92be284f3db3c1f5d119cac15af8902b082c2a58443b9fbd03838c870b2460ba2cec4fb76bc1419bc2eb440eb95d80c5bba18e1710d1359a1ec640d5ce5634b9bedd254f985542cd012af425785c9de4be36cbe", 0x86}], 0x4, &(0x7f0000000600)=[@timestamping={{0x10, 0x1, 0x25, 0x30000000}}, @txtime={{0x14, 0x1, 0x3d, 0x8000}}, @timestamping={{0x10, 0x1, 0x25, 0x4}}, @txtime={{0x14, 0x1, 0x3d, 0x7}}], 0x48}}, {{&(0x7f0000000680)=@alg={0x26, 'aead\x00', 0x0, 0x0, 'morus640-generic\x00'}, 0x80, &(0x7f00000009c0)=[{&(0x7f0000000700)="3316a07f449dc82c71494878e87045f1c5ac2c4dd0c850ae57bd43424179101817f3ece9c60ae4f6", 0x28}, {&(0x7f0000000740)="c9bab13e4260", 0x6}, {&(0x7f0000002380)="f968c89bb7f8dcc3f9bd51dea56811a54f40d3192ad4be7fa6a53423379c2104464e6c7d29e916ddb110c015f8eceb1886d4035b41aae09bf0f93710837216cbbedf1a7e8017f7740c521f55393b9822a1b9c29024ff4fc7215bde46030724cf2dd8f959519d923e543d2b563069a264ce1ebcf2b2d2d9e9873b82f6b198d28b058abc5453c3fc285207b2710b88a2c50f11d580daa02696cc3a60f00b34e40ebf5c11ccce03b9ee2d9f622f4b25e60218ab469f14b219cd83642d560c6135cafa002459803a0d427744c8d9936b042494b3177782e958d688eead0d09689c62e92fca292dded50b54512642dcf4dbe28b53dba0a1745eb8cdb1487180b045e2b5f62dd9d834867e99f16745182049fb957aad392eb43d181f6bd55ca09b7f17590a060d61e2975006ebe8c763da3166b7f366fa27a495f74e24c56110b10a2e33acedc0190d705c79a04f4c90eb0d9eec98c21fbe818c8c0a51e4fcac6ffc1ee893fc235aafa726936dbc8b3e52a266e7ba2b3d1eb954e134967cb2aaaf14c0480829682bbe8a7fb97101b50543f48314232de89510ff4b0304180268f569a2b49e89b2c10f3b9567e5d3abd50cde10f04350ec08ed61ca8bd9b512b94ed668c5be2f8959108252054bd4e09c1804048ef677e06d9af73cf6b8305eb1a0c7bf3c7525248adb8a443b964a937155038a353d29507e59aee8bb96a9ac0bbb3fbe4e4aecd1a60b9c6eaf38bd8875f86c1f7185bd1f513bff2b1f782f8027d76d79b050f71eb65a457f1fea940873411bc3b422377856a95b7fc04bddae739027022f07a2beb76be6d6715f3cdd55fc9bd03917a224d61fd72b0eb8e3b007dcdc0606b53379179a44854a5b2f8a65be144b5fbcac26f8182e4ecbc891f3286056e8b553375526349706f2f5ac759f95c79a954b636b120c597b79f08285281b0eb3622ea1adff8c850b9e2359513d00180a5b762faeb211d75cf0452bd6b3fadb0be8ea9ca18a9b2cb608b72fe57b5bb2a48682b0e15c33f9098d884186786ea3098e4a4acaa46ac24943a8293be65465d6d012f6ffc4b172577f9c8756c85663c2e7460af7533748dc871dc5f4d1f1bd586994e90083bfd91fd3dc8ec9eaaac3661f96de3d5a5f7d7770e852c3ec2bfb012dc7c779080e31cd6ecdf89d7010a404f37f4b65572cb5afd0e68dbaa24f72b3560ba743331624b488bad0bd8d9ade51c766f07a585d9e701d75fefcd150d87181b3ef622e55b364f01fb8d026e4d66e5666c90e098f68343ab48ff4cd5ac60edc1c4e5ff9bc2be62bb857bc26a9c4fb46830b7d788369d31cc83d137035bafb4b254e602f8c198f5d831f06c03a1f019e589a895d5a376acaadd16a285561c3c61428ba5bdf7c614c8569da948f1bfbadb0eadca0e7b2b27a8f3d47c96df2b82cbc33e0dba4b6c64e5baa913050f619745ac4b80f0046d93d52475c63a6665406373313e5b501d3b53d2f7e42a85a8216991e43110511df6ba7bd2be2eeaf515c97774cd7519b732fa0460364b3ea387752ec525593526c64b9606af2749ad9421ccfc9be0614704579929975e20dc0fd42dc4e4fd085d3ec454346b6faba50d6848642b55888bee94cf625d33eca88c278d2a5bc73d5d24f84282c1241a78a908edf20b8640e298017630385f55df6157edb06cae0939d456795acb8c27afd12e8a7e29d50ae778bff7944ef4c3bc0b07f9e65fb741163eb8d0d85c4d5857fbd4b7e92a28ba803335ba0f9ca7f3e1716fe694eeef2e56f56f9fa096f5c29b146111bfde9f9622ba2fd146663d72055e7ce6a336c60af54e9a8ade892495a5290a30977c9e65d371e6829fa563eb24e3fa3d9bdae116b0a8be522aadaf54de104c77b7b760a0e9f67ac2d359a85f83d9ca7621cb69a9bdf1c59db2d58ca89bb4a6e52b003c7ebd108eb1028c0563781204d14230107e29c8e0b6e648b323b7755e7435f0d29ef58b07b0f2df07960d9e6b5c1e0a133cff8a63b10e250ce3ff75089f2dab3ed41439f4721993cb6469a0adcf3364c6e14df0f0dd20652f7a8b301bdc20e1cee941b5716252347971441640363003f3bc0cced89fb4a95c7bebd749fe1cdbbaed80282a35d33699a43dce6875987220bc0e2b7c2506e54918d1b33655d630a1ad81027adb521b234577034528e948052cd7ef4e010859b1ed26c7a352e99bf86f00dd708ae6d22b24af8aa2a2d66d1015127e4f0d35150b7027863675e349c2b72b88ff5bfb739f6f0fa91eea31b6229bc892ea5f4f7a38c3e24f9cf873dc06c60ea3bc7eb0c7d4ee3fe160f2662b04aa128234f4773ce26aa3eb85360f9d903db98d9bd89b10ce5b55111742a54651f085a006da7f11c9fcbbd715e0198323da6ff98ed3f75953b07b64a3ddc486e0559a5fc00b1140dd68f89b7daa6b23c61df5a59a2a747e960b8a6f5de0b12dea2c280619a5cdb1d01e8ebc6ea451959c8f9a919e3afce886050803547449e4091812786aacf6f751125d46bc5a811ec303441fa1ac6d563b187a3990f6b28439eb71d78bc596ee32d316a58dc342be42fc9597d6d2500d1d7de83eb199b2a0ed0e9db9ae58e7343a832084328bdd0f27904858285ea9dd18ece1876ccb54d26829ac8b189fe2f1363a7370badeb8d15c5555f86430b58cfc4e125f36303f49e70c14992e8af7d55d8a174a21f86f0490d81bf914c4a9eb28075eae191110e0a440d667dfb6864a759c7b9188cf0a15e74bf70072ea3417714dd6765d37ab832ce1cc358741b973f1ff651259deedf1059d762900c28726a4558b0d6cbfea7b91ffd6d65c707327924d70e8e393e193bcefb72fc71c84d557edacfa087cbe74c29c0a0e429c5009dc858a10a2821f78b81d4206fa8430c26bbac30b05efbf57f0010444fcc2018cc0c6489615c1e8816d7b90f349ee0a005f86f956dbcdd7466a5fbb6e379b7bac78f945322cde657d8e6d26c7ff818f80d878518909db0dfdbb35bbb48d2f33e2f5fa9027dd42fc068fe93c27666aab1636bd3db8a99426cdfe243494097c8a776a2305c5b22fdc27a8f7d98524056d2309fd14b9fd08558f19b3566b0649e9b56b4f8d85140c6ae397cfd9c5b3db2a15a975459a8bca752ca1bfdee15fc2546ceb639d737ec113a2592b8588a438099e5231d0c614bff9e2ab182fbb2d880f6981583110336c4d7ab94b7d62aef7913182f75e883b98da3394329fbdfa363e4ed203b4c2da220fd24f328598d239e5a3ba57fa2dee67090fde527d12021bd51e3b544640a571038565e5b69e7f613097885b35a676c6efd2bd9581ba99079fda1eee33580b3d5363c604e149a9248401b180fc99a676b27e8590e59174f688e0a335bf0dd38af9d1010f455d60ea757f0b6034312e9fc735e1f1c0b7fcfd58ede95d52cb8bfc4279ca93cc1b76597997e55251b75f64c0b93646b177de0b3997b62a715745da078d1f520b8eb9a02702925cc6fa5068dec30d445ae265a6dc60501cf5f079449bd171f7b84312154f50bafdc2d3b3ae0afaae6db4a403ac1d5718697bf2be83b49acab711347fd7732770eff65a31545ce1cb8fa35d19253206de0e88e75735aec17f8b3312983e4dbf9cb87a01fa75a53cc41b680cda8bbde7932f7a43fccc580ead448b8de499328973b661b2f08feca5753ccc031ee298d2e50934194a586aacc264b548c72dece7b7cbd83bc4b9a225ffd01333e5f93e60873ba1af2bc5ff7a9bd7a7d025b5c8e49b6640c4ed82d2f9e20544321f7267463554064a03071134a182f50a95f70db874d2b43e895332bcc98601f3a6f205e2912a848e95b4d25f266d0ea0f96d8c120007b37b2253d7b2b2db1688aded931cfd3284a43d5c7f5ebc396bc15d10bd132d9dd59f9490129a05b69bb1bfac8cb973b0b374f38fc5b3f287f2d8b960cf17442d2378fb1402de4e2112177e698cde670e751a569c37f4b195556728434adb8c139914b1cc5250715e6c92e4fc9b39132a2be8d30e280e5849940c34d41a001973f58ef3f6bef326cd0fa905e402c3e1b4d6a52f3e0aa5e0e2af6b0aa0242bca43916fb2148bfedf5212bf8f056cceeb6c8ea26dd49be1587568e57ddbacf8b87159800624c5dddd08e9b9ebfad3f448e1b6e635f11848ef98a3b3935019ff917afa7d10e2e9ceca333d9e1235c12c96a82abf6bdcb708c1bacfab282af3b7739dc43b05482357e00bfe73a7824e2f57cf0587061c24e8c208287763235c9e8d3173a344049251507cf158bea5fe96708059519bd709dd2dc1c2120b2944620bd57812d9c4490bfaa3ffd0e3e3088541c57469430291222049afdbb7957c2f2b3df8d573355f35391c87bb0e04b3aaf8721402695dadd45829918eb8245d4626d5fddf96ee08c67c1ced97a8423b22799576b412b88189ba37f18f70791b73a3e80f07f97c2fc625943fb8903cb6f22a533ae89560d60b8a1274baeddcb50977657e891813015ffcb07243612bb3401822b5565c6e3363125886de432e7447baaa94a77622968d75ababb2a63c22fef8d59444c57b8fac338f8c04bc0f2d78e86ee3ff790e02b6d8d4eeb594569b8ae3153ceff0f4b2cf2f97ec24396066e9959893f319e90616fe063a47f9da7991e2837b76ba653943d44587974fcc5e637924bed2a4ce93d3532fb57904010bd59c90540dc7ac136f68f944f94e7005088d0540a6bd2ac553fd36d25db95aa27961bfe23621e2840b7ea4ddd4cbcb17d138ce11a8a27be7a38ae3eb412b34edc106ea4af16f6c91fb5e6ef5970877697f5fad0e71d81586dfaadc4f6fe8fd57728228f265942170e15b8b0b680beb183315c377ecb4f7b15759f6a559b78905d823935e41874011699980ccb7178b3bccb41db1b95d1b515a2021f19cc255e265fc814fb3e580d887701516a662ca57fd328a454659417a6efe463f0b1a28ce18e5770141c404ef5b2c41ba6c81314f43fc4c954314c6c28fc81941d81f0d54afcb4c7ec9f42221e5af91c9dda803ca1b0cecf09c699433f37711e3a9cd10e8e51ba3e41abf6bd7658e22caeda407b88f7350cb5955fb03f37b577cfc7b9caf5cd7828c46c2e203875c25be358115e93faad553263ab443e4886ffd9c8aca618851821fad8fbc4915655cf5e66a7fa6e9968efd24b5a8688c9f4e4fe98a10fcbb44d40651747937b7195aa80705651c82a08afe759af366ba0de336096ccf8600b529c5d14a52dc0980eb756d8e04df3cae2172e53f90168d76872874f942bdb5522ad1c471eea51b9221a17215ddc9964e0b9939301546fe1bafdda6d319bc72506d72daa73f5cf47173012ce7cf22357e63f02954d564ec1bae852b8834716776b192f1a14839e4e85ef794f693451f4a5ff3f4fc8abf97914b547009db02c2e09121b607f930677303269fa8fa89d153ffa35d18b212a03a7cd85f343f82ab94b030cc5e08ba338b578ba65cd27634e56b85a62fc8f8f19d967da80ffab7dbb3265c0d8b63f8282a00074d58d93ddabd1064c47c238fac352ac609f776454379fa8cc4d0c907c185e4478e598f1989b0857ac37c39cd34edeba86161b7de8e3282b110582f0ed55eebb801d484a0cedec6d2784d31f666fd6c3ca0a26bd5e626f922d241c19b64fc7c2e30fc62c20d5260aca9ea08be5ff7d1819a6f6d505bbf30612d6aa0f6a2791717e991fb5cd245c85a27d26896a6fb26ccc8a5ed9755d8dcb58769763f0e7cd855acb6c4013575386af01d02a26a06d9ebb9eae8f931909a03d975c5122fbca7f1b73a61c8455d35e78", 0x1000}, {&(0x7f0000000780)="83eadb21e30c867037f5865416762081d4ee1f4d9699083738ee839f345831098824cdd3f9", 0x25}, {&(0x7f00000007c0)="23181643579d841be9883676415bbda15b4b8b3b2c5a1bf6", 0x18}, {&(0x7f0000000800)="da9c45e41ce498e912b243043891dcef0086a11aff5c8944553d2cfd4cc7328f2d0b32af8ebf11c4cdc3da57fb1295a9c2129774ae7795385b8fbd4ac0387455c7832dc361cf240fe64523496476bb3f352a71049557c65241dd88aba4e3aa34c55b841e91e16e158b2111311bfd7aa9fe896ff8beff0d6ada60c20c16b0485bf2074a917fc020c0ba9a48aae72279260844acd852a45874bc1e5278003b585a55", 0xa1}, {&(0x7f00000008c0)="479636056fcdcdeb21e448ba84bf197b48f474d29d333eeccc32ddf9a4ed4d0f6e428b2c0008eca6486d9a1bedef60feaac81e3488ea63cc6e428fd772061ae01eafa308b2b949dcd0570d14462263df8c0dc918569320487e94fe3e7d77de0be9d0655ea79cabed216ea7270ad52cee813224921fe43d642f3b38aa75f4c99a45b9a78c501b1eb8a0857daa4a93d95913dc15c91f2fc069e714ebfd83431242f16aaafbf93346fdcd43d974c99d11c0a10ca12b5b2d075c4427c968a0d4a2d659cdf76e1e8eea1827bd41efadaaf476b62de9c6c1c3e4ae0569dc343014a4ece0a228387ce0e2b2fa6c9e04dc1050949e6cac8de83e", 0xf6}], 0x7}}, {{&(0x7f0000000a00)=@isdn={0x22, 0x0, 0x0, 0x0, 0x2}, 0x80, &(0x7f0000001000)=[{&(0x7f0000003380)="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", 0x1000}, {&(0x7f0000000a80)="7acb480a5863c082ea4ea1892bc4d7b18b923b837e2915fad1377957ff03a96fd35b278cd08bb84b58a4a6fa9f8d", 0x2e}, {&(0x7f0000000ac0)="f307b1f601e95c0266577575ace8cc894ee6924ee9ac59eb1395b9c3900b72b9fafe5cbd5641d8d2e0f6d956e356f65d827bb784124f7f2f1ac1642df0f03720f5783cab93f649982412e29d2c5b9fb606fa0796622feb7b83e20b6e0cabd7b74dc747caf37f33932ee92dfebf7ad9a3a6e102786d911ef974235a9c984ca1dd7b4131e44385e5fdc147227fffd09178cb1bbad0b23c9f2778fa2c4c693951", 0x9f}, {&(0x7f0000000b80)="346ea99b7c350b110f6652b4430fcc77de155a2763c247c2706cf96451023371f51e5af91cad1ada9445928e5fc25121569a6a384106ac73b2a25ad32f2d3767ca16caaa4acabc55e99fa0e12a010e6c16adab00a273bf5a525966f575f0843b1777fe2bdab71d2d3542ee42b7250bdeaa436734e28d71ba795dd7b4ff72fc24adb61327028fa6a72d37f904638b5b30ccaf19da5f2adb24a0a10d0e90", 0x9d}, {&(0x7f0000000c40)="793624ca19944ff98231d46718d404c0f8ab11d2764615e8c7bf10339fa26ffb7df3a68e75e826212e33ba242dc9d5917b573219c5a9e88df6c6021a022a2599397889838ed28fbe1d587813e17087e0240bb813bb3741d437897309d02933fa35e4240774ac6464302bad1d62bc8397e38862266804e6e0f086e6efb5d5f2db6bfe563b9623d90ef528b65699e2fcae441a212855f96a6ab1918bb00f014b9677f14f99025db953e40ce19c5c3f097401e8fb1ea55a9d0621d98ecd66023383ed16584591b2cdd19afd7e27ea6012ebffec05728159ba834fa6ffdf6b84df871e0a66fdf0cd1768ab8023062fcbbb077c10", 0xf2}, {&(0x7f0000000d40)="51312fd2f10eaa90f5c6dfaff6c413ac97", 0x11}, {&(0x7f0000000d80)="a34b7ce1ec4c55c305ee7022bd3b4998103c08060bdbb6b7fa956ed5dd9e8b5d74a7dc", 0x23}, {&(0x7f0000000dc0)="0149679fff7a897ddfe5be3e2cdd27c7314fd1990aeca59fc2e3da1cf97784a6dc1e4bc808b2a994f4eb0d49af33d7e8c38bb70101acdf4a247264e513bfd7233b9098130f83f88f6fd23cd685d4af83cb61d60896ba96ed13dfb001c0935cb7f554d88f75350b4633aa8e74583315232d92879f062516408ce9b1611c29da1d0667292defc07a57e6", 0x89}, {&(0x7f0000000e80)="33f317dd3ee3aa837753b16cac6d738ed1dc32791198483ebc07d8753e3e9461d0291dd2080a5ae5211f9b344ec9e2345fa2bda536218943a8049c41ca0b055452336632851d", 0x46}, {&(0x7f0000000f00)="60cda61ace72d339ab9e61dd8d5bf667866bf1f68c8999c16d662764cdc130c92740eb718c8752f32e12ea86fa1e2e77fb469717e93429a74fba1137b85d8ea28f2030ab17dfc3a2b7395894e068acf935c7ca3f64f0e8ad1e40771f124316e19d01a21725c07562833897e16f9d8a7847c1c712e3829884b62fd3a02f362788f8aa1abda28c60044ea941ff2394f0ce3fa223e4dae1ca03eab8f6f16edd5b1e47c4c9648c23a155c8bbf548384a9b5a3e67eb78165dba32455cd553ea8c31a29b25", 0xc2}], 0xa, &(0x7f0000001080)=[@mark={{0x10, 0x1, 0x24, 0xfe0}}, @timestamping={{0x10, 0x1, 0x25, 0xf5d7}}, @mark={{0x10, 0x1, 0x24, 0x2}}], 0x30}}, {{&(0x7f00000010c0)=@l2tp={0x2, 0x0, @multicast2, 0x3}, 0x80, &(0x7f0000004640)=[{&(0x7f0000001140)="2b823b1b8a05e6e054924360ed531c2771224505bdf025d6eca2b0923dda336d1865", 0x22}, {&(0x7f0000001180)="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", 0xfe}, {&(0x7f0000001280)="90731c2095c76f7bbedef190b91189ab423b812e1d6bb6f0bb9732a2a7608e927b2155dbdaa1f3885c8136f4544d56308d1e4beb087b1d44ba92d40820bb86ddba48ec5f6ebea590ded502f2546d9ada1d76706035f2f95ca762800c03c481d186767c71db31c1ce63fd54cada798b4ad7c27a54f78d58e6e96d0a7c07a6edfd3659b033ae0f8476ea7a9671c5c14221a1df4083717884aabcf97db6d4a43e1ec8f7a7a4", 0xa4}, {&(0x7f0000004380)}, {&(0x7f00000043c0)="5318841069f3dd75e637560dc592ee1e8ab39309019a6fe0747f26aadd09c79c1287945fb4e8373e25ec20e9987265a4879e1b2ea64e2852d838feae9650324019beac7da98aa1b59a3016d9051f8da8391c70103dd42d", 0x57}, {&(0x7f0000004440)="b518f3d1de4778f7fc099fe5b5dddec50f0c76304303b0dd0cf3a3e6de959ec5d5ec7a9b01ab1b07828947f9f8700b508e016d0aaa8703710fdf533d11e1b18f4cf6cf3a6c2cb51a0edeabacb4a7ea9df2ab99d9fdf73a6310534262ce7ab7a99c1415484f8d02082657010ec5912700925b83e8", 0x74}, {&(0x7f00000044c0)="06edbc3dc662632839cc05276177498a29c11a563095439408a6b9d012be1a6e3565851046bec869941bf0928c346176d6", 0x31}, {&(0x7f0000004500)="2c017865723e64193bd5a90b8cb75e5ba51a3f3e62a5b5fb146ef32aeb0979562621fa40caf166dbfa1196d3b4990ae9b46519f8641836c4294322436413fa93ad0d1f2e1bc08f43ab8d6927278588365efc76876f5dc7588620c8f38156f89c9bb128bdcd7e1eb159bcdde42e92279e50aa9db01e1c834e87c713df3c60764113f413a9956535b1dd58a10fd4e7a99ed9f2d3bd2a616555cba86cb9acc2", 0x9e}, {&(0x7f00000045c0)="d453516dadcaea8b81c18c99da6b823b20d0c78064612757b7ef87f47599fe849d50a8d4155205d0e0822faa69b4ea7d2f1a6d02a186e4df69542a865444edcae4ae", 0x42}], 0x9}}, {{0x0, 0x0, &(0x7f0000004900)=[{&(0x7f00000046c0)="4c51aae448f8107882a302c74c49afe8c10dc3a2ff602dbd2e289f87154c39efb56d799bc88025a37ee940a3ff327d382973e50542a83267959335f0fe9be481796f3291f6768d7fd22eeed975ddc675a7089975db2b8b93a59c69dd9de08023c1d8180852185ba5b5c3279fc03feb02e181ab37ef7b14d4e2adde7c225a46a5ab7b878b58930b7b26a8e4775c2779f6cf64788d4610d58fd089d108b5f5b32b4fb2fb6a06c56966cd4ba844fc85e41d715fbc5291333f8f8c03d4046685e273e28929bc0040248e26c70785a19bc8d3f9b989a279513719ff96d78cdb926a5b68cc94e7187fdd1a3c157ec08fed077bfb89b234", 0xf4}, {&(0x7f00000047c0)="ed3b6bfb030e918e666cc63a65a781feac953d9b278424b60daa66608990f4acb7631f95ad612546a623251d16e5622ea874d7c4b39c5e9bc6f1be93d19cd645b7cb7e7c9c26e751b36a3061a243090b9690ce603b175f132e0ca2314ce8260cd114dad4a7aa889ce0e4dd6e1e8522e953fc39b859702915e299971fc7a77e1ad40b27018cb8fb14940e6d390992959653124453937836c839cf968500e17eb506bcf09a4a53563810c983fd8277fa75ef8735a207cddf39d66fb3c6f5feb4d38994e90b3888a7134d4599e54488f030b517fb619b5ceca5aa6764df22589bf24c4c", 0xe2}, {&(0x7f00000048c0)="37fa58a6b7274cb040cafbd5ca1db25ada625a7e3ba42d0b282c74f0c3d27bb3726c46a88b", 0x25}], 0x3, &(0x7f0000004940)=[@txtime={{0x14, 0x1, 0x3d, 0x4}}, @txtime={{0x14, 0x1, 0x3d, 0x62ff}}, @mark={{0x10, 0x1, 0x24, 0x6}}, @timestamping={{0x10, 0x1, 0x25, 0x1996}}, @txtime={{0x14, 0x1, 0x3d, 0xfffffffffffffffb}}], 0x5c}}, {{0x0, 0x0, &(0x7f0000004a00)=[{&(0x7f00000049c0)}], 0x1, &(0x7f0000004a40)=[@timestamping={{0x10, 0x1, 0x25, 0x1}}, @timestamping={{0x10, 0x1, 0x25, 0x9}}], 0x20}}], 0x7, 0x20004040) bind$inet(r1, &(0x7f0000000440)={0x2, 0x4e23, @broadcast}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0) mmap(&(0x7f0000002000/0xa000)=nil, 0xa000, 0x0, 0x40000000011, r2, 0x0) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r2, 0x4040534e, &(0x7f0000000040)={0x40, @time={0x8001, 0x3058}, 0xf8, {0xf4, 0xff}, 0x4, 0x0, 0x2}) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0) mmap(&(0x7f0000002000/0xa000)=nil, 0xa000, 0x0, 0x40000000011, r3, 0x0) pidfd_send_signal(r3, 0x2c, &(0x7f0000004b80)={0xa, 0x6, 0x338de15f}, 0x0) setsockopt$inet_icmp_ICMP_FILTER(r1, 0x1, 0x1, &(0x7f0000000000)={0x2}, 0x4) sendto$phonet(r1, &(0x7f0000001340)='\t', 0x1, 0x0, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000640)=ANY=[], 0xac}}, 0x0) 10:49:56 executing program 0: r0 = openat$vcsa(0xffffff9c, &(0x7f0000000080)='/dev/vcsa\x00', 0x0, 0x0) ioctl$sock_bt_cmtp_CMTPGETCONNINFO(r0, 0x800443d3, &(0x7f0000000140)={@fixed={[], 0x10}, 0xbbf}) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x1, &(0x7f00000000c0)=0x83, 0x4) bind$inet(r1, &(0x7f0000000440)={0x2, 0x4e23, @broadcast}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) r2 = socket(0xa, 0x1, 0x0) setsockopt$ARPT_SO_SET_REPLACE(r2, 0x0, 0x60, &(0x7f0000000440)={'filter\x00', 0x7, 0x4, 0x3d0, 0x1f8, 0x1f8, 0x1f8, 0x2e8, 0x2e8, 0x2e8, 0x4, 0x0, {[{{@arp={@rand_addr, @dev, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@random="8b26c40b04c8"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'netpci0\x00', 'vlan0\x00'}, 0xffffffffffffff11, 0xe8}, @unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00'}}, {{@arp={@broadcast, @remote, 0x0, 0x0, 0x0, 0x0, {@mac=@local}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'syzkaller0\x00', 'geneve1\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @dev, @local}}}, {{@arp={@local, @remote, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@remote}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'macvlan0\x00', 'veth0_virt_wifi\x00'}, 0xc0, 0xf0}, @unspec=@CONNMARK={0x30, 'CONNMARK\x00'}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x468) setsockopt$PNPIPE_HANDLE(r2, 0x113, 0x3, &(0x7f0000003840)=0x100, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4) sendto$phonet(r1, &(0x7f0000001340)='\t', 0x1, 0x0, 0x0, 0x0) r3 = accept4$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @mcast2}, &(0x7f00000001c0)=0x1c, 0x80800) recvmmsg(r3, &(0x7f0000003580)=[{{&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast}, 0x80, &(0x7f0000000840)=[{&(0x7f0000000280)=""/16, 0x10}, {&(0x7f00000002c0)=""/220, 0xdc}, {&(0x7f00000003c0)=""/66, 0x42}, {&(0x7f0000000480)=""/137, 0x89}, {&(0x7f0000000540)=""/237, 0xed}, {&(0x7f0000000640)=""/17, 0x11}, {&(0x7f0000000680)=""/66, 0x42}, {&(0x7f0000000700)=""/69, 0x45}, {&(0x7f0000000780)=""/187, 0xbb}], 0x9}, 0x1}, {{&(0x7f00000008c0)=@l2tp6={0xa, 0x0, 0x0, @empty}, 0x80, &(0x7f0000000980)=[{&(0x7f0000000940)=""/59, 0x3b}], 0x1, &(0x7f00000009c0)=""/71, 0x47}, 0x10001}, {{&(0x7f0000000a40)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x80, &(0x7f0000000d00)=[{&(0x7f0000000ac0)=""/105, 0x69}, {&(0x7f0000000b40)=""/179, 0xb3}, {&(0x7f0000000c00)=""/197, 0xc5}], 0x3, &(0x7f0000000d40)=""/118, 0x76}, 0x7}, {{0x0, 0x0, &(0x7f0000000e00)=[{&(0x7f0000000dc0)=""/46, 0x2e}, {&(0x7f0000001380)=""/4096, 0x1000}], 0x2, &(0x7f0000000e40)=""/199, 0xc7}, 0x1f}, {{&(0x7f0000000f40)=@l2tp={0x2, 0x0, @loopback}, 0x80, &(0x7f0000001240)=[{&(0x7f0000000fc0)=""/240, 0xf0}, {&(0x7f00000010c0)=""/229, 0xe5}, {&(0x7f00000011c0)=""/7, 0x7}, {&(0x7f0000002380)=""/4096, 0x1000}, {&(0x7f0000001200)=""/36, 0x24}], 0x5, &(0x7f0000001280)=""/41, 0x29}}, {{&(0x7f00000012c0)=@nl=@unspec, 0x80, &(0x7f0000003500), 0x0, &(0x7f0000003540)=""/44, 0x2c}, 0x4}], 0x6, 0x40000021, &(0x7f0000003640)) sendmsg$netlink(0xffffffffffffffff, &(0x7f0000004800)={0x0, 0x0, &(0x7f0000003800)=[{&(0x7f0000000000)=ANY=[@ANYRESHEX=r1, @ANYRES32=0x0, @ANYBLOB="040004117d4240c9b9033f5e8b016901a2bdcd3d2ffdb8a65a5eb18ddbfaa401ca53ebb27b8d19588377ea7cb5c2c7"], 0x1c}, {&(0x7f0000003680)={0x168, 0x2e, 0x8, 0x70bd25, 0x25dfdbfd, "", [@generic="1b0c9564f9f935f140fd48df97e01bfc6071bc16757ed6b629a2854f632d8b3faa2d0abd52fd3db06468d4bc5cc1432d01df33cd8abac22285e09fbfcfd77ca58911c716072b3abb4481ae4d7cb5aa38548f48b6562803faca6bad24e63b6d409c6e4a", @generic="24248d9783d66d699e7a407b68931244022b6fc5d383574d67c74a57658da5903b1a101a186534562773050e58000f48655ff9ef2109fa5b63ede989ee9441de09a56eb7e003616e87a18ece73a4c8aa2d1145a3bcf2712d2f30ed4d6477b760202de3180a9461567e5cd9f7cf16177059286e848948ff131fdd7001f81c00a46c0ed9ddc7c893e9249bc6619c716501e339c541288e08acbc439418e9e6617bd1ac806c0e778ce16d7ce79591f6d0960cf1555d02ca515da5f4fbfcdd4a30ce014ea1a558471674155319da129f1c7729b7d7340a90ace362322ecf7f51213357603992f3a2fb3c1f75d8ed002af3f71fe80c57"]}, 0x168}], 0x2}, 0x0) 10:49:56 executing program 2: r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0) set_mempolicy(0x3, &(0x7f0000000080)=0x80000001, 0x5) setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000440)={'filter\x00', 0x7, 0x4, 0x3d0, 0x1f8, 0x1f8, 0x1f8, 0x2e8, 0x2e8, 0x2e8, 0x4, 0x0, {[{{@arp={@rand_addr, @dev, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@random="8b26c40b04c8"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'netpci0\x00', 'vlan0\x00'}, 0xffffffffffffff11, 0xe8}, @unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00'}}, {{@arp={@broadcast, @remote, 0x0, 0x0, 0x0, 0x0, {@mac=@local}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'syzkaller0\x00', 'geneve1\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @dev, @local}}}, {{@arp={@local, @remote, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@remote}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'macvlan0\x00', 'veth0_virt_wifi\x00'}, 0xc0, 0xf0}, @unspec=@CONNMARK={0x30, 'CONNMARK\x00'}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x468) accept4$nfc_llcp(0xffffffffffffffff, &(0x7f00000000c0), 0x0, 0x800) ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000000)={0x20a927, 0x2d}) mmap(&(0x7f0000094000/0x3000)=nil, 0x3000, 0x1000005, 0x810, 0xffffffffffffffff, 0xfc000) 10:49:57 executing program 4: r0 = socket(0xa, 0x1, 0x0) setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000440)={'filter\x00', 0x7, 0x4, 0x3d0, 0x1f8, 0x1f8, 0x1f8, 0x2e8, 0x2e8, 0x2e8, 0x4, 0x0, {[{{@arp={@rand_addr, @dev, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@random="8b26c40b04c8"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'netpci0\x00', 'vlan0\x00'}, 0xffffffffffffff11, 0xe8}, @unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00'}}, {{@arp={@broadcast, @remote, 0x0, 0x0, 0x0, 0x0, {@mac=@local}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'syzkaller0\x00', 'geneve1\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @dev, @local}}}, {{@arp={@local, @remote, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@remote}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'macvlan0\x00', 'veth0_virt_wifi\x00'}, 0xc0, 0xf0}, @unspec=@CONNMARK={0x30, 'CONNMARK\x00'}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x468) ioctl$SIOCX25SCUDMATCHLEN(r0, 0x89e7, &(0x7f0000000000)={0x7f}) syz_mount_image$reiserfs(&(0x7f00000001c0)='reiserfs\x00', &(0x7f0000000200)='./bus\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="636f6d6d00003d518fdd19216bde9785491b80282af7aee26245c2f1f76ae15ecdd1d58af5bb704841214cfdcca90ca1f6ca1eb0c096329931c4b98bb89c5a0023a5256380738a5258f8ed91076932563fe8b53f0f96fbbb82849169a438e9cce188ba98b6485ece3a6466cac908a3608bbc951e7ca6b72c38d41aecee7579f9cf1e5ce5e5d09d83fd70efd1d48031accedca821597611af3ad8"]) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0) mmap(&(0x7f0000002000/0xa000)=nil, 0xa000, 0x0, 0x40000000011, r1, 0x0) ioctl$USBDEVFS_DISCONNECT_CLAIM(r1, 0x8108551b, &(0x7f0000000040)={0x4, 0x2, "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"}) 10:49:57 executing program 5: r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) fstat(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0}) fstat(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) keyctl$chown(0x4, r0, r1, r2) ioctl$VIDIOC_TRY_EXT_CTRLS(0xffffffffffffffff, 0xc0185649, &(0x7f0000001540)={0x9f0000, 0x9, 0xa24a, 0xffffffffffffffff, 0x0, &(0x7f0000001500)={0x3c0395, 0x4, [], @p_u8=&(0x7f00000014c0)=0x6}}) setsockopt$netlink_NETLINK_PKTINFO(r3, 0x10e, 0x3, &(0x7f0000001580)=0x7, 0x4) getsockopt$bt_BT_VOICE(r3, 0x112, 0xb, &(0x7f00000015c0)=0x1, &(0x7f0000001600)=0x2) r4 = pidfd_getfd(0xffffffffffffffff, r3, 0x0) ioctl$SNAPSHOT_FREE(r4, 0x3305) lsetxattr$security_capability(&(0x7f0000001640)='./file0\x00', &(0x7f0000001680)='security.capability\x00', &(0x7f00000016c0)=@v2={0x2000000, [{0xb13, 0x8}, {0x1, 0x80000000}]}, 0x14, 0x3) r5 = openat$vcs(0xffffff9c, &(0x7f0000001700)='/dev/vcs\x00', 0x200, 0x0) io_uring_register$IORING_UNREGISTER_FILES(r5, 0x3, 0x0, 0x0) ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r5, 0xc01c64b9, &(0x7f00000017c0)={&(0x7f0000001740)=[0x5ece, 0x3, 0x8], &(0x7f0000001780)=[0x0], 0x3, 0x1, 0xdededede}) ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(0xffffffffffffffff, 0xc00c64b5, &(0x7f0000001840)={&(0x7f0000001800)=[0x0, 0x0, 0x0, 0x0], 0x4}) ioctl$DRM_IOCTL_MODE_SETPLANE(0xffffffffffffffff, 0xc03064b7, &(0x7f0000001880)={r6, 0x3c, 0x4, 0x5, 0x9, 0x20, 0x0, 0x6, 0xfffffe01, 0x2, 0xffff, 0x1f}) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f00000018c0)={0xffffffffffffffff}) getsockopt$inet_sctp6_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000001900)=@assoc_value={0x0, 0x101}, &(0x7f0000001940)=0x8) getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r7, 0x84, 0x18, &(0x7f0000001980)={r8, 0x6}, &(0x7f00000019c0)=0x8) r9 = openat(r3, &(0x7f0000001a00)='./file0\x00', 0x0, 0x15) ioctl$VHOST_SET_VRING_KICK(r3, 0x4008af20, &(0x7f0000001a40)={0x2, r9}) 10:49:57 executing program 3: 10:49:57 executing program 2: r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0) set_mempolicy(0x3, &(0x7f0000000080)=0x80000001, 0x5) setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000440)={'filter\x00', 0x7, 0x4, 0x3d0, 0x1f8, 0x1f8, 0x1f8, 0x2e8, 0x2e8, 0x2e8, 0x4, 0x0, {[{{@arp={@rand_addr, @dev, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@random="8b26c40b04c8"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'netpci0\x00', 'vlan0\x00'}, 0xffffffffffffff11, 0xe8}, @unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00'}}, {{@arp={@broadcast, @remote, 0x0, 0x0, 0x0, 0x0, {@mac=@local}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'syzkaller0\x00', 'geneve1\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @dev, @local}}}, {{@arp={@local, @remote, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@remote}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'macvlan0\x00', 'veth0_virt_wifi\x00'}, 0xc0, 0xf0}, @unspec=@CONNMARK={0x30, 'CONNMARK\x00'}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x468) accept4$nfc_llcp(0xffffffffffffffff, &(0x7f00000000c0), 0x0, 0x800) ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000000)={0x20a927, 0x2d}) mmap(&(0x7f0000094000/0x3000)=nil, 0x3000, 0x1000005, 0x810, 0xffffffffffffffff, 0xfc000) [ 426.927251][T11503] REISERFS warning (device loop4): super-6502 reiserfs_getopt: unknown mount option "comm" 10:49:57 executing program 1: 10:49:57 executing program 0: 10:49:57 executing program 4: 10:49:57 executing program 3: 10:49:57 executing program 2: r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0) set_mempolicy(0x3, &(0x7f0000000080)=0x80000001, 0x5) setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000440)={'filter\x00', 0x7, 0x4, 0x3d0, 0x1f8, 0x1f8, 0x1f8, 0x2e8, 0x2e8, 0x2e8, 0x4, 0x0, {[{{@arp={@rand_addr, @dev, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@random="8b26c40b04c8"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'netpci0\x00', 'vlan0\x00'}, 0xffffffffffffff11, 0xe8}, @unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00'}}, {{@arp={@broadcast, @remote, 0x0, 0x0, 0x0, 0x0, {@mac=@local}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'syzkaller0\x00', 'geneve1\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @dev, @local}}}, {{@arp={@local, @remote, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@remote}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'macvlan0\x00', 'veth0_virt_wifi\x00'}, 0xc0, 0xf0}, @unspec=@CONNMARK={0x30, 'CONNMARK\x00'}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x468) accept4$nfc_llcp(0xffffffffffffffff, &(0x7f00000000c0), &(0x7f0000000140)=0x58, 0x0) ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000000)={0x20a927, 0x2d}) mmap(&(0x7f0000094000/0x3000)=nil, 0x3000, 0x1000005, 0x810, 0xffffffffffffffff, 0xfc000) 10:49:57 executing program 1: 10:49:58 executing program 0: 10:49:58 executing program 3: 10:49:58 executing program 4: [ 428.275205][T11528] IPVS: ftp: loaded support on port[0] = 21 [ 428.548281][T11528] chnl_net:caif_netlink_parms(): no params data found [ 428.787494][T11528] bridge0: port 1(bridge_slave_0) entered blocking state [ 428.796071][T11528] bridge0: port 1(bridge_slave_0) entered disabled state [ 428.805722][T11528] device bridge_slave_0 entered promiscuous mode [ 428.826863][T11528] bridge0: port 2(bridge_slave_1) entered blocking state [ 428.834183][T11528] bridge0: port 2(bridge_slave_1) entered disabled state [ 428.843763][T11528] device bridge_slave_1 entered promiscuous mode [ 428.898809][T11528] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 428.916392][T11528] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 428.976152][T11528] team0: Port device team_slave_0 added [ 428.989381][T11528] team0: Port device team_slave_1 added [ 429.044529][T11528] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 429.051555][T11528] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 429.077799][T11528] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 429.099806][T11528] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 429.108096][T11528] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 429.134133][T11528] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 429.241328][T11528] device hsr_slave_0 entered promiscuous mode [ 429.323707][T11528] device hsr_slave_1 entered promiscuous mode [ 429.342206][T11528] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 429.349793][T11528] Cannot create hsr debugfs directory [ 429.830063][T11528] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 429.894407][T11528] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 429.962592][T11528] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 430.010755][T11528] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 430.309299][T11528] 8021q: adding VLAN 0 to HW filter on device bond0 [ 430.398255][ T8639] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 430.407867][ T8639] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 430.442978][T11528] 8021q: adding VLAN 0 to HW filter on device team0 [ 430.553226][ T8639] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 430.563822][ T8639] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 430.573184][ T8639] bridge0: port 1(bridge_slave_0) entered blocking state [ 430.580381][ T8639] bridge0: port 1(bridge_slave_0) entered forwarding state [ 430.589330][ T8639] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 430.599174][ T8639] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 430.608501][ T8639] bridge0: port 2(bridge_slave_1) entered blocking state [ 430.615755][ T8639] bridge0: port 2(bridge_slave_1) entered forwarding state [ 430.724175][T11528] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 430.734704][T11528] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 430.751026][ T8639] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 430.760764][ T8639] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 430.771565][ T8639] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 430.782471][ T8639] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 430.793159][ T8639] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 430.803430][ T8639] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 430.814108][ T8639] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 430.824337][ T8639] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 430.833974][ T8639] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 430.844403][ T8639] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 430.854137][ T8639] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 430.879903][ T8639] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 430.889753][ T8639] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 430.972933][ T8639] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 430.980643][ T8639] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 431.025435][T11528] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 431.343836][ T8687] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 431.353816][ T8687] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 431.505003][ T8639] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 431.514855][ T8639] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 431.563614][T11528] device veth0_vlan entered promiscuous mode [ 431.603065][ T8639] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 431.613624][ T8639] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 431.678171][T11528] device veth1_vlan entered promiscuous mode [ 431.881883][ T8639] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 431.891849][ T8639] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 431.960128][T11528] device veth0_macvtap entered promiscuous mode [ 432.008973][T11528] device veth1_macvtap entered promiscuous mode [ 432.149407][T11528] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 432.161312][T11528] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 432.171332][T11528] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 432.181855][T11528] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 432.191795][T11528] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 432.202299][T11528] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 432.212232][T11528] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 432.222762][T11528] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 432.232704][T11528] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 432.243266][T11528] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 432.257675][T11528] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 432.290287][ T8639] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 432.300426][ T8639] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 432.310118][ T8639] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 432.320298][ T8639] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 432.394556][T11528] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 432.408163][T11528] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 432.418197][T11528] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 432.428741][T11528] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 432.438693][T11528] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 432.449214][T11528] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 432.459163][T11528] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 432.469691][T11528] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 432.479643][T11528] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 432.490169][T11528] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 432.504723][T11528] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 432.528495][ T8639] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 432.539789][ T8639] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready 10:50:03 executing program 5: 10:50:03 executing program 0: 10:50:03 executing program 2: r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0) set_mempolicy(0x3, &(0x7f0000000080)=0x80000001, 0x5) setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000440)={'filter\x00', 0x7, 0x4, 0x3d0, 0x1f8, 0x1f8, 0x1f8, 0x2e8, 0x2e8, 0x2e8, 0x4, 0x0, {[{{@arp={@rand_addr, @dev, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@random="8b26c40b04c8"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'netpci0\x00', 'vlan0\x00'}, 0xffffffffffffff11, 0xe8}, @unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00'}}, {{@arp={@broadcast, @remote, 0x0, 0x0, 0x0, 0x0, {@mac=@local}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'syzkaller0\x00', 'geneve1\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @dev, @local}}}, {{@arp={@local, @remote, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@remote}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'macvlan0\x00', 'veth0_virt_wifi\x00'}, 0xc0, 0xf0}, @unspec=@CONNMARK={0x30, 'CONNMARK\x00'}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x468) accept4$nfc_llcp(0xffffffffffffffff, &(0x7f00000000c0), &(0x7f0000000140)=0x58, 0x0) ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000000)={0x20a927, 0x2d}) mmap(&(0x7f0000094000/0x3000)=nil, 0x3000, 0x1000005, 0x810, 0xffffffffffffffff, 0xfc000) 10:50:03 executing program 3: 10:50:03 executing program 4: 10:50:03 executing program 1: 10:50:04 executing program 1: 10:50:04 executing program 2: r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0) set_mempolicy(0x3, &(0x7f0000000080)=0x80000001, 0x5) setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000440)={'filter\x00', 0x7, 0x4, 0x3d0, 0x1f8, 0x1f8, 0x1f8, 0x2e8, 0x2e8, 0x2e8, 0x4, 0x0, {[{{@arp={@rand_addr, @dev, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@random="8b26c40b04c8"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'netpci0\x00', 'vlan0\x00'}, 0xffffffffffffff11, 0xe8}, @unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00'}}, {{@arp={@broadcast, @remote, 0x0, 0x0, 0x0, 0x0, {@mac=@local}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'syzkaller0\x00', 'geneve1\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @dev, @local}}}, {{@arp={@local, @remote, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@remote}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'macvlan0\x00', 'veth0_virt_wifi\x00'}, 0xc0, 0xf0}, @unspec=@CONNMARK={0x30, 'CONNMARK\x00'}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x468) accept4$nfc_llcp(0xffffffffffffffff, &(0x7f00000000c0), &(0x7f0000000140)=0x58, 0x0) ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000000)={0x20a927, 0x2d}) mmap(&(0x7f0000094000/0x3000)=nil, 0x3000, 0x1000005, 0x810, 0xffffffffffffffff, 0xfc000) 10:50:04 executing program 3: 10:50:04 executing program 4: 10:50:04 executing program 0: 10:50:04 executing program 5: 10:50:04 executing program 4: 10:50:04 executing program 1: 10:50:04 executing program 2: openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0) set_mempolicy(0x3, &(0x7f0000000080)=0x80000001, 0x5) setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000440)={'filter\x00', 0x7, 0x4, 0x3d0, 0x1f8, 0x1f8, 0x1f8, 0x2e8, 0x2e8, 0x2e8, 0x4, 0x0, {[{{@arp={@rand_addr, @dev, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@random="8b26c40b04c8"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'netpci0\x00', 'vlan0\x00'}, 0xffffffffffffff11, 0xe8}, @unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00'}}, {{@arp={@broadcast, @remote, 0x0, 0x0, 0x0, 0x0, {@mac=@local}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'syzkaller0\x00', 'geneve1\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @dev, @local}}}, {{@arp={@local, @remote, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@remote}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'macvlan0\x00', 'veth0_virt_wifi\x00'}, 0xc0, 0xf0}, @unspec=@CONNMARK={0x30, 'CONNMARK\x00'}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x468) accept4$nfc_llcp(0xffffffffffffffff, &(0x7f00000000c0), &(0x7f0000000140)=0x58, 0x800) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000000)={0x20a927, 0x2d}) mmap(&(0x7f0000094000/0x3000)=nil, 0x3000, 0x1000005, 0x810, 0xffffffffffffffff, 0xfc000) 10:50:04 executing program 3: 10:50:04 executing program 0: 10:50:04 executing program 5: 10:50:05 executing program 4: 10:50:05 executing program 1: 10:50:05 executing program 5: 10:50:05 executing program 3: 10:50:05 executing program 0: 10:50:05 executing program 2: openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0) set_mempolicy(0x3, &(0x7f0000000080)=0x80000001, 0x5) setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000440)={'filter\x00', 0x7, 0x4, 0x3d0, 0x1f8, 0x1f8, 0x1f8, 0x2e8, 0x2e8, 0x2e8, 0x4, 0x0, {[{{@arp={@rand_addr, @dev, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@random="8b26c40b04c8"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'netpci0\x00', 'vlan0\x00'}, 0xffffffffffffff11, 0xe8}, @unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00'}}, {{@arp={@broadcast, @remote, 0x0, 0x0, 0x0, 0x0, {@mac=@local}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'syzkaller0\x00', 'geneve1\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @dev, @local}}}, {{@arp={@local, @remote, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@remote}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'macvlan0\x00', 'veth0_virt_wifi\x00'}, 0xc0, 0xf0}, @unspec=@CONNMARK={0x30, 'CONNMARK\x00'}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x468) accept4$nfc_llcp(0xffffffffffffffff, &(0x7f00000000c0), &(0x7f0000000140)=0x58, 0x800) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000000)={0x20a927, 0x2d}) mmap(&(0x7f0000094000/0x3000)=nil, 0x3000, 0x1000005, 0x810, 0xffffffffffffffff, 0xfc000) 10:50:05 executing program 1: 10:50:05 executing program 3: 10:50:05 executing program 0: 10:50:05 executing program 2: openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0) set_mempolicy(0x3, &(0x7f0000000080)=0x80000001, 0x5) setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000440)={'filter\x00', 0x7, 0x4, 0x3d0, 0x1f8, 0x1f8, 0x1f8, 0x2e8, 0x2e8, 0x2e8, 0x4, 0x0, {[{{@arp={@rand_addr, @dev, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@random="8b26c40b04c8"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'netpci0\x00', 'vlan0\x00'}, 0xffffffffffffff11, 0xe8}, @unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00'}}, {{@arp={@broadcast, @remote, 0x0, 0x0, 0x0, 0x0, {@mac=@local}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'syzkaller0\x00', 'geneve1\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @dev, @local}}}, {{@arp={@local, @remote, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@remote}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'macvlan0\x00', 'veth0_virt_wifi\x00'}, 0xc0, 0xf0}, @unspec=@CONNMARK={0x30, 'CONNMARK\x00'}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x468) accept4$nfc_llcp(0xffffffffffffffff, &(0x7f00000000c0), &(0x7f0000000140)=0x58, 0x800) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000000)={0x20a927, 0x2d}) mmap(&(0x7f0000094000/0x3000)=nil, 0x3000, 0x1000005, 0x810, 0xffffffffffffffff, 0xfc000) 10:50:05 executing program 5: 10:50:05 executing program 4: 10:50:06 executing program 1: 10:50:06 executing program 3: 10:50:06 executing program 0: 10:50:06 executing program 2: r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0) set_mempolicy(0x3, &(0x7f0000000080)=0x80000001, 0x5) setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000440)={'filter\x00', 0x7, 0x4, 0x3d0, 0x1f8, 0x1f8, 0x1f8, 0x2e8, 0x2e8, 0x2e8, 0x4, 0x0, {[{{@arp={@rand_addr, @dev, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@random="8b26c40b04c8"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'netpci0\x00', 'vlan0\x00'}, 0xffffffffffffff11, 0xe8}, @unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00'}}, {{@arp={@broadcast, @remote, 0x0, 0x0, 0x0, 0x0, {@mac=@local}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'syzkaller0\x00', 'geneve1\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @dev, @local}}}, {{@arp={@local, @remote, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@remote}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'macvlan0\x00', 'veth0_virt_wifi\x00'}, 0xc0, 0xf0}, @unspec=@CONNMARK={0x30, 'CONNMARK\x00'}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x468) accept4$nfc_llcp(0xffffffffffffffff, &(0x7f00000000c0), &(0x7f0000000140)=0x58, 0x800) ioctl$ION_IOC_ALLOC(r0, 0xc0184900, 0x0) mmap(&(0x7f0000094000/0x3000)=nil, 0x3000, 0x1000005, 0x810, 0xffffffffffffffff, 0xfc000) 10:50:06 executing program 5: 10:50:06 executing program 4: 10:50:06 executing program 1: 10:50:06 executing program 3: 10:50:06 executing program 0: 10:50:06 executing program 5: 10:50:06 executing program 2: r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0) set_mempolicy(0x3, &(0x7f0000000080)=0x80000001, 0x5) setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000440)={'filter\x00', 0x7, 0x4, 0x3d0, 0x1f8, 0x1f8, 0x1f8, 0x2e8, 0x2e8, 0x2e8, 0x4, 0x0, {[{{@arp={@rand_addr, @dev, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@random="8b26c40b04c8"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'netpci0\x00', 'vlan0\x00'}, 0xffffffffffffff11, 0xe8}, @unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00'}}, {{@arp={@broadcast, @remote, 0x0, 0x0, 0x0, 0x0, {@mac=@local}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'syzkaller0\x00', 'geneve1\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @dev, @local}}}, {{@arp={@local, @remote, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@remote}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'macvlan0\x00', 'veth0_virt_wifi\x00'}, 0xc0, 0xf0}, @unspec=@CONNMARK={0x30, 'CONNMARK\x00'}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x468) accept4$nfc_llcp(0xffffffffffffffff, &(0x7f00000000c0), &(0x7f0000000140)=0x58, 0x800) ioctl$ION_IOC_ALLOC(r0, 0xc0184900, 0x0) mmap(&(0x7f0000094000/0x3000)=nil, 0x3000, 0x1000005, 0x810, 0xffffffffffffffff, 0xfc000) 10:50:06 executing program 4: 10:50:06 executing program 1: 10:50:06 executing program 3: 10:50:06 executing program 0: 10:50:07 executing program 4: 10:50:07 executing program 5: 10:50:07 executing program 1: 10:50:07 executing program 2: r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0) set_mempolicy(0x3, &(0x7f0000000080)=0x80000001, 0x5) setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000440)={'filter\x00', 0x7, 0x4, 0x3d0, 0x1f8, 0x1f8, 0x1f8, 0x2e8, 0x2e8, 0x2e8, 0x4, 0x0, {[{{@arp={@rand_addr, @dev, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@random="8b26c40b04c8"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'netpci0\x00', 'vlan0\x00'}, 0xffffffffffffff11, 0xe8}, @unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00'}}, {{@arp={@broadcast, @remote, 0x0, 0x0, 0x0, 0x0, {@mac=@local}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'syzkaller0\x00', 'geneve1\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @dev, @local}}}, {{@arp={@local, @remote, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@remote}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'macvlan0\x00', 'veth0_virt_wifi\x00'}, 0xc0, 0xf0}, @unspec=@CONNMARK={0x30, 'CONNMARK\x00'}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x468) accept4$nfc_llcp(0xffffffffffffffff, &(0x7f00000000c0), &(0x7f0000000140)=0x58, 0x800) ioctl$ION_IOC_ALLOC(r0, 0xc0184900, 0x0) mmap(&(0x7f0000094000/0x3000)=nil, 0x3000, 0x1000005, 0x810, 0xffffffffffffffff, 0xfc000) 10:50:07 executing program 0: 10:50:07 executing program 3: 10:50:07 executing program 4: 10:50:07 executing program 5: 10:50:07 executing program 2: r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0) set_mempolicy(0x3, &(0x7f0000000080)=0x80000001, 0x5) setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000440)={'filter\x00', 0x7, 0x4, 0x3d0, 0x1f8, 0x1f8, 0x1f8, 0x2e8, 0x2e8, 0x2e8, 0x4, 0x0, {[{{@arp={@rand_addr, @dev, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@random="8b26c40b04c8"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'netpci0\x00', 'vlan0\x00'}, 0xffffffffffffff11, 0xe8}, @unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00'}}, {{@arp={@broadcast, @remote, 0x0, 0x0, 0x0, 0x0, {@mac=@local}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'syzkaller0\x00', 'geneve1\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @dev, @local}}}, {{@arp={@local, @remote, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@remote}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'macvlan0\x00', 'veth0_virt_wifi\x00'}, 0xc0, 0xf0}, @unspec=@CONNMARK={0x30, 'CONNMARK\x00'}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x468) accept4$nfc_llcp(0xffffffffffffffff, &(0x7f00000000c0), &(0x7f0000000140)=0x58, 0x800) ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000000)={0x0, 0x2d}) mmap(&(0x7f0000094000/0x3000)=nil, 0x3000, 0x1000005, 0x810, 0xffffffffffffffff, 0xfc000) 10:50:07 executing program 0: 10:50:07 executing program 1: 10:50:07 executing program 3: 10:50:08 executing program 4: 10:50:08 executing program 5: 10:50:08 executing program 2: r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0) set_mempolicy(0x3, &(0x7f0000000080)=0x80000001, 0x5) setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000440)={'filter\x00', 0x7, 0x4, 0x3d0, 0x1f8, 0x1f8, 0x1f8, 0x2e8, 0x2e8, 0x2e8, 0x4, 0x0, {[{{@arp={@rand_addr, @dev, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@random="8b26c40b04c8"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'netpci0\x00', 'vlan0\x00'}, 0xffffffffffffff11, 0xe8}, @unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00'}}, {{@arp={@broadcast, @remote, 0x0, 0x0, 0x0, 0x0, {@mac=@local}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'syzkaller0\x00', 'geneve1\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @dev, @local}}}, {{@arp={@local, @remote, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@remote}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'macvlan0\x00', 'veth0_virt_wifi\x00'}, 0xc0, 0xf0}, @unspec=@CONNMARK={0x30, 'CONNMARK\x00'}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x468) accept4$nfc_llcp(0xffffffffffffffff, &(0x7f00000000c0), &(0x7f0000000140)=0x58, 0x800) ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000000)={0x0, 0x2d}) mmap(&(0x7f0000094000/0x3000)=nil, 0x3000, 0x1000005, 0x810, 0xffffffffffffffff, 0xfc000) 10:50:08 executing program 0: 10:50:08 executing program 3: 10:50:08 executing program 1: 10:50:08 executing program 4: 10:50:08 executing program 5: 10:50:08 executing program 3: 10:50:08 executing program 2: r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0) set_mempolicy(0x3, &(0x7f0000000080)=0x80000001, 0x5) setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000440)={'filter\x00', 0x7, 0x4, 0x3d0, 0x1f8, 0x1f8, 0x1f8, 0x2e8, 0x2e8, 0x2e8, 0x4, 0x0, {[{{@arp={@rand_addr, @dev, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@random="8b26c40b04c8"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'netpci0\x00', 'vlan0\x00'}, 0xffffffffffffff11, 0xe8}, @unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00'}}, {{@arp={@broadcast, @remote, 0x0, 0x0, 0x0, 0x0, {@mac=@local}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'syzkaller0\x00', 'geneve1\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @dev, @local}}}, {{@arp={@local, @remote, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@remote}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'macvlan0\x00', 'veth0_virt_wifi\x00'}, 0xc0, 0xf0}, @unspec=@CONNMARK={0x30, 'CONNMARK\x00'}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x468) accept4$nfc_llcp(0xffffffffffffffff, &(0x7f00000000c0), &(0x7f0000000140)=0x58, 0x800) ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000000)={0x0, 0x2d}) mmap(&(0x7f0000094000/0x3000)=nil, 0x3000, 0x1000005, 0x810, 0xffffffffffffffff, 0xfc000) 10:50:08 executing program 0: 10:50:08 executing program 1: 10:50:08 executing program 4: 10:50:09 executing program 3: 10:50:09 executing program 5: 10:50:09 executing program 2: r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0) set_mempolicy(0x3, &(0x7f0000000080)=0x80000001, 0x5) setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000440)={'filter\x00', 0x7, 0x4, 0x3d0, 0x1f8, 0x1f8, 0x1f8, 0x2e8, 0x2e8, 0x2e8, 0x4, 0x0, {[{{@arp={@rand_addr, @dev, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@random="8b26c40b04c8"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'netpci0\x00', 'vlan0\x00'}, 0xffffffffffffff11, 0xe8}, @unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00'}}, {{@arp={@broadcast, @remote, 0x0, 0x0, 0x0, 0x0, {@mac=@local}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'syzkaller0\x00', 'geneve1\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @dev, @local}}}, {{@arp={@local, @remote, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@remote}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'macvlan0\x00', 'veth0_virt_wifi\x00'}, 0xc0, 0xf0}, @unspec=@CONNMARK={0x30, 'CONNMARK\x00'}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x468) accept4$nfc_llcp(0xffffffffffffffff, &(0x7f00000000c0), &(0x7f0000000140)=0x58, 0x800) ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000000)={0x20a927}) mmap(&(0x7f0000094000/0x3000)=nil, 0x3000, 0x1000005, 0x810, 0xffffffffffffffff, 0xfc000) 10:50:09 executing program 1: 10:50:09 executing program 0: 10:50:09 executing program 3: 10:50:09 executing program 4: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x0, 0x0) ioctl$RTC_WKALM_SET(r0, 0x80247009, &(0x7f0000000040)) 10:50:09 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) add_key$keyring(&(0x7f0000000040)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffe) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfb]}) ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(0xffffffffffffffff, 0xc0096616, &(0x7f0000000080)=ANY=[@ANYBLOB="070f29ea"]) ioctl$EXT4_IOC_SWAP_BOOT(0xffffffffffffffff, 0x6611) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) socket(0x0, 0x0, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_SET_SIGNAL_MASK(0xffffffffffffffff, 0x4004ae8b, 0x0) getsockname$packet(0xffffffffffffffff, 0x0, 0x0) 10:50:09 executing program 0: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffff7fffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) dup(0xffffffffffffffff) openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, 0x0, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) ioctl$GIO_SCRNMAP(r0, 0x4b6a, &(0x7f0000004f80)=""/4096) 10:50:09 executing program 2: r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0) set_mempolicy(0x3, &(0x7f0000000080)=0x80000001, 0x5) setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000440)={'filter\x00', 0x7, 0x4, 0x3d0, 0x1f8, 0x1f8, 0x1f8, 0x2e8, 0x2e8, 0x2e8, 0x4, 0x0, {[{{@arp={@rand_addr, @dev, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@random="8b26c40b04c8"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'netpci0\x00', 'vlan0\x00'}, 0xffffffffffffff11, 0xe8}, @unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00'}}, {{@arp={@broadcast, @remote, 0x0, 0x0, 0x0, 0x0, {@mac=@local}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'syzkaller0\x00', 'geneve1\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @dev, @local}}}, {{@arp={@local, @remote, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@remote}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'macvlan0\x00', 'veth0_virt_wifi\x00'}, 0xc0, 0xf0}, @unspec=@CONNMARK={0x30, 'CONNMARK\x00'}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x468) accept4$nfc_llcp(0xffffffffffffffff, &(0x7f00000000c0), &(0x7f0000000140)=0x58, 0x800) ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000000)={0x20a927}) mmap(&(0x7f0000094000/0x3000)=nil, 0x3000, 0x1000005, 0x810, 0xffffffffffffffff, 0xfc000) 10:50:09 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') r1 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xa) setresuid(r2, 0x0, 0x0) exit_group(0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) 10:50:09 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfb]}) ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(0xffffffffffffffff, 0xc0096616, &(0x7f0000000140)=ANY=[@ANYBLOB="815b07ddbd36b9"]) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:50:09 executing program 4: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x0, 0x0) ioctl$RTC_WKALM_SET(r0, 0x80247008, &(0x7f0000000040)={0x2, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5c}}) 10:50:10 executing program 2: r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0) set_mempolicy(0x3, &(0x7f0000000080)=0x80000001, 0x5) setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000440)={'filter\x00', 0x7, 0x4, 0x3d0, 0x1f8, 0x1f8, 0x1f8, 0x2e8, 0x2e8, 0x2e8, 0x4, 0x0, {[{{@arp={@rand_addr, @dev, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@random="8b26c40b04c8"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'netpci0\x00', 'vlan0\x00'}, 0xffffffffffffff11, 0xe8}, @unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00'}}, {{@arp={@broadcast, @remote, 0x0, 0x0, 0x0, 0x0, {@mac=@local}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'syzkaller0\x00', 'geneve1\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @dev, @local}}}, {{@arp={@local, @remote, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@remote}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'macvlan0\x00', 'veth0_virt_wifi\x00'}, 0xc0, 0xf0}, @unspec=@CONNMARK={0x30, 'CONNMARK\x00'}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x468) accept4$nfc_llcp(0xffffffffffffffff, &(0x7f00000000c0), &(0x7f0000000140)=0x58, 0x800) ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000000)={0x20a927}) mmap(&(0x7f0000094000/0x3000)=nil, 0x3000, 0x1000005, 0x810, 0xffffffffffffffff, 0xfc000) 10:50:10 executing program 0: perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x6, 0x42}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x105082) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, 0xffffffffffffffff) r1 = memfd_create(&(0x7f0000000100)='\xbb\x02\xb1\x91^\x00\x00\x01\x00\x00\x00\x00\x00\x00\xfa\xe3\xa0\xd42\x90YJ\x89]\xad\x01\xc3\\:;\x99\xbck\xf9=\xfa\xe8HB\xf7\x92\x16\xbc\x11\xc4\xff\xa1\xea\xf9l', 0x0) socket$inet_icmp(0x2, 0x2, 0x1) pwritev(r1, &(0x7f00000001c0)=[{&(0x7f0000000200)="c5", 0x1}], 0x1, 0x840ee6) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) r2 = syz_open_procfs(0x0, &(0x7f0000000040)='net/rt_acct\x00') preadv(r2, &(0x7f00000017c0), 0x3da, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r2, 0x6, 0x1d, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x9, 0x2}, 0x14) write(r0, &(0x7f0000000000), 0x52698b21) r3 = open(&(0x7f0000000180)='./bus\x00', 0x1fb842, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x0) r5 = socket(0x11, 0x800000003, 0x0) bind(r5, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) connect$vsock_stream(0xffffffffffffffff, &(0x7f0000000280)={0x28, 0x0, 0x2710, @local}, 0x10) getsockname$packet(r5, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) 10:50:10 executing program 5: socket$netlink(0x10, 0x3, 0xc) socket$netlink(0x10, 0x3, 0x0) r0 = socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) perf_event_open(&(0x7f00000004c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0xa, [@struct={0x8, 0x1, 0x0, 0xf, 0x0, 0x74d7b3be, [{0x1, 0x4c}]}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e]}}, &(0x7f0000000300)=""/250, 0x3a, 0xfa, 0x8}, 0x20) 10:50:10 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') r1 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xa) setresuid(r2, 0x0, 0x0) exit_group(0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) 10:50:10 executing program 3: perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) add_key$keyring(&(0x7f0000000040)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffe) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[0x0, 0x0, 0xcdd, 0x0, 0x0, 0x1000, 0xfb]}) ioctl$FS_IOC_ENABLE_VERITY(r2, 0x40806685, &(0x7f0000000280)={0x1, 0x0, 0x1000, 0x96, &(0x7f0000000140)="e7ac1b65c4f0d028f905b0f95b9d5df2ca0cd7076c8ee6526916168326ce4a93d5ccc1d1fdb751bf0286fef870dedded8ff976cb3d1084852fcf42a3334b865d9dded113fc4a495151faaa892a6550232248d59c2e27c2d132ad49b8f5157d9e06d3cd31355062606a24f6c7d46b52330b96db60eeac8fbe2167b8c78602cdce9869c5f81b6dff9ae8a70e596b8678bb408ddf8a8b82", 0x0, 0x0, &(0x7f0000000200)}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:50:10 executing program 4: getsockname$packet(0xffffffffffffffff, 0x0, 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0xa, [@struct={0x8, 0x1, 0x0, 0xf, 0x0, 0x74d7b3be, [{0x1, 0x4c, 0x74d7b3be}]}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e]}}, &(0x7f0000000300)=""/250, 0x3a, 0xfa, 0x8}, 0x20) [ 440.286572][T11924] BPF: type_id=1 offset=76 size=0 [ 440.292096][T11924] BPF: [ 440.294898][T11924] BPF:Invalid size [ 440.298645][T11924] BPF: [ 440.298645][T11924] 10:50:10 executing program 2: r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0) set_mempolicy(0x3, &(0x7f0000000080)=0x80000001, 0x5) setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000440)={'filter\x00', 0x7, 0x4, 0x3d0, 0x1f8, 0x1f8, 0x1f8, 0x2e8, 0x2e8, 0x2e8, 0x4, 0x0, {[{{@arp={@rand_addr, @dev, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@random="8b26c40b04c8"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'netpci0\x00', 'vlan0\x00'}, 0xffffffffffffff11, 0xe8}, @unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00'}}, {{@arp={@broadcast, @remote, 0x0, 0x0, 0x0, 0x0, {@mac=@local}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'syzkaller0\x00', 'geneve1\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @dev, @local}}}, {{@arp={@local, @remote, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@remote}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'macvlan0\x00', 'veth0_virt_wifi\x00'}, 0xc0, 0xf0}, @unspec=@CONNMARK={0x30, 'CONNMARK\x00'}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x468) accept4$nfc_llcp(0xffffffffffffffff, &(0x7f00000000c0), &(0x7f0000000140)=0x58, 0x800) ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000000)={0x20a927, 0x2d}) mmap(&(0x7f0000094000/0x3000)=nil, 0x3000, 0x0, 0x810, 0xffffffffffffffff, 0xfc000) 10:50:11 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') r1 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xa) setresuid(r2, 0x0, 0x0) exit_group(0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) 10:50:11 executing program 2: r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0) set_mempolicy(0x3, &(0x7f0000000080)=0x80000001, 0x5) setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000440)={'filter\x00', 0x7, 0x4, 0x3d0, 0x1f8, 0x1f8, 0x1f8, 0x2e8, 0x2e8, 0x2e8, 0x4, 0x0, {[{{@arp={@rand_addr, @dev, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@random="8b26c40b04c8"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'netpci0\x00', 'vlan0\x00'}, 0xffffffffffffff11, 0xe8}, @unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00'}}, {{@arp={@broadcast, @remote, 0x0, 0x0, 0x0, 0x0, {@mac=@local}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'syzkaller0\x00', 'geneve1\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @dev, @local}}}, {{@arp={@local, @remote, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@remote}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'macvlan0\x00', 'veth0_virt_wifi\x00'}, 0xc0, 0xf0}, @unspec=@CONNMARK={0x30, 'CONNMARK\x00'}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x468) accept4$nfc_llcp(0xffffffffffffffff, &(0x7f00000000c0), &(0x7f0000000140)=0x58, 0x800) ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000000)={0x20a927, 0x2d}) mmap(&(0x7f0000094000/0x3000)=nil, 0x3000, 0x0, 0x810, 0xffffffffffffffff, 0xfc000) 10:50:11 executing program 5: openat$cgroup_procs(0xffffffffffffffff, 0x0, 0x2, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0xa8, &(0x7f00000002c0)=""/168, 0x41100, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x74) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000680)={0xffffffffffffffff, 0x0, 0x0}, 0x10) getsockname$packet(0xffffffffffffffff, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, 0x0) read$FUSE(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000240)={0x4, 0x70, 0x1, 0x0, 0x6, 0x1, 0x0, 0x0, 0x82426, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x1}, 0x181, 0x7, 0x7, 0x0, 0x2, 0x0, 0x7769}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000540)=@raw={'raw\x00', 0x3c1, 0x3, 0x368, 0x1c8, 0x6600, 0x2f47, 0x1c8, 0x245, 0x2a0, 0x2e8, 0x2e8, 0x2a0, 0x2e8, 0x3, 0x0, {[{{@ipv6={@remote={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x22]}, @rand_addr=' \x01\x00', [], [], 'veth1_to_bond\x00', 'bond_slave_1\x00'}, 0x0, 0x188, 0x1c8, 0x0, {}, [@common=@unspec=@string={{0xc0, 'string\x00'}, {0x0, 0x0, 'bm\x00', "cfcaf80c672f61cd17ae5119b5135c2aee68d23a465cd431e1ecef50c3234e082555f67222476147864fa03182f5cf11d8c348cbd06dc8de1dcbde7d4e252c3394fed47bf78c70f607b0178fa5ea335019ac07a602061c96baebc989f1f34a214e6726401fe4b124e0f7323a587d2a1fcfe36bbf12eca0a7b66c60c527bac2b5", 0x66, 0x3}}, @common=@inet=@socket3={{0x24, 'socket\x00'}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@ipv6={@ipv4={[], [], @remote}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'veth0_to_team\x00', 'netdevsim0\x00'}, 0x0, 0xa4, 0xd8}, @common=@inet=@SET3={0x34, 'SET\x00'}}], {{[], 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x3c4) openat$procfs(0xffffff9c, 0x0, 0x0, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) openat$dir(0xffffff9c, 0x0, 0x0, 0x0) socket$inet6(0xa, 0x3, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) write$tun(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_SET_NR_MMU_PAGES(r1, 0xae44, 0x7fff) clone(0x0, 0x0, 0x0, 0x0, 0x0) [ 440.985540][T11942] BPF: type_id=1 offset=76 size=1960293310 [ 440.991734][T11942] BPF: [ 440.994756][T11942] BPF:Invalid offset+size [ 440.999116][T11942] BPF: [ 440.999116][T11942] 10:50:11 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') r1 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xa) setresuid(r2, 0x0, 0x0) exit_group(0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) 10:50:11 executing program 4: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x14, 0x14, 0x2, [@enum={0x0, 0x1, 0x0, 0x6, 0x4, [{}]}]}}, &(0x7f0000000040)=""/250, 0x2e, 0xfa, 0x8}, 0x20) [ 441.259622][T11946] BPF: type_id=1 offset=76 size=1960293310 [ 441.265635][T11946] BPF: [ 441.268437][T11946] BPF:Invalid offset+size [ 441.272910][T11946] BPF: [ 441.272910][T11946] 10:50:11 executing program 2: r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0) set_mempolicy(0x3, &(0x7f0000000080)=0x80000001, 0x5) setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000440)={'filter\x00', 0x7, 0x4, 0x3d0, 0x1f8, 0x1f8, 0x1f8, 0x2e8, 0x2e8, 0x2e8, 0x4, 0x0, {[{{@arp={@rand_addr, @dev, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@random="8b26c40b04c8"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'netpci0\x00', 'vlan0\x00'}, 0xffffffffffffff11, 0xe8}, @unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00'}}, {{@arp={@broadcast, @remote, 0x0, 0x0, 0x0, 0x0, {@mac=@local}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'syzkaller0\x00', 'geneve1\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @dev, @local}}}, {{@arp={@local, @remote, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@remote}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'macvlan0\x00', 'veth0_virt_wifi\x00'}, 0xc0, 0xf0}, @unspec=@CONNMARK={0x30, 'CONNMARK\x00'}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x468) accept4$nfc_llcp(0xffffffffffffffff, &(0x7f00000000c0), &(0x7f0000000140)=0x58, 0x800) ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000000)={0x20a927, 0x2d}) mmap(&(0x7f0000094000/0x3000)=nil, 0x3000, 0x0, 0x810, 0xffffffffffffffff, 0xfc000) [ 441.489050][T11958] Cannot find add_set index 0 as target [ 441.731827][T11970] BPF:[1] ENUM (anon) [ 441.736144][T11970] BPF:size=4 vlen=1 [ 441.739991][T11970] BPF: [ 441.742912][T11970] BPF:Invalid name [ 441.746665][T11970] BPF: [ 441.746665][T11970] [ 441.775016][T11971] BPF:[1] ENUM (anon) [ 441.779208][T11971] BPF:size=4 vlen=1 [ 441.783176][T11971] BPF: [ 441.786013][T11971] BPF:Invalid name [ 441.789760][T11971] BPF: [ 441.789760][T11971] 10:50:12 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) add_key$keyring(&(0x7f0000000040)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffe) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[0x0, 0x0, 0xcdd, 0x0, 0x0, 0x1000, 0xfb]}) ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(0xffffffffffffffff, 0xc0096616, &(0x7f00000003c0)=ANY=[@ANYBLOB="070f29"]) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket(0x11, 0x0, 0x0) getsockname$packet(r3, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) 10:50:12 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) add_key$keyring(&(0x7f0000000040)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffe) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[0x0, 0x0, 0xcdd, 0x0, 0x0, 0x1000, 0xfb]}) ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(0xffffffffffffffff, 0xc0096616, &(0x7f00000003c0)=ANY=[@ANYBLOB="070f29fd15ef"]) ioctl$EXT4_IOC_SWAP_BOOT(0xffffffffffffffff, 0x6611) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket(0x11, 0x800000003, 0x0) getsockname$packet(r3, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) 10:50:12 executing program 4: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x14, 0x14, 0x2, [@enum={0x0, 0x1, 0x0, 0x6, 0x4, [{}]}]}}, &(0x7f0000000040)=""/250, 0x2e, 0xfa, 0x8}, 0x20) 10:50:12 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') r1 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xa) setresuid(r2, 0x0, 0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) [ 442.002829][T11958] Cannot find add_set index 0 as target 10:50:12 executing program 2: r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0) set_mempolicy(0x3, &(0x7f0000000080)=0x80000001, 0x5) setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000440)={'filter\x00', 0x7, 0x4, 0x3d0, 0x1f8, 0x1f8, 0x1f8, 0x2e8, 0x2e8, 0x2e8, 0x4, 0x0, {[{{@arp={@rand_addr, @dev, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@random="8b26c40b04c8"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'netpci0\x00', 'vlan0\x00'}, 0xffffffffffffff11, 0xe8}, @unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00'}}, {{@arp={@broadcast, @remote, 0x0, 0x0, 0x0, 0x0, {@mac=@local}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'syzkaller0\x00', 'geneve1\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @dev, @local}}}, {{@arp={@local, @remote, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@remote}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'macvlan0\x00', 'veth0_virt_wifi\x00'}, 0xc0, 0xf0}, @unspec=@CONNMARK={0x30, 'CONNMARK\x00'}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x468) accept4$nfc_llcp(0xffffffffffffffff, &(0x7f00000000c0), &(0x7f0000000140)=0x58, 0x800) ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000000)={0x20a927, 0x2d}) mmap(&(0x7f0000094000/0x3000)=nil, 0x3000, 0x1000005, 0x10, 0xffffffffffffffff, 0xfc000) [ 442.293390][T11988] BPF:[1] ENUM (anon) [ 442.297656][T11988] BPF:size=4 vlen=1 [ 442.301496][T11988] BPF: [ 442.304441][T11988] BPF:Invalid name [ 442.308196][T11988] BPF: [ 442.308196][T11988] 10:50:12 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x1c, 0x1c, 0x4, [@enum={0x0, 0x2, 0x0, 0x6, 0x4, [{0xa}, {}]}]}, {0x0, [0x0, 0x0]}}, &(0x7f0000000040)=""/250, 0x38, 0xfa, 0x8}, 0x20) 10:50:12 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') r1 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xa) setresuid(r2, 0x0, 0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) 10:50:13 executing program 4: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x14, 0x14, 0x2, [@enum={0x0, 0x1, 0x0, 0x6, 0x4, [{}]}]}}, &(0x7f0000000040)=""/250, 0x2e, 0xfa, 0x8}, 0x20) 10:50:13 executing program 3: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x3, [@volatile={0x0, 0x0, 0x0, 0x9, 0x3}]}, {0x0, [0x0]}}, &(0x7f0000000300)=""/250, 0x27, 0xfa, 0x8}, 0x20) 10:50:13 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') r1 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xa) setresuid(r2, 0x0, 0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) 10:50:13 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x9, [@struct={0x8, 0x1, 0x0, 0x4, 0x0, 0x74d7b3be, [{0x0, 0x0, 0x74d7b3be}]}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x39, 0xfa, 0x8}, 0x20) [ 442.831503][T12005] BPF: Invalid name_offset:10 10:50:13 executing program 2: r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0) set_mempolicy(0x3, &(0x7f0000000080)=0x80000001, 0x5) setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000440)={'filter\x00', 0x7, 0x4, 0x3d0, 0x1f8, 0x1f8, 0x1f8, 0x2e8, 0x2e8, 0x2e8, 0x4, 0x0, {[{{@arp={@rand_addr, @dev, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@random="8b26c40b04c8"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'netpci0\x00', 'vlan0\x00'}, 0xffffffffffffff11, 0xe8}, @unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00'}}, {{@arp={@broadcast, @remote, 0x0, 0x0, 0x0, 0x0, {@mac=@local}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'syzkaller0\x00', 'geneve1\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @dev, @local}}}, {{@arp={@local, @remote, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@remote}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'macvlan0\x00', 'veth0_virt_wifi\x00'}, 0xc0, 0xf0}, @unspec=@CONNMARK={0x30, 'CONNMARK\x00'}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x468) accept4$nfc_llcp(0xffffffffffffffff, &(0x7f00000000c0), &(0x7f0000000140)=0x58, 0x800) ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000000)={0x20a927, 0x2d}) mmap(&(0x7f0000094000/0x3000)=nil, 0x3000, 0x1000005, 0x10, 0xffffffffffffffff, 0xfc000) [ 443.748914][T12019] BPF:[1] ENUM (anon) [ 443.753314][T12019] BPF:size=4 vlen=1 [ 443.757165][T12019] BPF: [ 443.759971][T12019] BPF:Invalid name [ 443.763922][T12019] BPF: [ 443.763922][T12019] [ 443.821638][T12023] BPF:[1] VOLATILE (anon) [ 443.826959][T12023] BPF:type_id=3 [ 443.830493][T12023] BPF: [ 443.833415][T12023] BPF:Invalid type_id [ 443.837456][T12023] BPF: [ 443.837456][T12023] [ 443.853574][T12026] BPF:[1] VOLATILE (anon) [ 443.858179][T12026] BPF:type_id=3 [ 443.858300][T12027] BPF:[1] STRUCT [ 443.861666][T12026] BPF: [ 443.861686][T12026] BPF:Invalid type_id [ 443.861702][T12026] BPF: [ 443.861702][T12026] [ 443.877492][T12027] BPF:size=1960293310 vlen=1 [ 443.882228][T12027] BPF: [ 443.885064][T12027] BPF:Invalid name [ 443.888835][T12027] BPF: [ 443.888835][T12027] [ 443.931783][T12028] BPF:[1] STRUCT [ 443.937320][T12028] BPF:size=1960293310 vlen=1 [ 443.942078][T12028] BPF: [ 443.944914][T12028] BPF:Invalid name [ 443.948661][T12028] BPF: [ 443.948661][T12028] 10:50:14 executing program 3: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x1c, 0x1c, 0x5, [@enum={0x0, 0x2, 0x0, 0x6, 0x4, [{0x4}, {}]}]}, {0x0, [0x0, 0x0, 0x0]}}, &(0x7f0000000040)=""/250, 0x39, 0xfa, 0x8}, 0x20) 10:50:14 executing program 0: perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getitimer(0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x1, 0x80, 0x1, 0x3}, 0x40) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000), &(0x7f00000001c0), 0x6522, r0}, 0x38) 10:50:14 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') r1 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb), &(0x7f0000cab000)=0xa) exit_group(0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) 10:50:14 executing program 4: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x14, 0x14, 0x2, [@enum={0x0, 0x1, 0x0, 0x6, 0x4, [{}]}]}}, &(0x7f0000000040)=""/250, 0x2e, 0xfa, 0x8}, 0x20) 10:50:14 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x9, [@struct={0x8, 0x1, 0x0, 0x4, 0x0, 0x74d7b3be, [{0x0, 0x0, 0x74d7b3be}]}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x39, 0xfa, 0x8}, 0x20) 10:50:14 executing program 2: r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0) set_mempolicy(0x3, &(0x7f0000000080)=0x80000001, 0x5) setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000440)={'filter\x00', 0x7, 0x4, 0x3d0, 0x1f8, 0x1f8, 0x1f8, 0x2e8, 0x2e8, 0x2e8, 0x4, 0x0, {[{{@arp={@rand_addr, @dev, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@random="8b26c40b04c8"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'netpci0\x00', 'vlan0\x00'}, 0xffffffffffffff11, 0xe8}, @unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00'}}, {{@arp={@broadcast, @remote, 0x0, 0x0, 0x0, 0x0, {@mac=@local}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'syzkaller0\x00', 'geneve1\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @dev, @local}}}, {{@arp={@local, @remote, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@remote}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'macvlan0\x00', 'veth0_virt_wifi\x00'}, 0xc0, 0xf0}, @unspec=@CONNMARK={0x30, 'CONNMARK\x00'}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x468) accept4$nfc_llcp(0xffffffffffffffff, &(0x7f00000000c0), &(0x7f0000000140)=0x58, 0x800) ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000000)={0x20a927, 0x2d}) mmap(&(0x7f0000094000/0x3000)=nil, 0x3000, 0x1000005, 0x10, 0xffffffffffffffff, 0xfc000) [ 444.327784][T12047] BPF:[1] ENUM (anon) [ 444.332311][T12047] BPF:size=4 vlen=1 [ 444.336153][T12047] BPF: [ 444.338952][T12047] BPF:Invalid name [ 444.342854][T12047] BPF: [ 444.342854][T12047] [ 444.363255][T12045] BPF:[1] ENUM (anon) [ 444.367505][T12045] BPF:size=4 vlen=2 [ 444.371352][T12045] BPF: [ 444.374442][T12045] BPF:Invalid name [ 444.378201][T12045] BPF: [ 444.378201][T12045] 10:50:14 executing program 4: bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x14, 0x14, 0x2, [@enum={0x0, 0x1, 0x0, 0x6, 0x4, [{}]}]}}, &(0x7f0000000040)=""/250, 0x2e, 0xfa, 0x8}, 0x20) [ 444.412954][T12051] BPF:[1] STRUCT [ 444.416886][T12051] BPF:size=1960293310 vlen=1 [ 444.421517][T12051] BPF: [ 444.424498][T12051] BPF:Invalid name [ 444.428262][T12051] BPF: [ 444.428262][T12051] 10:50:14 executing program 3: r0 = openat$random(0xffffff9c, &(0x7f0000000380)='/dev/urandom\x00', 0x0, 0x0) ioctl$RNDADDTOENTCNT(r0, 0x40045201, &(0x7f00000003c0)=0xff) 10:50:14 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x9, [@struct={0x8, 0x1, 0x0, 0x4, 0x0, 0x74d7b3be, [{0x0, 0x0, 0x74d7b3be}]}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x39, 0xfa, 0x8}, 0x20) 10:50:15 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') r1 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb), &(0x7f0000cab000)=0xa) exit_group(0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) 10:50:15 executing program 2: r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0) set_mempolicy(0x3, &(0x7f0000000080)=0x80000001, 0x5) setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000440)={'filter\x00', 0x7, 0x4, 0x3d0, 0x1f8, 0x1f8, 0x1f8, 0x2e8, 0x2e8, 0x2e8, 0x4, 0x0, {[{{@arp={@rand_addr, @dev, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@random="8b26c40b04c8"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'netpci0\x00', 'vlan0\x00'}, 0xffffffffffffff11, 0xe8}, @unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00'}}, {{@arp={@broadcast, @remote, 0x0, 0x0, 0x0, 0x0, {@mac=@local}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'syzkaller0\x00', 'geneve1\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @dev, @local}}}, {{@arp={@local, @remote, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@remote}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'macvlan0\x00', 'veth0_virt_wifi\x00'}, 0xc0, 0xf0}, @unspec=@CONNMARK={0x30, 'CONNMARK\x00'}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x468) accept4$nfc_llcp(0xffffffffffffffff, &(0x7f00000000c0), &(0x7f0000000140)=0x58, 0x800) ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000000)={0x20a927, 0x2d}) mmap(&(0x7f0000094000/0x3000)=nil, 0x3000, 0x1000005, 0x810, 0xffffffffffffffff, 0x0) [ 444.970526][T12060] BPF:[1] ENUM (anon) [ 444.976023][T12060] BPF:size=4 vlen=1 [ 444.979866][T12060] BPF: [ 444.982766][T12060] BPF:Invalid name [ 444.986521][T12060] BPF: [ 444.986521][T12060] [ 445.016158][T12061] BPF:[1] STRUCT [ 445.020069][T12061] BPF:size=1960293310 vlen=1 [ 445.024987][T12061] BPF: [ 445.027783][T12061] BPF:Invalid name [ 445.031536][T12061] BPF: [ 445.031536][T12061] 10:50:16 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x9, [@struct={0x8, 0x1, 0x0, 0x4, 0x0, 0x74d7b3be, [{0x0, 0x0, 0x74d7b3be}]}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x39, 0xfa, 0x8}, 0x20) 10:50:16 executing program 4: bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x14, 0x14, 0x2, [@enum={0x0, 0x1, 0x0, 0x6, 0x4, [{}]}]}}, &(0x7f0000000040)=""/250, 0x2e, 0xfa, 0x8}, 0x20) [ 445.999643][T12074] BPF:[1] STRUCT [ 446.003690][T12074] BPF:size=1960293310 vlen=1 [ 446.008320][T12074] BPF: [ 446.011122][T12074] BPF:Invalid name [ 446.017052][T12074] BPF: [ 446.017052][T12074] [ 446.031935][T12077] BPF:[1] ENUM (anon) [ 446.036175][T12077] BPF:size=4 vlen=1 [ 446.040016][T12077] BPF: [ 446.043006][T12077] BPF:Invalid name [ 446.046760][T12077] BPF: [ 446.046760][T12077] 10:50:16 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) add_key$keyring(&(0x7f0000000040)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffe) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[0x0, 0x0, 0xcdd, 0x0, 0x0, 0x1000, 0xfb]}) ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(0xffffffffffffffff, 0xc0096616, &(0x7f00000003c0)=ANY=[@ANYBLOB="070f29fd15ef"]) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:50:16 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') r1 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb), &(0x7f0000cab000)=0xa) exit_group(0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) 10:50:16 executing program 2: r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0) set_mempolicy(0x3, &(0x7f0000000080)=0x80000001, 0x5) setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000440)={'filter\x00', 0x7, 0x4, 0x3d0, 0x1f8, 0x1f8, 0x1f8, 0x2e8, 0x2e8, 0x2e8, 0x4, 0x0, {[{{@arp={@rand_addr, @dev, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@random="8b26c40b04c8"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'netpci0\x00', 'vlan0\x00'}, 0xffffffffffffff11, 0xe8}, @unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00'}}, {{@arp={@broadcast, @remote, 0x0, 0x0, 0x0, 0x0, {@mac=@local}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'syzkaller0\x00', 'geneve1\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @dev, @local}}}, {{@arp={@local, @remote, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@remote}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'macvlan0\x00', 'veth0_virt_wifi\x00'}, 0xc0, 0xf0}, @unspec=@CONNMARK={0x30, 'CONNMARK\x00'}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x468) accept4$nfc_llcp(0xffffffffffffffff, &(0x7f00000000c0), &(0x7f0000000140)=0x58, 0x800) ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000000)={0x20a927, 0x2d}) mmap(&(0x7f0000094000/0x3000)=nil, 0x3000, 0x1000005, 0x810, 0xffffffffffffffff, 0x0) 10:50:16 executing program 3: socket$netlink(0x10, 0x3, 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0xa, [@struct={0x8, 0x1, 0x0, 0xf, 0x0, 0x74d7b3be, [{0x1, 0x4c, 0x74d7b3be}]}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e]}}, &(0x7f0000000300)=""/250, 0x3a, 0xfa, 0x8}, 0x20) 10:50:16 executing program 5: bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x9, [@struct={0x8, 0x1, 0x0, 0x4, 0x0, 0x74d7b3be, [{0x0, 0x0, 0x74d7b3be}]}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x39, 0xfa, 0x8}, 0x20) 10:50:16 executing program 4: bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x14, 0x14, 0x2, [@enum={0x0, 0x1, 0x0, 0x6, 0x4, [{}]}]}}, &(0x7f0000000040)=""/250, 0x2e, 0xfa, 0x8}, 0x20) [ 446.341871][T12085] BPF:[1] ENUM (anon) [ 446.346351][T12085] BPF:size=4 vlen=1 [ 446.346777][T12086] BPF:[1] STRUCT [ 446.350217][T12085] BPF: [ 446.354099][T12086] BPF:size=1960293310 vlen=1 [ 446.356870][T12085] BPF:Invalid name [ 446.361461][T12086] BPF: [ 446.365226][T12085] BPF: [ 446.365226][T12085] [ 446.373138][T12086] BPF:Invalid name [ 446.376898][T12086] BPF: [ 446.376898][T12086] [ 446.407224][T12087] BPF: type_id=1 offset=76 size=1960293310 [ 446.413427][T12087] BPF: [ 446.416233][T12087] BPF:Invalid offset+size [ 446.420594][T12087] BPF: [ 446.420594][T12087] [ 446.435380][T12091] BPF: type_id=1 offset=76 size=1960293310 [ 446.441471][T12091] BPF: [ 446.444669][T12091] BPF:Invalid offset+size [ 446.449044][T12091] BPF: [ 446.449044][T12091] 10:50:17 executing program 3: r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0) ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40246608, &(0x7f0000000000)={0x8001}) 10:50:17 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') socket(0xa, 0x2, 0x0) setresuid(0x0, 0x0, 0x0) exit_group(0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) 10:50:17 executing program 2: r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0) set_mempolicy(0x3, &(0x7f0000000080)=0x80000001, 0x5) setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000440)={'filter\x00', 0x7, 0x4, 0x3d0, 0x1f8, 0x1f8, 0x1f8, 0x2e8, 0x2e8, 0x2e8, 0x4, 0x0, {[{{@arp={@rand_addr, @dev, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@random="8b26c40b04c8"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'netpci0\x00', 'vlan0\x00'}, 0xffffffffffffff11, 0xe8}, @unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00'}}, {{@arp={@broadcast, @remote, 0x0, 0x0, 0x0, 0x0, {@mac=@local}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'syzkaller0\x00', 'geneve1\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @dev, @local}}}, {{@arp={@local, @remote, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@remote}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'macvlan0\x00', 'veth0_virt_wifi\x00'}, 0xc0, 0xf0}, @unspec=@CONNMARK={0x30, 'CONNMARK\x00'}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x468) accept4$nfc_llcp(0xffffffffffffffff, &(0x7f00000000c0), &(0x7f0000000140)=0x58, 0x800) ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000000)={0x20a927, 0x2d}) mmap(&(0x7f0000094000/0x3000)=nil, 0x3000, 0x1000005, 0x810, 0xffffffffffffffff, 0x0) 10:50:17 executing program 4: clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x14, 0x14, 0x2, [@enum={0x0, 0x1, 0x0, 0x6, 0x4, [{}]}]}}, &(0x7f0000000040)=""/250, 0x2e, 0xfa, 0x8}, 0x20) 10:50:17 executing program 0: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) mount$overlay(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='lowerdir=.:file0']) mount$overlay(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f00000000c0)='overlay\x00', 0x0, &(0x7f0000000240)=ANY=[]) open$dir(&(0x7f0000000100)='./file0/file0\x00', 0x0, 0x0) 10:50:17 executing program 5: bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x9, [@struct={0x8, 0x1, 0x0, 0x4, 0x0, 0x74d7b3be, [{0x0, 0x0, 0x74d7b3be}]}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x39, 0xfa, 0x8}, 0x20) [ 446.882606][T12101] EXT4-fs warning (device sda1): verify_group_input:132: Cannot add at group 32769 (only 16 groups) [ 447.134131][T12111] BPF:[1] STRUCT [ 447.138062][T12111] BPF:size=1960293310 vlen=1 [ 447.144036][T12111] BPF: [ 447.146846][T12111] BPF:Invalid name [ 447.150595][T12111] BPF: [ 447.150595][T12111] 10:50:17 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) add_key$keyring(&(0x7f0000000040)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffe) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[0x0, 0x0, 0xcdd, 0x0, 0x0, 0x1000, 0xfb]}) ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(0xffffffffffffffff, 0xc0096616, &(0x7f00000003c0)=ANY=[@ANYBLOB="070f29fd15"]) ioctl$EXT4_IOC_SWAP_BOOT(0xffffffffffffffff, 0x6611) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket(0x11, 0x800000003, 0x0) getsockname$packet(r3, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) 10:50:17 executing program 2: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0xa, [@struct={0x8, 0x1, 0x0, 0xf, 0x0, 0xa, [{0x1, 0x4c, 0x74d7b3be}]}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e]}}, &(0x7f0000000300)=""/250, 0x3a, 0xfa, 0x8}, 0x20) 10:50:17 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') socket(0xa, 0x2, 0x0) setresuid(0x0, 0x0, 0x0) exit_group(0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) [ 447.342831][T12116] BPF:[1] ENUM (anon) [ 447.347091][T12116] BPF:size=4 vlen=1 [ 447.350939][T12116] BPF: [ 447.354687][T12116] BPF:Invalid name [ 447.358471][T12116] BPF: [ 447.358471][T12116] 10:50:17 executing program 0: socket$netlink(0x10, 0x3, 0xc) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x9, [@struct={0x8, 0x1, 0x0, 0xf, 0x0, 0x74d7b3be, [{}]}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x39, 0xfa, 0x8}, 0x20) [ 447.496269][T12118] BPF: type_id=1 offset=76 size=1960293310 [ 447.502692][T12118] BPF: [ 447.505494][T12118] BPF:Invalid offset [ 447.509417][T12118] BPF: [ 447.509417][T12118] [ 447.524622][T12119] BPF: type_id=1 offset=76 size=1960293310 [ 447.530615][T12119] BPF: [ 447.533603][T12119] BPF:Invalid offset [ 447.537529][T12119] BPF: [ 447.537529][T12119] 10:50:18 executing program 5: bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x9, [@struct={0x8, 0x1, 0x0, 0x4, 0x0, 0x74d7b3be, [{0x0, 0x0, 0x74d7b3be}]}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x39, 0xfa, 0x8}, 0x20) 10:50:18 executing program 2: perf_event_open(&(0x7f0000000580)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000440), 0x2}, 0x44e}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x420000015001}) r2 = socket$netlink(0x10, 0x3, 0x12) r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ttyS3\x00', 0x0, 0x0) ioctl$TCXONC(r3, 0x540a, 0x2) r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ttyS3\x00', 0x0, 0x0) ioctl$TCXONC(r4, 0x540a, 0x2) r5 = fcntl$dupfd(r3, 0x0, r4) sendmsg$RDMA_NLDEV_CMD_GET(r5, &(0x7f0000000340)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000002c0)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x20}, 0x1, 0x0, 0x0, 0x48010}, 0x80) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(r0, &(0x7f00000003c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000500)=ANY=[@ANYBLOB="740000008c0a", @ANYRES16=0x0, @ANYBLOB="020026bd7000fedbdf2504000000140006006970766c616e30000000000000000000080005007f00000114000600636169663000000000000000000000003000070073797374656d5f753a6f626a6563745f723a73797374656d5f64627573645f7661725f6c69625f743a733000"], 0x74}, 0x1, 0x0, 0x0, 0x40}, 0x804) ioctl$sock_inet_SIOCSIFADDR(r2, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @empty}}) write$tun(r1, &(0x7f0000000a00)={@void, @val={0x1, 0x0, 0x0, 0x0, 0x10}, @ipv6=@gre_packet={0x0, 0x6, "bc7d94", 0x17d, 0x2c, 0x0, @local, @mcast2, {[@dstopts={0x2f}], {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x6558, 0x2, 0x0, [0x2, 0x7fff], "02d1"}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x86dd, [0x400, 0x2, 0xd3bf]}, {0x8, 0x88be, 0x4, {{}, 0x1, {0x7}}}, {0x8, 0x22eb, 0x0, {{0x0, 0x2, 0x9}, 0x2, {0x8000000, 0x1}}}, {0x8, 0x6558, 0x0, "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"}}}}}, 0x1af) sendmsg(0xffffffffffffffff, 0x0, 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8060000}, 0xc, &(0x7f0000000400)={&(0x7f00000007c0)=ANY=[@ANYBLOB="14000000", @ANYBLOB="1220c98b57bf17f1647bd4829b09075304f178c549542c04e83f0acea862474f603d0154c8963ce7ae56ec4d61f6f583373df441f91116bd644fdf35a6576c304b65e09ed0c12e8fd8a621ba5ed742b688c69e687aea1e3207ec97ccd858f90095e1b4745b28b799f0a249edc6a0a1780a7e8e4b2b4a15de26bdf36d83fd0fede2c07eb23208d150886621f4c26d2bcc92f9f87c1779e269aca75ff614dab1ca8ec6525aa69aed6f7bd46fd11c1c402e90f699ec443d83677bf19902a345772fb131ad000000000000", @ANYBLOB="000228bd702542f15be90cfeed28ca3b685882d8b2b5d0fc61f04250f4fd199fb5ff21bc14f969ebd54b06a3fb81a1d9c148468218dc58aa4b2fc3414f3a9e607e38e0fc843175299b109ef2537c9eb461688157de44"], 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x8880) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000280)={0x0, &(0x7f00000000c0)}, 0x10) ioctl$sock_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000040)={0x0, @tipc=@name={0x1e, 0x2, 0x1, {{0x41, 0xffffffff}, 0x4}}, @ax25={0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x401}, @isdn={0x22, 0x5, 0x20, 0xff, 0x8}, 0x403, 0x0, 0x0, 0x0, 0x8000, &(0x7f0000000000)='vlan1\x00', 0x37, 0x6, 0x47}) request_key(&(0x7f000000aff5)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0xffffffffffffffff, 0x6c}, &(0x7f0000001fee)='R\x05rist\xe3cusgrVid:De', 0x0) 10:50:18 executing program 4: clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x14, 0x14, 0x2, [@enum={0x0, 0x1, 0x0, 0x6, 0x4, [{}]}]}}, &(0x7f0000000040)=""/250, 0x2e, 0xfa, 0x8}, 0x20) 10:50:18 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') socket(0xa, 0x2, 0x0) setresuid(0x0, 0x0, 0x0) exit_group(0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) [ 447.821333][T12131] BPF:[1] DATASEC [ 447.825489][T12131] BPF:size=1960293310 vlen=1 [ 447.830126][T12131] BPF: [ 447.833340][T12131] BPF:Invalid name [ 447.837123][T12131] BPF: [ 447.837123][T12131] [ 447.878860][T12133] BPF:[1] DATASEC [ 447.885985][T12133] BPF:size=1960293310 vlen=1 [ 447.890632][T12133] BPF: [ 447.893585][T12133] BPF:Invalid name [ 447.897344][T12133] BPF: [ 447.897344][T12133] 10:50:18 executing program 3: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x4, [@struct={0x0, 0x1, 0x0, 0xf, 0x0, 0x0, [{0x0, 0x4c}]}]}, {0x0, [0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x34, 0xfa, 0x8}, 0x20) 10:50:18 executing program 0: clone(0x3d32a980, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000640)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x28, 0x28, 0x2, [@int={0x0, 0x0, 0x0, 0x1, 0x5, 0x10, 0x0, 0x7a}, @array]}}, &(0x7f0000000340)=""/129, 0x42, 0x81, 0x8}, 0x20) [ 448.120347][T12139] BPF:[1] STRUCT [ 448.124351][T12139] BPF:size=1960293310 vlen=1 [ 448.128974][T12139] BPF: [ 448.131776][T12139] BPF:Invalid name [ 448.135701][T12139] BPF: [ 448.135701][T12139] [ 448.259254][T12151] BPF:[1] ENUM (anon) [ 448.263707][T12151] BPF:size=4 vlen=1 [ 448.267546][T12151] BPF: [ 448.270352][T12151] BPF:Invalid name [ 448.274271][T12151] BPF: [ 448.274271][T12151] [ 448.280123][T12145] ip6_tunnel: non-ECT from fe80:0000:0000:0000:0000:0000:0000:00aa with DS=0xb [ 448.300894][T12152] BPF:[1] DATASEC (anon) [ 448.305584][T12152] BPF:size=0 vlen=1 10:50:18 executing program 2: perf_event_open(&(0x7f0000000300)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = memfd_create(&(0x7f0000000100)='([\xf4b~\xc5\x0f\xdbkP\x06]:\xa2c\x88G\xe9\x03U\x04\xca=DI>\x9a\xf8\xc1?\xb7\x8d\xbc\xd0\xa2\n\x1fT\x81x\xaa\x16\x13\xfa\x1b\x03\x10\x9b\x11\t\x12', 0x200) ftruncate(r0, 0x0) setsockopt$packet_rx_ring(0xffffffffffffffff, 0x107, 0x5, 0x0, 0x0) lseek(r0, 0x0, 0x4) syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0x0, 0x0) setsockopt$inet_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f0000000280)={@in6={{0xa, 0x0, 0xeac, @dev={0xfe, 0x80, [], 0xa}}}, 0x0, 0x2, 0x14}, 0xd8) bind$inet(0xffffffffffffffff, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) openat$cgroup_root(0xffffff9c, 0x0, 0x200002, 0x0) r1 = socket(0x10, 0x800000000000803, 0x0) sendto(r1, &(0x7f0000000140)="120000001600e70d017b00000000008e1584", 0x28f, 0x0, 0x0, 0x3d4) recvmmsg(r1, &(0x7f0000004e00), 0x27, 0x0, 0x0) poll(0x0, 0x0, 0x0) ioctl$FICLONERANGE(0xffffffffffffffff, 0x4020940d, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e24, @loopback}, 0x10) close(0xffffffffffffffff) 10:50:18 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xa) setresuid(r1, 0x0, 0x0) exit_group(0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) [ 448.309426][T12152] BPF: [ 448.312404][T12152] BPF:size == 0 [ 448.315897][T12152] BPF: [ 448.315897][T12152] [ 448.335668][T12153] BPF:[1] DATASEC (anon) [ 448.340227][T12153] BPF:size=0 vlen=1 [ 448.344250][T12153] BPF: [ 448.347059][T12153] BPF:size == 0 [ 448.350551][T12153] BPF: [ 448.350551][T12153] 10:50:18 executing program 3: getsockname$packet(0xffffffffffffffff, 0x0, 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x9, [@struct={0x8, 0x1, 0x0, 0xd, 0x0, 0x0, [{0x1, 0x4c}]}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x39, 0xfa, 0x8}, 0x20) 10:50:18 executing program 5: clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x9, [@struct={0x8, 0x1, 0x0, 0x4, 0x0, 0x74d7b3be, [{0x0, 0x0, 0x74d7b3be}]}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x39, 0xfa, 0x8}, 0x20) 10:50:18 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) add_key$keyring(&(0x7f0000000040)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffe) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[0x0, 0x0, 0xcdd, 0x0, 0x0, 0x1000, 0xfb]}) ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(0xffffffffffffffff, 0xc0096616, &(0x7f0000000080)=ANY=[@ANYBLOB="070f29eadaa6494db1db973a9c336cf634b3fd15dc3b6b99c6c9ad02699da2acdc861883a3aa94"]) ioctl$EXT4_IOC_SWAP_BOOT(0xffffffffffffffff, 0x6611) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) socket(0x11, 0x800000003, 0x0) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x46000) r3 = open(&(0x7f0000000140)='./bus\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, r3, 0x0, 0x8400fffffffb) r4 = openat(r3, &(0x7f0000000140)='./file0\x00', 0x0, 0x0) ioctl$KVM_SET_SIGNAL_MASK(r4, 0x4004ae8b, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) [ 448.475237][ T32] audit: type=1400 audit(1595155818.940:29): avc: denied { sys_admin } for pid=12157 comm="syz-executor.0" capability=21 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=cap_userns permissive=1 10:50:19 executing program 4: clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x14, 0x14, 0x2, [@enum={0x0, 0x1, 0x0, 0x6, 0x4, [{}]}]}}, &(0x7f0000000040)=""/250, 0x2e, 0xfa, 0x8}, 0x20) [ 448.823173][T12171] BPF:[1] FUNC_PROTO [ 448.827450][T12171] BPF:return=0 args=( [ 448.831472][T12171] BPF:76 [ 448.834626][T12171] BPF:) [ 448.837428][T12171] BPF: [ 448.840229][T12171] BPF:Invalid name [ 448.844072][T12171] BPF: [ 448.844072][T12171] [ 448.902439][T12177] BPF:[1] FUNC_PROTO [ 448.906704][T12177] BPF:return=0 args=( [ 448.909643][T12180] BPF:[1] STRUCT [ 448.910716][T12177] BPF:76 [ 448.910734][T12177] BPF:) [ 448.910751][T12177] BPF: [ 448.910772][T12177] BPF:Invalid name [ 448.910789][T12177] BPF: [ 448.910789][T12177] [ 448.932098][T12180] BPF:size=1960293310 vlen=1 [ 448.936722][T12180] BPF: [ 448.939532][T12180] BPF:Invalid name [ 448.943414][T12180] BPF: [ 448.943414][T12180] 10:50:19 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xa) setresuid(r1, 0x0, 0x0) exit_group(0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) 10:50:19 executing program 3: perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x6, 0x42}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x105082) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, 0xffffffffffffffff) r1 = memfd_create(&(0x7f0000000100)='\xbb\x02\xb1\x91^\x00\x00\x01\x00\x00\x00\x00\x00\x00\xfa\xe3\xa0\xd42\x90YJ\x89]\xad\x01\xc3\\:;\x99\xbck\xf9=\xfa\xe8HB\xf7\x92\x16\xbc\x11\xc4\xff\xa1\xea\xf9l', 0x0) socket$inet_icmp(0x2, 0x2, 0x1) pwritev(r1, &(0x7f00000001c0)=[{&(0x7f0000000200)="c5", 0x1}], 0x1, 0x840ee6) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) r2 = syz_open_procfs(0x0, &(0x7f0000000040)='net/rt_acct\x00') preadv(r2, &(0x7f00000017c0), 0x3da, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x9, 0x2}, 0x14) write(r0, &(0x7f0000000000), 0x52698b21) r3 = open(&(0x7f0000000180)='./bus\x00', 0x1fb842, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x4000000000010046) r5 = socket(0x11, 0x800000003, 0x0) bind(r5, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='cpu.stat\x00', 0x0, 0x0) connect$vsock_stream(r6, &(0x7f0000000280)={0x28, 0x0, 0x2710, @local}, 0x10) getsockname$packet(r5, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) socket(0x10, 0x3, 0x0) 10:50:19 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = gettid() sigaltstack(&(0x7f0000374000/0x3000)=nil, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0xf) process_vm_writev(r0, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0xf7}], 0x1, &(0x7f00000000c0)=[{&(0x7f0000217f28)=""/231, 0x5df211b9}], 0x23a, 0x0) r1 = dup(0xffffffffffffffff) bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0x6, &(0x7f0000000640)=ANY=[], &(0x7f0000000440)='syzkaller\x00', 0x6, 0xc6, &(0x7f0000000700)=""/198, 0x41100, 0x2, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000004c0)={0x0, 0xd, 0x0, 0x10000}, 0x10, 0x0, r1}, 0x74) sendmsg$AUDIT_LIST_RULES(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x10, 0x3f5, 0x0, 0x70bd2c, 0x25dfdbfb, "", ["", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x80}, 0x4045) [ 449.194274][T12182] BPF:[1] ENUM (anon) [ 449.198566][T12182] BPF:size=4 vlen=1 [ 449.203126][T12182] BPF: [ 449.205944][T12182] BPF:Invalid name [ 449.209696][T12182] BPF: [ 449.209696][T12182] 10:50:19 executing program 5: clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x9, [@struct={0x8, 0x1, 0x0, 0x4, 0x0, 0x74d7b3be, [{0x0, 0x0, 0x74d7b3be}]}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x39, 0xfa, 0x8}, 0x20) 10:50:19 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) add_key$keyring(&(0x7f0000000040)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffe) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[0x0, 0x0, 0xcdd, 0x0, 0x0, 0x0, 0xfb]}) ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(0xffffffffffffffff, 0xc0096616, &(0x7f00000003c0)=ANY=[@ANYBLOB="070f29fd"]) ioctl$EXT4_IOC_SWAP_BOOT(0xffffffffffffffff, 0x6611) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) getsockname$packet(0xffffffffffffffff, 0x0, 0x0) 10:50:20 executing program 4: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) 10:50:20 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xa) setresuid(r1, 0x0, 0x0) exit_group(0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) [ 449.864195][T12201] BPF:[1] STRUCT [ 449.868681][T12201] BPF:size=1960293310 vlen=1 [ 449.873493][T12201] BPF: [ 449.876302][T12201] BPF:Invalid name [ 449.880052][T12201] BPF: [ 449.880052][T12201] 10:50:20 executing program 4: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) 10:50:20 executing program 5: clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x9, [@struct={0x8, 0x1, 0x0, 0x4, 0x0, 0x74d7b3be, [{0x0, 0x0, 0x74d7b3be}]}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x39, 0xfa, 0x8}, 0x20) 10:50:20 executing program 0: sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0) socket$netlink(0x10, 0x3, 0x0) pipe(0x0) readv(0xffffffffffffffff, 0x0, 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0xa, [@struct={0x8, 0x1, 0x0, 0xf, 0x0, 0x74d7b3be, [{0x1, 0x4c, 0x74d7b3be}]}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e]}}, &(0x7f0000000300)=""/250, 0x3a, 0xfa, 0x8}, 0x20) close(0xffffffffffffffff) 10:50:21 executing program 4: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) 10:50:21 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) [ 450.670256][T12225] BPF:[1] STRUCT [ 450.674314][T12225] BPF:size=1960293310 vlen=1 [ 450.678938][T12225] BPF: [ 450.681737][T12225] BPF:Invalid name [ 450.685639][T12225] BPF: [ 450.685639][T12225] 10:50:21 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xa) setresuid(r1, 0x0, 0x0) exit_group(0x0) fchmodat(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x0) [ 450.908843][T12227] BPF: type_id=1 offset=76 size=1960293310 [ 450.914950][T12227] BPF: [ 450.917795][T12227] BPF:Invalid offset+size [ 450.922357][T12227] BPF: [ 450.922357][T12227] [ 450.931496][T12228] BPF: type_id=1 offset=76 size=1960293310 [ 450.937605][T12228] BPF: [ 450.940420][T12228] BPF:Invalid offset+size [ 450.944936][T12228] BPF: [ 450.944936][T12228] 10:50:21 executing program 3: perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x6, 0x42}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x105082) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, 0xffffffffffffffff) r1 = memfd_create(&(0x7f0000000100)='\xbb\x02\xb1\x91^\x00\x00\x01\x00\x00\x00\x00\x00\x00\xfa\xe3\xa0\xd42\x90YJ\x89]\xad\x01\xc3\\:;\x99\xbck\xf9=\xfa\xe8HB\xf7\x92\x16\xbc\x11\xc4\xff\xa1\xea\xf9l', 0x0) socket$inet_icmp(0x2, 0x2, 0x1) pwritev(r1, &(0x7f00000001c0)=[{&(0x7f0000000200)="c5", 0x1}], 0x1, 0x840ee6) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) r2 = syz_open_procfs(0x0, &(0x7f0000000040)='net/rt_acct\x00') preadv(r2, &(0x7f00000017c0), 0x3da, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x9, 0x2}, 0x14) write(r0, &(0x7f0000000000), 0x52698b21) r3 = open(&(0x7f0000000180)='./bus\x00', 0x1fb842, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x4000000000010046) r5 = socket(0x11, 0x800000003, 0x0) bind(r5, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='cpu.stat\x00', 0x0, 0x0) connect$vsock_stream(r6, &(0x7f0000000280)={0x28, 0x0, 0x2710, @local}, 0x10) getsockname$packet(r5, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) socket(0x10, 0x3, 0x0) 10:50:21 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = gettid() sigaltstack(&(0x7f0000374000/0x3000)=nil, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0xf) process_vm_writev(r0, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0xf7}], 0x1, &(0x7f00000000c0)=[{&(0x7f0000217f28)=""/231, 0x5df211b9}], 0x23a, 0x0) r1 = dup(0xffffffffffffffff) bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0x6, &(0x7f0000000640)=ANY=[], &(0x7f0000000440)='syzkaller\x00', 0x6, 0xc6, &(0x7f0000000700)=""/198, 0x41100, 0x2, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000004c0)={0x0, 0xd, 0x0, 0x10000}, 0x10, 0x0, r1}, 0x74) sendmsg$AUDIT_LIST_RULES(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x10, 0x3f5, 0x0, 0x70bd2c, 0x25dfdbfb, "", ["", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x80}, 0x4045) 10:50:21 executing program 0: sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, 0x0, 0x0) getsockname$packet(0xffffffffffffffff, 0x0, 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0xa, [@struct={0x8, 0x1, 0x0, 0xf, 0x0, 0x74d7b3be, [{0x1, 0x4c, 0x74d7b3be}]}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e]}}, &(0x7f0000000300)=""/250, 0x3a, 0xfa, 0x8}, 0x20) 10:50:21 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) 10:50:21 executing program 4: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={0x0, &(0x7f0000000040)=""/250, 0x0, 0xfa, 0x8}, 0x20) 10:50:21 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xa) setresuid(r1, 0x0, 0x0) exit_group(0x0) fchmodat(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x0) 10:50:22 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) [ 451.597888][T12249] BPF: type_id=1 offset=76 size=1960293310 [ 451.604172][T12249] BPF: [ 451.607018][T12249] BPF:Invalid offset+size [ 451.611382][T12249] BPF: [ 451.611382][T12249] [ 451.786503][T12253] BPF:hdr_len not found 10:50:22 executing program 0: getsockname$packet(0xffffffffffffffff, 0x0, &(0x7f0000000200)) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0xa, [@struct={0x8, 0x1, 0x0, 0xf, 0x0, 0x74d7b3be, [{0x1, 0x4c, 0x74d7b3be}]}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e]}}, &(0x7f0000000300)=""/250, 0x3a, 0xfa, 0x8}, 0x20) 10:50:22 executing program 4: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={0x0, &(0x7f0000000040)=""/250, 0x0, 0xfa, 0x8}, 0x20) 10:50:22 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={0x0, &(0x7f0000000300)=""/250, 0x0, 0xfa, 0x8}, 0x20) [ 452.258268][T12268] BPF: type_id=1 offset=76 size=1960293310 [ 452.264395][T12268] BPF: [ 452.267213][T12268] BPF:Invalid offset+size [ 452.271575][T12268] BPF: [ 452.271575][T12268] 10:50:22 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) add_key$keyring(&(0x7f0000000040)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffe) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[0x0, 0x0, 0xcdd, 0x0, 0x0, 0x0, 0xfb]}) ioctl$FS_IOC_ENABLE_VERITY(0xffffffffffffffff, 0x40806685, &(0x7f0000000280)={0x1, 0x3, 0x1000, 0x17, &(0x7f0000000140)="e7ac1b65c4f0d028f905b0f95b9d5df2ca0cd7076c8ee6", 0x0, 0x0, &(0x7f0000000200)}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) socket(0x11, 0x0, 0x0) 10:50:22 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xa) setresuid(r1, 0x0, 0x0) exit_group(0x0) fchmodat(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x0) [ 452.515389][T12275] BPF:hdr_len not found [ 452.757921][T12285] BPF:hdr_len not found 10:50:23 executing program 3: r0 = syz_init_net_socket$llc(0x1a, 0x2, 0x0) setsockopt$llc_int(r0, 0x10c, 0x8, &(0x7f0000000000)=0x80000001, 0x4) 10:50:23 executing program 2: r0 = openat$vfio(0xffffff9c, &(0x7f0000000200)='/dev/vfio/vfio\x00', 0x0, 0x0) ioctl$VFIO_CHECK_EXTENSION(r0, 0x3b65, 0x4) 10:50:23 executing program 4: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={0x0, &(0x7f0000000040)=""/250, 0x0, 0xfa, 0x8}, 0x20) 10:50:23 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={0x0, &(0x7f0000000300)=""/250, 0x0, 0xfa, 0x8}, 0x20) 10:50:23 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') r1 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xa) setresuid(r2, 0x0, 0x0) exit_group(0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) 10:50:23 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=ANY=[@ANYBLOB="2800000010000108000000007f00000000000000", @ANYRES32=0x0, @ANYBLOB="000000000000000008001b"], 0x28}}, 0x0) [ 453.120640][T12296] BPF:hdr_len not found 10:50:23 executing program 4: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, &(0x7f0000000040)=""/250, 0x1a, 0xfa, 0x8}, 0x20) 10:50:23 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={0x0, &(0x7f0000000300)=""/250, 0x0, 0xfa, 0x8}, 0x20) [ 453.160622][T12298] BPF:hdr_len not found 10:50:23 executing program 2: r0 = openat$vfio(0xffffff9c, &(0x7f0000000200)='/dev/vfio/vfio\x00', 0x0, 0x0) ioctl$VFIO_CHECK_EXTENSION(r0, 0x3b65, 0x4) 10:50:23 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') r1 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xa) setresuid(r2, 0x0, 0x0) exit_group(0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) [ 453.331853][T12302] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 453.346809][T12302] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 453.354664][T12302] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 453.534105][T12310] BPF:hdr_len not found 10:50:24 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x9}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x21, 0xfa, 0x8}, 0x20) [ 453.556134][T12307] BPF:No type found 10:50:24 executing program 3: pipe(&(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) write(r1, &(0x7f00000001c0), 0xfffffef3) r2 = epoll_create(0x40200) sendmsg$DEVLINK_CMD_SB_OCC_SNAPSHOT(0xffffffffffffffff, 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000440)={0xa0000010}) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) epoll_wait(r2, &(0x7f0000000080)=[{}], 0x1, 0xf8) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528ad93}], 0x1, 0x0) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, 0x0) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000480)={0xffffffffffffffff, 0xc0, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)=0x8, 0x0, 0x0, 0x0, &(0x7f0000000240)={0x5, 0x1}, 0x0, 0x0, &(0x7f00000002c0)={0x1, 0x0, 0xe863, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)}}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, 0x0, 0x0) getsockopt$SO_COOKIE(r3, 0x1, 0x39, &(0x7f0000000040), &(0x7f00000000c0)=0x8) 10:50:24 executing program 4: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, &(0x7f0000000040)=""/250, 0x1a, 0xfa, 0x8}, 0x20) 10:50:24 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x9}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x21, 0xfa, 0x8}, 0x20) [ 453.899123][T12317] BPF:No type found 10:50:24 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') r1 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xa) setresuid(r2, 0x0, 0x0) exit_group(0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) 10:50:24 executing program 2: r0 = openat$vfio(0xffffff9c, &(0x7f0000000200)='/dev/vfio/vfio\x00', 0x0, 0x0) ioctl$VFIO_CHECK_EXTENSION(r0, 0x3b65, 0x4) 10:50:24 executing program 4: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, &(0x7f0000000040)=""/250, 0x1a, 0xfa, 0x8}, 0x20) [ 454.069222][T12323] BPF:No type found [ 454.201704][T12330] BPF:No type found 10:50:24 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x9}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x21, 0xfa, 0x8}, 0x20) 10:50:24 executing program 0: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = getpid() fcntl$setown(0xffffffffffffffff, 0x8, 0xffffffffffffffff) ptrace$setopts(0x4206, 0x0, 0x0, 0x0) prctl$PR_SET_PTRACER(0x59616d61, 0x0) rt_tgsigqueueinfo(0x0, 0x0, 0x0, &(0x7f00000003c0)={0x16, 0x0, 0x3}) sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000029000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, &(0x7f00000000c0)="b9800000c00f3235010000000f309a090000006500660f3882af724d00002ed8ddc74424008fc4bd87c7442402c43a727fc7442406000000000f011424f30f090f013a360f06c4c18d72d68366baa100ed", 0x51}], 0x1, 0x0, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc5e]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') perf_event_open(&(0x7f0000000000)={0x0, 0x70, 0x0, 0x10, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0xe}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 10:50:24 executing program 4: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@enum]}}, &(0x7f0000000040)=""/250, 0x26, 0xfa, 0x8}, 0x20) [ 454.404419][T12338] BPF:No type found 10:50:25 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x9, [@struct={0x0, 0x1, 0x0, 0x4, 0x0, 0x74d7b3be, [{0x0, 0x0, 0x74d7b3be}]}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x39, 0xfa, 0x8}, 0x20) [ 454.506954][T12341] BPF:No type found 10:50:25 executing program 1: clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') r1 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xa) setresuid(r2, 0x0, 0x0) exit_group(0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) 10:50:25 executing program 2: r0 = openat$vfio(0xffffff9c, &(0x7f0000000200)='/dev/vfio/vfio\x00', 0x0, 0x0) ioctl$VFIO_CHECK_EXTENSION(r0, 0x3b65, 0x4) [ 454.873130][T12358] BPF: (anon) type_id=0 bits_offset=1960293310 [ 454.879858][T12358] BPF: [ 454.883394][T12358] BPF:Invalid type_id [ 454.887419][T12358] BPF: [ 454.887419][T12358] 10:50:25 executing program 3: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) add_key$keyring(&(0x7f0000000040)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffe) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[0x0, 0x0, 0xcdd, 0x0, 0x0, 0x1000, 0xfb]}) ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(0xffffffffffffffff, 0xc0096616, &(0x7f00000003c0)=ANY=[@ANYBLOB="070f29fd15ef"]) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket(0x11, 0x800000003, 0x0) getsockname$packet(r3, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) 10:50:25 executing program 4: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@enum]}}, &(0x7f0000000040)=""/250, 0x26, 0xfa, 0x8}, 0x20) 10:50:25 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x9, [@struct={0x0, 0x1, 0x0, 0x4, 0x0, 0x74d7b3be, [{0x0, 0x0, 0x74d7b3be}]}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x39, 0xfa, 0x8}, 0x20) 10:50:25 executing program 2: ioctl$VFIO_CHECK_EXTENSION(0xffffffffffffffff, 0x3b65, 0x4) 10:50:25 executing program 1: clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') r1 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xa) setresuid(r2, 0x0, 0x0) exit_group(0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) [ 455.370460][T12377] BPF: (anon) type_id=0 bits_offset=1960293310 [ 455.376854][T12377] BPF: [ 455.379660][T12377] BPF:Invalid type_id [ 455.383885][T12377] BPF: [ 455.383885][T12377] 10:50:25 executing program 4: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@enum]}}, &(0x7f0000000040)=""/250, 0x26, 0xfa, 0x8}, 0x20) 10:50:25 executing program 2: ioctl$VFIO_CHECK_EXTENSION(0xffffffffffffffff, 0x3b65, 0x4) 10:50:27 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) add_key$keyring(&(0x7f0000000040)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffe) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[0x0, 0x0, 0xcdd, 0x0, 0x0, 0x1000, 0xfb]}) ioctl$FS_IOC_ENABLE_VERITY(r2, 0x40806685, &(0x7f0000000280)={0x1, 0x3, 0x1000, 0x3c, &(0x7f0000000140)="e7ac1b65c4f0d028f905b0f95b9d5df2ca0cd7076c8ee6526916168326ce4a93d5ccc1d1fdb751bf0286fef870dedded8ff976cb3d1084852fcf42a3", 0x0, 0x0, &(0x7f0000000200)}) ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(0xffffffffffffffff, 0xc0096616, &(0x7f0000000340)=ANY=[@ANYBLOB="070f29150030271e93af6bd85e420e371a665fafebc617c6e7a3d2a132e2678a9837c8ee9a583c28cf6de64a36d2d1b44dede6a5aa186517587702eacfda4fec1214e44bfc3a5517de92f70fa2618f987dc11e75032c65eb2eb486d93f9589"]) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) socket(0x11, 0x800000003, 0x4) 10:50:27 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x9, [@struct={0x0, 0x1, 0x0, 0x4, 0x0, 0x74d7b3be, [{0x0, 0x0, 0x74d7b3be}]}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x39, 0xfa, 0x8}, 0x20) 10:50:27 executing program 1: clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') r1 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xa) setresuid(r2, 0x0, 0x0) exit_group(0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) 10:50:27 executing program 3: clone(0x3d32a980, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000640)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x10, 0x10, 0x2, [@int={0x0, 0x0, 0x0, 0x1, 0x5, 0x4c}]}}, &(0x7f0000000340)=""/129, 0x2a, 0x81, 0x8}, 0x20) 10:50:27 executing program 2: ioctl$VFIO_CHECK_EXTENSION(0xffffffffffffffff, 0x3b65, 0x4) 10:50:27 executing program 4: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x14, 0x14, 0x2, [@enum={0x0, 0x1, 0x0, 0x6, 0x4, [{}]}]}}, 0x0, 0x2e, 0x0, 0x8}, 0x20) 10:50:27 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r1, &(0x7f0000000040)=ANY=[], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0) 10:50:27 executing program 4: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x14, 0x14, 0x2, [@enum={0x0, 0x1, 0x0, 0x6, 0x4, [{}]}]}}, 0x0, 0x2e, 0x0, 0x8}, 0x20) [ 456.656595][T12405] BPF: (anon) type_id=0 bits_offset=1960293310 [ 456.663334][T12405] BPF: [ 456.666160][T12405] BPF:Invalid type_id [ 456.670180][T12405] BPF: [ 456.670180][T12405] 10:50:27 executing program 2: r0 = openat$vfio(0xffffff9c, 0x0, 0x0, 0x0) ioctl$VFIO_CHECK_EXTENSION(r0, 0x3b65, 0x4) 10:50:27 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x9, [@struct={0x8, 0x1, 0x0, 0x4, 0x0, 0x0, [{0x0, 0x0, 0x74d7b3be}]}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x39, 0xfa, 0x8}, 0x20) 10:50:27 executing program 4: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x14, 0x14, 0x2, [@enum={0x0, 0x1, 0x0, 0x6, 0x4, [{}]}]}}, 0x0, 0x2e, 0x0, 0x8}, 0x20) 10:50:27 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, 0x0) r1 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xa) setresuid(r2, 0x0, 0x0) exit_group(0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) [ 457.321601][T12438] BPF:[1] STRUCT [ 457.325558][T12438] BPF:size=0 vlen=1 [ 457.329400][T12438] BPF: [ 457.332505][T12438] BPF:Invalid name [ 457.336263][T12438] BPF: [ 457.336263][T12438] 10:50:27 executing program 0: r0 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/attr/fscreate\x00', 0x2, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/keys\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x2000000ffe) 10:50:27 executing program 3: perf_event_open(&(0x7f00000002c0)={0x0, 0x70, 0xa4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$nl_route(0x10, 0x3, 0x0) socket$inet_udp(0x2, 0x2, 0x0) r0 = socket$inet6(0xa, 0x800000000000002, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x1}, 0x1c) sendmmsg(r0, &(0x7f0000006d00)=[{{0x0, 0x1002000, 0x0, 0x0, 0x0, 0x0, 0x3800}}], 0xc6, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x384) r1 = openat$procfs(0xffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_BROADCAST_ERROR(0xffffffffffffffff, 0x10e, 0x4, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ethtool(0x0) sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, 0x0, 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r2) sendmsg$ETHTOOL_MSG_STRSET_GET(r1, &(0x7f0000000180)={&(0x7f0000000080), 0xc, 0x0}, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0) 10:50:27 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x9, [@struct={0x8}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x2d, 0xfa, 0x8}, 0x20) 10:50:27 executing program 4: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x14, 0x14, 0x2, [@enum={0x0, 0x1, 0x0, 0x6, 0x4, [{}]}]}}, &(0x7f0000000040)=""/250, 0x2e, 0xfa}, 0x20) 10:50:27 executing program 2: r0 = openat$vfio(0xffffff9c, 0x0, 0x0, 0x0) ioctl$VFIO_CHECK_EXTENSION(r0, 0x3b65, 0x4) 10:50:28 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, 0x0) r1 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xa) setresuid(r2, 0x0, 0x0) exit_group(0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) 10:50:28 executing program 4: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x14, 0x14, 0x2, [@enum={0x0, 0x1, 0x0, 0x6, 0x4, [{}]}]}}, &(0x7f0000000040)=""/250, 0x2e, 0xfa}, 0x20) [ 457.735058][T12457] BPF:[1] STRUCT [ 457.739009][T12457] BPF:size=0 vlen=0 [ 457.743169][T12457] BPF: [ 457.745983][T12457] BPF:Invalid name [ 457.749731][T12457] BPF: [ 457.749731][T12457] 10:50:28 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x8, [@struct={0x8}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x2c, 0xfa, 0x8}, 0x20) 10:50:28 executing program 2: r0 = openat$vfio(0xffffff9c, 0x0, 0x0, 0x0) ioctl$VFIO_CHECK_EXTENSION(r0, 0x3b65, 0x4) 10:50:28 executing program 0: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040)='TIPC\x00') sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)={0x34, r3, 0x1, 0x0, 0x0, {{}, {}, {0x18, 0x17, {0x0, 0x0, @l2={'ib', 0x3a, 'veth1\x00'}}}}}, 0x34}}, 0x0) 10:50:28 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, 0x0) r1 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xa) setresuid(r2, 0x0, 0x0) exit_group(0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) 10:50:28 executing program 4: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x14, 0x14, 0x2, [@enum={0x0, 0x1, 0x0, 0x6, 0x4, [{}]}]}}, &(0x7f0000000040)=""/250, 0x2e, 0xfa}, 0x20) [ 457.787352][T12455] SELinux: Context 0ac0083d I--Q--- 1 perm 1f3f0000 0 65534 keyring _uid_ses.0: 1 [ 457.787352][T12455] 0bbaa3a0 I------ 1 perm 1f0f0000 0 0 keyring .secondary_trusted_keys: 1 [ 457.787352][T12455] 0d57d492 I--Q--- 3 perm 1f3f0000 0 65534 keyring _uid.0: empty [ 457.787352][T12455] 10ad981b I--Q-N- 1 50s 39010000 0 0 asymmetri id:De [ 457.787352][T12455] 15d70c84 I------ 2 perm 1f0b0000 0 0 keyring .builtin_trusted_keys: empty [ 457.787352][T12455] 1648723f I------ 1 perm 1f0f0000 0 0 keyring .evm: empty [ 457.787352][T12455] 1e62f3a0 I--Q--- 1 perm 3f010000 0 0 keyring syz7: empty [ 457.787352][T12455] 217919e0 I--Q--- 104 perm 3f030000 0 0 keyring _ses: 3 [ 457.787352][T12455] 241f683f I------ 1 perm 1f030000 0 0 asymmetri sforshee: 00b28ddf47aef9cea7: X509.rsa [] [ 458.231588][T12471] BPF:[1] Invalid name_offset:8 [ 458.428595][T12476] tipc: Failed to obtain node identity [ 458.434326][T12476] tipc: Enabling of bearer rejected, failed to enable media 10:50:29 executing program 4: r0 = syz_open_dev$usbfs(&(0x7f0000000080)='/dev/bus/usb/00#/00#\x00', 0x77, 0x0) ioctl$USBDEVFS_IOCTL(r0, 0x541b, 0x0) 10:50:29 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) bpf$OBJ_GET_MAP(0x9, &(0x7f00000001c0)={0x0, 0x11}, 0x10) 10:50:29 executing program 2: openat$vfio(0xffffff9c, &(0x7f0000000200)='/dev/vfio/vfio\x00', 0x0, 0x0) ioctl$VFIO_CHECK_EXTENSION(0xffffffffffffffff, 0x3b65, 0x4) 10:50:29 executing program 0: r0 = syz_open_dev$sndctrl(&(0x7f0000000000)='/dev/snd/controlC#\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r0, 0xc1205531, &(0x7f0000000040)) 10:50:29 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x8, [@struct={0x8}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x2c, 0xfa, 0x8}, 0x20) 10:50:29 executing program 4: r0 = syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0x0, 0x2) ioctl$VIDIOC_G_SLICED_VBI_CAP(r0, 0xc0285629, &(0x7f00000000c0)) 10:50:29 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') r1 = socket(0x0, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xa) setresuid(r2, 0x0, 0x0) exit_group(0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) 10:50:29 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x8, [@struct={0x8}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x2c, 0xfa, 0x8}, 0x20) [ 459.336749][T12496] BPF:[1] Invalid name_offset:8 10:50:29 executing program 0: perf_event_open(&(0x7f00000002c0)={0x0, 0x70, 0xa4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$nl_route(0x10, 0x3, 0x0) socket$inet_udp(0x2, 0x2, 0x0) r0 = perf_event_open(&(0x7f00000002c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x800000000000002, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x1}, 0x1c) sendmmsg(r1, &(0x7f0000006d00)=[{{0x0, 0x1002000, 0x0, 0x0, 0x0, 0x0, 0x3800}}], 0xc6, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000200)=ANY=[@ANYRESHEX=r0], 0x384) openat$procfs(0xffffff9c, 0x0, 0x0, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ethtool(&(0x7f0000000440)='ethtool\x00') sendmsg$ETHTOOL_MSG_LINKMODES_SET(r3, 0x0, 0x0) 10:50:29 executing program 2: openat$vfio(0xffffff9c, &(0x7f0000000200)='/dev/vfio/vfio\x00', 0x0, 0x0) ioctl$VFIO_CHECK_EXTENSION(0xffffffffffffffff, 0x3b65, 0x4) 10:50:29 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r3, &(0x7f0000000040)=ANY=[], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_REM(0xffffffffffffffff, 0x84, 0x65, &(0x7f0000000040)=[@in={0x2, 0x4e21, @local}], 0x10) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:50:30 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') r1 = socket(0x0, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xa) setresuid(r2, 0x0, 0x0) exit_group(0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) 10:50:30 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x8, [@struct={0x8}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x2c, 0xfa, 0x8}, 0x20) [ 460.335237][T12520] BPF:[1] Invalid name_offset:8 10:50:31 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) bpf$OBJ_GET_MAP(0x9, &(0x7f00000001c0)={0x0, 0x11}, 0x10) 10:50:31 executing program 2: openat$vfio(0xffffff9c, &(0x7f0000000200)='/dev/vfio/vfio\x00', 0x0, 0x0) ioctl$VFIO_CHECK_EXTENSION(0xffffffffffffffff, 0x3b65, 0x4) 10:50:31 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsa\x00', 0x0, 0x0) fcntl$setstatus(r2, 0x40e, 0x748000) 10:50:31 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') r1 = socket(0x0, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xa) setresuid(r2, 0x0, 0x0) exit_group(0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) [ 460.911637][T12538] BPF:[1] Invalid name_offset:8 10:50:31 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x8, [@struct={0x8}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x2c, 0xfa, 0x8}, 0x20) 10:50:31 executing program 2: r0 = openat$vfio(0xffffff9c, &(0x7f0000000200)='/dev/vfio/vfio\x00', 0x0, 0x0) ioctl$VFIO_CHECK_EXTENSION(r0, 0x3b65, 0x0) 10:50:31 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) bpf$OBJ_GET_MAP(0x9, &(0x7f00000001c0)={0x0, 0x11}, 0x10) [ 461.411033][T12552] BPF:[1] Invalid name_offset:8 10:50:32 executing program 0: socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @broadcast}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000080)='illinois\x00', 0x9) r3 = socket$kcm(0x10, 0x2, 0x4) sendmsg$kcm(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000600)="4c000000120081ae08060c0f006b10007f03e37b00000000000000ca1b4e0906a6bd7c49d8413080b41b4da456331dbf64700169a1049b5464e64d275d5c3ef0381ad6e74703c48f93b8446b", 0x4c}], 0x1}, 0x0) 10:50:32 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') r1 = socket(0xa, 0x0, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xa) setresuid(r2, 0x0, 0x0) exit_group(0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) 10:50:32 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x8, [@struct={0x8}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x2c, 0xfa, 0x8}, 0x20) 10:50:32 executing program 4: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000240)=0x0) timer_settime(r1, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) clock_gettime(0x2, &(0x7f00000001c0)={0x0, 0x0}) clock_nanosleep(0x2, 0xf418222b87, &(0x7f00000000c0)={0x0, r2+10000000}, 0x0) 10:50:32 executing program 2: r0 = openat$vfio(0xffffff9c, &(0x7f0000000200)='/dev/vfio/vfio\x00', 0x0, 0x0) ioctl$VFIO_CHECK_EXTENSION(r0, 0x3b65, 0x0) 10:50:32 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) bpf$OBJ_GET_MAP(0x9, &(0x7f00000001c0)={0x0, 0x11}, 0x10) 10:50:32 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x8, [@struct={0x8}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x2c, 0xfa, 0x8}, 0x20) [ 462.115195][T12566] BPF:[1] Invalid name_offset:8 10:50:32 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') r1 = socket(0xa, 0x0, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xa) setresuid(r2, 0x0, 0x0) exit_group(0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) 10:50:32 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) dup(r0) bpf$OBJ_GET_MAP(0x9, &(0x7f00000001c0)={0x0, 0x11}, 0x10) 10:50:32 executing program 2: r0 = openat$vfio(0xffffff9c, &(0x7f0000000200)='/dev/vfio/vfio\x00', 0x0, 0x0) ioctl$VFIO_CHECK_EXTENSION(r0, 0x3b65, 0x0) [ 462.542556][T12585] BPF:[1] Invalid name_offset:8 10:50:33 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x8, [@struct={0x8}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x2c, 0xfa, 0x8}, 0x20) 10:50:33 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') r1 = socket(0xa, 0x0, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xa) setresuid(r2, 0x0, 0x0) exit_group(0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) 10:50:33 executing program 0: r0 = syz_open_dev$sndctrl(&(0x7f0000000000)='/dev/snd/controlC#\x00', 0x0, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup3(r1, r0, 0x0) 10:50:33 executing program 4: perf_event_open(&(0x7f00000002c0)={0x0, 0x70, 0xa4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$nl_route(0x10, 0x3, 0x0) socket$inet_udp(0x2, 0x2, 0x0) r0 = perf_event_open(&(0x7f00000002c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x800000000000002, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x1}, 0x1c) sendmmsg(r1, &(0x7f0000006d00)=[{{0x0, 0x1002000, 0x0, 0x0, 0x0, 0x0, 0x3800}}], 0xc6, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000200)=ANY=[@ANYRESHEX=r0], 0x384) r3 = openat$procfs(0xffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r3, 0x10e, 0x4, &(0x7f0000000100)=0x3, 0x4) r4 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ethtool(&(0x7f0000000440)='ethtool\x00') sendmsg$ETHTOOL_MSG_LINKMODES_SET(r4, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) getsockname$packet(r6, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, 0x0) sendmsg$ETHTOOL_MSG_STRSET_GET(r3, 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0) 10:50:33 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x8, [@struct={0x8}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x2c, 0xfa, 0x8}, 0x20) [ 462.886728][T12596] BPF:[1] Invalid name_offset:8 10:50:33 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)) bpf$OBJ_GET_MAP(0x9, &(0x7f00000001c0)={0x0, 0x11}, 0x10) 10:50:33 executing program 2: r0 = syz_open_dev$sndctrl(&(0x7f0000000000)='/dev/snd/controlC#\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r0, 0x81785501, 0x0) 10:50:33 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') socket(0xa, 0x2, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xa) setresuid(r1, 0x0, 0x0) exit_group(0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) [ 463.368703][T12616] BPF:[1] Invalid name_offset:8 10:50:33 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x8, [@struct={0x8}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x2c, 0xfa, 0x8}, 0x20) 10:50:33 executing program 0: r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000340)='/dev/ppp\x00', 0x0, 0x0) ioctl$PPPIOCGDEBUG(r0, 0x541b, 0x0) 10:50:34 executing program 3: bpf$OBJ_GET_MAP(0x9, &(0x7f00000001c0)={0x0, 0x11}, 0x10) 10:50:34 executing program 2: pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r1, &(0x7f00000000c0)=[{&(0x7f0000000180)="77690addcfbe1fbb66ec", 0xff3b}], 0x1, 0x1) close(r1) r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000100)='/dev/nullb0\x00', 0x4000000004002, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r2, 0x0) r3 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r3, &(0x7f0000000140), 0x492492492492805, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r1, 0x0, 0x1131e, 0x0) 10:50:34 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') socket(0xa, 0x2, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xa) setresuid(r1, 0x0, 0x0) exit_group(0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) [ 463.938851][T12628] BPF:[1] Invalid name_offset:8 10:50:34 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x8, [@struct={0x8}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x2c, 0xfa, 0x8}, 0x20) 10:50:34 executing program 3: bpf$OBJ_GET_MAP(0x9, 0x0, 0x0) [ 464.356802][T12640] BPF:[1] Invalid name_offset:8 10:50:35 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040)='TIPC\x00') sendmsg$TIPC_CMD_ENABLE_BEARER(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)={0x34, r1, 0x1, 0x0, 0x0, {{}, {}, {0x18, 0x17, {0x0, 0x0, @l2={'ib', 0x3a, 'team0\x00'}}}}}, 0x34}}, 0x0) 10:50:35 executing program 0: syz_mount_image$reiserfs(&(0x7f0000000080)='reiserfs\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)) 10:50:35 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') socket(0xa, 0x2, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xa) setresuid(r1, 0x0, 0x0) exit_group(0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) 10:50:35 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x8, [@struct={0x8}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x2c, 0xfa, 0x8}, 0x20) 10:50:35 executing program 3: bpf$OBJ_GET_MAP(0x9, 0x0, 0x0) [ 464.937388][T12649] REISERFS warning (device loop0): sh-2021 reiserfs_fill_super: can not find reiserfs on loop0 [ 464.973128][T12653] BPF:[1] Invalid name_offset:8 10:50:35 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x8, [@struct={0x8}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x2c, 0xfa, 0x8}, 0x20) [ 465.165992][T12649] REISERFS warning (device loop0): sh-2021 reiserfs_fill_super: can not find reiserfs on loop0 10:50:35 executing program 3: bpf$OBJ_GET_MAP(0x9, 0x0, 0x0) 10:50:35 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) openat$vga_arbiter(0xffffff9c, 0x0, 0x40, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff) timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000240)=0x0) timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) clock_gettime(0x2, &(0x7f00000001c0)={0x0, 0x0}) clock_nanosleep(0x2, 0xf418222b87, &(0x7f00000000c0)={0x0, r1+10000000}, 0x0) 10:50:35 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') r1 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, 0x0, &(0x7f0000cab000)) setresuid(0x0, 0x0, 0x0) exit_group(0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) [ 465.306880][T12665] BPF:[1] Invalid name_offset:8 [ 465.349777][T12666] tipc: Failed to obtain node identity [ 465.355624][T12666] tipc: Enabling of bearer rejected, failed to enable media [ 465.380688][T12668] tipc: Failed to obtain node identity [ 465.386865][T12668] tipc: Enabling of bearer rejected, failed to enable media 10:50:35 executing program 4: r0 = syz_open_dev$usbfs(&(0x7f0000000080)='/dev/bus/usb/00#/00#\x00', 0x77, 0x101001) ioctl$USBDEVFS_IOCTL(r0, 0xc0185502, 0x0) 10:50:36 executing program 0: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001}) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) ioctl$sock_inet_SIOCSIFADDR(r4, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @empty}}) ioctl$TUNSETVNETBE(r0, 0x400454de, &(0x7f0000000000)=0x10001) write$tun(r0, &(0x7f0000000200)={@void, @val={0x3}, @mpls={[], @ipv6=@icmpv6={0x0, 0x6, "9eef7b", 0x8, 0x2f, 0x0, @empty, @mcast2, {[], @echo_request}}}}, 0xfdef) 10:50:36 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x8, [@struct={0x8}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x2c, 0xfa, 0x8}, 0x20) 10:50:36 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) openat$vga_arbiter(0xffffff9c, 0x0, 0x40, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff) timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000240)=0x0) timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) clock_gettime(0x2, &(0x7f00000001c0)={0x0, 0x0}) clock_nanosleep(0x2, 0xf418222b87, &(0x7f00000000c0)={0x0, r1+10000000}, 0x0) [ 465.819565][T12681] BPF:[1] Invalid name_offset:8 10:50:36 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x8, [@struct={0x8}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x2c, 0xfa, 0x8}, 0x20) 10:50:36 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') r1 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, 0x0, &(0x7f0000cab000)) setresuid(0x0, 0x0, 0x0) exit_group(0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) 10:50:36 executing program 2: r0 = syz_open_dev$sndctrl(&(0x7f0000000000)='/dev/snd/controlC#\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r0, 0xc1105517, &(0x7f0000000040)) 10:50:36 executing program 4: perf_event_open(&(0x7f00000002c0)={0x0, 0x70, 0xa4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$nl_route(0x10, 0x3, 0x0) socket$inet_udp(0x2, 0x2, 0x0) r0 = perf_event_open(&(0x7f00000002c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x800000000000002, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x1}, 0x1c) sendmmsg(r1, &(0x7f0000006d00)=[{{0x0, 0x1002000, 0x0, 0x0, 0x0, 0x0, 0x3800}}], 0xc6, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000200)=ANY=[@ANYRESHEX=r0], 0x384) r2 = openat$procfs(0xffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r2, 0x10e, 0x4, &(0x7f0000000100)=0x3, 0x4) syz_genetlink_get_family_id$ethtool(&(0x7f0000000440)='ethtool\x00') sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup(r3) getsockname$packet(r4, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000140)=0x14) sendmsg$ETHTOOL_MSG_STRSET_GET(r2, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0xd8001100}, 0xc, 0x0}, 0x0) [ 466.284935][T12699] BPF:[1] Invalid name_offset:8 10:50:36 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') r1 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, 0x0, &(0x7f0000cab000)) setresuid(0x0, 0x0, 0x0) exit_group(0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) 10:50:36 executing program 3: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) openat$vga_arbiter(0xffffff9c, 0x0, 0x40, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newlink={0x28, 0x10, 0xe3b, 0x0, 0x0, {0xea}, [@IFLA_MASTER={0x8, 0xa, 0x6}]}, 0x28}}, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x406, r0) timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000240)=0x0) timer_settime(r1, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) clock_gettime(0x2, &(0x7f00000001c0)={0x0, 0x0}) clock_nanosleep(0x2, 0xf418222b87, &(0x7f00000000c0)={0x0, r2+10000000}, 0x0) 10:50:37 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x8, [@struct={0x8}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x2c, 0xfa, 0x8}, 0x20) 10:50:37 executing program 2: r0 = syz_open_dev$sndctrl(&(0x7f0000000000)='/dev/snd/controlC#\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r0, 0xc0045516, 0x0) [ 467.005203][T12718] BPF:[1] Invalid name_offset:8 10:50:37 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x8, [@struct={0x8}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x2c, 0xfa, 0x8}, 0x20) [ 467.646867][T12727] BPF:[1] Invalid name_offset:8 10:50:38 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x141c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x20441}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x3, 0x5) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) bpf$BPF_MAP_GET_NEXT_ID(0xc, 0x0, 0x0) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, 0x0, 0x0) connect$inet6(0xffffffffffffffff, 0x0, 0x0) sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(r3, 0x6, 0xe, &(0x7f00000003c0)={@in6={{0xa, 0x0, 0x0, @loopback}}, 0x0, 0x7, 0xb}, 0xd8) setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, &(0x7f0000ad7000)={0x1, &(0x7f0000000300)=[{0x6, 0x0, 0x0, 0x7}]}, 0x10) bind$inet6(r3, &(0x7f0000000080)={0xa, 0x4e22}, 0x1c) sendto$inet6(r3, 0x0, 0x0, 0x200408d4, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @empty}, 0x1c) sendto$inet6(r3, &(0x7f0000000000)="80", 0x1, 0xd4, 0x0, 0x0) close(r3) 10:50:38 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') r1 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, 0x0) setresuid(r2, 0x0, 0x0) exit_group(0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) 10:50:38 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x8, [@struct={0x8}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x2c, 0xfa, 0x8}, 0x20) 10:50:38 executing program 3: r0 = syz_open_dev$sndctrl(&(0x7f0000000000)='/dev/snd/controlC#\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r0, 0x80045500, 0x0) 10:50:38 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) getsockname$packet(r1, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000140)=0x14) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x6, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b405000000000000711004000000000085000000000000049500000000000000"], &(0x7f0000003ff6)='GPL\x00', 0x0, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, [], r2, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfa}, 0x48) 10:50:38 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x8, [@struct={0x8}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x2c, 0xfa, 0x8}, 0x20) [ 468.013010][T12734] BPF:[1] Invalid name_offset:8 10:50:38 executing program 4: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001}) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) ioctl$sock_inet_SIOCSIFADDR(r4, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @empty}}) write$tun(r0, &(0x7f0000000200)={@void, @val={0x3, 0x0, 0x7}, @mpls={[], @ipv6=@icmpv6={0x0, 0x6, "9eef7b", 0x8, 0x2f, 0x0, @empty, @mcast2, {[], @echo_request}}}}, 0xfdef) 10:50:38 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') r1 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, 0x0) setresuid(r2, 0x0, 0x0) exit_group(0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) 10:50:38 executing program 3: perf_event_open(&(0x7f00000002c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x800000000000002, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x1}, 0x1c) sendmmsg(r0, &(0x7f0000006d00)=[{{0x0, 0x1002000, 0x0, 0x0, 0x0, 0x0, 0x3800}}], 0xc6, 0x0) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_STRSET_GET(0xffffffffffffffff, 0x0, 0x0) 10:50:38 executing program 2: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) openat$vga_arbiter(0xffffff9c, 0x0, 0x40, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newlink={0x40, 0x10, 0xe3b, 0x0, 0x0, {0xea}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @ip6gretap={{0xe, 0x1, 'ip6gretap\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GRE_ERSPAN_DIR={0x5, 0x17, 0x1}]}}}]}, 0x40}}, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000240)=0x0) timer_settime(r1, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) clock_gettime(0x2, &(0x7f00000001c0)={0x0, 0x0}) clock_nanosleep(0x2, 0xf418222b87, &(0x7f00000000c0)={0x0, r2+10000000}, 0x0) [ 468.473942][T12750] BPF:[1] Invalid name_offset:8 10:50:39 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x8, [@struct={0x8}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x2c, 0xfa, 0x8}, 0x20) 10:50:39 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') r1 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, 0x0) setresuid(r2, 0x0, 0x0) exit_group(0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) [ 469.278502][T12768] BPF:[1] Invalid name_offset:8 10:50:40 executing program 0: pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r1, &(0x7f00000000c0)=[{&(0x7f0000000180)="77690addcfbe1fbb66ec", 0xff3b}], 0x1, 0x1) close(r1) openat$nullb(0xffffffffffffff9c, &(0x7f0000000100)='/dev/nullb0\x00', 0x4000000004002, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x13, 0xffffffffffffffff, 0x0) sendmmsg$alg(0xffffffffffffffff, 0x0, 0x0, 0x0) splice(r0, 0x0, r1, 0x0, 0x1131e, 0x0) 10:50:40 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x8, [@struct={0x8}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x2c, 0xfa, 0x8}, 0x20) 10:50:40 executing program 2: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) openat$vga_arbiter(0xffffff9c, 0x0, 0x40, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000240)=0x0) timer_settime(r1, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) clock_gettime(0x2, &(0x7f00000001c0)={0x0, 0x0}) clock_nanosleep(0x2, 0xf418222b87, &(0x7f00000000c0)={0x0, r2+10000000}, 0x0) 10:50:40 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') r1 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb), &(0x7f0000cab000)=0xa) setresuid(0x0, 0x0, 0x0) exit_group(0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) [ 470.156793][T12779] BPF:[1] Invalid name_offset:8 10:50:40 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x9, [@struct={0x8}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, 0x0, 0x2d, 0x0, 0x8}, 0x20) 10:50:41 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x9, [@struct={0x8}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, 0x0, 0x2d, 0x0, 0x8}, 0x20) 10:50:41 executing program 4: syz_open_dev$loop(&(0x7f0000000180)='/dev/loop#\x00', 0x10001, 0x0) 10:50:41 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') r1 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb), &(0x7f0000cab000)=0xa) setresuid(0x0, 0x0, 0x0) exit_group(0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) 10:50:41 executing program 3: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsa\x00', 0x0, 0x0) fcntl$setstatus(r2, 0x40e, 0x0) 10:50:41 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f00000004c0)=ANY=[]) chdir(&(0x7f0000000000)='./file1\x00') open(&(0x7f00000000c0)='./bus\x00', 0x1071fe, 0x0) chmod(&(0x7f0000000100)='./bus\x00', 0xd94e3dd28ce49eed) 10:50:41 executing program 0: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000080)="0f0147d1d1861900000f23c80f21f8350000e0000f23f8b9190b0000b8ba690000ba000000000f308fe938028d2f000000f30f2cc0b805000000f9e0a264df0f01c166ba4300ecc744240000000000c7442402bc0c0000c7442406000000000f011c24c4c11972d000", 0x69}], 0x1, 0x0, 0x0, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5ca], 0x10000}) sendmsg$IPCTNL_MSG_EXP_NEW(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 10:50:41 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x9, [@struct={0x8}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, 0x0, 0x2d, 0x0, 0x8}, 0x20) [ 470.998817][ T32] audit: type=1800 audit(1595155841.460:30): pid=12814 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=16341 res=0 10:50:41 executing program 4: r0 = syz_open_dev$usbfs(&(0x7f0000000040)='/dev/bus/usb/00#/00#\x00', 0x4000000000000071, 0x68001) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000180)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f00000000c0), 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup2(r1, r0) 10:50:41 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') r1 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb), &(0x7f0000cab000)=0xa) setresuid(0x0, 0x0, 0x0) exit_group(0x0) fchmodat(r0, &(0x7f0000000100)='./file0\x00', 0x0) 10:50:41 executing program 2: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) openat$vga_arbiter(0xffffff9c, 0x0, 0x40, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newlink={0x40, 0x10, 0xe3b, 0x0, 0x0, {0xea}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @ip6gretap={{0xe, 0x1, 'ip6gretap\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GRE_ERSPAN_DIR={0x5, 0x17, 0x1}]}}}]}, 0x40}}, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x406, r0) timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000240)=0x0) timer_settime(r1, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) clock_gettime(0x2, &(0x7f00000001c0)={0x0, 0x0}) clock_nanosleep(0x2, 0xf418222b87, &(0x7f00000000c0)={0x0, r2+10000000}, 0x0) 10:50:41 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x28011, r3, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:50:41 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x9, [@struct={0x8}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x2d, 0xfa}, 0x20) 10:50:42 executing program 3: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$SO_BINDTODEVICE_wg(r0, 0x1, 0x19, &(0x7f00000000c0)='wg1\x00', 0x4) setsockopt$sock_int(r0, 0x1, 0x6, &(0x7f0000000140)=0x32, 0x4) connect$inet(r0, &(0x7f00000002c0)={0x2, 0x0, @broadcast}, 0x10) 10:50:42 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x9, [@struct={0x8}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x2d, 0xfa}, 0x20) 10:50:42 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') r0 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xa) setresuid(r1, 0x0, 0x0) exit_group(0x0) fchmodat(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x0) 10:50:42 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0xffffffffffffffff, 0x0, 0x0, 0x0, 0x200000201, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r3, &(0x7f0000000040)=ANY=[], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0) r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000000)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={0xffffffffffffffff}, 0x111}}, 0x20) write$RDMA_USER_CM_CMD_REJECT(0xffffffffffffffff, &(0x7f0000000200)={0x9, 0x108, 0xfa00, {r5, 0x0, "651eb8", "d374abb4ebf1cb57915efa70c2915c6b95511b2d14e6a698b0b557d7c0b7a5b585a7ca54802977eff6c96f352a4b86b610b537ddf1478058f47c87199dd825eaa3d19eb6054a683725b41b3b98e571f1df5edbf719976838cefaa2e707169fdfa999d6d8d0366fa435f7d050386b62f9b86a9124291719f7f8309d397f41afb2be53af2f86a5ee29c9a633cbf664f1d091ec87942d3bc1dbe01173644e8e5397099aad03f86219b4cf57bfceb9a9e0454a933bea6fbdf6018c3ff59ba8918ddf27f7122143020b3389a2905405dddcedd619a47bcd19e1148ec501b51da9bfabe0c19ec83c2965a17a2a75a1d6d50ea0aa9c4ee132785927cf4907d34b4f3663"}}, 0x110) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:50:42 executing program 0: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f00000004c0)=ANY=[]) chdir(&(0x7f0000000000)='./file1\x00') r0 = open(&(0x7f00000000c0)='./bus\x00', 0x1071fe, 0x0) writev(r0, &(0x7f0000001700)=[{&(0x7f0000000180)="1986e95304d628cc0acb3809260000000000000000", 0x15}, {&(0x7f0000001840)="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", 0x179}, {&(0x7f0000000440)="a84a407c7ed18cd70f8e7cac5f533aa0361007b27e23cdda355ab8367ad9d0f28aae22185335c1b2d3b0de098e85f2c58ebd94aae03ef1f35095eeb6a82c96f41506e091b2405bfb0c99a0fb6673963c47088635e0811943d314b8391a93c333c6e1cb7a256bfd72839b8b409649bc5b26d35d5a80d5ffd2fa015593182056a02e90110eb7244318a478e3e550bca13785b10d22be5ef9f44ca17ed49fe9f6f4f6d626d80de9ea3581b1224bd31262573480c76cd35a38fcfa07f38a90d002cc21f78735afc3c1e641c0c4942fc306bccc0fe2d995729738d1331ae6952c9ffa927d75", 0xe3}, {&(0x7f0000000540)="081291bd8738fb2ebc277d6e54042f36eb77ff661bb4a656c3f295dbbffa86c112800eb4b60685b2f1e638c5d64571155a86c7e6015185c0087700eaeb306217d9e7385011cd1d7e63f206df62c147178f81c91230b8dcf09f874693d62cbffac4da47556ce3a6c9e6cd9d5d4a085ebd0b93043255f1fb570fd1e61f629693c7f062ae0425a5c96ef55df981a0987e01e9ee92844bc6486ebf5e9c98698bd45b1a36d1812c49624df5e2afae46ef38bd92d194e24915d297bcd37aac9fb6eb621597ada124d13de9b07b704ae00882b1ed6d4a", 0xd3}, {&(0x7f0000000200)="c5f4b8a5364aef26d4693ed7af7edd8f99db087b8278702f737dbedddc696f73e35691dc6889d48eda1580badcadb04626a38b927bf1e6201d56d938c287585109849c154d964bcf0db668b725667f1a6904e97230ef4af1affe0ef769025c08f2c537c2624c2bf04c", 0x69}, {0x0}, {&(0x7f0000000640)="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", 0x754}], 0x7) sendfile(r0, r0, &(0x7f00000001c0), 0x8080fffffffe) 10:50:42 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x9, [@struct={0x8}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000300)=""/250, 0x2d, 0xfa}, 0x20) 10:50:42 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="2ea4000038000538d25a802a8c63940d0324fc6010000a400a000048053582c137153e370948018000f01700d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0x7}, 0x7a000000) 10:50:42 executing program 3: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsa\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) r4 = dup(r3) dup2(r4, r2) 10:50:43 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') r0 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xa) setresuid(r1, 0x0, 0x0) exit_group(0x0) fchmodat(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x0) 10:50:43 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5ca], 0x10000}) mq_notify(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0, @thr={&(0x7f0000000040)="672a17f6b5d1b3", 0x0}}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 472.795985][ T32] audit: type=1800 audit(1595155843.260:31): pid=12880 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=16366 res=0 10:50:43 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f00000004c0)=ANY=[]) chdir(&(0x7f0000000000)='./file1\x00') r0 = open(&(0x7f00000000c0)='./bus\x00', 0x1071fe, 0x0) writev(r0, &(0x7f0000001700)=[{&(0x7f0000000180)="1986e95304d628cc0acb3809260000000000000000", 0x15}, {&(0x7f0000001840)="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", 0x179}, {&(0x7f0000000440)="a84a407c7ed18cd70f8e7cac5f533aa0361007b27e23cdda355ab8367ad9d0f28aae22185335c1b2d3b0de098e85f2c58ebd94aae03ef1f35095eeb6a82c96f41506e091b2405bfb0c99a0fb6673963c47088635e0811943d314b8391a93c333c6e1cb7a256bfd72839b8b409649bc5b26d35d5a80d5ffd2fa015593182056a02e90110eb7244318a478e3e550bca13785b10d22be5ef9f44ca17ed49fe9f6f4f6d626d80de9ea3581b1224bd31262573480c76cd35a38fcfa07f38a90d002cc21f78735afc3c1e641c0c4942fc306bccc0fe2d995729738d1331ae6952c9ffa927d75", 0xe3}, {&(0x7f0000000540)="081291bd8738fb2ebc277d6e54042f36eb77ff661bb4a656c3f295dbbffa86c112800eb4b60685b2f1e638c5d64571155a86c7e6015185c0087700eaeb306217d9e7385011cd1d7e63f206df62c147178f81c91230b8dcf09f874693d62cbffac4da47556ce3a6c9e6cd9d5d4a085ebd0b93043255f1fb570fd1e61f629693c7f062ae0425a5c96ef55df981a0987e01e9ee92844bc6486ebf5e9c98698bd45b1a36d1812c49624df5e2afae46ef38bd92d194e24915d297bcd37aac9fb6eb621597ada124d13de9b07b704ae00882b1ed6d4a", 0xd3}, {&(0x7f0000000200)="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", 0x123}, {&(0x7f00000019c0)="b83780df45b3eea14298de5cc4dbe209ac05f43fb65da930509809ee1d1ac64e838a66cd9411adce83ccb2de22249520eec35b86bee190efbd1614c87725f0cad65a9fb37a14328f80ac8e18dedac8daea951b2181deb44436f846e2eed1e0b960a226bc663b9f7f99607f0c1c9af3cd40b4bc9e718dd94b3b344e1c314249c9c54f6bcbc038d576f8410ae8903ff92f93b99e6a35deb08969d304db01e17f3705a5e8ac65da3e64001c775d3cc4057380237008d6c837d612201b8b0290cac526a6633f2d4397fde6390a988c912f95728b2137c0c2b92c151adb43ea8a483288cf612238b04c9a3d1b9a62b953fecf0b53d88b5b0e5b6ab460b91c7f9239d95266fef065bb7f1bf37b20057f9f2b731b9e7940a3d9e3b2a7ff65ed3f9d7054a0e5d628599df2d5cf4a2b866370569b57951b2454cc0ddc8aaa4920332653cc0b65c2c2a17387e6b3b0abf08871acb2dd576954698199e48067e453ee234bde34715d0122d264744daef931cd1e34f89248da77ce33591de28c675e6edde10b5cc17dcfcf2a6ac9eac27ae2f25d02448ea096c137a3de9f5c", 0x199}, {&(0x7f0000000640)="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", 0xa00}], 0x7) sendfile(r0, r0, &(0x7f00000001c0)=0xa00, 0x8080fffffffe) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) 10:50:43 executing program 3: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) r1 = socket$inet6(0xa, 0x3, 0x7b) dup2(r1, r0) 10:50:43 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000440)='ethtool\x00') sendmsg$ETHTOOL_MSG_STRSET_GET(r2, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f00000002c0)=ANY=[@ANYBLOB="18000000", @ANYRES16=r3, @ANYBLOB="0307000300fffffcfe000600000004000180"], 0x18}}, 0x0) 10:50:43 executing program 0: perf_event_open(&(0x7f00000002c0)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$nl_route(0x10, 0x3, 0x0) socket$inet_udp(0x2, 0x2, 0x0) r0 = perf_event_open(&(0x7f00000002c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x800000000000002, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x1}, 0x1c) sendmmsg(r1, &(0x7f0000006d00)=[{{0x0, 0x1002000, 0x0, 0x0, 0x0, 0x0, 0x3800}}], 0xc6, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000200)=ANY=[@ANYRESHEX=r0], 0x384) setsockopt$netlink_NETLINK_BROADCAST_ERROR(0xffffffffffffffff, 0x10e, 0x4, &(0x7f0000000100)=0x3, 0x4) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ethtool(&(0x7f0000000440)='ethtool\x00') sendmsg$ETHTOOL_MSG_LINKMODES_SET(r3, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) getsockname$packet(r5, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000140)=0x14) sendmsg$ETHTOOL_MSG_STRSET_GET(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0xd8001100}, 0xc, 0x0}, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0) 10:50:43 executing program 5: r0 = syz_open_dev$usbfs(&(0x7f0000000080)='/dev/bus/usb/00#/00#\x00', 0x77, 0x101001) ioctl$USBDEVFS_IOCTL(r0, 0x40085511, 0x0) 10:50:43 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') r0 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xa) setresuid(r1, 0x0, 0x0) exit_group(0x0) fchmodat(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x0) [ 473.477841][ T32] audit: type=1800 audit(1595155843.940:32): pid=12901 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=3 res=0 10:50:44 executing program 3: r0 = syz_open_dev$usbfs(&(0x7f0000000080)='/dev/bus/usb/00#/00#\x00', 0x77, 0x101001) ioctl$USBDEVFS_IOCTL(r0, 0x5521, 0x0) 10:50:44 executing program 5: syz_mount_image$xfs(&(0x7f00000000c0)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000001600)={[{@largeio='largeio'}]}) 10:50:44 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001}) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$sock_inet_SIOCSIFADDR(r2, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @empty}}) ioctl$TUNSETVNETBE(r0, 0x400454de, &(0x7f0000000000)=0x10001) write$tun(r0, &(0x7f0000000200)={@void, @val={0x3}, @mpls={[], @ipv6=@icmpv6={0x0, 0x6, "9eef7b", 0x8, 0x2f, 0x0, @empty, @mcast2, {[], @echo_request}}}}, 0xfdef) 10:50:44 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') r1 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xa) setresuid(r2, 0x0, 0x0) exit_group(0x0) fchmodat(r0, 0x0, 0x0) 10:50:44 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f00000004c0)=ANY=[]) chdir(&(0x7f0000000000)='./file1\x00') r0 = open(&(0x7f00000000c0)='./bus\x00', 0x1071fe, 0x0) writev(r0, &(0x7f0000001700)=[{&(0x7f0000000180)="1986e95304d628cc0acb3809260000000000000000", 0x15}, {&(0x7f0000001840)="f09c3baad7590f5de76f486b3110ed9054629ac6bbbecc04dc7df12000b03b08d776a24171952e7adb4536ff862bf4ce34d48c0f7fb6dd29066d8d7c3ed032ed47ff314226eea8c8a3b79eb8558353694ac6847c530ae1aaa404831505ee6a0af1e2554d01ca28b9010e05dab577e905090a05ae6180e8fac4b9fcf79aa9abdfb4928b1f9b7af1b545a2e9810b79955f9177ec98e87370cee181d02631c9d0190e56df90a8f82a1539cefdfa31892e3c08a84a04d4a0f05f31766d5e36fe389abce5ed758b150bc43bef9ab8ef76a8decad800761d2fda1d21728de55cc09c01664e4eeb1b44335ea7abcc04f5ce6036e126754130921a9d1660dbd833bec6eb961f27ab0105ca095074006bfb5778b4cb65acc28257e3f1139df6664719d30a25168875371159dbf057f3f0d4816cc92c22eb0b8ba28986c43467d40dcf35c4fdbc7b8a0f6c203b33957b0e867dd8c4e7432534eccdef6c71950dc7d32bcfa531fca07d2f3f26d4389993565426c952e940339486abe0437b", 0x179}, {&(0x7f0000000440)="a84a407c7ed18cd70f8e7cac5f533aa0361007b27e23cdda355ab8367ad9d0f28aae22185335c1b2d3b0de098e85f2c58ebd94aae03ef1f35095eeb6a82c96f41506e091b2405bfb0c99a0fb6673963c47088635e0811943d314b8391a93c333c6e1cb7a256bfd72839b8b409649bc5b26d35d5a80d5ffd2fa015593182056a02e90110eb7244318a478e3e550bca13785b10d22be5ef9f44ca17ed49fe9f6f4f6d626d80de9ea3581b1224bd31262573480c76cd35a38fcfa07f38a90d002cc21f78735afc3c1e641c0c4942fc306bccc0fe2d995729738d1331ae6952c9ffa927d75", 0xe3}, {&(0x7f0000000540)="081291bd8738fb2ebc277d6e54042f36eb77ff661bb4a656c3f295dbbffa86c112800eb4b60685b2f1e638c5d64571155a86c7e6015185c0087700eaeb306217d9e7385011cd1d7e63f206df62c147178f81c91230b8dcf09f874693d62cbffac4da47556ce3a6c9e6cd9d5d4a085ebd0b93043255f1fb570fd1e61f629693c7f062ae0425a5c96ef55df981a0987e01e9ee92844bc6486ebf5e9c98698bd45b1a36d1812c49624df5e2afae46ef38bd92d194e24915d297bcd37aac9fb6eb621597ada124d13de9b07b704ae00882b1ed6d4a", 0xd3}, {&(0x7f0000000200)="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", 0x123}, {&(0x7f00000019c0)="b83780df45b3eea14298de5cc4dbe209ac05f43fb65da930509809ee1d1ac64e838a66cd9411adce83ccb2de22249520eec35b86bee190efbd1614c87725f0cad65a9fb37a14328f80ac8e18dedac8daea951b2181deb44436f846e2eed1e0b960a226bc663b9f7f99607f0c1c9af3cd40b4bc9e718dd94b3b344e1c314249c9c54f6bcbc038d576f8410ae8903ff92f93b99e6a35deb08969d304db01e17f3705a5e8ac65da3e64001c775d3cc4057380237008d6c837d612201b8b0290cac526a6633f2d4397fde6390a988c912f95728b2137c0c2b92c151adb43ea8a483288cf612238b04c9a3d1b9a62b953fecf0b53d88b5b0e5b6ab460b91c7f9239d95266fef065bb7f1bf37b20057f9f2b731b9e7940a3d9e3b2a7ff65ed3f9d7054a0e5d628599df2d5cf4a2b866370569b57951b2454cc0ddc8aaa4920332653cc0b65c2c2a17387e6b3b0abf08871acb2dd576954698199e48067e453ee234bde34715d0122d264744daef931cd1e34f89248da77ce33591de28c675e6edde10b5cc17dcfcf2a6ac9eac27ae2f25d02448ea096c137a3de9f5c", 0x199}, {&(0x7f0000000640)="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", 0xa00}], 0x7) sendfile(r0, r0, &(0x7f00000001c0)=0xa00, 0x8080fffffffe) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) 10:50:45 executing program 3: r0 = syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0x0, 0x2) ioctl$VIDIOC_G_SLICED_VBI_CAP(r0, 0xc0745645, &(0x7f00000000c0)) [ 474.750176][T12935] XFS (loop5): Invalid superblock magic number 10:50:45 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') r1 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xa) setresuid(r2, 0x0, 0x0) exit_group(0x0) fchmodat(r0, 0x0, 0x0) 10:50:45 executing program 2: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f00000004c0)=ANY=[]) chdir(&(0x7f0000000000)='./file1\x00') r0 = open(&(0x7f00000000c0)='./bus\x00', 0x1071fe, 0x0) writev(r0, &(0x7f0000001700)=[{&(0x7f0000000180)="1986e95304d628cc0acb3809260000000000000000", 0x15}, {&(0x7f0000001840)="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", 0x179}, {&(0x7f0000000440)="a84a407c7ed18cd70f8e7cac5f533aa0361007b27e23cdda355ab8367ad9d0f28aae22185335c1b2d3b0de098e85f2c58ebd94aae03ef1f35095eeb6a82c96f41506e091b2405bfb0c99a0fb6673963c47088635e0811943d314b8391a93c333c6e1cb7a256bfd72839b8b409649bc5b26d35d5a80d5ffd2fa015593182056a02e90110eb7244318a478e3e550bca13785b10d22be5ef9f44ca17ed49fe9f6f4f6d626d80de9ea3581b1224bd31262573480c76cd35a38fcfa07f38a90d002cc21f78735afc3c1e641c0c4942fc306bccc0fe2d995729738d1331ae6952c9ffa927d75", 0xe3}, {&(0x7f0000000540)="081291bd8738fb2ebc277d6e54042f36eb77ff661bb4a656c3f295dbbffa86c112800eb4b60685b2f1e638c5d64571155a86c7e6015185c0087700eaeb306217d9e7385011cd1d7e63f206df62c147178f81c91230b8dcf09f874693d62cbffac4da47556ce3a6c9e6cd9d5d4a085ebd0b93043255f1fb570fd1e61f629693c7f062ae0425a5c96ef55df981a0987e01e9ee92844bc6486ebf5e9c98698bd45b1a36d1812c49624df5e2afae46ef38bd92d194e24915d297bcd37aac9fb6eb621597ada124d13de9b07b704ae00882b1ed6d4a", 0xd3}, {&(0x7f0000000200)="c5f4b8a5364aef26d4693ed7af7edd8f99db087b8278702f737dbedddc696f73e35691dc6889d48eda1580badcadb04626a38b927bf1e6201d56d938c287585109849c154d964bcf0db668b725667f1a6904e97230ef4af1affe0ef769025c08f2c537c2624c2bf04c546d365d403282fe7a60d54e9375daca32c629a5fc20325357c948970ba2e1cad6edcbb355d265e462f1bf32c0c76ee08054ee0bcecc709c19e76f70aa580454974a1f9a59e56cba8eb18ea0a484b23fb99b8a4a969cabd88ce9124cb56e3255becde80c0a862125b14d015801b6db25b1b9ae046b882abb43", 0xe2}, {&(0x7f0000000640)="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", 0x6db}], 0x6) sendfile(r0, r0, &(0x7f00000001c0)=0xa00, 0x8080fffffffe) 10:50:45 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 475.399582][ T32] audit: type=1800 audit(1595155845.860:33): pid=12953 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=4 res=0 10:50:46 executing program 0: 10:50:46 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') r1 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xa) setresuid(r2, 0x0, 0x0) exit_group(0x0) fchmodat(r0, 0x0, 0x0) 10:50:46 executing program 3: [ 475.773463][ T32] audit: type=1800 audit(1595155846.230:34): pid=12965 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="loop2" ino=5 res=0 10:50:46 executing program 2: 10:50:46 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f00000004c0)=ANY=[]) chdir(&(0x7f0000000000)='./file1\x00') r0 = open(&(0x7f00000000c0)='./bus\x00', 0x1071fe, 0x0) writev(r0, &(0x7f0000001700)=[{&(0x7f0000000180)="1986e95304d628cc0acb3809260000000000000000", 0x15}, {&(0x7f0000001840)="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", 0x179}, {&(0x7f0000000440)="a84a407c7ed18cd70f8e7cac5f533aa0361007b27e23cdda355ab8367ad9d0f28aae22185335c1b2d3b0de098e85f2c58ebd94aae03ef1f35095eeb6a82c96f41506e091b2405bfb0c99a0fb6673963c47088635e0811943d314b8391a93c333c6e1cb7a256bfd72839b8b409649bc5b26d35d5a80d5ffd2fa015593182056a02e90110eb7244318a478e3e550bca13785b10d22be5ef9f44ca17ed49fe9f6f4f6d626d80de9ea3581b1224bd31262573480c76cd35a38fcfa07f38a90d002cc21f78735afc3c1e641c0c4942fc306bccc0fe2d995729738d1331ae6952c9ffa927d75", 0xe3}, {&(0x7f0000000540)="081291bd8738fb2ebc277d6e54042f36eb77ff661bb4a656c3f295dbbffa86c112800eb4b60685b2f1e638c5d64571155a86c7e6015185c0087700eaeb306217d9e7385011cd1d7e63f206df62c147178f81c91230b8dcf09f874693d62cbffac4da47556ce3a6c9e6cd9d5d4a085ebd0b93043255f1fb570fd1e61f629693c7f062ae0425a5c96ef55df981a0987e01e9ee92844bc6486ebf5e9c98698bd45b1a36d1812c49624df5e2afae46ef38bd92d194e24915d297bcd37aac9fb6eb621597ada124d13de9b07b704ae00882b1ed6d4a", 0xd3}, {&(0x7f0000000200)="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", 0x123}, {&(0x7f00000019c0)="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", 0x199}, {&(0x7f0000000640)="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", 0xa00}], 0x7) sendfile(r0, r0, &(0x7f00000001c0)=0xa00, 0x8080fffffffe) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) 10:50:46 executing program 1: 10:50:46 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:50:46 executing program 0: 10:50:46 executing program 3: perf_event_open(&(0x7f00000000c0)={0x2, 0x70, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(0x0) socket$inet_udp(0x2, 0x2, 0x0) write(0xffffffffffffffff, 0x0, 0x0) write$binfmt_misc(0xffffffffffffffff, 0x0, 0xfffffecc) r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nvram\x00', 0x0, 0x0) r1 = socket(0x11, 0x800000003, 0x0) dup3(r0, r1, 0x0) read$eventfd(0xffffffffffffffff, 0x0, 0x0) 10:50:47 executing program 2: [ 476.825432][ T32] audit: type=1800 audit(1595155847.290:35): pid=12993 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=6 res=0 10:50:47 executing program 1: 10:50:47 executing program 1: 10:50:47 executing program 0: 10:50:47 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:50:47 executing program 2: 10:50:47 executing program 3: 10:50:48 executing program 4: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f00000004c0)=ANY=[]) chdir(&(0x7f0000000000)='./file1\x00') r0 = open(&(0x7f00000000c0)='./bus\x00', 0x1071fe, 0x0) writev(r0, &(0x7f0000001700)=[{&(0x7f0000000180)="1986e95304d628cc0acb3809260000000000000000", 0x15}, {&(0x7f0000001840)="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", 0x179}, {&(0x7f0000000440)="a84a407c7ed18cd70f8e7cac5f533aa0361007b27e23cdda355ab8367ad9d0f28aae22185335c1b2d3b0de098e85f2c58ebd94aae03ef1f35095eeb6a82c96f41506e091b2405bfb0c99a0fb6673963c47088635e0811943d314b8391a93c333c6e1cb7a256bfd72839b8b409649bc5b26d35d5a80d5ffd2fa015593182056a02e90110eb7244318a478e3e550bca13785b10d22be5ef9f44ca17ed49fe9f6f4f6d626d80de9ea3581b1224bd31262573480c76cd35a38fcfa07f38a90d002cc21f78735afc3c1e641c0c4942fc306bccc0fe2d995729738d1331ae6952c9ffa927d75", 0xe3}, {&(0x7f0000000540)="081291bd8738fb2ebc277d6e54042f36eb77ff661bb4a656c3f295dbbffa86c112800eb4b60685b2f1e638c5d64571155a86c7e6015185c0087700eaeb306217d9e7385011cd1d7e63f206df62c147178f81c91230b8dcf09f874693d62cbffac4da47556ce3a6c9e6cd9d5d4a085ebd0b93043255f1fb570fd1e61f629693c7f062ae0425a5c96ef55df981a0987e01e9ee92844bc6486ebf5e9c98698bd45b1a36d1812c49624df5e2afae46ef38bd92d194e24915d297bcd37aac9fb6eb621597ada124d13de9b07b704ae00882b1ed6d4a", 0xd3}, {&(0x7f0000000200)="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", 0x123}, {&(0x7f00000019c0)="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", 0x199}, {&(0x7f0000000640)="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", 0xa00}], 0x7) sendfile(r0, r0, &(0x7f00000001c0)=0xa00, 0x8080fffffffe) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) 10:50:48 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:50:48 executing program 0: 10:50:48 executing program 2: 10:50:48 executing program 1: 10:50:48 executing program 3: 10:50:48 executing program 0: 10:50:48 executing program 2: 10:50:48 executing program 1: [ 478.314929][ T32] audit: type=1800 audit(1595155848.780:36): pid=13024 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=7 res=0 10:50:49 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:50:49 executing program 3: 10:50:49 executing program 4: 10:50:49 executing program 0: 10:50:49 executing program 1: 10:50:49 executing program 2: 10:50:49 executing program 3: 10:50:49 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:50:49 executing program 1: 10:50:49 executing program 4: 10:50:49 executing program 0: 10:50:49 executing program 2: 10:50:50 executing program 3: 10:50:50 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:50:50 executing program 1: 10:50:50 executing program 0: 10:50:50 executing program 4: 10:50:50 executing program 2: 10:50:50 executing program 3: 10:50:50 executing program 1: 10:50:50 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:50:50 executing program 0: 10:50:50 executing program 2: 10:50:51 executing program 3: 10:50:51 executing program 4: 10:50:51 executing program 1: 10:50:51 executing program 0: 10:50:51 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:50:51 executing program 2: 10:50:51 executing program 3: 10:50:51 executing program 4: 10:50:51 executing program 1: 10:50:51 executing program 2: 10:50:51 executing program 0: 10:50:52 executing program 3: 10:50:52 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:50:52 executing program 4: 10:50:52 executing program 1: 10:50:52 executing program 2: 10:50:52 executing program 3: 10:50:52 executing program 1: 10:50:52 executing program 0: 10:50:52 executing program 4: 10:50:52 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:50:53 executing program 3: 10:50:53 executing program 2: 10:50:53 executing program 1: 10:50:53 executing program 0: 10:50:53 executing program 4: 10:50:53 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:50:53 executing program 3: 10:50:53 executing program 2: 10:50:53 executing program 1: 10:50:53 executing program 0: 10:50:53 executing program 4: 10:50:53 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:50:54 executing program 3: 10:50:54 executing program 2: 10:50:54 executing program 1: 10:50:54 executing program 4: 10:50:54 executing program 0: 10:50:54 executing program 2: 10:50:54 executing program 1: 10:50:54 executing program 3: 10:50:54 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) dup(r3) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:50:54 executing program 0: 10:50:54 executing program 4: 10:50:55 executing program 2: 10:50:55 executing program 3: 10:50:55 executing program 1: 10:50:55 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:50:55 executing program 4: 10:50:55 executing program 0: 10:50:55 executing program 3: 10:50:55 executing program 2: 10:50:55 executing program 1: 10:50:55 executing program 4: 10:50:56 executing program 0: 10:50:56 executing program 3: 10:50:56 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:50:56 executing program 2: 10:50:56 executing program 4: 10:50:56 executing program 1: 10:50:56 executing program 3: 10:50:56 executing program 0: 10:50:56 executing program 2: 10:50:56 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:50:56 executing program 4: 10:50:56 executing program 1: 10:50:56 executing program 3: 10:50:57 executing program 0: 10:50:57 executing program 2: 10:50:57 executing program 4: 10:50:57 executing program 1: 10:50:57 executing program 3: 10:50:57 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 10:50:57 executing program 0: 10:50:57 executing program 2: 10:50:57 executing program 4: 10:50:57 executing program 3: 10:50:57 executing program 1: 10:50:58 executing program 0: 10:50:58 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 10:50:58 executing program 2: 10:50:58 executing program 4: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:50:58 executing program 1: dup(0xffffffffffffffff) close(0xffffffffffffffff) clone(0x2000000002000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000700)=@raw={'raw\x00', 0x3c1, 0x3, 0x410, 0x258, 0x4000000, 0x158, 0x0, 0x0, 0x340, 0x240, 0x240, 0x340, 0x240, 0x3, 0x0, {[{{@uncond=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6], 0x0, 0x230, 0x258, 0x0, {}, [@common=@inet=@tcp={{0x30, 'tcp\x00'}}, @common=@inet=@hashlimit3={{0x158, 'hashlimit\x00'}, {'caif0\x00', {0x1, 0x0, 0x50, 0x0, 0x0, 0x8, 0x1}}}]}, @common=@inet=@TCPMSS={0x28, 'TCPMSS\x00'}}, {{@uncond, 0x0, 0xa8, 0xe8}, @common=@inet=@TCPOPTSTRIP={0x40, 'TCPOPTSTRIP\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x470) 10:50:58 executing program 3: r0 = syz_open_dev$vbi(&(0x7f0000000040)='/dev/vbi#\x00', 0x1, 0x2) ioctl$VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000400)={0x81, 0x0, 0x2}) prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r1 = getpid() sched_setattr(r1, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r2 = socket$inet6(0xa, 0x3, 0x0) sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(0xffffffffffffffff, &(0x7f0000001300)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) sendmsg$DEVLINK_CMD_TRAP_POLICER_GET(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, 0x0}, 0x0) recvmmsg(r2, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) perf_event_open(&(0x7f0000000100)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3, 0x3}, 0x20, 0x0, 0x0, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000bc0)=ANY=[@ANYBLOB="b702000000000000bfa30000000000004503000000fefff67a0af0ffe8ffffff79a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001000100b7050000220000006a0a00fe00000000850000000b000000b70000004dc50000950000000000000089c81f20273d16b72eb83ec5a348a90123fd8c27b090941bd3108d3128780100002dbecace7e0f6ab2366e8a87554c101f03733d40c62753ecd16a176e9ce28306b13b839dfc8a96ec60f2af473a2b598eb0f82ba602f2b02dc245f99358e43836ba33fd5a447f936e000755861103bb45e5d53c9fe36bbd35e53c6376c0c2b1daa58a9c34444bb7e9673476d017fc94c5857eada71db6cd370e93b6d5a74cd5c8c50896249ed7420f8680a730d876c36a1f3f1b8eb12d9390a49f2d99b5df916269392e0d0000556ef8c9969baa463b36d25ac1628ef858a5cc77c14c8df67f20fd224829af6de3d5ef71857496714db96c6db18ea5189cfbddd6e4de3617adabc339334b97b11910905d6692a33f1f370c05a1f134e5f90a326b0cb5268e40f5ba9b8fedfd316b2ea30fcca8b30faa8343c77588ccc3f87f05e5d1af657c445131edb61670ff2c62117e96eba22382758239e69127b01bd9c6fabf4f4d035ad5656e63bf02af42a5ac113879bfc27d7e6ba1f41301065efb1685e65f30df092051d556a89c2886ea64bc457280330dc9cdb6adf43433e9ba97796a7823d241795ab1258fec37312fc5e921e8758153be202ffca155a4921970e28e015133a413ae58fa7500fe6238580101b710cf8b82bcab02c12fe01bd8df4e97c67e8a3693b23668c55eed4e24eafa16a4f43b6729990a9321531e5eb006b547c13cdfa2fa211d07a29377ea1c5aa7f5d58331ad45fc89ac44c9d2d6b3ac03ce76fc9d341f076264f8cf493901ad919329a295f63be4e91417b9cd080047272d46664571f24d71fcff2a9e869c2144f5775c8ab94acc57b5793f25f853f7a98965e5bd9ff5253f787eb321572355c706d6d2e27c475fd077876a4405b72b00000000000000b79d8029af8de217c23f79e68fe48420cbb226a7b21af70ee2200cf800000000000000000000299d76f86ea34beab580568c536774f2a445c60c532204878ff46d64753b4761e5ec4c3a76fdcc1ee11f3406211e6647b8b6dfa067ba3e427de4161dcf45a00686d4e2c75d26100cfbcd595cdf4ef01d32c6773ed7ef47fa1cabd56056df179d25cf820000000000000000000000000045b571f5fa9929e6ec1b6e06258664305152074aa0554a576966f56ea2bedf0ff124b6b13ac5f87315a298"], &(0x7f0000000340)='GPL\x00'}, 0x48) 10:50:58 executing program 2: r0 = socket$phonet(0x23, 0x2, 0x1) ioctl$sock_SIOCINQ(r0, 0x541b, &(0x7f0000000040)) 10:50:58 executing program 0: 10:50:58 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 10:50:58 executing program 1: 10:50:59 executing program 0: sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB='H\x00\x00\x00,\x00\'\r\x00'/20, @ANYRES32, @ANYBLOB="000000000001"], 0x48}}, 0x0) r2 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r2, &(0x7f0000000200)=[{0x6, 0x0, &(0x7f0000000100), 0x9, &(0x7f00000005c0)=[@iv={0x0, 0x117, 0x2, 0x0, "15dc91768c78ba00960b7a5e4e7907526d7c7c8aee968a562b00cb905e1826a8f9ee0ac480576a7134801fc070041984c5c23fa0f93b59075853f70545ce9c61b15ff65cde5078b4209217f0220f0810f739bd470d405272edb16434a11869d08d8fef065de94710ee553b410c3c02a96c156836af8d11c4af4a77e766f9ed8ec43830fe02bb22babf9b41d4e5027b49ba3f720465bf4ee9b63892030f4fea97d94bc6cd1a7d4d6869cb3185e5da3ca0da"}, @op, @assoc, @assoc, @op, @op]}], 0x4924924924924b3, 0x0) 10:50:59 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setresuid(0x0, r1, 0x0) prctl$PR_SET_SECUREBITS(0x1c, 0x0) 10:50:59 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:50:59 executing program 1: r0 = socket$rds(0x15, 0x5, 0x0) r1 = dup(r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) bind$rds(r1, &(0x7f0000000080)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10) 10:50:59 executing program 4: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:50:59 executing program 0: r0 = socket$inet6(0xa, 0x3, 0xff) setsockopt$inet6_int(r0, 0x29, 0x18, 0x0, 0x0) 10:50:59 executing program 2: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet6(0xa, 0x3, 0xff) getsockopt$inet6_int(r2, 0x29, 0x12, 0x0, &(0x7f0000000300)=0x24) [ 489.409182][T13260] RDS: rds_bind could not find a transport for ::ffff:172.30.0.2, load rds_tcp or rds_rdma? 10:51:00 executing program 3: r0 = mq_open(&(0x7f0000000000)='(\x00', 0x0, 0x0, 0x0) lseek(r0, 0x6, 0x1) 10:51:00 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:51:00 executing program 1: r0 = syz_open_dev$vbi(&(0x7f0000000040)='/dev/vbi#\x00', 0x1, 0x2) ioctl$VIDIOC_REQBUFS(r0, 0xc0145608, 0x0) prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) getpid() socket$inet6(0xa, 0x3, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) write(r1, 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00'}, 0x48) 10:51:00 executing program 0: r0 = socket$l2tp(0x2, 0x2, 0x73) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000240)={'batadv0\x00'}) 10:51:00 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x8000, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) write$binfmt_elf64(r0, &(0x7f0000000280)=ANY=[], 0xcc) recvmmsg(r0, &(0x7f0000008880), 0x45b, 0x44000102, 0x0) 10:51:00 executing program 4: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54020000005d564c90c200", 0x18) r1 = accept4(r0, 0x0, 0x0, 0x0) sendmsg$DEVLINK_CMD_PORT_SPLIT(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)={0x14}, 0x14}}, 0x0) sendmmsg$alg(r1, &(0x7f0000004e40)=[{0x0, 0x0, 0x0}], 0x1, 0x0) [ 490.481546][T13276] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. 10:51:01 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() ioctl$BLKPBSZGET(0xffffffffffffffff, 0x127b, &(0x7f0000000100)) sched_setattr(r0, &(0x7f0000000040)={0x38, 0x1, 0x0, 0x0, 0x5}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000000840)=[{{&(0x7f00000002c0)=@qipcrtr, 0x80, 0x0, 0x0, &(0x7f0000000780)=""/149, 0x95}}], 0x1, 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$UI_SET_ABSBIT(r2, 0x40045567, 0x0) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000240)='nl80211\x00') r4 = socket$inet6_udp(0xa, 0x2, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_inet6_SIOCSIFADDR(r4, 0x89a1, &(0x7f00000000c0)={@local={0xfe, 0x80, [0x600, 0x3ef, 0x0, 0x3f00000000000000, 0x100000000000000, 0x0, 0x1103, 0x0, 0x0, 0x0, 0x0, 0x6]}}) ioctl$sock_inet6_SIOCADDRT(r4, 0x89a0, &(0x7f00000005c0)={@local={0xfe, 0x80, [0x0, 0xfeff0000]}, @ipv4={[], [], @loopback}, @local}) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0) 10:51:01 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:51:01 executing program 3: r0 = syz_open_dev$vbi(&(0x7f0000000040)='/dev/vbi#\x00', 0x1, 0x2) ioctl$VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000400)={0x81, 0x5, 0x2}) ioctl$VIDIOC_QBUF(r0, 0xc058560f, &(0x7f0000000140)={0x0, 0x5, 0x4, 0x0, 0x0, {0x0, 0x2710}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "bc4c74c7"}, 0x0, 0x2, @planes=&(0x7f0000000000)={0x0, 0x0, @fd}, 0xff00}) 10:51:01 executing program 2: r0 = socket$pppl2tp(0x18, 0x1, 0x1) r1 = socket$inet6_udp(0xa, 0x2, 0x0) connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x0, @dev}, 0x2}}, 0x2e) sendmmsg(r0, &(0x7f0000000280)=[{{0x0, 0x7000000, 0x0, 0x0, 0x0, 0x0, 0xfffffff5}, 0xfffffff5}], 0x400000000000085, 0x0) 10:51:01 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x2008200cbfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r2 = memfd_create(&(0x7f0000000280)='\x19[\x83s{\x96\x02y\xd0\x96\x8dS_\x86\xeb\x02Y\x1c\xc9\x05\xe7 \xa9TG\xdd\xf7\xd4\xee\xbful\x14\xdaI\xca\xc4-G \xda\\\xea4\xcd\xcc\xd39HZ\xed-\x84D\x97y\xf8l9([VM3\xdb\x10\xe4\xcb\x10Q\xfe9\xccZ\a\x9b\x80\xee3\xa39\x1e!\xa6W\xf6\xf3\xaf\xefO&\xb6\x8e\xfd\x1e\xa8\xe28\xae\x9c\xeb\xbd&\xe5/\x99*\xe6K:\'/\xa2\xe8J\\\xfb\xd3fl\xff\xf4\xb0\xcf\x1e#\x00i+\xdb\xc9\x90\xe9\xf8?\xd7\xafF\x03\xbaQ\xe0\xad>\xa9H+V\x15\xb5\xa8j\xa6uq\xf8\x8b\x19kx\xa7@\x84\xdf\xaeZoneo\x8f\x972\xaf\xca]\x829(\v<\xc1}\xe71\x8de&\xaa\xca\x1c6\xe1m\xbcl\x94hE\xb6\xaa\x1a\xa0E\bS\xb5\x85\x9c\xec\xbe\xd3n/\xc2\xce\x97\x89\xe2h\x80ur\xfe\n\xf0X\xef\x88\xf5\xe4G\x0e#\xe4\xc0(\xdb\x15\xea\x8fe\xcdT5\xd3\xca\xc6(:\x16\x02C\x8aN:\xa8\xcc\xcb\xe6>[ \x7f\x9c\x1d\xb2B\xcd#\x9b \xc8\xcb\xa3[\xc3r', 0x0) write(r2, &(0x7f00000000c0)='i', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1000001, 0x11, r2, 0x0) r3 = inotify_init1(0x0) inotify_add_watch(r3, &(0x7f0000000040)='./control\x00', 0xa4000972) r4 = socket$inet(0x2, 0x4000000000000001, 0x0) getsockopt$inet_opts(r4, 0x0, 0x9, 0x0, &(0x7f0000000080)) 10:51:01 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000340)=@newlink={0x40, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_ADDRESS={0xa, 0x1, @local}, @IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @geneve={{0xb, 0x1, 'geneve\x00'}, {0x4}}}]}, 0x40}}, 0x0) 10:51:02 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r0, 0xae80, 0x0) ioctl$KVM_RUN(r0, 0xae80, 0x0) 10:51:02 executing program 3: r0 = socket$inet6(0xa, 0x3, 0xff) setsockopt$inet6_int(r0, 0x29, 0x18, &(0x7f0000000240), 0x4) 10:51:02 executing program 4: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001200)=ANY=[@ANYBLOB="5c0000000206010400000000000000000000000005000400000000000900020073797a30000000000c000780080013408000000405000500020000000500010006000000150003"], 0x5c}}, 0x0) 10:51:02 executing program 2: r0 = socket$alg(0x26, 0x5, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bind$alg(r0, &(0x7f0000000000)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_ctr_aes256\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0) 10:51:02 executing program 0: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/partitions\x00', 0x0, 0x0) lseek(r0, 0x1000000000800003, 0x0) 10:51:02 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x8000, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) write$binfmt_elf64(r0, &(0x7f0000000280)=ANY=[], 0xcc) 10:51:02 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r0, 0xae80, 0x0) ioctl$KVM_RUN(r0, 0xae80, 0x0) 10:51:02 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x220007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='westwood\x00', 0x9) sendto$inet(r0, &(0x7f00000012c0)="0c268a927f1f6588b967481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95c25a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x11, 0x0, 0x170) 10:51:02 executing program 4: r0 = memfd_create(&(0x7f0000000380)='\xb4$`\x9f|\xa2\xaf\xe6\xf3}a\xc2y\xd2\x86\xda\x10U \xa3w;=\xda\xcd\x06\x05\xd0ks9N\xa6\xbcy^JA-\xd9\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc1q\xc6\x13\xa9n\x16~\xebZ\x89\x9a\xfd\bz\xa5&9T\x89f4\xd7k[\xd5\x1cg?\x00'/89, 0x4) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x100000d, 0x20000005011, r0, 0x0) [ 492.290426][T13347] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. 10:51:03 executing program 0: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) lseek(r0, 0x1000000000800003, 0x0) 10:51:03 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r0, 0xae80, 0x0) ioctl$KVM_RUN(r0, 0xae80, 0x0) 10:51:03 executing program 1: r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0) r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0) ftruncate(r1, 0x12081ff) fcntl$setstatus(r0, 0x4, 0x6100) write$cgroup_type(r0, &(0x7f0000000200)='threaded\x00', 0xf642e7e) pipe(0x0) vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(0xffffffffffffffff, 0x8918, &(0x7f0000000080)={'\x00', {0x2, 0x4e22, @multicast1}}) r2 = open(&(0x7f00000001c0)='./file0\x00', 0x149042, 0x0) r3 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) fallocate(r3, 0x0, 0x0, 0x4003fe) close(0xffffffffffffffff) socket$inet6_sctp(0xa, 0x0, 0x84) sendmmsg$inet_sctp(0xffffffffffffffff, 0x0, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffffff, 0x84, 0xa, &(0x7f0000000100)={0xd015, 0x5, 0x0, 0x3, 0x4, 0x2, 0x0, 0x5d0f}, &(0x7f0000000140)=0x20) ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000180)={0x0, r0}) open(&(0x7f0000002000)='./bus\x00', 0x0, 0x0) 10:51:03 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000b80)=ANY=[@ANYBLOB="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"], 0x2cc}}, 0x0) 10:51:03 executing program 3: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_EXP_DELETE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)={0x38, 0x2, 0x2, 0x101, 0x0, 0x0, {}, [@CTA_EXPECT_TUPLE={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @empty}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}]}, 0x38}}, 0x0) 10:51:03 executing program 4: pipe(0x0) perf_event_open(&(0x7f0000000100)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00'}, 0x48) 10:51:04 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x439, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @erspan={{0xb, 0x1, 'erspan\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_GRE_IFLAGS={0x6}, @IFLA_GRE_OFLAGS={0x6}]}}}]}, 0x44}}, 0x0) 10:51:04 executing program 5: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r1, 0xae80, 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) 10:51:04 executing program 3: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9) 10:51:04 executing program 0: r0 = socket(0x10, 0x800000000080003, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) r2 = dup2(r1, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xd2efff7f00000000, 0x0}], 0x1, 0x0) getsockname$packet(r0, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14) ioctl$sock_SIOCGIFINDEX(r0, 0x8922, &(0x7f0000000000)={'veth1_macvtap\x00', r3}) 10:51:04 executing program 4: r0 = socket$inet6(0xa, 0x3, 0xff) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000080)=@filter={'filter\x00', 0xe, 0x4, 0x3d8, 0xffffffff, 0x238, 0x238, 0x0, 0xffffffff, 0xffffffff, 0x308, 0x308, 0x308, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x0, 0xa8, 0xd0}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x5}}}, {{@ipv6={@empty, @ipv4={[], [], @multicast1}, [], [], '\x00', 'veth1_to_bridge\x00'}, 0x0, 0x128, 0x168, 0x0, {}, [@common=@dst={{0x48, 'dst\x00'}}, @common=@unspec=@statistic={{0x38, 'statistic\x00'}}]}, @common=@unspec=@ERROR={0x40, 'ERROR\x00', 0x0, "fca645e02f795076bd4f0997e5b6ff24398a617e73ce65f2109e6f26244c"}}, {{@ipv6={@private0, @ipv4={[], [], @multicast2}, [], [], 'wg2\x00', 'veth1_to_bond\x00'}, 0x0, 0xa8, 0xd0}, @REJECT={0x28, 'REJECT\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x438) [ 494.192483][ T32] audit: type=1804 audit(1595155864.650:37): pid=13384 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir456510836/syzkaller.phv5Q5/155/bus" dev="sda1" ino=16367 res=1 10:51:04 executing program 4: r0 = socket$l2tp(0x2, 0x2, 0x73) setsockopt$inet_mreqsrc(r0, 0x0, 0x25, &(0x7f00000000c0)={@private, @dev}, 0xc) 10:51:05 executing program 0: open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = inotify_init() inotify_add_watch(r2, &(0x7f0000000000)='.\x00', 0x830004a2) inotify_rm_watch(0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x280781, 0x0) 10:51:05 executing program 5: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r1, 0xae80, 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) [ 496.319324][ T32] audit: type=1800 audit(1595155866.780:38): pid=13384 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.1" name="bus" dev="sda1" ino=16367 res=0 10:51:06 executing program 1: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) socket$inet6_sctp(0xa, 0x801, 0x84) getsockopt$inet_sctp6_SCTP_AUTOCLOSE(r0, 0x84, 0x4, 0x0, &(0x7f0000000040)) 10:51:06 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f00000004c0)={'gre0\x00', &(0x7f0000000140)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x6, 0x4, 0x0, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2f, 0x0, @multicast2, @broadcast, {[@lsrr={0x83, 0x3}]}}}}}) 10:51:06 executing program 4: mkdir(&(0x7f0000000340)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) lchown(&(0x7f0000000380)='./file0\x00', 0x0, 0x0) read$FUSE(r0, 0x0, 0x0) 10:51:06 executing program 5: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r1, 0xae80, 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) 10:51:06 executing program 0: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/crypto\x00', 0x0, 0x0) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0) perf_event_open(&(0x7f00000002c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) lseek(r0, 0x1000000000000003, 0x0) 10:51:07 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:51:08 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x2, 0x0) sendmsg(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000000)="240000001a0003041dfffd946f6105000200000a1f0000030067080008001d0040000000280000001100ffffba16a0aa1c09000000000000120000000000eff24d8238cfa47e23f7efbf", 0x4a}], 0x1}, 0x0) 10:51:08 executing program 2: r0 = mq_open(&(0x7f0000000000)='(\x00', 0x0, 0x0, 0x0) lseek(r0, 0xffffffbffffffffe, 0x0) 10:51:08 executing program 0: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/locks\x00', 0x0, 0x0) lseek(r0, 0xffffffffbffffffc, 0x0) 10:51:08 executing program 1: socket$inet6(0xa, 0x0, 0x0) sendmsg$DEVLINK_CMD_TRAP_POLICER_GET(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000100)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00'}, 0x48) 10:51:08 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:51:08 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f00000002c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r4, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, r4}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @vxcan={{0xa, 0x1, 'vxcan\x00'}, {0x4, 0x2, 0x0, 0x1, @void}}}]}, 0x34}}, 0x0) [ 497.677509][T13438] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'. 10:51:08 executing program 2: r0 = syz_open_dev$vbi(&(0x7f0000000040)='/dev/vbi#\x00', 0x1, 0x2) ioctl$VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000400)={0x81, 0x0, 0x2}) prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) getpid() r1 = socket$inet6(0xa, 0x3, 0x7) sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(0xffffffffffffffff, &(0x7f0000001300)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) recvmmsg(r1, &(0x7f0000000b80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) perf_event_open(&(0x7f0000000100)={0x0, 0x70, 0xd4, 0x0, 0xfd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3, 0x3}, 0x20, 0x0, 0x0, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000400)={r4, 0x7, 0x74, 0x0, &(0x7f0000000140)="a673f3ce05f1a282eeab0500000305008110e63238f9cf8c0ccade00556e97d003cc298613f230d6841f3099e19fd903b2ffa5106c71ac91c7457b2d7f4157f069737d63ab32be2a651d7cee2970a9df488cae6702031c92a8b4b6376f9972f3848c104d413745d4c57253b2d61d64787c4de49f", 0x0, 0x3a8, 0x0, 0x12, 0x0, &(0x7f0000000040)="15396af9a72e96da8129ed1653da4c7f5843"}, 0x40) 10:51:08 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 497.995679][T13466] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 498.061006][T13467] netlink: 'syz-executor.3': attribute type 29 has an invalid length. 10:51:08 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) r1 = socket$inet_udplite(0x2, 0x2, 0x88) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x220007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='westwood\x00', 0x9) sendto$inet(r0, &(0x7f00000012c0)="0c268a927f1f6588b967481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95c25a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x11, 0x0, 0x170) 10:51:08 executing program 0: r0 = socket$rds(0x15, 0x5, 0x0) r1 = dup(r0) recvfrom$ax25(r1, 0x0, 0x0, 0x0, 0x0, 0x0) 10:51:08 executing program 3: r0 = syz_open_dev$video(&(0x7f0000000040)='/dev/video#\x00', 0x0, 0x0) ioctl$VIDIOC_STREAMON(r0, 0x40045612, &(0x7f0000000080)=0x1) 10:51:08 executing program 1: r0 = syz_open_dev$vbi(&(0x7f0000000040)='/dev/vbi#\x00', 0x1, 0x2) ioctl$VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000400)={0x81}) prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r1 = getpid() sched_setattr(r1, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r2 = socket$inet6(0xa, 0x3, 0x7) sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(0xffffffffffffffff, 0x0, 0x0) sendmsg$DEVLINK_CMD_TRAP_POLICER_GET(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000200), 0xc, 0x0}, 0x0) recvmmsg(r2, &(0x7f0000000b80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) perf_event_open(&(0x7f0000000100)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3, 0x3}, 0x20, 0x0, 0x0, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000bc0)=ANY=[@ANYBLOB="b702000000000000bfa30000000000004503000000fefff67a0af0ffe8ffffff79a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001000100b7050000220000006a0a00fe00000000850000000b000000b70000004dc50000950000000000000089c81f20273d16b72eb83ec5a348a90123fd8c27b090941bd3108d3128780100002dbecace7e0f6ab2366e8a87554c101f03733d40c62753ecd16a176e9ce28306b13b839dfc8a96ec60f2af473a2b598eb0f82ba602f2b02dc245f99358e43836ba33fd5a447f936e000755861103bb45e5d53c9fe36bbd35e53c6376c0c2b1daa58a9c34444bb7e9673476d017fc94c5857eada71db6cd370e93b6d5a74cd5c8c50896249ed7420f8680a730d876c36a1f3f1b8eb12d9390a49f2d99b5df916269392e0d0000556ef8c9969baa463b36d25ac1628ef858a5cc77c14c8df67f20fd224829af6de3d5ef71857496714db96c6db18ea5189cfbddd6e4de3617adabc339334b97b11910905d6692a33f1f370c05a1f134e5f90a326b0cb5268e40f5ba9b8fedfd316b2ea30fcca8b30faa8343c77588ccc3f87f05e5d1af657c445131edb61670ff2c62117e96eba22382758239e69127b01bd9c6fabf4f4d035ad5656e63bf02af42a5ac113879bfc27d7e6ba1f41301065efb1685e65f30df092051d556a89c2886ea64bc457280330dc9cdb6adf43433e9ba97796a7823d241795ab1258fec37312fc5e921e8758153be202ffca155a4921970e28e015133a413ae58fa7500fe6238580101b710cf8b82bcab02c12fe01bd8df4e97c67e8a3693b23668c55eed4e24eafa16a4f43b6729990a9321531e5eb006b547c13cdfa2fa211d07a29377ea1c5aa7f5d58331ad45fc89ac44c9d2d6b3ac03ce76fc9d341f076264f8cf493901ad919329a295f63be4e91417b9cd080047272d46664571f24d71fcff2a9e869c2144f5775c8ab94acc57b5793f25f853f7a98965e5bd9ff5253f787eb321572355c706d6d2e27c475fd077876a4405b72b00000000000000b79d8029af8de217c23f79e68fe48420cbb226a7b21af70ee2200cf800000000000000000000299d76f86ea34beab580568c536774f2a445c60c532204878ff46d64753b4761e5ec4c3a76fdcc1ee11f3406211e6647b8b6dfa067ba3e427de4161dcf45a00686d4e2c75d26100cfbcd595cdf4ef01d32c6773ed7ef47fa1cabd56056df179d25cf820000000000000000000000000045b571f5fa9929e6ec1b6e06258664305152074aa0554a576966f56ea2bedf0ff124b6b13ac5f87315a298"], &(0x7f0000000340)='GPL\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000400)={r5, 0x7, 0x0, 0x0, &(0x7f0000000140), 0x0, 0x3a8, 0x0, 0x0, 0x0, &(0x7f0000000040)}, 0x40) 10:51:09 executing program 2: mkdir(&(0x7f0000000340)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) mknod$loop(&(0x7f00000001c0)='./file0/file1\x00', 0x0, 0xffffffffffffffff) read$FUSE(r0, &(0x7f0000000780), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000100)={0x50, 0x0, 0x1, {0x7, 0x1e}}, 0x50) timer_create(0x0, &(0x7f0000000000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000000c0)) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) tkill(r1, 0x1004000000013) 10:51:09 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r1, 0xae80, 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) 10:51:09 executing program 3: r0 = socket$inet6(0xa, 0x3, 0xff) sendto$l2tp6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x1}, 0x20) 10:51:09 executing program 1: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) fcntl$setlease(r0, 0x400, 0x0) 10:51:09 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r1, 0xae80, 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) 10:51:09 executing program 3: getpid() ioctl$BLKPBSZGET(0xffffffffffffffff, 0x127b, &(0x7f0000000100)) sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x20000000}, 0x0) r0 = socket$inet6(0xa, 0x0, 0x0) recvmmsg(r0, &(0x7f0000000840)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)=""/149, 0x95}}], 0x1, 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$UI_SET_ABSBIT(r1, 0x40045567, 0x0) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0xfffffd93}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r3 = socket$inet6_udp(0xa, 0x2, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_inet6_SIOCSIFADDR(r3, 0x89a1, &(0x7f00000000c0)={@local={0xfe, 0x80, [0x600, 0x3ef, 0x0, 0x3f00000000000000, 0x100000000000000, 0x0, 0x1103, 0x0, 0x0, 0x0, 0x0, 0x6]}}) ioctl$sock_inet6_SIOCADDRT(r3, 0x89a0, &(0x7f00000005c0)={@local={0xfe, 0x80, [0x0, 0xfeff0000]}, @ipv4={[], [], @loopback}, @local}) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=ANY=[]) 10:51:09 executing program 0: r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0) fallocate(r0, 0x8, 0x0, 0xe301) 10:51:10 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c) setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='cdg\x00', 0x4) sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x983a, @rand_addr, 0xffffff91}, 0x1c) 10:51:10 executing program 1: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/crypto\x00', 0x0, 0x0) perf_event_open(&(0x7f00000002c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) lseek(r0, 0x1000000000000003, 0x0) 10:51:10 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r1, 0xae80, 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) 10:51:10 executing program 2: r0 = mq_open(&(0x7f0000000000)='(\x00', 0x0, 0x0, 0x0) finit_module(r0, 0x0, 0x0) 10:51:10 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) getpid() socket$inet6(0xa, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00'}, 0x48) 10:51:10 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54020000005d564c90c200", 0x18) r1 = accept4(r0, 0x0, 0x0, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) sendmsg$TIPC_CMD_SET_LINK_WINDOW(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x8010) recvfrom(r1, &(0x7f0000000140)=""/152, 0x98, 0x0, 0x0, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) sendmsg$AUDIT_TTY_SET(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)={0x18}, 0x18}}, 0x0) 10:51:10 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:51:11 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)=@newlink={0x3c, 0x10, 0x439, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @erspan={{0xb, 0x1, 'erspan\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GRE_OFLAGS={0x6}]}}}]}, 0x3c}}, 0x0) 10:51:11 executing program 3: getpid() ioctl$BLKPBSZGET(0xffffffffffffffff, 0x127b, &(0x7f0000000100)) sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x20000000}, 0x0) r0 = socket$inet6(0xa, 0x0, 0x0) recvmmsg(r0, &(0x7f0000000840)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)=""/149, 0x95}}], 0x1, 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$UI_SET_ABSBIT(r1, 0x40045567, 0x0) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0xfffffd93}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r3 = socket$inet6_udp(0xa, 0x2, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_inet6_SIOCSIFADDR(r3, 0x89a1, &(0x7f00000000c0)={@local={0xfe, 0x80, [0x600, 0x3ef, 0x0, 0x3f00000000000000, 0x100000000000000, 0x0, 0x1103, 0x0, 0x0, 0x0, 0x0, 0x6]}}) ioctl$sock_inet6_SIOCADDRT(r3, 0x89a0, &(0x7f00000005c0)={@local={0xfe, 0x80, [0x0, 0xfeff0000]}, @ipv4={[], [], @loopback}, @local}) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=ANY=[]) 10:51:11 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x530, 0x0, 0x4000000, 0x158, 0x378, 0x0, 0x460, 0x240, 0x240, 0x460, 0x240, 0x3, 0x0, {[{{@uncond=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6], 0x0, 0x358, 0x378, 0x0, {}, [@common=@inet=@hashlimit3={{0x158, 'hashlimit\x00'}, {'veth0_to_batadv\x00', {0x0, 0x3, 0x0, 0x7, 0x8, 0x5, 0x2f900}}}, @common=@inet=@hashlimit3={{0x158, 'hashlimit\x00'}, {'caif0\x00'}}]}, @unspec=@NOTRACK={0x20, 'NOTRACK\x00'}}, {{@uncond, 0x0, 0xa8, 0xe8}, @common=@inet=@TCPOPTSTRIP={0x40, 'TCPOPTSTRIP\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x590) 10:51:11 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:51:11 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x1, 0x0, 0x0, 0x5}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000002240)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) pipe(0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) r2 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) ioctl$KVM_GET_MSRS(r2, 0xc008ae88, &(0x7f0000000140)=ANY=[]) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0xfffffd93}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r3 = socket$inet6_udp(0xa, 0x2, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x681, 0x100000000000}, 0x0, 0x0, 0x0, 0x0, 0x4000000000020}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$sock_inet6_SIOCSIFADDR(r3, 0x89a1, &(0x7f00000000c0)={@local={0xfe, 0x80, [0x600, 0x3ef, 0x0, 0x3f00000000000000, 0x100000000000000, 0x0, 0x1103, 0x0, 0x0, 0x0, 0x0, 0x6]}}) ioctl$sock_inet6_SIOCADDRT(r3, 0x89a0, &(0x7f00000005c0)={@local={0xfe, 0x80, [0x0, 0xfeff0000]}, @private2, @empty, 0x0, 0x0, 0xffff, 0x500}) 10:51:11 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) socket$kcm(0x11, 0x0, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$pfkey(0xffffffffffffff9c, 0x0, 0x0, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:51:11 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x8000, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) write$binfmt_elf64(r0, &(0x7f0000000280)=ANY=[], 0xcc) recvmmsg(r0, &(0x7f0000008880), 0x45b, 0x44000102, 0x0) keyctl$read(0xb, 0x0, &(0x7f0000000000)=""/4, 0x31852a384220a633) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0) 10:51:11 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:51:12 executing program 1: r0 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x0, 0x2) ioctl$VIDIOC_G_FREQUENCY(r0, 0xc02c5638, &(0x7f0000000180)={0x26}) [ 501.564070][T13592] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. 10:51:12 executing program 3: getpid() ioctl$BLKPBSZGET(0xffffffffffffffff, 0x127b, &(0x7f0000000100)) sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x20000000}, 0x0) r0 = socket$inet6(0xa, 0x0, 0x0) recvmmsg(r0, &(0x7f0000000840)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)=""/149, 0x95}}], 0x1, 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$UI_SET_ABSBIT(r1, 0x40045567, 0x0) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0xfffffd93}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r3 = socket$inet6_udp(0xa, 0x2, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_inet6_SIOCSIFADDR(r3, 0x89a1, &(0x7f00000000c0)={@local={0xfe, 0x80, [0x600, 0x3ef, 0x0, 0x3f00000000000000, 0x100000000000000, 0x0, 0x1103, 0x0, 0x0, 0x0, 0x0, 0x6]}}) ioctl$sock_inet6_SIOCADDRT(r3, 0x89a0, &(0x7f00000005c0)={@local={0xfe, 0x80, [0x0, 0xfeff0000]}, @ipv4={[], [], @loopback}, @local}) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=ANY=[]) 10:51:12 executing program 1: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1400000010efa8c68d000000000000000000000a2000000002030100000000f787060000000000000900010001"], 0xcc}}, 0x0) sendmsg$NFQNL_MSG_VERDICT_BATCH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x20, 0x3, 0x3, 0x401, 0x0, 0x0, {}, [@NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffd}}]}, 0x20}}, 0x0) 10:51:12 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:51:12 executing program 4: r0 = socket$inet6(0xa, 0x3, 0xff) r1 = inotify_init() clock_gettime(0x0, &(0x7f0000000180)) ppoll(&(0x7f0000000100)=[{r1}, {r0, 0x9102}], 0x2, 0x0, 0x0, 0x0) 10:51:13 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:51:13 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) socket$kcm(0x11, 0x0, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$pfkey(0xffffffffffffff9c, 0x0, 0x0, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:51:13 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) close(0xffffffffffffffff) open(0x0, 0x163042, 0x0) clone(0x2000000002000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000700)=@raw={'raw\x00', 0x3c1, 0x3, 0x410, 0x258, 0x4000000, 0x158, 0x0, 0x0, 0x340, 0x240, 0x240, 0x340, 0x240, 0x3, 0x0, {[{{@uncond=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6], 0x0, 0x230, 0x258, 0x0, {}, [@common=@inet=@tcp={{0x30, 'tcp\x00'}}, @common=@inet=@hashlimit3={{0x158, 'hashlimit\x00'}, {'caif0\x00', {0x1, 0x0, 0x50, 0x0, 0x0, 0x8, 0x1}}}]}, @common=@inet=@TCPMSS={0x28, 'TCPMSS\x00'}}, {{@uncond, 0x0, 0xa8, 0xe8}, @common=@inet=@TCPOPTSTRIP={0x40, 'TCPOPTSTRIP\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x470) 10:51:13 executing program 0: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/schedstat\x00', 0x0, 0x0) lseek(r0, 0x1000000000000003, 0x0) 10:51:13 executing program 4: r0 = socket$inet6(0xa, 0x3, 0xff) r1 = inotify_init() clock_gettime(0x0, &(0x7f0000000180)) ppoll(&(0x7f0000000100)=[{r1}, {r0, 0x9102}], 0x2, 0x0, 0x0, 0x0) 10:51:13 executing program 1: r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000d6cff0)=[@in={0x2, 0x4e20, @loopback}], 0x10) r1 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000d6cff0)=[@in={0x2, 0x4e20, @loopback}], 0x10) 10:51:13 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:51:13 executing program 3: r0 = socket$inet(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e23, @dev}, 0x10) sendto$inet(r0, 0x0, 0xfffffffffffffc6d, 0x20000800, &(0x7f0000000240)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f00000000c0)="0204", 0x2) setsockopt$inet_mtu(0xffffffffffffffff, 0x0, 0xa, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000001c0)='ip6_vti0\x00', 0x1000001d0) sendto$inet(r0, &(0x7f0000000000), 0xfffffffffffffccf, 0x0, 0x0, 0xffffffffffffff37) 10:51:13 executing program 0: syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x0, 0x0) prctl$PR_GET_TSC(0x25, &(0x7f00000000c0)) 10:51:13 executing program 4: r0 = socket$phonet(0x23, 0x2, 0x1) ioctl$SIOCPNDELRESOURCE(r0, 0x89ef, &(0x7f0000000000)=0x4ee) 10:51:13 executing program 1: r0 = socket(0x25, 0x1, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r1, 0x84, 0x6e, &(0x7f0000000180)=[@in6={0xa, 0x0, 0x0, @remote, 0x9}], 0x1c) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) sendmmsg$inet_sctp(r0, &(0x7f0000002cc0)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)=[@sndinfo={0x20, 0x84, 0x2, {0x0, 0x4, 0x0, 0x0, r2}}], 0x20}], 0x1, 0x0) 10:51:14 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x4c, 0x10, 0x439, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x2c, 0x12, 0x0, 0x1, @geneve={{0xb, 0x1, 'geneve\x00'}, {0x1c, 0x2, 0x0, 0x1, [@IFLA_GENEVE_UDP_CSUM={0x5, 0x8, 0x1}, @IFLA_GENEVE_TOS={0x5}, @IFLA_GENEVE_TTL={0x5}]}}}]}, 0x4c}}, 0x0) 10:51:14 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:51:14 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) socket$kcm(0x11, 0x0, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$pfkey(0xffffffffffffff9c, 0x0, 0x0, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:51:14 executing program 4: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x1, 0x0, 0x0, 0x5}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000002240)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) r4 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) ioctl$KVM_GET_MSRS(r4, 0xc008ae88, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0xfffffd93}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r5 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_inet6_SIOCSIFADDR(r5, 0x89a1, &(0x7f00000000c0)={@local={0xfe, 0x80, [0x600, 0x3ef, 0x0, 0x3f00000000000000, 0x100000000000000, 0x0, 0x1103, 0x0, 0x0, 0x0, 0x0, 0x6]}}) 10:51:14 executing program 0: r0 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x0, 0x2) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000040)=""/7, 0x7}, {&(0x7f0000000080)=""/255, 0xff}], 0x2) 10:51:14 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:51:15 executing program 3: mkdir(&(0x7f0000000340)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) mknod$loop(&(0x7f00000001c0)='./file0/file1\x00', 0x0, 0xffffffffffffffff) read$FUSE(r0, &(0x7f0000000780), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000100)={0x50, 0x0, 0x1, {0x7, 0x1e}}, 0x50) read$FUSE(r0, &(0x7f0000002780), 0x1000) timer_create(0x0, &(0x7f0000000000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000000c0)) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) tkill(r1, 0x1004000000013) 10:51:15 executing program 1: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg(0xffffffffffffffff, 0x0, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:51:15 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:51:15 executing program 0: r0 = syz_open_dev$vbi(&(0x7f0000000040)='/dev/vbi#\x00', 0x1, 0x2) ioctl$VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000100)={0x0, 0x6}) 10:51:15 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) socket$kcm(0x11, 0x0, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$pfkey(0xffffffffffffff9c, 0x0, 0x0, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:51:15 executing program 4: r0 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x0, 0x2) ioctl$VIDIOC_G_FREQUENCY(r0, 0xc02c5638, &(0x7f0000000180)) 10:51:16 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x1, 0x0, 0x0, 0x5}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000002240)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) ioctl$KVM_GET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000140)=ANY=[@ANYBLOB="040000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000280"]) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0xfffffd93}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = socket$inet6_udp(0xa, 0x2, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x681, 0x100000000000}, 0x0, 0x0, 0xfffffffd, 0x0, 0x4000000000020}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$sock_inet6_SIOCSIFADDR(r4, 0x89a1, &(0x7f00000000c0)={@local={0xfe, 0x80, [0x600, 0x3ef, 0x0, 0x3f00000000000000, 0x100000000000000, 0x0, 0x1103, 0x0, 0x0, 0x0, 0x0, 0x6]}}) ioctl$sock_inet6_SIOCADDRT(r4, 0x89a0, &(0x7f00000005c0)={@local={0xfe, 0x80, [0x0, 0xfeff0000]}, @private2, @empty, 0x0, 0x0, 0xffff, 0x500}) ioctl$UI_SET_SWBIT(r3, 0x4004556d, 0x6) 10:51:16 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:51:16 executing program 4: r0 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x0, 0x2) ioctl$VIDIOC_G_FREQUENCY(r0, 0xc02c5638, &(0x7f0000000180)) 10:51:16 executing program 1: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg(0xffffffffffffffff, 0x0, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:51:16 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:51:16 executing program 4: r0 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x0, 0x2) ioctl$VIDIOC_G_FREQUENCY(r0, 0xc02c5638, &(0x7f0000000180)) 10:51:16 executing program 3: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000840)=@newlink={0x3c, 0x10, 0x439, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ipip={{0x9, 0x1, 'ipip\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPTUN_LINK={0x8}]}}}]}, 0x3c}}, 0x0) 10:51:17 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) socket$kcm(0x11, 0x0, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:51:17 executing program 0: r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000100)='/dev/bsg\x00', 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, [], [{0x0, 0x0, 0x0, 0x0, 0x3}]}) 10:51:17 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:51:17 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_GET_MSR_INDEX_LIST(r0, 0xc004ae0a, &(0x7f0000000040)={0x2, [0x0, 0x0]}) 10:51:17 executing program 4: r0 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x0, 0x2) ioctl$VIDIOC_G_FREQUENCY(r0, 0xc02c5638, &(0x7f0000000180)) 10:51:17 executing program 0: r0 = getpid() sched_setattr(0x0, 0x0, 0x0) sched_setattr(0x0, 0x0, 0x0) prctl$PR_SET_PTRACER(0x59616d61, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r3 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000180)="6653070000053c27bc3376003639405cb4aed12f0000001500ae47a825d868de3c8dcff47d010000805acf4f8f36460234432479aed7a38b5bd551c962b24d5c225d492b4146cee00a16dc9d8e99adaf81dcfc6a99615607676f8f9fc0ebf8b0b16d206b59957ab364884b3c5d05492e664ebf68e631e7d62ead037cd2157df6b2bcb47fb534d2e90a89af32305cde1967897773d8668c609bd66c457cbbd78501a0124a", 0xa4}], 0x4, 0x0) ptrace$setopts(0x4206, r3, 0x0, 0x0) write$FUSE_ATTR(0xffffffffffffffff, &(0x7f0000000080)={0x78, 0x0, 0x0, {0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}}}, 0x78) tkill(r3, 0x3d) ptrace$cont(0x18, r3, 0x0, 0x0) ptrace$setregs(0xd, r3, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r3, 0x0, 0x0) 10:51:18 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x11, 0x2, 0x0) bind(r1, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14) sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000005540)=@newtfilter={0x24, 0x25, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0x0, 0xffff}}}, 0x24}, 0x1, 0x1400}, 0x0) 10:51:18 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:51:18 executing program 1: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg(0xffffffffffffffff, 0x0, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:51:18 executing program 4: ioctl$VIDIOC_G_FREQUENCY(0xffffffffffffffff, 0xc02c5638, &(0x7f0000000180)) 10:51:18 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) socket$kcm(0x11, 0x0, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:51:18 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(aes-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54020000005d564c90c200", 0x18) r1 = accept4(r0, 0x0, 0x0, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) sendmsg$TIPC_CMD_SET_LINK_WINDOW(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x8010) recvfrom(r1, &(0x7f0000000140)=""/152, 0x98, 0x0, 0x0, 0x0) sendmsg$AUDIT_TTY_SET(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)={0x18}, 0x18}}, 0x0) 10:51:18 executing program 4: ioctl$VIDIOC_G_FREQUENCY(0xffffffffffffffff, 0xc02c5638, &(0x7f0000000180)) 10:51:18 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:51:19 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:51:19 executing program 4: ioctl$VIDIOC_G_FREQUENCY(0xffffffffffffffff, 0xc02c5638, &(0x7f0000000180)) 10:51:19 executing program 1: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg(0xffffffffffffffff, 0x0, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:51:21 executing program 0: r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0) lseek(r0, 0xfffffffffffffffe, 0x3) 10:51:21 executing program 3: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000700)=ANY=[@ANYBLOB='@\x00\x00\x00,\x00\'\r\x00'/20, @ANYRES32, @ANYBLOB="00020000000000000400000008000b00070000000a0001"], 0x40}}, 0x0) r2 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r2, &(0x7f0000000200)=[{0x6, 0x0, &(0x7f0000000100), 0x9, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"/320]}], 0x4924924924924b3, 0x0) 10:51:21 executing program 4: r0 = syz_open_dev$swradio(0x0, 0x0, 0x2) ioctl$VIDIOC_G_FREQUENCY(r0, 0xc02c5638, &(0x7f0000000180)) 10:51:21 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) socket$kcm(0x11, 0x0, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:51:21 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:51:21 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x6, 0x9f9}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000005c40)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}, 0x81}, {{0x0, 0x0, 0x0}}, {{0x0, 0x12, 0x0}, 0xf1}], 0x4, 0x20, 0x0) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000780)={0x0}}, 0x0) sendmsg$ETHTOOL_MSG_RINGS_GET(r2, &(0x7f0000000240)={&(0x7f00000000c0), 0xc, &(0x7f0000000200)={&(0x7f00000007c0)=ANY=[@ANYBLOB="142e52289917", @ANYRES16=0x0, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="080003000000000008000300040000001400020076657468315f746f5f687372000000001400020076657468315f766972745f7769", @ANYRES32=0x0, @ANYBLOB="24000180080001", @ANYRES32=0x0, @ANYBLOB="080003000000000008000100", @ANYBLOB="0800030001000000"], 0xac}, 0x1, 0x0, 0x0, 0x4044000}, 0x18001) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = creat(&(0x7f0000000680)='./bus\x00', 0x0) ftruncate(r4, 0x800) lseek(r4, 0x0, 0x2) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r5 = open(&(0x7f0000001840)='./bus\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x8400f7ffff16) syz_genetlink_get_family_id$fou(0x0) creat(&(0x7f0000000680)='./bus\x00', 0x0) 10:51:21 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$ARPT_SO_SET_REPLACE(r2, 0x0, 0x60, &(0x7f0000001240)={'filter\x00', 0x7, 0x4, 0x3e8, 0x1f0, 0x108, 0x1f0, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@multicast2, @rand_addr, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'nr0\x00', 'bridge0\x00'}, 0xc0, 0x108}, @unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x1, 'syz0\x00'}}}, {{@arp={@private, @local, 0x0, 0x0, 0x0, 0x0, {@mac=@broadcast}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 'ip6gre0\x00'}, 0xc0, 0xe8}, @unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00'}}, {{@arp={@loopback, @local, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@multicast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bond_slave_0\x00', 'ipvlan0\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @empty, @broadcast, 0x2}}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x438) dup(0xffffffffffffffff) socket$inet_udplite(0x2, 0x2, 0x88) dup(0xffffffffffffffff) [ 510.983296][ T32] audit: type=1804 audit(1595155881.450:39): pid=13851 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir456510836/syzkaller.phv5Q5/171/bus" dev="sda1" ino=16364 res=1 10:51:21 executing program 4: r0 = syz_open_dev$swradio(0x0, 0x0, 0x2) ioctl$VIDIOC_G_FREQUENCY(r0, 0xc02c5638, &(0x7f0000000180)) [ 511.136136][ T32] audit: type=1804 audit(1595155881.560:40): pid=13852 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=ToMToU comm="syz-executor.1" name="/root/syzkaller-testdir456510836/syzkaller.phv5Q5/171/bus" dev="sda1" ino=16364 res=1 10:51:21 executing program 3: r0 = socket$unix(0x1, 0x5, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000)='/dev/nullb0\x00', 0x101802, 0x0) r3 = dup(r2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0) 10:51:21 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:51:22 executing program 0: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB="1400000010efa8c68d000000000000000000000a2000000002030100000000f787060000000000000900010001"], 0xcc}}, 0x0) sendmsg$NFQNL_MSG_VERDICT_BATCH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)={0x14, 0x3, 0x3, 0x401, 0x0, 0x0, {0x0, 0x0, 0x20}}, 0x14}}, 0x0) 10:51:22 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) socket$kcm(0x11, 0x0, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:51:22 executing program 4: r0 = syz_open_dev$swradio(0x0, 0x0, 0x2) ioctl$VIDIOC_G_FREQUENCY(r0, 0xc02c5638, &(0x7f0000000180)) 10:51:22 executing program 1: clone(0x2000000002000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000b80)=@raw={'raw\x00', 0x3c1, 0x3, 0x318, 0x0, 0x4000000, 0x158, 0x0, 0x0, 0x248, 0x240, 0x240, 0x248, 0x240, 0x3, 0x0, {[{{@ipv6={@remote, @mcast2, [], [], 'vcan0\x00', 'veth0_to_batadv\x00'}, 0x0, 0x100, 0x128, 0x0, {}, [@common=@inet=@tcp={{0x30, 'tcp\x00'}}, @inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @common=@inet=@SET1={0x28, 'SET\x00'}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @common=@inet=@SYNPROXY={0x28, 'SYNPROXY\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x378) 10:51:22 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:51:23 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x9, 0x3, 0x1b8, 0x90, 0xffffffff, 0xffffffff, 0x90, 0xffffffff, 0x120, 0xffffffff, 0xffffffff, 0x120, 0xffffffff, 0x3, 0x0, {[{{@ip={@empty, @remote, 0x0, 0x0, 'bridge_slave_1\x00', 'vlan0\x00'}, 0x0, 0x70, 0x90}, @unspec=@NOTRACK={0x20, 'NOTRACK\x00'}}, {{@uncond, 0x0, 0x70, 0x90}, @unspec=@TRACE={0x20, 'TRACE\x00'}}], {{[], 0x0, 0x70, 0x98}, {0x28}}}}, 0x218) 10:51:23 executing program 4: syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x0, 0x2) ioctl$VIDIOC_G_FREQUENCY(0xffffffffffffffff, 0xc02c5638, &(0x7f0000000180)) 10:51:23 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x6, 0x9f9}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) r1 = socket$inet6(0xa, 0x0, 0x0) recvmmsg(r1, &(0x7f0000005c40)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}, 0x81}, {{0x0, 0x0, 0x0}}, {{0x0, 0x12, 0x0}, 0xf1}], 0x4, 0x0, 0x0) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000780)={0x0}}, 0x0) sendmsg$ETHTOOL_MSG_RINGS_GET(r2, &(0x7f0000000240)={&(0x7f00000000c0), 0xc, &(0x7f0000000200)={&(0x7f00000007c0)=ANY=[@ANYBLOB="142e52289917", @ANYRES16=0x0, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="080003000000000008000300040000001400020076657468315f746f5f687372000000001400020076657468315f766972745f7769", @ANYRES32=0x0, @ANYBLOB="24000180080001", @ANYRES32=0x0, @ANYBLOB="080003000000", @ANYBLOB="0800030001000000"], 0xac}, 0x1, 0x0, 0x0, 0x4044000}, 0x18001) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = creat(&(0x7f0000000680)='./bus\x00', 0x0) ftruncate(r4, 0x800) lseek(r4, 0x0, 0x2) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r5 = open(&(0x7f0000001840)='./bus\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x8400f7ffff16) syz_genetlink_get_family_id$fou(0x0) creat(&(0x7f0000000680)='./bus\x00', 0x0) 10:51:23 executing program 3: r0 = socket$inet6(0xa, 0x3, 0xff) getsockopt$inet6_int(r0, 0x29, 0x3c, 0x0, &(0x7f0000000180)) 10:51:23 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:51:23 executing program 0: r0 = socket$inet6_sctp(0x1c, 0x1, 0x84) sendmsg(r0, &(0x7f00000008c0)={&(0x7f0000000040)=@in6={0x1c, 0x1c, 0x2}, 0x1c, &(0x7f00000006c0)=[{&(0x7f0000000080)='{', 0x1}], 0x1}, 0x0) shutdown(r0, 0x1) shutdown(r0, 0x1) 10:51:23 executing program 3: r0 = socket$inet6_sctp(0x1c, 0x1, 0x84) connect$inet6(r0, &(0x7f0000000000)={0x1c, 0x1c, 0x1}, 0x1c) r1 = dup2(r0, r0) setsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x2, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x200002}, 0x14) 10:51:23 executing program 4: syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x0, 0x2) ioctl$VIDIOC_G_FREQUENCY(0xffffffffffffffff, 0xc02c5638, &(0x7f0000000180)) [ 513.211963][ T32] audit: type=1804 audit(1595155883.670:41): pid=13899 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir456510836/syzkaller.phv5Q5/173/bus" dev="sda1" ino=16365 res=1 10:51:23 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) socket$kcm(0x11, 0x0, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) [ 513.360402][ T32] audit: type=1804 audit(1595155883.760:42): pid=13894 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=ToMToU comm="syz-executor.1" name="/root/syzkaller-testdir456510836/syzkaller.phv5Q5/173/bus" dev="sda1" ino=16365 res=1 10:51:23 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:51:24 executing program 4: syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x0, 0x2) ioctl$VIDIOC_G_FREQUENCY(0xffffffffffffffff, 0xc02c5638, &(0x7f0000000180)) 10:51:24 executing program 0: r0 = socket$inet_sctp(0x2, 0x5, 0x84) bind$inet(r0, &(0x7f0000000040)={0x10, 0x2}, 0x10) connect$inet(r0, &(0x7f0000000000)={0x10, 0x2}, 0x10) setsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x8, &(0x7f0000000140), 0x4) connect$inet(r0, &(0x7f0000000180)={0x10, 0x2}, 0x10) 10:51:24 executing program 3: r0 = socket$inet6_sctp(0x1c, 0x1, 0x84) connect$unix(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8b02"], 0x1) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) connect$inet6(r0, &(0x7f0000000000)={0x1c, 0x1c, 0x1}, 0x1c) 10:51:24 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) recvfrom$inet(r0, 0x0, 0x27c7, 0x0, 0x0, 0x800e0050e) r1 = socket$inet_udplite(0x2, 0x2, 0x88) recvmsg(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000016c0)=[{&(0x7f00000001c0)=""/84, 0x54}], 0x1}, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) readv(r2, &(0x7f0000000300)=[{&(0x7f0000000080)=""/45, 0x2d}, {0x0}, {0x0}, {0x0}], 0x4) r3 = socket$inet_udplite(0x2, 0x2, 0x88) recvfrom$inet(r3, 0x0, 0xcf1c, 0x0, 0x0, 0x800e00551) shutdown(r2, 0x0) r4 = socket$inet_udplite(0x2, 0x2, 0x88) recvmsg(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000ac0)=[{&(0x7f0000000440)=""/212, 0xd4}, {0x0}, {0x0}], 0x3}, 0x0) r5 = socket$inet_udplite(0x2, 0x2, 0x88) recvfrom$inet(r5, 0x0, 0xffffff68, 0x0, 0x0, 0x800e00547) shutdown(r4, 0x0) mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x1000, 0x0) open$dir(&(0x7f0000001240)='./file0\x00', 0x0, 0x0) shutdown(r5, 0x0) shutdown(r3, 0x0) 10:51:24 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:51:24 executing program 4: r0 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x0, 0x2) ioctl$VIDIOC_G_FREQUENCY(r0, 0xc02c5638, 0x0) 10:51:24 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) bind$inet(r0, &(0x7f0000000040)={0x10, 0x2}, 0x10) connect$inet(r0, &(0x7f0000000000)={0x10, 0x2}, 0x10) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/ptmx\x00', 0x0, 0x0) dup2(r1, r0) 10:51:24 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:51:25 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x101}, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) pipe(0x0) write(0xffffffffffffffff, 0x0, 0x0) vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0) clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = getpid() rt_tgsigqueueinfo(r0, r0, 0x13, &(0x7f0000000100)) ptrace(0x10, r0) 10:51:25 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:51:25 executing program 4: r0 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x0, 0x2) ioctl$VIDIOC_G_FREQUENCY(r0, 0xc02c5638, 0x0) 10:51:25 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a0f871ea17933573f853e930c697757d504a908fa01a7faccfff0a28d2725b2eedc8fc5836595e9264f21f43f7df83d972bd61304d71f599b115be1c3a70e"]) 10:51:25 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:51:25 executing program 4: r0 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x0, 0x2) ioctl$VIDIOC_G_FREQUENCY(r0, 0xc02c5638, 0x0) 10:51:25 executing program 1: 10:51:25 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a0f871ea17933573f853e930c697757d504a908fa01a7faccfff0a28d2725b2eedc8fc5836595e9264f21f43f7df83d972bd61304d71f599b115be1c3a70e"]) [ 515.236718][T13978] overlayfs: unrecognized mount option "indmx=off" or missing value [ 515.268149][T13981] overlayfs: unrecognized mount option "indmx=off" or missing value 10:51:25 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:51:26 executing program 4: 10:51:26 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a0f871ea17933573f853e930c697757d504a908fa01a7faccfff0a28d2725b2eedc8fc5836595e9264f21f43f7df83d972bd61304d71f599b115be1c3a70e"]) [ 515.560132][T13990] overlayfs: unrecognized mount option "indmx=off" or missing value 10:51:26 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='fdinfo\x00') exit_group(0x0) getdents(r0, &(0x7f0000000700)=""/4102, 0x20001706) 10:51:26 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x7f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0xc75e43cfae22dd4, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r0, 0x0) accept4(r0, 0x0, 0x0, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000001c0)=0x14) r3 = socket(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r3, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000280)=@newqdisc={0x3c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x600, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_dsmark={{0xb, 0x1, 'dsmark\x00'}, {0xc, 0x2, [@TCA_DSMARK_INDICES={0x6, 0x1, 0x4000}]}}]}, 0x3c}}, 0x0) 10:51:26 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:51:26 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a0f871ea17933573f853e930c697757d504a908fa01a7faccfff0a28d2725b2eedc8fc5836595e9264f21f43f7df83d972bd61304d71f599b115be1c3a70e"]) [ 515.949573][T14003] overlayfs: unrecognized mount option "indmx=off" or missing value 10:51:26 executing program 4: pipe(&(0x7f0000000200)) perf_event_open(&(0x7f0000000580)={0x2, 0x70, 0x7e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS3\x00', 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 10:51:26 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:51:26 executing program 1: r0 = socket(0x1e, 0x5, 0x0) r1 = socket(0x1e, 0x2, 0x0) bind(r1, &(0x7f0000d80f80)=@generic={0x1e, "0103000000000000000000000000000009a979f321b30c7bc8790405c7bad62e0a43a632ed4938d36d73fb8f8401a3ff59829a2b0afe7ce43a4b2470a0c5216669ca021f6f65dcf160e7e58f358c0002f0000158d19bcb31f1314a8ef151622ca5bdb9c8ead2000077aeb81c90001d6d7c980ee590c8b9f70dc136cb184a"}, 0x80) connect$tipc(r0, &(0x7f00000000c0)=@name, 0x10) close(r1) [ 516.075258][T14010] IPVS: ftp: loaded support on port[0] = 21 [ 516.397985][T14037] overlayfs: unrecognized mount option "indmx=off" or missing value 10:51:26 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a0f871ea17933573f853e930c697757d504a908fa01a7faccfff0a28d2725b2eedc8fc5836595e9264f21f43f7df83d972bd61304d71f599b115be1c3a70e"]) 10:51:27 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:51:27 executing program 1: r0 = socket$inet6(0x10, 0x2, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff}) r2 = dup2(r1, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) sendto$inet6(r0, &(0x7f0000000240)="4c00000012001f15b9409b849ac00a00a5784002000000000000030038c88cc055c5ac27a6c5b068d0bf46d323456536005ad94a461cdbfee9bdb9423523598451d1ec0cffc8792cd8000080", 0x4c, 0x0, 0x0, 0x0) 10:51:27 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x7f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0xc75e43cfae22dd4, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r0, 0x0) accept4(r0, 0x0, 0x0, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000001c0)=0x14) r3 = socket(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r3, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000280)=@newqdisc={0x3c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x600, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_dsmark={{0xb, 0x1, 'dsmark\x00'}, {0xc, 0x2, [@TCA_DSMARK_INDICES={0x6, 0x1, 0x4000}]}}]}, 0x3c}}, 0x0) [ 516.781027][T14051] overlayfs: unrecognized mount option "indmx=off" or missing value [ 516.961901][T14055] IPVS: ftp: loaded support on port[0] = 21 10:51:27 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a0f871ea17933573f853e930c697757d504a908fa01a7faccfff0a28d2725b2eedc8fc5836595e9264f21f43f7df83d972bd61304d71f599b115be1c3a70e"]) 10:51:27 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:51:27 executing program 3: pipe(&(0x7f0000000200)) perf_event_open(&(0x7f0000000580)={0x2, 0x70, 0x7e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS3\x00', 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) 10:51:27 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:51:27 executing program 1: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x0, 0x400000008d}, 0x0) socket$inet6(0xa, 0x2, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x0, 0x1, 0x0, 0x3}, 0x0) r0 = clone3(&(0x7f0000001680)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x40) rt_sigqueueinfo(r0, 0x40, &(0x7f00000016c0)={0x0, 0x0, 0x80000000}) waitid(0x0, 0x0, 0x0, 0x80000004, 0x0) ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f00000002c0)=0x41) 10:51:27 executing program 4: pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) r2 = socket$inet_tcp(0x2, 0x1, 0x0) fcntl$setstatus(r2, 0x4, 0x0) shutdown(0xffffffffffffffff, 0x0) socket$tipc(0x1e, 0x5, 0x0) write(r1, &(0x7f0000000340), 0x41395527) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r3 = creat(&(0x7f0000000100)='./file0\x00', 0x0) fallocate(r3, 0x0, 0x0, 0x2cbd) accept4$tipc(r3, 0x0, &(0x7f0000000040), 0x80000) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS3\x00', 0x0, 0x0) clock_gettime(0x0, &(0x7f0000000180)={0x0, 0x0}) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200)={0x0, r4+30000000}, 0x0) [ 517.535484][T14092] overlayfs: unrecognized mount option "indmx=off" or missing value 10:51:28 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a0f871ea17933573f853e930c697757d504a908fa01a7faccfff0a28d2725b2eedc8fc5836595e9264f21f43f7df83d972bd61304d71f599b115be1c3a70e"]) 10:51:28 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:51:28 executing program 3: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64"]) 10:51:28 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) [ 517.946932][T14111] overlayfs: unrecognized mount option "indmx=off" or missing value 10:51:28 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a0f871ea17933573f853e930c697757d504a908fa01a7faccfff0a28d2725b2eedc8fc5836595e9264f21f43f7df83d972bd61304d71f599b115be1c3a70e"]) [ 518.202844][T14116] overlayfs: unrecognized mount option "indmx=off" or missing value 10:51:28 executing program 3: r0 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000f13000)={0xa, 0x4e22, 0x0, @empty}, 0x1c) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0xfffffffe}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x8000000004) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) sendmsg$ETHTOOL_MSG_TSINFO_GET(r1, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000002280)={0x0}}, 0x0) writev(r1, &(0x7f0000000500)=[{&(0x7f0000000100)="580000001400add427323b472545b4560a117fffffff81024e214e227f000001925aa80020007b00090080007f000001e809000000ff0000f069ccdcff74fc3ac7", 0x41}, {&(0x7f0000000300)="84e4bdb8cb93bc56849414a7daf0cf2faac1555b040b7f", 0x17}], 0x2) 10:51:28 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) [ 518.252948][T14120] overlayfs: unrecognized mount option "indmx=off" or missing value 10:51:28 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a0f871ea17933573f853e930c697757d504a908fa01a7faccfff0a28d2725b2eedc8fc5836595e9264f21f43f7df83d972bd61304d71f599b115be1c3a70e"]) 10:51:28 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 10:51:29 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x5) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @empty}, 0x1c) 10:51:29 executing program 1: openat$ion(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ion\x00', 0x0, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff}) r3 = dup2(r2, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) write(0xffffffffffffffff, &(0x7f0000000000)='$\x00\x00\x00R\x00', 0x6) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc) r4 = socket$inet6(0x10, 0x2, 0x0) splice(r0, 0x0, r4, 0x0, 0x8000000004ffe0, 0x0) 10:51:29 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setlease(r0, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:51:29 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x101}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x13, &(0x7f0000000100)) ptrace(0x10, r1) 10:51:29 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a0f871ea17933573f853e930c697757d504a908fa01a7faccfff0a28d2725b2eedc8fc5836595e9264f21f43f7df83d972bd61304d71f599b115be1c3a70e"]) 10:51:29 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003a000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f00000001c0)="66b9820000c066b83400000066ba000000000f30660f2a86f1ffbad00466ed66b82974dac10f23d00f21f866353000000c0f23f80f79fcbaf80c66b8b086d58466efbafc0c66edf289930000260ffcbc0b00d9f0baf80c66b8846e5d8d66efbafc0c66ed", 0x64}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 10:51:29 executing program 4: mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mount$bpf(0x0, &(0x7f00000001c0)='./file0/../file0\x00', &(0x7f0000000200)='bpf\x00', 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB='no']) 10:51:29 executing program 0: creat(0x0, 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a0f871ea17933573f853e930c697757d504a908fa01a7faccfff0a28d2725b2eedc8fc5836595e9264f21f43f7df83d972bd61304d71f599b115be1c3a70e"]) 10:51:30 executing program 0: creat(0x0, 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a0f871ea17933573f853e930c697757d504a908fa01a7faccfff0a28d2725b2eedc8fc5836595e9264f21f43f7df83d972bd61304d71f599b115be1c3a70e"]) 10:51:30 executing program 4: write$P9_RWALK(0xffffffffffffffff, &(0x7f0000000340)=ANY=[], 0x8) sendmsg$NFNL_MSG_ACCT_DEL(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000600)={&(0x7f0000000440)={0x74, 0x3, 0x7, 0x401, 0x0, 0x0, {0x7, 0x0, 0x1}, [@NFACCT_NAME={0x9, 0x1, 'syz0\x00'}, @NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0x7610}, @NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0xfe00000000000000}, @NFACCT_NAME={0x9, 0x1, 'syz0\x00'}, @NFACCT_QUOTA={0xc}, @NFACCT_NAME={0x9, 0x1, 'syz1\x00'}, @NFACCT_PKTS={0xc}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x7f608000000}]}, 0x74}, 0x1, 0x0, 0x0, 0x4800}, 0x40000) r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000280)={0xc, 0x8d}, 0x0) ioctl$FS_IOC_GETFLAGS(r0, 0x80086601, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x9b, 0x2, 0x0, 0xf8, 0x3, 0x0, 0x0, 0x0, 0xa, 0x1}, 0x0) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100)='nl80211\x00') sendmsg$NL80211_CMD_START_SCHED_SCAN(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000140)={0x40, r1, 0x808, 0x70bd2c, 0x25dfdbfc, {}, [@NL80211_ATTR_BG_SCAN_PERIOD={0x6, 0x98, 0x400}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x8001, 0x4}}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MEASUREMENT_DURATION_MANDATORY={0x4}, @NL80211_ATTR_SCHED_SCAN_INTERVAL={0x8, 0x77, 0x5}]}, 0x40}}, 0x0) ioctl$FS_IOC_GETVERSION(0xffffffffffffffff, 0x80087601, &(0x7f0000000000)) r2 = open$dir(&(0x7f0000000380)='./file0\x00', 0x0, 0x0) r3 = socket$inet6_udp(0xa, 0x2, 0x0) sendmsg$NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000580)={&(0x7f0000000500)=ANY=[@ANYBLOB='h\x00\x00e', @ANYRES16=r1, @ANYBLOB="100029bd7000fedbdf250200000005003e000000000005003d000900000008000a010900000008000c010600000008006100000400000c0099005200000004000000140002006d616376746170300000000000000000140002006e65747063693000000000000000000008003f0003000000"], 0x78}, 0x1, 0x0, 0x0, 0x20008800}, 0x24000051) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) getpeername$packet(r5, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0xa) ioctl$sock_inet6_SIOCADDRT(r3, 0x890b, &(0x7f00000003c0)={@empty, @private2, @initdev={0xfe, 0x88, [0x10, 0x0, 0x96, 0x2, 0x0, 0x0, 0x7, 0xfc], 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24c20082, r6}) sendfile(0xffffffffffffffff, r2, 0x0, 0x1c500) 10:51:30 executing program 3: r0 = socket$inet6(0x10, 0x2, 0x0) sendto$inet6(r0, &(0x7f00000001c0)="1c0000001200050f0c9000000049b23e9b20bc1c437400c000000001", 0x1c, 0x0, 0x0, 0x0) recvfrom$inet6(r0, &(0x7f0000000400)=""/4096, 0x1000, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff}) r2 = dup2(r1, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000280)=@filter={'filter\x00', 0xe, 0x4, 0x260, 0xffffffff, 0x98, 0x130, 0x0, 0xffffffff, 0xffffffff, 0x1c8, 0x1c8, 0x1c8, 0xffffffff, 0x4, 0x0, {[{{@ip={@multicast2, @remote, 0x0, 0x0, 'bond0\x00', 'bond_slave_0\x00'}, 0x0, 0x70, 0x98}, @REJECT={0x28, 'REJECT\x00'}}, {{@ip={@local, @multicast2, 0x0, 0x0, 'veth0_macvtap\x00', 'bond_slave_1\x00'}, 0x0, 0x70, 0x98}, @REJECT={0x28, 'REJECT\x00'}}, {{@ip={@broadcast, @loopback, 0x0, 0x0, '\x00', 'vlan0\x00'}, 0x0, 0x70, 0x98}, @REJECT={0x28, 'REJECT\x00'}}], {{[], 0x0, 0x70, 0x98}, {0x28}}}}, 0x2c0) r3 = socket$inet6(0x10, 0x2, 0x0) r4 = socket$inet6(0x10, 0x0, 0x0) sendto$inet6(r4, &(0x7f00000000c0)="1ba0000010001d0200fdc5cbdd041d8e828003000000000001a7960fab0fc8da78031c6660b08f00003f71aced466b4644434a88fed7d75725e1069e42dc4b3844e5fb82bb02fec770967c740c00000000d02830b5a4c01a92317320f0c0a5adb7b5b8bf255f1a8dffa8", 0xfe0b, 0x40800, 0x0, 0xffffffffffffff95) sendto$inet6(r3, &(0x7f00000000c0)="1ba0000010001d1100fdc5cbdd06268e82041474000000003ea7960fab0fc8da78031c6660b08f00f33e71aced466b4644434a88fed7d75725e1069e42dc4b3844e5fb82bb02fec770967c740c020c0000d02830b5a4c01a92317320f0c0a5adb7b5b8bf255f1a8dffa8", 0xfe0b, 0x40800, 0x0, 0x88a71b20bf9dbeb6) 10:51:30 executing program 5: r0 = socket$inet6(0x10, 0x2, 0x0) sendto$inet6(r0, &(0x7f0000000000)="1c0000001200050f0c900000004900e00a00"/28, 0x1c, 0x0, 0x0, 0x0) recvfrom$inet6(r0, &(0x7f0000000400)=""/4096, 0x1000, 0x0, 0x0, 0x0) 10:51:30 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setlease(r0, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:51:30 executing program 1: socket$inet6(0xa, 0x5, 0x1) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000040)={0xa, 0x0, 0x0, @empty={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9]}, 0x10001}, 0x1c) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) ioctl$TIOCSSOFTCAR(0xffffffffffffffff, 0x541a, &(0x7f00000000c0)=0x7f) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000280)={0xc, 0x8d}, 0x0) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0) ioctl$KDGKBSENT(0xffffffffffffffff, 0x4b48, &(0x7f00000002c0)={0xce, "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"}) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x0, 0x0, 0x3}, 0x0) r0 = open(&(0x7f0000000240)='./file1\x00', 0x141142, 0x0) write$UHID_INPUT(r0, &(0x7f0000001440)={0x8, {'e\x00s\x00'}}, 0xfffffc41) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1c500) openat$bsg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bsg\x00', 0x88942, 0x0) [ 520.167256][T14183] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 520.240992][T14183] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 520.277853][T14187] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 520.287974][T14187] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. 10:51:30 executing program 0: creat(0x0, 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a0f871ea17933573f853e930c697757d504a908fa01a7faccfff0a28d2725b2eedc8fc5836595e9264f21f43f7df83d972bd61304d71f599b115be1c3a70e"]) [ 520.351113][T14189] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 520.389172][T14191] netlink: 40067 bytes leftover after parsing attributes in process `syz-executor.3'. [ 520.460375][T14187] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 520.469987][T14187] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 520.483727][T14189] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 520.522925][T14196] netlink: 40067 bytes leftover after parsing attributes in process `syz-executor.3'. 10:51:31 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x8d, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2}, 0x0) r0 = clone3(&(0x7f0000001680)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x40) rt_sigqueueinfo(r0, 0x40, &(0x7f00000016c0)={0x0, 0x0, 0x80000000}) waitid(0x0, 0x0, 0x0, 0x80000004, 0x0) 10:51:31 executing program 4: prlimit64(0x0, 0xe, &(0x7f0000000280)={0xfff, 0x4000000000008d}, 0x0) r0 = pkey_alloc(0x0, 0x1) pkey_free(r0) r1 = getpid() sched_setattr(r1, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) r2 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r2, &(0x7f0000000000)="b6", 0xfffffe7e) pipe(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) open(&(0x7f0000000140)='./bus\x00', 0x200, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x8923, &(0x7f0000000000)={'ip_vti0\x00', @ifru_map={0xffffffffffff8001}}) 10:51:31 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setlease(r0, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:51:31 executing program 3: r0 = socket$inet6(0xa, 0x2, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) getsockname$packet(r2, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x28a) sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=@newlink={0x40, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, r4, 0x403}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @gtp={{0x8, 0x1, 'gtp\x00'}, {0x14, 0x2, 0x0, 0x1, {{0x8}, {0x8}}}}}]}, 0x40}}, 0x0) sendmmsg$inet(r0, &(0x7f00000017c0)=[{{&(0x7f0000000040)={0x2, 0x4e20, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r3, @empty}}}], 0x20}}], 0x1, 0x0) 10:51:31 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a0f871ea17933573f853e930c697757d504a908fa01a7faccfff0a28d2725b2eedc8fc5836595e9264f21f43f7df83d972bd61304d71f599b115be1c3a70e"]) [ 521.407289][T14221] IPv6: ADDRCONF(NETDEV_CHANGE): gtp0: link becomes ready 10:51:32 executing program 2: fcntl$setsig(0xffffffffffffffff, 0xa, 0x11) fcntl$setlease(0xffffffffffffffff, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) [ 521.711197][T14228] overlayfs: unrecognized mount option "indmx=off" or missing value 10:51:32 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=@newsa={0x1a0, 0x10, 0x713, 0x0, 0x0, {{@in6=@initdev={0xfe, 0x88, [], 0x0, 0x0}, @in=@initdev={0xac, 0x1e, 0x0, 0x0}}, {@in6=@remote, 0x0, 0x32}, @in6=@dev, {}, {}, {}, 0x0, 0x0, 0xa, 0x0, 0x0, 0x96}, [@algo_crypt={0x48, 0x2, {{'cbc(des3_ede)\x00'}}}, @replay_esn_val={0x1c}, @algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x1a0}}, 0x0) 10:51:32 executing program 3: r0 = socket(0x2, 0x3, 0x0) shutdown(r0, 0x1) [ 521.853209][ T32] audit: type=1804 audit(1595155892.310:43): pid=14213 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir558773323/syzkaller.bz7hRh/135/bus" dev="sda1" ino=16050 res=1 10:51:32 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a0f871ea17933573f853e930c697757d504a908fa01a7faccfff0a28d2725b2eedc8fc5836595e9264f21f43f7df83d972bd61304d71f599b115be1c3a70e"]) 10:51:32 executing program 5: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000040)={0x0, 0x0, 0x403e}) 10:51:32 executing program 2: fcntl$setsig(0xffffffffffffffff, 0xa, 0x11) fcntl$setlease(0xffffffffffffffff, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:51:32 executing program 4: r0 = socket$inet6(0xa, 0x2, 0x0) r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/wireless\x00') socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) sendfile(r0, r1, 0x0, 0x2000a808) [ 522.485682][T14244] overlayfs: unrecognized mount option "indmx=off" or missing value 10:51:33 executing program 1: openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x0, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4) r0 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000000)='memory.high\x00', 0x2, 0x0) write$cgroup_freezer_state(r0, 0x0, 0x0) 10:51:33 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0xa, 0x1, 0x0) setsockopt$IP_VS_SO_SET_STOPDAEMON(0xffffffffffffffff, 0x0, 0x48c, 0x0, 0x0) ioctl(r2, 0x8916, &(0x7f0000000000)) r3 = socket(0x80000000000000a, 0x2, 0x0) connect$inet6(r3, &(0x7f0000000040)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) ioctl(r2, 0x8936, &(0x7f0000000000)) setsockopt$inet6_group_source_req(r3, 0x29, 0x32, &(0x7f0000000300)={0x0, {{0xa, 0x0, 0x0, @mcast1}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108) 10:51:33 executing program 5: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000019580)=[{0x6, 0x0, 0x0, 0x7ffffffe}]}) eventfd(0x0) 10:51:33 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a0f871ea17933573f853e930c697757d504a908fa01a7faccfff0a28d2725b2eedc8fc5836595e9264f21f43f7df83d972bd61304d71f599b115be1c3a70e"]) 10:51:33 executing program 2: fcntl$setsig(0xffffffffffffffff, 0xa, 0x11) fcntl$setlease(0xffffffffffffffff, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:51:33 executing program 4: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x200000c, 0x10032, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000040)) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r1, 0x84, 0x70, &(0x7f0000013ff4)=@assoc_value, &(0x7f0000002000)=0x8) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x71, &(0x7f00000000c0)={0xff0f}, &(0x7f0000000100)=0x10) r3 = dup2(r2, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = dup2(r4, r1) dup3(r5, r0, 0x0) 10:51:33 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mbind(&(0x7f0000012000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2000000000002) 10:51:33 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x200000c, 0x10032, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000040)) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r1, 0x84, 0x70, &(0x7f0000013ff4)=@assoc_value, &(0x7f0000002000)=0x8) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x21, &(0x7f00000000c0), &(0x7f0000000100)=0x10) r3 = dup2(r2, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = dup2(r4, r1) dup3(r5, r0, 0x0) [ 523.193674][T14276] overlayfs: unrecognized mount option "indmx=off" or missing value 10:51:33 executing program 2: r0 = open(0x0, 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:51:33 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, 0x0, &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a0f871ea17933573f853e930c697757d504a908fa01a7faccfff0a28d2725b2eedc8fc5836595e9264f21f43f7df83d972bd61304d71f599b115be1c3a70e"]) 10:51:34 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = memfd_create(&(0x7f0000000140)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\b\x00\x00\x00oJ\x02u\x9b\xafa\xac', 0x4) fallocate(r2, 0x0, 0x0, 0x7ff) 10:51:34 executing program 4: 10:51:34 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, 0x0, &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a0f871ea17933573f853e930c697757d504a908fa01a7faccfff0a28d2725b2eedc8fc5836595e9264f21f43f7df83d972bd61304d71f599b115be1c3a70e"]) 10:51:34 executing program 3: r0 = syz_open_dev$usbfs(&(0x7f0000000180)='/dev/bus/usb/00#/00#\x00', 0x74, 0x41) ioctl$USBDEVFS_IOCTL(r0, 0x80045505, &(0x7f0000000000)=@usbdevfs_driver={0x1, 0x5e88, 0x0}) [ 524.173684][T14299] usb usb6: usbfs: interface 0 claimed by hub while 'syz-executor.3' sets config #1 10:51:35 executing program 5: add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) pipe(0x0) openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x0, 0x21) bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000040), 0x4) openat$vsock(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vsock\x00', 0x43080, 0x0) bpf$BPF_GET_BTF_INFO(0xf, 0x0, 0x0) openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000080)='/dev/btrfs-control\x00', 0x0, 0x0) setsockopt$inet_sctp6_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000002ec0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000002900)=""/205, 0xcd}}], 0x1, 0x0, 0x0) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/if_inet6\x00') preadv(r0, &(0x7f00000017c0), 0x1a2, 0x0) 10:51:35 executing program 2: r0 = open(0x0, 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:51:35 executing program 1: r0 = socket$inet6(0xa, 0x2, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) getsockname$packet(r2, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x28a) sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=@newlink={0x40, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, r4, 0x403}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @gtp={{0x8, 0x1, 'gtp\x00'}, {0x14, 0x2, 0x0, 0x1, {{0x8}, {0x8}}}}}]}, 0x40}}, 0x0) sendmmsg$inet(r0, &(0x7f00000017c0)=[{{&(0x7f0000000040)={0x2, 0x4e20, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r3, @empty}}}], 0x20}}], 0x1, 0xfd00) 10:51:35 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$KVM_SET_PIT2(r1, 0x4070aea0, &(0x7f0000000040)={[{0x9, 0x3f, 0x0, 0x5, 0x5, 0xc, 0x1, 0x0, 0x6, 0x6, 0x40, 0x1f, 0x1000}, {0x80, 0x1, 0xf7, 0x3f, 0x7f, 0x8, 0x34, 0x9, 0x7, 0x3, 0x5, 0x7, 0x1}, {0x6, 0x4, 0x20, 0x1f, 0xc0, 0x9, 0x1, 0x20, 0x7f, 0x4, 0x28, 0x9, 0xef}], 0x3}) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x0, &(0x7f0000019580)}) waitid(0x0, 0x0, 0x0, 0x0, 0x0) r2 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180)={'syz'}, &(0x7f0000000100), 0xca, 0xfffffffffffffffe) keyctl$read(0x2, r2, 0x0, 0x0) r3 = request_key(&(0x7f0000000240)='pkcs7_test\x00', &(0x7f0000000280)={'syz', 0x1}, &(0x7f0000000300)='\x00!\xf1;\xdd\xf63\x0fI\x9ab\x83\xa7\xa3\xd9\xa5\xb9\xec\xb2B\xfeh\x94\x9a\xf1\xe3\xc6)A\xf7\x18l\xe3\x11\x159\xc9\x06B\x02=1\x04\xf5\x8e\xb8\x0fe\v\x16\x12;\xb6j\tF\xbe\x8e\xe8;\xf6\xd3y2H\x913b\xc1\xbb\x8d\x8c\xd5\xc2\x83\xb8u\xc3KQ4aH\xff2\xaa\xd0e\xa5\xd62\x10k\xe9)$\xaaha\x9al.<;\x0f\xcaY\v\x98\xf6}', r2) add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000100)={'syz', 0x3}, &(0x7f00000001c0)="084b1e7099a163e1e1392b0128b033b11ce3e8fcd43f72f8e71909577450b00055c2349e3a42662c7a2728b4918f27eb86040eecb54bc00b9289504cb3ad19e1f1a73f6d975b277607efecf925b3a14587451bbfe49a2206cdf315dc295e3268a9cb13b400b5b9", 0x67, r3) r4 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180)={'syz'}, &(0x7f0000000100), 0xca, 0xfffffffffffffffe) keyctl$read(0x2, r4, 0x0, 0x0) request_key(&(0x7f0000000240)='pkcs7_test\x00', &(0x7f0000000280)={'syz', 0x1}, &(0x7f0000000300)='\x00!\xf1;\xdd\xf63\x0fI\x9ab\x83\xa7\xa3\xd9\xa5\xb9\xec\xb2B\xfeh\x94\x9a\xf1\xe3\xc6)A\xf7\x18l\xe3\x11\x159\xc9\x06B\x02=1\x04\xf5\x8e\xb8\x0fe\v\x16\x12;\xb6j\tF\xbe\x8e\xe8;\xf6\xd3y2H\x913b\xc1\xbb\x8d\x8c\xd5\xc2\x83\xb8u\xc3KQ4aH\xff2\xaa\xd0e\xa5\xd62\x10k\xe9)$\xaaha\x9al.<;\x0f\xcaY\v\x98\xf6}', r4) r5 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180)={'syz'}, &(0x7f0000000100), 0xca, 0xfffffffffffffffe) keyctl$read(0x2, r5, 0x0, 0x0) r6 = request_key(&(0x7f0000000240)='pkcs7_test\x00', &(0x7f0000000280)={'syz', 0x1}, &(0x7f0000000300)='\x00!\xf1;\xdd\xf63\x0fI\x9ab\x83\xa7\xa3\xd9\xa5\xb9\xec\xb2B\xfeh\x94\x9a\xf1\xe3\xc6)A\xf7\x18l\xe3\x11\x159\xc9\x06B\x02=1\x04\xf5\x8e\xb8\x0fe\v\x16\x12;\xb6j\tF\xbe\x8e\xe8;\xf6\xd3y2H\x913b\xc1\xbb\x8d\x8c\xd5\xc2\x83\xb8u\xc3KQ4aH\xff2\xaa\xd0e\xa5\xd62\x10k\xe9)$\xaaha\x9al.<;\x0f\xcaY\v\x98\xf6}', r5) add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000100)={'syz', 0x3}, &(0x7f00000001c0)="084b1e7099a163e1e1392b0128b033b11ce3e8fcd43f72f8e71909577450b00055c2349e3a42662c7a2728b4918f27eb86040eecb54bc00b9289504cb3ad19e1f1a73f6d975b277607efecf925b3a14587451bbfe49a2206cdf315dc295e3268a9cb13b400b5b9", 0x67, r6) keyctl$KEYCTL_MOVE(0x1e, 0x0, 0x0, 0x0, 0x0) 10:51:35 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, 0x0, &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a0f871ea17933573f853e930c697757d504a908fa01a7faccfff0a28d2725b2eedc8fc5836595e9264f21f43f7df83d972bd61304d71f599b115be1c3a70e"]) 10:51:35 executing program 3: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket(0x80000000000000a, 0x2, 0x0) setsockopt$inet6_group_source_req(r0, 0x29, 0x2a, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @remote}}}, 0x108) 10:51:35 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a0f871ea17933573f853e930c697757d504a908fa01a7faccfff0a28d2725b2eedc8fc5836595e9264f21f43f7df83d972bd61304d71f599b115be1c3a70e"]) [ 524.783735][T14308] IPv6: ADDRCONF(NETDEV_CHANGE): gtp0: link becomes ready [ 524.787080][T14310] encrypted_key: insufficient parameters specified [ 524.868143][T14316] encrypted_key: insufficient parameters specified [ 524.898899][T14310] encrypted_key: insufficient parameters specified [ 524.934498][T14316] encrypted_key: insufficient parameters specified [ 524.951846][T14316] encrypted_key: insufficient parameters specified 10:51:35 executing program 2: r0 = open(0x0, 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) [ 525.003633][T14310] encrypted_key: insufficient parameters specified 10:51:35 executing program 1: perf_event_open(&(0x7f00000002c0)={0x2, 0x70, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$unix(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) socket$inet6_sctp(0xa, 0x5, 0x84) r0 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r0, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f00000002c0)=[@in6={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}]}, &(0x7f0000000180)=0x10) getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffffff, 0x84, 0x11, 0x0, 0x0) 10:51:35 executing program 4: r0 = socket(0x80000000000000a, 0x2, 0x0) setsockopt$inet6_group_source_req(r0, 0x29, 0x18, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @remote}}}, 0x108) 10:51:35 executing program 3: perf_event_open(&(0x7f00000002c0)={0x2, 0x70, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0) close(r0) 10:51:35 executing program 5: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000019580)=[{0x6, 0x0, 0x0, 0x7ffffffe}]}) get_robust_list(0x0, &(0x7f00000005c0)=0x0, &(0x7f0000000600)) 10:51:35 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a0f871ea17933573f853e930c697757d504a908fa01a7faccfff0a28d2725b2eedc8fc5836595e9264f21f43f7df83d972bd61304d71f599b115be1c3a70e"]) 10:51:35 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x0, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:51:36 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a0f871ea17933573f853e930c697757d504a908fa01a7faccfff0a28d2725b2eedc8fc5836595e9264f21f43f7df83d972bd61304d71f599b115be1c3a70e"]) 10:51:36 executing program 4: preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000200)=""/148, 0x94}], 0x1, 0x0) r0 = socket$inet(0x2, 0x3, 0x7) setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000acc000)={@multicast2, @multicast1, 0x2}, 0xc) setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x30, &(0x7f00000002c0)={0x2, {{0x2, 0x0, @multicast2}}, 0x0, 0x1, [{{0x2, 0x0, @remote}}]}, 0x110) r1 = syz_open_procfs(0x0, &(0x7f0000000140)='net/mcfilter\x00') preadv(r1, &(0x7f0000000480), 0x1000000000000154, 0x8d) 10:51:36 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) close(r0) 10:51:36 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x200000c, 0x10032, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000040)) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r1, 0x84, 0x70, &(0x7f0000013ff4)=@assoc_value, &(0x7f0000002000)=0x8) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x66, &(0x7f00000000c0), &(0x7f0000000100)=0x10) r3 = dup2(r2, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = dup2(r4, r1) dup3(r5, r0, 0x0) 10:51:36 executing program 5: pipe(&(0x7f0000000300)) openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x400002, 0x21) ioctl$VIDIOC_S_PRIORITY(0xffffffffffffffff, 0x40045644, 0x0) bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0) bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000040), 0x4) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000140)={0xffffffffffffffff, 0x0, 0x0}, 0x10) read$alg(0xffffffffffffffff, 0x0, 0x0) openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000080)='/dev/btrfs-control\x00', 0x0, 0x0) setsockopt$inet_sctp6_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, &(0x7f0000000100), 0x4) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000002ec0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000002900)=""/205, 0xcd}}], 0x1, 0x0, 0x0) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/if_inet6\x00') preadv(r0, &(0x7f00000017c0), 0x1a2, 0x0) 10:51:36 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x0, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:51:36 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, 0x0) [ 526.487074][T14367] overlayfs: missing 'lowerdir' 10:51:37 executing program 4: syz_genetlink_get_family_id$tipc2(0x0) socket$nl_generic(0x10, 0x3, 0x10) dup(0xffffffffffffffff) getpeername$packet(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x4001) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) semget(0x1, 0x0, 0x61c) 10:51:37 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, 0x0) 10:51:37 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x0, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:51:37 executing program 3: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) fcntl$setlease(r0, 0x400, 0x2) 10:51:37 executing program 5: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000019580)=[{0x6, 0x0, 0x0, 0x7ffffffe}]}) capget(&(0x7f0000000140)={0x20071026}, 0x0) [ 526.995575][T14380] overlayfs: missing 'lowerdir' 10:51:37 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, 0x0) [ 527.027722][ T9425] Bluetooth: hci1: Frame reassembly failed (-84) 10:51:37 executing program 4: r0 = memfd_create(&(0x7f0000000140)='\xedr!QY\x88=Vx\xa1\xd1<\xdeb\x17\xd3\xe2i\x1d5\x17\xa4\x00\xd8\x02\x9f\x11\xfa\t\x13]\f\xcbo\xc4X\x00\x94/\x96h\xef~Ms\"\x00\x00', 0x0) write$eventfd(r0, &(0x7f0000000100)=0x20000100000094, 0x8) mknodat(0xffffffffffffffff, 0x0, 0x0, 0x0) sendmsg$RDMA_NLDEV_CMD_RES_MR_GET(0xffffffffffffffff, 0x0, 0x0) write(r0, &(0x7f0000000040)="0600", 0x2) sendfile(r0, r0, &(0x7f00000000c0), 0xfeff) socket$inet_sctp(0x2, 0x0, 0x84) setsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, 0x0, 0x0) mmap(&(0x7f0000000000/0x7000)=nil, 0x7000, 0x80000000004, 0x11, r0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f000001a000)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f000002eff0)={0x1ba, &(0x7f0000000000)=[{0xa4}]}, 0x10) [ 527.260409][T14395] capability: warning: `syz-executor.5' uses deprecated v2 capabilities in a way that may be insecure [ 527.415414][T14399] overlayfs: missing 'lowerdir' [ 528.333015][ T31] Bluetooth: hci0: command 0x1003 tx timeout [ 528.339395][T14388] Bluetooth: hci0: sending frame failed (-49) [ 529.053226][ T31] Bluetooth: hci1: command 0x1003 tx timeout [ 529.059583][T14388] Bluetooth: hci1: sending frame failed (-49) [ 530.412355][ T31] Bluetooth: hci0: command 0x1001 tx timeout [ 530.418659][T14388] Bluetooth: hci0: sending frame failed (-49) [ 531.133687][ T31] Bluetooth: hci1: command 0x1001 tx timeout [ 531.140642][T14388] Bluetooth: hci1: sending frame failed (-49) [ 532.495813][ T31] Bluetooth: hci0: command 0x1009 tx timeout [ 533.213382][ T31] Bluetooth: hci1: command 0x1009 tx timeout 10:51:47 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) close(r0) 10:51:47 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(0xffffffffffffffff, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:51:47 executing program 3: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000019580)=[{0x6, 0x0, 0x0, 0x7ffffffe}]}) uname(&(0x7f0000000040)=""/37) 10:51:47 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[]) 10:51:47 executing program 5: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000019580)=[{0x6, 0x0, 0x0, 0x7ffffffe}]}) sigaltstack(&(0x7f0000ffb000/0x2000)=nil, 0x0) 10:51:47 executing program 4: r0 = memfd_create(&(0x7f0000000140)='\xedr!QY\x88=Vx\xa1\xd1<\xdeb\x17\xd3\xe2i\x1d5\x17\xa4\x00\xd8\x02\x9f\x11\xfa\t\x13]\f\xcbo\xc4X\x00\x94/\x96h\xef~Ms\"\x00\x00', 0x0) write$eventfd(r0, &(0x7f0000000100)=0x20000100000094, 0x8) mknodat(0xffffffffffffffff, 0x0, 0x0, 0x0) sendmsg$RDMA_NLDEV_CMD_RES_MR_GET(0xffffffffffffffff, 0x0, 0x0) write(r0, &(0x7f0000000040)="0600", 0x2) sendfile(r0, r0, &(0x7f00000000c0), 0xfeff) socket$inet_sctp(0x2, 0x0, 0x84) setsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, 0x0, 0x0) mmap(&(0x7f0000000000/0x7000)=nil, 0x7000, 0x80000000004, 0x11, r0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f000001a000)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f000002eff0)={0x1ba, &(0x7f0000000000)=[{0xa4}]}, 0x10) [ 537.567857][T14431] overlayfs: missing 'lowerdir' 10:51:48 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[]) 10:51:48 executing program 3: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000019580)=[{0x6, 0x0, 0x0, 0x7ffffffe}]}) uname(&(0x7f0000000040)=""/37) 10:51:48 executing program 5: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000019580)=[{0x6, 0x0, 0x0, 0x7ffffffe}]}) sigaltstack(&(0x7f0000ffb000/0x2000)=nil, 0x0) 10:51:48 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(0xffffffffffffffff, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) [ 537.868556][ T9425] Bluetooth: hci0: Frame reassembly failed (-84) [ 538.016803][T14446] overlayfs: missing 'lowerdir' 10:51:48 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[]) 10:51:48 executing program 5: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000019580)=[{0x6, 0x0, 0x0, 0x7ffffffe}]}) sigaltstack(&(0x7f0000ffb000/0x2000)=nil, 0x0) [ 538.590796][T14456] overlayfs: missing 'lowerdir' [ 539.932808][ T8687] Bluetooth: hci0: command 0x1003 tx timeout [ 539.939180][ T2191] Bluetooth: hci0: sending frame failed (-49) [ 542.012316][ T8687] Bluetooth: hci0: command 0x1001 tx timeout [ 542.018700][ T2191] Bluetooth: hci0: sending frame failed (-49) [ 544.092270][ T8687] Bluetooth: hci0: command 0x1009 tx timeout 10:51:58 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) close(r0) 10:51:58 executing program 3: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000019580)=[{0x6, 0x0, 0x0, 0x7ffffffe}]}) uname(&(0x7f0000000040)=""/37) 10:51:58 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB]) 10:51:58 executing program 4: r0 = memfd_create(&(0x7f0000000140)='\xedr!QY\x88=Vx\xa1\xd1<\xdeb\x17\xd3\xe2i\x1d5\x17\xa4\x00\xd8\x02\x9f\x11\xfa\t\x13]\f\xcbo\xc4X\x00\x94/\x96h\xef~Ms\"\x00\x00', 0x0) write$eventfd(r0, &(0x7f0000000100)=0x20000100000094, 0x8) mknodat(0xffffffffffffffff, 0x0, 0x0, 0x0) sendmsg$RDMA_NLDEV_CMD_RES_MR_GET(0xffffffffffffffff, 0x0, 0x0) write(r0, &(0x7f0000000040)="0600", 0x2) sendfile(r0, r0, &(0x7f00000000c0), 0xfeff) socket$inet_sctp(0x2, 0x0, 0x84) setsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, 0x0, 0x0) mmap(&(0x7f0000000000/0x7000)=nil, 0x7000, 0x80000000004, 0x11, r0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f000001a000)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f000002eff0)={0x1ba, &(0x7f0000000000)=[{0xa4}]}, 0x10) 10:51:58 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket(0x80000000000000a, 0x2, 0x0) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000040)={{{@in6=@private2, @in=@multicast2}, {}, {0x80000001}}, {{@in=@broadcast}, 0x0, @in6=@dev}}, 0xe8) 10:51:58 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(0xffffffffffffffff, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) [ 548.482562][T14482] overlayfs: missing 'lowerdir' 10:51:59 executing program 3: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000019580)=[{0x6, 0x0, 0x0, 0x7ffffffe}]}) uname(&(0x7f0000000040)=""/37) 10:51:59 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = fcntl$dupfd(r1, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0x6}, 0x1c) sendmmsg(r3, &(0x7f000000ac80), 0x66, 0x0) 10:51:59 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB]) 10:51:59 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$lock(r0, 0x7, &(0x7f0000000000)={0x2}) [ 549.503446][T14503] overlayfs: missing 'lowerdir' 10:52:00 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x0) fcntl$setlease(r0, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:52:00 executing program 4: r0 = memfd_create(&(0x7f0000000140)='\xedr!QY\x88=Vx\xa1\xd1<\xdeb\x17\xd3\xe2i\x1d5\x17\xa4\x00\xd8\x02\x9f\x11\xfa\t\x13]\f\xcbo\xc4X\x00\x94/\x96h\xef~Ms\"\x00\x00', 0x0) write$eventfd(r0, &(0x7f0000000100)=0x20000100000094, 0x8) mknodat(0xffffffffffffffff, 0x0, 0x0, 0x0) sendmsg$RDMA_NLDEV_CMD_RES_MR_GET(0xffffffffffffffff, 0x0, 0x0) write(r0, &(0x7f0000000040)="0600", 0x2) sendfile(r0, r0, &(0x7f00000000c0), 0xfeff) socket$inet_sctp(0x2, 0x0, 0x84) setsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, 0x0, 0x0) mmap(&(0x7f0000000000/0x7000)=nil, 0x7000, 0x80000000004, 0x11, r0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f000001a000)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f000002eff0)={0x1ba, &(0x7f0000000000)=[{0xa4}]}, 0x10) 10:52:00 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB]) 10:52:00 executing program 3: uname(&(0x7f0000000040)=""/37) 10:52:00 executing program 1: r0 = socket(0x80000000000000a, 0x2, 0x0) r1 = socket(0x80000000000000a, 0x2, 0x0) setsockopt$inet6_group_source_req(r1, 0x29, 0x2a, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @remote}}}, 0x108) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) dup2(r0, r1) [ 550.116669][T14517] overlayfs: missing 'lowerdir' 10:52:00 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a"]) 10:52:00 executing program 5: r0 = socket(0x1e, 0x805, 0x0) connect$tipc(r0, &(0x7f0000000000)=@id, 0x10) 10:52:00 executing program 3: uname(&(0x7f0000000040)=""/37) 10:52:01 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x0) fcntl$setlease(r0, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) [ 550.591530][T14527] overlayfs: unrecognized mount option "indmx=off" or missing value 10:52:01 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a"]) 10:52:01 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/protocols\x00') r1 = openat$random(0xffffffffffffff9c, &(0x7f0000000240)='/dev/urandom\x00', 0x0, 0x0) dup3(r1, r0, 0x0) 10:52:01 executing program 3: uname(&(0x7f0000000040)=""/37) 10:52:01 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a"]) [ 551.037671][T14538] overlayfs: unrecognized mount option "indmx=off" or missing value 10:52:01 executing program 4: unshare(0x2a000400) mkdir(&(0x7f0000000380)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = fcntl$dupfd(r1, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) r4 = openat$cgroup_procs(r3, &(0x7f00000001c0)='cgroup.procs\x00', 0x2, 0x0) writev(r4, &(0x7f0000000080)=[{&(0x7f0000000000)='0', 0x1}, {&(0x7f0000000280)='0', 0x1}, {&(0x7f00000002c0)}], 0x3) 10:52:01 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$vfat(&(0x7f0000000040)='vfat\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='errors=remount-ro']) 10:52:01 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x0) fcntl$setlease(r0, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:52:01 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a0f871ea17933573f853e930c697757d504a908fa01a7faccfff0a28d2725b2"]) 10:52:01 executing program 1: eventfd(0x0) r0 = socket(0x10, 0x3, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000100)='fdinfo/3\x00') r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) sendfile(r0, r1, 0x0, 0x7) [ 551.361392][T14548] overlayfs: unrecognized mount option "indmx=off" or missing value [ 551.448782][T14550] FAT-fs (loop5): bogus number of reserved sectors [ 551.456093][T14550] FAT-fs (loop5): Can't find a valid FAT filesystem 10:52:02 executing program 3: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0) uname(&(0x7f0000000040)=""/37) 10:52:02 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(0xffffffffffffffff, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:52:02 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket(0x80000000000000a, 0x2, 0x0) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000040)={{{@in6=@private2, @in=@multicast2}}, {{@in=@broadcast}, 0x0, @in6=@dev}}, 0xe8) 10:52:02 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='lp\x00', 0x3) getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, 0x0, &(0x7f0000000040)) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, [], 0x1c}, 0xd}, 0x1c) sendto$inet6(r0, &(0x7f0000000200)='\n', 0xfffffdef, 0x40080, 0x0, 0x1f4) [ 551.879441][T14563] overlayfs: unrecognized mount option "indmx=off" or missing value 10:52:02 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a"]) 10:52:02 executing program 3: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0) uname(&(0x7f0000000040)=""/37) 10:52:02 executing program 1: syz_mount_image$msdos(&(0x7f00000001c0)='msdos\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)={[], [{@smackfsfloor={'smackfsfloor', 0x3d, '/dev/sequencer\x00'}}]}) [ 552.174153][T14578] overlayfs: unrecognized mount option "indmx=off" or missing value 10:52:02 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a"]) 10:52:02 executing program 5: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000380)={0x1f, 0xffff, 0x3}, 0x6) 10:52:03 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(0xffffffffffffffff, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) [ 552.760341][T14585] overlayfs: unrecognized mount option "indmx=off" or missing value [ 552.888878][T14586] FAT-fs (loop1): Unrecognized mount option "smackfsfloor=/dev/sequencer" or missing value 10:52:03 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a"]) 10:52:03 executing program 3: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0) uname(&(0x7f0000000040)=""/37) 10:52:03 executing program 5: openat$vim2m(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vim2m\x00', 0x2, 0x0) 10:52:03 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(0xffffffffffffffff, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:52:03 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a0f871ea17933573f853e930c697757d5"]) [ 553.309004][T14601] overlayfs: unrecognized mount option "indmx=off" or missing value 10:52:03 executing program 4: r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vim2m\x00', 0x2, 0x0) ioctl$vim2m_VIDIOC_TRY_FMT(r0, 0xc0d05640, &(0x7f0000000200)={0x1}) [ 553.410112][T14586] FAT-fs (loop1): Unrecognized mount option "smackfsfloor=/dev/sequencer" or missing value 10:52:03 executing program 3: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x0, 0x0}) uname(&(0x7f0000000040)=""/37) 10:52:04 executing program 1: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) [ 553.828553][T14616] overlayfs: unrecognized mount option "indmx=off" or missing value 10:52:04 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a0f871ea17933573f853e930c697757d5"]) 10:52:04 executing program 5: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000300)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000000)={0xffffffffffffffff}, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000180)={0xe, 0x3, 0xfa00, @id_resuseaddr={&(0x7f0000000480), r1, 0x0, 0x1, 0x4}}, 0x20) 10:52:04 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:52:04 executing program 3: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x0, 0x0}) uname(0x0) 10:52:04 executing program 4: syz_open_dev$usbmon(&(0x7f0000000100)='/dev/usbmon#\x00', 0x0, 0x0) [ 554.359487][T14628] overlayfs: unrecognized mount option "indmx=off" or missing value 10:52:04 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a0f871ea17933573f853e930c697757d5"]) 10:52:04 executing program 1: open(&(0x7f0000000080)='./file0\x00', 0x60c5, 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) 10:52:05 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:52:05 executing program 5: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001}) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @remote}}) write$tun(r0, &(0x7f0000000180)=ANY=[@ANYBLOB="0300000000000a00000060ef7b00080000000000000000ff0200000020000000000000000000f28b009078000000005020c70539"], 0xfdef) 10:52:05 executing program 3: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x0, 0x0}) uname(0x0) 10:52:05 executing program 4: openat$capi20(0xffffffffffffff9c, &(0x7f0000000000)='/dev/capi20\x00', 0x105101, 0x0) [ 554.838655][T14641] overlayfs: unrecognized mount option "indmx=off" or missing value 10:52:05 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a0f871ea17933573f853e930c697757d504a908fa01a7facc"]) 10:52:05 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) listen(r1, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x20004004, &(0x7f0000000040)={0xa, 0x20004e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f0000000080)="39a10b", 0xffffffffffffffc1, 0x40, 0x0, 0xfffffffffffffe5b) 10:52:05 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:52:05 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a0f871ea17933573f853e930c697757d504a908fa01a7facc"]) [ 555.233867][T14659] overlayfs: unrecognized mount option "indmx=off" or missing value 10:52:05 executing program 4: syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @dev, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @private}, @address_reply}}}}, 0x0) 10:52:05 executing program 3: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x0, 0x0}) uname(0x0) [ 555.465206][ C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. [ 555.572494][T14666] overlayfs: unrecognized mount option "indmx=off" or missing value 10:52:06 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a0f871ea17933573f853e930c697757d504a908fa01a7facc"]) [ 555.676339][ C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. 10:52:06 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:52:06 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0xa, 0x1, 0x0) setsockopt$IP_VS_SO_SET_STOPDAEMON(0xffffffffffffffff, 0x0, 0x48c, &(0x7f0000000000)={0x0, 'veth1_to_hsr\x00', 0x3}, 0x18) ioctl(r2, 0x8916, 0x0) r3 = socket(0x80000000000000a, 0x2, 0x0) connect$inet6(r3, &(0x7f0000000040)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) ioctl(r2, 0x8936, &(0x7f0000000000)) setsockopt$inet6_group_source_req(r3, 0x29, 0x11, &(0x7f0000000300)={0x9, {{0xa, 0x0, 0x0, @mcast1}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108) [ 556.106792][T14679] overlayfs: unrecognized mount option "indmx=off" or missing value 10:52:06 executing program 5: r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0) fcntl$setstatus(r0, 0x4, 0x6900) ftruncate(r0, 0x800) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000001840)='./bus\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x8400fffffff6) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$sock_inet_SIOCGIFPFLAGS(0xffffffffffffffff, 0x8935, 0x0) sendfile(r0, r1, 0x0, 0xffffffff) 10:52:06 executing program 1: perf_event_open(&(0x7f00000000c0)={0x2, 0x70, 0x43, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0) fcntl$setstatus(r0, 0x4, 0x6900) ftruncate(r0, 0x800) lseek(0xffffffffffffffff, 0x0, 0x0) r1 = open(&(0x7f0000001840)='./bus\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x8400fffffff6) 10:52:06 executing program 3: perf_event_open(&(0x7f00000000c0)={0x2, 0x70, 0x43, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x3}, 0x1000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0) fcntl$setstatus(r0, 0x4, 0x6900) ftruncate(r0, 0x800) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000001840)='./bus\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x8400fffffff6) socket$inet_icmp_raw(0x2, 0x3, 0x1) sendfile(r0, r1, 0x0, 0xffffffff) 10:52:06 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a0f871ea17933573f853e930c697757d504a908fa01a7faccfff0a28d"]) 10:52:06 executing program 4: perf_event_open(&(0x7f00000000c0)={0x2, 0x70, 0x43, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0) fcntl$setstatus(r0, 0x4, 0x6900) ftruncate(r0, 0x800) lseek(r0, 0x0, 0x2) r1 = open(&(0x7f0000001840)='./bus\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x8400fffffff6) sendfile(r0, r1, 0x0, 0xffffffff) [ 556.584846][T14692] overlayfs: unrecognized mount option "indmx=off" or missing value 10:52:07 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a0f871ea17933573f853e930c697757d504a908fa01a7faccfff0a28d"]) [ 556.635110][ T32] audit: type=1804 audit(1595155927.100:44): pid=14695 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir456510836/syzkaller.phv5Q5/199/bus" dev="sda1" ino=16336 res=1 [ 556.801361][ T32] audit: type=1804 audit(1595155927.130:45): pid=14696 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir869734234/syzkaller.vYAB6P/172/bus" dev="sda1" ino=16335 res=1 [ 556.826593][ T32] audit: type=1804 audit(1595155927.150:46): pid=14695 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir456510836/syzkaller.phv5Q5/199/bus" dev="sda1" ino=16336 res=1 [ 556.851533][ T32] audit: type=1804 audit(1595155927.200:47): pid=14698 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir558773323/syzkaller.bz7hRh/154/bus" dev="sda1" ino=16348 res=1 10:52:07 executing program 1: [ 557.209963][T14706] overlayfs: unrecognized mount option "indmx=off" or missing value 10:52:07 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a0f871ea17933573f853e930c697757d504a908fa01a7faccfff0a28d"]) 10:52:07 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) [ 557.579560][ T32] audit: type=1804 audit(1595155927.410:48): pid=14702 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.5" name="/root/syzkaller-testdir753006773/syzkaller.iHjTs0/156/bus" dev="sda1" ino=16332 res=1 [ 557.604696][ T32] audit: type=1804 audit(1595155927.890:49): pid=14708 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=ToMToU comm="syz-executor.3" name="/root/syzkaller-testdir869734234/syzkaller.vYAB6P/172/bus" dev="sda1" ino=16335 res=1 [ 557.629022][ T32] audit: type=1804 audit(1595155927.910:50): pid=14709 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir869734234/syzkaller.vYAB6P/172/bus" dev="sda1" ino=16335 res=1 [ 557.653783][ T32] audit: type=1804 audit(1595155928.010:51): pid=14712 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=ToMToU comm="syz-executor.4" name="/root/syzkaller-testdir558773323/syzkaller.bz7hRh/154/bus" dev="sda1" ino=16348 res=1 [ 557.678064][ T32] audit: type=1804 audit(1595155928.030:52): pid=14698 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir558773323/syzkaller.bz7hRh/154/bus" dev="sda1" ino=16348 res=1 10:52:08 executing program 3: 10:52:08 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a0f871ea17933573f853e930c697757d504a908fa01a7faccfff0a28d2725"]) [ 557.758481][T14719] overlayfs: unrecognized mount option "indmx=off" or missing value [ 557.834749][ T32] audit: type=1804 audit(1595155928.170:53): pid=14715 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=ToMToU comm="syz-executor.5" name="/root/syzkaller-testdir753006773/syzkaller.iHjTs0/156/bus" dev="sda1" ino=16332 res=1 10:52:08 executing program 4: 10:52:08 executing program 5: pipe(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = socket$inet6(0xa, 0x2, 0x0) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) bind$inet(r2, &(0x7f0000000080)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x1c}}, 0x21) connect$inet(r2, &(0x7f00000000c0)={0x2, 0x0, @multicast1}, 0x10) r5 = socket$packet(0x11, 0x3, 0x300) recvmmsg(r5, &(0x7f0000000300), 0x128, 0x0, 0x0) splice(r0, 0x0, r2, 0x0, 0x100000, 0x0) 10:52:08 executing program 1: [ 558.187936][T14726] overlayfs: unrecognized mount option "indmx=off" or missing value 10:52:08 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a0f871ea17933573f853e930c697757d504a908fa01a7faccfff0a28d27"]) 10:52:08 executing program 3: capset(&(0x7f0000002ffa)={0x19980330}, &(0x7f0000000000)) r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_open_procfs(0x0, &(0x7f0000000040)='attr/prev\x00') 10:52:09 executing program 4: 10:52:09 executing program 1: [ 558.619289][T14737] capability: warning: `syz-executor.3' uses 32-bit capabilities (legacy support in use) [ 558.636527][T14736] overlayfs: unrecognized mount option "indmx=off" or missing value 10:52:09 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a0f871ea17933573f853e930c697757d504a908fa01a7faccfff0a28d"]) 10:52:09 executing program 3: 10:52:09 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:52:09 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a0f871ea17933573f853e930c697757d504a908fa01a7faccfff0a28d"]) [ 559.015375][T14745] overlayfs: unrecognized mount option "indmx=off" or missing value 10:52:09 executing program 3: 10:52:09 executing program 4: [ 559.368019][T14751] overlayfs: unrecognized mount option "indmx=off" or missing value 10:52:09 executing program 5: 10:52:09 executing program 1: 10:52:09 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="696e646d783d6f66662c646f6e745f6d6561637572652c686173682c6673636f6e746578743d2222636f63c6e4ad64e4647ceb3051031a90f0e59dda886a0f871ea17933573f853e930c697757d504a908fa01a7faccfff0a28d"]) 10:52:10 executing program 4: 10:52:10 executing program 3: 10:52:10 executing program 1: [ 559.744351][T14758] overlayfs: unrecognized mount option "indmx=off" or missing value 10:52:10 executing program 5: 10:52:10 executing program 4: 10:52:10 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:52:10 executing program 0: r0 = memfd_create(&(0x7f0000000140)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\b\x00\x00\x00oJ\x02u\x9b\xafa\xac', 0x4) fallocate(r0, 0x0, 0x0, 0x7ff) 10:52:10 executing program 1: 10:52:10 executing program 3: 10:52:10 executing program 5: 10:52:10 executing program 0: 10:52:11 executing program 4: 10:52:11 executing program 1: 10:52:11 executing program 3: 10:52:11 executing program 5: 10:52:11 executing program 0: 10:52:11 executing program 4: 10:52:11 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:52:11 executing program 1: 10:52:11 executing program 3: 10:52:11 executing program 5: 10:52:12 executing program 0: 10:52:12 executing program 1: 10:52:12 executing program 3: 10:52:12 executing program 4: 10:52:12 executing program 5: 10:52:12 executing program 0: 10:52:12 executing program 4: 10:52:12 executing program 3: 10:52:13 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:52:13 executing program 1: 10:52:13 executing program 5: 10:52:13 executing program 4: 10:52:13 executing program 0: 10:52:13 executing program 3: 10:52:13 executing program 1: 10:52:13 executing program 5: 10:52:13 executing program 3: 10:52:13 executing program 4: 10:52:13 executing program 0: 10:52:13 executing program 1: 10:52:14 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:52:14 executing program 5: 10:52:14 executing program 0: 10:52:14 executing program 4: 10:52:14 executing program 3: 10:52:14 executing program 1: 10:52:14 executing program 5: 10:52:14 executing program 0: 10:52:14 executing program 3: 10:52:14 executing program 4: 10:52:14 executing program 1: 10:52:15 executing program 0: 10:52:15 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:52:15 executing program 5: 10:52:15 executing program 3: 10:52:15 executing program 4: 10:52:15 executing program 1: 10:52:15 executing program 0: 10:52:15 executing program 1: 10:52:15 executing program 3: 10:52:15 executing program 4: 10:52:15 executing program 0: 10:52:15 executing program 5: 10:52:16 executing program 1: 10:52:16 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:52:16 executing program 3: 10:52:16 executing program 4: 10:52:16 executing program 5: 10:52:16 executing program 0: 10:52:16 executing program 1: 10:52:16 executing program 4: 10:52:16 executing program 5: 10:52:16 executing program 0: 10:52:16 executing program 3: 10:52:16 executing program 1: 10:52:17 executing program 4: 10:52:17 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:52:17 executing program 0: 10:52:17 executing program 5: 10:52:17 executing program 3: 10:52:17 executing program 1: 10:52:17 executing program 4: 10:52:18 executing program 5: 10:52:18 executing program 0: 10:52:18 executing program 1: 10:52:18 executing program 4: 10:52:18 executing program 3: 10:52:18 executing program 5: 10:52:18 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:52:18 executing program 4: 10:52:18 executing program 1: 10:52:18 executing program 0: 10:52:18 executing program 3: 10:52:18 executing program 5: 10:52:19 executing program 3: 10:52:19 executing program 1: 10:52:19 executing program 4: 10:52:19 executing program 0: 10:52:19 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 10:52:19 executing program 5: 10:52:19 executing program 4: 10:52:19 executing program 1: 10:52:19 executing program 0: 10:52:19 executing program 3: syz_mount_image$reiserfs(&(0x7f0000000040)='reiserfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[{@usrquota='usrquota', 0x3d}]}) 10:52:19 executing program 5: perf_event_open(&(0x7f0000000100)={0x2, 0x70, 0xd5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x11, r0, 0x0) poll(&(0x7f0000000000)=[{r0}], 0x1, 0x0) [ 569.507929][T14897] REISERFS warning (device loop3): super-6503 reiserfs_getopt: the option "usrquota" does not require an argument [ 569.507929][T14897] 10:52:20 executing program 4: perf_event_open(&(0x7f0000000100)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/seq\x00', 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip6_tables_matches\x00') readv(r0, &(0x7f0000002340)=[{&(0x7f00000001c0)=""/4096, 0x141b}], 0x1) readv(r0, &(0x7f0000000580), 0x3c1) 10:52:20 executing program 0: openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/seq\x00', 0x70000) perf_event_open(&(0x7f0000000100)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket(0x0, 0x0, 0x8fe8) ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000080)={'wg1\x00'}) socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x40000000015, 0x5, 0x0) connect$inet(r1, &(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10) setsockopt$SO_RDS_TRANSPORT(r1, 0x114, 0x8, &(0x7f00000008c0)=0x2, 0x4) bind$inet(r1, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x0, 0x0, 0x0) 10:52:20 executing program 1: perf_event_open(&(0x7f0000000100)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080)='batadv\x00') r2 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f00000000c0)={'batadv0\x00', 0x0}) sendmsg$BATADV_CMD_TP_METER(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)={0x30, r1, 0x7, 0x0, 0x0, {0x2, 0x3}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r3}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @dev}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8}]}, 0x30}}, 0x0) sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, 0x0, 0x0) [ 569.771467][T14897] REISERFS warning (device loop3): super-6503 reiserfs_getopt: the option "usrquota" does not require an argument [ 569.771467][T14897] 10:52:20 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) open(0x0, 0x0, 0x0) 10:52:20 executing program 3: syz_mount_image$reiserfs(&(0x7f0000000040)='reiserfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[{@usrquota='usrquota', 0x3d}]}) [ 571.028386][T14922] REISERFS warning (device loop3): super-6503 reiserfs_getopt: the option "usrquota" does not require an argument [ 571.028386][T14922] 10:52:21 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) open(0x0, 0x0, 0x0) 10:52:21 executing program 3: syz_mount_image$reiserfs(&(0x7f0000000040)='reiserfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[{@usrquota='usrquota', 0x3d}]}) 10:52:21 executing program 1: perf_event_open(&(0x7f0000000100)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip6_tables_matches\x00') readv(r0, 0x0, 0x0) 10:52:21 executing program 5: perf_event_open(&(0x7f0000000100)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) close(r0) r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000300)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000000)={0xffffffffffffffff}, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_SET_OPTION(r1, &(0x7f0000000180)={0xe, 0x3, 0xfa00, @id_resuseaddr={&(0x7f0000000480)=0x1, r2, 0x0, 0x1, 0x4}}, 0x20) write$RDMA_USER_CM_CMD_LISTEN(r0, &(0x7f0000002b80)={0x7, 0x8, 0xfa00, {r2}}, 0x10) 10:52:22 executing program 0: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_dev$usbmon(&(0x7f0000000100)='/dev/usbmon#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$MON_IOCX_GETX(r0, 0x4018920a, &(0x7f00000001c0)={0x0, 0x0}) 10:52:22 executing program 2: r0 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0) fcntl$setsig(r0, 0xa, 0x11) fcntl$setlease(r0, 0x400, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) open(0x0, 0x0, 0x0) [ 571.761455][T14940] REISERFS warning (device loop3): super-6503 reiserfs_getopt: the option "usrquota" does not require an argument [ 571.761455][T14940] 10:52:22 executing program 4: perf_event_open(&(0x7f0000000100)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip6_tables_matches\x00') readv(r0, &(0x7f0000002340)=[{&(0x7f00000001c0)=""/4096, 0x141b}], 0x1) readv(r0, &(0x7f0000000580), 0x3c1) syz_genetlink_get_family_id$ipvs(0x0) 10:52:22 executing program 0: syz_emit_ethernet(0xe, &(0x7f0000000080)=ANY=[@ANYBLOB="aaaaaaaaa2aa00008000000086dd"], 0x0) 10:52:22 executing program 1: perf_event_open(&(0x7f0000000100)={0x2, 0x0, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x9}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0) ioctl$PERF_EVENT_IOC_RESET(r1, 0x2403, 0x101) openat$vfio(0xffffffffffffff9c, 0x0, 0x0, 0x0) prctl$PR_CAPBSET_DROP(0x18, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, 0x0, 0x0) 10:52:22 executing program 3: syz_mount_image$reiserfs(&(0x7f0000000040)='reiserfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[{@usrquota='usrquota', 0x3d}]}) 10:52:22 executing program 5: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000100)={0x2, 0x70, 0xd0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) 10:52:22 executing program 2: perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = io_uring_setup(0xa4, &(0x7f0000000000)) io_uring_enter(r0, 0x2, 0x0, 0x3, 0x0, 0xfffffffffffffefa) write$cgroup_int(0xffffffffffffffff, 0x0, 0x0) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) [ 572.503535][T14970] REISERFS warning (device loop3): super-6503 reiserfs_getopt: the option "usrquota" does not require an argument [ 572.503535][T14970] 10:52:23 executing program 0: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$nl_rdma(0x10, 0x3, 0x14) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = socket$alg(0x26, 0x5, 0x0) bind$alg(r3, &(0x7f00000002c0)={0x26, 'hash\x00', 0x0, 0x0, 'sha256-generic\x00'}, 0x58) r4 = accept4(r3, 0x0, 0x0, 0x0) sendmmsg$sock(r4, &(0x7f0000000f80)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1a0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0) 10:52:23 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f00000001c0), 0xfa) sendmsg$key(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000240)={0x2, 0x12, 0x0, 0x0, 0x2}, 0x10}}, 0x0) close(r0) 10:52:23 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000014c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32=r2, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {}, {0x1}}, [@filter_kind_options=@f_flower={{0xb, 0x1, 'flower\x00'}, {0x14, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x86dd}, @TCA_FLOWER_KEY_IP_TOS={0x5}]}}]}, 0x44}}, 0x0) r3 = socket(0x1000000010, 0x80002, 0x0) sendmmsg$alg(r3, &(0x7f0000000200), 0x4924924924926d3, 0x0) 10:52:23 executing program 3: syz_mount_image$reiserfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[{@usrquota='usrquota', 0x3d}]}) 10:52:23 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) readv(r0, &(0x7f0000019fe0)=[{&(0x7f00008ec000)=""/219, 0x18}], 0x1000000000000308) [ 573.025079][T14994] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'. 10:52:23 executing program 4: unshare(0x8000400) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) wait4(0x0, 0x0, 0x80000000, 0x0) r0 = getpid() tkill(r0, 0x9) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x11, r2, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r1, 0x2405, r2) 10:52:23 executing program 0: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x200000c, 0x10032, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000040)) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r1, 0x84, 0x70, &(0x7f0000013ff4)=@assoc_value, &(0x7f0000002000)=0x8) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r1, 0x84, 0x6, &(0x7f0000000140)={0x0, @in6={{0xa, 0x0, 0x0, @private0}}}, &(0x7f00000000c0)=0x84) r3 = dup2(r2, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = dup2(r4, r1) dup3(r5, r0, 0x0) [ 573.163957][T15001] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'. 10:52:23 executing program 3: syz_mount_image$reiserfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[{@usrquota='usrquota', 0x3d}]}) 10:52:23 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000cf6fe4)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback, 0x2}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r1, 0x84, 0xa, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x20) ftruncate(r2, 0x200004) sendfile(r0, r2, 0x0, 0x1d00002e) 10:52:23 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000014c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32=r2, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {}, {0x1}}, [@filter_kind_options=@f_flower={{0xb, 0x1, 'flower\x00'}, {0x14, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x86dd}, @TCA_FLOWER_KEY_IP_TOS={0x5}]}}]}, 0x44}}, 0x0) r3 = socket(0x1000000010, 0x80002, 0x0) sendmmsg$alg(r3, &(0x7f0000000200), 0x4924924924926d3, 0x0) 10:52:24 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setresuid(0x0, 0x0, 0x0) setreuid(0x0, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000cf6fe4)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000ac0)=@sack_info={0x0, 0x0, 0x32}, 0xc) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000100)={0x0, 0x0, 0x20}, 0xc) ftruncate(r2, 0x200004) sendfile(r0, r2, 0x0, 0x80001d00c0d0) dup(0xffffffffffffffff) bpf$MAP_CREATE(0x0, &(0x7f00000002c0)={0xb, 0x6, 0x209e20, 0x0, 0x1}, 0x40) 10:52:24 executing program 3: syz_mount_image$reiserfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[{@usrquota='usrquota', 0x3d}]}) 10:52:24 executing program 0: syz_mount_image$msdos(&(0x7f00000001c0)='msdos\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)={[{@fat=@usefree='usefree'}], [{@smackfsfloor={'smackfsfloor', 0x3d, '/dev/sequencer\x00'}}]}) [ 573.726368][T15023] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'. [ 574.076946][ T32] kauditd_printk_skb: 1 callbacks suppressed [ 574.076996][ T32] audit: type=1800 audit(1595155944.510:55): pid=15034 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.1" name="bus" dev="sda1" ino=15969 res=0 10:52:24 executing program 1: perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = io_uring_setup(0xa4, &(0x7f0000000000)) io_uring_enter(r0, 0x2, 0x0, 0x3, 0x0, 0xfffffffffffffefa) openat$nullb(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$IP_SET_OP_GET_BYINDEX(0xffffffffffffffff, 0x1, 0x53, &(0x7f00000001c0), 0x0) 10:52:24 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000014c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32=r2, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {}, {0x1}}, [@filter_kind_options=@f_flower={{0xb, 0x1, 'flower\x00'}, {0x14, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x86dd}, @TCA_FLOWER_KEY_IP_TOS={0x5}]}}]}, 0x44}}, 0x0) r3 = socket(0x1000000010, 0x80002, 0x0) sendmmsg$alg(r3, &(0x7f0000000200), 0x4924924924926d3, 0x0) 10:52:24 executing program 3: syz_mount_image$reiserfs(&(0x7f0000000040)='reiserfs\x00', 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[{@usrquota='usrquota', 0x3d}]}) [ 574.400340][T15041] FAT-fs (loop0): Unrecognized mount option "smackfsfloor=/dev/sequencer" or missing value 10:52:24 executing program 2: pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r1, &(0x7f00000000c0)=[{&(0x7f0000000180)="77690addcfbe1fbb66ec", 0xff3b}], 0x1, 0x1) close(r1) r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000100)='/dev/nullb0\x00', 0x4000000004002, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r2, 0x0) r3 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r3, &(0x7f0000000140), 0x492492492492805, 0x0) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r1, 0x0, 0x11300, 0x0) 10:52:25 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000200)='IPVS\x00') sendmsg$IPVS_CMD_NEW_SERVICE(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0101000000000000000002"], 0x58}}, 0x0) [ 574.715423][T15041] FAT-fs (loop0): Unrecognized mount option "smackfsfloor=/dev/sequencer" or missing value [ 574.825926][T15049] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'. 10:52:25 executing program 0: r0 = openat$dlm_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_CARD_INFO(r0, 0x81785501, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setresuid(0x0, 0x0, 0x0) setreuid(0x0, 0x0) r1 = socket$inet6(0xa, 0x400000000001, 0x0) close(r1) r2 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000cf6fe4)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r1, 0x84, 0x10, &(0x7f0000000ac0)=@sack_info={0x0, 0x0, 0x32}, 0xc) connect$inet6(r2, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r3 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r2, 0x84, 0x72, &(0x7f0000000100)={0x0, 0x0, 0x20}, 0xc) ftruncate(r3, 0x200004) sendfile(r1, r3, 0x0, 0x80001d00c0d0) dup(0xffffffffffffffff) dup2(0xffffffffffffffff, 0xffffffffffffffff) bpf$MAP_CREATE(0x0, &(0x7f00000002c0)={0x0, 0x0, 0x209e20, 0x2, 0x1}, 0x40) 10:52:25 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000014c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32=r2, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {}, {0x1}}, [@filter_kind_options=@f_flower={{0xb, 0x1, 'flower\x00'}, {0x14, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x86dd}, @TCA_FLOWER_KEY_IP_TOS={0x5}]}}]}, 0x44}}, 0x0) r3 = socket(0x1000000010, 0x80002, 0x0) sendmmsg$alg(r3, &(0x7f0000000200), 0x4924924924926d3, 0x0) 10:52:25 executing program 3: syz_mount_image$reiserfs(&(0x7f0000000040)='reiserfs\x00', 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[{@usrquota='usrquota', 0x3d}]}) 10:52:25 executing program 1: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001}) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$sock_inet_SIOCSIFADDR(r2, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @empty}}) write$tun(r0, &(0x7f0000000200)={@void, @val={0x3, 0x0, 0x7}, @mpls={[], @ipv6=@icmpv6={0x0, 0x6, "9eef7b", 0x8, 0x2f, 0x0, @empty, @mcast2, {[], @echo_request}}}}, 0xfdef) [ 575.252878][T15074] netlink: 68 bytes leftover after parsing attributes in process `syz-executor.4'. [ 575.344640][T15077] netlink: 68 bytes leftover after parsing attributes in process `syz-executor.4'. [ 575.361158][T15078] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'. 10:52:26 executing program 3: syz_mount_image$reiserfs(&(0x7f0000000040)='reiserfs\x00', 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[{@usrquota='usrquota', 0x3d}]}) 10:52:26 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000014c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32=r2, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {}, {0x1}}, [@filter_kind_options=@f_flower={{0xb, 0x1, 'flower\x00'}, {0x14, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x86dd}, @TCA_FLOWER_KEY_IP_TOS={0x5}]}}]}, 0x44}}, 0x0) sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000200), 0x4924924924926d3, 0x0) 10:52:26 executing program 4: recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000000080)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0xffffff88, 0x0, 0x26}}], 0x1, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/route\x00') preadv(r2, &(0x7f00000017c0), 0x315, 0x800000) [ 576.103483][ T32] audit: type=1800 audit(1595155946.570:56): pid=15086 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.0" name="bus" dev="sda1" ino=16371 res=0 10:52:26 executing program 2: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) 10:52:26 executing program 0: r0 = openat$random(0xffffff9c, &(0x7f0000000380)='/dev/urandom\x00', 0x0, 0x0) ioctl$RNDADDTOENTCNT(r0, 0x40045201, &(0x7f00000003c0)) 10:52:26 executing program 3: syz_mount_image$reiserfs(&(0x7f0000000040)='reiserfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 576.534439][T15099] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'. 10:52:27 executing program 4: r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ppp\x00', 0x0, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000018c0)=""/246) ioctl$PPPIOCSFLAGS1(r0, 0x40047459, 0x0) 10:52:27 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000200)='IPVS\x00') sendmsg$IPVS_CMD_NEW_SERVICE(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0101000000000000000002000000440001000c00070000000000960000000c0006006c626c637200000008000b000a69700008000800000000000800090000000000080001000a000000080005"], 0x58}}, 0x0) 10:52:27 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000014c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32=r2, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {}, {0x1}}, [@filter_kind_options=@f_flower={{0xb, 0x1, 'flower\x00'}, {0x14, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x86dd}, @TCA_FLOWER_KEY_IP_TOS={0x5}]}}]}, 0x44}}, 0x0) sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000200), 0x4924924924926d3, 0x0) 10:52:27 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001}) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$sock_inet_SIOCSIFADDR(r2, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @empty}}) write$tun(r0, &(0x7f0000000200)={@void, @val={0x0, 0x0, 0x7}, @mpls={[], @ipv6=@icmpv6={0x0, 0x6, "9eef7b", 0x8, 0x3c, 0x0, @empty, @mcast2, {[], @echo_request}}}}, 0xfdef) 10:52:27 executing program 0: socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet6(0xa, 0x3, 0x6) r3 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') sendfile(r2, r3, &(0x7f0000000240)=0x202, 0x4000000000dc) 10:52:27 executing program 3: syz_mount_image$reiserfs(&(0x7f0000000040)='reiserfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 10:52:27 executing program 4: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2300000025000511d25a80638c63940d0424fc60040018000a001100022f000037153e", 0x23}], 0x1}, 0x0) [ 577.291037][T15143] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'. [ 577.346997][T15149] netlink: 'syz-executor.1': attribute type 1 has an invalid length. [ 577.429652][T15154] netlink: 'syz-executor.1': attribute type 1 has an invalid length. 10:52:28 executing program 2: r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000000)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) ioctl$SECCOMP_IOCTL_NOTIF_SEND(r0, 0xc0182101, 0x0) 10:52:28 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000014c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32=r2, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {}, {0x1}}, [@filter_kind_options=@f_flower={{0xb, 0x1, 'flower\x00'}, {0x14, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x86dd}, @TCA_FLOWER_KEY_IP_TOS={0x5}]}}]}, 0x44}}, 0x0) sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000200), 0x4924924924926d3, 0x0) 10:52:28 executing program 0: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="6c00000010000104fcffff0f0000000000000000", @ANYRES32=0x0, @ANYBLOB="08000000000000004c00128009000100626f6e64000000003c0002800800040005000000080003000900040008000b00", @ANYRES32, @ANYBLOB], 0x6c}}, 0x0) 10:52:28 executing program 4: syz_mount_image$msdos(&(0x7f00000001c0)='msdos\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)={[{@fat=@allow_utime={'allow_utime'}}], [{@smackfsfloor={'smackfsfloor', 0x3d, '/dev/sequencer\x00'}}]}) 10:52:28 executing program 1: r0 = socket$unix(0x1, 0x2, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) bpf$MAP_CREATE(0x0, &(0x7f0000000140)={0x14, 0x4, 0x4, 0x3, 0x4}, 0x40) 10:52:28 executing program 3: syz_mount_image$reiserfs(&(0x7f0000000040)='reiserfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 577.831550][T15162] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.0'. [ 577.843407][T15162] (unnamed net_device) (uninitialized): up delay (5) is not a multiple of miimon (262153), value rounded to 0 ms [ 577.855727][T15162] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0) [ 577.959051][T15165] (unnamed net_device) (uninitialized): up delay (5) is not a multiple of miimon (262153), value rounded to 0 ms [ 577.971404][T15165] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0) [ 578.050458][T15170] __nla_validate_parse: 1 callbacks suppressed [ 578.050486][T15170] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'. [ 578.181207][T15176] FAT-fs (loop4): Unrecognized mount option "smackfsfloor=/dev/sequencer" or missing value 10:52:28 executing program 1: r0 = socket$inet(0x2, 0x2000080001, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @empty}, 0x10) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x4e20, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x1}, 0x0) shutdown(r0, 0x1) recvmmsg(r0, &(0x7f0000000100)=[{{0x0, 0x303, &(0x7f0000000440)=[{&(0x7f00000015c0)=""/4096, 0x200115bc}], 0x1}}], 0xffffff1f, 0x0, 0x0) 10:52:28 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$KDADDIO(r1, 0x4b34, 0x480) clone(0x2000000004000300, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) setsockopt$IPT_SO_SET_REPLACE(r1, 0x4000000000000, 0x40, &(0x7f0000000500)=@raw={'raw\x00', 0xc01, 0x3, 0x210, 0xc0, 0x5002004a, 0x0, 0x0, 0x0, 0x178, 0x3c8, 0x3c8, 0x178, 0x3c8, 0x3, 0x0, {[{{@ip={@dev, @dev, 0x0, 0x0, 'batadv_slave_1\x00', 'ip_vti0\x00'}, 0x0, 0xa0, 0xc0, 0x0, {}, [@common=@inet=@l2tp={{0x30, 'l2tp\x00'}, {0x0, 0x0, 0x3, 0x0, 0xc}}]}, @unspec=@TRACE={0x20, 'TRACE\x00'}}, {{@ip={@broadcast, @rand_addr, 0x0, 0x0, 'erspan0\x00', 'erspan0\x00', {}, {}, 0x11}, 0x0, 0x70, 0xb8}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00'}}}], {{[], 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x270) [ 578.292820][T15176] FAT-fs (loop4): Unrecognized mount option "smackfsfloor=/dev/sequencer" or missing value 10:52:28 executing program 0: r0 = syz_open_dev$video(&(0x7f0000000340)='/dev/video#\x00', 0x0, 0x0) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000000)={0x0, 0x0, 0x0, {0x0, @sliced}}) 10:52:28 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000014c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32=r2, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) r3 = socket(0x1000000010, 0x80002, 0x0) sendmmsg$alg(r3, &(0x7f0000000200), 0x4924924924926d3, 0x0) 10:52:29 executing program 2: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) unshare(0x40000000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x3) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x78) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ppp\x00', 0x0, 0x0) ioctl$EVIOCGPROP(r1, 0x40047438, &(0x7f0000000180)=""/246) r2 = socket$inet6(0xa, 0x800000000000002, 0x0) dup2(r2, r0) ioctl$PPPIOCSFLAGS1(r1, 0x40047459, 0x0) 10:52:29 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000cf6fe4)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r1, 0x84, 0xa, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x20) ftruncate(r2, 0x200004) sendfile(r0, r2, 0x0, 0x1d00002e) [ 578.665717][T15197] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'. [ 578.757237][T15195] not chained 10000 origins [ 578.761789][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 578.770457][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 578.780512][T15195] Call Trace: [ 578.783815][T15195] dump_stack+0x1df/0x240 [ 578.788167][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 578.793905][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 578.799035][T15195] ? release_sock+0x238/0x2a0 [ 578.803730][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 578.808516][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 578.813659][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 578.819217][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 578.825299][T15195] ? _copy_from_user+0x15b/0x260 [ 578.830242][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 578.835362][T15195] __msan_chain_origin+0x50/0x90 [ 578.840316][T15195] __get_compat_msghdr+0x5be/0x890 [ 578.845472][T15195] get_compat_msghdr+0x108/0x270 [ 578.850436][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 578.854966][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 578.860631][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 578.865758][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 578.871061][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 578.875830][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 578.880607][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 578.885876][T15195] __sys_recvmmsg+0x4ca/0x510 [ 578.890600][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 578.896706][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 578.902955][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 578.909117][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 578.914343][T15195] do_fast_syscall_32+0x6b/0xd0 [ 578.919206][T15195] do_SYSENTER_32+0x73/0x90 [ 578.923719][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 578.930049][T15195] RIP: 0023:0xf7f82549 [ 578.934128][T15195] Code: Bad RIP value. [ 578.938195][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 578.946609][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 578.954593][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 578.962564][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 578.970533][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 578.978503][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 578.986490][T15195] Uninit was stored to memory at: [ 578.991518][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 578.997235][T15195] __msan_chain_origin+0x50/0x90 [ 579.002173][T15195] __get_compat_msghdr+0x5be/0x890 [ 579.007296][T15195] get_compat_msghdr+0x108/0x270 [ 579.012234][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 579.016740][T15195] __sys_recvmmsg+0x4ca/0x510 [ 579.021421][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 579.027487][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 579.033640][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 579.038840][T15195] do_fast_syscall_32+0x6b/0xd0 [ 579.043691][T15195] do_SYSENTER_32+0x73/0x90 [ 579.048194][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 579.054525][T15195] [ 579.056848][T15195] Uninit was stored to memory at: [ 579.061871][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 579.067590][T15195] __msan_chain_origin+0x50/0x90 [ 579.072532][T15195] __get_compat_msghdr+0x5be/0x890 [ 579.077644][T15195] get_compat_msghdr+0x108/0x270 [ 579.082581][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 579.087087][T15195] __sys_recvmmsg+0x4ca/0x510 [ 579.091766][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 579.097833][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 579.103986][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 579.109188][T15195] do_fast_syscall_32+0x6b/0xd0 [ 579.114039][T15195] do_SYSENTER_32+0x73/0x90 [ 579.118539][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 579.124867][T15195] [ 579.127208][T15195] Uninit was stored to memory at: [ 579.132233][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 579.137960][T15195] __msan_chain_origin+0x50/0x90 [ 579.142899][T15195] __get_compat_msghdr+0x5be/0x890 [ 579.148023][T15195] get_compat_msghdr+0x108/0x270 [ 579.152964][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 579.157464][T15195] __sys_recvmmsg+0x4ca/0x510 [ 579.162141][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 579.168206][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 579.174358][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 579.179556][T15195] do_fast_syscall_32+0x6b/0xd0 [ 579.184404][T15195] do_SYSENTER_32+0x73/0x90 [ 579.188905][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 579.195220][T15195] [ 579.197538][T15195] Uninit was stored to memory at: [ 579.202563][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 579.208281][T15195] __msan_chain_origin+0x50/0x90 [ 579.213219][T15195] __get_compat_msghdr+0x5be/0x890 [ 579.218328][T15195] get_compat_msghdr+0x108/0x270 [ 579.223265][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 579.227773][T15195] __sys_recvmmsg+0x4ca/0x510 [ 579.232452][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 579.238516][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 579.244667][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 579.249864][T15195] do_fast_syscall_32+0x6b/0xd0 [ 579.254716][T15195] do_SYSENTER_32+0x73/0x90 [ 579.259217][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 579.265529][T15195] [ 579.267847][T15195] Uninit was stored to memory at: [ 579.272882][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 579.278598][T15195] __msan_chain_origin+0x50/0x90 [ 579.283536][T15195] __get_compat_msghdr+0x5be/0x890 [ 579.288648][T15195] get_compat_msghdr+0x108/0x270 [ 579.293586][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 579.298105][T15195] __sys_recvmmsg+0x4ca/0x510 [ 579.302784][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 579.308849][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 579.315001][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 579.320205][T15195] do_fast_syscall_32+0x6b/0xd0 [ 579.325058][T15195] do_SYSENTER_32+0x73/0x90 [ 579.329688][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 579.336018][T15195] [ 579.338340][T15195] Uninit was stored to memory at: [ 579.343362][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 579.349081][T15195] __msan_chain_origin+0x50/0x90 [ 579.354020][T15195] __get_compat_msghdr+0x5be/0x890 [ 579.359132][T15195] get_compat_msghdr+0x108/0x270 [ 579.364069][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 579.368572][T15195] __sys_recvmmsg+0x4ca/0x510 [ 579.373246][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 579.379309][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 579.385459][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 579.390674][T15195] do_fast_syscall_32+0x6b/0xd0 [ 579.395525][T15195] do_SYSENTER_32+0x73/0x90 [ 579.400025][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 579.406339][T15195] [ 579.408658][T15195] Uninit was stored to memory at: [ 579.413685][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 579.419399][T15195] __msan_chain_origin+0x50/0x90 [ 579.424339][T15195] __get_compat_msghdr+0x5be/0x890 [ 579.429451][T15195] get_compat_msghdr+0x108/0x270 [ 579.434390][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 579.438892][T15195] __sys_recvmmsg+0x4ca/0x510 [ 579.443567][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 579.449630][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 579.455793][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 579.460993][T15195] do_fast_syscall_32+0x6b/0xd0 [ 579.465845][T15195] do_SYSENTER_32+0x73/0x90 [ 579.470356][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 579.476669][T15195] [ 579.479005][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 579.485695][T15195] do_recvmmsg+0xc5/0x1ee0 [ 579.490111][T15195] do_recvmmsg+0xc5/0x1ee0 10:52:30 executing program 3: syz_mount_image$reiserfs(&(0x7f0000000040)='reiserfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)) 10:52:30 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000014c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32=r2, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) r3 = socket(0x1000000010, 0x80002, 0x0) sendmmsg$alg(r3, &(0x7f0000000200), 0x4924924924926d3, 0x0) 10:52:30 executing program 0: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x420000015001}) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000000)={'syzkaller1\x00', {0x7, 0x0, @empty}}) write$tun(r0, &(0x7f0000001100)={@void, @val={0x0, 0x0, 0x14}, @mpls={[], @ipv4=@gre={{0x6, 0x4, 0x0, 0x0, 0xfc0, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @empty=0xffffffff, {[@lsrr={0x83, 0x3}]}}, {{0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x6558}, {}, {}, {0x8, 0x88be, 0x0, {{}, 0x2100}}, {0x2c}, {0x8, 0x6558, 0x0, "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"}}}}}, 0xfca) [ 579.898285][T15210] REISERFS warning (device loop3): sh-2021 reiserfs_fill_super: can not find reiserfs on loop3 10:52:30 executing program 4: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$kcm(0x10, 0x2, 0x10) socket$kcm(0x29, 0x5, 0x0) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2300000025000511d25a80638c63940d0424fc60040018000a001100022f000037153e", 0x23}], 0x1}, 0x0) openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x26e1, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40082404, &(0x7f00000000c0)) setuid(0x0) open_by_handle_at(0xffffffffffffffff, &(0x7f00000003c0)={0x8, 0x1}, 0x700) 10:52:30 executing program 3: syz_mount_image$reiserfs(&(0x7f0000000040)='reiserfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)) [ 580.123584][T15219] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'. [ 580.460334][T15233] REISERFS warning (device loop3): sh-2021 reiserfs_fill_super: can not find reiserfs on loop3 10:52:31 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000014c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32=r2, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) r3 = socket(0x1000000010, 0x80002, 0x0) sendmmsg$alg(r3, &(0x7f0000000200), 0x4924924924926d3, 0x0) [ 580.848726][T15239] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'. [ 581.130306][T15252] IPVS: ftp: loaded support on port[0] = 21 [ 581.771004][T15195] not chained 20000 origins [ 581.775564][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 581.784236][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 581.794295][T15195] Call Trace: [ 581.797612][T15195] dump_stack+0x1df/0x240 [ 581.801964][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 581.807712][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 581.812841][T15195] ? release_sock+0x238/0x2a0 [ 581.817560][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 581.822359][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 581.827482][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 581.833045][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 581.839140][T15195] ? _copy_from_user+0x15b/0x260 [ 581.844091][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 581.849216][T15195] __msan_chain_origin+0x50/0x90 [ 581.854180][T15195] __get_compat_msghdr+0x5be/0x890 [ 581.859339][T15195] get_compat_msghdr+0x108/0x270 [ 581.864308][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 581.868848][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 581.874523][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 581.879656][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 581.884962][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 581.889746][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 581.894529][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 581.899744][T15195] __sys_recvmmsg+0x4ca/0x510 [ 581.904464][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 581.910555][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 581.916812][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 581.922984][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 581.928213][T15195] do_fast_syscall_32+0x6b/0xd0 [ 581.933081][T15195] do_SYSENTER_32+0x73/0x90 [ 581.937600][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 581.943938][T15195] RIP: 0023:0xf7f82549 [ 581.948019][T15195] Code: Bad RIP value. [ 581.952098][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 581.960537][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 581.968518][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 581.976494][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 581.984472][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 581.992457][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 582.000450][T15195] Uninit was stored to memory at: [ 582.005491][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 582.011216][T15195] __msan_chain_origin+0x50/0x90 [ 582.016166][T15195] __get_compat_msghdr+0x5be/0x890 [ 582.021287][T15195] get_compat_msghdr+0x108/0x270 [ 582.026236][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 582.030748][T15195] __sys_recvmmsg+0x4ca/0x510 [ 582.035436][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 582.041517][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 582.047684][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 582.052899][T15195] do_fast_syscall_32+0x6b/0xd0 [ 582.057771][T15195] do_SYSENTER_32+0x73/0x90 [ 582.062319][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 582.068641][T15195] [ 582.070968][T15195] Uninit was stored to memory at: [ 582.076004][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 582.081739][T15195] __msan_chain_origin+0x50/0x90 [ 582.086692][T15195] __get_compat_msghdr+0x5be/0x890 [ 582.091821][T15195] get_compat_msghdr+0x108/0x270 [ 582.096768][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 582.101277][T15195] __sys_recvmmsg+0x4ca/0x510 [ 582.105964][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 582.112038][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 582.118204][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 582.123415][T15195] do_fast_syscall_32+0x6b/0xd0 [ 582.128274][T15195] do_SYSENTER_32+0x73/0x90 [ 582.132787][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 582.139108][T15195] [ 582.141434][T15195] Uninit was stored to memory at: [ 582.146467][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 582.152195][T15195] __msan_chain_origin+0x50/0x90 [ 582.157166][T15195] __get_compat_msghdr+0x5be/0x890 [ 582.162312][T15195] get_compat_msghdr+0x108/0x270 [ 582.167261][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 582.171774][T15195] __sys_recvmmsg+0x4ca/0x510 [ 582.176458][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 582.182532][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 582.188697][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 582.193906][T15195] do_fast_syscall_32+0x6b/0xd0 [ 582.198771][T15195] do_SYSENTER_32+0x73/0x90 [ 582.203281][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 582.209601][T15195] [ 582.211933][T15195] Uninit was stored to memory at: [ 582.216971][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 582.222697][T15195] __msan_chain_origin+0x50/0x90 [ 582.227647][T15195] __get_compat_msghdr+0x5be/0x890 [ 582.232769][T15195] get_compat_msghdr+0x108/0x270 [ 582.237718][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 582.242231][T15195] __sys_recvmmsg+0x4ca/0x510 [ 582.246928][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 582.253002][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 582.259169][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 582.264378][T15195] do_fast_syscall_32+0x6b/0xd0 [ 582.269237][T15195] do_SYSENTER_32+0x73/0x90 [ 582.273748][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 582.280067][T15195] [ 582.282393][T15195] Uninit was stored to memory at: [ 582.287428][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 582.293155][T15195] __msan_chain_origin+0x50/0x90 [ 582.298103][T15195] __get_compat_msghdr+0x5be/0x890 [ 582.303232][T15195] get_compat_msghdr+0x108/0x270 [ 582.308180][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 582.312693][T15195] __sys_recvmmsg+0x4ca/0x510 [ 582.317380][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 582.323463][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 582.329632][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 582.334845][T15195] do_fast_syscall_32+0x6b/0xd0 [ 582.339711][T15195] do_SYSENTER_32+0x73/0x90 [ 582.344230][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 582.350548][T15195] [ 582.352884][T15195] Uninit was stored to memory at: [ 582.357934][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 582.363663][T15195] __msan_chain_origin+0x50/0x90 [ 582.368612][T15195] __get_compat_msghdr+0x5be/0x890 [ 582.373754][T15195] get_compat_msghdr+0x108/0x270 [ 582.378703][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 582.383217][T15195] __sys_recvmmsg+0x4ca/0x510 [ 582.387905][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 582.393986][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 582.400148][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 582.405360][T15195] do_fast_syscall_32+0x6b/0xd0 [ 582.410222][T15195] do_SYSENTER_32+0x73/0x90 [ 582.414734][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 582.421080][T15195] [ 582.423409][T15195] Uninit was stored to memory at: [ 582.428444][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 582.434171][T15195] __msan_chain_origin+0x50/0x90 [ 582.439119][T15195] __get_compat_msghdr+0x5be/0x890 [ 582.444241][T15195] get_compat_msghdr+0x108/0x270 [ 582.449196][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 582.453715][T15195] __sys_recvmmsg+0x4ca/0x510 [ 582.458403][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 582.464614][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 582.470800][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 582.476007][T15195] do_fast_syscall_32+0x6b/0xd0 [ 582.480868][T15195] do_SYSENTER_32+0x73/0x90 [ 582.485387][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 582.491709][T15195] [ 582.494041][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 582.500724][T15195] do_recvmmsg+0xc5/0x1ee0 [ 582.505156][T15195] do_recvmmsg+0xc5/0x1ee0 [ 582.824601][T15254] IPVS: ftp: loaded support on port[0] = 21 [ 583.038477][T15195] not chained 30000 origins [ 583.043020][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 583.051688][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 583.061745][T15195] Call Trace: [ 583.065053][T15195] dump_stack+0x1df/0x240 [ 583.069412][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 583.075151][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 583.080285][T15195] ? release_sock+0x238/0x2a0 [ 583.084983][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 583.089779][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 583.094903][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 583.100461][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 583.106552][T15195] ? _copy_from_user+0x15b/0x260 [ 583.111502][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 583.116630][T15195] __msan_chain_origin+0x50/0x90 [ 583.121592][T15195] __get_compat_msghdr+0x5be/0x890 [ 583.126746][T15195] get_compat_msghdr+0x108/0x270 [ 583.131712][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 583.136247][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 583.141929][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 583.147068][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 583.152370][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 583.157141][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 583.161947][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 583.167162][T15195] __sys_recvmmsg+0x4ca/0x510 [ 583.171877][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 583.177968][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 583.184222][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 583.190398][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 583.195625][T15195] do_fast_syscall_32+0x6b/0xd0 [ 583.200491][T15195] do_SYSENTER_32+0x73/0x90 [ 583.205014][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 583.211350][T15195] RIP: 0023:0xf7f82549 [ 583.215414][T15195] Code: Bad RIP value. [ 583.219483][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 583.227902][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 583.235877][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 583.243851][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 583.251829][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 583.259806][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 583.267797][T15195] Uninit was stored to memory at: [ 583.272837][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 583.278566][T15195] __msan_chain_origin+0x50/0x90 [ 583.283514][T15195] __get_compat_msghdr+0x5be/0x890 [ 583.288637][T15195] get_compat_msghdr+0x108/0x270 [ 583.293583][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 583.298092][T15195] __sys_recvmmsg+0x4ca/0x510 [ 583.302774][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 583.308849][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 583.315008][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 583.320217][T15195] do_fast_syscall_32+0x6b/0xd0 [ 583.325078][T15195] do_SYSENTER_32+0x73/0x90 [ 583.329589][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 583.335908][T15195] [ 583.338235][T15195] Uninit was stored to memory at: [ 583.343275][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 583.349002][T15195] __msan_chain_origin+0x50/0x90 [ 583.353950][T15195] __get_compat_msghdr+0x5be/0x890 [ 583.359072][T15195] get_compat_msghdr+0x108/0x270 [ 583.364017][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 583.368528][T15195] __sys_recvmmsg+0x4ca/0x510 [ 583.373212][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 583.379295][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 583.385457][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 583.390662][T15195] do_fast_syscall_32+0x6b/0xd0 [ 583.395520][T15195] do_SYSENTER_32+0x73/0x90 [ 583.400030][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 583.406364][T15195] [ 583.408690][T15195] Uninit was stored to memory at: [ 583.413723][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 583.419451][T15195] __msan_chain_origin+0x50/0x90 [ 583.424398][T15195] __get_compat_msghdr+0x5be/0x890 [ 583.429519][T15195] get_compat_msghdr+0x108/0x270 [ 583.434462][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 583.438974][T15195] __sys_recvmmsg+0x4ca/0x510 [ 583.443661][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 583.449734][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 583.455893][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 583.461099][T15195] do_fast_syscall_32+0x6b/0xd0 [ 583.465957][T15195] do_SYSENTER_32+0x73/0x90 [ 583.470468][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 583.476788][T15195] [ 583.479115][T15195] Uninit was stored to memory at: [ 583.484148][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 583.489875][T15195] __msan_chain_origin+0x50/0x90 [ 583.494825][T15195] __get_compat_msghdr+0x5be/0x890 [ 583.499949][T15195] get_compat_msghdr+0x108/0x270 [ 583.504897][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 583.509423][T15195] __sys_recvmmsg+0x4ca/0x510 [ 583.514127][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 583.520206][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 583.526389][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 583.531599][T15195] do_fast_syscall_32+0x6b/0xd0 [ 583.536457][T15195] do_SYSENTER_32+0x73/0x90 [ 583.540968][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 583.547289][T15195] [ 583.549614][T15195] Uninit was stored to memory at: [ 583.554673][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 583.560414][T15195] __msan_chain_origin+0x50/0x90 [ 583.565370][T15195] __get_compat_msghdr+0x5be/0x890 [ 583.570496][T15195] get_compat_msghdr+0x108/0x270 [ 583.575447][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 583.579958][T15195] __sys_recvmmsg+0x4ca/0x510 [ 583.584665][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 583.590738][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 583.596898][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 583.602113][T15195] do_fast_syscall_32+0x6b/0xd0 [ 583.606974][T15195] do_SYSENTER_32+0x73/0x90 [ 583.611486][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 583.617806][T15195] [ 583.620140][T15195] Uninit was stored to memory at: [ 583.625175][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 583.630901][T15195] __msan_chain_origin+0x50/0x90 [ 583.635851][T15195] __get_compat_msghdr+0x5be/0x890 [ 583.640993][T15195] get_compat_msghdr+0x108/0x270 [ 583.645938][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 583.650458][T15195] __sys_recvmmsg+0x4ca/0x510 [ 583.655232][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 583.661310][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 583.667556][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 583.672761][T15195] do_fast_syscall_32+0x6b/0xd0 [ 583.677620][T15195] do_SYSENTER_32+0x73/0x90 [ 583.682132][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 583.688454][T15195] [ 583.690803][T15195] Uninit was stored to memory at: [ 583.695836][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 583.701563][T15195] __msan_chain_origin+0x50/0x90 [ 583.706509][T15195] __get_compat_msghdr+0x5be/0x890 [ 583.711630][T15195] get_compat_msghdr+0x108/0x270 [ 583.716574][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 583.721085][T15195] __sys_recvmmsg+0x4ca/0x510 [ 583.725773][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 583.731847][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 583.738008][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 583.743214][T15195] do_fast_syscall_32+0x6b/0xd0 [ 583.748095][T15195] do_SYSENTER_32+0x73/0x90 [ 583.752606][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 583.758924][T15195] [ 583.761251][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 583.767940][T15195] do_recvmmsg+0xc5/0x1ee0 [ 583.772363][T15195] do_recvmmsg+0xc5/0x1ee0 [ 584.194814][T15195] not chained 40000 origins [ 584.199383][T15195] CPU: 0 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 584.208051][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 584.218106][T15195] Call Trace: [ 584.221411][T15195] dump_stack+0x1df/0x240 [ 584.225761][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 584.231497][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 584.236622][T15195] ? release_sock+0x238/0x2a0 [ 584.241319][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 584.246110][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 584.251231][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 584.256789][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 584.262878][T15195] ? _copy_from_user+0x15b/0x260 [ 584.267827][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 584.272948][T15195] __msan_chain_origin+0x50/0x90 [ 584.277907][T15195] __get_compat_msghdr+0x5be/0x890 [ 584.283054][T15195] get_compat_msghdr+0x108/0x270 [ 584.288028][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 584.292556][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 584.298220][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 584.303353][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 584.308656][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 584.313429][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 584.318199][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 584.323412][T15195] __sys_recvmmsg+0x4ca/0x510 [ 584.328120][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 584.334205][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 584.340456][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 584.346620][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 584.351867][T15195] do_fast_syscall_32+0x6b/0xd0 [ 584.356730][T15195] do_SYSENTER_32+0x73/0x90 [ 584.361244][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 584.367571][T15195] RIP: 0023:0xf7f82549 [ 584.371634][T15195] Code: Bad RIP value. [ 584.375700][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 584.384116][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 584.392091][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 584.400065][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 584.408038][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 584.416023][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 584.424016][T15195] Uninit was stored to memory at: [ 584.429047][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 584.434768][T15195] __msan_chain_origin+0x50/0x90 [ 584.439711][T15195] __get_compat_msghdr+0x5be/0x890 [ 584.444827][T15195] get_compat_msghdr+0x108/0x270 [ 584.449764][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 584.454265][T15195] __sys_recvmmsg+0x4ca/0x510 [ 584.458939][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 584.465006][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 584.471159][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 584.476360][T15195] do_fast_syscall_32+0x6b/0xd0 [ 584.481211][T15195] do_SYSENTER_32+0x73/0x90 [ 584.485822][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 584.492134][T15195] [ 584.494469][T15195] Uninit was stored to memory at: [ 584.499495][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 584.505211][T15195] __msan_chain_origin+0x50/0x90 [ 584.510149][T15195] __get_compat_msghdr+0x5be/0x890 [ 584.515261][T15195] get_compat_msghdr+0x108/0x270 [ 584.520196][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 584.524697][T15195] __sys_recvmmsg+0x4ca/0x510 [ 584.529372][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 584.535453][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 584.541617][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 584.546819][T15195] do_fast_syscall_32+0x6b/0xd0 [ 584.551669][T15195] do_SYSENTER_32+0x73/0x90 [ 584.556174][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 584.562487][T15195] [ 584.564808][T15195] Uninit was stored to memory at: [ 584.569833][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 584.575549][T15195] __msan_chain_origin+0x50/0x90 [ 584.580487][T15195] __get_compat_msghdr+0x5be/0x890 [ 584.585602][T15195] get_compat_msghdr+0x108/0x270 [ 584.590546][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 584.595047][T15195] __sys_recvmmsg+0x4ca/0x510 [ 584.599743][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 584.605813][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 584.611967][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 584.617177][T15195] do_fast_syscall_32+0x6b/0xd0 [ 584.622029][T15195] do_SYSENTER_32+0x73/0x90 [ 584.626529][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 584.632842][T15195] [ 584.635159][T15195] Uninit was stored to memory at: [ 584.640197][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 584.645917][T15195] __msan_chain_origin+0x50/0x90 [ 584.650869][T15195] __get_compat_msghdr+0x5be/0x890 [ 584.655982][T15195] get_compat_msghdr+0x108/0x270 [ 584.660918][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 584.665421][T15195] __sys_recvmmsg+0x4ca/0x510 [ 584.670094][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 584.676158][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 584.682311][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 584.687510][T15195] do_fast_syscall_32+0x6b/0xd0 [ 584.692360][T15195] do_SYSENTER_32+0x73/0x90 [ 584.696861][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 584.703181][T15195] [ 584.705498][T15195] Uninit was stored to memory at: [ 584.710526][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 584.716247][T15195] __msan_chain_origin+0x50/0x90 [ 584.721190][T15195] __get_compat_msghdr+0x5be/0x890 [ 584.726299][T15195] get_compat_msghdr+0x108/0x270 [ 584.731236][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 584.735743][T15195] __sys_recvmmsg+0x4ca/0x510 [ 584.740417][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 584.746480][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 584.752634][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 584.757850][T15195] do_fast_syscall_32+0x6b/0xd0 [ 584.762702][T15195] do_SYSENTER_32+0x73/0x90 [ 584.767205][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 584.773520][T15195] [ 584.775838][T15195] Uninit was stored to memory at: [ 584.780861][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 584.786577][T15195] __msan_chain_origin+0x50/0x90 [ 584.791514][T15195] __get_compat_msghdr+0x5be/0x890 [ 584.796623][T15195] get_compat_msghdr+0x108/0x270 [ 584.801559][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 584.806061][T15195] __sys_recvmmsg+0x4ca/0x510 [ 584.810733][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 584.816799][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 584.822955][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 584.828155][T15195] do_fast_syscall_32+0x6b/0xd0 [ 584.833004][T15195] do_SYSENTER_32+0x73/0x90 [ 584.837507][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 584.843824][T15195] [ 584.846145][T15195] Uninit was stored to memory at: [ 584.851168][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 584.856886][T15195] __msan_chain_origin+0x50/0x90 [ 584.861826][T15195] __get_compat_msghdr+0x5be/0x890 [ 584.866935][T15195] get_compat_msghdr+0x108/0x270 [ 584.871882][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 584.876390][T15195] __sys_recvmmsg+0x4ca/0x510 [ 584.881069][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 584.887143][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 584.893301][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 584.898499][T15195] do_fast_syscall_32+0x6b/0xd0 [ 584.903367][T15195] do_SYSENTER_32+0x73/0x90 [ 584.907867][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 584.914179][T15195] [ 584.916502][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 584.923178][T15195] do_recvmmsg+0xc5/0x1ee0 [ 584.927590][T15195] do_recvmmsg+0xc5/0x1ee0 [ 584.964298][ T8653] tipc: TX() has been purged, node left! [ 585.287475][T15195] not chained 50000 origins [ 585.292028][T15195] CPU: 0 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 585.300696][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 585.310752][T15195] Call Trace: [ 585.314072][T15195] dump_stack+0x1df/0x240 [ 585.318426][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 585.324167][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 585.329297][T15195] ? release_sock+0x238/0x2a0 [ 585.333998][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 585.338800][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 585.343927][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 585.349488][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 585.355575][T15195] ? _copy_from_user+0x15b/0x260 [ 585.360524][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 585.365650][T15195] __msan_chain_origin+0x50/0x90 [ 585.370609][T15195] __get_compat_msghdr+0x5be/0x890 [ 585.375759][T15195] get_compat_msghdr+0x108/0x270 [ 585.380736][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 585.385272][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 585.390941][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 585.396073][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 585.401372][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 585.406147][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 585.410920][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 585.416135][T15195] __sys_recvmmsg+0x4ca/0x510 [ 585.420843][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 585.426928][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 585.433182][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 585.439523][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 585.444778][T15195] do_fast_syscall_32+0x6b/0xd0 [ 585.449642][T15195] do_SYSENTER_32+0x73/0x90 [ 585.454160][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 585.460494][T15195] RIP: 0023:0xf7f82549 [ 585.464555][T15195] Code: Bad RIP value. [ 585.468624][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 585.477043][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 585.485017][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 585.492994][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 585.500980][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 585.508975][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 585.516969][T15195] Uninit was stored to memory at: [ 585.522002][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 585.527727][T15195] __msan_chain_origin+0x50/0x90 [ 585.532675][T15195] __get_compat_msghdr+0x5be/0x890 [ 585.537798][T15195] get_compat_msghdr+0x108/0x270 [ 585.542740][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 585.547258][T15195] __sys_recvmmsg+0x4ca/0x510 [ 585.551939][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 585.558013][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 585.564173][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 585.569380][T15195] do_fast_syscall_32+0x6b/0xd0 [ 585.575626][T15195] do_SYSENTER_32+0x73/0x90 [ 585.580137][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 585.586457][T15195] [ 585.588786][T15195] Uninit was stored to memory at: [ 585.593822][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 585.599547][T15195] __msan_chain_origin+0x50/0x90 [ 585.604494][T15195] __get_compat_msghdr+0x5be/0x890 [ 585.609613][T15195] get_compat_msghdr+0x108/0x270 [ 585.614556][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 585.619067][T15195] __sys_recvmmsg+0x4ca/0x510 [ 585.623752][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 585.629836][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 585.635998][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 585.641203][T15195] do_fast_syscall_32+0x6b/0xd0 [ 585.646059][T15195] do_SYSENTER_32+0x73/0x90 [ 585.650567][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 585.656886][T15195] [ 585.659209][T15195] Uninit was stored to memory at: [ 585.664251][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 585.669973][T15195] __msan_chain_origin+0x50/0x90 [ 585.674926][T15195] __get_compat_msghdr+0x5be/0x890 [ 585.680043][T15195] get_compat_msghdr+0x108/0x270 [ 585.684990][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 585.689504][T15195] __sys_recvmmsg+0x4ca/0x510 [ 585.694187][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 585.700258][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 585.706417][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 585.711620][T15195] do_fast_syscall_32+0x6b/0xd0 [ 585.716477][T15195] do_SYSENTER_32+0x73/0x90 [ 585.720990][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 585.727312][T15195] [ 585.729637][T15195] Uninit was stored to memory at: [ 585.734668][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 585.740393][T15195] __msan_chain_origin+0x50/0x90 [ 585.745343][T15195] __get_compat_msghdr+0x5be/0x890 [ 585.750464][T15195] get_compat_msghdr+0x108/0x270 [ 585.755424][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 585.759938][T15195] __sys_recvmmsg+0x4ca/0x510 [ 585.764622][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 585.770695][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 585.776875][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 585.782081][T15195] do_fast_syscall_32+0x6b/0xd0 [ 585.786943][T15195] do_SYSENTER_32+0x73/0x90 [ 585.791449][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 585.797769][T15195] [ 585.800095][T15195] Uninit was stored to memory at: [ 585.805128][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 585.810852][T15195] __msan_chain_origin+0x50/0x90 [ 585.815794][T15195] __get_compat_msghdr+0x5be/0x890 [ 585.820908][T15195] get_compat_msghdr+0x108/0x270 [ 585.825854][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 585.830369][T15195] __sys_recvmmsg+0x4ca/0x510 [ 585.840782][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 585.846861][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 585.853021][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 585.858228][T15195] do_fast_syscall_32+0x6b/0xd0 [ 585.863096][T15195] do_SYSENTER_32+0x73/0x90 [ 585.867608][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 585.873931][T15195] [ 585.876262][T15195] Uninit was stored to memory at: [ 585.881298][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 585.887027][T15195] __msan_chain_origin+0x50/0x90 [ 585.891977][T15195] __get_compat_msghdr+0x5be/0x890 [ 585.897097][T15195] get_compat_msghdr+0x108/0x270 [ 585.902048][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 585.906558][T15195] __sys_recvmmsg+0x4ca/0x510 [ 585.911244][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 585.917316][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 585.923480][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 585.928687][T15195] do_fast_syscall_32+0x6b/0xd0 [ 585.933575][T15195] do_SYSENTER_32+0x73/0x90 [ 585.938109][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 585.944434][T15195] [ 585.946758][T15195] Uninit was stored to memory at: [ 585.951792][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 585.957517][T15195] __msan_chain_origin+0x50/0x90 [ 585.962466][T15195] __get_compat_msghdr+0x5be/0x890 [ 585.967611][T15195] get_compat_msghdr+0x108/0x270 [ 585.972557][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 585.977070][T15195] __sys_recvmmsg+0x4ca/0x510 [ 585.981756][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 585.987827][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 585.993992][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 585.999198][T15195] do_fast_syscall_32+0x6b/0xd0 [ 586.004060][T15195] do_SYSENTER_32+0x73/0x90 [ 586.008570][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 586.014888][T15195] [ 586.017223][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 586.023907][T15195] do_recvmmsg+0xc5/0x1ee0 [ 586.028328][T15195] do_recvmmsg+0xc5/0x1ee0 [ 586.348129][T15195] not chained 60000 origins [ 586.352685][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 586.361363][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 586.371422][T15195] Call Trace: [ 586.374730][T15195] dump_stack+0x1df/0x240 [ 586.379088][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 586.384849][T15195] ? __msan_get_context_state+0x9/0x20 [ 586.390321][T15195] ? idtentry_exit_cond_rcu+0x12/0x50 [ 586.395704][T15195] ? __exc_page_fault+0xf6/0x390 [ 586.400659][T15195] ? exc_page_fault+0x45/0x50 [ 586.405358][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 586.410489][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 586.416056][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 586.422148][T15195] ? _copy_from_user+0x15b/0x260 [ 586.427100][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 586.432226][T15195] __msan_chain_origin+0x50/0x90 [ 586.437189][T15195] __get_compat_msghdr+0x5be/0x890 [ 586.442343][T15195] get_compat_msghdr+0x108/0x270 [ 586.447312][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 586.451851][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 586.457525][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 586.462658][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 586.467968][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 586.472777][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 586.477554][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 586.482772][T15195] __sys_recvmmsg+0x4ca/0x510 [ 586.487505][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 586.493643][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 586.499901][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 586.506078][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 586.511309][T15195] do_fast_syscall_32+0x6b/0xd0 [ 586.516178][T15195] do_SYSENTER_32+0x73/0x90 [ 586.520698][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 586.527028][T15195] RIP: 0023:0xf7f82549 [ 586.531092][T15195] Code: Bad RIP value. [ 586.535159][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 586.543579][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 586.551554][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 586.559530][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 586.567522][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 586.575500][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 586.583497][T15195] Uninit was stored to memory at: [ 586.588532][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 586.594257][T15195] __msan_chain_origin+0x50/0x90 [ 586.599209][T15195] __get_compat_msghdr+0x5be/0x890 [ 586.604328][T15195] get_compat_msghdr+0x108/0x270 [ 586.609276][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 586.613788][T15195] __sys_recvmmsg+0x4ca/0x510 [ 586.618473][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 586.624547][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 586.630710][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 586.635926][T15195] do_fast_syscall_32+0x6b/0xd0 [ 586.640785][T15195] do_SYSENTER_32+0x73/0x90 [ 586.645318][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 586.651638][T15195] [ 586.653968][T15195] Uninit was stored to memory at: [ 586.659002][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 586.664729][T15195] __msan_chain_origin+0x50/0x90 [ 586.669678][T15195] __get_compat_msghdr+0x5be/0x890 [ 586.674799][T15195] get_compat_msghdr+0x108/0x270 [ 586.679745][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 586.684254][T15195] __sys_recvmmsg+0x4ca/0x510 [ 586.688942][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 586.695016][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 586.701177][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 586.706387][T15195] do_fast_syscall_32+0x6b/0xd0 [ 586.711249][T15195] do_SYSENTER_32+0x73/0x90 [ 586.715771][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 586.722097][T15195] [ 586.724425][T15195] Uninit was stored to memory at: [ 586.729458][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 586.735192][T15195] __msan_chain_origin+0x50/0x90 [ 586.740142][T15195] __get_compat_msghdr+0x5be/0x890 [ 586.745263][T15195] get_compat_msghdr+0x108/0x270 [ 586.750216][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 586.754732][T15195] __sys_recvmmsg+0x4ca/0x510 [ 586.759420][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 586.765517][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 586.771680][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 586.776891][T15195] do_fast_syscall_32+0x6b/0xd0 [ 586.781755][T15195] do_SYSENTER_32+0x73/0x90 [ 586.786611][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 586.792933][T15195] [ 586.795261][T15195] Uninit was stored to memory at: [ 586.800297][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 586.806024][T15195] __msan_chain_origin+0x50/0x90 [ 586.810975][T15195] __get_compat_msghdr+0x5be/0x890 [ 586.816098][T15195] get_compat_msghdr+0x108/0x270 [ 586.821051][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 586.825565][T15195] __sys_recvmmsg+0x4ca/0x510 [ 586.830249][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 586.836326][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 586.842487][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 586.847698][T15195] do_fast_syscall_32+0x6b/0xd0 [ 586.852559][T15195] do_SYSENTER_32+0x73/0x90 [ 586.857070][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 586.863390][T15195] [ 586.865718][T15195] Uninit was stored to memory at: [ 586.870768][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 586.876495][T15195] __msan_chain_origin+0x50/0x90 [ 586.881441][T15195] __get_compat_msghdr+0x5be/0x890 [ 586.886563][T15195] get_compat_msghdr+0x108/0x270 [ 586.891530][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 586.896047][T15195] __sys_recvmmsg+0x4ca/0x510 [ 586.900733][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 586.906814][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 586.912978][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 586.918191][T15195] do_fast_syscall_32+0x6b/0xd0 [ 586.923057][T15195] do_SYSENTER_32+0x73/0x90 [ 586.927568][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 586.933917][T15195] [ 586.936240][T15195] Uninit was stored to memory at: [ 586.941273][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 586.947002][T15195] __msan_chain_origin+0x50/0x90 [ 586.951952][T15195] __get_compat_msghdr+0x5be/0x890 [ 586.957076][T15195] get_compat_msghdr+0x108/0x270 [ 586.962019][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 586.966535][T15195] __sys_recvmmsg+0x4ca/0x510 [ 586.971228][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 586.977301][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 586.983466][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 586.988674][T15195] do_fast_syscall_32+0x6b/0xd0 [ 586.993534][T15195] do_SYSENTER_32+0x73/0x90 [ 586.998049][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 587.004372][T15195] [ 587.006701][T15195] Uninit was stored to memory at: [ 587.011733][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 587.017464][T15195] __msan_chain_origin+0x50/0x90 [ 587.022412][T15195] __get_compat_msghdr+0x5be/0x890 [ 587.027554][T15195] get_compat_msghdr+0x108/0x270 [ 587.032498][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 587.037005][T15195] __sys_recvmmsg+0x4ca/0x510 [ 587.041692][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 587.047773][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 587.053937][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 587.059143][T15195] do_fast_syscall_32+0x6b/0xd0 [ 587.064001][T15195] do_SYSENTER_32+0x73/0x90 [ 587.068511][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 587.074833][T15195] [ 587.077164][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 587.083848][T15195] do_recvmmsg+0xc5/0x1ee0 [ 587.088272][T15195] do_recvmmsg+0xc5/0x1ee0 [ 587.838578][T15195] not chained 70000 origins [ 587.843129][T15195] CPU: 0 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 587.851792][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 587.861896][T15195] Call Trace: [ 587.865206][T15195] dump_stack+0x1df/0x240 [ 587.869564][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 587.875308][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 587.880429][T15195] ? release_sock+0x238/0x2a0 [ 587.885130][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 587.889932][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 587.895056][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 587.900616][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 587.906707][T15195] ? _copy_from_user+0x15b/0x260 [ 587.911660][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 587.916783][T15195] __msan_chain_origin+0x50/0x90 [ 587.921741][T15195] __get_compat_msghdr+0x5be/0x890 [ 587.926896][T15195] get_compat_msghdr+0x108/0x270 [ 587.931859][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 587.936402][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 587.942076][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 587.947213][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 587.952515][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 587.957284][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 587.962057][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 587.967271][T15195] __sys_recvmmsg+0x4ca/0x510 [ 587.971977][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 587.978071][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 587.984321][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 587.990483][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 587.995726][T15195] do_fast_syscall_32+0x6b/0xd0 [ 588.000596][T15195] do_SYSENTER_32+0x73/0x90 [ 588.005115][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 588.011481][T15195] RIP: 0023:0xf7f82549 [ 588.015541][T15195] Code: Bad RIP value. [ 588.019606][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 588.028029][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 588.036007][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 588.043981][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 588.051959][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 588.059938][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 588.067933][T15195] Uninit was stored to memory at: [ 588.072965][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 588.078722][T15195] __msan_chain_origin+0x50/0x90 [ 588.083668][T15195] __get_compat_msghdr+0x5be/0x890 [ 588.088787][T15195] get_compat_msghdr+0x108/0x270 [ 588.093784][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 588.098289][T15195] __sys_recvmmsg+0x4ca/0x510 [ 588.102969][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 588.109041][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 588.115200][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 588.120425][T15195] do_fast_syscall_32+0x6b/0xd0 [ 588.125301][T15195] do_SYSENTER_32+0x73/0x90 [ 588.129803][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 588.136120][T15195] [ 588.138445][T15195] Uninit was stored to memory at: [ 588.143476][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 588.149219][T15195] __msan_chain_origin+0x50/0x90 [ 588.154163][T15195] __get_compat_msghdr+0x5be/0x890 [ 588.159278][T15195] get_compat_msghdr+0x108/0x270 [ 588.164218][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 588.168732][T15195] __sys_recvmmsg+0x4ca/0x510 [ 588.173415][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 588.179488][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 588.185645][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 588.190846][T15195] do_fast_syscall_32+0x6b/0xd0 [ 588.195707][T15195] do_SYSENTER_32+0x73/0x90 [ 588.200219][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 588.206535][T15195] [ 588.208887][T15195] Uninit was stored to memory at: [ 588.213922][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 588.219682][T15195] __msan_chain_origin+0x50/0x90 [ 588.224629][T15195] __get_compat_msghdr+0x5be/0x890 [ 588.229751][T15195] get_compat_msghdr+0x108/0x270 [ 588.234694][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 588.239223][T15195] __sys_recvmmsg+0x4ca/0x510 [ 588.243908][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 588.249974][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 588.256127][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 588.261323][T15195] do_fast_syscall_32+0x6b/0xd0 [ 588.266173][T15195] do_SYSENTER_32+0x73/0x90 [ 588.270674][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 588.276987][T15195] [ 588.279305][T15195] Uninit was stored to memory at: [ 588.284332][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 588.290049][T15195] __msan_chain_origin+0x50/0x90 [ 588.294989][T15195] __get_compat_msghdr+0x5be/0x890 [ 588.300101][T15195] get_compat_msghdr+0x108/0x270 [ 588.305041][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 588.309575][T15195] __sys_recvmmsg+0x4ca/0x510 [ 588.314250][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 588.320316][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 588.326468][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 588.331664][T15195] do_fast_syscall_32+0x6b/0xd0 [ 588.336519][T15195] do_SYSENTER_32+0x73/0x90 [ 588.341017][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 588.347334][T15195] [ 588.349651][T15195] Uninit was stored to memory at: [ 588.354676][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 588.360424][T15195] __msan_chain_origin+0x50/0x90 [ 588.365364][T15195] __get_compat_msghdr+0x5be/0x890 [ 588.370480][T15195] get_compat_msghdr+0x108/0x270 [ 588.375417][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 588.379968][T15195] __sys_recvmmsg+0x4ca/0x510 [ 588.384642][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 588.390708][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 588.396870][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 588.402093][T15195] do_fast_syscall_32+0x6b/0xd0 [ 588.406957][T15195] do_SYSENTER_32+0x73/0x90 [ 588.411459][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 588.417786][T15195] [ 588.420133][T15195] Uninit was stored to memory at: [ 588.425159][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 588.430879][T15195] __msan_chain_origin+0x50/0x90 [ 588.435826][T15195] __get_compat_msghdr+0x5be/0x890 [ 588.440937][T15195] get_compat_msghdr+0x108/0x270 [ 588.445889][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 588.450393][T15195] __sys_recvmmsg+0x4ca/0x510 [ 588.458107][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 588.464172][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 588.470323][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 588.475522][T15195] do_fast_syscall_32+0x6b/0xd0 [ 588.480371][T15195] do_SYSENTER_32+0x73/0x90 [ 588.484875][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 588.491193][T15195] [ 588.493516][T15195] Uninit was stored to memory at: [ 588.498540][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 588.504260][T15195] __msan_chain_origin+0x50/0x90 [ 588.509201][T15195] __get_compat_msghdr+0x5be/0x890 [ 588.514312][T15195] get_compat_msghdr+0x108/0x270 [ 588.519247][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 588.523750][T15195] __sys_recvmmsg+0x4ca/0x510 [ 588.528425][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 588.534490][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 588.540657][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 588.545861][T15195] do_fast_syscall_32+0x6b/0xd0 [ 588.550717][T15195] do_SYSENTER_32+0x73/0x90 [ 588.555225][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 588.561539][T15195] [ 588.563861][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 588.570553][T15195] do_recvmmsg+0xc5/0x1ee0 [ 588.574967][T15195] do_recvmmsg+0xc5/0x1ee0 [ 589.387084][T15195] not chained 80000 origins [ 589.391652][T15195] CPU: 0 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 589.400319][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 589.410375][T15195] Call Trace: [ 589.413680][T15195] dump_stack+0x1df/0x240 [ 589.418035][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 589.423775][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 589.428907][T15195] ? release_sock+0x238/0x2a0 [ 589.433603][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 589.438397][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 589.443522][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 589.449086][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 589.455173][T15195] ? _copy_from_user+0x15b/0x260 [ 589.460120][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 589.465243][T15195] __msan_chain_origin+0x50/0x90 [ 589.470222][T15195] __get_compat_msghdr+0x5be/0x890 [ 589.475375][T15195] get_compat_msghdr+0x108/0x270 [ 589.480353][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 589.484886][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 589.490562][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 589.495829][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 589.501147][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 589.505922][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 589.510694][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 589.515909][T15195] __sys_recvmmsg+0x4ca/0x510 [ 589.520620][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 589.526709][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 589.532960][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 589.539126][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 589.544382][T15195] do_fast_syscall_32+0x6b/0xd0 [ 589.549248][T15195] do_SYSENTER_32+0x73/0x90 [ 589.553764][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 589.560095][T15195] RIP: 0023:0xf7f82549 [ 589.564156][T15195] Code: Bad RIP value. [ 589.568221][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 589.576638][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 589.584617][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 589.592591][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 589.600583][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 589.608557][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 589.616550][T15195] Uninit was stored to memory at: [ 589.621582][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 589.627306][T15195] __msan_chain_origin+0x50/0x90 [ 589.632250][T15195] __get_compat_msghdr+0x5be/0x890 [ 589.637369][T15195] get_compat_msghdr+0x108/0x270 [ 589.642320][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 589.646831][T15195] __sys_recvmmsg+0x4ca/0x510 [ 589.651513][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 589.657582][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 589.663743][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 589.668948][T15195] do_fast_syscall_32+0x6b/0xd0 [ 589.673802][T15195] do_SYSENTER_32+0x73/0x90 [ 589.678308][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 589.684626][T15195] [ 589.686951][T15195] Uninit was stored to memory at: [ 589.691983][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 589.697707][T15195] __msan_chain_origin+0x50/0x90 [ 589.702659][T15195] __get_compat_msghdr+0x5be/0x890 [ 589.707781][T15195] get_compat_msghdr+0x108/0x270 [ 589.712726][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 589.717245][T15195] __sys_recvmmsg+0x4ca/0x510 [ 589.721929][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 589.728027][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 589.734188][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 589.739393][T15195] do_fast_syscall_32+0x6b/0xd0 [ 589.744251][T15195] do_SYSENTER_32+0x73/0x90 [ 589.748758][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 589.755077][T15195] [ 589.757404][T15195] Uninit was stored to memory at: [ 589.762444][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 589.768179][T15195] __msan_chain_origin+0x50/0x90 [ 589.773143][T15195] __get_compat_msghdr+0x5be/0x890 [ 589.778261][T15195] get_compat_msghdr+0x108/0x270 [ 589.783206][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 589.787712][T15195] __sys_recvmmsg+0x4ca/0x510 [ 589.792412][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 589.798489][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 589.804646][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 589.809854][T15195] do_fast_syscall_32+0x6b/0xd0 [ 589.814709][T15195] do_SYSENTER_32+0x73/0x90 [ 589.819219][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 589.825535][T15195] [ 589.827857][T15195] Uninit was stored to memory at: [ 589.832888][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 589.838624][T15195] __msan_chain_origin+0x50/0x90 [ 589.843571][T15195] __get_compat_msghdr+0x5be/0x890 [ 589.848689][T15195] get_compat_msghdr+0x108/0x270 [ 589.853633][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 589.858143][T15195] __sys_recvmmsg+0x4ca/0x510 [ 589.862835][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 589.868911][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 589.875077][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 589.880293][T15195] do_fast_syscall_32+0x6b/0xd0 [ 589.885153][T15195] do_SYSENTER_32+0x73/0x90 [ 589.889669][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 589.895990][T15195] [ 589.898315][T15195] Uninit was stored to memory at: [ 589.903347][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 589.909072][T15195] __msan_chain_origin+0x50/0x90 [ 589.914122][T15195] __get_compat_msghdr+0x5be/0x890 [ 589.919253][T15195] get_compat_msghdr+0x108/0x270 [ 589.924205][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 589.928723][T15195] __sys_recvmmsg+0x4ca/0x510 [ 589.933409][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 589.939485][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 589.945644][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 589.950869][T15195] do_fast_syscall_32+0x6b/0xd0 [ 589.955729][T15195] do_SYSENTER_32+0x73/0x90 [ 589.960240][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 589.966564][T15195] [ 589.968890][T15195] Uninit was stored to memory at: [ 589.973923][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 589.979651][T15195] __msan_chain_origin+0x50/0x90 [ 589.984597][T15195] __get_compat_msghdr+0x5be/0x890 [ 589.989733][T15195] get_compat_msghdr+0x108/0x270 [ 589.994681][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 589.999191][T15195] __sys_recvmmsg+0x4ca/0x510 [ 590.003874][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 590.009944][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 590.016104][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 590.021316][T15195] do_fast_syscall_32+0x6b/0xd0 [ 590.026181][T15195] do_SYSENTER_32+0x73/0x90 [ 590.030690][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 590.037008][T15195] [ 590.039337][T15195] Uninit was stored to memory at: [ 590.044367][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 590.050093][T15195] __msan_chain_origin+0x50/0x90 [ 590.055040][T15195] __get_compat_msghdr+0x5be/0x890 [ 590.060177][T15195] get_compat_msghdr+0x108/0x270 [ 590.065126][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 590.069634][T15195] __sys_recvmmsg+0x4ca/0x510 [ 590.074320][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 590.080390][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 590.086551][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 590.091758][T15195] do_fast_syscall_32+0x6b/0xd0 [ 590.096617][T15195] do_SYSENTER_32+0x73/0x90 [ 590.101127][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 590.107532][T15195] [ 590.109860][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 590.116541][T15195] do_recvmmsg+0xc5/0x1ee0 [ 590.120964][T15195] do_recvmmsg+0xc5/0x1ee0 [ 590.262375][ T8653] tipc: TX() has been purged, node left! [ 590.392605][T15195] not chained 90000 origins [ 590.397158][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 590.405828][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 590.415907][T15195] Call Trace: [ 590.419223][T15195] dump_stack+0x1df/0x240 [ 590.423576][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 590.429320][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 590.434462][T15195] ? release_sock+0x238/0x2a0 [ 590.439181][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 590.443975][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 590.449102][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 590.454667][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 590.460763][T15195] ? _copy_from_user+0x15b/0x260 [ 590.465711][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 590.470848][T15195] __msan_chain_origin+0x50/0x90 [ 590.475810][T15195] __get_compat_msghdr+0x5be/0x890 [ 590.480966][T15195] get_compat_msghdr+0x108/0x270 [ 590.485942][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 590.490477][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 590.496159][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 590.501297][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 590.506603][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 590.511400][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 590.516180][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 590.521397][T15195] __sys_recvmmsg+0x4ca/0x510 [ 590.526115][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 590.532206][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 590.538459][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 590.544625][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 590.549853][T15195] do_fast_syscall_32+0x6b/0xd0 [ 590.554721][T15195] do_SYSENTER_32+0x73/0x90 [ 590.559258][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 590.565589][T15195] RIP: 0023:0xf7f82549 [ 590.569671][T15195] Code: Bad RIP value. [ 590.573739][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 590.582167][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 590.590244][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 590.598222][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 590.606200][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 590.614176][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 590.622192][T15195] Uninit was stored to memory at: [ 590.627226][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 590.632949][T15195] __msan_chain_origin+0x50/0x90 [ 590.637894][T15195] __get_compat_msghdr+0x5be/0x890 [ 590.643011][T15195] get_compat_msghdr+0x108/0x270 [ 590.647957][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 590.652497][T15195] __sys_recvmmsg+0x4ca/0x510 [ 590.657180][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 590.663253][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 590.669411][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 590.674619][T15195] do_fast_syscall_32+0x6b/0xd0 [ 590.679476][T15195] do_SYSENTER_32+0x73/0x90 [ 590.684011][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 590.690326][T15195] [ 590.692651][T15195] Uninit was stored to memory at: [ 590.697683][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 590.703405][T15195] __msan_chain_origin+0x50/0x90 [ 590.708349][T15195] __get_compat_msghdr+0x5be/0x890 [ 590.713468][T15195] get_compat_msghdr+0x108/0x270 [ 590.718413][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 590.722921][T15195] __sys_recvmmsg+0x4ca/0x510 [ 590.727602][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 590.733671][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 590.739828][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 590.745039][T15195] do_fast_syscall_32+0x6b/0xd0 [ 590.749895][T15195] do_SYSENTER_32+0x73/0x90 [ 590.754405][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 590.760730][T15195] [ 590.763057][T15195] Uninit was stored to memory at: [ 590.768089][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 590.773815][T15195] __msan_chain_origin+0x50/0x90 [ 590.778761][T15195] __get_compat_msghdr+0x5be/0x890 [ 590.783876][T15195] get_compat_msghdr+0x108/0x270 [ 590.788823][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 590.793331][T15195] __sys_recvmmsg+0x4ca/0x510 [ 590.798018][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 590.804089][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 590.810250][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 590.815456][T15195] do_fast_syscall_32+0x6b/0xd0 [ 590.820335][T15195] do_SYSENTER_32+0x73/0x90 [ 590.824848][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 590.831187][T15195] [ 590.833510][T15195] Uninit was stored to memory at: [ 590.838538][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 590.844258][T15195] __msan_chain_origin+0x50/0x90 [ 590.849200][T15195] __get_compat_msghdr+0x5be/0x890 [ 590.854318][T15195] get_compat_msghdr+0x108/0x270 [ 590.859268][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 590.863787][T15195] __sys_recvmmsg+0x4ca/0x510 [ 590.868467][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 590.874540][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 590.880699][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 590.885906][T15195] do_fast_syscall_32+0x6b/0xd0 [ 590.890798][T15195] do_SYSENTER_32+0x73/0x90 [ 590.895308][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 590.901624][T15195] [ 590.903948][T15195] Uninit was stored to memory at: [ 590.908985][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 590.914711][T15195] __msan_chain_origin+0x50/0x90 [ 590.919765][T15195] __get_compat_msghdr+0x5be/0x890 [ 590.924891][T15195] get_compat_msghdr+0x108/0x270 [ 590.929857][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 590.934370][T15195] __sys_recvmmsg+0x4ca/0x510 [ 590.939054][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 590.945129][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 590.951291][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 590.956505][T15195] do_fast_syscall_32+0x6b/0xd0 [ 590.961364][T15195] do_SYSENTER_32+0x73/0x90 [ 590.965876][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 590.972197][T15195] [ 590.974525][T15195] Uninit was stored to memory at: [ 590.979562][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 590.985288][T15195] __msan_chain_origin+0x50/0x90 [ 590.990237][T15195] __get_compat_msghdr+0x5be/0x890 [ 590.995363][T15195] get_compat_msghdr+0x108/0x270 [ 591.000328][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 591.004839][T15195] __sys_recvmmsg+0x4ca/0x510 [ 591.009522][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 591.015596][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 591.021763][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 591.026999][T15195] do_fast_syscall_32+0x6b/0xd0 [ 591.031877][T15195] do_SYSENTER_32+0x73/0x90 [ 591.036387][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 591.042709][T15195] [ 591.045039][T15195] Uninit was stored to memory at: [ 591.050072][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 591.055799][T15195] __msan_chain_origin+0x50/0x90 [ 591.060743][T15195] __get_compat_msghdr+0x5be/0x890 [ 591.065869][T15195] get_compat_msghdr+0x108/0x270 [ 591.070816][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 591.075328][T15195] __sys_recvmmsg+0x4ca/0x510 [ 591.080032][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 591.086106][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 591.092269][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 591.097476][T15195] do_fast_syscall_32+0x6b/0xd0 [ 591.102344][T15195] do_SYSENTER_32+0x73/0x90 [ 591.106856][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 591.113178][T15195] [ 591.115508][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 591.122189][T15195] do_recvmmsg+0xc5/0x1ee0 [ 591.126615][T15195] do_recvmmsg+0xc5/0x1ee0 [ 591.501014][T15195] not chained 100000 origins [ 591.505668][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 591.514339][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 591.524388][T15195] Call Trace: [ 591.527697][T15195] dump_stack+0x1df/0x240 [ 591.532049][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 591.537787][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 591.542910][T15195] ? release_sock+0x238/0x2a0 [ 591.547601][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 591.552395][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 591.557513][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 591.563073][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 591.569155][T15195] ? _copy_from_user+0x15b/0x260 [ 591.574101][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 591.579219][T15195] __msan_chain_origin+0x50/0x90 [ 591.584192][T15195] __get_compat_msghdr+0x5be/0x890 [ 591.589345][T15195] get_compat_msghdr+0x108/0x270 [ 591.594318][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 591.598846][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 591.604527][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 591.609654][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 591.614954][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 591.619721][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 591.624490][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 591.629702][T15195] __sys_recvmmsg+0x4ca/0x510 [ 591.634405][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 591.640481][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 591.646731][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 591.652895][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 591.658116][T15195] do_fast_syscall_32+0x6b/0xd0 [ 591.662977][T15195] do_SYSENTER_32+0x73/0x90 [ 591.667510][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 591.673853][T15195] RIP: 0023:0xf7f82549 [ 591.677912][T15195] Code: Bad RIP value. [ 591.681978][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 591.690390][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 591.698361][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 591.706417][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 591.714399][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 591.722377][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 591.730364][T15195] Uninit was stored to memory at: [ 591.735423][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 591.741140][T15195] __msan_chain_origin+0x50/0x90 [ 591.746103][T15195] __get_compat_msghdr+0x5be/0x890 [ 591.751218][T15195] get_compat_msghdr+0x108/0x270 [ 591.756158][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 591.760660][T15195] __sys_recvmmsg+0x4ca/0x510 [ 591.765336][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 591.771401][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 591.777558][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 591.782760][T15195] do_fast_syscall_32+0x6b/0xd0 [ 591.787610][T15195] do_SYSENTER_32+0x73/0x90 [ 591.792116][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 591.798426][T15195] [ 591.800743][T15195] Uninit was stored to memory at: [ 591.805772][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 591.811490][T15195] __msan_chain_origin+0x50/0x90 [ 591.816431][T15195] __get_compat_msghdr+0x5be/0x890 [ 591.821564][T15195] get_compat_msghdr+0x108/0x270 [ 591.826513][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 591.831029][T15195] __sys_recvmmsg+0x4ca/0x510 [ 591.835712][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 591.841783][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 591.847940][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 591.853142][T15195] do_fast_syscall_32+0x6b/0xd0 [ 591.857997][T15195] do_SYSENTER_32+0x73/0x90 [ 591.862504][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 591.868817][T15195] [ 591.871142][T15195] Uninit was stored to memory at: [ 591.876170][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 591.881890][T15195] __msan_chain_origin+0x50/0x90 [ 591.886838][T15195] __get_compat_msghdr+0x5be/0x890 [ 591.892043][T15195] get_compat_msghdr+0x108/0x270 [ 591.896981][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 591.901501][T15195] __sys_recvmmsg+0x4ca/0x510 [ 591.906177][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 591.912243][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 591.918397][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 591.923598][T15195] do_fast_syscall_32+0x6b/0xd0 [ 591.928449][T15195] do_SYSENTER_32+0x73/0x90 [ 591.932952][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 591.939282][T15195] [ 591.941603][T15195] Uninit was stored to memory at: [ 591.946640][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 591.952362][T15195] __msan_chain_origin+0x50/0x90 [ 591.957299][T15195] __get_compat_msghdr+0x5be/0x890 [ 591.962412][T15195] get_compat_msghdr+0x108/0x270 [ 591.967347][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 591.971851][T15195] __sys_recvmmsg+0x4ca/0x510 [ 591.976527][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 591.982608][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 591.988769][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 591.993969][T15195] do_fast_syscall_32+0x6b/0xd0 [ 591.998818][T15195] do_SYSENTER_32+0x73/0x90 [ 592.003323][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 592.009635][T15195] [ 592.011954][T15195] Uninit was stored to memory at: [ 592.016982][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 592.022698][T15195] __msan_chain_origin+0x50/0x90 [ 592.027664][T15195] __get_compat_msghdr+0x5be/0x890 [ 592.032779][T15195] get_compat_msghdr+0x108/0x270 [ 592.037716][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 592.042218][T15195] __sys_recvmmsg+0x4ca/0x510 [ 592.046892][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 592.052960][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 592.059112][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 592.064313][T15195] do_fast_syscall_32+0x6b/0xd0 [ 592.069166][T15195] do_SYSENTER_32+0x73/0x90 [ 592.073755][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 592.080094][T15195] [ 592.082413][T15195] Uninit was stored to memory at: [ 592.087435][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 592.093152][T15195] __msan_chain_origin+0x50/0x90 [ 592.098089][T15195] __get_compat_msghdr+0x5be/0x890 [ 592.103202][T15195] get_compat_msghdr+0x108/0x270 [ 592.108139][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 592.112642][T15195] __sys_recvmmsg+0x4ca/0x510 [ 592.117315][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 592.123377][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 592.129528][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 592.134729][T15195] do_fast_syscall_32+0x6b/0xd0 [ 592.139583][T15195] do_SYSENTER_32+0x73/0x90 [ 592.144087][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 592.150397][T15195] [ 592.152717][T15195] Uninit was stored to memory at: [ 592.157741][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 592.163463][T15195] __msan_chain_origin+0x50/0x90 [ 592.168401][T15195] __get_compat_msghdr+0x5be/0x890 [ 592.173516][T15195] get_compat_msghdr+0x108/0x270 [ 592.178450][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 592.182954][T15195] __sys_recvmmsg+0x4ca/0x510 [ 592.187629][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 592.193696][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 592.199847][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 592.205047][T15195] do_fast_syscall_32+0x6b/0xd0 [ 592.209900][T15195] do_SYSENTER_32+0x73/0x90 [ 592.214405][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 592.220718][T15195] [ 592.223038][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 592.229728][T15195] do_recvmmsg+0xc5/0x1ee0 [ 592.234150][T15195] do_recvmmsg+0xc5/0x1ee0 [ 592.446792][T15195] not chained 110000 origins [ 592.451427][T15195] CPU: 0 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 592.460094][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 592.470148][T15195] Call Trace: [ 592.473457][T15195] dump_stack+0x1df/0x240 [ 592.477809][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 592.483548][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 592.488674][T15195] ? release_sock+0x238/0x2a0 [ 592.493372][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 592.498167][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 592.503293][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 592.508851][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 592.514939][T15195] ? _copy_from_user+0x15b/0x260 [ 592.519884][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 592.525008][T15195] __msan_chain_origin+0x50/0x90 [ 592.529966][T15195] __get_compat_msghdr+0x5be/0x890 [ 592.535122][T15195] get_compat_msghdr+0x108/0x270 [ 592.540095][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 592.544631][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 592.550323][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 592.555542][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 592.560865][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 592.565637][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 592.570408][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 592.575623][T15195] __sys_recvmmsg+0x4ca/0x510 [ 592.580331][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 592.586419][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 592.592671][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 592.598838][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 592.604064][T15195] do_fast_syscall_32+0x6b/0xd0 [ 592.608931][T15195] do_SYSENTER_32+0x73/0x90 [ 592.613450][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 592.619795][T15195] RIP: 0023:0xf7f82549 [ 592.623863][T15195] Code: Bad RIP value. [ 592.627927][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 592.636345][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 592.644319][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 592.652292][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 592.660269][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 592.668247][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 592.676246][T15195] Uninit was stored to memory at: [ 592.681290][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 592.687013][T15195] __msan_chain_origin+0x50/0x90 [ 592.691956][T15195] __get_compat_msghdr+0x5be/0x890 [ 592.697074][T15195] get_compat_msghdr+0x108/0x270 [ 592.702017][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 592.706524][T15195] __sys_recvmmsg+0x4ca/0x510 [ 592.711206][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 592.717283][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 592.723444][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 592.728651][T15195] do_fast_syscall_32+0x6b/0xd0 [ 592.733506][T15195] do_SYSENTER_32+0x73/0x90 [ 592.738014][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 592.744331][T15195] [ 592.746655][T15195] Uninit was stored to memory at: [ 592.751692][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 592.757422][T15195] __msan_chain_origin+0x50/0x90 [ 592.762408][T15195] __get_compat_msghdr+0x5be/0x890 [ 592.767528][T15195] get_compat_msghdr+0x108/0x270 [ 592.772470][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 592.776977][T15195] __sys_recvmmsg+0x4ca/0x510 [ 592.781658][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 592.787728][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 592.793885][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 592.799089][T15195] do_fast_syscall_32+0x6b/0xd0 [ 592.803945][T15195] do_SYSENTER_32+0x73/0x90 [ 592.808451][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 592.814789][T15195] [ 592.817115][T15195] Uninit was stored to memory at: [ 592.822144][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 592.827868][T15195] __msan_chain_origin+0x50/0x90 [ 592.832813][T15195] __get_compat_msghdr+0x5be/0x890 [ 592.837933][T15195] get_compat_msghdr+0x108/0x270 [ 592.842897][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 592.847404][T15195] __sys_recvmmsg+0x4ca/0x510 [ 592.852086][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 592.858157][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 592.864314][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 592.869533][T15195] do_fast_syscall_32+0x6b/0xd0 [ 592.874391][T15195] do_SYSENTER_32+0x73/0x90 [ 592.878900][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 592.885220][T15195] [ 592.887557][T15195] Uninit was stored to memory at: [ 592.892607][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 592.898332][T15195] __msan_chain_origin+0x50/0x90 [ 592.903280][T15195] __get_compat_msghdr+0x5be/0x890 [ 592.908398][T15195] get_compat_msghdr+0x108/0x270 [ 592.913340][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 592.917848][T15195] __sys_recvmmsg+0x4ca/0x510 [ 592.922531][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 592.928601][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 592.934768][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 592.939976][T15195] do_fast_syscall_32+0x6b/0xd0 [ 592.944833][T15195] do_SYSENTER_32+0x73/0x90 [ 592.949339][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 592.955657][T15195] [ 592.957982][T15195] Uninit was stored to memory at: [ 592.963030][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 592.968754][T15195] __msan_chain_origin+0x50/0x90 [ 592.973799][T15195] __get_compat_msghdr+0x5be/0x890 [ 592.978914][T15195] get_compat_msghdr+0x108/0x270 [ 592.983856][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 592.988366][T15195] __sys_recvmmsg+0x4ca/0x510 [ 592.993054][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 592.999123][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 593.005285][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 593.010489][T15195] do_fast_syscall_32+0x6b/0xd0 [ 593.015363][T15195] do_SYSENTER_32+0x73/0x90 [ 593.019870][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 593.026188][T15195] [ 593.028510][T15195] Uninit was stored to memory at: [ 593.033540][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 593.039271][T15195] __msan_chain_origin+0x50/0x90 [ 593.044213][T15195] __get_compat_msghdr+0x5be/0x890 [ 593.049329][T15195] get_compat_msghdr+0x108/0x270 [ 593.054276][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 593.058782][T15195] __sys_recvmmsg+0x4ca/0x510 [ 593.063467][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 593.069536][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 593.075694][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 593.080896][T15195] do_fast_syscall_32+0x6b/0xd0 [ 593.085752][T15195] do_SYSENTER_32+0x73/0x90 [ 593.090266][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 593.096587][T15195] [ 593.098911][T15195] Uninit was stored to memory at: [ 593.103944][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 593.109665][T15195] __msan_chain_origin+0x50/0x90 [ 593.114606][T15195] __get_compat_msghdr+0x5be/0x890 [ 593.119724][T15195] get_compat_msghdr+0x108/0x270 [ 593.124671][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 593.129186][T15195] __sys_recvmmsg+0x4ca/0x510 [ 593.133867][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 593.139935][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 593.146094][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 593.151445][T15195] do_fast_syscall_32+0x6b/0xd0 [ 593.156303][T15195] do_SYSENTER_32+0x73/0x90 [ 593.160814][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 593.167131][T15195] [ 593.169476][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 593.176172][T15195] do_recvmmsg+0xc5/0x1ee0 [ 593.180592][T15195] do_recvmmsg+0xc5/0x1ee0 [ 593.388135][T15195] not chained 120000 origins [ 593.392858][T15195] CPU: 0 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 593.401524][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 593.411577][T15195] Call Trace: [ 593.414884][T15195] dump_stack+0x1df/0x240 [ 593.419233][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 593.424974][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 593.430096][T15195] ? release_sock+0x238/0x2a0 [ 593.434793][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 593.439587][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 593.444706][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 593.450271][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 593.456354][T15195] ? _copy_from_user+0x15b/0x260 [ 593.461300][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 593.466422][T15195] __msan_chain_origin+0x50/0x90 [ 593.471379][T15195] __get_compat_msghdr+0x5be/0x890 [ 593.476533][T15195] get_compat_msghdr+0x108/0x270 [ 593.481501][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 593.486033][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 593.491703][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 593.496832][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 593.502132][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 593.506912][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 593.511684][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 593.516897][T15195] __sys_recvmmsg+0x4ca/0x510 [ 593.521607][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 593.527695][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 593.533946][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 593.540112][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 593.545342][T15195] do_fast_syscall_32+0x6b/0xd0 [ 593.550206][T15195] do_SYSENTER_32+0x73/0x90 [ 593.554739][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 593.561074][T15195] RIP: 0023:0xf7f82549 [ 593.565138][T15195] Code: Bad RIP value. [ 593.569206][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 593.577638][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 593.585612][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 593.593585][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 593.601559][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 593.609532][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 593.617523][T15195] Uninit was stored to memory at: [ 593.622556][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 593.628282][T15195] __msan_chain_origin+0x50/0x90 [ 593.633226][T15195] __get_compat_msghdr+0x5be/0x890 [ 593.638350][T15195] get_compat_msghdr+0x108/0x270 [ 593.643295][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 593.647802][T15195] __sys_recvmmsg+0x4ca/0x510 [ 593.652486][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 593.658577][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 593.664733][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 593.669941][T15195] do_fast_syscall_32+0x6b/0xd0 [ 593.674798][T15195] do_SYSENTER_32+0x73/0x90 [ 593.679306][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 593.685625][T15195] [ 593.687949][T15195] Uninit was stored to memory at: [ 593.692979][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 593.698700][T15195] __msan_chain_origin+0x50/0x90 [ 593.703647][T15195] __get_compat_msghdr+0x5be/0x890 [ 593.708764][T15195] get_compat_msghdr+0x108/0x270 [ 593.713709][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 593.718220][T15195] __sys_recvmmsg+0x4ca/0x510 [ 593.722905][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 593.728975][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 593.735134][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 593.740339][T15195] do_fast_syscall_32+0x6b/0xd0 [ 593.745198][T15195] do_SYSENTER_32+0x73/0x90 [ 593.749704][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 593.756021][T15195] [ 593.758347][T15195] Uninit was stored to memory at: [ 593.763380][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 593.769103][T15195] __msan_chain_origin+0x50/0x90 [ 593.774047][T15195] __get_compat_msghdr+0x5be/0x890 [ 593.779165][T15195] get_compat_msghdr+0x108/0x270 [ 593.784107][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 593.788614][T15195] __sys_recvmmsg+0x4ca/0x510 [ 593.793296][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 593.799387][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 593.805543][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 593.810746][T15195] do_fast_syscall_32+0x6b/0xd0 [ 593.815608][T15195] do_SYSENTER_32+0x73/0x90 [ 593.820118][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 593.826434][T15195] [ 593.828761][T15195] Uninit was stored to memory at: [ 593.833796][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 593.839519][T15195] __msan_chain_origin+0x50/0x90 [ 593.844466][T15195] __get_compat_msghdr+0x5be/0x890 [ 593.849590][T15195] get_compat_msghdr+0x108/0x270 [ 593.854532][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 593.859041][T15195] __sys_recvmmsg+0x4ca/0x510 [ 593.863741][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 593.869816][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 593.875991][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 593.881200][T15195] do_fast_syscall_32+0x6b/0xd0 [ 593.886057][T15195] do_SYSENTER_32+0x73/0x90 [ 593.890568][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 593.896885][T15195] [ 593.899209][T15195] Uninit was stored to memory at: [ 593.904243][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 593.909965][T15195] __msan_chain_origin+0x50/0x90 [ 593.914910][T15195] __get_compat_msghdr+0x5be/0x890 [ 593.920035][T15195] get_compat_msghdr+0x108/0x270 [ 593.924984][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 593.929496][T15195] __sys_recvmmsg+0x4ca/0x510 [ 593.934183][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 593.940255][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 593.946417][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 593.951624][T15195] do_fast_syscall_32+0x6b/0xd0 [ 593.956485][T15195] do_SYSENTER_32+0x73/0x90 [ 593.960993][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 593.967311][T15195] [ 593.969637][T15195] Uninit was stored to memory at: [ 593.974672][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 593.980396][T15195] __msan_chain_origin+0x50/0x90 [ 593.985340][T15195] __get_compat_msghdr+0x5be/0x890 [ 593.990457][T15195] get_compat_msghdr+0x108/0x270 [ 593.995403][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 593.999916][T15195] __sys_recvmmsg+0x4ca/0x510 [ 594.004599][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 594.010673][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 594.016835][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 594.022046][T15195] do_fast_syscall_32+0x6b/0xd0 [ 594.026907][T15195] do_SYSENTER_32+0x73/0x90 [ 594.031415][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 594.037733][T15195] [ 594.040066][T15195] Uninit was stored to memory at: [ 594.045096][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 594.050842][T15195] __msan_chain_origin+0x50/0x90 [ 594.055791][T15195] __get_compat_msghdr+0x5be/0x890 [ 594.060908][T15195] get_compat_msghdr+0x108/0x270 [ 594.065853][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 594.070366][T15195] __sys_recvmmsg+0x4ca/0x510 [ 594.075050][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 594.081119][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 594.087283][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 594.092493][T15195] do_fast_syscall_32+0x6b/0xd0 [ 594.097378][T15195] do_SYSENTER_32+0x73/0x90 [ 594.101888][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 594.108208][T15195] [ 594.110538][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 594.117218][T15195] do_recvmmsg+0xc5/0x1ee0 [ 594.121641][T15195] do_recvmmsg+0xc5/0x1ee0 [ 594.464552][T15195] not chained 130000 origins [ 594.469193][T15195] CPU: 0 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 594.477868][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 594.487927][T15195] Call Trace: [ 594.491241][T15195] dump_stack+0x1df/0x240 [ 594.495597][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 594.501337][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 594.506463][T15195] ? release_sock+0x238/0x2a0 [ 594.511160][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 594.515957][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 594.521082][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 594.526643][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 594.532728][T15195] ? _copy_from_user+0x15b/0x260 [ 594.537682][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 594.542810][T15195] __msan_chain_origin+0x50/0x90 [ 594.547774][T15195] __get_compat_msghdr+0x5be/0x890 [ 594.552931][T15195] get_compat_msghdr+0x108/0x270 [ 594.557901][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 594.562440][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 594.568116][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 594.573250][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 594.578554][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 594.583328][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 594.588105][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 594.593323][T15195] __sys_recvmmsg+0x4ca/0x510 [ 594.598037][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 594.604125][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 594.610375][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 594.616543][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 594.621772][T15195] do_fast_syscall_32+0x6b/0xd0 [ 594.626674][T15195] do_SYSENTER_32+0x73/0x90 [ 594.631195][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 594.637526][T15195] RIP: 0023:0xf7f82549 [ 594.641587][T15195] Code: Bad RIP value. [ 594.645651][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 594.654065][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 594.662041][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 594.670013][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 594.677987][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 594.685958][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 594.693951][T15195] Uninit was stored to memory at: [ 594.698994][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 594.704718][T15195] __msan_chain_origin+0x50/0x90 [ 594.709673][T15195] __get_compat_msghdr+0x5be/0x890 [ 594.714798][T15195] get_compat_msghdr+0x108/0x270 [ 594.719744][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 594.724262][T15195] __sys_recvmmsg+0x4ca/0x510 [ 594.728946][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 594.735016][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 594.741176][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 594.746381][T15195] do_fast_syscall_32+0x6b/0xd0 [ 594.751238][T15195] do_SYSENTER_32+0x73/0x90 [ 594.755798][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 594.762122][T15195] [ 594.764450][T15195] Uninit was stored to memory at: [ 594.769486][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 594.775214][T15195] __msan_chain_origin+0x50/0x90 [ 594.780255][T15195] __get_compat_msghdr+0x5be/0x890 [ 594.785373][T15195] get_compat_msghdr+0x108/0x270 [ 594.790320][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 594.794829][T15195] __sys_recvmmsg+0x4ca/0x510 [ 594.799515][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 594.805588][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 594.811762][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 594.816968][T15195] do_fast_syscall_32+0x6b/0xd0 [ 594.821824][T15195] do_SYSENTER_32+0x73/0x90 [ 594.826337][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 594.832659][T15195] [ 594.834988][T15195] Uninit was stored to memory at: [ 594.840019][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 594.845767][T15195] __msan_chain_origin+0x50/0x90 [ 594.850714][T15195] __get_compat_msghdr+0x5be/0x890 [ 594.855840][T15195] get_compat_msghdr+0x108/0x270 [ 594.860784][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 594.865295][T15195] __sys_recvmmsg+0x4ca/0x510 [ 594.869981][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 594.876056][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 594.882217][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 594.887443][T15195] do_fast_syscall_32+0x6b/0xd0 [ 594.892303][T15195] do_SYSENTER_32+0x73/0x90 [ 594.896814][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 594.903152][T15195] [ 594.905479][T15195] Uninit was stored to memory at: [ 594.910511][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 594.916235][T15195] __msan_chain_origin+0x50/0x90 [ 594.921179][T15195] __get_compat_msghdr+0x5be/0x890 [ 594.926295][T15195] get_compat_msghdr+0x108/0x270 [ 594.931242][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 594.935761][T15195] __sys_recvmmsg+0x4ca/0x510 [ 594.940445][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 594.946516][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 594.952676][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 594.957880][T15195] do_fast_syscall_32+0x6b/0xd0 [ 594.962737][T15195] do_SYSENTER_32+0x73/0x90 [ 594.967253][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 594.973571][T15195] [ 594.975894][T15195] Uninit was stored to memory at: [ 594.980923][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 594.986646][T15195] __msan_chain_origin+0x50/0x90 [ 594.991589][T15195] __get_compat_msghdr+0x5be/0x890 [ 594.996704][T15195] get_compat_msghdr+0x108/0x270 [ 595.001649][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 595.006156][T15195] __sys_recvmmsg+0x4ca/0x510 [ 595.010861][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 595.016934][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 595.023095][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 595.028299][T15195] do_fast_syscall_32+0x6b/0xd0 [ 595.033159][T15195] do_SYSENTER_32+0x73/0x90 [ 595.037667][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 595.043984][T15195] [ 595.046307][T15195] Uninit was stored to memory at: [ 595.051339][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 595.057061][T15195] __msan_chain_origin+0x50/0x90 [ 595.062006][T15195] __get_compat_msghdr+0x5be/0x890 [ 595.067128][T15195] get_compat_msghdr+0x108/0x270 [ 595.072073][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 595.076580][T15195] __sys_recvmmsg+0x4ca/0x510 [ 595.081259][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 595.087332][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 595.093489][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 595.098712][T15195] do_fast_syscall_32+0x6b/0xd0 [ 595.103570][T15195] do_SYSENTER_32+0x73/0x90 [ 595.108092][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 595.114411][T15195] [ 595.116733][T15195] Uninit was stored to memory at: [ 595.121772][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 595.127497][T15195] __msan_chain_origin+0x50/0x90 [ 595.132469][T15195] __get_compat_msghdr+0x5be/0x890 [ 595.137585][T15195] get_compat_msghdr+0x108/0x270 [ 595.142526][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 595.147058][T15195] __sys_recvmmsg+0x4ca/0x510 [ 595.151763][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 595.157834][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 595.163995][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 595.169198][T15195] do_fast_syscall_32+0x6b/0xd0 [ 595.174054][T15195] do_SYSENTER_32+0x73/0x90 [ 595.178559][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 595.184874][T15195] [ 595.187201][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 595.193876][T15195] do_recvmmsg+0xc5/0x1ee0 [ 595.198297][T15195] do_recvmmsg+0xc5/0x1ee0 [ 595.438422][T15195] not chained 140000 origins [ 595.443053][T15195] CPU: 0 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 595.451721][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 595.461790][T15195] Call Trace: [ 595.465094][T15195] dump_stack+0x1df/0x240 [ 595.469439][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 595.475173][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 595.480291][T15195] ? release_sock+0x238/0x2a0 [ 595.484979][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 595.489772][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 595.494887][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 595.500438][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 595.506514][T15195] ? _copy_from_user+0x15b/0x260 [ 595.511454][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 595.516570][T15195] __msan_chain_origin+0x50/0x90 [ 595.521515][T15195] __get_compat_msghdr+0x5be/0x890 [ 595.526675][T15195] get_compat_msghdr+0x108/0x270 [ 595.531631][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 595.536159][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 595.541818][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 595.546942][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 595.552236][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 595.556998][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 595.561771][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 595.566996][T15195] __sys_recvmmsg+0x4ca/0x510 [ 595.571707][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 595.577788][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 595.584050][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 595.590211][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 595.595426][T15195] do_fast_syscall_32+0x6b/0xd0 [ 595.600286][T15195] do_SYSENTER_32+0x73/0x90 [ 595.604799][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 595.611122][T15195] RIP: 0023:0xf7f82549 [ 595.615177][T15195] Code: Bad RIP value. [ 595.619239][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 595.627661][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 595.635630][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 595.643599][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 595.651570][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 595.659537][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 595.667522][T15195] Uninit was stored to memory at: [ 595.672550][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 595.678284][T15195] __msan_chain_origin+0x50/0x90 [ 595.683240][T15195] __get_compat_msghdr+0x5be/0x890 [ 595.688352][T15195] get_compat_msghdr+0x108/0x270 [ 595.693289][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 595.697792][T15195] __sys_recvmmsg+0x4ca/0x510 [ 595.702468][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 595.708542][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 595.714697][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 595.719913][T15195] do_fast_syscall_32+0x6b/0xd0 [ 595.724784][T15195] do_SYSENTER_32+0x73/0x90 [ 595.729291][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 595.735604][T15195] [ 595.737922][T15195] Uninit was stored to memory at: [ 595.742945][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 595.748660][T15195] __msan_chain_origin+0x50/0x90 [ 595.753595][T15195] __get_compat_msghdr+0x5be/0x890 [ 595.758709][T15195] get_compat_msghdr+0x108/0x270 [ 595.763659][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 595.768160][T15195] __sys_recvmmsg+0x4ca/0x510 [ 595.772836][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 595.778901][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 595.785057][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 595.790255][T15195] do_fast_syscall_32+0x6b/0xd0 [ 595.795105][T15195] do_SYSENTER_32+0x73/0x90 [ 595.799608][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 595.805935][T15195] [ 595.808255][T15195] Uninit was stored to memory at: [ 595.813282][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 595.819016][T15195] __msan_chain_origin+0x50/0x90 [ 595.823957][T15195] __get_compat_msghdr+0x5be/0x890 [ 595.829071][T15195] get_compat_msghdr+0x108/0x270 [ 595.834008][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 595.838507][T15195] __sys_recvmmsg+0x4ca/0x510 [ 595.843181][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 595.849244][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 595.855399][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 595.860593][T15195] do_fast_syscall_32+0x6b/0xd0 [ 595.865442][T15195] do_SYSENTER_32+0x73/0x90 [ 595.869944][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 595.876257][T15195] [ 595.878579][T15195] Uninit was stored to memory at: [ 595.883612][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 595.889336][T15195] __msan_chain_origin+0x50/0x90 [ 595.894276][T15195] __get_compat_msghdr+0x5be/0x890 [ 595.899389][T15195] get_compat_msghdr+0x108/0x270 [ 595.904326][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 595.908832][T15195] __sys_recvmmsg+0x4ca/0x510 [ 595.913508][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 595.919572][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 595.925724][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 595.930930][T15195] do_fast_syscall_32+0x6b/0xd0 [ 595.935781][T15195] do_SYSENTER_32+0x73/0x90 [ 595.940282][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 595.946594][T15195] [ 595.948917][T15195] Uninit was stored to memory at: [ 595.953947][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 595.959663][T15195] __msan_chain_origin+0x50/0x90 [ 595.964605][T15195] __get_compat_msghdr+0x5be/0x890 [ 595.969720][T15195] get_compat_msghdr+0x108/0x270 [ 595.974660][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 595.979162][T15195] __sys_recvmmsg+0x4ca/0x510 [ 595.983843][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 595.989909][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 595.996071][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 596.001276][T15195] do_fast_syscall_32+0x6b/0xd0 [ 596.006128][T15195] do_SYSENTER_32+0x73/0x90 [ 596.010639][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 596.016954][T15195] [ 596.019277][T15195] Uninit was stored to memory at: [ 596.024311][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 596.030031][T15195] __msan_chain_origin+0x50/0x90 [ 596.034970][T15195] __get_compat_msghdr+0x5be/0x890 [ 596.040097][T15195] get_compat_msghdr+0x108/0x270 [ 596.045038][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 596.049543][T15195] __sys_recvmmsg+0x4ca/0x510 [ 596.054222][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 596.060291][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 596.066447][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 596.071653][T15195] do_fast_syscall_32+0x6b/0xd0 [ 596.076505][T15195] do_SYSENTER_32+0x73/0x90 [ 596.081009][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 596.087320][T15195] [ 596.089639][T15195] Uninit was stored to memory at: [ 596.094663][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 596.100379][T15195] __msan_chain_origin+0x50/0x90 [ 596.105315][T15195] __get_compat_msghdr+0x5be/0x890 [ 596.110427][T15195] get_compat_msghdr+0x108/0x270 [ 596.115364][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 596.119868][T15195] __sys_recvmmsg+0x4ca/0x510 [ 596.124546][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 596.130615][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 596.136769][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 596.141967][T15195] do_fast_syscall_32+0x6b/0xd0 [ 596.146817][T15195] do_SYSENTER_32+0x73/0x90 [ 596.151317][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 596.157628][T15195] [ 596.159948][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 596.166624][T15195] do_recvmmsg+0xc5/0x1ee0 [ 596.171041][T15195] do_recvmmsg+0xc5/0x1ee0 [ 596.399274][T15195] not chained 150000 origins [ 596.403905][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 596.412571][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 596.422623][T15195] Call Trace: [ 596.425928][T15195] dump_stack+0x1df/0x240 [ 596.430282][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 596.436019][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 596.441143][T15195] ? release_sock+0x238/0x2a0 [ 596.445843][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 596.450660][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 596.455785][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 596.461345][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 596.467437][T15195] ? _copy_from_user+0x15b/0x260 [ 596.472388][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 596.477515][T15195] __msan_chain_origin+0x50/0x90 [ 596.482473][T15195] __get_compat_msghdr+0x5be/0x890 [ 596.487627][T15195] get_compat_msghdr+0x108/0x270 [ 596.492596][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 596.497134][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 596.502809][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 596.507940][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 596.513243][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 596.518015][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 596.522789][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 596.528016][T15195] __sys_recvmmsg+0x4ca/0x510 [ 596.532726][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 596.538837][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 596.545090][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 596.551262][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 596.556485][T15195] do_fast_syscall_32+0x6b/0xd0 [ 596.561351][T15195] do_SYSENTER_32+0x73/0x90 [ 596.565870][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 596.572202][T15195] RIP: 0023:0xf7f82549 [ 596.576264][T15195] Code: Bad RIP value. [ 596.580330][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 596.588747][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 596.596722][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 596.604696][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 596.612670][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 596.620643][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 596.628639][T15195] Uninit was stored to memory at: [ 596.633675][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 596.639397][T15195] __msan_chain_origin+0x50/0x90 [ 596.644350][T15195] __get_compat_msghdr+0x5be/0x890 [ 596.649468][T15195] get_compat_msghdr+0x108/0x270 [ 596.654421][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 596.658932][T15195] __sys_recvmmsg+0x4ca/0x510 [ 596.663618][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 596.669689][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 596.675847][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 596.681052][T15195] do_fast_syscall_32+0x6b/0xd0 [ 596.685911][T15195] do_SYSENTER_32+0x73/0x90 [ 596.690423][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 596.696741][T15195] [ 596.699064][T15195] Uninit was stored to memory at: [ 596.704100][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 596.709841][T15195] __msan_chain_origin+0x50/0x90 [ 596.714797][T15195] __get_compat_msghdr+0x5be/0x890 [ 596.719919][T15195] get_compat_msghdr+0x108/0x270 [ 596.724865][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 596.729377][T15195] __sys_recvmmsg+0x4ca/0x510 [ 596.734062][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 596.740135][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 596.746299][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 596.751505][T15195] do_fast_syscall_32+0x6b/0xd0 [ 596.756367][T15195] do_SYSENTER_32+0x73/0x90 [ 596.760879][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 596.767229][T15195] [ 596.769556][T15195] Uninit was stored to memory at: [ 596.774590][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 596.780314][T15195] __msan_chain_origin+0x50/0x90 [ 596.785258][T15195] __get_compat_msghdr+0x5be/0x890 [ 596.790375][T15195] get_compat_msghdr+0x108/0x270 [ 596.795319][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 596.799830][T15195] __sys_recvmmsg+0x4ca/0x510 [ 596.804514][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 596.810583][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 596.816746][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 596.821956][T15195] do_fast_syscall_32+0x6b/0xd0 [ 596.826815][T15195] do_SYSENTER_32+0x73/0x90 [ 596.831329][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 596.837646][T15195] [ 596.839973][T15195] Uninit was stored to memory at: [ 596.845005][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 596.850730][T15195] __msan_chain_origin+0x50/0x90 [ 596.855683][T15195] __get_compat_msghdr+0x5be/0x890 [ 596.860798][T15195] get_compat_msghdr+0x108/0x270 [ 596.865741][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 596.870255][T15195] __sys_recvmmsg+0x4ca/0x510 [ 596.874936][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 596.881008][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 596.887176][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 596.892410][T15195] do_fast_syscall_32+0x6b/0xd0 [ 596.898225][T15195] do_SYSENTER_32+0x73/0x90 [ 596.902738][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 596.909062][T15195] [ 596.911387][T15195] Uninit was stored to memory at: [ 596.916420][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 596.922150][T15195] __msan_chain_origin+0x50/0x90 [ 596.927103][T15195] __get_compat_msghdr+0x5be/0x890 [ 596.932225][T15195] get_compat_msghdr+0x108/0x270 [ 596.937181][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 596.941690][T15195] __sys_recvmmsg+0x4ca/0x510 [ 596.946382][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 596.952456][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 596.958615][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 596.963830][T15195] do_fast_syscall_32+0x6b/0xd0 [ 596.968690][T15195] do_SYSENTER_32+0x73/0x90 [ 596.973200][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 596.979539][T15195] [ 596.981863][T15195] Uninit was stored to memory at: [ 596.986897][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 596.992625][T15195] __msan_chain_origin+0x50/0x90 [ 596.997571][T15195] __get_compat_msghdr+0x5be/0x890 [ 597.002689][T15195] get_compat_msghdr+0x108/0x270 [ 597.007635][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 597.012145][T15195] __sys_recvmmsg+0x4ca/0x510 [ 597.016829][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 597.022906][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 597.029068][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 597.034285][T15195] do_fast_syscall_32+0x6b/0xd0 [ 597.039143][T15195] do_SYSENTER_32+0x73/0x90 [ 597.043657][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 597.049978][T15195] [ 597.052305][T15195] Uninit was stored to memory at: [ 597.057360][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 597.063083][T15195] __msan_chain_origin+0x50/0x90 [ 597.068046][T15195] __get_compat_msghdr+0x5be/0x890 [ 597.073164][T15195] get_compat_msghdr+0x108/0x270 [ 597.078109][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 597.082621][T15195] __sys_recvmmsg+0x4ca/0x510 [ 597.087303][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 597.093377][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 597.099540][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 597.104746][T15195] do_fast_syscall_32+0x6b/0xd0 [ 597.109607][T15195] do_SYSENTER_32+0x73/0x90 [ 597.114120][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 597.120437][T15195] [ 597.122767][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 597.129445][T15195] do_recvmmsg+0xc5/0x1ee0 [ 597.133867][T15195] do_recvmmsg+0xc5/0x1ee0 [ 597.338767][T15195] not chained 160000 origins [ 597.343402][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 597.352069][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 597.362129][T15195] Call Trace: [ 597.365435][T15195] dump_stack+0x1df/0x240 [ 597.369792][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 597.375536][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 597.380662][T15195] ? release_sock+0x238/0x2a0 [ 597.385380][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 597.390174][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 597.395299][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 597.400860][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 597.406953][T15195] ? _copy_from_user+0x15b/0x260 [ 597.411902][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 597.417029][T15195] __msan_chain_origin+0x50/0x90 [ 597.421987][T15195] __get_compat_msghdr+0x5be/0x890 [ 597.427147][T15195] get_compat_msghdr+0x108/0x270 [ 597.432120][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 597.436661][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 597.442332][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 597.447462][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 597.452783][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 597.457557][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 597.462331][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 597.467561][T15195] __sys_recvmmsg+0x4ca/0x510 [ 597.472290][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 597.478378][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 597.484634][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 597.490800][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 597.496033][T15195] do_fast_syscall_32+0x6b/0xd0 [ 597.500903][T15195] do_SYSENTER_32+0x73/0x90 [ 597.505443][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 597.511777][T15195] RIP: 0023:0xf7f82549 [ 597.515840][T15195] Code: Bad RIP value. [ 597.519910][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 597.528328][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 597.536306][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 597.544283][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 597.552268][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 597.560249][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 597.568261][T15195] Uninit was stored to memory at: [ 597.573297][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 597.579044][T15195] __msan_chain_origin+0x50/0x90 [ 597.583995][T15195] __get_compat_msghdr+0x5be/0x890 [ 597.589119][T15195] get_compat_msghdr+0x108/0x270 [ 597.594071][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 597.598581][T15195] __sys_recvmmsg+0x4ca/0x510 [ 597.603260][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 597.609331][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 597.615493][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 597.620716][T15195] do_fast_syscall_32+0x6b/0xd0 [ 597.625576][T15195] do_SYSENTER_32+0x73/0x90 [ 597.630082][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 597.636397][T15195] [ 597.638719][T15195] Uninit was stored to memory at: [ 597.643747][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 597.649471][T15195] __msan_chain_origin+0x50/0x90 [ 597.654417][T15195] __get_compat_msghdr+0x5be/0x890 [ 597.659536][T15195] get_compat_msghdr+0x108/0x270 [ 597.664495][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 597.669000][T15195] __sys_recvmmsg+0x4ca/0x510 [ 597.673682][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 597.679751][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 597.685927][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 597.691132][T15195] do_fast_syscall_32+0x6b/0xd0 [ 597.695990][T15195] do_SYSENTER_32+0x73/0x90 [ 597.700499][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 597.706834][T15195] [ 597.709162][T15195] Uninit was stored to memory at: [ 597.714191][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 597.719912][T15195] __msan_chain_origin+0x50/0x90 [ 597.724856][T15195] __get_compat_msghdr+0x5be/0x890 [ 597.729970][T15195] get_compat_msghdr+0x108/0x270 [ 597.734913][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 597.739427][T15195] __sys_recvmmsg+0x4ca/0x510 [ 597.744113][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 597.750185][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 597.756346][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 597.761560][T15195] do_fast_syscall_32+0x6b/0xd0 [ 597.766422][T15195] do_SYSENTER_32+0x73/0x90 [ 597.770929][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 597.777245][T15195] [ 597.779574][T15195] Uninit was stored to memory at: [ 597.784604][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 597.790330][T15195] __msan_chain_origin+0x50/0x90 [ 597.795276][T15195] __get_compat_msghdr+0x5be/0x890 [ 597.800396][T15195] get_compat_msghdr+0x108/0x270 [ 597.805360][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 597.809868][T15195] __sys_recvmmsg+0x4ca/0x510 [ 597.814551][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 597.820621][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 597.826783][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 597.831991][T15195] do_fast_syscall_32+0x6b/0xd0 [ 597.836847][T15195] do_SYSENTER_32+0x73/0x90 [ 597.841354][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 597.847671][T15195] [ 597.850001][T15195] Uninit was stored to memory at: [ 597.855054][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 597.860781][T15195] __msan_chain_origin+0x50/0x90 [ 597.865728][T15195] __get_compat_msghdr+0x5be/0x890 [ 597.870847][T15195] get_compat_msghdr+0x108/0x270 [ 597.875792][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 597.880299][T15195] __sys_recvmmsg+0x4ca/0x510 [ 597.884985][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 597.891057][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 597.897218][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 597.902426][T15195] do_fast_syscall_32+0x6b/0xd0 [ 597.907287][T15195] do_SYSENTER_32+0x73/0x90 [ 597.911819][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 597.918147][T15195] [ 597.920481][T15195] Uninit was stored to memory at: [ 597.925515][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 597.931244][T15195] __msan_chain_origin+0x50/0x90 [ 597.936198][T15195] __get_compat_msghdr+0x5be/0x890 [ 597.941318][T15195] get_compat_msghdr+0x108/0x270 [ 597.946266][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 597.950784][T15195] __sys_recvmmsg+0x4ca/0x510 [ 597.955471][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 597.961545][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 597.967708][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 597.972918][T15195] do_fast_syscall_32+0x6b/0xd0 [ 597.977782][T15195] do_SYSENTER_32+0x73/0x90 [ 597.982293][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 597.988615][T15195] [ 597.990941][T15195] Uninit was stored to memory at: [ 597.995994][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 598.001719][T15195] __msan_chain_origin+0x50/0x90 [ 598.006670][T15195] __get_compat_msghdr+0x5be/0x890 [ 598.011789][T15195] get_compat_msghdr+0x108/0x270 [ 598.016734][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 598.021251][T15195] __sys_recvmmsg+0x4ca/0x510 [ 598.025935][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 598.032007][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 598.038174][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 598.043384][T15195] do_fast_syscall_32+0x6b/0xd0 [ 598.048276][T15195] do_SYSENTER_32+0x73/0x90 [ 598.052787][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 598.059105][T15195] [ 598.061433][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 598.068116][T15195] do_recvmmsg+0xc5/0x1ee0 [ 598.072543][T15195] do_recvmmsg+0xc5/0x1ee0 [ 598.276502][T15195] not chained 170000 origins [ 598.281145][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 598.289814][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 598.299872][T15195] Call Trace: [ 598.303179][T15195] dump_stack+0x1df/0x240 [ 598.307537][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 598.313279][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 598.318405][T15195] ? release_sock+0x238/0x2a0 [ 598.323102][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 598.327897][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 598.333021][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 598.338599][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 598.344694][T15195] ? _copy_from_user+0x15b/0x260 [ 598.349649][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 598.354783][T15195] __msan_chain_origin+0x50/0x90 [ 598.359750][T15195] __get_compat_msghdr+0x5be/0x890 [ 598.364907][T15195] get_compat_msghdr+0x108/0x270 [ 598.369879][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 598.374416][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 598.380094][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 598.385228][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 598.390530][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 598.395308][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 598.400084][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 598.405298][T15195] __sys_recvmmsg+0x4ca/0x510 [ 598.410010][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 598.416100][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 598.422353][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 598.428527][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 598.433773][T15195] do_fast_syscall_32+0x6b/0xd0 [ 598.438643][T15195] do_SYSENTER_32+0x73/0x90 [ 598.443163][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 598.449498][T15195] RIP: 0023:0xf7f82549 [ 598.453677][T15195] Code: Bad RIP value. [ 598.457750][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 598.466257][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 598.474258][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 598.482239][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 598.490216][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 598.498199][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 598.506196][T15195] Uninit was stored to memory at: [ 598.511235][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 598.516963][T15195] __msan_chain_origin+0x50/0x90 [ 598.521913][T15195] __get_compat_msghdr+0x5be/0x890 [ 598.527034][T15195] get_compat_msghdr+0x108/0x270 [ 598.532005][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 598.536518][T15195] __sys_recvmmsg+0x4ca/0x510 [ 598.541208][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 598.547328][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 598.553516][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 598.558724][T15195] do_fast_syscall_32+0x6b/0xd0 [ 598.563591][T15195] do_SYSENTER_32+0x73/0x90 [ 598.568102][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 598.574443][T15195] [ 598.576769][T15195] Uninit was stored to memory at: [ 598.581803][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 598.587530][T15195] __msan_chain_origin+0x50/0x90 [ 598.592483][T15195] __get_compat_msghdr+0x5be/0x890 [ 598.597610][T15195] get_compat_msghdr+0x108/0x270 [ 598.602642][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 598.607153][T15195] __sys_recvmmsg+0x4ca/0x510 [ 598.611835][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 598.617905][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 598.624066][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 598.629273][T15195] do_fast_syscall_32+0x6b/0xd0 [ 598.634137][T15195] do_SYSENTER_32+0x73/0x90 [ 598.638648][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 598.644969][T15195] [ 598.647295][T15195] Uninit was stored to memory at: [ 598.652330][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 598.658055][T15195] __msan_chain_origin+0x50/0x90 [ 598.662999][T15195] __get_compat_msghdr+0x5be/0x890 [ 598.668120][T15195] get_compat_msghdr+0x108/0x270 [ 598.673066][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 598.677582][T15195] __sys_recvmmsg+0x4ca/0x510 [ 598.682265][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 598.688334][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 598.694495][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 598.699704][T15195] do_fast_syscall_32+0x6b/0xd0 [ 598.704560][T15195] do_SYSENTER_32+0x73/0x90 [ 598.709071][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 598.715390][T15195] [ 598.717716][T15195] Uninit was stored to memory at: [ 598.722751][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 598.728482][T15195] __msan_chain_origin+0x50/0x90 [ 598.733432][T15195] __get_compat_msghdr+0x5be/0x890 [ 598.738551][T15195] get_compat_msghdr+0x108/0x270 [ 598.743496][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 598.748031][T15195] __sys_recvmmsg+0x4ca/0x510 [ 598.752721][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 598.758801][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 598.764961][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 598.770170][T15195] do_fast_syscall_32+0x6b/0xd0 [ 598.775156][T15195] do_SYSENTER_32+0x73/0x90 [ 598.779688][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 598.787134][T15195] [ 598.789459][T15195] Uninit was stored to memory at: [ 598.794491][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 598.800212][T15195] __msan_chain_origin+0x50/0x90 [ 598.805162][T15195] __get_compat_msghdr+0x5be/0x890 [ 598.810281][T15195] get_compat_msghdr+0x108/0x270 [ 598.815231][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 598.819740][T15195] __sys_recvmmsg+0x4ca/0x510 [ 598.824619][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 598.830692][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 598.836851][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 598.842059][T15195] do_fast_syscall_32+0x6b/0xd0 [ 598.846914][T15195] do_SYSENTER_32+0x73/0x90 [ 598.851421][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 598.857737][T15195] [ 598.860080][T15195] Uninit was stored to memory at: [ 598.865120][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 598.870846][T15195] __msan_chain_origin+0x50/0x90 [ 598.875795][T15195] __get_compat_msghdr+0x5be/0x890 [ 598.880918][T15195] get_compat_msghdr+0x108/0x270 [ 598.885868][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 598.890378][T15195] __sys_recvmmsg+0x4ca/0x510 [ 598.895062][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 598.901132][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 598.907297][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 598.912502][T15195] do_fast_syscall_32+0x6b/0xd0 [ 598.917363][T15195] do_SYSENTER_32+0x73/0x90 [ 598.921877][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 598.928198][T15195] [ 598.930523][T15195] Uninit was stored to memory at: [ 598.935559][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 598.941286][T15195] __msan_chain_origin+0x50/0x90 [ 598.946236][T15195] __get_compat_msghdr+0x5be/0x890 [ 598.951357][T15195] get_compat_msghdr+0x108/0x270 [ 598.956301][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 598.960810][T15195] __sys_recvmmsg+0x4ca/0x510 [ 598.965491][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 598.971563][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 598.977724][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 598.982933][T15195] do_fast_syscall_32+0x6b/0xd0 [ 598.987794][T15195] do_SYSENTER_32+0x73/0x90 [ 598.992302][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 598.998621][T15195] [ 599.000948][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 599.007625][T15195] do_recvmmsg+0xc5/0x1ee0 [ 599.012048][T15195] do_recvmmsg+0xc5/0x1ee0 [ 599.177566][T15195] not chained 180000 origins [ 599.182202][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 599.190872][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 599.200930][T15195] Call Trace: [ 599.204236][T15195] dump_stack+0x1df/0x240 [ 599.208587][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 599.214330][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 599.219454][T15195] ? release_sock+0x238/0x2a0 [ 599.224152][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 599.228957][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 599.234082][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 599.239647][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 599.245737][T15195] ? _copy_from_user+0x15b/0x260 [ 599.250692][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 599.255821][T15195] __msan_chain_origin+0x50/0x90 [ 599.260785][T15195] __get_compat_msghdr+0x5be/0x890 [ 599.265941][T15195] get_compat_msghdr+0x108/0x270 [ 599.270915][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 599.275453][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 599.281128][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 599.286263][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 599.291564][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 599.296341][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 599.301116][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 599.306331][T15195] __sys_recvmmsg+0x4ca/0x510 [ 599.311043][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 599.317135][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 599.323394][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 599.329561][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 599.334794][T15195] do_fast_syscall_32+0x6b/0xd0 [ 599.339662][T15195] do_SYSENTER_32+0x73/0x90 [ 599.344181][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 599.350514][T15195] RIP: 0023:0xf7f82549 [ 599.354589][T15195] Code: Bad RIP value. [ 599.358659][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 599.367097][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 599.375096][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 599.383076][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 599.391055][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 599.399036][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 599.407037][T15195] Uninit was stored to memory at: [ 599.412078][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 599.417805][T15195] __msan_chain_origin+0x50/0x90 [ 599.422760][T15195] __get_compat_msghdr+0x5be/0x890 [ 599.427907][T15195] get_compat_msghdr+0x108/0x270 [ 599.432861][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 599.437372][T15195] __sys_recvmmsg+0x4ca/0x510 [ 599.442079][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 599.448152][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 599.454318][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 599.459528][T15195] do_fast_syscall_32+0x6b/0xd0 [ 599.464390][T15195] do_SYSENTER_32+0x73/0x90 [ 599.468903][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 599.475224][T15195] [ 599.477549][T15195] Uninit was stored to memory at: [ 599.482582][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 599.488317][T15195] __msan_chain_origin+0x50/0x90 [ 599.493264][T15195] __get_compat_msghdr+0x5be/0x890 [ 599.498388][T15195] get_compat_msghdr+0x108/0x270 [ 599.503332][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 599.508041][T15195] __sys_recvmmsg+0x4ca/0x510 [ 599.512729][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 599.519003][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 599.525168][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 599.530377][T15195] do_fast_syscall_32+0x6b/0xd0 [ 599.535236][T15195] do_SYSENTER_32+0x73/0x90 [ 599.539751][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 599.546069][T15195] [ 599.548399][T15195] Uninit was stored to memory at: [ 599.553433][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 599.559165][T15195] __msan_chain_origin+0x50/0x90 [ 599.564111][T15195] __get_compat_msghdr+0x5be/0x890 [ 599.569232][T15195] get_compat_msghdr+0x108/0x270 [ 599.574180][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 599.578689][T15195] __sys_recvmmsg+0x4ca/0x510 [ 599.583376][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 599.589452][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 599.595621][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 599.600829][T15195] do_fast_syscall_32+0x6b/0xd0 [ 599.605686][T15195] do_SYSENTER_32+0x73/0x90 [ 599.610196][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 599.616514][T15195] [ 599.618840][T15195] Uninit was stored to memory at: [ 599.623891][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 599.629620][T15195] __msan_chain_origin+0x50/0x90 [ 599.634565][T15195] __get_compat_msghdr+0x5be/0x890 [ 599.639682][T15195] get_compat_msghdr+0x108/0x270 [ 599.644625][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 599.649396][T15195] __sys_recvmmsg+0x4ca/0x510 [ 599.654081][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 599.660155][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 599.666315][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 599.671524][T15195] do_fast_syscall_32+0x6b/0xd0 [ 599.676383][T15195] do_SYSENTER_32+0x73/0x90 [ 599.680893][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 599.687210][T15195] [ 599.689537][T15195] Uninit was stored to memory at: [ 599.694590][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 599.700313][T15195] __msan_chain_origin+0x50/0x90 [ 599.705257][T15195] __get_compat_msghdr+0x5be/0x890 [ 599.710374][T15195] get_compat_msghdr+0x108/0x270 [ 599.715318][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 599.719825][T15195] __sys_recvmmsg+0x4ca/0x510 [ 599.724506][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 599.730578][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 599.736735][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 599.741943][T15195] do_fast_syscall_32+0x6b/0xd0 [ 599.746802][T15195] do_SYSENTER_32+0x73/0x90 [ 599.751343][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 599.757665][T15195] [ 599.759990][T15195] Uninit was stored to memory at: [ 599.765029][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 599.770756][T15195] __msan_chain_origin+0x50/0x90 [ 599.775727][T15195] __get_compat_msghdr+0x5be/0x890 [ 599.780847][T15195] get_compat_msghdr+0x108/0x270 [ 599.785792][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 599.790301][T15195] __sys_recvmmsg+0x4ca/0x510 [ 599.794984][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 599.801058][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 599.807219][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 599.812430][T15195] do_fast_syscall_32+0x6b/0xd0 [ 599.817290][T15195] do_SYSENTER_32+0x73/0x90 [ 599.821799][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 599.828121][T15195] [ 599.830443][T15195] Uninit was stored to memory at: [ 599.835483][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 599.841208][T15195] __msan_chain_origin+0x50/0x90 [ 599.846163][T15195] __get_compat_msghdr+0x5be/0x890 [ 599.851284][T15195] get_compat_msghdr+0x108/0x270 [ 599.856232][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 599.860746][T15195] __sys_recvmmsg+0x4ca/0x510 [ 599.865432][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 599.871505][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 599.877666][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 599.882878][T15195] do_fast_syscall_32+0x6b/0xd0 [ 599.887738][T15195] do_SYSENTER_32+0x73/0x90 [ 599.892259][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 599.898577][T15195] [ 599.900908][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 599.907587][T15195] do_recvmmsg+0xc5/0x1ee0 [ 599.912030][T15195] do_recvmmsg+0xc5/0x1ee0 [ 600.100685][T15195] not chained 190000 origins [ 600.105318][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 600.113984][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 600.124041][T15195] Call Trace: [ 600.127346][T15195] dump_stack+0x1df/0x240 [ 600.131715][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 600.137458][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 600.142584][T15195] ? release_sock+0x238/0x2a0 [ 600.147289][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 600.152087][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 600.157213][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 600.162776][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 600.168866][T15195] ? _copy_from_user+0x15b/0x260 [ 600.173814][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 600.178937][T15195] __msan_chain_origin+0x50/0x90 [ 600.183896][T15195] __get_compat_msghdr+0x5be/0x890 [ 600.189049][T15195] get_compat_msghdr+0x108/0x270 [ 600.194037][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 600.198678][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 600.204352][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 600.209485][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 600.214783][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 600.219554][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 600.224326][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 600.229626][T15195] __sys_recvmmsg+0x4ca/0x510 [ 600.234357][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 600.240444][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 600.246697][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 600.252866][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 600.258096][T15195] do_fast_syscall_32+0x6b/0xd0 [ 600.262964][T15195] do_SYSENTER_32+0x73/0x90 [ 600.267480][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 600.273812][T15195] RIP: 0023:0xf7f82549 [ 600.277872][T15195] Code: Bad RIP value. [ 600.281938][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 600.290356][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 600.298352][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 600.306327][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 600.314303][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 600.322281][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 600.330279][T15195] Uninit was stored to memory at: [ 600.335312][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 600.341039][T15195] __msan_chain_origin+0x50/0x90 [ 600.345984][T15195] __get_compat_msghdr+0x5be/0x890 [ 600.351104][T15195] get_compat_msghdr+0x108/0x270 [ 600.356051][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 600.360559][T15195] __sys_recvmmsg+0x4ca/0x510 [ 600.365242][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 600.371320][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 600.377481][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 600.382689][T15195] do_fast_syscall_32+0x6b/0xd0 [ 600.387546][T15195] do_SYSENTER_32+0x73/0x90 [ 600.392056][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 600.398374][T15195] [ 600.400698][T15195] Uninit was stored to memory at: [ 600.405729][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 600.411451][T15195] __msan_chain_origin+0x50/0x90 [ 600.416397][T15195] __get_compat_msghdr+0x5be/0x890 [ 600.421514][T15195] get_compat_msghdr+0x108/0x270 [ 600.426457][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 600.430967][T15195] __sys_recvmmsg+0x4ca/0x510 [ 600.435649][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 600.441718][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 600.447877][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 600.453081][T15195] do_fast_syscall_32+0x6b/0xd0 [ 600.457936][T15195] do_SYSENTER_32+0x73/0x90 [ 600.462443][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 600.468759][T15195] [ 600.471086][T15195] Uninit was stored to memory at: [ 600.476117][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 600.481842][T15195] __msan_chain_origin+0x50/0x90 [ 600.486785][T15195] __get_compat_msghdr+0x5be/0x890 [ 600.491901][T15195] get_compat_msghdr+0x108/0x270 [ 600.496844][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 600.501355][T15195] __sys_recvmmsg+0x4ca/0x510 [ 600.506040][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 600.512133][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 600.518296][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 600.523500][T15195] do_fast_syscall_32+0x6b/0xd0 [ 600.528361][T15195] do_SYSENTER_32+0x73/0x90 [ 600.532870][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 600.539187][T15195] [ 600.541511][T15195] Uninit was stored to memory at: [ 600.546562][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 600.552289][T15195] __msan_chain_origin+0x50/0x90 [ 600.557232][T15195] __get_compat_msghdr+0x5be/0x890 [ 600.562356][T15195] get_compat_msghdr+0x108/0x270 [ 600.567302][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 600.571808][T15195] __sys_recvmmsg+0x4ca/0x510 [ 600.576488][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 600.582558][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 600.588736][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 600.593943][T15195] do_fast_syscall_32+0x6b/0xd0 [ 600.598798][T15195] do_SYSENTER_32+0x73/0x90 [ 600.603309][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 600.609647][T15195] [ 600.611973][T15195] Uninit was stored to memory at: [ 600.617002][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 600.622726][T15195] __msan_chain_origin+0x50/0x90 [ 600.627676][T15195] __get_compat_msghdr+0x5be/0x890 [ 600.632815][T15195] get_compat_msghdr+0x108/0x270 [ 600.637759][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 600.642277][T15195] __sys_recvmmsg+0x4ca/0x510 [ 600.646981][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 600.653057][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 600.659392][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 600.664598][T15195] do_fast_syscall_32+0x6b/0xd0 [ 600.669454][T15195] do_SYSENTER_32+0x73/0x90 [ 600.673963][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 600.680279][T15195] [ 600.682603][T15195] Uninit was stored to memory at: [ 600.687636][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 600.693389][T15195] __msan_chain_origin+0x50/0x90 [ 600.698336][T15195] __get_compat_msghdr+0x5be/0x890 [ 600.703459][T15195] get_compat_msghdr+0x108/0x270 [ 600.708405][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 600.712918][T15195] __sys_recvmmsg+0x4ca/0x510 [ 600.717603][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 600.723682][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 600.729860][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 600.735069][T15195] do_fast_syscall_32+0x6b/0xd0 [ 600.739924][T15195] do_SYSENTER_32+0x73/0x90 [ 600.744431][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 600.750746][T15195] [ 600.753078][T15195] Uninit was stored to memory at: [ 600.758133][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 600.763857][T15195] __msan_chain_origin+0x50/0x90 [ 600.768804][T15195] __get_compat_msghdr+0x5be/0x890 [ 600.773945][T15195] get_compat_msghdr+0x108/0x270 [ 600.778888][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 600.783399][T15195] __sys_recvmmsg+0x4ca/0x510 [ 600.788085][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 600.794154][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 600.800312][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 600.805526][T15195] do_fast_syscall_32+0x6b/0xd0 [ 600.810383][T15195] do_SYSENTER_32+0x73/0x90 [ 600.814890][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 600.821207][T15195] [ 600.823533][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 600.830211][T15195] do_recvmmsg+0xc5/0x1ee0 [ 600.834633][T15195] do_recvmmsg+0xc5/0x1ee0 [ 600.999220][T15195] not chained 200000 origins [ 601.003851][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 601.012519][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 601.022575][T15195] Call Trace: [ 601.025880][T15195] dump_stack+0x1df/0x240 [ 601.030230][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 601.035976][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 601.041103][T15195] ? release_sock+0x238/0x2a0 [ 601.045801][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 601.050613][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 601.055735][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 601.061299][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 601.067417][T15195] ? _copy_from_user+0x15b/0x260 [ 601.072363][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 601.077487][T15195] __msan_chain_origin+0x50/0x90 [ 601.082443][T15195] __get_compat_msghdr+0x5be/0x890 [ 601.087639][T15195] get_compat_msghdr+0x108/0x270 [ 601.092608][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 601.097135][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 601.102805][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 601.107935][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 601.113240][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 601.118012][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 601.122782][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 601.128008][T15195] __sys_recvmmsg+0x4ca/0x510 [ 601.132720][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 601.138806][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 601.145061][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 601.151259][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 601.156489][T15195] do_fast_syscall_32+0x6b/0xd0 [ 601.161359][T15195] do_SYSENTER_32+0x73/0x90 [ 601.165877][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 601.172208][T15195] RIP: 0023:0xf7f82549 [ 601.176269][T15195] Code: Bad RIP value. [ 601.180332][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 601.188749][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 601.196723][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 601.204695][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 601.212670][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 601.220644][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 601.228636][T15195] Uninit was stored to memory at: [ 601.233692][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 601.239416][T15195] __msan_chain_origin+0x50/0x90 [ 601.244388][T15195] __get_compat_msghdr+0x5be/0x890 [ 601.249503][T15195] get_compat_msghdr+0x108/0x270 [ 601.254449][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 601.258962][T15195] __sys_recvmmsg+0x4ca/0x510 [ 601.263642][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 601.269711][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 601.275868][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 601.281073][T15195] do_fast_syscall_32+0x6b/0xd0 [ 601.285954][T15195] do_SYSENTER_32+0x73/0x90 [ 601.290467][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 601.296787][T15195] [ 601.299111][T15195] Uninit was stored to memory at: [ 601.304140][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 601.309862][T15195] __msan_chain_origin+0x50/0x90 [ 601.314808][T15195] __get_compat_msghdr+0x5be/0x890 [ 601.319929][T15195] get_compat_msghdr+0x108/0x270 [ 601.324878][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 601.329385][T15195] __sys_recvmmsg+0x4ca/0x510 [ 601.334152][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 601.340223][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 601.346382][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 601.351588][T15195] do_fast_syscall_32+0x6b/0xd0 [ 601.356444][T15195] do_SYSENTER_32+0x73/0x90 [ 601.360958][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 601.367276][T15195] [ 601.369599][T15195] Uninit was stored to memory at: [ 601.374631][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 601.380359][T15195] __msan_chain_origin+0x50/0x90 [ 601.385307][T15195] __get_compat_msghdr+0x5be/0x890 [ 601.390426][T15195] get_compat_msghdr+0x108/0x270 [ 601.395376][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 601.399886][T15195] __sys_recvmmsg+0x4ca/0x510 [ 601.404567][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 601.410654][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 601.416816][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 601.422021][T15195] do_fast_syscall_32+0x6b/0xd0 [ 601.426877][T15195] do_SYSENTER_32+0x73/0x90 [ 601.431385][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 601.437700][T15195] [ 601.440028][T15195] Uninit was stored to memory at: [ 601.445057][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 601.450782][T15195] __msan_chain_origin+0x50/0x90 [ 601.455725][T15195] __get_compat_msghdr+0x5be/0x890 [ 601.460842][T15195] get_compat_msghdr+0x108/0x270 [ 601.465789][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 601.470299][T15195] __sys_recvmmsg+0x4ca/0x510 [ 601.474983][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 601.481074][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 601.487237][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 601.492443][T15195] do_fast_syscall_32+0x6b/0xd0 [ 601.497297][T15195] do_SYSENTER_32+0x73/0x90 [ 601.501802][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 601.508119][T15195] [ 601.510441][T15195] Uninit was stored to memory at: [ 601.515473][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 601.521201][T15195] __msan_chain_origin+0x50/0x90 [ 601.526165][T15195] __get_compat_msghdr+0x5be/0x890 [ 601.531286][T15195] get_compat_msghdr+0x108/0x270 [ 601.536232][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 601.540742][T15195] __sys_recvmmsg+0x4ca/0x510 [ 601.545423][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 601.551498][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 601.557658][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 601.562862][T15195] do_fast_syscall_32+0x6b/0xd0 [ 601.567718][T15195] do_SYSENTER_32+0x73/0x90 [ 601.572227][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 601.578547][T15195] [ 601.580872][T15195] Uninit was stored to memory at: [ 601.585907][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 601.591635][T15195] __msan_chain_origin+0x50/0x90 [ 601.596580][T15195] __get_compat_msghdr+0x5be/0x890 [ 601.601695][T15195] get_compat_msghdr+0x108/0x270 [ 601.606639][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 601.611147][T15195] __sys_recvmmsg+0x4ca/0x510 [ 601.615852][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 601.621939][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 601.628112][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 601.633330][T15195] do_fast_syscall_32+0x6b/0xd0 [ 601.638218][T15195] do_SYSENTER_32+0x73/0x90 [ 601.642725][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 601.649041][T15195] [ 601.651364][T15195] Uninit was stored to memory at: [ 601.656398][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 601.662124][T15195] __msan_chain_origin+0x50/0x90 [ 601.667077][T15195] __get_compat_msghdr+0x5be/0x890 [ 601.672209][T15195] get_compat_msghdr+0x108/0x270 [ 601.677154][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 601.681677][T15195] __sys_recvmmsg+0x4ca/0x510 [ 601.686358][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 601.692430][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 601.698591][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 601.703801][T15195] do_fast_syscall_32+0x6b/0xd0 [ 601.708661][T15195] do_SYSENTER_32+0x73/0x90 [ 601.713172][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 601.719492][T15195] [ 601.721820][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 601.728504][T15195] do_recvmmsg+0xc5/0x1ee0 [ 601.732928][T15195] do_recvmmsg+0xc5/0x1ee0 [ 601.898250][T15195] not chained 210000 origins [ 601.902891][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 601.911555][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 601.921611][T15195] Call Trace: [ 601.924917][T15195] dump_stack+0x1df/0x240 [ 601.929266][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 601.935014][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 601.940137][T15195] ? release_sock+0x238/0x2a0 [ 601.944832][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 601.949630][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 601.954753][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 601.960316][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 601.966403][T15195] ? _copy_from_user+0x15b/0x260 [ 601.971348][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 601.976470][T15195] __msan_chain_origin+0x50/0x90 [ 601.981455][T15195] __get_compat_msghdr+0x5be/0x890 [ 601.986620][T15195] get_compat_msghdr+0x108/0x270 [ 601.991589][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 601.996128][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 602.001806][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 602.006940][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 602.012238][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 602.017047][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 602.021819][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 602.027033][T15195] __sys_recvmmsg+0x4ca/0x510 [ 602.031745][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 602.037832][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 602.044088][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 602.050697][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 602.055920][T15195] do_fast_syscall_32+0x6b/0xd0 [ 602.060788][T15195] do_SYSENTER_32+0x73/0x90 [ 602.065307][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 602.071635][T15195] RIP: 0023:0xf7f82549 [ 602.075702][T15195] Code: Bad RIP value. [ 602.079771][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 602.088195][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 602.096171][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 602.104144][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 602.112120][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 602.120096][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 602.128091][T15195] Uninit was stored to memory at: [ 602.133125][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 602.138851][T15195] __msan_chain_origin+0x50/0x90 [ 602.143800][T15195] __get_compat_msghdr+0x5be/0x890 [ 602.149320][T15195] get_compat_msghdr+0x108/0x270 [ 602.154292][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 602.158936][T15195] __sys_recvmmsg+0x4ca/0x510 [ 602.163621][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 602.169702][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 602.175865][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 602.181074][T15195] do_fast_syscall_32+0x6b/0xd0 [ 602.185931][T15195] do_SYSENTER_32+0x73/0x90 [ 602.190441][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 602.196763][T15195] [ 602.199090][T15195] Uninit was stored to memory at: [ 602.204146][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 602.209870][T15195] __msan_chain_origin+0x50/0x90 [ 602.214813][T15195] __get_compat_msghdr+0x5be/0x890 [ 602.219934][T15195] get_compat_msghdr+0x108/0x270 [ 602.224881][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 602.229406][T15195] __sys_recvmmsg+0x4ca/0x510 [ 602.234088][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 602.240161][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 602.246321][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 602.251829][T15195] do_fast_syscall_32+0x6b/0xd0 [ 602.256687][T15195] do_SYSENTER_32+0x73/0x90 [ 602.261198][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 602.267537][T15195] [ 602.269864][T15195] Uninit was stored to memory at: [ 602.274901][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 602.280627][T15195] __msan_chain_origin+0x50/0x90 [ 602.285592][T15195] __get_compat_msghdr+0x5be/0x890 [ 602.290710][T15195] get_compat_msghdr+0x108/0x270 [ 602.295657][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 602.300167][T15195] __sys_recvmmsg+0x4ca/0x510 [ 602.304852][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 602.310926][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 602.317087][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 602.322297][T15195] do_fast_syscall_32+0x6b/0xd0 [ 602.327162][T15195] do_SYSENTER_32+0x73/0x90 [ 602.331670][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 602.337992][T15195] [ 602.340319][T15195] Uninit was stored to memory at: [ 602.345352][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 602.351537][T15195] __msan_chain_origin+0x50/0x90 [ 602.356485][T15195] __get_compat_msghdr+0x5be/0x890 [ 602.361604][T15195] get_compat_msghdr+0x108/0x270 [ 602.366552][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 602.371061][T15195] __sys_recvmmsg+0x4ca/0x510 [ 602.375742][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 602.381816][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 602.387975][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 602.393197][T15195] do_fast_syscall_32+0x6b/0xd0 [ 602.398057][T15195] do_SYSENTER_32+0x73/0x90 [ 602.402568][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 602.408885][T15195] [ 602.411211][T15195] Uninit was stored to memory at: [ 602.416254][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 602.421983][T15195] __msan_chain_origin+0x50/0x90 [ 602.426931][T15195] __get_compat_msghdr+0x5be/0x890 [ 602.432049][T15195] get_compat_msghdr+0x108/0x270 [ 602.436994][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 602.446196][T15195] __sys_recvmmsg+0x4ca/0x510 [ 602.451231][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 602.457313][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 602.463478][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 602.468683][T15195] do_fast_syscall_32+0x6b/0xd0 [ 602.473542][T15195] do_SYSENTER_32+0x73/0x90 [ 602.478056][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 602.484378][T15195] [ 602.486702][T15195] Uninit was stored to memory at: [ 602.491736][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 602.497462][T15195] __msan_chain_origin+0x50/0x90 [ 602.502409][T15195] __get_compat_msghdr+0x5be/0x890 [ 602.507531][T15195] get_compat_msghdr+0x108/0x270 [ 602.512486][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 602.516996][T15195] __sys_recvmmsg+0x4ca/0x510 [ 602.521678][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 602.527748][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 602.533909][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 602.539118][T15195] do_fast_syscall_32+0x6b/0xd0 [ 602.544006][T15195] do_SYSENTER_32+0x73/0x90 [ 602.548851][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 602.555170][T15195] [ 602.557494][T15195] Uninit was stored to memory at: [ 602.562527][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 602.568258][T15195] __msan_chain_origin+0x50/0x90 [ 602.573207][T15195] __get_compat_msghdr+0x5be/0x890 [ 602.578332][T15195] get_compat_msghdr+0x108/0x270 [ 602.583283][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 602.587796][T15195] __sys_recvmmsg+0x4ca/0x510 [ 602.592483][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 602.598555][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 602.604739][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 602.609945][T15195] do_fast_syscall_32+0x6b/0xd0 [ 602.614802][T15195] do_SYSENTER_32+0x73/0x90 [ 602.619310][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 602.625645][T15195] [ 602.627989][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 602.634699][T15195] do_recvmmsg+0xc5/0x1ee0 [ 602.639121][T15195] do_recvmmsg+0xc5/0x1ee0 [ 602.814192][T15195] not chained 220000 origins [ 602.818826][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 602.827492][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 602.837545][T15195] Call Trace: [ 602.840849][T15195] dump_stack+0x1df/0x240 [ 602.845200][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 602.850942][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 602.856065][T15195] ? release_sock+0x238/0x2a0 [ 602.860761][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 602.865565][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 602.870689][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 602.876248][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 602.882337][T15195] ? _copy_from_user+0x15b/0x260 [ 602.887286][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 602.892408][T15195] __msan_chain_origin+0x50/0x90 [ 602.897368][T15195] __get_compat_msghdr+0x5be/0x890 [ 602.902516][T15195] get_compat_msghdr+0x108/0x270 [ 602.907480][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 602.912010][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 602.917688][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 602.922814][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 602.928113][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 602.932890][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 602.937660][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 602.942875][T15195] __sys_recvmmsg+0x4ca/0x510 [ 602.947582][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 602.953668][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 602.959916][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 602.966085][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 602.971310][T15195] do_fast_syscall_32+0x6b/0xd0 [ 602.976175][T15195] do_SYSENTER_32+0x73/0x90 [ 602.980690][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 602.987020][T15195] RIP: 0023:0xf7f82549 [ 602.991082][T15195] Code: Bad RIP value. [ 602.995149][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 603.003564][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 603.011539][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 603.019512][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 603.027488][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 603.035460][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 603.043447][T15195] Uninit was stored to memory at: [ 603.048482][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 603.054204][T15195] __msan_chain_origin+0x50/0x90 [ 603.059150][T15195] __get_compat_msghdr+0x5be/0x890 [ 603.064270][T15195] get_compat_msghdr+0x108/0x270 [ 603.069219][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 603.073729][T15195] __sys_recvmmsg+0x4ca/0x510 [ 603.078412][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 603.084480][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 603.090638][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 603.095846][T15195] do_fast_syscall_32+0x6b/0xd0 [ 603.100707][T15195] do_SYSENTER_32+0x73/0x90 [ 603.105216][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 603.111534][T15195] [ 603.113858][T15195] Uninit was stored to memory at: [ 603.118900][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 603.124623][T15195] __msan_chain_origin+0x50/0x90 [ 603.129565][T15195] __get_compat_msghdr+0x5be/0x890 [ 603.134681][T15195] get_compat_msghdr+0x108/0x270 [ 603.139626][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 603.144136][T15195] __sys_recvmmsg+0x4ca/0x510 [ 603.148815][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 603.154889][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 603.161048][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 603.166255][T15195] do_fast_syscall_32+0x6b/0xd0 [ 603.171113][T15195] do_SYSENTER_32+0x73/0x90 [ 603.175620][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 603.181934][T15195] [ 603.184261][T15195] Uninit was stored to memory at: [ 603.189291][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 603.195014][T15195] __msan_chain_origin+0x50/0x90 [ 603.199955][T15195] __get_compat_msghdr+0x5be/0x890 [ 603.205076][T15195] get_compat_msghdr+0x108/0x270 [ 603.210018][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 603.214525][T15195] __sys_recvmmsg+0x4ca/0x510 [ 603.219206][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 603.225274][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 603.231431][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 603.236636][T15195] do_fast_syscall_32+0x6b/0xd0 [ 603.241500][T15195] do_SYSENTER_32+0x73/0x90 [ 603.246017][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 603.252337][T15195] [ 603.254659][T15195] Uninit was stored to memory at: [ 603.259688][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 603.265411][T15195] __msan_chain_origin+0x50/0x90 [ 603.270354][T15195] __get_compat_msghdr+0x5be/0x890 [ 603.275470][T15195] get_compat_msghdr+0x108/0x270 [ 603.280413][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 603.284923][T15195] __sys_recvmmsg+0x4ca/0x510 [ 603.289605][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 603.295676][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 603.301833][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 603.307044][T15195] do_fast_syscall_32+0x6b/0xd0 [ 603.311905][T15195] do_SYSENTER_32+0x73/0x90 [ 603.316415][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 603.322732][T15195] [ 603.325054][T15195] Uninit was stored to memory at: [ 603.330088][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 603.335830][T15195] __msan_chain_origin+0x50/0x90 [ 603.340777][T15195] __get_compat_msghdr+0x5be/0x890 [ 603.345900][T15195] get_compat_msghdr+0x108/0x270 [ 603.350845][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 603.355371][T15195] __sys_recvmmsg+0x4ca/0x510 [ 603.360054][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 603.366124][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 603.372281][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 603.377484][T15195] do_fast_syscall_32+0x6b/0xd0 [ 603.382339][T15195] do_SYSENTER_32+0x73/0x90 [ 603.386848][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 603.393171][T15195] [ 603.395495][T15195] Uninit was stored to memory at: [ 603.400528][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 603.406252][T15195] __msan_chain_origin+0x50/0x90 [ 603.411195][T15195] __get_compat_msghdr+0x5be/0x890 [ 603.416313][T15195] get_compat_msghdr+0x108/0x270 [ 603.421256][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 603.425762][T15195] __sys_recvmmsg+0x4ca/0x510 [ 603.430447][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 603.436527][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 603.442688][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 603.447897][T15195] do_fast_syscall_32+0x6b/0xd0 [ 603.452752][T15195] do_SYSENTER_32+0x73/0x90 [ 603.457264][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 603.463669][T15195] [ 603.465997][T15195] Uninit was stored to memory at: [ 603.471029][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 603.476753][T15195] __msan_chain_origin+0x50/0x90 [ 603.481697][T15195] __get_compat_msghdr+0x5be/0x890 [ 603.486818][T15195] get_compat_msghdr+0x108/0x270 [ 603.491759][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 603.496269][T15195] __sys_recvmmsg+0x4ca/0x510 [ 603.500951][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 603.507021][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 603.513180][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 603.518384][T15195] do_fast_syscall_32+0x6b/0xd0 [ 603.523241][T15195] do_SYSENTER_32+0x73/0x90 [ 603.527747][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 603.534065][T15195] [ 603.536391][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 603.543072][T15195] do_recvmmsg+0xc5/0x1ee0 [ 603.547504][T15195] do_recvmmsg+0xc5/0x1ee0 [ 603.736053][T15195] not chained 230000 origins [ 603.740712][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 603.749649][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 603.759720][T15195] Call Trace: [ 603.763035][T15195] dump_stack+0x1df/0x240 [ 603.767393][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 603.773135][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 603.778269][T15195] ? release_sock+0x238/0x2a0 [ 603.782971][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 603.787766][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 603.792896][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 603.798454][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 603.804561][T15195] ? _copy_from_user+0x15b/0x260 [ 603.809510][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 603.814654][T15195] __msan_chain_origin+0x50/0x90 [ 603.819613][T15195] __get_compat_msghdr+0x5be/0x890 [ 603.824767][T15195] get_compat_msghdr+0x108/0x270 [ 603.829736][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 603.834355][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 603.840037][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 603.845171][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 603.850955][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 603.855731][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 603.860505][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 603.865721][T15195] __sys_recvmmsg+0x4ca/0x510 [ 603.870450][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 603.876537][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 603.882794][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 603.888968][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 603.894197][T15195] do_fast_syscall_32+0x6b/0xd0 [ 603.899069][T15195] do_SYSENTER_32+0x73/0x90 [ 603.903585][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 603.909914][T15195] RIP: 0023:0xf7f82549 [ 603.913994][T15195] Code: Bad RIP value. [ 603.918060][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 603.926476][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 603.934452][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 603.942424][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 603.950745][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 603.958720][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 603.966799][T15195] Uninit was stored to memory at: [ 603.971830][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 603.977556][T15195] __msan_chain_origin+0x50/0x90 [ 603.982507][T15195] __get_compat_msghdr+0x5be/0x890 [ 603.987630][T15195] get_compat_msghdr+0x108/0x270 [ 603.992579][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 603.997093][T15195] __sys_recvmmsg+0x4ca/0x510 [ 604.001777][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 604.007855][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 604.014017][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 604.019228][T15195] do_fast_syscall_32+0x6b/0xd0 [ 604.024090][T15195] do_SYSENTER_32+0x73/0x90 [ 604.028600][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 604.034920][T15195] [ 604.037253][T15195] Uninit was stored to memory at: [ 604.042301][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 604.048351][T15195] __msan_chain_origin+0x50/0x90 [ 604.053299][T15195] __get_compat_msghdr+0x5be/0x890 [ 604.058417][T15195] get_compat_msghdr+0x108/0x270 [ 604.063374][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 604.067886][T15195] __sys_recvmmsg+0x4ca/0x510 [ 604.072694][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 604.078787][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 604.084951][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 604.090161][T15195] do_fast_syscall_32+0x6b/0xd0 [ 604.095020][T15195] do_SYSENTER_32+0x73/0x90 [ 604.099529][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 604.105846][T15195] [ 604.108181][T15195] Uninit was stored to memory at: [ 604.113215][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 604.118947][T15195] __msan_chain_origin+0x50/0x90 [ 604.123893][T15195] __get_compat_msghdr+0x5be/0x890 [ 604.129013][T15195] get_compat_msghdr+0x108/0x270 [ 604.133980][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 604.138495][T15195] __sys_recvmmsg+0x4ca/0x510 [ 604.143182][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 604.149724][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 604.155888][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 604.161094][T15195] do_fast_syscall_32+0x6b/0xd0 [ 604.165954][T15195] do_SYSENTER_32+0x73/0x90 [ 604.170462][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 604.176782][T15195] [ 604.179112][T15195] Uninit was stored to memory at: [ 604.184167][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 604.189894][T15195] __msan_chain_origin+0x50/0x90 [ 604.194841][T15195] __get_compat_msghdr+0x5be/0x890 [ 604.199958][T15195] get_compat_msghdr+0x108/0x270 [ 604.204902][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 604.209414][T15195] __sys_recvmmsg+0x4ca/0x510 [ 604.214096][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 604.220168][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 604.226328][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 604.231536][T15195] do_fast_syscall_32+0x6b/0xd0 [ 604.236394][T15195] do_SYSENTER_32+0x73/0x90 [ 604.240901][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 604.247222][T15195] [ 604.249898][T15195] Uninit was stored to memory at: [ 604.254933][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 604.260662][T15195] __msan_chain_origin+0x50/0x90 [ 604.265607][T15195] __get_compat_msghdr+0x5be/0x890 [ 604.270731][T15195] get_compat_msghdr+0x108/0x270 [ 604.275675][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 604.280185][T15195] __sys_recvmmsg+0x4ca/0x510 [ 604.284871][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 604.290942][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 604.297197][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 604.302402][T15195] do_fast_syscall_32+0x6b/0xd0 [ 604.307265][T15195] do_SYSENTER_32+0x73/0x90 [ 604.311776][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 604.318095][T15195] [ 604.320421][T15195] Uninit was stored to memory at: [ 604.325453][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 604.331180][T15195] __msan_chain_origin+0x50/0x90 [ 604.336131][T15195] __get_compat_msghdr+0x5be/0x890 [ 604.341256][T15195] get_compat_msghdr+0x108/0x270 [ 604.346206][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 604.351039][T15195] __sys_recvmmsg+0x4ca/0x510 [ 604.355724][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 604.361798][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 604.367957][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 604.373178][T15195] do_fast_syscall_32+0x6b/0xd0 [ 604.378037][T15195] do_SYSENTER_32+0x73/0x90 [ 604.382550][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 604.388870][T15195] [ 604.391197][T15195] Uninit was stored to memory at: [ 604.396232][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 604.401963][T15195] __msan_chain_origin+0x50/0x90 [ 604.406911][T15195] __get_compat_msghdr+0x5be/0x890 [ 604.412032][T15195] get_compat_msghdr+0x108/0x270 [ 604.416980][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 604.421490][T15195] __sys_recvmmsg+0x4ca/0x510 [ 604.426173][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 604.432255][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 604.438424][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 604.443643][T15195] do_fast_syscall_32+0x6b/0xd0 [ 604.448985][T15195] do_SYSENTER_32+0x73/0x90 [ 604.453502][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 604.459824][T15195] [ 604.462152][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 604.468834][T15195] do_recvmmsg+0xc5/0x1ee0 [ 604.473280][T15195] do_recvmmsg+0xc5/0x1ee0 [ 604.648349][T15195] not chained 240000 origins [ 604.652987][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 604.661681][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 604.671740][T15195] Call Trace: [ 604.675048][T15195] dump_stack+0x1df/0x240 [ 604.679400][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 604.685142][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 604.690273][T15195] ? release_sock+0x238/0x2a0 [ 604.694973][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 604.699785][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 604.704913][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 604.710476][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 604.716567][T15195] ? _copy_from_user+0x15b/0x260 [ 604.721513][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 604.726636][T15195] __msan_chain_origin+0x50/0x90 [ 604.731594][T15195] __get_compat_msghdr+0x5be/0x890 [ 604.736746][T15195] get_compat_msghdr+0x108/0x270 [ 604.742754][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 604.747295][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 604.752975][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 604.758117][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 604.763420][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 604.768192][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 604.772965][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 604.778176][T15195] __sys_recvmmsg+0x4ca/0x510 [ 604.782886][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 604.788975][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 604.795247][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 604.801426][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 604.806652][T15195] do_fast_syscall_32+0x6b/0xd0 [ 604.811517][T15195] do_SYSENTER_32+0x73/0x90 [ 604.816035][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 604.822366][T15195] RIP: 0023:0xf7f82549 [ 604.826430][T15195] Code: Bad RIP value. [ 604.830499][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 604.838916][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 604.846889][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 604.854865][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 604.862836][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 604.870809][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 604.878803][T15195] Uninit was stored to memory at: [ 604.883839][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 604.889568][T15195] __msan_chain_origin+0x50/0x90 [ 604.894514][T15195] __get_compat_msghdr+0x5be/0x890 [ 604.899631][T15195] get_compat_msghdr+0x108/0x270 [ 604.904579][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 604.909086][T15195] __sys_recvmmsg+0x4ca/0x510 [ 604.913765][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 604.919836][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 604.925995][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 604.931222][T15195] do_fast_syscall_32+0x6b/0xd0 [ 604.936085][T15195] do_SYSENTER_32+0x73/0x90 [ 604.940593][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 604.946908][T15195] [ 604.949235][T15195] Uninit was stored to memory at: [ 604.954277][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 604.959997][T15195] __msan_chain_origin+0x50/0x90 [ 604.964940][T15195] __get_compat_msghdr+0x5be/0x890 [ 604.970057][T15195] get_compat_msghdr+0x108/0x270 [ 604.975000][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 604.979514][T15195] __sys_recvmmsg+0x4ca/0x510 [ 604.984201][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 604.990277][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 604.996435][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 605.001641][T15195] do_fast_syscall_32+0x6b/0xd0 [ 605.006495][T15195] do_SYSENTER_32+0x73/0x90 [ 605.011003][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 605.017319][T15195] [ 605.019644][T15195] Uninit was stored to memory at: [ 605.024675][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 605.030402][T15195] __msan_chain_origin+0x50/0x90 [ 605.035364][T15195] __get_compat_msghdr+0x5be/0x890 [ 605.040480][T15195] get_compat_msghdr+0x108/0x270 [ 605.045428][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 605.049936][T15195] __sys_recvmmsg+0x4ca/0x510 [ 605.054617][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 605.060685][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 605.066845][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 605.072053][T15195] do_fast_syscall_32+0x6b/0xd0 [ 605.076914][T15195] do_SYSENTER_32+0x73/0x90 [ 605.081421][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 605.087739][T15195] [ 605.090064][T15195] Uninit was stored to memory at: [ 605.095097][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 605.100817][T15195] __msan_chain_origin+0x50/0x90 [ 605.105763][T15195] __get_compat_msghdr+0x5be/0x890 [ 605.110880][T15195] get_compat_msghdr+0x108/0x270 [ 605.115822][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 605.120331][T15195] __sys_recvmmsg+0x4ca/0x510 [ 605.125013][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 605.131082][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 605.137313][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 605.142519][T15195] do_fast_syscall_32+0x6b/0xd0 [ 605.147378][T15195] do_SYSENTER_32+0x73/0x90 [ 605.151883][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 605.158202][T15195] [ 605.160525][T15195] Uninit was stored to memory at: [ 605.165557][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 605.171284][T15195] __msan_chain_origin+0x50/0x90 [ 605.176231][T15195] __get_compat_msghdr+0x5be/0x890 [ 605.181356][T15195] get_compat_msghdr+0x108/0x270 [ 605.186299][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 605.190809][T15195] __sys_recvmmsg+0x4ca/0x510 [ 605.195491][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 605.201563][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 605.207725][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 605.212929][T15195] do_fast_syscall_32+0x6b/0xd0 [ 605.217786][T15195] do_SYSENTER_32+0x73/0x90 [ 605.222294][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 605.228612][T15195] [ 605.230934][T15195] Uninit was stored to memory at: [ 605.235964][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 605.241687][T15195] __msan_chain_origin+0x50/0x90 [ 605.246633][T15195] __get_compat_msghdr+0x5be/0x890 [ 605.251753][T15195] get_compat_msghdr+0x108/0x270 [ 605.256695][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 605.261203][T15195] __sys_recvmmsg+0x4ca/0x510 [ 605.265883][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 605.271974][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 605.278133][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 605.283337][T15195] do_fast_syscall_32+0x6b/0xd0 [ 605.288195][T15195] do_SYSENTER_32+0x73/0x90 [ 605.292725][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 605.299042][T15195] [ 605.301367][T15195] Uninit was stored to memory at: [ 605.306398][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 605.312121][T15195] __msan_chain_origin+0x50/0x90 [ 605.317068][T15195] __get_compat_msghdr+0x5be/0x890 [ 605.322204][T15195] get_compat_msghdr+0x108/0x270 [ 605.327150][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 605.331660][T15195] __sys_recvmmsg+0x4ca/0x510 [ 605.336347][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 605.342416][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 605.348576][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 605.353781][T15195] do_fast_syscall_32+0x6b/0xd0 [ 605.358639][T15195] do_SYSENTER_32+0x73/0x90 [ 605.363148][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 605.369466][T15195] [ 605.371819][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 605.378496][T15195] do_recvmmsg+0xc5/0x1ee0 [ 605.382917][T15195] do_recvmmsg+0xc5/0x1ee0 [ 605.590506][T15195] not chained 250000 origins [ 605.595139][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 605.603806][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 605.613860][T15195] Call Trace: [ 605.617164][T15195] dump_stack+0x1df/0x240 [ 605.621517][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 605.627273][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 605.632403][T15195] ? release_sock+0x238/0x2a0 [ 605.637184][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 605.641974][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 605.647124][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 605.652690][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 605.658775][T15195] ? _copy_from_user+0x15b/0x260 [ 605.663724][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 605.668867][T15195] __msan_chain_origin+0x50/0x90 [ 605.673824][T15195] __get_compat_msghdr+0x5be/0x890 [ 605.678977][T15195] get_compat_msghdr+0x108/0x270 [ 605.683944][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 605.688480][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 605.694154][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 605.699290][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 605.704612][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 605.709385][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 605.714159][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 605.719376][T15195] __sys_recvmmsg+0x4ca/0x510 [ 605.724089][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 605.730175][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 605.736424][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 605.742593][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 605.747817][T15195] do_fast_syscall_32+0x6b/0xd0 [ 605.752684][T15195] do_SYSENTER_32+0x73/0x90 [ 605.757204][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 605.763538][T15195] RIP: 0023:0xf7f82549 [ 605.767602][T15195] Code: Bad RIP value. [ 605.771669][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 605.780088][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 605.788066][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 605.796044][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 605.804020][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 605.811995][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 605.819989][T15195] Uninit was stored to memory at: [ 605.825048][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 605.830776][T15195] __msan_chain_origin+0x50/0x90 [ 605.835727][T15195] __get_compat_msghdr+0x5be/0x890 [ 605.840844][T15195] get_compat_msghdr+0x108/0x270 [ 605.845811][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 605.850623][T15195] __sys_recvmmsg+0x4ca/0x510 [ 605.855313][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 605.861384][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 605.867549][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 605.872758][T15195] do_fast_syscall_32+0x6b/0xd0 [ 605.877618][T15195] do_SYSENTER_32+0x73/0x90 [ 605.882128][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 605.888450][T15195] [ 605.890775][T15195] Uninit was stored to memory at: [ 605.895819][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 605.901543][T15195] __msan_chain_origin+0x50/0x90 [ 605.906488][T15195] __get_compat_msghdr+0x5be/0x890 [ 605.911619][T15195] get_compat_msghdr+0x108/0x270 [ 605.916565][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 605.921080][T15195] __sys_recvmmsg+0x4ca/0x510 [ 605.925762][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 605.931834][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 605.937992][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 605.943211][T15195] do_fast_syscall_32+0x6b/0xd0 [ 605.948069][T15195] do_SYSENTER_32+0x73/0x90 [ 605.952578][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 605.958892][T15195] [ 605.961217][T15195] Uninit was stored to memory at: [ 605.966250][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 605.971971][T15195] __msan_chain_origin+0x50/0x90 [ 605.976915][T15195] __get_compat_msghdr+0x5be/0x890 [ 605.982034][T15195] get_compat_msghdr+0x108/0x270 [ 605.986979][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 605.991493][T15195] __sys_recvmmsg+0x4ca/0x510 [ 605.996174][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 606.002244][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 606.008409][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 606.013615][T15195] do_fast_syscall_32+0x6b/0xd0 [ 606.018471][T15195] do_SYSENTER_32+0x73/0x90 [ 606.022980][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 606.029299][T15195] [ 606.031623][T15195] Uninit was stored to memory at: [ 606.036653][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 606.042403][T15195] __msan_chain_origin+0x50/0x90 [ 606.047349][T15195] __get_compat_msghdr+0x5be/0x890 [ 606.052493][T15195] get_compat_msghdr+0x108/0x270 [ 606.057435][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 606.061967][T15195] __sys_recvmmsg+0x4ca/0x510 [ 606.066651][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 606.072720][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 606.078879][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 606.084103][T15195] do_fast_syscall_32+0x6b/0xd0 [ 606.088958][T15195] do_SYSENTER_32+0x73/0x90 [ 606.093468][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 606.099787][T15195] [ 606.102113][T15195] Uninit was stored to memory at: [ 606.107161][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 606.112884][T15195] __msan_chain_origin+0x50/0x90 [ 606.117848][T15195] __get_compat_msghdr+0x5be/0x890 [ 606.122964][T15195] get_compat_msghdr+0x108/0x270 [ 606.127906][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 606.132417][T15195] __sys_recvmmsg+0x4ca/0x510 [ 606.137097][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 606.143167][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 606.149342][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 606.154551][T15195] do_fast_syscall_32+0x6b/0xd0 [ 606.159412][T15195] do_SYSENTER_32+0x73/0x90 [ 606.163922][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 606.170255][T15195] [ 606.172582][T15195] Uninit was stored to memory at: [ 606.177609][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 606.183331][T15195] __msan_chain_origin+0x50/0x90 [ 606.188298][T15195] __get_compat_msghdr+0x5be/0x890 [ 606.193418][T15195] get_compat_msghdr+0x108/0x270 [ 606.198360][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 606.202877][T15195] __sys_recvmmsg+0x4ca/0x510 [ 606.207556][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 606.213647][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 606.219805][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 606.225010][T15195] do_fast_syscall_32+0x6b/0xd0 [ 606.229882][T15195] do_SYSENTER_32+0x73/0x90 [ 606.234394][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 606.240713][T15195] [ 606.243038][T15195] Uninit was stored to memory at: [ 606.248072][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 606.253794][T15195] __msan_chain_origin+0x50/0x90 [ 606.258738][T15195] __get_compat_msghdr+0x5be/0x890 [ 606.263876][T15195] get_compat_msghdr+0x108/0x270 [ 606.268837][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 606.273347][T15195] __sys_recvmmsg+0x4ca/0x510 [ 606.278036][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 606.284110][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 606.290268][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 606.295475][T15195] do_fast_syscall_32+0x6b/0xd0 [ 606.300344][T15195] do_SYSENTER_32+0x73/0x90 [ 606.304860][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 606.311196][T15195] [ 606.313525][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 606.320211][T15195] do_recvmmsg+0xc5/0x1ee0 [ 606.324634][T15195] do_recvmmsg+0xc5/0x1ee0 [ 606.526172][T15195] not chained 260000 origins [ 606.530802][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 606.539470][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 606.550039][T15195] Call Trace: [ 606.553345][T15195] dump_stack+0x1df/0x240 [ 606.557705][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 606.563441][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 606.568570][T15195] ? release_sock+0x238/0x2a0 [ 606.573267][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 606.578064][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 606.583188][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 606.588747][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 606.594838][T15195] ? _copy_from_user+0x15b/0x260 [ 606.599801][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 606.604924][T15195] __msan_chain_origin+0x50/0x90 [ 606.609896][T15195] __get_compat_msghdr+0x5be/0x890 [ 606.615052][T15195] get_compat_msghdr+0x108/0x270 [ 606.620019][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 606.624575][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 606.630333][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 606.635474][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 606.640775][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 606.645546][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 606.650319][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 606.655537][T15195] __sys_recvmmsg+0x4ca/0x510 [ 606.660251][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 606.666338][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 606.672594][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 606.678758][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 606.683982][T15195] do_fast_syscall_32+0x6b/0xd0 [ 606.688849][T15195] do_SYSENTER_32+0x73/0x90 [ 606.693369][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 606.699704][T15195] RIP: 0023:0xf7f82549 [ 606.703773][T15195] Code: Bad RIP value. [ 606.707838][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 606.716257][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 606.724292][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 606.732272][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 606.740295][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 606.748269][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 606.756272][T15195] Uninit was stored to memory at: [ 606.761333][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 606.767058][T15195] __msan_chain_origin+0x50/0x90 [ 606.772002][T15195] __get_compat_msghdr+0x5be/0x890 [ 606.777124][T15195] get_compat_msghdr+0x108/0x270 [ 606.782071][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 606.786580][T15195] __sys_recvmmsg+0x4ca/0x510 [ 606.791262][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 606.797334][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 606.803496][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 606.808702][T15195] do_fast_syscall_32+0x6b/0xd0 [ 606.813559][T15195] do_SYSENTER_32+0x73/0x90 [ 606.818072][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 606.824389][T15195] [ 606.826717][T15195] Uninit was stored to memory at: [ 606.831748][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 606.837477][T15195] __msan_chain_origin+0x50/0x90 [ 606.842430][T15195] __get_compat_msghdr+0x5be/0x890 [ 606.847550][T15195] get_compat_msghdr+0x108/0x270 [ 606.852944][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 606.857454][T15195] __sys_recvmmsg+0x4ca/0x510 [ 606.862144][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 606.868219][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 606.874383][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 606.879594][T15195] do_fast_syscall_32+0x6b/0xd0 [ 606.884453][T15195] do_SYSENTER_32+0x73/0x90 [ 606.888965][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 606.895305][T15195] [ 606.897631][T15195] Uninit was stored to memory at: [ 606.902665][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 606.908390][T15195] __msan_chain_origin+0x50/0x90 [ 606.913334][T15195] __get_compat_msghdr+0x5be/0x890 [ 606.918467][T15195] get_compat_msghdr+0x108/0x270 [ 606.923412][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 606.927919][T15195] __sys_recvmmsg+0x4ca/0x510 [ 606.932599][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 606.938672][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 606.944830][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 606.950037][T15195] do_fast_syscall_32+0x6b/0xd0 [ 606.954895][T15195] do_SYSENTER_32+0x73/0x90 [ 606.959410][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 606.965726][T15195] [ 606.968056][T15195] Uninit was stored to memory at: [ 606.973090][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 606.978814][T15195] __msan_chain_origin+0x50/0x90 [ 606.983759][T15195] __get_compat_msghdr+0x5be/0x890 [ 606.988877][T15195] get_compat_msghdr+0x108/0x270 [ 606.993827][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 606.998335][T15195] __sys_recvmmsg+0x4ca/0x510 [ 607.003039][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 607.009109][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 607.015272][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 607.020480][T15195] do_fast_syscall_32+0x6b/0xd0 [ 607.025357][T15195] do_SYSENTER_32+0x73/0x90 [ 607.029865][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 607.036181][T15195] [ 607.038505][T15195] Uninit was stored to memory at: [ 607.043536][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 607.049264][T15195] __msan_chain_origin+0x50/0x90 [ 607.054213][T15195] __get_compat_msghdr+0x5be/0x890 [ 607.059336][T15195] get_compat_msghdr+0x108/0x270 [ 607.064283][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 607.068796][T15195] __sys_recvmmsg+0x4ca/0x510 [ 607.073480][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 607.079551][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 607.085713][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 607.090926][T15195] do_fast_syscall_32+0x6b/0xd0 [ 607.095822][T15195] do_SYSENTER_32+0x73/0x90 [ 607.100332][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 607.106648][T15195] [ 607.108970][T15195] Uninit was stored to memory at: [ 607.114002][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 607.119760][T15195] __msan_chain_origin+0x50/0x90 [ 607.124707][T15195] __get_compat_msghdr+0x5be/0x890 [ 607.129837][T15195] get_compat_msghdr+0x108/0x270 [ 607.134786][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 607.139296][T15195] __sys_recvmmsg+0x4ca/0x510 [ 607.143980][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 607.150051][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 607.156216][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 607.161425][T15195] do_fast_syscall_32+0x6b/0xd0 [ 607.166285][T15195] do_SYSENTER_32+0x73/0x90 [ 607.170792][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 607.177108][T15195] [ 607.179431][T15195] Uninit was stored to memory at: [ 607.184464][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 607.190187][T15195] __msan_chain_origin+0x50/0x90 [ 607.195155][T15195] __get_compat_msghdr+0x5be/0x890 [ 607.200286][T15195] get_compat_msghdr+0x108/0x270 [ 607.205257][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 607.209781][T15195] __sys_recvmmsg+0x4ca/0x510 [ 607.214462][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 607.220533][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 607.226694][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 607.231897][T15195] do_fast_syscall_32+0x6b/0xd0 [ 607.236754][T15195] do_SYSENTER_32+0x73/0x90 [ 607.241264][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 607.247581][T15195] [ 607.249911][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 607.256590][T15195] do_recvmmsg+0xc5/0x1ee0 [ 607.261014][T15195] do_recvmmsg+0xc5/0x1ee0 [ 607.433831][T15195] not chained 270000 origins [ 607.438470][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 607.447141][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 607.457283][T15195] Call Trace: [ 607.460592][T15195] dump_stack+0x1df/0x240 [ 607.464949][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 607.470700][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 607.475826][T15195] ? release_sock+0x238/0x2a0 [ 607.480521][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 607.485316][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 607.490440][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 607.495998][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 607.502080][T15195] ? _copy_from_user+0x15b/0x260 [ 607.507028][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 607.512152][T15195] __msan_chain_origin+0x50/0x90 [ 607.517109][T15195] __get_compat_msghdr+0x5be/0x890 [ 607.522276][T15195] get_compat_msghdr+0x108/0x270 [ 607.527261][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 607.531798][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 607.537475][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 607.542604][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 607.547903][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 607.552672][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 607.557444][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 607.562655][T15195] __sys_recvmmsg+0x4ca/0x510 [ 607.567366][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 607.573450][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 607.579705][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 607.585873][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 607.591102][T15195] do_fast_syscall_32+0x6b/0xd0 [ 607.595967][T15195] do_SYSENTER_32+0x73/0x90 [ 607.600485][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 607.606816][T15195] RIP: 0023:0xf7f82549 [ 607.610878][T15195] Code: Bad RIP value. [ 607.614943][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 607.623373][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 607.631365][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 607.639341][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 607.647335][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 607.655310][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 607.663334][T15195] Uninit was stored to memory at: [ 607.668365][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 607.674089][T15195] __msan_chain_origin+0x50/0x90 [ 607.679036][T15195] __get_compat_msghdr+0x5be/0x890 [ 607.684153][T15195] get_compat_msghdr+0x108/0x270 [ 607.689094][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 607.693606][T15195] __sys_recvmmsg+0x4ca/0x510 [ 607.698292][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 607.704362][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 607.710522][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 607.715729][T15195] do_fast_syscall_32+0x6b/0xd0 [ 607.720585][T15195] do_SYSENTER_32+0x73/0x90 [ 607.725095][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 607.731412][T15195] [ 607.733739][T15195] Uninit was stored to memory at: [ 607.738788][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 607.744515][T15195] __msan_chain_origin+0x50/0x90 [ 607.749459][T15195] __get_compat_msghdr+0x5be/0x890 [ 607.754598][T15195] get_compat_msghdr+0x108/0x270 [ 607.759543][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 607.764054][T15195] __sys_recvmmsg+0x4ca/0x510 [ 607.768735][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 607.774805][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 607.780964][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 607.786173][T15195] do_fast_syscall_32+0x6b/0xd0 [ 607.791033][T15195] do_SYSENTER_32+0x73/0x90 [ 607.795571][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 607.801893][T15195] [ 607.804216][T15195] Uninit was stored to memory at: [ 607.809261][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 607.814984][T15195] __msan_chain_origin+0x50/0x90 [ 607.819934][T15195] __get_compat_msghdr+0x5be/0x890 [ 607.825052][T15195] get_compat_msghdr+0x108/0x270 [ 607.829999][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 607.834510][T15195] __sys_recvmmsg+0x4ca/0x510 [ 607.839197][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 607.845278][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 607.851441][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 607.856667][T15195] do_fast_syscall_32+0x6b/0xd0 [ 607.861526][T15195] do_SYSENTER_32+0x73/0x90 [ 607.866053][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 607.872372][T15195] [ 607.874715][T15195] Uninit was stored to memory at: [ 607.879746][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 607.885475][T15195] __msan_chain_origin+0x50/0x90 [ 607.890421][T15195] __get_compat_msghdr+0x5be/0x890 [ 607.895541][T15195] get_compat_msghdr+0x108/0x270 [ 607.900484][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 607.904996][T15195] __sys_recvmmsg+0x4ca/0x510 [ 607.909681][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 607.915753][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 607.921912][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 607.927127][T15195] do_fast_syscall_32+0x6b/0xd0 [ 607.931986][T15195] do_SYSENTER_32+0x73/0x90 [ 607.936497][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 607.942817][T15195] [ 607.945140][T15195] Uninit was stored to memory at: [ 607.950172][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 607.955896][T15195] __msan_chain_origin+0x50/0x90 [ 607.960847][T15195] __get_compat_msghdr+0x5be/0x890 [ 607.965969][T15195] get_compat_msghdr+0x108/0x270 [ 607.970916][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 607.975430][T15195] __sys_recvmmsg+0x4ca/0x510 [ 607.980115][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 607.986186][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 607.992348][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 607.997572][T15195] do_fast_syscall_32+0x6b/0xd0 [ 608.002430][T15195] do_SYSENTER_32+0x73/0x90 [ 608.006947][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 608.013265][T15195] [ 608.015590][T15195] Uninit was stored to memory at: [ 608.020620][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 608.026347][T15195] __msan_chain_origin+0x50/0x90 [ 608.031293][T15195] __get_compat_msghdr+0x5be/0x890 [ 608.036411][T15195] get_compat_msghdr+0x108/0x270 [ 608.041354][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 608.045861][T15195] __sys_recvmmsg+0x4ca/0x510 [ 608.050545][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 608.056617][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 608.062775][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 608.067982][T15195] do_fast_syscall_32+0x6b/0xd0 [ 608.072855][T15195] do_SYSENTER_32+0x73/0x90 [ 608.077366][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 608.083686][T15195] [ 608.086013][T15195] Uninit was stored to memory at: [ 608.091046][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 608.096795][T15195] __msan_chain_origin+0x50/0x90 [ 608.101742][T15195] __get_compat_msghdr+0x5be/0x890 [ 608.106863][T15195] get_compat_msghdr+0x108/0x270 [ 608.111807][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 608.116320][T15195] __sys_recvmmsg+0x4ca/0x510 [ 608.121027][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 608.127099][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 608.133258][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 608.138462][T15195] do_fast_syscall_32+0x6b/0xd0 [ 608.143341][T15195] do_SYSENTER_32+0x73/0x90 [ 608.147853][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 608.154171][T15195] [ 608.156501][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 608.163183][T15195] do_recvmmsg+0xc5/0x1ee0 [ 608.167608][T15195] do_recvmmsg+0xc5/0x1ee0 [ 608.341077][T15195] not chained 280000 origins [ 608.345712][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 608.354379][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 608.364430][T15195] Call Trace: [ 608.367738][T15195] dump_stack+0x1df/0x240 [ 608.372093][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 608.377838][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 608.382966][T15195] ? release_sock+0x238/0x2a0 [ 608.387666][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 608.392457][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 608.397584][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 608.403146][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 608.409237][T15195] ? _copy_from_user+0x15b/0x260 [ 608.414213][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 608.419337][T15195] __msan_chain_origin+0x50/0x90 [ 608.424307][T15195] __get_compat_msghdr+0x5be/0x890 [ 608.429461][T15195] get_compat_msghdr+0x108/0x270 [ 608.434428][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 608.438974][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 608.444677][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 608.450159][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 608.455461][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 608.460234][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 608.465007][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 608.470220][T15195] __sys_recvmmsg+0x4ca/0x510 [ 608.474931][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 608.481017][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 608.487276][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 608.493448][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 608.498688][T15195] do_fast_syscall_32+0x6b/0xd0 [ 608.503556][T15195] do_SYSENTER_32+0x73/0x90 [ 608.508074][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 608.514404][T15195] RIP: 0023:0xf7f82549 [ 608.518467][T15195] Code: Bad RIP value. [ 608.522534][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 608.530955][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 608.538935][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 608.546917][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 608.554900][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 608.562880][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 608.570874][T15195] Uninit was stored to memory at: [ 608.575914][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 608.581732][T15195] __msan_chain_origin+0x50/0x90 [ 608.586679][T15195] __get_compat_msghdr+0x5be/0x890 [ 608.591799][T15195] get_compat_msghdr+0x108/0x270 [ 608.596744][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 608.601251][T15195] __sys_recvmmsg+0x4ca/0x510 [ 608.605939][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 608.612014][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 608.618182][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 608.623390][T15195] do_fast_syscall_32+0x6b/0xd0 [ 608.628250][T15195] do_SYSENTER_32+0x73/0x90 [ 608.632781][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 608.639098][T15195] [ 608.641422][T15195] Uninit was stored to memory at: [ 608.646455][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 608.652185][T15195] __msan_chain_origin+0x50/0x90 [ 608.657142][T15195] __get_compat_msghdr+0x5be/0x890 [ 608.662261][T15195] get_compat_msghdr+0x108/0x270 [ 608.667206][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 608.671718][T15195] __sys_recvmmsg+0x4ca/0x510 [ 608.676403][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 608.682473][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 608.688637][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 608.693846][T15195] do_fast_syscall_32+0x6b/0xd0 [ 608.698705][T15195] do_SYSENTER_32+0x73/0x90 [ 608.703214][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 608.709536][T15195] [ 608.711866][T15195] Uninit was stored to memory at: [ 608.716918][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 608.722645][T15195] __msan_chain_origin+0x50/0x90 [ 608.727590][T15195] __get_compat_msghdr+0x5be/0x890 [ 608.732711][T15195] get_compat_msghdr+0x108/0x270 [ 608.737659][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 608.742192][T15195] __sys_recvmmsg+0x4ca/0x510 [ 608.746882][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 608.753319][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 608.759481][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 608.764690][T15195] do_fast_syscall_32+0x6b/0xd0 [ 608.769549][T15195] do_SYSENTER_32+0x73/0x90 [ 608.774060][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 608.780377][T15195] [ 608.782703][T15195] Uninit was stored to memory at: [ 608.787738][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 608.793467][T15195] __msan_chain_origin+0x50/0x90 [ 608.798415][T15195] __get_compat_msghdr+0x5be/0x890 [ 608.803567][T15195] get_compat_msghdr+0x108/0x270 [ 608.808514][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 608.813024][T15195] __sys_recvmmsg+0x4ca/0x510 [ 608.817711][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 608.823787][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 608.829950][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 608.835160][T15195] do_fast_syscall_32+0x6b/0xd0 [ 608.840019][T15195] do_SYSENTER_32+0x73/0x90 [ 608.844528][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 608.851129][T15195] [ 608.853457][T15195] Uninit was stored to memory at: [ 608.858487][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 608.864217][T15195] __msan_chain_origin+0x50/0x90 [ 608.869172][T15195] __get_compat_msghdr+0x5be/0x890 [ 608.874290][T15195] get_compat_msghdr+0x108/0x270 [ 608.879236][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 608.883788][T15195] __sys_recvmmsg+0x4ca/0x510 [ 608.888506][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 608.894580][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 608.900741][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 608.905947][T15195] do_fast_syscall_32+0x6b/0xd0 [ 608.910806][T15195] do_SYSENTER_32+0x73/0x90 [ 608.915319][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 608.921637][T15195] [ 608.923970][T15195] Uninit was stored to memory at: [ 608.929004][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 608.934732][T15195] __msan_chain_origin+0x50/0x90 [ 608.939686][T15195] __get_compat_msghdr+0x5be/0x890 [ 608.944804][T15195] get_compat_msghdr+0x108/0x270 [ 608.949758][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 608.954271][T15195] __sys_recvmmsg+0x4ca/0x510 [ 608.958954][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 608.965031][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 608.971192][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 608.976401][T15195] do_fast_syscall_32+0x6b/0xd0 [ 608.981347][T15195] do_SYSENTER_32+0x73/0x90 [ 608.985859][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 608.992182][T15195] [ 608.994511][T15195] Uninit was stored to memory at: [ 608.999544][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 609.005272][T15195] __msan_chain_origin+0x50/0x90 [ 609.010219][T15195] __get_compat_msghdr+0x5be/0x890 [ 609.015340][T15195] get_compat_msghdr+0x108/0x270 [ 609.020286][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 609.024796][T15195] __sys_recvmmsg+0x4ca/0x510 [ 609.029480][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 609.035553][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 609.041714][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 609.046931][T15195] do_fast_syscall_32+0x6b/0xd0 [ 609.051790][T15195] do_SYSENTER_32+0x73/0x90 [ 609.056302][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 609.062620][T15195] [ 609.064948][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 609.071633][T15195] do_recvmmsg+0xc5/0x1ee0 [ 609.076056][T15195] do_recvmmsg+0xc5/0x1ee0 [ 609.254230][T15195] not chained 290000 origins [ 609.258867][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 609.267537][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 609.277593][T15195] Call Trace: [ 609.280901][T15195] dump_stack+0x1df/0x240 [ 609.285258][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 609.291005][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 609.296135][T15195] ? release_sock+0x238/0x2a0 [ 609.300835][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 609.305637][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 609.310787][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 609.316364][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 609.322452][T15195] ? _copy_from_user+0x15b/0x260 [ 609.327405][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 609.332531][T15195] __msan_chain_origin+0x50/0x90 [ 609.337488][T15195] __get_compat_msghdr+0x5be/0x890 [ 609.342637][T15195] get_compat_msghdr+0x108/0x270 [ 609.347606][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 609.352146][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 609.357820][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 609.362952][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 609.368256][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 609.373030][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 609.377806][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 609.383023][T15195] __sys_recvmmsg+0x4ca/0x510 [ 609.387748][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 609.393842][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 609.400102][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 609.406271][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 609.411500][T15195] do_fast_syscall_32+0x6b/0xd0 [ 609.416368][T15195] do_SYSENTER_32+0x73/0x90 [ 609.420886][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 609.427219][T15195] RIP: 0023:0xf7f82549 [ 609.431287][T15195] Code: Bad RIP value. [ 609.435356][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 609.443774][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 609.451775][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 609.459760][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 609.467744][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 609.475722][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 609.483721][T15195] Uninit was stored to memory at: [ 609.488771][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 609.494498][T15195] __msan_chain_origin+0x50/0x90 [ 609.499446][T15195] __get_compat_msghdr+0x5be/0x890 [ 609.504563][T15195] get_compat_msghdr+0x108/0x270 [ 609.509509][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 609.514019][T15195] __sys_recvmmsg+0x4ca/0x510 [ 609.518718][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 609.524796][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 609.530956][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 609.536164][T15195] do_fast_syscall_32+0x6b/0xd0 [ 609.541031][T15195] do_SYSENTER_32+0x73/0x90 [ 609.545548][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 609.551869][T15195] [ 609.554200][T15195] Uninit was stored to memory at: [ 609.559240][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 609.564973][T15195] __msan_chain_origin+0x50/0x90 [ 609.569920][T15195] __get_compat_msghdr+0x5be/0x890 [ 609.575042][T15195] get_compat_msghdr+0x108/0x270 [ 609.579986][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 609.584498][T15195] __sys_recvmmsg+0x4ca/0x510 [ 609.589190][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 609.595264][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 609.601425][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 609.606633][T15195] do_fast_syscall_32+0x6b/0xd0 [ 609.611488][T15195] do_SYSENTER_32+0x73/0x90 [ 609.616093][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 609.622415][T15195] [ 609.624739][T15195] Uninit was stored to memory at: [ 609.629783][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 609.635507][T15195] __msan_chain_origin+0x50/0x90 [ 609.640453][T15195] __get_compat_msghdr+0x5be/0x890 [ 609.645573][T15195] get_compat_msghdr+0x108/0x270 [ 609.650519][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 609.655026][T15195] __sys_recvmmsg+0x4ca/0x510 [ 609.659709][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 609.665784][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 609.671966][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 609.677193][T15195] do_fast_syscall_32+0x6b/0xd0 [ 609.682051][T15195] do_SYSENTER_32+0x73/0x90 [ 609.686573][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 609.692897][T15195] [ 609.695224][T15195] Uninit was stored to memory at: [ 609.700259][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 609.705989][T15195] __msan_chain_origin+0x50/0x90 [ 609.710937][T15195] __get_compat_msghdr+0x5be/0x890 [ 609.716055][T15195] get_compat_msghdr+0x108/0x270 [ 609.721006][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 609.725518][T15195] __sys_recvmmsg+0x4ca/0x510 [ 609.730208][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 609.736286][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 609.742475][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 609.747682][T15195] do_fast_syscall_32+0x6b/0xd0 [ 609.752541][T15195] do_SYSENTER_32+0x73/0x90 [ 609.757054][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 609.763376][T15195] [ 609.765704][T15195] Uninit was stored to memory at: [ 609.770734][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 609.776459][T15195] __msan_chain_origin+0x50/0x90 [ 609.781439][T15195] __get_compat_msghdr+0x5be/0x890 [ 609.786558][T15195] get_compat_msghdr+0x108/0x270 [ 609.791504][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 609.796029][T15195] __sys_recvmmsg+0x4ca/0x510 [ 609.800714][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 609.806784][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 609.812946][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 609.818150][T15195] do_fast_syscall_32+0x6b/0xd0 [ 609.823028][T15195] do_SYSENTER_32+0x73/0x90 [ 609.827538][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 609.833859][T15195] [ 609.836189][T15195] Uninit was stored to memory at: [ 609.841220][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 609.846967][T15195] __msan_chain_origin+0x50/0x90 [ 609.851911][T15195] __get_compat_msghdr+0x5be/0x890 [ 609.857029][T15195] get_compat_msghdr+0x108/0x270 [ 609.861972][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 609.866483][T15195] __sys_recvmmsg+0x4ca/0x510 [ 609.871165][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 609.877237][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 609.883406][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 609.888620][T15195] do_fast_syscall_32+0x6b/0xd0 [ 609.893485][T15195] do_SYSENTER_32+0x73/0x90 [ 609.897994][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 609.904312][T15195] [ 609.906639][T15195] Uninit was stored to memory at: [ 609.911677][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 609.917419][T15195] __msan_chain_origin+0x50/0x90 [ 609.922385][T15195] __get_compat_msghdr+0x5be/0x890 [ 609.927503][T15195] get_compat_msghdr+0x108/0x270 [ 609.932451][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 609.936964][T15195] __sys_recvmmsg+0x4ca/0x510 [ 609.941646][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 609.947718][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 609.953875][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 609.959078][T15195] do_fast_syscall_32+0x6b/0xd0 [ 609.963934][T15195] do_SYSENTER_32+0x73/0x90 [ 609.968442][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 609.974760][T15195] [ 609.977085][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 609.983763][T15195] do_recvmmsg+0xc5/0x1ee0 [ 609.988186][T15195] do_recvmmsg+0xc5/0x1ee0 [ 610.179553][T15195] not chained 300000 origins [ 610.184182][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 610.192847][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 610.202903][T15195] Call Trace: [ 610.206206][T15195] dump_stack+0x1df/0x240 [ 610.210559][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 610.216310][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 610.221437][T15195] ? release_sock+0x238/0x2a0 [ 610.226137][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 610.230931][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 610.236058][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 610.241617][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 610.247706][T15195] ? _copy_from_user+0x15b/0x260 [ 610.252655][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 610.257776][T15195] __msan_chain_origin+0x50/0x90 [ 610.262734][T15195] __get_compat_msghdr+0x5be/0x890 [ 610.268759][T15195] get_compat_msghdr+0x108/0x270 [ 610.273727][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 610.278271][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 610.283947][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 610.289077][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 610.294375][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 610.299147][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 610.303922][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 610.309135][T15195] __sys_recvmmsg+0x4ca/0x510 [ 610.313840][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 610.319931][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 610.326188][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 610.332354][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 610.337580][T15195] do_fast_syscall_32+0x6b/0xd0 [ 610.342446][T15195] do_SYSENTER_32+0x73/0x90 [ 610.346962][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 610.353292][T15195] RIP: 0023:0xf7f82549 [ 610.357359][T15195] Code: Bad RIP value. [ 610.361426][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 610.369843][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 610.377818][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 610.385793][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 610.393769][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 610.401741][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 610.409738][T15195] Uninit was stored to memory at: [ 610.414773][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 610.420498][T15195] __msan_chain_origin+0x50/0x90 [ 610.425443][T15195] __get_compat_msghdr+0x5be/0x890 [ 610.430558][T15195] get_compat_msghdr+0x108/0x270 [ 610.435505][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 610.440022][T15195] __sys_recvmmsg+0x4ca/0x510 [ 610.444708][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 610.450794][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 610.456955][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 610.462161][T15195] do_fast_syscall_32+0x6b/0xd0 [ 610.467106][T15195] do_SYSENTER_32+0x73/0x90 [ 610.471614][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 610.477929][T15195] [ 610.480258][T15195] Uninit was stored to memory at: [ 610.485289][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 610.491013][T15195] __msan_chain_origin+0x50/0x90 [ 610.495961][T15195] __get_compat_msghdr+0x5be/0x890 [ 610.501079][T15195] get_compat_msghdr+0x108/0x270 [ 610.506025][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 610.510533][T15195] __sys_recvmmsg+0x4ca/0x510 [ 610.515217][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 610.521295][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 610.527454][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 610.532658][T15195] do_fast_syscall_32+0x6b/0xd0 [ 610.537514][T15195] do_SYSENTER_32+0x73/0x90 [ 610.542020][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 610.548335][T15195] [ 610.550658][T15195] Uninit was stored to memory at: [ 610.555690][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 610.561412][T15195] __msan_chain_origin+0x50/0x90 [ 610.566361][T15195] __get_compat_msghdr+0x5be/0x890 [ 610.571479][T15195] get_compat_msghdr+0x108/0x270 [ 610.576424][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 610.580934][T15195] __sys_recvmmsg+0x4ca/0x510 [ 610.585615][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 610.591684][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 610.597863][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 610.603070][T15195] do_fast_syscall_32+0x6b/0xd0 [ 610.607927][T15195] do_SYSENTER_32+0x73/0x90 [ 610.612437][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 610.618753][T15195] [ 610.621080][T15195] Uninit was stored to memory at: [ 610.626117][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 610.631843][T15195] __msan_chain_origin+0x50/0x90 [ 610.636793][T15195] __get_compat_msghdr+0x5be/0x890 [ 610.641915][T15195] get_compat_msghdr+0x108/0x270 [ 610.646861][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 610.651369][T15195] __sys_recvmmsg+0x4ca/0x510 [ 610.656051][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 610.662121][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 610.668281][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 610.673487][T15195] do_fast_syscall_32+0x6b/0xd0 [ 610.678343][T15195] do_SYSENTER_32+0x73/0x90 [ 610.682856][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 610.689176][T15195] [ 610.691499][T15195] Uninit was stored to memory at: [ 610.696530][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 610.702253][T15195] __msan_chain_origin+0x50/0x90 [ 610.707198][T15195] __get_compat_msghdr+0x5be/0x890 [ 610.712334][T15195] get_compat_msghdr+0x108/0x270 [ 610.717283][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 610.721797][T15195] __sys_recvmmsg+0x4ca/0x510 [ 610.726499][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 610.732569][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 610.739769][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 610.744988][T15195] do_fast_syscall_32+0x6b/0xd0 [ 610.749849][T15195] do_SYSENTER_32+0x73/0x90 [ 610.754365][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 610.760685][T15195] [ 610.763017][T15195] Uninit was stored to memory at: [ 610.768049][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 610.773775][T15195] __msan_chain_origin+0x50/0x90 [ 610.778757][T15195] __get_compat_msghdr+0x5be/0x890 [ 610.783879][T15195] get_compat_msghdr+0x108/0x270 [ 610.788826][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 610.793336][T15195] __sys_recvmmsg+0x4ca/0x510 [ 610.798021][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 610.804106][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 610.810276][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 610.815487][T15195] do_fast_syscall_32+0x6b/0xd0 [ 610.820366][T15195] do_SYSENTER_32+0x73/0x90 [ 610.824879][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 610.831201][T15195] [ 610.833530][T15195] Uninit was stored to memory at: [ 610.838563][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 610.844289][T15195] __msan_chain_origin+0x50/0x90 [ 610.849239][T15195] __get_compat_msghdr+0x5be/0x890 [ 610.854357][T15195] get_compat_msghdr+0x108/0x270 [ 610.859302][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 610.863832][T15195] __sys_recvmmsg+0x4ca/0x510 [ 610.868515][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 610.874588][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 610.880750][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 610.885963][T15195] do_fast_syscall_32+0x6b/0xd0 [ 610.890822][T15195] do_SYSENTER_32+0x73/0x90 [ 610.895342][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 610.901661][T15195] [ 610.903992][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 610.910676][T15195] do_recvmmsg+0xc5/0x1ee0 [ 610.915108][T15195] do_recvmmsg+0xc5/0x1ee0 [ 611.105850][T15195] not chained 310000 origins [ 611.110482][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 611.119150][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 611.129205][T15195] Call Trace: [ 611.132518][T15195] dump_stack+0x1df/0x240 [ 611.136875][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 611.142620][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 611.147745][T15195] ? release_sock+0x238/0x2a0 [ 611.152445][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 611.157249][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 611.162378][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 611.167943][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 611.174031][T15195] ? _copy_from_user+0x15b/0x260 [ 611.178980][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 611.184133][T15195] __msan_chain_origin+0x50/0x90 [ 611.189094][T15195] __get_compat_msghdr+0x5be/0x890 [ 611.194250][T15195] get_compat_msghdr+0x108/0x270 [ 611.199222][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 611.203765][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 611.209440][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 611.214572][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 611.219875][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 611.224663][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 611.229465][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 611.234682][T15195] __sys_recvmmsg+0x4ca/0x510 [ 611.239398][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 611.245490][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 611.251742][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 611.257912][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 611.263140][T15195] do_fast_syscall_32+0x6b/0xd0 [ 611.268022][T15195] do_SYSENTER_32+0x73/0x90 [ 611.272563][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 611.278892][T15195] RIP: 0023:0xf7f82549 [ 611.282994][T15195] Code: Bad RIP value. [ 611.287064][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 611.295483][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 611.303464][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 611.311439][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 611.319441][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 611.327416][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 611.335411][T15195] Uninit was stored to memory at: [ 611.340450][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 611.346178][T15195] __msan_chain_origin+0x50/0x90 [ 611.351124][T15195] __get_compat_msghdr+0x5be/0x890 [ 611.356248][T15195] get_compat_msghdr+0x108/0x270 [ 611.361197][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 611.365708][T15195] __sys_recvmmsg+0x4ca/0x510 [ 611.370425][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 611.376498][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 611.382659][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 611.387868][T15195] do_fast_syscall_32+0x6b/0xd0 [ 611.392729][T15195] do_SYSENTER_32+0x73/0x90 [ 611.397245][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 611.403566][T15195] [ 611.405891][T15195] Uninit was stored to memory at: [ 611.410924][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 611.416654][T15195] __msan_chain_origin+0x50/0x90 [ 611.421599][T15195] __get_compat_msghdr+0x5be/0x890 [ 611.426719][T15195] get_compat_msghdr+0x108/0x270 [ 611.431663][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 611.436201][T15195] __sys_recvmmsg+0x4ca/0x510 [ 611.440889][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 611.446964][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 611.453126][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 611.458336][T15195] do_fast_syscall_32+0x6b/0xd0 [ 611.463196][T15195] do_SYSENTER_32+0x73/0x90 [ 611.467709][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 611.474030][T15195] [ 611.476356][T15195] Uninit was stored to memory at: [ 611.481562][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 611.487288][T15195] __msan_chain_origin+0x50/0x90 [ 611.492244][T15195] __get_compat_msghdr+0x5be/0x890 [ 611.497363][T15195] get_compat_msghdr+0x108/0x270 [ 611.502309][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 611.506820][T15195] __sys_recvmmsg+0x4ca/0x510 [ 611.511504][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 611.517577][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 611.523738][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 611.528944][T15195] do_fast_syscall_32+0x6b/0xd0 [ 611.533801][T15195] do_SYSENTER_32+0x73/0x90 [ 611.538314][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 611.544632][T15195] [ 611.546959][T15195] Uninit was stored to memory at: [ 611.552013][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 611.557738][T15195] __msan_chain_origin+0x50/0x90 [ 611.562684][T15195] __get_compat_msghdr+0x5be/0x890 [ 611.567824][T15195] get_compat_msghdr+0x108/0x270 [ 611.572771][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 611.577279][T15195] __sys_recvmmsg+0x4ca/0x510 [ 611.581961][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 611.588035][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 611.594201][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 611.599412][T15195] do_fast_syscall_32+0x6b/0xd0 [ 611.604275][T15195] do_SYSENTER_32+0x73/0x90 [ 611.608787][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 611.615105][T15195] [ 611.617431][T15195] Uninit was stored to memory at: [ 611.622477][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 611.628235][T15195] __msan_chain_origin+0x50/0x90 [ 611.633186][T15195] __get_compat_msghdr+0x5be/0x890 [ 611.638306][T15195] get_compat_msghdr+0x108/0x270 [ 611.643256][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 611.647764][T15195] __sys_recvmmsg+0x4ca/0x510 [ 611.652448][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 611.658518][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 611.664682][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 611.669887][T15195] do_fast_syscall_32+0x6b/0xd0 [ 611.674745][T15195] do_SYSENTER_32+0x73/0x90 [ 611.679258][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 611.685575][T15195] [ 611.687898][T15195] Uninit was stored to memory at: [ 611.692933][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 611.698654][T15195] __msan_chain_origin+0x50/0x90 [ 611.703599][T15195] __get_compat_msghdr+0x5be/0x890 [ 611.708716][T15195] get_compat_msghdr+0x108/0x270 [ 611.713663][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 611.718198][T15195] __sys_recvmmsg+0x4ca/0x510 [ 611.722878][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 611.728951][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 611.735111][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 611.740316][T15195] do_fast_syscall_32+0x6b/0xd0 [ 611.745174][T15195] do_SYSENTER_32+0x73/0x90 [ 611.749686][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 611.756004][T15195] [ 611.758325][T15195] Uninit was stored to memory at: [ 611.763356][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 611.769081][T15195] __msan_chain_origin+0x50/0x90 [ 611.774028][T15195] __get_compat_msghdr+0x5be/0x890 [ 611.779145][T15195] get_compat_msghdr+0x108/0x270 [ 611.784089][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 611.788597][T15195] __sys_recvmmsg+0x4ca/0x510 [ 611.793281][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 611.799351][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 611.805509][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 611.810716][T15195] do_fast_syscall_32+0x6b/0xd0 [ 611.815575][T15195] do_SYSENTER_32+0x73/0x90 [ 611.820085][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 611.826403][T15195] [ 611.828731][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 611.835411][T15195] do_recvmmsg+0xc5/0x1ee0 [ 611.839832][T15195] do_recvmmsg+0xc5/0x1ee0 [ 612.016008][T15195] not chained 320000 origins [ 612.020642][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 612.029313][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 612.039367][T15195] Call Trace: [ 612.042673][T15195] dump_stack+0x1df/0x240 [ 612.047026][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 612.052780][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 612.057906][T15195] ? release_sock+0x238/0x2a0 [ 612.062602][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 612.067395][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 612.072517][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 612.078074][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 612.084161][T15195] ? _copy_from_user+0x15b/0x260 [ 612.089108][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 612.094231][T15195] __msan_chain_origin+0x50/0x90 [ 612.099203][T15195] __get_compat_msghdr+0x5be/0x890 [ 612.104359][T15195] get_compat_msghdr+0x108/0x270 [ 612.109342][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 612.113881][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 612.119548][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 612.124679][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 612.129978][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 612.134750][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 612.139522][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 612.144732][T15195] __sys_recvmmsg+0x4ca/0x510 [ 612.149441][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 612.155530][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 612.161780][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 612.167950][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 612.173182][T15195] do_fast_syscall_32+0x6b/0xd0 [ 612.178049][T15195] do_SYSENTER_32+0x73/0x90 [ 612.182567][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 612.188900][T15195] RIP: 0023:0xf7f82549 [ 612.192962][T15195] Code: Bad RIP value. [ 612.197027][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 612.205444][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 612.213416][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 612.221387][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 612.229359][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 612.237336][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 612.245328][T15195] Uninit was stored to memory at: [ 612.250364][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 612.256088][T15195] __msan_chain_origin+0x50/0x90 [ 612.261032][T15195] __get_compat_msghdr+0x5be/0x890 [ 612.266151][T15195] get_compat_msghdr+0x108/0x270 [ 612.271094][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 612.275606][T15195] __sys_recvmmsg+0x4ca/0x510 [ 612.280288][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 612.286357][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 612.292518][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 612.297724][T15195] do_fast_syscall_32+0x6b/0xd0 [ 612.302578][T15195] do_SYSENTER_32+0x73/0x90 [ 612.307120][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 612.313438][T15195] [ 612.315762][T15195] Uninit was stored to memory at: [ 612.320795][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 612.326520][T15195] __msan_chain_origin+0x50/0x90 [ 612.331473][T15195] __get_compat_msghdr+0x5be/0x890 [ 612.336592][T15195] get_compat_msghdr+0x108/0x270 [ 612.341539][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 612.346050][T15195] __sys_recvmmsg+0x4ca/0x510 [ 612.350728][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 612.356799][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 612.362958][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 612.368162][T15195] do_fast_syscall_32+0x6b/0xd0 [ 612.373022][T15195] do_SYSENTER_32+0x73/0x90 [ 612.377529][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 612.383848][T15195] [ 612.386180][T15195] Uninit was stored to memory at: [ 612.391212][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 612.396934][T15195] __msan_chain_origin+0x50/0x90 [ 612.401887][T15195] __get_compat_msghdr+0x5be/0x890 [ 612.407006][T15195] get_compat_msghdr+0x108/0x270 [ 612.411949][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 612.416460][T15195] __sys_recvmmsg+0x4ca/0x510 [ 612.421170][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 612.427240][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 612.433401][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 612.438605][T15195] do_fast_syscall_32+0x6b/0xd0 [ 612.443493][T15195] do_SYSENTER_32+0x73/0x90 [ 612.448015][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 612.454336][T15195] [ 612.456661][T15195] Uninit was stored to memory at: [ 612.461694][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 612.467418][T15195] __msan_chain_origin+0x50/0x90 [ 612.472380][T15195] __get_compat_msghdr+0x5be/0x890 [ 612.477502][T15195] get_compat_msghdr+0x108/0x270 [ 612.482470][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 612.486977][T15195] __sys_recvmmsg+0x4ca/0x510 [ 612.491660][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 612.497750][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 612.503910][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 612.509117][T15195] do_fast_syscall_32+0x6b/0xd0 [ 612.513972][T15195] do_SYSENTER_32+0x73/0x90 [ 612.518479][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 612.524817][T15195] [ 612.527146][T15195] Uninit was stored to memory at: [ 612.532177][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 612.537899][T15195] __msan_chain_origin+0x50/0x90 [ 612.542845][T15195] __get_compat_msghdr+0x5be/0x890 [ 612.547972][T15195] get_compat_msghdr+0x108/0x270 [ 612.552927][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 612.557441][T15195] __sys_recvmmsg+0x4ca/0x510 [ 612.562123][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 612.568196][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 612.574356][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 612.579581][T15195] do_fast_syscall_32+0x6b/0xd0 [ 612.584437][T15195] do_SYSENTER_32+0x73/0x90 [ 612.588946][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 612.595265][T15195] [ 612.597587][T15195] Uninit was stored to memory at: [ 612.602618][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 612.608340][T15195] __msan_chain_origin+0x50/0x90 [ 612.613283][T15195] __get_compat_msghdr+0x5be/0x890 [ 612.618401][T15195] get_compat_msghdr+0x108/0x270 [ 612.623341][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 612.627847][T15195] __sys_recvmmsg+0x4ca/0x510 [ 612.632539][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 612.638608][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 612.644764][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 612.649970][T15195] do_fast_syscall_32+0x6b/0xd0 [ 612.654827][T15195] do_SYSENTER_32+0x73/0x90 [ 612.659337][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 612.665657][T15195] [ 612.667981][T15195] Uninit was stored to memory at: [ 612.673021][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 612.678745][T15195] __msan_chain_origin+0x50/0x90 [ 612.683689][T15195] __get_compat_msghdr+0x5be/0x890 [ 612.688805][T15195] get_compat_msghdr+0x108/0x270 [ 612.693751][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 612.698258][T15195] __sys_recvmmsg+0x4ca/0x510 [ 612.702939][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 612.709007][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 612.715166][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 612.720373][T15195] do_fast_syscall_32+0x6b/0xd0 [ 612.725236][T15195] do_SYSENTER_32+0x73/0x90 [ 612.729763][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 612.736086][T15195] [ 612.738414][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 612.745099][T15195] do_recvmmsg+0xc5/0x1ee0 [ 612.749525][T15195] do_recvmmsg+0xc5/0x1ee0 [ 612.937590][T15195] not chained 330000 origins [ 612.942254][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 612.950924][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 612.960982][T15195] Call Trace: [ 612.964292][T15195] dump_stack+0x1df/0x240 [ 612.968650][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 612.974395][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 612.979522][T15195] ? release_sock+0x238/0x2a0 [ 612.984219][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 612.989024][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 612.994149][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 612.999712][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 613.005806][T15195] ? _copy_from_user+0x15b/0x260 [ 613.010754][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 613.015881][T15195] __msan_chain_origin+0x50/0x90 [ 613.020869][T15195] __get_compat_msghdr+0x5be/0x890 [ 613.026019][T15195] get_compat_msghdr+0x108/0x270 [ 613.030992][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 613.035530][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 613.041204][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 613.046343][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 613.051645][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 613.056420][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 613.061194][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 613.066412][T15195] __sys_recvmmsg+0x4ca/0x510 [ 613.071126][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 613.077218][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 613.083477][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 613.089644][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 613.094869][T15195] do_fast_syscall_32+0x6b/0xd0 [ 613.099735][T15195] do_SYSENTER_32+0x73/0x90 [ 613.104266][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 613.110602][T15195] RIP: 0023:0xf7f82549 [ 613.114671][T15195] Code: Bad RIP value. [ 613.118737][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 613.127154][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 613.135130][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 613.143106][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 613.151080][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 613.159054][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 613.167048][T15195] Uninit was stored to memory at: [ 613.172081][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 613.177806][T15195] __msan_chain_origin+0x50/0x90 [ 613.182754][T15195] __get_compat_msghdr+0x5be/0x890 [ 613.187873][T15195] get_compat_msghdr+0x108/0x270 [ 613.192819][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 613.197330][T15195] __sys_recvmmsg+0x4ca/0x510 [ 613.202012][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 613.208085][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 613.214257][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 613.219469][T15195] do_fast_syscall_32+0x6b/0xd0 [ 613.224330][T15195] do_SYSENTER_32+0x73/0x90 [ 613.228841][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 613.235163][T15195] [ 613.237491][T15195] Uninit was stored to memory at: [ 613.242524][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 613.248258][T15195] __msan_chain_origin+0x50/0x90 [ 613.253207][T15195] __get_compat_msghdr+0x5be/0x890 [ 613.258330][T15195] get_compat_msghdr+0x108/0x270 [ 613.263281][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 613.267800][T15195] __sys_recvmmsg+0x4ca/0x510 [ 613.272488][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 613.278558][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 613.284718][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 613.289926][T15195] do_fast_syscall_32+0x6b/0xd0 [ 613.294786][T15195] do_SYSENTER_32+0x73/0x90 [ 613.299296][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 613.305614][T15195] [ 613.307938][T15195] Uninit was stored to memory at: [ 613.312968][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 613.318696][T15195] __msan_chain_origin+0x50/0x90 [ 613.323641][T15195] __get_compat_msghdr+0x5be/0x890 [ 613.328787][T15195] get_compat_msghdr+0x108/0x270 [ 613.333736][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 613.338259][T15195] __sys_recvmmsg+0x4ca/0x510 [ 613.342950][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 613.349024][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 613.355186][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 613.360393][T15195] do_fast_syscall_32+0x6b/0xd0 [ 613.365258][T15195] do_SYSENTER_32+0x73/0x90 [ 613.369772][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 613.376095][T15195] [ 613.378424][T15195] Uninit was stored to memory at: [ 613.383460][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 613.389187][T15195] __msan_chain_origin+0x50/0x90 [ 613.394136][T15195] __get_compat_msghdr+0x5be/0x890 [ 613.399263][T15195] get_compat_msghdr+0x108/0x270 [ 613.404216][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 613.408730][T15195] __sys_recvmmsg+0x4ca/0x510 [ 613.413418][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 613.419513][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 613.425676][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 613.430884][T15195] do_fast_syscall_32+0x6b/0xd0 [ 613.435744][T15195] do_SYSENTER_32+0x73/0x90 [ 613.440258][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 613.446577][T15195] [ 613.448903][T15195] Uninit was stored to memory at: [ 613.453938][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 613.459663][T15195] __msan_chain_origin+0x50/0x90 [ 613.464630][T15195] __get_compat_msghdr+0x5be/0x890 [ 613.469749][T15195] get_compat_msghdr+0x108/0x270 [ 613.474717][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 613.479269][T15195] __sys_recvmmsg+0x4ca/0x510 [ 613.483956][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 613.490032][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 613.496197][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 613.501413][T15195] do_fast_syscall_32+0x6b/0xd0 [ 613.506280][T15195] do_SYSENTER_32+0x73/0x90 [ 613.510789][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 613.517113][T15195] [ 613.519442][T15195] Uninit was stored to memory at: [ 613.524565][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 613.530294][T15195] __msan_chain_origin+0x50/0x90 [ 613.535267][T15195] __get_compat_msghdr+0x5be/0x890 [ 613.540404][T15195] get_compat_msghdr+0x108/0x270 [ 613.545357][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 613.549869][T15195] __sys_recvmmsg+0x4ca/0x510 [ 613.554553][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 613.560627][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 613.566787][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 613.571993][T15195] do_fast_syscall_32+0x6b/0xd0 [ 613.576854][T15195] do_SYSENTER_32+0x73/0x90 [ 613.581366][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 613.587707][T15195] [ 613.590039][T15195] Uninit was stored to memory at: [ 613.595096][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 613.600818][T15195] __msan_chain_origin+0x50/0x90 [ 613.605766][T15195] __get_compat_msghdr+0x5be/0x890 [ 613.610903][T15195] get_compat_msghdr+0x108/0x270 [ 613.615846][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 613.620373][T15195] __sys_recvmmsg+0x4ca/0x510 [ 613.625057][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 613.631138][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 613.637301][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 613.642514][T15195] do_fast_syscall_32+0x6b/0xd0 [ 613.647371][T15195] do_SYSENTER_32+0x73/0x90 [ 613.651879][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 613.658199][T15195] [ 613.660524][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 613.667206][T15195] do_recvmmsg+0xc5/0x1ee0 [ 613.671631][T15195] do_recvmmsg+0xc5/0x1ee0 [ 613.852623][T15195] not chained 340000 origins [ 613.857272][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 613.865940][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 613.876000][T15195] Call Trace: [ 613.879305][T15195] dump_stack+0x1df/0x240 [ 613.883659][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 613.889401][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 613.894526][T15195] ? release_sock+0x238/0x2a0 [ 613.899225][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 613.904020][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 613.909146][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 613.914712][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 613.920819][T15195] ? _copy_from_user+0x15b/0x260 [ 613.925773][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 613.930896][T15195] __msan_chain_origin+0x50/0x90 [ 613.935853][T15195] __get_compat_msghdr+0x5be/0x890 [ 613.941042][T15195] get_compat_msghdr+0x108/0x270 [ 613.946018][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 613.950557][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 613.956240][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 613.961372][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 613.966673][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 613.971450][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 613.976228][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 613.981443][T15195] __sys_recvmmsg+0x4ca/0x510 [ 613.986158][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 613.992245][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 613.998500][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 614.004668][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 614.009898][T15195] do_fast_syscall_32+0x6b/0xd0 [ 614.014771][T15195] do_SYSENTER_32+0x73/0x90 [ 614.019293][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 614.025627][T15195] RIP: 0023:0xf7f82549 [ 614.029691][T15195] Code: Bad RIP value. [ 614.033762][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 614.042188][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 614.050168][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 614.058142][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 614.066122][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 614.074096][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 614.082094][T15195] Uninit was stored to memory at: [ 614.087129][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 614.092855][T15195] __msan_chain_origin+0x50/0x90 [ 614.097824][T15195] __get_compat_msghdr+0x5be/0x890 [ 614.102946][T15195] get_compat_msghdr+0x108/0x270 [ 614.107892][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 614.112403][T15195] __sys_recvmmsg+0x4ca/0x510 [ 614.117088][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 614.123162][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 614.129322][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 614.134550][T15195] do_fast_syscall_32+0x6b/0xd0 [ 614.139408][T15195] do_SYSENTER_32+0x73/0x90 [ 614.143920][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 614.150239][T15195] [ 614.152565][T15195] Uninit was stored to memory at: [ 614.157606][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 614.163335][T15195] __msan_chain_origin+0x50/0x90 [ 614.168282][T15195] __get_compat_msghdr+0x5be/0x890 [ 614.173401][T15195] get_compat_msghdr+0x108/0x270 [ 614.178348][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 614.182862][T15195] __sys_recvmmsg+0x4ca/0x510 [ 614.187548][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 614.193622][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 614.199780][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 614.204988][T15195] do_fast_syscall_32+0x6b/0xd0 [ 614.209845][T15195] do_SYSENTER_32+0x73/0x90 [ 614.214355][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 614.220673][T15195] [ 614.222999][T15195] Uninit was stored to memory at: [ 614.228038][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 614.233766][T15195] __msan_chain_origin+0x50/0x90 [ 614.238715][T15195] __get_compat_msghdr+0x5be/0x890 [ 614.243862][T15195] get_compat_msghdr+0x108/0x270 [ 614.248912][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 614.253423][T15195] __sys_recvmmsg+0x4ca/0x510 [ 614.258116][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 614.264195][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 614.270357][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 614.275569][T15195] do_fast_syscall_32+0x6b/0xd0 [ 614.280517][T15195] do_SYSENTER_32+0x73/0x90 [ 614.285029][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 614.291352][T15195] [ 614.293680][T15195] Uninit was stored to memory at: [ 614.298712][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 614.304441][T15195] __msan_chain_origin+0x50/0x90 [ 614.309386][T15195] __get_compat_msghdr+0x5be/0x890 [ 614.314506][T15195] get_compat_msghdr+0x108/0x270 [ 614.319455][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 614.323966][T15195] __sys_recvmmsg+0x4ca/0x510 [ 614.328650][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 614.334722][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 614.340888][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 614.346097][T15195] do_fast_syscall_32+0x6b/0xd0 [ 614.350955][T15195] do_SYSENTER_32+0x73/0x90 [ 614.355486][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 614.361808][T15195] [ 614.364134][T15195] Uninit was stored to memory at: [ 614.369166][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 614.374890][T15195] __msan_chain_origin+0x50/0x90 [ 614.379854][T15195] __get_compat_msghdr+0x5be/0x890 [ 614.384975][T15195] get_compat_msghdr+0x108/0x270 [ 614.389922][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 614.394433][T15195] __sys_recvmmsg+0x4ca/0x510 [ 614.399115][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 614.405189][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 614.411348][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 614.416560][T15195] do_fast_syscall_32+0x6b/0xd0 [ 614.421418][T15195] do_SYSENTER_32+0x73/0x90 [ 614.425929][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 614.432249][T15195] [ 614.434575][T15195] Uninit was stored to memory at: [ 614.439606][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 614.445330][T15195] __msan_chain_origin+0x50/0x90 [ 614.450279][T15195] __get_compat_msghdr+0x5be/0x890 [ 614.455400][T15195] get_compat_msghdr+0x108/0x270 [ 614.460348][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 614.464858][T15195] __sys_recvmmsg+0x4ca/0x510 [ 614.469541][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 614.475688][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 614.481849][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 614.487060][T15195] do_fast_syscall_32+0x6b/0xd0 [ 614.491918][T15195] do_SYSENTER_32+0x73/0x90 [ 614.496431][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 614.502758][T15195] [ 614.505087][T15195] Uninit was stored to memory at: [ 614.510123][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 614.515848][T15195] __msan_chain_origin+0x50/0x90 [ 614.520797][T15195] __get_compat_msghdr+0x5be/0x890 [ 614.525936][T15195] get_compat_msghdr+0x108/0x270 [ 614.530881][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 614.535392][T15195] __sys_recvmmsg+0x4ca/0x510 [ 614.540077][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 614.546151][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 614.552310][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 614.557522][T15195] do_fast_syscall_32+0x6b/0xd0 [ 614.562382][T15195] do_SYSENTER_32+0x73/0x90 [ 614.566891][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 614.573218][T15195] [ 614.575547][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 614.582225][T15195] do_recvmmsg+0xc5/0x1ee0 [ 614.586647][T15195] do_recvmmsg+0xc5/0x1ee0 [ 614.768369][T15195] not chained 350000 origins [ 614.773002][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 614.781671][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 614.791723][T15195] Call Trace: [ 614.795028][T15195] dump_stack+0x1df/0x240 [ 614.799380][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 614.805122][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 614.810249][T15195] ? release_sock+0x238/0x2a0 [ 614.814959][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 614.819752][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 614.824874][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 614.830433][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 614.836520][T15195] ? _copy_from_user+0x15b/0x260 [ 614.841468][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 614.846593][T15195] __msan_chain_origin+0x50/0x90 [ 614.851548][T15195] __get_compat_msghdr+0x5be/0x890 [ 614.856707][T15195] get_compat_msghdr+0x108/0x270 [ 614.861677][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 614.866213][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 614.871884][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 614.877020][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 614.882323][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 614.887097][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 614.891872][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 614.897089][T15195] __sys_recvmmsg+0x4ca/0x510 [ 614.901799][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 614.907904][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 614.914156][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 614.920324][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 614.925549][T15195] do_fast_syscall_32+0x6b/0xd0 [ 614.930417][T15195] do_SYSENTER_32+0x73/0x90 [ 614.935027][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 614.941357][T15195] RIP: 0023:0xf7f82549 [ 614.945421][T15195] Code: Bad RIP value. [ 614.949491][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 614.957907][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 614.965882][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 614.973856][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 614.981827][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 614.989818][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 614.997812][T15195] Uninit was stored to memory at: [ 615.002845][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 615.008572][T15195] __msan_chain_origin+0x50/0x90 [ 615.013521][T15195] __get_compat_msghdr+0x5be/0x890 [ 615.018640][T15195] get_compat_msghdr+0x108/0x270 [ 615.023580][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 615.028089][T15195] __sys_recvmmsg+0x4ca/0x510 [ 615.032771][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 615.038842][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 615.045023][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 615.050232][T15195] do_fast_syscall_32+0x6b/0xd0 [ 615.055091][T15195] do_SYSENTER_32+0x73/0x90 [ 615.059602][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 615.065920][T15195] [ 615.068245][T15195] Uninit was stored to memory at: [ 615.073276][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 615.079001][T15195] __msan_chain_origin+0x50/0x90 [ 615.083947][T15195] __get_compat_msghdr+0x5be/0x890 [ 615.089063][T15195] get_compat_msghdr+0x108/0x270 [ 615.094029][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 615.098535][T15195] __sys_recvmmsg+0x4ca/0x510 [ 615.103214][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 615.109283][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 615.115441][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 615.120650][T15195] do_fast_syscall_32+0x6b/0xd0 [ 615.125509][T15195] do_SYSENTER_32+0x73/0x90 [ 615.130016][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 615.136334][T15195] [ 615.138659][T15195] Uninit was stored to memory at: [ 615.143691][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 615.149413][T15195] __msan_chain_origin+0x50/0x90 [ 615.154365][T15195] __get_compat_msghdr+0x5be/0x890 [ 615.159504][T15195] get_compat_msghdr+0x108/0x270 [ 615.164445][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 615.168957][T15195] __sys_recvmmsg+0x4ca/0x510 [ 615.173638][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 615.179713][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 615.185873][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 615.191075][T15195] do_fast_syscall_32+0x6b/0xd0 [ 615.195930][T15195] do_SYSENTER_32+0x73/0x90 [ 615.200436][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 615.206762][T15195] [ 615.209088][T15195] Uninit was stored to memory at: [ 615.214121][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 615.219844][T15195] __msan_chain_origin+0x50/0x90 [ 615.224788][T15195] __get_compat_msghdr+0x5be/0x890 [ 615.229904][T15195] get_compat_msghdr+0x108/0x270 [ 615.234848][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 615.239359][T15195] __sys_recvmmsg+0x4ca/0x510 [ 615.244213][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 615.250282][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 615.256441][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 615.261648][T15195] do_fast_syscall_32+0x6b/0xd0 [ 615.266505][T15195] do_SYSENTER_32+0x73/0x90 [ 615.271016][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 615.277420][T15195] [ 615.279753][T15195] Uninit was stored to memory at: [ 615.284785][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 615.290510][T15195] __msan_chain_origin+0x50/0x90 [ 615.295460][T15195] __get_compat_msghdr+0x5be/0x890 [ 615.300577][T15195] get_compat_msghdr+0x108/0x270 [ 615.305527][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 615.310041][T15195] __sys_recvmmsg+0x4ca/0x510 [ 615.314726][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 615.320799][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 615.326982][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 615.332190][T15195] do_fast_syscall_32+0x6b/0xd0 [ 615.337049][T15195] do_SYSENTER_32+0x73/0x90 [ 615.341561][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 615.347882][T15195] [ 615.350209][T15195] Uninit was stored to memory at: [ 615.355256][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 615.360981][T15195] __msan_chain_origin+0x50/0x90 [ 615.365933][T15195] __get_compat_msghdr+0x5be/0x890 [ 615.371063][T15195] get_compat_msghdr+0x108/0x270 [ 615.376008][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 615.380519][T15195] __sys_recvmmsg+0x4ca/0x510 [ 615.385202][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 615.391282][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 615.397443][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 615.402650][T15195] do_fast_syscall_32+0x6b/0xd0 [ 615.407510][T15195] do_SYSENTER_32+0x73/0x90 [ 615.412025][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 615.418346][T15195] [ 615.420673][T15195] Uninit was stored to memory at: [ 615.425706][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 615.431437][T15195] __msan_chain_origin+0x50/0x90 [ 615.436383][T15195] __get_compat_msghdr+0x5be/0x890 [ 615.441503][T15195] get_compat_msghdr+0x108/0x270 [ 615.446450][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 615.450963][T15195] __sys_recvmmsg+0x4ca/0x510 [ 615.455645][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 615.461715][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 615.467877][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 615.473085][T15195] do_fast_syscall_32+0x6b/0xd0 [ 615.477941][T15195] do_SYSENTER_32+0x73/0x90 [ 615.482464][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 615.488783][T15195] [ 615.491112][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 615.497795][T15195] do_recvmmsg+0xc5/0x1ee0 [ 615.502219][T15195] do_recvmmsg+0xc5/0x1ee0 [ 615.717843][T15195] not chained 360000 origins [ 615.722477][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 615.731146][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 615.741200][T15195] Call Trace: [ 615.744507][T15195] dump_stack+0x1df/0x240 [ 615.748862][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 615.754606][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 615.759732][T15195] ? release_sock+0x238/0x2a0 [ 615.764430][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 615.769226][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 615.774351][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 615.779920][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 615.786004][T15195] ? _copy_from_user+0x15b/0x260 [ 615.790952][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 615.796075][T15195] __msan_chain_origin+0x50/0x90 [ 615.801031][T15195] __get_compat_msghdr+0x5be/0x890 [ 615.806188][T15195] get_compat_msghdr+0x108/0x270 [ 615.811175][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 615.815711][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 615.821387][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 615.826521][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 615.831838][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 615.836609][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 615.841388][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 615.846600][T15195] __sys_recvmmsg+0x4ca/0x510 [ 615.851304][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 615.857396][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 615.863651][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 615.869821][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 615.875050][T15195] do_fast_syscall_32+0x6b/0xd0 [ 615.879918][T15195] do_SYSENTER_32+0x73/0x90 [ 615.884437][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 615.890775][T15195] RIP: 0023:0xf7f82549 [ 615.894840][T15195] Code: Bad RIP value. [ 615.898909][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 615.907325][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 615.915301][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 615.923282][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 615.931264][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 615.939239][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 615.947243][T15195] Uninit was stored to memory at: [ 615.952299][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 615.958022][T15195] __msan_chain_origin+0x50/0x90 [ 615.962968][T15195] __get_compat_msghdr+0x5be/0x890 [ 615.968088][T15195] get_compat_msghdr+0x108/0x270 [ 615.973037][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 615.977548][T15195] __sys_recvmmsg+0x4ca/0x510 [ 615.982256][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 615.988330][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 615.994492][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 615.999715][T15195] do_fast_syscall_32+0x6b/0xd0 [ 616.004572][T15195] do_SYSENTER_32+0x73/0x90 [ 616.009098][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 616.015419][T15195] [ 616.017745][T15195] Uninit was stored to memory at: [ 616.022778][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 616.028505][T15195] __msan_chain_origin+0x50/0x90 [ 616.033449][T15195] __get_compat_msghdr+0x5be/0x890 [ 616.038568][T15195] get_compat_msghdr+0x108/0x270 [ 616.043512][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 616.048031][T15195] __sys_recvmmsg+0x4ca/0x510 [ 616.052713][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 616.058805][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 616.064964][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 616.070169][T15195] do_fast_syscall_32+0x6b/0xd0 [ 616.075024][T15195] do_SYSENTER_32+0x73/0x90 [ 616.079534][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 616.085851][T15195] [ 616.088176][T15195] Uninit was stored to memory at: [ 616.093206][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 616.098928][T15195] __msan_chain_origin+0x50/0x90 [ 616.103875][T15195] __get_compat_msghdr+0x5be/0x890 [ 616.108990][T15195] get_compat_msghdr+0x108/0x270 [ 616.113934][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 616.118445][T15195] __sys_recvmmsg+0x4ca/0x510 [ 616.123126][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 616.129197][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 616.135357][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 616.140560][T15195] do_fast_syscall_32+0x6b/0xd0 [ 616.145416][T15195] do_SYSENTER_32+0x73/0x90 [ 616.149924][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 616.156243][T15195] [ 616.158571][T15195] Uninit was stored to memory at: [ 616.163946][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 616.169686][T15195] __msan_chain_origin+0x50/0x90 [ 616.174653][T15195] __get_compat_msghdr+0x5be/0x890 [ 616.179788][T15195] get_compat_msghdr+0x108/0x270 [ 616.184732][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 616.189241][T15195] __sys_recvmmsg+0x4ca/0x510 [ 616.193933][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 616.200005][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 616.206163][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 616.211367][T15195] do_fast_syscall_32+0x6b/0xd0 [ 616.216224][T15195] do_SYSENTER_32+0x73/0x90 [ 616.220739][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 616.227053][T15195] [ 616.229378][T15195] Uninit was stored to memory at: [ 616.234406][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 616.240131][T15195] __msan_chain_origin+0x50/0x90 [ 616.245076][T15195] __get_compat_msghdr+0x5be/0x890 [ 616.250199][T15195] get_compat_msghdr+0x108/0x270 [ 616.255141][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 616.259651][T15195] __sys_recvmmsg+0x4ca/0x510 [ 616.264332][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 616.270406][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 616.276585][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 616.281787][T15195] do_fast_syscall_32+0x6b/0xd0 [ 616.286643][T15195] do_SYSENTER_32+0x73/0x90 [ 616.291150][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 616.297468][T15195] [ 616.299789][T15195] Uninit was stored to memory at: [ 616.304821][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 616.310543][T15195] __msan_chain_origin+0x50/0x90 [ 616.315490][T15195] __get_compat_msghdr+0x5be/0x890 [ 616.320608][T15195] get_compat_msghdr+0x108/0x270 [ 616.325553][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 616.330083][T15195] __sys_recvmmsg+0x4ca/0x510 [ 616.334784][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 616.340853][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 616.347036][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 616.352242][T15195] do_fast_syscall_32+0x6b/0xd0 [ 616.357105][T15195] do_SYSENTER_32+0x73/0x90 [ 616.361612][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 616.367927][T15195] [ 616.370275][T15195] Uninit was stored to memory at: [ 616.375325][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 616.381047][T15195] __msan_chain_origin+0x50/0x90 [ 616.385991][T15195] __get_compat_msghdr+0x5be/0x890 [ 616.391113][T15195] get_compat_msghdr+0x108/0x270 [ 616.396078][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 616.400587][T15195] __sys_recvmmsg+0x4ca/0x510 [ 616.405289][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 616.411358][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 616.417516][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 616.422721][T15195] do_fast_syscall_32+0x6b/0xd0 [ 616.427580][T15195] do_SYSENTER_32+0x73/0x90 [ 616.432089][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 616.438407][T15195] [ 616.440732][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 616.447411][T15195] do_recvmmsg+0xc5/0x1ee0 [ 616.451830][T15195] do_recvmmsg+0xc5/0x1ee0 [ 616.633131][T15195] not chained 370000 origins [ 616.637763][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 616.646430][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 616.656522][T15195] Call Trace: [ 616.659829][T15195] dump_stack+0x1df/0x240 [ 616.664195][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 616.669934][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 616.675063][T15195] ? release_sock+0x238/0x2a0 [ 616.679763][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 616.684558][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 616.689690][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 616.695256][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 616.701345][T15195] ? _copy_from_user+0x15b/0x260 [ 616.706296][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 616.711422][T15195] __msan_chain_origin+0x50/0x90 [ 616.716384][T15195] __get_compat_msghdr+0x5be/0x890 [ 616.721541][T15195] get_compat_msghdr+0x108/0x270 [ 616.726509][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 616.731044][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 616.736711][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 616.741843][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 616.747143][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 616.751936][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 616.756713][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 616.761924][T15195] __sys_recvmmsg+0x4ca/0x510 [ 616.766727][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 616.772816][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 616.779072][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 616.785244][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 616.790467][T15195] do_fast_syscall_32+0x6b/0xd0 [ 616.795331][T15195] do_SYSENTER_32+0x73/0x90 [ 616.799850][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 616.806180][T15195] RIP: 0023:0xf7f82549 [ 616.810242][T15195] Code: Bad RIP value. [ 616.814307][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 616.822722][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 616.830696][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 616.838673][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 616.846661][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 616.854635][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 616.862628][T15195] Uninit was stored to memory at: [ 616.867662][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 616.873389][T15195] __msan_chain_origin+0x50/0x90 [ 616.878334][T15195] __get_compat_msghdr+0x5be/0x890 [ 616.883461][T15195] get_compat_msghdr+0x108/0x270 [ 616.888417][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 616.892927][T15195] __sys_recvmmsg+0x4ca/0x510 [ 616.897609][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 616.903677][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 616.911069][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 616.916294][T15195] do_fast_syscall_32+0x6b/0xd0 [ 616.921157][T15195] do_SYSENTER_32+0x73/0x90 [ 616.925665][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 616.931981][T15195] [ 616.934305][T15195] Uninit was stored to memory at: [ 616.939334][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 616.945056][T15195] __msan_chain_origin+0x50/0x90 [ 616.950000][T15195] __get_compat_msghdr+0x5be/0x890 [ 616.955115][T15195] get_compat_msghdr+0x108/0x270 [ 616.960059][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 616.964572][T15195] __sys_recvmmsg+0x4ca/0x510 [ 616.969254][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 616.975332][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 616.981491][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 616.986695][T15195] do_fast_syscall_32+0x6b/0xd0 [ 616.991550][T15195] do_SYSENTER_32+0x73/0x90 [ 616.996060][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 617.002383][T15195] [ 617.004706][T15195] Uninit was stored to memory at: [ 617.009737][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 617.015468][T15195] __msan_chain_origin+0x50/0x90 [ 617.020412][T15195] __get_compat_msghdr+0x5be/0x890 [ 617.025534][T15195] get_compat_msghdr+0x108/0x270 [ 617.030478][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 617.034989][T15195] __sys_recvmmsg+0x4ca/0x510 [ 617.039669][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 617.045739][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 617.051905][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 617.057112][T15195] do_fast_syscall_32+0x6b/0xd0 [ 617.061971][T15195] do_SYSENTER_32+0x73/0x90 [ 617.066481][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 617.072799][T15195] [ 617.075123][T15195] Uninit was stored to memory at: [ 617.080156][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 617.085878][T15195] __msan_chain_origin+0x50/0x90 [ 617.090822][T15195] __get_compat_msghdr+0x5be/0x890 [ 617.095939][T15195] get_compat_msghdr+0x108/0x270 [ 617.100882][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 617.105392][T15195] __sys_recvmmsg+0x4ca/0x510 [ 617.110074][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 617.116143][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 617.122301][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 617.127506][T15195] do_fast_syscall_32+0x6b/0xd0 [ 617.132362][T15195] do_SYSENTER_32+0x73/0x90 [ 617.136871][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 617.143189][T15195] [ 617.145514][T15195] Uninit was stored to memory at: [ 617.150541][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 617.156266][T15195] __msan_chain_origin+0x50/0x90 [ 617.161210][T15195] __get_compat_msghdr+0x5be/0x890 [ 617.166327][T15195] get_compat_msghdr+0x108/0x270 [ 617.171267][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 617.175784][T15195] __sys_recvmmsg+0x4ca/0x510 [ 617.180464][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 617.186536][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 617.192698][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 617.197902][T15195] do_fast_syscall_32+0x6b/0xd0 [ 617.202765][T15195] do_SYSENTER_32+0x73/0x90 [ 617.207279][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 617.213596][T15195] [ 617.215922][T15195] Uninit was stored to memory at: [ 617.220955][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 617.226678][T15195] __msan_chain_origin+0x50/0x90 [ 617.231622][T15195] __get_compat_msghdr+0x5be/0x890 [ 617.236742][T15195] get_compat_msghdr+0x108/0x270 [ 617.241693][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 617.246201][T15195] __sys_recvmmsg+0x4ca/0x510 [ 617.250882][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 617.256952][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 617.263110][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 617.268319][T15195] do_fast_syscall_32+0x6b/0xd0 [ 617.273176][T15195] do_SYSENTER_32+0x73/0x90 [ 617.277683][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 617.283999][T15195] [ 617.286323][T15195] Uninit was stored to memory at: [ 617.291354][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 617.297110][T15195] __msan_chain_origin+0x50/0x90 [ 617.302055][T15195] __get_compat_msghdr+0x5be/0x890 [ 617.307174][T15195] get_compat_msghdr+0x108/0x270 [ 617.312117][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 617.316624][T15195] __sys_recvmmsg+0x4ca/0x510 [ 617.321310][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 617.327383][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 617.333539][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 617.338744][T15195] do_fast_syscall_32+0x6b/0xd0 [ 617.343607][T15195] do_SYSENTER_32+0x73/0x90 [ 617.348116][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 617.354433][T15195] [ 617.356761][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 617.363442][T15195] do_recvmmsg+0xc5/0x1ee0 [ 617.367861][T15195] do_recvmmsg+0xc5/0x1ee0 [ 617.584257][T15195] not chained 380000 origins [ 617.588887][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 617.597557][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 617.607611][T15195] Call Trace: [ 617.610919][T15195] dump_stack+0x1df/0x240 [ 617.615271][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 617.621011][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 617.626137][T15195] ? release_sock+0x238/0x2a0 [ 617.630835][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 617.635628][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 617.640755][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 617.646313][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 617.652401][T15195] ? _copy_from_user+0x15b/0x260 [ 617.657367][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 617.662494][T15195] __msan_chain_origin+0x50/0x90 [ 617.667451][T15195] __get_compat_msghdr+0x5be/0x890 [ 617.672605][T15195] get_compat_msghdr+0x108/0x270 [ 617.677582][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 617.682119][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 617.687796][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 617.692930][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 617.698229][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 617.703014][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 617.707794][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 617.713006][T15195] __sys_recvmmsg+0x4ca/0x510 [ 617.717726][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 617.723850][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 617.730099][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 617.736266][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 617.741493][T15195] do_fast_syscall_32+0x6b/0xd0 [ 617.746363][T15195] do_SYSENTER_32+0x73/0x90 [ 617.750879][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 617.757242][T15195] RIP: 0023:0xf7f82549 [ 617.761304][T15195] Code: Bad RIP value. [ 617.765371][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 617.773787][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 617.781778][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 617.789763][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 617.797740][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 617.805722][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 617.813722][T15195] Uninit was stored to memory at: [ 617.818767][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 617.824512][T15195] __msan_chain_origin+0x50/0x90 [ 617.829461][T15195] __get_compat_msghdr+0x5be/0x890 [ 617.834581][T15195] get_compat_msghdr+0x108/0x270 [ 617.839528][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 617.844037][T15195] __sys_recvmmsg+0x4ca/0x510 [ 617.848722][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 617.854820][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 617.860980][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 617.866189][T15195] do_fast_syscall_32+0x6b/0xd0 [ 617.871048][T15195] do_SYSENTER_32+0x73/0x90 [ 617.875572][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 617.881891][T15195] [ 617.884222][T15195] Uninit was stored to memory at: [ 617.889257][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 617.894983][T15195] __msan_chain_origin+0x50/0x90 [ 617.899952][T15195] __get_compat_msghdr+0x5be/0x890 [ 617.905073][T15195] get_compat_msghdr+0x108/0x270 [ 617.910021][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 617.914532][T15195] __sys_recvmmsg+0x4ca/0x510 [ 617.919233][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 617.925414][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 617.931575][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 617.936791][T15195] do_fast_syscall_32+0x6b/0xd0 [ 617.941647][T15195] do_SYSENTER_32+0x73/0x90 [ 617.946157][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 617.952479][T15195] [ 617.954804][T15195] Uninit was stored to memory at: [ 617.959837][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 617.965561][T15195] __msan_chain_origin+0x50/0x90 [ 617.970506][T15195] __get_compat_msghdr+0x5be/0x890 [ 617.975628][T15195] get_compat_msghdr+0x108/0x270 [ 617.980597][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 617.985111][T15195] __sys_recvmmsg+0x4ca/0x510 [ 617.989797][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 617.995874][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 618.002042][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 618.007270][T15195] do_fast_syscall_32+0x6b/0xd0 [ 618.012151][T15195] do_SYSENTER_32+0x73/0x90 [ 618.016685][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 618.023003][T15195] [ 618.025330][T15195] Uninit was stored to memory at: [ 618.030362][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 618.036091][T15195] __msan_chain_origin+0x50/0x90 [ 618.041074][T15195] __get_compat_msghdr+0x5be/0x890 [ 618.046195][T15195] get_compat_msghdr+0x108/0x270 [ 618.051139][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 618.055651][T15195] __sys_recvmmsg+0x4ca/0x510 [ 618.060331][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 618.066406][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 618.072585][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 618.077794][T15195] do_fast_syscall_32+0x6b/0xd0 [ 618.082652][T15195] do_SYSENTER_32+0x73/0x90 [ 618.087160][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 618.093499][T15195] [ 618.095827][T15195] Uninit was stored to memory at: [ 618.100857][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 618.106585][T15195] __msan_chain_origin+0x50/0x90 [ 618.111533][T15195] __get_compat_msghdr+0x5be/0x890 [ 618.116649][T15195] get_compat_msghdr+0x108/0x270 [ 618.121592][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 618.126100][T15195] __sys_recvmmsg+0x4ca/0x510 [ 618.130791][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 618.137209][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 618.143372][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 618.148651][T15195] do_fast_syscall_32+0x6b/0xd0 [ 618.153508][T15195] do_SYSENTER_32+0x73/0x90 [ 618.158015][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 618.164331][T15195] [ 618.166651][T15195] Uninit was stored to memory at: [ 618.171682][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 618.177406][T15195] __msan_chain_origin+0x50/0x90 [ 618.182348][T15195] __get_compat_msghdr+0x5be/0x890 [ 618.187469][T15195] get_compat_msghdr+0x108/0x270 [ 618.192411][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 618.196924][T15195] __sys_recvmmsg+0x4ca/0x510 [ 618.201606][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 618.207675][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 618.213834][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 618.219038][T15195] do_fast_syscall_32+0x6b/0xd0 [ 618.223894][T15195] do_SYSENTER_32+0x73/0x90 [ 618.228410][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 618.234727][T15195] [ 618.237059][T15195] Uninit was stored to memory at: [ 618.242093][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 618.247817][T15195] __msan_chain_origin+0x50/0x90 [ 618.252767][T15195] __get_compat_msghdr+0x5be/0x890 [ 618.257884][T15195] get_compat_msghdr+0x108/0x270 [ 618.262827][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 618.267335][T15195] __sys_recvmmsg+0x4ca/0x510 [ 618.272016][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 618.278087][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 618.284247][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 618.289537][T15195] do_fast_syscall_32+0x6b/0xd0 [ 618.294394][T15195] do_SYSENTER_32+0x73/0x90 [ 618.298900][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 618.305217][T15195] [ 618.307543][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 618.314222][T15195] do_recvmmsg+0xc5/0x1ee0 [ 618.318643][T15195] do_recvmmsg+0xc5/0x1ee0 [ 618.549410][T15195] not chained 390000 origins [ 618.554045][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 618.562710][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 618.572775][T15195] Call Trace: [ 618.576081][T15195] dump_stack+0x1df/0x240 [ 618.580435][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 618.586175][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 618.591299][T15195] ? release_sock+0x238/0x2a0 [ 618.596000][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 618.600801][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 618.605923][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 618.611480][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 618.617563][T15195] ? _copy_from_user+0x15b/0x260 [ 618.622512][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 618.627634][T15195] __msan_chain_origin+0x50/0x90 [ 618.632589][T15195] __get_compat_msghdr+0x5be/0x890 [ 618.637742][T15195] get_compat_msghdr+0x108/0x270 [ 618.642717][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 618.647259][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 618.652948][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 618.658074][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 618.663379][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 618.668150][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 618.672924][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 618.678140][T15195] __sys_recvmmsg+0x4ca/0x510 [ 618.682846][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 618.688931][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 618.695183][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 618.701349][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 618.706574][T15195] do_fast_syscall_32+0x6b/0xd0 [ 618.711443][T15195] do_SYSENTER_32+0x73/0x90 [ 618.715965][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 618.722297][T15195] RIP: 0023:0xf7f82549 [ 618.726360][T15195] Code: Bad RIP value. [ 618.730425][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 618.738842][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 618.746817][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 618.754793][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 618.762775][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 618.770752][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 618.778754][T15195] Uninit was stored to memory at: [ 618.783796][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 618.789524][T15195] __msan_chain_origin+0x50/0x90 [ 618.794471][T15195] __get_compat_msghdr+0x5be/0x890 [ 618.799589][T15195] get_compat_msghdr+0x108/0x270 [ 618.804532][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 618.809046][T15195] __sys_recvmmsg+0x4ca/0x510 [ 618.813731][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 618.819810][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 618.825968][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 618.831176][T15195] do_fast_syscall_32+0x6b/0xd0 [ 618.836033][T15195] do_SYSENTER_32+0x73/0x90 [ 618.840540][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 618.846876][T15195] [ 618.849202][T15195] Uninit was stored to memory at: [ 618.854234][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 618.859961][T15195] __msan_chain_origin+0x50/0x90 [ 618.864905][T15195] __get_compat_msghdr+0x5be/0x890 [ 618.870025][T15195] get_compat_msghdr+0x108/0x270 [ 618.874968][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 618.879480][T15195] __sys_recvmmsg+0x4ca/0x510 [ 618.884169][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 618.890249][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 618.896411][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 618.901619][T15195] do_fast_syscall_32+0x6b/0xd0 [ 618.906507][T15195] do_SYSENTER_32+0x73/0x90 [ 618.911024][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 618.917346][T15195] [ 618.919690][T15195] Uninit was stored to memory at: [ 618.924724][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 618.930454][T15195] __msan_chain_origin+0x50/0x90 [ 618.935416][T15195] __get_compat_msghdr+0x5be/0x890 [ 618.940536][T15195] get_compat_msghdr+0x108/0x270 [ 618.945498][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 618.950008][T15195] __sys_recvmmsg+0x4ca/0x510 [ 618.954695][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 618.960778][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 618.966939][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 618.972169][T15195] do_fast_syscall_32+0x6b/0xd0 [ 618.977031][T15195] do_SYSENTER_32+0x73/0x90 [ 618.981541][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 618.987891][T15195] [ 618.990215][T15195] Uninit was stored to memory at: [ 618.995250][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 619.000972][T15195] __msan_chain_origin+0x50/0x90 [ 619.005919][T15195] __get_compat_msghdr+0x5be/0x890 [ 619.011041][T15195] get_compat_msghdr+0x108/0x270 [ 619.015988][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 619.020527][T15195] __sys_recvmmsg+0x4ca/0x510 [ 619.025211][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 619.031286][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 619.037445][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 619.042673][T15195] do_fast_syscall_32+0x6b/0xd0 [ 619.047530][T15195] do_SYSENTER_32+0x73/0x90 [ 619.052040][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 619.058362][T15195] [ 619.060688][T15195] Uninit was stored to memory at: [ 619.065808][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 619.071533][T15195] __msan_chain_origin+0x50/0x90 [ 619.076481][T15195] __get_compat_msghdr+0x5be/0x890 [ 619.081609][T15195] get_compat_msghdr+0x108/0x270 [ 619.086553][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 619.091075][T15195] __sys_recvmmsg+0x4ca/0x510 [ 619.095763][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 619.101852][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 619.108022][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 619.113229][T15195] do_fast_syscall_32+0x6b/0xd0 [ 619.118087][T15195] do_SYSENTER_32+0x73/0x90 [ 619.122599][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 619.128918][T15195] [ 619.131248][T15195] Uninit was stored to memory at: [ 619.136277][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 619.142002][T15195] __msan_chain_origin+0x50/0x90 [ 619.146944][T15195] __get_compat_msghdr+0x5be/0x890 [ 619.152062][T15195] get_compat_msghdr+0x108/0x270 [ 619.157006][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 619.161517][T15195] __sys_recvmmsg+0x4ca/0x510 [ 619.166198][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 619.172266][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 619.178428][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 619.183636][T15195] do_fast_syscall_32+0x6b/0xd0 [ 619.188493][T15195] do_SYSENTER_32+0x73/0x90 [ 619.193003][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 619.199345][T15195] [ 619.201671][T15195] Uninit was stored to memory at: [ 619.206707][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 619.212431][T15195] __msan_chain_origin+0x50/0x90 [ 619.217377][T15195] __get_compat_msghdr+0x5be/0x890 [ 619.222494][T15195] get_compat_msghdr+0x108/0x270 [ 619.227436][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 619.231944][T15195] __sys_recvmmsg+0x4ca/0x510 [ 619.236627][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 619.242703][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 619.248863][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 619.254067][T15195] do_fast_syscall_32+0x6b/0xd0 [ 619.258924][T15195] do_SYSENTER_32+0x73/0x90 [ 619.263523][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 619.269840][T15195] [ 619.272168][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 619.278847][T15195] do_recvmmsg+0xc5/0x1ee0 [ 619.283269][T15195] do_recvmmsg+0xc5/0x1ee0 [ 619.468031][T15195] not chained 400000 origins [ 619.472666][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 619.481336][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 619.491391][T15195] Call Trace: [ 619.494695][T15195] dump_stack+0x1df/0x240 [ 619.499056][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 619.504805][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 619.509929][T15195] ? release_sock+0x238/0x2a0 [ 619.514621][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 619.519410][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 619.524539][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 619.530188][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 619.536277][T15195] ? _copy_from_user+0x15b/0x260 [ 619.541258][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 619.546384][T15195] __msan_chain_origin+0x50/0x90 [ 619.551340][T15195] __get_compat_msghdr+0x5be/0x890 [ 619.556489][T15195] get_compat_msghdr+0x108/0x270 [ 619.561475][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 619.566010][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 619.571685][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 619.576817][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 619.582116][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 619.586894][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 619.591664][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 619.596876][T15195] __sys_recvmmsg+0x4ca/0x510 [ 619.601588][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 619.607672][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 619.613921][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 619.620104][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 619.625332][T15195] do_fast_syscall_32+0x6b/0xd0 [ 619.630198][T15195] do_SYSENTER_32+0x73/0x90 [ 619.634716][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 619.641053][T15195] RIP: 0023:0xf7f82549 [ 619.645116][T15195] Code: Bad RIP value. [ 619.649203][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 619.657619][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 619.665680][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 619.673652][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 619.681624][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 619.689599][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 619.697593][T15195] Uninit was stored to memory at: [ 619.702631][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 619.708375][T15195] __msan_chain_origin+0x50/0x90 [ 619.713325][T15195] __get_compat_msghdr+0x5be/0x890 [ 619.718444][T15195] get_compat_msghdr+0x108/0x270 [ 619.723391][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 619.727902][T15195] __sys_recvmmsg+0x4ca/0x510 [ 619.732592][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 619.738662][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 619.744823][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 619.750031][T15195] do_fast_syscall_32+0x6b/0xd0 [ 619.754888][T15195] do_SYSENTER_32+0x73/0x90 [ 619.759398][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 619.765713][T15195] [ 619.768042][T15195] Uninit was stored to memory at: [ 619.773072][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 619.778796][T15195] __msan_chain_origin+0x50/0x90 [ 619.783739][T15195] __get_compat_msghdr+0x5be/0x890 [ 619.788880][T15195] get_compat_msghdr+0x108/0x270 [ 619.793825][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 619.798332][T15195] __sys_recvmmsg+0x4ca/0x510 [ 619.803017][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 619.809088][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 619.815249][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 619.820453][T15195] do_fast_syscall_32+0x6b/0xd0 [ 619.825310][T15195] do_SYSENTER_32+0x73/0x90 [ 619.829819][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 619.836135][T15195] [ 619.838457][T15195] Uninit was stored to memory at: [ 619.843489][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 619.849212][T15195] __msan_chain_origin+0x50/0x90 [ 619.854157][T15195] __get_compat_msghdr+0x5be/0x890 [ 619.859274][T15195] get_compat_msghdr+0x108/0x270 [ 619.864215][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 619.868726][T15195] __sys_recvmmsg+0x4ca/0x510 [ 619.873412][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 619.879482][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 619.885645][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 619.890856][T15195] do_fast_syscall_32+0x6b/0xd0 [ 619.895717][T15195] do_SYSENTER_32+0x73/0x90 [ 619.900226][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 619.906542][T15195] [ 619.908867][T15195] Uninit was stored to memory at: [ 619.913904][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 619.919626][T15195] __msan_chain_origin+0x50/0x90 [ 619.924572][T15195] __get_compat_msghdr+0x5be/0x890 [ 619.929688][T15195] get_compat_msghdr+0x108/0x270 [ 619.934630][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 619.939138][T15195] __sys_recvmmsg+0x4ca/0x510 [ 619.943857][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 619.949927][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 619.956090][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 619.961299][T15195] do_fast_syscall_32+0x6b/0xd0 [ 619.966160][T15195] do_SYSENTER_32+0x73/0x90 [ 619.970669][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 619.976989][T15195] [ 619.979310][T15195] Uninit was stored to memory at: [ 619.984340][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 619.990065][T15195] __msan_chain_origin+0x50/0x90 [ 619.995007][T15195] __get_compat_msghdr+0x5be/0x890 [ 620.000122][T15195] get_compat_msghdr+0x108/0x270 [ 620.005066][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 620.009575][T15195] __sys_recvmmsg+0x4ca/0x510 [ 620.014256][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 620.020345][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 620.026504][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 620.031711][T15195] do_fast_syscall_32+0x6b/0xd0 [ 620.036565][T15195] do_SYSENTER_32+0x73/0x90 [ 620.041071][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 620.047388][T15195] [ 620.049717][T15195] Uninit was stored to memory at: [ 620.054748][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 620.060475][T15195] __msan_chain_origin+0x50/0x90 [ 620.065419][T15195] __get_compat_msghdr+0x5be/0x890 [ 620.070542][T15195] get_compat_msghdr+0x108/0x270 [ 620.075501][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 620.080028][T15195] __sys_recvmmsg+0x4ca/0x510 [ 620.084711][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 620.090780][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 620.096939][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 620.102166][T15195] do_fast_syscall_32+0x6b/0xd0 [ 620.107047][T15195] do_SYSENTER_32+0x73/0x90 [ 620.111590][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 620.117907][T15195] [ 620.120281][T15195] Uninit was stored to memory at: [ 620.125311][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 620.131037][T15195] __msan_chain_origin+0x50/0x90 [ 620.135982][T15195] __get_compat_msghdr+0x5be/0x890 [ 620.141101][T15195] get_compat_msghdr+0x108/0x270 [ 620.146043][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 620.150570][T15195] __sys_recvmmsg+0x4ca/0x510 [ 620.155251][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 620.161322][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 620.167479][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 620.172681][T15195] do_fast_syscall_32+0x6b/0xd0 [ 620.177540][T15195] do_SYSENTER_32+0x73/0x90 [ 620.182051][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 620.188370][T15195] [ 620.190698][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 620.197378][T15195] do_recvmmsg+0xc5/0x1ee0 [ 620.201797][T15195] do_recvmmsg+0xc5/0x1ee0 [ 620.407953][T15195] not chained 410000 origins [ 620.412598][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 620.421294][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 620.431350][T15195] Call Trace: [ 620.434654][T15195] dump_stack+0x1df/0x240 [ 620.439005][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 620.444747][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 620.449873][T15195] ? release_sock+0x238/0x2a0 [ 620.454573][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 620.459370][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 620.464493][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 620.470053][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 620.476144][T15195] ? _copy_from_user+0x15b/0x260 [ 620.481111][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 620.486233][T15195] __msan_chain_origin+0x50/0x90 [ 620.491189][T15195] __get_compat_msghdr+0x5be/0x890 [ 620.496344][T15195] get_compat_msghdr+0x108/0x270 [ 620.501312][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 620.505846][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 620.511513][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 620.516643][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 620.521959][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 620.526736][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 620.531507][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 620.536739][T15195] __sys_recvmmsg+0x4ca/0x510 [ 620.541465][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 620.547550][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 620.553806][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 620.559971][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 620.565198][T15195] do_fast_syscall_32+0x6b/0xd0 [ 620.570068][T15195] do_SYSENTER_32+0x73/0x90 [ 620.574589][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 620.580918][T15195] RIP: 0023:0xf7f82549 [ 620.584982][T15195] Code: Bad RIP value. [ 620.589051][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 620.597465][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 620.605444][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 620.613418][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 620.621399][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 620.629377][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 620.637375][T15195] Uninit was stored to memory at: [ 620.642409][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 620.648142][T15195] __msan_chain_origin+0x50/0x90 [ 620.653096][T15195] __get_compat_msghdr+0x5be/0x890 [ 620.658213][T15195] get_compat_msghdr+0x108/0x270 [ 620.663157][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 620.667667][T15195] __sys_recvmmsg+0x4ca/0x510 [ 620.672348][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 620.678418][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 620.684585][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 620.689789][T15195] do_fast_syscall_32+0x6b/0xd0 [ 620.694674][T15195] do_SYSENTER_32+0x73/0x90 [ 620.699185][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 620.705506][T15195] [ 620.707834][T15195] Uninit was stored to memory at: [ 620.712867][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 620.718593][T15195] __msan_chain_origin+0x50/0x90 [ 620.723545][T15195] __get_compat_msghdr+0x5be/0x890 [ 620.728664][T15195] get_compat_msghdr+0x108/0x270 [ 620.733611][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 620.738125][T15195] __sys_recvmmsg+0x4ca/0x510 [ 620.742815][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 620.748914][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 620.755081][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 620.760287][T15195] do_fast_syscall_32+0x6b/0xd0 [ 620.765146][T15195] do_SYSENTER_32+0x73/0x90 [ 620.769652][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 620.775972][T15195] [ 620.778296][T15195] Uninit was stored to memory at: [ 620.783328][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 620.789051][T15195] __msan_chain_origin+0x50/0x90 [ 620.793994][T15195] __get_compat_msghdr+0x5be/0x890 [ 620.799111][T15195] get_compat_msghdr+0x108/0x270 [ 620.804058][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 620.808564][T15195] __sys_recvmmsg+0x4ca/0x510 [ 620.813250][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 620.819320][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 620.825483][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 620.830686][T15195] do_fast_syscall_32+0x6b/0xd0 [ 620.835545][T15195] do_SYSENTER_32+0x73/0x90 [ 620.840051][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 620.846367][T15195] [ 620.848689][T15195] Uninit was stored to memory at: [ 620.853719][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 620.859448][T15195] __msan_chain_origin+0x50/0x90 [ 620.864392][T15195] __get_compat_msghdr+0x5be/0x890 [ 620.869511][T15195] get_compat_msghdr+0x108/0x270 [ 620.874453][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 620.878960][T15195] __sys_recvmmsg+0x4ca/0x510 [ 620.883645][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 620.889719][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 620.895878][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 620.901088][T15195] do_fast_syscall_32+0x6b/0xd0 [ 620.905961][T15195] do_SYSENTER_32+0x73/0x90 [ 620.910478][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 620.916797][T15195] [ 620.919121][T15195] Uninit was stored to memory at: [ 620.924155][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 620.929877][T15195] __msan_chain_origin+0x50/0x90 [ 620.934822][T15195] __get_compat_msghdr+0x5be/0x890 [ 620.939939][T15195] get_compat_msghdr+0x108/0x270 [ 620.944885][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 620.949411][T15195] __sys_recvmmsg+0x4ca/0x510 [ 620.954098][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 620.960168][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 620.966326][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 620.971530][T15195] do_fast_syscall_32+0x6b/0xd0 [ 620.976384][T15195] do_SYSENTER_32+0x73/0x90 [ 620.980892][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 620.987212][T15195] [ 620.989549][T15195] Uninit was stored to memory at: [ 620.994580][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 621.000305][T15195] __msan_chain_origin+0x50/0x90 [ 621.005252][T15195] __get_compat_msghdr+0x5be/0x890 [ 621.010376][T15195] get_compat_msghdr+0x108/0x270 [ 621.015319][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 621.019831][T15195] __sys_recvmmsg+0x4ca/0x510 [ 621.024511][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 621.030594][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 621.036751][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 621.041954][T15195] do_fast_syscall_32+0x6b/0xd0 [ 621.046812][T15195] do_SYSENTER_32+0x73/0x90 [ 621.051320][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 621.057635][T15195] [ 621.059957][T15195] Uninit was stored to memory at: [ 621.064989][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 621.070713][T15195] __msan_chain_origin+0x50/0x90 [ 621.075662][T15195] __get_compat_msghdr+0x5be/0x890 [ 621.080778][T15195] get_compat_msghdr+0x108/0x270 [ 621.085743][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 621.090253][T15195] __sys_recvmmsg+0x4ca/0x510 [ 621.094937][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 621.101025][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 621.107184][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 621.112389][T15195] do_fast_syscall_32+0x6b/0xd0 [ 621.117248][T15195] do_SYSENTER_32+0x73/0x90 [ 621.121756][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 621.128074][T15195] [ 621.130399][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 621.137097][T15195] do_recvmmsg+0xc5/0x1ee0 [ 621.141517][T15195] do_recvmmsg+0xc5/0x1ee0 [ 621.340716][T15195] not chained 420000 origins [ 621.345352][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 621.354019][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 621.364075][T15195] Call Trace: [ 621.367380][T15195] dump_stack+0x1df/0x240 [ 621.371734][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 621.377479][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 621.382606][T15195] ? release_sock+0x238/0x2a0 [ 621.387305][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 621.392099][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 621.397222][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 621.402780][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 621.408872][T15195] ? _copy_from_user+0x15b/0x260 [ 621.413818][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 621.418950][T15195] __msan_chain_origin+0x50/0x90 [ 621.423907][T15195] __get_compat_msghdr+0x5be/0x890 [ 621.429060][T15195] get_compat_msghdr+0x108/0x270 [ 621.434037][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 621.438571][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 621.444243][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 621.449372][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 621.454673][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 621.459443][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 621.464222][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 621.469433][T15195] __sys_recvmmsg+0x4ca/0x510 [ 621.474167][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 621.480269][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 621.486523][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 621.492709][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 621.497934][T15195] do_fast_syscall_32+0x6b/0xd0 [ 621.502818][T15195] do_SYSENTER_32+0x73/0x90 [ 621.507334][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 621.513661][T15195] RIP: 0023:0xf7f82549 [ 621.517741][T15195] Code: Bad RIP value. [ 621.521808][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 621.530226][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 621.538199][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 621.546173][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 621.554149][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 621.562123][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 621.570121][T15195] Uninit was stored to memory at: [ 621.575154][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 621.580877][T15195] __msan_chain_origin+0x50/0x90 [ 621.585821][T15195] __get_compat_msghdr+0x5be/0x890 [ 621.590946][T15195] get_compat_msghdr+0x108/0x270 [ 621.595889][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 621.600397][T15195] __sys_recvmmsg+0x4ca/0x510 [ 621.605083][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 621.611156][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 621.617318][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 621.622524][T15195] do_fast_syscall_32+0x6b/0xd0 [ 621.627401][T15195] do_SYSENTER_32+0x73/0x90 [ 621.631912][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 621.638231][T15195] [ 621.640557][T15195] Uninit was stored to memory at: [ 621.645592][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 621.651320][T15195] __msan_chain_origin+0x50/0x90 [ 621.656266][T15195] __get_compat_msghdr+0x5be/0x890 [ 621.661382][T15195] get_compat_msghdr+0x108/0x270 [ 621.666326][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 621.670834][T15195] __sys_recvmmsg+0x4ca/0x510 [ 621.675515][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 621.681584][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 621.687744][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 621.692950][T15195] do_fast_syscall_32+0x6b/0xd0 [ 621.697814][T15195] do_SYSENTER_32+0x73/0x90 [ 621.702348][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 621.708667][T15195] [ 621.710990][T15195] Uninit was stored to memory at: [ 621.716024][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 621.721751][T15195] __msan_chain_origin+0x50/0x90 [ 621.726699][T15195] __get_compat_msghdr+0x5be/0x890 [ 621.731818][T15195] get_compat_msghdr+0x108/0x270 [ 621.736772][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 621.741283][T15195] __sys_recvmmsg+0x4ca/0x510 [ 621.745965][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 621.752040][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 621.758199][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 621.763407][T15195] do_fast_syscall_32+0x6b/0xd0 [ 621.768265][T15195] do_SYSENTER_32+0x73/0x90 [ 621.772775][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 621.779093][T15195] [ 621.781419][T15195] Uninit was stored to memory at: [ 621.786449][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 621.792182][T15195] __msan_chain_origin+0x50/0x90 [ 621.797129][T15195] __get_compat_msghdr+0x5be/0x890 [ 621.802250][T15195] get_compat_msghdr+0x108/0x270 [ 621.807196][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 621.811706][T15195] __sys_recvmmsg+0x4ca/0x510 [ 621.816389][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 621.822461][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 621.828637][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 621.833851][T15195] do_fast_syscall_32+0x6b/0xd0 [ 621.838710][T15195] do_SYSENTER_32+0x73/0x90 [ 621.843222][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 621.849565][T15195] [ 621.851890][T15195] Uninit was stored to memory at: [ 621.856924][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 621.862669][T15195] __msan_chain_origin+0x50/0x90 [ 621.867619][T15195] __get_compat_msghdr+0x5be/0x890 [ 621.872740][T15195] get_compat_msghdr+0x108/0x270 [ 621.877684][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 621.882213][T15195] __sys_recvmmsg+0x4ca/0x510 [ 621.886912][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 621.892990][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 621.899150][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 621.904361][T15195] do_fast_syscall_32+0x6b/0xd0 [ 621.909217][T15195] do_SYSENTER_32+0x73/0x90 [ 621.913729][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 621.920048][T15195] [ 621.922375][T15195] Uninit was stored to memory at: [ 621.927405][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 621.933133][T15195] __msan_chain_origin+0x50/0x90 [ 621.938081][T15195] __get_compat_msghdr+0x5be/0x890 [ 621.943201][T15195] get_compat_msghdr+0x108/0x270 [ 621.948151][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 621.952662][T15195] __sys_recvmmsg+0x4ca/0x510 [ 621.957345][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 621.963451][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 621.969612][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 621.974820][T15195] do_fast_syscall_32+0x6b/0xd0 [ 621.979688][T15195] do_SYSENTER_32+0x73/0x90 [ 621.984201][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 621.990521][T15195] [ 621.992848][T15195] Uninit was stored to memory at: [ 621.997881][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 622.003611][T15195] __msan_chain_origin+0x50/0x90 [ 622.008600][T15195] __get_compat_msghdr+0x5be/0x890 [ 622.013720][T15195] get_compat_msghdr+0x108/0x270 [ 622.018664][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 622.023173][T15195] __sys_recvmmsg+0x4ca/0x510 [ 622.027854][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 622.033930][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 622.040093][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 622.045302][T15195] do_fast_syscall_32+0x6b/0xd0 [ 622.050162][T15195] do_SYSENTER_32+0x73/0x90 [ 622.054669][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 622.060989][T15195] [ 622.063320][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 622.070006][T15195] do_recvmmsg+0xc5/0x1ee0 [ 622.074426][T15195] do_recvmmsg+0xc5/0x1ee0 [ 622.279325][T15195] not chained 430000 origins [ 622.283963][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 622.292631][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 622.302685][T15195] Call Trace: [ 622.305993][T15195] dump_stack+0x1df/0x240 [ 622.310349][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 622.316093][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 622.321219][T15195] ? release_sock+0x238/0x2a0 [ 622.325927][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 622.330727][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 622.335852][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 622.341415][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 622.347505][T15195] ? _copy_from_user+0x15b/0x260 [ 622.352453][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 622.357578][T15195] __msan_chain_origin+0x50/0x90 [ 622.362537][T15195] __get_compat_msghdr+0x5be/0x890 [ 622.367690][T15195] get_compat_msghdr+0x108/0x270 [ 622.372656][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 622.377197][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 622.382871][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 622.388033][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 622.393337][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 622.398110][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 622.402883][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 622.408123][T15195] __sys_recvmmsg+0x4ca/0x510 [ 622.412834][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 622.418951][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 622.425210][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 622.431375][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 622.436603][T15195] do_fast_syscall_32+0x6b/0xd0 [ 622.441490][T15195] do_SYSENTER_32+0x73/0x90 [ 622.446009][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 622.452342][T15195] RIP: 0023:0xf7f82549 [ 622.456405][T15195] Code: Bad RIP value. [ 622.460472][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 622.468902][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 622.476882][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 622.484863][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 622.492838][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 622.500816][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 622.508815][T15195] Uninit was stored to memory at: [ 622.513853][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 622.519579][T15195] __msan_chain_origin+0x50/0x90 [ 622.524527][T15195] __get_compat_msghdr+0x5be/0x890 [ 622.529647][T15195] get_compat_msghdr+0x108/0x270 [ 622.534594][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 622.539105][T15195] __sys_recvmmsg+0x4ca/0x510 [ 622.543787][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 622.549862][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 622.556025][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 622.561233][T15195] do_fast_syscall_32+0x6b/0xd0 [ 622.566090][T15195] do_SYSENTER_32+0x73/0x90 [ 622.570599][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 622.576922][T15195] [ 622.579250][T15195] Uninit was stored to memory at: [ 622.584283][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 622.590008][T15195] __msan_chain_origin+0x50/0x90 [ 622.594956][T15195] __get_compat_msghdr+0x5be/0x890 [ 622.600078][T15195] get_compat_msghdr+0x108/0x270 [ 622.605020][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 622.609531][T15195] __sys_recvmmsg+0x4ca/0x510 [ 622.614214][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 622.620285][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 622.626447][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 622.631651][T15195] do_fast_syscall_32+0x6b/0xd0 [ 622.636509][T15195] do_SYSENTER_32+0x73/0x90 [ 622.641040][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 622.647410][T15195] [ 622.649825][T15195] Uninit was stored to memory at: [ 622.654859][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 622.660584][T15195] __msan_chain_origin+0x50/0x90 [ 622.665529][T15195] __get_compat_msghdr+0x5be/0x890 [ 622.670648][T15195] get_compat_msghdr+0x108/0x270 [ 622.675596][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 622.680128][T15195] __sys_recvmmsg+0x4ca/0x510 [ 622.684814][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 622.690909][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 622.697071][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 622.702278][T15195] do_fast_syscall_32+0x6b/0xd0 [ 622.707135][T15195] do_SYSENTER_32+0x73/0x90 [ 622.711648][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 622.717970][T15195] [ 622.720294][T15195] Uninit was stored to memory at: [ 622.725326][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 622.731058][T15195] __msan_chain_origin+0x50/0x90 [ 622.736007][T15195] __get_compat_msghdr+0x5be/0x890 [ 622.741126][T15195] get_compat_msghdr+0x108/0x270 [ 622.746071][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 622.750583][T15195] __sys_recvmmsg+0x4ca/0x510 [ 622.755273][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 622.761347][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 622.767516][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 622.772753][T15195] do_fast_syscall_32+0x6b/0xd0 [ 622.777612][T15195] do_SYSENTER_32+0x73/0x90 [ 622.782120][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 622.788436][T15195] [ 622.790759][T15195] Uninit was stored to memory at: [ 622.795792][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 622.801522][T15195] __msan_chain_origin+0x50/0x90 [ 622.806467][T15195] __get_compat_msghdr+0x5be/0x890 [ 622.811586][T15195] get_compat_msghdr+0x108/0x270 [ 622.816556][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 622.821065][T15195] __sys_recvmmsg+0x4ca/0x510 [ 622.825752][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 622.831830][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 622.837990][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 622.843198][T15195] do_fast_syscall_32+0x6b/0xd0 [ 622.848056][T15195] do_SYSENTER_32+0x73/0x90 [ 622.852563][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 622.858881][T15195] [ 622.861229][T15195] Uninit was stored to memory at: [ 622.866266][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 622.871990][T15195] __msan_chain_origin+0x50/0x90 [ 622.876935][T15195] __get_compat_msghdr+0x5be/0x890 [ 622.882056][T15195] get_compat_msghdr+0x108/0x270 [ 622.886998][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 622.891506][T15195] __sys_recvmmsg+0x4ca/0x510 [ 622.896192][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 622.902264][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 622.908424][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 622.913632][T15195] do_fast_syscall_32+0x6b/0xd0 [ 622.918486][T15195] do_SYSENTER_32+0x73/0x90 [ 622.922996][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 622.929312][T15195] [ 622.931639][T15195] Uninit was stored to memory at: [ 622.936668][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 622.942390][T15195] __msan_chain_origin+0x50/0x90 [ 622.947335][T15195] __get_compat_msghdr+0x5be/0x890 [ 622.952452][T15195] get_compat_msghdr+0x108/0x270 [ 622.957416][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 622.961923][T15195] __sys_recvmmsg+0x4ca/0x510 [ 622.966606][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 622.972674][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 622.978830][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 622.984038][T15195] do_fast_syscall_32+0x6b/0xd0 [ 622.988894][T15195] do_SYSENTER_32+0x73/0x90 [ 622.993401][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 622.999716][T15195] [ 623.002042][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 623.008718][T15195] do_recvmmsg+0xc5/0x1ee0 [ 623.013138][T15195] do_recvmmsg+0xc5/0x1ee0 [ 623.245362][T15195] not chained 440000 origins [ 623.250000][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 623.258667][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 623.268719][T15195] Call Trace: [ 623.272024][T15195] dump_stack+0x1df/0x240 [ 623.276375][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 623.282135][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 623.287261][T15195] ? release_sock+0x238/0x2a0 [ 623.291958][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 623.296757][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 623.301883][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 623.307444][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 623.313532][T15195] ? _copy_from_user+0x15b/0x260 [ 623.318476][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 623.323601][T15195] __msan_chain_origin+0x50/0x90 [ 623.328558][T15195] __get_compat_msghdr+0x5be/0x890 [ 623.333711][T15195] get_compat_msghdr+0x108/0x270 [ 623.338677][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 623.343216][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 623.348894][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 623.354028][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 623.359329][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 623.364102][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 623.368883][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 623.374100][T15195] __sys_recvmmsg+0x4ca/0x510 [ 623.378810][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 623.384900][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 623.391154][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 623.397319][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 623.402541][T15195] do_fast_syscall_32+0x6b/0xd0 [ 623.407407][T15195] do_SYSENTER_32+0x73/0x90 [ 623.411922][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 623.418276][T15195] RIP: 0023:0xf7f82549 [ 623.422342][T15195] Code: Bad RIP value. [ 623.426412][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 623.434827][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 623.442807][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 623.450804][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 623.458781][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 623.466760][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 623.474751][T15195] Uninit was stored to memory at: [ 623.479783][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 623.485506][T15195] __msan_chain_origin+0x50/0x90 [ 623.490453][T15195] __get_compat_msghdr+0x5be/0x890 [ 623.495573][T15195] get_compat_msghdr+0x108/0x270 [ 623.500518][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 623.505028][T15195] __sys_recvmmsg+0x4ca/0x510 [ 623.509712][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 623.515782][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 623.521943][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 623.527160][T15195] do_fast_syscall_32+0x6b/0xd0 [ 623.532035][T15195] do_SYSENTER_32+0x73/0x90 [ 623.536542][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 623.542868][T15195] [ 623.545196][T15195] Uninit was stored to memory at: [ 623.550226][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 623.555949][T15195] __msan_chain_origin+0x50/0x90 [ 623.560893][T15195] __get_compat_msghdr+0x5be/0x890 [ 623.566008][T15195] get_compat_msghdr+0x108/0x270 [ 623.570950][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 623.575460][T15195] __sys_recvmmsg+0x4ca/0x510 [ 623.580138][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 623.586210][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 623.592370][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 623.597576][T15195] do_fast_syscall_32+0x6b/0xd0 [ 623.602434][T15195] do_SYSENTER_32+0x73/0x90 [ 623.606943][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 623.613261][T15195] [ 623.615582][T15195] Uninit was stored to memory at: [ 623.620613][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 623.626338][T15195] __msan_chain_origin+0x50/0x90 [ 623.631282][T15195] __get_compat_msghdr+0x5be/0x890 [ 623.636400][T15195] get_compat_msghdr+0x108/0x270 [ 623.641341][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 623.645855][T15195] __sys_recvmmsg+0x4ca/0x510 [ 623.650539][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 623.656610][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 623.662769][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 623.667974][T15195] do_fast_syscall_32+0x6b/0xd0 [ 623.672851][T15195] do_SYSENTER_32+0x73/0x90 [ 623.677364][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 623.683680][T15195] [ 623.686005][T15195] Uninit was stored to memory at: [ 623.691054][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 623.696776][T15195] __msan_chain_origin+0x50/0x90 [ 623.701723][T15195] __get_compat_msghdr+0x5be/0x890 [ 623.706843][T15195] get_compat_msghdr+0x108/0x270 [ 623.711786][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 623.716297][T15195] __sys_recvmmsg+0x4ca/0x510 [ 623.720976][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 623.727050][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 623.733216][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 623.738435][T15195] do_fast_syscall_32+0x6b/0xd0 [ 623.743297][T15195] do_SYSENTER_32+0x73/0x90 [ 623.747804][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 623.754125][T15195] [ 623.756453][T15195] Uninit was stored to memory at: [ 623.761486][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 623.767211][T15195] __msan_chain_origin+0x50/0x90 [ 623.772167][T15195] __get_compat_msghdr+0x5be/0x890 [ 623.777284][T15195] get_compat_msghdr+0x108/0x270 [ 623.782229][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 623.786746][T15195] __sys_recvmmsg+0x4ca/0x510 [ 623.791428][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 623.797499][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 623.803664][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 623.808878][T15195] do_fast_syscall_32+0x6b/0xd0 [ 623.813739][T15195] do_SYSENTER_32+0x73/0x90 [ 623.818258][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 623.824577][T15195] [ 623.826903][T15195] Uninit was stored to memory at: [ 623.831942][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 623.837669][T15195] __msan_chain_origin+0x50/0x90 [ 623.842636][T15195] __get_compat_msghdr+0x5be/0x890 [ 623.847755][T15195] get_compat_msghdr+0x108/0x270 [ 623.852702][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 623.857212][T15195] __sys_recvmmsg+0x4ca/0x510 [ 623.861900][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 623.867979][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 623.874155][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 623.879364][T15195] do_fast_syscall_32+0x6b/0xd0 [ 623.884228][T15195] do_SYSENTER_32+0x73/0x90 [ 623.888749][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 623.895070][T15195] [ 623.897396][T15195] Uninit was stored to memory at: [ 623.902426][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 623.908151][T15195] __msan_chain_origin+0x50/0x90 [ 623.913101][T15195] __get_compat_msghdr+0x5be/0x890 [ 623.918218][T15195] get_compat_msghdr+0x108/0x270 [ 623.923167][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 623.927694][T15195] __sys_recvmmsg+0x4ca/0x510 [ 623.932378][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 623.938447][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 623.944606][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 623.949811][T15195] do_fast_syscall_32+0x6b/0xd0 [ 623.954667][T15195] do_SYSENTER_32+0x73/0x90 [ 623.959180][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 623.965498][T15195] [ 623.967827][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 623.974504][T15195] do_recvmmsg+0xc5/0x1ee0 [ 623.978925][T15195] do_recvmmsg+0xc5/0x1ee0 [ 624.195422][T15195] not chained 450000 origins [ 624.200078][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 624.208748][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 624.218805][T15195] Call Trace: [ 624.222116][T15195] dump_stack+0x1df/0x240 [ 624.226505][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 624.232250][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 624.237382][T15195] ? release_sock+0x238/0x2a0 [ 624.242084][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 624.246881][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 624.252006][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 624.257567][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 624.263657][T15195] ? _copy_from_user+0x15b/0x260 [ 624.268605][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 624.273730][T15195] __msan_chain_origin+0x50/0x90 [ 624.278704][T15195] __get_compat_msghdr+0x5be/0x890 [ 624.283858][T15195] get_compat_msghdr+0x108/0x270 [ 624.288828][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 624.293365][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 624.299046][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 624.304179][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 624.309482][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 624.314257][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 624.319031][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 624.324243][T15195] __sys_recvmmsg+0x4ca/0x510 [ 624.328950][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 624.335039][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 624.341293][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 624.347468][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 624.352694][T15195] do_fast_syscall_32+0x6b/0xd0 [ 624.357558][T15195] do_SYSENTER_32+0x73/0x90 [ 624.362079][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 624.368407][T15195] RIP: 0023:0xf7f82549 [ 624.372476][T15195] Code: Bad RIP value. [ 624.376544][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 624.384965][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 624.392941][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 624.400933][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 624.408908][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 624.416880][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 624.424875][T15195] Uninit was stored to memory at: [ 624.429912][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 624.435636][T15195] __msan_chain_origin+0x50/0x90 [ 624.440584][T15195] __get_compat_msghdr+0x5be/0x890 [ 624.445703][T15195] get_compat_msghdr+0x108/0x270 [ 624.450647][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 624.455156][T15195] __sys_recvmmsg+0x4ca/0x510 [ 624.459842][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 624.465911][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 624.472069][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 624.477276][T15195] do_fast_syscall_32+0x6b/0xd0 [ 624.482131][T15195] do_SYSENTER_32+0x73/0x90 [ 624.486643][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 624.492961][T15195] [ 624.495286][T15195] Uninit was stored to memory at: [ 624.500315][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 624.506039][T15195] __msan_chain_origin+0x50/0x90 [ 624.510988][T15195] __get_compat_msghdr+0x5be/0x890 [ 624.516106][T15195] get_compat_msghdr+0x108/0x270 [ 624.521056][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 624.525588][T15195] __sys_recvmmsg+0x4ca/0x510 [ 624.530269][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 624.536340][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 624.542519][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 624.547724][T15195] do_fast_syscall_32+0x6b/0xd0 [ 624.552583][T15195] do_SYSENTER_32+0x73/0x90 [ 624.557092][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 624.563409][T15195] [ 624.565741][T15195] Uninit was stored to memory at: [ 624.570771][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 624.576496][T15195] __msan_chain_origin+0x50/0x90 [ 624.581447][T15195] __get_compat_msghdr+0x5be/0x890 [ 624.586569][T15195] get_compat_msghdr+0x108/0x270 [ 624.591540][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 624.596052][T15195] __sys_recvmmsg+0x4ca/0x510 [ 624.600736][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 624.606809][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 624.612970][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 624.618204][T15195] do_fast_syscall_32+0x6b/0xd0 [ 624.623065][T15195] do_SYSENTER_32+0x73/0x90 [ 624.627593][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 624.633915][T15195] [ 624.636242][T15195] Uninit was stored to memory at: [ 624.641294][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 624.647018][T15195] __msan_chain_origin+0x50/0x90 [ 624.651999][T15195] __get_compat_msghdr+0x5be/0x890 [ 624.657117][T15195] get_compat_msghdr+0x108/0x270 [ 624.662063][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 624.666571][T15195] __sys_recvmmsg+0x4ca/0x510 [ 624.671255][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 624.677328][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 624.683490][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 624.688696][T15195] do_fast_syscall_32+0x6b/0xd0 [ 624.693554][T15195] do_SYSENTER_32+0x73/0x90 [ 624.698062][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 624.704379][T15195] [ 624.706713][T15195] Uninit was stored to memory at: [ 624.711753][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 624.717485][T15195] __msan_chain_origin+0x50/0x90 [ 624.722433][T15195] __get_compat_msghdr+0x5be/0x890 [ 624.727554][T15195] get_compat_msghdr+0x108/0x270 [ 624.732504][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 624.737015][T15195] __sys_recvmmsg+0x4ca/0x510 [ 624.741698][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 624.747773][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 624.753940][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 624.759155][T15195] do_fast_syscall_32+0x6b/0xd0 [ 624.764013][T15195] do_SYSENTER_32+0x73/0x90 [ 624.768524][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 624.774844][T15195] [ 624.777169][T15195] Uninit was stored to memory at: [ 624.782201][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 624.787927][T15195] __msan_chain_origin+0x50/0x90 [ 624.792896][T15195] __get_compat_msghdr+0x5be/0x890 [ 624.798014][T15195] get_compat_msghdr+0x108/0x270 [ 624.802963][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 624.807494][T15195] __sys_recvmmsg+0x4ca/0x510 [ 624.812181][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 624.818252][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 624.824410][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 624.829619][T15195] do_fast_syscall_32+0x6b/0xd0 [ 624.834477][T15195] do_SYSENTER_32+0x73/0x90 [ 624.838988][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 624.845307][T15195] [ 624.847632][T15195] Uninit was stored to memory at: [ 624.852664][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 624.858389][T15195] __msan_chain_origin+0x50/0x90 [ 624.863336][T15195] __get_compat_msghdr+0x5be/0x890 [ 624.868452][T15195] get_compat_msghdr+0x108/0x270 [ 624.873397][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 624.877903][T15195] __sys_recvmmsg+0x4ca/0x510 [ 624.882590][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 624.888673][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 624.894837][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 624.900046][T15195] do_fast_syscall_32+0x6b/0xd0 [ 624.904902][T15195] do_SYSENTER_32+0x73/0x90 [ 624.909422][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 624.915765][T15195] [ 624.918095][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 624.924778][T15195] do_recvmmsg+0xc5/0x1ee0 [ 624.929198][T15195] do_recvmmsg+0xc5/0x1ee0 [ 625.142741][T15195] not chained 460000 origins [ 625.147379][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 625.156047][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 625.166102][T15195] Call Trace: [ 625.169429][T15195] dump_stack+0x1df/0x240 [ 625.173786][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 625.179530][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 625.184655][T15195] ? release_sock+0x238/0x2a0 [ 625.189352][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 625.194148][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 625.199273][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 625.204836][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 625.210925][T15195] ? _copy_from_user+0x15b/0x260 [ 625.215871][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 625.220995][T15195] __msan_chain_origin+0x50/0x90 [ 625.225950][T15195] __get_compat_msghdr+0x5be/0x890 [ 625.231104][T15195] get_compat_msghdr+0x108/0x270 [ 625.236073][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 625.240610][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 625.246283][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 625.251415][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 625.256715][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 625.261494][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 625.266266][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 625.271483][T15195] __sys_recvmmsg+0x4ca/0x510 [ 625.276194][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 625.282280][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 625.288536][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 625.294702][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 625.299926][T15195] do_fast_syscall_32+0x6b/0xd0 [ 625.304797][T15195] do_SYSENTER_32+0x73/0x90 [ 625.309320][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 625.315674][T15195] RIP: 0023:0xf7f82549 [ 625.319739][T15195] Code: Bad RIP value. [ 625.323820][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 625.332233][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 625.340205][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 625.348181][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 625.356154][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 625.364126][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 625.372120][T15195] Uninit was stored to memory at: [ 625.377155][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 625.382881][T15195] __msan_chain_origin+0x50/0x90 [ 625.387823][T15195] __get_compat_msghdr+0x5be/0x890 [ 625.392959][T15195] get_compat_msghdr+0x108/0x270 [ 625.397903][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 625.402415][T15195] __sys_recvmmsg+0x4ca/0x510 [ 625.407096][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 625.413166][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 625.419331][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 625.424536][T15195] do_fast_syscall_32+0x6b/0xd0 [ 625.429390][T15195] do_SYSENTER_32+0x73/0x90 [ 625.433901][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 625.440221][T15195] [ 625.442564][T15195] Uninit was stored to memory at: [ 625.447596][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 625.453320][T15195] __msan_chain_origin+0x50/0x90 [ 625.458267][T15195] __get_compat_msghdr+0x5be/0x890 [ 625.463389][T15195] get_compat_msghdr+0x108/0x270 [ 625.468335][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 625.472861][T15195] __sys_recvmmsg+0x4ca/0x510 [ 625.477543][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 625.483619][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 625.489783][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 625.494990][T15195] do_fast_syscall_32+0x6b/0xd0 [ 625.499846][T15195] do_SYSENTER_32+0x73/0x90 [ 625.504357][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 625.510696][T15195] [ 625.513022][T15195] Uninit was stored to memory at: [ 625.518052][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 625.523796][T15195] __msan_chain_origin+0x50/0x90 [ 625.528740][T15195] __get_compat_msghdr+0x5be/0x890 [ 625.533863][T15195] get_compat_msghdr+0x108/0x270 [ 625.538809][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 625.543319][T15195] __sys_recvmmsg+0x4ca/0x510 [ 625.548009][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 625.554083][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 625.560241][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 625.565447][T15195] do_fast_syscall_32+0x6b/0xd0 [ 625.570308][T15195] do_SYSENTER_32+0x73/0x90 [ 625.574821][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 625.581138][T15195] [ 625.583461][T15195] Uninit was stored to memory at: [ 625.588492][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 625.594217][T15195] __msan_chain_origin+0x50/0x90 [ 625.599163][T15195] __get_compat_msghdr+0x5be/0x890 [ 625.604366][T15195] get_compat_msghdr+0x108/0x270 [ 625.609311][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 625.613835][T15195] __sys_recvmmsg+0x4ca/0x510 [ 625.618517][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 625.624590][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 625.630753][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 625.635961][T15195] do_fast_syscall_32+0x6b/0xd0 [ 625.640827][T15195] do_SYSENTER_32+0x73/0x90 [ 625.645361][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 625.651679][T15195] [ 625.654006][T15195] Uninit was stored to memory at: [ 625.659075][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 625.664802][T15195] __msan_chain_origin+0x50/0x90 [ 625.669751][T15195] __get_compat_msghdr+0x5be/0x890 [ 625.674869][T15195] get_compat_msghdr+0x108/0x270 [ 625.679815][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 625.684322][T15195] __sys_recvmmsg+0x4ca/0x510 [ 625.689004][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 625.695074][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 625.701233][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 625.706437][T15195] do_fast_syscall_32+0x6b/0xd0 [ 625.711296][T15195] do_SYSENTER_32+0x73/0x90 [ 625.715804][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 625.722124][T15195] [ 625.724448][T15195] Uninit was stored to memory at: [ 625.729476][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 625.735200][T15195] __msan_chain_origin+0x50/0x90 [ 625.740146][T15195] __get_compat_msghdr+0x5be/0x890 [ 625.745263][T15195] get_compat_msghdr+0x108/0x270 [ 625.750208][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 625.754718][T15195] __sys_recvmmsg+0x4ca/0x510 [ 625.759405][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 625.765475][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 625.771633][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 625.776841][T15195] do_fast_syscall_32+0x6b/0xd0 [ 625.781700][T15195] do_SYSENTER_32+0x73/0x90 [ 625.786209][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 625.792538][T15195] [ 625.794881][T15195] Uninit was stored to memory at: [ 625.799911][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 625.805634][T15195] __msan_chain_origin+0x50/0x90 [ 625.810576][T15195] __get_compat_msghdr+0x5be/0x890 [ 625.815693][T15195] get_compat_msghdr+0x108/0x270 [ 625.820636][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 625.825161][T15195] __sys_recvmmsg+0x4ca/0x510 [ 625.829843][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 625.835915][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 625.842077][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 625.847283][T15195] do_fast_syscall_32+0x6b/0xd0 [ 625.852140][T15195] do_SYSENTER_32+0x73/0x90 [ 625.856647][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 625.862963][T15195] [ 625.865296][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 625.871974][T15195] do_recvmmsg+0xc5/0x1ee0 [ 625.876398][T15195] do_recvmmsg+0xc5/0x1ee0 [ 626.067201][T15195] not chained 470000 origins [ 626.071845][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 626.080521][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 626.090579][T15195] Call Trace: [ 626.093886][T15195] dump_stack+0x1df/0x240 [ 626.098256][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 626.103999][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 626.109129][T15195] ? release_sock+0x238/0x2a0 [ 626.113832][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 626.118632][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 626.123755][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 626.129320][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 626.135411][T15195] ? _copy_from_user+0x15b/0x260 [ 626.140359][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 626.145487][T15195] __msan_chain_origin+0x50/0x90 [ 626.150446][T15195] __get_compat_msghdr+0x5be/0x890 [ 626.155602][T15195] get_compat_msghdr+0x108/0x270 [ 626.160574][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 626.165118][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 626.170792][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 626.175928][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 626.181229][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 626.186012][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 626.190787][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 626.196001][T15195] __sys_recvmmsg+0x4ca/0x510 [ 626.200720][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 626.206814][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 626.213067][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 626.219271][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 626.224498][T15195] do_fast_syscall_32+0x6b/0xd0 [ 626.229370][T15195] do_SYSENTER_32+0x73/0x90 [ 626.233889][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 626.240224][T15195] RIP: 0023:0xf7f82549 [ 626.244292][T15195] Code: Bad RIP value. [ 626.248360][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 626.256780][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 626.264759][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 626.272735][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 626.280713][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 626.288691][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 626.296687][T15195] Uninit was stored to memory at: [ 626.301725][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 626.307451][T15195] __msan_chain_origin+0x50/0x90 [ 626.312399][T15195] __get_compat_msghdr+0x5be/0x890 [ 626.317519][T15195] get_compat_msghdr+0x108/0x270 [ 626.322465][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 626.326973][T15195] __sys_recvmmsg+0x4ca/0x510 [ 626.331655][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 626.337729][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 626.343890][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 626.349100][T15195] do_fast_syscall_32+0x6b/0xd0 [ 626.353981][T15195] do_SYSENTER_32+0x73/0x90 [ 626.358490][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 626.364810][T15195] [ 626.367136][T15195] Uninit was stored to memory at: [ 626.372168][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 626.377894][T15195] __msan_chain_origin+0x50/0x90 [ 626.382841][T15195] __get_compat_msghdr+0x5be/0x890 [ 626.387960][T15195] get_compat_msghdr+0x108/0x270 [ 626.392916][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 626.397428][T15195] __sys_recvmmsg+0x4ca/0x510 [ 626.402112][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 626.408194][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 626.414360][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 626.419569][T15195] do_fast_syscall_32+0x6b/0xd0 [ 626.424427][T15195] do_SYSENTER_32+0x73/0x90 [ 626.428938][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 626.435261][T15195] [ 626.437589][T15195] Uninit was stored to memory at: [ 626.442620][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 626.448347][T15195] __msan_chain_origin+0x50/0x90 [ 626.453295][T15195] __get_compat_msghdr+0x5be/0x890 [ 626.458418][T15195] get_compat_msghdr+0x108/0x270 [ 626.463365][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 626.467877][T15195] __sys_recvmmsg+0x4ca/0x510 [ 626.472581][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 626.478656][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 626.484816][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 626.490025][T15195] do_fast_syscall_32+0x6b/0xd0 [ 626.494885][T15195] do_SYSENTER_32+0x73/0x90 [ 626.499394][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 626.505716][T15195] [ 626.508042][T15195] Uninit was stored to memory at: [ 626.513074][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 626.518800][T15195] __msan_chain_origin+0x50/0x90 [ 626.523749][T15195] __get_compat_msghdr+0x5be/0x890 [ 626.528886][T15195] get_compat_msghdr+0x108/0x270 [ 626.533832][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 626.538348][T15195] __sys_recvmmsg+0x4ca/0x510 [ 626.543037][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 626.549108][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 626.555278][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 626.560485][T15195] do_fast_syscall_32+0x6b/0xd0 [ 626.565362][T15195] do_SYSENTER_32+0x73/0x90 [ 626.569874][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 626.576215][T15195] [ 626.578562][T15195] Uninit was stored to memory at: [ 626.583611][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 626.589339][T15195] __msan_chain_origin+0x50/0x90 [ 626.594283][T15195] __get_compat_msghdr+0x5be/0x890 [ 626.599408][T15195] get_compat_msghdr+0x108/0x270 [ 626.604352][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 626.608859][T15195] __sys_recvmmsg+0x4ca/0x510 [ 626.613541][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 626.619624][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 626.625784][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 626.630989][T15195] do_fast_syscall_32+0x6b/0xd0 [ 626.635847][T15195] do_SYSENTER_32+0x73/0x90 [ 626.640356][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 626.646673][T15195] [ 626.649002][T15195] Uninit was stored to memory at: [ 626.654034][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 626.659758][T15195] __msan_chain_origin+0x50/0x90 [ 626.664704][T15195] __get_compat_msghdr+0x5be/0x890 [ 626.669822][T15195] get_compat_msghdr+0x108/0x270 [ 626.674770][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 626.679278][T15195] __sys_recvmmsg+0x4ca/0x510 [ 626.683967][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 626.690036][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 626.696198][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 626.701405][T15195] do_fast_syscall_32+0x6b/0xd0 [ 626.706263][T15195] do_SYSENTER_32+0x73/0x90 [ 626.710777][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 626.717095][T15195] [ 626.719419][T15195] Uninit was stored to memory at: [ 626.724448][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 626.730172][T15195] __msan_chain_origin+0x50/0x90 [ 626.735156][T15195] __get_compat_msghdr+0x5be/0x890 [ 626.740273][T15195] get_compat_msghdr+0x108/0x270 [ 626.745221][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 626.749728][T15195] __sys_recvmmsg+0x4ca/0x510 [ 626.754411][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 626.760482][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 626.766641][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 626.771847][T15195] do_fast_syscall_32+0x6b/0xd0 [ 626.776705][T15195] do_SYSENTER_32+0x73/0x90 [ 626.781241][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 626.787581][T15195] [ 626.789908][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 626.796588][T15195] do_recvmmsg+0xc5/0x1ee0 [ 626.801010][T15195] do_recvmmsg+0xc5/0x1ee0 [ 627.002235][T15195] not chained 480000 origins [ 627.006868][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 627.015540][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 627.025596][T15195] Call Trace: [ 627.028908][T15195] dump_stack+0x1df/0x240 [ 627.033261][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 627.039007][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 627.044138][T15195] ? release_sock+0x238/0x2a0 [ 627.048856][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 627.053657][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 627.058783][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 627.064351][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 627.070444][T15195] ? _copy_from_user+0x15b/0x260 [ 627.075395][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 627.080519][T15195] __msan_chain_origin+0x50/0x90 [ 627.085488][T15195] __get_compat_msghdr+0x5be/0x890 [ 627.090646][T15195] get_compat_msghdr+0x108/0x270 [ 627.095619][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 627.100158][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 627.105833][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 627.110974][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 627.116277][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 627.121052][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 627.125826][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 627.131044][T15195] __sys_recvmmsg+0x4ca/0x510 [ 627.135764][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 627.141856][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 627.148111][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 627.154283][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 627.159511][T15195] do_fast_syscall_32+0x6b/0xd0 [ 627.164383][T15195] do_SYSENTER_32+0x73/0x90 [ 627.168903][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 627.175254][T15195] RIP: 0023:0xf7f82549 [ 627.179682][T15195] Code: Bad RIP value. [ 627.183755][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 627.192171][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 627.200146][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 627.208123][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 627.216103][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 627.224078][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 627.232072][T15195] Uninit was stored to memory at: [ 627.237105][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 627.242832][T15195] __msan_chain_origin+0x50/0x90 [ 627.247781][T15195] __get_compat_msghdr+0x5be/0x890 [ 627.252903][T15195] get_compat_msghdr+0x108/0x270 [ 627.257852][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 627.262363][T15195] __sys_recvmmsg+0x4ca/0x510 [ 627.267045][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 627.273120][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 627.279302][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 627.284513][T15195] do_fast_syscall_32+0x6b/0xd0 [ 627.289371][T15195] do_SYSENTER_32+0x73/0x90 [ 627.293885][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 627.300207][T15195] [ 627.302535][T15195] Uninit was stored to memory at: [ 627.307568][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 627.313296][T15195] __msan_chain_origin+0x50/0x90 [ 627.318240][T15195] __get_compat_msghdr+0x5be/0x890 [ 627.323362][T15195] get_compat_msghdr+0x108/0x270 [ 627.328308][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 627.332824][T15195] __sys_recvmmsg+0x4ca/0x510 [ 627.337506][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 627.343579][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 627.349747][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 627.354956][T15195] do_fast_syscall_32+0x6b/0xd0 [ 627.359818][T15195] do_SYSENTER_32+0x73/0x90 [ 627.364329][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 627.370647][T15195] [ 627.372977][T15195] Uninit was stored to memory at: [ 627.378011][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 627.383745][T15195] __msan_chain_origin+0x50/0x90 [ 627.388712][T15195] __get_compat_msghdr+0x5be/0x890 [ 627.393839][T15195] get_compat_msghdr+0x108/0x270 [ 627.398784][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 627.403295][T15195] __sys_recvmmsg+0x4ca/0x510 [ 627.407977][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 627.414082][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 627.420263][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 627.425472][T15195] do_fast_syscall_32+0x6b/0xd0 [ 627.430330][T15195] do_SYSENTER_32+0x73/0x90 [ 627.434844][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 627.441164][T15195] [ 627.443491][T15195] Uninit was stored to memory at: [ 627.448524][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 627.454249][T15195] __msan_chain_origin+0x50/0x90 [ 627.459197][T15195] __get_compat_msghdr+0x5be/0x890 [ 627.464316][T15195] get_compat_msghdr+0x108/0x270 [ 627.469267][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 627.473778][T15195] __sys_recvmmsg+0x4ca/0x510 [ 627.478484][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 627.484558][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 627.490718][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 627.495932][T15195] do_fast_syscall_32+0x6b/0xd0 [ 627.500790][T15195] do_SYSENTER_32+0x73/0x90 [ 627.505302][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 627.511620][T15195] [ 627.513950][T15195] Uninit was stored to memory at: [ 627.518981][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 627.524706][T15195] __msan_chain_origin+0x50/0x90 [ 627.529677][T15195] __get_compat_msghdr+0x5be/0x890 [ 627.534797][T15195] get_compat_msghdr+0x108/0x270 [ 627.539750][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 627.544260][T15195] __sys_recvmmsg+0x4ca/0x510 [ 627.548947][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 627.555023][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 627.561184][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 627.566390][T15195] do_fast_syscall_32+0x6b/0xd0 [ 627.571248][T15195] do_SYSENTER_32+0x73/0x90 [ 627.575766][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 627.582089][T15195] [ 627.584440][T15195] Uninit was stored to memory at: [ 627.589494][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 627.595239][T15195] __msan_chain_origin+0x50/0x90 [ 627.600183][T15195] __get_compat_msghdr+0x5be/0x890 [ 627.605301][T15195] get_compat_msghdr+0x108/0x270 [ 627.610247][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 627.614784][T15195] __sys_recvmmsg+0x4ca/0x510 [ 627.619468][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 627.625572][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 627.631740][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 627.636950][T15195] do_fast_syscall_32+0x6b/0xd0 [ 627.641811][T15195] do_SYSENTER_32+0x73/0x90 [ 627.646325][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 627.652645][T15195] [ 627.654971][T15195] Uninit was stored to memory at: [ 627.660012][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 627.665746][T15195] __msan_chain_origin+0x50/0x90 [ 627.670693][T15195] __get_compat_msghdr+0x5be/0x890 [ 627.675818][T15195] get_compat_msghdr+0x108/0x270 [ 627.680767][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 627.685276][T15195] __sys_recvmmsg+0x4ca/0x510 [ 627.689958][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 627.696032][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 627.702194][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 627.707401][T15195] do_fast_syscall_32+0x6b/0xd0 [ 627.712259][T15195] do_SYSENTER_32+0x73/0x90 [ 627.716776][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 627.723094][T15195] [ 627.725425][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 627.732108][T15195] do_recvmmsg+0xc5/0x1ee0 [ 627.736529][T15195] do_recvmmsg+0xc5/0x1ee0 [ 627.961127][T15195] not chained 490000 origins [ 627.965766][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 627.974436][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 627.984493][T15195] Call Trace: [ 627.987802][T15195] dump_stack+0x1df/0x240 [ 627.992243][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 627.997983][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 628.003108][T15195] ? release_sock+0x238/0x2a0 [ 628.007808][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 628.012606][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 628.017733][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 628.023302][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 628.029394][T15195] ? _copy_from_user+0x15b/0x260 [ 628.034341][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 628.039468][T15195] __msan_chain_origin+0x50/0x90 [ 628.044426][T15195] __get_compat_msghdr+0x5be/0x890 [ 628.049580][T15195] get_compat_msghdr+0x108/0x270 [ 628.054586][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 628.059124][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 628.064802][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 628.069933][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 628.075234][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 628.080006][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 628.084781][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 628.089994][T15195] __sys_recvmmsg+0x4ca/0x510 [ 628.094703][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 628.100798][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 628.107071][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 628.113238][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 628.118548][T15195] do_fast_syscall_32+0x6b/0xd0 [ 628.123415][T15195] do_SYSENTER_32+0x73/0x90 [ 628.127931][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 628.134262][T15195] RIP: 0023:0xf7f82549 [ 628.138327][T15195] Code: Bad RIP value. [ 628.142393][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 628.150811][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 628.158787][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 628.166775][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 628.174753][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 628.182728][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 628.190729][T15195] Uninit was stored to memory at: [ 628.195772][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 628.201495][T15195] __msan_chain_origin+0x50/0x90 [ 628.206443][T15195] __get_compat_msghdr+0x5be/0x890 [ 628.211563][T15195] get_compat_msghdr+0x108/0x270 [ 628.216507][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 628.221016][T15195] __sys_recvmmsg+0x4ca/0x510 [ 628.225697][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 628.231774][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 628.237933][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 628.243142][T15195] do_fast_syscall_32+0x6b/0xd0 [ 628.248011][T15195] do_SYSENTER_32+0x73/0x90 [ 628.252523][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 628.258839][T15195] [ 628.261165][T15195] Uninit was stored to memory at: [ 628.266195][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 628.271918][T15195] __msan_chain_origin+0x50/0x90 [ 628.276862][T15195] __get_compat_msghdr+0x5be/0x890 [ 628.281980][T15195] get_compat_msghdr+0x108/0x270 [ 628.286932][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 628.291442][T15195] __sys_recvmmsg+0x4ca/0x510 [ 628.296124][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 628.302194][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 628.308354][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 628.313558][T15195] do_fast_syscall_32+0x6b/0xd0 [ 628.318414][T15195] do_SYSENTER_32+0x73/0x90 [ 628.322927][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 628.329246][T15195] [ 628.331570][T15195] Uninit was stored to memory at: [ 628.336601][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 628.342327][T15195] __msan_chain_origin+0x50/0x90 [ 628.347269][T15195] __get_compat_msghdr+0x5be/0x890 [ 628.352388][T15195] get_compat_msghdr+0x108/0x270 [ 628.357334][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 628.361843][T15195] __sys_recvmmsg+0x4ca/0x510 [ 628.366527][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 628.372598][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 628.378761][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 628.383965][T15195] do_fast_syscall_32+0x6b/0xd0 [ 628.388820][T15195] do_SYSENTER_32+0x73/0x90 [ 628.393327][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 628.399646][T15195] [ 628.401968][T15195] Uninit was stored to memory at: [ 628.407001][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 628.412724][T15195] __msan_chain_origin+0x50/0x90 [ 628.417671][T15195] __get_compat_msghdr+0x5be/0x890 [ 628.422792][T15195] get_compat_msghdr+0x108/0x270 [ 628.427735][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 628.432257][T15195] __sys_recvmmsg+0x4ca/0x510 [ 628.436940][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 628.443010][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 628.449171][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 628.454377][T15195] do_fast_syscall_32+0x6b/0xd0 [ 628.459232][T15195] do_SYSENTER_32+0x73/0x90 [ 628.463740][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 628.470066][T15195] [ 628.472389][T15195] Uninit was stored to memory at: [ 628.477421][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 628.483163][T15195] __msan_chain_origin+0x50/0x90 [ 628.488107][T15195] __get_compat_msghdr+0x5be/0x890 [ 628.493225][T15195] get_compat_msghdr+0x108/0x270 [ 628.498169][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 628.502676][T15195] __sys_recvmmsg+0x4ca/0x510 [ 628.507360][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 628.513430][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 628.519587][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 628.524795][T15195] do_fast_syscall_32+0x6b/0xd0 [ 628.529650][T15195] do_SYSENTER_32+0x73/0x90 [ 628.534160][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 628.540478][T15195] [ 628.542803][T15195] Uninit was stored to memory at: [ 628.547831][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 628.553554][T15195] __msan_chain_origin+0x50/0x90 [ 628.558499][T15195] __get_compat_msghdr+0x5be/0x890 [ 628.563618][T15195] get_compat_msghdr+0x108/0x270 [ 628.568560][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 628.573069][T15195] __sys_recvmmsg+0x4ca/0x510 [ 628.577756][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 628.583826][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 628.589985][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 628.595188][T15195] do_fast_syscall_32+0x6b/0xd0 [ 628.600047][T15195] do_SYSENTER_32+0x73/0x90 [ 628.604553][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 628.610878][T15195] [ 628.613203][T15195] Uninit was stored to memory at: [ 628.618234][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 628.623958][T15195] __msan_chain_origin+0x50/0x90 [ 628.628902][T15195] __get_compat_msghdr+0x5be/0x890 [ 628.634022][T15195] get_compat_msghdr+0x108/0x270 [ 628.638968][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 628.643479][T15195] __sys_recvmmsg+0x4ca/0x510 [ 628.648163][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 628.654237][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 628.660395][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 628.665601][T15195] do_fast_syscall_32+0x6b/0xd0 [ 628.670460][T15195] do_SYSENTER_32+0x73/0x90 [ 628.674970][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 628.681286][T15195] [ 628.683642][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 628.690323][T15195] do_recvmmsg+0xc5/0x1ee0 [ 628.694752][T15195] do_recvmmsg+0xc5/0x1ee0 [ 628.870840][T15195] not chained 500000 origins [ 628.875480][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 628.884148][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 628.894205][T15195] Call Trace: [ 628.897516][T15195] dump_stack+0x1df/0x240 [ 628.901866][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 628.907607][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 628.912735][T15195] ? release_sock+0x238/0x2a0 [ 628.917432][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 628.922229][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 628.927360][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 628.932920][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 628.939009][T15195] ? _copy_from_user+0x15b/0x260 [ 628.943957][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 628.949079][T15195] __msan_chain_origin+0x50/0x90 [ 628.954038][T15195] __get_compat_msghdr+0x5be/0x890 [ 628.959186][T15195] get_compat_msghdr+0x108/0x270 [ 628.964155][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 628.968689][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 628.974386][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 628.979518][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 628.984824][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 628.989596][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 628.994367][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 628.999578][T15195] __sys_recvmmsg+0x4ca/0x510 [ 629.004288][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 629.010376][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 629.016648][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 629.022813][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 629.028049][T15195] do_fast_syscall_32+0x6b/0xd0 [ 629.033004][T15195] do_SYSENTER_32+0x73/0x90 [ 629.037519][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 629.043848][T15195] RIP: 0023:0xf7f82549 [ 629.047910][T15195] Code: Bad RIP value. [ 629.051977][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 629.060391][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 629.068368][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 629.076340][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 629.084314][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 629.092286][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 629.100280][T15195] Uninit was stored to memory at: [ 629.105317][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 629.111039][T15195] __msan_chain_origin+0x50/0x90 [ 629.115987][T15195] __get_compat_msghdr+0x5be/0x890 [ 629.121105][T15195] get_compat_msghdr+0x108/0x270 [ 629.126071][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 629.130580][T15195] __sys_recvmmsg+0x4ca/0x510 [ 629.135266][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 629.141340][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 629.147498][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 629.152706][T15195] do_fast_syscall_32+0x6b/0xd0 [ 629.157582][T15195] do_SYSENTER_32+0x73/0x90 [ 629.162091][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 629.168426][T15195] [ 629.170748][T15195] Uninit was stored to memory at: [ 629.175777][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 629.181500][T15195] __msan_chain_origin+0x50/0x90 [ 629.186443][T15195] __get_compat_msghdr+0x5be/0x890 [ 629.191566][T15195] get_compat_msghdr+0x108/0x270 [ 629.196509][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 629.201021][T15195] __sys_recvmmsg+0x4ca/0x510 [ 629.205704][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 629.211775][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 629.217937][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 629.223146][T15195] do_fast_syscall_32+0x6b/0xd0 [ 629.228026][T15195] do_SYSENTER_32+0x73/0x90 [ 629.232536][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 629.238854][T15195] [ 629.241179][T15195] Uninit was stored to memory at: [ 629.246212][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 629.251961][T15195] __msan_chain_origin+0x50/0x90 [ 629.256905][T15195] __get_compat_msghdr+0x5be/0x890 [ 629.262022][T15195] get_compat_msghdr+0x108/0x270 [ 629.266961][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 629.271471][T15195] __sys_recvmmsg+0x4ca/0x510 [ 629.276156][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 629.282229][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 629.288412][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 629.293616][T15195] do_fast_syscall_32+0x6b/0xd0 [ 629.298471][T15195] do_SYSENTER_32+0x73/0x90 [ 629.302980][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 629.309296][T15195] [ 629.311619][T15195] Uninit was stored to memory at: [ 629.316652][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 629.322374][T15195] __msan_chain_origin+0x50/0x90 [ 629.327343][T15195] __get_compat_msghdr+0x5be/0x890 [ 629.332463][T15195] get_compat_msghdr+0x108/0x270 [ 629.337407][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 629.341916][T15195] __sys_recvmmsg+0x4ca/0x510 [ 629.346598][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 629.352668][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 629.358844][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 629.364053][T15195] do_fast_syscall_32+0x6b/0xd0 [ 629.368908][T15195] do_SYSENTER_32+0x73/0x90 [ 629.373416][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 629.379735][T15195] [ 629.382064][T15195] Uninit was stored to memory at: [ 629.387095][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 629.392820][T15195] __msan_chain_origin+0x50/0x90 [ 629.397766][T15195] __get_compat_msghdr+0x5be/0x890 [ 629.402887][T15195] get_compat_msghdr+0x108/0x270 [ 629.407830][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 629.412341][T15195] __sys_recvmmsg+0x4ca/0x510 [ 629.417028][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 629.423098][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 629.429269][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 629.434474][T15195] do_fast_syscall_32+0x6b/0xd0 [ 629.439329][T15195] do_SYSENTER_32+0x73/0x90 [ 629.443840][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 629.450156][T15195] [ 629.452481][T15195] Uninit was stored to memory at: [ 629.457514][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 629.463238][T15195] __msan_chain_origin+0x50/0x90 [ 629.468188][T15195] __get_compat_msghdr+0x5be/0x890 [ 629.473307][T15195] get_compat_msghdr+0x108/0x270 [ 629.478256][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 629.482764][T15195] __sys_recvmmsg+0x4ca/0x510 [ 629.487446][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 629.493534][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 629.499692][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 629.504896][T15195] do_fast_syscall_32+0x6b/0xd0 [ 629.509751][T15195] do_SYSENTER_32+0x73/0x90 [ 629.514265][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 629.520582][T15195] [ 629.522904][T15195] Uninit was stored to memory at: [ 629.527954][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 629.533690][T15195] __msan_chain_origin+0x50/0x90 [ 629.538634][T15195] __get_compat_msghdr+0x5be/0x890 [ 629.543752][T15195] get_compat_msghdr+0x108/0x270 [ 629.548697][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 629.553208][T15195] __sys_recvmmsg+0x4ca/0x510 [ 629.559025][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 629.565097][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 629.571265][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 629.576470][T15195] do_fast_syscall_32+0x6b/0xd0 [ 629.581329][T15195] do_SYSENTER_32+0x73/0x90 [ 629.585838][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 629.592183][T15195] [ 629.594512][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 629.601193][T15195] do_recvmmsg+0xc5/0x1ee0 [ 629.605615][T15195] do_recvmmsg+0xc5/0x1ee0 [ 629.815887][T15195] not chained 510000 origins [ 629.820522][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 629.829191][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 629.839250][T15195] Call Trace: [ 629.842579][T15195] dump_stack+0x1df/0x240 [ 629.846951][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 629.852690][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 629.857816][T15195] ? release_sock+0x238/0x2a0 [ 629.862511][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 629.867312][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 629.872436][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 629.877996][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 629.884088][T15195] ? _copy_from_user+0x15b/0x260 [ 629.889060][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 629.894185][T15195] __msan_chain_origin+0x50/0x90 [ 629.899148][T15195] __get_compat_msghdr+0x5be/0x890 [ 629.904302][T15195] get_compat_msghdr+0x108/0x270 [ 629.909266][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 629.913805][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 629.919482][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 629.924620][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 629.929925][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 629.934698][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 629.939487][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 629.944701][T15195] __sys_recvmmsg+0x4ca/0x510 [ 629.949417][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 629.955506][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 629.961762][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 629.967938][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 629.973163][T15195] do_fast_syscall_32+0x6b/0xd0 [ 629.978028][T15195] do_SYSENTER_32+0x73/0x90 [ 629.982547][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 629.988876][T15195] RIP: 0023:0xf7f82549 [ 629.992940][T15195] Code: Bad RIP value. [ 629.997005][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 630.005424][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 630.013402][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 630.021376][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 630.029350][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 630.037327][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 630.045324][T15195] Uninit was stored to memory at: [ 630.050360][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 630.056088][T15195] __msan_chain_origin+0x50/0x90 [ 630.061034][T15195] __get_compat_msghdr+0x5be/0x890 [ 630.066151][T15195] get_compat_msghdr+0x108/0x270 [ 630.071095][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 630.075609][T15195] __sys_recvmmsg+0x4ca/0x510 [ 630.080294][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 630.086367][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 630.092526][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 630.097734][T15195] do_fast_syscall_32+0x6b/0xd0 [ 630.102597][T15195] do_SYSENTER_32+0x73/0x90 [ 630.107104][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 630.113421][T15195] [ 630.115753][T15195] Uninit was stored to memory at: [ 630.120786][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 630.126529][T15195] __msan_chain_origin+0x50/0x90 [ 630.131472][T15195] __get_compat_msghdr+0x5be/0x890 [ 630.136588][T15195] get_compat_msghdr+0x108/0x270 [ 630.141538][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 630.146050][T15195] __sys_recvmmsg+0x4ca/0x510 [ 630.150754][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 630.156827][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 630.162985][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 630.168191][T15195] do_fast_syscall_32+0x6b/0xd0 [ 630.173113][T15195] do_SYSENTER_32+0x73/0x90 [ 630.177623][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 630.183939][T15195] [ 630.186265][T15195] Uninit was stored to memory at: [ 630.191296][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 630.197019][T15195] __msan_chain_origin+0x50/0x90 [ 630.201966][T15195] __get_compat_msghdr+0x5be/0x890 [ 630.207085][T15195] get_compat_msghdr+0x108/0x270 [ 630.212030][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 630.216540][T15195] __sys_recvmmsg+0x4ca/0x510 [ 630.221222][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 630.227294][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 630.233454][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 630.238660][T15195] do_fast_syscall_32+0x6b/0xd0 [ 630.243516][T15195] do_SYSENTER_32+0x73/0x90 [ 630.248031][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 630.254351][T15195] [ 630.256697][T15195] Uninit was stored to memory at: [ 630.261729][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 630.267458][T15195] __msan_chain_origin+0x50/0x90 [ 630.272404][T15195] __get_compat_msghdr+0x5be/0x890 [ 630.277526][T15195] get_compat_msghdr+0x108/0x270 [ 630.282471][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 630.286978][T15195] __sys_recvmmsg+0x4ca/0x510 [ 630.291677][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 630.297756][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 630.303913][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 630.309117][T15195] do_fast_syscall_32+0x6b/0xd0 [ 630.313975][T15195] do_SYSENTER_32+0x73/0x90 [ 630.318509][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 630.324833][T15195] [ 630.327157][T15195] Uninit was stored to memory at: [ 630.332189][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 630.337914][T15195] __msan_chain_origin+0x50/0x90 [ 630.342862][T15195] __get_compat_msghdr+0x5be/0x890 [ 630.347978][T15195] get_compat_msghdr+0x108/0x270 [ 630.352940][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 630.357447][T15195] __sys_recvmmsg+0x4ca/0x510 [ 630.362130][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 630.368200][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 630.374359][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 630.379564][T15195] do_fast_syscall_32+0x6b/0xd0 [ 630.384420][T15195] do_SYSENTER_32+0x73/0x90 [ 630.388928][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 630.395246][T15195] [ 630.397571][T15195] Uninit was stored to memory at: [ 630.402600][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 630.408324][T15195] __msan_chain_origin+0x50/0x90 [ 630.413271][T15195] __get_compat_msghdr+0x5be/0x890 [ 630.418389][T15195] get_compat_msghdr+0x108/0x270 [ 630.423337][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 630.427844][T15195] __sys_recvmmsg+0x4ca/0x510 [ 630.432525][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 630.438598][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 630.444762][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 630.449965][T15195] do_fast_syscall_32+0x6b/0xd0 [ 630.454822][T15195] do_SYSENTER_32+0x73/0x90 [ 630.459331][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 630.465649][T15195] [ 630.467974][T15195] Uninit was stored to memory at: [ 630.473018][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 630.478740][T15195] __msan_chain_origin+0x50/0x90 [ 630.483692][T15195] __get_compat_msghdr+0x5be/0x890 [ 630.488825][T15195] get_compat_msghdr+0x108/0x270 [ 630.493773][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 630.498284][T15195] __sys_recvmmsg+0x4ca/0x510 [ 630.502966][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 630.509039][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 630.515200][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 630.520406][T15195] do_fast_syscall_32+0x6b/0xd0 [ 630.525263][T15195] do_SYSENTER_32+0x73/0x90 [ 630.529775][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 630.536092][T15195] [ 630.538418][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 630.545098][T15195] do_recvmmsg+0xc5/0x1ee0 [ 630.549520][T15195] do_recvmmsg+0xc5/0x1ee0 [ 630.732455][T15195] not chained 520000 origins [ 630.737088][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 630.745759][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 630.755816][T15195] Call Trace: [ 630.759124][T15195] dump_stack+0x1df/0x240 [ 630.763477][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 630.769216][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 630.774353][T15195] ? release_sock+0x238/0x2a0 [ 630.779052][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 630.783847][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 630.788976][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 630.794554][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 630.800651][T15195] ? _copy_from_user+0x15b/0x260 [ 630.805599][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 630.810721][T15195] __msan_chain_origin+0x50/0x90 [ 630.815682][T15195] __get_compat_msghdr+0x5be/0x890 [ 630.820839][T15195] get_compat_msghdr+0x108/0x270 [ 630.825804][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 630.830345][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 630.836026][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 630.841157][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 630.846460][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 630.851232][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 630.856013][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 630.861224][T15195] __sys_recvmmsg+0x4ca/0x510 [ 630.865964][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 630.872046][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 630.878305][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 630.884474][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 630.889702][T15195] do_fast_syscall_32+0x6b/0xd0 [ 630.894573][T15195] do_SYSENTER_32+0x73/0x90 [ 630.899093][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 630.905444][T15195] RIP: 0023:0xf7f82549 [ 630.909519][T15195] Code: Bad RIP value. [ 630.913588][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 630.922010][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 630.929984][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 630.937958][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 630.945934][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 630.953908][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 630.961900][T15195] Uninit was stored to memory at: [ 630.966938][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 630.972667][T15195] __msan_chain_origin+0x50/0x90 [ 630.977615][T15195] __get_compat_msghdr+0x5be/0x890 [ 630.982740][T15195] get_compat_msghdr+0x108/0x270 [ 630.987688][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 630.992204][T15195] __sys_recvmmsg+0x4ca/0x510 [ 630.996889][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 631.002962][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 631.009124][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 631.014331][T15195] do_fast_syscall_32+0x6b/0xd0 [ 631.019190][T15195] do_SYSENTER_32+0x73/0x90 [ 631.023699][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 631.030026][T15195] [ 631.032353][T15195] Uninit was stored to memory at: [ 631.037390][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 631.043115][T15195] __msan_chain_origin+0x50/0x90 [ 631.048062][T15195] __get_compat_msghdr+0x5be/0x890 [ 631.053183][T15195] get_compat_msghdr+0x108/0x270 [ 631.058127][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 631.062644][T15195] __sys_recvmmsg+0x4ca/0x510 [ 631.067330][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 631.073403][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 631.079565][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 631.084776][T15195] do_fast_syscall_32+0x6b/0xd0 [ 631.089634][T15195] do_SYSENTER_32+0x73/0x90 [ 631.094146][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 631.100469][T15195] [ 631.102798][T15195] Uninit was stored to memory at: [ 631.108016][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 631.113751][T15195] __msan_chain_origin+0x50/0x90 [ 631.118697][T15195] __get_compat_msghdr+0x5be/0x890 [ 631.123824][T15195] get_compat_msghdr+0x108/0x270 [ 631.128770][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 631.133280][T15195] __sys_recvmmsg+0x4ca/0x510 [ 631.137967][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 631.144040][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 631.150201][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 631.155410][T15195] do_fast_syscall_32+0x6b/0xd0 [ 631.160270][T15195] do_SYSENTER_32+0x73/0x90 [ 631.164782][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 631.171103][T15195] [ 631.173430][T15195] Uninit was stored to memory at: [ 631.178463][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 631.184187][T15195] __msan_chain_origin+0x50/0x90 [ 631.189136][T15195] __get_compat_msghdr+0x5be/0x890 [ 631.194256][T15195] get_compat_msghdr+0x108/0x270 [ 631.199202][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 631.203713][T15195] __sys_recvmmsg+0x4ca/0x510 [ 631.208400][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 631.214475][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 631.220639][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 631.225852][T15195] do_fast_syscall_32+0x6b/0xd0 [ 631.230710][T15195] do_SYSENTER_32+0x73/0x90 [ 631.235226][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 631.241544][T15195] [ 631.243875][T15195] Uninit was stored to memory at: [ 631.248911][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 631.254635][T15195] __msan_chain_origin+0x50/0x90 [ 631.259670][T15195] __get_compat_msghdr+0x5be/0x890 [ 631.264787][T15195] get_compat_msghdr+0x108/0x270 [ 631.269742][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 631.274272][T15195] __sys_recvmmsg+0x4ca/0x510 [ 631.278956][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 631.285031][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 631.291193][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 631.296400][T15195] do_fast_syscall_32+0x6b/0xd0 [ 631.301261][T15195] do_SYSENTER_32+0x73/0x90 [ 631.305770][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 631.312091][T15195] [ 631.314420][T15195] Uninit was stored to memory at: [ 631.319452][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 631.325181][T15195] __msan_chain_origin+0x50/0x90 [ 631.330139][T15195] __get_compat_msghdr+0x5be/0x890 [ 631.335262][T15195] get_compat_msghdr+0x108/0x270 [ 631.340209][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 631.344719][T15195] __sys_recvmmsg+0x4ca/0x510 [ 631.349411][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 631.355485][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 631.361646][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 631.366853][T15195] do_fast_syscall_32+0x6b/0xd0 [ 631.371713][T15195] do_SYSENTER_32+0x73/0x90 [ 631.376229][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 631.382547][T15195] [ 631.384876][T15195] Uninit was stored to memory at: [ 631.389906][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 631.395631][T15195] __msan_chain_origin+0x50/0x90 [ 631.400577][T15195] __get_compat_msghdr+0x5be/0x890 [ 631.405696][T15195] get_compat_msghdr+0x108/0x270 [ 631.410647][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 631.415156][T15195] __sys_recvmmsg+0x4ca/0x510 [ 631.419840][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 631.425911][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 631.432068][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 631.437278][T15195] do_fast_syscall_32+0x6b/0xd0 [ 631.442135][T15195] do_SYSENTER_32+0x73/0x90 [ 631.446645][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 631.452967][T15195] [ 631.455298][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 631.461976][T15195] do_recvmmsg+0xc5/0x1ee0 [ 631.466401][T15195] do_recvmmsg+0xc5/0x1ee0 [ 631.656695][T15195] not chained 530000 origins [ 631.661337][T15195] CPU: 1 PID: 15195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 631.670009][T15195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 631.680064][T15195] Call Trace: [ 631.683373][T15195] dump_stack+0x1df/0x240 [ 631.687727][T15195] kmsan_internal_chain_origin+0x6f/0x130 [ 631.693472][T15195] ? _raw_spin_unlock_bh+0x4b/0x60 [ 631.698596][T15195] ? release_sock+0x238/0x2a0 [ 631.703294][T15195] ? sctp_recvmsg+0xd9b/0x1160 [ 631.708090][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 631.713214][T15195] ? kmsan_set_origin_checked+0x95/0xf0 [ 631.718777][T15195] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 631.724866][T15195] ? _copy_from_user+0x15b/0x260 [ 631.729815][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 631.734939][T15195] __msan_chain_origin+0x50/0x90 [ 631.739895][T15195] __get_compat_msghdr+0x5be/0x890 [ 631.745049][T15195] get_compat_msghdr+0x108/0x270 [ 631.750021][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 631.754557][T15195] ? kmsan_internal_set_origin+0x75/0xb0 [ 631.760235][T15195] ? kmsan_get_metadata+0x4f/0x180 [ 631.765369][T15195] ? __msan_poison_alloca+0xf0/0x120 [ 631.770671][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 631.775448][T15195] ? __sys_recvmmsg+0xb4/0x510 [ 631.780221][T15195] ? kmsan_get_metadata+0x11d/0x180 [ 631.785431][T15195] __sys_recvmmsg+0x4ca/0x510 [ 631.790144][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 631.796232][T15195] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 631.802484][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 631.808651][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 631.813875][T15195] do_fast_syscall_32+0x6b/0xd0 [ 631.818740][T15195] do_SYSENTER_32+0x73/0x90 [ 631.823263][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 631.829592][T15195] RIP: 0023:0xf7f82549 [ 631.833653][T15195] Code: Bad RIP value. [ 631.837715][T15195] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 631.846139][T15195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 631.854113][T15195] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 631.862086][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 631.870059][T15195] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 631.878052][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 631.886050][T15195] Uninit was stored to memory at: [ 631.891105][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 631.896833][T15195] __msan_chain_origin+0x50/0x90 [ 631.901780][T15195] __get_compat_msghdr+0x5be/0x890 [ 631.907075][T15195] get_compat_msghdr+0x108/0x270 [ 631.912019][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 631.916527][T15195] __sys_recvmmsg+0x4ca/0x510 [ 631.921211][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 631.927288][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 631.933448][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 631.938652][T15195] do_fast_syscall_32+0x6b/0xd0 [ 631.943510][T15195] do_SYSENTER_32+0x73/0x90 [ 631.948027][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 631.954344][T15195] [ 631.956669][T15195] Uninit was stored to memory at: [ 631.961700][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 631.967424][T15195] __msan_chain_origin+0x50/0x90 [ 631.972369][T15195] __get_compat_msghdr+0x5be/0x890 [ 631.977486][T15195] get_compat_msghdr+0x108/0x270 [ 631.982433][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 631.986944][T15195] __sys_recvmmsg+0x4ca/0x510 [ 631.991659][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 631.997728][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 632.003889][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 632.009094][T15195] do_fast_syscall_32+0x6b/0xd0 [ 632.013950][T15195] do_SYSENTER_32+0x73/0x90 [ 632.018457][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 632.024795][T15195] [ 632.027128][T15195] Uninit was stored to memory at: [ 632.032182][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 632.037911][T15195] __msan_chain_origin+0x50/0x90 [ 632.042856][T15195] __get_compat_msghdr+0x5be/0x890 [ 632.047975][T15195] get_compat_msghdr+0x108/0x270 [ 632.052931][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 632.057439][T15195] __sys_recvmmsg+0x4ca/0x510 [ 632.062120][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 632.068191][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 632.074348][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 632.079554][T15195] do_fast_syscall_32+0x6b/0xd0 [ 632.084410][T15195] do_SYSENTER_32+0x73/0x90 [ 632.088940][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 632.095265][T15195] [ 632.097588][T15195] Uninit was stored to memory at: [ 632.102621][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 632.108348][T15195] __msan_chain_origin+0x50/0x90 [ 632.113292][T15195] __get_compat_msghdr+0x5be/0x890 [ 632.118410][T15195] get_compat_msghdr+0x108/0x270 [ 632.123355][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 632.127863][T15195] __sys_recvmmsg+0x4ca/0x510 [ 632.132544][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 632.138614][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 632.144770][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 632.149977][T15195] do_fast_syscall_32+0x6b/0xd0 [ 632.154829][T15195] do_SYSENTER_32+0x73/0x90 [ 632.159335][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 632.165652][T15195] [ 632.167976][T15195] Uninit was stored to memory at: [ 632.173020][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 632.178741][T15195] __msan_chain_origin+0x50/0x90 [ 632.183686][T15195] __get_compat_msghdr+0x5be/0x890 [ 632.188803][T15195] get_compat_msghdr+0x108/0x270 [ 632.193745][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 632.198261][T15195] __sys_recvmmsg+0x4ca/0x510 [ 632.202941][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 632.209012][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 632.215170][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 632.220376][T15195] do_fast_syscall_32+0x6b/0xd0 [ 632.225232][T15195] do_SYSENTER_32+0x73/0x90 [ 632.229745][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 632.236064][T15195] [ 632.238409][T15195] Uninit was stored to memory at: [ 632.243442][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 632.249187][T15195] __msan_chain_origin+0x50/0x90 [ 632.254134][T15195] __get_compat_msghdr+0x5be/0x890 [ 632.259257][T15195] get_compat_msghdr+0x108/0x270 [ 632.264204][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 632.268714][T15195] __sys_recvmmsg+0x4ca/0x510 [ 632.273415][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 632.279491][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 632.285648][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 632.290852][T15195] do_fast_syscall_32+0x6b/0xd0 [ 632.295713][T15195] do_SYSENTER_32+0x73/0x90 [ 632.300220][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 632.306540][T15195] [ 632.308865][T15195] Uninit was stored to memory at: [ 632.313895][T15195] kmsan_internal_chain_origin+0xad/0x130 [ 632.319636][T15195] __msan_chain_origin+0x50/0x90 [ 632.324580][T15195] __get_compat_msghdr+0x5be/0x890 [ 632.329702][T15195] get_compat_msghdr+0x108/0x270 [ 632.337549][T15195] do_recvmmsg+0xa6a/0x1ee0 [ 632.342060][T15195] __sys_recvmmsg+0x4ca/0x510 [ 632.346758][T15195] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 632.352828][T15195] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 632.358987][T15195] __do_fast_syscall_32+0x2aa/0x400 [ 632.364189][T15195] do_fast_syscall_32+0x6b/0xd0 [ 632.369063][T15195] do_SYSENTER_32+0x73/0x90 [ 632.373569][T15195] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 632.379886][T15195] [ 632.382214][T15195] Local variable ----msg_sys@do_recvmmsg created at: [ 632.388896][T15195] do_recvmmsg+0xc5/0x1ee0 [ 632.393318][T15195] do_recvmmsg+0xc5/0x1ee0 10:53:23 executing program 1: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000003c0)=0xd) ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r0) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) openat$vcsa(0xffffffffffffff9c, 0x0, 0x0, 0x0) 10:53:23 executing program 3: syz_mount_image$reiserfs(&(0x7f0000000040)='reiserfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)) 10:53:23 executing program 4: pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r1, &(0x7f00000000c0)=[{&(0x7f0000000180)='w', 0x1}], 0x1, 0x0) close(r1) r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000100)='/dev/nullb0\x00', 0x4000000004002, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r2, 0x0) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r1, 0x0, 0x11300, 0x0) 10:53:23 executing program 0: r0 = openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/bluetooth/6lowpan_control\x00', 0x2, 0x0) read(r0, 0x0, 0x0) 10:53:23 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {}, {0x1}}, [@filter_kind_options=@f_flower={{0xb, 0x1, 'flower\x00'}, {0x14, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x86dd}, @TCA_FLOWER_KEY_IP_TOS={0x5}]}}]}, 0x44}}, 0x0) r3 = socket(0x1000000010, 0x80002, 0x0) sendmmsg$alg(r3, &(0x7f0000000200), 0x4924924924926d3, 0x0) 10:53:23 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vim2m\x00', 0x2, 0x0) ioctl$vim2m_VIDIOC_CREATE_BUFS(r2, 0xc100565c, &(0x7f00000000c0)={0x0, 0x2000007, 0x4, {0x1, @raw_data="e4a207bb2337e33024358de057c0557ea9e4b2b6aba5a8eeca231a33e08f0d57d944f6a92dbd64eb63c7281decd5cbe521b0f5d382ed2ef077d1eedbbd0c49a82739c325aa8bf28f3b6df4a24124f52a9bb34007530dcafa4e69a24ba949d4c76999229c481c92024b6ff17438c5da4655165a43e577b9f127eb3f619140c6511772b74e5d23269c45df7a15e57ed6e73a68d07da5fa8f9355ee324d6ba892813757eed8216db00bfd753fed140ecee900"}}) ioctl$vim2m_VIDIOC_S_FMT(r2, 0xc0d05605, &(0x7f00000001c0)={0x1, @pix_mp={0xfffff25e}}) [ 632.707814][T15320] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'. [ 632.777913][T15321] REISERFS warning (device loop3): sh-2021 reiserfs_fill_super: can not find reiserfs on loop3 10:53:23 executing program 0: r0 = socket(0x11, 0x800000003, 0x0) bind(r0, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) r1 = socket$inet6(0xa, 0x800000000000002, 0x0) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) getsockname$packet(r0, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000100)=0x14) r4 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000001c0)=@newqdisc={0x40, 0x24, 0x51d, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_pfifo_head_drop={{0x14, 0x1, 'pfifo_head_drop\x00'}, {0x8}}]}, 0x40}}, 0x0) 10:53:23 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0xa, 0x1, 0x0) setsockopt$IP_VS_SO_SET_STOPDAEMON(0xffffffffffffffff, 0x0, 0x48c, &(0x7f0000000000)={0x0, 'veth1_to_hsr\x00', 0x3}, 0x18) ioctl(r2, 0x0, &(0x7f0000000000)) r3 = socket(0x80000000000000a, 0x2, 0x0) connect$inet6(r3, &(0x7f0000000040)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) ioctl(r2, 0x8936, &(0x7f0000000000)) setsockopt$inet6_group_source_req(r3, 0x29, 0x32, &(0x7f0000000300)={0x0, {{0xa, 0x0, 0x0, @mcast1}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108) 10:53:23 executing program 2: openat$pfkey(0xffffffffffffff9c, 0x0, 0x400000, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000040)=ANY=[], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) 10:53:23 executing program 0: pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r1, &(0x7f00000000c0)=[{&(0x7f0000000180)='w', 0x1}], 0x1, 0x1) close(r1) r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000100)='/dev/nullb0\x00', 0x4000000004002, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x10, r2, 0x0) socket(0x0, 0x0, 0x0) splice(r0, 0x0, r1, 0x0, 0x11300, 0x0) 10:53:23 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {}, {0x1}}, [@filter_kind_options=@f_flower={{0xb, 0x1, 'flower\x00'}, {0x14, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x86dd}, @TCA_FLOWER_KEY_IP_TOS={0x5}]}}]}, 0x44}}, 0x0) r3 = socket(0x1000000010, 0x80002, 0x0) sendmmsg$alg(r3, &(0x7f0000000200), 0x4924924924926d3, 0x0) 10:53:23 executing program 1: 10:53:23 executing program 4: [ 633.503195][T15348] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'. 10:53:24 executing program 3: 10:53:24 executing program 2: 10:53:24 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {}, {0x1}}, [@filter_kind_options=@f_flower={{0xb, 0x1, 'flower\x00'}, {0x14, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x86dd}, @TCA_FLOWER_KEY_IP_TOS={0x5}]}}]}, 0x44}}, 0x0) r3 = socket(0x1000000010, 0x80002, 0x0) sendmmsg$alg(r3, &(0x7f0000000200), 0x4924924924926d3, 0x0) 10:53:24 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vim2m\x00', 0x2, 0x0) ioctl$vim2m_VIDIOC_CREATE_BUFS(r2, 0xc100565c, &(0x7f00000000c0)={0x0, 0x2000007, 0x4, {0x1, @raw_data="e4a207bb2337e33024358de057c0557ea9e4b2b6aba5a8eeca231a33e08f0d57d944f6a92dbd64eb63c7281decd5cbe521b0f5d382ed2ef077d1eedbbd0c49a82739c325aa8bf28f3b6df4a24124f52a9bb34007530dcafa4e69a24ba949d4c76999229c481c92024b6ff17438c5da4655165a43e577b9f127eb3f619140c6511772b74e5d23269c45df7a15e57ed6e73a68d07da5fa8f9355ee324d6ba892813757eed8216db00bfd753fed140ecee900"}}) ioctl$vim2m_VIDIOC_CREATE_BUFS(r2, 0xc100565c, &(0x7f00000000c0)={0x0, 0x2, 0x4, {0x1, @raw_data="e4a207bb2337e33024358de057c0557ea9e4b2b6aba5a8eeca231a33e08f0d57d944f6a92dbd64eb63c7281decd5cbe521b0f5d382ed2ef077d1eedbbd0c49a82739c325aa8bf28f3b6df4a24124f52a9bb34007530dcafa4e69a24ba949d4c76999229c481c92024b6ff17438c5da4655165a43e577b9f127eb3f619140c6511772b74e5d23269c45df7a15e57ed6e73a68d07da5fa8f9355ee324d6ba892813757eed8216db00bfd753fed140ecee900"}}) 10:53:24 executing program 1: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = dup2(r1, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bind$bt_l2cap(r0, &(0x7f00000000c0)={0x1f, 0x0, @fixed, 0x0, 0x2}, 0xe) setsockopt$bt_BT_RCVMTU(r0, 0x112, 0xd, 0x0, 0x0) 10:53:24 executing program 3: 10:53:24 executing program 4: [ 634.248912][T15367] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'. 10:53:24 executing program 2: 10:53:25 executing program 1: 10:53:25 executing program 3: 10:53:25 executing program 0: 10:53:25 executing program 5: socket$netlink(0x10, 0x3, 0x0) r0 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000014c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32=r1, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {}, {0x1}}, [@filter_kind_options=@f_flower={{0xb, 0x1, 'flower\x00'}, {0x14, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x86dd}, @TCA_FLOWER_KEY_IP_TOS={0x5}]}}]}, 0x44}}, 0x0) r2 = socket(0x1000000010, 0x80002, 0x0) sendmmsg$alg(r2, &(0x7f0000000200), 0x4924924924926d3, 0x0) 10:53:25 executing program 4: 10:53:25 executing program 2: 10:53:25 executing program 3: 10:53:25 executing program 1: 10:53:25 executing program 0: 10:53:25 executing program 4: 10:53:25 executing program 5: socket$netlink(0x10, 0x3, 0x0) r0 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000014c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32=r1, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {}, {0x1}}, [@filter_kind_options=@f_flower={{0xb, 0x1, 'flower\x00'}, {0x14, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x86dd}, @TCA_FLOWER_KEY_IP_TOS={0x5}]}}]}, 0x44}}, 0x0) r2 = socket(0x1000000010, 0x80002, 0x0) sendmmsg$alg(r2, &(0x7f0000000200), 0x4924924924926d3, 0x0) 10:53:25 executing program 2: 10:53:25 executing program 3: 10:53:26 executing program 1: 10:53:26 executing program 4: 10:53:26 executing program 0: 10:53:26 executing program 3: 10:53:26 executing program 5: socket$netlink(0x10, 0x3, 0x0) r0 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000014c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32=r1, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {}, {0x1}}, [@filter_kind_options=@f_flower={{0xb, 0x1, 'flower\x00'}, {0x14, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x86dd}, @TCA_FLOWER_KEY_IP_TOS={0x5}]}}]}, 0x44}}, 0x0) r2 = socket(0x1000000010, 0x80002, 0x0) sendmmsg$alg(r2, &(0x7f0000000200), 0x4924924924926d3, 0x0) 10:53:26 executing program 2: 10:53:26 executing program 1: 10:53:26 executing program 4: 10:53:26 executing program 0: 10:53:26 executing program 3: 10:53:26 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000014c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {}, {0x1}}, [@filter_kind_options=@f_flower={{0xb, 0x1, 'flower\x00'}, {0x14, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x86dd}, @TCA_FLOWER_KEY_IP_TOS={0x5}]}}]}, 0x44}}, 0x0) r2 = socket(0x1000000010, 0x80002, 0x0) sendmmsg$alg(r2, &(0x7f0000000200), 0x4924924924926d3, 0x0) 10:53:26 executing program 1: 10:53:26 executing program 4: 10:53:27 executing program 2: 10:53:27 executing program 0: 10:53:27 executing program 3: [ 636.830244][T15418] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'. 10:53:27 executing program 1: 10:53:27 executing program 2: 10:53:27 executing program 4: 10:53:27 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000014c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {}, {0x1}}, [@filter_kind_options=@f_flower={{0xb, 0x1, 'flower\x00'}, {0x14, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x86dd}, @TCA_FLOWER_KEY_IP_TOS={0x5}]}}]}, 0x44}}, 0x0) r2 = socket(0x1000000010, 0x80002, 0x0) sendmmsg$alg(r2, &(0x7f0000000200), 0x4924924924926d3, 0x0) 10:53:27 executing program 0: 10:53:27 executing program 3: 10:53:27 executing program 1: 10:53:27 executing program 2: 10:53:28 executing program 4: [ 637.600293][T15434] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'. 10:53:28 executing program 0: 10:53:28 executing program 3: 10:53:28 executing program 1: 10:53:28 executing program 4: 10:53:28 executing program 2: 10:53:28 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000014c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {}, {0x1}}, [@filter_kind_options=@f_flower={{0xb, 0x1, 'flower\x00'}, {0x14, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x86dd}, @TCA_FLOWER_KEY_IP_TOS={0x5}]}}]}, 0x44}}, 0x0) r2 = socket(0x1000000010, 0x80002, 0x0) sendmmsg$alg(r2, &(0x7f0000000200), 0x4924924924926d3, 0x0) 10:53:28 executing program 0: 10:53:28 executing program 3: [ 638.370469][T15450] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'. 10:53:28 executing program 1: 10:53:29 executing program 4: 10:53:29 executing program 2: 10:53:29 executing program 0: 10:53:29 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000014c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32=r2, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {}, {0x1}}, [@filter_kind_options=@f_flower={{0xb, 0x1, 'flower\x00'}, {0x14, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x86dd}, @TCA_FLOWER_KEY_IP_TOS={0x5}]}}]}, 0x44}}, 0x0) r3 = socket(0x1000000010, 0x80002, 0x0) sendmmsg$alg(r3, &(0x7f0000000200), 0x4924924924926d3, 0x0) 10:53:29 executing program 3: 10:53:29 executing program 1: 10:53:29 executing program 4: [ 639.139469][T15465] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'. 10:53:29 executing program 2: 10:53:29 executing program 0: 10:53:29 executing program 3: 10:53:29 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000014c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32=r2, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {}, {0x1}}, [@filter_kind_options=@f_flower={{0xb, 0x1, 'flower\x00'}, {0x14, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x86dd}, @TCA_FLOWER_KEY_IP_TOS={0x5}]}}]}, 0x44}}, 0x0) r3 = socket(0x1000000010, 0x80002, 0x0) sendmmsg$alg(r3, &(0x7f0000000200), 0x4924924924926d3, 0x0) 10:53:30 executing program 4: 10:53:30 executing program 1: 10:53:30 executing program 2: 10:53:30 executing program 0: 10:53:30 executing program 3: [ 639.897741][T15481] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'. 10:53:30 executing program 4: 10:53:30 executing program 1: 10:53:30 executing program 2: 10:53:30 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000014c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32=r2, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {}, {0x1}}, [@filter_kind_options=@f_flower={{0xb, 0x1, 'flower\x00'}, {0x14, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x86dd}, @TCA_FLOWER_KEY_IP_TOS={0x5}]}}]}, 0x44}}, 0x0) r3 = socket(0x1000000010, 0x80002, 0x0) sendmmsg$alg(r3, &(0x7f0000000200), 0x4924924924926d3, 0x0) 10:53:30 executing program 0: 10:53:30 executing program 1: 10:53:31 executing program 3: 10:53:31 executing program 4: [ 640.600244][T15496] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'. 10:53:31 executing program 0: 10:53:31 executing program 2: 10:53:31 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r1, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000014c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32=r1, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {}, {0x1}}, [@filter_kind_options=@f_flower={{0xb, 0x1, 'flower\x00'}, {0x14, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x86dd}, @TCA_FLOWER_KEY_IP_TOS={0x5}]}}]}, 0x44}}, 0x0) r2 = socket(0x1000000010, 0x80002, 0x0) sendmmsg$alg(r2, &(0x7f0000000200), 0x4924924924926d3, 0x0) 10:53:31 executing program 4: 10:53:31 executing program 1: 10:53:31 executing program 3: 10:53:31 executing program 0: [ 641.259566][T15509] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'. 10:53:31 executing program 2: 10:53:31 executing program 4: 10:53:32 executing program 3: 10:53:32 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r1, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000014c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32=r1, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {}, {0x1}}, [@filter_kind_options=@f_flower={{0xb, 0x1, 'flower\x00'}, {0x14, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x86dd}, @TCA_FLOWER_KEY_IP_TOS={0x5}]}}]}, 0x44}}, 0x0) r2 = socket(0x1000000010, 0x80002, 0x0) sendmmsg$alg(r2, &(0x7f0000000200), 0x4924924924926d3, 0x0) 10:53:32 executing program 1: 10:53:32 executing program 0: 10:53:32 executing program 2: 10:53:32 executing program 4: [ 641.983100][T15525] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'. 10:53:32 executing program 3: 10:53:32 executing program 1: 10:53:32 executing program 0: 10:53:32 executing program 2: 10:53:32 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r1, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000014c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32=r1, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {}, {0x1}}, [@filter_kind_options=@f_flower={{0xb, 0x1, 'flower\x00'}, {0x14, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x86dd}, @TCA_FLOWER_KEY_IP_TOS={0x5}]}}]}, 0x44}}, 0x0) r2 = socket(0x1000000010, 0x80002, 0x0) sendmmsg$alg(r2, &(0x7f0000000200), 0x4924924924926d3, 0x0) 10:53:32 executing program 4: 10:53:33 executing program 1: 10:53:33 executing program 3: 10:53:33 executing program 0: [ 642.734411][T15540] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'. 10:53:33 executing program 2: 10:53:33 executing program 4: 10:53:33 executing program 5: r0 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r1, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000014c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32=r1, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {}, {0x1}}, [@filter_kind_options=@f_flower={{0xb, 0x1, 'flower\x00'}, {0x14, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x86dd}, @TCA_FLOWER_KEY_IP_TOS={0x5}]}}]}, 0x44}}, 0x0) r2 = socket(0x1000000010, 0x80002, 0x0) sendmmsg$alg(r2, &(0x7f0000000200), 0x4924924924926d3, 0x0) 10:53:33 executing program 1: 10:53:33 executing program 3: 10:53:33 executing program 0: 10:53:33 executing program 2: 10:53:34 executing program 4: 10:53:34 executing program 5: r0 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r1, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000014c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32=r1, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {}, {0x1}}, [@filter_kind_options=@f_flower={{0xb, 0x1, 'flower\x00'}, {0x14, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x86dd}, @TCA_FLOWER_KEY_IP_TOS={0x5}]}}]}, 0x44}}, 0x0) r2 = socket(0x1000000010, 0x80002, 0x0) sendmmsg$alg(r2, &(0x7f0000000200), 0x4924924924926d3, 0x0) 10:53:34 executing program 0: 10:53:34 executing program 1: 10:53:34 executing program 3: 10:53:34 executing program 2: 10:53:34 executing program 4: 10:53:34 executing program 5: r0 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r1, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000014c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32=r1, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {}, {0x1}}, [@filter_kind_options=@f_flower={{0xb, 0x1, 'flower\x00'}, {0x14, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x86dd}, @TCA_FLOWER_KEY_IP_TOS={0x5}]}}]}, 0x44}}, 0x0) r2 = socket(0x1000000010, 0x80002, 0x0) sendmmsg$alg(r2, &(0x7f0000000200), 0x4924924924926d3, 0x0) 10:53:34 executing program 3: 10:53:34 executing program 0: 10:53:34 executing program 1: 10:53:34 executing program 2: 10:53:34 executing program 4: 10:53:35 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x0, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000014c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32=r2, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {}, {0x1}}, [@filter_kind_options=@f_flower={{0xb, 0x1, 'flower\x00'}, {0x14, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x86dd}, @TCA_FLOWER_KEY_IP_TOS={0x5}]}}]}, 0x44}}, 0x0) r3 = socket(0x1000000010, 0x80002, 0x0) sendmmsg$alg(r3, &(0x7f0000000200), 0x4924924924926d3, 0x0) 10:53:35 executing program 0: 10:53:35 executing program 3: 10:53:35 executing program 1: 10:53:35 executing program 2: 10:53:35 executing program 4: [ 645.010416][T15581] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'. 10:53:35 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) add_key$keyring(&(0x7f0000000040)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffe) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[0x0, 0x0, 0xcdd, 0x0, 0x0, 0x1000, 0xfb]}) ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(0xffffffffffffffff, 0xc0096616, &(0x7f00000003c0)=ANY=[@ANYBLOB="070f29fd15ef"]) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket(0x11, 0x800000003, 0x0) getsockname$packet(r3, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, 0x0) 10:53:35 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x80000000004) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) write(r0, &(0x7f0000000140)="290000001400031cf0000000000000eb0100100006a40e079f0700007f25ffffff0100002a00f3ff09", 0x29) 10:53:35 executing program 2: r0 = socket$kcm(0x2c, 0x3, 0x0) close(r0) 10:53:35 executing program 1: socket$netlink(0x10, 0x3, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(0xffffffffffffffff, 0x0, 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) perf_event_open(&(0x7f00000004c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={0x0, &(0x7f0000000300)=""/250, 0x0, 0xfa, 0x8}, 0x20) 10:53:35 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x0, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000014c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32=r2, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {}, {0x1}}, [@filter_kind_options=@f_flower={{0xb, 0x1, 'flower\x00'}, {0x14, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x86dd}, @TCA_FLOWER_KEY_IP_TOS={0x5}]}}]}, 0x44}}, 0x0) r3 = socket(0x1000000010, 0x80002, 0x0) sendmmsg$alg(r3, &(0x7f0000000200), 0x4924924924926d3, 0x0) 10:53:35 executing program 4: [ 645.780363][T15609] BPF:hdr_len not found 10:53:36 executing program 3: 10:53:36 executing program 1: syz_read_part_table(0x0, 0x1, &(0x7f0000001500)=[{&(0x7f0000000340)="db07af52507d79a9fe26b0a81d07c37e47d522f17c803af2b463011f52022e5bd4e473f16f8ab03338a1f9daadcf4be2499800af2affa26c5d045778d6a29a78960374d59222398d68c50461e594c3f5732d593a60471a143dd97b4357d6e424aab1a07bd020689e1df7af8df08dcec2e450c4da90762b48ca077fa1e1e2180a860c8656894bc8a5eca31241f956ae393422fca92500985211fcbad7418fa19d8a9c3c1ba72517cb88f4c705f0c408359740f158375d0921bdc1c7", 0xbb, 0x10e}]) [ 645.859333][T15614] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'. 10:53:36 executing program 2: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000080)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_hmac_sha512\x00'}, 0x58) r1 = accept4(r0, 0x0, 0x0, 0x0) close(r0) close(r1) 10:53:36 executing program 0: r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000000)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) dup3(r0, r1, 0x0) 10:53:36 executing program 4: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f00000001c0)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) exit_group(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000041000/0x18000)=nil, &(0x7f0000000200)=[@text32={0x20, &(0x7f0000000000)="3e0f01ca650fae82009000000f01c90f439a02000000c744240000000000c7442402b46d0000c7442406000000000f011c2466b8e8000f00d00f2202b9800000c00f3235008000000f30660f38f8a90a0000003e0f07", 0x56}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8955, &(0x7f0000000000)={{0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x0, @multicast}, 0x0, {0x2, 0x0, @loopback}, 'sit0\x00'}) 10:53:36 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x0, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000014c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32=r2, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {}, {0x1}}, [@filter_kind_options=@f_flower={{0xb, 0x1, 'flower\x00'}, {0x14, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x86dd}, @TCA_FLOWER_KEY_IP_TOS={0x5}]}}]}, 0x44}}, 0x0) r3 = socket(0x1000000010, 0x80002, 0x0) sendmmsg$alg(r3, &(0x7f0000000200), 0x4924924924926d3, 0x0) 10:53:36 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x0) syz_emit_ethernet(0x4a, &(0x7f0000000540)={@local, @dev, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "209200", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0) syz_emit_ethernet(0x36, &(0x7f00000000c0)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @private, @multicast1}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x10}}}}}}, 0x0) [ 646.396594][T15626] Dev loop1: unable to read RDB block 1 [ 646.402470][T15626] loop1: unable to read partition table [ 646.408296][T15626] loop1: partition table beyond EOD, truncated [ 646.415356][T15626] loop_reread_partitions: partition scan of loop1 () failed (rc=-5) 10:53:37 executing program 2: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x14, 0x14, 0x2, [@enum={0x0, 0x1, 0x0, 0x6, 0x4, [{0xa}]}]}}, &(0x7f0000000040)=""/250, 0x2e, 0xfa, 0x8}, 0x20) [ 646.682835][T15626] Dev loop1: unable to read RDB block 1 [ 646.688525][T15626] loop1: unable to read partition table [ 646.694749][T15626] loop1: partition table beyond EOD, truncated [ 646.700993][T15626] loop_reread_partitions: partition scan of loop1 () failed (rc=-5) 10:53:37 executing program 2: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000cf6fe4)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r1, 0x84, 0xa, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x20) ftruncate(r2, 0x200004) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) sendfile(r0, r2, 0x0, 0x1d00002e) [ 646.761072][T15644] BPF: Invalid name_offset:10 [ 646.772528][T15642] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'. 10:53:37 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'sha256-generic\x00'}, 0x58) r1 = accept4(r0, 0x0, 0x0, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00') sendfile(r1, r2, 0x0, 0x29a) 10:53:37 executing program 1: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_CREATE(r0, 0x4004556e) 10:53:37 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000014c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32=r2, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {}, {0x1}}, [@filter_kind_options=@f_flower={{0xb, 0x1, 'flower\x00'}, {0x14, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x86dd}, @TCA_FLOWER_KEY_IP_TOS={0x5}]}}]}, 0x44}}, 0x0) r3 = socket(0x1000000010, 0x80002, 0x0) sendmmsg$alg(r3, &(0x7f0000000200), 0x4924924924926d3, 0x0) [ 647.327503][ T32] audit: type=1800 audit(1595156017.790:57): pid=15653 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.2" name="bus" dev="sda1" ino=15877 res=0 [ 647.383592][T15663] ===================================================== [ 647.390574][T15663] BUG: KMSAN: uninit-value in sha256_update+0x8bf0/0x9090 [ 647.397694][T15663] CPU: 1 PID: 15663 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 647.406371][T15663] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 647.416445][T15663] Call Trace: [ 647.419757][T15663] dump_stack+0x1df/0x240 [ 647.424123][T15663] kmsan_report+0xf7/0x1e0 [ 647.428569][T15663] __msan_warning+0x58/0xa0 [ 647.433200][T15663] sha256_update+0x8bf0/0x9090 [ 647.437983][T15663] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 647.444065][T15663] ? update_stack_state+0xa18/0xb40 [ 647.449290][T15663] ? kmsan_task_context_state+0x47/0x90 [ 647.454862][T15663] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 647.460939][T15663] ? update_stack_state+0xa18/0xb40 [ 647.466164][T15663] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 647.472249][T15663] ? __module_address+0x68/0x600 [ 647.477224][T15663] ? is_module_text_address+0x4d/0x2a0 [ 647.482712][T15663] ? __kernel_text_address+0x171/0x2d0 [ 647.488195][T15663] ? unwind_get_return_address+0x8c/0x130 [ 647.493936][T15663] ? entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 647.500461][T15663] ? arch_stack_walk+0x2a2/0x3e0 [ 647.505432][T15663] ? stack_trace_save+0x1a0/0x1a0 [ 647.510585][T15663] crypto_sha256_finup+0xa3/0x1b0 [ 647.515633][T15663] ? crypto_sha256_update+0xb0/0xb0 [ 647.520849][T15663] crypto_shash_finup+0x2b4/0x6b0 [ 647.525904][T15663] ? sched_clock_cpu+0x7c/0x930 [ 647.530775][T15663] ? sock_kmalloc+0x157/0x2d0 [ 647.535500][T15663] ? hash_sendpage+0x48c/0xdf0 [ 647.540282][T15663] ? kmsan_get_metadata+0x11d/0x180 [ 647.545502][T15663] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 647.551329][T15663] ? __msan_metadata_ptr_for_store_8+0x13/0x20 [ 647.557508][T15663] shash_digest_unaligned+0x22b/0x260 [ 647.562906][T15663] ? crypto_shash_digest+0x3d0/0x3d0 [ 647.568212][T15663] shash_ahash_digest+0x788/0x8a0 [ 647.573274][T15663] shash_async_digest+0xbb/0x110 [ 647.578239][T15663] crypto_ahash_op+0x1c6/0x6c0 [ 647.583017][T15663] ? __kmalloc+0x115/0x460 [ 647.587462][T15663] ? kmsan_get_metadata+0x11d/0x180 [ 647.592679][T15663] ? kmsan_get_metadata+0x11d/0x180 [ 647.597910][T15663] ? shash_async_finup+0x110/0x110 [ 647.603039][T15663] ? shash_async_finup+0x110/0x110 [ 647.608179][T15663] crypto_ahash_digest+0xdc/0x150 [ 647.613229][T15663] hash_sendpage+0x9cc/0xdf0 [ 647.617851][T15663] ? hash_recvmsg+0xd30/0xd30 [ 647.622555][T15663] sock_sendpage+0x1e1/0x2c0 [ 647.627187][T15663] pipe_to_sendpage+0x38c/0x4c0 [ 647.632056][T15663] ? sock_fasync+0x250/0x250 [ 647.636719][T15663] __splice_from_pipe+0x565/0xf00 [ 647.641766][T15663] ? generic_splice_sendpage+0x2d0/0x2d0 [ 647.647453][T15663] generic_splice_sendpage+0x1d5/0x2d0 [ 647.652945][T15663] ? iter_file_splice_write+0x1800/0x1800 [ 647.658679][T15663] direct_splice_actor+0x1fd/0x580 [ 647.663812][T15663] ? kmsan_get_metadata+0x4f/0x180 [ 647.668935][T15663] splice_direct_to_actor+0x6b2/0xf50 [ 647.674309][T15663] ? do_splice_direct+0x580/0x580 [ 647.679375][T15663] do_splice_direct+0x342/0x580 [ 647.684262][T15663] do_sendfile+0x101b/0x1d40 [ 647.688909][T15663] __se_compat_sys_sendfile+0x301/0x3c0 [ 647.694469][T15663] ? kmsan_get_metadata+0x11d/0x180 [ 647.699670][T15663] ? __ia32_sys_sendfile64+0x70/0x70 [ 647.704964][T15663] __ia32_compat_sys_sendfile+0x56/0x70 [ 647.710527][T15663] __do_fast_syscall_32+0x2aa/0x400 [ 647.715754][T15663] do_fast_syscall_32+0x6b/0xd0 [ 647.720616][T15663] do_SYSENTER_32+0x73/0x90 [ 647.725133][T15663] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 647.731459][T15663] RIP: 0023:0xf7fd5549 [ 647.735518][T15663] Code: Bad RIP value. [ 647.739579][T15663] RSP: 002b:00000000f5dd00cc EFLAGS: 00000296 ORIG_RAX: 00000000000000bb [ 647.748002][T15663] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000000006 [ 647.755977][T15663] RDX: 0000000000000000 RSI: 000000000000029a RDI: 0000000000000000 [ 647.763951][T15663] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 647.771928][T15663] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 647.779912][T15663] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 647.787901][T15663] [ 647.790221][T15663] Uninit was created at: [ 647.794470][T15663] kmsan_save_stack_with_flags+0x3c/0x90 [ 647.800100][T15663] kmsan_alloc_page+0xb9/0x180 [ 647.804862][T15663] __alloc_pages_nodemask+0x56a2/0x5dc0 [ 647.810406][T15663] alloc_pages_current+0x672/0x990 [ 647.815514][T15663] push_pipe+0x605/0xb70 [ 647.819759][T15663] iov_iter_get_pages_alloc+0x18a9/0x21c0 [ 647.825481][T15663] do_splice_to+0x4fc/0x14f0 [ 647.830070][T15663] splice_direct_to_actor+0x45c/0xf50 [ 647.835443][T15663] do_splice_direct+0x342/0x580 [ 647.840290][T15663] do_sendfile+0x101b/0x1d40 [ 647.844880][T15663] __se_compat_sys_sendfile+0x301/0x3c0 [ 647.850425][T15663] __ia32_compat_sys_sendfile+0x56/0x70 [ 647.855987][T15663] __do_fast_syscall_32+0x2aa/0x400 [ 647.861190][T15663] do_fast_syscall_32+0x6b/0xd0 [ 647.866041][T15663] do_SYSENTER_32+0x73/0x90 [ 647.870542][T15663] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 647.876854][T15663] ===================================================== [ 647.883781][T15663] Disabling lock debugging due to kernel taint [ 647.889947][T15663] Kernel panic - not syncing: panic_on_warn set ... [ 647.896541][T15663] CPU: 1 PID: 15663 Comm: syz-executor.3 Tainted: G B 5.8.0-rc5-syzkaller #0 [ 647.906594][T15663] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 647.916667][T15663] Call Trace: [ 647.919968][T15663] dump_stack+0x1df/0x240 [ 647.924312][T15663] panic+0x3d5/0xc3e [ 647.928268][T15663] kmsan_report+0x1df/0x1e0 [ 647.932787][T15663] __msan_warning+0x58/0xa0 [ 647.937300][T15663] sha256_update+0x8bf0/0x9090 [ 647.942075][T15663] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 647.948144][T15663] ? update_stack_state+0xa18/0xb40 [ 647.953367][T15663] ? kmsan_task_context_state+0x47/0x90 [ 647.958926][T15663] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 647.965008][T15663] ? update_stack_state+0xa18/0xb40 [ 647.970220][T15663] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 647.976320][T15663] ? __module_address+0x68/0x600 [ 647.981292][T15663] ? is_module_text_address+0x4d/0x2a0 [ 647.986767][T15663] ? __kernel_text_address+0x171/0x2d0 [ 647.992244][T15663] ? unwind_get_return_address+0x8c/0x130 [ 647.997972][T15663] ? entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 648.004477][T15663] ? arch_stack_walk+0x2a2/0x3e0 [ 648.009419][T15663] ? stack_trace_save+0x1a0/0x1a0 [ 648.014465][T15663] crypto_sha256_finup+0xa3/0x1b0 [ 648.019502][T15663] ? crypto_sha256_update+0xb0/0xb0 [ 648.024704][T15663] crypto_shash_finup+0x2b4/0x6b0 [ 648.029742][T15663] ? sched_clock_cpu+0x7c/0x930 [ 648.034594][T15663] ? sock_kmalloc+0x157/0x2d0 [ 648.039275][T15663] ? hash_sendpage+0x48c/0xdf0 [ 648.044045][T15663] ? kmsan_get_metadata+0x11d/0x180 [ 648.049269][T15663] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 648.055085][T15663] ? __msan_metadata_ptr_for_store_8+0x13/0x20 [ 648.061251][T15663] shash_digest_unaligned+0x22b/0x260 [ 648.066636][T15663] ? crypto_shash_digest+0x3d0/0x3d0 [ 648.071968][T15663] shash_ahash_digest+0x788/0x8a0 [ 648.077018][T15663] shash_async_digest+0xbb/0x110 [ 648.081971][T15663] crypto_ahash_op+0x1c6/0x6c0 [ 648.086737][T15663] ? __kmalloc+0x115/0x460 [ 648.091162][T15663] ? kmsan_get_metadata+0x11d/0x180 [ 648.096369][T15663] ? kmsan_get_metadata+0x11d/0x180 [ 648.101571][T15663] ? shash_async_finup+0x110/0x110 [ 648.106688][T15663] ? shash_async_finup+0x110/0x110 [ 648.111810][T15663] crypto_ahash_digest+0xdc/0x150 [ 648.116846][T15663] hash_sendpage+0x9cc/0xdf0 [ 648.121458][T15663] ? hash_recvmsg+0xd30/0xd30 [ 648.126146][T15663] sock_sendpage+0x1e1/0x2c0 [ 648.130757][T15663] pipe_to_sendpage+0x38c/0x4c0 [ 648.135612][T15663] ? sock_fasync+0x250/0x250 [ 648.140227][T15663] __splice_from_pipe+0x565/0xf00 [ 648.145267][T15663] ? generic_splice_sendpage+0x2d0/0x2d0 [ 648.150933][T15663] generic_splice_sendpage+0x1d5/0x2d0 [ 648.156414][T15663] ? iter_file_splice_write+0x1800/0x1800 [ 648.162140][T15663] direct_splice_actor+0x1fd/0x580 [ 648.167286][T15663] ? kmsan_get_metadata+0x4f/0x180 [ 648.172411][T15663] splice_direct_to_actor+0x6b2/0xf50 [ 648.177801][T15663] ? do_splice_direct+0x580/0x580 [ 648.182866][T15663] do_splice_direct+0x342/0x580 [ 648.187744][T15663] do_sendfile+0x101b/0x1d40 [ 648.192380][T15663] __se_compat_sys_sendfile+0x301/0x3c0 [ 648.197940][T15663] ? kmsan_get_metadata+0x11d/0x180 [ 648.203141][T15663] ? __ia32_sys_sendfile64+0x70/0x70 [ 648.208432][T15663] __ia32_compat_sys_sendfile+0x56/0x70 [ 648.213985][T15663] __do_fast_syscall_32+0x2aa/0x400 [ 648.219204][T15663] do_fast_syscall_32+0x6b/0xd0 [ 648.224069][T15663] do_SYSENTER_32+0x73/0x90 [ 648.228577][T15663] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 648.234899][T15663] RIP: 0023:0xf7fd5549 [ 648.238956][T15663] Code: Bad RIP value. [ 648.243023][T15663] RSP: 002b:00000000f5dd00cc EFLAGS: 00000296 ORIG_RAX: 00000000000000bb [ 648.251452][T15663] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000000006 [ 648.259421][T15663] RDX: 0000000000000000 RSI: 000000000000029a RDI: 0000000000000000 [ 648.267389][T15663] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 648.275357][T15663] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 648.283326][T15663] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 648.292318][T15663] Kernel Offset: 0x2600000 from 0xffffffff81000000 (relocation range: 0xffffffff80000000-0xffffffffbfffffff) [ 648.303867][T15663] Rebooting in 86400 seconds..