000016afb7f R14: 00007f92e73559c0 R15: 000000000119c034 [ 780.839165][T16891] Uninit was stored to memory at: [ 780.844201][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 780.849922][T16891] __msan_chain_origin+0x57/0xa0 [ 780.854861][T16891] do_recvmmsg+0x17ee/0x2300 [ 780.859453][T16891] __se_sys_recvmmsg+0x247/0x410 [ 780.864394][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 780.869268][T16891] do_syscall_64+0x9f/0x140 [ 780.873778][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 780.879723][T16891] [ 780.882051][T16891] Uninit was stored to memory at: [ 780.887087][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 780.892805][T16891] __msan_chain_origin+0x57/0xa0 [ 780.897745][T16891] do_recvmmsg+0x17ee/0x2300 [ 780.902366][T16891] __se_sys_recvmmsg+0x247/0x410 [ 780.907314][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 780.912171][T16891] do_syscall_64+0x9f/0x140 [ 780.916754][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 780.922634][T16891] [ 780.924962][T16891] Uninit was stored to memory at: [ 780.929992][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 780.935709][T16891] __msan_chain_origin+0x57/0xa0 [ 780.940756][T16891] do_recvmmsg+0x17ee/0x2300 [ 780.945350][T16891] __se_sys_recvmmsg+0x247/0x410 [ 780.950290][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 780.955147][T16891] do_syscall_64+0x9f/0x140 [ 780.959654][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 780.965536][T16891] [ 780.967864][T16891] Uninit was stored to memory at: [ 780.972896][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 780.978615][T16891] __msan_chain_origin+0x57/0xa0 [ 780.983559][T16891] do_recvmmsg+0x17ee/0x2300 [ 780.988156][T16891] __se_sys_recvmmsg+0x247/0x410 [ 780.993098][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 780.997952][T16891] do_syscall_64+0x9f/0x140 [ 781.002467][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 781.008344][T16891] [ 781.010665][T16891] Uninit was stored to memory at: [ 781.015696][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 781.021447][T16891] __msan_chain_origin+0x57/0xa0 [ 781.026391][T16891] do_recvmmsg+0x17ee/0x2300 [ 781.030984][T16891] __se_sys_recvmmsg+0x247/0x410 [ 781.035924][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 781.040778][T16891] do_syscall_64+0x9f/0x140 [ 781.045341][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 781.051222][T16891] [ 781.053547][T16891] Uninit was stored to memory at: [ 781.058584][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 781.064304][T16891] __msan_chain_origin+0x57/0xa0 [ 781.069254][T16891] do_recvmmsg+0x17ee/0x2300 [ 781.073854][T16891] __se_sys_recvmmsg+0x247/0x410 [ 781.078796][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 781.083653][T16891] do_syscall_64+0x9f/0x140 [ 781.088159][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 781.094039][T16891] [ 781.096360][T16891] Uninit was stored to memory at: [ 781.101398][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 781.107117][T16891] __msan_chain_origin+0x57/0xa0 [ 781.112059][T16891] do_recvmmsg+0x17ee/0x2300 [ 781.116654][T16891] __se_sys_recvmmsg+0x247/0x410 [ 781.121599][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 781.126450][T16891] do_syscall_64+0x9f/0x140 [ 781.130960][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 781.136840][T16891] [ 781.139163][T16891] Local variable ----msg_sys@do_recvmmsg created at: [ 781.145837][T16891] do_recvmmsg+0xbc/0x2300 [ 781.150254][T16891] do_recvmmsg+0xbc/0x2300 [ 781.455654][T16931] not chained 1040000 origins [ 781.460465][T16931] CPU: 0 PID: 16931 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 781.469220][T16931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 781.479272][T16931] Call Trace: [ 781.482580][T16931] dump_stack+0x21c/0x280 [ 781.486925][T16931] kmsan_internal_chain_origin+0x6f/0x130 [ 781.492648][T16931] ? __msan_get_context_state+0x9/0x20 [ 781.498115][T16931] ? kmsan_get_metadata+0x116/0x180 [ 781.503329][T16931] ? kmsan_internal_check_memory+0xb1/0x520 [ 781.509232][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 781.514869][T16931] ? kmsan_check_memory+0xd/0x10 [ 781.519868][T16931] ? ____sys_recvmsg+0xa2d/0xd80 [ 781.524817][T16931] ? __msan_get_context_state+0x9/0x20 [ 781.530282][T16931] ? kfree+0x29/0x11b0 [ 781.534356][T16931] ? kmsan_get_metadata+0x116/0x180 [ 781.539564][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 781.545206][T16931] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 781.551275][T16931] ? _copy_from_user+0x1cd/0x2d0 [ 781.556214][T16931] ? kmsan_get_metadata+0x116/0x180 [ 781.561414][T16931] __msan_chain_origin+0x57/0xa0 [ 781.566359][T16931] do_recvmmsg+0x17ee/0x2300 [ 781.570970][T16931] ? kmsan_internal_set_origin+0x85/0xc0 [ 781.576609][T16931] ? __msan_poison_alloca+0xe9/0x110 [ 781.581906][T16931] ? __se_sys_recvmmsg+0xd3/0x410 [ 781.586944][T16931] __se_sys_recvmmsg+0x247/0x410 [ 781.591884][T16931] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 781.597701][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 781.602560][T16931] do_syscall_64+0x9f/0x140 [ 781.607068][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 781.612956][T16931] RIP: 0033:0x45e159 [ 781.616854][T16931] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 781.636466][T16931] RSP: 002b:00007f7ad6ba7c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 781.644890][T16931] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 781.652953][T16931] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 781.660933][T16931] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 781.668953][T16931] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 781.676935][T16931] R13: 00000000016afb7f R14: 00007f7ad6ba89c0 R15: 000000000119c034 [ 781.684910][T16931] Uninit was stored to memory at: [ 781.689950][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 781.695677][T16931] __msan_chain_origin+0x57/0xa0 [ 781.700715][T16931] do_recvmmsg+0x17ee/0x2300 [ 781.705313][T16931] __se_sys_recvmmsg+0x247/0x410 [ 781.710257][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 781.715112][T16931] do_syscall_64+0x9f/0x140 [ 781.719620][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 781.725497][T16931] [ 781.727817][T16931] Uninit was stored to memory at: [ 781.732851][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 781.738597][T16931] __msan_chain_origin+0x57/0xa0 [ 781.743544][T16931] do_recvmmsg+0x17ee/0x2300 [ 781.748140][T16931] __se_sys_recvmmsg+0x247/0x410 [ 781.753081][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 781.757936][T16931] do_syscall_64+0x9f/0x140 [ 781.762441][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 781.768319][T16931] [ 781.770642][T16931] Uninit was stored to memory at: [ 781.775678][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 781.781398][T16931] __msan_chain_origin+0x57/0xa0 [ 781.786342][T16931] do_recvmmsg+0x17ee/0x2300 [ 781.790939][T16931] __se_sys_recvmmsg+0x247/0x410 [ 781.795880][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 781.800737][T16931] do_syscall_64+0x9f/0x140 [ 781.805246][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 781.811126][T16931] [ 781.813445][T16931] Uninit was stored to memory at: [ 781.818480][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 781.824201][T16931] __msan_chain_origin+0x57/0xa0 [ 781.829142][T16931] do_recvmmsg+0x17ee/0x2300 [ 781.833738][T16931] __se_sys_recvmmsg+0x247/0x410 [ 781.838682][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 781.843541][T16931] do_syscall_64+0x9f/0x140 [ 781.848057][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 781.853951][T16931] [ 781.856272][T16931] Uninit was stored to memory at: [ 781.861303][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 781.867025][T16931] __msan_chain_origin+0x57/0xa0 [ 781.871965][T16931] do_recvmmsg+0x17ee/0x2300 [ 781.876563][T16931] __se_sys_recvmmsg+0x247/0x410 [ 781.881500][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 781.886355][T16931] do_syscall_64+0x9f/0x140 [ 781.890865][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 781.896742][T16931] [ 781.899062][T16931] Uninit was stored to memory at: [ 781.904096][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 781.909817][T16931] __msan_chain_origin+0x57/0xa0 [ 781.914759][T16931] do_recvmmsg+0x17ee/0x2300 [ 781.919358][T16931] __se_sys_recvmmsg+0x247/0x410 [ 781.924297][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 781.929151][T16931] do_syscall_64+0x9f/0x140 [ 781.933657][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 781.939533][T16931] [ 781.941859][T16931] Uninit was stored to memory at: [ 781.946892][T16931] kmsan_internal_chain_origin+0xad/0x130 [ 781.952612][T16931] __msan_chain_origin+0x57/0xa0 [ 781.957563][T16931] do_recvmmsg+0x17ee/0x2300 [ 781.962156][T16931] __se_sys_recvmmsg+0x247/0x410 [ 781.967102][T16931] __x64_sys_recvmmsg+0x62/0x80 [ 781.971956][T16931] do_syscall_64+0x9f/0x140 [ 781.976464][T16931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 781.982343][T16931] [ 781.984669][T16931] Local variable ----msg_sys@do_recvmmsg created at: [ 781.991347][T16931] do_recvmmsg+0xbc/0x2300 [ 781.995767][T16931] do_recvmmsg+0xbc/0x2300 [ 782.205753][T16891] not chained 1050000 origins [ 782.210473][T16891] CPU: 0 PID: 16891 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 782.219230][T16891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 782.232516][T16891] Call Trace: [ 782.235869][T16891] dump_stack+0x21c/0x280 [ 782.240215][T16891] kmsan_internal_chain_origin+0x6f/0x130 [ 782.245940][T16891] ? __msan_get_context_state+0x9/0x20 [ 782.251403][T16891] ? kmsan_get_metadata+0x116/0x180 [ 782.256611][T16891] ? kmsan_internal_check_memory+0xb1/0x520 [ 782.262515][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 782.268157][T16891] ? kmsan_check_memory+0xd/0x10 [ 782.273114][T16891] ? ____sys_recvmsg+0xa2d/0xd80 [ 782.278057][T16891] ? __msan_get_context_state+0x9/0x20 [ 782.283516][T16891] ? kfree+0x29/0x11b0 [ 782.287594][T16891] ? kmsan_get_metadata+0x116/0x180 [ 782.292802][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 782.298456][T16891] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 782.304534][T16891] ? _copy_from_user+0x1cd/0x2d0 [ 782.309477][T16891] ? kmsan_get_metadata+0x116/0x180 [ 782.314675][T16891] __msan_chain_origin+0x57/0xa0 [ 782.319620][T16891] do_recvmmsg+0x17ee/0x2300 [ 782.324229][T16891] ? kmsan_internal_set_origin+0x85/0xc0 [ 782.329864][T16891] ? __msan_poison_alloca+0xe9/0x110 [ 782.335154][T16891] ? __se_sys_recvmmsg+0xd3/0x410 [ 782.340186][T16891] __se_sys_recvmmsg+0x247/0x410 [ 782.345125][T16891] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 782.350937][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 782.355792][T16891] do_syscall_64+0x9f/0x140 [ 782.360300][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 782.366188][T16891] RIP: 0033:0x45e159 [ 782.370089][T16891] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 782.389696][T16891] RSP: 002b:00007f92e7354c68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 782.398116][T16891] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 782.406093][T16891] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 782.414079][T16891] RBP: 000000000119c078 R08: 0000000000000000 R09: 0000000000000000 [ 782.422054][T16891] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119c034 [ 782.430027][T16891] R13: 00000000016afb7f R14: 00007f92e73559c0 R15: 000000000119c034 [ 782.438001][T16891] Uninit was stored to memory at: [ 782.443116][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 782.448838][T16891] __msan_chain_origin+0x57/0xa0 [ 782.453812][T16891] do_recvmmsg+0x17ee/0x2300 [ 782.458401][T16891] __se_sys_recvmmsg+0x247/0x410 [ 782.463338][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 782.468196][T16891] do_syscall_64+0x9f/0x140 [ 782.472703][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 782.478687][T16891] [ 782.481006][T16891] Uninit was stored to memory at: [ 782.486121][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 782.491842][T16891] __msan_chain_origin+0x57/0xa0 [ 782.496784][T16891] do_recvmmsg+0x17ee/0x2300 [ 782.501376][T16891] __se_sys_recvmmsg+0x247/0x410 [ 782.506315][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 782.511171][T16891] do_syscall_64+0x9f/0x140 [ 782.515678][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 782.521560][T16891] [ 782.523880][T16891] Uninit was stored to memory at: [ 782.528918][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 782.534637][T16891] __msan_chain_origin+0x57/0xa0 [ 782.539577][T16891] do_recvmmsg+0x17ee/0x2300 [ 782.544171][T16891] __se_sys_recvmmsg+0x247/0x410 [ 782.549110][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 782.553968][T16891] do_syscall_64+0x9f/0x140 [ 782.558475][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 782.564354][T16891] [ 782.566675][T16891] Uninit was stored to memory at: [ 782.571708][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 782.577428][T16891] __msan_chain_origin+0x57/0xa0 [ 782.582368][T16891] do_recvmmsg+0x17ee/0x2300 [ 782.586958][T16891] __se_sys_recvmmsg+0x247/0x410 [ 782.591896][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 782.596747][T16891] do_syscall_64+0x9f/0x140 [ 782.601254][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 782.607130][T16891] [ 782.609460][T16891] Uninit was stored to memory at: [ 782.614490][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 782.620208][T16891] __msan_chain_origin+0x57/0xa0 [ 782.625155][T16891] do_recvmmsg+0x17ee/0x2300 [ 782.630460][T16891] __se_sys_recvmmsg+0x247/0x410 [ 782.635397][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 782.640248][T16891] do_syscall_64+0x9f/0x140 [ 782.644755][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 782.650635][T16891] [ 782.652958][T16891] Uninit was stored to memory at: [ 782.657998][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 782.663765][T16891] __msan_chain_origin+0x57/0xa0 [ 782.668712][T16891] do_recvmmsg+0x17ee/0x2300 [ 782.673300][T16891] __se_sys_recvmmsg+0x247/0x410 [ 782.678261][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 782.683111][T16891] do_syscall_64+0x9f/0x140 [ 782.687617][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 782.693496][T16891] [ 782.695821][T16891] Uninit was stored to memory at: [ 782.700855][T16891] kmsan_internal_chain_origin+0xad/0x130 [ 782.706574][T16891] __msan_chain_origin+0x57/0xa0 [ 782.711512][T16891] do_recvmmsg+0x17ee/0x2300 [ 782.716105][T16891] __se_sys_recvmmsg+0x247/0x410 [ 782.721042][T16891] __x64_sys_recvmmsg+0x62/0x80 [ 782.725893][T16891] do_syscall_64+0x9f/0x140 [ 782.735610][T16891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 782.741486][T16891] [ 782.743807][T16891] Local variable ----msg_sys@do_recvmmsg created at: [ 782.750480][T16891] do_recvmmsg+0xbc/0x2300 [ 782.754896][T16891] do_recvmmsg+0xbc/0x2300 [ 783.764212][T11557] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 784.204945][T11557] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 09:45:23 executing program 0: socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000015c0)={0xffffffffffffffff}) sendmmsg$unix(r0, &(0x7f00000041c0)=[{0x0, 0x0, 0x0}], 0x1, 0x0) 09:45:23 executing program 5: socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmmsg(r1, &(0x7f0000000880)=[{{&(0x7f0000002d80)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x80, 0x0, 0x0, 0x0, 0x1a1}}], 0x4000246, 0x0, 0x0) setsockopt$sock_int(r0, 0x1, 0x9, 0x0, 0x0) 09:45:23 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x9000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:45:23 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x3f00000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:45:23 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x6c00, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:45:23 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000240)={'ip_vti0\x00', &(0x7f00000001c0)={'erspan0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast1, @multicast1}}}}) 09:45:24 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x4000000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) [ 784.694822][T11557] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 09:45:24 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0xa000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:45:24 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x7400, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) [ 785.239410][T17054] not chained 1060000 origins [ 785.244128][T17054] CPU: 1 PID: 17054 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 785.252889][T17054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 785.262947][T17054] Call Trace: [ 785.263610][T11557] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 785.266280][T17054] dump_stack+0x21c/0x280 [ 785.280822][T17054] kmsan_internal_chain_origin+0x6f/0x130 [ 785.286555][T17054] ? kmsan_get_metadata+0x116/0x180 [ 785.291768][T17054] ? kmsan_internal_check_memory+0xb1/0x520 [ 785.297669][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 785.303309][T17054] ? kmsan_check_memory+0xd/0x10 [ 785.308257][T17054] ? ____sys_recvmsg+0xa2d/0xd80 [ 785.313200][T17054] ? __msan_get_context_state+0x9/0x20 [ 785.318665][T17054] ? kfree+0x29/0x11b0 [ 785.322740][T17054] ? kmsan_get_metadata+0x116/0x180 [ 785.327953][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 785.333596][T17054] ? kmsan_internal_unpoison_shadow+0x42/0x70 09:45:24 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x401f000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) [ 785.339680][T17054] ? _copy_from_user+0x1cd/0x2d0 [ 785.344626][T17054] ? kmsan_get_metadata+0x116/0x180 [ 785.349830][T17054] __msan_chain_origin+0x57/0xa0 [ 785.354779][T17054] do_recvmmsg+0x17ee/0x2300 [ 785.359393][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 785.365038][T17054] ? __msan_poison_alloca+0xe9/0x110 [ 785.370329][T17054] ? __se_sys_recvmmsg+0xd3/0x410 [ 785.375347][T17054] __se_sys_recvmmsg+0x247/0x410 [ 785.380273][T17054] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 785.386071][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 785.390913][T17054] do_syscall_64+0x9f/0x140 [ 785.395408][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 785.401286][T17054] RIP: 0033:0x45e159 [ 785.405172][T17054] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 785.424870][T17054] RSP: 002b:00007f481eb2cc68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 785.433275][T17054] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 785.441233][T17054] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 785.449190][T17054] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 785.457149][T17054] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 785.465112][T17054] R13: 00000000016afb7f R14: 00007f481eb2d9c0 R15: 000000000119bf8c [ 785.473073][T17054] Uninit was stored to memory at: [ 785.478093][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 785.483803][T17054] __msan_chain_origin+0x57/0xa0 [ 785.488745][T17054] do_recvmmsg+0x17ee/0x2300 [ 785.493337][T17054] __se_sys_recvmmsg+0x247/0x410 [ 785.498265][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 785.503103][T17054] do_syscall_64+0x9f/0x140 [ 785.507593][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 785.513463][T17054] [ 785.515774][T17054] Uninit was stored to memory at: [ 785.520806][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 785.526524][T17054] __msan_chain_origin+0x57/0xa0 [ 785.531459][T17054] do_recvmmsg+0x17ee/0x2300 [ 785.536044][T17054] __se_sys_recvmmsg+0x247/0x410 [ 785.540990][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 785.545847][T17054] do_syscall_64+0x9f/0x140 [ 785.550341][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 785.556209][T17054] [ 785.558524][T17054] Uninit was stored to memory at: [ 785.563549][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 785.569256][T17054] __msan_chain_origin+0x57/0xa0 [ 785.574182][T17054] do_recvmmsg+0x17ee/0x2300 [ 785.578772][T17054] __se_sys_recvmmsg+0x247/0x410 [ 785.583698][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 785.588537][T17054] do_syscall_64+0x9f/0x140 [ 785.593029][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 785.598898][T17054] [ 785.601206][T17054] Uninit was stored to memory at: [ 785.606225][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 785.611952][T17054] __msan_chain_origin+0x57/0xa0 [ 785.616880][T17054] do_recvmmsg+0x17ee/0x2300 [ 785.621472][T17054] __se_sys_recvmmsg+0x247/0x410 [ 785.626411][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 785.631260][T17054] do_syscall_64+0x9f/0x140 [ 785.635759][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 785.641631][T17054] [ 785.643952][T17054] Uninit was stored to memory at: [ 785.648987][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 785.654704][T17054] __msan_chain_origin+0x57/0xa0 [ 785.659641][T17054] do_recvmmsg+0x17ee/0x2300 [ 785.664225][T17054] __se_sys_recvmmsg+0x247/0x410 [ 785.669159][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 785.674002][T17054] do_syscall_64+0x9f/0x140 [ 785.678496][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 785.684367][T17054] [ 785.686682][T17054] Uninit was stored to memory at: [ 785.691818][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 785.697531][T17054] __msan_chain_origin+0x57/0xa0 [ 785.702461][T17054] do_recvmmsg+0x17ee/0x2300 [ 785.707063][T17054] __se_sys_recvmmsg+0x247/0x410 [ 785.711995][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 785.716842][T17054] do_syscall_64+0x9f/0x140 [ 785.721337][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 785.727210][T17054] [ 785.729524][T17054] Uninit was stored to memory at: [ 785.734544][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 785.740253][T17054] __msan_chain_origin+0x57/0xa0 [ 785.745180][T17054] do_recvmmsg+0x17ee/0x2300 [ 785.749759][T17054] __se_sys_recvmmsg+0x247/0x410 [ 785.754699][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 785.759537][T17054] do_syscall_64+0x9f/0x140 [ 785.764028][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 785.769896][T17054] [ 785.772208][T17054] Local variable ----msg_sys@do_recvmmsg created at: [ 785.778870][T17054] do_recvmmsg+0xbc/0x2300 [ 785.783272][T17054] do_recvmmsg+0xbc/0x2300 09:45:25 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0xb000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:45:25 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x7a00, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) [ 789.546746][T17054] not chained 1070000 origins [ 789.551464][T17054] CPU: 1 PID: 17054 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 789.560230][T17054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 789.570293][T17054] Call Trace: [ 789.573596][T17054] dump_stack+0x21c/0x280 [ 789.577969][T17054] kmsan_internal_chain_origin+0x6f/0x130 [ 789.583701][T17054] ? kmsan_get_metadata+0x116/0x180 [ 789.588908][T17054] ? kmsan_internal_check_memory+0xb1/0x520 [ 789.594813][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 789.600460][T17054] ? kmsan_check_memory+0xd/0x10 [ 789.605408][T17054] ? ____sys_recvmsg+0xa2d/0xd80 [ 789.610347][T17054] ? __msan_get_context_state+0x9/0x20 [ 789.615810][T17054] ? kfree+0x29/0x11b0 [ 789.619894][T17054] ? kmsan_get_metadata+0x116/0x180 [ 789.625100][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 789.630747][T17054] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 789.636828][T17054] ? _copy_from_user+0x1cd/0x2d0 [ 789.641775][T17054] ? kmsan_get_metadata+0x116/0x180 [ 789.646979][T17054] __msan_chain_origin+0x57/0xa0 [ 789.651918][T17054] do_recvmmsg+0x17ee/0x2300 [ 789.656525][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 789.662165][T17054] ? __msan_poison_alloca+0xe9/0x110 [ 789.667461][T17054] ? __se_sys_recvmmsg+0xd3/0x410 [ 789.672493][T17054] __se_sys_recvmmsg+0x247/0x410 [ 789.677441][T17054] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 789.683264][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 789.688134][T17054] do_syscall_64+0x9f/0x140 [ 789.692652][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 789.698545][T17054] RIP: 0033:0x45e159 [ 789.702444][T17054] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 789.722068][T17054] RSP: 002b:00007f481eb2cc68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 789.730490][T17054] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 789.738466][T17054] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 789.746444][T17054] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 789.754420][T17054] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 789.762397][T17054] R13: 00000000016afb7f R14: 00007f481eb2d9c0 R15: 000000000119bf8c [ 789.770369][T17054] Uninit was stored to memory at: [ 789.775408][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 789.781132][T17054] __msan_chain_origin+0x57/0xa0 [ 789.786186][T17054] do_recvmmsg+0x17ee/0x2300 [ 789.790779][T17054] __se_sys_recvmmsg+0x247/0x410 [ 789.796156][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 789.801016][T17054] do_syscall_64+0x9f/0x140 [ 789.805525][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 789.811427][T17054] [ 789.813751][T17054] Uninit was stored to memory at: [ 789.818784][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 789.825459][T17054] __msan_chain_origin+0x57/0xa0 [ 789.830404][T17054] do_recvmmsg+0x17ee/0x2300 [ 789.835000][T17054] __se_sys_recvmmsg+0x247/0x410 [ 789.839949][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 789.844805][T17054] do_syscall_64+0x9f/0x140 [ 789.849320][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 789.855202][T17054] [ 789.857525][T17054] Uninit was stored to memory at: [ 789.862561][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 789.868285][T17054] __msan_chain_origin+0x57/0xa0 [ 789.873231][T17054] do_recvmmsg+0x17ee/0x2300 [ 789.877826][T17054] __se_sys_recvmmsg+0x247/0x410 [ 789.882776][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 789.887631][T17054] do_syscall_64+0x9f/0x140 [ 789.892136][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 789.898013][T17054] [ 789.900347][T17054] Uninit was stored to memory at: [ 789.905380][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 789.911101][T17054] __msan_chain_origin+0x57/0xa0 [ 789.916047][T17054] do_recvmmsg+0x17ee/0x2300 [ 789.920639][T17054] __se_sys_recvmmsg+0x247/0x410 [ 789.925579][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 789.930435][T17054] do_syscall_64+0x9f/0x140 [ 789.934942][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 789.940828][T17054] [ 789.943181][T17054] Uninit was stored to memory at: [ 789.948219][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 789.953941][T17054] __msan_chain_origin+0x57/0xa0 [ 789.958884][T17054] do_recvmmsg+0x17ee/0x2300 [ 789.963478][T17054] __se_sys_recvmmsg+0x247/0x410 [ 789.968421][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 789.973277][T17054] do_syscall_64+0x9f/0x140 [ 789.977781][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 789.983660][T17054] [ 789.985980][T17054] Uninit was stored to memory at: [ 789.991011][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 789.996732][T17054] __msan_chain_origin+0x57/0xa0 [ 790.001668][T17054] do_recvmmsg+0x17ee/0x2300 [ 790.006264][T17054] __se_sys_recvmmsg+0x247/0x410 [ 790.011203][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 790.016068][T17054] do_syscall_64+0x9f/0x140 [ 790.020574][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 790.026452][T17054] [ 790.028772][T17054] Uninit was stored to memory at: [ 790.033804][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 790.039522][T17054] __msan_chain_origin+0x57/0xa0 [ 790.044463][T17054] do_recvmmsg+0x17ee/0x2300 [ 790.049061][T17054] __se_sys_recvmmsg+0x247/0x410 [ 790.054000][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 790.058856][T17054] do_syscall_64+0x9f/0x140 [ 790.063369][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 790.069247][T17054] [ 790.071571][T17054] Local variable ----msg_sys@do_recvmmsg created at: [ 790.078244][T17054] do_recvmmsg+0xbc/0x2300 [ 790.082662][T17054] do_recvmmsg+0xbc/0x2300 [ 792.374634][T11557] device hsr_slave_0 left promiscuous mode [ 792.418794][T11557] device hsr_slave_1 left promiscuous mode [ 792.450382][T11557] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 792.458366][T11557] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 792.509167][T11557] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 792.517129][T11557] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 792.591155][T11557] device bridge_slave_1 left promiscuous mode [ 792.598106][T11557] bridge0: port 2(bridge_slave_1) entered disabled state [ 792.627053][T11557] device bridge_slave_0 left promiscuous mode [ 792.635471][T11557] bridge0: port 1(bridge_slave_0) entered disabled state [ 792.663854][T11557] device team0 left promiscuous mode [ 792.670382][T11557] device team_slave_0 left promiscuous mode [ 792.676522][T11557] device team_slave_1 left promiscuous mode [ 792.685952][T11557] device veth1_macvtap left promiscuous mode [ 792.692386][T11557] device veth0_macvtap left promiscuous mode [ 792.698528][T11557] device veth1_vlan left promiscuous mode [ 792.704965][T11557] device veth0_vlan left promiscuous mode [ 793.019641][T17054] not chained 1080000 origins [ 793.024356][T17054] CPU: 1 PID: 17054 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 793.033112][T17054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 793.043165][T17054] Call Trace: [ 793.046466][T17054] dump_stack+0x21c/0x280 [ 793.050806][T17054] kmsan_internal_chain_origin+0x6f/0x130 [ 793.056532][T17054] ? kmsan_get_metadata+0x116/0x180 [ 793.061740][T17054] ? kmsan_internal_check_memory+0xb1/0x520 [ 793.067640][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 793.073276][T17054] ? kmsan_check_memory+0xd/0x10 [ 793.078218][T17054] ? ____sys_recvmsg+0xa2d/0xd80 [ 793.083159][T17054] ? __msan_get_context_state+0x9/0x20 [ 793.088623][T17054] ? kfree+0x29/0x11b0 [ 793.092696][T17054] ? kmsan_get_metadata+0x116/0x180 [ 793.097902][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 793.103545][T17054] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 793.109615][T17054] ? _copy_from_user+0x1cd/0x2d0 [ 793.114554][T17054] ? kmsan_get_metadata+0x116/0x180 [ 793.119837][T17054] __msan_chain_origin+0x57/0xa0 [ 793.124778][T17054] do_recvmmsg+0x17ee/0x2300 [ 793.129389][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 793.135021][T17054] ? __msan_poison_alloca+0xe9/0x110 [ 793.140314][T17054] ? __se_sys_recvmmsg+0xd3/0x410 [ 793.145346][T17054] __se_sys_recvmmsg+0x247/0x410 [ 793.150288][T17054] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 793.156102][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 793.160957][T17054] do_syscall_64+0x9f/0x140 [ 793.165465][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 793.171351][T17054] RIP: 0033:0x45e159 [ 793.175251][T17054] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 793.194862][T17054] RSP: 002b:00007f481eb2cc68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 793.203280][T17054] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 793.211252][T17054] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 793.219227][T17054] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 793.227202][T17054] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 793.235177][T17054] R13: 00000000016afb7f R14: 00007f481eb2d9c0 R15: 000000000119bf8c [ 793.243151][T17054] Uninit was stored to memory at: [ 793.248192][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 793.253912][T17054] __msan_chain_origin+0x57/0xa0 [ 793.258850][T17054] do_recvmmsg+0x17ee/0x2300 [ 793.263443][T17054] __se_sys_recvmmsg+0x247/0x410 [ 793.268412][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 793.273264][T17054] do_syscall_64+0x9f/0x140 [ 793.277768][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 793.283643][T17054] [ 793.285960][T17054] Uninit was stored to memory at: [ 793.290990][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 793.296709][T17054] __msan_chain_origin+0x57/0xa0 [ 793.301656][T17054] do_recvmmsg+0x17ee/0x2300 [ 793.306248][T17054] __se_sys_recvmmsg+0x247/0x410 [ 793.311185][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 793.316041][T17054] do_syscall_64+0x9f/0x140 [ 793.320547][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 793.326424][T17054] [ 793.328742][T17054] Uninit was stored to memory at: [ 793.333773][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 793.339491][T17054] __msan_chain_origin+0x57/0xa0 [ 793.344431][T17054] do_recvmmsg+0x17ee/0x2300 [ 793.349024][T17054] __se_sys_recvmmsg+0x247/0x410 [ 793.353969][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 793.358824][T17054] do_syscall_64+0x9f/0x140 [ 793.363331][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 793.369212][T17054] [ 793.371533][T17054] Uninit was stored to memory at: [ 793.376564][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 793.382278][T17054] __msan_chain_origin+0x57/0xa0 [ 793.387213][T17054] do_recvmmsg+0x17ee/0x2300 [ 793.391820][T17054] __se_sys_recvmmsg+0x247/0x410 [ 793.396756][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 793.401608][T17054] do_syscall_64+0x9f/0x140 [ 793.406122][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 793.412002][T17054] [ 793.414323][T17054] Uninit was stored to memory at: [ 793.419354][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 793.425074][T17054] __msan_chain_origin+0x57/0xa0 [ 793.430883][T17054] do_recvmmsg+0x17ee/0x2300 [ 793.435474][T17054] __se_sys_recvmmsg+0x247/0x410 [ 793.440417][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 793.445276][T17054] do_syscall_64+0x9f/0x140 [ 793.449780][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 793.455667][T17054] [ 793.457988][T17054] Uninit was stored to memory at: [ 793.463022][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 793.468754][T17054] __msan_chain_origin+0x57/0xa0 [ 793.473694][T17054] do_recvmmsg+0x17ee/0x2300 [ 793.478282][T17054] __se_sys_recvmmsg+0x247/0x410 [ 793.483220][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 793.488100][T17054] do_syscall_64+0x9f/0x140 [ 793.492629][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 793.498514][T17054] [ 793.500832][T17054] Uninit was stored to memory at: [ 793.505863][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 793.511581][T17054] __msan_chain_origin+0x57/0xa0 [ 793.516519][T17054] do_recvmmsg+0x17ee/0x2300 [ 793.521228][T17054] __se_sys_recvmmsg+0x247/0x410 [ 793.528263][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 793.533124][T17054] do_syscall_64+0x9f/0x140 [ 793.537651][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 793.543556][T17054] [ 793.545884][T17054] Local variable ----msg_sys@do_recvmmsg created at: [ 793.552564][T17054] do_recvmmsg+0xbc/0x2300 [ 793.556992][T17054] do_recvmmsg+0xbc/0x2300 [ 794.061503][T17054] not chained 1090000 origins [ 794.066224][T17054] CPU: 0 PID: 17054 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 794.074983][T17054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 794.085040][T17054] Call Trace: [ 794.088344][T17054] dump_stack+0x21c/0x280 [ 794.092691][T17054] kmsan_internal_chain_origin+0x6f/0x130 [ 794.098418][T17054] ? kmsan_get_metadata+0x116/0x180 [ 794.103632][T17054] ? kmsan_internal_check_memory+0xb1/0x520 [ 794.109536][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 794.115199][T17054] ? kmsan_check_memory+0xd/0x10 [ 794.120154][T17054] ? ____sys_recvmsg+0xa2d/0xd80 [ 794.125119][T17054] ? __msan_get_context_state+0x9/0x20 [ 794.130590][T17054] ? kfree+0x29/0x11b0 [ 794.134666][T17054] ? kmsan_get_metadata+0x116/0x180 [ 794.139877][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 794.145521][T17054] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 794.151601][T17054] ? _copy_from_user+0x1cd/0x2d0 [ 794.156546][T17054] ? kmsan_get_metadata+0x116/0x180 [ 794.161749][T17054] __msan_chain_origin+0x57/0xa0 [ 794.166694][T17054] do_recvmmsg+0x17ee/0x2300 [ 794.171308][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 794.176945][T17054] ? __msan_poison_alloca+0xe9/0x110 [ 794.182242][T17054] ? __se_sys_recvmmsg+0xd3/0x410 [ 794.187274][T17054] __se_sys_recvmmsg+0x247/0x410 [ 794.192216][T17054] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 794.198031][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 794.202889][T17054] do_syscall_64+0x9f/0x140 [ 794.207400][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 794.213293][T17054] RIP: 0033:0x45e159 [ 794.217196][T17054] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 794.236806][T17054] RSP: 002b:00007f481eb2cc68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 794.245229][T17054] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 794.253203][T17054] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 794.261176][T17054] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 794.269169][T17054] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 794.277148][T17054] R13: 00000000016afb7f R14: 00007f481eb2d9c0 R15: 000000000119bf8c [ 794.285133][T17054] Uninit was stored to memory at: [ 794.290172][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 794.295894][T17054] __msan_chain_origin+0x57/0xa0 [ 794.301009][T17054] do_recvmmsg+0x17ee/0x2300 [ 794.305607][T17054] __se_sys_recvmmsg+0x247/0x410 [ 794.310554][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 794.315433][T17054] do_syscall_64+0x9f/0x140 [ 794.319959][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 794.325855][T17054] [ 794.328176][T17054] Uninit was stored to memory at: [ 794.333214][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 794.338933][T17054] __msan_chain_origin+0x57/0xa0 [ 794.343881][T17054] do_recvmmsg+0x17ee/0x2300 [ 794.348564][T17054] __se_sys_recvmmsg+0x247/0x410 [ 794.353514][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 794.358367][T17054] do_syscall_64+0x9f/0x140 [ 794.362876][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 794.368756][T17054] [ 794.371077][T17054] Uninit was stored to memory at: [ 794.376113][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 794.381838][T17054] __msan_chain_origin+0x57/0xa0 [ 794.386780][T17054] do_recvmmsg+0x17ee/0x2300 [ 794.391372][T17054] __se_sys_recvmmsg+0x247/0x410 [ 794.396311][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 794.401169][T17054] do_syscall_64+0x9f/0x140 [ 794.405677][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 794.411557][T17054] [ 794.413883][T17054] Uninit was stored to memory at: [ 794.418917][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 794.424642][T17054] __msan_chain_origin+0x57/0xa0 [ 794.429588][T17054] do_recvmmsg+0x17ee/0x2300 [ 794.434186][T17054] __se_sys_recvmmsg+0x247/0x410 [ 794.439125][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 794.443980][T17054] do_syscall_64+0x9f/0x140 [ 794.448487][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 794.454368][T17054] [ 794.456690][T17054] Uninit was stored to memory at: [ 794.461728][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 794.467454][T17054] __msan_chain_origin+0x57/0xa0 [ 794.472413][T17054] do_recvmmsg+0x17ee/0x2300 [ 794.477009][T17054] __se_sys_recvmmsg+0x247/0x410 [ 794.481951][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 794.486808][T17054] do_syscall_64+0x9f/0x140 [ 794.491314][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 794.497193][T17054] [ 794.499518][T17054] Uninit was stored to memory at: [ 794.504551][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 794.510275][T17054] __msan_chain_origin+0x57/0xa0 [ 794.516002][T17054] do_recvmmsg+0x17ee/0x2300 [ 794.520603][T17054] __se_sys_recvmmsg+0x247/0x410 [ 794.525542][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 794.530400][T17054] do_syscall_64+0x9f/0x140 [ 794.534907][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 794.540788][T17054] [ 794.543111][T17054] Uninit was stored to memory at: [ 794.548144][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 794.553864][T17054] __msan_chain_origin+0x57/0xa0 [ 794.558801][T17054] do_recvmmsg+0x17ee/0x2300 [ 794.563396][T17054] __se_sys_recvmmsg+0x247/0x410 [ 794.568336][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 794.573192][T17054] do_syscall_64+0x9f/0x140 [ 794.577699][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 794.583586][T17054] [ 794.585913][T17054] Local variable ----msg_sys@do_recvmmsg created at: [ 794.592598][T17054] do_recvmmsg+0xbc/0x2300 [ 794.597026][T17054] do_recvmmsg+0xbc/0x2300 [ 796.655614][T17054] not chained 1100000 origins [ 796.660335][T17054] CPU: 1 PID: 17054 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 796.669089][T17054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 796.679146][T17054] Call Trace: [ 796.682446][T17054] dump_stack+0x21c/0x280 [ 796.686790][T17054] kmsan_internal_chain_origin+0x6f/0x130 [ 796.692513][T17054] ? kmsan_get_metadata+0x116/0x180 [ 796.697732][T17054] ? kmsan_internal_check_memory+0xb1/0x520 [ 796.703656][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 796.709296][T17054] ? kmsan_check_memory+0xd/0x10 [ 796.714239][T17054] ? ____sys_recvmsg+0xa2d/0xd80 [ 796.719173][T17054] ? __msan_get_context_state+0x9/0x20 [ 796.724634][T17054] ? kfree+0x29/0x11b0 [ 796.728718][T17054] ? kmsan_get_metadata+0x116/0x180 [ 796.733925][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 796.739568][T17054] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 796.745644][T17054] ? _copy_from_user+0x1cd/0x2d0 [ 796.750584][T17054] ? kmsan_get_metadata+0x116/0x180 [ 796.755789][T17054] __msan_chain_origin+0x57/0xa0 [ 796.760736][T17054] do_recvmmsg+0x17ee/0x2300 [ 796.765351][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 796.770985][T17054] ? __msan_poison_alloca+0xe9/0x110 [ 796.776277][T17054] ? __se_sys_recvmmsg+0xd3/0x410 [ 796.781301][T17054] __se_sys_recvmmsg+0x247/0x410 [ 796.786244][T17054] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 796.792054][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 796.796909][T17054] do_syscall_64+0x9f/0x140 [ 796.801417][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 796.807305][T17054] RIP: 0033:0x45e159 [ 796.811202][T17054] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 796.830823][T17054] RSP: 002b:00007f481eb2cc68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 796.839246][T17054] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 796.847218][T17054] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 796.855196][T17054] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 796.863171][T17054] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 796.871145][T17054] R13: 00000000016afb7f R14: 00007f481eb2d9c0 R15: 000000000119bf8c [ 796.879208][T17054] Uninit was stored to memory at: [ 796.884248][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 796.889971][T17054] __msan_chain_origin+0x57/0xa0 [ 796.894916][T17054] do_recvmmsg+0x17ee/0x2300 [ 796.899508][T17054] __se_sys_recvmmsg+0x247/0x410 [ 796.904449][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 796.909303][T17054] do_syscall_64+0x9f/0x140 [ 796.913810][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 796.919689][T17054] [ 796.922008][T17054] Uninit was stored to memory at: [ 796.927044][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 796.932763][T17054] __msan_chain_origin+0x57/0xa0 [ 796.937705][T17054] do_recvmmsg+0x17ee/0x2300 [ 796.942303][T17054] __se_sys_recvmmsg+0x247/0x410 [ 796.947244][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 796.952100][T17054] do_syscall_64+0x9f/0x140 [ 796.956603][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 796.962482][T17054] [ 796.964802][T17054] Uninit was stored to memory at: [ 796.969834][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 796.975620][T17054] __msan_chain_origin+0x57/0xa0 [ 796.980569][T17054] do_recvmmsg+0x17ee/0x2300 [ 796.985162][T17054] __se_sys_recvmmsg+0x247/0x410 [ 796.990101][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 796.994960][T17054] do_syscall_64+0x9f/0x140 [ 796.999465][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 797.005344][T17054] [ 797.007666][T17054] Uninit was stored to memory at: [ 797.012699][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 797.018418][T17054] __msan_chain_origin+0x57/0xa0 [ 797.023360][T17054] do_recvmmsg+0x17ee/0x2300 [ 797.027961][T17054] __se_sys_recvmmsg+0x247/0x410 [ 797.032904][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 797.037762][T17054] do_syscall_64+0x9f/0x140 [ 797.042272][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 797.048154][T17054] [ 797.050473][T17054] Uninit was stored to memory at: [ 797.055505][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 797.061222][T17054] __msan_chain_origin+0x57/0xa0 [ 797.066171][T17054] do_recvmmsg+0x17ee/0x2300 [ 797.070763][T17054] __se_sys_recvmmsg+0x247/0x410 [ 797.075706][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 797.080562][T17054] do_syscall_64+0x9f/0x140 [ 797.085071][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 797.090950][T17054] [ 797.093269][T17054] Uninit was stored to memory at: [ 797.098300][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 797.104022][T17054] __msan_chain_origin+0x57/0xa0 [ 797.108963][T17054] do_recvmmsg+0x17ee/0x2300 [ 797.113556][T17054] __se_sys_recvmmsg+0x247/0x410 [ 797.118496][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 797.123350][T17054] do_syscall_64+0x9f/0x140 [ 797.127856][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 797.133734][T17054] [ 797.136053][T17054] Uninit was stored to memory at: [ 797.141087][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 797.146807][T17054] __msan_chain_origin+0x57/0xa0 [ 797.151755][T17054] do_recvmmsg+0x17ee/0x2300 [ 797.156351][T17054] __se_sys_recvmmsg+0x247/0x410 [ 797.161287][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 797.166160][T17054] do_syscall_64+0x9f/0x140 [ 797.170675][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 797.176557][T17054] [ 797.178877][T17054] Local variable ----msg_sys@do_recvmmsg created at: [ 797.185553][T17054] do_recvmmsg+0xbc/0x2300 [ 797.189971][T17054] do_recvmmsg+0xbc/0x2300 [ 799.484146][T17054] not chained 1110000 origins [ 799.488871][T17054] CPU: 0 PID: 17054 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 799.497630][T17054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 799.507688][T17054] Call Trace: [ 799.510987][T17054] dump_stack+0x21c/0x280 [ 799.515332][T17054] kmsan_internal_chain_origin+0x6f/0x130 [ 799.521070][T17054] ? kmsan_get_metadata+0x116/0x180 [ 799.526288][T17054] ? kmsan_internal_check_memory+0xb1/0x520 [ 799.532188][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 799.537823][T17054] ? kmsan_check_memory+0xd/0x10 [ 799.542762][T17054] ? ____sys_recvmsg+0xa2d/0xd80 [ 799.547700][T17054] ? __msan_get_context_state+0x9/0x20 [ 799.553160][T17054] ? kfree+0x29/0x11b0 [ 799.557229][T17054] ? kmsan_get_metadata+0x116/0x180 [ 799.562436][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 799.568084][T17054] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 799.574162][T17054] ? _copy_from_user+0x1cd/0x2d0 [ 799.579312][T17054] ? kmsan_get_metadata+0x116/0x180 [ 799.585049][T17054] __msan_chain_origin+0x57/0xa0 [ 799.590004][T17054] do_recvmmsg+0x17ee/0x2300 [ 799.594627][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 799.600268][T17054] ? __msan_poison_alloca+0xe9/0x110 [ 799.605558][T17054] ? __se_sys_recvmmsg+0xd3/0x410 [ 799.610582][T17054] __se_sys_recvmmsg+0x247/0x410 [ 799.615526][T17054] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 799.621346][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 799.626217][T17054] do_syscall_64+0x9f/0x140 [ 799.630730][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 799.636621][T17054] RIP: 0033:0x45e159 [ 799.640520][T17054] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 799.660136][T17054] RSP: 002b:00007f481eb2cc68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 799.668563][T17054] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 799.676540][T17054] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 799.684520][T17054] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 799.692493][T17054] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 799.700468][T17054] R13: 00000000016afb7f R14: 00007f481eb2d9c0 R15: 000000000119bf8c [ 799.708448][T17054] Uninit was stored to memory at: [ 799.713494][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 799.719208][T17054] __msan_chain_origin+0x57/0xa0 [ 799.724150][T17054] do_recvmmsg+0x17ee/0x2300 [ 799.728742][T17054] __se_sys_recvmmsg+0x247/0x410 [ 799.733684][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 799.738533][T17054] do_syscall_64+0x9f/0x140 [ 799.743035][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 799.748916][T17054] [ 799.751245][T17054] Uninit was stored to memory at: [ 799.756280][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 799.761996][T17054] __msan_chain_origin+0x57/0xa0 [ 799.766938][T17054] do_recvmmsg+0x17ee/0x2300 [ 799.771532][T17054] __se_sys_recvmmsg+0x247/0x410 [ 799.776467][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 799.781320][T17054] do_syscall_64+0x9f/0x140 [ 799.785824][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 799.791698][T17054] [ 799.794019][T17054] Uninit was stored to memory at: [ 799.799050][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 799.804767][T17054] __msan_chain_origin+0x57/0xa0 [ 799.809706][T17054] do_recvmmsg+0x17ee/0x2300 [ 799.814299][T17054] __se_sys_recvmmsg+0x247/0x410 [ 799.819238][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 799.824086][T17054] do_syscall_64+0x9f/0x140 [ 799.828586][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 799.834463][T17054] [ 799.836783][T17054] Uninit was stored to memory at: [ 799.841814][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 799.847531][T17054] __msan_chain_origin+0x57/0xa0 [ 799.852464][T17054] do_recvmmsg+0x17ee/0x2300 [ 799.857052][T17054] __se_sys_recvmmsg+0x247/0x410 [ 799.861988][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 799.866840][T17054] do_syscall_64+0x9f/0x140 [ 799.871338][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 799.877214][T17054] [ 799.879536][T17054] Uninit was stored to memory at: [ 799.884588][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 799.890305][T17054] __msan_chain_origin+0x57/0xa0 [ 799.895252][T17054] do_recvmmsg+0x17ee/0x2300 [ 799.899842][T17054] __se_sys_recvmmsg+0x247/0x410 [ 799.904781][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 799.909631][T17054] do_syscall_64+0x9f/0x140 [ 799.914137][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 799.920012][T17054] [ 799.922331][T17054] Uninit was stored to memory at: [ 799.927359][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 799.933080][T17054] __msan_chain_origin+0x57/0xa0 [ 799.938016][T17054] do_recvmmsg+0x17ee/0x2300 [ 799.942602][T17054] __se_sys_recvmmsg+0x247/0x410 [ 799.947541][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 799.952398][T17054] do_syscall_64+0x9f/0x140 [ 799.956900][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 799.962774][T17054] [ 799.965092][T17054] Uninit was stored to memory at: [ 799.970121][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 799.975839][T17054] __msan_chain_origin+0x57/0xa0 [ 799.980788][T17054] do_recvmmsg+0x17ee/0x2300 [ 799.985385][T17054] __se_sys_recvmmsg+0x247/0x410 [ 799.990327][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 799.995186][T17054] do_syscall_64+0x9f/0x140 [ 799.999693][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 800.005577][T17054] [ 800.007903][T17054] Local variable ----msg_sys@do_recvmmsg created at: [ 800.014580][T17054] do_recvmmsg+0xbc/0x2300 [ 800.018995][T17054] do_recvmmsg+0xbc/0x2300 [ 800.809252][T17054] not chained 1120000 origins [ 800.813976][T17054] CPU: 0 PID: 17054 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 800.822729][T17054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 800.832787][T17054] Call Trace: [ 800.836088][T17054] dump_stack+0x21c/0x280 [ 800.840429][T17054] kmsan_internal_chain_origin+0x6f/0x130 [ 800.846241][T17054] ? kmsan_get_metadata+0x116/0x180 [ 800.851444][T17054] ? kmsan_internal_check_memory+0xb1/0x520 [ 800.857345][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 800.862981][T17054] ? kmsan_check_memory+0xd/0x10 [ 800.867920][T17054] ? ____sys_recvmsg+0xa2d/0xd80 [ 800.872869][T17054] ? __msan_get_context_state+0x9/0x20 [ 800.878331][T17054] ? kfree+0x29/0x11b0 [ 800.882402][T17054] ? kmsan_get_metadata+0x116/0x180 [ 800.887607][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 800.893244][T17054] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 800.899320][T17054] ? _copy_from_user+0x1cd/0x2d0 [ 800.904307][T17054] ? kmsan_get_metadata+0x116/0x180 [ 800.909508][T17054] __msan_chain_origin+0x57/0xa0 [ 800.914457][T17054] do_recvmmsg+0x17ee/0x2300 [ 800.919064][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 800.924698][T17054] ? __msan_poison_alloca+0xe9/0x110 [ 800.930002][T17054] ? __se_sys_recvmmsg+0xd3/0x410 [ 800.935030][T17054] __se_sys_recvmmsg+0x247/0x410 [ 800.939966][T17054] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 800.945780][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 800.950638][T17054] do_syscall_64+0x9f/0x140 [ 800.955143][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 800.961039][T17054] RIP: 0033:0x45e159 [ 800.964938][T17054] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 800.984572][T17054] RSP: 002b:00007f481eb2cc68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 800.992989][T17054] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 801.000958][T17054] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 801.009036][T17054] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 801.017011][T17054] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 801.024985][T17054] R13: 00000000016afb7f R14: 00007f481eb2d9c0 R15: 000000000119bf8c [ 801.032959][T17054] Uninit was stored to memory at: [ 801.038001][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 801.043728][T17054] __msan_chain_origin+0x57/0xa0 [ 801.048665][T17054] do_recvmmsg+0x17ee/0x2300 [ 801.053257][T17054] __se_sys_recvmmsg+0x247/0x410 [ 801.058251][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 801.063105][T17054] do_syscall_64+0x9f/0x140 [ 801.067607][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 801.073484][T17054] [ 801.075803][T17054] Uninit was stored to memory at: [ 801.080861][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 801.086580][T17054] __msan_chain_origin+0x57/0xa0 [ 801.091515][T17054] do_recvmmsg+0x17ee/0x2300 [ 801.096103][T17054] __se_sys_recvmmsg+0x247/0x410 [ 801.101041][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 801.105893][T17054] do_syscall_64+0x9f/0x140 [ 801.110398][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 801.116280][T17054] [ 801.118600][T17054] Uninit was stored to memory at: [ 801.123631][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 801.129353][T17054] __msan_chain_origin+0x57/0xa0 [ 801.134292][T17054] do_recvmmsg+0x17ee/0x2300 [ 801.138879][T17054] __se_sys_recvmmsg+0x247/0x410 [ 801.143822][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 801.148670][T17054] do_syscall_64+0x9f/0x140 [ 801.153227][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 801.159108][T17054] [ 801.161425][T17054] Uninit was stored to memory at: [ 801.166458][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 801.172176][T17054] __msan_chain_origin+0x57/0xa0 [ 801.177115][T17054] do_recvmmsg+0x17ee/0x2300 [ 801.181708][T17054] __se_sys_recvmmsg+0x247/0x410 [ 801.186646][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 801.191494][T17054] do_syscall_64+0x9f/0x140 [ 801.195998][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 801.201875][T17054] [ 801.204195][T17054] Uninit was stored to memory at: [ 801.209223][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 801.214945][T17054] __msan_chain_origin+0x57/0xa0 [ 801.219889][T17054] do_recvmmsg+0x17ee/0x2300 [ 801.224482][T17054] __se_sys_recvmmsg+0x247/0x410 [ 801.229418][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 801.234271][T17054] do_syscall_64+0x9f/0x140 [ 801.238778][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 801.244657][T17054] [ 801.246976][T17054] Uninit was stored to memory at: [ 801.252008][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 801.257726][T17054] __msan_chain_origin+0x57/0xa0 [ 801.262673][T17054] do_recvmmsg+0x17ee/0x2300 [ 801.267261][T17054] __se_sys_recvmmsg+0x247/0x410 [ 801.272198][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 801.277047][T17054] do_syscall_64+0x9f/0x140 [ 801.281577][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 801.287468][T17054] [ 801.289789][T17054] Uninit was stored to memory at: [ 801.294822][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 801.300534][T17054] __msan_chain_origin+0x57/0xa0 [ 801.305471][T17054] do_recvmmsg+0x17ee/0x2300 [ 801.310064][T17054] __se_sys_recvmmsg+0x247/0x410 [ 801.315000][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 801.319857][T17054] do_syscall_64+0x9f/0x140 [ 801.324366][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 801.330264][T17054] [ 801.332586][T17054] Local variable ----msg_sys@do_recvmmsg created at: [ 801.339263][T17054] do_recvmmsg+0xbc/0x2300 [ 801.343678][T17054] do_recvmmsg+0xbc/0x2300 [ 802.523183][T17054] not chained 1130000 origins [ 802.527898][T17054] CPU: 0 PID: 17054 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 802.536656][T17054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 802.546714][T17054] Call Trace: [ 802.550018][T17054] dump_stack+0x21c/0x280 [ 802.554364][T17054] kmsan_internal_chain_origin+0x6f/0x130 [ 802.560072][T17054] ? kmsan_get_metadata+0x116/0x180 [ 802.565264][T17054] ? kmsan_internal_check_memory+0xb1/0x520 [ 802.571150][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 802.576775][T17054] ? kmsan_check_memory+0xd/0x10 [ 802.581702][T17054] ? ____sys_recvmsg+0xa2d/0xd80 [ 802.586634][T17054] ? __msan_get_context_state+0x9/0x20 [ 802.592080][T17054] ? kfree+0x29/0x11b0 [ 802.596138][T17054] ? kmsan_get_metadata+0x116/0x180 [ 802.601326][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 802.606950][T17054] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 802.613007][T17054] ? _copy_from_user+0x1cd/0x2d0 [ 802.617934][T17054] ? kmsan_get_metadata+0x116/0x180 [ 802.623121][T17054] __msan_chain_origin+0x57/0xa0 [ 802.628052][T17054] do_recvmmsg+0x17ee/0x2300 [ 802.632661][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 802.638296][T17054] ? __msan_poison_alloca+0xe9/0x110 [ 802.643600][T17054] ? __se_sys_recvmmsg+0xd3/0x410 [ 802.648619][T17054] __se_sys_recvmmsg+0x247/0x410 [ 802.653576][T17054] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 802.659382][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 802.664230][T17054] do_syscall_64+0x9f/0x140 [ 802.668730][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 802.674614][T17054] RIP: 0033:0x45e159 [ 802.678511][T17054] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 802.698314][T17054] RSP: 002b:00007f481eb2cc68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 802.706724][T17054] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 802.714685][T17054] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 802.722645][T17054] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 802.730604][T17054] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 802.738568][T17054] R13: 00000000016afb7f R14: 00007f481eb2d9c0 R15: 000000000119bf8c [ 802.746534][T17054] Uninit was stored to memory at: [ 802.751581][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 802.757290][T17054] __msan_chain_origin+0x57/0xa0 [ 802.762218][T17054] do_recvmmsg+0x17ee/0x2300 [ 802.766810][T17054] __se_sys_recvmmsg+0x247/0x410 [ 802.771734][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 802.776574][T17054] do_syscall_64+0x9f/0x140 [ 802.781062][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 802.786932][T17054] [ 802.789242][T17054] Uninit was stored to memory at: [ 802.794256][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 802.799960][T17054] __msan_chain_origin+0x57/0xa0 [ 802.804884][T17054] do_recvmmsg+0x17ee/0x2300 [ 802.809460][T17054] __se_sys_recvmmsg+0x247/0x410 [ 802.814386][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 802.819225][T17054] do_syscall_64+0x9f/0x140 [ 802.823714][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 802.829582][T17054] [ 802.831893][T17054] Uninit was stored to memory at: [ 802.836910][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 802.842615][T17054] __msan_chain_origin+0x57/0xa0 [ 802.847538][T17054] do_recvmmsg+0x17ee/0x2300 [ 802.852121][T17054] __se_sys_recvmmsg+0x247/0x410 [ 802.857046][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 802.861883][T17054] do_syscall_64+0x9f/0x140 [ 802.866373][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 802.872253][T17054] [ 802.874573][T17054] Uninit was stored to memory at: [ 802.879592][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 802.885310][T17054] __msan_chain_origin+0x57/0xa0 [ 802.890252][T17054] do_recvmmsg+0x17ee/0x2300 [ 802.894829][T17054] __se_sys_recvmmsg+0x247/0x410 [ 802.899756][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 802.904601][T17054] do_syscall_64+0x9f/0x140 [ 802.909103][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 802.914973][T17054] [ 802.917280][T17054] Uninit was stored to memory at: [ 802.922294][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 802.927998][T17054] __msan_chain_origin+0x57/0xa0 [ 802.932922][T17054] do_recvmmsg+0x17ee/0x2300 [ 802.937500][T17054] __se_sys_recvmmsg+0x247/0x410 [ 802.942430][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 802.947267][T17054] do_syscall_64+0x9f/0x140 [ 802.951769][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 802.957638][T17054] [ 802.959946][T17054] Uninit was stored to memory at: [ 802.964963][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 802.970666][T17054] __msan_chain_origin+0x57/0xa0 [ 802.975594][T17054] do_recvmmsg+0x17ee/0x2300 [ 802.980170][T17054] __se_sys_recvmmsg+0x247/0x410 [ 802.985094][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 802.989934][T17054] do_syscall_64+0x9f/0x140 [ 802.994424][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 803.000303][T17054] [ 803.002615][T17054] Uninit was stored to memory at: [ 803.007644][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 803.013350][T17054] __msan_chain_origin+0x57/0xa0 [ 803.018276][T17054] do_recvmmsg+0x17ee/0x2300 [ 803.022870][T17054] __se_sys_recvmmsg+0x247/0x410 [ 803.027795][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 803.032633][T17054] do_syscall_64+0x9f/0x140 [ 803.037124][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 803.043006][T17054] [ 803.045319][T17054] Local variable ----msg_sys@do_recvmmsg created at: [ 803.051984][T17054] do_recvmmsg+0xbc/0x2300 [ 803.056388][T17054] do_recvmmsg+0xbc/0x2300 [ 804.185583][T17054] not chained 1140000 origins [ 804.190322][T17054] CPU: 0 PID: 17054 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 804.199081][T17054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 804.209142][T17054] Call Trace: [ 804.212443][T17054] dump_stack+0x21c/0x280 [ 804.216783][T17054] kmsan_internal_chain_origin+0x6f/0x130 [ 804.222622][T17054] ? kmsan_get_metadata+0x116/0x180 [ 804.227830][T17054] ? kmsan_internal_check_memory+0xb1/0x520 [ 804.233770][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 804.239405][T17054] ? kmsan_check_memory+0xd/0x10 [ 804.244349][T17054] ? ____sys_recvmsg+0xa2d/0xd80 [ 804.249289][T17054] ? __msan_get_context_state+0x9/0x20 [ 804.254753][T17054] ? kfree+0x29/0x11b0 [ 804.258822][T17054] ? kmsan_get_metadata+0x116/0x180 [ 804.264027][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 804.269665][T17054] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 804.275734][T17054] ? _copy_from_user+0x1cd/0x2d0 [ 804.280673][T17054] ? kmsan_get_metadata+0x116/0x180 [ 804.285870][T17054] __msan_chain_origin+0x57/0xa0 [ 804.290817][T17054] do_recvmmsg+0x17ee/0x2300 [ 804.295448][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 804.301080][T17054] ? __msan_poison_alloca+0xe9/0x110 [ 804.306373][T17054] ? __se_sys_recvmmsg+0xd3/0x410 [ 804.311403][T17054] __se_sys_recvmmsg+0x247/0x410 [ 804.316345][T17054] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 804.322184][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 804.327041][T17054] do_syscall_64+0x9f/0x140 [ 804.331547][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 804.337434][T17054] RIP: 0033:0x45e159 [ 804.341333][T17054] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 804.360938][T17054] RSP: 002b:00007f481eb2cc68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 804.369360][T17054] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 804.377332][T17054] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 804.385305][T17054] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 804.393277][T17054] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 804.401249][T17054] R13: 00000000016afb7f R14: 00007f481eb2d9c0 R15: 000000000119bf8c [ 804.409223][T17054] Uninit was stored to memory at: [ 804.414264][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 804.420032][T17054] __msan_chain_origin+0x57/0xa0 [ 804.424973][T17054] do_recvmmsg+0x17ee/0x2300 [ 804.429651][T17054] __se_sys_recvmmsg+0x247/0x410 [ 804.434588][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 804.439438][T17054] do_syscall_64+0x9f/0x140 [ 804.443945][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 804.449825][T17054] [ 804.452143][T17054] Uninit was stored to memory at: [ 804.457175][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 804.462893][T17054] __msan_chain_origin+0x57/0xa0 [ 804.467831][T17054] do_recvmmsg+0x17ee/0x2300 [ 804.472422][T17054] __se_sys_recvmmsg+0x247/0x410 [ 804.477371][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 804.482224][T17054] do_syscall_64+0x9f/0x140 [ 804.486727][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 804.492606][T17054] [ 804.494929][T17054] Uninit was stored to memory at: [ 804.499967][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 804.505695][T17054] __msan_chain_origin+0x57/0xa0 [ 804.510641][T17054] do_recvmmsg+0x17ee/0x2300 [ 804.515240][T17054] __se_sys_recvmmsg+0x247/0x410 [ 804.520180][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 804.525088][T17054] do_syscall_64+0x9f/0x140 [ 804.529593][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 804.535470][T17054] [ 804.537788][T17054] Uninit was stored to memory at: [ 804.542820][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 804.548537][T17054] __msan_chain_origin+0x57/0xa0 [ 804.553475][T17054] do_recvmmsg+0x17ee/0x2300 [ 804.558069][T17054] __se_sys_recvmmsg+0x247/0x410 [ 804.563006][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 804.567880][T17054] do_syscall_64+0x9f/0x140 [ 804.572387][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 804.578263][T17054] [ 804.580584][T17054] Uninit was stored to memory at: [ 804.585616][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 804.591332][T17054] __msan_chain_origin+0x57/0xa0 [ 804.596271][T17054] do_recvmmsg+0x17ee/0x2300 [ 804.600862][T17054] __se_sys_recvmmsg+0x247/0x410 [ 804.605802][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 804.610654][T17054] do_syscall_64+0x9f/0x140 [ 804.615170][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 804.621051][T17054] [ 804.623372][T17054] Uninit was stored to memory at: [ 804.628403][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 804.634122][T17054] __msan_chain_origin+0x57/0xa0 [ 804.639059][T17054] do_recvmmsg+0x17ee/0x2300 [ 804.643665][T17054] __se_sys_recvmmsg+0x247/0x410 [ 804.648605][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 804.653465][T17054] do_syscall_64+0x9f/0x140 [ 804.658081][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 804.663962][T17054] [ 804.666282][T17054] Uninit was stored to memory at: [ 804.671316][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 804.677038][T17054] __msan_chain_origin+0x57/0xa0 [ 804.681978][T17054] do_recvmmsg+0x17ee/0x2300 [ 804.686573][T17054] __se_sys_recvmmsg+0x247/0x410 [ 804.691624][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 804.696488][T17054] do_syscall_64+0x9f/0x140 [ 804.700997][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 804.706891][T17054] [ 804.709217][T17054] Local variable ----msg_sys@do_recvmmsg created at: [ 804.715900][T17054] do_recvmmsg+0xbc/0x2300 [ 804.720346][T17054] do_recvmmsg+0xbc/0x2300 [ 804.948562][T11557] team0 (unregistering): Port device team_slave_1 removed [ 804.990373][T17148] IPVS: ftp: loaded support on port[0] = 21 [ 805.007479][T11557] team0 (unregistering): Port device team_slave_0 removed [ 805.115365][T11557] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 805.242883][T11557] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 805.434507][T17160] IPVS: ftp: loaded support on port[0] = 21 [ 805.496667][T17054] not chained 1150000 origins [ 805.501384][T17054] CPU: 1 PID: 17054 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 805.510148][T17054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 805.520209][T17054] Call Trace: [ 805.523510][T17054] dump_stack+0x21c/0x280 [ 805.527848][T17054] kmsan_internal_chain_origin+0x6f/0x130 [ 805.531846][T11557] bond0 (unregistering): Released all slaves [ 805.533564][T17054] ? kmsan_get_metadata+0x116/0x180 [ 805.533586][T17054] ? kmsan_internal_check_memory+0xb1/0x520 [ 805.533608][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 805.533626][T17054] ? kmsan_check_memory+0xd/0x10 [ 805.533644][T17054] ? ____sys_recvmsg+0xa2d/0xd80 [ 805.533693][T17054] ? __msan_get_context_state+0x9/0x20 [ 805.571587][T17054] ? kfree+0x29/0x11b0 [ 805.575647][T17054] ? kmsan_get_metadata+0x116/0x180 [ 805.580842][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 805.586473][T17054] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 805.592532][T17054] ? _copy_from_user+0x1cd/0x2d0 [ 805.597460][T17054] ? kmsan_get_metadata+0x116/0x180 [ 805.602734][T17054] __msan_chain_origin+0x57/0xa0 [ 805.607667][T17054] do_recvmmsg+0x17ee/0x2300 [ 805.612273][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 805.617904][T17054] ? __msan_poison_alloca+0xe9/0x110 [ 805.623190][T17054] ? __se_sys_recvmmsg+0xd3/0x410 [ 805.628214][T17054] __se_sys_recvmmsg+0x247/0x410 [ 805.633154][T17054] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 805.638957][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 805.643811][T17054] do_syscall_64+0x9f/0x140 [ 805.648312][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 805.654193][T17054] RIP: 0033:0x45e159 [ 805.658082][T17054] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 805.677698][T17054] RSP: 002b:00007f481eb2cc68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 805.686107][T17054] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 805.694079][T17054] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 805.702046][T17054] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 805.710007][T17054] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 805.717971][T17054] R13: 00000000016afb7f R14: 00007f481eb2d9c0 R15: 000000000119bf8c [ 805.725929][T17054] Uninit was stored to memory at: [ 805.730959][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 805.736665][T17054] __msan_chain_origin+0x57/0xa0 [ 805.741598][T17054] do_recvmmsg+0x17ee/0x2300 [ 805.746191][T17054] __se_sys_recvmmsg+0x247/0x410 [ 805.751115][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 805.755954][T17054] do_syscall_64+0x9f/0x140 [ 805.760444][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 805.766309][T17054] [ 805.768621][T17054] Uninit was stored to memory at: [ 805.773637][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 805.779341][T17054] __msan_chain_origin+0x57/0xa0 [ 805.784266][T17054] do_recvmmsg+0x17ee/0x2300 [ 805.788855][T17054] __se_sys_recvmmsg+0x247/0x410 [ 805.793777][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 805.798614][T17054] do_syscall_64+0x9f/0x140 [ 805.803107][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 805.808974][T17054] [ 805.811281][T17054] Uninit was stored to memory at: [ 805.816296][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 805.822000][T17054] __msan_chain_origin+0x57/0xa0 [ 805.826925][T17054] do_recvmmsg+0x17ee/0x2300 [ 805.831502][T17054] __se_sys_recvmmsg+0x247/0x410 [ 805.836429][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 805.841265][T17054] do_syscall_64+0x9f/0x140 [ 805.845769][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 805.851636][T17054] [ 805.853946][T17054] Uninit was stored to memory at: [ 805.858961][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 805.864664][T17054] __msan_chain_origin+0x57/0xa0 [ 805.869589][T17054] do_recvmmsg+0x17ee/0x2300 [ 805.874166][T17054] __se_sys_recvmmsg+0x247/0x410 [ 805.879094][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 805.883933][T17054] do_syscall_64+0x9f/0x140 [ 805.888424][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 805.894291][T17054] [ 805.896600][T17054] Uninit was stored to memory at: [ 805.901620][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 805.907327][T17054] __msan_chain_origin+0x57/0xa0 [ 805.912253][T17054] do_recvmmsg+0x17ee/0x2300 [ 805.916830][T17054] __se_sys_recvmmsg+0x247/0x410 [ 805.921752][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 805.926602][T17054] do_syscall_64+0x9f/0x140 [ 805.931091][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 805.936958][T17054] [ 805.939266][T17054] Uninit was stored to memory at: [ 805.944280][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 805.949985][T17054] __msan_chain_origin+0x57/0xa0 [ 805.954909][T17054] do_recvmmsg+0x17ee/0x2300 [ 805.959485][T17054] __se_sys_recvmmsg+0x247/0x410 [ 805.964408][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 805.969247][T17054] do_syscall_64+0x9f/0x140 [ 805.973740][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 805.979606][T17054] [ 805.981915][T17054] Uninit was stored to memory at: [ 805.986933][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 805.992637][T17054] __msan_chain_origin+0x57/0xa0 [ 805.997559][T17054] do_recvmmsg+0x17ee/0x2300 [ 806.002135][T17054] __se_sys_recvmmsg+0x247/0x410 [ 806.007059][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 806.011895][T17054] do_syscall_64+0x9f/0x140 [ 806.016385][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 806.022251][T17054] [ 806.024560][T17054] Local variable ----msg_sys@do_recvmmsg created at: [ 806.031218][T17054] do_recvmmsg+0xbc/0x2300 [ 806.035618][T17054] do_recvmmsg+0xbc/0x2300 [ 806.637768][T17148] chnl_net:caif_netlink_parms(): no params data found [ 806.739881][T17054] not chained 1160000 origins [ 806.744592][T17054] CPU: 0 PID: 17054 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 806.753348][T17054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 806.763406][T17054] Call Trace: [ 806.766702][T17054] dump_stack+0x21c/0x280 [ 806.771039][T17054] kmsan_internal_chain_origin+0x6f/0x130 [ 806.776768][T17054] ? kmsan_get_metadata+0x116/0x180 [ 806.783027][T17054] ? kmsan_internal_check_memory+0xb1/0x520 [ 806.788935][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 806.794577][T17054] ? kmsan_check_memory+0xd/0x10 [ 806.799527][T17054] ? ____sys_recvmsg+0xa2d/0xd80 [ 806.804473][T17054] ? __msan_get_context_state+0x9/0x20 [ 806.809931][T17054] ? kfree+0x29/0x11b0 [ 806.814010][T17054] ? kmsan_get_metadata+0x116/0x180 [ 806.819253][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 806.824897][T17054] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 806.830973][T17054] ? _copy_from_user+0x1cd/0x2d0 [ 806.835912][T17054] ? kmsan_get_metadata+0x116/0x180 [ 806.841111][T17054] __msan_chain_origin+0x57/0xa0 [ 806.846064][T17054] do_recvmmsg+0x17ee/0x2300 [ 806.850762][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 806.856485][T17054] ? __msan_poison_alloca+0xe9/0x110 [ 806.861776][T17054] ? __se_sys_recvmmsg+0xd3/0x410 [ 806.866807][T17054] __se_sys_recvmmsg+0x247/0x410 [ 806.871748][T17054] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 806.877564][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 806.882420][T17054] do_syscall_64+0x9f/0x140 [ 806.886936][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 806.892832][T17054] RIP: 0033:0x45e159 [ 806.896732][T17054] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 806.916341][T17054] RSP: 002b:00007f481eb2cc68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 806.924761][T17054] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 806.932751][T17054] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 806.940720][T17054] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 806.948693][T17054] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 806.956667][T17054] R13: 00000000016afb7f R14: 00007f481eb2d9c0 R15: 000000000119bf8c [ 806.964722][T17054] Uninit was stored to memory at: [ 806.969759][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 806.975476][T17054] __msan_chain_origin+0x57/0xa0 [ 806.980413][T17054] do_recvmmsg+0x17ee/0x2300 [ 806.985003][T17054] __se_sys_recvmmsg+0x247/0x410 [ 806.989964][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 806.994816][T17054] do_syscall_64+0x9f/0x140 [ 806.999754][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 807.005633][T17054] [ 807.007952][T17054] Uninit was stored to memory at: [ 807.013019][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 807.018737][T17054] __msan_chain_origin+0x57/0xa0 [ 807.023674][T17054] do_recvmmsg+0x17ee/0x2300 [ 807.028263][T17054] __se_sys_recvmmsg+0x247/0x410 [ 807.033202][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 807.038055][T17054] do_syscall_64+0x9f/0x140 [ 807.042562][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 807.048437][T17054] [ 807.050763][T17054] Uninit was stored to memory at: [ 807.055793][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 807.061656][T17054] __msan_chain_origin+0x57/0xa0 [ 807.066598][T17054] do_recvmmsg+0x17ee/0x2300 [ 807.071190][T17054] __se_sys_recvmmsg+0x247/0x410 [ 807.076128][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 807.080978][T17054] do_syscall_64+0x9f/0x140 [ 807.085485][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 807.091363][T17054] [ 807.093683][T17054] Uninit was stored to memory at: [ 807.098710][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 807.104430][T17054] __msan_chain_origin+0x57/0xa0 [ 807.109371][T17054] do_recvmmsg+0x17ee/0x2300 [ 807.113963][T17054] __se_sys_recvmmsg+0x247/0x410 [ 807.118899][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 807.123755][T17054] do_syscall_64+0x9f/0x140 [ 807.128261][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 807.134141][T17054] [ 807.136458][T17054] Uninit was stored to memory at: [ 807.141489][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 807.147211][T17054] __msan_chain_origin+0x57/0xa0 [ 807.152149][T17054] do_recvmmsg+0x17ee/0x2300 [ 807.156738][T17054] __se_sys_recvmmsg+0x247/0x410 [ 807.161672][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 807.166525][T17054] do_syscall_64+0x9f/0x140 [ 807.171034][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 807.176915][T17054] [ 807.179237][T17054] Uninit was stored to memory at: [ 807.184269][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 807.189987][T17054] __msan_chain_origin+0x57/0xa0 [ 807.194928][T17054] do_recvmmsg+0x17ee/0x2300 [ 807.199522][T17054] __se_sys_recvmmsg+0x247/0x410 [ 807.204459][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 807.209313][T17054] do_syscall_64+0x9f/0x140 [ 807.213816][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 807.219694][T17054] [ 807.222011][T17054] Uninit was stored to memory at: [ 807.227042][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 807.232760][T17054] __msan_chain_origin+0x57/0xa0 [ 807.237696][T17054] do_recvmmsg+0x17ee/0x2300 [ 807.242289][T17054] __se_sys_recvmmsg+0x247/0x410 [ 807.247235][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 807.252090][T17054] do_syscall_64+0x9f/0x140 [ 807.256591][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 807.262492][T17054] [ 807.264813][T17054] Local variable ----msg_sys@do_recvmmsg created at: [ 807.271486][T17054] do_recvmmsg+0xbc/0x2300 [ 807.275905][T17054] do_recvmmsg+0xbc/0x2300 [ 807.291456][ T7] Bluetooth: hci0: command 0x0409 tx timeout [ 807.306273][ T7] Bluetooth: hci4: command 0x0409 tx timeout [ 807.414629][T17160] chnl_net:caif_netlink_parms(): no params data found [ 807.435821][T17054] not chained 1170000 origins [ 807.440531][T17054] CPU: 0 PID: 17054 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 807.449286][T17054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 807.459343][T17054] Call Trace: [ 807.462647][T17054] dump_stack+0x21c/0x280 [ 807.466987][T17054] kmsan_internal_chain_origin+0x6f/0x130 [ 807.472710][T17054] ? kmsan_get_metadata+0x116/0x180 [ 807.477919][T17054] ? kmsan_internal_check_memory+0xb1/0x520 [ 807.483822][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 807.489462][T17054] ? kmsan_check_memory+0xd/0x10 [ 807.494409][T17054] ? ____sys_recvmsg+0xa2d/0xd80 [ 807.499349][T17054] ? __msan_get_context_state+0x9/0x20 [ 807.504828][T17054] ? kfree+0x29/0x11b0 [ 807.508904][T17054] ? kmsan_get_metadata+0x116/0x180 [ 807.514119][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 807.520122][T17054] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 807.526194][T17054] ? _copy_from_user+0x1cd/0x2d0 [ 807.531137][T17054] ? kmsan_get_metadata+0x116/0x180 [ 807.536337][T17054] __msan_chain_origin+0x57/0xa0 [ 807.541284][T17054] do_recvmmsg+0x17ee/0x2300 [ 807.541792][T17148] bridge0: port 1(bridge_slave_0) entered blocking state [ 807.545887][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 807.545903][T17054] ? __msan_poison_alloca+0xe9/0x110 [ 807.545922][T17054] ? __se_sys_recvmmsg+0xd3/0x410 [ 807.545940][T17054] __se_sys_recvmmsg+0x247/0x410 [ 807.545990][T17054] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 807.553175][T17148] bridge0: port 1(bridge_slave_0) entered disabled state [ 807.558647][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 807.566461][T17148] device bridge_slave_0 entered promiscuous mode [ 807.568938][T17054] do_syscall_64+0x9f/0x140 [ 807.602284][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 807.608186][T17054] RIP: 0033:0x45e159 [ 807.612088][T17054] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 807.631794][T17054] RSP: 002b:00007f481eb2cc68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 807.640223][T17054] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 807.648391][T17054] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 807.656373][T17054] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 807.664352][T17054] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 807.672333][T17054] R13: 00000000016afb7f R14: 00007f481eb2d9c0 R15: 000000000119bf8c [ 807.680305][T17054] Uninit was stored to memory at: [ 807.686050][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 807.691798][T17054] __msan_chain_origin+0x57/0xa0 [ 807.696773][T17054] do_recvmmsg+0x17ee/0x2300 [ 807.701365][T17054] __se_sys_recvmmsg+0x247/0x410 [ 807.706303][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 807.711155][T17054] do_syscall_64+0x9f/0x140 [ 807.715718][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 807.721598][T17054] [ 807.723920][T17054] Uninit was stored to memory at: [ 807.728954][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 807.734672][T17054] __msan_chain_origin+0x57/0xa0 [ 807.739610][T17054] do_recvmmsg+0x17ee/0x2300 [ 807.744202][T17054] __se_sys_recvmmsg+0x247/0x410 [ 807.749179][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 807.754033][T17054] do_syscall_64+0x9f/0x140 [ 807.758540][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 807.764423][T17054] [ 807.766745][T17054] Uninit was stored to memory at: [ 807.771783][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 807.777500][T17054] __msan_chain_origin+0x57/0xa0 [ 807.782437][T17054] do_recvmmsg+0x17ee/0x2300 [ 807.787030][T17054] __se_sys_recvmmsg+0x247/0x410 [ 807.791969][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 807.796821][T17054] do_syscall_64+0x9f/0x140 [ 807.801323][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 807.807206][T17054] [ 807.809556][T17054] Uninit was stored to memory at: [ 807.814592][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 807.820309][T17054] __msan_chain_origin+0x57/0xa0 [ 807.825246][T17054] do_recvmmsg+0x17ee/0x2300 [ 807.829851][T17054] __se_sys_recvmmsg+0x247/0x410 [ 807.834789][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 807.839639][T17054] do_syscall_64+0x9f/0x140 [ 807.844154][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 807.850029][T17054] [ 807.852349][T17054] Uninit was stored to memory at: [ 807.857380][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 807.863100][T17054] __msan_chain_origin+0x57/0xa0 [ 807.868038][T17054] do_recvmmsg+0x17ee/0x2300 [ 807.872630][T17054] __se_sys_recvmmsg+0x247/0x410 [ 807.877573][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 807.882428][T17054] do_syscall_64+0x9f/0x140 [ 807.886932][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 807.892813][T17054] [ 807.895141][T17054] Uninit was stored to memory at: [ 807.900170][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 807.905890][T17054] __msan_chain_origin+0x57/0xa0 [ 807.910827][T17054] do_recvmmsg+0x17ee/0x2300 [ 807.915416][T17054] __se_sys_recvmmsg+0x247/0x410 [ 807.920350][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 807.925204][T17054] do_syscall_64+0x9f/0x140 [ 807.929708][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 807.935585][T17054] [ 807.937907][T17054] Uninit was stored to memory at: [ 807.942938][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 807.948655][T17054] __msan_chain_origin+0x57/0xa0 [ 807.953594][T17054] do_recvmmsg+0x17ee/0x2300 [ 807.958185][T17054] __se_sys_recvmmsg+0x247/0x410 [ 807.963121][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 807.968070][T17054] do_syscall_64+0x9f/0x140 [ 807.972576][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 807.978453][T17054] [ 807.980772][T17054] Local variable ----msg_sys@do_recvmmsg created at: [ 807.987449][T17054] do_recvmmsg+0xbc/0x2300 [ 807.991868][T17054] do_recvmmsg+0xbc/0x2300 [ 808.032370][T17148] bridge0: port 2(bridge_slave_1) entered blocking state [ 808.039608][T17148] bridge0: port 2(bridge_slave_1) entered disabled state [ 808.049447][T17148] device bridge_slave_1 entered promiscuous mode [ 808.135847][T17054] not chained 1180000 origins [ 808.140571][T17054] CPU: 0 PID: 17054 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 808.149332][T17054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 808.159391][T17054] Call Trace: [ 808.162682][T17054] dump_stack+0x21c/0x280 [ 808.167008][T17054] kmsan_internal_chain_origin+0x6f/0x130 [ 808.172717][T17054] ? kmsan_get_metadata+0x116/0x180 [ 808.177910][T17054] ? kmsan_internal_check_memory+0xb1/0x520 [ 808.183794][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 808.189415][T17054] ? kmsan_check_memory+0xd/0x10 [ 808.194343][T17054] ? ____sys_recvmsg+0xa2d/0xd80 [ 808.199272][T17054] ? __msan_get_context_state+0x9/0x20 [ 808.204722][T17054] ? kfree+0x29/0x11b0 [ 808.208778][T17054] ? kmsan_get_metadata+0x116/0x180 [ 808.213968][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 808.219592][T17054] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 808.225648][T17054] ? _copy_from_user+0x1cd/0x2d0 [ 808.230577][T17054] ? kmsan_get_metadata+0x116/0x180 [ 808.235761][T17054] __msan_chain_origin+0x57/0xa0 [ 808.240690][T17054] do_recvmmsg+0x17ee/0x2300 [ 808.245281][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 808.250901][T17054] ? __msan_poison_alloca+0xe9/0x110 [ 808.256177][T17054] ? __se_sys_recvmmsg+0xd3/0x410 [ 808.261189][T17054] __se_sys_recvmmsg+0x247/0x410 [ 808.266117][T17054] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 808.271913][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 808.282058][T17054] do_syscall_64+0x9f/0x140 [ 808.286557][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 808.292438][T17054] RIP: 0033:0x45e159 [ 808.296323][T17054] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 808.316348][T17054] RSP: 002b:00007f481eb2cc68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 808.324753][T17054] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 808.332713][T17054] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 808.340671][T17054] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 808.348630][T17054] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 808.356593][T17054] R13: 00000000016afb7f R14: 00007f481eb2d9c0 R15: 000000000119bf8c [ 808.364558][T17054] Uninit was stored to memory at: [ 808.369581][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 808.375285][T17054] __msan_chain_origin+0x57/0xa0 [ 808.381164][T17054] do_recvmmsg+0x17ee/0x2300 [ 808.385747][T17054] __se_sys_recvmmsg+0x247/0x410 [ 808.390673][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 808.395515][T17054] do_syscall_64+0x9f/0x140 [ 808.400004][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 808.405885][T17054] [ 808.408195][T17054] Uninit was stored to memory at: [ 808.413210][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 808.418913][T17054] __msan_chain_origin+0x57/0xa0 [ 808.423844][T17054] do_recvmmsg+0x17ee/0x2300 [ 808.428420][T17054] __se_sys_recvmmsg+0x247/0x410 [ 808.433345][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 808.438182][T17054] do_syscall_64+0x9f/0x140 [ 808.442673][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 808.448542][T17054] [ 808.450856][T17054] Uninit was stored to memory at: [ 808.455871][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 808.461576][T17054] __msan_chain_origin+0x57/0xa0 [ 808.466501][T17054] do_recvmmsg+0x17ee/0x2300 [ 808.471079][T17054] __se_sys_recvmmsg+0x247/0x410 [ 808.476005][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 808.480841][T17054] do_syscall_64+0x9f/0x140 [ 808.485332][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 808.491200][T17054] [ 808.493510][T17054] Uninit was stored to memory at: [ 808.498527][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 808.504322][T17054] __msan_chain_origin+0x57/0xa0 [ 808.509244][T17054] do_recvmmsg+0x17ee/0x2300 [ 808.513837][T17054] __se_sys_recvmmsg+0x247/0x410 [ 808.518770][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 808.523617][T17054] do_syscall_64+0x9f/0x140 [ 808.528113][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 808.533996][T17054] [ 808.536313][T17054] Uninit was stored to memory at: [ 808.541333][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 808.547041][T17054] __msan_chain_origin+0x57/0xa0 [ 808.551974][T17054] do_recvmmsg+0x17ee/0x2300 [ 808.556563][T17054] __se_sys_recvmmsg+0x247/0x410 [ 808.561511][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 808.566358][T17054] do_syscall_64+0x9f/0x140 [ 808.570852][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 808.576722][T17054] [ 808.579032][T17054] Uninit was stored to memory at: [ 808.584051][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 808.589755][T17054] __msan_chain_origin+0x57/0xa0 [ 808.594697][T17054] do_recvmmsg+0x17ee/0x2300 [ 808.599275][T17054] __se_sys_recvmmsg+0x247/0x410 [ 808.604205][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 808.609043][T17054] do_syscall_64+0x9f/0x140 [ 808.613540][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 808.619754][T17054] [ 808.622066][T17054] Uninit was stored to memory at: [ 808.627082][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 808.632789][T17054] __msan_chain_origin+0x57/0xa0 [ 808.637715][T17054] do_recvmmsg+0x17ee/0x2300 [ 808.642293][T17054] __se_sys_recvmmsg+0x247/0x410 [ 808.647237][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 808.652078][T17054] do_syscall_64+0x9f/0x140 [ 808.656569][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 808.662437][T17054] [ 808.664751][T17054] Local variable ----msg_sys@do_recvmmsg created at: [ 808.671671][T17054] do_recvmmsg+0xbc/0x2300 [ 808.676072][T17054] do_recvmmsg+0xbc/0x2300 [ 808.769894][T17160] bridge0: port 1(bridge_slave_0) entered blocking state [ 808.777546][T17160] bridge0: port 1(bridge_slave_0) entered disabled state [ 808.787392][T17160] device bridge_slave_0 entered promiscuous mode [ 808.843583][T17148] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 808.860295][T17160] bridge0: port 2(bridge_slave_1) entered blocking state [ 808.867785][T17160] bridge0: port 2(bridge_slave_1) entered disabled state [ 808.877701][T17160] device bridge_slave_1 entered promiscuous mode [ 808.899805][T17148] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 809.010111][T17148] team0: Port device team_slave_0 added [ 809.041487][T17160] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 809.063033][T17148] team0: Port device team_slave_1 added [ 809.100626][T17160] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 809.149600][T17148] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 809.157202][T17148] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 809.183513][T17148] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 809.251237][T17160] team0: Port device team_slave_0 added [ 809.271232][T17160] team0: Port device team_slave_1 added [ 809.283003][T17148] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 809.290096][T17148] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 809.316429][T17148] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 809.364893][ T7] Bluetooth: hci4: command 0x041b tx timeout [ 809.376729][T17160] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 809.383926][T17160] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 809.410171][T17160] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 809.423021][ T7] Bluetooth: hci0: command 0x041b tx timeout [ 809.463405][T17160] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 809.470502][T17160] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 809.496742][T17160] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 809.542313][T17148] device hsr_slave_0 entered promiscuous mode [ 809.554108][T17148] device hsr_slave_1 entered promiscuous mode [ 809.564012][T17148] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 809.571651][T17148] Cannot create hsr debugfs directory [ 809.719898][T17054] not chained 1190000 origins [ 809.724613][T17054] CPU: 0 PID: 17054 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 809.733428][T17054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 809.743478][T17054] Call Trace: [ 809.746777][T17054] dump_stack+0x21c/0x280 [ 809.751121][T17054] kmsan_internal_chain_origin+0x6f/0x130 [ 809.756841][T17054] ? kmsan_get_metadata+0x116/0x180 [ 809.762051][T17054] ? kmsan_internal_check_memory+0xb1/0x520 [ 809.767948][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 809.773625][T17054] ? kmsan_check_memory+0xd/0x10 [ 809.778570][T17054] ? ____sys_recvmsg+0xa2d/0xd80 [ 809.783508][T17054] ? __msan_get_context_state+0x9/0x20 [ 809.788968][T17054] ? kfree+0x29/0x11b0 [ 809.793036][T17054] ? kmsan_get_metadata+0x116/0x180 [ 809.798244][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 809.803880][T17054] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 809.810001][T17054] ? _copy_from_user+0x1cd/0x2d0 [ 809.814948][T17054] ? kmsan_get_metadata+0x116/0x180 [ 809.820156][T17054] __msan_chain_origin+0x57/0xa0 [ 809.825099][T17054] do_recvmmsg+0x17ee/0x2300 [ 809.829762][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 809.835397][T17054] ? __msan_poison_alloca+0xe9/0x110 [ 809.840693][T17054] ? __se_sys_recvmmsg+0xd3/0x410 [ 809.845724][T17054] __se_sys_recvmmsg+0x247/0x410 [ 809.850677][T17054] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 809.856490][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 809.861347][T17054] do_syscall_64+0x9f/0x140 [ 809.865855][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 809.871745][T17054] RIP: 0033:0x45e159 [ 809.875646][T17054] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 809.895262][T17054] RSP: 002b:00007f481eb2cc68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 809.903680][T17054] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 809.911700][T17054] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 809.919721][T17054] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 809.927692][T17054] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 809.935666][T17054] R13: 00000000016afb7f R14: 00007f481eb2d9c0 R15: 000000000119bf8c [ 809.943641][T17054] Uninit was stored to memory at: [ 809.948682][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 809.954428][T17054] __msan_chain_origin+0x57/0xa0 [ 809.959367][T17054] do_recvmmsg+0x17ee/0x2300 [ 809.963957][T17054] __se_sys_recvmmsg+0x247/0x410 [ 809.968893][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 809.973752][T17054] do_syscall_64+0x9f/0x140 [ 809.978260][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 809.984135][T17054] [ 809.986455][T17054] Uninit was stored to memory at: [ 809.991484][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 809.997201][T17054] __msan_chain_origin+0x57/0xa0 [ 810.002140][T17054] do_recvmmsg+0x17ee/0x2300 [ 810.006735][T17054] __se_sys_recvmmsg+0x247/0x410 [ 810.011672][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 810.016522][T17054] do_syscall_64+0x9f/0x140 [ 810.021024][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 810.026902][T17054] [ 810.029222][T17054] Uninit was stored to memory at: [ 810.034251][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 810.039972][T17054] __msan_chain_origin+0x57/0xa0 [ 810.044938][T17054] do_recvmmsg+0x17ee/0x2300 [ 810.049531][T17054] __se_sys_recvmmsg+0x247/0x410 [ 810.054472][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 810.059325][T17054] do_syscall_64+0x9f/0x140 [ 810.063830][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 810.069708][T17054] [ 810.072058][T17054] Uninit was stored to memory at: [ 810.077087][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 810.082801][T17054] __msan_chain_origin+0x57/0xa0 [ 810.087740][T17054] do_recvmmsg+0x17ee/0x2300 [ 810.092333][T17054] __se_sys_recvmmsg+0x247/0x410 [ 810.097268][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 810.102121][T17054] do_syscall_64+0x9f/0x140 [ 810.106625][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 810.112506][T17054] [ 810.114833][T17054] Uninit was stored to memory at: [ 810.119864][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 810.125584][T17054] __msan_chain_origin+0x57/0xa0 [ 810.130523][T17054] do_recvmmsg+0x17ee/0x2300 [ 810.135114][T17054] __se_sys_recvmmsg+0x247/0x410 [ 810.140052][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 810.144906][T17054] do_syscall_64+0x9f/0x140 [ 810.149429][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 810.155307][T17054] [ 810.157628][T17054] Uninit was stored to memory at: [ 810.162674][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 810.168390][T17054] __msan_chain_origin+0x57/0xa0 [ 810.173326][T17054] do_recvmmsg+0x17ee/0x2300 [ 810.177918][T17054] __se_sys_recvmmsg+0x247/0x410 [ 810.182860][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 810.187712][T17054] do_syscall_64+0x9f/0x140 [ 810.192223][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 810.198104][T17054] [ 810.200423][T17054] Uninit was stored to memory at: [ 810.205454][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 810.211172][T17054] __msan_chain_origin+0x57/0xa0 [ 810.216120][T17054] do_recvmmsg+0x17ee/0x2300 [ 810.220721][T17054] __se_sys_recvmmsg+0x247/0x410 [ 810.225664][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 810.230517][T17054] do_syscall_64+0x9f/0x140 [ 810.235022][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 810.240900][T17054] [ 810.243224][T17054] Local variable ----msg_sys@do_recvmmsg created at: [ 810.249901][T17054] do_recvmmsg+0xbc/0x2300 [ 810.254348][T17054] do_recvmmsg+0xbc/0x2300 [ 810.286325][T11557] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 810.470800][T17054] not chained 1200000 origins [ 810.475511][T17054] CPU: 0 PID: 17054 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 810.484268][T17054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 810.494326][T17054] Call Trace: [ 810.497628][T17054] dump_stack+0x21c/0x280 [ 810.501967][T17054] kmsan_internal_chain_origin+0x6f/0x130 [ 810.507692][T17054] ? kmsan_get_metadata+0x116/0x180 [ 810.512901][T17054] ? kmsan_internal_check_memory+0xb1/0x520 [ 810.518805][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 810.524447][T17054] ? kmsan_check_memory+0xd/0x10 [ 810.529390][T17054] ? ____sys_recvmsg+0xa2d/0xd80 [ 810.534331][T17054] ? __msan_get_context_state+0x9/0x20 [ 810.539789][T17054] ? kfree+0x29/0x11b0 [ 810.543858][T17054] ? kmsan_get_metadata+0x116/0x180 [ 810.549067][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 810.554711][T17054] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 810.560777][T17054] ? _copy_from_user+0x1cd/0x2d0 [ 810.565714][T17054] ? kmsan_get_metadata+0x116/0x180 [ 810.570913][T17054] __msan_chain_origin+0x57/0xa0 [ 810.575855][T17054] do_recvmmsg+0x17ee/0x2300 [ 810.580459][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 810.586090][T17054] ? __msan_poison_alloca+0xe9/0x110 [ 810.591377][T17054] ? __se_sys_recvmmsg+0xd3/0x410 [ 810.596405][T17054] __se_sys_recvmmsg+0x247/0x410 [ 810.601344][T17054] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 810.607153][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 810.612011][T17054] do_syscall_64+0x9f/0x140 [ 810.616524][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 810.622412][T17054] RIP: 0033:0x45e159 [ 810.626312][T17054] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 810.645922][T17054] RSP: 002b:00007f481eb2cc68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 810.654449][T17054] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 810.662429][T17054] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 810.670481][T17054] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 810.678454][T17054] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 810.686435][T17054] R13: 00000000016afb7f R14: 00007f481eb2d9c0 R15: 000000000119bf8c [ 810.694408][T17054] Uninit was stored to memory at: [ 810.699450][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 810.705173][T17054] __msan_chain_origin+0x57/0xa0 [ 810.710117][T17054] do_recvmmsg+0x17ee/0x2300 [ 810.714722][T17054] __se_sys_recvmmsg+0x247/0x410 [ 810.719673][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 810.724534][T17054] do_syscall_64+0x9f/0x140 [ 810.729044][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 810.734930][T17054] [ 810.737257][T17054] Uninit was stored to memory at: [ 810.742297][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 810.748020][T17054] __msan_chain_origin+0x57/0xa0 [ 810.752965][T17054] do_recvmmsg+0x17ee/0x2300 [ 810.757558][T17054] __se_sys_recvmmsg+0x247/0x410 [ 810.762500][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 810.767354][T17054] do_syscall_64+0x9f/0x140 [ 810.771861][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 810.777740][T17054] [ 810.780059][T17054] Uninit was stored to memory at: [ 810.785090][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 810.790808][T17054] __msan_chain_origin+0x57/0xa0 [ 810.795748][T17054] do_recvmmsg+0x17ee/0x2300 [ 810.800359][T17054] __se_sys_recvmmsg+0x247/0x410 [ 810.805301][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 810.810161][T17054] do_syscall_64+0x9f/0x140 [ 810.814667][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 810.820546][T17054] [ 810.822863][T17054] Uninit was stored to memory at: [ 810.827892][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 810.833610][T17054] __msan_chain_origin+0x57/0xa0 [ 810.838550][T17054] do_recvmmsg+0x17ee/0x2300 [ 810.843142][T17054] __se_sys_recvmmsg+0x247/0x410 [ 810.848086][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 810.852938][T17054] do_syscall_64+0x9f/0x140 [ 810.857444][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 810.863322][T17054] [ 810.865641][T17054] Uninit was stored to memory at: [ 810.870670][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 810.876386][T17054] __msan_chain_origin+0x57/0xa0 [ 810.881327][T17054] do_recvmmsg+0x17ee/0x2300 [ 810.885918][T17054] __se_sys_recvmmsg+0x247/0x410 [ 810.890853][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 810.895704][T17054] do_syscall_64+0x9f/0x140 [ 810.900207][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 810.906086][T17054] [ 810.908406][T17054] Uninit was stored to memory at: [ 810.913436][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 810.919151][T17054] __msan_chain_origin+0x57/0xa0 [ 810.924093][T17054] do_recvmmsg+0x17ee/0x2300 [ 810.928684][T17054] __se_sys_recvmmsg+0x247/0x410 [ 810.933621][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 810.938470][T17054] do_syscall_64+0x9f/0x140 [ 810.942984][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 810.948861][T17054] [ 810.951180][T17054] Uninit was stored to memory at: [ 810.956277][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 810.961993][T17054] __msan_chain_origin+0x57/0xa0 [ 810.966930][T17054] do_recvmmsg+0x17ee/0x2300 [ 810.971539][T17054] __se_sys_recvmmsg+0x247/0x410 [ 810.976478][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 810.981331][T17054] do_syscall_64+0x9f/0x140 [ 810.985841][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 810.991730][T17054] [ 810.994050][T17054] Local variable ----msg_sys@do_recvmmsg created at: [ 811.000722][T17054] do_recvmmsg+0xbc/0x2300 [ 811.005143][T17054] do_recvmmsg+0xbc/0x2300 [ 811.021626][T11557] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 811.126296][T17160] device hsr_slave_0 entered promiscuous mode [ 811.163327][T17160] device hsr_slave_1 entered promiscuous mode [ 811.183125][T17160] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 811.190851][T17160] Cannot create hsr debugfs directory [ 811.340092][T17054] not chained 1210000 origins [ 811.344812][T17054] CPU: 0 PID: 17054 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 811.353570][T17054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 811.363796][T17054] Call Trace: [ 811.367094][T17054] dump_stack+0x21c/0x280 [ 811.371440][T17054] kmsan_internal_chain_origin+0x6f/0x130 [ 811.377172][T17054] ? kmsan_get_metadata+0x116/0x180 [ 811.382379][T17054] ? kmsan_internal_check_memory+0xb1/0x520 [ 811.388278][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 811.393917][T17054] ? kmsan_check_memory+0xd/0x10 [ 811.398857][T17054] ? ____sys_recvmsg+0xa2d/0xd80 [ 811.403826][T17054] ? __msan_get_context_state+0x9/0x20 [ 811.409284][T17054] ? kfree+0x29/0x11b0 [ 811.413352][T17054] ? kmsan_get_metadata+0x116/0x180 [ 811.418555][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 811.424226][T17054] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 811.430294][T17054] ? _copy_from_user+0x1cd/0x2d0 [ 811.435233][T17054] ? kmsan_get_metadata+0x116/0x180 [ 811.440431][T17054] __msan_chain_origin+0x57/0xa0 [ 811.445377][T17054] do_recvmmsg+0x17ee/0x2300 [ 811.449989][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 811.455625][T17054] ? __msan_poison_alloca+0xe9/0x110 [ 811.460913][T17054] ? __se_sys_recvmmsg+0xd3/0x410 [ 811.465950][T17054] __se_sys_recvmmsg+0x247/0x410 [ 811.470891][T17054] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 811.476708][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 811.481582][T17054] do_syscall_64+0x9f/0x140 [ 811.486093][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 811.491982][T17054] RIP: 0033:0x45e159 [ 811.495881][T17054] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 811.515490][T17054] RSP: 002b:00007f481eb2cc68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 811.523908][T17054] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 811.531880][T17054] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 811.539851][T17054] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 811.547827][T17054] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 811.555798][T17054] R13: 00000000016afb7f R14: 00007f481eb2d9c0 R15: 000000000119bf8c [ 811.563766][T17054] Uninit was stored to memory at: [ 811.568798][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 811.574518][T17054] __msan_chain_origin+0x57/0xa0 [ 811.579454][T17054] do_recvmmsg+0x17ee/0x2300 [ 811.584105][T17054] __se_sys_recvmmsg+0x247/0x410 [ 811.589043][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 811.593897][T17054] do_syscall_64+0x9f/0x140 [ 811.598401][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 811.604281][T17054] [ 811.606606][T17054] Uninit was stored to memory at: [ 811.611637][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 811.617353][T17054] __msan_chain_origin+0x57/0xa0 [ 811.622299][T17054] do_recvmmsg+0x17ee/0x2300 [ 811.626891][T17054] __se_sys_recvmmsg+0x247/0x410 [ 811.631836][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 811.636694][T17054] do_syscall_64+0x9f/0x140 [ 811.641200][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 811.647079][T17054] [ 811.649401][T17054] Uninit was stored to memory at: [ 811.654436][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 811.660153][T17054] __msan_chain_origin+0x57/0xa0 [ 811.665092][T17054] do_recvmmsg+0x17ee/0x2300 [ 811.669689][T17054] __se_sys_recvmmsg+0x247/0x410 [ 811.674640][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 811.679494][T17054] do_syscall_64+0x9f/0x140 [ 811.684003][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 811.689903][T17054] [ 811.692236][T17054] Uninit was stored to memory at: [ 811.697274][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 811.702999][T17054] __msan_chain_origin+0x57/0xa0 [ 811.708478][T17054] do_recvmmsg+0x17ee/0x2300 [ 811.713070][T17054] __se_sys_recvmmsg+0x247/0x410 [ 811.718008][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 811.722886][T17054] do_syscall_64+0x9f/0x140 [ 811.727388][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 811.733265][T17054] [ 811.735583][T17054] Uninit was stored to memory at: [ 811.740614][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 811.746334][T17054] __msan_chain_origin+0x57/0xa0 [ 811.751273][T17054] do_recvmmsg+0x17ee/0x2300 [ 811.755865][T17054] __se_sys_recvmmsg+0x247/0x410 [ 811.760805][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 811.765659][T17054] do_syscall_64+0x9f/0x140 [ 811.770166][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 811.776042][T17054] [ 811.778359][T17054] Uninit was stored to memory at: [ 811.783394][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 811.789114][T17054] __msan_chain_origin+0x57/0xa0 [ 811.794052][T17054] do_recvmmsg+0x17ee/0x2300 [ 811.798643][T17054] __se_sys_recvmmsg+0x247/0x410 [ 811.803581][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 811.808449][T17054] do_syscall_64+0x9f/0x140 [ 811.812953][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 811.818896][T17054] [ 811.821221][T17054] Uninit was stored to memory at: [ 811.826258][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 811.831976][T17054] __msan_chain_origin+0x57/0xa0 [ 811.836912][T17054] do_recvmmsg+0x17ee/0x2300 [ 811.841505][T17054] __se_sys_recvmmsg+0x247/0x410 [ 811.846444][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 811.851296][T17054] do_syscall_64+0x9f/0x140 [ 811.855850][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 811.861767][T17054] [ 811.864091][T17054] Local variable ----msg_sys@do_recvmmsg created at: [ 811.870765][T17054] do_recvmmsg+0xbc/0x2300 [ 811.875178][T17054] do_recvmmsg+0xbc/0x2300 [ 811.889716][ T8500] Bluetooth: hci0: command 0x040f tx timeout [ 811.902527][ T8500] Bluetooth: hci4: command 0x040f tx timeout [ 812.075751][T11557] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 812.238443][T17054] not chained 1220000 origins [ 812.243171][T17054] CPU: 0 PID: 17054 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 812.251919][T17054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 812.261970][T17054] Call Trace: [ 812.265265][T17054] dump_stack+0x21c/0x280 [ 812.269610][T17054] kmsan_internal_chain_origin+0x6f/0x130 [ 812.275336][T17054] ? kmsan_get_metadata+0x116/0x180 [ 812.280552][T17054] ? kmsan_internal_check_memory+0xb1/0x520 [ 812.286453][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 812.292087][T17054] ? kmsan_check_memory+0xd/0x10 [ 812.297086][T17054] ? ____sys_recvmsg+0xa2d/0xd80 [ 812.302115][T17054] ? __msan_get_context_state+0x9/0x20 [ 812.307662][T17054] ? kfree+0x29/0x11b0 [ 812.311730][T17054] ? kmsan_get_metadata+0x116/0x180 [ 812.316932][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 812.322618][T17054] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 812.328689][T17054] ? _copy_from_user+0x1cd/0x2d0 [ 812.333629][T17054] ? kmsan_get_metadata+0x116/0x180 [ 812.338824][T17054] __msan_chain_origin+0x57/0xa0 [ 812.343767][T17054] do_recvmmsg+0x17ee/0x2300 [ 812.348374][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 812.354002][T17054] ? __msan_poison_alloca+0xe9/0x110 [ 812.359403][T17054] ? __se_sys_recvmmsg+0xd3/0x410 [ 812.364446][T17054] __se_sys_recvmmsg+0x247/0x410 [ 812.369496][T17054] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 812.375304][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 812.380159][T17054] do_syscall_64+0x9f/0x140 [ 812.384670][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 812.390598][T17054] RIP: 0033:0x45e159 [ 812.394503][T17054] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 812.415246][T17054] RSP: 002b:00007f481eb2cc68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 812.423667][T17054] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 812.431650][T17054] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 812.439621][T17054] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 812.447590][T17054] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 812.455564][T17054] R13: 00000000016afb7f R14: 00007f481eb2d9c0 R15: 000000000119bf8c [ 812.463532][T17054] Uninit was stored to memory at: [ 812.468566][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 812.474284][T17054] __msan_chain_origin+0x57/0xa0 [ 812.479225][T17054] do_recvmmsg+0x17ee/0x2300 [ 812.483814][T17054] __se_sys_recvmmsg+0x247/0x410 [ 812.488756][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 812.493615][T17054] do_syscall_64+0x9f/0x140 [ 812.498128][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 812.504007][T17054] [ 812.506329][T17054] Uninit was stored to memory at: [ 812.511364][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 812.517196][T17054] __msan_chain_origin+0x57/0xa0 [ 812.522143][T17054] do_recvmmsg+0x17ee/0x2300 [ 812.526740][T17054] __se_sys_recvmmsg+0x247/0x410 [ 812.531687][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 812.536542][T17054] do_syscall_64+0x9f/0x140 [ 812.541054][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 812.546932][T17054] [ 812.549251][T17054] Uninit was stored to memory at: [ 812.554287][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 812.560003][T17054] __msan_chain_origin+0x57/0xa0 [ 812.564940][T17054] do_recvmmsg+0x17ee/0x2300 [ 812.569532][T17054] __se_sys_recvmmsg+0x247/0x410 [ 812.574473][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 812.579332][T17054] do_syscall_64+0x9f/0x140 [ 812.583842][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 812.589723][T17054] [ 812.592047][T17054] Uninit was stored to memory at: [ 812.597213][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 812.602932][T17054] __msan_chain_origin+0x57/0xa0 [ 812.607872][T17054] do_recvmmsg+0x17ee/0x2300 [ 812.612464][T17054] __se_sys_recvmmsg+0x247/0x410 [ 812.617408][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 812.622272][T17054] do_syscall_64+0x9f/0x140 [ 812.626781][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 812.632658][T17054] [ 812.634980][T17054] Uninit was stored to memory at: [ 812.640125][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 812.645846][T17054] __msan_chain_origin+0x57/0xa0 [ 812.650787][T17054] do_recvmmsg+0x17ee/0x2300 [ 812.655379][T17054] __se_sys_recvmmsg+0x247/0x410 [ 812.660319][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 812.665171][T17054] do_syscall_64+0x9f/0x140 [ 812.669721][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 812.675601][T17054] [ 812.677924][T17054] Uninit was stored to memory at: [ 812.682955][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 812.688680][T17054] __msan_chain_origin+0x57/0xa0 [ 812.693625][T17054] do_recvmmsg+0x17ee/0x2300 [ 812.698217][T17054] __se_sys_recvmmsg+0x247/0x410 [ 812.703161][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 812.708027][T17054] do_syscall_64+0x9f/0x140 [ 812.712533][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 812.718411][T17054] [ 812.720734][T17054] Uninit was stored to memory at: [ 812.725773][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 812.731494][T17054] __msan_chain_origin+0x57/0xa0 [ 812.736429][T17054] do_recvmmsg+0x17ee/0x2300 [ 812.741019][T17054] __se_sys_recvmmsg+0x247/0x410 [ 812.745957][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 812.750810][T17054] do_syscall_64+0x9f/0x140 [ 812.755314][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 812.761203][T17054] [ 812.763532][T17054] Local variable ----msg_sys@do_recvmmsg created at: [ 812.770208][T17054] do_recvmmsg+0xbc/0x2300 [ 812.774626][T17054] do_recvmmsg+0xbc/0x2300 [ 812.808351][T11557] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 813.206944][T17054] not chained 1230000 origins [ 813.211656][T17054] CPU: 0 PID: 17054 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 813.220407][T17054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 813.230491][T17054] Call Trace: [ 813.233791][T17054] dump_stack+0x21c/0x280 [ 813.238136][T17054] kmsan_internal_chain_origin+0x6f/0x130 [ 813.243859][T17054] ? kmsan_get_metadata+0x116/0x180 [ 813.249064][T17054] ? kmsan_internal_check_memory+0xb1/0x520 [ 813.254966][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 813.260608][T17054] ? kmsan_check_memory+0xd/0x10 [ 813.265549][T17054] ? ____sys_recvmsg+0xa2d/0xd80 [ 813.270493][T17054] ? __msan_get_context_state+0x9/0x20 [ 813.275953][T17054] ? kfree+0x29/0x11b0 [ 813.280024][T17054] ? kmsan_get_metadata+0x116/0x180 [ 813.285230][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 813.290871][T17054] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 813.296939][T17054] ? _copy_from_user+0x1cd/0x2d0 [ 813.301877][T17054] ? kmsan_get_metadata+0x116/0x180 [ 813.307072][T17054] __msan_chain_origin+0x57/0xa0 [ 813.312015][T17054] do_recvmmsg+0x17ee/0x2300 [ 813.316622][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 813.322257][T17054] ? __msan_poison_alloca+0xe9/0x110 [ 813.327545][T17054] ? __se_sys_recvmmsg+0xd3/0x410 [ 813.332583][T17054] __se_sys_recvmmsg+0x247/0x410 [ 813.337523][T17054] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 813.343336][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 813.348190][T17054] do_syscall_64+0x9f/0x140 [ 813.352700][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 813.358589][T17054] RIP: 0033:0x45e159 [ 813.362487][T17054] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 813.382095][T17054] RSP: 002b:00007f481eb2cc68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 813.390511][T17054] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 813.398484][T17054] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 813.406455][T17054] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 813.414425][T17054] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 813.422408][T17054] R13: 00000000016afb7f R14: 00007f481eb2d9c0 R15: 000000000119bf8c [ 813.430382][T17054] Uninit was stored to memory at: [ 813.435421][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 813.441140][T17054] __msan_chain_origin+0x57/0xa0 [ 813.446090][T17054] do_recvmmsg+0x17ee/0x2300 [ 813.450679][T17054] __se_sys_recvmmsg+0x247/0x410 [ 813.455617][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 813.460471][T17054] do_syscall_64+0x9f/0x140 [ 813.464978][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 813.470856][T17054] [ 813.473177][T17054] Uninit was stored to memory at: [ 813.478206][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 813.483936][T17054] __msan_chain_origin+0x57/0xa0 [ 813.488921][T17054] do_recvmmsg+0x17ee/0x2300 [ 813.493512][T17054] __se_sys_recvmmsg+0x247/0x410 [ 813.498457][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 813.503308][T17054] do_syscall_64+0x9f/0x140 [ 813.507821][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 813.513702][T17054] [ 813.516027][T17054] Uninit was stored to memory at: [ 813.521064][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 813.526795][T17054] __msan_chain_origin+0x57/0xa0 [ 813.531737][T17054] do_recvmmsg+0x17ee/0x2300 [ 813.536327][T17054] __se_sys_recvmmsg+0x247/0x410 [ 813.541264][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 813.546124][T17054] do_syscall_64+0x9f/0x140 [ 813.550631][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 813.556510][T17054] [ 813.558832][T17054] Uninit was stored to memory at: [ 813.563861][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 813.569608][T17054] __msan_chain_origin+0x57/0xa0 [ 813.574569][T17054] do_recvmmsg+0x17ee/0x2300 [ 813.579165][T17054] __se_sys_recvmmsg+0x247/0x410 [ 813.584105][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 813.588959][T17054] do_syscall_64+0x9f/0x140 [ 813.593463][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 813.599338][T17054] [ 813.601655][T17054] Uninit was stored to memory at: [ 813.606685][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 813.612402][T17054] __msan_chain_origin+0x57/0xa0 [ 813.617342][T17054] do_recvmmsg+0x17ee/0x2300 [ 813.621935][T17054] __se_sys_recvmmsg+0x247/0x410 [ 813.626878][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 813.631734][T17054] do_syscall_64+0x9f/0x140 [ 813.636350][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 813.642319][T17054] [ 813.644647][T17054] Uninit was stored to memory at: [ 813.649681][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 813.655402][T17054] __msan_chain_origin+0x57/0xa0 [ 813.660341][T17054] do_recvmmsg+0x17ee/0x2300 [ 813.664931][T17054] __se_sys_recvmmsg+0x247/0x410 [ 813.669869][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 813.674723][T17054] do_syscall_64+0x9f/0x140 [ 813.679238][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 813.685113][T17054] [ 813.687431][T17054] Uninit was stored to memory at: [ 813.692589][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 813.698311][T17054] __msan_chain_origin+0x57/0xa0 [ 813.703263][T17054] do_recvmmsg+0x17ee/0x2300 [ 813.707859][T17054] __se_sys_recvmmsg+0x247/0x410 [ 813.712797][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 813.717650][T17054] do_syscall_64+0x9f/0x140 [ 813.722162][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 813.728043][T17054] [ 813.730369][T17054] Local variable ----msg_sys@do_recvmmsg created at: [ 813.737045][T17054] do_recvmmsg+0xbc/0x2300 [ 813.741482][T17054] do_recvmmsg+0xbc/0x2300 [ 813.922422][ T7] Bluetooth: hci4: command 0x0419 tx timeout [ 813.935770][ T7] Bluetooth: hci0: command 0x0419 tx timeout [ 814.076732][T17054] not chained 1240000 origins [ 814.081449][T17054] CPU: 0 PID: 17054 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 814.090202][T17054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 814.100252][T17054] Call Trace: [ 814.103552][T17054] dump_stack+0x21c/0x280 [ 814.107890][T17054] kmsan_internal_chain_origin+0x6f/0x130 [ 814.113645][T17054] ? kmsan_get_metadata+0x116/0x180 [ 814.118850][T17054] ? kmsan_internal_check_memory+0xb1/0x520 [ 814.124751][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 814.130388][T17054] ? kmsan_check_memory+0xd/0x10 [ 814.135328][T17054] ? ____sys_recvmsg+0xa2d/0xd80 [ 814.140268][T17054] ? __msan_get_context_state+0x9/0x20 [ 814.145731][T17054] ? kfree+0x29/0x11b0 [ 814.149801][T17054] ? kmsan_get_metadata+0x116/0x180 [ 814.155006][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 814.160643][T17054] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 814.166728][T17054] ? _copy_from_user+0x1cd/0x2d0 [ 814.171667][T17054] ? kmsan_get_metadata+0x116/0x180 [ 814.176864][T17054] __msan_chain_origin+0x57/0xa0 [ 814.181806][T17054] do_recvmmsg+0x17ee/0x2300 [ 814.186435][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 814.192068][T17054] ? __msan_poison_alloca+0xe9/0x110 [ 814.197358][T17054] ? __se_sys_recvmmsg+0xd3/0x410 [ 814.202426][T17054] __se_sys_recvmmsg+0x247/0x410 [ 814.207365][T17054] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 814.213179][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 814.218032][T17054] do_syscall_64+0x9f/0x140 [ 814.222539][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 814.228431][T17054] RIP: 0033:0x45e159 [ 814.232330][T17054] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 814.251954][T17054] RSP: 002b:00007f481eb2cc68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 814.260373][T17054] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 814.268346][T17054] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 814.276320][T17054] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 814.284290][T17054] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 814.292262][T17054] R13: 00000000016afb7f R14: 00007f481eb2d9c0 R15: 000000000119bf8c [ 814.300235][T17054] Uninit was stored to memory at: [ 814.305303][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 814.311021][T17054] __msan_chain_origin+0x57/0xa0 [ 814.315962][T17054] do_recvmmsg+0x17ee/0x2300 [ 814.320552][T17054] __se_sys_recvmmsg+0x247/0x410 [ 814.325491][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 814.330343][T17054] do_syscall_64+0x9f/0x140 [ 814.334849][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 814.340725][T17054] [ 814.343045][T17054] Uninit was stored to memory at: [ 814.348090][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 814.353809][T17054] __msan_chain_origin+0x57/0xa0 [ 814.358747][T17054] do_recvmmsg+0x17ee/0x2300 [ 814.363335][T17054] __se_sys_recvmmsg+0x247/0x410 [ 814.368271][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 814.373124][T17054] do_syscall_64+0x9f/0x140 [ 814.377634][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 814.383509][T17054] [ 814.385827][T17054] Uninit was stored to memory at: [ 814.390855][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 814.396571][T17054] __msan_chain_origin+0x57/0xa0 [ 814.401509][T17054] do_recvmmsg+0x17ee/0x2300 [ 814.406104][T17054] __se_sys_recvmmsg+0x247/0x410 [ 814.411046][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 814.415894][T17054] do_syscall_64+0x9f/0x140 [ 814.420452][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 814.426329][T17054] [ 814.428649][T17054] Uninit was stored to memory at: [ 814.433680][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 814.439396][T17054] __msan_chain_origin+0x57/0xa0 [ 814.444335][T17054] do_recvmmsg+0x17ee/0x2300 [ 814.448927][T17054] __se_sys_recvmmsg+0x247/0x410 [ 814.453865][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 814.458715][T17054] do_syscall_64+0x9f/0x140 [ 814.463220][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 814.469099][T17054] [ 814.471421][T17054] Uninit was stored to memory at: [ 814.476453][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 814.482175][T17054] __msan_chain_origin+0x57/0xa0 [ 814.487232][T17054] do_recvmmsg+0x17ee/0x2300 [ 814.491828][T17054] __se_sys_recvmmsg+0x247/0x410 [ 814.496767][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 814.501621][T17054] do_syscall_64+0x9f/0x140 [ 814.506127][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 814.512004][T17054] [ 814.514326][T17054] Uninit was stored to memory at: [ 814.519359][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 814.525083][T17054] __msan_chain_origin+0x57/0xa0 [ 814.530026][T17054] do_recvmmsg+0x17ee/0x2300 [ 814.534627][T17054] __se_sys_recvmmsg+0x247/0x410 [ 814.539564][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 814.544419][T17054] do_syscall_64+0x9f/0x140 [ 814.548954][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 814.554837][T17054] [ 814.557204][T17054] Uninit was stored to memory at: [ 814.562235][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 814.567956][T17054] __msan_chain_origin+0x57/0xa0 [ 814.573055][T17054] do_recvmmsg+0x17ee/0x2300 [ 814.577648][T17054] __se_sys_recvmmsg+0x247/0x410 [ 814.582588][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 814.587441][T17054] do_syscall_64+0x9f/0x140 [ 814.591942][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 814.597819][T17054] [ 814.600140][T17054] Local variable ----msg_sys@do_recvmmsg created at: [ 814.606813][T17054] do_recvmmsg+0xbc/0x2300 [ 814.611226][T17054] do_recvmmsg+0xbc/0x2300 [ 815.228515][T17054] not chained 1250000 origins [ 815.233243][T17054] CPU: 1 PID: 17054 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 815.241998][T17054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 815.252054][T17054] Call Trace: [ 815.255356][T17054] dump_stack+0x21c/0x280 [ 815.259701][T17054] kmsan_internal_chain_origin+0x6f/0x130 [ 815.265428][T17054] ? kmsan_get_metadata+0x116/0x180 [ 815.270638][T17054] ? kmsan_internal_check_memory+0xb1/0x520 [ 815.276549][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 815.282190][T17054] ? kmsan_check_memory+0xd/0x10 [ 815.287141][T17054] ? ____sys_recvmsg+0xa2d/0xd80 [ 815.292086][T17054] ? __msan_get_context_state+0x9/0x20 [ 815.297553][T17054] ? kfree+0x29/0x11b0 [ 815.301629][T17054] ? kmsan_get_metadata+0x116/0x180 [ 815.306838][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 815.312478][T17054] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 815.318564][T17054] ? _copy_from_user+0x1cd/0x2d0 [ 815.323512][T17054] ? kmsan_get_metadata+0x116/0x180 [ 815.328727][T17054] __msan_chain_origin+0x57/0xa0 [ 815.333673][T17054] do_recvmmsg+0x17ee/0x2300 [ 815.338281][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 815.343917][T17054] ? __msan_poison_alloca+0xe9/0x110 [ 815.349212][T17054] ? __se_sys_recvmmsg+0xd3/0x410 [ 815.354248][T17054] __se_sys_recvmmsg+0x247/0x410 [ 815.359192][T17054] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 815.365006][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 815.369868][T17054] do_syscall_64+0x9f/0x140 [ 815.374559][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 815.380449][T17054] RIP: 0033:0x45e159 [ 815.384346][T17054] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 815.403958][T17054] RSP: 002b:00007f481eb2cc68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 815.412382][T17054] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 815.420356][T17054] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 815.428332][T17054] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 815.436308][T17054] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 815.444283][T17054] R13: 00000000016afb7f R14: 00007f481eb2d9c0 R15: 000000000119bf8c [ 815.452261][T17054] Uninit was stored to memory at: [ 815.457300][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 815.463195][T17054] __msan_chain_origin+0x57/0xa0 [ 815.468141][T17054] do_recvmmsg+0x17ee/0x2300 [ 815.472734][T17054] __se_sys_recvmmsg+0x247/0x410 [ 815.477676][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 815.482544][T17054] do_syscall_64+0x9f/0x140 [ 815.487051][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 815.492932][T17054] [ 815.495253][T17054] Uninit was stored to memory at: [ 815.500283][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 815.506005][T17054] __msan_chain_origin+0x57/0xa0 [ 815.510965][T17054] do_recvmmsg+0x17ee/0x2300 [ 815.515647][T17054] __se_sys_recvmmsg+0x247/0x410 [ 815.520591][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 815.525472][T17054] do_syscall_64+0x9f/0x140 [ 815.529979][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 815.535861][T17054] [ 815.538182][T17054] Uninit was stored to memory at: [ 815.543234][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 815.548963][T17054] __msan_chain_origin+0x57/0xa0 [ 815.553906][T17054] do_recvmmsg+0x17ee/0x2300 [ 815.558501][T17054] __se_sys_recvmmsg+0x247/0x410 [ 815.563444][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 815.568301][T17054] do_syscall_64+0x9f/0x140 [ 815.572811][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 815.578691][T17054] [ 815.581010][T17054] Uninit was stored to memory at: [ 815.586066][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 815.591786][T17054] __msan_chain_origin+0x57/0xa0 [ 815.596728][T17054] do_recvmmsg+0x17ee/0x2300 [ 815.601320][T17054] __se_sys_recvmmsg+0x247/0x410 [ 815.606262][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 815.611131][T17054] do_syscall_64+0x9f/0x140 [ 815.615638][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 815.621522][T17054] [ 815.623850][T17054] Uninit was stored to memory at: [ 815.628895][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 815.634624][T17054] __msan_chain_origin+0x57/0xa0 [ 815.639578][T17054] do_recvmmsg+0x17ee/0x2300 [ 815.644179][T17054] __se_sys_recvmmsg+0x247/0x410 [ 815.649124][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 815.653980][T17054] do_syscall_64+0x9f/0x140 [ 815.658491][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 815.664371][T17054] [ 815.666690][T17054] Uninit was stored to memory at: [ 815.671728][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 815.677450][T17054] __msan_chain_origin+0x57/0xa0 [ 815.682392][T17054] do_recvmmsg+0x17ee/0x2300 [ 815.686985][T17054] __se_sys_recvmmsg+0x247/0x410 [ 815.691934][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 815.696790][T17054] do_syscall_64+0x9f/0x140 [ 815.701313][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 815.707192][T17054] [ 815.709514][T17054] Uninit was stored to memory at: [ 815.714550][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 815.720269][T17054] __msan_chain_origin+0x57/0xa0 [ 815.725209][T17054] do_recvmmsg+0x17ee/0x2300 [ 815.729804][T17054] __se_sys_recvmmsg+0x247/0x410 [ 815.734747][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 815.739611][T17054] do_syscall_64+0x9f/0x140 [ 815.744121][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 815.750000][T17054] [ 815.752324][T17054] Local variable ----msg_sys@do_recvmmsg created at: [ 815.759005][T17054] do_recvmmsg+0xbc/0x2300 [ 815.763423][T17054] do_recvmmsg+0xbc/0x2300 [ 816.383065][T17054] not chained 1260000 origins [ 816.387782][T17054] CPU: 0 PID: 17054 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 816.396537][T17054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 816.406588][T17054] Call Trace: [ 816.409882][T17054] dump_stack+0x21c/0x280 [ 816.414222][T17054] kmsan_internal_chain_origin+0x6f/0x130 [ 816.420550][T17054] ? kmsan_get_metadata+0x116/0x180 [ 816.425760][T17054] ? kmsan_internal_check_memory+0xb1/0x520 [ 816.431658][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 816.437291][T17054] ? kmsan_check_memory+0xd/0x10 [ 816.442229][T17054] ? ____sys_recvmsg+0xa2d/0xd80 [ 816.447164][T17054] ? __msan_get_context_state+0x9/0x20 [ 816.452625][T17054] ? kfree+0x29/0x11b0 [ 816.456695][T17054] ? kmsan_get_metadata+0x116/0x180 [ 816.461911][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 816.467549][T17054] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 816.473621][T17054] ? _copy_from_user+0x1cd/0x2d0 [ 816.478558][T17054] ? kmsan_get_metadata+0x116/0x180 [ 816.483757][T17054] __msan_chain_origin+0x57/0xa0 [ 816.488702][T17054] do_recvmmsg+0x17ee/0x2300 [ 816.493311][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 816.498956][T17054] ? __msan_poison_alloca+0xe9/0x110 [ 816.504255][T17054] ? __se_sys_recvmmsg+0xd3/0x410 [ 816.509741][T17054] __se_sys_recvmmsg+0x247/0x410 [ 816.514687][T17054] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 816.520615][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 816.525477][T17054] do_syscall_64+0x9f/0x140 [ 816.529989][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 816.535886][T17054] RIP: 0033:0x45e159 [ 816.539785][T17054] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 816.559391][T17054] RSP: 002b:00007f481eb2cc68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 816.567812][T17054] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 816.575791][T17054] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 816.584989][T17054] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 816.592960][T17054] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 816.600934][T17054] R13: 00000000016afb7f R14: 00007f481eb2d9c0 R15: 000000000119bf8c [ 816.608908][T17054] Uninit was stored to memory at: [ 816.613944][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 816.619672][T17054] __msan_chain_origin+0x57/0xa0 [ 816.624621][T17054] do_recvmmsg+0x17ee/0x2300 [ 816.629218][T17054] __se_sys_recvmmsg+0x247/0x410 [ 816.634161][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 816.639023][T17054] do_syscall_64+0x9f/0x140 [ 816.643544][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 816.649430][T17054] [ 816.651751][T17054] Uninit was stored to memory at: [ 816.656788][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 816.662535][T17054] __msan_chain_origin+0x57/0xa0 [ 816.667474][T17054] do_recvmmsg+0x17ee/0x2300 [ 816.672067][T17054] __se_sys_recvmmsg+0x247/0x410 [ 816.677009][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 816.681865][T17054] do_syscall_64+0x9f/0x140 [ 816.686370][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 816.692250][T17054] [ 816.694573][T17054] Uninit was stored to memory at: [ 816.699609][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 816.705427][T17054] __msan_chain_origin+0x57/0xa0 [ 816.710378][T17054] do_recvmmsg+0x17ee/0x2300 [ 816.714976][T17054] __se_sys_recvmmsg+0x247/0x410 [ 816.720129][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 816.724988][T17054] do_syscall_64+0x9f/0x140 [ 816.729498][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 816.733878][T17160] 8021q: adding VLAN 0 to HW filter on device bond0 [ 816.735379][T17054] [ 816.735419][T17054] Uninit was stored to memory at: [ 816.749320][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 816.755040][T17054] __msan_chain_origin+0x57/0xa0 [ 816.759980][T17054] do_recvmmsg+0x17ee/0x2300 [ 816.764572][T17054] __se_sys_recvmmsg+0x247/0x410 [ 816.769508][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 816.774362][T17054] do_syscall_64+0x9f/0x140 [ 816.778901][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 816.784781][T17054] [ 816.787103][T17054] Uninit was stored to memory at: [ 816.787803][ T9312] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 816.792130][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 816.792144][T17054] __msan_chain_origin+0x57/0xa0 [ 816.792162][T17054] do_recvmmsg+0x17ee/0x2300 [ 816.792177][T17054] __se_sys_recvmmsg+0x247/0x410 [ 816.792228][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 816.803108][ T9312] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 816.805618][T17054] do_syscall_64+0x9f/0x140 [ 816.805669][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 816.823127][T17160] 8021q: adding VLAN 0 to HW filter on device team0 [ 816.824880][T17054] [ 816.824921][T17054] Uninit was stored to memory at: [ 816.856464][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 816.862189][T17054] __msan_chain_origin+0x57/0xa0 [ 816.864002][ T9312] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 816.867131][T17054] do_recvmmsg+0x17ee/0x2300 [ 816.867184][T17054] __se_sys_recvmmsg+0x247/0x410 [ 816.877251][ T9312] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 816.879796][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 816.879847][T17054] do_syscall_64+0x9f/0x140 [ 816.886264][ T9312] bridge0: port 1(bridge_slave_0) entered blocking state [ 816.892712][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 816.892717][T17054] [ 816.892723][T17054] Uninit was stored to memory at: [ 816.892746][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 816.892759][T17054] __msan_chain_origin+0x57/0xa0 [ 816.892808][T17054] do_recvmmsg+0x17ee/0x2300 [ 816.897754][ T9312] bridge0: port 1(bridge_slave_0) entered forwarding state [ 816.902112][T17054] __se_sys_recvmmsg+0x247/0x410 [ 816.902130][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 816.902149][T17054] do_syscall_64+0x9f/0x140 [ 816.902164][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 816.902206][T17054] [ 816.967192][T17054] Local variable ----msg_sys@do_recvmmsg created at: [ 816.973875][T17054] do_recvmmsg+0xbc/0x2300 [ 816.978299][T17054] do_recvmmsg+0xbc/0x2300 [ 817.049897][ T9312] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 817.059273][ T9312] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 817.069118][ T9312] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 817.078687][ T9312] bridge0: port 2(bridge_slave_1) entered blocking state [ 817.085973][ T9312] bridge0: port 2(bridge_slave_1) entered forwarding state [ 817.095134][ T9312] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 817.106064][ T9312] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 817.116991][ T9312] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 817.127380][ T9312] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 817.137726][ T9312] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 817.148168][ T9312] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 817.257098][T17054] not chained 1270000 origins [ 817.261814][T17054] CPU: 0 PID: 17054 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 817.270567][T17054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 817.280655][T17054] Call Trace: [ 817.283935][T17054] dump_stack+0x21c/0x280 [ 817.288244][T17054] kmsan_internal_chain_origin+0x6f/0x130 [ 817.293983][T17054] ? kmsan_get_metadata+0x116/0x180 [ 817.299197][T17054] ? kmsan_internal_check_memory+0xb1/0x520 [ 817.305069][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 817.310692][T17054] ? kmsan_check_memory+0xd/0x10 [ 817.315622][T17054] ? ____sys_recvmsg+0xa2d/0xd80 [ 817.320534][T17054] ? __msan_get_context_state+0x9/0x20 [ 817.325966][T17054] ? kfree+0x29/0x11b0 [ 817.330008][T17054] ? kmsan_get_metadata+0x116/0x180 [ 817.335186][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 817.340797][T17054] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 817.347636][T17054] ? _copy_from_user+0x1cd/0x2d0 [ 817.352550][T17054] ? kmsan_get_metadata+0x116/0x180 [ 817.357725][T17054] __msan_chain_origin+0x57/0xa0 [ 817.362640][T17054] do_recvmmsg+0x17ee/0x2300 [ 817.367214][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 817.372821][T17054] ? __msan_poison_alloca+0xe9/0x110 [ 817.378080][T17054] ? __se_sys_recvmmsg+0xd3/0x410 [ 817.383079][T17054] __se_sys_recvmmsg+0x247/0x410 [ 817.387991][T17054] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 817.393774][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 817.398603][T17054] do_syscall_64+0x9f/0x140 [ 817.403085][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 817.408949][T17054] RIP: 0033:0x45e159 [ 817.412833][T17054] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 817.432431][T17054] RSP: 002b:00007f481eb2cc68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 817.440826][T17054] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 817.448776][T17054] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 817.456740][T17054] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 817.464689][T17054] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 817.472647][T17054] R13: 00000000016afb7f R14: 00007f481eb2d9c0 R15: 000000000119bf8c [ 817.480602][T17054] Uninit was stored to memory at: [ 817.485626][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 817.491326][T17054] __msan_chain_origin+0x57/0xa0 [ 817.496363][T17054] do_recvmmsg+0x17ee/0x2300 [ 817.500933][T17054] __se_sys_recvmmsg+0x247/0x410 [ 817.505853][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 817.510706][T17054] do_syscall_64+0x9f/0x140 [ 817.515216][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 817.521139][T17054] [ 817.523450][T17054] Uninit was stored to memory at: [ 817.528457][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 817.534152][T17054] __msan_chain_origin+0x57/0xa0 [ 817.539068][T17054] do_recvmmsg+0x17ee/0x2300 [ 817.543638][T17054] __se_sys_recvmmsg+0x247/0x410 [ 817.548556][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 817.553388][T17054] do_syscall_64+0x9f/0x140 [ 817.557870][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 817.563731][T17054] [ 817.566139][T17054] Uninit was stored to memory at: [ 817.571189][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 817.576921][T17054] __msan_chain_origin+0x57/0xa0 [ 817.581835][T17054] do_recvmmsg+0x17ee/0x2300 [ 817.586412][T17054] __se_sys_recvmmsg+0x247/0x410 [ 817.591325][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 817.596153][T17054] do_syscall_64+0x9f/0x140 [ 817.600631][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 817.606529][T17054] [ 817.608832][T17054] Uninit was stored to memory at: [ 817.613834][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 817.619564][T17054] __msan_chain_origin+0x57/0xa0 [ 817.624481][T17054] do_recvmmsg+0x17ee/0x2300 [ 817.629049][T17054] __se_sys_recvmmsg+0x247/0x410 [ 817.633964][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 817.638790][T17054] do_syscall_64+0x9f/0x140 [ 817.643268][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 817.649127][T17054] [ 817.651429][T17054] Uninit was stored to memory at: [ 817.656433][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 817.662126][T17054] __msan_chain_origin+0x57/0xa0 [ 817.667040][T17054] do_recvmmsg+0x17ee/0x2300 [ 817.671605][T17054] __se_sys_recvmmsg+0x247/0x410 [ 817.676518][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 817.681344][T17054] do_syscall_64+0x9f/0x140 [ 817.685823][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 817.691681][T17054] [ 817.693983][T17054] Uninit was stored to memory at: [ 817.698997][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 817.704690][T17054] __msan_chain_origin+0x57/0xa0 [ 817.709602][T17054] do_recvmmsg+0x17ee/0x2300 [ 817.714168][T17054] __se_sys_recvmmsg+0x247/0x410 [ 817.719164][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 817.723998][T17054] do_syscall_64+0x9f/0x140 [ 817.728492][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 817.734351][T17054] [ 817.736650][T17054] Uninit was stored to memory at: [ 817.741652][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 817.747344][T17054] __msan_chain_origin+0x57/0xa0 [ 817.752271][T17054] do_recvmmsg+0x17ee/0x2300 [ 817.756835][T17054] __se_sys_recvmmsg+0x247/0x410 [ 817.761745][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 817.766572][T17054] do_syscall_64+0x9f/0x140 [ 817.771061][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 817.776925][T17054] [ 817.779226][T17054] Local variable ----msg_sys@do_recvmmsg created at: [ 817.785873][T17054] do_recvmmsg+0xbc/0x2300 [ 817.790262][T17054] do_recvmmsg+0xbc/0x2300 [ 817.873345][ T8497] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 817.883669][ T8497] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 817.893248][ T8497] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 817.942833][ T8502] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 817.953092][ T8502] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 817.985840][T17160] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 818.057143][T17054] not chained 1280000 origins [ 818.061841][T17054] CPU: 1 PID: 17054 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 818.070600][T17054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 818.080653][T17054] Call Trace: [ 818.083953][T17054] dump_stack+0x21c/0x280 [ 818.088324][T17054] kmsan_internal_chain_origin+0x6f/0x130 [ 818.094048][T17054] ? kmsan_get_metadata+0x116/0x180 [ 818.099249][T17054] ? kmsan_internal_check_memory+0xb1/0x520 [ 818.105148][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 818.110786][T17054] ? kmsan_check_memory+0xd/0x10 [ 818.115734][T17054] ? ____sys_recvmsg+0xa2d/0xd80 [ 818.120675][T17054] ? __msan_get_context_state+0x9/0x20 [ 818.126139][T17054] ? kfree+0x29/0x11b0 [ 818.130210][T17054] ? kmsan_get_metadata+0x116/0x180 [ 818.135417][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 818.141070][T17054] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 818.147140][T17054] ? _copy_from_user+0x1cd/0x2d0 [ 818.152077][T17054] ? kmsan_get_metadata+0x116/0x180 [ 818.157273][T17054] __msan_chain_origin+0x57/0xa0 [ 818.162213][T17054] do_recvmmsg+0x17ee/0x2300 [ 818.166821][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 818.172455][T17054] ? __msan_poison_alloca+0xe9/0x110 [ 818.177745][T17054] ? __se_sys_recvmmsg+0xd3/0x410 [ 818.182782][T17054] __se_sys_recvmmsg+0x247/0x410 [ 818.187720][T17054] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 818.193534][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 818.198432][T17054] do_syscall_64+0x9f/0x140 [ 818.202942][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 818.208830][T17054] RIP: 0033:0x45e159 [ 818.212726][T17054] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 818.232340][T17054] RSP: 002b:00007f481eb2cc68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 818.240761][T17054] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 818.248738][T17054] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 818.256716][T17054] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 818.264688][T17054] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 818.273791][T17054] R13: 00000000016afb7f R14: 00007f481eb2d9c0 R15: 000000000119bf8c [ 818.281760][T17054] Uninit was stored to memory at: [ 818.286797][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 818.292520][T17054] __msan_chain_origin+0x57/0xa0 [ 818.297459][T17054] do_recvmmsg+0x17ee/0x2300 [ 818.302055][T17054] __se_sys_recvmmsg+0x247/0x410 [ 818.306993][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 818.311852][T17054] do_syscall_64+0x9f/0x140 [ 818.316358][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 818.322235][T17054] [ 818.324555][T17054] Uninit was stored to memory at: [ 818.329599][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 818.335322][T17054] __msan_chain_origin+0x57/0xa0 [ 818.340268][T17054] do_recvmmsg+0x17ee/0x2300 [ 818.344862][T17054] __se_sys_recvmmsg+0x247/0x410 [ 818.349799][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 818.354686][T17054] do_syscall_64+0x9f/0x140 [ 818.359194][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 818.365071][T17054] [ 818.367393][T17054] Uninit was stored to memory at: [ 818.372427][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 818.378145][T17054] __msan_chain_origin+0x57/0xa0 [ 818.383086][T17054] do_recvmmsg+0x17ee/0x2300 [ 818.387680][T17054] __se_sys_recvmmsg+0x247/0x410 [ 818.392619][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 818.397460][T17054] do_syscall_64+0x9f/0x140 [ 818.401956][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 818.407826][T17054] [ 818.410130][T17054] Uninit was stored to memory at: [ 818.415155][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 818.420846][T17054] __msan_chain_origin+0x57/0xa0 [ 818.425778][T17054] do_recvmmsg+0x17ee/0x2300 [ 818.430344][T17054] __se_sys_recvmmsg+0x247/0x410 [ 818.435259][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 818.440093][T17054] do_syscall_64+0x9f/0x140 [ 818.444585][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 818.450457][T17054] [ 818.452765][T17054] Uninit was stored to memory at: [ 818.457785][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 818.463490][T17054] __msan_chain_origin+0x57/0xa0 [ 818.468430][T17054] do_recvmmsg+0x17ee/0x2300 [ 818.473008][T17054] __se_sys_recvmmsg+0x247/0x410 [ 818.477932][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 818.482770][T17054] do_syscall_64+0x9f/0x140 [ 818.487266][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 818.493127][T17054] [ 818.495427][T17054] Uninit was stored to memory at: [ 818.500439][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 818.506141][T17054] __msan_chain_origin+0x57/0xa0 [ 818.511068][T17054] do_recvmmsg+0x17ee/0x2300 [ 818.515699][T17054] __se_sys_recvmmsg+0x247/0x410 [ 818.520623][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 818.525473][T17054] do_syscall_64+0x9f/0x140 [ 818.529967][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 818.535871][T17054] [ 818.538174][T17054] Uninit was stored to memory at: [ 818.543203][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 818.548912][T17054] __msan_chain_origin+0x57/0xa0 [ 818.553831][T17054] do_recvmmsg+0x17ee/0x2300 [ 818.558400][T17054] __se_sys_recvmmsg+0x247/0x410 [ 818.563330][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 818.568197][T17054] do_syscall_64+0x9f/0x140 [ 818.572699][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 818.579353][T17054] [ 818.581658][T17054] Local variable ----msg_sys@do_recvmmsg created at: [ 818.588313][T17054] do_recvmmsg+0xbc/0x2300 [ 818.592734][T17054] do_recvmmsg+0xbc/0x2300 [ 818.809873][ T8500] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 818.818105][ T8500] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 818.862550][T17160] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 818.899147][T17054] not chained 1290000 origins [ 818.903861][T17054] CPU: 1 PID: 17054 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 818.912612][T17054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 818.922670][T17054] Call Trace: [ 818.925962][T17054] dump_stack+0x21c/0x280 [ 818.930300][T17054] kmsan_internal_chain_origin+0x6f/0x130 [ 818.936021][T17054] ? kmsan_get_metadata+0x116/0x180 [ 818.941222][T17054] ? kmsan_internal_check_memory+0xb1/0x520 [ 818.947121][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 818.952760][T17054] ? kmsan_check_memory+0xd/0x10 [ 818.957701][T17054] ? ____sys_recvmsg+0xa2d/0xd80 [ 818.962640][T17054] ? __msan_get_context_state+0x9/0x20 [ 818.968082][T17054] ? kfree+0x29/0x11b0 [ 818.972157][T17054] ? kmsan_get_metadata+0x116/0x180 [ 818.977346][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 818.982969][T17054] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 818.989067][T17054] ? _copy_from_user+0x1cd/0x2d0 [ 818.993992][T17054] ? kmsan_get_metadata+0x116/0x180 [ 818.999178][T17054] __msan_chain_origin+0x57/0xa0 [ 819.004097][T17054] do_recvmmsg+0x17ee/0x2300 [ 819.008688][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 819.014310][T17054] ? __msan_poison_alloca+0xe9/0x110 [ 819.019602][T17054] ? __se_sys_recvmmsg+0xd3/0x410 [ 819.024607][T17054] __se_sys_recvmmsg+0x247/0x410 [ 819.029538][T17054] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 819.035325][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 819.040175][T17054] do_syscall_64+0x9f/0x140 [ 819.044661][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 819.050537][T17054] RIP: 0033:0x45e159 [ 819.054433][T17054] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 819.074042][T17054] RSP: 002b:00007f481eb2cc68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 819.082457][T17054] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 819.090437][T17054] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 819.098388][T17054] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 819.106339][T17054] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 819.114298][T17054] R13: 00000000016afb7f R14: 00007f481eb2d9c0 R15: 000000000119bf8c [ 819.122268][T17054] Uninit was stored to memory at: [ 819.127289][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 819.132996][T17054] __msan_chain_origin+0x57/0xa0 [ 819.137922][T17054] do_recvmmsg+0x17ee/0x2300 [ 819.142501][T17054] __se_sys_recvmmsg+0x247/0x410 [ 819.147429][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 819.152270][T17054] do_syscall_64+0x9f/0x140 [ 819.156778][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 819.162650][T17054] [ 819.164952][T17054] Uninit was stored to memory at: [ 819.169955][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 819.175649][T17054] __msan_chain_origin+0x57/0xa0 [ 819.180574][T17054] do_recvmmsg+0x17ee/0x2300 [ 819.185157][T17054] __se_sys_recvmmsg+0x247/0x410 [ 819.190070][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 819.194899][T17054] do_syscall_64+0x9f/0x140 [ 819.199381][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 819.205244][T17054] [ 819.207559][T17054] Uninit was stored to memory at: [ 819.212672][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 819.218378][T17054] __msan_chain_origin+0x57/0xa0 [ 819.223296][T17054] do_recvmmsg+0x17ee/0x2300 [ 819.227862][T17054] __se_sys_recvmmsg+0x247/0x410 [ 819.232789][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 819.237627][T17054] do_syscall_64+0x9f/0x140 [ 819.242117][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 819.248005][T17054] [ 819.250311][T17054] Uninit was stored to memory at: [ 819.255332][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 819.261039][T17054] __msan_chain_origin+0x57/0xa0 [ 819.265955][T17054] do_recvmmsg+0x17ee/0x2300 [ 819.270523][T17054] __se_sys_recvmmsg+0x247/0x410 [ 819.275438][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 819.280293][T17054] do_syscall_64+0x9f/0x140 [ 819.284787][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 819.290680][T17054] [ 819.292988][T17054] Uninit was stored to memory at: [ 819.298005][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 819.303700][T17054] __msan_chain_origin+0x57/0xa0 [ 819.308615][T17054] do_recvmmsg+0x17ee/0x2300 [ 819.313194][T17054] __se_sys_recvmmsg+0x247/0x410 [ 819.318119][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 819.322968][T17054] do_syscall_64+0x9f/0x140 [ 819.327448][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 819.333329][T17054] [ 819.335658][T17054] Uninit was stored to memory at: [ 819.340665][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 819.346376][T17054] __msan_chain_origin+0x57/0xa0 [ 819.351294][T17054] do_recvmmsg+0x17ee/0x2300 [ 819.355874][T17054] __se_sys_recvmmsg+0x247/0x410 [ 819.360823][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 819.365657][T17054] do_syscall_64+0x9f/0x140 [ 819.370139][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 819.376000][T17054] [ 819.378303][T17054] Uninit was stored to memory at: [ 819.383306][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 819.388999][T17054] __msan_chain_origin+0x57/0xa0 [ 819.393924][T17054] do_recvmmsg+0x17ee/0x2300 [ 819.398517][T17054] __se_sys_recvmmsg+0x247/0x410 [ 819.403432][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 819.408261][T17054] do_syscall_64+0x9f/0x140 [ 819.412754][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 819.418638][T17054] [ 819.420957][T17054] Local variable ----msg_sys@do_recvmmsg created at: [ 819.427609][T17054] do_recvmmsg+0xbc/0x2300 [ 819.432014][T17054] do_recvmmsg+0xbc/0x2300 [ 819.710100][T17148] 8021q: adding VLAN 0 to HW filter on device bond0 [ 819.744242][ T8500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 819.754393][ T8500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 819.825145][ T8503] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 819.829668][T17054] not chained 1300000 origins [ 819.834008][ T8503] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 819.837157][T17054] CPU: 1 PID: 17054 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 819.853059][T17054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 819.863112][T17054] Call Trace: [ 819.864476][T17148] 8021q: adding VLAN 0 to HW filter on device team0 [ 819.866437][T17054] dump_stack+0x21c/0x280 [ 819.877320][T17054] kmsan_internal_chain_origin+0x6f/0x130 [ 819.883053][T17054] ? kmsan_get_metadata+0x116/0x180 [ 819.888258][T17054] ? kmsan_internal_check_memory+0xb1/0x520 [ 819.894157][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 819.898155][ T8500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 819.899817][T17054] ? kmsan_check_memory+0xd/0x10 [ 819.910626][ T8500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 819.912342][T17054] ? ____sys_recvmsg+0xa2d/0xd80 [ 819.912359][T17054] ? __msan_get_context_state+0x9/0x20 [ 819.912377][T17054] ? kfree+0x29/0x11b0 [ 819.912393][T17054] ? kmsan_get_metadata+0x116/0x180 [ 819.912414][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 819.912437][T17054] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 819.912488][T17054] ? _copy_from_user+0x1cd/0x2d0 [ 819.940042][T17160] device veth0_vlan entered promiscuous mode [ 819.945294][T17054] ? kmsan_get_metadata+0x116/0x180 [ 819.945311][T17054] __msan_chain_origin+0x57/0xa0 [ 819.945331][T17054] do_recvmmsg+0x17ee/0x2300 [ 819.945363][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 819.945378][T17054] ? __msan_poison_alloca+0xe9/0x110 [ 819.945431][T17054] ? __se_sys_recvmmsg+0xd3/0x410 [ 819.992374][ T8500] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 819.993425][T17054] __se_sys_recvmmsg+0x247/0x410 [ 820.003011][ T8500] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 820.005557][T17054] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 820.014933][ T8500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 820.018812][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 820.028950][ T8500] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 820.031717][T17054] do_syscall_64+0x9f/0x140 [ 820.040807][ T8500] bridge0: port 1(bridge_slave_0) entered blocking state [ 820.044165][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 820.044179][T17054] RIP: 0033:0x45e159 [ 820.044200][T17054] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 820.044211][T17054] RSP: 002b:00007f481eb2cc68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 820.051385][ T8500] bridge0: port 1(bridge_slave_0) entered forwarding state [ 820.057123][T17054] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 820.057135][T17054] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 820.057147][T17054] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 820.057158][T17054] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 820.057170][T17054] R13: 00000000016afb7f R14: 00007f481eb2d9c0 R15: 000000000119bf8c [ 820.057182][T17054] Uninit was stored to memory at: [ 820.057207][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 820.057258][T17054] __msan_chain_origin+0x57/0xa0 [ 820.062888][ T8500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 820.080724][T17054] do_recvmmsg+0x17ee/0x2300 [ 820.080741][T17054] __se_sys_recvmmsg+0x247/0x410 [ 820.080757][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 820.080775][T17054] do_syscall_64+0x9f/0x140 [ 820.080792][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 820.080834][T17054] [ 820.090844][ T8500] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 820.096390][T17054] Uninit was stored to memory at: [ 820.096418][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 820.096432][T17054] __msan_chain_origin+0x57/0xa0 [ 820.096450][T17054] do_recvmmsg+0x17ee/0x2300 [ 820.096466][T17054] __se_sys_recvmmsg+0x247/0x410 [ 820.096483][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 820.096536][T17054] do_syscall_64+0x9f/0x140 [ 820.105537][ T8500] bridge0: port 2(bridge_slave_1) entered blocking state [ 820.112443][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 820.112447][T17054] [ 820.112451][T17054] Uninit was stored to memory at: [ 820.112469][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 820.112484][T17054] __msan_chain_origin+0x57/0xa0 [ 820.112501][T17054] do_recvmmsg+0x17ee/0x2300 [ 820.112519][T17054] __se_sys_recvmmsg+0x247/0x410 [ 820.112535][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 820.112551][T17054] do_syscall_64+0x9f/0x140 [ 820.112603][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 820.120678][ T8500] bridge0: port 2(bridge_slave_1) entered forwarding state [ 820.128489][T17054] [ 820.128495][T17054] Uninit was stored to memory at: [ 820.128518][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 820.128532][T17054] __msan_chain_origin+0x57/0xa0 [ 820.128548][T17054] do_recvmmsg+0x17ee/0x2300 [ 820.128565][T17054] __se_sys_recvmmsg+0x247/0x410 [ 820.128581][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 820.128633][T17054] do_syscall_64+0x9f/0x140 [ 820.173722][T17160] device veth1_vlan entered promiscuous mode [ 820.174592][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 820.174630][T17054] [ 820.327557][T17148] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 820.329893][T17054] Uninit was stored to memory at: [ 820.336027][T17148] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 820.341878][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 820.369855][T17160] device veth0_macvtap entered promiscuous mode [ 820.375473][T17054] __msan_chain_origin+0x57/0xa0 [ 820.375493][T17054] do_recvmmsg+0x17ee/0x2300 [ 820.375508][T17054] __se_sys_recvmmsg+0x247/0x410 [ 820.375524][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 820.375542][T17054] do_syscall_64+0x9f/0x140 [ 820.375559][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 820.375598][T17054] [ 820.413752][T17054] Uninit was stored to memory at: [ 820.418791][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 820.424513][T17054] __msan_chain_origin+0x57/0xa0 [ 820.429453][T17054] do_recvmmsg+0x17ee/0x2300 [ 820.429679][T17160] device veth1_macvtap entered promiscuous mode [ 820.434038][T17054] __se_sys_recvmmsg+0x247/0x410 [ 820.434055][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 820.434072][T17054] do_syscall_64+0x9f/0x140 [ 820.434089][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 820.434093][T17054] [ 820.434098][T17054] Uninit was stored to memory at: [ 820.434119][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 820.434132][T17054] __msan_chain_origin+0x57/0xa0 [ 820.434181][T17054] do_recvmmsg+0x17ee/0x2300 [ 820.483213][T17054] __se_sys_recvmmsg+0x247/0x410 [ 820.488169][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 820.493032][T17054] do_syscall_64+0x9f/0x140 [ 820.497540][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 820.503419][T17054] [ 820.505757][T17054] Local variable ----msg_sys@do_recvmmsg created at: [ 820.512449][T17054] do_recvmmsg+0xbc/0x2300 [ 820.516875][T17054] do_recvmmsg+0xbc/0x2300 [ 820.549036][T17160] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 820.559668][T17160] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 820.570043][T17160] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 820.580656][T17160] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 820.591824][T17160] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 820.602872][T17160] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 820.612933][T17160] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 820.623530][T17160] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 820.633558][T17160] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 820.644254][T17160] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 820.658630][T17160] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 820.670701][ T8500] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 820.680486][ T8500] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 820.691915][ T8500] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 820.701180][ T8500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 820.712075][ T8500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 820.722893][ T8500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 820.733227][ T8500] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 820.743490][ T8500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 820.753808][ T8500] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 820.764051][ T8500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 820.774051][ T8500] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 820.784793][ T8500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 820.795101][ T8500] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 820.805225][ T8500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 820.815933][ T8500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 820.826552][ T8500] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 820.836562][ T8500] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 820.844502][ T8500] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 820.852389][ T8500] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 820.863030][ T8500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 820.879221][T17148] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 820.897405][ T8503] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 820.907333][ T8503] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 820.916320][ T8503] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 820.966533][T17160] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 820.977197][T17160] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 820.987312][T17160] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 820.998953][T17160] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 821.009296][T17160] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 821.019853][T17160] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 821.029853][T17160] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 821.040394][T17160] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 821.050382][T17160] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 821.060992][T17160] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 821.075188][T17160] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 821.084576][ T8497] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 821.094884][ T8497] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 821.193414][T10813] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 821.203797][T10813] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 821.350665][T17054] not chained 1310000 origins [ 821.355382][T17054] CPU: 0 PID: 17054 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 821.364137][T17054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 821.374194][T17054] Call Trace: [ 821.377496][T17054] dump_stack+0x21c/0x280 [ 821.381843][T17054] kmsan_internal_chain_origin+0x6f/0x130 [ 821.387566][T17054] ? kmsan_get_metadata+0x116/0x180 [ 821.392772][T17054] ? kmsan_internal_check_memory+0xb1/0x520 [ 821.398673][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 821.404314][T17054] ? kmsan_check_memory+0xd/0x10 [ 821.409258][T17054] ? ____sys_recvmsg+0xa2d/0xd80 [ 821.414208][T17054] ? __msan_get_context_state+0x9/0x20 [ 821.419675][T17054] ? kfree+0x29/0x11b0 [ 821.423746][T17054] ? kmsan_get_metadata+0x116/0x180 [ 821.428954][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 821.434597][T17054] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 821.440696][T17054] ? _copy_from_user+0x1cd/0x2d0 [ 821.445644][T17054] ? kmsan_get_metadata+0x116/0x180 [ 821.450842][T17054] __msan_chain_origin+0x57/0xa0 [ 821.455789][T17054] do_recvmmsg+0x17ee/0x2300 [ 821.460401][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 821.466060][T17054] ? __msan_poison_alloca+0xe9/0x110 [ 821.471352][T17054] ? __se_sys_recvmmsg+0xd3/0x410 [ 821.476383][T17054] __se_sys_recvmmsg+0x247/0x410 [ 821.481333][T17054] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 821.487156][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 821.492014][T17054] do_syscall_64+0x9f/0x140 [ 821.496525][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 821.502421][T17054] RIP: 0033:0x45e159 [ 821.507822][T17054] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 821.528057][T17054] RSP: 002b:00007f481eb2cc68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 821.536470][T17054] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 821.544424][T17054] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 821.552372][T17054] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 821.560345][T17054] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 821.568318][T17054] R13: 00000000016afb7f R14: 00007f481eb2d9c0 R15: 000000000119bf8c [ 821.576269][T17054] Uninit was stored to memory at: [ 821.581278][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 821.586973][T17054] __msan_chain_origin+0x57/0xa0 [ 821.591899][T17054] do_recvmmsg+0x17ee/0x2300 [ 821.596471][T17054] __se_sys_recvmmsg+0x247/0x410 [ 821.601385][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 821.606213][T17054] do_syscall_64+0x9f/0x140 [ 821.610704][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 821.616576][T17054] [ 821.618879][T17054] Uninit was stored to memory at: [ 821.623885][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 821.629578][T17054] __msan_chain_origin+0x57/0xa0 [ 821.634498][T17054] do_recvmmsg+0x17ee/0x2300 [ 821.639062][T17054] __se_sys_recvmmsg+0x247/0x410 [ 821.643975][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 821.648804][T17054] do_syscall_64+0x9f/0x140 [ 821.653295][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 821.659160][T17054] [ 821.661469][T17054] Uninit was stored to memory at: [ 821.666484][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 821.672190][T17054] __msan_chain_origin+0x57/0xa0 [ 821.677102][T17054] do_recvmmsg+0x17ee/0x2300 [ 821.681668][T17054] __se_sys_recvmmsg+0x247/0x410 [ 821.686626][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 821.691468][T17054] do_syscall_64+0x9f/0x140 [ 821.695982][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 821.701847][T17054] [ 821.704152][T17054] Uninit was stored to memory at: [ 821.709210][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 821.714950][T17054] __msan_chain_origin+0x57/0xa0 [ 821.719912][T17054] do_recvmmsg+0x17ee/0x2300 [ 821.724483][T17054] __se_sys_recvmmsg+0x247/0x410 [ 821.729414][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 821.734246][T17054] do_syscall_64+0x9f/0x140 [ 821.738726][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 821.744588][T17054] [ 821.746891][T17054] Uninit was stored to memory at: [ 821.751911][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 821.757617][T17054] __msan_chain_origin+0x57/0xa0 [ 821.762543][T17054] do_recvmmsg+0x17ee/0x2300 [ 821.767110][T17054] __se_sys_recvmmsg+0x247/0x410 [ 821.772041][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 821.776885][T17054] do_syscall_64+0x9f/0x140 [ 821.781374][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 821.787244][T17054] [ 821.789544][T17054] Uninit was stored to memory at: [ 821.794554][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 821.800256][T17054] __msan_chain_origin+0x57/0xa0 [ 821.805171][T17054] do_recvmmsg+0x17ee/0x2300 [ 821.809747][T17054] __se_sys_recvmmsg+0x247/0x410 [ 821.814659][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 821.819492][T17054] do_syscall_64+0x9f/0x140 [ 821.823990][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 821.829850][T17054] [ 821.832153][T17054] Uninit was stored to memory at: [ 821.837157][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 821.842857][T17054] __msan_chain_origin+0x57/0xa0 [ 821.847772][T17054] do_recvmmsg+0x17ee/0x2300 [ 821.852339][T17054] __se_sys_recvmmsg+0x247/0x410 [ 821.857261][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 821.862091][T17054] do_syscall_64+0x9f/0x140 [ 821.866573][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 821.872432][T17054] [ 821.874749][T17054] Local variable ----msg_sys@do_recvmmsg created at: [ 821.881409][T17054] do_recvmmsg+0xbc/0x2300 [ 821.885812][T17054] do_recvmmsg+0xbc/0x2300 [ 822.079325][T17054] not chained 1320000 origins [ 822.084039][T17054] CPU: 0 PID: 17054 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 822.092795][T17054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 822.102900][T17054] Call Trace: [ 822.106206][T17054] dump_stack+0x21c/0x280 [ 822.110550][T17054] kmsan_internal_chain_origin+0x6f/0x130 [ 822.116294][T17054] ? kmsan_get_metadata+0x116/0x180 [ 822.121499][T17054] ? kmsan_internal_check_memory+0xb1/0x520 [ 822.127401][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 822.133040][T17054] ? kmsan_check_memory+0xd/0x10 [ 822.137989][T17054] ? ____sys_recvmsg+0xa2d/0xd80 [ 822.142934][T17054] ? __msan_get_context_state+0x9/0x20 [ 822.148391][T17054] ? kfree+0x29/0x11b0 [ 822.152459][T17054] ? kmsan_get_metadata+0x116/0x180 [ 822.157661][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 822.163324][T17054] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 822.169408][T17054] ? _copy_from_user+0x1cd/0x2d0 [ 822.174344][T17054] ? kmsan_get_metadata+0x116/0x180 [ 822.179540][T17054] __msan_chain_origin+0x57/0xa0 [ 822.184479][T17054] do_recvmmsg+0x17ee/0x2300 [ 822.189086][T17054] ? kmsan_internal_set_origin+0x85/0xc0 [ 822.194718][T17054] ? __msan_poison_alloca+0xe9/0x110 [ 822.200005][T17054] ? __se_sys_recvmmsg+0xd3/0x410 [ 822.205052][T17054] __se_sys_recvmmsg+0x247/0x410 [ 822.209997][T17054] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 822.215816][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 822.220677][T17054] do_syscall_64+0x9f/0x140 [ 822.225185][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 822.231076][T17054] RIP: 0033:0x45e159 [ 822.234977][T17054] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 822.254583][T17054] RSP: 002b:00007f481eb2cc68 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 822.262976][T17054] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e159 [ 822.270923][T17054] RDX: 0000000004000246 RSI: 0000000020000880 RDI: 0000000000000004 [ 822.278887][T17054] RBP: 000000000119bfd0 R08: 0000000000000000 R09: 0000000000000000 [ 822.286839][T17054] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000119bf8c [ 822.294885][T17054] R13: 00000000016afb7f R14: 00007f481eb2d9c0 R15: 000000000119bf8c [ 822.302835][T17054] Uninit was stored to memory at: [ 822.307843][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 822.313549][T17054] __msan_chain_origin+0x57/0xa0 [ 822.318474][T17054] do_recvmmsg+0x17ee/0x2300 [ 822.323047][T17054] __se_sys_recvmmsg+0x247/0x410 [ 822.327973][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 822.334056][T17054] do_syscall_64+0x9f/0x140 [ 822.338539][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 822.344420][T17054] [ 822.346821][T17054] Uninit was stored to memory at: [ 822.351825][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 822.357777][T17054] __msan_chain_origin+0x57/0xa0 [ 822.362691][T17054] do_recvmmsg+0x17ee/0x2300 [ 822.367269][T17054] __se_sys_recvmmsg+0x247/0x410 [ 822.372181][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 822.377008][T17054] do_syscall_64+0x9f/0x140 [ 822.381497][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 822.387355][T17054] [ 822.389657][T17054] Uninit was stored to memory at: [ 822.394657][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 822.400349][T17054] __msan_chain_origin+0x57/0xa0 [ 822.405275][T17054] do_recvmmsg+0x17ee/0x2300 [ 822.409850][T17054] __se_sys_recvmmsg+0x247/0x410 [ 822.414776][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 822.419601][T17054] do_syscall_64+0x9f/0x140 [ 822.424080][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 822.429943][T17054] [ 822.432257][T17054] Uninit was stored to memory at: [ 822.437264][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 822.442969][T17054] __msan_chain_origin+0x57/0xa0 [ 822.447885][T17054] do_recvmmsg+0x17ee/0x2300 [ 822.452465][T17054] __se_sys_recvmmsg+0x247/0x410 [ 822.457376][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 822.462202][T17054] do_syscall_64+0x9f/0x140 [ 822.466694][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 822.472551][T17054] [ 822.474851][T17054] Uninit was stored to memory at: [ 822.479851][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 822.485543][T17054] __msan_chain_origin+0x57/0xa0 [ 822.490466][T17054] do_recvmmsg+0x17ee/0x2300 [ 822.495044][T17054] __se_sys_recvmmsg+0x247/0x410 [ 822.499971][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 822.504797][T17054] do_syscall_64+0x9f/0x140 [ 822.509275][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 822.515134][T17054] [ 822.517443][T17054] Uninit was stored to memory at: [ 822.522506][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 822.528206][T17054] __msan_chain_origin+0x57/0xa0 [ 822.533138][T17054] do_recvmmsg+0x17ee/0x2300 [ 822.537728][T17054] __se_sys_recvmmsg+0x247/0x410 [ 822.542643][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 822.547471][T17054] do_syscall_64+0x9f/0x140 [ 822.551962][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 822.557831][T17054] [ 822.560134][T17054] Uninit was stored to memory at: [ 822.565141][T17054] kmsan_internal_chain_origin+0xad/0x130 [ 822.570835][T17054] __msan_chain_origin+0x57/0xa0 [ 822.575764][T17054] do_recvmmsg+0x17ee/0x2300 [ 822.581993][T17054] __se_sys_recvmmsg+0x247/0x410 [ 822.586905][T17054] __x64_sys_recvmmsg+0x62/0x80 [ 822.591730][T17054] do_syscall_64+0x9f/0x140 [ 822.596220][T17054] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 822.602080][T17054] [ 822.604381][T17054] Local variable ----msg_sys@do_recvmmsg created at: [ 822.611041][T17054] do_recvmmsg+0xbc/0x2300 [ 822.615441][T17054] do_recvmmsg+0xbc/0x2300 [ 822.752375][ T8500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 822.762257][ T8500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 822.873860][T10813] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 822.883130][T10813] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 822.918189][T17148] device veth0_vlan entered promiscuous mode [ 823.344653][T11557] device hsr_slave_0 left promiscuous mode [ 823.377974][T11557] device hsr_slave_1 left promiscuous mode [ 823.389588][T11557] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 823.397663][T11557] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 823.422645][T11557] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 823.430302][T11557] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 823.464889][T11557] device veth5 left promiscuous mode [ 823.470587][T11557] bridge0: port 4(veth5) entered disabled state [ 823.481117][T11557] device veth3 left promiscuous mode [ 823.487285][T11557] bridge0: port 3(veth3) entered disabled state [ 823.499026][T11557] device bridge_slave_1 left promiscuous mode [ 823.506194][T11557] bridge0: port 2(bridge_slave_1) entered disabled state [ 823.515976][T11557] device bridge_slave_0 left promiscuous mode [ 823.523330][T11557] bridge0: port 1(bridge_slave_0) entered disabled state [ 823.538309][T11557] device veth1_macvtap left promiscuous mode [ 823.544506][T11557] device veth0_macvtap left promiscuous mode [ 823.550582][T11557] device veth1_vlan left promiscuous mode [ 823.558480][T11557] device veth0_vlan left promiscuous mode [ 825.352587][T11557] bond2 (unregistering): Released all slaves [ 825.369812][T11557] bond1 (unregistering): Released all slaves [ 825.499279][T11557] team0 (unregistering): Port device team_slave_1 removed [ 825.519788][T11557] team0 (unregistering): Port device team_slave_0 removed [ 825.536806][T11557] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 825.553754][T11557] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 825.630178][T11557] bond0 (unregistering): Released all slaves [ 825.698665][T17148] device veth1_vlan entered promiscuous mode [ 825.721587][ T438] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 825.729610][ T438] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 825.744362][ T8503] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 825.829616][ T8501] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 825.837846][ T8501] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 825.846512][ T8502] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 825.943317][ T8502] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 825.953521][ T8502] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 825.983204][T17148] device veth0_macvtap entered promiscuous mode [ 826.009049][T17148] device veth1_macvtap entered promiscuous mode [ 826.076548][T17148] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 826.087626][T17148] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 826.097723][T17148] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 826.108303][T17148] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 826.118344][T17148] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 826.129277][T17148] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 826.139336][T17148] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 826.150521][T17148] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 826.160615][T17148] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 826.171194][T17148] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 826.185294][T17148] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 826.193767][ T8503] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 826.203631][ T8503] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 826.213384][ T8503] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 826.223622][ T8503] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 826.254084][T17148] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 826.265137][T17148] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 826.275188][T17148] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 826.285921][T17148] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 826.296039][T17148] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 826.306650][T17148] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 826.316696][T17148] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 826.327301][T17148] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 826.337449][T17148] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 09:46:05 executing program 0: pipe(&(0x7f0000001240)={0xffffffffffffffff}) sendmsg$SMC_PNETID_FLUSH(r0, 0x0, 0x0) 09:46:05 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0xb000200}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:46:05 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x4d01000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:46:05 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x8100, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:46:05 executing program 5: r0 = socket(0x1d, 0x2, 0x7) bind$l2tp(r0, 0x0, 0x0) [ 826.348051][T17148] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 826.362262][T17148] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 826.370353][ T8503] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 826.380658][ T8503] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 827.388670][ T8302] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 827.396893][ T8302] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 827.408368][T17603] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 827.475150][ T8316] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 827.483156][ T8316] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 827.493727][ T8500] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 09:46:07 executing program 4: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fb0\x00', 0x0, 0x0) ioctl$FBIOPAN_DISPLAY(r0, 0x4606, &(0x7f0000000000)) 09:46:07 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x810e, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:46:07 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x536fdc258f000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:46:07 executing program 5: r0 = socket(0x2, 0x3, 0x2) sendmsg$nl_crypto(r0, &(0x7f00000006c0)={&(0x7f0000000600), 0xc, &(0x7f0000000680)={0x0}}, 0x1) 09:46:07 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0xd000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:46:07 executing program 0: r0 = socket(0x11, 0x3, 0x0) getsockopt$PNPIPE_IFINDEX(r0, 0x113, 0x2, 0x0, 0x0) 09:46:07 executing program 0: bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, &(0x7f0000000140), 0xfef9) 09:46:07 executing program 5: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000080)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0, r1, 0x4}}, 0x20) 09:46:07 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x7c15000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:46:07 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9b8e}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, 0xffffffffffffffff, 0x7, 0x0) r0 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000cf6fe4)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) ioctl$KDGKBENT(0xffffffffffffffff, 0x4b46, 0x0) socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) sched_getaffinity(0x0, 0x8, &(0x7f00000004c0)) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f00000000c0)={0x0, 0x0, @ioapic={0x0, 0x0, 0x0, 0x7fff, 0x0, [{0x0, 0x0, 0x0, [0x2]}, {}, {}, {0x0, 0x0, 0x2}, {}, {0x0, 0xed, 0x0, [], 0xfc}, {0x0, 0x6}, {}, {}, {}, {}, {0x0, 0x9}]}}) 09:46:07 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x820e, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:46:07 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0xe000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:46:08 executing program 0: r0 = gettid() r1 = creat(&(0x7f0000000280)='./file0\x00', 0xf1) prctl$PR_SET_PTRACER(0x59616d61, r0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) close(r1) ioctl$VIDIOC_LOG_STATUS(0xffffffffffffffff, 0x5646, 0x0) openat$khugepaged_scan(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/mm/transparent_hugepage/khugepaged/scan_sleep_millisecs\x00', 0x1, 0x0) syz_io_uring_complete(0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) execve(&(0x7f00000000c0)='./file0\x00', &(0x7f00000004c0)=[0x0], &(0x7f0000000180)=[&(0x7f0000000000)='F\x9eI\xa3', &(0x7f00000001c0)='/dev/dlm-monitor\x00', &(0x7f0000000700)='\x8c\xd1-\xf2\xebz\xe5\xfb\xe6\xcf\xd5\r\x8c\xa7\f&\x97\x13\x80\x1dmP\xf4\x94?|\xcc\x02}\n[\x9a\xc1\xd5\x9a\x9d\xf0\xf0\xfe\xfb\xc6tB\x8dA\xc4\xdf\x92\x1a\x87\x11M\xc5j\xa6\xbev\xd7\xbd\f%{\xd6\xd0\xf2U,\x17\xe4NI\xdeq\x10\xc4\x91\xc8~\x0e\x9b\x90vL\xa4\xee\xbbW\x9a\xb3I\x98\x8f\xa9kA\xba\xfcr\xc57\xa4D\x03r\x19\x82Z\xcd\x82rx\xa9\xdcUqO\xdfOgh\x98\xd3M\xb4\x17\x9e\x8d\x9c5\xb1VI\xe2\xb0\x16;\x9a\xba\xe1r\xe0>\f\xfa\xec%=\x06v\x83\xe1\xbb{\x05\x9c\x83o\x9b\xc9*\x81;@\xccC\xc0\xe1p\xdds\a\xee\xfel\xadv\x04MN\x19)\xfa\x8d\x9b9\n\x98Y\x14\xa0Tb\xa1\a)\xd1\x1e\x88\xaf\xe2t\x7f\x1cs.\x9e\xebb\xb44\xce(\x15\xcfU\xc45\xda\xacG\xa1\xa2{\xa5}b1Q\xdd\xca\x85\x01\x927qL\xb2\x98N\xa1\xac\x9f\x1f\x99\x03S_\xf6,\xe0\xf4\xa1hM', &(0x7f0000000240)=',\rH\xd1\xc1\x12tT\xa30)\x00', 0x0]) ptrace$setopts(0x4206, r0, 0x0, 0x0) 09:46:08 executing program 5: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_icmp_ICMP_FILTER(r0, 0x29, 0x1b, 0x0, 0x0) 09:46:08 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x9a02000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:46:08 executing program 4: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_icmp_ICMP_FILTER(r0, 0x29, 0x48, 0x0, 0x0) 09:46:08 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x830e, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:46:08 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0xf000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:46:09 executing program 5: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_icmp_ICMP_FILTER(r0, 0x1, 0x1a, &(0x7f0000000040), 0x4) 09:46:09 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0xfeffffff00000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:46:09 executing program 4: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000180)={0x3, 0x40, 0xfa00, {{0xa, 0xc00, 0x0, @empty}, {0xa, 0x0, 0x0, @dev}, r1}}, 0x48) 09:46:09 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x840e, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:46:09 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x10000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:46:09 executing program 5: r0 = socket$inet6(0x10, 0x3, 0x0) sendmsg(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000840)=[{&(0x7f0000000100)="5500000018007fd500fe01b2a4a280930a06000000a843089100fe80390006000b0011000f0000002d0000009b2c136ef75afb83de448daa72540d8102d2c55327c43ab82286ef1fdd20652383656d4d24", 0x51}, {&(0x7f0000000080)="02044911", 0x4}], 0x2}, 0x0) [ 830.168798][T17739] netlink: 'syz-executor.5': attribute type 6 has an invalid length. 09:46:11 executing program 0: syz_io_uring_setup(0x8f, &(0x7f0000000000)={0x0, 0x0, 0x4}, &(0x7f0000002000/0x3000)=nil, &(0x7f0000fee000/0x11000)=nil, &(0x7f0000000080), &(0x7f0000000140)) 09:46:11 executing program 4: socketpair(0x2b, 0x0, 0x0, &(0x7f0000000140)) 09:46:11 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0xffffff7f00000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:46:11 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x850e, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:46:11 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x11000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:46:11 executing program 5: openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000001600)='/dev/ocfs2_control\x00', 0x24040, 0x0) 09:46:12 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x860e, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:46:12 executing program 5: r0 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x17, &(0x7f0000000080), 0x4) 09:46:12 executing program 4: r0 = socket$kcm(0x29, 0x2, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x8914, &(0x7f0000000340)='wlan1\x00\x1b\x1a\xec\xd8n\xea\xc3\x87\xe2\xa3\x80\x8a\xb2\xd9\xa8L\x06\xb5\x12\x03F\xd9\x1f\xb9\xf2-\xda,C\xfdj\xe3\x8d\xe3\xd6\xe0|6l\xe9\xd9;\xea\x84\x13\xdf\xf7\xber\'\x8a\xd5W\xbb\xac%k\x9d\xeb\xba\xe6\xc4\xc4\xa9\xf5\xd5\xa1\xf5\\\x9b\xb2\a\xde\xbb\xc18\x84\xb5:f\xcb\xe8oOArYZ\xe1\xc9\x86\xfe') sendmsg(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000400)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c40, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$kcm(0x29, 0x2, 0x0) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000001440)={&(0x7f0000000240)=@pptp={0x18, 0x2, {0x0, @multicast1}}, 0x80, &(0x7f0000001400)=[{0x0}], 0x1}, 0x0) close(0xffffffffffffffff) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYRESOCT=r0], 0x1a) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x8914, &(0x7f0000000040)='wlan1\x00\x1b\x1a\xec\xb5\x12\x03F\xd9U\x1c\xc9%\x9b\xa0\xf5\xee\x16\x1f\xb9\xf2-\xda,C\xfdj\xe3\x8d\xe3\xd6\xe0|6L\xe9\xd9;\x13\xdf\xf7\xber\'\x8a\xd5\xd5\xe1\xf5\\\x9b\xb2\a\xde\xbb\xc18\x84\xb5\\f\xcb\xe8%OArYZ\xe1\xc9\x86\xfe\x88\x9d\xfa\xacJ\x1f\xebp\xf5\xfb\xaad\x1a\xa0\xb1\x9c\xac\xe8\xff^9P\xee\x8aG\xdd2') 09:46:12 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x12000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:46:12 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0xffffffff00000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:46:12 executing program 0: r0 = syz_open_dev$vbi(&(0x7f0000000180)='/dev/vbi#\x00', 0x3, 0x2) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, 0x0) 09:46:12 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x8847, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:46:12 executing program 5: r0 = syz_open_dev$vbi(&(0x7f0000000180)='/dev/vbi#\x00', 0x3, 0x2) write$P9_RXATTRWALK(r0, 0x0, 0x0) 09:46:13 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x1d000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:46:13 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={0xffffffffffffffff}, 0x13f}}, 0x20) write$RDMA_USER_CM_CMD_BIND(r0, &(0x7f00000000c0)={0x14, 0x88, 0xfa00, {r1, 0x30, 0x0, @ib={0x1b, 0x0, 0x0, {"16da24950aa49753e27dc0c5af0c5833"}}}}, 0x90) 09:46:13 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x2}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) [ 833.599432][T17780] device wlan1 entered promiscuous mode [ 833.689653][T17777] device wlan1 left promiscuous mode 09:46:13 executing program 5: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000080)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0, r1, 0x0, 0x2, 0x3f00}}, 0x20) 09:46:13 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0x8848, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:46:13 executing program 0: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0x4) 09:46:14 executing program 4: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_icmp_ICMP_FILTER(r0, 0x29, 0x3a, 0x0, 0x0) 09:46:14 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x1f000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:46:14 executing program 5: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$IP_VS_SO_SET_EDIT(r0, 0x0, 0x483, &(0x7f0000000080)={0x0, @multicast2, 0x0, 0x0, 'nq\x00'}, 0x2c) 09:46:14 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0xae01, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:46:14 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000180)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000140)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_LISTEN(r0, &(0x7f0000000280)={0x7, 0x8, 0xfa00, {r1}}, 0x10) [ 834.640519][T17823] IPVS: set_ctl: invalid protocol: 0 224.0.0.2:0 09:46:14 executing program 4: r0 = socket$inet6_dccp(0xa, 0x6, 0x0) setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, 0x0, 0x0) 09:46:14 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x20000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:46:14 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0xba00, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:46:14 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x3}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:46:14 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_icmp_ICMP_FILTER(r0, 0x1, 0x42, &(0x7f0000000040), 0x4) 09:46:14 executing program 5: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_icmp_ICMP_FILTER(r0, 0x1, 0xc, &(0x7f0000000040), 0x4) 09:46:14 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0xc000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:46:15 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fb0\x00', 0x0, 0x0) ioctl$FBIOBLANK(r0, 0x4611, 0x0) 09:46:15 executing program 4: r0 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_buf(r0, 0x84, 0x0, 0x0, 0x0) 09:46:15 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x3b9aca00}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:46:15 executing program 0: r0 = syz_open_dev$vbi(&(0x7f0000000140)='/dev/vbi#\x00', 0x2, 0x2) ioctl$VIDIOC_TRY_EXT_CTRLS(r0, 0xc0205649, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}) 09:46:15 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0xc001, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:46:15 executing program 4: socketpair(0x2a, 0x0, 0x0, &(0x7f0000001580)) 09:46:15 executing program 5: openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000001600)='/dev/ocfs2_control\x00', 0x0, 0x0) 09:46:15 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x3f000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:46:15 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x4}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 09:46:15 executing program 0: r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000300)=ANY=[@ANYBLOB="12010000b0d3a0408c0701101a7a100203010902240001000000000904000001f57b5b0009210000000122810009050c"], 0x0) syz_usb_control_io$cdc_ncm(r0, &(0x7f0000000140)={0x14, &(0x7f00000005c0)=ANY=[@ANYBLOB="00008100000081205cd44680001573baf2215d748473135ddce8b731e2321a3f0c58912ce15eeb65d394894c27875200ae414c1e5624f69148a143ac14e0792113b07d567c4f4f22315f599b69a360c65f939991e14d71ef01767be8776063146d378c81"], 0x0}, 0x0) 09:46:15 executing program 4: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_icmp_ICMP_FILTER(r0, 0x29, 0x39, 0x0, 0x0) 09:46:15 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0xc10e, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) 09:46:16 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$IPT_SO_GET_INFO(r0, 0x0, 0x40, &(0x7f00000000c0)={'filter\x00'}, &(0x7f0000000140)=0x54) 09:46:16 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x40000000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:46:16 executing program 4: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_icmp_ICMP_FILTER(r0, 0x1, 0x5, &(0x7f0000000040), 0x4) 09:46:16 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0xcc03, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) [ 836.842407][ T8500] usb 1-1: new high-speed USB device number 28 using dummy_hcd 09:46:16 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x11, 0x0, 0x49e) 09:46:16 executing program 1: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x401f0000}, 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 09:46:16 executing program 4: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_icmp_ICMP_FILTER(r0, 0x29, 0x18, 0x0, 0x0) [ 837.256476][ T8500] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xC has invalid wMaxPacketSize 0 09:46:16 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebfff40606c6000040041200", @ANYRES32=0x0, @ANYBLOB="000000000000000008000a000d000000250012000800010076657468"], 0x200}}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x800000000080002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x6815, 0xd003, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0) [ 837.435271][ T8500] usb 1-1: New USB device found, idVendor=078c, idProduct=1001, bcdDevice=7a.1a [ 837.444604][ T8500] usb 1-1: New USB device strings: Mfr=16, Product=2, SerialNumber=3 [ 837.452988][ T8500] usb 1-1: Product: syz [ 837.457263][ T8500] usb 1-1: Manufacturer: syz [ 837.462315][ T8500] usb 1-1: SerialNumber: syz [ 837.598262][ T8500] usb 1-1: config 0 descriptor?? 09:46:17 executing program 2: syz_open_dev$sg(&(0x7f0000000280)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) listen(r0, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r1) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x5}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) [ 837.862951][ T8500] ===================================================== [ 837.869938][ T8500] BUG: KMSAN: uninit-value in gtco_probe+0x1d62/0x3930 [ 837.876808][ T8500] CPU: 0 PID: 8500 Comm: kworker/0:3 Not tainted 5.10.0-rc4-syzkaller #0 [ 837.885221][ T8500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 837.895293][ T8500] Workqueue: usb_hub_wq hub_event [ 837.900320][ T8500] Call Trace: [ 837.903627][ T8500] dump_stack+0x21c/0x280 [ 837.907967][ T8500] kmsan_report+0xf7/0x1e0 [ 837.912394][ T8500] __msan_warning+0x5f/0xa0 [ 837.916905][ T8500] gtco_probe+0x1d62/0x3930 [ 837.921429][ T8500] ? kmsan_get_metadata+0x116/0x180 [ 837.926648][ T8500] ? kmsan_get_metadata+0x116/0x180 [ 837.931857][ T8500] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 837.937672][ T8500] ? store_tabletExecute+0x150/0x150 [ 837.942975][ T8500] usb_probe_interface+0xfcc/0x1520 [ 837.948193][ T8500] ? usb_register_driver+0x900/0x900 [ 837.953488][ T8500] really_probe+0xebd/0x2420 [ 837.958091][ T8500] driver_probe_device+0x293/0x390 [ 837.963216][ T8500] __device_attach_driver+0x63f/0x830 [ 837.968780][ T8500] bus_for_each_drv+0x2ca/0x3f0 [ 837.973641][ T8500] ? state_synced_show+0x130/0x130 [ 837.978763][ T8500] __device_attach+0x538/0x860 [ 837.983543][ T8500] device_initial_probe+0x4a/0x60 [ 837.988582][ T8500] bus_probe_device+0x177/0x3d0 [ 837.993449][ T8500] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 837.999267][ T8500] device_add+0x399e/0x3f20 [ 838.003790][ T8500] usb_set_configuration+0x39cf/0x4010 [ 838.009353][ T8500] ? usb_set_configuration+0xa61/0x4010 [ 838.014907][ T8500] ? kmsan_get_shadow_origin_ptr+0x50/0xb0 [ 838.021255][ T8500] usb_generic_driver_probe+0x138/0x300 [ 838.026814][ T8500] ? usb_choose_configuration+0xf00/0xf00 [ 838.032548][ T8500] usb_probe_device+0x317/0x570 [ 838.037417][ T8500] ? usb_register_device_driver+0x590/0x590 [ 838.043317][ T8500] really_probe+0xebd/0x2420 [ 838.047918][ T8500] driver_probe_device+0x293/0x390 [ 838.053038][ T8500] __device_attach_driver+0x63f/0x830 [ 838.058420][ T8500] bus_for_each_drv+0x2ca/0x3f0 [ 838.063291][ T8500] ? state_synced_show+0x130/0x130 [ 838.068392][ T8500] __device_attach+0x538/0x860 [ 838.073150][ T8500] device_initial_probe+0x4a/0x60 [ 838.078167][ T8500] bus_probe_device+0x177/0x3d0 [ 838.083013][ T8500] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 838.088810][ T8500] device_add+0x399e/0x3f20 [ 838.093308][ T8500] usb_new_device+0x1bd6/0x2a30 [ 838.098162][ T8500] hub_event+0x5bc9/0x8890 [ 838.102585][ T8500] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 838.108642][ T8500] ? kmsan_get_metadata+0x116/0x180 [ 838.113830][ T8500] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 838.119622][ T8500] ? led_work+0x780/0x780 [ 838.123943][ T8500] process_one_work+0x121c/0x1fc0 [ 838.128962][ T8500] worker_thread+0x10cc/0x2740 [ 838.133715][ T8500] ? kmsan_get_metadata+0x116/0x180 [ 838.138901][ T8500] kthread+0x51c/0x560 [ 838.142961][ T8500] ? process_one_work+0x1fc0/0x1fc0 [ 838.148147][ T8500] ? kthread_blkcg+0x110/0x110 [ 838.152903][ T8500] ret_from_fork+0x1f/0x30 [ 838.157301][ T8500] [ 838.159612][ T8500] Uninit was stored to memory at: [ 838.164637][ T8500] kmsan_internal_chain_origin+0xad/0x130 [ 838.170342][ T8500] __msan_chain_origin+0x57/0xa0 [ 838.175269][ T8500] gtco_probe+0x1f5d/0x3930 [ 838.179774][ T8500] usb_probe_interface+0xfcc/0x1520 [ 838.184958][ T8500] really_probe+0xebd/0x2420 [ 838.189538][ T8500] driver_probe_device+0x293/0x390 [ 838.194643][ T8500] __device_attach_driver+0x63f/0x830 [ 838.200020][ T8500] bus_for_each_drv+0x2ca/0x3f0 [ 838.204858][ T8500] __device_attach+0x538/0x860 [ 838.209608][ T8500] device_initial_probe+0x4a/0x60 [ 838.214799][ T8500] bus_probe_device+0x177/0x3d0 [ 838.219657][ T8500] device_add+0x399e/0x3f20 [ 838.224152][ T8500] usb_set_configuration+0x39cf/0x4010 [ 838.229598][ T8500] usb_generic_driver_probe+0x138/0x300 [ 838.235132][ T8500] usb_probe_device+0x317/0x570 [ 838.239970][ T8500] really_probe+0xebd/0x2420 [ 838.244550][ T8500] driver_probe_device+0x293/0x390 [ 838.249650][ T8500] __device_attach_driver+0x63f/0x830 [ 838.255119][ T8500] bus_for_each_drv+0x2ca/0x3f0 [ 838.259958][ T8500] __device_attach+0x538/0x860 [ 838.264712][ T8500] device_initial_probe+0x4a/0x60 [ 838.269726][ T8500] bus_probe_device+0x177/0x3d0 [ 838.274566][ T8500] device_add+0x399e/0x3f20 [ 838.279063][ T8500] usb_new_device+0x1bd6/0x2a30 [ 838.283900][ T8500] hub_event+0x5bc9/0x8890 [ 838.288306][ T8500] process_one_work+0x121c/0x1fc0 [ 838.293318][ T8500] worker_thread+0x10cc/0x2740 [ 838.298065][ T8500] kthread+0x51c/0x560 [ 838.302123][ T8500] ret_from_fork+0x1f/0x30 [ 838.306520][ T8500] [ 838.308831][ T8500] Local variable ----globalval.i@gtco_probe created at: [ 838.315753][ T8500] gtco_probe+0xee8/0x3930 [ 838.320158][ T8500] gtco_probe+0xee8/0x3930 [ 838.324554][ T8500] ===================================================== [ 838.331467][ T8500] Disabling lock debugging due to kernel taint [ 838.337603][ T8500] Kernel panic - not syncing: panic_on_warn set ... [ 838.344182][ T8500] CPU: 0 PID: 8500 Comm: kworker/0:3 Tainted: G B 5.10.0-rc4-syzkaller #0 [ 838.353964][ T8500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 838.364026][ T8500] Workqueue: usb_hub_wq hub_event [ 838.369041][ T8500] Call Trace: [ 838.372325][ T8500] dump_stack+0x21c/0x280 [ 838.376647][ T8500] panic+0x4c8/0xea7 [ 838.380539][ T8500] ? add_taint+0x17c/0x210 [ 838.384944][ T8500] kmsan_report+0x1da/0x1e0 [ 838.389436][ T8500] __msan_warning+0x5f/0xa0 [ 838.393933][ T8500] gtco_probe+0x1d62/0x3930 [ 838.398435][ T8500] ? kmsan_get_metadata+0x116/0x180 [ 838.403623][ T8500] ? kmsan_get_metadata+0x116/0x180 [ 838.408810][ T8500] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 838.414605][ T8500] ? store_tabletExecute+0x150/0x150 [ 838.419880][ T8500] usb_probe_interface+0xfcc/0x1520 [ 838.425073][ T8500] ? usb_register_driver+0x900/0x900 [ 838.430347][ T8500] really_probe+0xebd/0x2420 [ 838.434932][ T8500] driver_probe_device+0x293/0x390 [ 838.440055][ T8500] __device_attach_driver+0x63f/0x830 [ 838.445423][ T8500] bus_for_each_drv+0x2ca/0x3f0 [ 838.450263][ T8500] ? state_synced_show+0x130/0x130 [ 838.455364][ T8500] __device_attach+0x538/0x860 [ 838.460117][ T8500] device_initial_probe+0x4a/0x60 [ 838.465135][ T8500] bus_probe_device+0x177/0x3d0 [ 838.469979][ T8500] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 838.475776][ T8500] device_add+0x399e/0x3f20 [ 838.480292][ T8500] usb_set_configuration+0x39cf/0x4010 [ 838.485744][ T8500] ? usb_set_configuration+0xa61/0x4010 [ 838.491278][ T8500] ? kmsan_get_shadow_origin_ptr+0x50/0xb0 [ 838.497102][ T8500] usb_generic_driver_probe+0x138/0x300 [ 838.502642][ T8500] ? usb_choose_configuration+0xf00/0xf00 [ 838.508352][ T8500] usb_probe_device+0x317/0x570 [ 838.513224][ T8500] ? usb_register_device_driver+0x590/0x590 [ 838.519105][ T8500] really_probe+0xebd/0x2420 [ 838.523705][ T8500] driver_probe_device+0x293/0x390 [ 838.528817][ T8500] __device_attach_driver+0x63f/0x830 [ 838.534192][ T8500] bus_for_each_drv+0x2ca/0x3f0 [ 838.539046][ T8500] ? state_synced_show+0x130/0x130 [ 838.544151][ T8500] __device_attach+0x538/0x860 [ 838.548936][ T8500] device_initial_probe+0x4a/0x60 [ 838.553969][ T8500] bus_probe_device+0x177/0x3d0 [ 838.558817][ T8500] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 838.564615][ T8500] device_add+0x399e/0x3f20 [ 838.569114][ T8500] usb_new_device+0x1bd6/0x2a30 [ 838.573961][ T8500] hub_event+0x5bc9/0x8890 [ 838.578385][ T8500] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 838.584444][ T8500] ? kmsan_get_metadata+0x116/0x180 [ 838.589632][ T8500] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 838.595436][ T8500] ? led_work+0x780/0x780 [ 838.599771][ T8500] process_one_work+0x121c/0x1fc0 [ 838.604798][ T8500] worker_thread+0x10cc/0x2740 [ 838.609552][ T8500] ? kmsan_get_metadata+0x116/0x180 [ 838.614743][ T8500] kthread+0x51c/0x560 [ 838.618976][ T8500] ? process_one_work+0x1fc0/0x1fc0 [ 838.624164][ T8500] ? kthread_blkcg+0x110/0x110 [ 838.628917][ T8500] ret_from_fork+0x1f/0x30 [ 838.633826][ T8500] Kernel Offset: disabled [ 838.638140][ T8500] Rebooting in 86400 seconds..