get_metadata+0x116/0x180
[ 1645.693050][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1645.693050][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1645.693050][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1645.693050][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1645.693050][T30704]  do_SYSENTER_32+0x73/0x90
[ 1645.693050][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1645.693050][T30704] RIP: 0023:0xf7f8a549
[ 1645.693050][T30704] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1645.693050][T30704] RSP: 002b:00000000f55840cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1645.693050][T30704] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1645.693050][T30704] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1645.693050][T30704] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1645.693050][T30704] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1645.693050][T30704] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1645.693050][T30704] Uninit was stored to memory at:
[ 1645.693050][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1645.693050][T30704]  __msan_chain_origin+0x57/0xa0
[ 1645.693050][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1645.693050][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1645.693050][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1645.693050][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1645.693050][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1645.693050][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1645.693050][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1645.693050][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1645.693050][T30704]  do_SYSENTER_32+0x73/0x90
[ 1645.693050][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1645.693050][T30704] 
[ 1645.693050][T30704] Uninit was stored to memory at:
[ 1645.693050][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1645.693050][T30704]  __msan_chain_origin+0x57/0xa0
[ 1645.693050][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1645.693050][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1645.693050][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1645.693050][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1645.693050][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1645.979699][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1645.983025][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1645.993259][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1645.993259][T30704]  do_SYSENTER_32+0x73/0x90
[ 1645.993259][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1646.008102][T30704] 
[ 1646.008102][T30704] Uninit was stored to memory at:
[ 1646.008102][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1646.008102][T30704]  __msan_chain_origin+0x57/0xa0
[ 1646.008102][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1646.008102][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1646.008102][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1646.008102][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1646.008102][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1646.008102][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1646.008102][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1646.008102][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1646.008102][T30704]  do_SYSENTER_32+0x73/0x90
[ 1646.008102][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1646.008102][T30704] 
[ 1646.008102][T30704] Uninit was stored to memory at:
[ 1646.008102][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1646.008102][T30704]  __msan_chain_origin+0x57/0xa0
[ 1646.008102][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1646.008102][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1646.008102][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1646.008102][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1646.008102][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1646.008102][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1646.008102][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1646.008102][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1646.008102][T30704]  do_SYSENTER_32+0x73/0x90
[ 1646.008102][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1646.008102][T30704] 
[ 1646.008102][T30704] Uninit was stored to memory at:
[ 1646.008102][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1646.008102][T30704]  __msan_chain_origin+0x57/0xa0
[ 1646.008102][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1646.173235][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1646.173235][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1646.173235][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1646.173235][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1646.173235][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1646.173235][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1646.173235][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1646.173235][T30704]  do_SYSENTER_32+0x73/0x90
[ 1646.173235][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1646.173235][T30704] 
[ 1646.173235][T30704] Uninit was stored to memory at:
[ 1646.173235][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1646.173235][T30704]  __msan_chain_origin+0x57/0xa0
[ 1646.173235][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1646.173235][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1646.173235][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1646.173235][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1646.173235][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1646.173235][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1646.173235][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1646.173235][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1646.173235][T30704]  do_SYSENTER_32+0x73/0x90
[ 1646.173235][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1646.173235][T30704] 
[ 1646.173235][T30704] Uninit was stored to memory at:
[ 1646.173235][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1646.173235][T30704]  __msan_chain_origin+0x57/0xa0
[ 1646.173235][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1646.173235][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1646.173235][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1646.173235][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1646.173235][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1646.173235][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1646.173235][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1646.173235][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1646.173235][T30704]  do_SYSENTER_32+0x73/0x90
[ 1646.173235][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1646.173235][T30704] 
[ 1646.173235][T30704] Local variable ----msg_sys@do_recvmmsg created at:
[ 1646.173235][T30704]  do_recvmmsg+0xc2/0x22e0
[ 1646.173235][T30704]  do_recvmmsg+0xc2/0x22e0
[ 1646.565637][T30704] not chained 360000 origins
[ 1646.570255][T30704] CPU: 0 PID: 30704 Comm: syz-executor.2 Not tainted 5.9.0-rc8-syzkaller #0
[ 1646.573285][T30704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1646.573285][T30704] Call Trace:
[ 1646.573285][T30704]  dump_stack+0x21c/0x280
[ 1646.573285][T30704]  kmsan_internal_chain_origin+0x6f/0x130
[ 1646.573285][T30704]  ? do_user_addr_fault+0x1045/0x16d0
[ 1646.573285][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1646.573285][T30704]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1646.573285][T30704]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1646.573285][T30704]  ? _copy_from_user+0x201/0x310
[ 1646.627332][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1646.627332][T30704]  __msan_chain_origin+0x57/0xa0
[ 1646.627332][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1646.627332][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1646.627332][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1646.627332][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1646.627332][T30704]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1646.627332][T30704]  ? __msan_poison_alloca+0xe9/0x110
[ 1646.627332][T30704]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1646.627332][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1646.627332][T30704]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1646.627332][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1646.627332][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1646.627332][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1646.627332][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1646.627332][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1646.627332][T30704]  do_SYSENTER_32+0x73/0x90
[ 1646.627332][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1646.627332][T30704] RIP: 0023:0xf7f8a549
[ 1646.627332][T30704] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1646.627332][T30704] RSP: 002b:00000000f55840cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1646.627332][T30704] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1646.627332][T30704] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1646.627332][T30704] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1646.627332][T30704] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1646.627332][T30704] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1646.627332][T30704] Uninit was stored to memory at:
[ 1646.627332][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1646.627332][T30704]  __msan_chain_origin+0x57/0xa0
[ 1646.627332][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1646.627332][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1646.627332][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1646.627332][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1646.627332][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1646.627332][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1646.627332][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1646.627332][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1646.627332][T30704]  do_SYSENTER_32+0x73/0x90
[ 1646.627332][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1646.627332][T30704] 
[ 1646.627332][T30704] Uninit was stored to memory at:
[ 1646.627332][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1646.627332][T30704]  __msan_chain_origin+0x57/0xa0
[ 1646.627332][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1646.627332][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1646.627332][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1646.627332][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1646.627332][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1646.627332][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1646.627332][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1646.627332][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1646.922681][T30704]  do_SYSENTER_32+0x73/0x90
[ 1646.922681][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1646.936044][T30704] 
[ 1646.936044][T30704] Uninit was stored to memory at:
[ 1646.936044][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1646.936044][T30704]  __msan_chain_origin+0x57/0xa0
[ 1646.936044][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1646.936044][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1646.936044][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1646.936044][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1646.936044][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1646.936044][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1646.936044][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1646.936044][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1646.936044][T30704]  do_SYSENTER_32+0x73/0x90
[ 1646.936044][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1646.936044][T30704] 
[ 1646.936044][T30704] Uninit was stored to memory at:
[ 1646.936044][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1646.936044][T30704]  __msan_chain_origin+0x57/0xa0
[ 1646.936044][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1646.936044][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1646.936044][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1646.936044][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1646.936044][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1646.936044][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1646.936044][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1646.936044][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1646.936044][T30704]  do_SYSENTER_32+0x73/0x90
[ 1646.936044][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1646.936044][T30704] 
[ 1646.936044][T30704] Uninit was stored to memory at:
[ 1646.936044][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1646.936044][T30704]  __msan_chain_origin+0x57/0xa0
[ 1646.936044][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1646.936044][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1646.936044][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1646.936044][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1646.936044][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1646.936044][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1646.936044][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1646.936044][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1646.936044][T30704]  do_SYSENTER_32+0x73/0x90
[ 1646.936044][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1646.936044][T30704] 
[ 1646.936044][T30704] Uninit was stored to memory at:
[ 1646.936044][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1646.936044][T30704]  __msan_chain_origin+0x57/0xa0
[ 1646.936044][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1646.936044][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1646.936044][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1646.936044][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1646.936044][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1646.936044][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1646.936044][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1646.936044][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1646.936044][T30704]  do_SYSENTER_32+0x73/0x90
[ 1646.936044][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1646.936044][T30704] 
[ 1646.936044][T30704] Uninit was stored to memory at:
[ 1646.936044][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1646.936044][T30704]  __msan_chain_origin+0x57/0xa0
[ 1646.936044][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1646.936044][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1646.936044][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1646.936044][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1646.936044][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1646.936044][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1646.936044][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1646.936044][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1646.936044][T30704]  do_SYSENTER_32+0x73/0x90
[ 1646.936044][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1646.936044][T30704] 
[ 1646.936044][T30704] Local variable ----msg_sys@do_recvmmsg created at:
[ 1646.936044][T30704]  do_recvmmsg+0xc2/0x22e0
[ 1646.936044][T30704]  do_recvmmsg+0xc2/0x22e0
[ 1647.472285][T30704] not chained 370000 origins
[ 1647.473034][T30704] CPU: 0 PID: 30704 Comm: syz-executor.2 Not tainted 5.9.0-rc8-syzkaller #0
[ 1647.473034][T30704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1647.473034][T30704] Call Trace:
[ 1647.473034][T30704]  dump_stack+0x21c/0x280
[ 1647.473034][T30704]  kmsan_internal_chain_origin+0x6f/0x130
[ 1647.473034][T30704]  ? do_user_addr_fault+0x1045/0x16d0
[ 1647.473034][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1647.473034][T30704]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1647.473034][T30704]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1647.473034][T30704]  ? _copy_from_user+0x201/0x310
[ 1647.533196][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1647.533196][T30704]  __msan_chain_origin+0x57/0xa0
[ 1647.533196][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1647.533196][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1647.533196][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1647.533196][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1647.533196][T30704]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1647.533196][T30704]  ? __msan_poison_alloca+0xe9/0x110
[ 1647.533196][T30704]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1647.533196][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1647.533196][T30704]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1647.533196][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1647.533196][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1647.603075][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1647.603075][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1647.603075][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1647.603075][T30704]  do_SYSENTER_32+0x73/0x90
[ 1647.603075][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1647.603075][T30704] RIP: 0023:0xf7f8a549
[ 1647.603075][T30704] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1647.603075][T30704] RSP: 002b:00000000f55840cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1647.603075][T30704] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1647.603075][T30704] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1647.673082][T30704] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1647.673082][T30704] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1647.673082][T30704] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1647.673082][T30704] Uninit was stored to memory at:
[ 1647.673082][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1647.673082][T30704]  __msan_chain_origin+0x57/0xa0
[ 1647.673082][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1647.673082][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1647.673082][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1647.673082][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1647.673082][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1647.743076][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1647.743076][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1647.743076][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1647.743076][T30704]  do_SYSENTER_32+0x73/0x90
[ 1647.743076][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1647.743076][T30704] 
[ 1647.743076][T30704] Uninit was stored to memory at:
[ 1647.743076][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1647.743076][T30704]  __msan_chain_origin+0x57/0xa0
[ 1647.743076][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1647.743076][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1647.743076][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1647.743076][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1647.743076][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1647.813068][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1647.823120][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1647.826053][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1647.833246][T30704]  do_SYSENTER_32+0x73/0x90
[ 1647.833246][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1647.843065][T30704] 
[ 1647.845931][T30704] Uninit was stored to memory at:
[ 1647.845931][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1647.853094][T30704]  __msan_chain_origin+0x57/0xa0
[ 1647.863064][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1647.865896][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1647.873086][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1647.876957][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1647.876957][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1647.887975][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1647.893119][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1647.895389][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1647.903079][T30704]  do_SYSENTER_32+0x73/0x90
[ 1647.905945][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1647.913281][T30704] 
[ 1647.913281][T30704] Uninit was stored to memory at:
[ 1647.923065][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1647.925949][T30704]  __msan_chain_origin+0x57/0xa0
[ 1647.933192][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1647.933192][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1647.943105][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1647.946220][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1647.953048][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1647.953183][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1647.963072][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1647.965911][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1647.973303][T30704]  do_SYSENTER_32+0x73/0x90
[ 1647.973303][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1647.983092][T30704] 
[ 1647.983092][T30704] Uninit was stored to memory at:
[ 1647.993093][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1647.995111][T30704]  __msan_chain_origin+0x57/0xa0
[ 1648.003094][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1648.007836][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1648.013399][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1648.013399][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1648.023134][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1648.026393][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1648.033356][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1648.033356][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1648.043084][T30704]  do_SYSENTER_32+0x73/0x90
[ 1648.045941][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1648.053178][T30704] 
[ 1648.053178][T30704] Uninit was stored to memory at:
[ 1648.063100][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1648.066013][T30704]  __msan_chain_origin+0x57/0xa0
[ 1648.073187][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1648.073187][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1648.083070][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1648.085917][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1648.093263][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1648.093263][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1648.093263][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1648.093263][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1648.116971][T30704]  do_SYSENTER_32+0x73/0x90
[ 1648.116971][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1648.123733][T30704] 
[ 1648.123733][T30704] Uninit was stored to memory at:
[ 1648.133152][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1648.136320][T30704]  __msan_chain_origin+0x57/0xa0
[ 1648.143618][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1648.143618][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1648.156111][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1648.156111][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1648.165063][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1648.165063][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1648.175863][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1648.175863][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1648.183750][T30704]  do_SYSENTER_32+0x73/0x90
[ 1648.183750][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1648.195784][T30704] 
[ 1648.195784][T30704] Local variable ----msg_sys@do_recvmmsg created at:
[ 1648.207528][T30704]  do_recvmmsg+0xc2/0x22e0
[ 1648.207528][T30704]  do_recvmmsg+0xc2/0x22e0
[ 1648.427535][T30704] not chained 380000 origins
[ 1648.432154][T30704] CPU: 0 PID: 30704 Comm: syz-executor.2 Not tainted 5.9.0-rc8-syzkaller #0
[ 1648.432884][T30704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1648.432884][T30704] Call Trace:
[ 1648.432884][T30704]  dump_stack+0x21c/0x280
[ 1648.432884][T30704]  kmsan_internal_chain_origin+0x6f/0x130
[ 1648.432884][T30704]  ? do_user_addr_fault+0x1045/0x16d0
[ 1648.470571][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1648.470571][T30704]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1648.470571][T30704]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1648.470571][T30704]  ? _copy_from_user+0x201/0x310
[ 1648.470571][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1648.470571][T30704]  __msan_chain_origin+0x57/0xa0
[ 1648.470571][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1648.511206][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1648.511206][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1648.511206][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1648.511206][T30704]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1648.511206][T30704]  ? __msan_poison_alloca+0xe9/0x110
[ 1648.511206][T30704]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1648.511206][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1648.511206][T30704]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1648.511206][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1648.511206][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1648.511206][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1648.511206][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1648.573434][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1648.578390][T30704]  do_SYSENTER_32+0x73/0x90
[ 1648.583016][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1648.583016][T30704] RIP: 0023:0xf7f8a549
[ 1648.593084][T30704] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1648.613106][T30704] RSP: 002b:00000000f55840cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1648.622993][T30704] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1648.622993][T30704] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1648.636073][T30704] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1648.647619][T30704] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1648.653125][T30704] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1648.663006][T30704] Uninit was stored to memory at:
[ 1648.663006][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1648.673135][T30704]  __msan_chain_origin+0x57/0xa0
[ 1648.673135][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1648.683010][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1648.683010][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1648.693078][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1648.695912][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1648.703170][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1648.703170][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1648.715932][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1648.715932][T30704]  do_SYSENTER_32+0x73/0x90
[ 1648.722999][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1648.722999][T30704] 
[ 1648.733129][T30704] Uninit was stored to memory at:
[ 1648.736057][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1648.742982][T30704]  __msan_chain_origin+0x57/0xa0
[ 1648.742982][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1648.753107][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1648.753107][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1648.763034][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1648.765016][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1648.773096][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1648.778509][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1648.785032][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1648.785032][T30704]  do_SYSENTER_32+0x73/0x90
[ 1648.793098][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1648.796052][T30704] 
[ 1648.803453][T30704] Uninit was stored to memory at:
[ 1648.803453][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1648.813256][T30704]  __msan_chain_origin+0x57/0xa0
[ 1648.816698][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1648.823509][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1648.823509][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1648.833166][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1648.836089][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1648.843018][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1648.843018][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1648.853181][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1648.856629][T30704]  do_SYSENTER_32+0x73/0x90
[ 1648.863105][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1648.866983][T30704] 
[ 1648.873124][T30704] Uninit was stored to memory at:
[ 1648.877930][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1648.883223][T30704]  __msan_chain_origin+0x57/0xa0
[ 1648.883223][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1648.893158][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1648.893158][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1648.904133][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1648.904133][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1648.914703][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1648.914703][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1648.924559][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1648.924559][T30704]  do_SYSENTER_32+0x73/0x90
[ 1648.934593][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1648.934593][T30704] 
[ 1648.943089][T30704] Uninit was stored to memory at:
[ 1648.944919][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1648.954664][T30704]  __msan_chain_origin+0x57/0xa0
[ 1648.954664][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1648.964582][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1648.964582][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1648.974981][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1648.974981][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1648.980773][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1648.986825][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1648.994639][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1648.994639][T30704]  do_SYSENTER_32+0x73/0x90
[ 1649.003132][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1649.006975][T30704] 
[ 1649.014646][T30704] Uninit was stored to memory at:
[ 1649.014646][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1649.024795][T30704]  __msan_chain_origin+0x57/0xa0
[ 1649.024795][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1649.034793][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1649.034793][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1649.044588][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1649.044588][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1649.054603][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1649.054603][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1649.064721][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1649.064721][T30704]  do_SYSENTER_32+0x73/0x90
[ 1649.074919][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1649.083080][T30704] 
[ 1649.083080][T30704] Uninit was stored to memory at:
[ 1649.083080][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1649.093111][T30704]  __msan_chain_origin+0x57/0xa0
[ 1649.096594][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1649.104639][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1649.104639][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1649.113121][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1649.116583][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1649.124758][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1649.124758][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1649.133208][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1649.133208][T30704]  do_SYSENTER_32+0x73/0x90
[ 1649.133208][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1649.153162][T30704] 
[ 1649.154257][T30704] Local variable ----msg_sys@do_recvmmsg created at:
[ 1649.154257][T30704]  do_recvmmsg+0xc2/0x22e0
[ 1649.166035][T30704]  do_recvmmsg+0xc2/0x22e0
[ 1649.388709][T30704] not chained 390000 origins
[ 1649.392887][T30704] CPU: 0 PID: 30704 Comm: syz-executor.2 Not tainted 5.9.0-rc8-syzkaller #0
[ 1649.392887][T30704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1649.392887][T30704] Call Trace:
[ 1649.392887][T30704]  dump_stack+0x21c/0x280
[ 1649.392887][T30704]  kmsan_internal_chain_origin+0x6f/0x130
[ 1649.392887][T30704]  ? do_user_addr_fault+0x1045/0x16d0
[ 1649.392887][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1649.392887][T30704]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1649.392887][T30704]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1649.392887][T30704]  ? _copy_from_user+0x201/0x310
[ 1649.392887][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1649.392887][T30704]  __msan_chain_origin+0x57/0xa0
[ 1649.392887][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1649.392887][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1649.392887][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1649.392887][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1649.392887][T30704]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1649.392887][T30704]  ? __msan_poison_alloca+0xe9/0x110
[ 1649.392887][T30704]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1649.392887][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1649.392887][T30704]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1649.392887][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1649.392887][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1649.392887][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1649.392887][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1649.392887][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1649.392887][T30704]  do_SYSENTER_32+0x73/0x90
[ 1649.392887][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1649.392887][T30704] RIP: 0023:0xf7f8a549
[ 1649.392887][T30704] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1649.392887][T30704] RSP: 002b:00000000f55840cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1649.392887][T30704] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1649.392887][T30704] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1649.392887][T30704] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1649.596902][T30704] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1649.596902][T30704] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1649.596902][T30704] Uninit was stored to memory at:
[ 1649.596902][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1649.596902][T30704]  __msan_chain_origin+0x57/0xa0
[ 1649.596902][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1649.596902][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1649.596902][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1649.596902][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1649.596902][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1649.596902][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1649.596902][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1649.596902][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1649.596902][T30704]  do_SYSENTER_32+0x73/0x90
[ 1649.596902][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1649.596902][T30704] 
[ 1649.596902][T30704] Uninit was stored to memory at:
[ 1649.596902][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1649.596902][T30704]  __msan_chain_origin+0x57/0xa0
[ 1649.596902][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1649.596902][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1649.596902][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1649.596902][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1649.596902][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1649.596902][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1649.596902][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1649.596902][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1649.596902][T30704]  do_SYSENTER_32+0x73/0x90
[ 1649.596902][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1649.596902][T30704] 
[ 1649.596902][T30704] Uninit was stored to memory at:
[ 1649.596902][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1649.596902][T30704]  __msan_chain_origin+0x57/0xa0
[ 1649.596902][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1649.596902][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1649.596902][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1649.596902][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1649.596902][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1649.596902][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1649.596902][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1649.596902][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1649.596902][T30704]  do_SYSENTER_32+0x73/0x90
[ 1649.596902][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1649.596902][T30704] 
[ 1649.836762][T30704] Uninit was stored to memory at:
[ 1649.836762][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1649.836762][T30704]  __msan_chain_origin+0x57/0xa0
[ 1649.836762][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1649.836762][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1649.836762][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1649.836762][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1649.836762][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1649.836762][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1649.836762][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1649.836762][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1649.836762][T30704]  do_SYSENTER_32+0x73/0x90
[ 1649.836762][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1649.836762][T30704] 
[ 1649.836762][T30704] Uninit was stored to memory at:
[ 1649.836762][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1649.836762][T30704]  __msan_chain_origin+0x57/0xa0
[ 1649.836762][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1649.836762][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1649.836762][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1649.836762][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1649.836762][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1649.836762][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1649.836762][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1649.836762][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1649.836762][T30704]  do_SYSENTER_32+0x73/0x90
[ 1649.836762][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1649.836762][T30704] 
[ 1649.836762][T30704] Uninit was stored to memory at:
[ 1649.836762][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1649.836762][T30704]  __msan_chain_origin+0x57/0xa0
[ 1649.836762][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1649.836762][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1649.836762][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1649.836762][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1649.836762][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1649.836762][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1649.836762][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1649.836762][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1649.836762][T30704]  do_SYSENTER_32+0x73/0x90
[ 1649.836762][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1649.836762][T30704] 
[ 1649.836762][T30704] Uninit was stored to memory at:
[ 1649.836762][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1649.836762][T30704]  __msan_chain_origin+0x57/0xa0
[ 1649.836762][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1649.836762][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1649.836762][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1649.836762][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1649.836762][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1649.836762][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1649.836762][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1649.836762][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1649.836762][T30704]  do_SYSENTER_32+0x73/0x90
[ 1649.836762][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1649.836762][T30704] 
[ 1649.836762][T30704] Local variable ----msg_sys@do_recvmmsg created at:
[ 1649.836762][T30704]  do_recvmmsg+0xc2/0x22e0
[ 1649.836762][T30704]  do_recvmmsg+0xc2/0x22e0
[ 1650.316500][T30704] not chained 400000 origins
[ 1650.321127][T30704] CPU: 0 PID: 30704 Comm: syz-executor.2 Not tainted 5.9.0-rc8-syzkaller #0
[ 1650.322881][T30704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1650.333935][T30704] Call Trace:
[ 1650.333935][T30704]  dump_stack+0x21c/0x280
[ 1650.333935][T30704]  kmsan_internal_chain_origin+0x6f/0x130
[ 1650.333935][T30704]  ? do_user_addr_fault+0x1045/0x16d0
[ 1650.333935][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1650.333935][T30704]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1650.333935][T30704]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1650.333935][T30704]  ? _copy_from_user+0x201/0x310
[ 1650.333935][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1650.333935][T30704]  __msan_chain_origin+0x57/0xa0
[ 1650.333935][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1650.333935][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1650.333935][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1650.333935][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1650.333935][T30704]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1650.333935][T30704]  ? __msan_poison_alloca+0xe9/0x110
[ 1650.333935][T30704]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1650.333935][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1650.333935][T30704]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1650.333935][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1650.333935][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1650.333935][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1650.333935][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1650.455133][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1650.455133][T30704]  do_SYSENTER_32+0x73/0x90
[ 1650.465982][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1650.473177][T30704] RIP: 0023:0xf7f8a549
[ 1650.473177][T30704] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1650.495904][T30704] RSP: 002b:00000000f55840cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1650.506069][T30704] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1650.515031][T30704] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1650.523129][T30704] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1650.529752][T30704] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1650.533192][T30704] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1650.543116][T30704] Uninit was stored to memory at:
[ 1650.548059][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1650.553046][T30704]  __msan_chain_origin+0x57/0xa0
[ 1650.563129][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1650.566186][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1650.573053][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1650.573053][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1650.573053][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1650.586050][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1650.593224][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1650.593224][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1650.603095][T30704]  do_SYSENTER_32+0x73/0x90
[ 1650.606021][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1650.613416][T30704] 
[ 1650.613416][T30704] Uninit was stored to memory at:
[ 1650.623113][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1650.627915][T30704]  __msan_chain_origin+0x57/0xa0
[ 1650.633062][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1650.636847][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1650.643083][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1650.645993][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1650.645993][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1650.655037][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1650.663093][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1650.666009][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1650.673033][T30704]  do_SYSENTER_32+0x73/0x90
[ 1650.673033][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1650.683161][T30704] 
[ 1650.686195][T30704] Uninit was stored to memory at:
[ 1650.693033][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1650.703132][T30704]  __msan_chain_origin+0x57/0xa0
[ 1650.706119][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1650.713961][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1650.713961][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1650.723422][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1650.727289][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1650.733107][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1650.735148][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1650.743160][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1650.750079][T30704]  do_SYSENTER_32+0x73/0x90
[ 1650.753021][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1650.753021][T30704] 
[ 1650.763141][T30704] Uninit was stored to memory at:
[ 1650.768153][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1650.773204][T30704]  __msan_chain_origin+0x57/0xa0
[ 1650.773204][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1650.783104][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1650.786117][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1650.793026][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1650.793026][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1650.803142][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1650.806159][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1650.813079][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1650.813079][T30704]  do_SYSENTER_32+0x73/0x90
[ 1650.823096][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1650.833214][T30704] 
[ 1650.833214][T30704] Uninit was stored to memory at:
[ 1650.833214][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1650.843137][T30704]  __msan_chain_origin+0x57/0xa0
[ 1650.847990][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1650.853062][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1650.856862][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1650.863130][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1650.866116][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1650.875294][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1650.875294][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1650.885984][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1650.885984][T30704]  do_SYSENTER_32+0x73/0x90
[ 1650.893575][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1650.903152][T30704] 
[ 1650.903152][T30704] Uninit was stored to memory at:
[ 1650.906060][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1650.913272][T30704]  __msan_chain_origin+0x57/0xa0
[ 1650.913272][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1650.926122][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1650.928927][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1650.933133][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1650.933133][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1650.946099][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1650.946099][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1650.955130][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1650.955130][T30704]  do_SYSENTER_32+0x73/0x90
[ 1650.963134][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1650.973162][T30704] 
[ 1650.973162][T30704] Uninit was stored to memory at:
[ 1650.979082][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1650.983189][T30704]  __msan_chain_origin+0x57/0xa0
[ 1650.988220][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1650.993049][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1650.993049][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1651.003140][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1651.006494][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1651.013258][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1651.023115][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1651.026103][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1651.033023][T30704]  do_SYSENTER_32+0x73/0x90
[ 1651.033023][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1651.043168][T30704] 
[ 1651.046214][T30704] Local variable ----msg_sys@do_recvmmsg created at:
[ 1651.046214][T30704]  do_recvmmsg+0xc2/0x22e0
[ 1651.054788][T30704]  do_recvmmsg+0xc2/0x22e0
[ 1651.290361][T30704] not chained 410000 origins
[ 1651.293258][T30704] CPU: 0 PID: 30704 Comm: syz-executor.2 Not tainted 5.9.0-rc8-syzkaller #0
[ 1651.293258][T30704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1651.293258][T30704] Call Trace:
[ 1651.293258][T30704]  dump_stack+0x21c/0x280
[ 1651.293258][T30704]  kmsan_internal_chain_origin+0x6f/0x130
[ 1651.293258][T30704]  ? do_user_addr_fault+0x1045/0x16d0
[ 1651.293258][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1651.293258][T30704]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1651.293258][T30704]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1651.293258][T30704]  ? _copy_from_user+0x201/0x310
[ 1651.293258][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1651.293258][T30704]  __msan_chain_origin+0x57/0xa0
[ 1651.363065][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1651.363065][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1651.373036][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1651.373036][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1651.373036][T30704]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1651.373036][T30704]  ? __msan_poison_alloca+0xe9/0x110
[ 1651.373036][T30704]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1651.373036][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1651.373036][T30704]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1651.373036][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1651.373036][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1651.373036][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1651.373036][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1651.373036][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1651.373036][T30704]  do_SYSENTER_32+0x73/0x90
[ 1651.373036][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1651.373036][T30704] RIP: 0023:0xf7f8a549
[ 1651.373036][T30704] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1651.373036][T30704] RSP: 002b:00000000f55840cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1651.373036][T30704] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1651.486087][T30704] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1651.493214][T30704] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1651.503172][T30704] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1651.513057][T30704] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1651.513057][T30704] Uninit was stored to memory at:
[ 1651.523089][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1651.529065][T30704]  __msan_chain_origin+0x57/0xa0
[ 1651.533119][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1651.537762][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1651.543588][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1651.543588][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1651.553025][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1651.553025][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1651.563267][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1651.573052][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1651.573052][T30704]  do_SYSENTER_32+0x73/0x90
[ 1651.583018][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1651.583165][T30704] 
[ 1651.583165][T30704] Uninit was stored to memory at:
[ 1651.593205][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1651.593205][T30704]  __msan_chain_origin+0x57/0xa0
[ 1651.603162][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1651.603162][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1651.613782][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1651.613782][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1651.613782][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1651.613782][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1651.613782][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1651.613782][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1651.646474][T30704]  do_SYSENTER_32+0x73/0x90
[ 1651.653416][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1651.653563][T30704] 
[ 1651.653563][T30704] Uninit was stored to memory at:
[ 1651.663183][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1651.663183][T30704]  __msan_chain_origin+0x57/0xa0
[ 1651.673193][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1651.673193][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1651.683163][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1651.683163][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1651.693036][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1651.693036][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1651.703325][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1651.713029][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1651.713029][T30704]  do_SYSENTER_32+0x73/0x90
[ 1651.723191][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1651.723191][T30704] 
[ 1651.733241][T30704] Uninit was stored to memory at:
[ 1651.733241][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1651.743206][T30704]  __msan_chain_origin+0x57/0xa0
[ 1651.748103][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1651.753104][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1651.753104][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1651.763255][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1651.763255][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1651.773067][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1651.773067][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1651.783576][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1651.783576][T30704]  do_SYSENTER_32+0x73/0x90
[ 1651.793235][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1651.803036][T30704] 
[ 1651.803178][T30704] Uninit was stored to memory at:
[ 1651.803178][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1651.813075][T30704]  __msan_chain_origin+0x57/0xa0
[ 1651.813075][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1651.823310][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1651.823310][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1651.833052][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1651.833052][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1651.843244][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1651.850443][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1651.853219][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1651.853219][T30704]  do_SYSENTER_32+0x73/0x90
[ 1651.863125][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1651.873040][T30704] 
[ 1651.873040][T30704] Uninit was stored to memory at:
[ 1651.873040][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1651.883348][T30704]  __msan_chain_origin+0x57/0xa0
[ 1651.883348][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1651.893076][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1651.893076][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1651.903203][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1651.903203][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1651.913472][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1651.923173][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1651.923173][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1651.933163][T30704]  do_SYSENTER_32+0x73/0x90
[ 1651.933578][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1651.943327][T30704] 
[ 1651.943327][T30704] Uninit was stored to memory at:
[ 1651.943327][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1651.953037][T30704]  __msan_chain_origin+0x57/0xa0
[ 1651.953037][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1651.963261][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1651.973108][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1651.973108][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1651.983168][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1651.983168][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1651.993024][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1651.993024][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1652.003328][T30704]  do_SYSENTER_32+0x73/0x90
[ 1652.003328][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1652.013147][T30704] 
[ 1652.019060][T30704] Local variable ----msg_sys@do_recvmmsg created at:
[ 1652.023214][T30704]  do_recvmmsg+0xc2/0x22e0
[ 1652.023214][T30704]  do_recvmmsg+0xc2/0x22e0
[ 1652.307044][T30704] not chained 420000 origins
[ 1652.311663][T30704] CPU: 0 PID: 30704 Comm: syz-executor.2 Not tainted 5.9.0-rc8-syzkaller #0
[ 1652.312889][T30704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1652.312889][T30704] Call Trace:
[ 1652.333026][T30704]  dump_stack+0x21c/0x280
[ 1652.333026][T30704]  kmsan_internal_chain_origin+0x6f/0x130
[ 1652.333026][T30704]  ? do_user_addr_fault+0x1045/0x16d0
[ 1652.333026][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1652.333026][T30704]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1652.333026][T30704]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1652.361566][T30704]  ? _copy_from_user+0x201/0x310
[ 1652.361566][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1652.373091][T30704]  __msan_chain_origin+0x57/0xa0
[ 1652.373091][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1652.373091][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1652.373091][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1652.373091][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1652.373091][T30704]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1652.373091][T30704]  ? __msan_poison_alloca+0xe9/0x110
[ 1652.373091][T30704]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1652.373091][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1652.373091][T30704]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1652.373091][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1652.373091][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1652.373091][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1652.443083][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1652.443083][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1652.443083][T30704]  do_SYSENTER_32+0x73/0x90
[ 1652.456806][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1652.464208][T30704] RIP: 0023:0xf7f8a549
[ 1652.468010][T30704] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1652.485909][T30704] RSP: 002b:00000000f55840cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1652.493291][T30704] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1652.505925][T30704] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1652.513187][T30704] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1652.523112][T30704] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1652.523112][T30704] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1652.535114][T30704] Uninit was stored to memory at:
[ 1652.543074][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1652.546067][T30704]  __msan_chain_origin+0x57/0xa0
[ 1652.553293][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1652.553293][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1652.563061][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1652.568182][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1652.573090][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1652.575878][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1652.586258][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1652.586258][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1652.593281][T30704]  do_SYSENTER_32+0x73/0x90
[ 1652.593281][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1652.605989][T30704] 
[ 1652.605989][T30704] Uninit was stored to memory at:
[ 1652.613284][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1652.613284][T30704]  __msan_chain_origin+0x57/0xa0
[ 1652.625890][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1652.625890][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1652.633117][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1652.638807][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1652.643111][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1652.647846][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1652.653192][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1652.653192][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1652.665924][T30704]  do_SYSENTER_32+0x73/0x90
[ 1652.669714][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1652.673291][T30704] 
[ 1652.673291][T30704] Uninit was stored to memory at:
[ 1652.683062][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1652.685933][T30704]  __msan_chain_origin+0x57/0xa0
[ 1652.693183][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1652.693183][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1652.705994][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1652.705994][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1652.713506][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1652.713506][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1652.725909][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1652.733313][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1652.733313][T30704]  do_SYSENTER_32+0x73/0x90
[ 1652.733313][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1652.743138][T30704] 
[ 1652.751553][T30704] Uninit was stored to memory at:
[ 1652.755104][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1652.755104][T30704]  __msan_chain_origin+0x57/0xa0
[ 1652.773173][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1652.773173][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1652.783066][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1652.785918][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1652.785918][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1652.793294][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1652.803115][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1652.806038][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1652.813182][T30704]  do_SYSENTER_32+0x73/0x90
[ 1652.813182][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1652.823056][T30704] 
[ 1652.825974][T30704] Uninit was stored to memory at:
[ 1652.833098][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1652.833242][T30704]  __msan_chain_origin+0x57/0xa0
[ 1652.843189][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1652.846357][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1652.853165][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1652.853165][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1652.858876][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1652.867907][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1652.874989][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1652.874989][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1652.883108][T30704]  do_SYSENTER_32+0x73/0x90
[ 1652.886097][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1652.893119][T30704] 
[ 1652.893119][T30704] Uninit was stored to memory at:
[ 1652.893119][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1652.893119][T30704]  __msan_chain_origin+0x57/0xa0
[ 1652.913293][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1652.913293][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1652.923088][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1652.925982][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1652.933197][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1652.933197][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1652.943100][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1652.946064][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1652.953182][T30704]  do_SYSENTER_32+0x73/0x90
[ 1652.953182][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1652.963129][T30704] 
[ 1652.963129][T30704] Uninit was stored to memory at:
[ 1652.973289][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1652.978369][T30704]  __msan_chain_origin+0x57/0xa0
[ 1652.983070][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1652.986124][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1652.993196][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1652.993196][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1653.003107][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1653.006073][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1653.013274][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1653.013274][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1653.026079][T30704]  do_SYSENTER_32+0x73/0x90
[ 1653.026079][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1653.033340][T30704] 
[ 1653.033340][T30704] Local variable ----msg_sys@do_recvmmsg created at:
[ 1653.043087][T30704]  do_recvmmsg+0xc2/0x22e0
[ 1653.045996][T30704]  do_recvmmsg+0xc2/0x22e0
[ 1653.277518][T30704] not chained 430000 origins
[ 1653.282223][T30704] CPU: 0 PID: 30704 Comm: syz-executor.2 Not tainted 5.9.0-rc8-syzkaller #0
[ 1653.282889][T30704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1653.282889][T30704] Call Trace:
[ 1653.282889][T30704]  dump_stack+0x21c/0x280
[ 1653.282889][T30704]  kmsan_internal_chain_origin+0x6f/0x130
[ 1653.282889][T30704]  ? do_user_addr_fault+0x1045/0x16d0
[ 1653.282889][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1653.282889][T30704]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1653.282889][T30704]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1653.282889][T30704]  ? _copy_from_user+0x201/0x310
[ 1653.282889][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1653.282889][T30704]  __msan_chain_origin+0x57/0xa0
[ 1653.282889][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1653.282889][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1653.282889][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1653.282889][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1653.282889][T30704]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1653.282889][T30704]  ? __msan_poison_alloca+0xe9/0x110
[ 1653.282889][T30704]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1653.282889][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1653.282889][T30704]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1653.393656][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1653.393656][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1653.393656][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1653.393656][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1653.393656][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1653.393656][T30704]  do_SYSENTER_32+0x73/0x90
[ 1653.393656][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1653.393656][T30704] RIP: 0023:0xf7f8a549
[ 1653.393656][T30704] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1653.393656][T30704] RSP: 002b:00000000f55840cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1653.393656][T30704] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1653.393656][T30704] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1653.393656][T30704] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1653.393656][T30704] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1653.393656][T30704] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1653.393656][T30704] Uninit was stored to memory at:
[ 1653.393656][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1653.393656][T30704]  __msan_chain_origin+0x57/0xa0
[ 1653.393656][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1653.393656][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1653.393656][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1653.393656][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1653.393656][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1653.393656][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1653.393656][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1653.393656][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1653.393656][T30704]  do_SYSENTER_32+0x73/0x90
[ 1653.393656][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1653.393656][T30704] 
[ 1653.393656][T30704] Uninit was stored to memory at:
[ 1653.393656][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1653.393656][T30704]  __msan_chain_origin+0x57/0xa0
[ 1653.393656][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1653.393656][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1653.393656][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1653.610347][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1653.610347][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1653.619982][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1653.623410][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1653.623410][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1653.633208][T30704]  do_SYSENTER_32+0x73/0x90
[ 1653.633208][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1653.633208][T30704] 
[ 1653.633208][T30704] Uninit was stored to memory at:
[ 1653.633208][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1653.633208][T30704]  __msan_chain_origin+0x57/0xa0
[ 1653.633208][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1653.633208][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1653.633208][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1653.633208][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1653.633208][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1653.633208][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1653.633208][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1653.633208][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1653.633208][T30704]  do_SYSENTER_32+0x73/0x90
[ 1653.633208][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1653.633208][T30704] 
[ 1653.633208][T30704] Uninit was stored to memory at:
[ 1653.633208][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1653.633208][T30704]  __msan_chain_origin+0x57/0xa0
[ 1653.633208][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1653.633208][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1653.633208][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1653.633208][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1653.633208][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1653.633208][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1653.633208][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1653.633208][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1653.633208][T30704]  do_SYSENTER_32+0x73/0x90
[ 1653.633208][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1653.633208][T30704] 
[ 1653.633208][T30704] Uninit was stored to memory at:
[ 1653.633208][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1653.633208][T30704]  __msan_chain_origin+0x57/0xa0
[ 1653.633208][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1653.633208][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1653.633208][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1653.633208][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1653.633208][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1653.633208][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1653.633208][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1653.633208][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1653.633208][T30704]  do_SYSENTER_32+0x73/0x90
[ 1653.633208][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1653.633208][T30704] 
[ 1653.633208][T30704] Uninit was stored to memory at:
[ 1653.633208][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1653.633208][T30704]  __msan_chain_origin+0x57/0xa0
[ 1653.633208][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1653.633208][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1653.633208][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1653.633208][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1653.633208][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1653.633208][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1653.633208][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1653.633208][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1653.633208][T30704]  do_SYSENTER_32+0x73/0x90
[ 1653.633208][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1653.633208][T30704] 
[ 1653.633208][T30704] Uninit was stored to memory at:
[ 1653.633208][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1653.633208][T30704]  __msan_chain_origin+0x57/0xa0
[ 1653.633208][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1653.633208][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1653.633208][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1653.633208][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1653.633208][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1653.633208][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1653.633208][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1653.633208][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1653.633208][T30704]  do_SYSENTER_32+0x73/0x90
[ 1653.633208][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1653.633208][T30704] 
[ 1653.633208][T30704] Local variable ----msg_sys@do_recvmmsg created at:
[ 1653.633208][T30704]  do_recvmmsg+0xc2/0x22e0
[ 1653.633208][T30704]  do_recvmmsg+0xc2/0x22e0
[ 1654.181848][T30704] not chained 440000 origins
[ 1654.182890][T30704] CPU: 0 PID: 30704 Comm: syz-executor.2 Not tainted 5.9.0-rc8-syzkaller #0
[ 1654.182890][T30704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1654.182890][T30704] Call Trace:
[ 1654.182890][T30704]  dump_stack+0x21c/0x280
[ 1654.182890][T30704]  kmsan_internal_chain_origin+0x6f/0x130
[ 1654.182890][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1654.182890][T30704]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1654.182890][T30704]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1654.182890][T30704]  ? _copy_from_user+0x201/0x310
[ 1654.182890][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1654.182890][T30704]  __msan_chain_origin+0x57/0xa0
[ 1654.182890][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1654.253119][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1654.253119][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1654.253119][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1654.253119][T30704]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1654.253119][T30704]  ? __msan_poison_alloca+0xe9/0x110
[ 1654.253119][T30704]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1654.253119][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1654.253119][T30704]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1654.253119][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1654.253119][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1654.307228][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1654.307228][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1654.307228][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1654.307228][T30704]  do_SYSENTER_32+0x73/0x90
[ 1654.307228][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1654.307228][T30704] RIP: 0023:0xf7f8a549
[ 1654.307228][T30704] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1654.307228][T30704] RSP: 002b:00000000f55840cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1654.307228][T30704] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1654.307228][T30704] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1654.307228][T30704] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1654.307228][T30704] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1654.307228][T30704] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1654.307228][T30704] Uninit was stored to memory at:
[ 1654.307228][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1654.307228][T30704]  __msan_chain_origin+0x57/0xa0
[ 1654.307228][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1654.307228][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1654.307228][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1654.307228][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1654.307228][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1654.307228][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1654.307228][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1654.307228][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1654.307228][T30704]  do_SYSENTER_32+0x73/0x90
[ 1654.307228][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1654.307228][T30704] 
[ 1654.307228][T30704] Uninit was stored to memory at:
[ 1654.307228][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1654.307228][T30704]  __msan_chain_origin+0x57/0xa0
[ 1654.307228][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1654.307228][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1654.307228][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1654.307228][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1654.307228][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1654.307228][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1654.307228][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1654.307228][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1654.307228][T30704]  do_SYSENTER_32+0x73/0x90
[ 1654.307228][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1654.307228][T30704] 
[ 1654.307228][T30704] Uninit was stored to memory at:
[ 1654.307228][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1654.307228][T30704]  __msan_chain_origin+0x57/0xa0
[ 1654.307228][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1654.307228][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1654.307228][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1654.307228][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1654.307228][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1654.588575][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1654.588575][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1654.588575][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1654.588575][T30704]  do_SYSENTER_32+0x73/0x90
[ 1654.588575][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1654.588575][T30704] 
[ 1654.588575][T30704] Uninit was stored to memory at:
[ 1654.588575][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1654.588575][T30704]  __msan_chain_origin+0x57/0xa0
[ 1654.588575][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1654.588575][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1654.588575][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1654.588575][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1654.588575][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1654.588575][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1654.588575][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1654.588575][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1654.588575][T30704]  do_SYSENTER_32+0x73/0x90
[ 1654.588575][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1654.588575][T30704] 
[ 1654.588575][T30704] Uninit was stored to memory at:
[ 1654.588575][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1654.588575][T30704]  __msan_chain_origin+0x57/0xa0
[ 1654.588575][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1654.588575][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1654.588575][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1654.588575][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1654.588575][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1654.588575][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1654.588575][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1654.588575][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1654.588575][T30704]  do_SYSENTER_32+0x73/0x90
[ 1654.588575][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1654.588575][T30704] 
[ 1654.588575][T30704] Uninit was stored to memory at:
[ 1654.588575][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1654.588575][T30704]  __msan_chain_origin+0x57/0xa0
[ 1654.588575][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1654.588575][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1654.588575][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1654.588575][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1654.588575][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1654.588575][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1654.588575][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1654.588575][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1654.588575][T30704]  do_SYSENTER_32+0x73/0x90
[ 1654.588575][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1654.588575][T30704] 
[ 1654.588575][T30704] Uninit was stored to memory at:
[ 1654.588575][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1654.588575][T30704]  __msan_chain_origin+0x57/0xa0
[ 1654.588575][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1654.588575][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1654.588575][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1654.588575][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1654.588575][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1654.588575][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1654.588575][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1654.588575][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1654.588575][T30704]  do_SYSENTER_32+0x73/0x90
[ 1654.588575][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1654.588575][T30704] 
[ 1654.588575][T30704] Local variable ----msg_sys@do_recvmmsg created at:
[ 1654.588575][T30704]  do_recvmmsg+0xc2/0x22e0
[ 1654.588575][T30704]  do_recvmmsg+0xc2/0x22e0
[ 1655.096446][T30704] not chained 450000 origins
[ 1655.101093][T30704] CPU: 0 PID: 30704 Comm: syz-executor.2 Not tainted 5.9.0-rc8-syzkaller #0
[ 1655.103027][T30704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1655.103027][T30704] Call Trace:
[ 1655.123082][T30704]  dump_stack+0x21c/0x280
[ 1655.126436][T30704]  kmsan_internal_chain_origin+0x6f/0x130
[ 1655.126436][T30704]  ? do_user_addr_fault+0x1045/0x16d0
[ 1655.126436][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1655.139540][T30704]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1655.139540][T30704]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1655.139540][T30704]  ? _copy_from_user+0x201/0x310
[ 1655.139540][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1655.139540][T30704]  __msan_chain_origin+0x57/0xa0
[ 1655.139540][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1655.139540][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1655.139540][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1655.139540][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1655.139540][T30704]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1655.193038][T30704]  ? __msan_poison_alloca+0xe9/0x110
[ 1655.193038][T30704]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1655.193038][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1655.193038][T30704]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1655.193038][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1655.193038][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1655.193038][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1655.193038][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1655.193038][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1655.193038][T30704]  do_SYSENTER_32+0x73/0x90
[ 1655.193038][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1655.193038][T30704] RIP: 0023:0xf7f8a549
[ 1655.193038][T30704] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1655.273026][T30704] RSP: 002b:00000000f55840cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1655.283265][T30704] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1655.293127][T30704] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1655.303181][T30704] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1655.303181][T30704] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1655.315119][T30704] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1655.323255][T30704] Uninit was stored to memory at:
[ 1655.333044][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1655.333044][T30704]  __msan_chain_origin+0x57/0xa0
[ 1655.343221][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1655.343221][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1655.353451][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1655.353451][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1655.363208][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1655.363208][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1655.376442][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1655.376442][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1655.383278][T30704]  do_SYSENTER_32+0x73/0x90
[ 1655.383278][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1655.393051][T30704] 
[ 1655.393051][T30704] Uninit was stored to memory at:
[ 1655.403078][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1655.408831][T30704]  __msan_chain_origin+0x57/0xa0
[ 1655.413204][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1655.413204][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1655.425168][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1655.425168][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1655.434688][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1655.434688][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1655.443253][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1655.453197][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1655.453197][T30704]  do_SYSENTER_32+0x73/0x90
[ 1655.453197][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1655.463780][T30704] 
[ 1655.463780][T30704] Uninit was stored to memory at:
[ 1655.473197][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1655.473197][T30704]  __msan_chain_origin+0x57/0xa0
[ 1655.483486][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1655.483486][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1655.493031][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1655.493031][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1655.503281][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1655.503281][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1655.513074][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1655.523188][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1655.523188][T30704]  do_SYSENTER_32+0x73/0x90
[ 1655.533106][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1655.538185][T30704] 
[ 1655.538185][T30704] Uninit was stored to memory at:
[ 1655.543188][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1655.543188][T30704]  __msan_chain_origin+0x57/0xa0
[ 1655.553049][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1655.563304][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1655.563304][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1655.563304][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1655.573046][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1655.583181][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1655.583181][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1655.603206][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1655.603206][T30704]  do_SYSENTER_32+0x73/0x90
[ 1655.603206][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1655.613448][T30704] 
[ 1655.613448][T30704] Uninit was stored to memory at:
[ 1655.623087][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1655.628868][T30704]  __msan_chain_origin+0x57/0xa0
[ 1655.633315][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1655.639189][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1655.645089][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1655.645089][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1655.653198][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1655.653198][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1655.663160][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1655.673016][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1655.673016][T30704]  do_SYSENTER_32+0x73/0x90
[ 1655.673016][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1655.683257][T30704] 
[ 1655.683257][T30704] Uninit was stored to memory at:
[ 1655.695838][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1655.695838][T30704]  __msan_chain_origin+0x57/0xa0
[ 1655.703162][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1655.703162][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1655.713197][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1655.713197][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1655.723170][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1655.723170][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1655.733082][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1655.743522][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1655.743522][T30704]  do_SYSENTER_32+0x73/0x90
[ 1655.753061][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1655.755024][T30704] 
[ 1655.755024][T30704] Uninit was stored to memory at:
[ 1655.763181][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1655.763181][T30704]  __msan_chain_origin+0x57/0xa0
[ 1655.773198][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1655.783209][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1655.783209][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1655.793019][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1655.793019][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1655.803290][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1655.803290][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1655.813013][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1655.813013][T30704]  do_SYSENTER_32+0x73/0x90
[ 1655.823215][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1655.823215][T30704] 
[ 1655.833194][T30704] Local variable ----msg_sys@do_recvmmsg created at:
[ 1655.833194][T30704]  do_recvmmsg+0xc2/0x22e0
[ 1655.843467][T30704]  do_recvmmsg+0xc2/0x22e0
[ 1656.076785][T30704] not chained 460000 origins
[ 1656.081407][T30704] CPU: 0 PID: 30704 Comm: syz-executor.2 Not tainted 5.9.0-rc8-syzkaller #0
[ 1656.082891][T30704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1656.082891][T30704] Call Trace:
[ 1656.082891][T30704]  dump_stack+0x21c/0x280
[ 1656.082891][T30704]  kmsan_internal_chain_origin+0x6f/0x130
[ 1656.082891][T30704]  ? do_user_addr_fault+0x1045/0x16d0
[ 1656.082891][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1656.082891][T30704]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1656.082891][T30704]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1656.082891][T30704]  ? _copy_from_user+0x201/0x310
[ 1656.082891][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1656.082891][T30704]  __msan_chain_origin+0x57/0xa0
[ 1656.150511][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1656.150511][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1656.150511][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1656.150511][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1656.150511][T30704]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1656.173027][T30704]  ? __msan_poison_alloca+0xe9/0x110
[ 1656.173027][T30704]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1656.173027][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1656.173027][T30704]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1656.173027][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1656.173027][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1656.173027][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1656.173027][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1656.173027][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1656.173027][T30704]  do_SYSENTER_32+0x73/0x90
[ 1656.173027][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1656.173027][T30704] RIP: 0023:0xf7f8a549
[ 1656.173027][T30704] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1656.253887][T30704] RSP: 002b:00000000f55840cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1656.253887][T30704] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1656.253887][T30704] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1656.253887][T30704] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1656.253887][T30704] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1656.253887][T30704] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1656.253887][T30704] Uninit was stored to memory at:
[ 1656.320177][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1656.320177][T30704]  __msan_chain_origin+0x57/0xa0
[ 1656.328028][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1656.333167][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1656.333167][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1656.346296][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1656.346296][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1656.356027][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1656.363077][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1656.365951][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1656.373307][T30704]  do_SYSENTER_32+0x73/0x90
[ 1656.373307][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1656.383057][T30704] 
[ 1656.385933][T30704] Uninit was stored to memory at:
[ 1656.385933][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1656.397033][T30704]  __msan_chain_origin+0x57/0xa0
[ 1656.403130][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1656.406083][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1656.413153][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1656.413153][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1656.418844][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1656.425924][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1656.433091][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1656.435150][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1656.443074][T30704]  do_SYSENTER_32+0x73/0x90
[ 1656.445931][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1656.453188][T30704] 
[ 1656.453188][T30704] Uninit was stored to memory at:
[ 1656.458553][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1656.466036][T30704]  __msan_chain_origin+0x57/0xa0
[ 1656.473189][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1656.473189][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1656.483081][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1656.485927][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1656.493200][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1656.493200][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1656.493200][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1656.510926][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1656.513202][T30704]  do_SYSENTER_32+0x73/0x90
[ 1656.513202][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1656.523111][T30704] 
[ 1656.528057][T30704] Uninit was stored to memory at:
[ 1656.533189][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1656.533189][T30704]  __msan_chain_origin+0x57/0xa0
[ 1656.543083][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1656.547821][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1656.553272][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1656.553272][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1656.563066][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1656.565894][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1656.573880][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1656.573880][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1656.586274][T30704]  do_SYSENTER_32+0x73/0x90
[ 1656.586274][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1656.593197][T30704] 
[ 1656.593197][T30704] Uninit was stored to memory at:
[ 1656.603058][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1656.605891][T30704]  __msan_chain_origin+0x57/0xa0
[ 1656.613084][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1656.616980][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1656.623055][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1656.625885][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1656.633071][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1656.635094][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1656.645996][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1656.645996][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1656.655317][T30704]  do_SYSENTER_32+0x73/0x90
[ 1656.655317][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1656.666299][T30704] 
[ 1656.666299][T30704] Uninit was stored to memory at:
[ 1656.673271][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1656.673271][T30704]  __msan_chain_origin+0x57/0xa0
[ 1656.683097][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1656.686247][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1656.693206][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1656.693206][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1656.703105][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1656.706040][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1656.713185][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1656.713185][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1656.723096][T30704]  do_SYSENTER_32+0x73/0x90
[ 1656.729683][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1656.733205][T30704] 
[ 1656.733205][T30704] Uninit was stored to memory at:
[ 1656.733205][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1656.733205][T30704]  __msan_chain_origin+0x57/0xa0
[ 1656.733205][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1656.756591][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1656.763060][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1656.767271][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1656.783001][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1656.783001][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1656.796457][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1656.796457][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1656.802984][T30704]  do_SYSENTER_32+0x73/0x90
[ 1656.802984][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1656.816354][T30704] 
[ 1656.816354][T30704] Local variable ----msg_sys@do_recvmmsg created at:
[ 1656.823153][T30704]  do_recvmmsg+0xc2/0x22e0
[ 1656.823153][T30704]  do_recvmmsg+0xc2/0x22e0
[ 1657.081388][T30704] not chained 470000 origins
[ 1657.083158][T30704] CPU: 1 PID: 30704 Comm: syz-executor.2 Not tainted 5.9.0-rc8-syzkaller #0
[ 1657.083158][T30704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1657.083158][T30704] Call Trace:
[ 1657.083158][T30704]  dump_stack+0x21c/0x280
[ 1657.083158][T30704]  kmsan_internal_chain_origin+0x6f/0x130
[ 1657.083158][T30704]  ? do_user_addr_fault+0x1045/0x16d0
[ 1657.083158][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1657.083158][T30704]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1657.083158][T30704]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1657.083158][T30704]  ? _copy_from_user+0x201/0x310
[ 1657.083158][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1657.083158][T30704]  __msan_chain_origin+0x57/0xa0
[ 1657.083158][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1657.083158][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1657.083158][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1657.083158][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1657.175262][T30704]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1657.175262][T30704]  ? __msan_poison_alloca+0xe9/0x110
[ 1657.175262][T30704]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1657.175262][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1657.175262][T30704]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1657.175262][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1657.175262][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1657.175262][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1657.175262][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1657.175262][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1657.175262][T30704]  do_SYSENTER_32+0x73/0x90
[ 1657.175262][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1657.175262][T30704] RIP: 0023:0xf7f8a549
[ 1657.175262][T30704] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1657.175262][T30704] RSP: 002b:00000000f55840cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1657.175262][T30704] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1657.175262][T30704] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1657.175262][T30704] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1657.175262][T30704] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1657.175262][T30704] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1657.175262][T30704] Uninit was stored to memory at:
[ 1657.175262][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1657.175262][T30704]  __msan_chain_origin+0x57/0xa0
[ 1657.175262][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1657.175262][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1657.175262][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1657.175262][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1657.175262][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1657.175262][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1657.175262][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1657.175262][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1657.175262][T30704]  do_SYSENTER_32+0x73/0x90
[ 1657.175262][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1657.175262][T30704] 
[ 1657.175262][T30704] Uninit was stored to memory at:
[ 1657.175262][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1657.175262][T30704]  __msan_chain_origin+0x57/0xa0
[ 1657.175262][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1657.175262][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1657.175262][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1657.175262][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1657.175262][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1657.175262][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1657.175262][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1657.175262][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1657.175262][T30704]  do_SYSENTER_32+0x73/0x90
[ 1657.175262][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1657.175262][T30704] 
[ 1657.175262][T30704] Uninit was stored to memory at:
[ 1657.175262][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1657.175262][T30704]  __msan_chain_origin+0x57/0xa0
[ 1657.175262][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1657.175262][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1657.175262][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1657.175262][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1657.175262][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1657.175262][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1657.175262][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1657.175262][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1657.175262][T30704]  do_SYSENTER_32+0x73/0x90
[ 1657.175262][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1657.175262][T30704] 
[ 1657.175262][T30704] Uninit was stored to memory at:
[ 1657.175262][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1657.175262][T30704]  __msan_chain_origin+0x57/0xa0
[ 1657.175262][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1657.175262][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1657.175262][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1657.175262][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1657.175262][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1657.175262][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1657.175262][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1657.175262][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1657.175262][T30704]  do_SYSENTER_32+0x73/0x90
[ 1657.175262][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1657.175262][T30704] 
[ 1657.175262][T30704] Uninit was stored to memory at:
[ 1657.175262][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1657.175262][T30704]  __msan_chain_origin+0x57/0xa0
[ 1657.175262][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1657.175262][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1657.175262][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1657.175262][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1657.175262][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1657.175262][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1657.175262][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1657.175262][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1657.175262][T30704]  do_SYSENTER_32+0x73/0x90
[ 1657.175262][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1657.175262][T30704] 
[ 1657.175262][T30704] Uninit was stored to memory at:
[ 1657.175262][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1657.175262][T30704]  __msan_chain_origin+0x57/0xa0
[ 1657.175262][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1657.175262][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1657.175262][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1657.175262][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1657.175262][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1657.175262][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1657.175262][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1657.175262][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1657.175262][T30704]  do_SYSENTER_32+0x73/0x90
[ 1657.175262][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1657.175262][T30704] 
[ 1657.175262][T30704] Uninit was stored to memory at:
[ 1657.175262][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1657.175262][T30704]  __msan_chain_origin+0x57/0xa0
[ 1657.175262][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1657.175262][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1657.175262][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1657.175262][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1657.175262][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1657.175262][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1657.175262][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1657.175262][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1657.175262][T30704]  do_SYSENTER_32+0x73/0x90
[ 1657.175262][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1657.175262][T30704] 
[ 1657.175262][T30704] Local variable ----msg_sys@do_recvmmsg created at:
[ 1657.175262][T30704]  do_recvmmsg+0xc2/0x22e0
[ 1657.175262][T30704]  do_recvmmsg+0xc2/0x22e0
[ 1658.117566][T30704] not chained 480000 origins
[ 1658.122193][T30704] CPU: 1 PID: 30704 Comm: syz-executor.2 Not tainted 5.9.0-rc8-syzkaller #0
[ 1658.122897][T30704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1658.122897][T30704] Call Trace:
[ 1658.122897][T30704]  dump_stack+0x21c/0x280
[ 1658.122897][T30704]  kmsan_internal_chain_origin+0x6f/0x130
[ 1658.122897][T30704]  ? do_user_addr_fault+0x1045/0x16d0
[ 1658.122897][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1658.122897][T30704]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1658.122897][T30704]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1658.122897][T30704]  ? _copy_from_user+0x201/0x310
[ 1658.122897][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1658.122897][T30704]  __msan_chain_origin+0x57/0xa0
[ 1658.122897][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1658.122897][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1658.199234][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1658.199234][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1658.199234][T30704]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1658.199234][T30704]  ? __msan_poison_alloca+0xe9/0x110
[ 1658.199234][T30704]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1658.199234][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1658.199234][T30704]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1658.199234][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1658.199234][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1658.199234][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1658.199234][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1658.199234][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1658.199234][T30704]  do_SYSENTER_32+0x73/0x90
[ 1658.199234][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1658.199234][T30704] RIP: 0023:0xf7f8a549
[ 1658.199234][T30704] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1658.199234][T30704] RSP: 002b:00000000f55840cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1658.301820][T30704] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1658.301820][T30704] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1658.301820][T30704] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1658.301820][T30704] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1658.301820][T30704] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1658.301820][T30704] Uninit was stored to memory at:
[ 1658.301820][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1658.301820][T30704]  __msan_chain_origin+0x57/0xa0
[ 1658.301820][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1658.301820][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1658.301820][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1658.301820][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1658.301820][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1658.301820][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1658.301820][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1658.301820][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1658.301820][T30704]  do_SYSENTER_32+0x73/0x90
[ 1658.301820][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1658.301820][T30704] 
[ 1658.301820][T30704] Uninit was stored to memory at:
[ 1658.301820][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1658.301820][T30704]  __msan_chain_origin+0x57/0xa0
[ 1658.301820][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1658.301820][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1658.301820][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1658.301820][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1658.301820][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1658.301820][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1658.301820][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1658.301820][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1658.301820][T30704]  do_SYSENTER_32+0x73/0x90
[ 1658.301820][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1658.301820][T30704] 
[ 1658.301820][T30704] Uninit was stored to memory at:
[ 1658.301820][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1658.301820][T30704]  __msan_chain_origin+0x57/0xa0
[ 1658.301820][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1658.301820][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1658.301820][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1658.301820][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1658.301820][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1658.301820][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1658.301820][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1658.301820][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1658.301820][T30704]  do_SYSENTER_32+0x73/0x90
[ 1658.301820][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1658.301820][T30704] 
[ 1658.301820][T30704] Uninit was stored to memory at:
[ 1658.301820][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1658.301820][T30704]  __msan_chain_origin+0x57/0xa0
[ 1658.301820][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1658.301820][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1658.301820][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1658.301820][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1658.301820][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1658.301820][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1658.301820][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1658.301820][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1658.301820][T30704]  do_SYSENTER_32+0x73/0x90
[ 1658.301820][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1658.301820][T30704] 
[ 1658.301820][T30704] Uninit was stored to memory at:
[ 1658.301820][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1658.301820][T30704]  __msan_chain_origin+0x57/0xa0
[ 1658.301820][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1658.301820][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1658.301820][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1658.301820][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1658.301820][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1658.301820][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1658.301820][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1658.301820][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1658.301820][T30704]  do_SYSENTER_32+0x73/0x90
[ 1658.301820][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1658.301820][T30704] 
[ 1658.301820][T30704] Uninit was stored to memory at:
[ 1658.301820][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1658.301820][T30704]  __msan_chain_origin+0x57/0xa0
[ 1658.301820][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1658.301820][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1658.301820][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1658.301820][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1658.301820][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1658.301820][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1658.301820][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1658.301820][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1658.301820][T30704]  do_SYSENTER_32+0x73/0x90
[ 1658.301820][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1658.301820][T30704] 
[ 1658.301820][T30704] Uninit was stored to memory at:
[ 1658.301820][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1658.301820][T30704]  __msan_chain_origin+0x57/0xa0
[ 1658.301820][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1658.301820][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1658.301820][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1658.301820][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1658.301820][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1658.301820][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1658.301820][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1658.301820][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1658.301820][T30704]  do_SYSENTER_32+0x73/0x90
[ 1658.301820][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1658.301820][T30704] 
[ 1658.301820][T30704] Local variable ----msg_sys@do_recvmmsg created at:
[ 1658.301820][T30704]  do_recvmmsg+0xc2/0x22e0
[ 1658.301820][T30704]  do_recvmmsg+0xc2/0x22e0
[ 1659.041565][T30704] not chained 490000 origins
[ 1659.043137][T30704] CPU: 1 PID: 30704 Comm: syz-executor.2 Not tainted 5.9.0-rc8-syzkaller #0
[ 1659.043137][T30704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1659.043137][T30704] Call Trace:
[ 1659.043137][T30704]  dump_stack+0x21c/0x280
[ 1659.043137][T30704]  kmsan_internal_chain_origin+0x6f/0x130
[ 1659.043137][T30704]  ? do_user_addr_fault+0x1045/0x16d0
[ 1659.043137][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1659.043137][T30704]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1659.043137][T30704]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1659.043137][T30704]  ? _copy_from_user+0x201/0x310
[ 1659.043137][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1659.043137][T30704]  __msan_chain_origin+0x57/0xa0
[ 1659.043137][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1659.043137][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1659.121010][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1659.121010][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1659.121010][T30704]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1659.121010][T30704]  ? __msan_poison_alloca+0xe9/0x110
[ 1659.121010][T30704]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1659.121010][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1659.121010][T30704]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1659.121010][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1659.121010][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1659.121010][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1659.121010][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1659.121010][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1659.121010][T30704]  do_SYSENTER_32+0x73/0x90
[ 1659.121010][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1659.121010][T30704] RIP: 0023:0xf7f8a549
[ 1659.121010][T30704] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1659.223521][T30704] RSP: 002b:00000000f55840cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1659.223521][T30704] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1659.223521][T30704] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1659.223521][T30704] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1659.223521][T30704] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1659.223521][T30704] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1659.223521][T30704] Uninit was stored to memory at:
[ 1659.223521][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1659.223521][T30704]  __msan_chain_origin+0x57/0xa0
[ 1659.223521][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1659.223521][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1659.223521][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1659.223521][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1659.223521][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1659.223521][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1659.223521][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1659.223521][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1659.325792][T30704]  do_SYSENTER_32+0x73/0x90
[ 1659.325792][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1659.325792][T30704] 
[ 1659.325792][T30704] Uninit was stored to memory at:
[ 1659.325792][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1659.325792][T30704]  __msan_chain_origin+0x57/0xa0
[ 1659.325792][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1659.325792][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1659.325792][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1659.325792][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1659.325792][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1659.325792][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1659.325792][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1659.325792][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1659.325792][T30704]  do_SYSENTER_32+0x73/0x90
[ 1659.325792][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1659.325792][T30704] 
[ 1659.325792][T30704] Uninit was stored to memory at:
[ 1659.325792][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1659.325792][T30704]  __msan_chain_origin+0x57/0xa0
[ 1659.428198][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1659.428198][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1659.428198][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1659.428198][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1659.428198][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1659.428198][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1659.428198][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1659.428198][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1659.428198][T30704]  do_SYSENTER_32+0x73/0x90
[ 1659.428198][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1659.428198][T30704] 
[ 1659.428198][T30704] Uninit was stored to memory at:
[ 1659.428198][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1659.428198][T30704]  __msan_chain_origin+0x57/0xa0
[ 1659.428198][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1659.428198][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1659.428198][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1659.428198][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1659.428198][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1659.428198][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1659.530639][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1659.530639][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1659.530639][T30704]  do_SYSENTER_32+0x73/0x90
[ 1659.530639][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1659.530639][T30704] 
[ 1659.530639][T30704] Uninit was stored to memory at:
[ 1659.530639][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1659.530639][T30704]  __msan_chain_origin+0x57/0xa0
[ 1659.530639][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1659.530639][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1659.530639][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1659.530639][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1659.530639][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1659.530639][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1659.530639][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1659.530639][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1659.530639][T30704]  do_SYSENTER_32+0x73/0x90
[ 1659.530639][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1659.530639][T30704] 
[ 1659.530639][T30704] Uninit was stored to memory at:
[ 1659.530639][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1659.633189][T30704]  __msan_chain_origin+0x57/0xa0
[ 1659.633189][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1659.633189][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1659.633189][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1659.633189][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1659.633189][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1659.633189][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1659.633189][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1659.633189][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1659.633189][T30704]  do_SYSENTER_32+0x73/0x90
[ 1659.633189][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1659.633189][T30704] 
[ 1659.633189][T30704] Uninit was stored to memory at:
[ 1659.633189][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1659.633189][T30704]  __msan_chain_origin+0x57/0xa0
[ 1659.633189][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1659.633189][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1659.633189][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1659.633189][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1659.735373][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1659.735373][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1659.735373][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1659.735373][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1659.735373][T30704]  do_SYSENTER_32+0x73/0x90
[ 1659.735373][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1659.735373][T30704] 
[ 1659.735373][T30704] Local variable ----msg_sys@do_recvmmsg created at:
[ 1659.776852][T30704]  do_recvmmsg+0xc2/0x22e0
[ 1659.776852][T30704]  do_recvmmsg+0xc2/0x22e0
[ 1660.008849][T30704] not chained 500000 origins
[ 1660.013093][T30704] CPU: 0 PID: 30704 Comm: syz-executor.2 Not tainted 5.9.0-rc8-syzkaller #0
[ 1660.013093][T30704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1660.013093][T30704] Call Trace:
[ 1660.013093][T30704]  dump_stack+0x21c/0x280
[ 1660.013093][T30704]  kmsan_internal_chain_origin+0x6f/0x130
[ 1660.041223][T30704]  ? do_user_addr_fault+0x1045/0x16d0
[ 1660.041223][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1660.053422][T30704]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1660.053422][T30704]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1660.053422][T30704]  ? _copy_from_user+0x201/0x310
[ 1660.053422][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1660.053422][T30704]  __msan_chain_origin+0x57/0xa0
[ 1660.053422][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1660.053422][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1660.053422][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1660.053422][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1660.053422][T30704]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1660.053422][T30704]  ? __msan_poison_alloca+0xe9/0x110
[ 1660.053422][T30704]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1660.053422][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1660.123084][T30704]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1660.123084][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1660.123084][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1660.123084][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1660.123084][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1660.123084][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1660.123084][T30704]  do_SYSENTER_32+0x73/0x90
[ 1660.123084][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1660.123084][T30704] RIP: 0023:0xf7f8a549
[ 1660.123084][T30704] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1660.123084][T30704] RSP: 002b:00000000f55840cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1660.193104][T30704] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1660.193104][T30704] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1660.193104][T30704] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1660.193104][T30704] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1660.193104][T30704] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1660.193104][T30704] Uninit was stored to memory at:
[ 1660.193104][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1660.193104][T30704]  __msan_chain_origin+0x57/0xa0
[ 1660.253133][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1660.253133][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1660.263000][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1660.263000][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1660.263000][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1660.263000][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1660.263000][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1660.263000][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1660.263000][T30704]  do_SYSENTER_32+0x73/0x90
[ 1660.263000][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1660.263000][T30704] 
[ 1660.263000][T30704] Uninit was stored to memory at:
[ 1660.263000][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1660.263000][T30704]  __msan_chain_origin+0x57/0xa0
[ 1660.263000][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1660.263000][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1660.333127][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1660.333127][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1660.333127][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1660.333127][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1660.333127][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1660.333127][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1660.333127][T30704]  do_SYSENTER_32+0x73/0x90
[ 1660.333127][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1660.333127][T30704] 
[ 1660.333127][T30704] Uninit was stored to memory at:
[ 1660.333127][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1660.333127][T30704]  __msan_chain_origin+0x57/0xa0
[ 1660.333127][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1660.333127][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1660.333127][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1660.333127][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1660.333127][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1660.333127][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1660.333127][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1660.433113][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1660.433113][T30704]  do_SYSENTER_32+0x73/0x90
[ 1660.433113][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1660.433113][T30704] 
[ 1660.433113][T30704] Uninit was stored to memory at:
[ 1660.433113][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1660.433113][T30704]  __msan_chain_origin+0x57/0xa0
[ 1660.433113][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1660.433113][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1660.433113][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1660.433113][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1660.433113][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1660.433113][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1660.433113][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1660.503004][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1660.503004][T30704]  do_SYSENTER_32+0x73/0x90
[ 1660.503004][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1660.503004][T30704] 
[ 1660.503004][T30704] Uninit was stored to memory at:
[ 1660.503004][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1660.503004][T30704]  __msan_chain_origin+0x57/0xa0
[ 1660.503004][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1660.503004][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1660.503004][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1660.503004][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1660.503004][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1660.503004][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1660.503004][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1660.573170][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1660.573170][T30704]  do_SYSENTER_32+0x73/0x90
[ 1660.573170][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1660.573170][T30704] 
[ 1660.573170][T30704] Uninit was stored to memory at:
[ 1660.573170][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1660.573170][T30704]  __msan_chain_origin+0x57/0xa0
[ 1660.573170][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1660.573170][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1660.573170][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1660.573170][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1660.573170][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1660.573170][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1660.573170][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1660.643104][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1660.643104][T30704]  do_SYSENTER_32+0x73/0x90
[ 1660.643104][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1660.643104][T30704] 
[ 1660.643104][T30704] Uninit was stored to memory at:
[ 1660.643104][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1660.643104][T30704]  __msan_chain_origin+0x57/0xa0
[ 1660.643104][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1660.643104][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1660.643104][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1660.643104][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1660.643104][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1660.643104][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1660.643104][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1660.713061][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1660.713061][T30704]  do_SYSENTER_32+0x73/0x90
[ 1660.713061][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1660.713061][T30704] 
[ 1660.713061][T30704] Local variable ----msg_sys@do_recvmmsg created at:
[ 1660.713061][T30704]  do_recvmmsg+0xc2/0x22e0
[ 1660.713061][T30704]  do_recvmmsg+0xc2/0x22e0
[ 1660.905799][T30704] not chained 510000 origins
[ 1660.910407][T30704] CPU: 0 PID: 30704 Comm: syz-executor.2 Not tainted 5.9.0-rc8-syzkaller #0
[ 1660.912874][T30704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1660.912874][T30704] Call Trace:
[ 1660.912874][T30704]  dump_stack+0x21c/0x280
[ 1660.912874][T30704]  kmsan_internal_chain_origin+0x6f/0x130
[ 1660.912874][T30704]  ? do_user_addr_fault+0x1045/0x16d0
[ 1660.912874][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1660.912874][T30704]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1660.912874][T30704]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1660.912874][T30704]  ? _copy_from_user+0x201/0x310
[ 1660.912874][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1660.973423][T30704]  __msan_chain_origin+0x57/0xa0
[ 1660.973423][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1660.983087][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1660.986119][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1660.993296][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1660.993296][T30704]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1661.003116][T30704]  ? __msan_poison_alloca+0xe9/0x110
[ 1661.011491][T30704]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1661.013152][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1661.013152][T30704]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1661.023188][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1661.028051][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1661.033179][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1661.043089][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1661.045954][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1661.053176][T30704]  do_SYSENTER_32+0x73/0x90
[ 1661.053176][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1661.063128][T30704] RIP: 0023:0xf7f8a549
[ 1661.068530][T30704] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1661.085947][T30704] RSP: 002b:00000000f55840cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1661.093256][T30704] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1661.106301][T30704] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1661.113076][T30704] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1661.123126][T30704] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1661.126087][T30704] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1661.136634][T30704] Uninit was stored to memory at:
[ 1661.143087][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1661.145928][T30704]  __msan_chain_origin+0x57/0xa0
[ 1661.153277][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1661.153277][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1661.165992][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1661.168941][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1661.173159][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1661.173159][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1661.186087][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1661.193008][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1661.193147][T30704]  do_SYSENTER_32+0x73/0x90
[ 1661.193147][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1661.206183][T30704] 
[ 1661.206183][T30704] Uninit was stored to memory at:
[ 1661.213394][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1661.213394][T30704]  __msan_chain_origin+0x57/0xa0
[ 1661.223196][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1661.231667][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1661.233551][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1661.233551][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1661.243200][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1661.248025][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1661.253182][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1661.263106][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1661.266013][T30704]  do_SYSENTER_32+0x73/0x90
[ 1661.273294][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1661.273294][T30704] 
[ 1661.273294][T30704] Uninit was stored to memory at:
[ 1661.286725][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1661.293193][T30704]  __msan_chain_origin+0x57/0xa0
[ 1661.293193][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1661.303154][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1661.306160][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1661.306160][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1661.313173][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1661.323103][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1661.326007][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1661.333072][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1661.338837][T30704]  do_SYSENTER_32+0x73/0x90
[ 1661.343096][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1661.345987][T30704] 
[ 1661.345987][T30704] Uninit was stored to memory at:
[ 1661.355163][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1661.363148][T30704]  __msan_chain_origin+0x57/0xa0
[ 1661.366365][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1661.366365][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1661.374409][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1661.383096][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1661.386022][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1661.393278][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1661.393278][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1661.406077][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1661.406077][T30704]  do_SYSENTER_32+0x73/0x90
[ 1661.413192][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1661.413192][T30704] 
[ 1661.423190][T30704] Uninit was stored to memory at:
[ 1661.426398][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1661.433173][T30704]  __msan_chain_origin+0x57/0xa0
[ 1661.433173][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1661.443137][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1661.443137][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1661.453267][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1661.453267][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1661.463118][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1661.467935][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1661.476216][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1661.476216][T30704]  do_SYSENTER_32+0x73/0x90
[ 1661.486139][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1661.493072][T30704] 
[ 1661.493546][T30704] Uninit was stored to memory at:
[ 1661.493546][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1661.506036][T30704]  __msan_chain_origin+0x57/0xa0
[ 1661.506036][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1661.513274][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1661.513274][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1661.525990][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1661.525990][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1661.534662][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1661.543165][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1661.546152][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1661.553070][T30704]  do_SYSENTER_32+0x73/0x90
[ 1661.553070][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1661.563092][T30704] 
[ 1661.566000][T30704] Uninit was stored to memory at:
[ 1661.566000][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1661.575165][T30704]  __msan_chain_origin+0x57/0xa0
[ 1661.578529][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1661.586060][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1661.586060][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1661.593186][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1661.593186][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1661.606103][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1661.613194][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1661.613194][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1661.623163][T30704]  do_SYSENTER_32+0x73/0x90
[ 1661.626395][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1661.633320][T30704] 
[ 1661.633320][T30704] Local variable ----msg_sys@do_recvmmsg created at:
[ 1661.643153][T30704]  do_recvmmsg+0xc2/0x22e0
[ 1661.646259][T30704]  do_recvmmsg+0xc2/0x22e0
[ 1661.917694][T30704] not chained 520000 origins
[ 1661.922307][T30704] CPU: 0 PID: 30704 Comm: syz-executor.2 Not tainted 5.9.0-rc8-syzkaller #0
[ 1661.922890][T30704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1661.922890][T30704] Call Trace:
[ 1661.922890][T30704]  dump_stack+0x21c/0x280
[ 1661.922890][T30704]  kmsan_internal_chain_origin+0x6f/0x130
[ 1661.922890][T30704]  ? do_user_addr_fault+0x1045/0x16d0
[ 1661.922890][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1661.922890][T30704]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1661.922890][T30704]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1661.922890][T30704]  ? _copy_from_user+0x201/0x310
[ 1661.922890][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1661.922890][T30704]  __msan_chain_origin+0x57/0xa0
[ 1661.987082][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1661.987082][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1661.987082][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1661.987082][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1661.987082][T30704]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1661.987082][T30704]  ? __msan_poison_alloca+0xe9/0x110
[ 1661.987082][T30704]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1661.987082][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1661.987082][T30704]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1661.987082][T30704]  ? kmsan_get_metadata+0x116/0x180
[ 1661.987082][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1661.987082][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1661.987082][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1661.987082][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1661.987082][T30704]  do_SYSENTER_32+0x73/0x90
[ 1661.987082][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1661.987082][T30704] RIP: 0023:0xf7f8a549
[ 1661.987082][T30704] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1661.987082][T30704] RSP: 002b:00000000f55840cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1661.987082][T30704] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1661.987082][T30704] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1661.987082][T30704] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1661.987082][T30704] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1661.987082][T30704] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1662.155403][T30704] Uninit was stored to memory at:
[ 1662.155403][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1662.163566][T30704]  __msan_chain_origin+0x57/0xa0
[ 1662.163566][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1662.163566][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1662.163566][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1662.163566][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1662.163566][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1662.163566][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1662.163566][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1662.163566][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1662.163566][T30704]  do_SYSENTER_32+0x73/0x90
[ 1662.163566][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1662.163566][T30704] 
[ 1662.163566][T30704] Uninit was stored to memory at:
[ 1662.163566][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1662.163566][T30704]  __msan_chain_origin+0x57/0xa0
[ 1662.163566][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1662.163566][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1662.163566][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1662.253083][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1662.253083][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1662.253083][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1662.253083][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1662.253083][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1662.253083][T30704]  do_SYSENTER_32+0x73/0x90
[ 1662.253083][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1662.253083][T30704] 
[ 1662.253083][T30704] Uninit was stored to memory at:
[ 1662.253083][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1662.253083][T30704]  __msan_chain_origin+0x57/0xa0
[ 1662.253083][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1662.253083][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1662.253083][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1662.253083][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1662.253083][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1662.253083][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1662.253083][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1662.253083][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1662.253083][T30704]  do_SYSENTER_32+0x73/0x90
[ 1662.253083][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1662.253083][T30704] 
[ 1662.253083][T30704] Uninit was stored to memory at:
[ 1662.253083][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1662.253083][T30704]  __msan_chain_origin+0x57/0xa0
[ 1662.253083][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1662.253083][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1662.253083][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1662.253083][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1662.253083][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1662.253083][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1662.253083][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1662.253083][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1662.253083][T30704]  do_SYSENTER_32+0x73/0x90
[ 1662.253083][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1662.253083][T30704] 
[ 1662.253083][T30704] Uninit was stored to memory at:
[ 1662.253083][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1662.253083][T30704]  __msan_chain_origin+0x57/0xa0
[ 1662.253083][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1662.253083][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1662.253083][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1662.253083][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1662.253083][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1662.253083][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1662.253083][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1662.253083][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1662.253083][T30704]  do_SYSENTER_32+0x73/0x90
[ 1662.253083][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1662.253083][T30704] 
[ 1662.253083][T30704] Uninit was stored to memory at:
[ 1662.253083][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1662.253083][T30704]  __msan_chain_origin+0x57/0xa0
[ 1662.253083][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1662.253083][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1662.253083][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1662.253083][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1662.253083][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1662.253083][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1662.253083][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1662.253083][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1662.253083][T30704]  do_SYSENTER_32+0x73/0x90
[ 1662.253083][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1662.253083][T30704] 
[ 1662.253083][T30704] Uninit was stored to memory at:
[ 1662.253083][T30704]  kmsan_internal_chain_origin+0xad/0x130
[ 1662.253083][T30704]  __msan_chain_origin+0x57/0xa0
[ 1662.253083][T30704]  __get_compat_msghdr+0x6db/0x9d0
[ 1662.253083][T30704]  get_compat_msghdr+0x108/0x2b0
[ 1662.253083][T30704]  do_recvmmsg+0xdc7/0x22e0
[ 1662.253083][T30704]  __sys_recvmmsg+0x340/0x5f0
[ 1662.253083][T30704]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1662.253083][T30704]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1662.253083][T30704]  __do_fast_syscall_32+0x129/0x180
[ 1662.253083][T30704]  do_fast_syscall_32+0x6a/0xc0
[ 1662.253083][T30704]  do_SYSENTER_32+0x73/0x90
[ 1662.253083][T30704]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1662.253083][T30704] 
[ 1662.253083][T30704] Local variable ----msg_sys@do_recvmmsg created at:
[ 1662.253083][T30704]  do_recvmmsg+0xc2/0x22e0
[ 1662.253083][T30704]  do_recvmmsg+0xc2/0x22e0
11:18:34 executing program 2:
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xea841, 0x4)

11:18:34 executing program 3:
r0 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2c, &(0x7f0000000500)={0x0, {{0xa, 0x0, 0xfffffffd, @mcast2}}, {{0xa, 0x0, 0x2, @private1}}}, 0x104)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = dup(r1)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r2, 0x89f2, &(0x7f0000000180)={'ip6_vti0\x00', &(0x7f0000000000)={'syztnl2\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @dev, @rand_addr=' \x01\x00'}})
setsockopt$SO_J1939_SEND_PRIO(r2, 0x6b, 0x3, &(0x7f0000000000)=0x3, 0x4)

11:18:34 executing program 5:
r0 = syz_open_dev$evdev(&(0x7f0000000140)='/dev/input/event#\x00', 0x0, 0x6)
write$binfmt_elf64(r0, &(0x7f00000000c0)=ANY=[], 0xffffff04)
r1 = gettid()
timer_create(0x0, &(0x7f0000000100)={0x0, 0x12}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x1c9c380}}, 0x0)
ioctl$BTRFS_IOC_BALANCE_CTL(r0, 0x40049421, 0x0)
tkill(r1, 0x8001004000000016)

11:18:34 executing program 4:
ioctl$sock_SIOCOUTQNSD(0xffffffffffffffff, 0x894b, 0x0)
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000380)='/dev/loop-control\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0)
ioctl$sock_inet_SIOCGIFADDR(0xffffffffffffffff, 0x8915, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(0xffffffffffffffff, 0x0, 0x0)
socket$packet(0x11, 0x0, 0x300)
socket(0xa, 0x0, 0x0)
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDPRL(r1, 0x89f5, 0x0)

11:18:34 executing program 1:
pipe2$9p(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x80800)
write$P9_RREAD(r0, &(0x7f0000000340)=ANY=[], 0xfffffe62)
write$P9_RSTAT(r0, &(0x7f0000000080)={0x5e, 0x7d, 0x0, {0x0, 0x57, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x4, 'nbd\x00', 0x4, 'nbd\x00', 0xe, '\xe3\xfa\x9d\xcb\x11\x9fxf\x13{nbd\x17', 0xe, '/dev/ubi_ctrl\x00'}}, 0x5e)

11:18:34 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptmx\x00', 0x0, 0x0)
dup2(r1, r0)
ioctl$TIOCSBRK(r0, 0x5427)

11:18:35 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x0, 0x0)
dup3(r0, r1, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x8000)

11:18:35 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
dup2(r0, r1)
sendmsg$ETHTOOL_MSG_RINGS_SET(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)

11:18:35 executing program 4:
r0 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$sock_timeval(r0, 0x1, 0x15, &(0x7f0000000180)={0x0, 0xea60}, 0x10)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x3}, 0x1c)
r1 = dup(r0)
sendmsg$NLBL_CALIPSO_C_LIST(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x0)

11:18:35 executing program 2:
socketpair(0x1, 0x5, 0x0, &(0x7f00000003c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x4c09, 0x0)

11:18:35 executing program 0:
openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='fd/3\x00')
ioctl$TUNSETIFINDEX(r0, 0x400454da, &(0x7f0000000000))

11:18:36 executing program 1:
r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x40, 0x0)
close(r0)
socket$unix(0x1, 0x2, 0x0)
ioctl$sock_SIOCOUTQ(r0, 0x5411, &(0x7f0000000080))

11:18:36 executing program 2:
r0 = socket(0x1, 0x5, 0x0)
sendmsg$NL80211_CMD_SET_PMK(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)

11:18:36 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_NEW_KEY(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x20000800)

11:18:40 executing program 5:
r0 = socket(0x2, 0xa, 0x0)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsa\x00', 0x0, 0x0)
r2 = fcntl$dupfd(r0, 0x0, r1)
ioctl$BTRFS_IOC_BALANCE(r2, 0x8906, 0x0)

11:18:40 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = open(&(0x7f00000001c0)='./file1\x00', 0x20040, 0x0)
dup2(r0, r1)
setsockopt$IP_VS_SO_SET_ADDDEST(r1, 0x0, 0xc, 0x0, 0x0)

11:18:40 executing program 2:
r0 = eventfd2(0x0, 0x0)
close(r0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TEAM_CMD_NOOP(r0, &(0x7f0000001000)={0x0, 0x0, &(0x7f0000000fc0)={0x0}}, 0x0)

11:18:40 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CALIPSO_C_LISTALL(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x840)

11:18:40 executing program 4:
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
close(r0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x3e, 0x0, 0x0)

11:18:40 executing program 3:
r0 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2c, &(0x7f0000000500)={0x0, {{0xa, 0xfffc, 0x0, @mcast1}}, {{0xa, 0x0, 0x80, @private1={0xfc, 0x1, [], 0x3}}}}, 0x104)
r1 = socket$inet6(0xa, 0x3, 0x3a)
setsockopt$inet6_int(r1, 0x29, 0xc8, &(0x7f00000007c0), 0x4)
setsockopt$inet6_MRT6_ADD_MIF(r1, 0x29, 0xca, &(0x7f0000000180)={0x0, 0x1}, 0xc)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$smc(&(0x7f0000000100)='SMC_PNETID\x00')
sendmsg$SMC_PNETID_GET(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)={0x20, r3, 0xe08f9b3c75dae47f, 0x0, 0x0, {}, [@SMC_PNETID_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x20}}, 0x0)
sendmsg$SMC_PNETID_GET(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x34, r3, 0x200, 0x70bd28, 0x25dfdbfe, {}, [@SMC_PNETID_IBNAME={0x9, 0x3, 'syz1\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz1\x00'}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x4040}, 0x20008001)
setsockopt$inet6_tcp_TLS_TX(r1, 0x6, 0x1, &(0x7f0000000040)=@gcm_256={{0x303}, "151066bc95c30ade", "281f968fcc6abb0e79dc22cb5a384c48814610bb701525f4e1a00abc21690408", "d08fd514", "09da8e0ddad94ff8"}, 0x38)
setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(r0, 0x84, 0x23, &(0x7f0000000000)={0x0, 0x3ff}, 0x8)

11:18:41 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000003080)='/dev/vcsa\x00', 0x0, 0x0)
dup3(r0, r1, 0x0)
sendmsg$TIPC_CMD_GET_BEARER_NAMES(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)

11:18:41 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
pipe2(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
dup2(r0, r1)
getsockopt$IP6T_SO_GET_ENTRIES(r1, 0x29, 0x1a, 0x0, &(0x7f0000000000))

11:18:41 executing program 2:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000440)='/dev/net/tun\x00', 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000001b00)='./file0\x00', 0x22042, 0x0)
dup2(r0, r1)
ioctl$TCSETSF2(r1, 0x402c542d, 0x0)

11:18:41 executing program 0:
socketpair$unix(0x1, 0x200000005, 0x0, &(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
dup3(r1, r0, 0x0)
recvmmsg(r1, &(0x7f0000003b40)=[{{&(0x7f0000002d80)=@pppol2tpv3in6={0x18, 0x1, {0x0, <r2=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r3 = dup3(r0, r2, 0x0)
recvmmsg(r3, &(0x7f0000000580)=[{{&(0x7f0000002d80)=@pppol2tpv3in6={0x18, 0x1, {0x0, <r4=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x80, 0x0}}, {{0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000000)=""/124, 0x7c}, {&(0x7f0000000600)=""/209, 0xd1}, {&(0x7f0000000180)=""/159, 0x9f}, {&(0x7f0000000280)=""/113, 0x71}, {&(0x7f0000000300)=""/180, 0xb4}, {&(0x7f00000003c0)=""/122, 0x7a}], 0x10000329, &(0x7f00000004c0)=""/157, 0x9d}}], 0x2, 0x0, 0x0)
recvfrom(r4, 0x0, 0x24, 0x0, 0x0, 0x0)

11:18:41 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r1, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x4e22}, 0x19)
dup2(r1, r0)
r2 = accept4(r0, 0x0, 0x0, 0x0)
sendmsg$DEVLINK_CMD_TRAP_SET(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)

11:18:41 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r1 = dup2(r0, r0)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x131f64)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x24, 0x0, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r2, 0x107, 0x20000000001, &(0x7f00000000c0), 0x3a)

11:18:41 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$unix(r0, &(0x7f00000004c0)={0x0, 0x0, 0x0}, 0x44800)

[ 1670.266712][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
11:18:42 executing program 5:
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$NL80211_CMD_GET_MPATH(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)

11:18:42 executing program 0:
r0 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x4, 0x0)
close(r0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240))
getpeername$inet(r0, 0x0, &(0x7f00000000c0))

11:18:42 executing program 3:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = openat$full(0xffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x40, 0x0)
setsockopt$CAN_RAW_FD_FRAMES(r1, 0x65, 0x5, &(0x7f00000000c0)=0x1, 0x4)
openat2(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x2, 0x100, 0x10}, 0x18)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000180)={'ip6_vti0\x00', &(0x7f0000000000)={'syztnl2\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @dev, @rand_addr=' \x01\x00'}})
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000004c0)={&(0x7f0000000940)=ANY=[@ANYRESDEC, @ANYRES16=r2, @ANYBLOB="00002bbd7000fedbdf250200000008002b000400000004f47f5d4e7c47c0ac5fbd698e18a222deb49116352eb2354772bbbe61e04b562da7e94a85df3b6b2aa05cd0f1d3f4f10931a73720dc6ec88feb3d278e4694b03ef3265c2b67e13dd4e8bb88f16fe5dc45db45ce0cda4634c07d7cd71ce93ef4bf76505e081cf3b32ed28bccc36ddf47092fa83ec0d9c3b4e3cc9b1de48737ded5a9d9928f6bf6619d2277595add6d889689845024c7e9a4f6614785e78d2a0824c233acb68369c1f1baba55082e2a392a3177eea5de4f0fb4634740b8345056bd87bd6f5e273b5ba70300000000000000f761e76edee5cc4bbcc670210a344f46f5aeec5a2e0003c1ab609bfce7f47a1995de09d9642f08003c670ed22d23e5c764597592c3728cfc1d846f7dbc611956137163d63d84362455b3c251d2a4ecef671b68af487fb3befb436ac772aabf92c31ead1db3080442266afe96702fe68e510bdd01945bd0046df6ff8a05c758a4c6b19b2d4946d9d1580c1ed4fe8b081c03832e2a98a7970a4eb9ce994ed85feaf41a6ab018d6a2707d307f05ae437202eecb20d23e639b9dc79a7d63b08215c6b0c692e0f13768274b9d5a5e704de3923f31c015c97ce458f1bfe49b5aebf537812c9afe3c972345b846faeb92b782538ff80b0a7ccace447fb86a7d2fae1f28039c2f728317928f2aa9a1a3f1bb8f2cad9f4525d7f2bf103047afc68592752d2d342dc11183560505d570876b74859f57dff01193e593c54a926347c7764e497fff7288ecb941faa5b3f8ec15645d2c400d44fde95b1e3fd6f64c0b2262a65cf71b6db3c9451dfcf3a416cdc01ce3126d62bd2e907ddbf6f185c6948727aa7b34d18d4dbdf03f25ec6f", @ANYRESHEX], 0x1c}, 0x1, 0x0, 0x0, 0x8800}, 0x800)
sendmsg$BATADV_CMD_GET_MESH(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000200)={&(0x7f0000000100)={0x54, r2, 0x2, 0x70bd29, 0x25dfdbfe, {}, [@BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x4}, @BATADV_ATTR_HOP_PENALTY={0x5}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x4}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x3}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x7fffffff}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x8}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x40}]}, 0x54}, 0x1, 0x0, 0x0, 0x800}, 0x40)
bind$bt_rfcomm(0xffffffffffffffff, &(0x7f0000000380)={0x1f, @none, 0x4}, 0xa)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = dup(r3)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r4, 0x89f1, &(0x7f0000000180)={'ip6_vti0\x00', &(0x7f0000000000)={'syztnl2\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @dev, @rand_addr=' \x01\x00'}})
r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000004c0)={&(0x7f0000000940)=ANY=[@ANYRESDEC, @ANYRES16=r5, @ANYBLOB="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", @ANYRESHEX], 0x1c}, 0x1, 0x0, 0x0, 0x8800}, 0x800)
sendmsg$BATADV_CMD_GET_MESH(r4, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000200)={&(0x7f0000000100)={0x54, r5, 0x2, 0x70bd29, 0x25dfdbfe, {}, [@BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x4}, @BATADV_ATTR_HOP_PENALTY={0x5}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x4}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x3}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x7fffffff}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x8}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x40}]}, 0x54}, 0x1, 0x0, 0x0, 0x800}, 0x40)
sendmsg$DEVLINK_CMD_SB_OCC_MAX_CLEAR(r4, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x3c, 0x0, 0x20, 0x70bd29, 0x25dfdbfd, {}, [{@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x7e2}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x80}, 0x4000)
getsockopt$inet_sctp6_SCTP_RECVNXTINFO(r1, 0x84, 0x21, &(0x7f0000000100), &(0x7f0000000140)=0x4)
dup2(r0, r1)
getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000000180)={0x5, 0x20d, 0x8, 0x4, <r6=>0x0}, &(0x7f00000001c0)=0x10)
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f0000000200)={r6, 0x7, 0xfffb}, &(0x7f0000000240)=0x8)

11:18:42 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = syz_open_dev$vcsa(&(0x7f0000000140)='/dev/vcsa#\x00', 0xffff, 0x0)
r2 = fcntl$dupfd(r0, 0x0, r0)
dup2(r2, r1)
getsockopt$inet6_tcp_int(r1, 0x6, 0x17, 0x0, &(0x7f0000000100))

11:18:42 executing program 1:
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000380)='/dev/zero\x00', 0x0, 0x0)
futimesat(r0, 0x0, &(0x7f0000000100)={{0x77359400}, {0x0, 0x2710}})

11:18:43 executing program 4:
r0 = gettid()
timer_create(0x0, &(0x7f0000000440)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
read(r1, &(0x7f0000000500)=""/11, 0xb)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000000c0))
r2 = creat(&(0x7f0000000080)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x0)
dup2(r1, r2)
ioctl$sock_inet_SIOCGIFPFLAGS(r2, 0x8935, 0x0)
tkill(r0, 0x1000000000016)

11:18:43 executing program 3:
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', <r0=>0x0})
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="3400000010000104539300"/20, @ANYRES32=r3, @ANYBLOB="ddffffffffffffff140012000c000100627269646765"], 0x34}}, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000700)=ANY=[], 0x28}}, 0x0)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000340)={{{@in=@multicast2, @in6=@ipv4={[], [], @remote}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in6}, 0x0, @in6=@private0}}, &(0x7f0000000440)=0xe4)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000480)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000004c0)=0x14)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', <r7=>0x0})
r8 = socket$nl_route(0x10, 0x3, 0x0)
r9 = socket(0x10, 0x803, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r9, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
getsockname$packet(r9, &(0x7f0000000100)={0x11, 0x0, <r10=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="3400000010000104539300"/20, @ANYRES32=r10, @ANYBLOB="ddffffffffffffff140012000c000100627269646765"], 0x34}}, 0x0)
sendmsg$nl_route(r9, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000002800)=ANY=[@ANYBLOB="280000001000010400"/20, @ANYRES32=r7, @ANYBLOB="000000000400000008000a00", @ANYRESOCT=r8, @ANYRES16=r10, @ANYRESOCT, @ANYRESOCT=0x0, @ANYRESHEX, @ANYBLOB="14a6072632d0e430cfe236988c8acc633b131a795ed9c28c916b6eac26f08e9730712e9012073ca439278ae90340e96b2da9e0e3c5cd802a0d6e15d08f277ff77df4e48d789659ca9c45744c870ee45434b630e0c66985f0ed72fda49696626e379602b2fb20b26876289b45748195b27012e98feb2ee447bfb811fcd6063c87ea2e9883881de48a8e7a5fe10802688ad965b01249681d75718f87815b58a2e6cb3cec56e61c0573819af24491a1eefa294d6dee771e889c9097005ae3b2359264642d04b776a755b4664737b12db19a2dec199bb7efaf4fd11405ad1d43dfe7c93f9d4a5e6c6683d569f6d5a152b6563cd7c446dd2b47d3c7f2b08958f7ab3e2c5813cdcca88027941c0b9198bdaeb22c99e264c2d08a283549f9e4632187e04e0de3e784a4c344b6696716602182c0ae74694c3f8d324a37b590b7344b49bb03f96099b16b493dfdce162e0636019350d85ded6e10c47d1581210f6ed5cd55ed3ae4560b5c2a35324da3f2c4a1b227bf74a1be63b020b04ae362de68bc549dd5bc57f75938b408a81b2b2cae2dab55d9e24980109387a66eec88ab32c54de0130051053536a2af8510f8e6f645a1e4679025f2930c9293e408612ed30568c49aef6b27566c04a90c5a10fbb0add6176fd88ad5aa7b919ff9c85f405c8c2e7af249df6f40429972d1d5c66d5ae3e539d2235a01b72862ba1cd9f48d9195765b2d27a675d6d1915c8cab6d7311438b5003be49cfe4bb6d788796fd8a6088a7f008c34e9c399e069a9f989b24f279811c6d41c54e62dcd524f3219549139a76ec1b825597c31ed96b768e415e1cd620339dd573e88861a887b29cdd94686d2d153a57ff90be5241935f4b1aad993a39086808b44230cee8bba1a1fac9e35238e298ee05b4c6a05559d8d4cd651f52278246b59f1dc4da63c276bdecba542e242949be70c117695d23ece23810ba161a819744e1176fba26902283b48f7c58b4d87b69422012467508bc804dd6af69b8d8d6847e56563ab3c4621d56e702ed35c146075b13f28f06201959aa6842c41608dfa35c29d75db80b01585721c6fcc9b176be7a411ebc9be3550e1d852f808f9fa99a161d945f6d22f38c05502547d6efb430c301458c1122dececeaeb81123d5dd215e068be8eed8aea545b867d2614b5c0a8c23bac85faa8ee9f7369bcaf1b2c4dfc932c30bf2a15d26179a56c8144d8cb1a2409009883da3bd2e7652161f59af1cbbc161497b76dc58307ecf211a88164cef38e6f4129f2509b75bea6513e756023a4542f8eb8c0f698c01b0690e2b7ba74f51880e1860908debf3f155c17401a7acded1dbe672a50df2a6e5876c07bc7b9bec7499f059dec57678302e80734d1c28a6d032f6c0ec1e5eb69204068d942e7bd88e0a435be08d4a0514ad430fa38f886ba67a36740ca205dc2d90a5290830a8925f7a0c3d1bfa3f4e6667e130419bb10e4eb05080ecb73df18b97442a8e14c16c8999087a7d0488b6fefc5e45c73f066d7cd72b0bea3e0f2b3be68b151fbc909e49245ac0ae7413a09c4d0b336eb60b434c1d837c84827788cb12261eda6a55a00454677e4dcb9929dee118170cd58086fcfe8110d4a0478efef907281cfeb8f46067e31b0f777d22f8503e87c9dc9a5214bc1906c1ba53cbf561522e6aab9afe631b64611b51c8a9d7d19cab00ee8fd7b23196cafd6e2254601e6bfccc00376a31136f45bec0bb8be11f90d50f70bdcbba5d5492fad98f59cb6911186253d1ee46258ccf94b9837e08ba874d42344b40b3f1cdb919cd489e3339d68ccd1350a0d5039e225745b2bff247123c6ee948174c860a2fc1cf8abca71a405c9a84bbc454c3b90c003a8dec5a44701aae0d6b18a63d5e6a97d4eb8aa434bda44d2352f9fc82f7446594a651f051ee6bb87ce568fb01305c180595d99c66fe82f2e8f82900e700d98aa108a6085bb1cfb9f088e9ff72775b0a521cbe70b4d1cd48cfd6c6120d2060dea24fffa021cfe44a7b0444dd4e4092c05530e5f4599b9a915600551a7467a7efb9f1ef95e713170e33de5d0955bcc18832eb1e71eb1f285da32e20e03b6e3a872be4746b80771a1887c298b3ad8a4b9eee3e8aacfba7a621ffa9a4bfcdfc799bb23479bfde50671b9c9813e732b29b3821bb34e716e502f49185d44ecb525e4705c03af3f5aed83479f2227bbb75433049eb97475f4fceb709d6bcb13de0e9f43748baeb278e8d79c22a8cf74b83a62b5ff020f160d104492ae5fa23e9993ef8e2d90038e7436034d68ef97433f703e76a70d4e2957bf69c610e45e2083f4b575853fc407d97401da3f746da5168ed91c793943e4d853fe47b5c128208ecf45f93091bbbcffa990d4f3c539d3e190b9eedcd8be62c37eea1db1a4d69380eee07d4f5cc32008c0a509d994c729ef0eb296742bc01bb06ee8263d4e2b270d3098d215cc9008a032bfdde2a2a1f624b42dbcfbae36d72a89418d17c220096c899c31b1136dbea837083bc51be60d8d3be34ee7d2ada110dba13b59bfc2f4b93cdec00ca920684c2e6f184693806e5954fcc695921585ef17ad96be42336ea013303ebd4cdb7d7345e3f75d4911905cfdac283901323fd40f0e14ab171b2831a1860aedef9da78ad1439956a98ebf0a3b30b41810d3a0f741174857663fc12554e49992a631bf4d2e9dfe5795acbed37001be115fa1781d931c4d9684b09935e69271eb4edd8ae68344d4f93034fe07284c84b1dae4f787447bc604839d694837e9f443fbedcd597ef6a8743164f999427f49cad923230837ef349c69a3473787b8d320d4a18b28bbfdf0a4dd35529ccde5ca9e0cd7ed1584cfad4a43d3840c22ae52bcf5a053c57f20f1c155a71402889eef4000690778515c783116c32c77fc37725dd1311ee281beef112a451eb0d1c00d81f3c7e25ac208920a44a74751f1c7ab1ddc4a1d0790a029b0397d0c0369f22427681c85e7e565de819945e167f6a8df6fd4ff274645b8d7a5e99a3651f53391be3c510c07ba1a6bf69b9633e4eebb8cc7b7503e8e8a88b66a8f11f72568697353171c26ac389f3b5a22a98abd72b37649b0121a50f53f4ee655f968d3a89c8183fa64da9b3b15e3249b6ede91f6b67a24c569593d9a81d4a59bc6ccd986ae81018215358cb335078cc261e8ee5eb804899ee10c970a022ea8fa1eb9c60094320c64c989df26f3a3b1cd0db421e2c7166c49c9c786a659b3727417b514b6017b3b6b5863c2bf8cd2a6a7e92802f305de4c032061c82d5b260cf830b23b2a92bb9e2dece18dcaa7fc2d4c51525f59a3e5da21fc68251aafeb34bc3acc0b8faeb35944b37496491dc7fbe042e9959fabb3378526c4ccf0112afa7796d32d4b3590b21d861ff2e781028768de437330c5404aee949d3a66d250ff7709ff98d1b5412edd4d3f563c1136f8adedc21a659726c02e849f7c902fec846bc2f678699afc877bffe6296f09da65f18e2b1a59a37a6111a1ffbbeec46c9cb35a7919c2bace8af86650aa44d2e94ae56cfc21be103127334162542ab19cad39814568e01cd9643b06feafb357a8a36993549058827f80d9efa00d13fbecd3f6bb14ec7e6778f14131411bf27c5e370fdd6fecfeaa55771928a1d2c95801140b91827a823cc0b76f363899b751f79fb04f7839e40db3804fa9159d7bbb4cc9529eee10352441f2a20f11ece4c7ea2f084036eea9d26bb8f99888e3c74aef1d92f44572248eebb3909caf1629685241bda41edf64cd9371e32c68a1a1c6a23cdc879f25334e473402d0ff6f3308dca596ce5be1608cd31d78ea44d00665d17065a9e13c1c89ce9edcb46c84d27eb185ca5d2afd21490ac18693363bd236afb3f037d0104dfb61a6c22da9a9c64abb0832f73f67c55f7285db36f4db22fb3d685cec92549b2163584359fd9af3561bbf46b44eb82c665699765567e3df023dfe9cd266fd2cea1669e5b48adb1307108842d54d0b92e89c3e5a9a7edbadd721fa0ddca6f68b8fabe79c5eb56517d0e4c375f48fd12296b66f987bdd42abe60ae1be6a0588ce160a2859c9883c912f7d19c716c0d0e75b808bbc7985c846983a6e46bd54fcf0250dc7016d6b3870a9e19706cb07487802dafed40254cc714f755a726fdf3962105bb16ed4ba33499df3fe8e2ed6e8c9191879207af61a0f2e3d98e062d9db9023d617c0fd809dedce61b1b35f4f80d7cfb153b5a1716c95fd69391c9d8a7632b20b1847a6962dbce4ce189243ab10d59e36404b6f58107c274a32022280111d068e4fc31a8d20fc69e3eb462ef6f7ebb1f191dcd2c68dcaefda87724d2cb84318fdc2895c7ec6fda9683f8cc7ecc090a75b381bd56079af7f93d3e2bbef1fc6617394a4bb34b3ae87120756fa0e6516bcb6ef38fea2d016b47e1e54cb5d7fedfbfae176971b909a44896485030a6e0b4d96d407f9d69c288e0373d4dbf33f38504cc1ccfd85883494df4a4bb69a539755ac26ffb340248071bded388935897548ca4a251cac1c2e68ef2599fa99c33725a0ab5a747225fe9667468d7c4f1c1d1b0bba784257dad1f95d35d9275183bdfbdcdfb059d157d8dcec04b608c1741fb38351e054c79ac4f83f26dd3b6cef33c633fe44b04837f46f119a902168de5f2cc249214ace9b1958dce1006e13e0adf023f73a17ea9396cdda5985375b1381ba40ce464957a8fc7c6594e49d3a4e014dea7465cf88410d9d6d58776ce83abc025e1d55b58f26b46a77c6cb2213b46f38e74ecb999667beebff7ef3e94e99868a04fa392689a6263263b4c2a37379d634856146ee7aea92d8432646ebf0274811b78c8892d4e9934916464911e79617d49ea76c3bd9236f568edd26f2ad25e3433d3875a51857f5654533e1b86a68103ba852b6025f47f2295aad8faf7367e9414dfa74d2b113557bb03e6d5e4d26679d96b8240e0a9e730c5793f33e1441b8cbb2de3d1b8241f1ca63e2cfbd414976fab25754352138ea3a42b186ac64df0f9f7792c2fee391d5e85dafc9771a31f76795f2b41754cdb946f1bd43da49a4048417f4e4baa5d851f88f9da8d4c822e3430e067fc7a5fd9665a582326f136d000c66221b0bed4525cba5ffac127dcdd8f242a97cbdd60b5e0e9c89f94b3330baed88ba6958ca92c1a2c745adfae13a4b781be1cd0fb45485f0c9d5f1ff5bc692d4071ebdb5b57893fb17cffe33bc90de9349c361f90c8469271cf9023831be078b694352a0ef87ba816de5d72557b3e29a22662728753f1c6383a9ff3f2848640b2d2ef9c192e99c7b9ddfa08a0d8ea5702555f44b7ee99158ff851a608d8586a46f53b5b9963f334256a35a9d91ab9754e2b2817d3012c3afb79c7bf546c6824134d773f0414fa1d95fdcac206fabf4a03ad2174514e2284d3eeb1c0883274cf3121e350bf226c7068ccad4a55df7afd153c84ec6028ea53dfd35967a48e7e66694ee5b37627ae5d58c82bdaf5e573343faaad26343e1a44756461104f0ccea9b3b73e43b48ef642aef9ce80d2be120dee4b2c253ec5150abfc5c7cf90e62e49c46523b14a8b0c0fb95ae733c4d5d147d587cee35f6b305f1538f3cd67e68933cb0af88e11fc0eee0fde81b15ec90e6feda24dcf908ae63aa0051cf25beee3df7846b9cb0ceab617018564d72b90e8cf96c640d74ac25c1dfa1d4cb90b155a06d0cade8d9251232a7af38a6f1f6a55a254bcb9f8edd0595c22f7d95f7b374fed48d685799d5358808e39944d65d67023aa3eae9c3484368fc76ef7c2f9848fd42aaafb4c8586a5de"], 0x28}}, 0x4040050)
sendmsg$TEAM_CMD_NOOP(0xffffffffffffffff, &(0x7f0000000b00)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000640)={0x44c, 0x0, 0x1, 0x70bd2c, 0x25dfdbfe, {}, [{{0x8}, {0x44, 0x2, 0x0, 0x1, [{0x40, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x5}, {0xe, 0x4, 'broadcast\x00'}}}]}}, {{0x8}, {0x3c, 0x2, 0x0, 0x1, [{0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x5}, {0x8, 0x4, 0x10000}}}]}}, {{0x8}, {0x174, 0x2, 0x0, 0x1, [{0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x5}, {0x8, 0x4, 0x401}}, {0x8}}}, {0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x5}, {0x4}}, {0x8, 0x6, r0}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x5}, {0x8, 0x4, 0x4c}}}, {0x4c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}, {0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x5}, {0x8}}}, {0x38, 0x1, @notify_peers_interval={{0x24, 0x1, 'notify_peers_interval\x00'}, {0x5}, {0x8, 0x4, 0x8}}}]}}, {{0x8, 0x1, r4}, {0xb4, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x5}, {0x8, 0x4, 0x80000000}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x5}, {0x8, 0x4, 0x9ba9}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x5}, {0x8, 0x4, 0x4}}}]}}, {{0x8, 0x1, r5}, {0x168, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_interval={{0x24, 0x1, 'notify_peers_interval\x00'}, {0x5}, {0x8, 0x4, 0x7}}}, {0x40, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x5}, {0x8, 0x4, 0x2}}, {0x8, 0x6, r7}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x5}, {0x8, 0x4, 0x8}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x5}, {0x8, 0x4, 0x6}}}, {0x40, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x5}, {0xf, 0x4, 'roundrobin\x00'}}}, {0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x5}, {0x4}}, {0x8}}}]}}]}, 0x44c}, 0x1, 0x0, 0x0, 0x40000}, 0x4000001)
r11 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
setsockopt$inet6_group_source_req(r11, 0x29, 0x2e, &(0x7f0000000500)={0x200, {{0xa, 0x4e20, 0x6, @mcast2, 0x3}}, {{0xa, 0x0, 0x81, @remote, 0x8001}}}, 0x119)

11:18:43 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
sendto$unix(r0, &(0x7f0000000040), 0x0, 0x8800, &(0x7f0000000100)=@file={0x0, './file0\x00'}, 0x6e)

11:18:43 executing program 2:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
dup2(r0, r1)
setsockopt$IP_VS_SO_SET_STOPDAEMON(r1, 0x0, 0x17, 0x0, 0x0)

11:18:43 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = dup(r0)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000080)=0x3)
read(r0, &(0x7f00000000c0)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000180))
r2 = syz_open_pts(r0, 0x0)
ioctl$TIOCGPTPEER(r1, 0x5441, 0x0)
ioctl$TCSETS(r2, 0x5402, &(0x7f00000001c0))

11:18:43 executing program 0:
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcsa\x00', 0x0, 0x0)
close(r0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_DEL_MPATH(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0}}, 0x0)

[ 1671.666017][T30885] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1671.685313][T30885] device bridge7 entered promiscuous mode
[ 1671.732808][T30891] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1671.753080][T30891] device bridge8 entered promiscuous mode
[ 1671.829575][T30885] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1671.870363][T30896] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1671.891117][T30896] device bridge9 entered promiscuous mode
11:18:43 executing program 1:
r0 = syz_open_dev$evdev(&(0x7f00000000c0)='/dev/input/event#\x00', 0x0, 0x5)
write$binfmt_elf64(r0, &(0x7f00000000c0)=ANY=[], 0xffffffe8)
r1 = dup(r0)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12}, &(0x7f0000000340))
timer_settime(0x0, 0x0, &(0x7f00000001c0)={{0x0, 0x8}, {0x0, 0x1c9c380}}, 0x0)
ioctl$sock_inet_SIOCSIFBRDADDR(r1, 0x891a, 0x0)
r2 = gettid()
tkill(r2, 0x1000000000016)

11:18:43 executing program 0:
r0 = openat$urandom(0xffffffffffffff9c, &(0x7f0000001100)='/dev/urandom\x00', 0x0, 0x0)
close(r0)
socket$netlink(0x10, 0x3, 0x0)
sendmsg$IPVS_CMD_ZERO(r0, &(0x7f0000002f40)={0x0, 0x0, &(0x7f0000002f00)={0x0}}, 0x0)

11:18:43 executing program 4:
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000100)='ns/pid\x00')
r1 = socket$nl_generic(0x10, 0x3, 0x10)
dup3(r1, r0, 0x0)
sendmsg$TIPC_NL_MEDIA_GET(r0, &(0x7f0000000ec0)={0x0, 0x0, &(0x7f0000000e80)={0x0}}, 0x0)

11:18:43 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TEAM_CMD_PORT_LIST_GET(r0, &(0x7f0000001c40)={0x0, 0x0, &(0x7f0000001c00)={0x0}, 0x1, 0x0, 0x6000}, 0x0)

11:18:44 executing program 3:
r0 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2c, &(0x7f0000000500)={0x0, {{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x0, @private1}}}, 0x104)
ioctl$KVM_S390_INTERRUPT_CPU(0xffffffffffffffff, 0x4010ae94, &(0x7f0000000000)={0xc, 0x2, 0x80})
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_AGP_INFO(r1, 0x80206433, &(0x7f0000000640)=""/4048)

11:18:44 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ptmx\x00', 0x0, 0x0)
read(r0, &(0x7f0000000540)=""/11, 0xa99)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200))
ioctl$BTRFS_IOC_SYNC(r0, 0x9408, 0x0)

11:18:44 executing program 4:
r0 = syz_open_dev$evdev(&(0x7f0000000140)='/dev/input/event#\x00', 0x0, 0x6)
write$binfmt_elf64(r0, &(0x7f00000000c0)=ANY=[], 0xffffffe8)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = fcntl$dupfd(r0, 0x0, r1)
timer_create(0x0, &(0x7f0000000100)={0x0, 0x12}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r3=>0x0)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
ioctl$CHAR_RAW_RAGET(r2, 0x1263, 0x0)

11:18:44 executing program 2:
socketpair$unix(0x1, 0x200000005, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmmsg(r1, &(0x7f0000003b40)=[{{&(0x7f0000002d80)=@pppol2tpv3in6={0x18, 0x1, {0x0, <r2=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x80, 0x0}}], 0x1, 0x0, 0x0)
write$P9_RUNLINKAT(r0, 0x0, 0x0)
dup3(r0, r2, 0x0)
socketpair$unix(0x1, 0x200000005, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
recvmmsg(r4, &(0x7f0000003b40)=[{{&(0x7f0000002d80)=@pppol2tpv3in6={0x18, 0x1, {0x0, <r5=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x80, 0x0}}], 0x1, 0x0, 0x0)
write$P9_RUNLINKAT(r3, 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r5, 0x8903, &(0x7f0000000480))

11:18:44 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
recvmmsg(r0, &(0x7f0000000640)=[{{&(0x7f0000000240)=@pppol2tpv3={0x18, 0x1, {0x0, <r1=>0xffffffffffffffff, {0x2, 0x0, @multicast2}}}, 0x80, 0x0}}], 0x0, 0x0, 0x0)
dup2(r0, r1)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040)='/dev/hwrng\x00', 0x0, 0x0)
r3 = socket(0x10, 0x2, 0x0)
dup3(r3, r2, 0x0)
getsockname(r2, &(0x7f00000000c0)=@pppol2tpv3in6={0x18, 0x1, {0x0, <r4=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @dev}}}, &(0x7f0000000140)=0x80)
getsockopt$IP_VS_SO_GET_SERVICE(r4, 0x0, 0x2, 0x0, &(0x7f0000000040))

11:18:44 executing program 3:
socket$inet6_sctp(0xa, 0x10000000005, 0x84)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x20d80, 0x1)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2f, &(0x7f0000000500)={0x0, {{0xa, 0x20, 0x0, @mcast2, 0x4}}, {{0xa, 0x0, 0x0, @private1}}}, 0x104)
r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000040)={r0}, 0x8)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f00000059c0)={'ip6_vti0\x00', &(0x7f0000005940)={'syztnl2\x00', <r2=>0x0, 0x29, 0x80, 0x20, 0x1, 0x4, @local, @mcast1, 0xe00d78a2f8c89d1, 0x8, 0xfff, 0x4}})
sendmsg$ETHTOOL_MSG_RINGS_GET(r1, &(0x7f0000005b00)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000005ac0)={&(0x7f0000005a00)={0xa0, 0x0, 0x400, 0x70bd26, 0x25dfdbfc, {}, [@HEADER={0x48, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}, @HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}]}, 0xa0}, 0x1, 0x0, 0x0, 0x8000}, 0x4000000)

11:18:45 executing program 5:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000540)='environ\x00')
r1 = ioctl$NS_GET_PARENT(r0, 0x5421, 0x748000)
ioctl$LOOP_SET_FD(r0, 0x5450, r1)

11:18:45 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x8054)

11:18:49 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = signalfd(0xffffffffffffffff, &(0x7f0000001a00), 0x8)
dup2(r0, r1)
sendmsg$NL80211_CMD_SET_MPATH(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0)

11:18:49 executing program 2:
r0 = socket(0x2, 0x1, 0x0)
sendmmsg$inet(r0, &(0x7f00000006c0)=[{{&(0x7f0000000000)={0x2, 0x0, @loopback}, 0x10, 0x0}}], 0x1, 0x92b5bf122068b540)
sendmsg$TIPC_CMD_RESET_LINK_STATS(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0}}, 0x0)
sendmsg$TIPC_CMD_ENABLE_BEARER(r0, &(0x7f0000001dc0)={&(0x7f0000001cc0), 0xc, &(0x7f0000001d80)={0x0}}, 0x20044010)

11:18:49 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r1, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x4e22}, 0x19)
dup2(r1, r0)
r2 = accept4(r0, 0x0, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_QOS_MAP(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0}}, 0x0)

11:18:49 executing program 3:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000740)={<r0=>0xffffffffffffffff})
ioctl$sock_proto_private(r0, 0x2, &(0x7f0000000780))

11:18:49 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0xfffffffffffffc47, 0x20010001, &(0x7f0000000280)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
r1 = dup2(r0, r0)
r2 = gettid()
sendmsg$TIPC_CMD_GET_NETID(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000140)={0xa, 0x0, 0x0, @remote}, 0x1c)
tkill(r2, 0x1000000000016)

11:18:49 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
getpeername(r0, &(0x7f0000000540)=@pppol2tpv3={0x18, 0x1, {0x0, <r1=>0xffffffffffffffff, {0x2, 0x0, @local}}}, &(0x7f00000005c0)=0x80)
dup2(r0, r1)
r2 = socket$netlink(0x10, 0x3, 0x0)
getpeername(r2, &(0x7f0000000540)=@pppol2tpv3={0x18, 0x1, {0x0, <r3=>0xffffffffffffffff, {0x2, 0x0, @local}}}, &(0x7f00000005c0)=0x80)
sendmsg$NL80211_CMD_SET_STATION(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}}, 0x0)

[ 1677.942017][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
11:18:49 executing program 2:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
getsockopt$IP_VS_SO_GET_INFO(r0, 0x0, 0x481, &(0x7f0000000080), &(0x7f0000000140)=0xffffffffffffff68)

11:18:49 executing program 4:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
shutdown(r0, 0x0)
recvfrom$inet(r0, &(0x7f0000000040)=""/11, 0xb, 0x40000022, 0x0, 0x0)

11:18:49 executing program 0:
r0 = socket$inet(0x10, 0x2, 0x0)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x20000000)

11:18:50 executing program 3:
r0 = epoll_create(0xfffd)
close(r0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCGSOFTCAR(r0, 0x5419, &(0x7f0000000000))

11:18:50 executing program 1:
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x0, 0x0)
close(r0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x200000000000013, &(0x7f00000000c0)=0x400100000001, 0x4)
connect$inet6(r0, &(0x7f0000000140), 0x1c)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[@window, @sack_perm, @timestamp, @window], 0x4)

11:18:50 executing program 2:
r0 = openat$apparmor_task_current(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/attr/current\x00', 0x2, 0x0)
ioctl$F2FS_IOC_GET_FEATURES(r0, 0x2, &(0x7f0000000080))

11:18:50 executing program 4:
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
dup3(r1, r0, 0x0)
sendmsg$NL80211_CMD_UPDATE_OWE_INFO(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)

11:18:50 executing program 0:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
r3 = dup2(r2, r1)
r4 = dup2(r0, r3)
sendmsg$SEG6_CMD_SET_TUNSRC(r4, &(0x7f0000000100)={&(0x7f0000000000), 0x6a, &(0x7f00000000c0)={0x0}}, 0x0)

11:18:50 executing program 3:
r0 = socket$inet6(0x10, 0x3, 0x0)
sendmsg$NL80211_CMD_SET_WIPHY(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0)

11:18:50 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x0, 0x0)
dup3(r0, r1, 0x0)
ioctl$KDSKBMODE(r1, 0x5425, 0x0)

11:18:50 executing program 1:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
close(r0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)

11:18:51 executing program 2:
r0 = openat$apparmor_task_current(0xffffffffffffff9c, &(0x7f0000000340)='/proc/self/attr/current\x00', 0x2, 0x0)
close(r0)
memfd_create(&(0x7f0000000200)='/proc/self/attr/current\x00', 0x0)
write$P9_RXATTRWALK(r0, 0x0, 0x0)

11:18:51 executing program 1:
sendmsg$NL80211_CMD_GET_INTERFACE(0xffffffffffffffff, 0x0, 0xc0272068885b1623)

11:18:51 executing program 4:
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000040))
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_CMD_GET_BEARER_NAMES(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_MULTICAST_TO_UNICAST(r0, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000002c0)={0x0}}, 0x0)

11:18:51 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0x541b, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
dup2(r0, r1)
setsockopt$inet6_mtu(r1, 0x29, 0x17, &(0x7f0000000100), 0x4)

11:18:51 executing program 0:
r0 = socket$inet(0x2, 0x3, 0x3)
r1 = creat(&(0x7f0000000280)='./file0\x00', 0x0)
dup2(r1, r0)
pwritev(r0, 0x0, 0x0, 0x0, 0x0)

11:18:51 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000140)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @empty}, 0x1c)
r1 = dup2(r0, r0)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x131f64)
sendmsg$IPVS_CMD_GET_DAEMON(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)

11:18:52 executing program 1:
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vga_arbiter\x00', 0x0, 0x0)
close(r0)
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000880)={{0x0, 0x1c9c380}, {0x0, 0x989680}}, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000380)={0x0, <r2=>0x0})
setsockopt$sock_timeval(r1, 0x1, 0x15, &(0x7f0000000180)={0x0, r2/1000+30000}, 0x10)
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x3}, 0x1c)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r3=>0x0)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
sendmsg$DEVLINK_CMD_PORT_SET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)

11:18:52 executing program 4:
sendmsg$IPVS_CMD_NEW_DEST(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8805}, 0x4041)
sched_setscheduler(0x0, 0x5, &(0x7f0000000000))
r0 = syz_open_dev$vcsa(&(0x7f0000000040)='/dev/vcsa#\x00', 0xd17, 0x8200)
readlinkat(r0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=""/68, 0x44)

11:18:52 executing program 2:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = dup3(r0, r1, 0x0)
sendmsg$TIPC_NL_NET_GET(r2, &(0x7f0000000380)={&(0x7f0000000140), 0xc, &(0x7f0000000180)={0x0}}, 0x0)

11:18:52 executing program 3:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNGETDEVNETNS(r0, 0x400454ca, 0x400000)
ioctl$TUNSETLINK(r0, 0x400454cd, 0x0)

11:18:52 executing program 0:
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/hwrng\x00', 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000100)='/dev/null\x00', 0x0, 0x0)
r2 = fcntl$dupfd(r0, 0x0, r1)
ioctl$SIOCSIFHWADDR(r2, 0x2, &(0x7f0000000080)={'ip6gretap0\x00', @local})

11:18:53 executing program 3:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/anycast6\x00')
ioctl$IOC_PR_PREEMPT(r0, 0x5450, 0x0)

11:18:53 executing program 1:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f00000004c0)={0x2, 0x4e24, @multicast2}, 0x10)
sendmsg$inet(r0, &(0x7f0000000580)={&(0x7f0000000180)={0x2, 0x4e24, @empty}, 0x10, 0x0}, 0x20000808)
sendmsg$NL80211_CMD_DEL_TX_TS(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000006c0)=ANY=[], 0x50}}, 0x0)

11:18:53 executing program 0:
r0 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x2000080400000000, 0x0)
close(r0)
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt(r0, 0x100000001, 0x6, &(0x7f0000000180)="b5227938", 0x4)

11:18:53 executing program 2:
r0 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0)
vmsplice(r0, 0x0, 0x0, 0x0)

11:18:53 executing program 5:
sched_setscheduler(0x0, 0x5, &(0x7f0000000000))
rt_sigqueueinfo(0x0, 0x0, 0x0)
r0 = inotify_init1(0x0)
close(r0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCGWINSZ(r0, 0x5413, &(0x7f0000000280))

11:18:53 executing program 3:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc)
listen(r1, 0x0)
r2 = accept4$inet(r1, 0x0, 0x0, 0x0)
connect$unix(r0, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00'})

11:18:54 executing program 0:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendto$unix(r0, &(0x7f0000000100), 0x0, 0xfabc4343d1bcf66e, 0x0, 0x0)

11:18:54 executing program 1:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0x4)
setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000788ffc)=0x100000001, 0xfdf6)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x0, @remote}, 0x10)
write$P9_RMKDIR(r0, 0x0, 0x0)

11:18:54 executing program 4:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/net/tun\x00', 0x0, 0x0)
close(r0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_MEDIA_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0)

11:18:54 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x3a}}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x8000, &(0x7f0000000080)={0x2, 0x4e20, @multicast1}, 0x10)
sendmsg$SEG6_CMD_SET_TUNSRC(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0)

11:18:54 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000380)='/dev/ptmx\x00', 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
dup2(r1, r0)
sendmsg$BATADV_CMD_SET_HARDIF(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)

11:18:54 executing program 1:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
r2 = ioctl$TIOCGPTPEER(r1, 0x5414, 0x20000004)
dup3(r0, r2, 0x0)
ioctl$GIO_CMAP(r2, 0x4b70, &(0x7f0000000000))

11:18:54 executing program 3:
r0 = open$dir(&(0x7f0000000280)='./file0\x00', 0x80441, 0x0)
close(r0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_LIST(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)

11:18:54 executing program 5:
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x0, 0x0)
close(r0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040))

11:18:55 executing program 2:
r0 = eventfd(0x0)
close(r0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0))
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={0x0}}, 0x0)

11:18:55 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff})
ioctl$BLKALIGNOFF(r0, 0x5451, 0x0)

11:18:55 executing program 5:
socketpair(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
ioctl$sock_SIOCOUTQ(r0, 0x5411, &(0x7f0000000040))

11:18:55 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = fcntl$dupfd(r0, 0x0, r0)
write$binfmt_elf64(r1, 0x0, 0x0)

11:18:55 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f0000000040)={0x0, 0x1b, &(0x7f0000000780)={0x0, 0xffffffffffffff78}}, 0x0)

11:18:55 executing program 4:
r0 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet_tcp_SIOCATMARK(r1, 0x8905, 0x0)

11:18:55 executing program 5:
r0 = eventfd2(0x9, 0x0)
readv(r0, 0x0, 0x0)

11:18:55 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @local}}, 0x1c)
r1 = dup2(r0, r0)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x200000ee)
setsockopt$inet6_MCAST_LEAVE_GROUP(r1, 0x29, 0x2d, 0x0, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCADDRT(r2, 0x890b, &(0x7f0000000040)={0x0, @l2tp={0x2, 0x0, @remote}, @ipx={0x4, 0x0, 0x0, "cd2004189b3f"}, @ipx={0x4, 0x0, 0x0, "c36a9fb54018"}, 0x3f, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)='batadv0\x00'})
mmap(&(0x7f0000000000/0xb3c000)=nil, 0xb3c000, 0x0, 0x32, 0xffffffffffffffff, 0x0)

11:18:56 executing program 0:
socketpair(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={0x0}}, 0x0)
r2 = dup3(r0, r1, 0x0)
write$cgroup_int(r2, 0x0, 0x0)

11:18:56 executing program 2:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)
ioctl$BLKROTATIONAL(r0, 0x5451, 0x0)

11:18:56 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$FS_IOC_GETVERSION(r0, 0x80087601, 0x0)

11:18:56 executing program 4:
r0 = syz_open_dev$evdev(&(0x7f0000000240)='/dev/input/event#\x00', 0x0, 0x5)
write$binfmt_elf64(r0, &(0x7f00000000c0)=ANY=[], 0xffffffe8)
r1 = gettid()
r2 = fcntl$dupfd(r0, 0x0, r0)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12}, &(0x7f0000000340))
ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40286608, 0x0)
timer_settime(0x0, 0x0, &(0x7f00000000c0)={{0x0, 0x8}, {0x0, 0x1c9c380}}, 0x0)
tkill(r1, 0x401004000000016)

11:18:56 executing program 5:
sched_setscheduler(0x0, 0x5, &(0x7f0000000180))
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
ioctl$BTRFS_IOC_DEFAULT_SUBVOL(0xffffffffffffffff, 0x40089413, 0x0)

11:18:57 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4)
dup3(r1, r0, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb)
setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000788ffc)=0x100000001, 0xfdf6)
write$binfmt_elf64(r0, &(0x7f0000000380)=ANY=[], 0x6c1)
r2 = dup(r0)
sendmsg$ETHTOOL_MSG_PAUSE_SET(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x14}, 0x14}}, 0x0)

11:18:57 executing program 0:
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000200)='/dev/zero\x00', 0x0, 0x0)
close(r0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180))
shutdown(r0, 0x0)

11:18:57 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040)='/dev/hwrng\x00', 0x0, 0x0)
dup2(r0, r1)
getsockopt$IPT_SO_GET_INFO(r1, 0x0, 0xf, 0x0, &(0x7f0000000280))

11:18:57 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmmsg$inet6(r0, &(0x7f00000072c0)=[{{&(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c, 0x0}}], 0x1, 0x20000000)

11:18:57 executing program 0:
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000380)='/dev/zero\x00', 0x0, 0x0)
close(r0)
socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout_data(r0, 0x107, 0x5, &(0x7f00000001c0)={0x0, 0x0}, 0x10)

11:18:57 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
write$binfmt_elf64(r1, 0x0, 0x0)

11:18:58 executing program 3:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_EGRESS_PRIORITY_CMD(r0, 0x5450, 0x0)

11:18:58 executing program 4:
r0 = openat$random(0xffffffffffffff9c, &(0x7f0000000000)='/dev/urandom\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0)

11:18:58 executing program 1:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$TIPC_CMD_SET_LINK_WINDOW(r0, &(0x7f0000000280)={&(0x7f00000000c0), 0xc, &(0x7f0000000240)={0x0}}, 0x0)

11:18:58 executing program 0:
r0 = memfd_create(&(0x7f0000000000)='md5sum\x00', 0x0)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
dup3(r0, r1, 0x0)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000001780)={0x0, 0x0, 0x0, 0x2})

11:18:58 executing program 2:
r0 = socket(0x11, 0xa, 0x0)
sendmsg$NL80211_CMD_DEL_NAN_FUNCTION(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)

11:18:58 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000180)='/dev/full\x00', 0x0, 0x0)
r2 = dup3(r0, r1, 0x0)
sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={0x0}}, 0x0)

11:18:58 executing program 2:
sched_setscheduler(0x0, 0x5, &(0x7f0000000040))
r0 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x5421, 0x400000)

11:18:58 executing program 1:
socketpair$unix(0x1, 0x200000005, 0x0, &(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmmsg(r1, &(0x7f0000003b40)=[{{&(0x7f0000002d80)=@pppol2tpv3in6={0x18, 0x1, {0x0, <r2=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x80, 0x0}}], 0x1, 0x0, 0x0)
write$P9_RUNLINKAT(r0, 0x0, 0x0)
write$binfmt_aout(r2, 0x0, 0x0)

11:18:59 executing program 0:
r0 = socket$inet6(0xa, 0x3, 0xffffffff)
ioctl$VT_RELDISP(r0, 0x5450)

11:18:59 executing program 3:
r0 = open$dir(&(0x7f0000000240)='.\x00', 0x0, 0x0)
r1 = creat(&(0x7f0000000c00)='./file0\x00', 0x0)
dup3(r0, r1, 0x0)
renameat(r0, &(0x7f0000000000)='./file0\x00', r1, &(0x7f0000000040)='./file0\x00')

11:18:59 executing program 5:
r0 = creat(&(0x7f0000000280)='./file0\x00', 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
dup2(r1, r0)
getsockname$inet(r0, 0x0, &(0x7f0000000240))

11:18:59 executing program 4:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r1 = socket$packet(0x11, 0x3, 0x300)
dup3(r0, r1, 0x0)
setsockopt$inet6_opts(r1, 0x29, 0x36, 0x0, 0x0)

11:18:59 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20010001, &(0x7f0000000280)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f00000000c0))
r1 = dup2(r0, r0)
setsockopt$sock_timeval(r0, 0x1, 0x15, &(0x7f0000000000)={0x77359400}, 0x10)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)

11:18:59 executing program 4:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x4e24, @remote}, 0x10)
getpeername(r0, &(0x7f0000000200)=@pppol2tp={0x18, 0x1, {0x0, <r1=>0xffffffffffffffff, {0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x80)
dup3(r0, r1, 0x0)
ioctl$sock_inet_SIOCSARP(r1, 0x8901, &(0x7f0000000100)={{}, {0x0, @link_local}, 0x0, {0x2, 0x0, @remote}, 'lo\x00'})

11:18:59 executing program 3:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000)='/dev/net/tun\x00', 0x0, 0x0)
close(r0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TEAM_CMD_PORT_LIST_GET(r0, &(0x7f0000005c80)={0x0, 0x0, &(0x7f0000005c40)={0x0}}, 0x0)

11:18:59 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)
dup3(r0, r1, 0x0)
sendmsg$NL80211_CMD_FLUSH_PMKSA(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)

11:18:59 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
connect$inet6(r0, &(0x7f00000001c0), 0x1c)
r2 = dup2(r0, r1)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000000440), 0x131f64)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r2, &(0x7f0000000280)={&(0x7f0000000000), 0xc, &(0x7f0000000240)={0x0, 0x1c}}, 0x20004800)

11:19:00 executing program 4:
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x0, 0x0)
ioctl$PIO_FONT(r0, 0x5450, 0x0)

11:19:01 executing program 2:
timer_create(0x0, &(0x7f0000000340)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000044000))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
r1 = gettid()
r2 = dup(r0)
sendmsg$NL80211_CMD_GET_REG(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
recvmmsg(r0, &(0x7f0000003c00)=[{{0x0, 0x0, &(0x7f0000003b00), 0x0, &(0x7f0000000180)=""/106, 0x6a}}], 0x400000000000116, 0x0, &(0x7f0000000040)={0x77359400})
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
tkill(r1, 0x1004000000013)

11:19:01 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
close(r0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCGETS2(r0, 0x802c542a, &(0x7f0000000140))

11:19:01 executing program 1:
r0 = socket(0x10, 0x3, 0x2)
sendmsg$IPVS_CMD_DEL_DAEMON(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)

11:19:01 executing program 0:
socketpair(0x1, 0x5, 0x0, &(0x7f0000000340)={<r0=>0xffffffffffffffff})
fcntl$F_GET_FILE_RW_HINT(r0, 0x402, 0x0)

11:19:01 executing program 4:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
close(r0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$NL80211_CMD_STOP_P2P_DEVICE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)

11:19:01 executing program 5:
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, 0x0, 0x0)

11:19:01 executing program 4:
pipe2(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = dup2(r1, r1)
dup2(r2, r0)
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0}}, 0x0)

11:19:01 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
close(r0)
socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_udp_encap(r0, 0x11, 0x64, &(0x7f0000001c40), 0x4)

11:19:01 executing program 1:
r0 = timerfd_create(0x0, 0x0)
close(r0)
r1 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f000000cfe4)={0xa, 0x0, 0x0, @loopback}, 0x1c)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x5}, 0x1c)
sendmsg$NET_DM_CMD_START(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)

11:19:01 executing program 5:
vmsplice(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0xd)

11:19:01 executing program 3:
r0 = socket$inet(0x2, 0x4020000000000001, 0x0)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @local}, 0x10)
sendmsg$TIPC_CMD_DISABLE_BEARER(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000200)={&(0x7f0000000040), 0xc, &(0x7f00000001c0)={0x0}}, 0x20000011)

11:19:02 executing program 4:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/tcp6\x00')
r1 = socket$nl_crypto(0x10, 0x3, 0x15)
dup3(r0, r1, 0x0)
ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000001940))

11:19:02 executing program 2:
sendmsg$TIPC_CMD_GET_LINKS(0xffffffffffffffff, 0x0, 0x67382b709bb95606)

11:19:02 executing program 0:
pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
close(r0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}}, 0x0)

11:19:02 executing program 5:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendto$unix(r1, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = dup3(r1, r0, 0x0)
sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)

11:19:02 executing program 1:
r0 = creat(&(0x7f0000000580)='./file0\x00', 0x0)
close(r0)
syz_genetlink_get_family_id$batadv(0x0)
sendmsg$TIPC_CMD_SET_NETID(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)

11:19:02 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0x349, 0x20010080, &(0x7f0000000280)={0xa, 0x0, 0x0, @remote, 0x3}, 0x1c)
r1 = dup2(r0, r0)
timer_create(0x0, &(0x7f0000000400)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000044000))
sendmsg$TIPC_CMD_SET_NETID(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
close(r0)
r2 = socket$inet6(0xa, 0x3, 0x8)
connect$inet6(r2, &(0x7f00000000c0)={0xa, 0x0, 0x0, @ipv4={[], [], @remote}}, 0x1c)
r3 = gettid()
tkill(r3, 0x1000000000016)

11:19:02 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r1, 0x5451, 0x0)

11:19:02 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0)
r1 = socket$nl_sock_diag(0x10, 0x3, 0x4)
dup3(r1, r0, 0x0)
sendmsg$NL80211_CMD_FLUSH_PMKSA(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)

11:19:03 executing program 5:
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000440)='/dev/zero\x00', 0x0, 0x0)
r1 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0)
dup2(r1, r0)
ioctl$CHAR_RAW_ROTATIONAL(r0, 0x127e, &(0x7f0000000040))

11:19:03 executing program 1:
r0 = creat(&(0x7f0000000040)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x0)
close(r0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = dup2(r0, r1)
setsockopt$IP_VS_SO_SET_DEL(r2, 0x0, 0x10, 0x0, 0x9)

11:19:03 executing program 2:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmmsg(r1, &(0x7f0000003b40)=[{{&(0x7f0000002d80)=@pppol2tpv3in6={0x18, 0x1, {0x0, <r2=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x80, 0x0}}], 0x1, 0x0, 0x0)
write$P9_RUNLINKAT(r0, 0x0, 0x0)
dup3(r0, r2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
recvmmsg(r4, &(0x7f0000003b40)=[{{&(0x7f0000002d80)=@pppol2tpv3in6={0x18, 0x1, {0x0, <r5=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x80, 0x0}}], 0x1, 0x0, 0x0)
write$P9_RUNLINKAT(r3, 0x0, 0x0)
sendmsg$NL80211_CMD_TESTMODE(r5, &(0x7f0000001600)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)

11:19:03 executing program 3:
r0 = epoll_create1(0x0)
open(0x0, 0x0, 0x0)
ioctl$EVIOCGKEYCODE(r0, 0x5421, &(0x7f00000000c0)=""/132)

11:19:03 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$BLKROGET(r0, 0x8941, 0x0)

11:19:03 executing program 0:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_opts(r0, 0x29, 0x30, &(0x7f0000000000)=@dstopts={0x0, 0x10, [], [@generic={0x0, 0x83, "4d6f97b488a3fee0b79c0b13cb3a2ec6d639ee85aa7eabd421f6ba55e2b0721f232a6024219c58fc496476d1dc8d21e7d7319dcdabb9cec43685c85cfc496c608d9d6e27408aa94e9bba3e2ebde3ed4c67b073723d504d2e048631d1c7e8ab2813af546ce5e87d93e0d0e2e7c9c1cd4798eea03b0297e9ff9963da5f96b7b8373fe3c2"}]}, 0x90)

11:19:03 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040)='nl80211\x00')
sendmsg$NL80211_CMD_DISCONNECT(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_REASON_CODE={0x6}]}, 0x24}}, 0x0)
sendmsg$IPVS_CMD_ZERO(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0}}, 0x0)

11:19:03 executing program 5:
r0 = openat$apparmor_task_current(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/attr/current\x00', 0x2, 0x0)
sync_file_range(r0, 0x0, 0x0, 0x7)

11:19:03 executing program 3:
r0 = syz_open_dev$evdev(&(0x7f0000000140)='/dev/input/event#\x00', 0x0, 0x6)
write$binfmt_elf64(r0, &(0x7f00000000c0)=ANY=[], 0xffffffe8)
r1 = fcntl$dupfd(r0, 0x0, r0)
timer_create(0x0, &(0x7f0000000100)={0x0, 0x12}, &(0x7f00000000c0))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x989680}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
ioctl$TUNSETLINK(r1, 0x400454cd, 0x0)

11:19:04 executing program 2:
r0 = socket$inet6(0xa, 0x1, 0x0)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x3}, 0x1c)
r1 = dup(r0)
sendmsg$DEVLINK_CMD_PORT_SPLIT(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x9c}}, 0x4004010)
sendmsg$inet(r1, &(0x7f0000001dc0)={0x0, 0x0, 0x0}, 0x0)
shutdown(r0, 0x0)

11:19:04 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$BLKDISCARD(r0, 0x2, &(0x7f00000002c0))

11:19:04 executing program 0:
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x0, 0x0)
close(r0)
socket$nl_route(0x10, 0x3, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f0000000080), 0x4)

11:19:04 executing program 1:
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000240)='/dev/hwrng\x00', 0x0, 0x0)
close(r0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCGETS(r0, 0x5401, &(0x7f00000003c0))

11:19:04 executing program 5:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptmx\x00', 0x0, 0x0)
dup2(r1, r0)
ioctl$TCSETSW2(r0, 0x402c542c, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, "15090a18e53d8c4520db55d38d30ecc7467e61"})

11:19:04 executing program 2:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCSISO7816(r0, 0x4b36, 0x0)

11:19:05 executing program 4:
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
fallocate(r0, 0x0, 0x0, 0x8020003)
write$P9_RREAD(r0, 0x0, 0x0)

11:19:05 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$apparmor_task_exec(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/attr/exec\x00', 0x2, 0x0)
dup3(r0, r1, 0x0)
write$P9_RFLUSH(r1, 0x0, 0x0)

11:19:05 executing program 1:
sched_setscheduler(0x0, 0x5, &(0x7f0000000180))
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0xa)

11:19:05 executing program 5:
r0 = openat$random(0xffffffffffffff9c, &(0x7f0000000140)='/dev/urandom\x00', 0x0, 0x0)
ioctl$FICLONE(r0, 0x5451, 0xffffffffffffffff)

11:19:05 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
dup2(r1, r0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000080), 0x4)

11:19:10 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x151)
connect$inet6(r0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @local}}, 0x1c)
r1 = dup2(r0, r0)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x20000440)
setsockopt$inet6_MCAST_LEAVE_GROUP(r0, 0x29, 0x2d, 0x0, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/net/tun\x00', 0x0, 0x0)
r3 = dup2(r2, r2)
ioctl$BLKFLSBUF(r3, 0x1261, 0x0)
mmap(&(0x7f0000000000/0xb3c000)=nil, 0xb3c000, 0x0, 0x32, 0xffffffffffffffff, 0x0)

11:19:10 executing program 2:
r0 = gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x6, 0x0)
write(r1, &(0x7f0000c34fff), 0xffffff0b)
r2 = dup2(r1, r1)
write$binfmt_aout(r2, 0x0, 0x0)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x2002, 0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
dup2(r3, r1)
tkill(r0, 0x1000000000016)

11:19:10 executing program 0:
r0 = inotify_init1(0x0)
close(r0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
sendmsg$BATADV_CMD_TP_METER(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={0x0}}, 0x0)

11:19:10 executing program 4:
pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
socketpair(0x1, 0x5, 0x0, &(0x7f0000001d80)={<r1=>0xffffffffffffffff})
dup2(r1, r0)
sendmsg$IPVS_CMD_SET_DEST(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0}}, 0x0)

11:19:10 executing program 5:
r0 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x2)
write$evdev(r0, &(0x7f0000057fa0)=[{}, {}], 0xfffffd24)
ioctl$BTRFS_IOC_WAIT_SYNC(r0, 0x40089416, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)

11:19:10 executing program 1:
socketpair(0x1, 0x5, 0x0, &(0x7f0000000340)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvfrom$packet(r0, &(0x7f0000000040), 0x0, 0x2002, 0x0, 0xfffffffffffffd02)
sendto$packet(r1, 0x0, 0x0, 0x0, 0x0, 0x0)

11:19:10 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x0, 0x0)
dup2(r0, r1)
sendmsg$DEVLINK_CMD_SB_OCC_MAX_CLEAR(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0}}, 0x0)

11:19:10 executing program 4:
pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x4800)
write$P9_RUNLINKAT(r0, &(0x7f00000000c0)={0x7}, 0xfffffff8)
write$P9_RREADLINK(r0, &(0x7f0000000040)={0x10, 0x17, 0x0, {0x7, './file0'}}, 0x10)

11:19:10 executing program 1:
r0 = socket(0xa, 0x1, 0x0)
getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x8, 0xfffffffffffffffe, &(0x7f0000000100))

11:19:11 executing program 0:
r0 = openat$apparmor_task_current(0xffffffffffffff9c, &(0x7f0000004980)='/proc/self/attr/current\x00', 0x2, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, 0x0)

11:19:11 executing program 4:
symlinkat(&(0x7f00000003c0)='./file0/../file0\x00', 0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00')
lgetxattr(&(0x7f0000000040)='./file0/file0\x00', 0x0, 0x0, 0x0)

11:19:11 executing program 5:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$NL80211_CMD_DEL_KEY(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)

11:19:12 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$GIO_UNIMAP(r0, 0x4b66, 0x0)

11:19:12 executing program 0:
r0 = openat$random(0xffffffffffffff9c, &(0x7f0000000300)='/dev/urandom\x00', 0x0, 0x0)
close(r0)
socket$packet(0x11, 0x2, 0x300)
setsockopt$inet6_icmp_ICMP_FILTER(r0, 0x1, 0x1, &(0x7f00000001c0), 0x4)

11:19:12 executing program 1:
r0 = syz_open_dev$vcsn(&(0x7f00000000c0)='/dev/vcs#\x00', 0x2, 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet_int(r0, 0x0, 0x17, 0x0, &(0x7f0000000040))

11:19:12 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20010080, &(0x7f0000000280)={0xa, 0x0, 0x0, @remote, 0x3}, 0x1c)
r1 = dup2(r0, r0)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000044000))
sendmsg$NL80211_CMD_CONTROL_PORT_FRAME(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
close(r0)
socket$inet(0x2, 0xa, 0x0)
r2 = gettid()
tkill(r2, 0x1000000000016)

11:19:12 executing program 4:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100)='/dev/net/tun\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
dup2(r1, r0)
ioctl$sock_inet6_tcp_SIOCINQ(r0, 0x541b, &(0x7f0000000000))

11:19:12 executing program 5:
r0 = socket$nl_route(0x10, 0x3, 0x0)
getpeername(r0, &(0x7f0000000140)=@pppol2tp={0x18, 0x1, {0x0, <r1=>0xffffffffffffffff}}, &(0x7f0000000000)=0x80)
dup2(r0, r1)
sendmsg$IPVS_CMD_SET_DEST(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)

11:19:12 executing program 4:
sched_setscheduler(0x0, 0x5, &(0x7f0000000180))
r0 = openat(0xffffffffffffff9c, &(0x7f0000001fc0)='./file0\x00', 0x40, 0x0)
ioctl$EVIOCGBITSND(r0, 0x5451, 0x0)

11:19:12 executing program 1:
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
dup2(r1, r0)
sendmsg$NL80211_CMD_SET_BSS(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0}}, 0x0)

11:19:12 executing program 5:
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_EGRESS_PRIORITY_CMD(r0, 0x8940, 0x0)

11:19:12 executing program 0:
creat(&(0x7f00000000c0)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x0, 0x0)
dup2(r0, r1)
sendmsg$NL80211_CMD_ADD_TX_TS(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)

11:19:12 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$apparmor_thread_current(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/attr/current\x00', 0x2, 0x0)
dup2(r0, r1)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={0x0}}, 0x0)

11:19:12 executing program 3:
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x0, 0x0)
close(r0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000140)=0x100000001, 0x4)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @empty}, 0x1c)
r2 = dup2(r1, r1)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000000440), 0x131f64)
setsockopt$inet6_tcp_TLS_TX(r0, 0x6, 0x1, &(0x7f0000000040), 0x896a04c86f21e685)

[ 1701.479337][   T32] audit: type=1804 audit(1604229553.207:22): pid=31414 uid=0 auid=0 ses=4 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name=2F726F6F742F73797A6B616C6C65722D746573746469723835353939373138342F73797A6B616C6C65722E665865454D742F313630332FE91F7189591E9233614B dev="sda1" ino=16259 res=1 errno=0
11:19:13 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)={0x0, 0x0, 0x0, 0x0, 0x0, "1a0000e2f7ff4dfffbff120061fffffff300"})
r1 = syz_open_pts(r0, 0x0)
dup3(r1, r0, 0x0)
ioctl$TCGETS(r1, 0x5401, 0x0)

[ 1701.738029][   T32] audit: type=1804 audit(1604229553.267:23): pid=31418 uid=0 auid=0 ses=4 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name=2F726F6F742F73797A6B616C6C65722D746573746469723835353939373138342F73797A6B616C6C65722E665865454D742F313630332FE91F7189591E9233614B dev="sda1" ino=16259 res=1 errno=0
11:19:13 executing program 1:
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/net\x00')
close(r0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000001800))
sendmsg$TIPC_NL_MEDIA_SET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)

11:19:13 executing program 0:
socketpair(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$vcsn(&(0x7f0000000080)='/dev/vcs#\x00', 0x0, 0x0)
dup3(r0, r1, 0x0)
sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={0x0}}, 0x0)

11:19:13 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000001280)='/dev/loop-control\x00', 0x0, 0x0)
dup2(r0, r1)
sendmsg$SOCK_DESTROY(r1, &(0x7f0000001200)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)

11:19:14 executing program 3:
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x0, 0x0)
r1 = ioctl$TUNGETDEVNETNS(r0, 0x5450, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
getpeername(r2, &(0x7f0000000540)=@pppol2tpv3={0x18, 0x1, {0x0, <r3=>0xffffffffffffffff, {0x2, 0x0, @local}}}, &(0x7f00000005c0)=0x80)
dup2(r2, r3)
sendmsg$DEVLINK_CMD_RELOAD(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={0x0}}, 0x0)

11:19:14 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$TUNSETGROUP(r0, 0x400454ce, 0x0)

11:19:14 executing program 4:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='pids.current\x00', 0x26e1, 0x0)
close(r0)
syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$KDGETLED(r0, 0x4b31, &(0x7f0000000000))

11:19:14 executing program 5:
r0 = epoll_create(0x40000acf)
close(r0)
syz_genetlink_get_family_id$nl80211(0x0)
sendmsg$NL80211_CMD_TDLS_OPER(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[], 0x5c}}, 0x0)

11:19:14 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
pipe2(&(0x7f0000000c40)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
dup2(r0, r1)
sendmsg$BATADV_CMD_TP_METER_CANCEL(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)

11:19:14 executing program 2:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = dup3(r1, r0, 0x0)
getpeername$packet(r2, 0x0, &(0x7f0000000780))

11:19:14 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20010001, &(0x7f0000000280)={0xa, 0x4e21, 0x0, @remote, 0x2}, 0x1c)
r1 = gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
close(r0)
r2 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r2, &(0x7f000000cfe4)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_opts(r2, 0x29, 0x36, &(0x7f0000000140)=ANY=[@ANYBLOB="0003000000000000c9"], 0x28)
write(r2, 0x0, 0x0)
tkill(r1, 0x1000000000016)

11:19:14 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
recvmsg(r0, &(0x7f0000000240)={&(0x7f0000000280)=@pppol2tp={0x18, 0x1, {0x0, <r1=>0xffffffffffffffff}}, 0x25, 0x0}, 0x0)
sendmsg$TIPC_CMD_GET_MAX_PORTS(r0, &(0x7f0000002600)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000002580)={0x1c, 0x0, 0x70d}, 0x1c}}, 0x0)
dup3(r0, r1, 0x0)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)

11:19:15 executing program 2:
r0 = socket(0x11, 0x3, 0x0)
sendmsg$NL80211_CMD_PEER_MEASUREMENT_START(r0, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={0x0}}, 0x0)

11:19:15 executing program 5:
r0 = timerfd_create(0x0, 0x0)
close(r0)
r1 = socket$packet(0x11, 0x2, 0x300)
r2 = socket(0xa, 0x2, 0x0)
setsockopt$inet_int(r2, 0x0, 0x8, &(0x7f0000000040)=0xd3, 0x4)
getsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f0000000140)={<r3=>0x0, @rand_addr, @initdev}, &(0x7f0000000180)=0xc)
bind$packet(r1, &(0x7f0000000000)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @local}, 0x14)
sendmsg$BATADV_CMD_GET_GATEWAYS(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)

11:19:15 executing program 0:
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040)='/dev/hwrng\x00', 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
dup2(r1, r0)
getsockopt$ARPT_SO_GET_INFO(r0, 0x0, 0x12, 0x0, &(0x7f0000000000))

11:19:15 executing program 1:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x8000000000000003, @loopback}, 0x10)
timer_create(0x0, &(0x7f0000cd0000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000003c0))
timer_settime(0x0, 0x0, &(0x7f0000000380)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r1 = gettid()
recvmmsg(r0, &(0x7f0000000ac0), 0x400000000000021, 0x0, 0x0)
tkill(r1, 0x14)
r2 = creat(&(0x7f00000000c0)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r3, r2)
r5 = dup2(r0, r4)
sendmsg$IPVS_CMD_FLUSH(r5, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={0x0}}, 0x0)

11:19:15 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_opts(r0, 0x29, 0x36, &(0x7f00000001c0)=ANY=[@ANYBLOB="0003000000000000cd"], 0x28)
recvmmsg(r0, &(0x7f0000000700)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
r1 = dup2(r0, r0)
write$evdev(r1, 0x0, 0x0)

11:19:15 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
sendmmsg$inet(r0, &(0x7f0000000ac0)=[{{&(0x7f0000000700)={0x2, 0x4e23, @loopback}, 0x10, 0x0}}], 0x1, 0x24009000)
sendmsg$NL80211_CMD_NEW_KEY(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)

11:19:15 executing program 5:
r0 = inotify_init1(0x0)
close(r0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_STOP_AP(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)

11:19:15 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20010001, &(0x7f0000000280)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
r1 = gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
r2 = dup2(r0, r0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
write$P9_RVERSION(r2, 0x0, 0x0)
close(r0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
tkill(r1, 0x1000000000016)

11:19:15 executing program 0:
r0 = syz_open_dev$evdev(&(0x7f0000000080)='/dev/input/event#\x00', 0x0, 0x2)
write$evdev(r0, &(0x7f0000057fa0)=[{}, {}], 0xfffffd24)
ioctl$EVIOCREVOKE(r0, 0x40044591, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_SIOCGPGRP(r1, 0x8904, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)

11:19:16 executing program 1:
mknod(&(0x7f0000000100)='./file0\x00', 0x1040, 0x0)
open$dir(&(0x7f0000000040)='./file0\x00', 0x41, 0x0)
r0 = gettid()
creat(&(0x7f0000000000)='./file0\x00', 0x0)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
r1 = memfd_create(&(0x7f0000000080)='procppp1eth1{}(cpusetcgroup\r{\x00', 0x0)
write(r1, &(0x7f00000004c0)='1', 0x1)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r1, &(0x7f00000000c0), 0x10000)
tkill(r0, 0x1000000000016)

11:19:16 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0x541b, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
close(r1)
socket(0x10, 0x3, 0x0)
sendmsg$NL80211_CMD_SET_POWER_SAVE(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}}, 0x0)

11:19:16 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040)='/dev/zero\x00', 0x0, 0x0)
dup3(r0, r1, 0x0)
getpeername$inet6(r1, 0x0, &(0x7f0000000000))

11:19:16 executing program 5:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$BTRFS_IOC_SNAP_CREATE_V2(r0, 0x5451, 0x0)

11:19:16 executing program 4:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
close(r0)
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$GIO_FONTX(r0, 0x4b6b, &(0x7f0000000ac0)={0x11f, 0x0, 0x0})

11:19:16 executing program 0:
r0 = socket(0x2, 0xa, 0x0)
sendmsg$NL80211_CMD_ASSOCIATE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)

11:19:16 executing program 3:
sendmsg$ETHTOOL_MSG_PAUSE_SET(0xffffffffffffffff, 0x0, 0x0)

11:19:17 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000280)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$FITHAW(r0, 0x5450)

11:19:17 executing program 5:
socketpair$unix(0x1, 0x200000005, 0x0, &(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = shmget(0xffffffffffffffff, 0x3000, 0x1000, &(0x7f0000ffc000/0x3000)=nil)
semctl$GETVAL(r2, 0x0, 0xc, &(0x7f0000000000)=""/213)
shmctl$IPC_INFO(r2, 0x3, &(0x7f0000000000)=""/138)
shmctl$SHM_LOCK(r2, 0xb)
recvmmsg(r1, &(0x7f0000003b40)=[{{&(0x7f0000002d80)=@pppol2tpv3in6={0x18, 0x1, {0x0, <r3=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x80, 0x0}}], 0x1, 0x0, 0x0)
write$P9_RUNLINKAT(r0, 0x0, 0x0)
write$binfmt_elf64(r3, 0x0, 0x0)

11:19:17 executing program 0:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/fib_triestat\x00')
ioctl$SIOCGIFHWADDR(r0, 0x5421, &(0x7f0000000000))

11:19:17 executing program 4:
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4)
r0 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x0, 0x0)
fchmodat(r0, &(0x7f0000000000)='./file0\x00', 0x0)

11:19:17 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20010001, &(0x7f0000000280)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
r1 = dup2(r0, r0)
sendmsg$DEVLINK_CMD_PORT_SET(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x40400c8)

11:19:19 executing program 1:
r0 = open$dir(&(0x7f0000000280)='./file0\x00', 0x80440, 0x0)
close(r0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000005280))
sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)

11:19:19 executing program 2:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$TIPC_CMD_GET_MAX_PORTS(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={0x0}}, 0x8000)

11:19:19 executing program 5:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001a40)='cgroup.controllers\x00', 0x26e1, 0x0)
close(r0)
openat$random(0xffffffffffffff9c, &(0x7f0000000000)='/dev/urandom\x00', 0x600, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$VT_DISALLOCATE(0xffffffffffffffff, 0x5608)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
preadv(r0, &(0x7f00000000c0)=[{&(0x7f0000000280)=""/4096, 0x1000}, {&(0x7f0000001280)=""/188, 0xbc}], 0x2, 0x0, 0x0)
openat$null(0xffffffffffffff9c, &(0x7f0000001980)='/dev/null\x00', 0x400080, 0x0)

11:19:19 executing program 4:
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4)
r0 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x0, 0x0)
fchmodat(r0, &(0x7f0000000000)='./file0\x00', 0x0)

11:19:19 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000001fc0)='./file0\x00', 0x40, 0x0)
close(r0)
syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$KDGKBDIACR(r0, 0x4b4a, &(0x7f0000000040)=""/182)

11:19:19 executing program 0:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT(r0, 0x5450, 0x0)

11:19:20 executing program 5:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x2102, 0x0)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1c5)
splice(r0, 0x0, r2, 0x0, 0x20000000010005, 0x0)

11:19:20 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0)

11:19:20 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000700)='/dev/vcs\x00', 0x0, 0x0)
r2 = dup3(r0, r1, 0x0)
sendmsg$NL80211_CMD_NOTIFY_RADAR(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x20000000)

11:19:20 executing program 4:
r0 = openat$apparmor_task_exec(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/self/attr/exec\x00', 0x2, 0x0)
close(r0)
socket$nl_route(0x10, 0x3, 0x0)
write$P9_RCREATE(r0, 0x0, 0x0)

11:19:20 executing program 3:
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/pid\x00')
close(r0)
socket$nl_generic(0x10, 0x3, 0x10)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=ANY=[], 0xd4}}, 0x0)

11:19:20 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = dup3(r1, r0, 0x0)
r3 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
dup3(r2, r3, 0x0)
sendmsg$IPVS_CMD_SET_CONFIG(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={0x0}}, 0x0)

11:19:20 executing program 4:
r0 = syz_open_dev$evdev(&(0x7f0000000040)='/dev/input/event#\x00', 0x0, 0x181282)
write$evdev(r0, &(0x7f0000057fa0)=[{}, {}], 0xfffffd24)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ptmx\x00', 0x0, 0x0)
r2 = fcntl$dupfd(r0, 0x0, r1)
ioctl$LOOP_GET_STATUS(r2, 0x4c03, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)

11:19:20 executing program 2:
r0 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/net\x00')
dup3(r0, r1, 0x0)
readahead(r1, 0x0, 0x0)

11:19:20 executing program 0:
r0 = inotify_init1(0x0)
close(r0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
sendmsg$NET_DM_CMD_START(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)

11:19:20 executing program 5:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x2102, 0x0)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1c5)
splice(r0, 0x0, r2, 0x0, 0x20000000010005, 0x0)

11:19:20 executing program 3:
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000300)='/dev/autofs\x00', 0x0, 0x0)
ioctl$sock_SIOCSIFVLAN_GET_VLAN_EGRESS_PRIORITY_CMD(r0, 0x8983, 0x0)

11:19:21 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
connect$netlink(r0, 0x0, 0x2f)

11:19:21 executing program 5:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x2102, 0x0)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1c5)
splice(r0, 0x0, r2, 0x0, 0x20000000010005, 0x0)

11:19:21 executing program 0:
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_SET_FEATURES(r0, 0x5450, 0x0)

11:19:21 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$SEG6_CMD_SETHMAC(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x80d0)

11:19:21 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$NL80211_CMD_GET_COALESCE(r0, &(0x7f00000016c0)={0x0, 0x0, &(0x7f0000001680)={0x0}}, 0x0)

11:19:21 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_DEL_INTERFACE(r0, 0x0, 0x0)

11:19:22 executing program 2:
r0 = socket$inet(0x2, 0x8000a, 0x0)
setsockopt$sock_cred(r0, 0x1, 0x28, &(0x7f00000001c0), 0xc)

11:19:22 executing program 4:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
recvmsg(r0, &(0x7f0000001400)={&(0x7f00000000c0)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, 0xfffffffffffffcea, &(0x7f0000000040)=[{&(0x7f0000000140)=""/162, 0xa2}, {&(0x7f0000000200)=""/144, 0x90}, {&(0x7f00000002c0)=""/4096, 0x1000}, {&(0x7f0000001440)=""/176, 0xb0}], 0x4, &(0x7f0000001380)=""/91, 0x5b}, 0x0)

11:19:22 executing program 5:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x2102, 0x0)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1c5)
splice(r0, 0x0, r2, 0x0, 0x20000000010005, 0x0)

11:19:22 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000180)='/dev/null\x00', 0x0, 0x0)
dup3(r0, r1, 0x0)
ioctl$TCSETXW(r1, 0x5427, 0x0)

11:19:22 executing program 3:
r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x0, 0x0)
close(r0)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
connect$inet(r0, &(0x7f0000000100)={0x2, 0x0, @local}, 0x10)

11:19:22 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20010001, &(0x7f0000000280)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
r1 = gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
r2 = dup2(r0, r0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x3938700}}, 0x0)
sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)
close(r0)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = socket(0xa, 0x2, 0x0)
setsockopt$inet_int(r4, 0x0, 0x8, &(0x7f0000000040)=0xd3, 0x4)
getsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000001380)={<r5=>0x0, @rand_addr, @initdev}, &(0x7f0000000180)=0xc)
bind$packet(r3, &(0x7f0000000000)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @local}, 0x14)
tkill(r1, 0x1000000000016)

11:19:22 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup2(r0, r0)
sendmsg$TIPC_NL_LINK_RESET_STATS(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x50)

11:19:23 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
pipe2$9p(&(0x7f00000000c0)={<r1=>0xffffffffffffffff}, 0x0)
dup2(r0, r1)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0)

11:19:23 executing program 0:
r0 = open$dir(&(0x7f0000000280)='./file0\x00', 0x80440, 0x0)
close(r0)
r1 = socket$packet(0x11, 0x2, 0x300)
r2 = socket(0xa, 0x2, 0x0)
setsockopt$inet_int(r2, 0x0, 0x8, &(0x7f0000000040)=0xd3, 0x4)
getsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f0000000140)={<r3=>0x0, @rand_addr, @initdev}, &(0x7f0000000180)=0xc)
bind$packet(r1, &(0x7f0000000000)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @local}, 0x14)
sendmsg$BATADV_CMD_GET_TRANSTABLE_LOCAL(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={0x0}}, 0x0)

11:19:23 executing program 5:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff})
r1 = socket$inet_udp(0x2, 0x2, 0x0)
close(r1)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x2102, 0x0)
splice(r0, 0x0, r1, 0x0, 0x20000000010005, 0x0)

11:19:23 executing program 3:
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/loop-control\x00', 0x0, 0x0)
r2 = dup3(r1, r0, 0x0)
sched_setscheduler(0x0, 0x5, &(0x7f0000000000))
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$apparmor_thread_current(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/attr/current\x00', 0x2, 0x0)
ioctl$GIO_UNISCRNMAP(r2, 0x4b69, 0x0)

11:19:23 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_DISCONNECT(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0xb614}, 0x0)

11:19:23 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x0, 0x0)
dup3(r0, r1, 0x0)
setsockopt$netlink_NETLINK_CAP_ACK(r1, 0x10e, 0x4, 0x0, 0x0)

11:19:23 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
getsockname(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, <r1=>0xffffffffffffffff}}, &(0x7f00000000c0)=0x80)
ioctl$BTRFS_IOC_INO_LOOKUP(r1, 0x5450, 0x0)

11:19:24 executing program 1:
r0 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$sock_timeval(r0, 0x1, 0x15, &(0x7f0000000180)={0x0, 0xea60}, 0x10)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x3}, 0x1c)
r1 = dup(r0)
sendmsg$nl_generic(r1, &(0x7f0000002900)={&(0x7f0000002700), 0xc, &(0x7f00000028c0)={0x0}}, 0x20000000)

11:19:24 executing program 2:
r0 = socket(0x2, 0x1, 0x0)
sendmsg$NL80211_CMD_SET_MAC_ACL(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x4010)

11:19:24 executing program 4:
r0 = socket(0x11, 0x3, 0x0)
sendmsg$ETHTOOL_MSG_WOL_SET(r0, &(0x7f0000003fc0)={0x0, 0x0, &(0x7f0000003f80)={0x0}}, 0x0)

11:19:24 executing program 0:
syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0xffffffff80000000, 0x0)

11:19:24 executing program 5:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff})
r1 = socket$inet_udp(0x2, 0x2, 0x0)
close(r1)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x2102, 0x0)
splice(r0, 0x0, r1, 0x0, 0x20000000010005, 0x0)

11:19:24 executing program 1:
r0 = openat$apparmor_task_exec(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/attr/exec\x00', 0x2, 0x0)
close(r0)
socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$inet_mreqn(r0, 0x0, 0x20, 0x0, &(0x7f000000f040))

11:19:24 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$F2FS_IOC_RESIZE_FS(r0, 0x4008f510, 0x0)

11:19:25 executing program 4:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TIOCEXCL(r0, 0x540c)

11:19:25 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0xfe7e)
connect$inet6(r0, &(0x7f0000000080), 0x1c)
r1 = dup2(r0, r0)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x131f64)
getsockopt$sock_int(r1, 0x1, 0x1a, 0x0, &(0x7f0000000200))
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)

11:19:25 executing program 0:
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket$netlink(0x10, 0x3, 0x0)
dup3(r1, r0, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r2, 0x8)
setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x151)
r3 = accept4$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
getsockopt$IP_SET_OP_VERSION(r3, 0x1, 0x2a, 0x0, &(0x7f0000000000))
sendmsg$sock(r3, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000140)="7828e06c926daf9e3537c5922d6891a3bf0f78c8328ddfd07e8d1ebbe3146c4852e43e59530bf59d79aa6edeac80a48eecaad4053ca8cf575cbc8241e95b761f8f001b785c959ecef7631f8a8e567717", 0x50}, {&(0x7f00000001c0)="129e2202695e0ded16ac51662c42cd602f0710f5b3b45638cf1c0ce2666a0ecb4a02e5a4e2a2367d9380abcabc1b32c12156a39ed527b09a407efb7b7746", 0x3e}, {&(0x7f0000000240)="33a79a1365ff580cf21fc04552c0547e213eadec48f9c19a", 0x18}, {&(0x7f0000000580)="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", 0x100}, {&(0x7f0000000300)="2d0af00b27680d77613682cedcb0b61f5f25fa140c0e9391c5cde3f4f0d153c5aa750149a3381626cdd4eedb6c7cc29ca0d45b3661eced5a507e8d7729f5c3bdf48d1a479201ceac67fb6a48da430322234b68792e20b45246a8c370b10fbfb38a00979916b1fdbad16ef182c2d78efc09c65097b547a7701b1ee5b6f803662f", 0x80}, {&(0x7f0000000280)="c763af15597b9ff5d746a2a0e090f04c89de6aa83f833dcb533fe2977d96e570d0b1c83d8929dd85cc427baf8d61efc2545fcbc99d814a19ca3d1663e28f41081440824ce94003b7ffc2fcf3530837f32d58037adfbbe8", 0x57}], 0x6, &(0x7f0000000480)=[@timestamping={{0x14, 0x1, 0x25, 0x1}}, @mark={{0x14, 0x1, 0x24, 0x1}}, @txtime={{0x18, 0x1, 0x3d, 0x4}}, @txtime={{0x18, 0x1, 0x3d, 0x8001}}, @timestamping={{0x14, 0x1, 0x25, 0x7}}, @mark={{0x14, 0x1, 0x24, 0x5}}, @timestamping={{0x14, 0x1, 0x25, 0xf0}}, @timestamping={{0x14, 0x1, 0x25, 0x9}}], 0xc0}, 0x50)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000000100)=[@mss={0x2, 0xfffffc00}, @sack_perm, @sack_perm, @sack_perm], 0x4)
connect$inet6(r2, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r4 = dup2(r2, r2)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000000200)=[@mss={0x2, 0xffff}, @timestamp, @sack_perm, @sack_perm, @mss={0x2, 0x8}, @sack_perm, @window={0x3, 0x8b, 0x7}], 0x7)
bind$inet6(r4, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x35}, 0x1c)
r5 = shmget(0xffffffffffffffff, 0x3000, 0x0, &(0x7f0000ffc000/0x3000)=nil)
semctl$IPC_RMID(r5, 0x0, 0x0)
shmctl$IPC_SET(r5, 0xb, 0x0)
getsockopt$IP_SET_OP_GET_BYINDEX(r1, 0x1, 0x53, &(0x7f0000000380)={0x7, 0x7, 0x4}, &(0x7f00000003c0)=0x28)

11:19:25 executing program 1:
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x0, 0x0)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x5451, 0x0)

11:19:25 executing program 2:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
r1 = epoll_create1(0x0)
dup3(r0, r1, 0x0)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f0000000000), 0x4)

11:19:25 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000740)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, 0x0)

11:19:26 executing program 5:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff})
r1 = socket$inet_udp(0x2, 0x2, 0x0)
close(r1)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x2102, 0x0)
splice(r0, 0x0, r1, 0x0, 0x20000000010005, 0x0)

11:19:26 executing program 1:
r0 = signalfd(0xffffffffffffffff, &(0x7f0000000080), 0x8)
r1 = dup(r0)
ioctl$BLKTRACESTART(r1, 0x5450, 0x0)

11:19:26 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
dup2(r0, r1)
sendmsg$ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)

11:19:26 executing program 0:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$EBT_SO_GET_INIT_ENTRIES(r0, 0x0, 0x22, 0x0, &(0x7f0000000040))

11:19:26 executing program 2:
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
dup2(r1, r0)
sendmsg$NLBL_UNLABEL_C_STATICREMOVE(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)

11:19:26 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x3b7)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x0, 0x0)
r2 = dup2(r0, r1)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000000440), 0x131f64)
setsockopt$inet6_MCAST_JOIN_GROUP(r1, 0x29, 0x2a, 0x0, 0x0)
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCSIFBR(r3, 0x8953, &(0x7f0000000140)=@add_del={0x2, 0x0})

11:19:27 executing program 4:
r0 = openat$apparmor_thread_exec(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/attr/exec\x00', 0x2, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0x5450, 0x0)

11:19:27 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
recvmsg(r0, &(0x7f0000000240)={&(0x7f0000000280)=@pppol2tp={0x18, 0x1, {0x0, <r1=>0xffffffffffffffff}}, 0x25, 0x0}, 0x0)
sendmsg$TIPC_CMD_GET_MAX_PORTS(r0, &(0x7f0000002600)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000002580)={0x1c, 0x0, 0x70d}, 0x1c}}, 0x0)
r2 = dup3(r0, r1, 0x0)
ioctl$sock_inet_SIOCDELRT(r2, 0x8901, &(0x7f0000000080)={0x0, {0x2, 0x0, @empty}, {0x2, 0x0, @broadcast}, {0x2, 0x0, @loopback}})

11:19:27 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000440)='/dev/vcs\x00', 0x0, 0x0)
dup2(r0, r1)
ioctl$PIO_CMAP(r1, 0x541b, &(0x7f0000000000))

11:19:27 executing program 2:
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r0, 0x10e, 0x3, 0x0, 0x0)

11:19:27 executing program 5:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1c5)
splice(r0, 0x0, r2, 0x0, 0x20000000010005, 0x0)

11:19:27 executing program 3:
r0 = open$dir(&(0x7f0000000280)='./file0\x00', 0x80441, 0x0)
close(r0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$SOCK_DIAG_BY_FAMILY(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)

11:19:27 executing program 2:
r0 = openat$apparmor_task_exec(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/attr/exec\x00', 0x2, 0x0)
close(r0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_SET_DEST(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)

11:19:27 executing program 4:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, 0x0}, 0x0)
socketpair$unix(0x1, 0x200000005, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
getsockname(r0, &(0x7f00000000c0)=@pppol2tpv3={0x18, 0x1, {0x0, <r1=>0xffffffffffffffff, {0x2, 0x0, @empty}}}, &(0x7f0000000140)=0x80)
sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0)

11:19:27 executing program 0:
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000400)='/dev/autofs\x00', 0x0, 0x0)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r0, 0x5421, &(0x7f0000000180)={'syztnl1\x00', 0x0})

11:19:28 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = signalfd(0xffffffffffffffff, &(0x7f0000000140), 0x8)
dup3(r0, r1, 0x0)
sendmsg$NL80211_CMD_ABORT_SCAN(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)

11:19:28 executing program 5:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1c5)
splice(r0, 0x0, r2, 0x0, 0x20000000010005, 0x0)

11:19:28 executing program 3:
timer_create(0x0, &(0x7f0000000380)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000044000))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
r1 = gettid()
r2 = dup2(r0, r0)
sendmsg$TEAM_CMD_PORT_LIST_GET(r2, &(0x7f0000004740)={0x0, 0x0, &(0x7f0000004700)={0x0}}, 0x0)
recvmmsg(r0, &(0x7f0000003c00)=[{{0x0, 0x0, &(0x7f0000003b00), 0x0, &(0x7f0000000180)=""/106, 0x6a}}], 0x400000000000116, 0x0, &(0x7f0000000040)={0x77359400})
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
tkill(r1, 0x1004000000015)

11:19:28 executing program 4:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet(0x2, 0xa, 0x0)
dup3(r0, r1, 0x0)
sendmsg$BATADV_CMD_SET_MESH(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)

11:19:28 executing program 2:
r0 = timerfd_create(0x0, 0x0)
close(r0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_WIPHY(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)

11:19:28 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20010001, &(0x7f0000000280)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
r1 = dup2(r0, r0)
r2 = gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
sendmsg$NLBL_CIPSOV4_C_REMOVE(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={0x0}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
close(r0)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = socket(0xa, 0x2, 0x0)
setsockopt$inet_int(r4, 0x0, 0x8, &(0x7f0000000040)=0xd3, 0x4)
setsockopt$sock_int(r3, 0x1, 0x2b, &(0x7f0000000100)=0x20, 0x4)
getsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={<r5=>0x0, @rand_addr, @initdev}, &(0x7f0000000180)=0xc)
bind$packet(r3, &(0x7f0000000000)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @local}, 0x14)
tkill(r2, 0x1000000000016)

11:19:29 executing program 5:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1c5)
splice(r0, 0x0, r2, 0x0, 0x20000000010005, 0x0)

11:19:29 executing program 1:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='gid_map\x00')
write$cgroup_type(r0, 0x0, 0x0)

11:19:29 executing program 4:
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0xfffffffffffffc47, 0x20010001, &(0x7f0000000280)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
r1 = dup2(r0, r0)
sendmsg$SMC_PNETID_DEL(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)
close(r1)
socket$packet(0x11, 0x2, 0x300)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x1c9c380}}, 0x0)
r2 = gettid()
tkill(r2, 0x1000000000016)

11:19:29 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/autofs\x00', 0x0, 0x0)
dup2(r0, r1)
write$P9_RFSYNC(r1, 0x0, 0x0)

11:19:29 executing program 0:
pipe2(&(0x7f00000002c0)={<r0=>0xffffffffffffffff}, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0x5450, 0x0)

11:19:29 executing program 5:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x2102, 0x0)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1c5)
splice(r0, 0x0, r2, 0x0, 0x20000000010005, 0x0)

11:19:29 executing program 1:
r0 = eventfd2(0x0, 0x0)
ioctl$int_out(r0, 0x2, &(0x7f0000000140))

11:19:30 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000140)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @empty}, 0x1c)
r1 = dup2(r0, r0)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x131f64)
sendmsg$TIPC_CMD_RESET_LINK_STATS(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)

11:19:30 executing program 4:
r0 = socket(0x2, 0x3, 0x3)
ioctl$BTRFS_IOC_INO_LOOKUP(r0, 0x8906, 0x0)

11:19:30 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20010001, &(0x7f0000000280)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
r1 = gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
r2 = dup2(r0, r0)
sendmsg$DEVLINK_CMD_SB_POOL_SET(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
close(r0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000000}, 0xc, 0x0}, 0x0)
tkill(r1, 0x1000000000016)

11:19:30 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$IOC_PR_RELEASE(r0, 0x401070ca, 0x0)

11:19:30 executing program 5:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x2102, 0x0)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1c5)
splice(r0, 0x0, r2, 0x0, 0x20000000010005, 0x0)

11:19:30 executing program 1:
sendmsg$IPVS_CMD_GET_DEST(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x38, 0x0, 0x0, 0x0, 0x0, {}, [@IPVS_CMD_ATTR_DAEMON={0x24, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @private}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @local}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @private}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e24}]}]}, 0x38}}, 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_inet6_udp_SIOCOUTQ(r0, 0x890c, &(0x7f0000000040))

11:19:30 executing program 4:
r0 = syz_open_dev$loop(&(0x7f0000000240)='/dev/loop#\x00', 0x0, 0x0)
ioctl$FIGETBSZ(r0, 0x2, &(0x7f0000000280))

11:19:30 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000080), 0x1c)
r1 = dup2(r0, r0)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x129f0817)
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)

11:19:30 executing program 3:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000002600)={0xa, 0x4e24, 0x0, @ipv4={[], [], @loopback}}, 0x1c)
write$P9_RMKDIR(r0, 0x0, 0x0)

11:19:31 executing program 5:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x2102, 0x0)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1c5)
splice(r0, 0x0, r2, 0x0, 0x20000000010005, 0x0)

11:19:31 executing program 0:
creat(&(0x7f0000000100)='./file0\x00', 0x0)
r0 = open(&(0x7f0000002240)='./file0\x00', 0x0, 0x0)
pread64(r0, 0x0, 0x0, 0x0)

11:19:31 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0xd, &(0x7f0000000040), 0x4)

[ 1720.012293][   T32] audit: type=1804 audit(1604229571.737:24): pid=31812 uid=0 auid=0 ses=4 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir855997184/syzkaller.fXeEMt/1625/file0" dev="sda1" ino=16352 res=1 errno=0
[ 1720.297947][   T32] audit: type=1804 audit(1604229571.787:25): pid=31810 uid=0 auid=0 ses=4 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir855997184/syzkaller.fXeEMt/1625/file0" dev="sda1" ino=16352 res=1 errno=0
11:19:31 executing program 3:
socketpair(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$NL80211_CMD_TDLS_OPER(r0, &(0x7f0000000200)={&(0x7f0000000080), 0xc, &(0x7f0000000140)={0x0}}, 0x0)

11:19:32 executing program 4:
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x0, 0x0)
close(r0)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
bind$inet(r0, &(0x7f0000001a40)={0x2, 0x0, @remote}, 0x10)

11:19:32 executing program 5:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(0xffffffffffffffff)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x2102, 0x0)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1c5)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x20000000010005, 0x0)

11:19:32 executing program 0:
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0)
r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000), 0x2, 0x0)
write$P9_RLOPEN(r0, 0x0, 0x0)

11:19:32 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000080), 0x1c)
r1 = dup2(r0, r0)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x129f0817)
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)

11:19:32 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={0x0}}, 0x100000c0)

11:19:32 executing program 3:
open(&(0x7f0000000000)='./file0\x00', 0x40, 0x148)

11:19:33 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$NLBL_UNLABEL_C_STATICREMOVE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x8840)

11:19:33 executing program 0:
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x0, 0x0)
close(r0)
socket(0x10, 0x3, 0x0)
sendmsg$NL80211_CMD_REQ_SET_REG(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)

11:19:33 executing program 4:
r0 = syz_open_dev$loop(&(0x7f00000002c0)='/dev/loop#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$CHAR_RAW_IOMIN(r1, 0x1278, &(0x7f0000000080))

11:19:33 executing program 5:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(0xffffffffffffffff)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x2102, 0x0)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1c5)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x20000000010005, 0x0)

11:19:33 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000080), 0x1c)
r1 = dup2(r0, r0)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x131f64)
sendmsg$ETHTOOL_MSG_RINGS_GET(r1, &(0x7f00000004c0)={&(0x7f0000000040), 0xc, &(0x7f0000000480)={0x0}}, 0x28004004)

11:19:34 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20010001, &(0x7f0000000280)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = gettid()
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r1, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={0x0}}, 0x0)
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
ioctl$int_in(r0, 0x5421, &(0x7f0000000080)=0x40000001)
tkill(r2, 0x1000000000016)

11:19:34 executing program 0:
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
capset(&(0x7f00002d0ff8)={0x19980330}, &(0x7f0000cc0000))
lsetxattr$security_capability(&(0x7f0000000100)='./file0/file0\x00', 0x0, 0x0, 0x0, 0x0)

11:19:34 executing program 1:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/net/tun\x00', 0x0, 0x0)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000100)='ns/pid\x00')
r2 = dup3(r0, r1, 0x0)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_EGRESS_PRIORITY_CMD(r2, 0x8983, &(0x7f0000000040)={0x3, 'vcan0\x00'})

11:19:34 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x151)
connect$inet6(r0, &(0x7f0000000080), 0x1c)
r1 = dup2(r0, r0)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x131f64)
setsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, 0xfffffffffffffffe, 0x47)

11:19:34 executing program 2:
r0 = socket(0x1, 0x5, 0x0)
ioctl$TUNSETVNETHDRSZ(r0, 0x400454d8, 0x0)

11:19:34 executing program 5:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(0xffffffffffffffff)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x2102, 0x0)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1c5)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x20000000010005, 0x0)

[ 1723.101757][T31866] capability: warning: `syz-executor.0' uses 32-bit capabilities (legacy support in use)
11:19:35 executing program 4:
r0 = openat$apparmor_thread_current(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/attr/current\x00', 0x2, 0x0)
close(r0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000005600)={0x0, 0x0, 0x0}, 0x4)

11:19:35 executing program 1:
sched_setscheduler(0x0, 0x5, &(0x7f0000000180))
r0 = openat$apparmor_thread_current(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/attr/current\x00', 0x2, 0x0)
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0x5450, 0x0)
syz_open_procfs$namespace(0x0, 0x0)

11:19:35 executing program 0:
r0 = creat(&(0x7f0000000080)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x0)
r1 = socket(0x10, 0x3, 0x0)
dup2(r1, r0)
sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f0000000a80)={0x0}}, 0x0)

11:19:35 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
close(r0)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x2102, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000140)=ANY=[], 0x1c5)
splice(0xffffffffffffffff, 0x0, r0, 0x0, 0x20000000010005, 0x0)

11:19:35 executing program 3:
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_EGRESS_PRIORITY_CMD(r0, 0x5450, 0x0)

11:19:35 executing program 2:
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='freezer.state\x00', 0x275a, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000140)='.\x00', 0x0, 0x0)
r1 = openat$cgroup_freezer_state(r0, &(0x7f0000000000)='freezer.state\x00', 0x2, 0x0)
ioctl$sock_inet6_udp_SIOCINQ(r1, 0x541b, &(0x7f0000000040))

11:19:35 executing program 4:
setrlimit(0x7, &(0x7f0000000000))
creat(&(0x7f0000000180)='./file0\x00', 0x0)

11:19:36 executing program 0:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x200000000001, 0x0)
bind$unix(r1, &(0x7f0000366000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000932000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r2 = accept4$packet(r1, 0x0, 0x0, 0x0)
sendto$inet(r2, 0x0, 0x0, 0x0, 0x0, 0x0)

11:19:36 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
close(r0)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x2102, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000140)=ANY=[], 0x1c5)
splice(0xffffffffffffffff, 0x0, r0, 0x0, 0x20000000010005, 0x0)

11:19:36 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
write$P9_RGETLOCK(r0, 0x0, 0xfffffc8f)

11:19:36 executing program 2:
r0 = memfd_create(&(0x7f00000004c0)='y\xa3t\x00\x00', 0x0)
close(r0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140))
getsockopt$sock_cred(r0, 0x1, 0x11, 0x0, &(0x7f0000002c00))

11:19:36 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/loop-control\x00', 0x0, 0x0)
close(r0)
r1 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f000000cfe4)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)

11:19:36 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
close(r0)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x2102, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000140)=ANY=[], 0x1c5)
splice(0xffffffffffffffff, 0x0, r0, 0x0, 0x20000000010005, 0x0)

11:19:37 executing program 1:
r0 = socket$inet6(0x10, 0x3, 0x0)
close(r0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f0000366000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc)
listen(r1, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
connect$unix(r2, &(0x7f0000932000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
accept4(r0, 0x0, 0x0, 0x0)

11:19:37 executing program 0:
process_vm_writev(0xffffffffffffffff, &(0x7f0000000200)=[{0x0}], 0x1, &(0x7f0000000300)=[{0x0}], 0x1, 0x0)

11:19:37 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
dup2(r1, r0)
sendmsg$NL80211_CMD_NOTIFY_RADAR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}}, 0x0)

11:19:37 executing program 2:
r0 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x2)
write$evdev(r0, &(0x7f0000057fa0)=[{}, {}], 0xfffffd24)
ioctl$EVIOCREVOKE(r0, 0x40044591, 0x0)
ioctl$FIBMAP(r0, 0x1, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)

11:19:37 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_STATION(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={0x0, 0xc46987fe}}, 0x0)

11:19:37 executing program 5:
pipe(0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
close(r0)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x2102, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000140)=ANY=[], 0x1c5)
splice(0xffffffffffffffff, 0x0, r0, 0x0, 0x20000000010005, 0x0)

11:19:37 executing program 4:
r0 = signalfd(0xffffffffffffffff, &(0x7f00000002c0), 0x8)
close(r0)
socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$inet6_int(r0, 0x29, 0x38, 0x0, &(0x7f0000000740))

11:19:37 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup2(r0, r0)
ioctl$BLKZEROOUT(r1, 0x127f, 0x0)

11:19:37 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = socket$nl_route(0x10, 0x3, 0x0)
dup2(r1, r0)
sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f0000001300)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0)

11:19:37 executing program 5:
pipe(0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
close(r0)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x2102, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000140)=ANY=[], 0x1c5)
splice(0xffffffffffffffff, 0x0, r0, 0x0, 0x20000000010005, 0x0)

11:19:38 executing program 2:
r0 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0)
ioctl$BLKALIGNOFF(r0, 0x127a, 0x0)

11:19:38 executing program 1:
r0 = creat(&(0x7f0000000080)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x0)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x6, 0x0, &(0x7f0000000080))

11:19:38 executing program 4:
r0 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000000)='/dev/urandom\x00', 0x0, 0x0)
close(r0)
socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet6_tcp_int(r0, 0x6, 0x3, 0x0, &(0x7f00000000c0))

11:19:38 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$IP_SET_OP_GET_FNAME(r0, 0x1, 0xe, 0x0, &(0x7f0000000000))

11:19:38 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$BTRFS_IOC_SCRUB(r0, 0x5451, 0x0)

11:19:38 executing program 5:
pipe(0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
close(r0)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x2102, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000140)=ANY=[], 0x1c5)
splice(0xffffffffffffffff, 0x0, r0, 0x0, 0x20000000010005, 0x0)

11:19:38 executing program 2:
r0 = socket$inet6(0xa, 0x1, 0x0)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x3}, 0x1c)
r1 = dup(r0)
sendmsg$NL80211_CMD_GET_STATION(r1, &(0x7f0000000200)={&(0x7f0000000100), 0xc, &(0x7f00000001c0)={0x0}}, 0x0)
shutdown(r0, 0x0)

11:19:38 executing program 1:
r0 = socket$inet(0x2, 0x3, 0x1000)
accept4$inet(r0, 0x0, 0x0, 0x0)

[ 1727.200401][T31955] sock: process `syz-executor.3' is using obsolete getsockopt SO_BSDCOMPAT
11:19:39 executing program 4:
pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
sendmsg$NL80211_CMD_SET_BSS(r0, 0x0, 0x0)

11:19:39 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$inet6_tcp_TLS_TX(r0, 0x6, 0x1, 0x0, 0x0)

11:19:39 executing program 3:
r0 = openat$apparmor_task_current(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/attr/current\x00', 0x2, 0x0)
close(r0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$NL80211_CMD_SET_BSS(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0}}, 0x0)

11:19:39 executing program 5:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(0xffffffffffffffff)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x2102, 0x0)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1c5)
splice(r0, 0x0, r2, 0x0, 0x20000000010005, 0x0)

11:19:39 executing program 2:
r0 = openat$apparmor_thread_current(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/attr/current\x00', 0x2, 0x0)
close(r0)
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r0, 0x10e, 0x5, 0x0, 0x0)

11:19:39 executing program 1:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0x5450, 0x0)

11:19:39 executing program 4:
pipe2$9p(&(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
close(r0)
epoll_create1(0x0)
epoll_wait(r0, &(0x7f0000000400)=[{}], 0x1, 0x0)

11:19:39 executing program 0:
r0 = open$dir(&(0x7f0000000040)='.\x00', 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000001b00)='./file0\x00', 0x22042, 0x0)
openat(r0, &(0x7f0000000100)='./file0\x00', 0xc0800, 0x5c)

11:19:40 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = dup2(r0, r0)
ioctl$EVIOCGMASK(r1, 0x2, &(0x7f0000000600)={0x0, 0x0, 0x0})

11:19:40 executing program 5:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(0xffffffffffffffff)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x2102, 0x0)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1c5)
splice(r0, 0x0, r2, 0x0, 0x20000000010005, 0x0)

11:19:40 executing program 2:
r0 = syz_open_dev$evdev(&(0x7f0000000040)='/dev/input/event#\x00', 0x0, 0x181282)
write$evdev(r0, &(0x7f0000057fa0)=[{}, {}], 0xfffffd24)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$TUNDETACHFILTER(r1, 0x401054d6, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)

[ 1728.529450][   T32] audit: type=1804 audit(1604229580.257:26): pid=31986 uid=0 auid=0 ses=4 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir855997184/syzkaller.fXeEMt/1635/file0" dev="sda1" ino=16380 res=1 errno=0
11:19:40 executing program 1:
openat$cgroup_type(0xffffffffffffffff, &(0x7f0000000680)='cgroup.type\x00', 0x2, 0x0)

[ 1728.676457][   T32] audit: type=1804 audit(1604229580.317:27): pid=31988 uid=0 auid=0 ses=4 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir855997184/syzkaller.fXeEMt/1635/file0" dev="sda1" ino=16380 res=1 errno=0
11:19:40 executing program 4:
timer_create(0x0, &(0x7f0000000340)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000044000))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
r1 = gettid()
r2 = dup(r0)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000002380)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000003c40)={0x1c, 0x0, 0x0, 0x0, 0x0, "", [@generic="3c591564448e1f20cfa1"]}, 0x1c}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f0000003c00)=[{{0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000280)=""/133}, {&(0x7f0000000380)=""/1}, {&(0x7f00000003c0)=""/58}, {&(0x7f0000000400)=""/74}, {&(0x7f0000000480)=""/32}, {&(0x7f00000004c0)=""/70}, {&(0x7f0000000540)=""/82}, {&(0x7f00000005c0)=""/73}, {&(0x7f0000000640)=""/11}, {&(0x7f0000000680)=""/54}], 0x0, &(0x7f0000000180)=""/106, 0xfffffffffffffe69}}], 0x400000000000116, 0x0, &(0x7f0000000040)={0x77359400})
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
write$cgroup_netprio_ifpriomap(r2, 0x0, 0x0)
tkill(r1, 0x1004000000013)

11:19:40 executing program 0:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$sock_inet_udp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000040))

11:19:40 executing program 3:
r0 = socket$nl_crypto(0x10, 0x3, 0x15)
ioctl$BTRFS_IOC_RM_DEV(r0, 0x5452, &(0x7f0000001680)={{}, "28e54381b2caf48c3d0e5dea5255371d8e3dc9b6062df7b6f300cba9b192f96623e31675dd5540139079eadb61c8a588b94887e204422b7c7a737f9155ea9c5df63ad20b06af8f4e553ee488a0fc959956c2455d7d4add2e497176342ba6b74f86beffa2370da535de28e97f5b293db1099576a8a5c26bad06f404d1342a355acdf44c1e94192ba5286d2f10421c9718c6a28b05013cde937eac4fec2204d21644dd1e23fc3a1b5a451528cda1397343f8dd2a859ff16a8a3cd5ab7a49933b2c53b62d92a1d501f0d22df88149f824569b3feed369051af5189d5a99b9f8cb23fd8f5714c70231d471de9adb4c78de9cd5ff79f24bcef4febc6632a8bd7bf9b62bf41049f5d4109802acc8bf37c779748c53b1025daa1e512b678e9d5d4b7c23396db6589a74f237083a79789def010ea83f6fb3387a22c800e8ca2028e4ab6beac7c1ba3ef512da1775aef21d6d44b24f7f8a33c51cf59a47599596ba15802da0b3662c5d48b1321db7998f66f3e2109e88988db6d67b9b28646fab668a53fc46c6e71a1ec3eba2a4d16b7437339709e44df1854c54326ee1b47d3c8b8d6da612326c91fbd897659d5dfa0b2b260f763e02db38c29ac6128418a1b2de68b17ec4dab7e089c29578e2e676559fce4b506b4291133afec6d9e63f127d54bb192a8482f28335cef0761637b236bb774e128e0a33b3f5e923ebae112c92139fe858da02d633e74248b9d1736323230e295a2714077957d8795a265974b2bab222bae6f22bff8fbf517a0f8a3511e85d1c01f48c37953cb4a0556e35ece07c2baceead0e271e50cabc4220b4d9e978f9f6ec5dfa5621e43c6d9893003cfdbaa833a9a544e7ecf1320f6bd6f47e67076b628fe9604b215f5a06f3b4ed75e2f6ea0c141340d0740c120d44cea8ec5c493f66162363c05ed4908e44b658f735dca387acc63d1d382127c36857906873b68ea776e200db13494b5f56653f9408b161043860bd5d047574a45c892dbe641e8b6fa582950ee216e48f89c5017b908144f7b9807b84aeaa52c56864eb404f5be739c57971a4f6554b12ce953934ed5216bd643b5cac6d2639e1001533b01dfc9edcbd03544b6a6f1395ffe66315382514e15752a95e009dae73b849fac37acdb0cabf1480ac23cab3bce1d123513743bccefa9bcfd8af73d88905ce6181bbd47be8132056cba31807f6b05269aaadf910fca3b51d321e9b58c9c149965de61b0cd39a3742a13268156b7d222e8ef35a3f749c0962fd3b236e0345636836f005bfeaf4df3468b41f78fdd50589e7e16f2456dcc516802da387e00dcee91e132a76eae1425cf732b94ec876cf84edb125e8ac5e107266cff659e9e7eef2f66a834c8a68a70b24e75871ba6a43a34b8150c12f4010f6cd42791fc8dd7a4a4ed0c2ef25ab36bc07121b5065f8538dc4a0ad60540576e603a0cfedb0b02b8f455f13628cfb6616946e07ed4b6618b7e68f86ae1ca097ba34d52d048b78e65db8b40770644c99e4bc98ff64875af75c771735e7da4f410703e1f2bb29d21883590daf92cf5d04cf82cd9996c43716fbf3955bbdd3c215f78ab3e561c0c724b68dcdbc226a24b8bd978af614b3ef1bbd4818983ec6b98d624230f1ba8f7a07573f76507640682840f739efc3c3717b4f48b31bb1ad97030753b97fdcba1d8adf725fda6611b4d61c38656a111f730e0ae7d9bb5e2090252948e965c8ba9e6b4debf41c877896bf5b94c629fc4d9ee564d5ec5490619da9788030fa65b689132f0095c1b6d853a4d155a2d308637e36717f2a734a9cece954f52839deb8bd88bb017a2f55d6360551fa4cec2e4315f0c098f6c1179aedb8c31b0ae2ab49f293d61b041bf5539e36a69d4ab9bd8e517a61ed39f8fe29e5c81d9267ebc4ccec4638abd2ff6fad54c1e6fd592c0489be0c4c70ab246cf60ab9b03da9067b97d96bc719f033377ad7166161fac67b60a72a39efb2e19d79bdcd16bd34386acdfce9de3716c863fddb3939860ce3ae9b619e598f82331f71dc3801f06b1278c992d2fd0b1d2f04c4ceeecfaa6bc1758d0d87348c6c6fd70ac6d2093bd3bd33d268096cf003e58ff857d2c65cb1ffd145dcccfa404534912481f9bd97b7342d42b1061b54daac3e8540d1122c9fa9f73bbb12fa1170b918939d6a24fff829b31631685485aaa05e2bdf49e186ae7712558841756c2663dcb3e6a96c20f0a6d5153207e62a1b424b8042f8ddab737b9d168d79df586bc64b36649504e9166a829a089bc831b0291eaa60a2cf30adb850bd207a0ad958335374233ac487cc46ddb5b54e52ac830db1675d214e1f449652e1af9151569f9e50d812924b378eff52f34604e3edf62246ea13a18aafbc99c0c4c55961f56cfda2b33fe23d1b78c70d81b3e4f7673e14037d75acbace8a02d6b0df8dc69266da03c6dac678828fcc813db1c31402498fdafcc283699432e87123ed2652848941ac4986ba15f74e6b8f4c4d340c7191bc75fa4dc2f1f7867bf89ebd004fcf708b59d6884725cbac7c6315c59a855aebd7cacd69baa3896a094827243c4f2e4108c1ee510891caec7731a0c1d52c6a89aedb7373423d324aedf474fa96ddd27faca4e929ba780ea5d832272abd7a741a229e9eda36eaa6bc1fce01d07a1bf2a5fac60b93b497f86a8c710d45db7b8408ae0a8a7975341173fb8af2a575e6486d9aa89e20213c5802f0e0277586ac567195f1ee0eb92f96f04b8da46ea8f21de6f44c2cb23134f19a8165ad0bfd0434f4dbaaf67526e096477d51cb8d0055a38bab0b0e3726e963d50599b01ba6a6b6c69d55dadd3c2873490b2c2867eab3c6e3e70998c9d9419ecc9cb56e0dcc5d684ced3f8783bf4121dbfc07f0eaa6c38fa4b12d51324eb25c09fe448a71bb0c6cfe744f28c557f2908d2209719cf927f2cac3e191a073f576479edcb131902c5314d00119c1186543c9bdbd0e6dbb16729e1ad25d6c30d9f467772fa57a16ebb77ebe31e4bb3be718b79d14ed3a25ceea2d32b53c09ff35e3cf6f36006925ffc6930326a554743b46706ce1f94ebb48a2e7e562f133e69525b84910bdfa8ba0028bb81beb97feccafd4a0076da155de181cbccb568413a2460073e6963f37daa346059facce8261e2a9ea3e862715d65d674850ce313aaeaddc2532071ae0acd8b13c13682f85462efa28e749416dfd46541675676d2973b6729cfe732d4bd8a9e92ad11c395388fd378d617ac76ec2ca66eea17f6ac0dabae9e87ebad4e10d02a4a82ea3feed1d3c5fe0af2418374d7246013b2aef3ed9825c0e5fba35b1fb7181a4c0a4140907275eb9c1c9d78315b694c01987d4d60fb4af58090a427a2ca82f1315201f5e2760705f16eda6c9e65c42d895ba2ce00794951bb2d988bf7fbac2f8001ff6ac89a0ed18975a3cb95340cf54f277aee53f27bda10da3ce7b25d150c358d5347018e012acbd0b53d75e20ae2fa144a5100d728806c8322b1bc9f93bbb5ba68c6fb95e66cf74b6105b2a7f9e0d103260657bcb6e1af88461a39adf0b71d2c943654b21a86718d87c0028197359db338a6cde481fda4f5ccfeec46edb460484209dbf6402ff406d1b2068be9e3656844d6e45227f9d3a6c0800000000000000a54a5622373ab40cba298599aeafb665cae850f342f891cbcbbfed13109cdc186617b1228d8837c7a4e877df588a3c897d55a8d4c41427cf9635ec61a3d4489d4715f8eab0b649f3b10509d1595c65476fd1bb315fb5e987a8b236e4d192015a111f7094b69e8c4fd2b0b2497ea389a093eb23d03ec9cac8eb680c6811d16eb390142909e47baf7a5ee5eec4ec2320c5060d658058415138223f8edddee0145c808d28c40f9cf40257fa06f72bf1f765a5c25289ce9ccfdddb1021bd83c4b364a79cabeb385014473fa94582c46d6305b0d98a046bb92412641d03b4d28e447232561cb3e92648f1b1ae07e12ba79d8997c3e3c0d7e8967fa4f6c3afc43de22406af50ef0cbe2362824e280afff6df165053f733486a42ceec670236d6c118e5eb10164b1b2942d339c805422986034a42d9ce23be8cfc65127c91610a2aa776dd0553df61268eee3e580052504553b25d22cfe1d32f711dd5bf08ad79880064348d0e1a120ed902bef6257de60cbcf198eba1cca31558c200ce2233ee3e479daa9a138289007a664c001fa1282b58428a9fc8d862ee86f2f48b8d1dd801433f232e6ed6df6e2ff702089bd1b6749a403c8821bde0c1767dc2d7b4c8ef2c10ed112e623fa266f60b972f51f112753c614ae6c3698d45f3e2c2657b96451c429776c9b99db029c578eac23db1e374d3ea823fc8a4bab158740c7ba7429c874d2af85121498f4b9fa7dbce7661bcd470438a817bbe0a054285051c2d347cd1c0237c9c75a09a6043bece1481768fb1f5a252ca5936256b8612c1fd37e1892e0b24e7013ed023fff918857a3b309761aff5e42227d27d9c9306bae10fa763365bf9fdb445071c873b2c475a58b65d30edca4c85805013a4d9a4c1ac093519c3252308490e2f55dadcfdaa77ae7bbe2bc8c4f3526fd896b1cf29d73962c37571c8a057828a798fabe237f8fe5de67a3e49b311de5fcd8bc9f5d7a938ed6c64b8ceac60ac1cd85c6d10492e7421336c79cca4d935ffa1086c2ee274a49762c28029cc7674efa8e53dc052c8b12967b966e149a5db4912de0161e7b779a01c92f8d05478ab04d841afb3b06e1272d33393ecf3ec4adbf0e65e297bb7fd8cf926703917df366db30f1e4c812f4b9ef1a1dfd771fc06a0e159bf73a7dcd2c85305d42327f96e7e425c6e5c38c0c9df628926b8a2e7cac215b9b97f9e0e4929ff6d7a85b5a434123490a0fe1555e3ec0e9e424cac4df5e78d725e5527934a912f777516d9da62d09b7a5577126cc7ef33bc1c0d67fdd66dcdbb513fef7a3bd8b8a566a1a5ca4632d0fe259f0e81d88bb308c92426c227645ea800c9b7f700abd76e7aa27e4020f872db65cbb4cdceb5d37821a967970179c0edb42f101750a70f71b317763eedb789a19b0e7be39345c08e1bc3b46c3e4d51966b2fb5de55cf0269fda6047713b128800ef864ef524b56902c380ddc9a69e499b72d758723da62ff4480fe224f8a7d56dd6ac0ab08ee9f6f62d283fea3a0faf803010fe6aae1e40ee4764d3ab6a4500a1e375d6a1983acc7d8bfa667c21338f3b5e268b3680b7be9d650b0f40914516159605a6d84abe6d4debd103720f31c39d3260431821768df5f66c848c39582edb61d243c15c021e06c1868a43499f60600673910aca87862c741f4693ba790ccb56ac56ab56c7019555b86c8f119af6c922c59ef9080eee963c221da082f80e5e32c10124fb708075c45ee04c0710b16b4098d61d704cf969e44b1b1a530ce9acab2d988c5cb663a3a780ac8adc54e3a71c5e6b44656bb3156bb1b36f7b7dcfd78a327b33c3b4940b2b0b8e2d7e03df276e5a29cdcbfaf0f5fd899baf972c552aa005beaa85646dbcce85a3321f092e985bfde64426bb020982f48f7ed4b8537b956c9c010129b4aefefd70a3615a4982d37516b9a54e8a766507a263b3f0ed5ca3dfbcffafab08ad41857f97ed1560df59d46a4d3033a8555554fd074b948b6d062cfe9a4ef41605df9f60569c5f5049411d62276f66562382802ef06319f1a6a29bf2b51604a4b53780e94b5daea9f0a00bbda26aa506ba7813cdb9e1e3136100f17c195a2df3b0ac15aa37e2e7e1d362000"})

11:19:40 executing program 5:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(0xffffffffffffffff)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x2102, 0x0)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1c5)
splice(r0, 0x0, r2, 0x0, 0x20000000010005, 0x0)

11:19:41 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_mreq(r0, 0x6, 0x18, &(0x7f00000000c0)={@dev}, 0x14)

11:19:41 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r0, 0x8940, 0x0)

11:19:41 executing program 0:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$FIOCLEX(r0, 0x5451)

11:19:41 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
dup3(r0, r1, 0x0)
sendmsg$TIPC_NL_PUBL_GET(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={0x0}}, 0x0)

11:19:41 executing program 5:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
openat$vga_arbiter(0xffffffffffffff9c, 0x0, 0x2102, 0x0)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1c5)
splice(r0, 0x0, r2, 0x0, 0x20000000010005, 0x0)

11:19:41 executing program 2:
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000016c0)='/dev/vga_arbiter\x00', 0x8080, 0x0)

11:19:41 executing program 1:
r0 = open(&(0x7f0000000080)='./file0\x00', 0x10840, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
dup2(r1, r0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x14, 0x0, 0x0)

11:19:41 executing program 4:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendto(r0, &(0x7f0000000080)="d9", 0x1, 0x4008010, &(0x7f00000001c0)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @dev}}}, 0x80)

11:19:41 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000480)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000180), 0x1c)
r1 = dup2(r0, r0)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x2000026c)
connect$netlink(r1, &(0x7f0000000280)=@unspec, 0x6)
sendmsg$DEVLINK_CMD_GET(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)

11:19:42 executing program 5:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
openat$vga_arbiter(0xffffffffffffff9c, 0x0, 0x2102, 0x0)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1c5)
splice(r0, 0x0, r2, 0x0, 0x20000000010005, 0x0)

11:19:42 executing program 3:
r0 = openat$null(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/null\x00', 0x8001, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00009e3ff6)='/dev/ptmx\x00', 0x0, 0x0)
dup3(r0, r1, 0x0)
pwrite64(r1, 0x0, 0x0, 0x0)

11:19:42 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = syz_open_dev$vcsa(&(0x7f0000002240)='/dev/vcsa#\x00', 0x1000, 0x0)
dup2(r0, r1)
getsockopt$ARPT_SO_GET_REVISION_TARGET(r1, 0x0, 0xc, 0x0, &(0x7f0000000040))

11:19:43 executing program 4:
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', 0x40, 0x0)
close(r0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_DEST(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0)

11:19:43 executing program 5:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
openat$vga_arbiter(0xffffffffffffff9c, 0x0, 0x2102, 0x0)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1c5)
splice(r0, 0x0, r2, 0x0, 0x20000000010005, 0x0)

11:19:43 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20010001, &(0x7f0000000280)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
timer_create(0x0, &(0x7f0000000200)={0x0, 0x12}, &(0x7f0000044000))
r1 = dup2(r0, r0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x3938700}, {0x0, 0x9}}, 0x0)
write$P9_RATTACH(r1, 0x0, 0xfa4459cc)
close(r0)
socket$inet_udp(0x2, 0x2, 0x0)
r2 = gettid()
tkill(r2, 0x1000000000016)

11:19:43 executing program 1:
sched_setscheduler(0x0, 0x5, &(0x7f0000000180))
r0 = syz_open_procfs(0x0, &(0x7f0000001600)='net/icmp\x00')
getsockname$inet(r0, 0x0, 0x0)

11:19:43 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TEAM_CMD_PORT_LIST_GET(r0, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000001140)={0x0}}, 0x20040004)

11:19:43 executing program 4:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/loop-control\x00', 0x0, 0x0)
r2 = dup3(r1, r0, 0x0)
sched_setscheduler(0x0, 0x5, &(0x7f0000000000))
openat$apparmor_thread_current(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/thread-self/attr/current\x00', 0x2, 0x0)
ioctl$CHAR_RAW_ALIGNOFF(r2, 0x127a, 0x0)

11:19:43 executing program 5:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x0, 0x0)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1c5)
splice(r0, 0x0, r2, 0x0, 0x20000000010005, 0x0)

11:19:43 executing program 3:
socketpair(0x1, 0x5, 0x0, &(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$IPVS_CMD_GET_SERVICE(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000280)={0x0}}, 0x0)
r2 = dup3(r1, r0, 0x0)
sendmsg$MPTCP_PM_CMD_GET_LIMITS(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)

11:19:44 executing program 0:
sendmsg$ETHTOOL_MSG_LINKINFO_GET(0xffffffffffffffff, 0x0, 0x293166b587e9c6f8)

11:19:44 executing program 2:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100)='/dev/net/tun\x00', 0x0, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
dup3(r1, r0, 0x0)
ioctl$FS_IOC_ENABLE_VERITY(r0, 0x8903, &(0x7f0000000000)={0x1, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0})

11:19:44 executing program 5:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x0, 0x0)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1c5)
splice(r0, 0x0, r2, 0x0, 0x20000000010005, 0x0)

11:19:44 executing program 3:
r0 = socket$inet(0x2, 0x1, 0x0)
r1 = dup(r0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e23, @broadcast}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000002c0)=0x200, 0x4)
connect$inet(r0, &(0x7f0000000780)={0x2, 0x4e23}, 0x10)
sendto$inet(r1, &(0x7f0000000000)="96", 0x1, 0x0, 0x0, 0x0)
recvfrom(r1, 0x0, 0x0, 0x2003, 0x0, 0xc4)
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x17c}}, 0x0)

11:19:45 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
write$vga_arbiter(r0, 0x0, 0x0)

11:19:45 executing program 2:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmmsg$inet(r0, &(0x7f0000003a00)=[{{&(0x7f0000000080)={0x2, 0x0, @multicast2}, 0x10, 0x0}}], 0x1, 0x0)

11:19:45 executing program 5:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x0, 0x0)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1c5)
splice(r0, 0x0, r2, 0x0, 0x20000000010005, 0x0)

11:19:45 executing program 1:
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
dup3(r1, r0, 0x0)
sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)

11:19:45 executing program 0:
r0 = socket$unix(0x1, 0x801, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000000c0)=@file={0x1, './file0\x00'}, 0x6e)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000000140)=@file={0x1, './file0\x00'}, 0x6e)
r2 = accept4$unix(r1, 0x0, 0x0, 0x0)
getsockopt$sock_timeval(r2, 0x1, 0x14, 0x0, &(0x7f0000000300))

11:19:45 executing program 3:
r0 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f000000cfe4)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_opts(r0, 0x29, 0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="0003000000000000e6"], 0x28)
recvmsg(r0, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x0)
write(r0, 0x0, 0x0)
write$binfmt_elf32(r0, 0x0, 0x0)
sendmmsg(r0, &(0x7f0000004700)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)

11:19:45 executing program 2:
socketpair(0x1, 0x5, 0x0, &(0x7f0000003d80)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000480)='/dev/null\x00', 0x0, 0x0)
dup3(r0, r1, 0x0)
sendmsg$BATADV_CMD_SET_HARDIF(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)

11:19:45 executing program 5:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff})
r1 = socket$inet_udp(0x2, 0x2, 0x0)
close(r1)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x2102, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000140)=ANY=[], 0x1c5)
splice(r0, 0x0, r1, 0x0, 0x20000000010005, 0x0)

11:19:45 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x151)
connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @ipv4={[], [], @local}}, 0x1c)
r1 = dup2(r0, r0)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x200000ee)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
setsockopt$inet6_MCAST_LEAVE_GROUP(r0, 0x29, 0x2d, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_tcp_SIOCOUTQNSD(r2, 0x8953, &(0x7f0000000040))
mmap(&(0x7f0000000000/0xb3c000)=nil, 0xb3c000, 0x0, 0x32, 0xffffffffffffffff, 0x0)

11:19:46 executing program 2:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000)='/dev/net/tun\x00', 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000280)='/dev/null\x00', 0x0, 0x0)
dup2(r0, r1)
ioctl$TUNSETIFINDEX(r1, 0x400454da, &(0x7f0000000200))

11:19:46 executing program 0:
r0 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$sock_timeval(r0, 0x1, 0x15, &(0x7f0000000180)={0x77359400}, 0x10)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x3}, 0x1c)
r1 = dup(r0)
sendmsg$NL80211_CMD_GET_COALESCE(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
r2 = gettid()
timer_create(0x0, &(0x7f0000000280)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
tkill(r2, 0x1000000000016)

11:19:46 executing program 4:
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
r0 = open$dir(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mknodat(r0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0)
fchmodat(r0, &(0x7f0000000200)='./file0\x00', 0x8)

11:19:46 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x151)
connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @ipv4={[], [], @local}}, 0x1c)
r1 = dup2(r0, r0)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x200000ee)
setsockopt$inet6_group_source_req(r1, 0x29, 0x2f, 0x0, 0x0)
r2 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_mtu(r2, 0x29, 0x14, 0x0, 0x300)
mmap(&(0x7f0000000000/0xb3c000)=nil, 0xb3c000, 0x0, 0x8132, 0xffffffffffffffff, 0x0)

11:19:47 executing program 2:
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000380)='/dev/vcsa\x00', 0x0, 0x0)
close(r0)
syz_open_dev$loop(&(0x7f0000000140)='/dev/loop#\x00', 0x0, 0x0)
ioctl$BLKROTATIONAL(r0, 0x127e, &(0x7f0000000100))

11:19:47 executing program 5:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff})
r1 = socket$inet_udp(0x2, 0x2, 0x0)
close(r1)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x2102, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000140)=ANY=[], 0x1c5)
splice(r0, 0x0, r1, 0x0, 0x20000000010005, 0x0)

11:19:47 executing program 1:
r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x40, 0x0)
ioctl$LOOP_CLR_FD(r0, 0x5450)

11:19:47 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$SEG6_CMD_SETHMAC(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={0x0}}, 0x805)

11:19:47 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0xfffffffffffffc47, 0x20010001, &(0x7f0000000280)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
r1 = dup2(r0, r0)
r2 = gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
sendmsg$TIPC_NL_KEY_FLUSH(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
close(r0)
socket$packet(0x11, 0x3, 0x300)
tkill(r2, 0x1000000000016)

11:19:48 executing program 1:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000100)=[{0x6}]}, 0x10)
r1 = dup(r0)
sendmmsg$inet(r0, &(0x7f0000004200)=[{{&(0x7f0000000000)={0x2, 0x0, @loopback}, 0x10, 0x0, 0x0, &(0x7f0000008340)=ANY=[], 0x1f0}}], 0x1, 0x20008055)
sendmsg$DEVLINK_CMD_PORT_GET(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)

11:19:48 executing program 2:
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0xc01, 0x0)
write$apparmor_exec(r0, 0x0, 0x0)

11:19:48 executing program 4:
r0 = socket$packet(0x11, 0x3, 0x300)
socketpair(0x1, 0x5, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
dup3(r1, r0, 0x0)
write$P9_RREADDIR(r0, 0x0, 0x0)

11:19:48 executing program 0:
splice(0xffffffffffffffff, &(0x7f0000000600), 0xffffffffffffff9c, 0x0, 0x0, 0xfffffffffffffffc)

11:19:48 executing program 2:
socketpair$unix(0x1, 0x200000005, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmmsg(r1, &(0x7f0000003b40)=[{{&(0x7f0000002d80)=@pppol2tpv3in6={0x18, 0x1, {0x0, <r2=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x80, 0x0}}], 0x1, 0x0, 0x0)
write$P9_RUNLINKAT(r0, 0x0, 0x0)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r2, 0x5452, &(0x7f0000000100)={0x0, 'xfrm0\x00'})

11:19:48 executing program 1:
r0 = gettid()
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0)
read(r1, &(0x7f0000000300)=""/11, 0xb)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000180))
r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080)='/dev/zero\x00', 0x0, 0x0)
r3 = dup3(r1, r2, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r3, 0xc0096616, 0x0)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12}, &(0x7f0000000340))
timer_settime(0x0, 0x0, &(0x7f00000000c0)={{0x0, 0x8}, {0x0, 0x1c9c380}}, 0x0)
tkill(r0, 0x15)

11:19:48 executing program 5:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff})
r1 = socket$inet_udp(0x2, 0x2, 0x0)
close(r1)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x2102, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000140)=ANY=[], 0x1c5)
splice(r0, 0x0, r1, 0x0, 0x20000000010005, 0x0)

11:19:48 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$ARPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x7, 0x0, 0x0)

11:19:48 executing program 4:
r0 = syz_open_dev$evdev(&(0x7f0000000040)='/dev/input/event#\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$KDGKBTYPE(r1, 0x4b33, 0x0)

11:19:49 executing program 2:
r0 = open(&(0x7f0000001280)='./file1\x00', 0xd26c2, 0x0)
ioctl$FIOCLEX(r0, 0x5451)

11:19:49 executing program 3:
r0 = socket(0x11, 0x2, 0x0)
sendmsg$IPVS_CMD_FLUSH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)

11:19:49 executing program 1:
r0 = eventfd2(0x0, 0x0)
write$cgroup_devices(r0, &(0x7f0000000080)={'c', ' *:* ', 'm\x00'}, 0x8)

11:19:49 executing program 4:
r0 = epoll_create(0xffff)
ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x5421, 0x400000)

11:19:49 executing program 0:
r0 = socket$inet6(0xa, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000140)={0x0, <r1=>0x0})
setsockopt$sock_timeval(r0, 0x1, 0x15, &(0x7f0000000180)={0x0, r1/1000+30000}, 0x10)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x3}, 0x1c)
r2 = dup(r0)
sendmsg$NL80211_CMD_START_AP(r2, &(0x7f0000000100)={&(0x7f0000000040), 0xc, &(0x7f00000000c0)={0x0}}, 0x20000800)

11:19:50 executing program 2:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f0000000300)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
r2 = accept4(r1, 0x0, 0x0, 0x0)
connect$unix(r0, &(0x7f0000000000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
syncfs(r2)

11:19:50 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
dup3(r0, r1, 0x0)
ioctl$TIOCGWINSZ(r1, 0x5413, &(0x7f0000000040))

11:19:50 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0xfffffffffffffc47, 0x20010001, &(0x7f0000000280)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_TDLS_CHANNEL_SWITCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x68}}, 0x44)

11:19:50 executing program 5:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x2102, 0x0)
write$binfmt_misc(r1, 0x0, 0x1c5)
splice(r0, 0x0, r2, 0x0, 0x20000000010005, 0x0)

11:19:50 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r0, 0x5450, 0x0)

11:19:50 executing program 4:
r0 = socket$nl_crypto(0x10, 0x3, 0x15)
fcntl$addseals(r0, 0x2, 0x0)

11:19:50 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20010001, &(0x7f0000000280)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f00000002c0))
sendmsg$NL80211_CMD_SET_MCAST_RATE(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000400)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
ioctl$int_in(r0, 0x5421, &(0x7f0000000080)=0x40000001)
tkill(r2, 0x1000000000016)

11:19:50 executing program 0:
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
close(r0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_JOIN_OCB(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0}}, 0x0)

11:19:50 executing program 5:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x2102, 0x0)
write$binfmt_misc(r1, 0x0, 0x1c5)
splice(r0, 0x0, r2, 0x0, 0x20000000010005, 0x0)

11:19:51 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
dup3(r0, r1, 0x0)
sendmsg$NL80211_CMD_AUTHENTICATE(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)

11:19:51 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000009c0)='/dev/loop-control\x00', 0x0, 0x0)
r1 = creat(&(0x7f0000000080)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x0)
close(r1)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/loop-control\x00', 0x0, 0x0)
r3 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r3)
ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r0, 0x4c80, 0x0)

11:19:51 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4)
r1 = eventfd(0x0)
dup2(r0, r1)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000000), 0x4)

11:19:51 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x151)
connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @ipv4={[], [], @local}}, 0x1c)
r1 = dup2(r0, r0)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x200000ee)
setsockopt$inet6_MCAST_LEAVE_GROUP(r0, 0x29, 0x2d, 0x0, 0x101d0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000)='/dev/net/tun\x00', 0x0, 0x0)
r3 = dup(r2)
ioctl$sock_inet_SIOCGIFBRDADDR(r3, 0x8919, &(0x7f0000000040)={'veth0_to_team\x00', {0x2, 0x0, @local}})
mmap(&(0x7f0000000000/0xb3c000)=nil, 0xb3c000, 0x0, 0x32, 0xffffffffffffffff, 0x0)

11:19:51 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20010001, &(0x7f0000000280)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_MPATH(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x34}}, 0x0)

11:19:51 executing program 5:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x2102, 0x0)
write$binfmt_misc(r1, 0x0, 0x1c5)
splice(r0, 0x0, r2, 0x0, 0x20000000010005, 0x0)

11:19:51 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0xfffffffffffffc47, 0x20010001, &(0x7f0000000280)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
r1 = dup2(r0, r0)
r2 = gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x1c9c380}}, 0x0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
close(r0)
socket$unix(0x1, 0x1, 0x0)
tkill(r2, 0x1000000000016)

11:19:52 executing program 4:
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x43, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
r2 = dup2(r1, r0)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)
r4 = fcntl$dupfd(r2, 0x0, r3)
ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r4, 0x5450, 0x0)

11:19:52 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "1a0000e2ffff0acaffffff3e80e1fffffff300"})
r1 = syz_open_pts(r0, 0x0)
dup3(r1, r0, 0x0)
sched_setscheduler(0x0, 0x5, &(0x7f0000000180))
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
ioctl$TIOCMIWAIT(r0, 0x545c, 0x0)

11:19:52 executing program 5:
pipe(&(0x7f0000000100)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$inet_udp(0x2, 0x2, 0x0)
close(r1)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x2102, 0x0)
write$binfmt_misc(r0, &(0x7f0000000140)=ANY=[], 0x1c5)
splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x20000000010005, 0x0)

11:19:52 executing program 2:
r0 = socket$inet(0x2, 0x1, 0x0)
r1 = dup(r0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e23, @broadcast}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000002c0)=0x200, 0x4)
connect$inet(r0, &(0x7f0000000780)={0x2, 0x4e23}, 0x10)
sendto$inet(r0, &(0x7f0000000140)="a1", 0x1, 0x0, 0x0, 0x0)
recvfrom(r0, 0x0, 0x0, 0x2000, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={0x0}}, 0x0)

11:19:53 executing program 4:
r0 = getuid()
setresuid(0x0, 0x0, r0)

11:19:53 executing program 5:
pipe(&(0x7f0000000100)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$inet_udp(0x2, 0x2, 0x0)
close(r1)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x2102, 0x0)
write$binfmt_misc(r0, &(0x7f0000000140)=ANY=[], 0x1c5)
splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x20000000010005, 0x0)

11:19:53 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
connect$inet6(r0, &(0x7f00000001c0), 0x1c)
r2 = dup2(r0, r1)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000000440), 0x131f64)
sendmsg$IPVS_CMD_ZERO(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={0x0}}, 0x0)

11:19:53 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
sendto$inet(r0, 0x0, 0x0, 0x400c000, &(0x7f0000000080)={0x2, 0x4e21, @local}, 0x10)
sendmsg$inet6(r0, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x0)

11:19:53 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000440)=0x400100000001, 0x4)
r1 = dup2(r0, r0)
connect$netlink(r1, &(0x7f0000000000)=@unspec, 0xc)
sendmsg$TIPC_NL_NAME_TABLE_GET(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0)

11:19:53 executing program 4:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$BATADV_CMD_SET_VLAN(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
r2 = dup3(r1, r0, 0x0)
sendmsg$TIPC_NL_BEARER_GET(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)

11:19:53 executing program 5:
pipe(&(0x7f0000000100)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$inet_udp(0x2, 0x2, 0x0)
close(r1)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x2102, 0x0)
write$binfmt_misc(r0, &(0x7f0000000140)=ANY=[], 0x1c5)
splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x20000000010005, 0x0)

11:19:54 executing program 2:
r0 = socket$inet(0x2, 0x3, 0x7f)
setsockopt$inet_pktinfo(r0, 0x0, 0x10, 0x0, 0x2800)

11:19:54 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_STOP_AP(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000180)={0x0, 0xfffffffffffffefb}}, 0x0)

11:19:54 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0xfffffffffffffc47, 0x20010001, &(0x7f0000000280)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
r1 = dup2(r0, r0)
r2 = gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x1c9c380}}, 0x0)
sendmsg$NL80211_CMD_DEL_STATION(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)
close(r0)
pipe(&(0x7f0000000000))
tkill(r2, 0x1000000000016)

11:19:54 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20010001, &(0x7f0000000280)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
r1 = dup2(r0, r0)
r2 = gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
close(r0)
socket$unix(0x1, 0x5, 0x0)
tkill(r2, 0x1000000000016)

11:19:54 executing program 4:
r0 = syz_open_dev$evdev(&(0x7f0000000140)='/dev/input/event#\x00', 0x0, 0x6)
write$binfmt_elf64(r0, &(0x7f00000000c0)=ANY=[], 0xffffffe8)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = gettid()
ioctl$CHAR_RAW_PBSZGET(r1, 0x127b, 0x0)
tkill(r2, 0x7)

11:19:54 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000380)=0x404100000001, 0xfe3f)
connect$inet6(r0, &(0x7f0000000080), 0x1c)
r1 = dup2(r0, r0)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132441)
connect$unix(r1, &(0x7f00000000c0)=@abs, 0x6e)
sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0}}, 0x0)

11:19:54 executing program 5:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x2102, 0x0)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1c5)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x20000000010005, 0x0)

11:19:54 executing program 1:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
ioctl$F2FS_IOC_START_ATOMIC_WRITE(r0, 0x2, 0x960000)

11:19:55 executing program 1:
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000880)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r0 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$sock_timeval(r0, 0x1, 0x15, &(0x7f0000000180)={0x77359400}, 0x10)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x3}, 0x1c)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r1=>0x0)
timer_settime(r1, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x3938700}}, 0x0)
r2 = dup(r0)
r3 = dup2(r2, r2)
sendmsg$NL80211_CMD_STOP_NAN(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)

11:19:55 executing program 4:
sched_setscheduler(0x0, 0x5, &(0x7f0000000000))
syz_open_procfs$namespace(0x0, 0x0)
semctl$GETALL(0xffffffffffffffff, 0x0, 0xd, 0x0)

11:19:55 executing program 5:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x2102, 0x0)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1c5)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x20000000010005, 0x0)

11:19:55 executing program 2:
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket(0xa, 0x2, 0x0)
setsockopt$inet_int(r1, 0x0, 0x8, &(0x7f0000000040)=0xd3, 0x4)
setsockopt$sock_int(r0, 0x1, 0x2b, &(0x7f0000000100)=0x20, 0x4)
getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000140)={<r2=>0x0, @rand_addr, @initdev}, &(0x7f0000000180)=0xc)
bind$packet(r0, &(0x7f0000000000)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @local}, 0x14)
write(r0, 0x0, 0x0)

11:19:55 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$NL80211_CMD_GET_PROTOCOL_FEATURES(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)

11:19:55 executing program 3:
r0 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f00000018c0)='/proc/thread-self\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
dup3(r1, r0, 0x0)
sendmsg$TIPC_CMD_SET_LINK_TOL(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000280)={0x0}}, 0x0)

11:19:55 executing program 5:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x2102, 0x0)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1c5)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x20000000010005, 0x0)

11:19:56 executing program 2:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000380)='/dev/net/tun\x00', 0x0, 0x0)
ioctl(r0, 0x0, 0x0)

11:19:56 executing program 3:
r0 = syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/net\x00')
close(r0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000001800))
sendmsg$BATADV_CMD_TP_METER(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)

11:19:56 executing program 0:
r0 = openat$urandom(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/urandom\x00', 0x0, 0x0)
close(r0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240))
sendmsg$NL80211_CMD_RELOAD_REGDB(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)

11:19:56 executing program 1:
pipe2(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
close(r1)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
close(r2)
getdents64(0xffffffffffffffff, &(0x7f0000000200)=""/158, 0x9e)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000740)='/dev/loop-control\x00', 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$inet(0x2, 0x4000000000000003, 0xfc)
accept4$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000140)=0x14, 0x0)
sendmsg$WG_CMD_GET_DEVICE(r0, &(0x7f0000000300)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000002c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="61830ad6bfe324fcc8b9c1c69cf866", @ANYRES16=0x0, @ANYBLOB="200029bd7000fbdbdf2500000000600008805c0000800800030001000000080003000400000024000100975c9d81c983c8209ee781254b899f8ed925ae9f0923c23c62f53c57cdbf691c24000100f44da367a88ee6564f020211456727082f5cebee8b1bf5eb7337341b459b3922080005000000000008000100", @ANYRES32, @ANYBLOB="08000513587b124501000000", @ANYRES32=r3, @ANYBLOB="9e30c51908004000"], 0x9c}, 0x1, 0x0, 0x0, 0x40}, 0x2404c084)
ioctl$SIOCGIFHWADDR(r2, 0x8927, &(0x7f0000000000))
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00003e0000)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r4, 0x40045431, &(0x7f00003b9fdc))
r5 = syz_open_pts(r4, 0x0)
r6 = dup2(r5, r4)
ioctl$TUNGETSNDBUF(r6, 0x800454d3, 0x0)
ioctl$sock_SIOCADDDLCI(r6, 0x8980, &(0x7f0000000080)={'vcan0\x00', 0x7})
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e21, 0x200, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x3}, 0x1c)

11:19:56 executing program 5:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x2102, 0x0)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1c5)
splice(r0, 0x0, r2, 0x0, 0x0, 0x0)

11:19:56 executing program 3:
pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
dup2(r1, r0)
ioctl$BTRFS_IOC_QUOTA_RESCAN_STATUS(r0, 0x8904, &(0x7f00000000c0))

11:19:57 executing program 4:
r0 = syz_open_dev$evdev(&(0x7f0000000140)='/dev/input/event#\x00', 0x0, 0x6)
write$binfmt_elf64(r0, &(0x7f00000000c0)=ANY=[], 0xffffffe8)
r1 = fcntl$dupfd(r0, 0x0, r0)
timer_create(0x0, &(0x7f0000000100)={0x0, 0x12}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
ioctl$sock_SIOCSIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(r1, 0x8983, 0x0)

11:19:57 executing program 2:
r0 = syz_open_dev$evdev(&(0x7f0000000240)='/dev/input/event#\x00', 0x0, 0x5)
write$binfmt_elf64(r0, &(0x7f00000000c0)=ANY=[], 0xffffffe8)
r1 = fcntl$dupfd(r0, 0x0, r0)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12}, &(0x7f0000000340))
timer_settime(0x0, 0x0, &(0x7f00000000c0)={{0x0, 0x3938700}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
ioctl$TUNATTACHFILTER(r1, 0x401054d5, 0x0)

11:19:57 executing program 1:
r0 = creat(&(0x7f0000000800)='./file0\x00', 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x5460, &(0x7f0000000000)={'virt_wifi0\x00'})

11:19:57 executing program 0:
r0 = socket(0x11, 0x3, 0x0)
sendmsg$IPVS_CMD_NEW_DAEMON(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0}}, 0x0)

11:19:57 executing program 5:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x2102, 0x0)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1c5)
splice(r0, 0x0, r2, 0x0, 0x0, 0x0)

11:19:57 executing program 3:
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x0, 0x0)
creat(&(0x7f0000000140)='./file0\x00', 0x0)
sched_setscheduler(0x0, 0x5, &(0x7f0000000040))
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='sysfs\x00', 0x0, 0x0)
removexattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)=ANY=[])

11:19:57 executing program 0:
pipe2(&(0x7f0000000000)={<r0=>0xffffffffffffffff}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
dup3(r1, r0, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)

11:19:57 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = signalfd(0xffffffffffffffff, &(0x7f0000000140), 0x8)
dup3(r0, r1, 0x0)
sendmsg$NL80211_CMD_SET_WOWLAN(r1, &(0x7f0000005980)={0x0, 0x0, &(0x7f0000005940)={0x0}}, 0x0)

11:19:57 executing program 5:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x2102, 0x0)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1c5)
splice(r0, 0x0, r2, 0x0, 0x0, 0x0)

11:19:57 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
capset(&(0x7f00000003c0)={0x20071026}, &(0x7f0000000400))
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000380)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000340)={0x0}}, 0x0)

11:19:58 executing program 0:
r0 = openat$apparmor_task_current(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/attr/current\x00', 0x2, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x5450, 0x0)

[ 1746.595386][T32364] capability: warning: `syz-executor.4' uses deprecated v2 capabilities in a way that may be insecure
11:19:58 executing program 5:
r0 = inotify_init1(0x0)
close(r0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080))
sendmsg$NLBL_MGMT_C_LISTALL(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)

11:19:58 executing program 1:
r0 = socket$packet(0x11, 0x3, 0x300)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000080)={<r1=>0x0}, &(0x7f00000000c0)=0xc)
getpgrp(r1)

11:20:02 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000480)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000080), 0x1c)
r1 = dup2(r0, r0)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x2000021c)
sendmsg$unix(r1, &(0x7f0000000b80)={&(0x7f0000000100)=@abs, 0x6e, 0x0}, 0x20008000)
sendmsg$NL80211_CMD_NEW_INTERFACE(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x4000)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)

11:20:02 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$packet_tx_ring(r0, 0x29, 0x35, 0x0, 0x300)

11:20:02 executing program 0:
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
r1 = dup2(r0, r0)
sendmsg$NLBL_UNLABEL_C_STATICREMOVE(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x844)

11:20:02 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup2(r0, r0)
ioctl$TIOCEXCL(r1, 0x540c)

11:20:02 executing program 1:
r0 = syz_open_dev$vcsa(&(0x7f00000002c0)='/dev/vcsa#\x00', 0xf82b, 0x0)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r0, 0x0, 0x0)

11:20:02 executing program 3:
r0 = socket(0x2, 0x3, 0x2)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(r0, &(0x7f0000000100)={&(0x7f0000000140), 0x35, &(0x7f0000000040)={0x0}}, 0x0)

11:20:03 executing program 4:
pipe2$9p(&(0x7f0000000a40)={<r0=>0xffffffffffffffff}, 0x0)
close(r0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$IPVS_CMD_SET_CONFIG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0)

11:20:03 executing program 0:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff})
close(r0)
syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$KDGKBMODE(r0, 0x4b44, &(0x7f0000000140))

11:20:03 executing program 1:
socketpair$unix(0x1, 0x200000005, 0x0, &(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getsockname(r1, &(0x7f0000000000)=@pppol2tpv3in6={0x18, 0x1, {0x0, <r2=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @remote}}}, &(0x7f0000000080)=0x80)
dup3(r0, r2, 0x0)
sendmsg$TIPC_CMD_SHOW_LINK_STATS(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0}}, 0x0)

11:20:03 executing program 5:
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000001480)='/dev/null\x00', 0x0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$CHAR_RAW_RESETZONE(r2, 0x40101283, 0x0)

11:20:03 executing program 3:
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
getpeername$packet(r0, 0x0, &(0x7f00000002c0))

11:20:04 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
write$apparmor_exec(r0, 0x0, 0xffffff66)

11:20:04 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000480)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000080), 0x1c)
r1 = dup2(r0, r0)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x2000021c)
sendmsg$unix(r1, &(0x7f0000000b80)={&(0x7f0000000100)=@abs, 0x6e, 0x0}, 0x20008000)
sendmsg$NL80211_CMD_NEW_INTERFACE(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x4000)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)

11:20:04 executing program 5:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockname(r0, &(0x7f00000017c0)=@pppol2tpv3={0x18, 0x1, {0x0, <r1=>0xffffffffffffffff, {0x2, 0x0, @initdev}}}, &(0x7f0000001840)=0x80)
close(r1)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_AUTHENTICATE(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={0x0}}, 0x0)

11:20:04 executing program 0:
r0 = syz_open_dev$evdev(&(0x7f0000000140)='/dev/input/event#\x00', 0x0, 0x6)
write$binfmt_elf64(r0, &(0x7f00000000c0)=ANY=[], 0xffffffe8)
r1 = gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
ioctl$BTRFS_IOC_QUOTA_RESCAN_WAIT(r0, 0x942e, 0x0)
tkill(r1, 0x1000000000016)

11:20:04 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040)='/dev/zero\x00', 0x0, 0x0)
dup3(r0, r1, 0x0)
sendmsg$NBD_CMD_RECONFIGURE(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)

11:20:04 executing program 3:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$GIO_UNISCRNMAP(r0, 0x5608, &(0x7f0000000000)=""/185)

11:20:04 executing program 4:
nanosleep(&(0x7f0000000040)={0x0, 0x100000001}, 0x0)

11:20:05 executing program 3:
r0 = syz_open_dev$evdev(&(0x7f0000000080)='/dev/input/event#\x00', 0x0, 0x2)
write$evdev(r0, &(0x7f0000057fa0)=[{}, {}], 0xfffffd24)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$FIDEDUPERANGE(r1, 0xc0189436, 0x0)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12}, &(0x7f0000000340))
timer_settime(0x0, 0x0, &(0x7f0000000880)={{0x0, 0x1c9c380}, {0x0, 0x989680}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)

11:20:05 executing program 5:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
close(r0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCGPTLCK(r0, 0x80045439, &(0x7f0000000000))

11:20:05 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$TUNSETGROUP(r1, 0x5451, 0x0)

11:20:05 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
pipe2(&(0x7f0000000140)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000480)=0x100000001, 0x4)
dup2(r0, r1)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000080), 0x4)

11:20:05 executing program 1:
semget(0x2, 0x1, 0x325)

11:20:06 executing program 3:
open$dir(&(0x7f0000000000)='./file0\x00', 0x18b040, 0x61)

11:20:06 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
recvmsg(r0, &(0x7f0000002380)={&(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, <r1=>0xffffffffffffffff}}, 0x80, 0x0}, 0x0)
sendmsg$TIPC_CMD_GET_MAX_PORTS(r0, &(0x7f0000002600)={0x0, 0x0, &(0x7f00000025c0)={&(0x7f0000002580)={0x1c, 0x0, 0x70d}, 0x1c}}, 0x0)
dup3(r0, r1, 0x0)
sendmsg$BATADV_CMD_TP_METER_CANCEL(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)

11:20:06 executing program 4:
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
dup2(r1, r0)
sendmsg$NL80211_CMD_DEL_KEY(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)

11:20:10 executing program 0:
socketpair(0x1, 0x1, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff})
sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000940)={0x0}}, 0x0)

11:20:10 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000480)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000080), 0x1c)
r1 = dup2(r0, r0)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x2000021c)
setsockopt(r0, 0x0, 0x0, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)

11:20:10 executing program 1:
socketpair(0x1, 0x1, 0x0, &(0x7f0000000300)={<r0=>0xffffffffffffffff})
sendmsg$ETHTOOL_MSG_LINKINFO_GET(r0, &(0x7f00000002c0)={&(0x7f0000000000), 0xc, &(0x7f00000001c0)={0x0}}, 0x0)

11:20:10 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000380)=0x404100000001, 0xfe3f)
connect$inet6(r0, &(0x7f0000000080), 0x1c)
r1 = socket(0x2, 0x80001, 0x0)
r2 = dup2(r0, r1)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000000440), 0x132441)
connect$unix(r2, &(0x7f00000000c0)=@abs, 0x6e)
sendmsg$ETHTOOL_MSG_RINGS_GET(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)

11:20:10 executing program 3:
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
dup2(r1, r0)
sendmsg$SMC_PNETID_DEL(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0)

11:20:10 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_DEL_STATION(r0, &(0x7f0000000400)={&(0x7f00000002c0), 0xfffffffffffffd7d, &(0x7f00000003c0)={&(0x7f0000000300)={0xbc, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_OPMODE_NOTIF={0x5}, @NL80211_ATTR_STA_TX_POWER_SETTING={0x5}, @NL80211_ATTR_MAC, @NL80211_ATTR_STA_TX_POWER={0x6}]}, 0xbc}}, 0x0)

11:20:10 executing program 2:
r0 = socket$inet(0x2, 0x803, 0x1)
close(r0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000ec0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCFLSH(r0, 0x540b, 0x0)

11:20:11 executing program 1:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_TIOCINQ(r0, 0x8980, 0x0)

11:20:11 executing program 3:
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vga_arbiter\x00', 0x0, 0x0)
close(r0)
socket(0x11, 0x2, 0x0)
setsockopt$packet_drop_memb(r0, 0x107, 0x2, &(0x7f0000000080)={0x0, 0x1, 0x6, @link_local}, 0x10)

11:20:11 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0)
r2 = ioctl$TIOCGPTPEER(r1, 0x540d, 0x0)
dup2(r0, r2)
ioctl$TCGETS(r2, 0x5401, &(0x7f00000000c0))

11:20:11 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/11, 0x7103)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, 0x0)

11:20:12 executing program 4:
r0 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x4, 0x0)
close(r0)
syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$KDGETLED(r0, 0x4b31, &(0x7f0000000240))

11:20:12 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CALIPSO_C_LIST(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x844)

11:20:12 executing program 5:
r0 = socket$inet6(0xa, 0x1, 0x0)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x3}, 0x1c)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$ETHTOOL_MSG_EEE_SET(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0xc004)
sendmsg$IPVS_CMD_NEW_DAEMON(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0)
shutdown(r1, 0x0)

11:20:12 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20010001, &(0x7f0000000280)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
r1 = gettid()
timer_create(0x0, &(0x7f0000000000)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r2 = dup2(r0, r0)
write$vga_arbiter(r2, 0x0, 0x0)
close(r0)
socket$packet(0x11, 0x2, 0x300)
tkill(r1, 0x1000000000016)

11:20:12 executing program 0:
r0 = openat$apparmor_task_current(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/attr/current\x00', 0x2, 0x0)
close(r0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_NET_GET(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0}}, 0x0)

11:20:12 executing program 1:
r0 = gettid()
timer_create(0x0, &(0x7f0000000380)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f0000000880)={{0x0, 0x1c9c380}, {0x0, 0x989680}}, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x20010001, &(0x7f0000000280)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
r2 = dup2(r1, r1)
write$P9_RRENAME(r2, 0x0, 0x0)
close(r1)
r3 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$sock_timeval(r3, 0x1, 0x15, &(0x7f0000000180)={0x0, 0x7530}, 0x10)
tkill(r0, 0x1000000000015)
r4 = gettid()
tkill(r4, 0x15)

11:20:12 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_inet_SIOCGIFADDR(r0, 0x8912, &(0x7f0000000000)={'\x00', {0x2, 0x0, @remote}})

11:20:12 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000001000)='/dev/ptmx\x00', 0x0, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
dup3(r0, r1, 0x0)
ioctl$TIOCCBRK(r1, 0x5428)

11:20:12 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$int_out(r0, 0x2, &(0x7f0000000000))

11:20:13 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_crypto(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x4000810)

11:20:13 executing program 4:
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040)='/dev/hwrng\x00', 0x0, 0x0)
close(r0)
syz_genetlink_get_family_id$netlbl_unlabel(0x0)
sendmsg$BATADV_CMD_TP_METER(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={0x0}}, 0x0)

11:20:13 executing program 1:
r0 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x0, 0x0)
r1 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self\x00', 0x0, 0x0)
dup3(r1, r0, 0x0)

11:20:13 executing program 2:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$BTRFS_IOC_LOGICAL_INO_V2(r0, 0xc038943b, 0x0)

11:20:13 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCCONS(r0, 0x541d)

11:20:13 executing program 0:
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCSIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r0, 0x5450, 0x0)

11:20:13 executing program 4:
personality(0x0)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_EGRESS_PRIORITY_CMD(0xffffffffffffffff, 0x8982, 0x0)
msgctl$MSG_STAT_ANY(0xffffffffffffffff, 0xd, 0x0)
lsetxattr$trusted_overlay_nlink(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='trusted.overlay.nlink\x00', &(0x7f00000002c0)={'L+', 0x9e}, 0x16, 0x0)
epoll_ctl$EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, 0xffffffffffffffff)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, 0x0, 0x0)
pipe2(0x0, 0x0)
getsockopt(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$GIO_FONT(r0, 0x4b60, &(0x7f0000000780)=""/28)
ioctl$PIO_FONTRESET(r0, 0x4b6d, 0x0)
ioctl$BTRFS_IOC_SNAP_DESTROY_V2(0xffffffffffffffff, 0x5000943f, 0x0)

11:20:13 executing program 2:
r0 = gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0)
read(r1, &(0x7f0000000280)=""/11, 0xb)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000380))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
ioctl$F2FS_IOC_GET_COMPRESS_BLOCKS(r1, 0x8008f511, 0x0)
tkill(r0, 0x1000000000016)

11:20:13 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000340)='/dev/hwrng\x00', 0x0, 0x0)
dup2(r0, r1)
setsockopt$inet6_MCAST_JOIN_GROUP(r1, 0x29, 0x2a, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1}}}, 0x88)
setsockopt$inet6_MCAST_LEAVE_GROUP(r1, 0x29, 0x2d, &(0x7f0000000080)={0x0, {{0xa, 0x0, 0x0, @mcast1}}}, 0x88)

11:20:14 executing program 1:
pipe2(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
close(r0)
socket$inet6(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_TIMEOUT(r0, 0x0, 0x12, 0x0, 0x0)

11:20:14 executing program 5:
openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x0, 0x0)
r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000), 0x2, 0x0)
ioctl$FS_IOC_GETFSMAP(r0, 0x5451, 0x0)

11:20:14 executing program 0:
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs\x00', 0x0, 0x0)
ioctl$TUNSETVNETLE(r0, 0x400454dc, 0x0)

11:20:14 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20010001, &(0x7f0000000280)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
r1 = gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
r2 = dup2(r0, r0)
sendmsg$NL80211_CMD_REQ_SET_REG(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
dup3(r3, r0, 0x0)
tkill(r1, 0x1000000000016)

11:20:14 executing program 1:
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040)='/dev/zero\x00', 0x0, 0x0)
openat$urandom(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/urandom\x00', 0x0, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4)
openat$cgroup_type(r0, &(0x7f00000000c0)='cgroup.type\x00', 0x2, 0x0)

11:20:14 executing program 3:
pipe(&(0x7f0000000240)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$LOOP_SET_DIRECT_IO(r0, 0x4c08, 0x0)

11:20:14 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$VT_DISALLOCATE(r1, 0x5450)

11:20:15 executing program 5:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET(r0, 0x4b66, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

11:20:15 executing program 0:
sendmsg$DEVLINK_CMD_SB_GET(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)={0x14, 0x0, 0x0, 0x0, 0x3}, 0x14}}, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x890c, &(0x7f00000002c0)={'ip6_vti0\x00', 0x0})

11:20:15 executing program 4:
r0 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x400, 0x0)
ioctl$CHAR_RAW_RRPART(r0, 0x5451, 0x0)

11:20:15 executing program 3:
r0 = epoll_create(0x7ff)
close(r0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
sendmsg$NL80211_CMD_SET_MESH_CONFIG(r0, &(0x7f0000001740)={0x0, 0x0, &(0x7f0000001700)={0x0}}, 0x0)

11:20:15 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000200)='/dev/loop-control\x00', 0x0, 0x0)
close(r0)
memfd_create(&(0x7f0000000040)='{vmnet1posix_acl_access@mime_type\x00', 0x0)
write$P9_RLINK(r0, 0x0, 0x0)

11:20:15 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_UNLABEL_C_STATICLISTDEF(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x4)

11:20:15 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f0000000200))

11:20:15 executing program 0:
sched_setscheduler(0x0, 0x5, &(0x7f0000000180))
syz_open_procfs$namespace(0x0, 0x0)
socket$inet6(0xa, 0x2787bc1c18855e3, 0x0)

11:20:16 executing program 4:
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop-control\x00', 0x80000, 0x0)

11:20:16 executing program 3:
socketpair(0x1, 0x5, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
dup2(r0, r1)
sendmsg$NLBL_UNLABEL_C_ACCEPT(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0)

11:20:16 executing program 2:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000)='/dev/net/tun\x00', 0x0, 0x0)
r1 = socket$inet6(0x10, 0x3, 0x0)
dup3(r1, r0, 0x0)
sendmsg$NL80211_CMD_GET_PROTOCOL_FEATURES(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)

11:20:16 executing program 1:
r0 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000000))

11:20:16 executing program 5:
r0 = socket$inet(0x2, 0x2, 0x0)
r1 = memfd_create(&(0x7f00000001c0)='\x84\x0e\x13s\xf1\xb5\x05\xe2qO\xb8\x893\x81`\xd2\x99\x96\x01\x00\x00\x00\x00\x00\x00\x00\x1c\a\xd0#\x05%\x18\x17Z\xa2gS\xc1\xe0\v\xcb\t\xe6\xe6*\xe9\xa3\xdc\x91', 0x0)
close(r0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x151)
connect$inet6(r2, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r3 = dup2(r2, r1)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000440), 0x131f64)
setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x32, 0x400000, 0x4)

11:20:16 executing program 4:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000680)='/dev/net/tun\x00', 0x0, 0x0)
close(r0)
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$inet6_icmp_ICMP_FILTER(r0, 0x1, 0x1, &(0x7f0000000000), 0x4)

11:20:16 executing program 3:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNGETDEVNETNS(r0, 0x400454ca, 0x400000)
ioctl$TUNGETFILTER(r0, 0x801054db, &(0x7f0000000000)=""/197)

11:20:16 executing program 2:
r0 = openat$apparmor_task_current(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/attr/current\x00', 0x2, 0x0)
close(r0)
socket$inet6(0xa, 0x1, 0x0)
getsockopt$inet_int(r0, 0x0, 0x8, 0x0, &(0x7f0000000380))

11:20:17 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000006c0)='cgroup.controllers\x00', 0x275a, 0x0)
ioctl$FITRIM(r0, 0x5452, &(0x7f0000000080)={0x4})

11:20:17 executing program 4:
r0 = socket(0xa, 0x1, 0x0)
sendmsg$inet6(r0, &(0x7f0000002a40)={&(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c, 0x0}, 0x24000012)
sendmsg$ETHTOOL_MSG_RINGS_GET(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={0x0}}, 0x20000840)

11:20:17 executing program 3:
r0 = socket(0x2, 0x1, 0x0)
ioctl$BLKTRACESTART(r0, 0x8906, 0x0)

11:20:18 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_MPATH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x884)

11:20:18 executing program 5:
r0 = epoll_create1(0x0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
dup2(r1, r0)
write$P9_RLOCK(r0, 0x0, 0x0)

11:20:18 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x1, 0x0)
write$P9_RUNLINKAT(r0, &(0x7f0000000080)={0xfffffffffffffe65}, 0x0)

11:20:18 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$netlink_NETLINK_CAP_ACK(r0, 0x29, 0x22, 0x0, 0x3000000)

11:20:18 executing program 3:
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vga_arbiter\x00', 0x0, 0x0)
close(r0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$FOU_CMD_DEL(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)

11:20:18 executing program 1:
r0 = open(&(0x7f0000000300)='./file0\x00', 0x80040, 0x0)
close(r0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000080))

11:20:18 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x15)
sendmsg$NL80211_CMD_AUTHENTICATE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)

11:20:18 executing program 2:
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x0, 0x0)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_FLAG_CMD(r0, 0x5450, 0x0)

11:20:18 executing program 5:
pread64(0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffffe)

11:20:18 executing program 4:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x40, 0x0)
close(r0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_OPENQRY(r0, 0x5600, &(0x7f0000000100))

11:20:18 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
close(r0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_GET_POWER_SAVE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0)

11:20:19 executing program 1:
openat$autofs(0xffffffffffffff9c, &(0x7f0000000740)='/dev/autofs\x00', 0x10100, 0x0)

11:20:19 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x400000000000013, &(0x7f0000000480)=0x100000001, 0x6c64f6956a8bc116)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r1 = dup2(r0, r0)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x2000021c)
connect$unix(r1, &(0x7f0000000140)=@file={0x0, './file0\x00'}, 0x6e)
sendmsg$IPVS_CMD_GET_DEST(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0}}, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)

11:20:19 executing program 2:
r0 = openat$apparmor_thread_current(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/attr/current\x00', 0x2, 0x0)
close(r0)
socket$netlink(0x10, 0x3, 0x0)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}}, 0x0)

11:20:20 executing program 1:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
getsockname(r0, &(0x7f0000000100)=@pppol2tp={0x18, 0x1, {0x0, <r1=>0xffffffffffffffff, {0x2, 0x0, @empty}}}, &(0x7f00000000c0)=0x1d2)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x294)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r3 = dup2(r2, r1)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000440), 0x131f64)
sendmsg$IPVS_CMD_GET_CONFIG(r3, &(0x7f00000002c0)={&(0x7f0000000040), 0xc, &(0x7f0000000280)={0x0}}, 0x20000010)

11:20:20 executing program 0:
r0 = openat$apparmor_task_current(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/attr/current\x00', 0x2, 0x0)
close(r0)
socket$netlink(0x10, 0x3, 0x0)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)

11:20:20 executing program 5:
r0 = open$dir(&(0x7f0000000040)='.\x00', 0x0, 0x0)
openat(r0, &(0x7f0000000000)='./file1\x00', 0x28042, 0x1cb)

11:20:20 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
dup2(r0, r1)
setsockopt$inet_buf(r1, 0x0, 0x22, &(0x7f0000000140)="8c", 0x1)

11:20:20 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000440), 0x8, 0x0)
dup2(r0, r1)
sendmsg$NLBL_CALIPSO_C_REMOVE(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}}, 0x0)

11:20:21 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20010001, &(0x7f0000000280)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_LEAVE_OCB(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
close(r1)
r2 = gettid()
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12}, &(0x7f0000000340))
timer_settime(0x0, 0x0, &(0x7f00000000c0)={{0x0, 0x8}, {0x0, 0x1c9c380}}, 0x0)
socket(0x11, 0x2, 0x0)
tkill(r2, 0x401004000000016)

11:20:21 executing program 4:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
r1 = syz_open_dev$vcsa(&(0x7f00000000c0)='/dev/vcsa#\x00', 0x1, 0x0)
dup2(r0, r1)
setsockopt$inet6_udp_int(r1, 0x11, 0xb, &(0x7f0000000000), 0x4)

11:20:21 executing program 0:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000680)='/dev/net/tun\x00', 0x0, 0x0)
close(r0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_GET_KEY(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)

11:20:21 executing program 5:
r0 = socket$inet6(0xa, 0x1, 0x0)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x3}, 0x1c)
getsockopt$IP_VS_SO_GET_DESTS(0xffffffffffffffff, 0x0, 0x6, 0x0, &(0x7f0000000040))
r1 = dup(r0)
r2 = gettid()
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x0, 0x0, @mcast1}, 0x1c)
timer_create(0x0, &(0x7f0000000280)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
tkill(r2, 0x1000000000016)

11:20:21 executing program 1:
socketpair(0x1, 0x1, 0x0, &(0x7f0000000140)={<r0=>0xffffffffffffffff})
sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)

11:20:21 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20010001, &(0x7f0000000240)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
r1 = dup2(r0, r0)
sendmsg$TIPC_CMD_GET_NODES(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x20008000)

11:20:21 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000100)='/dev/null\x00', 0x0, 0x0)
dup2(r0, r1)
sendmsg$NLBL_UNLABEL_C_STATICLIST(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)

11:20:21 executing program 3:
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ttyS3\x00', 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
dup2(r1, r0)
sendmsg$NLBL_UNLABEL_C_LIST(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={0x0}}, 0x0)

11:20:21 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/loop-control\x00', 0x0, 0x0)
sched_setscheduler(0x0, 0x5, &(0x7f0000000000))
openat$apparmor_thread_current(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/attr/current\x00', 0x2, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, 0x0)

11:20:22 executing program 4:
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000380)='/dev/vcsa\x00', 0x0, 0x0)
close(r0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$TIPC_NL_MEDIA_GET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)

11:20:22 executing program 5:
r0 = socket$inet(0x2, 0xa, 0x0)
ioctl$BTRFS_IOC_DEV_INFO(r0, 0x5450, 0x0)

11:20:22 executing program 1:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/loop-control\x00', 0x0, 0x0)
r2 = dup3(r1, r0, 0x0)
sched_setscheduler(0x0, 0x5, &(0x7f0000000040))
openat$apparmor_thread_current(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/thread-self/attr/current\x00', 0x2, 0x0)
ioctl$TCSETXW(r2, 0x5435, 0x0)

11:20:22 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockname(r0, &(0x7f0000000180)=@pppol2tpv3in6={0x18, 0x1, {0x0, <r1=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast1}}}, &(0x7f0000000200)=0x80)
dup3(r0, r1, 0x0)
setsockopt$inet6_MRT6_DEL_MFC_PROXY(r1, 0x29, 0x39, 0x0, 0x0)

11:20:22 executing program 3:
r0 = socket$inet(0x2, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADDDEST(r0, 0x0, 0x24, &(0x7f0000000380)={{0x0, @multicast2, 0x0, 0x0, 'lc\x00'}, {@broadcast}}, 0xb)

11:20:22 executing program 5:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
dup3(r0, r1, 0x0)
ioctl$sock_SIOCADDDLCI(r1, 0x5452, &(0x7f00000001c0)={'vlan1\x00'})

11:20:23 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CALIPSO_C_ADD(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x4080)

11:20:23 executing program 2:
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0)
r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000), 0x2, 0x0)
ioctl$TIOCGETD(r0, 0x5424, &(0x7f0000000040))

11:20:23 executing program 3:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$inet_mreqsrc(r0, 0x0, 0x2, 0x0, &(0x7f0000001c80))

11:20:23 executing program 5:
r0 = socket$packet(0x11, 0x40800000000003, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000000)=0x101, 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000500)={'syz_tun\x00', <r1=>0x0})
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @random="208ad9019612"}, 0x14)
sendto$inet6(r0, &(0x7f0000000100)="1004000073d1600000000000fbf55b42b90516db4d916502", 0xfffffffffffffff7, 0x0, 0x0, 0xfffffffffffffce2)

11:20:23 executing program 4:
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGSKNS(r0, 0x5450, 0x0)

11:20:24 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20010001, &(0x7f0000000280)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
r1 = dup2(r0, r0)
r2 = gettid()
sendmsg$TIPC_CMD_SHOW_LINK_STATS(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
sendmsg$sock(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000040)=@l2tp={0x2, 0x0, @dev, 0x4}, 0x80, 0x0}, 0x0)
tkill(r2, 0x1000000000016)

11:20:24 executing program 2:
r0 = syz_open_dev$evdev(&(0x7f0000000080)='/dev/input/event#\x00', 0x0, 0x0)
ioctl$EVIOCREVOKE(r0, 0x40044591, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$TIOCNOTTY(r1, 0x5422)

11:20:24 executing program 3:
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS3\x00', 0x0, 0x0)
ioctl$RNDADDENTROPY(r0, 0x5452, &(0x7f0000000540))

11:20:24 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000001f00)='/dev/zero\x00', 0x0, 0x0)
dup2(r0, r1)
sendmsg$nl_crypto(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x400d0)

11:20:24 executing program 5:
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vga_arbiter\x00', 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
dup2(r1, r0)
setsockopt$inet6_MCAST_LEAVE_GROUP(r0, 0x29, 0x38, &(0x7f0000000240)={0x0, {{0xa, 0x0, 0x0, @remote}}}, 0x88)

11:20:24 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/loop-control\x00', 0x0, 0x0)
close(r0)
socketpair$unix(0x1, 0x10000000000005, 0x0, &(0x7f0000000100))
sendmmsg$inet6(r0, 0x0, 0x0, 0x0)

11:20:24 executing program 3:
socketpair(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendto$packet(r0, &(0x7f0000000140)="b0", 0x1, 0x4010, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)

11:20:24 executing program 2:
sched_setscheduler(0x0, 0x5, &(0x7f0000000800))
r0 = shmget$private(0x0, 0x3000, 0x40, &(0x7f0000ffd000/0x3000)=nil)
semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000002940)=[0x100, 0x200, 0x891, 0x1, 0x8])
shmctl$SHM_INFO(r0, 0xe, &(0x7f0000000180)=""/153)
setreuid(0x0, 0x0)
r1 = getegid()
fchownat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, r1, 0x0)
r2 = socket$inet(0x10, 0x3, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$NL80211_CMD_GET_KEY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x4000080)
sendmsg$NLBL_UNLABEL_C_ACCEPT(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000300)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYBLOB="00012dbd7000fdfbdf25010000000500810000000000efc9f478d176aa958b9303f57e292a3764ae536ce3f81bd54044b77d98be5bd43854abd29a66"], 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
ioctl$FS_IOC_GETFSMAP(r2, 0x5452, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, [], [{0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, {0x0, 0x10000}]})
fstat(r2, &(0x7f0000000000))
fstat(r3, &(0x7f0000000080))
r4 = getpgid(0x0)
sched_getparam(r4, &(0x7f00000000c0))
setsockopt$sock_int(r3, 0x1, 0x12, &(0x7f00000002c0), 0x4)
getpgid(0x0)

11:20:24 executing program 4:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @dev}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x1000000020000000, &(0x7f0000000080)={0x2, 0x4e20}, 0x10)
sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0)

11:20:24 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f000000d800)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000280))
r1 = syz_open_pts(r0, 0x0)
ioctl$TCGETS(r1, 0x5401, &(0x7f0000000000))

11:20:25 executing program 3:
r0 = socket$unix(0x1, 0x2, 0x0)
write$binfmt_elf64(r0, 0x0, 0x0)

11:20:25 executing program 1:
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$IOC_PR_PREEMPT_ABORT(r0, 0x5451, 0x0)

11:20:25 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup(r0)
sendmsg$NLBL_CIPSOV4_C_ADD(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}}, 0x0)

11:20:25 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
pipe(&(0x7f00000006c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = dup2(r0, r1)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x48060)

11:20:25 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f000000d800)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000280))
r1 = syz_open_pts(r0, 0x0)
ioctl$TCGETS(r1, 0x5401, &(0x7f0000000000))

11:20:25 executing program 1:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
dup2(r1, r0)
sendmsg$IPVS_CMD_GET_DEST(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0}}, 0x0)

11:20:25 executing program 3:
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
dup2(r1, r0)
write$char_usb(r0, 0x0, 0x0)

11:20:26 executing program 0:
r0 = socket(0x11, 0x3, 0x0)
sendmsg$NL80211_CMD_STOP_NAN(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0}}, 0x0)

11:20:26 executing program 4:
r0 = socket(0x10, 0x3, 0x2)
sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)

11:20:26 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20010001, &(0x7f0000000280)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
r1 = gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
sendmsg$SEG6_CMD_SETHMAC(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
close(r0)
socket$unix(0x1, 0x1, 0x0)
tkill(r1, 0x1000000000016)

11:20:26 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f000000d800)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000280))
r1 = syz_open_pts(r0, 0x0)
ioctl$TCGETS(r1, 0x5401, &(0x7f0000000000))

11:20:26 executing program 3:
r0 = socket(0x10, 0x2, 0x2)
write$P9_RLERRORu(r0, 0x0, 0x0)

11:20:26 executing program 1:
r0 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x5, 0x0)
ioctl$RNDGETENTCNT(r0, 0x5450, 0x0)

11:20:26 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_GET_DEST(r0, 0x0, 0x0)

11:20:26 executing program 4:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r1, 0x0, 0x0, 0x200407fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4)
dup3(r1, r0, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb)
setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000788ffc)=0x100000001, 0xfdf6)
write$binfmt_elf64(r0, &(0x7f0000000340)=ANY=[], 0x6c1)
r2 = dup(r0)
sendmsg$NL80211_CMD_NEW_KEY(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x14}}, 0x0)

11:20:27 executing program 4:
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
dup2(r0, r1)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000000), 0x4)

11:20:27 executing program 3:
r0 = creat(&(0x7f0000000180)='./file0\x00', 0x0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
dup2(r0, r1)
fsync(r1)

11:20:27 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
close(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_buf(r0, 0x29, 0x3e, 0x0, 0x0)

11:20:27 executing program 1:
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
write$P9_RUNLINKAT(r0, 0x0, 0x0)

11:20:27 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f000000d800)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000280))
r1 = syz_open_pts(r0, 0x0)
ioctl$TCGETS(r1, 0x5401, &(0x7f0000000000))

11:20:27 executing program 2:
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x43, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
dup2(r1, r0)
ioctl$TIOCGETD(r0, 0x5424, &(0x7f0000000100))

11:20:27 executing program 4:
r0 = socket(0x11, 0x2, 0x0)
write$P9_RUNLINKAT(r0, 0x0, 0x0)

11:20:27 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/ptmx\x00', 0x0, 0x0)
pipe(&(0x7f0000000480)={<r1=>0xffffffffffffffff})
dup2(r0, r1)
ioctl$TIOCGPKT(r1, 0x80045438, &(0x7f0000000040))

11:20:28 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
dup3(r0, r1, 0x0)
sendmsg$NL80211_CMD_GET_MPATH(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={0x0}}, 0x0)

11:20:28 executing program 0:
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000040)='/dev/null\x00', 0x0, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r0, 0x5451, 0x0)

11:20:28 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f000000d800)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000280))
ioctl$TCGETS(0xffffffffffffffff, 0x5401, &(0x7f0000000000))

11:20:28 executing program 4:
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r0, &(0x7f0000000300)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r0, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
connect$unix(r2, &(0x7f0000000040)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
ioctl$FICLONERANGE(r1, 0x5452, &(0x7f0000000000))

11:20:28 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20050001, &(0x7f0000000280)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
r1 = dup2(r0, r0)
r2 = gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
write$P9_RSYMLINK(r1, 0x0, 0x0)
close(r0)
socket$inet_udp(0x2, 0x2, 0x0)
tkill(r2, 0x1000000000016)

11:20:28 executing program 2:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vcsa\x00', 0x0, 0x0)
r2 = dup3(r0, r1, 0x0)
setsockopt$inet_int(r2, 0x0, 0x1, 0x0, 0x0)

11:20:28 executing program 1:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x200c2, 0x0)
write$P9_RXATTRWALK(r0, 0x0, 0x0)

11:20:28 executing program 0:
splice(0xffffffffffffff9c, 0x0, 0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x6)

11:20:28 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f000000d800)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000280))
ioctl$TCGETS(0xffffffffffffffff, 0x5401, &(0x7f0000000000))

11:20:29 executing program 2:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
r1 = openat$apparmor_thread_exec(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/attr/exec\x00', 0x2, 0x0)
sendfile(r0, r1, 0x0, 0x0)

11:20:29 executing program 4:
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000880)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r0 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$sock_timeval(r0, 0x1, 0x15, &(0x7f0000000180)={0x77359400}, 0x10)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x3}, 0x1c)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r1=>0x0)
timer_settime(r1, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
r2 = dup(r0)
r3 = dup2(r2, r2)
sendmsg$NL80211_CMD_STOP_NAN(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)

11:20:29 executing program 0:
r0 = eventfd2(0x0, 0x0)
close(r0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$BATADV_CMD_SET_VLAN(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)

11:20:29 executing program 1:
r0 = inotify_init1(0x0)
close(r0)
socket$unix(0x1, 0x1, 0x0)
setsockopt$inet_icmp_ICMP_FILTER(r0, 0x1, 0x1, &(0x7f0000000880), 0x4)

11:20:29 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0)
dup3(r0, r1, 0x0)
sendmsg$NL80211_CMD_GET_SCAN(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)

11:20:29 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f000000d800)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000280))
ioctl$TCGETS(0xffffffffffffffff, 0x5401, &(0x7f0000000000))

11:20:29 executing program 2:
r0 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$sock_timeval(r0, 0x1, 0x15, &(0x7f0000000180)={0x0, 0xea60}, 0x10)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x3}, 0x1c)
r1 = dup(r0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000200)={&(0x7f0000000000), 0xc, &(0x7f00000001c0)={0x0}}, 0x2000c080)

11:20:30 executing program 1:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = dup(r0)
write$P9_RRENAME(r2, &(0x7f00000000c0)={0x7}, 0xfffffe9f)
write$9p(r2, &(0x7f0000000100)=',', 0x1)
write$P9_RSTAT(r2, &(0x7f0000000140)={0x41, 0x7d, 0x0, {0x0, 0x3a, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x3, '@%+', 0x1, '+', 0x1, '\'', 0x2, '/\x93'}}, 0x41)
dup3(r2, r1, 0x0)

11:20:30 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @local}}, 0x1c)
r1 = dup2(r0, r0)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x200000ee)
setsockopt$SO_TIMESTAMP(r1, 0x1, 0x23, &(0x7f0000000000), 0x4)
mmap(&(0x7f0000000000/0xb3c000)=nil, 0xb3c000, 0x0, 0x32, 0xffffffffffffffff, 0x0)

11:20:30 executing program 4:
r0 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_QGROUP_ASSIGN(r0, 0x5450, 0x0)

11:20:30 executing program 3:
r0 = epoll_create(0x7)
close(r0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$SEG6_CMD_DUMPHMAC(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)

11:20:30 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f000000d800)='/dev/ptmx\x00', 0x0, 0x0)
r1 = syz_open_pts(r0, 0x0)
ioctl$TCGETS(r1, 0x5401, &(0x7f0000000000))

11:20:30 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet6(0xa, 0x1, 0x0)
dup3(r0, r1, 0x0)
sendmsg$TIPC_CMD_ENABLE_BEARER(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)

11:20:30 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup2(r0, r0)
write$P9_RLOCK(r1, 0x0, 0x0)

11:20:30 executing program 4:
r0 = openat$urandom(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/urandom\x00', 0x0, 0x0)
close(r0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240))
sendmsg$TIPC_CMD_GET_MAX_PORTS(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={0x0}}, 0x0)

11:20:31 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x0)
r1 = accept4$inet6(r0, 0x0, 0x0, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r2, &(0x7f0000000280), 0x3d6, 0x20000004, &(0x7f0000000080)={0xa, 0x4e22}, 0x1c)
sendmsg$NL80211_CMD_SET_BSS(r1, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, 0x0, 0x2, 0x70bd25}, 0x14}}, 0x0)

11:20:31 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f000000d800)='/dev/ptmx\x00', 0x0, 0x0)
r1 = syz_open_pts(r0, 0x0)
ioctl$TCGETS(r1, 0x5401, &(0x7f0000000000))

11:20:31 executing program 2:
r0 = socket$unix(0x1, 0x5, 0x0)
r1 = socket$nl_crypto(0x10, 0x3, 0x15)
r2 = fcntl$dupfd(r1, 0x0, r0)
sendmsg$NL80211_CMD_SET_WDS_PEER(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)

11:20:31 executing program 4:
r0 = socket$inet(0x10, 0x2, 0x0)
sendmsg$NL80211_CMD_SET_MESH_CONFIG(r0, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000980)={0x0}}, 0x0)

[ 1779.791426][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
11:20:31 executing program 3:
timer_create(0x0, &(0x7f0000000340)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000044000))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
r1 = gettid()
r2 = dup(r0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup2(r2, r3)
setsockopt$sock_timeval(r4, 0x1, 0x15, &(0x7f0000000140)={0x77359400}, 0x10)
sendmsg$ETHTOOL_MSG_LINKSTATE_GET(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
tkill(r1, 0x1004000000013)

11:20:31 executing program 0:
r0 = open$dir(&(0x7f0000000280)='./file0\x00', 0x80440, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc))
r2 = syz_open_pts(r1, 0x0)
r3 = dup3(r2, r1, 0x0)
dup3(r3, r0, 0x0)
r4 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x0, 0x0)
r5 = dup2(r0, r4)
ioctl$TUNSETOFFLOAD(r5, 0x400454d0, 0x0)

[ 1779.923632][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
11:20:31 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f000000d800)='/dev/ptmx\x00', 0x0, 0x0)
r1 = syz_open_pts(r0, 0x0)
ioctl$TCGETS(r1, 0x5401, &(0x7f0000000000))

11:20:31 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
dup3(r0, r1, 0x0)
sendmsg$TIPC_NL_MEDIA_GET(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0}}, 0x0)

11:20:32 executing program 2:
r0 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0)
ioctl$EVIOCREVOKE(r0, 0x40044591, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$BLKRESETZONE(r1, 0x40101283, 0x0)

11:20:32 executing program 4:
sched_setscheduler(0x0, 0x5, &(0x7f0000000180))
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
ptrace$setregs(0xffffffffffffffff, 0x0, 0x0, 0x0)

11:20:32 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000340)='/dev/hwrng\x00', 0x0, 0x0)
dup2(r0, r1)
getsockopt$IP_VS_SO_GET_INFO(r1, 0x0, 0x16, 0x0, &(0x7f0000000080))

11:20:32 executing program 5:
ioctl$TIOCSPTLCK(0xffffffffffffffff, 0x40045431, &(0x7f0000000280))
r0 = syz_open_pts(0xffffffffffffffff, 0x0)
ioctl$TCGETS(r0, 0x5401, &(0x7f0000000000))

11:20:32 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ptmx\x00', 0x0, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
dup3(r1, r0, 0x0)
getsockopt$inet_tcp_buf(r0, 0x6, 0x1a, 0x0, &(0x7f0000000240))

11:20:32 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
recvmsg(r0, &(0x7f00000000c0)={&(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, <r1=>0xffffffffffffffff}}, 0x80, 0x0, 0x0, 0x0, 0xff43}, 0x0)
sendmsg$TIPC_CMD_GET_MAX_PORTS(r0, &(0x7f0000002600)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000002580)={0x1c, 0x0, 0x70d}, 0x1c}}, 0x0)
close(r1)
socket$inet6_udplite(0xa, 0x2, 0x88)
connect$inet(r1, &(0x7f0000000100)={0x2, 0x0, @loopback}, 0x10)

11:20:33 executing program 3:
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000040)='/dev/null\x00', 0x0, 0x0)
close(r0)
r1 = socket$packet(0x11, 0x2, 0x300)
r2 = socket(0xa, 0x2, 0x0)
setsockopt$inet_int(r2, 0x0, 0x8, &(0x7f0000000040)=0xd3, 0x4)
getsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f0000000140)={<r3=>0x0, @rand_addr, @initdev}, &(0x7f0000000180)=0xc)
bind$packet(r1, &(0x7f0000000000)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @remote}, 0x14)
sendmsg$NL80211_CMD_STOP_NAN(r0, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x0)

11:20:33 executing program 0:
r0 = socket(0x1, 0x5, 0x0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0}}, 0x0)

11:20:33 executing program 5:
ioctl$TIOCSPTLCK(0xffffffffffffffff, 0x40045431, &(0x7f0000000280))
r0 = syz_open_pts(0xffffffffffffffff, 0x0)
ioctl$TCGETS(r0, 0x5401, &(0x7f0000000000))

11:20:33 executing program 1:
r0 = timerfd_create(0x0, 0x0)
close(r0)
r1 = socket$inet6(0xa, 0x3, 0x5)
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x3}, 0x1c)
connect$inet6(r1, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendmsg$GTP_CMD_DELPDP(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={0x0}}, 0x0)

11:20:33 executing program 2:
r0 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$sock_timeval(r0, 0x1, 0x15, &(0x7f0000000180)={0x77359400}, 0x10)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x3}, 0x1c)
r1 = dup(r0)
sendmsg$TIPC_NL_BEARER_ENABLE(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0)
r2 = gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
tkill(r2, 0x1000000000016)

11:20:33 executing program 0:
r0 = socket$inet6(0xa, 0x3, 0x1f)
ioctl$sock_inet_udp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000000))

11:20:33 executing program 3:
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000040)='/dev/null\x00', 0x0, 0x0)
close(r0)
r1 = socket$packet(0x11, 0x2, 0x300)
r2 = socket(0xa, 0x2, 0x0)
setsockopt$inet_int(r2, 0x0, 0x8, &(0x7f0000000040)=0xd3, 0x4)
getsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f0000000140)={<r3=>0x0, @rand_addr, @initdev}, &(0x7f0000000180)=0xc)
bind$packet(r1, &(0x7f0000000000)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @remote}, 0x14)
sendmsg$NL80211_CMD_STOP_NAN(r0, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x0)

11:20:34 executing program 4:
r0 = open$dir(&(0x7f0000000280)='./file0\x00', 0x80441, 0x0)
close(r0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={0x0}}, 0x0)

11:20:34 executing program 5:
ioctl$TIOCSPTLCK(0xffffffffffffffff, 0x40045431, &(0x7f0000000280))
r0 = syz_open_pts(0xffffffffffffffff, 0x0)
ioctl$TCGETS(r0, 0x5401, &(0x7f0000000000))

11:20:34 executing program 1:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
setsockopt$inet6_icmp_ICMP_FILTER(r0, 0x1, 0x1, &(0x7f0000000040), 0x4)

11:20:34 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup(r0)
getsockopt$SO_COOKIE(r1, 0x1, 0x2b, 0x0, &(0x7f0000000080))

11:20:34 executing program 0:
r0 = socket(0x2, 0x1, 0x0)
sendmsg$DEVLINK_CMD_PORT_SPLIT(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x4810)

11:20:34 executing program 2:
r0 = creat(&(0x7f0000000040)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
dup2(r1, r0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x5, &(0x7f0000000080)={0x0, {{0xa, 0x0, 0x0, @empty}}, {{0xa, 0x0, 0x0, @private2}}}, 0x108)

11:20:34 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000280))
r1 = syz_open_pts(r0, 0x0)
ioctl$TCGETS(r1, 0x5401, &(0x7f0000000000))

11:20:34 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/sockstat6\x00')
close(r0)
r1 = socket$packet(0x11, 0x2, 0x300)
r2 = socket(0xa, 0x2, 0x0)
setsockopt$inet_int(r2, 0x0, 0x8, &(0x7f0000000040)=0xd3, 0x4)
setsockopt$sock_int(r1, 0x1, 0x2b, &(0x7f0000000100)=0x20, 0x4)
getsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f0000000140)={<r3=>0x0, @rand_addr, @initdev}, &(0x7f0000000180)=0xc)
bind$packet(r1, &(0x7f0000000000)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @local}, 0x14)
sendmsg$SEG6_CMD_DUMPHMAC(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={0x0}}, 0x0)

11:20:34 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = signalfd(0xffffffffffffffff, &(0x7f0000000100), 0x8)
dup2(r0, r1)
ioctl$TIOCL_BLANKSCREEN(r1, 0x5452, &(0x7f0000000040))

11:20:34 executing program 3:
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x0, 0x0)
close(r0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFINDEX(r0, 0x400454da, &(0x7f0000000100))

11:20:34 executing program 2:
r0 = syz_open_dev$evdev(&(0x7f0000000140)='/dev/input/event#\x00', 0x0, 0x6)
write$binfmt_elf64(r0, &(0x7f00000000c0)=ANY=[], 0xffffffe8)
r1 = gettid()
timer_create(0x0, &(0x7f0000000100)={0x0, 0x12}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x1c9c380}}, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, 0x0)
tkill(r1, 0x8001004000000016)

11:20:34 executing program 4:
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x0, 0x0)
close(r0)
socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000680), 0x4)

11:20:35 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000280))
r1 = syz_open_pts(r0, 0x0)
ioctl$TCGETS(r1, 0x5401, &(0x7f0000000000))

11:20:35 executing program 1:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$BTRFS_IOC_GET_FEATURES(r0, 0x5450, 0x0)

11:20:35 executing program 0:
r0 = socket$inet6(0xa, 0x1, 0x0)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x3}, 0x1c)
recvmmsg(r0, &(0x7f0000001940), 0x173, 0x0, 0x0)
r1 = dup(r0)
r2 = gettid()
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12}, &(0x7f0000000340))
timer_settime(0x0, 0x0, &(0x7f00000000c0)={{0x0, 0x8}, {0x0, 0x1c9c380}}, 0x0)
sendmsg$NLBL_UNLABEL_C_ACCEPT(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NLBL_UNLABEL_C_LIST(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)
tkill(r2, 0x401004000000016)

11:20:35 executing program 3:
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$BTRFS_IOC_SEND(r0, 0x5450, 0x0)

11:20:35 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = memfd_create(&(0x7f00000000c0)='[mime_type\x00', 0x0)
dup2(r1, r0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000740)={0x0, 0x0, 0x0, 0xbdee})

11:20:36 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000280))
r1 = syz_open_pts(r0, 0x0)
ioctl$TCGETS(r1, 0x5401, &(0x7f0000000000))

11:20:36 executing program 3:
r0 = openat$apparmor_task_exec(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/attr/exec\x00', 0x2, 0x0)
pwritev(r0, 0x0, 0x0, 0x0, 0x0)

11:20:36 executing program 1:
r0 = eventfd(0x0)
close(r0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$TIPC_NL_NET_GET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={0x0}}, 0x0)

11:20:36 executing program 4:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$VT_GETMODE(r2, 0x5601, 0x0)

11:20:36 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f000000d800)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSPTLCK(0xffffffffffffffff, 0x40045431, &(0x7f0000000280))
r1 = syz_open_pts(r0, 0x0)
ioctl$TCGETS(r1, 0x5401, &(0x7f0000000000))

11:20:41 executing program 2:
r0 = syz_open_dev$vcsn(&(0x7f00000001c0)='/dev/vcs#\x00', 0x2, 0x0)
close(r0)
syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$KDGKBDIACR(r0, 0x4b4a, &(0x7f0000000280)=""/163)

11:20:41 executing program 3:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCGSOFTCAR(r0, 0x540a, 0x0)

11:20:41 executing program 1:
r0 = socket$inet6(0xa, 0x3, 0x9)
ioctl$FIONCLEX(r0, 0x5450)

11:20:41 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20010001, &(0x7f0000000280)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_DISASSOCIATE(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
r2 = gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
close(r0)
r3 = socket$packet(0x11, 0x2, 0x300)
r4 = socket(0xa, 0x2, 0x0)
setsockopt$inet_int(r4, 0x0, 0x8, &(0x7f0000000040)=0xd3, 0x4)
getsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={<r5=>0x0, @rand_addr, @initdev}, &(0x7f0000000180)=0xc)
bind$packet(r3, &(0x7f0000000000)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @local}, 0x14)
tkill(r2, 0x1000000000016)

11:20:41 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r0, 0x5450, 0x0)

11:20:41 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f000000d800)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSPTLCK(0xffffffffffffffff, 0x40045431, &(0x7f0000000280))
r1 = syz_open_pts(r0, 0x0)
ioctl$TCGETS(r1, 0x5401, &(0x7f0000000000))

11:20:42 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xffffff42}}, 0x0)

11:20:42 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff})
r1 = socket$packet(0x11, 0x3, 0x300)
dup3(r1, r0, 0x0)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)

11:20:42 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x0, 0x0)
close(r0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r2 = ioctl$TIOCGPTPEER(r1, 0x540d, 0x0)
dup2(r0, r2)
ioctl$VT_GETSTATE(r2, 0x5603, &(0x7f00000000c0))

11:20:42 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f000000d800)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSPTLCK(0xffffffffffffffff, 0x40045431, &(0x7f0000000280))
r1 = syz_open_pts(r0, 0x0)
ioctl$TCGETS(r1, 0x5401, &(0x7f0000000000))

11:20:42 executing program 0:
r0 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$sock_timeval(r0, 0x1, 0x15, &(0x7f0000000180)={0x0, 0xea60}, 0x10)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x3}, 0x1c)
r1 = dup(r0)
sendmsg$NL80211_CMD_DISCONNECT(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x58}}, 0x0)

11:20:42 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0)
sched_setscheduler(0x0, 0x5, &(0x7f0000000000))
openat$apparmor_thread_current(0xffffffffffffff9c, &(0x7f0000000380)='/proc/thread-self/attr/current\x00', 0x2, 0x0)
ioctl$FS_IOC_GETFLAGS(r0, 0x80086601, 0x0)

11:20:42 executing program 4:
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
r0 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000000)='memory.high\x00', 0x2, 0x0)
write$P9_RLOCK(r0, 0x0, 0x0)

11:20:42 executing program 1:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$FS_IOC_FIEMAP(r0, 0x5451, 0x0)

11:20:42 executing program 3:
r0 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000180)='/dev/urandom\x00', 0x0, 0x0)
ioctl$BLKDISCARD(r0, 0x2, &(0x7f00000001c0))

11:20:42 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f000000d800)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSPTLCK(r0, 0x40045431, 0x0)
r1 = syz_open_pts(r0, 0x0)
ioctl$TCGETS(r1, 0x5401, &(0x7f0000000000))

11:20:43 executing program 0:
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x0, 0x0)
close(r0)
syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$GIO_FONTX(r0, 0x4b6b, &(0x7f0000000100)={0x0, 0x0, 0x0})

11:20:43 executing program 3:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x200000000001, 0x0)
bind$unix(r1, &(0x7f0000366000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000932000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc)
r2 = dup2(r1, r1)
r3 = accept4$packet(r2, 0x0, 0x0, 0x0)
sendmmsg$inet6(r3, 0x0, 0x0, 0x0)

11:20:43 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f000000d800)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSPTLCK(r0, 0x40045431, 0x0)
r1 = syz_open_pts(r0, 0x0)
ioctl$TCGETS(r1, 0x5401, &(0x7f0000000000))

11:20:43 executing program 1:
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000880)={{0x0, 0x1c9c380}, {0x0, 0x989680}}, 0x0)
r0 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$sock_timeval(r0, 0x1, 0x15, &(0x7f0000000180)={0x77359400}, 0x10)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x3}, 0x1c)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r1=>0x0)
timer_settime(r1, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
r2 = dup(r0)
write$P9_RFSYNC(r2, 0x0, 0x0)

11:20:43 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$BATADV_CMD_SET_VLAN(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x4000)

11:20:43 executing program 0:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
dup2(r1, r0)
sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)

11:20:44 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f000000d800)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSPTLCK(r0, 0x40045431, 0x0)
r1 = syz_open_pts(r0, 0x0)
ioctl$TCGETS(r1, 0x5401, &(0x7f0000000000))

11:20:44 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x0, 0x0)
dup2(r0, r1)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={0x0}}, 0x0)

11:20:44 executing program 3:
r0 = syz_open_dev$evdev(&(0x7f0000000240)='/dev/input/event#\x00', 0x5, 0x20042)
write$P9_RFSYNC(r0, 0x0, 0x0)

11:20:44 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$inet_opts(r0, 0x0, 0xd, &(0x7f0000000540)=""/34, &(0x7f0000000580)=0x22)

11:20:44 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_CMD_DISABLE_BEARER(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={0x0, 0xffffff3a}}, 0x0)

11:20:44 executing program 0:
socketpair(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$TUNSETVNETBE(r0, 0x400454de, 0x0)

11:20:44 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f000000d800)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000280))
r1 = syz_open_pts(0xffffffffffffffff, 0x0)
ioctl$TCGETS(r1, 0x5401, &(0x7f0000000000))

11:20:45 executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
close(r0)
syz_genetlink_get_family_id$nl80211(0x0)
sendmsg$NL80211_CMD_DEL_NAN_FUNCTION(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)

11:20:45 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f000000d800)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000280))
r1 = syz_open_pts(0xffffffffffffffff, 0x0)
ioctl$TCGETS(r1, 0x5401, &(0x7f0000000000))

11:20:45 executing program 1:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000440)='/dev/net/tun\x00', 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000001b00)='./file0\x00', 0x22042, 0x0)
dup2(r0, r1)
ioctl$TCGETX(r1, 0x5432, 0x0)

11:20:45 executing program 3:
r0 = syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/net\x00')
close(r0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000001800))
sendmsg$ETHTOOL_MSG_LINKSTATE_GET(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={0x0}}, 0x0)

11:20:45 executing program 4:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x200000000001, 0x0)
bind$unix(r1, &(0x7f0000366000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000932000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc)
r2 = dup3(r1, r0, 0x0)
r3 = accept4$packet(r2, 0x0, 0x0, 0x0)
setsockopt$sock_linger(r3, 0x1, 0xd, &(0x7f0000000640), 0x8)

11:20:45 executing program 2:
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000180)='/dev/full\x00', 0x0, 0x0)
utimensat(r0, 0x0, 0x0, 0x0)

11:20:45 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_MEDIA_GET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x4044011)

11:20:45 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/loop-control\x00', 0x0, 0x0)
close(r0)
socketpair$unix(0x1, 0x10000000000005, 0x0, &(0x7f0000000100))
sendmsg$NLBL_UNLABEL_C_STATICREMOVE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0)

11:20:46 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f000000d800)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000280))
r1 = syz_open_pts(0xffffffffffffffff, 0x0)
ioctl$TCGETS(r1, 0x5401, &(0x7f0000000000))

11:20:46 executing program 4:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x18, 0x0, &(0x7f0000000100))

11:20:46 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$SEG6_CMD_DUMPHMAC(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x24000884)

11:20:46 executing program 2:
r0 = gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vcs\x00', 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0)
read(r2, &(0x7f0000000600)=""/11, 0x232)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000140))
r3 = dup2(r2, r1)
ioctl$EVIOCSFF(r3, 0x40304580, 0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
tkill(r0, 0x1000000000016)

11:20:46 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f000000d800)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000280))
syz_open_pts(r0, 0x0)
ioctl$TCGETS(0xffffffffffffffff, 0x5401, &(0x7f0000000000))

11:20:46 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
close(r0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETAF(r0, 0x5408, &(0x7f0000000580))

11:20:46 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0xfffffffffffffc47, 0x20010001, &(0x7f0000000280)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
r1 = dup2(r0, r0)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(r1, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={0x0}}, 0x0)
r2 = gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x1c9c380}}, 0x0)
close(r0)
socket$nl_crypto(0x10, 0x3, 0x15)
tkill(r2, 0x1000000000016)

11:20:46 executing program 0:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r0, 0x5450, 0x0)

11:20:46 executing program 3:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000440)='/dev/net/tun\x00', 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000001b00)='./file0\x00', 0x22042, 0x0)
dup2(r0, r1)
ioctl$TIOCL_SETVESABLANK(r1, 0x541c, 0x0)

11:20:46 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = signalfd(0xffffffffffffffff, &(0x7f0000000140), 0x8)
dup3(r0, r1, 0x0)
connect$netlink(r1, &(0x7f0000000640), 0xc)

11:20:47 executing program 1:
r0 = socket(0x11, 0x3, 0x0)
sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)

11:20:47 executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
close(r0)
socket(0x10, 0x3, 0x0)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)

11:20:47 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4)
r2 = dup3(r1, r0, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb)
setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000788ffc)=0x100000001, 0xfdf6)
write$binfmt_elf64(r0, &(0x7f0000000380)=ANY=[], 0x6c1)
sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)={0x14}, 0x14}}, 0x0)

11:20:47 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f000000d800)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000280))
syz_open_pts(r0, 0x0)
ioctl$TCGETS(0xffffffffffffffff, 0x5401, &(0x7f0000000000))

11:20:47 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$BTRFS_IOC_SEND(r0, 0x40489426, 0x0)

11:20:48 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockname(r0, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, <r1=>0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, &(0x7f0000000380)=0x1f6)
dup2(r0, r1)
setsockopt$IP_VS_SO_SET_DEL(r1, 0x0, 0x31, &(0x7f00000000c0)={0x0, @empty, 0x0, 0x0, 'wlc\x00'}, 0x2c)

11:20:48 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
write$P9_RREADDIR(r0, 0x0, 0x0)

11:20:48 executing program 0:
process_vm_readv(0x0, &(0x7f0000000600), 0x0, 0x0, 0x0, 0x0)

11:20:48 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00005befdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$VT_GETSTATE(r1, 0x5404, &(0x7f0000000000))

11:20:48 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000180)='/dev/null\x00', 0x0, 0x0)
dup3(r0, r1, 0x0)
ioctl$KDSKBMETA(r1, 0x5427, 0x0)

11:20:48 executing program 4:
r0 = epoll_create1(0x0)
close(r0)
syz_open_dev$vcsa(&(0x7f0000580ff5)='/dev/vcsa#\x00', 0x1f, 0x0)
readv(r0, 0x0, 0x0)

11:20:48 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f000000d800)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000280))
syz_open_pts(r0, 0x0)
ioctl$TCGETS(0xffffffffffffffff, 0x5401, &(0x7f0000000000))

11:20:49 executing program 1:
r0 = openat$apparmor_task_current(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/attr/current\x00', 0x2, 0x0)
close(r0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_NODE_GET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)

11:20:49 executing program 3:
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000080)=@req={0x1000, 0x4, 0x1000, 0x4}, 0x10)
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r3=>0x0})
bind$packet(r1, &(0x7f0000000100)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @local}, 0x14)
getsockname$packet(r1, &(0x7f0000000b80)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000000c0)=0x14)
sendto$packet(r0, 0x0, 0xfffffffffffffc61, 0xc04c800, &(0x7f0000000500)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @multicast}, 0x72)

11:20:49 executing program 2:
r0 = socket$packet(0x11, 0x2, 0x300)
sendto(r0, 0x0, 0x0, 0x14, &(0x7f0000000040)=@qipcrtr={0x2a, 0x3}, 0x80)

11:20:49 executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
close(r0)
socket(0xa, 0x2, 0x0)
getsockopt$IP_VS_SO_GET_VERSION(r0, 0x0, 0xc, 0x0, &(0x7f0000000240))

11:20:49 executing program 4:
r0 = epoll_create(0x40000ad0)
close(r0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}}, 0x0)

11:20:49 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f000000d800)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000280))
r1 = syz_open_pts(r0, 0x0)
ioctl$TCGETS(r1, 0x5401, 0x0)

11:20:49 executing program 1:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = fcntl$dupfd(r0, 0x0, r1)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x24044040)

11:20:50 executing program 2:
socketpair(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmmsg$inet6(r0, &(0x7f00000008c0)=[{{0x0, 0x0, 0x0}}], 0x4000000000001e8, 0x0)
sendto$packet(r0, 0x0, 0x0, 0x40, 0x0, 0x0)

11:20:50 executing program 0:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
getsockname(r0, &(0x7f0000000000)=@pppol2tpv3in6={0x18, 0x1, {0x0, <r1=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @remote}}}, &(0x7f0000000080)=0x80)
dup3(r0, r1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r2, 0x541b, &(0x7f0000000000)={<r3=>0xffffffffffffffff})
sendmsg$NL80211_CMD_GET_INTERFACE(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0}}, 0x0)

11:20:50 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x0, 0x0)
dup2(r0, r1)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r1, 0x89f0, &(0x7f0000003e80)={'sit0\x00', &(0x7f0000003e00)={'ip6gre0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local, @local}})

11:20:50 executing program 4:
r0 = creat(&(0x7f0000000240)='./file0\x00', 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000480)='/dev/null\x00', 0x0, 0x0)
dup3(r1, r0, 0x0)
pread64(r0, 0x0, 0x0, 0x0)

11:20:50 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f000000d800)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000280))
r1 = syz_open_pts(r0, 0x0)
ioctl$TCGETS(r1, 0x5401, 0x0)

11:20:50 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_ADD_COUNTERS(r0, 0x29, 0x22, 0x0, 0x0)

11:20:50 executing program 0:
r0 = socket(0x10, 0x2, 0x0)
sendmsg$MPTCP_PM_CMD_GET_LIMITS(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)

11:20:50 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x40142, 0x0)
write$P9_RCREATE(r0, 0x0, 0x0)

11:20:51 executing program 4:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$NLBL_CALIPSO_C_LIST(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)

11:20:51 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f000000d800)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000280))
r1 = syz_open_pts(r0, 0x0)
ioctl$TCGETS(r1, 0x5401, 0x0)

11:20:51 executing program 1:
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000340)='/dev/zero\x00', 0x0, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
r2 = socket(0xa, 0x2, 0x0)
setsockopt$inet_int(r2, 0x0, 0x8, &(0x7f0000000040)=0xd3, 0x4)
getsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f0000000140)={<r3=>0x0, @rand_addr, @initdev}, &(0x7f0000000180)=0xc)
bind$packet(r1, &(0x7f00000001c0)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @local}, 0x14)
dup2(r1, r0)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)

11:20:51 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x2e, &(0x7f0000000000)=0x288, 0x4)

11:20:51 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$NL80211_CMD_SET_PMK(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x24044050)

11:20:51 executing program 3:
r0 = syz_open_dev$evdev(&(0x7f0000000180)='/dev/input/event#\x00', 0x0, 0x0)
ioctl$FICLONERANGE(r0, 0x4020940d, 0x0)

11:20:51 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$RNDCLEARPOOL(r0, 0x5451, 0x0)

11:20:52 executing program 5:
socketpair(0x1, 0x1, 0x0, &(0x7f0000000140)={<r0=>0xffffffffffffffff})
write$cgroup_freezer_state(r0, 0x0, 0x0)

11:20:52 executing program 0:
r0 = syz_open_dev$vcsn(&(0x7f0000000200)='/dev/vcs#\x00', 0x0, 0x0)
close(r0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_PORT_GET(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0}}, 0x0)

11:20:52 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
connect$inet(r0, &(0x7f0000000ec0)={0x2, 0x0, @remote}, 0x10)
write$apparmor_current(r0, 0x0, 0x0)

11:20:52 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0xfffffffffffffc47, 0x20010001, &(0x7f0000000280)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
r1 = dup2(r0, r0)
sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x1c9c380}}, 0x0)
close(r0)
socket(0x11, 0x2, 0x0)
r2 = gettid()
tkill(r2, 0x1000000000016)

11:20:52 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20010001, &(0x7f0000000280)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_MCAST_RATE(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x24008001)

11:20:52 executing program 4:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$CHAR_RAW_FLSBUF(r0, 0x1261, 0x0)

11:20:52 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000001440)='/dev/loop#\x00', 0x0, 0x0)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000080), 0x8, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = dup2(r2, r1)
r4 = dup3(r0, r3, 0x0)
fdatasync(r4)

11:20:52 executing program 0:
mkdirat$cgroup(0xffffffffffffff9c, &(0x7f0000000000)='syz0\x00', 0x1ff)
r0 = openat$cgroup(0xffffffffffffff9c, &(0x7f0000000040)='syz0\x00', 0x200002, 0x0)
fstat(r0, &(0x7f00000041c0))

11:20:53 executing program 1:
r0 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self\x00', 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
dup3(r1, r0, 0x0)
sendmsg$nl_crypto(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0}}, 0x0)

11:20:53 executing program 3:
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs\x00', 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
dup3(r1, r0, 0x0)
sendmsg$NL80211_CMD_REGISTER_FRAME(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)

11:20:53 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_COALESCE(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={0x0}}, 0x8800)

[ 1801.492814][ T2838] blk_update_request: I/O error, dev loop0, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 0 prio class 0
11:20:53 executing program 5:
r0 = open$dir(&(0x7f0000000040)='.\x00', 0x0, 0x0)
openat(r0, &(0x7f0000000000)='./file0\x00', 0x1a041, 0x9ab3d9fc3737582b)

11:20:53 executing program 0:
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040)='/dev/hwrng\x00', 0x0, 0x0)
close(r0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$BATADV_CMD_SET_HARDIF(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}}, 0x0)

11:20:53 executing program 4:
r0 = signalfd(0xffffffffffffffff, &(0x7f0000000000), 0x8)
close(r0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DCCPDIAG_GETSOCK(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)

11:20:53 executing program 2:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0x5450, 0x0)

11:20:54 executing program 3:
creat(&(0x7f0000000080)='./file0\x00', 0x0)
mount(&(0x7f0000000040)=@loop={'/dev/loop', 0x0}, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2adc07, 0x0)
r0 = creat(&(0x7f0000000400)='./file0\x00', 0x0)
write$P9_RREADDIR(r0, &(0x7f0000000440)={0xb}, 0xb)

11:20:54 executing program 1:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c)
write$P9_RREAD(r0, &(0x7f0000000000)={0xb}, 0xb)

11:20:54 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0)
dup2(r0, r1)
getsockopt$IP6T_SO_GET_REVISION_MATCH(r1, 0x29, 0x38, 0x0, &(0x7f0000000000))

11:20:54 executing program 4:
r0 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0)
ioctl$IOC_PR_CLEAR(r0, 0x5450, 0x0)

11:20:54 executing program 0:
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000007740)='/dev/vcsa\x00', 0x0, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
dup3(r1, r0, 0x0)
ioctl$sock_inet6_udp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000040))

11:20:54 executing program 2:
r0 = socket$inet(0x2, 0x3, 0xfffffffc)
sendto$inet(r0, &(0x7f0000000000), 0x0, 0x48800, &(0x7f0000000100)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x3d}}, 0x10)

11:20:54 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000380)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
dup3(r0, r1, 0x0)
sendmsg$NL80211_CMD_DEL_STATION(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)

11:20:54 executing program 1:
r0 = openat$apparmor_thread_current(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/attr/current\x00', 0x2, 0x0)
close(r0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg(r0, &(0x7f0000000880)={0x0, 0x0, 0x0}, 0x0)

11:20:55 executing program 4:
r0 = open(&(0x7f00000005c0)='.\x00', 0x0, 0x0)
close(r0)
r1 = socket$packet(0x11, 0x2, 0x300)
r2 = socket(0xa, 0x2, 0x0)
setsockopt$inet_int(r2, 0x0, 0x8, &(0x7f0000000040)=0xd3, 0x4)
getsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f0000000140)={<r3=>0x0, @rand_addr, @initdev}, &(0x7f0000000180)=0xc)
bind$packet(r1, &(0x7f0000000000)={0x11, 0x0, r3}, 0x14)
sendmsg$IPVS_CMD_ZERO(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={0x0}}, 0x0)

11:20:55 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$BATADV_CMD_GET_GATEWAYS(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0}}, 0x42000)

11:20:55 executing program 0:
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
dup2(r1, r0)
sendmsg$DEVLINK_CMD_SB_OCC_MAX_CLEAR(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0)

11:20:55 executing program 2:
r0 = openat$apparmor_thread_exec(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/attr/exec\x00', 0x2, 0x0)
ioctl$BTRFS_IOC_QGROUP_CREATE(r0, 0x5450, 0x0)

11:20:55 executing program 1:
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS3\x00', 0x2, 0x0)
write$P9_RXATTRCREATE(r0, 0x0, 0x0)

11:20:55 executing program 3:
r0 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x1, 0x0)
close(r0)
socketpair(0x1, 0x5, 0x0, &(0x7f0000000340))
sendmsg$NL80211_CMD_STOP_SCHED_SCAN(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)

11:20:55 executing program 4:
r0 = socket(0x11, 0xa, 0x0)
r1 = signalfd(0xffffffffffffffff, &(0x7f0000000ac0), 0x8)
dup3(r1, r0, 0x0)
signalfd(r0, &(0x7f0000000000), 0x8)

11:20:56 executing program 5:
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000340)='/dev/hwrng\x00', 0x0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$CHAR_RAW_FLSBUF(r2, 0x5450, 0x0)

11:20:56 executing program 0:
r0 = eventfd2(0x0, 0x0)
close(r0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$TIPC_CMD_SET_NETID(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={0x0}}, 0x0)

11:20:56 executing program 2:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
dup2(r1, r0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={0x0}}, 0x0)

11:20:56 executing program 3:
creat(&(0x7f0000000000)='./file0\x00', 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4)
r0 = openat$cgroup(0xffffffffffffff9c, &(0x7f0000000000)='syz1\x00', 0x200002, 0x0)
splice(0xffffffffffffffff, 0x0, r0, 0x0, 0x0, 0x0)

11:20:56 executing program 1:
r0 = memfd_create(&(0x7f00000001c0)='\x84\x0e\x13s\xf1\xb5\x05\xe2qO\xb8\x893\x81`\xd2\x99\x96\x01\x00\x00\x00\x00\x00\x00\x00\x1c\a\xd0#\x05%\x18\x17Z\xa2gS\xc1\xe0\v\xcb\t\xe6\xe6*\xe9\xa3\xdc\x91', 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
dup2(r1, r0)
setsockopt$inet6_int(r0, 0x29, 0x42, &(0x7f0000000080), 0x4)

11:20:56 executing program 4:
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000880)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r0 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$sock_timeval(r0, 0x1, 0x15, &(0x7f0000000180)={0x77359400}, 0x10)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x3}, 0x1c)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r1=>0x0)
timer_settime(r1, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
r2 = dup(r0)
sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0)

11:20:56 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
pipe(&(0x7f00000015c0)={<r1=>0xffffffffffffffff})
dup3(r0, r1, 0x0)
getsockname$inet(r1, 0x0, &(0x7f0000000040))

11:20:56 executing program 5:
r0 = epoll_create(0x1ff)
close(r0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)

11:20:56 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_NODE_GET(r0, &(0x7f0000000c80)={0x0, 0x0, &(0x7f0000000c40)={0x0}, 0x1, 0x0, 0x9effffff}, 0x0)

11:20:57 executing program 3:
r0 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_QUOTA_CTL(r0, 0x5450, 0x0)

11:20:57 executing program 1:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = signalfd(0xffffffffffffffff, &(0x7f0000000000), 0x8)
dup2(r0, r1)
setsockopt$inet_tcp_TLS_RX(r1, 0x6, 0xc, &(0x7f0000000240)=@gcm_128={{}, "0ad2d5a440ccb7c6", "9e4a000003c09e0d00", "0500", "f1c865c1059ef778"}, 0x28)

11:20:57 executing program 4:
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x0, 0x0)
close(r0)
socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$inet6_mtu(r0, 0x29, 0x17, 0x0, &(0x7f0000000300))

11:20:57 executing program 2:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x0, 0x0)
dup2(r0, r1)
sendmsg$BATADV_CMD_SET_VLAN(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000300)={0x0}}, 0x0)

11:20:57 executing program 5:
r0 = gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x6, 0x0)
write(r1, &(0x7f0000c34fff), 0xffffff0b)
r2 = dup2(r1, r1)
write$P9_RRENAME(r2, 0x0, 0x0)
r3 = openat$full(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/full\x00', 0x3d, 0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
dup2(r3, r1)
tkill(r0, 0x1000000000016)

11:20:57 executing program 0:
r0 = gettid()
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
read(r1, &(0x7f0000000140)=""/11, 0xb)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000100))
r2 = fcntl$dupfd(r1, 0x0, r1)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x8000000000000012, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000340))
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r2, 0x89f1, 0x0)
timer_settime(0x0, 0x0, &(0x7f00000000c0)={{0x0, 0x8}, {0x0, 0x1c9c380}}, 0x0)
tkill(r0, 0x401004000000016)

11:20:57 executing program 3:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_ADD_COUNTERS(r0, 0x29, 0x4b, &(0x7f0000000080)={'raw\x00'}, 0x28)

11:20:57 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$TIPC_NL_MON_GET(r1, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={0x0}}, 0x4)

11:20:58 executing program 4:
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0)
r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000), 0x2, 0x0)
close(r0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$FOU_CMD_ADD(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)

11:20:58 executing program 2:
timer_create(0x0, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000440))
clock_gettime(0x0, &(0x7f0000000000)={0x0, <r0=>0x0})
timer_settime(0x0, 0x1, &(0x7f0000000140)={{0x0, 0x989680}, {0x0, r0+10000000}}, 0x0)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x13, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000200)=<r1=>0x0)
timer_settime(r1, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
r2 = memfd_create(&(0x7f0000000240)='\x97&\x89\\\xd0\xe7\xca\x16ZO\x948\xe1\x01\xe5`iq@Nse;\xa8Fpj\x0e\x04!\xd5\xc5YBz\x94\xaf$\x89\x00\x00\xc2G\x86Xe\xf1/V\x8cvS\xa6K&u\x9dX\xcc\r\x12\x11\x99\xe7\xce\xaeA\xb8-E\xa1\xf8\xe4~IS\xc1\x04\xf78\xf1\'\xdfv\x90\xbc\xd1\xda\x88\xf0\x1e\r\xd5\x03\xf3\xaf\xfd\xf4&a?\xcaG\n\xe5j%\xa5\xcc\xa6\x86\xb2\xdeY\x17yX\x01_\x7f\xf4tW.\x81\n\xf3\v\x8d\x12pa\x91\x9b\x8cxd\x06\xa7k\n\x86\xc3\xb6\x910\xf2L\xf0\xaf\xe1jd\xda\x1f\x8bVrd\xa4\xb34\xfcUj\x1ad:#\x96\xf9\xd7\x1c\xaf(\x04\xf1O\x99\xccm\xdc\xd7\x8e\xe0\xa3\x82\xec\x9b\xfb\xc9\x81\x9c\xdc\xb7\x0f\xdd\xd3\xd7\xbe\x89\x7f3\x1d\x1c@\x8eu\x85\xcew\x89\x95&3FX\xb1\xaf\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb8\xe4\x1c\x0eH V\x9ax\xb7 \xce\x06\v\xcd\xd1c\xd5B\xed\\\xb4x\xf5\'O\xd5\xf5A\x1b\x10\x02\xa3\xbd$b\xc7\x8b\xd9\xde\xb3\xb0n\xdd\xe8O\xfd\xc6\xd5\xaet\x8f\xc6\xeak\xbfh\x03.\xba\xe9\xbfm\xae\xc6%\r\x16\xb4~\xef\t\x13\x16\x7fI\xafG\xd8$>\v\xe6\xca\x18\xcf\x86\x87\x10\xd7\xc1\xdb[.\x9d\x91\x97z\\\x92\x9aH:\xce\xc3\xf7\aK\xc6!\xf0\x17\xe6DCy\x95(\x1c\xa5v\xf4\r\x80\xce\x1e\x9f\x9c~\x86\xc5\x8e\x87\xab\x86\x8e\x1c\x87\x9dR\x0e\xe5Hx\xfdE\xf8Y\x13$_\x82x\xf1f%!\xfb\xeb\xf0\x8b\xa8*\xcdHv\xd2\xaf1\x83\xb4\x95\xe5\\\xe2\xfe\x15\x99\xe1\f~\x1e\xaf|\xbe\xe1\xf3j\aO\x99\xd8\xab\x05\xaeeb\xec>\x88\x7f\xa3#\xc0\x98W[', 0x0)
fcntl$setlease(r2, 0x400, 0x1)
fcntl$setown(r2, 0x8, 0x0)
execveat(r2, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)
tgkill(0x0, 0x0, 0x0)

11:20:58 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_KEY_FLUSH(r0, &(0x7f0000001d40)={0x0, 0x0, &(0x7f0000001d00)={0x0}}, 0x4000804)

11:20:58 executing program 3:
r0 = socket(0x10, 0x2, 0x0)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000800)='/dev/hwrng\x00', 0x0, 0x0)
dup2(r0, r1)
sendmmsg(r1, 0x0, 0x0, 0x0)

11:20:58 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000440)='/dev/vcs\x00', 0x0, 0x0)
dup2(r0, r1)
getsockopt$IP_SET_OP_GET_FNAME(r1, 0x1, 0xe, 0x0, &(0x7f0000000080))

[ 1807.042439][ T1004] ERROR: Domain '<kernel> /sbin/init /usr/sbin/sshd /usr/sbin/sshd /bin/bash /root/syz-fuzzer /root/syz-executor.2 proc:/self/fd/3' not defined.
11:20:58 executing program 1:
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000500)='/dev/full\x00', 0x0, 0x0)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000640)='/dev/ttyS3\x00', 0x0, 0x0)
dup2(r1, r0)
ioctl$TIOCSBRK(r0, 0x5427)

11:20:59 executing program 4:
r0 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self\x00', 0x0, 0x0)
close(r0)
openat$vcs(0xffffffffffffff9c, &(0x7f0000000500)='/dev/vcs\x00', 0x20002, 0x0)
write$P9_RSETATTR(r0, 0x0, 0x0)

[ 1807.457505][ T1014] sock: process `syz-executor.0' is using obsolete getsockopt SO_BSDCOMPAT
11:20:59 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self\x00', 0x0, 0x0)
dup2(r0, r1)
sendmsg$TIPC_NL_LINK_SET(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)

11:20:59 executing program 2:
r0 = socket$inet6(0xa, 0x1, 0x0)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x3}, 0x1c)
r1 = dup(r0)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)

11:20:59 executing program 3:
r0 = eventfd2(0x0, 0x0)
close(r0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCGPKT(r0, 0x80045438, &(0x7f0000000000))

11:20:59 executing program 1:
r0 = openat$random(0xffffffffffffff9c, &(0x7f0000000340)='/dev/urandom\x00', 0x0, 0x0)
close(r0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000002300))
sendmsg$NLBL_CALIPSO_C_LIST(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)

11:20:59 executing program 0:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
write$P9_RATTACH(r0, 0x0, 0x0)

11:20:59 executing program 5:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
dup2(r1, r0)
sendmsg$NL80211_CMD_UPDATE_FT_IES(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000680)={0x0}}, 0x0)

11:20:59 executing program 4:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$EVIOCGRAB(r0, 0x40044590, 0x0)

11:21:00 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
recvmmsg(r0, &(0x7f0000007f40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)

11:21:00 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsa\x00', 0x0, 0x0)
r2 = dup2(r0, r1)
ioctl$TIOCGLCKTRMIOS(r2, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "305c5637574b9981f2165865fbbf6677d4b824"})

11:21:00 executing program 1:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x200000000001, 0x0)
bind$unix(r1, &(0x7f0000366000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000932000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc)
r2 = accept4$packet(r1, 0x0, 0x0, 0x0)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)

11:21:00 executing program 5:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
dup3(r1, r0, 0x0)
syz_open_pts(r0, 0x200000)

11:21:00 executing program 4:
r0 = eventfd2(0x0, 0x0)
close(r0)
r1 = socket$packet(0x11, 0x2, 0x300)
r2 = socket(0xa, 0x2, 0x0)
setsockopt$inet_int(r2, 0x0, 0x8, &(0x7f0000000040)=0xd3, 0x4)
setsockopt$sock_int(r1, 0x1, 0x2b, &(0x7f0000000100)=0x20, 0x4)
getsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f0000000140)={<r3=>0x0, @rand_addr, @initdev}, &(0x7f0000000180)=0xc)
bind$packet(r1, &(0x7f0000000000)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @local}, 0x14)
sendmsg$unix(r0, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)

11:21:00 executing program 2:
r0 = getuid()
ioprio_set$uid(0x1, r0, 0x0)

11:21:01 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20010001, &(0x7f0000000280)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
r1 = dup2(r0, r0)
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x1c9c380}}, 0x0)
sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x48}}, 0x0)
close(r0)
r2 = socket$packet(0x11, 0x2, 0x300)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$inet_int(r3, 0x0, 0x8, &(0x7f0000000040)=0xd3, 0x4)
setsockopt$sock_int(r2, 0x1, 0x2b, &(0x7f0000000100)=0x20, 0x4)
getsockopt$inet_pktinfo(r3, 0x0, 0x8, &(0x7f0000000140)={<r4=>0x0, @rand_addr, @initdev}, &(0x7f0000000180)=0xc)
bind$packet(r2, &(0x7f0000000000)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @local}, 0x14)
r5 = gettid()
tkill(r5, 0x1000000000016)

11:21:01 executing program 1:
r0 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0)
ioctl$TIOCGDEV(r0, 0x80045432, 0x0)

11:21:01 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = open(&(0x7f0000000180)='./file0\x00', 0x80041, 0x0)
dup2(r0, r1)
sendmsg$NLBL_CIPSOV4_C_LIST(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x8040)

11:21:01 executing program 4:
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x0, 0x0)
close(r0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_EXTERNAL_AUTH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)

11:21:01 executing program 5:
r0 = socket$nl_crypto(0x10, 0x3, 0x15)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
dup2(r1, r0)
getsockopt$inet_tcp_buf(r0, 0x6, 0x1a, 0x0, &(0x7f0000000080))

11:21:01 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockname(r0, &(0x7f0000001ac0)=@pppol2tpv3={0x18, 0x1, {0x0, <r1=>0xffffffffffffffff, {0x2, 0x0, @broadcast}}}, &(0x7f0000001b40)=0x80)
ioctl$BTRFS_IOC_START_SYNC(r1, 0x5450, 0x0)

11:21:01 executing program 3:
pipe2$9p(&(0x7f0000000040)={<r0=>0xffffffffffffffff}, 0x80800)
read$char_usb(r0, &(0x7f0000000080)=""/69, 0x45)

11:21:01 executing program 1:
r0 = socket(0x10, 0x2, 0x0)
sendmsg$NLBL_MGMT_C_ADD(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)

11:21:01 executing program 0:
sched_setscheduler(0x0, 0x5, &(0x7f0000000040))
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='sysfs\x00', 0x0, 0x0)
sendmsg$NL80211_CMD_SET_PMK(0xffffffffffffffff, 0x0, 0x0)

11:21:02 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$FOU_CMD_DEL(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x2050)

11:21:02 executing program 5:
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
ioctl$F2FS_IOC_FLUSH_DEVICE(r0, 0x8901, &(0x7f0000000000))

11:21:02 executing program 2:
r0 = socket$inet(0x2, 0x3, 0x1)
setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x485, 0x0, 0x0)

11:21:02 executing program 3:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x6c86b43435f2e9, &(0x7f00000000c0)={0xa, 0x4e66, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, 0x0, 0x1622a3d0, 0x640008d0, 0x0, 0x0)

11:21:02 executing program 1:
r0 = socket$inet(0x2, 0x1, 0x0)
r1 = dup(r0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e23, @broadcast}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000002c0)=0x200, 0x4)
connect$inet(r0, &(0x7f0000000780)={0x2, 0x4e23}, 0x10)
write$P9_RCLUNK(r1, &(0x7f0000000140)={0x7}, 0x7)
recvfrom(r0, 0x0, 0x0, 0x12101, 0x0, 0xdd)
sendmsg$TIPC_NL_BEARER_SET(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)

11:21:02 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = dup3(r0, r1, 0x0)
ioctl$EVIOCSKEYCODE_V2(r2, 0x40284504, 0x0)

11:21:02 executing program 5:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x20941, 0x0)
ioctl(r0, 0x2, &(0x7f0000000100))

11:21:03 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
pipe2(&(0x7f0000000940)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
dup2(r0, r1)
sendmsg$TIPC_CMD_SET_LINK_WINDOW(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)

11:21:03 executing program 4:
r0 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self\x00', 0x0, 0x0)
fcntl$notify(r0, 0x402, 0x20)

11:21:03 executing program 1:
r0 = openat$apparmor_task_exec(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/attr/exec\x00', 0x2, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
dup3(r1, r0, 0x0)
getsockname$netlink(r0, 0x0, &(0x7f0000000080))

11:21:03 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
pipe2$9p(&(0x7f000000d380)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
dup2(r0, r1)
getsockopt$inet6_udp_int(r1, 0x11, 0x65, 0x0, &(0x7f0000012040))

11:21:04 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f00000003c0)=0x80400100000001, 0x4)
connect$inet6(r0, &(0x7f0000000000), 0x1c)
r1 = dup2(r0, r0)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x131f64)
setsockopt$sock_cred(r1, 0x1, 0x28, &(0x7f0000000bc0), 0xc)

11:21:04 executing program 2:
r0 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$sock_timeval(r0, 0x1, 0x15, &(0x7f0000000180)={0x0, 0xea60}, 0x10)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x3}, 0x1c)
r1 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000700)='/proc/self\x00', 0x0, 0x0)
r2 = fcntl$dupfd(r0, 0x0, r1)
write$cgroup_devices(r2, 0x0, 0x0)

11:21:04 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20010001, &(0x7f0000000280)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
r1 = gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000044000))
r2 = dup2(r0, r0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
sendmsg$TEAM_CMD_NOOP(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
close(r0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r3, &(0x7f0000000500), 0x1c)
connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0x4}, 0x1c)
tkill(r1, 0x1000000000016)

11:21:04 executing program 1:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x838}, 0x1c)
write$9p(r0, 0x0, 0x0)

11:21:04 executing program 4:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/unix\x00')
getsockopt$inet_buf(r0, 0x0, 0x0, 0x0, 0x0)

11:21:04 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20010001, &(0x7f0000000280)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
r1 = dup2(r0, r0)
sendmsg$DEVLINK_CMD_SB_POOL_SET(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
close(r0)
r2 = gettid()
tkill(r2, 0x1000000000016)

11:21:04 executing program 4:
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x0, 0x0)
close(r0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_DEST(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)

11:21:04 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x40001)

11:21:04 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x0, 0x0)
dup3(r0, r1, 0x0)
fgetxattr(r1, &(0x7f0000000280)=@known='system.sockprotoname\x00', 0x0, 0x0)

11:21:05 executing program 2:
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4)
sched_setscheduler(0x0, 0x5, &(0x7f0000000040))
openat$cgroup_type(0xffffffffffffffff, &(0x7f0000000000)='cgroup.type\x00', 0x2, 0x0)
openat$apparmor_thread_exec(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/attr/exec\x00', 0x2, 0x0)
sendmsg$NL80211_CMD_SET_WIPHY_NETNS(0xffffffffffffffff, 0x0, 0x0)

11:21:05 executing program 5:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = fcntl$dupfd(r0, 0x0, r1)
fadvise64(r2, 0x0, 0x0, 0x0)

11:21:05 executing program 0:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_mreq(r0, 0x29, 0x14, &(0x7f00000003c0)={@mcast2}, 0x14)
setsockopt$inet6_mreq(r0, 0x29, 0x14, &(0x7f0000000780)={@mcast2}, 0x14)

11:21:05 executing program 4:
pipe2(&(0x7f0000000000)={<r0=>0xffffffffffffffff}, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0)
dup3(r1, r0, 0x0)
ioctl$KDMKTONE(r0, 0x4b30, 0x0)

11:21:05 executing program 1:
r0 = socket$inet6(0x10, 0x3, 0x0)
sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={0x0}}, 0x0)

11:21:05 executing program 3:
r0 = inotify_init()
close(r0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
ioctl$sock_TIOCOUTQ(r0, 0x5411, &(0x7f0000000080))

11:21:05 executing program 5:
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/autofs\x00', 0x0, 0x0)
fcntl$F_SET_RW_HINT(r0, 0x3, 0x0)

11:21:06 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0}}, 0x400c0)

11:21:06 executing program 4:
r0 = socket$inet(0x2, 0x803, 0x1)
close(r0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSWINSZ(r0, 0x5414, &(0x7f0000000080))

11:21:06 executing program 1:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockname(r0, &(0x7f0000000200)=@pppol2tpv3={0x18, 0x1, {0x0, <r1=>0xffffffffffffffff, {0x2, 0x0, @initdev}}}, &(0x7f0000000080)=0x80)
close(r1)
socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$FS_IOC_ENABLE_VERITY(r1, 0x8903, &(0x7f0000000040)={0x1, 0x0, 0x1000, 0x9, 0x0, 0x0, 0x0, 0x0})

11:21:06 executing program 3:
r0 = inotify_init()
r1 = socket$nl_route(0x10, 0x3, 0x0)
dup2(r1, r0)
sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)

11:21:06 executing program 5:
connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendmsg$NLBL_UNLABEL_C_STATICADD(r0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0)

11:21:07 executing program 2:
r0 = eventfd(0x0)
close(r0)
socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_IP_XFRM_POLICY(r0, 0x6, 0x11, 0x0, &(0x7f0000000000))

11:21:07 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = dup2(r0, r0)
ioctl$FS_IOC_GETFSLABEL(r1, 0x5411, &(0x7f0000000400))

11:21:07 executing program 4:
r0 = syz_open_dev$evdev(&(0x7f00000001c0)='/dev/input/event#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_SIOCSIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(r1, 0x8983, 0x0)

11:21:07 executing program 1:
r0 = socket(0x1, 0x5, 0x0)
sendmsg$NBD_CMD_RECONFIGURE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0)

11:21:07 executing program 3:
timer_create(0x0, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000440))
clock_gettime(0x0, &(0x7f0000000000)={0x0, <r0=>0x0})
timer_settime(0x0, 0x1, &(0x7f0000000140)={{0x0, 0x989680}, {0x0, r0+10000000}}, 0x0)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x13, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000200)=<r1=>0x0)
timer_settime(r1, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = memfd_create(&(0x7f0000000340)='\x97&\x89\\\xd0\xe7\xca\x16ZO\x948\xe1\x01\xe5`iq@Nse;\xa8Fpj\x0e\x04!\xd5\xc5YBz\x94\xaf$\x89\x00\x00\xc2G\x86Xe\xf1/V\x8cvS\xa6K&u\x9dX\xcc\r\x12\x11\x99\xe7\xce\xaeA\xb8-E\xa1\xf8\xe4~IS\xc1\x04\xf78\xf1\'\xdfv\x90\xbc\xd1\xda\x88\xf0\x1e\r\xd5\x03\xf3\xaf\xfd\xf4&a?\xcaG\n\xe5j%\xa5\xcc\xa6\x86\xb2\xdeY\x17yX\x01_\x7f\xf4tW.\x81\n\xf3\v\x8d\x12pa\x91\x9b\x8cxd\x06\xa7k\n\x86\xc3\xb6\x910\xf2L\xf0\xaf\xe1jd\xda\x1f\x8bVrd\xa4\xb34\xfcUj\x1ad:#\x96\xf9\xd7\x1c]ImZlU\".\x18)\xcf\x1am\xdc\xd7\x8e\xe0\xa3\x82\xec\x9b\xfb\xc9\x81\x9c\xdc\xb7\x0f\xdd\xd3\xd7\xbe\x89\x7f3\x1d\x1c@\x8eu\x85\xcew\x89\x95&3FX\xb1\xaf\xa6\x96\xa2\x13\x1f-\b\xcf\x00'/246, 0x0)
fcntl$setlease(r2, 0x400, 0x1)
fcntl$setown(r2, 0x8, 0x0)
execveat(r2, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)
unlink(0x0)

11:21:07 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = syz_open_dev$loop(&(0x7f0000000300)='/dev/loop#\x00', 0x0, 0x0)
dup3(r0, r1, 0x0)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r1, &(0x7f0000001980)={0x0, 0x0, &(0x7f0000001940)={0x0}}, 0x0)

[ 1815.923848][ T1203] ERROR: Domain '<kernel> /sbin/init /usr/sbin/sshd /usr/sbin/sshd /bin/bash /root/syz-fuzzer /root/syz-executor.3 proc:/self/fd/3' not defined.
11:21:07 executing program 1:
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000340)='/dev/hwrng\x00', 0x0, 0x0)
ioctl$CHAR_RAW_ROTATIONAL(r0, 0x5450, 0x0)

11:21:07 executing program 0:
pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
write$P9_RWRITE(r0, &(0x7f0000000200)={0xb}, 0xb)
write$P9_RLERROR(r0, 0x0, 0x9)

11:21:08 executing program 5:
pipe(&(0x7f0000000780)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = dup(r0)
write$P9_RAUTH(r1, 0x0, 0x0)

11:21:08 executing program 4:
sendmsg$DEVLINK_CMD_GET(0xffffffffffffffff, 0x0, 0x3405238cb0fffffb)

11:21:08 executing program 3:
sched_setscheduler(0x0, 0x5, &(0x7f00000000c0))
execve(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
connect$netlink(0xffffffffffffffff, 0x0, 0x0)

11:21:08 executing program 2:
r0 = syz_open_dev$vcsn(&(0x7f0000000200)='/dev/vcs#\x00', 0x0, 0x8841)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x2})

11:21:08 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000380)=0x404100000001, 0xfe3f)
connect$inet6(r0, &(0x7f0000000080), 0x1c)
r1 = dup2(r0, r0)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132441)
connect$unix(r1, &(0x7f00000000c0)=@abs, 0x6e)
write$cgroup_freezer_state(r1, 0x0, 0x0)

11:21:08 executing program 0:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$IP6T_SO_SET_ADD_COUNTERS(r0, 0x29, 0x4a, &(0x7f00000001c0)={'security\x00', 0x2, [{}, {}]}, 0x48)

11:21:08 executing program 4:
r0 = syz_open_dev$vcsn(&(0x7f0000000140)='/dev/vcs#\x00', 0x4, 0x0)
close(r0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$GIO_FONT(r0, 0x4b60, 0x0)

11:21:08 executing program 5:
r0 = socket$unix(0x1, 0x2, 0x0)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0)
dup2(r0, r1)
getsockname$inet6(r1, 0x0, &(0x7f0000006bc0))

11:21:09 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, 0x0, 0x0)

11:21:09 executing program 0:
r0 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0)
r1 = creat(&(0x7f0000000740)='./file0\x00', 0x0)
r2 = dup3(r0, r1, 0x0)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r2, 0x8982, &(0x7f0000000100)={0x8, 'veth0_to_bond\x00', {'veth1_to_team\x00'}, 0x20})
ioctl$BLKFLSBUF(r1, 0x127a, &(0x7f0000000080))
fcntl$setstatus(r1, 0x4, 0x2000)
syz_open_dev$evdev(&(0x7f00000000c0)='/dev/input/event#\x00', 0x0, 0x0)
syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0)
creat(&(0x7f0000000740)='./file0\x00', 0x0)
r3 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0)
r4 = creat(&(0x7f0000000740)='./file0\x00', 0x0)
dup3(r3, r4, 0x0)
ioctl$CHAR_RAW_GETSIZE64(r4, 0x80081272, &(0x7f0000000140))

11:21:09 executing program 4:
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$TEAM_CMD_OPTIONS_SET(r0, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={0x0}}, 0x0)

11:21:09 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = dup2(r0, r0)
r2 = dup2(r1, r0)
ioctl$CHAR_RAW_ROSET(r2, 0x125d, 0x0)

11:21:09 executing program 2:
pipe2(&(0x7f0000000040)={<r0=>0xffffffffffffffff}, 0x0)
pipe2(&(0x7f0000000000)={<r1=>0xffffffffffffffff}, 0x0)
r2 = dup2(r0, r1)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
r4 = ioctl$TIOCGPTPEER(r3, 0x5414, 0x20000004)
ioctl$LOOP_CHANGE_FD(r2, 0x5450, r4)

11:21:09 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
dup2(r0, r1)
getsockopt$netlink(r1, 0x10e, 0x4, &(0x7f00000002c0)=""/169, &(0x7f0000000380)=0xa9)

11:21:10 executing program 3:
r0 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000700)='/dev/urandom\x00', 0x0, 0x0)
close(r0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$BATADV_CMD_TP_METER(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}}, 0x0)

11:21:10 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
dup2(r0, r1)
sendmsg$TIPC_CMD_SHOW_PORTS(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)

11:21:10 executing program 0:
r0 = socket(0x11, 0x3, 0x0)
sendmsg$ETHTOOL_MSG_EEE_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0)

11:21:10 executing program 1:
r0 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$sock_timeval(r0, 0x1, 0x15, &(0x7f0000000180)={0x77359400}, 0x10)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x3}, 0x1c)
r1 = dup(r0)
timer_create(0x0, &(0x7f0000000280)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r2 = gettid()
sendmsg$IPVS_CMD_GET_CONFIG(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)
tkill(r2, 0x1004000000013)

11:21:10 executing program 5:
r0 = syz_open_dev$evdev(&(0x7f0000000140)='/dev/input/event#\x00', 0x0, 0x141086)
write$binfmt_elf64(r0, &(0x7f00000000c0)=ANY=[], 0xffffffe8)
r1 = fcntl$dupfd(r0, 0x0, r0)
write$apparmor_current(r1, &(0x7f0000000080)=@hat={'permhat ', 0x0, 0x5e, ['md5sum\x00']}, 0x22)
mmap(&(0x7f0000000000/0xb3c000)=nil, 0xb3c000, 0x0, 0x32, 0xffffffffffffffff, 0x0)

11:21:10 executing program 2:
socketpair(0x1, 0x5, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$DEVLINK_CMD_TRAP_POLICER_GET(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000580)=ANY=[], 0xf4}}, 0x0)
dup2(r1, r0)
sendmsg$NLBL_MGMT_C_ADDDEF(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0}}, 0x0)

11:21:11 executing program 4:
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'lo\x00', <r1=>0x0})
sendto$packet(r0, 0x0, 0x0, 0x4000, &(0x7f0000000040)={0x11, 0x9, r1, 0x1, 0x1}, 0x14)

11:21:11 executing program 0:
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyS3\x00', 0x0, 0x0)
ioctl$TIOCL_UNBLANKSCREEN(r0, 0x540c, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop-control\x00', 0x0, 0x0)
openat$vcs(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vcs\x00', 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
chmod(&(0x7f0000000000)='./file0\x00', 0x0)

11:21:11 executing program 5:
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcsa\x00', 0x0, 0x0)
close(r0)
r1 = socket$unix(0x1, 0x200000000001, 0x0)
bind$unix(r1, &(0x7f0000366000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc)
listen(r1, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
accept4$packet(r0, 0x0, 0x0, 0x0)
connect$unix(r2, &(0x7f0000932000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc)

11:21:11 executing program 1:
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcsa\x00', 0x0, 0x0)
ioctl$FS_IOC_GETFSMAP(r0, 0x5451, 0x0)

11:21:11 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
recvmsg(r0, &(0x7f0000002380)={&(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, <r1=>0xffffffffffffffff}}, 0x80, 0x0}, 0x0)
sendmsg$TIPC_CMD_GET_MAX_PORTS(r0, &(0x7f0000002600)={0x0, 0x0, &(0x7f00000025c0)={&(0x7f0000002580)={0x1c, 0x0, 0x70d}, 0x1c}}, 0x0)
ioctl$BTRFS_IOC_QUOTA_RESCAN(r1, 0x5451, 0x0)

11:21:11 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/rt_cache\x00')
ftruncate(r0, 0x0)

11:21:12 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20010001, &(0x7f0000000280)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
r1 = dup2(r0, r0)
sendmsg$TIPC_NL_LINK_RESET_STATS(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x41011)
r2 = gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
close(r1)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
tkill(r2, 0x1000000000016)

11:21:12 executing program 0:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
sendto$inet(r0, 0x0, 0x0, 0x4008000, &(0x7f0000000780)={0x2, 0x4e23, @loopback}, 0x10)
sendmsg$IPVS_CMD_GET_INFO(r0, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f0000000a80)={0x0}}, 0x0)

11:21:12 executing program 1:
r0 = openat$apparmor_thread_exec(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/attr/exec\x00', 0x2, 0x0)
writev(r0, 0x0, 0x0)

11:21:12 executing program 5:
mkdir(&(0x7f0000000000)='./file0\x00', 0x1b1)

11:21:12 executing program 3:
r0 = socket$nl_crypto(0x10, 0x3, 0x15)
ioctl$LOOP_GET_STATUS(r0, 0x5452, &(0x7f0000000180))

11:21:12 executing program 2:
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000440), 0x8, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
dup2(r1, r0)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)

11:21:12 executing program 4:
r0 = socket$inet(0x2, 0x80003, 0x10001)
r1 = eventfd(0x0)
dup3(r0, r1, 0x0)
ioctl$sock_TIOCOUTQ(r1, 0x5411, &(0x7f0000000040))

11:21:12 executing program 0:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @broadcast}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x20000000, &(0x7f0000000080)={0x2, 0x4e20}, 0x10)
sendmsg$inet6(r0, &(0x7f0000001440)={0x0, 0x0, 0x0}, 0x0)

11:21:13 executing program 1:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
sendto$inet(r0, 0x0, 0x321, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
sendto$inet(r0, &(0x7f0000001040)="c3", 0x1, 0x0, 0x0, 0x0)
timer_create(0x0, &(0x7f0000cd0000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000003c0))
timer_settime(0x0, 0x0, &(0x7f0000000380)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r1 = gettid()
recvmmsg(r0, &(0x7f0000000ac0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/199, 0xc7}], 0x1}}], 0x40003a0, 0x0, 0x0)
tkill(r1, 0x14)
r2 = fcntl$dupfd(r0, 0x0, r0)
write$cgroup_netprio_ifpriomap(r2, 0x0, 0x0)

11:21:13 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000180)='/dev/net/tun\x00', 0x0, 0x0)
dup3(r0, r1, 0x0)
sendmsg$NBD_CMD_RECONFIGURE(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0}}, 0x0)

11:21:13 executing program 3:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000002c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
r2 = accept4$inet(r1, 0x0, 0x0, 0x0)
connect$unix(r0, &(0x7f00000001c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
sendmsg$DEVLINK_CMD_PORT_SET(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)

[ 1821.640610][ T1318] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based  firewall rule not found. Use the iptables CT target to attach helpers instead.
11:21:13 executing program 2:
r0 = eventfd2(0x0, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
dup2(r1, r0)
setsockopt$inet6_opts(r0, 0x29, 0x3b, 0x0, 0x0)

11:21:13 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20010001, &(0x7f0000000280)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
r1 = dup2(r0, r0)
r2 = gettid()
sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)
timer_create(0x0, &(0x7f0000000440)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
socket$packet(0x11, 0x0, 0x300)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
tkill(r2, 0x1000000000016)

11:21:13 executing program 0:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCSPGRP(r0, 0x5451, 0x0)

11:21:13 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r1 = dup(r0)
sendto$inet(r1, 0x0, 0x1e, 0x4040810, 0x0, 0x0)

11:21:13 executing program 5:
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = dup3(r1, r0, 0x0)
ioctl$FS_IOC_MEASURE_VERITY(r2, 0x8903, &(0x7f0000000000))

11:21:14 executing program 3:
r0 = socket$inet6(0xa, 0x1, 0x0)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x3}, 0x1c)
sendmsg$NL80211_CMD_GET_POWER_SAVE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x4885)
r1 = dup(r0)
sendmsg$NL80211_CMD_DEL_PMK(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
connect$unix(r1, &(0x7f0000000000)=@file={0x0, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

11:21:14 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
recvmsg(r0, &(0x7f0000002380)={&(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, <r1=>0xffffffffffffffff}}, 0x80, 0x0}, 0x0)
sendmsg$TIPC_CMD_GET_MAX_PORTS(r0, &(0x7f0000002600)={0x0, 0x0, &(0x7f00000025c0)={&(0x7f0000002580)={0x1c, 0x0, 0x70d}, 0x1c}}, 0x0)
ioctl$FS_IOC_SETFSLABEL(r1, 0x5450, 0x0)

11:21:14 executing program 1:
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x0, 0x0)
ioctl$BLKSECDISCARD(r0, 0x5451, 0x0)

11:21:14 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = dup2(r0, r0)
ioctl$sock_inet6_SIOCADDRT(r1, 0x890c, &(0x7f0000000240)={@mcast2, @ipv4={[0x0, 0x0, 0x8], [], @loopback}, @initdev={0xfe, 0x88, [0xe], 0x0, 0x0}})

11:21:14 executing program 5:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4)
dup3(r1, r0, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb)
setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000788ffc)=0x100000001, 0xfdf6)
write$binfmt_elf64(r0, &(0x7f0000000380)=ANY=[], 0x6c1)
r2 = dup(r0)
sendmsg$TIPC_NL_KEY_SET(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)={0x14}, 0x14}}, 0x0)

11:21:15 executing program 3:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cgroup.controllers\x00', 0x275a, 0x0)
futimesat(r0, 0x0, 0x0)

11:21:15 executing program 2:
r0 = signalfd(0xffffffffffffffff, &(0x7f0000000000), 0x8)
close(r0)
socket(0x10, 0x2, 0x0)
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)

11:21:15 executing program 4:
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000dc0)='/dev/ttyS3\x00', 0x0, 0x0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r0, 0x5411, &(0x7f0000001180))

11:21:15 executing program 1:
sched_setscheduler(0x0, 0x5, &(0x7f0000000000))
openat$apparmor_thread_current(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/attr/current\x00', 0x2, 0x0)
openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self\x00', 0xa4000, 0x0)

11:21:15 executing program 0:
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
write$binfmt_elf32(r0, 0x0, 0x0)

11:21:15 executing program 5:
r0 = eventfd2(0x0, 0x0)
close(r0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$TIPC_NL_LINK_RESET_STATS(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)

11:21:15 executing program 3:
pipe2(&(0x7f0000000000)={<r0=>0xffffffffffffffff}, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r0)
ioctl$TIOCL_SELLOADLUT(r2, 0x540a, 0x0)

11:21:15 executing program 2:
timer_create(0x0, &(0x7f0000000340)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000044000))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
r1 = gettid()
r2 = dup(r0)
sendmsg$SOCK_DESTROY(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
recvmmsg(r0, &(0x7f0000003c00)=[{{0x0, 0x0, &(0x7f0000003b00), 0x0, &(0x7f0000000180)=""/106, 0x6a}}], 0x400000000000116, 0x0, &(0x7f0000000040)={0x77359400})
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
tkill(r1, 0x1004000000013)

11:21:15 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0x349, 0x20010080, &(0x7f0000000280)={0xa, 0x0, 0x0, @remote, 0x3}, 0x1c)
r1 = dup2(r0, r0)
timer_create(0x0, &(0x7f0000000440)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
sendmsg$TIPC_CMD_GET_BEARER_NAMES(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)
close(r0)
socket$unix(0x1, 0x5, 0x0)
r2 = gettid()
tkill(r2, 0x1000000000016)

11:21:16 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x0, 0x0)
r1 = ioctl$TIOCGPTPEER(r0, 0x540d, 0x0)
writev(r1, 0x0, 0x0)

11:21:16 executing program 5:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
getsockname(r1, &(0x7f00000001c0)=@pppol2tpv3in6={0x18, 0x1, {0x0, <r2=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @remote}}}, &(0x7f0000000080)=0xa)
dup3(r0, r2, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r3, 0x541b, &(0x7f0000000000)={<r4=>0xffffffffffffffff})
sendmsg$NLBL_CALIPSO_C_ADD(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}}, 0x0)

11:21:16 executing program 3:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
close(r0)
socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_udp_encap(r0, 0x11, 0x64, &(0x7f0000000000), 0x4)

11:21:16 executing program 4:
r0 = open(&(0x7f0000000080)='./file0\x00', 0x113460, 0x0)
ioctl$EVIOCGABS3F(r0, 0x5450, 0x0)

11:21:16 executing program 0:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x40, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
dup3(r1, r0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGPRL(r0, 0x5452, &(0x7f0000000080)={'ip6gre0\x00', 0x0})

11:21:16 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r0, &(0x7f0000000100)={&(0x7f0000000040)={0xa}, 0x2000004c, &(0x7f00000000c0)={0x0}}, 0x200003e8)

11:21:17 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_TRAP_SET(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={0x0}}, 0x48000)

11:21:17 executing program 3:
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000380)='sysfs\x00', 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0, 0x0)
fremovexattr(r0, &(0x7f0000000300)=@random={'btrfs.', ')\\trusted\x00'})

11:21:17 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={0x0}}, 0x0)

11:21:17 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop-control\x00', 0x0, 0x0)
r3 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, r3)

11:21:17 executing program 2:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
dup3(r1, r0, 0x0)
sendmsg$DEVLINK_CMD_SB_OCC_SNAPSHOT(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000340)=ANY=[], 0xb0}}, 0x0)

11:21:17 executing program 5:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$BATADV_CMD_GET_HARDIF(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)

11:21:18 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)={0x0, 0x0, 0x0, 0x0, 0x0, "1a0600e2ffff0aca7effff0000e1ffbffff300"})
r1 = syz_open_pts(r0, 0x0)
dup3(r1, r0, 0x0)
sched_setscheduler(0x0, 0x5, &(0x7f0000000180))
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
ioctl$KDFONTOP_GET(r0, 0x4b72, 0x0)

11:21:18 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000780)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r1, &(0x7f0000000100), 0x1b5, 0x20000004, &(0x7f000031e000)={0xa, 0x4e22}, 0x1c)
r2 = accept4$packet(r0, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_ENABLE(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)

11:21:18 executing program 4:
r0 = open$dir(&(0x7f0000000000)='./file0\x00', 0xd0b41, 0x0)
sync_file_range(r0, 0x0, 0x0, 0x0)

11:21:18 executing program 2:
r0 = syz_open_dev$loop(&(0x7f0000000500)='/dev/loop#\x00', 0x0, 0x0)
ioctl$IOC_PR_CLEAR(r0, 0x1261, 0x0)

11:21:18 executing program 5:
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
dup3(r1, r0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/igmp6\x00')
dup3(r0, r2, 0x0)
sendmsg$SOCK_DIAG_BY_FAMILY(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)

11:21:18 executing program 1:
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$NET_DM_CMD_START(r0, &(0x7f0000000100)={&(0x7f0000000040), 0xc, &(0x7f00000000c0)={0x0}}, 0x0)

[ 1826.907961][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
11:21:19 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
pipe2$9p(&(0x7f0000000000)={<r1=>0xffffffffffffffff}, 0x0)
dup2(r0, r1)
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)

11:21:19 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
getpeername(r0, &(0x7f00000084c0)=@pppol2tpv3in6={0x18, 0x1, {0x0, <r1=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast2}}}, &(0x7f0000008540)=0x80)
close(r1)
socket(0x100000000011, 0x2, 0x0)
setsockopt$packet_drop_memb(r1, 0x107, 0x2, &(0x7f0000000000)={0x0, 0x1, 0x6, @broadcast}, 0x10)

11:21:19 executing program 2:
sched_setscheduler(0x0, 0x5, &(0x7f0000000040))
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff})
r2 = dup3(r1, r0, 0x0)
execve(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
ioctl$TCSETX(r2, 0x5433, 0x0)

11:21:19 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20010001, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
r1 = gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
r2 = dup2(r0, r0)
setsockopt$sock_timeval(r0, 0x1, 0x15, &(0x7f0000000000)={0x77359400}, 0x10)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0)
tkill(r1, 0x1000000000016)

11:21:19 executing program 1:
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000000000))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0xfffffffffffffc47, 0x20010001, &(0x7f0000000280)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_GET_SCAN(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)
close(r1)
socket$packet(0x11, 0x2, 0x300)
timer_settime(0x0, 0x0, &(0x7f0000000880)={{0x0, 0x1c9c380}, {0x0, 0x989680}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)

11:21:19 executing program 4:
r0 = syz_open_dev$evdev(&(0x7f0000000080)='/dev/input/event#\x00', 0x0, 0x2)
write$evdev(r0, &(0x7f0000057fa0)=[{}, {}], 0xfffffd24)
ioctl$EVIOCREVOKE(r0, 0x40044591, 0x0)
ioctl$BTRFS_IOC_SUBVOL_CREATE(r0, 0x5000940e, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)

11:21:20 executing program 0:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000000440)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r2 = accept4$inet(r1, 0x0, 0x0, 0x0)
ioctl$TIOCOUTQ(r2, 0x5411, &(0x7f0000000000))

11:21:20 executing program 3:
r0 = openat$random(0xffffffffffffff9c, &(0x7f0000000340)='/dev/urandom\x00', 0x0, 0x0)
ioctl$sock_netdev_private(r0, 0x2, &(0x7f0000000880))

11:21:20 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0xfffffffffffffc47, 0x20010001, &(0x7f0000000280)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
r1 = dup2(r0, r0)
r2 = gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x1c9c380}}, 0x0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
socket$unix(0x1, 0x0, 0x0)
sendmsg$NL80211_CMD_GET_STATION(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)={0x14}, 0x14}}, 0x0)
tkill(r2, 0x1000000000016)

11:21:20 executing program 1:
r0 = socket(0xa, 0x80801, 0x0)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @remote, 0x3}, 0x1c)
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000480)={&(0x7f0000000100), 0xc, &(0x7f0000000440)={0x0}}, 0x200a4044)

11:21:20 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0)
ioctl$EXT4_IOC_PRECACHE_EXTENTS(r0, 0x6612)

11:21:21 executing program 3:
r0 = openat$zero(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/zero\x00', 0x0, 0x0)
ioctl$RNDGETENTCNT(r0, 0x80045200, 0x0)

11:21:21 executing program 1:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
socketpair(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
dup2(r0, r1)
setsockopt$inet6_group_source_req(r1, 0x29, 0x3, &(0x7f0000000140)={0x0, {{0xa, 0x0, 0x0, @empty}}, {{0xa, 0x0, 0x0, @mcast2}}}, 0x108)

11:21:21 executing program 5:
pipe2(&(0x7f0000000040)={<r0=>0xffffffffffffffff}, 0x0)
ioctl$IOC_PR_PREEMPT(r0, 0x5450, 0x0)

11:21:22 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000480)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000080), 0x1c)
r1 = dup2(r0, r0)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x129f0817)
connect$unix(r1, &(0x7f00000000c0)=@file={0x0, './file0\x00'}, 0x6e)
write$P9_RLCREATE(r1, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)

11:21:22 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20010001, &(0x7f0000000280)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
r1 = dup2(r0, r0)
r2 = gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
sendmsg$TIPC_CMD_SHOW_STATS(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
close(r0)
socket$netlink(0x10, 0x3, 0x2)
tkill(r2, 0x1000000000016)

11:21:22 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x1)

11:21:22 executing program 3:
r0 = timerfd_create(0x0, 0x0)
close(r0)
socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$inet6_udp_encap(r0, 0x11, 0x64, &(0x7f0000000280), 0x4)

11:21:22 executing program 1:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcs\x00', 0x0, 0x0)
ioctl$CHAR_RAW_ROSET(r0, 0x5450, 0x0)

11:21:22 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x0, 0x0)
dup3(r0, r1, 0x0)
ioctl$TIOCGWINSZ(r1, 0x5413, &(0x7f00000000c0))

11:21:22 executing program 3:
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000740)='/dev/ttyS3\x00', 0x0, 0x0)
r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000780)='/dev/zero\x00', 0x0, 0x0)
dup2(r0, r1)
ioctl$KDSKBENT(r1, 0x5425, 0x0)

11:21:22 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='gid_map\x00')
write$P9_RUNLINKAT(r0, 0x0, 0x0)

11:21:22 executing program 1:
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000340)='/dev/full\x00', 0x0, 0x0)
sendmsg$TIPC_CMD_GET_BEARER_NAMES(r0, 0x0, 0x0)

11:21:22 executing program 4:
r0 = creat(&(0x7f00000000c0)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = dup2(r1, r0)
setsockopt$sock_void(r2, 0x29, 0x1b, 0x0, 0x300)

11:21:23 executing program 1:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4)
connect$inet(r0, &(0x7f0000000300)={0x2, 0x4e22, @remote}, 0x10)
getpeername(r0, &(0x7f0000000040)=@pppol2tp={0x18, 0x1, {0x0, <r1=>0xffffffffffffffff, {0x2, 0x0, @loopback}}}, &(0x7f0000000100)=0xd)
dup3(r0, r1, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4)
connect$inet(r2, &(0x7f0000000300)={0x2, 0x4e22, @remote}, 0x10)
getpeername(r2, &(0x7f0000000040)=@pppol2tp={0x18, 0x1, {0x0, <r3=>0xffffffffffffffff, {0x2, 0x0, @loopback}}}, &(0x7f0000000100)=0xd)
setsockopt$inet_MCAST_MSFILTER(r3, 0x0, 0xc, 0x0, 0x0)

11:21:23 executing program 0:
r0 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f00000018c0)='/proc/thread-self\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
dup3(r1, r0, 0x0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={0x0}}, 0x0)

11:21:24 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$IP_SET_OP_VERSION(r0, 0x1, 0x1a, 0x0, &(0x7f0000000180))

11:21:24 executing program 3:
r0 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$sock_timeval(r0, 0x1, 0x15, &(0x7f0000000180)={0x0, 0xea60}, 0x10)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x3}, 0x1c)
r1 = dup(r0)
sendmsg$NLBL_MGMT_C_REMOVE(r1, &(0x7f0000000200)={&(0x7f00000000c0), 0xc, &(0x7f00000001c0)={0x0}}, 0x20008000)

11:21:24 executing program 5:
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
dup2(r1, r0)
sendmsg$NL80211_CMD_STOP_NAN(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0)

11:21:24 executing program 1:
r0 = socket(0x2, 0x3, 0x80)
sendmsg$DEVLINK_CMD_PORT_SPLIT(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0)

11:21:24 executing program 2:
prctl$PR_SET_MM_MAP_SIZE(0x25, 0xf, 0x0)

11:21:24 executing program 0:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000001040)='/dev/vcs\x00', 0x0, 0x0)
dup3(r0, r1, 0x0)
sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(r1, &(0x7f0000000a00)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x0)

11:21:24 executing program 4:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000)='/dev/net/tun\x00', 0x0, 0x0)
close(r0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_SB_OCC_SNAPSHOT(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0)

11:21:25 executing program 1:
r0 = timerfd_create(0x0, 0x0)
close(r0)
r1 = socket$packet(0x11, 0x2, 0x300)
r2 = socket(0x2, 0x1, 0x0)
setsockopt$inet_int(r2, 0x0, 0x8, &(0x7f0000000040)=0xd3, 0x4)
getsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f00000000c0)={<r3=>0x0, @rand_addr, @initdev}, &(0x7f0000000080)=0xc)
bind$packet(r1, &(0x7f0000000000)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @dev}, 0x14)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)

11:21:25 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CALIPSO_C_LISTALL(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={0x0, 0xfffffeab}}, 0x0)

11:21:25 executing program 5:
r0 = socket$inet6(0xa, 0x1, 0x0)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x3}, 0x1c)
r1 = dup(r0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r1, &(0x7f0000000280)={&(0x7f00000000c0), 0xc, &(0x7f0000000240)={0x0}}, 0x20000080)
sendmsg$NL80211_CMD_GET_SURVEY(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x20000800)

11:21:25 executing program 3:
pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
close(r0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$NLBL_MGMT_C_ADD(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)

11:21:25 executing program 2:
capset(&(0x7f00000001c0)={0x20080522}, &(0x7f0000000200))
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_FLUSH_PMKSA(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000140)={0x0}}, 0x0)

11:21:25 executing program 4:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$EVIOCGKEYCODE_V2(r0, 0x5421, &(0x7f0000000240)=""/177)

11:21:25 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000780)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x20000004, &(0x7f000031e000)={0xa, 0x4e22}, 0x1c)
sendmsg$ETHTOOL_MSG_RINGS_SET(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={0x0}}, 0x0)

11:21:25 executing program 0:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000180)='/dev/autofs\x00', 0x0, 0x0)
dup2(r0, r1)
setsockopt$IP_VS_SO_SET_STOPDAEMON(r1, 0x6800000000000000, 0xc, 0x0, 0x0)

11:21:25 executing program 3:
r0 = socket(0x2, 0x1, 0x0)
setsockopt$inet_opts(r0, 0x0, 0xd, &(0x7f0000000000), 0x0)

11:21:26 executing program 2:
r0 = open(&(0x7f00000005c0)='.\x00', 0x0, 0x0)
close(r0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$NL80211_CMD_DEL_TX_TS(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)

[ 1834.339321][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
11:21:26 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
close(r0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSBRKP(r0, 0x5425, 0x0)

11:21:26 executing program 1:
r0 = socket$inet(0x2, 0x2000000001, 0x0)
bind$inet(r0, &(0x7f0000000100)={0x2, 0x4e23, @broadcast}, 0x10)
connect$inet(r0, &(0x7f0000000780)={0x2, 0x4e23}, 0x10)
sendmsg$NLBL_MGMT_C_LISTDEF(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0}}, 0x0)

11:21:26 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$BLKBSZSET(r0, 0x5452, &(0x7f00000001c0))

11:21:26 executing program 5:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = creat(&(0x7f0000000080)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x0)
dup2(r0, r1)
setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(r1, 0x10e, 0x3, 0x0, 0x0)

11:21:26 executing program 3:
r0 = creat(&(0x7f0000000580)='./file0\x00', 0x0)
close(r0)
syz_genetlink_get_family_id$batadv(0x0)
sendmsg$TIPC_CMD_GET_REMOTE_MNG(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)

11:21:26 executing program 2:
r0 = socket(0x10, 0x2, 0x0)
sendmsg$TIPC_CMD_SET_NODE_ADDR(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)

11:21:27 executing program 4:
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/autofs\x00', 0x0, 0x0)
ioctl$TIOCGPTPEER(r0, 0x5441, 0x0)

11:21:27 executing program 0:
r0 = socket$inet6(0x10, 0x3, 0x0)
sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)

11:21:27 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
dup3(r0, r1, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0xa, &(0x7f00000006c0), 0x4)

11:21:27 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x41, 0x0)
write(r0, 0x0, 0x0)

11:21:27 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
close(r0)
socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$inet_mreqn(r0, 0x0, 0x20, 0x0, &(0x7f0000000c00))

11:21:27 executing program 2:
pipe2$9p(&(0x7f0000000340)={<r0=>0xffffffffffffffff}, 0x0)
close(r0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000380)=ANY=[], 0xf0}}, 0x0)

11:21:27 executing program 4:
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r0, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r0, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
connect$unix(r1, &(0x7f0000000280)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r2 = accept4$inet(r0, 0x0, 0x0, 0x0)
sendmsg$NET_DM_CMD_START(r2, &(0x7f00000000c0)={0x0, 0x12, &(0x7f0000000100)={0x0}}, 0x0)

11:21:28 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$packet(0x11, 0x3, 0x300)
dup3(r0, r1, 0x0)
write$P9_RWALK(r1, 0x0, 0x0)

11:21:28 executing program 3:
socketpair$unix(0x1, 0x200000005, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmmsg(r1, &(0x7f0000003b40)=[{{&(0x7f0000002d80)=@pppol2tpv3in6={0x18, 0x1, {0x0, <r2=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x80, 0x0}}], 0x1, 0x0, 0x0)
write$P9_RUNLINKAT(r0, 0x0, 0x0)
dup3(r0, r2, 0x0)
sendmsg$TIPC_NL_MON_PEER_GET(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0)

11:21:28 executing program 5:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
sendto$inet(r0, 0x0, 0x321, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
sendto$inet(r0, &(0x7f0000001040)="c3", 0x1, 0x0, 0x0, 0x0)
timer_create(0x0, &(0x7f0000cd0000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000040))
timer_settime(0x0, 0x0, &(0x7f0000000380)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r1 = gettid()
recvmmsg(r0, &(0x7f0000000ac0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/199, 0xc7}], 0x1}}], 0x40003a0, 0x0, 0x0)
tkill(r1, 0x14)
r2 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$DEVLINK_CMD_TRAP_SET(r2, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000003c0)={0x0}}, 0x0)

11:21:28 executing program 1:
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x240, 0x0)
truncate(&(0x7f0000000000)='./file0\x00', 0x0)

11:21:28 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$NL80211_CMD_RELOAD_REGDB(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0}}, 0x0)

11:21:28 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$BATADV_CMD_TP_METER(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x4000000)

11:21:28 executing program 0:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x40000000001, 0x0)
bind$unix(r1, &(0x7f0000366000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000932000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc)
r2 = fcntl$dupfd(r1, 0x0, r0)
r3 = accept4$packet(r2, 0x0, 0x0, 0x0)
sendmmsg$sock(r3, 0x0, 0x0, 0x0)

11:21:28 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
socketpair(0x1, 0x5, 0x0, &(0x7f0000000340)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
dup2(r1, r0)
sendmsg$TEAM_CMD_NOOP(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0)

11:21:28 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x851)

11:21:28 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
dup3(r0, r1, 0x0)
sendmsg$NET_DM_CMD_STOP(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0)

[ 1837.267648][ T1643] not chained 530000 origins
[ 1837.272300][ T1643] CPU: 0 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1837.272870][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1837.272870][ T1643] Call Trace:
[ 1837.293309][ T1643]  dump_stack+0x21c/0x280
[ 1837.293309][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1837.303085][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1837.303085][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1837.303085][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1837.303085][ T1643]  ? _copy_from_user+0x201/0x310
[ 1837.303085][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1837.303085][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1837.303085][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1837.303085][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1837.303085][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1837.303085][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1837.303085][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1837.303085][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1837.303085][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1837.303085][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1837.303085][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1837.303085][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1837.303085][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1837.303085][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1837.303085][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1837.303085][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1837.303085][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1837.303085][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1837.303085][ T1643] RIP: 0023:0xf7fa4549
[ 1837.303085][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1837.303085][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1837.303085][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1837.303085][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1837.303085][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1837.303085][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1837.303085][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1837.303085][ T1643] Uninit was stored to memory at:
[ 1837.303085][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1837.303085][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1837.303085][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1837.303085][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1837.303085][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1837.303085][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1837.303085][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1837.303085][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1837.303085][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1837.303085][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1837.303085][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1837.303085][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1837.303085][ T1643] 
[ 1837.303085][ T1643] Uninit was stored to memory at:
[ 1837.303085][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1837.303085][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1837.303085][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1837.303085][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1837.303085][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1837.303085][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1837.303085][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1837.303085][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1837.303085][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1837.303085][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1837.303085][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1837.303085][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1837.303085][ T1643] 
[ 1837.303085][ T1643] Uninit was stored to memory at:
[ 1837.303085][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1837.303085][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1837.303085][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1837.303085][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1837.303085][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1837.303085][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1837.303085][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1837.303085][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1837.303085][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1837.303085][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1837.303085][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1837.303085][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1837.303085][ T1643] 
[ 1837.303085][ T1643] Uninit was stored to memory at:
[ 1837.303085][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1837.303085][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1837.303085][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1837.303085][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1837.303085][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1837.303085][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1837.303085][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1837.303085][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1837.303085][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1837.303085][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1837.303085][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1837.303085][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1837.303085][ T1643] 
[ 1837.303085][ T1643] Uninit was stored to memory at:
[ 1837.303085][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1837.303085][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1837.303085][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1837.303085][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1837.303085][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1837.303085][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1837.303085][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1837.303085][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1837.303085][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1837.303085][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1837.303085][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1837.303085][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1837.303085][ T1643] 
[ 1837.303085][ T1643] Uninit was stored to memory at:
[ 1837.303085][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1837.303085][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1837.303085][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1837.303085][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1837.303085][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1837.303085][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1837.303085][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1837.303085][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1837.303085][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1837.303085][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1837.303085][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1837.303085][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1837.303085][ T1643] 
[ 1837.303085][ T1643] Uninit was stored to memory at:
[ 1837.303085][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1837.303085][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1837.303085][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1837.303085][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1837.303085][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1837.303085][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1837.303085][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1837.303085][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1837.303085][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1837.303085][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1837.303085][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1837.303085][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1837.303085][ T1643] 
[ 1837.303085][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1837.303085][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1837.303085][ T1643]  do_recvmmsg+0xc2/0x22e0
11:21:29 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0x541b, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
dup2(r0, r1)
getsockopt$inet6_tcp_buf(r1, 0x6, 0xd, 0x0, &(0x7f0000000140))

11:21:30 executing program 0:
r0 = socket(0xa, 0x3, 0x8000045)
sendmsg$NL80211_CMD_TDLS_OPER(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)

11:21:30 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
dup3(r0, r1, 0x0)
sendmsg$NL80211_CMD_RADAR_DETECT(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x20000000)

11:21:30 executing program 3:
sched_setscheduler(0x0, 0x5, &(0x7f0000000040))
r0 = socket(0x10, 0x3, 0x0)
r1 = dup(r0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000180)='nl80211\x00')
ioctl$TCSETSW2(r1, 0x402c542c, 0x0)

[ 1839.165627][ T1643] not chained 540000 origins
[ 1839.170240][ T1643] CPU: 1 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1839.172950][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1839.172950][ T1643] Call Trace:
[ 1839.172950][ T1643]  dump_stack+0x21c/0x280
[ 1839.172950][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1839.172950][ T1643]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1839.172950][ T1643]  ? rb_erase+0x26a/0x27e0
[ 1839.172950][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1839.172950][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1839.172950][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1839.172950][ T1643]  ? _copy_from_user+0x201/0x310
[ 1839.172950][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1839.172950][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1839.172950][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1839.172950][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1839.172950][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1839.172950][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1839.172950][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1839.172950][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1839.172950][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1839.172950][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1839.172950][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1839.172950][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1839.172950][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1839.172950][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1839.172950][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1839.172950][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1839.172950][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1839.172950][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1839.172950][ T1643] RIP: 0023:0xf7fa4549
[ 1839.172950][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1839.172950][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1839.172950][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1839.172950][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1839.172950][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1839.172950][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1839.172950][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1839.172950][ T1643] Uninit was stored to memory at:
[ 1839.172950][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1839.172950][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1839.172950][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1839.172950][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1839.172950][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1839.172950][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1839.172950][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1839.172950][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1839.172950][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1839.172950][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1839.172950][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1839.172950][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1839.172950][ T1643] 
[ 1839.172950][ T1643] Uninit was stored to memory at:
[ 1839.172950][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1839.172950][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1839.172950][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1839.172950][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1839.172950][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1839.172950][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1839.172950][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1839.172950][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1839.172950][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1839.172950][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1839.172950][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1839.172950][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1839.172950][ T1643] 
[ 1839.172950][ T1643] Uninit was stored to memory at:
[ 1839.172950][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1839.172950][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1839.172950][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1839.172950][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1839.172950][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1839.172950][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1839.172950][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1839.172950][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1839.172950][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1839.172950][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1839.172950][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1839.172950][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1839.172950][ T1643] 
[ 1839.172950][ T1643] Uninit was stored to memory at:
[ 1839.172950][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1839.172950][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1839.172950][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1839.172950][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1839.172950][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1839.172950][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1839.655898][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1839.655898][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1839.655898][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1839.655898][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1839.655898][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1839.655898][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1839.655898][ T1643] 
[ 1839.655898][ T1643] Uninit was stored to memory at:
[ 1839.655898][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1839.655898][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1839.655898][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1839.655898][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1839.655898][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1839.655898][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1839.655898][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1839.655898][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1839.655898][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1839.655898][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1839.655898][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1839.655898][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1839.655898][ T1643] 
[ 1839.655898][ T1643] Uninit was stored to memory at:
[ 1839.655898][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1839.655898][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1839.655898][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1839.655898][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1839.655898][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1839.655898][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1839.655898][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1839.655898][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1839.655898][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1839.655898][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1839.655898][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1839.655898][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1839.655898][ T1643] 
[ 1839.655898][ T1643] Uninit was stored to memory at:
[ 1839.655898][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1839.655898][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1839.655898][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1839.655898][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1839.655898][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1839.655898][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1839.655898][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1839.655898][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1839.655898][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1839.655898][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1839.655898][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1839.655898][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1839.655898][ T1643] 
[ 1839.655898][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1839.655898][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1839.655898][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1840.164084][ T1643] not chained 550000 origins
[ 1840.168704][ T1643] CPU: 1 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1840.173147][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1840.173147][ T1643] Call Trace:
[ 1840.173147][ T1643]  dump_stack+0x21c/0x280
[ 1840.173147][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1840.199730][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1840.199730][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1840.199730][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1840.199730][ T1643]  ? _copy_from_user+0x201/0x310
[ 1840.199730][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1840.199730][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1840.199730][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1840.199730][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1840.199730][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1840.199730][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1840.199730][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1840.199730][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1840.199730][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1840.199730][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1840.199730][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1840.199730][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1840.199730][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1840.199730][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1840.199730][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1840.199730][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1840.199730][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1840.199730][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1840.199730][ T1643] RIP: 0023:0xf7fa4549
[ 1840.199730][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1840.199730][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1840.199730][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1840.199730][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1840.199730][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1840.199730][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1840.199730][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1840.199730][ T1643] Uninit was stored to memory at:
[ 1840.199730][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1840.199730][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1840.199730][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1840.199730][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1840.199730][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1840.199730][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1840.199730][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1840.199730][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1840.199730][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1840.199730][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1840.199730][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1840.199730][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1840.199730][ T1643] 
[ 1840.199730][ T1643] Uninit was stored to memory at:
[ 1840.199730][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1840.199730][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1840.199730][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1840.199730][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1840.199730][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1840.199730][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1840.199730][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1840.199730][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1840.199730][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1840.199730][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1840.199730][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1840.199730][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1840.199730][ T1643] 
[ 1840.199730][ T1643] Uninit was stored to memory at:
[ 1840.199730][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1840.199730][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1840.199730][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1840.199730][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1840.199730][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1840.199730][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1840.199730][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1840.199730][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1840.199730][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1840.199730][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1840.199730][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1840.199730][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1840.199730][ T1643] 
[ 1840.199730][ T1643] Uninit was stored to memory at:
[ 1840.199730][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1840.199730][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1840.199730][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1840.199730][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1840.199730][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1840.199730][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1840.199730][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1840.199730][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1840.199730][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1840.199730][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1840.199730][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1840.199730][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1840.199730][ T1643] 
[ 1840.199730][ T1643] Uninit was stored to memory at:
[ 1840.199730][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1840.199730][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1840.199730][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1840.199730][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1840.199730][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1840.199730][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1840.199730][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1840.199730][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1840.199730][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1840.199730][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1840.199730][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1840.199730][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1840.199730][ T1643] 
[ 1840.199730][ T1643] Uninit was stored to memory at:
[ 1840.199730][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1840.199730][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1840.199730][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1840.199730][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1840.199730][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1840.199730][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1840.199730][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1840.199730][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1840.199730][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1840.199730][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1840.199730][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1840.199730][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1840.199730][ T1643] 
[ 1840.199730][ T1643] Uninit was stored to memory at:
[ 1840.199730][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1840.199730][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1840.199730][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1840.199730][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1840.199730][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1840.199730][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1840.199730][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1840.199730][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1840.199730][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1840.199730][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1840.199730][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1840.199730][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1840.199730][ T1643] 
[ 1840.199730][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1840.199730][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1840.199730][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1841.102371][ T1643] not chained 560000 origins
[ 1841.102897][ T1643] CPU: 1 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1841.102897][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1841.102897][ T1643] Call Trace:
[ 1841.102897][ T1643]  dump_stack+0x21c/0x280
[ 1841.102897][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1841.102897][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1841.102897][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1841.102897][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1841.102897][ T1643]  ? _copy_from_user+0x201/0x310
[ 1841.102897][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1841.102897][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1841.102897][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1841.102897][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1841.102897][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1841.102897][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1841.186935][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1841.196946][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1841.196946][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1841.196946][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1841.196946][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1841.196946][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1841.196946][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1841.196946][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1841.196946][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1841.196946][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1841.196946][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1841.196946][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1841.196946][ T1643] RIP: 0023:0xf7fa4549
[ 1841.196946][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1841.196946][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1841.196946][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1841.196946][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1841.196946][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1841.196946][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1841.196946][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1841.196946][ T1643] Uninit was stored to memory at:
[ 1841.196946][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1841.196946][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1841.196946][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1841.196946][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1841.196946][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1841.196946][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1841.196946][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1841.196946][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1841.196946][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1841.196946][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1841.196946][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1841.196946][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1841.196946][ T1643] 
[ 1841.196946][ T1643] Uninit was stored to memory at:
[ 1841.196946][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1841.196946][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1841.196946][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1841.196946][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1841.196946][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1841.196946][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1841.196946][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1841.196946][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1841.196946][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1841.196946][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1841.196946][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1841.196946][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1841.196946][ T1643] 
[ 1841.196946][ T1643] Uninit was stored to memory at:
[ 1841.196946][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1841.196946][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1841.196946][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1841.196946][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1841.196946][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1841.196946][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1841.196946][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1841.196946][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1841.196946][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1841.196946][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1841.196946][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1841.196946][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1841.196946][ T1643] 
[ 1841.196946][ T1643] Uninit was stored to memory at:
[ 1841.196946][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1841.196946][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1841.196946][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1841.196946][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1841.196946][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1841.196946][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1841.196946][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1841.196946][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1841.196946][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1841.196946][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1841.196946][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1841.196946][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1841.196946][ T1643] 
[ 1841.196946][ T1643] Uninit was stored to memory at:
[ 1841.196946][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1841.196946][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1841.196946][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1841.196946][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1841.196946][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1841.196946][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1841.196946][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1841.196946][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1841.196946][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1841.196946][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1841.196946][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1841.196946][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1841.196946][ T1643] 
[ 1841.196946][ T1643] Uninit was stored to memory at:
[ 1841.196946][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1841.196946][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1841.196946][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1841.196946][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1841.196946][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1841.196946][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1841.196946][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1841.196946][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1841.196946][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1841.196946][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1841.196946][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1841.196946][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1841.196946][ T1643] 
[ 1841.196946][ T1643] Uninit was stored to memory at:
[ 1841.196946][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1841.196946][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1841.196946][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1841.196946][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1841.196946][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1841.196946][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1841.196946][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1841.196946][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1841.196946][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1841.196946][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1841.196946][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1841.196946][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1841.196946][ T1643] 
[ 1841.196946][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1841.196946][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1841.196946][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1842.710067][ T1643] not chained 570000 origins
[ 1842.712979][ T1643] CPU: 0 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1842.722764][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1842.733904][ T1643] Call Trace:
[ 1842.733904][ T1643]  dump_stack+0x21c/0x280
[ 1842.733904][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1842.733904][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1842.733904][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1842.733904][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1842.733904][ T1643]  ? _copy_from_user+0x201/0x310
[ 1842.733904][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1842.733904][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1842.733904][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1842.733904][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1842.733904][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1842.733904][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1842.733904][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1842.733904][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1842.733904][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1842.733904][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1842.733904][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1842.733904][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1842.733904][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1842.733904][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1842.733904][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1842.733904][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1842.733904][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1842.733904][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1842.733904][ T1643] RIP: 0023:0xf7fa4549
[ 1842.733904][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1842.733904][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1842.733904][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1842.733904][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1842.733904][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1842.733904][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1842.733904][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1842.733904][ T1643] Uninit was stored to memory at:
[ 1842.733904][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1842.733904][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1842.733904][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1842.733904][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1842.733904][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1842.733904][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1842.733904][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1842.973104][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1842.973104][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1842.973104][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1842.973104][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1842.973104][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1842.973104][ T1643] 
[ 1842.973104][ T1643] Uninit was stored to memory at:
[ 1842.973104][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1842.973104][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1842.973104][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1842.973104][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1842.973104][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1842.973104][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1843.036741][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1843.036741][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1843.053174][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1843.057864][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1843.057864][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1843.057864][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1843.057864][ T1643] 
[ 1843.057864][ T1643] Uninit was stored to memory at:
[ 1843.057864][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1843.057864][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1843.057864][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1843.057864][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1843.057864][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1843.057864][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1843.057864][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1843.057864][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1843.123117][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1843.123117][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1843.123117][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1843.123117][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1843.123117][ T1643] 
[ 1843.123117][ T1643] Uninit was stored to memory at:
[ 1843.123117][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1843.123117][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1843.123117][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1843.123117][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1843.123117][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1843.123117][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1843.123117][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1843.193037][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1843.193037][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1843.193037][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1843.193037][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1843.213062][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1843.213062][ T1643] 
[ 1843.213062][ T1643] Uninit was stored to memory at:
[ 1843.213062][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1843.213062][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1843.213062][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1843.213062][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1843.213062][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1843.213062][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1843.213062][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1843.213062][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1843.213062][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1843.213062][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1843.213062][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1843.213062][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1843.213062][ T1643] 
[ 1843.213062][ T1643] Uninit was stored to memory at:
[ 1843.213062][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1843.213062][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1843.213062][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1843.213062][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1843.213062][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1843.213062][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1843.213062][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1843.213062][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1843.213062][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1843.213062][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1843.213062][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1843.213062][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1843.213062][ T1643] 
[ 1843.213062][ T1643] Uninit was stored to memory at:
[ 1843.213062][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1843.213062][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1843.213062][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1843.213062][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1843.213062][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1843.213062][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1843.213062][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1843.213062][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1843.213062][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1843.213062][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1843.213062][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1843.213062][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1843.213062][ T1643] 
[ 1843.213062][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1843.213062][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1843.213062][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1843.720631][ T1643] not chained 580000 origins
[ 1843.722887][ T1643] CPU: 0 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1843.722887][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1843.722887][ T1643] Call Trace:
[ 1843.722887][ T1643]  dump_stack+0x21c/0x280
[ 1843.747347][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1843.747347][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1843.747347][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1843.747347][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1843.747347][ T1643]  ? _copy_from_user+0x201/0x310
[ 1843.747347][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1843.781841][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1843.781841][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1843.792976][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1843.792976][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1843.792976][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1843.792976][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1843.792976][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1843.792976][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1843.824498][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1843.824498][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1843.824498][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1843.824498][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1843.824498][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1843.824498][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1843.824498][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1843.824498][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1843.824498][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1843.824498][ T1643] RIP: 0023:0xf7fa4549
[ 1843.824498][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1843.824498][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1843.824498][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1843.824498][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1843.824498][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1843.824498][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1843.824498][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1843.824498][ T1643] Uninit was stored to memory at:
[ 1843.824498][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1843.824498][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1843.824498][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1843.824498][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1843.824498][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1843.824498][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1843.824498][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1843.824498][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1843.824498][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1843.824498][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1843.824498][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1843.824498][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1843.824498][ T1643] 
[ 1843.824498][ T1643] Uninit was stored to memory at:
[ 1843.824498][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1843.824498][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1843.824498][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1843.824498][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1843.824498][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1843.824498][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1843.824498][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1843.824498][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1843.824498][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1843.824498][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1843.824498][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1843.824498][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1843.824498][ T1643] 
[ 1843.824498][ T1643] Uninit was stored to memory at:
[ 1843.824498][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1843.824498][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1843.824498][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1843.824498][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1843.824498][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1843.824498][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1843.824498][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1843.824498][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1843.824498][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1843.824498][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1843.824498][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1843.824498][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1843.824498][ T1643] 
[ 1843.824498][ T1643] Uninit was stored to memory at:
[ 1843.824498][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1843.824498][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1843.824498][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1843.824498][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1843.824498][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1843.824498][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1843.824498][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1843.824498][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1843.824498][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1843.824498][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1843.824498][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1843.824498][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1843.824498][ T1643] 
[ 1843.824498][ T1643] Uninit was stored to memory at:
[ 1843.824498][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1843.824498][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1843.824498][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1843.824498][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1843.824498][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1843.824498][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1843.824498][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1843.824498][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1843.824498][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1843.824498][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1843.824498][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1843.824498][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1843.824498][ T1643] 
[ 1843.824498][ T1643] Uninit was stored to memory at:
[ 1843.824498][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1843.824498][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1843.824498][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1843.824498][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1843.824498][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1843.824498][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1843.824498][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1843.824498][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1843.824498][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1843.824498][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1843.824498][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1843.824498][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1843.824498][ T1643] 
[ 1843.824498][ T1643] Uninit was stored to memory at:
[ 1843.824498][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1843.824498][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1843.824498][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1843.824498][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1843.824498][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1843.824498][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1843.824498][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1843.824498][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1843.824498][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1843.824498][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1843.824498][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1843.824498][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1843.824498][ T1643] 
[ 1843.824498][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1843.824498][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1843.824498][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1844.743815][ T1643] not chained 590000 origins
[ 1844.748462][ T1643] CPU: 1 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1844.752901][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1844.752901][ T1643] Call Trace:
[ 1844.752901][ T1643]  dump_stack+0x21c/0x280
[ 1844.752901][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1844.752901][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1844.752901][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1844.752901][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1844.752901][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1844.752901][ T1643]  ? _copy_from_user+0x201/0x310
[ 1844.752901][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1844.752901][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1844.752901][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1844.752901][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1844.752901][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1844.752901][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1844.752901][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1844.752901][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1844.752901][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1844.752901][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1844.752901][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1844.752901][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1844.752901][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1844.752901][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1844.752901][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1844.752901][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1844.752901][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1844.752901][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1844.899736][ T1643] RIP: 0023:0xf7fa4549
[ 1844.899736][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1844.899736][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1844.899736][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1844.899736][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1844.899736][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1844.899736][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1844.899736][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1844.899736][ T1643] Uninit was stored to memory at:
[ 1844.899736][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1844.899736][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1844.899736][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1844.899736][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1844.899736][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1844.899736][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1844.899736][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1844.899736][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1844.899736][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1844.899736][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1844.899736][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1844.899736][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1844.899736][ T1643] 
[ 1844.899736][ T1643] Uninit was stored to memory at:
[ 1844.899736][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1844.899736][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1844.899736][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1844.899736][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1844.899736][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1844.899736][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1844.899736][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1844.899736][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1844.899736][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1844.899736][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1844.899736][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1844.899736][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1844.899736][ T1643] 
[ 1844.899736][ T1643] Uninit was stored to memory at:
[ 1844.899736][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1844.899736][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1844.899736][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1844.899736][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1844.899736][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1844.899736][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1844.899736][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1844.899736][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1844.899736][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1844.899736][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1844.899736][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1844.899736][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1844.899736][ T1643] 
[ 1844.899736][ T1643] Uninit was stored to memory at:
[ 1844.899736][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1844.899736][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1844.899736][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1844.899736][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1844.899736][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1844.899736][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1844.899736][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1844.899736][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1844.899736][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1844.899736][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1844.899736][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1844.899736][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1844.899736][ T1643] 
[ 1844.899736][ T1643] Uninit was stored to memory at:
[ 1844.899736][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1844.899736][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1844.899736][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1844.899736][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1844.899736][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1844.899736][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1844.899736][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1844.899736][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1844.899736][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1844.899736][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1844.899736][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1844.899736][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1844.899736][ T1643] 
[ 1844.899736][ T1643] Uninit was stored to memory at:
[ 1844.899736][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1844.899736][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1844.899736][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1844.899736][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1844.899736][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1844.899736][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1844.899736][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1844.899736][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1844.899736][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1844.899736][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1844.899736][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1844.899736][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1844.899736][ T1643] 
[ 1844.899736][ T1643] Uninit was stored to memory at:
[ 1844.899736][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1844.899736][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1844.899736][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1844.899736][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1844.899736][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1844.899736][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1844.899736][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1844.899736][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1844.899736][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1844.899736][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1844.899736][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1844.899736][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1844.899736][ T1643] 
[ 1844.899736][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1844.899736][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1844.899736][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1845.639716][ T1643] not chained 600000 origins
[ 1845.642902][ T1643] CPU: 1 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1845.642902][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1845.642902][ T1643] Call Trace:
[ 1845.642902][ T1643]  dump_stack+0x21c/0x280
[ 1845.642902][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1845.642902][ T1643]  ? do_user_addr_fault+0x1045/0x16d0
[ 1845.642902][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1845.642902][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1845.642902][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1845.642902][ T1643]  ? _copy_from_user+0x201/0x310
[ 1845.642902][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1845.642902][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1845.642902][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1845.642902][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1845.642902][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1845.642902][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1845.642902][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1845.642902][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1845.642902][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1845.642902][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1845.642902][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1845.642902][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1845.642902][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1845.642902][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1845.642902][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1845.642902][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1845.642902][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1845.642902][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1845.642902][ T1643] RIP: 0023:0xf7fa4549
[ 1845.642902][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1845.642902][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1845.642902][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1845.642902][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1845.642902][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1845.642902][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1845.642902][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1845.642902][ T1643] Uninit was stored to memory at:
[ 1845.642902][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1845.642902][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1845.642902][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1845.642902][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1845.642902][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1845.642902][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1845.642902][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1845.642902][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1845.642902][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1845.642902][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1845.642902][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1845.642902][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1845.642902][ T1643] 
[ 1845.642902][ T1643] Uninit was stored to memory at:
[ 1845.642902][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1845.642902][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1845.642902][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1845.642902][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1845.642902][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1845.642902][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1845.642902][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1845.642902][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1845.642902][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1845.642902][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1845.642902][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1845.642902][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1845.642902][ T1643] 
[ 1845.642902][ T1643] Uninit was stored to memory at:
[ 1845.642902][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1845.642902][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1845.642902][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1845.642902][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1845.642902][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1845.642902][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1845.642902][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1845.642902][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1845.642902][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1845.642902][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1845.642902][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1845.642902][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1845.642902][ T1643] 
[ 1845.642902][ T1643] Uninit was stored to memory at:
[ 1845.642902][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1845.642902][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1845.642902][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1845.642902][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1845.642902][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1845.642902][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1845.642902][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1845.642902][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1845.642902][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1845.642902][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1845.642902][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1845.642902][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1845.642902][ T1643] 
[ 1845.642902][ T1643] Uninit was stored to memory at:
[ 1845.642902][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1845.642902][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1845.642902][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1845.642902][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1845.642902][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1845.642902][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1845.642902][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1845.642902][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1845.642902][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1845.642902][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1845.642902][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1845.642902][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1845.642902][ T1643] 
[ 1845.642902][ T1643] Uninit was stored to memory at:
[ 1845.642902][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1845.642902][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1845.642902][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1845.642902][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1845.642902][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1845.642902][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1845.642902][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1845.642902][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1845.642902][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1845.642902][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1845.642902][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1845.642902][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1845.642902][ T1643] 
[ 1845.642902][ T1643] Uninit was stored to memory at:
[ 1845.642902][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1845.642902][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1845.642902][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1845.642902][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1845.642902][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1845.642902][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1845.642902][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1845.642902][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1845.642902][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1845.642902][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1845.642902][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1845.642902][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1845.642902][ T1643] 
[ 1845.642902][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1845.642902][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1845.642902][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1846.570947][ T1643] not chained 610000 origins
[ 1846.572910][ T1643] CPU: 1 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1846.572910][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1846.572910][ T1643] Call Trace:
[ 1846.572910][ T1643]  dump_stack+0x21c/0x280
[ 1846.572910][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1846.572910][ T1643]  ? do_user_addr_fault+0x1045/0x16d0
[ 1846.572910][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1846.572910][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1846.572910][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1846.572910][ T1643]  ? _copy_from_user+0x201/0x310
[ 1846.572910][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1846.572910][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1846.572910][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1846.572910][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1846.572910][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1846.572910][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1846.572910][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1846.572910][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1846.572910][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1846.572910][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1846.572910][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1846.572910][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1846.572910][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1846.572910][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1846.572910][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1846.572910][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1846.572910][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1846.572910][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1846.572910][ T1643] RIP: 0023:0xf7fa4549
[ 1846.572910][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1846.572910][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1846.572910][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1846.572910][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1846.572910][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1846.572910][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1846.572910][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1846.572910][ T1643] Uninit was stored to memory at:
[ 1846.572910][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1846.572910][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1846.572910][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1846.572910][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1846.572910][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1846.572910][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1846.572910][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1846.572910][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1846.572910][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1846.572910][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1846.572910][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1846.572910][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1846.572910][ T1643] 
[ 1846.572910][ T1643] Uninit was stored to memory at:
[ 1846.572910][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1846.572910][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1846.572910][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1846.572910][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1846.572910][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1846.572910][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1846.572910][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1846.572910][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1846.572910][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1846.572910][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1846.572910][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1846.572910][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1846.572910][ T1643] 
[ 1846.572910][ T1643] Uninit was stored to memory at:
[ 1846.572910][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1846.572910][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1846.572910][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1846.572910][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1846.572910][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1846.572910][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1846.572910][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1846.572910][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1846.572910][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1846.572910][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1846.572910][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1846.572910][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1846.572910][ T1643] 
[ 1846.572910][ T1643] Uninit was stored to memory at:
[ 1846.572910][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1846.572910][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1846.572910][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1846.572910][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1846.572910][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1846.572910][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1846.572910][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1846.572910][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1846.572910][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1846.572910][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1846.572910][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1846.572910][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1846.572910][ T1643] 
[ 1846.572910][ T1643] Uninit was stored to memory at:
[ 1846.572910][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1846.572910][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1846.572910][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1846.572910][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1846.572910][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1846.572910][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1846.572910][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1846.572910][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1846.572910][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1846.572910][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1846.572910][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1846.572910][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1846.572910][ T1643] 
[ 1846.572910][ T1643] Uninit was stored to memory at:
[ 1846.572910][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1846.572910][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1846.572910][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1846.572910][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1846.572910][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1846.572910][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1846.572910][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1846.572910][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1846.572910][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1846.572910][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1846.572910][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1846.572910][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1846.572910][ T1643] 
[ 1846.572910][ T1643] Uninit was stored to memory at:
[ 1846.572910][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1846.572910][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1846.572910][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1846.572910][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1846.572910][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1846.572910][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1846.572910][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1846.572910][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1846.572910][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1846.572910][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1846.572910][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1846.572910][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1846.572910][ T1643] 
[ 1846.572910][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1846.572910][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1846.572910][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1847.492007][ T1643] not chained 620000 origins
[ 1847.492899][ T1643] CPU: 1 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1847.492899][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1847.492899][ T1643] Call Trace:
[ 1847.492899][ T1643]  dump_stack+0x21c/0x280
[ 1847.492899][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1847.492899][ T1643]  ? do_user_addr_fault+0x1045/0x16d0
[ 1847.492899][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1847.536945][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1847.536945][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1847.536945][ T1643]  ? _copy_from_user+0x201/0x310
[ 1847.536945][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1847.536945][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1847.536945][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1847.536945][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1847.536945][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1847.536945][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1847.536945][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1847.536945][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1847.536945][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1847.536945][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1847.536945][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1847.536945][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1847.536945][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1847.536945][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1847.536945][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1847.536945][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1847.536945][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1847.536945][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1847.536945][ T1643] RIP: 0023:0xf7fa4549
[ 1847.536945][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1847.536945][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1847.536945][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1847.536945][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1847.536945][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1847.536945][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1847.536945][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1847.536945][ T1643] Uninit was stored to memory at:
[ 1847.536945][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1847.536945][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1847.536945][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1847.536945][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1847.536945][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1847.536945][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1847.536945][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1847.536945][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1847.536945][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1847.536945][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1847.536945][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1847.536945][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1847.536945][ T1643] 
[ 1847.536945][ T1643] Uninit was stored to memory at:
[ 1847.536945][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1847.536945][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1847.536945][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1847.536945][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1847.536945][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1847.536945][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1847.536945][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1847.536945][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1847.536945][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1847.536945][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1847.536945][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1847.536945][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1847.536945][ T1643] 
[ 1847.536945][ T1643] Uninit was stored to memory at:
[ 1847.536945][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1847.536945][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1847.536945][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1847.536945][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1847.536945][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1847.536945][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1847.536945][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1847.536945][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1847.536945][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1847.536945][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1847.536945][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1847.536945][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1847.536945][ T1643] 
[ 1847.536945][ T1643] Uninit was stored to memory at:
[ 1847.536945][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1847.536945][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1847.536945][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1847.536945][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1847.536945][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1847.536945][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1847.536945][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1847.536945][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1847.536945][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1847.536945][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1847.536945][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1847.536945][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1847.536945][ T1643] 
[ 1847.536945][ T1643] Uninit was stored to memory at:
[ 1847.536945][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1847.536945][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1847.536945][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1847.536945][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1847.536945][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1847.536945][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1847.536945][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1847.536945][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1847.536945][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1847.536945][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1847.536945][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1847.536945][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1847.536945][ T1643] 
[ 1847.536945][ T1643] Uninit was stored to memory at:
[ 1847.536945][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1847.536945][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1847.536945][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1847.536945][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1847.536945][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1847.536945][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1847.536945][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1847.536945][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1847.536945][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1847.536945][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1847.536945][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1847.536945][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1847.536945][ T1643] 
[ 1847.536945][ T1643] Uninit was stored to memory at:
[ 1847.536945][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1847.536945][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1847.536945][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1847.536945][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1847.536945][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1847.536945][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1847.536945][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1847.536945][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1847.536945][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1847.536945][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1847.536945][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1847.536945][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1847.536945][ T1643] 
[ 1847.536945][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1847.536945][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1847.536945][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1848.438586][ T1643] not chained 630000 origins
[ 1848.442899][ T1643] CPU: 1 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1848.442899][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1848.442899][ T1643] Call Trace:
[ 1848.442899][ T1643]  dump_stack+0x21c/0x280
[ 1848.442899][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1848.442899][ T1643]  ? do_user_addr_fault+0x1045/0x16d0
[ 1848.442899][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1848.442899][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1848.442899][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1848.442899][ T1643]  ? _copy_from_user+0x201/0x310
[ 1848.442899][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1848.442899][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1848.442899][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1848.442899][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1848.442899][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1848.442899][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1848.442899][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1848.442899][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1848.442899][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1848.442899][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1848.442899][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1848.442899][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1848.442899][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1848.442899][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1848.442899][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1848.442899][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1848.442899][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1848.442899][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1848.442899][ T1643] RIP: 0023:0xf7fa4549
[ 1848.442899][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1848.442899][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1848.442899][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1848.442899][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1848.442899][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1848.442899][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1848.442899][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1848.442899][ T1643] Uninit was stored to memory at:
[ 1848.442899][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1848.442899][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1848.442899][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1848.442899][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1848.442899][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1848.442899][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1848.442899][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1848.442899][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1848.442899][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1848.442899][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1848.442899][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1848.442899][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1848.442899][ T1643] 
[ 1848.442899][ T1643] Uninit was stored to memory at:
[ 1848.442899][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1848.442899][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1848.442899][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1848.442899][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1848.442899][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1848.442899][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1848.442899][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1848.442899][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1848.442899][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1848.442899][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1848.442899][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1848.442899][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1848.442899][ T1643] 
[ 1848.442899][ T1643] Uninit was stored to memory at:
[ 1848.442899][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1848.442899][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1848.442899][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1848.442899][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1848.442899][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1848.442899][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1848.442899][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1848.442899][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1848.442899][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1848.442899][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1848.442899][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1848.442899][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1848.442899][ T1643] 
[ 1848.442899][ T1643] Uninit was stored to memory at:
[ 1848.442899][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1848.442899][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1848.442899][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1848.442899][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1848.442899][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1848.442899][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1848.442899][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1848.442899][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1848.442899][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1848.442899][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1848.442899][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1848.442899][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1848.442899][ T1643] 
[ 1848.442899][ T1643] Uninit was stored to memory at:
[ 1848.442899][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1848.442899][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1848.442899][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1848.442899][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1848.442899][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1848.442899][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1848.442899][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1848.442899][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1848.442899][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1848.442899][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1848.442899][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1848.442899][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1848.442899][ T1643] 
[ 1848.442899][ T1643] Uninit was stored to memory at:
[ 1848.442899][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1848.442899][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1848.442899][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1848.442899][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1848.442899][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1848.442899][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1848.442899][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1848.442899][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1848.442899][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1848.442899][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1848.442899][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1848.442899][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1848.442899][ T1643] 
[ 1848.442899][ T1643] Uninit was stored to memory at:
[ 1848.442899][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1848.442899][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1848.442899][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1848.442899][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1848.442899][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1848.442899][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1848.442899][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1848.442899][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1848.442899][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1848.442899][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1848.442899][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1848.442899][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1848.442899][ T1643] 
[ 1848.442899][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1848.442899][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1848.442899][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1849.391429][ T1643] not chained 640000 origins
[ 1849.393539][ T1643] CPU: 1 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1849.393539][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1849.393539][ T1643] Call Trace:
[ 1849.393539][ T1643]  dump_stack+0x21c/0x280
[ 1849.393539][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1849.393539][ T1643]  ? do_user_addr_fault+0x1045/0x16d0
[ 1849.393539][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1849.393539][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1849.393539][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1849.393539][ T1643]  ? _copy_from_user+0x201/0x310
[ 1849.393539][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1849.393539][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1849.393539][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1849.393539][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1849.393539][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1849.393539][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1849.393539][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1849.393539][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1849.393539][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1849.393539][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1849.393539][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1849.393539][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1849.393539][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1849.393539][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1849.393539][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1849.393539][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1849.393539][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1849.393539][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1849.393539][ T1643] RIP: 0023:0xf7fa4549
[ 1849.393539][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1849.393539][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1849.393539][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1849.393539][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1849.393539][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1849.393539][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1849.393539][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1849.393539][ T1643] Uninit was stored to memory at:
[ 1849.393539][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1849.393539][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1849.393539][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1849.393539][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1849.393539][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1849.393539][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1849.393539][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1849.393539][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1849.393539][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1849.393539][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1849.393539][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1849.393539][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1849.393539][ T1643] 
[ 1849.393539][ T1643] Uninit was stored to memory at:
[ 1849.393539][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1849.393539][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1849.393539][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1849.393539][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1849.393539][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1849.393539][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1849.393539][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1849.393539][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1849.393539][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1849.393539][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1849.393539][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1849.393539][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1849.393539][ T1643] 
[ 1849.393539][ T1643] Uninit was stored to memory at:
[ 1849.393539][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1849.393539][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1849.393539][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1849.393539][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1849.393539][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1849.393539][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1849.393539][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1849.393539][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1849.393539][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1849.393539][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1849.393539][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1849.393539][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1849.393539][ T1643] 
[ 1849.393539][ T1643] Uninit was stored to memory at:
[ 1849.393539][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1849.393539][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1849.393539][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1849.393539][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1849.393539][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1849.393539][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1849.393539][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1849.393539][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1849.393539][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1849.393539][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1849.393539][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1849.393539][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1849.393539][ T1643] 
[ 1849.393539][ T1643] Uninit was stored to memory at:
[ 1849.393539][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1849.393539][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1849.393539][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1849.393539][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1849.393539][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1849.393539][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1849.393539][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1849.393539][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1849.393539][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1849.393539][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1849.393539][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1849.393539][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1849.393539][ T1643] 
[ 1849.393539][ T1643] Uninit was stored to memory at:
[ 1849.393539][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1849.393539][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1849.393539][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1849.393539][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1849.393539][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1849.393539][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1849.393539][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1849.393539][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1849.393539][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1849.393539][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1849.393539][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1849.393539][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1849.393539][ T1643] 
[ 1849.393539][ T1643] Uninit was stored to memory at:
[ 1849.393539][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1849.393539][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1849.393539][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1849.393539][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1849.393539][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1849.393539][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1849.393539][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1849.393539][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1849.393539][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1849.393539][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1849.393539][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1849.393539][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1849.393539][ T1643] 
[ 1849.393539][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1849.393539][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1849.393539][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1850.346512][ T1643] not chained 650000 origins
[ 1850.351133][ T1643] CPU: 1 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1850.352893][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1850.352893][ T1643] Call Trace:
[ 1850.352893][ T1643]  dump_stack+0x21c/0x280
[ 1850.352893][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1850.352893][ T1643]  ? do_user_addr_fault+0x1045/0x16d0
[ 1850.352893][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1850.352893][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1850.352893][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1850.403016][ T1643]  ? _copy_from_user+0x201/0x310
[ 1850.403016][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1850.403016][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1850.403016][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1850.403016][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1850.403016][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1850.403016][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1850.403016][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1850.403016][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1850.403016][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1850.403016][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1850.403016][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1850.403016][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1850.403016][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1850.403016][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1850.403016][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1850.403016][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1850.403016][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1850.403016][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1850.403016][ T1643] RIP: 0023:0xf7fa4549
[ 1850.403016][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1850.403016][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1850.403016][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1850.403016][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1850.403016][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1850.403016][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1850.403016][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1850.403016][ T1643] Uninit was stored to memory at:
[ 1850.403016][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1850.403016][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1850.403016][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1850.403016][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1850.403016][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1850.403016][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1850.403016][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1850.403016][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1850.403016][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1850.403016][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1850.403016][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1850.403016][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1850.403016][ T1643] 
[ 1850.403016][ T1643] Uninit was stored to memory at:
[ 1850.403016][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1850.403016][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1850.403016][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1850.403016][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1850.403016][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1850.403016][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1850.403016][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1850.403016][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1850.403016][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1850.403016][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1850.403016][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1850.403016][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1850.403016][ T1643] 
[ 1850.403016][ T1643] Uninit was stored to memory at:
[ 1850.403016][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1850.403016][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1850.403016][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1850.403016][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1850.403016][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1850.403016][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1850.403016][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1850.403016][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1850.403016][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1850.403016][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1850.403016][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1850.403016][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1850.403016][ T1643] 
[ 1850.403016][ T1643] Uninit was stored to memory at:
[ 1850.403016][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1850.403016][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1850.403016][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1850.403016][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1850.403016][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1850.403016][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1850.403016][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1850.403016][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1850.403016][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1850.403016][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1850.403016][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1850.403016][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1850.403016][ T1643] 
[ 1850.403016][ T1643] Uninit was stored to memory at:
[ 1850.403016][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1850.866390][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1850.866390][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1850.866390][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1850.866390][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1850.866390][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1850.866390][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1850.866390][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1850.866390][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1850.866390][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1850.866390][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1850.866390][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1850.866390][ T1643] 
[ 1850.866390][ T1643] Uninit was stored to memory at:
[ 1850.866390][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1850.866390][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1850.866390][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1850.866390][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1850.866390][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1850.866390][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1850.866390][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1850.866390][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1850.866390][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1850.866390][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1850.866390][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1850.866390][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1850.866390][ T1643] 
[ 1850.866390][ T1643] Uninit was stored to memory at:
[ 1850.866390][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1850.866390][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1850.866390][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1850.866390][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1850.866390][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1850.866390][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1850.866390][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1850.866390][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1850.866390][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1850.866390][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1850.866390][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1850.866390][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1850.866390][ T1643] 
[ 1850.866390][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1850.866390][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1850.866390][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1851.265793][ T1643] not chained 660000 origins
[ 1851.270754][ T1643] CPU: 1 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1851.272895][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1851.272895][ T1643] Call Trace:
[ 1851.272895][ T1643]  dump_stack+0x21c/0x280
[ 1851.272895][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1851.272895][ T1643]  ? do_user_addr_fault+0x1045/0x16d0
[ 1851.272895][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1851.272895][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1851.272895][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1851.272895][ T1643]  ? _copy_from_user+0x201/0x310
[ 1851.272895][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1851.272895][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1851.272895][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1851.272895][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1851.272895][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1851.272895][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1851.272895][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1851.272895][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1851.272895][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1851.272895][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1851.272895][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1851.272895][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1851.272895][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1851.272895][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1851.272895][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1851.272895][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1851.272895][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1851.272895][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1851.272895][ T1643] RIP: 0023:0xf7fa4549
[ 1851.272895][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1851.272895][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1851.272895][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1851.272895][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1851.272895][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1851.272895][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1851.272895][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1851.272895][ T1643] Uninit was stored to memory at:
[ 1851.272895][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1851.272895][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1851.272895][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1851.272895][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1851.272895][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1851.272895][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1851.272895][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1851.272895][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1851.272895][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1851.272895][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1851.272895][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1851.272895][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1851.272895][ T1643] 
[ 1851.272895][ T1643] Uninit was stored to memory at:
[ 1851.272895][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1851.272895][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1851.272895][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1851.272895][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1851.272895][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1851.272895][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1851.272895][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1851.272895][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1851.272895][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1851.272895][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1851.272895][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1851.272895][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1851.272895][ T1643] 
[ 1851.272895][ T1643] Uninit was stored to memory at:
[ 1851.272895][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1851.272895][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1851.272895][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1851.272895][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1851.272895][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1851.272895][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1851.272895][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1851.272895][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1851.272895][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1851.272895][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1851.272895][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1851.272895][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1851.272895][ T1643] 
[ 1851.272895][ T1643] Uninit was stored to memory at:
[ 1851.272895][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1851.272895][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1851.272895][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1851.272895][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1851.272895][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1851.272895][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1851.272895][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1851.272895][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1851.272895][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1851.272895][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1851.272895][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1851.272895][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1851.272895][ T1643] 
[ 1851.272895][ T1643] Uninit was stored to memory at:
[ 1851.272895][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1851.272895][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1851.272895][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1851.272895][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1851.272895][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1851.272895][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1851.272895][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1851.272895][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1851.272895][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1851.272895][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1851.272895][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1851.272895][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1851.272895][ T1643] 
[ 1851.272895][ T1643] Uninit was stored to memory at:
[ 1851.272895][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1851.272895][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1851.272895][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1851.272895][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1851.272895][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1851.272895][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1851.272895][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1851.272895][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1851.272895][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1851.272895][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1851.272895][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1851.272895][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1851.272895][ T1643] 
[ 1851.272895][ T1643] Uninit was stored to memory at:
[ 1851.272895][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1851.272895][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1851.272895][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1851.272895][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1851.272895][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1851.272895][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1851.272895][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1851.272895][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1851.272895][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1851.272895][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1851.272895][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1851.272895][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1851.272895][ T1643] 
[ 1851.272895][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1851.272895][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1851.272895][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1852.180327][ T1643] not chained 670000 origins
[ 1852.182906][ T1643] CPU: 1 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1852.182906][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1852.182906][ T1643] Call Trace:
[ 1852.182906][ T1643]  dump_stack+0x21c/0x280
[ 1852.182906][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1852.182906][ T1643]  ? do_user_addr_fault+0x1045/0x16d0
[ 1852.182906][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1852.182906][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1852.182906][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1852.182906][ T1643]  ? _copy_from_user+0x201/0x310
[ 1852.182906][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1852.182906][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1852.182906][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1852.182906][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1852.182906][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1852.182906][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1852.182906][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1852.182906][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1852.182906][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1852.182906][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1852.182906][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1852.182906][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1852.182906][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1852.182906][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1852.182906][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1852.182906][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1852.182906][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1852.182906][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1852.182906][ T1643] RIP: 0023:0xf7fa4549
[ 1852.182906][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1852.182906][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1852.182906][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1852.182906][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1852.182906][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1852.182906][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1852.182906][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1852.182906][ T1643] Uninit was stored to memory at:
[ 1852.182906][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1852.182906][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1852.182906][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1852.182906][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1852.182906][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1852.182906][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1852.182906][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1852.182906][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1852.182906][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1852.182906][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1852.182906][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1852.182906][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1852.182906][ T1643] 
[ 1852.182906][ T1643] Uninit was stored to memory at:
[ 1852.182906][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1852.182906][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1852.182906][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1852.182906][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1852.182906][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1852.182906][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1852.182906][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1852.182906][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1852.182906][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1852.182906][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1852.182906][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1852.182906][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1852.182906][ T1643] 
[ 1852.182906][ T1643] Uninit was stored to memory at:
[ 1852.182906][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1852.182906][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1852.182906][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1852.182906][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1852.182906][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1852.182906][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1852.182906][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1852.182906][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1852.182906][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1852.182906][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1852.182906][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1852.182906][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1852.182906][ T1643] 
[ 1852.182906][ T1643] Uninit was stored to memory at:
[ 1852.182906][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1852.182906][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1852.182906][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1852.182906][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1852.182906][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1852.182906][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1852.182906][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1852.182906][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1852.182906][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1852.182906][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1852.182906][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1852.182906][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1852.182906][ T1643] 
[ 1852.182906][ T1643] Uninit was stored to memory at:
[ 1852.182906][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1852.182906][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1852.182906][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1852.182906][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1852.182906][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1852.182906][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1852.182906][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1852.182906][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1852.182906][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1852.182906][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1852.182906][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1852.182906][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1852.182906][ T1643] 
[ 1852.182906][ T1643] Uninit was stored to memory at:
[ 1852.182906][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1852.182906][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1852.182906][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1852.182906][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1852.182906][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1852.182906][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1852.182906][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1852.182906][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1852.182906][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1852.182906][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1852.182906][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1852.182906][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1852.182906][ T1643] 
[ 1852.182906][ T1643] Uninit was stored to memory at:
[ 1852.182906][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1852.182906][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1852.182906][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1852.182906][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1852.182906][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1852.182906][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1852.182906][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1852.182906][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1852.182906][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1852.182906][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1852.182906][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1852.182906][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1852.182906][ T1643] 
[ 1852.182906][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1852.182906][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1852.182906][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1853.122609][ T1643] not chained 680000 origins
[ 1853.127030][ T1643] CPU: 1 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1853.127030][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1853.127030][ T1643] Call Trace:
[ 1853.127030][ T1643]  dump_stack+0x21c/0x280
[ 1853.127030][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1853.127030][ T1643]  ? do_user_addr_fault+0x1045/0x16d0
[ 1853.163310][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1853.168969][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1853.172973][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1853.172973][ T1643]  ? _copy_from_user+0x201/0x310
[ 1853.172973][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1853.172973][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1853.172973][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1853.172973][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1853.172973][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1853.172973][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1853.172973][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1853.172973][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1853.172973][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1853.172973][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1853.172973][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1853.172973][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1853.172973][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1853.172973][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1853.172973][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1853.172973][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1853.172973][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1853.172973][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1853.172973][ T1643] RIP: 0023:0xf7fa4549
[ 1853.172973][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1853.172973][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1853.172973][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1853.172973][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1853.172973][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1853.172973][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1853.172973][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1853.172973][ T1643] Uninit was stored to memory at:
[ 1853.172973][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1853.172973][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1853.172973][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1853.172973][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1853.172973][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1853.172973][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1853.172973][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1853.172973][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1853.172973][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1853.172973][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1853.172973][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1853.172973][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1853.172973][ T1643] 
[ 1853.172973][ T1643] Uninit was stored to memory at:
[ 1853.172973][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1853.172973][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1853.172973][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1853.172973][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1853.172973][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1853.172973][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1853.172973][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1853.172973][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1853.172973][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1853.172973][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1853.172973][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1853.172973][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1853.172973][ T1643] 
[ 1853.172973][ T1643] Uninit was stored to memory at:
[ 1853.172973][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1853.172973][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1853.172973][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1853.172973][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1853.172973][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1853.172973][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1853.172973][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1853.172973][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1853.172973][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1853.172973][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1853.172973][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1853.172973][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1853.172973][ T1643] 
[ 1853.172973][ T1643] Uninit was stored to memory at:
[ 1853.172973][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1853.172973][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1853.172973][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1853.172973][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1853.172973][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1853.172973][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1853.172973][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1853.172973][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1853.172973][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1853.172973][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1853.172973][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1853.172973][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1853.172973][ T1643] 
[ 1853.172973][ T1643] Uninit was stored to memory at:
[ 1853.172973][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1853.172973][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1853.172973][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1853.172973][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1853.172973][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1853.172973][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1853.172973][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1853.172973][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1853.172973][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1853.172973][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1853.172973][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1853.172973][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1853.172973][ T1643] 
[ 1853.172973][ T1643] Uninit was stored to memory at:
[ 1853.172973][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1853.172973][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1853.172973][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1853.172973][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1853.172973][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1853.172973][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1853.172973][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1853.172973][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1853.172973][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1853.172973][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1853.172973][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1853.172973][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1853.172973][ T1643] 
[ 1853.172973][ T1643] Uninit was stored to memory at:
[ 1853.172973][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1853.172973][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1853.172973][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1853.172973][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1853.172973][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1853.172973][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1853.172973][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1853.172973][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1853.172973][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1853.172973][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1853.172973][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1853.172973][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1853.172973][ T1643] 
[ 1853.172973][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1853.172973][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1853.172973][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1854.075217][ T1643] not chained 690000 origins
[ 1854.079832][ T1643] CPU: 1 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1854.082905][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1854.082905][ T1643] Call Trace:
[ 1854.082905][ T1643]  dump_stack+0x21c/0x280
[ 1854.082905][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1854.082905][ T1643]  ? do_user_addr_fault+0x1045/0x16d0
[ 1854.082905][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1854.082905][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1854.082905][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1854.082905][ T1643]  ? _copy_from_user+0x201/0x310
[ 1854.082905][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1854.082905][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1854.082905][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1854.082905][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1854.082905][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1854.082905][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1854.082905][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1854.082905][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1854.082905][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1854.082905][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1854.082905][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1854.082905][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1854.082905][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1854.082905][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1854.082905][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1854.082905][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1854.082905][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1854.082905][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1854.082905][ T1643] RIP: 0023:0xf7fa4549
[ 1854.082905][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1854.082905][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1854.082905][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1854.082905][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1854.082905][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1854.082905][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1854.082905][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1854.082905][ T1643] Uninit was stored to memory at:
[ 1854.082905][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1854.082905][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1854.082905][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1854.082905][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1854.082905][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1854.082905][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1854.082905][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1854.082905][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1854.082905][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1854.082905][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1854.082905][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1854.082905][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1854.082905][ T1643] 
[ 1854.082905][ T1643] Uninit was stored to memory at:
[ 1854.082905][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1854.082905][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1854.082905][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1854.082905][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1854.082905][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1854.082905][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1854.082905][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1854.082905][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1854.082905][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1854.082905][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1854.082905][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1854.082905][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1854.082905][ T1643] 
[ 1854.082905][ T1643] Uninit was stored to memory at:
[ 1854.082905][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1854.082905][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1854.082905][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1854.082905][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1854.082905][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1854.082905][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1854.082905][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1854.082905][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1854.082905][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1854.082905][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1854.082905][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1854.082905][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1854.082905][ T1643] 
[ 1854.082905][ T1643] Uninit was stored to memory at:
[ 1854.082905][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1854.082905][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1854.082905][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1854.082905][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1854.082905][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1854.082905][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1854.082905][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1854.082905][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1854.082905][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1854.082905][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1854.082905][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1854.082905][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1854.082905][ T1643] 
[ 1854.082905][ T1643] Uninit was stored to memory at:
[ 1854.082905][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1854.082905][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1854.082905][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1854.082905][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1854.082905][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1854.082905][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1854.082905][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1854.082905][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1854.082905][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1854.082905][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1854.082905][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1854.082905][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1854.082905][ T1643] 
[ 1854.082905][ T1643] Uninit was stored to memory at:
[ 1854.082905][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1854.082905][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1854.082905][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1854.082905][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1854.082905][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1854.082905][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1854.082905][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1854.082905][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1854.082905][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1854.082905][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1854.082905][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1854.082905][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1854.082905][ T1643] 
[ 1854.082905][ T1643] Uninit was stored to memory at:
[ 1854.082905][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1854.082905][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1854.082905][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1854.082905][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1854.082905][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1854.082905][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1854.082905][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1854.082905][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1854.082905][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1854.082905][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1854.082905][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1854.082905][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1854.082905][ T1643] 
[ 1854.082905][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1854.082905][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1854.082905][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1854.987453][ T1643] not chained 700000 origins
[ 1854.992076][ T1643] CPU: 1 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1854.992945][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1855.006137][ T1643] Call Trace:
[ 1855.006137][ T1643]  dump_stack+0x21c/0x280
[ 1855.006137][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1855.006137][ T1643]  ? do_user_addr_fault+0x1045/0x16d0
[ 1855.006137][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1855.006137][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1855.006137][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1855.006137][ T1643]  ? _copy_from_user+0x201/0x310
[ 1855.006137][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1855.006137][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1855.006137][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1855.006137][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1855.006137][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1855.006137][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1855.006137][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1855.006137][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1855.006137][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1855.006137][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1855.006137][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1855.006137][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1855.006137][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1855.006137][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1855.006137][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1855.006137][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1855.006137][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1855.006137][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1855.006137][ T1643] RIP: 0023:0xf7fa4549
[ 1855.006137][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1855.006137][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1855.006137][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1855.006137][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1855.006137][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1855.006137][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1855.006137][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1855.006137][ T1643] Uninit was stored to memory at:
[ 1855.006137][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1855.006137][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1855.006137][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1855.006137][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1855.006137][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1855.006137][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1855.006137][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1855.006137][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1855.006137][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1855.006137][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1855.006137][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1855.006137][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1855.006137][ T1643] 
[ 1855.006137][ T1643] Uninit was stored to memory at:
[ 1855.006137][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1855.006137][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1855.006137][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1855.006137][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1855.006137][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1855.006137][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1855.006137][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1855.006137][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1855.006137][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1855.006137][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1855.006137][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1855.006137][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1855.006137][ T1643] 
[ 1855.006137][ T1643] Uninit was stored to memory at:
[ 1855.006137][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1855.006137][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1855.006137][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1855.006137][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1855.006137][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1855.006137][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1855.006137][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1855.006137][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1855.006137][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1855.006137][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1855.006137][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1855.006137][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1855.006137][ T1643] 
[ 1855.006137][ T1643] Uninit was stored to memory at:
[ 1855.006137][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1855.006137][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1855.006137][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1855.006137][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1855.006137][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1855.006137][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1855.006137][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1855.006137][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1855.006137][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1855.006137][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1855.006137][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1855.006137][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1855.006137][ T1643] 
[ 1855.006137][ T1643] Uninit was stored to memory at:
[ 1855.006137][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1855.006137][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1855.006137][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1855.006137][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1855.006137][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1855.006137][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1855.006137][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1855.006137][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1855.006137][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1855.006137][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1855.006137][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1855.006137][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1855.006137][ T1643] 
[ 1855.006137][ T1643] Uninit was stored to memory at:
[ 1855.006137][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1855.006137][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1855.006137][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1855.006137][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1855.006137][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1855.006137][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1855.006137][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1855.006137][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1855.006137][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1855.006137][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1855.006137][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1855.006137][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1855.006137][ T1643] 
[ 1855.006137][ T1643] Uninit was stored to memory at:
[ 1855.006137][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1855.006137][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1855.006137][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1855.006137][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1855.006137][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1855.006137][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1855.006137][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1855.006137][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1855.006137][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1855.006137][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1855.006137][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1855.006137][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1855.006137][ T1643] 
[ 1855.006137][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1855.006137][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1855.006137][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1856.006901][ T1643] not chained 710000 origins
[ 1856.011518][ T1643] CPU: 1 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1856.012898][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1856.012898][ T1643] Call Trace:
[ 1856.012898][ T1643]  dump_stack+0x21c/0x280
[ 1856.035158][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1856.035158][ T1643]  ? do_user_addr_fault+0x1045/0x16d0
[ 1856.035158][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1856.035158][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1856.035158][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1856.035158][ T1643]  ? _copy_from_user+0x201/0x310
[ 1856.035158][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1856.035158][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1856.035158][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1856.035158][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1856.035158][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1856.035158][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1856.035158][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1856.035158][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1856.035158][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1856.035158][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1856.035158][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1856.035158][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1856.035158][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1856.035158][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1856.035158][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1856.035158][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1856.035158][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1856.035158][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1856.035158][ T1643] RIP: 0023:0xf7fa4549
[ 1856.035158][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1856.035158][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1856.035158][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1856.035158][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1856.035158][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1856.035158][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1856.035158][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1856.035158][ T1643] Uninit was stored to memory at:
[ 1856.035158][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1856.249768][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1856.249768][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1856.249768][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1856.249768][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1856.249768][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1856.249768][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1856.249768][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1856.249768][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1856.249768][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1856.249768][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1856.249768][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1856.249768][ T1643] 
[ 1856.249768][ T1643] Uninit was stored to memory at:
[ 1856.249768][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1856.249768][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1856.249768][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1856.249768][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1856.249768][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1856.249768][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1856.249768][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1856.249768][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1856.249768][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1856.249768][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1856.249768][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1856.249768][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1856.249768][ T1643] 
[ 1856.249768][ T1643] Uninit was stored to memory at:
[ 1856.249768][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1856.249768][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1856.249768][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1856.249768][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1856.249768][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1856.249768][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1856.249768][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1856.249768][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1856.249768][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1856.249768][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1856.249768][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1856.249768][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1856.249768][ T1643] 
[ 1856.249768][ T1643] Uninit was stored to memory at:
[ 1856.249768][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1856.249768][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1856.249768][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1856.249768][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1856.249768][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1856.249768][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1856.249768][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1856.249768][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1856.249768][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1856.249768][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1856.249768][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1856.249768][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1856.249768][ T1643] 
[ 1856.249768][ T1643] Uninit was stored to memory at:
[ 1856.249768][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1856.249768][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1856.249768][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1856.249768][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1856.249768][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1856.249768][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1856.249768][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1856.249768][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1856.249768][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1856.249768][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1856.249768][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1856.249768][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1856.249768][ T1643] 
[ 1856.249768][ T1643] Uninit was stored to memory at:
[ 1856.249768][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1856.249768][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1856.249768][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1856.249768][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1856.249768][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1856.249768][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1856.249768][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1856.249768][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1856.249768][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1856.249768][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1856.249768][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1856.249768][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1856.249768][ T1643] 
[ 1856.249768][ T1643] Uninit was stored to memory at:
[ 1856.249768][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1856.249768][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1856.249768][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1856.249768][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1856.249768][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1856.249768][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1856.249768][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1856.249768][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1856.249768][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1856.249768][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1856.249768][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1856.249768][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1856.249768][ T1643] 
[ 1856.249768][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1856.249768][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1856.249768][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1856.958908][ T1643] not chained 720000 origins
[ 1856.963002][ T1643] CPU: 1 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1856.963002][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1856.963002][ T1643] Call Trace:
[ 1856.963002][ T1643]  dump_stack+0x21c/0x280
[ 1856.963002][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1856.963002][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1856.963002][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1856.963002][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1856.963002][ T1643]  ? _copy_from_user+0x201/0x310
[ 1856.963002][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1856.963002][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1856.963002][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1856.963002][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1856.963002][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1856.963002][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1856.963002][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1856.963002][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1856.963002][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1856.963002][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1856.963002][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1856.963002][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1856.963002][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1856.963002][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1856.963002][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1856.963002][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1856.963002][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1856.963002][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1856.963002][ T1643] RIP: 0023:0xf7fa4549
[ 1856.963002][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1856.963002][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1856.963002][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1856.963002][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1856.963002][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1856.963002][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1856.963002][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1856.963002][ T1643] Uninit was stored to memory at:
[ 1856.963002][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1856.963002][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1856.963002][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1856.963002][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1856.963002][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1856.963002][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1856.963002][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1856.963002][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1857.231611][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1857.231611][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1857.231611][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1857.231611][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1857.231611][ T1643] 
[ 1857.231611][ T1643] Uninit was stored to memory at:
[ 1857.231611][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1857.231611][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1857.231611][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1857.231611][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1857.231611][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1857.231611][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1857.231611][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1857.231611][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1857.231611][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1857.231611][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1857.231611][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1857.231611][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1857.231611][ T1643] 
[ 1857.231611][ T1643] Uninit was stored to memory at:
[ 1857.231611][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1857.231611][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1857.231611][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1857.231611][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1857.231611][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1857.231611][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1857.231611][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1857.231611][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1857.231611][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1857.231611][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1857.231611][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1857.231611][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1857.231611][ T1643] 
[ 1857.231611][ T1643] Uninit was stored to memory at:
[ 1857.231611][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1857.231611][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1857.231611][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1857.231611][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1857.231611][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1857.231611][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1857.231611][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1857.231611][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1857.231611][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1857.231611][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1857.231611][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1857.231611][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1857.231611][ T1643] 
[ 1857.231611][ T1643] Uninit was stored to memory at:
[ 1857.231611][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1857.231611][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1857.231611][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1857.231611][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1857.231611][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1857.231611][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1857.231611][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1857.231611][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1857.231611][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1857.231611][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1857.231611][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1857.231611][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1857.231611][ T1643] 
[ 1857.231611][ T1643] Uninit was stored to memory at:
[ 1857.231611][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1857.231611][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1857.231611][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1857.231611][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1857.231611][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1857.231611][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1857.231611][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1857.231611][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1857.231611][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1857.231611][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1857.231611][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1857.231611][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1857.231611][ T1643] 
[ 1857.231611][ T1643] Uninit was stored to memory at:
[ 1857.231611][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1857.231611][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1857.231611][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1857.231611][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1857.231611][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1857.231611][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1857.231611][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1857.231611][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1857.231611][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1857.231611][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1857.231611][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1857.231611][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1857.231611][ T1643] 
[ 1857.231611][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1857.231611][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1857.231611][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1857.884979][ T1643] not chained 730000 origins
[ 1857.889623][ T1643] CPU: 1 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1857.892901][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1857.892901][ T1643] Call Trace:
[ 1857.892901][ T1643]  dump_stack+0x21c/0x280
[ 1857.892901][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1857.892901][ T1643]  ? do_user_addr_fault+0x1045/0x16d0
[ 1857.892901][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1857.892901][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1857.892901][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1857.892901][ T1643]  ? _copy_from_user+0x201/0x310
[ 1857.892901][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1857.892901][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1857.892901][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1857.892901][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1857.892901][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1857.892901][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1857.892901][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1857.980453][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1857.980453][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1857.980453][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1857.980453][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1857.980453][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1857.980453][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1857.980453][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1857.980453][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1857.980453][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1857.980453][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1857.980453][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1857.980453][ T1643] RIP: 0023:0xf7fa4549
[ 1857.980453][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1857.980453][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1857.980453][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1857.980453][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1857.980453][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1857.980453][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1857.980453][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1857.980453][ T1643] Uninit was stored to memory at:
[ 1857.980453][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1857.980453][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1857.980453][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1857.980453][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1857.980453][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1857.980453][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1857.980453][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1857.980453][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1857.980453][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1857.980453][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1857.980453][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1857.980453][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1857.980453][ T1643] 
[ 1857.980453][ T1643] Uninit was stored to memory at:
[ 1857.980453][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1857.980453][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1857.980453][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1857.980453][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1857.980453][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1858.216350][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1858.222965][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1858.227746][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1858.233521][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1858.241503][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1858.241503][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1858.241503][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1858.241503][ T1643] 
[ 1858.241503][ T1643] Uninit was stored to memory at:
[ 1858.241503][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1858.241503][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1858.241503][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1858.241503][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1858.241503][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1858.241503][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1858.241503][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1858.241503][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1858.241503][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1858.241503][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1858.241503][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1858.241503][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1858.241503][ T1643] 
[ 1858.241503][ T1643] Uninit was stored to memory at:
[ 1858.241503][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1858.241503][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1858.241503][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1858.241503][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1858.241503][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1858.241503][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1858.241503][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1858.241503][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1858.241503][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1858.241503][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1858.241503][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1858.241503][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1858.241503][ T1643] 
[ 1858.241503][ T1643] Uninit was stored to memory at:
[ 1858.241503][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1858.241503][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1858.241503][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1858.241503][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1858.241503][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1858.241503][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1858.241503][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1858.241503][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1858.241503][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1858.241503][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1858.241503][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1858.241503][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1858.241503][ T1643] 
[ 1858.241503][ T1643] Uninit was stored to memory at:
[ 1858.241503][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1858.241503][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1858.241503][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1858.241503][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1858.241503][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1858.241503][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1858.241503][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1858.241503][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1858.241503][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1858.241503][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1858.241503][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1858.241503][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1858.241503][ T1643] 
[ 1858.241503][ T1643] Uninit was stored to memory at:
[ 1858.241503][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1858.241503][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1858.241503][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1858.241503][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1858.241503][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1858.241503][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1858.241503][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1858.241503][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1858.241503][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1858.241503][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1858.241503][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1858.241503][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1858.241503][ T1643] 
[ 1858.241503][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1858.241503][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1858.241503][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1858.806959][ T1643] not chained 740000 origins
[ 1858.811572][ T1643] CPU: 1 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1858.812897][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1858.812897][ T1643] Call Trace:
[ 1858.812897][ T1643]  dump_stack+0x21c/0x280
[ 1858.812897][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1858.812897][ T1643]  ? do_user_addr_fault+0x1045/0x16d0
[ 1858.812897][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1858.812897][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1858.812897][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1858.812897][ T1643]  ? _copy_from_user+0x201/0x310
[ 1858.812897][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1858.812897][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1858.812897][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1858.812897][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1858.812897][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1858.812897][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1858.812897][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1858.901884][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1858.901884][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1858.901884][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1858.901884][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1858.901884][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1858.901884][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1858.901884][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1858.901884][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1858.901884][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1858.901884][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1858.901884][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1858.901884][ T1643] RIP: 0023:0xf7fa4549
[ 1858.901884][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1858.901884][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1858.901884][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1858.901884][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1858.901884][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1858.901884][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1858.901884][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1858.901884][ T1643] Uninit was stored to memory at:
[ 1858.901884][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1859.063214][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1859.068903][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1859.068903][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1859.068903][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1859.068903][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1859.068903][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1859.068903][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1859.068903][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1859.068903][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1859.068903][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1859.068903][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1859.068903][ T1643] 
[ 1859.068903][ T1643] Uninit was stored to memory at:
[ 1859.068903][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1859.068903][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1859.068903][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1859.068903][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1859.068903][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1859.068903][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1859.068903][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1859.068903][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1859.068903][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1859.068903][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1859.068903][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1859.068903][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1859.068903][ T1643] 
[ 1859.068903][ T1643] Uninit was stored to memory at:
[ 1859.068903][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1859.068903][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1859.068903][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1859.068903][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1859.068903][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1859.068903][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1859.068903][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1859.068903][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1859.068903][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1859.068903][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1859.068903][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1859.068903][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1859.068903][ T1643] 
[ 1859.068903][ T1643] Uninit was stored to memory at:
[ 1859.068903][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1859.068903][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1859.068903][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1859.068903][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1859.068903][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1859.068903][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1859.068903][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1859.068903][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1859.068903][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1859.068903][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1859.068903][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1859.068903][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1859.068903][ T1643] 
[ 1859.068903][ T1643] Uninit was stored to memory at:
[ 1859.068903][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1859.068903][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1859.068903][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1859.068903][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1859.068903][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1859.068903][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1859.068903][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1859.068903][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1859.068903][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1859.068903][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1859.068903][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1859.068903][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1859.068903][ T1643] 
[ 1859.068903][ T1643] Uninit was stored to memory at:
[ 1859.068903][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1859.068903][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1859.068903][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1859.068903][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1859.068903][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1859.068903][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1859.068903][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1859.068903][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1859.068903][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1859.068903][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1859.068903][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1859.068903][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1859.068903][ T1643] 
[ 1859.068903][ T1643] Uninit was stored to memory at:
[ 1859.068903][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1859.068903][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1859.068903][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1859.068903][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1859.068903][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1859.068903][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1859.068903][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1859.068903][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1859.068903][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1859.068903][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1859.068903][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1859.068903][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1859.068903][ T1643] 
[ 1859.068903][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1859.068903][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1859.068903][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1859.816338][ T1643] not chained 750000 origins
[ 1859.820986][ T1643] CPU: 1 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1859.823683][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1859.823683][ T1643] Call Trace:
[ 1859.823683][ T1643]  dump_stack+0x21c/0x280
[ 1859.823683][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1859.823683][ T1643]  ? do_user_addr_fault+0x1045/0x16d0
[ 1859.823683][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1859.823683][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1859.823683][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1859.823683][ T1643]  ? _copy_from_user+0x201/0x310
[ 1859.823683][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1859.823683][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1859.823683][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1859.823683][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1859.823683][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1859.823683][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1859.823683][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1859.823683][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1859.823683][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1859.823683][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1859.823683][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1859.823683][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1859.940223][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1859.940223][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1859.940223][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1859.940223][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1859.940223][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1859.940223][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1859.940223][ T1643] RIP: 0023:0xf7fa4549
[ 1859.940223][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1859.940223][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1859.940223][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1859.940223][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1859.940223][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1859.940223][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1859.940223][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1859.940223][ T1643] Uninit was stored to memory at:
[ 1859.940223][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1859.940223][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1859.940223][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1859.940223][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1859.940223][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1859.940223][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1859.940223][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1859.940223][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1859.940223][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1859.940223][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1859.940223][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1859.940223][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1859.940223][ T1643] 
[ 1859.940223][ T1643] Uninit was stored to memory at:
[ 1859.940223][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1859.940223][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1859.940223][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1859.940223][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1859.940223][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1859.940223][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1859.940223][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1859.940223][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1859.940223][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1859.940223][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1859.940223][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1859.940223][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1859.940223][ T1643] 
[ 1859.940223][ T1643] Uninit was stored to memory at:
[ 1859.940223][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1859.940223][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1859.940223][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1859.940223][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1859.940223][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1859.940223][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1859.940223][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1859.940223][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1859.940223][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1859.940223][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1859.940223][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1859.940223][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1859.940223][ T1643] 
[ 1859.940223][ T1643] Uninit was stored to memory at:
[ 1859.940223][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1859.940223][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1859.940223][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1859.940223][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1859.940223][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1859.940223][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1859.940223][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1859.940223][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1859.940223][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1859.940223][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1859.940223][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1859.940223][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1859.940223][ T1643] 
[ 1859.940223][ T1643] Uninit was stored to memory at:
[ 1859.940223][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1859.940223][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1859.940223][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1859.940223][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1859.940223][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1859.940223][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1859.940223][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1859.940223][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1859.940223][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1859.940223][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1859.940223][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1859.940223][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1859.940223][ T1643] 
[ 1859.940223][ T1643] Uninit was stored to memory at:
[ 1859.940223][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1859.940223][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1859.940223][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1859.940223][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1859.940223][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1859.940223][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1859.940223][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1859.940223][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1859.940223][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1859.940223][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1859.940223][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1859.940223][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1859.940223][ T1643] 
[ 1859.940223][ T1643] Uninit was stored to memory at:
[ 1859.940223][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1859.940223][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1859.940223][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1859.940223][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1859.940223][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1859.940223][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1859.940223][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1859.940223][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1859.940223][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1859.940223][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1859.940223][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1859.940223][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1859.940223][ T1643] 
[ 1859.940223][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1859.940223][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1859.940223][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1860.759489][ T1643] not chained 760000 origins
[ 1860.762910][ T1643] CPU: 0 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1860.762910][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1860.762910][ T1643] Call Trace:
[ 1860.762910][ T1643]  dump_stack+0x21c/0x280
[ 1860.762910][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1860.762910][ T1643]  ? do_user_addr_fault+0x1045/0x16d0
[ 1860.762910][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1860.762910][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1860.762910][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1860.813009][ T1643]  ? _copy_from_user+0x201/0x310
[ 1860.813009][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1860.813009][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1860.813009][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1860.813009][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1860.813009][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1860.813009][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1860.813009][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1860.813009][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1860.813009][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1860.813009][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1860.813009][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1860.813009][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1860.813009][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1860.813009][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1860.893119][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1860.893119][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1860.893119][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1860.893119][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1860.893119][ T1643] RIP: 0023:0xf7fa4549
[ 1860.893119][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1860.893119][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1860.893119][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1860.893119][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1860.963591][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1860.963591][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1860.963591][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1860.963591][ T1643] Uninit was stored to memory at:
[ 1860.963591][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1860.963591][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1860.963591][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1860.963591][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1860.963591][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1860.963591][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1860.963591][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1860.963591][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1860.963591][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1860.963591][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1860.963591][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1860.963591][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1860.963591][ T1643] 
[ 1860.963591][ T1643] Uninit was stored to memory at:
[ 1860.963591][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1860.963591][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1860.963591][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1860.963591][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1860.963591][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1860.963591][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1860.963591][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1860.963591][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1860.963591][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1860.963591][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1860.963591][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1860.963591][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1860.963591][ T1643] 
[ 1860.963591][ T1643] Uninit was stored to memory at:
[ 1861.141062][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1861.143013][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1861.143013][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1861.143013][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1861.143013][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1861.143013][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1861.143013][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1861.143013][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1861.143013][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1861.143013][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1861.143013][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1861.143013][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1861.143013][ T1643] 
[ 1861.143013][ T1643] Uninit was stored to memory at:
[ 1861.143013][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1861.143013][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1861.143013][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1861.143013][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1861.143013][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1861.143013][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1861.143013][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1861.143013][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1861.143013][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1861.143013][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1861.143013][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1861.143013][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1861.143013][ T1643] 
[ 1861.143013][ T1643] Uninit was stored to memory at:
[ 1861.143013][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1861.143013][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1861.143013][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1861.143013][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1861.143013][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1861.143013][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1861.143013][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1861.143013][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1861.143013][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1861.143013][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1861.143013][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1861.143013][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1861.143013][ T1643] 
[ 1861.143013][ T1643] Uninit was stored to memory at:
[ 1861.143013][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1861.143013][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1861.143013][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1861.143013][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1861.143013][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1861.143013][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1861.143013][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1861.143013][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1861.143013][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1861.143013][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1861.143013][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1861.143013][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1861.143013][ T1643] 
[ 1861.143013][ T1643] Uninit was stored to memory at:
[ 1861.143013][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1861.143013][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1861.143013][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1861.143013][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1861.143013][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1861.143013][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1861.143013][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1861.143013][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1861.143013][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1861.143013][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1861.143013][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1861.143013][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1861.143013][ T1643] 
[ 1861.143013][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1861.143013][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1861.143013][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1861.740145][ T1643] not chained 770000 origins
[ 1861.742888][ T1643] CPU: 0 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1861.742888][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1861.742888][ T1643] Call Trace:
[ 1861.742888][ T1643]  dump_stack+0x21c/0x280
[ 1861.769446][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1861.775466][ T1643]  ? do_user_addr_fault+0x1045/0x16d0
[ 1861.775466][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1861.775466][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1861.775466][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1861.775466][ T1643]  ? _copy_from_user+0x201/0x310
[ 1861.803055][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1861.803055][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1861.803055][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1861.803055][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1861.803055][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1861.803055][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1861.803055][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1861.835182][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1861.843015][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1861.843015][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1861.854811][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1861.856168][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1861.863202][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1861.863202][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1861.873497][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1861.883078][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1861.885116][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1861.893101][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1861.898998][ T1643] RIP: 0023:0xf7fa4549
[ 1861.903007][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1861.923027][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1861.923394][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1861.933055][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1861.943016][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1861.953029][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1861.963038][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1861.963423][ T1643] Uninit was stored to memory at:
[ 1861.975431][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1861.975431][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1861.982994][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1861.982994][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1861.995090][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1861.995090][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1862.003079][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1862.008732][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1862.015714][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1862.023033][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1862.023033][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1862.023033][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1862.033209][ T1643] 
[ 1862.033209][ T1643] Uninit was stored to memory at:
[ 1862.043004][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1862.043004][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1862.053032][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1862.053032][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1862.063186][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1862.063186][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1862.073446][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1862.077625][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1862.082997][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1862.093245][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1862.093245][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1862.103034][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1862.105169][ T1643] 
[ 1862.105169][ T1643] Uninit was stored to memory at:
[ 1862.113083][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1862.118762][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1862.123231][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1862.123231][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1862.133038][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1862.133038][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1862.143404][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1862.153068][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1862.153211][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1862.162989][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1862.162989][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1862.173017][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1862.173017][ T1643] 
[ 1862.180040][ T1643] Uninit was stored to memory at:
[ 1862.183170][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1862.193019][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1862.193019][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1862.202986][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1862.202986][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1862.202986][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1862.215096][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1862.223042][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1862.229022][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1862.233037][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1862.233037][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1862.243168][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1862.243168][ T1643] 
[ 1862.243168][ T1643] Uninit was stored to memory at:
[ 1862.253089][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1862.263013][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1862.263013][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1862.273202][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1862.273202][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1862.282473][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1862.283168][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1862.293044][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1862.293044][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1862.303179][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1862.303179][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1862.313498][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1862.313498][ T1643] 
[ 1862.313498][ T1643] Uninit was stored to memory at:
[ 1862.325003][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1862.333115][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1862.333115][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1862.343008][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1862.343008][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1862.353028][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1862.353028][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1862.363224][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1862.363224][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1862.373032][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1862.376039][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1862.384224][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1862.385188][ T1643] 
[ 1862.393197][ T1643] Uninit was stored to memory at:
[ 1862.393197][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1862.402993][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1862.402993][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1862.413488][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1862.413488][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1862.423174][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1862.423174][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1862.433075][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1862.435070][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1862.443040][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1862.448696][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1862.453183][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1862.453183][ T1643] 
[ 1862.463031][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1862.463031][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1862.473020][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1862.773540][ T1643] not chained 780000 origins
[ 1862.778201][ T1643] CPU: 0 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1862.782886][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1862.793610][ T1643] Call Trace:
[ 1862.793610][ T1643]  dump_stack+0x21c/0x280
[ 1862.793610][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1862.793610][ T1643]  ? do_user_addr_fault+0x1045/0x16d0
[ 1862.813067][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1862.813067][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1862.813067][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1862.813067][ T1643]  ? _copy_from_user+0x201/0x310
[ 1862.813067][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1862.813067][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1862.813067][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1862.813067][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1862.813067][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1862.858482][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1862.863190][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1862.863190][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1862.875090][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1862.883075][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1862.883075][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1862.893048][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1862.896757][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1862.903503][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1862.903503][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1862.913257][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1862.913257][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1862.923163][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1862.923163][ T1643] RIP: 0023:0xf7fa4549
[ 1862.933028][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1862.953024][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1862.963153][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1862.963153][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1862.973325][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1862.985160][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1862.993066][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1863.003200][ T1643] Uninit was stored to memory at:
[ 1863.003200][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1863.013869][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1863.013869][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1863.023288][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1863.023288][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1863.033474][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1863.033474][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1863.043205][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1863.043205][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1863.055326][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1863.055326][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1863.063172][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1863.063172][ T1643] 
[ 1863.073042][ T1643] Uninit was stored to memory at:
[ 1863.073042][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1863.083192][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1863.083192][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1863.093116][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1863.095136][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1863.103111][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1863.103111][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1863.113029][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1863.113029][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1863.123285][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1863.123285][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1863.133065][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1863.133065][ T1643] 
[ 1863.143172][ T1643] Uninit was stored to memory at:
[ 1863.143172][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1863.153221][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1863.153221][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1863.163514][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1863.163514][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1863.173018][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1863.173018][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1863.183321][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1863.183321][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1863.193037][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1863.193037][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1863.203403][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1863.206359][ T1643] 
[ 1863.213072][ T1643] Uninit was stored to memory at:
[ 1863.218690][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1863.223182][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1863.223182][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1863.233025][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1863.233025][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1863.243291][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1863.243291][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1863.253025][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1863.253025][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1863.263158][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1863.263158][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1863.273218][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1863.273218][ T1643] 
[ 1863.283182][ T1643] Uninit was stored to memory at:
[ 1863.283182][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1863.293475][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1863.293475][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1863.303288][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1863.306511][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1863.313096][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1863.315079][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1863.323067][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1863.328750][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1863.333223][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1863.333223][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1863.343181][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1863.343181][ T1643] 
[ 1863.353041][ T1643] Uninit was stored to memory at:
[ 1863.353041][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1863.363265][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1863.363265][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1863.373106][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1863.376080][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1863.383172][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1863.383172][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1863.393206][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1863.393206][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1863.403186][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1863.408867][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1863.413038][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1863.413038][ T1643] 
[ 1863.423099][ T1643] Uninit was stored to memory at:
[ 1863.425417][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1863.433095][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1863.438709][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1863.443160][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1863.443160][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1863.453198][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1863.453198][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1863.463172][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1863.463172][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1863.473047][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1863.473047][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1863.483254][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1863.483254][ T1643] 
[ 1863.493029][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1863.493029][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1863.503161][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1863.828432][ T1643] not chained 790000 origins
[ 1863.832886][ T1643] CPU: 0 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1863.832886][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1863.832886][ T1643] Call Trace:
[ 1863.832886][ T1643]  dump_stack+0x21c/0x280
[ 1863.832886][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1863.832886][ T1643]  ? do_user_addr_fault+0x1045/0x16d0
[ 1863.832886][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1863.832886][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1863.832886][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1863.832886][ T1643]  ? _copy_from_user+0x201/0x310
[ 1863.832886][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1863.832886][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1863.832886][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1863.832886][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1863.832886][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1863.832886][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1863.832886][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1863.832886][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1863.832886][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1863.832886][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1863.832886][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1863.832886][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1863.832886][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1863.832886][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1863.832886][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1863.832886][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1863.832886][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1863.832886][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1863.832886][ T1643] RIP: 0023:0xf7fa4549
[ 1863.832886][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1863.832886][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1863.832886][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1863.832886][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1863.832886][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1863.832886][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1863.832886][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1863.832886][ T1643] Uninit was stored to memory at:
[ 1863.832886][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1863.832886][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1863.832886][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1863.832886][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1863.832886][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1863.832886][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1863.832886][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1863.832886][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1863.832886][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1863.832886][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1863.832886][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1863.832886][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1863.832886][ T1643] 
[ 1863.832886][ T1643] Uninit was stored to memory at:
[ 1863.832886][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1863.832886][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1863.832886][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1863.832886][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1863.832886][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1863.832886][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1863.832886][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1863.832886][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1863.832886][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1863.832886][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1863.832886][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1863.832886][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1863.832886][ T1643] 
[ 1863.832886][ T1643] Uninit was stored to memory at:
[ 1863.832886][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1863.832886][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1863.832886][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1863.832886][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1863.832886][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1863.832886][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1863.832886][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1863.832886][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1863.832886][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1863.832886][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1863.832886][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1863.832886][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1863.832886][ T1643] 
[ 1863.832886][ T1643] Uninit was stored to memory at:
[ 1863.832886][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1863.832886][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1863.832886][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1863.832886][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1863.832886][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1863.832886][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1863.832886][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1863.832886][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1863.832886][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1863.832886][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1863.832886][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1863.832886][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1863.832886][ T1643] 
[ 1863.832886][ T1643] Uninit was stored to memory at:
[ 1863.832886][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1863.832886][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1863.832886][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1863.832886][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1863.832886][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1863.832886][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1863.832886][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1863.832886][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1863.832886][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1863.832886][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1863.832886][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1863.832886][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1863.832886][ T1643] 
[ 1864.413242][ T1643] Uninit was stored to memory at:
[ 1864.413242][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1864.413242][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1864.413242][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1864.413242][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1864.413242][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1864.413242][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1864.413242][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1864.413242][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1864.413242][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1864.413242][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1864.413242][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1864.413242][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1864.413242][ T1643] 
[ 1864.413242][ T1643] Uninit was stored to memory at:
[ 1864.413242][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1864.413242][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1864.413242][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1864.413242][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1864.413242][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1864.413242][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1864.413242][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1864.413242][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1864.413242][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1864.413242][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1864.413242][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1864.413242][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1864.413242][ T1643] 
[ 1864.413242][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1864.413242][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1864.413242][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1864.763604][ T1643] not chained 800000 origins
[ 1864.768242][ T1643] CPU: 0 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1864.772996][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1864.772996][ T1643] Call Trace:
[ 1864.772996][ T1643]  dump_stack+0x21c/0x280
[ 1864.772996][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1864.772996][ T1643]  ? do_user_addr_fault+0x1045/0x16d0
[ 1864.772996][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1864.772996][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1864.813033][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1864.813033][ T1643]  ? _copy_from_user+0x201/0x310
[ 1864.813033][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1864.813033][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1864.813033][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1864.813033][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1864.813033][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1864.813033][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1864.813033][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1864.813033][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1864.813033][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1864.813033][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1864.813033][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1864.813033][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1864.813033][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1864.813033][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1864.813033][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1864.813033][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1864.813033][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1864.913024][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1864.913024][ T1643] RIP: 0023:0xf7fa4549
[ 1864.913024][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1864.913024][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1864.913024][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1864.913024][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1864.913024][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1864.913024][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1864.983090][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1864.983090][ T1643] Uninit was stored to memory at:
[ 1864.983090][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1864.983090][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1864.983090][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1864.983090][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1864.983090][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1864.983090][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1864.983090][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1864.983090][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1864.983090][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1865.046559][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1865.053126][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1865.053126][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1865.053126][ T1643] 
[ 1865.053126][ T1643] Uninit was stored to memory at:
[ 1865.053126][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1865.053126][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1865.053126][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1865.053126][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1865.053126][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1865.053126][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1865.053126][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1865.053126][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1865.053126][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1865.053126][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1865.123107][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1865.123107][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1865.123107][ T1643] 
[ 1865.123107][ T1643] Uninit was stored to memory at:
[ 1865.123107][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1865.123107][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1865.123107][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1865.123107][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1865.123107][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1865.123107][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1865.123107][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1865.123107][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1865.123107][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1865.123107][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1865.193075][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1865.193075][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1865.193075][ T1643] 
[ 1865.193075][ T1643] Uninit was stored to memory at:
[ 1865.193075][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1865.193075][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1865.193075][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1865.193075][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1865.193075][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1865.193075][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1865.193075][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1865.193075][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1865.193075][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1865.193075][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1865.263142][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1865.263142][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1865.263142][ T1643] 
[ 1865.263142][ T1643] Uninit was stored to memory at:
[ 1865.263142][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1865.263142][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1865.263142][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1865.263142][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1865.263142][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1865.263142][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1865.263142][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1865.263142][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1865.263142][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1865.263142][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1865.263142][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1865.263142][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1865.263142][ T1643] 
[ 1865.263142][ T1643] Uninit was stored to memory at:
[ 1865.263142][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1865.263142][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1865.363135][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1865.363135][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1865.363135][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1865.363135][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1865.363135][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1865.363135][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1865.363135][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1865.363135][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1865.363135][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1865.363135][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1865.363135][ T1643] 
[ 1865.363135][ T1643] Uninit was stored to memory at:
[ 1865.363135][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1865.363135][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1865.363135][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1865.363135][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1865.363135][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1865.363135][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1865.363135][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1865.363135][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1865.363135][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1865.363135][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1865.363135][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1865.363135][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1865.363135][ T1643] 
[ 1865.363135][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1865.499173][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1865.503124][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1865.653832][ T1643] not chained 810000 origins
[ 1865.658457][ T1643] CPU: 1 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1865.662896][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1865.662896][ T1643] Call Trace:
[ 1865.662896][ T1643]  dump_stack+0x21c/0x280
[ 1865.662896][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1865.662896][ T1643]  ? do_user_addr_fault+0x1045/0x16d0
[ 1865.662896][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1865.662896][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1865.662896][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1865.662896][ T1643]  ? _copy_from_user+0x201/0x310
[ 1865.662896][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1865.662896][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1865.662896][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1865.662896][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1865.662896][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1865.662896][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1865.662896][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1865.662896][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1865.662896][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1865.662896][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1865.662896][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1865.662896][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1865.662896][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1865.662896][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1865.662896][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1865.662896][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1865.662896][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1865.662896][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1865.662896][ T1643] RIP: 0023:0xf7fa4549
[ 1865.662896][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1865.662896][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1865.662896][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1865.662896][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1865.662896][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1865.662896][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1865.662896][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1865.662896][ T1643] Uninit was stored to memory at:
[ 1865.662896][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1865.662896][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1865.662896][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1865.662896][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1865.662896][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1865.662896][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1865.662896][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1865.662896][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1865.662896][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1865.662896][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1865.662896][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1865.662896][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1865.662896][ T1643] 
[ 1865.662896][ T1643] Uninit was stored to memory at:
[ 1865.662896][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1865.662896][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1865.662896][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1865.662896][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1865.662896][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1865.662896][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1865.662896][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1865.662896][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1865.662896][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1865.662896][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1865.662896][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1865.662896][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1865.662896][ T1643] 
[ 1865.662896][ T1643] Uninit was stored to memory at:
[ 1865.662896][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1865.662896][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1865.662896][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1865.662896][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1865.662896][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1865.662896][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1865.662896][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1865.662896][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1865.662896][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1865.662896][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1865.662896][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1865.662896][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1865.662896][ T1643] 
[ 1865.662896][ T1643] Uninit was stored to memory at:
[ 1865.662896][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1865.662896][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1865.662896][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1865.662896][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1865.662896][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1865.662896][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1865.662896][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1865.662896][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1865.662896][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1865.662896][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1865.662896][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1865.662896][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1865.662896][ T1643] 
[ 1865.662896][ T1643] Uninit was stored to memory at:
[ 1865.662896][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1865.662896][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1865.662896][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1865.662896][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1865.662896][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1865.662896][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1865.662896][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1865.662896][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1865.662896][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1865.662896][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1865.662896][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1865.662896][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1865.662896][ T1643] 
[ 1865.662896][ T1643] Uninit was stored to memory at:
[ 1865.662896][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1865.662896][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1865.662896][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1865.662896][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1865.662896][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1865.662896][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1865.662896][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1865.662896][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1865.662896][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1865.662896][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1865.662896][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1865.662896][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1865.662896][ T1643] 
[ 1865.662896][ T1643] Uninit was stored to memory at:
[ 1865.662896][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1865.662896][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1865.662896][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1865.662896][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1865.662896][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1865.662896][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1865.662896][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1865.662896][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1865.662896][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1865.662896][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1865.662896][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1865.662896][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1865.662896][ T1643] 
[ 1865.662896][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1865.662896][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1865.662896][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1866.629580][ T1643] not chained 820000 origins
[ 1866.632900][ T1643] CPU: 1 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1866.632900][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1866.632900][ T1643] Call Trace:
[ 1866.632900][ T1643]  dump_stack+0x21c/0x280
[ 1866.632900][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1866.632900][ T1643]  ? do_user_addr_fault+0x1045/0x16d0
[ 1866.632900][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1866.632900][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1866.632900][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1866.684531][ T1643]  ? _copy_from_user+0x201/0x310
[ 1866.684531][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1866.684531][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1866.684531][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1866.684531][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1866.684531][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1866.684531][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1866.684531][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1866.684531][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1866.684531][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1866.684531][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1866.684531][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1866.684531][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1866.684531][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1866.684531][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1866.684531][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1866.684531][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1866.684531][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1866.684531][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1866.684531][ T1643] RIP: 0023:0xf7fa4549
[ 1866.684531][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1866.684531][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1866.684531][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1866.684531][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1866.684531][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1866.684531][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1866.684531][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1866.684531][ T1643] Uninit was stored to memory at:
[ 1866.684531][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1866.684531][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1866.684531][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1866.684531][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1866.684531][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1866.684531][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1866.684531][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1866.684531][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1866.684531][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1866.684531][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1866.684531][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1866.684531][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1866.684531][ T1643] 
[ 1866.684531][ T1643] Uninit was stored to memory at:
[ 1866.684531][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1866.684531][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1866.684531][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1866.684531][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1866.684531][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1866.684531][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1866.684531][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1866.684531][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1866.684531][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1866.684531][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1866.684531][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1866.684531][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1867.013111][ T1643] 
[ 1867.013111][ T1643] Uninit was stored to memory at:
[ 1867.013111][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1867.013111][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1867.013111][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1867.013111][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1867.013111][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1867.013111][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1867.013111][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1867.013111][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1867.013111][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1867.013111][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1867.013111][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1867.013111][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1867.013111][ T1643] 
[ 1867.013111][ T1643] Uninit was stored to memory at:
[ 1867.013111][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1867.013111][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1867.013111][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1867.013111][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1867.013111][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1867.013111][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1867.013111][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1867.013111][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1867.013111][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1867.013111][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1867.013111][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1867.013111][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1867.013111][ T1643] 
[ 1867.013111][ T1643] Uninit was stored to memory at:
[ 1867.013111][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1867.013111][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1867.013111][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1867.013111][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1867.013111][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1867.013111][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1867.013111][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1867.013111][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1867.013111][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1867.013111][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1867.013111][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1867.013111][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1867.013111][ T1643] 
[ 1867.013111][ T1643] Uninit was stored to memory at:
[ 1867.013111][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1867.013111][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1867.013111][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1867.013111][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1867.013111][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1867.013111][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1867.013111][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1867.013111][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1867.013111][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1867.013111][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1867.013111][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1867.013111][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1867.013111][ T1643] 
[ 1867.013111][ T1643] Uninit was stored to memory at:
[ 1867.013111][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1867.013111][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1867.013111][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1867.013111][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1867.013111][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1867.013111][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1867.013111][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1867.013111][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1867.013111][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1867.013111][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1867.013111][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1867.013111][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1867.013111][ T1643] 
[ 1867.013111][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1867.013111][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1867.013111][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1867.582059][ T1643] not chained 830000 origins
[ 1867.582893][ T1643] CPU: 1 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1867.582893][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1867.582893][ T1643] Call Trace:
[ 1867.582893][ T1643]  dump_stack+0x21c/0x280
[ 1867.582893][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1867.582893][ T1643]  ? do_user_addr_fault+0x1045/0x16d0
[ 1867.582893][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1867.582893][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1867.582893][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1867.582893][ T1643]  ? _copy_from_user+0x201/0x310
[ 1867.582893][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1867.582893][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1867.582893][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1867.582893][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1867.582893][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1867.582893][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1867.582893][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1867.582893][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1867.582893][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1867.582893][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1867.582893][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1867.582893][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1867.582893][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1867.582893][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1867.582893][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1867.582893][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1867.582893][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1867.582893][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1867.582893][ T1643] RIP: 0023:0xf7fa4549
[ 1867.582893][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1867.582893][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1867.582893][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1867.582893][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1867.582893][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1867.582893][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1867.582893][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1867.582893][ T1643] Uninit was stored to memory at:
[ 1867.582893][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1867.582893][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1867.582893][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1867.582893][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1867.582893][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1867.582893][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1867.582893][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1867.582893][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1867.582893][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1867.582893][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1867.582893][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1867.582893][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1867.582893][ T1643] 
[ 1867.582893][ T1643] Uninit was stored to memory at:
[ 1867.582893][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1867.582893][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1867.582893][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1867.582893][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1867.582893][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1867.582893][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1867.582893][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1867.582893][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1867.582893][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1867.582893][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1867.582893][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1867.582893][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1867.582893][ T1643] 
[ 1867.582893][ T1643] Uninit was stored to memory at:
[ 1867.582893][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1867.582893][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1867.582893][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1867.582893][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1867.582893][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1867.582893][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1867.582893][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1867.582893][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1867.582893][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1867.582893][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1867.582893][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1867.582893][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1867.582893][ T1643] 
[ 1867.582893][ T1643] Uninit was stored to memory at:
[ 1867.582893][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1867.582893][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1867.582893][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1867.582893][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1867.582893][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1867.582893][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1867.582893][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1867.582893][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1867.582893][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1867.582893][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1867.582893][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1867.582893][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1867.582893][ T1643] 
[ 1867.582893][ T1643] Uninit was stored to memory at:
[ 1867.582893][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1867.582893][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1867.582893][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1867.582893][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1867.582893][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1867.582893][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1867.582893][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1867.582893][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1867.582893][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1867.582893][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1867.582893][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1867.582893][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1867.582893][ T1643] 
[ 1867.582893][ T1643] Uninit was stored to memory at:
[ 1867.582893][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1867.582893][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1867.582893][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1867.582893][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1867.582893][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1867.582893][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1867.582893][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1867.582893][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1867.582893][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1867.582893][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1867.582893][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1867.582893][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1867.582893][ T1643] 
[ 1867.582893][ T1643] Uninit was stored to memory at:
[ 1867.582893][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1867.582893][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1867.582893][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1867.582893][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1867.582893][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1867.582893][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1867.582893][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1867.582893][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1867.582893][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1867.582893][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1867.582893][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1867.582893][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1867.582893][ T1643] 
[ 1867.582893][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1867.582893][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1867.582893][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1868.547562][ T1643] not chained 840000 origins
[ 1868.552177][ T1643] CPU: 0 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1868.552891][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1868.552891][ T1643] Call Trace:
[ 1868.573027][ T1643]  dump_stack+0x21c/0x280
[ 1868.573027][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1868.573027][ T1643]  ? do_user_addr_fault+0x1045/0x16d0
[ 1868.573027][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1868.573027][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1868.573027][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1868.573027][ T1643]  ? _copy_from_user+0x201/0x310
[ 1868.573027][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1868.573027][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1868.573027][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1868.573027][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1868.573027][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1868.573027][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1868.573027][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1868.573027][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1868.573027][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1868.573027][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1868.573027][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1868.663081][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1868.663081][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1868.663081][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1868.663081][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1868.663081][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1868.663081][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1868.663081][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1868.663081][ T1643] RIP: 0023:0xf7fa4549
[ 1868.663081][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1868.663081][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1868.733089][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1868.733089][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1868.733089][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1868.733089][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1868.733089][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1868.733089][ T1643] Uninit was stored to memory at:
[ 1868.733089][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1868.733089][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1868.733089][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1868.733089][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1868.733089][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1868.733089][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1868.733089][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1868.733089][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1868.733089][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1868.733089][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1868.733089][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1868.733089][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1868.733089][ T1643] 
[ 1868.733089][ T1643] Uninit was stored to memory at:
[ 1868.733089][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1868.733089][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1868.733089][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1868.733089][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1868.733089][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1868.733089][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1868.733089][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1868.733089][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1868.733089][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1868.733089][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1868.733089][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1868.733089][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1868.733089][ T1643] 
[ 1868.733089][ T1643] Uninit was stored to memory at:
[ 1868.733089][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1868.733089][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1868.733089][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1868.733089][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1868.733089][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1868.733089][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1868.733089][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1868.733089][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1868.733089][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1868.733089][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1868.733089][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1868.733089][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1868.733089][ T1643] 
[ 1868.733089][ T1643] Uninit was stored to memory at:
[ 1868.733089][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1868.733089][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1868.733089][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1868.733089][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1868.733089][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1868.733089][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1868.733089][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1868.733089][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1868.733089][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1868.733089][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1868.733089][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1868.733089][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1868.733089][ T1643] 
[ 1868.733089][ T1643] Uninit was stored to memory at:
[ 1868.733089][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1868.733089][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1868.733089][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1868.733089][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1868.733089][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1868.733089][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1868.733089][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1868.733089][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1868.733089][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1868.733089][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1868.733089][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1868.733089][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1868.733089][ T1643] 
[ 1868.733089][ T1643] Uninit was stored to memory at:
[ 1868.733089][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1868.733089][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1868.733089][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1868.733089][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1868.733089][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1868.733089][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1868.733089][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1868.733089][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1868.733089][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1868.733089][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1868.733089][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1868.733089][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1868.733089][ T1643] 
[ 1868.733089][ T1643] Uninit was stored to memory at:
[ 1868.733089][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1868.733089][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1868.733089][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1868.733089][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1868.733089][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1868.733089][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1868.733089][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1868.733089][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1868.733089][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1868.733089][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1868.733089][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1868.733089][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1868.733089][ T1643] 
[ 1868.733089][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1868.733089][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1868.733089][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1869.478836][ T1643] not chained 850000 origins
[ 1869.482887][ T1643] CPU: 0 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1869.482887][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1869.482887][ T1643] Call Trace:
[ 1869.482887][ T1643]  dump_stack+0x21c/0x280
[ 1869.482887][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1869.482887][ T1643]  ? do_user_addr_fault+0x1045/0x16d0
[ 1869.482887][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1869.482887][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1869.482887][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1869.533036][ T1643]  ? _copy_from_user+0x201/0x310
[ 1869.533036][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1869.533036][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1869.552061][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1869.552061][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1869.552061][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1869.552061][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1869.552061][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1869.552061][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1869.552061][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1869.552061][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1869.552061][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1869.552061][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1869.552061][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1869.552061][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1869.552061][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1869.552061][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1869.552061][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1869.552061][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1869.552061][ T1643] RIP: 0023:0xf7fa4549
[ 1869.552061][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1869.552061][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1869.552061][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1869.552061][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1869.552061][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1869.552061][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1869.552061][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1869.552061][ T1643] Uninit was stored to memory at:
[ 1869.552061][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1869.552061][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1869.552061][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1869.552061][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1869.552061][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1869.552061][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1869.552061][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1869.552061][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1869.552061][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1869.552061][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1869.552061][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1869.552061][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1869.552061][ T1643] 
[ 1869.552061][ T1643] Uninit was stored to memory at:
[ 1869.552061][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1869.552061][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1869.552061][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1869.552061][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1869.552061][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1869.552061][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1869.552061][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1869.552061][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1869.552061][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1869.552061][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1869.552061][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1869.552061][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1869.552061][ T1643] 
[ 1869.552061][ T1643] Uninit was stored to memory at:
[ 1869.552061][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1869.552061][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1869.552061][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1869.552061][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1869.552061][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1869.552061][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1869.552061][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1869.552061][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1869.552061][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1869.552061][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1869.552061][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1869.552061][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1869.552061][ T1643] 
[ 1869.552061][ T1643] Uninit was stored to memory at:
[ 1869.552061][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1869.552061][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1869.552061][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1869.552061][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1869.552061][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1869.552061][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1869.552061][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1869.552061][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1869.552061][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1869.552061][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1869.552061][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1869.985603][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1869.985603][ T1643] 
[ 1869.985603][ T1643] Uninit was stored to memory at:
[ 1869.997475][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1870.003156][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1870.007551][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1870.013194][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1870.015764][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1870.023153][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1870.025606][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1870.033997][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1870.033997][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1870.045651][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1870.045651][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1870.053652][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1870.053652][ T1643] 
[ 1870.064895][ T1643] Uninit was stored to memory at:
[ 1870.067766][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1870.073745][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1870.073745][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1870.085515][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1870.085515][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1870.093698][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1870.093698][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1870.103122][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1870.109358][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1870.115702][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1870.123095][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1870.127449][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1870.133773][ T1643] 
[ 1870.133773][ T1643] Uninit was stored to memory at:
[ 1870.133773][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1870.145625][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1870.145625][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1870.153675][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1870.163106][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1870.168356][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1870.173081][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1870.173688][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1870.183079][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1870.185539][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1870.193747][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1870.193747][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1870.205584][ T1643] 
[ 1870.205584][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1870.213099][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1870.217619][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1870.419293][ T1643] not chained 860000 origins
[ 1870.422879][ T1643] CPU: 0 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1870.422879][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1870.422879][ T1643] Call Trace:
[ 1870.422879][ T1643]  dump_stack+0x21c/0x280
[ 1870.422879][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1870.422879][ T1643]  ? do_user_addr_fault+0x1045/0x16d0
[ 1870.422879][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1870.422879][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1870.422879][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1870.422879][ T1643]  ? _copy_from_user+0x201/0x310
[ 1870.422879][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1870.422879][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1870.493081][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1870.494936][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1870.494936][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1870.494936][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1870.494936][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1870.494936][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1870.523621][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1870.525175][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1870.531521][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1870.538481][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1870.542848][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1870.547753][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1870.552605][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1870.559511][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1870.564750][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1870.570796][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1870.570796][ T1643] RIP: 0023:0xf7fa4549
[ 1870.570796][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1870.599990][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1870.612591][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1870.618720][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1870.627108][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1870.636731][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1870.643126][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1870.653153][ T1643] Uninit was stored to memory at:
[ 1870.661810][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1870.663109][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1870.668993][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1870.674031][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1870.680288][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1870.683120][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1870.692025][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1870.697677][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1870.702813][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1870.708220][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1870.713224][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1870.715562][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1870.723073][ T1643] 
[ 1870.727293][ T1643] Uninit was stored to memory at:
[ 1870.731519][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1870.737415][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1870.743103][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1870.746970][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1870.753200][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1870.756969][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1870.761189][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1870.763122][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1870.773083][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1870.776604][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1870.783066][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1870.788285][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1870.793126][ T1643] 
[ 1870.796003][ T1643] Uninit was stored to memory at:
[ 1870.801542][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1870.808046][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1870.813117][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1870.819138][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1870.823136][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1870.826891][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1870.832258][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1870.839259][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1870.843088][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1870.850225][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1870.853303][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1870.858293][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1870.863106][ T1643] 
[ 1870.866994][ T1643] Uninit was stored to memory at:
[ 1870.873107][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1870.877894][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1870.877894][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1870.890105][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1870.893461][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1870.899748][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1870.903116][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1870.909070][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1870.913288][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1870.918793][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1870.926716][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1870.930941][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1870.936742][ T1643] 
[ 1870.936742][ T1643] Uninit was stored to memory at:
[ 1870.943095][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1870.948857][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1870.955211][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1870.959436][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1870.963125][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1870.966828][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1870.973566][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1870.979549][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1870.983107][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1870.983107][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1870.995861][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1871.000004][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1871.007058][ T1643] 
[ 1871.007058][ T1643] Uninit was stored to memory at:
[ 1871.013098][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1871.020833][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1871.023083][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1871.028724][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1871.034604][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1871.039429][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1871.043075][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1871.051653][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1871.057604][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1871.063090][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1871.066859][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1871.071097][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1871.076856][ T1643] 
[ 1871.076856][ T1643] Uninit was stored to memory at:
[ 1871.085879][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1871.089928][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1871.093109][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1871.097920][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1871.102060][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1871.109145][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1871.114820][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1871.120875][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1871.123112][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1871.131265][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1871.131265][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1871.131265][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1871.131265][ T1643] 
[ 1871.131265][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1871.154197][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1871.154197][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1871.468743][ T1643] not chained 870000 origins
[ 1871.473259][ T1643] CPU: 0 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1871.477948][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1871.489523][ T1643] Call Trace:
[ 1871.495141][ T1643]  dump_stack+0x21c/0x280
[ 1871.498516][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1871.503086][ T1643]  ? do_user_addr_fault+0x1045/0x16d0
[ 1871.506893][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1871.513283][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1871.519064][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1871.527183][ T1643]  ? _copy_from_user+0x201/0x310
[ 1871.531734][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1871.533142][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1871.533142][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1871.533142][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1871.551632][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1871.557193][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1871.562225][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1871.562225][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1871.573030][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1871.573030][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1871.573030][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1871.593778][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1871.593778][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1871.605888][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1871.605888][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1871.613172][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1871.623075][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1871.626010][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1871.633056][ T1643] RIP: 0023:0xf7fa4549
[ 1871.636341][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1871.656656][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1871.666683][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1871.675112][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1871.683077][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1871.687819][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1871.698138][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1871.699684][ T1643] Uninit was stored to memory at:
[ 1871.711599][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1871.713101][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1871.718981][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1871.727242][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1871.733035][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1871.736739][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1871.743089][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1871.748831][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1871.753086][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1871.757801][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1871.763096][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1871.768861][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1871.776656][ T1643] 
[ 1871.777024][ T1643] Uninit was stored to memory at:
[ 1871.783119][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1871.788808][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1871.793148][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1871.798979][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1871.803072][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1871.809160][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1871.813219][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1871.817423][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1871.826219][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1871.829138][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1871.835473][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1871.835473][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1871.847134][ T1643] 
[ 1871.848391][ T1643] Uninit was stored to memory at:
[ 1871.853604][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1871.860340][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1871.863097][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1871.870620][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1871.875386][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1871.879502][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1871.883079][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1871.890480][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1871.895876][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1871.897517][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1871.902639][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1871.910000][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1871.915602][ T1643] 
[ 1871.915602][ T1643] Uninit was stored to memory at:
[ 1871.923089][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1871.927403][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1871.933450][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1871.939012][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1871.943124][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1871.949287][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1871.953023][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1871.956682][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1871.966066][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1871.968639][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1871.973089][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1871.977863][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1871.983159][ T1643] 
[ 1871.989284][ T1643] Uninit was stored to memory at:
[ 1871.994291][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1872.001027][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1872.003088][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1872.010952][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1872.015175][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1872.020610][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1872.021709][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1872.029181][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1872.033480][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1872.039925][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1872.046763][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1872.051924][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1872.057768][ T1643] 
[ 1872.057768][ T1643] Uninit was stored to memory at:
[ 1872.057768][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1872.069746][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1872.075688][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1872.081379][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1872.083117][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1872.090614][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1872.093095][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1872.100340][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1872.107245][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1872.107245][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1872.118036][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1872.118036][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1872.126901][ T1643] 
[ 1872.129830][ T1643] Uninit was stored to memory at:
[ 1872.135967][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1872.141205][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1872.146654][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1872.148129][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1872.153646][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1872.160861][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1872.163072][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1872.167097][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1872.177586][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1872.183058][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1872.185956][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1872.191626][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1872.197152][ T1643] 
[ 1872.197152][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1872.203094][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1872.208799][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1872.537944][ T1643] not chained 880000 origins
[ 1872.542893][ T1643] CPU: 1 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1872.542893][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1872.542893][ T1643] Call Trace:
[ 1872.542893][ T1643]  dump_stack+0x21c/0x280
[ 1872.542893][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1872.542893][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1872.542893][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1872.542893][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1872.542893][ T1643]  ? _copy_from_user+0x201/0x310
[ 1872.542893][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1872.542893][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1872.542893][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1872.542893][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1872.542893][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1872.542893][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1872.542893][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1872.633082][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1872.633082][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1872.633082][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1872.633082][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1872.633082][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1872.633082][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1872.633082][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1872.633082][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1872.633082][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1872.633082][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1872.633082][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1872.633082][ T1643] RIP: 0023:0xf7fa4549
[ 1872.633082][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1872.633082][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1872.633082][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1872.633082][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1872.633082][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1872.633082][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1872.633082][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1872.633082][ T1643] Uninit was stored to memory at:
[ 1872.633082][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1872.633082][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1872.633082][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1872.633082][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1872.790753][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1872.790753][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1872.790753][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1872.790753][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1872.790753][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1872.790753][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1872.790753][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1872.790753][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1872.790753][ T1643] 
[ 1872.790753][ T1643] Uninit was stored to memory at:
[ 1872.790753][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1872.790753][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1872.790753][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1872.790753][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1872.790753][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1872.790753][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1872.790753][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1872.790753][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1872.790753][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1872.790753][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1872.790753][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1872.790753][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1872.790753][ T1643] 
[ 1872.790753][ T1643] Uninit was stored to memory at:
[ 1872.790753][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1872.790753][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1872.790753][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1872.790753][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1872.790753][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1872.790753][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1872.790753][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1872.790753][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1872.790753][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1872.790753][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1872.790753][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1872.790753][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1872.790753][ T1643] 
[ 1872.790753][ T1643] Uninit was stored to memory at:
[ 1872.790753][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1872.790753][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1872.790753][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1872.790753][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1872.790753][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1872.790753][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1872.790753][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1872.790753][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1872.790753][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1872.790753][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1872.790753][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1872.790753][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1872.790753][ T1643] 
[ 1872.790753][ T1643] Uninit was stored to memory at:
[ 1872.790753][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1872.790753][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1872.790753][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1872.790753][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1872.790753][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1872.790753][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1872.790753][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1872.790753][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1872.790753][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1872.790753][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1872.790753][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1872.790753][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1872.790753][ T1643] 
[ 1872.790753][ T1643] Uninit was stored to memory at:
[ 1872.790753][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1872.790753][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1872.790753][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1872.790753][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1872.790753][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1872.790753][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1872.790753][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1872.790753][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1872.790753][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1872.790753][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1872.790753][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1872.790753][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1872.790753][ T1643] 
[ 1872.790753][ T1643] Uninit was stored to memory at:
[ 1872.790753][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1872.790753][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1872.790753][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1872.790753][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1872.790753][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1872.790753][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1872.790753][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1872.790753][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1872.790753][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1872.790753][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1872.790753][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1872.790753][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1872.790753][ T1643] 
[ 1872.790753][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1872.790753][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1872.790753][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1873.501201][ T1643] not chained 890000 origins
[ 1873.502947][ T1643] CPU: 1 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1873.502947][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1873.502947][ T1643] Call Trace:
[ 1873.502947][ T1643]  dump_stack+0x21c/0x280
[ 1873.502947][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1873.502947][ T1643]  ? do_user_addr_fault+0x1045/0x16d0
[ 1873.502947][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1873.502947][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1873.502947][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1873.502947][ T1643]  ? _copy_from_user+0x201/0x310
[ 1873.502947][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1873.502947][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1873.502947][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1873.502947][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1873.502947][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1873.502947][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1873.502947][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1873.502947][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1873.502947][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1873.502947][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1873.502947][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1873.502947][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1873.502947][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1873.502947][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1873.502947][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1873.502947][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1873.502947][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1873.502947][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1873.502947][ T1643] RIP: 0023:0xf7fa4549
[ 1873.502947][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1873.502947][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1873.502947][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1873.502947][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1873.502947][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1873.502947][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1873.502947][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1873.502947][ T1643] Uninit was stored to memory at:
[ 1873.502947][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1873.502947][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1873.502947][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1873.502947][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1873.502947][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1873.502947][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1873.502947][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1873.502947][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1873.502947][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1873.502947][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1873.502947][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1873.502947][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1873.502947][ T1643] 
[ 1873.810864][ T1643] Uninit was stored to memory at:
[ 1873.810864][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1873.810864][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1873.810864][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1873.810864][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1873.810864][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1873.810864][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1873.810864][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1873.810864][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1873.810864][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1873.810864][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1873.810864][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1873.810864][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1873.810864][ T1643] 
[ 1873.810864][ T1643] Uninit was stored to memory at:
[ 1873.810864][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1873.810864][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1873.810864][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1873.810864][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1873.810864][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1873.810864][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1873.810864][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1873.810864][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1873.810864][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1873.810864][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1873.810864][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1873.810864][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1873.810864][ T1643] 
[ 1873.810864][ T1643] Uninit was stored to memory at:
[ 1873.810864][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1873.810864][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1873.810864][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1873.810864][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1873.810864][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1873.810864][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1873.810864][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1873.810864][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1873.810864][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1873.810864][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1873.810864][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1873.810864][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1873.810864][ T1643] 
[ 1873.810864][ T1643] Uninit was stored to memory at:
[ 1873.810864][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1873.810864][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1873.810864][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1873.810864][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1873.810864][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1873.810864][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1873.810864][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1873.810864][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1873.810864][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1873.810864][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1873.810864][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1873.810864][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1873.810864][ T1643] 
[ 1873.810864][ T1643] Uninit was stored to memory at:
[ 1873.810864][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1873.810864][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1873.810864][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1873.810864][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1873.810864][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1873.810864][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1873.810864][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1873.810864][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1873.810864][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1873.810864][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1873.810864][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1873.810864][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1873.810864][ T1643] 
[ 1873.810864][ T1643] Uninit was stored to memory at:
[ 1873.810864][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1873.810864][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1873.810864][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1873.810864][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1873.810864][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1873.810864][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1873.810864][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1873.810864][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1873.810864][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1873.810864][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1873.810864][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1873.810864][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1873.810864][ T1643] 
[ 1873.810864][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1873.810864][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1873.810864][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1874.458729][ T1643] not chained 900000 origins
[ 1874.462899][ T1643] CPU: 1 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1874.466767][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1874.466767][ T1643] Call Trace:
[ 1874.466767][ T1643]  dump_stack+0x21c/0x280
[ 1874.466767][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1874.466767][ T1643]  ? do_user_addr_fault+0x1045/0x16d0
[ 1874.466767][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1874.466767][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1874.466767][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1874.466767][ T1643]  ? _copy_from_user+0x201/0x310
[ 1874.466767][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1874.466767][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1874.466767][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1874.466767][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1874.466767][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1874.466767][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1874.466767][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1874.466767][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1874.466767][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1874.466767][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1874.466767][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1874.466767][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1874.466767][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1874.466767][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1874.466767][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1874.466767][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1874.466767][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1874.466767][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1874.466767][ T1643] RIP: 0023:0xf7fa4549
[ 1874.466767][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1874.466767][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1874.466767][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1874.466767][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1874.466767][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1874.466767][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1874.466767][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1874.466767][ T1643] Uninit was stored to memory at:
[ 1874.692959][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1874.697973][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1874.703788][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1874.709519][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1874.713773][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1874.716810][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1874.716810][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1874.716810][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1874.716810][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1874.716810][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1874.716810][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1874.716810][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1874.716810][ T1643] 
[ 1874.716810][ T1643] Uninit was stored to memory at:
[ 1874.716810][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1874.716810][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1874.716810][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1874.716810][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1874.716810][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1874.716810][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1874.716810][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1874.716810][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1874.716810][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1874.716810][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1874.716810][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1874.716810][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1874.716810][ T1643] 
[ 1874.716810][ T1643] Uninit was stored to memory at:
[ 1874.716810][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1874.716810][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1874.716810][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1874.716810][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1874.716810][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1874.716810][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1874.716810][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1874.716810][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1874.716810][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1874.716810][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1874.716810][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1874.716810][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1874.716810][ T1643] 
[ 1874.716810][ T1643] Uninit was stored to memory at:
[ 1874.716810][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1874.716810][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1874.716810][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1874.716810][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1874.716810][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1874.716810][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1874.716810][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1874.716810][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1874.716810][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1874.716810][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1874.716810][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1874.716810][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1874.716810][ T1643] 
[ 1874.716810][ T1643] Uninit was stored to memory at:
[ 1874.716810][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1874.716810][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1874.716810][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1874.716810][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1874.716810][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1874.716810][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1874.716810][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1874.716810][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1874.716810][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1874.716810][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1874.716810][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1874.716810][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1874.716810][ T1643] 
[ 1874.716810][ T1643] Uninit was stored to memory at:
[ 1874.716810][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1874.716810][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1874.716810][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1874.716810][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1874.716810][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1874.716810][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1874.716810][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1874.716810][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1874.716810][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1874.716810][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1874.716810][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1874.716810][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1874.716810][ T1643] 
[ 1874.716810][ T1643] Uninit was stored to memory at:
[ 1874.716810][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1874.716810][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1874.716810][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1874.716810][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1874.716810][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1874.716810][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1874.716810][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1874.716810][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1874.716810][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1874.716810][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1874.716810][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1874.716810][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1874.716810][ T1643] 
[ 1874.716810][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1874.716810][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1874.716810][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1875.419348][ T1643] not chained 910000 origins
[ 1875.422889][ T1643] CPU: 0 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1875.422889][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1875.422889][ T1643] Call Trace:
[ 1875.422889][ T1643]  dump_stack+0x21c/0x280
[ 1875.422889][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1875.453000][ T1643]  ? do_user_addr_fault+0x1045/0x16d0
[ 1875.453000][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1875.453000][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1875.453000][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1875.453000][ T1643]  ? _copy_from_user+0x201/0x310
[ 1875.453000][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1875.453000][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1875.453000][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1875.453000][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1875.453000][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1875.453000][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1875.453000][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1875.453000][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1875.453000][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1875.453000][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1875.533061][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1875.533061][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1875.533061][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1875.533061][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1875.533061][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1875.533061][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1875.533061][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1875.533061][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1875.533061][ T1643] RIP: 0023:0xf7fa4549
[ 1875.533061][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1875.533061][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1875.603761][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1875.603761][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1875.603761][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1875.603761][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1875.603761][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1875.603761][ T1643] Uninit was stored to memory at:
[ 1875.603761][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1875.603761][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1875.603761][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1875.666918][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1875.666918][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1875.666918][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1875.666918][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1875.666918][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1875.666918][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1875.666918][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1875.666918][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1875.666918][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1875.666918][ T1643] 
[ 1875.666918][ T1643] Uninit was stored to memory at:
[ 1875.666918][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1875.666918][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1875.666918][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1875.666918][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1875.666918][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1875.666918][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1875.666918][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1875.666918][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1875.666918][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1875.666918][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1875.666918][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1875.666918][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1875.666918][ T1643] 
[ 1875.666918][ T1643] Uninit was stored to memory at:
[ 1875.666918][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1875.666918][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1875.666918][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1875.666918][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1875.666918][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1875.666918][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1875.666918][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1875.666918][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1875.666918][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1875.666918][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1875.666918][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1875.666918][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1875.666918][ T1643] 
[ 1875.666918][ T1643] Uninit was stored to memory at:
[ 1875.666918][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1875.666918][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1875.666918][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1875.666918][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1875.666918][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1875.666918][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1875.666918][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1875.666918][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1875.666918][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1875.666918][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1875.666918][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1875.666918][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1875.666918][ T1643] 
[ 1875.666918][ T1643] Uninit was stored to memory at:
[ 1875.666918][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1875.666918][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1875.666918][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1875.666918][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1875.666918][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1875.666918][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1875.666918][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1875.666918][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1875.666918][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1875.666918][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1875.666918][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1875.666918][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1875.666918][ T1643] 
[ 1875.666918][ T1643] Uninit was stored to memory at:
[ 1875.666918][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1875.666918][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1875.666918][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1875.666918][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1875.666918][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1875.666918][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1875.666918][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1875.666918][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1875.666918][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1875.666918][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1875.666918][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1875.666918][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1875.666918][ T1643] 
[ 1875.666918][ T1643] Uninit was stored to memory at:
[ 1875.666918][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1875.666918][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1875.666918][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1875.666918][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1875.666918][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1875.666918][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1875.666918][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1875.666918][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1875.666918][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1875.666918][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1875.666918][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1875.666918][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1875.666918][ T1643] 
[ 1875.666918][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1875.666918][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1875.666918][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1876.369499][ T1643] not chained 920000 origins
[ 1876.373174][ T1643] CPU: 0 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1876.375379][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1876.375379][ T1643] Call Trace:
[ 1876.375379][ T1643]  dump_stack+0x21c/0x280
[ 1876.375379][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1876.375379][ T1643]  ? do_user_addr_fault+0x1045/0x16d0
[ 1876.375379][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1876.414048][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1876.414048][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1876.414048][ T1643]  ? _copy_from_user+0x201/0x310
[ 1876.414048][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1876.414048][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1876.414048][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1876.414048][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1876.414048][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1876.414048][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1876.414048][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1876.414048][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1876.414048][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1876.414048][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1876.414048][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1876.414048][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1876.493255][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1876.493255][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1876.493255][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1876.493255][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1876.493255][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1876.523151][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1876.523151][ T1643] RIP: 0023:0xf7fa4549
[ 1876.523151][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1876.523151][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1876.523151][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1876.523151][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1876.523151][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1876.523151][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1876.593032][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1876.593032][ T1643] Uninit was stored to memory at:
[ 1876.593032][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1876.593032][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1876.593032][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1876.593032][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1876.593032][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1876.593032][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1876.593032][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1876.593032][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1876.593032][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1876.593032][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1876.593032][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1876.663149][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1876.663149][ T1643] 
[ 1876.663149][ T1643] Uninit was stored to memory at:
[ 1876.663149][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1876.663149][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1876.663149][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1876.663149][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1876.663149][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1876.663149][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1876.663149][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1876.663149][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1876.663149][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1876.663149][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1876.663149][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1876.663149][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1876.663149][ T1643] 
[ 1876.663149][ T1643] Uninit was stored to memory at:
[ 1876.663149][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1876.663149][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1876.663149][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1876.663149][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1876.663149][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1876.663149][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1876.663149][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1876.663149][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1876.663149][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1876.663149][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1876.663149][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1876.663149][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1876.663149][ T1643] 
[ 1876.663149][ T1643] Uninit was stored to memory at:
[ 1876.663149][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1876.663149][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1876.663149][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1876.663149][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1876.663149][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1876.663149][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1876.663149][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1876.663149][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1876.663149][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1876.663149][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1876.663149][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1876.663149][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1876.663149][ T1643] 
[ 1876.663149][ T1643] Uninit was stored to memory at:
[ 1876.663149][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1876.663149][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1876.663149][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1876.663149][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1876.663149][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1876.663149][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1876.663149][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1876.663149][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1876.663149][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1876.663149][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1876.663149][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1876.663149][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1876.663149][ T1643] 
[ 1876.663149][ T1643] Uninit was stored to memory at:
[ 1876.663149][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1876.663149][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1876.663149][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1876.663149][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1876.663149][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1876.663149][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1876.663149][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1876.663149][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1876.663149][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1876.663149][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1876.663149][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1876.663149][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1876.663149][ T1643] 
[ 1876.663149][ T1643] Uninit was stored to memory at:
[ 1876.663149][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1876.663149][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1876.663149][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1876.663149][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1876.663149][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1876.663149][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1876.663149][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1876.663149][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1876.663149][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1876.663149][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1876.663149][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1876.663149][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1876.663149][ T1643] 
[ 1876.663149][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1876.663149][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1876.663149][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1877.272508][ T1643] not chained 930000 origins
[ 1877.276014][ T1643] CPU: 0 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1877.278214][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1877.278214][ T1643] Call Trace:
[ 1877.278214][ T1643]  dump_stack+0x21c/0x280
[ 1877.278214][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1877.278214][ T1643]  ? do_user_addr_fault+0x1045/0x16d0
[ 1877.278214][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1877.278214][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1877.278214][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1877.278214][ T1643]  ? _copy_from_user+0x201/0x310
[ 1877.278214][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1877.278214][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1877.278214][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1877.278214][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1877.278214][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1877.278214][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1877.278214][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1877.373235][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1877.375190][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1877.375190][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1877.387158][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1877.392286][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1877.396342][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1877.404594][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1877.411026][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1877.413141][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1877.420175][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1877.424335][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1877.429709][ T1643] RIP: 0023:0xf7fa4549
[ 1877.433075][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1877.447583][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1877.447583][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1877.471756][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1877.477669][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1877.487649][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1877.495679][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1877.503062][ T1643] Uninit was stored to memory at:
[ 1877.506847][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1877.514627][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1877.518086][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1877.518086][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1877.529060][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1877.533131][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1877.537231][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1877.544545][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1877.544545][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1877.554714][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1877.554714][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1877.564535][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1877.564535][ T1643] 
[ 1877.573113][ T1643] Uninit was stored to memory at:
[ 1877.576579][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1877.583102][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1877.586741][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1877.594623][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1877.594623][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1877.604534][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1877.604534][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1877.614697][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1877.614697][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1877.624562][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1877.624562][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1877.633112][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1877.643082][ T1643] 
[ 1877.644631][ T1643] Uninit was stored to memory at:
[ 1877.644631][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1877.654643][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1877.654643][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1877.664577][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1877.664577][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1877.674718][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1877.674718][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1877.686555][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1877.693156][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1877.693156][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1877.693156][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1877.693156][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1877.713481][ T1643] 
[ 1877.716046][ T1643] Uninit was stored to memory at:
[ 1877.717418][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1877.726746][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1877.729731][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1877.735529][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1877.741259][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1877.744229][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1877.744229][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1877.754283][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1877.763122][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1877.767147][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1877.773147][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1877.777649][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1877.777649][ T1643] 
[ 1877.786321][ T1643] Uninit was stored to memory at:
[ 1877.786321][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1877.795113][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1877.795113][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1877.803116][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1877.811145][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1877.816914][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1877.818092][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1877.826873][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1877.833148][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1877.835595][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1877.843122][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1877.843122][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1877.852476][ T1643] 
[ 1877.852476][ T1643] Uninit was stored to memory at:
[ 1877.859840][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1877.867047][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1877.871368][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1877.876825][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1877.876825][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1877.886062][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1877.889221][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1877.895698][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1877.903117][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1877.908793][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1877.913048][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1877.918829][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1877.918829][ T1643] 
[ 1877.926953][ T1643] Uninit was stored to memory at:
[ 1877.933017][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1877.935949][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1877.943109][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1877.946226][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1877.953062][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1877.958235][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1877.959738][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1877.963122][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1877.973508][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1877.978657][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1877.983122][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1877.988714][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1877.996079][ T1643] 
[ 1877.996079][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1878.003131][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1878.007901][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1878.253819][ T1643] not chained 940000 origins
[ 1878.258455][ T1643] CPU: 0 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1878.262886][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1878.262886][ T1643] Call Trace:
[ 1878.262886][ T1643]  dump_stack+0x21c/0x280
[ 1878.262886][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1878.262886][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1878.262886][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1878.262886][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1878.262886][ T1643]  ? _copy_from_user+0x201/0x310
[ 1878.262886][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1878.262886][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1878.262886][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1878.262886][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1878.262886][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1878.262886][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1878.262886][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1878.262886][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1878.262886][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1878.262886][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1878.262886][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1878.262886][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1878.262886][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1878.262886][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1878.262886][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1878.262886][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1878.262886][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1878.262886][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1878.262886][ T1643] RIP: 0023:0xf7fa4549
[ 1878.262886][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1878.423362][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1878.423362][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1878.443036][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1878.443036][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1878.443036][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1878.443036][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1878.443036][ T1643] Uninit was stored to memory at:
[ 1878.443036][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1878.443036][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1878.493528][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1878.493528][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1878.493528][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1878.493528][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1878.513117][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1878.513117][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1878.513117][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1878.513117][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1878.513117][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1878.513117][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1878.513117][ T1643] 
[ 1878.513117][ T1643] Uninit was stored to memory at:
[ 1878.513117][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1878.513117][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1878.513117][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1878.513117][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1878.513117][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1878.583052][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1878.583052][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1878.583052][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1878.583052][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1878.583052][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1878.583052][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1878.583052][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1878.583052][ T1643] 
[ 1878.583052][ T1643] Uninit was stored to memory at:
[ 1878.583052][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1878.583052][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1878.583052][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1878.583052][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1878.583052][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1878.583052][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1878.583052][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1878.583052][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1878.583052][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1878.583052][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1878.583052][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1878.583052][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1878.583052][ T1643] 
[ 1878.583052][ T1643] Uninit was stored to memory at:
[ 1878.583052][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1878.583052][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1878.583052][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1878.583052][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1878.583052][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1878.583052][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1878.583052][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1878.583052][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1878.583052][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1878.583052][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1878.583052][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1878.583052][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1878.583052][ T1643] 
[ 1878.583052][ T1643] Uninit was stored to memory at:
[ 1878.583052][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1878.583052][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1878.583052][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1878.583052][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1878.583052][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1878.583052][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1878.583052][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1878.583052][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1878.583052][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1878.583052][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1878.583052][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1878.583052][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1878.583052][ T1643] 
[ 1878.583052][ T1643] Uninit was stored to memory at:
[ 1878.583052][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1878.583052][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1878.583052][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1878.583052][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1878.583052][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1878.583052][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1878.583052][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1878.583052][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1878.583052][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1878.583052][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1878.583052][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1878.583052][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1878.583052][ T1643] 
[ 1878.583052][ T1643] Uninit was stored to memory at:
[ 1878.583052][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1878.583052][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1878.583052][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1878.583052][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1878.583052][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1878.583052][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1878.583052][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1878.583052][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1878.953055][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1878.953055][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1878.953055][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1878.953055][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1878.953055][ T1643] 
[ 1878.953055][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1878.953055][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1878.953055][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1879.161202][ T1643] not chained 950000 origins
[ 1879.162889][ T1643] CPU: 0 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1879.162889][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1879.178623][ T1643] Call Trace:
[ 1879.178623][ T1643]  dump_stack+0x21c/0x280
[ 1879.178623][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1879.178623][ T1643]  ? do_user_addr_fault+0x1045/0x16d0
[ 1879.178623][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1879.178623][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1879.178623][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1879.178623][ T1643]  ? _copy_from_user+0x201/0x310
[ 1879.178623][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1879.178623][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1879.178623][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1879.178623][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1879.178623][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1879.178623][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1879.178623][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1879.178623][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1879.178623][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1879.178623][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1879.178623][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1879.178623][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1879.178623][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1879.178623][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1879.178623][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1879.178623][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1879.178623][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1879.178623][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1879.178623][ T1643] RIP: 0023:0xf7fa4549
[ 1879.178623][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1879.178623][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1879.178623][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1879.178623][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1879.178623][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1879.178623][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1879.178623][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1879.178623][ T1643] Uninit was stored to memory at:
[ 1879.178623][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1879.178623][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1879.178623][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1879.178623][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1879.178623][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1879.178623][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1879.178623][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1879.178623][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1879.178623][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1879.178623][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1879.178623][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1879.453043][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1879.458031][ T1643] 
[ 1879.458031][ T1643] Uninit was stored to memory at:
[ 1879.466082][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1879.466082][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1879.475128][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1879.475128][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1879.483101][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1879.488363][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1879.493269][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1879.503087][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1879.505943][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1879.513071][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1879.516956][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1879.523127][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1879.526051][ T1643] 
[ 1879.526051][ T1643] Uninit was stored to memory at:
[ 1879.533155][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1879.543098][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1879.545953][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1879.553071][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1879.555374][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1879.555374][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1879.565942][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1879.573167][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1879.573167][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1879.583137][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1879.583137][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1879.593177][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1879.593177][ T1643] 
[ 1879.593177][ T1643] Uninit was stored to memory at:
[ 1879.605982][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1879.613302][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1879.613302][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1879.623132][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1879.623132][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1879.633039][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1879.633176][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1879.643158][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1879.646162][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1879.653271][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1879.653271][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1879.663122][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1879.667966][ T1643] 
[ 1879.673248][ T1643] Uninit was stored to memory at:
[ 1879.673248][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1879.683120][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1879.686295][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1879.693062][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1879.695089][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1879.703190][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1879.706130][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1879.713152][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1879.713152][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1879.723134][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1879.726835][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1879.733069][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1879.738405][ T1643] 
[ 1879.743201][ T1643] Uninit was stored to memory at:
[ 1879.747339][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1879.754230][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1879.754230][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1879.763109][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1879.766761][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1879.773138][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1879.773138][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1879.773138][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1879.788279][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1879.793500][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1879.797032][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1879.803115][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1879.808581][ T1643] 
[ 1879.813488][ T1643] Uninit was stored to memory at:
[ 1879.817647][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1879.823100][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1879.827757][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1879.833185][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1879.840154][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1879.843126][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1879.843126][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1879.853240][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1879.857207][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1879.866083][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1879.867376][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1879.873279][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1879.878189][ T1643] 
[ 1879.878189][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1879.890086][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1879.896285][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1880.149495][ T1643] not chained 960000 origins
[ 1880.152885][ T1643] CPU: 0 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1880.152885][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1880.152885][ T1643] Call Trace:
[ 1880.152885][ T1643]  dump_stack+0x21c/0x280
[ 1880.152885][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1880.152885][ T1643]  ? do_user_addr_fault+0x1045/0x16d0
[ 1880.152885][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1880.152885][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1880.152885][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1880.152885][ T1643]  ? _copy_from_user+0x201/0x310
[ 1880.152885][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1880.152885][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1880.152885][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1880.152885][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1880.152885][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1880.152885][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1880.152885][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1880.152885][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1880.152885][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1880.152885][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1880.152885][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1880.152885][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1880.152885][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1880.152885][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1880.152885][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1880.152885][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1880.152885][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1880.152885][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1880.152885][ T1643] RIP: 0023:0xf7fa4549
[ 1880.152885][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1880.152885][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1880.152885][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1880.152885][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1880.152885][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1880.152885][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1880.152885][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1880.152885][ T1643] Uninit was stored to memory at:
[ 1880.152885][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1880.152885][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1880.152885][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1880.152885][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1880.152885][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1880.152885][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1880.152885][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1880.152885][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1880.152885][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1880.152885][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1880.152885][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1880.152885][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1880.152885][ T1643] 
[ 1880.152885][ T1643] Uninit was stored to memory at:
[ 1880.152885][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1880.152885][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1880.152885][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1880.152885][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1880.152885][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1880.152885][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1880.152885][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1880.152885][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1880.498784][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1880.498784][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1880.498784][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1880.498784][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1880.498784][ T1643] 
[ 1880.498784][ T1643] Uninit was stored to memory at:
[ 1880.498784][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1880.498784][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1880.498784][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1880.498784][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1880.498784][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1880.498784][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1880.498784][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1880.498784][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1880.498784][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1880.498784][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1880.498784][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1880.498784][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1880.498784][ T1643] 
[ 1880.498784][ T1643] Uninit was stored to memory at:
[ 1880.498784][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1880.498784][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1880.498784][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1880.498784][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1880.498784][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1880.498784][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1880.498784][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1880.498784][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1880.498784][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1880.498784][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1880.498784][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1880.498784][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1880.498784][ T1643] 
[ 1880.498784][ T1643] Uninit was stored to memory at:
[ 1880.498784][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1880.498784][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1880.498784][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1880.498784][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1880.498784][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1880.498784][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1880.498784][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1880.498784][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1880.714496][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1880.716328][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1880.716328][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1880.716328][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1880.716328][ T1643] 
[ 1880.716328][ T1643] Uninit was stored to memory at:
[ 1880.716328][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1880.716328][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1880.716328][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1880.716328][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1880.716328][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1880.716328][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1880.716328][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1880.716328][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1880.716328][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1880.716328][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1880.716328][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1880.716328][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1880.716328][ T1643] 
[ 1880.716328][ T1643] Uninit was stored to memory at:
[ 1880.716328][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1880.716328][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1880.716328][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1880.716328][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1880.716328][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1880.716328][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1880.716328][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1880.716328][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1880.716328][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1880.716328][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1880.716328][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1880.716328][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1880.716328][ T1643] 
[ 1880.716328][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1880.716328][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1880.716328][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1881.108183][ T1643] not chained 970000 origins
[ 1881.112784][ T1643] CPU: 0 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1881.112910][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1881.112910][ T1643] Call Trace:
[ 1881.133122][ T1643]  dump_stack+0x21c/0x280
[ 1881.136000][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1881.144094][ T1643]  ? do_user_addr_fault+0x1045/0x16d0
[ 1881.144094][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1881.153134][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1881.155307][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1881.163122][ T1643]  ? _copy_from_user+0x201/0x310
[ 1881.167940][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1881.175126][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1881.175126][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1881.184191][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1881.184191][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1881.195086][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1881.195086][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1881.206113][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1881.206113][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1881.215109][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1881.215109][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1881.226691][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1881.226691][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1881.237100][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1881.244436][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1881.244436][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1881.253116][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1881.255265][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1881.264129][ T1643] RIP: 0023:0xf7fa4549
[ 1881.264129][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1881.287202][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1881.293112][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1881.304090][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1881.313095][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1881.317066][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1881.328978][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1881.335155][ T1643] Uninit was stored to memory at:
[ 1881.335155][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1881.346017][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1881.353114][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1881.355169][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1881.363058][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1881.364094][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1881.364094][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1881.373138][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1881.373138][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1881.373138][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1881.373138][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1881.395813][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1881.405990][ T1643] 
[ 1881.405990][ T1643] Uninit was stored to memory at:
[ 1881.413258][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1881.413258][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1881.423134][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1881.427976][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1881.433161][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1881.433161][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1881.443133][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1881.446090][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1881.455205][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1881.455205][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1881.463087][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1881.465952][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1881.473280][ T1643] 
[ 1881.473280][ T1643] Uninit was stored to memory at:
[ 1881.483082][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1881.485940][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1881.493155][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1881.493155][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1881.503155][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1881.503155][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1881.513159][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1881.513159][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1881.523078][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1881.525910][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1881.525910][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1881.525910][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1881.546018][ T1643] 
[ 1881.546018][ T1643] Uninit was stored to memory at:
[ 1881.553147][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1881.553147][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1881.563140][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1881.567907][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1881.573160][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1881.573160][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1881.583122][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1881.585992][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1881.593298][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1881.603144][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1881.606153][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1881.606153][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1881.613179][ T1643] 
[ 1881.613179][ T1643] Uninit was stored to memory at:
[ 1881.626230][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1881.626230][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1881.636142][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1881.636142][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1881.643195][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1881.648038][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1881.653161][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1881.653161][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1881.666026][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1881.673022][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1881.674993][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1881.674993][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1881.686160][ T1643] 
[ 1881.686160][ T1643] Uninit was stored to memory at:
[ 1881.692996][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1881.692996][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1881.706098][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1881.706098][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1881.713172][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1881.713172][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1881.723186][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1881.729958][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1881.733021][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1881.743177][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1881.746177][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1881.755060][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1881.763144][ T1643] 
[ 1881.763144][ T1643] Uninit was stored to memory at:
[ 1881.766395][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1881.773168][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1881.773168][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1881.783201][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1881.788678][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1881.792988][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1881.792988][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1881.806140][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1881.813004][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1881.813004][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1881.823150][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1881.826216][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1881.833049][ T1643] 
[ 1881.836884][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1881.843127][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1881.846090][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1882.182227][ T1643] not chained 980000 origins
[ 1882.182901][ T1643] CPU: 1 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1882.182901][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1882.182901][ T1643] Call Trace:
[ 1882.182901][ T1643]  dump_stack+0x21c/0x280
[ 1882.182901][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1882.182901][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1882.182901][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1882.182901][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1882.182901][ T1643]  ? _copy_from_user+0x201/0x310
[ 1882.182901][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1882.182901][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1882.249681][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1882.249681][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1882.249681][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1882.249681][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1882.249681][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1882.249681][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1882.249681][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1882.249681][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1882.249681][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1882.249681][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1882.249681][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1882.249681][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1882.249681][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1882.249681][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1882.249681][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1882.249681][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1882.249681][ T1643] RIP: 0023:0xf7fa4549
[ 1882.249681][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1882.355785][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1882.355785][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1882.355785][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1882.355785][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1882.355785][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1882.355785][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1882.355785][ T1643] Uninit was stored to memory at:
[ 1882.355785][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1882.355785][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1882.355785][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1882.355785][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1882.355785][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1882.355785][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1882.355785][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1882.355785][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1882.355785][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1882.355785][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1882.355785][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1882.355785][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1882.355785][ T1643] 
[ 1882.355785][ T1643] Uninit was stored to memory at:
[ 1882.355785][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1882.355785][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1882.355785][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1882.355785][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1882.355785][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1882.355785][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1882.355785][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1882.355785][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1882.355785][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1882.355785][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1882.355785][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1882.355785][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1882.355785][ T1643] 
[ 1882.355785][ T1643] Uninit was stored to memory at:
[ 1882.355785][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1882.355785][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1882.355785][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1882.355785][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1882.355785][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1882.355785][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1882.355785][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1882.355785][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1882.355785][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1882.355785][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1882.355785][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1882.355785][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1882.355785][ T1643] 
[ 1882.355785][ T1643] Uninit was stored to memory at:
[ 1882.355785][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1882.355785][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1882.355785][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1882.355785][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1882.355785][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1882.355785][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1882.355785][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1882.355785][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1882.355785][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1882.355785][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1882.355785][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1882.355785][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1882.355785][ T1643] 
[ 1882.355785][ T1643] Uninit was stored to memory at:
[ 1882.355785][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1882.355785][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1882.355785][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1882.355785][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1882.355785][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1882.355785][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1882.355785][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1882.355785][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1882.355785][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1882.355785][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1882.355785][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1882.355785][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1882.355785][ T1643] 
[ 1882.355785][ T1643] Uninit was stored to memory at:
[ 1882.355785][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1882.355785][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1882.355785][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1882.355785][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1882.355785][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1882.355785][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1882.355785][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1882.355785][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1882.355785][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1882.355785][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1882.355785][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1882.355785][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1882.355785][ T1643] 
[ 1882.355785][ T1643] Uninit was stored to memory at:
[ 1882.355785][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1882.355785][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1882.355785][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1882.355785][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1882.355785][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1882.355785][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1882.355785][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1882.355785][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1882.355785][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1882.355785][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1882.355785][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1882.355785][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1882.355785][ T1643] 
[ 1882.355785][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1882.355785][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1882.355785][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1883.119171][ T1643] not chained 990000 origins
[ 1883.122941][ T1643] CPU: 1 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1883.122941][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1883.122941][ T1643] Call Trace:
[ 1883.122941][ T1643]  dump_stack+0x21c/0x280
[ 1883.122941][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1883.122941][ T1643]  ? do_user_addr_fault+0x1045/0x16d0
[ 1883.122941][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1883.122941][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1883.122941][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1883.122941][ T1643]  ? _copy_from_user+0x201/0x310
[ 1883.122941][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1883.122941][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1883.122941][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1883.122941][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1883.122941][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1883.122941][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1883.122941][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1883.122941][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1883.122941][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1883.122941][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1883.122941][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1883.122941][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1883.122941][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1883.122941][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1883.122941][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1883.122941][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1883.122941][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1883.122941][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1883.122941][ T1643] RIP: 0023:0xf7fa4549
[ 1883.122941][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1883.122941][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1883.122941][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1883.122941][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1883.122941][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1883.122941][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1883.122941][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1883.122941][ T1643] Uninit was stored to memory at:
[ 1883.122941][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1883.362947][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1883.362947][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1883.362947][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1883.376852][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1883.376852][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1883.376852][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1883.376852][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1883.376852][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1883.376852][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1883.376852][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1883.376852][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1883.376852][ T1643] 
[ 1883.376852][ T1643] Uninit was stored to memory at:
[ 1883.376852][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1883.376852][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1883.376852][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1883.376852][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1883.376852][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1883.376852][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1883.376852][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1883.376852][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1883.376852][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1883.376852][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1883.376852][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1883.376852][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1883.376852][ T1643] 
[ 1883.376852][ T1643] Uninit was stored to memory at:
[ 1883.376852][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1883.376852][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1883.376852][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1883.376852][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1883.376852][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1883.376852][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1883.376852][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1883.376852][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1883.376852][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1883.376852][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1883.376852][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1883.376852][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1883.376852][ T1643] 
[ 1883.376852][ T1643] Uninit was stored to memory at:
[ 1883.376852][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1883.376852][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1883.376852][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1883.376852][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1883.376852][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1883.376852][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1883.376852][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1883.376852][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1883.376852][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1883.376852][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1883.376852][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1883.376852][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1883.376852][ T1643] 
[ 1883.376852][ T1643] Uninit was stored to memory at:
[ 1883.376852][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1883.376852][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1883.376852][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1883.376852][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1883.376852][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1883.376852][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1883.376852][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1883.376852][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1883.376852][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1883.376852][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1883.376852][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1883.376852][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1883.376852][ T1643] 
[ 1883.376852][ T1643] Uninit was stored to memory at:
[ 1883.376852][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1883.376852][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1883.376852][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1883.376852][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1883.376852][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1883.376852][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1883.376852][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1883.376852][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1883.376852][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1883.376852][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1883.376852][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1883.376852][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1883.376852][ T1643] 
[ 1883.376852][ T1643] Uninit was stored to memory at:
[ 1883.376852][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1883.376852][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1883.376852][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1883.376852][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1883.376852][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1883.376852][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1883.376852][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1883.376852][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1883.376852][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1883.376852][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1883.376852][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1883.376852][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1883.376852][ T1643] 
[ 1883.376852][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1883.376852][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1883.376852][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1884.049227][ T1643] not chained 1000000 origins
[ 1884.052945][ T1643] CPU: 1 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1884.052945][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1884.052945][ T1643] Call Trace:
[ 1884.052945][ T1643]  dump_stack+0x21c/0x280
[ 1884.052945][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1884.052945][ T1643]  ? do_user_addr_fault+0x1045/0x16d0
[ 1884.052945][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1884.092406][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1884.092406][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1884.092406][ T1643]  ? _copy_from_user+0x201/0x310
[ 1884.092406][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1884.092406][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1884.092406][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1884.092406][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1884.092406][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1884.092406][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1884.092406][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1884.092406][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1884.092406][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1884.092406][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1884.092406][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1884.092406][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1884.092406][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1884.092406][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1884.092406][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1884.092406][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1884.092406][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1884.092406][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1884.092406][ T1643] RIP: 0023:0xf7fa4549
[ 1884.092406][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1884.092406][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1884.092406][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1884.092406][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1884.092406][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1884.092406][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1884.092406][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1884.092406][ T1643] Uninit was stored to memory at:
[ 1884.092406][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1884.092406][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1884.092406][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1884.092406][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1884.092406][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1884.092406][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1884.092406][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1884.092406][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1884.092406][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1884.092406][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1884.092406][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1884.092406][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1884.092406][ T1643] 
[ 1884.092406][ T1643] Uninit was stored to memory at:
[ 1884.092406][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1884.092406][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1884.092406][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1884.092406][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1884.092406][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1884.092406][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1884.092406][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1884.092406][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1884.092406][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1884.092406][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1884.092406][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1884.092406][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1884.092406][ T1643] 
[ 1884.092406][ T1643] Uninit was stored to memory at:
[ 1884.092406][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1884.432265][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1884.432265][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1884.432265][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1884.432265][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1884.432265][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1884.432265][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1884.432265][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1884.432265][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1884.432265][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1884.432265][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1884.432265][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1884.432265][ T1643] 
[ 1884.432265][ T1643] Uninit was stored to memory at:
[ 1884.432265][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1884.502631][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1884.504298][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1884.504298][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1884.504298][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1884.504298][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1884.504298][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1884.504298][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1884.504298][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1884.504298][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1884.504298][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1884.504298][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1884.504298][ T1643] 
[ 1884.504298][ T1643] Uninit was stored to memory at:
[ 1884.504298][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1884.504298][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1884.504298][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1884.504298][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1884.504298][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1884.504298][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1884.504298][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1884.504298][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1884.504298][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1884.504298][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1884.504298][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1884.504298][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1884.504298][ T1643] 
[ 1884.504298][ T1643] Uninit was stored to memory at:
[ 1884.504298][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1884.504298][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1884.504298][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1884.504298][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1884.504298][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1884.504298][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1884.504298][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1884.504298][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1884.504298][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1884.504298][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1884.504298][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1884.504298][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1884.504298][ T1643] 
[ 1884.504298][ T1643] Uninit was stored to memory at:
[ 1884.504298][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1884.504298][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1884.504298][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1884.504298][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1884.504298][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1884.504298][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1884.504298][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1884.504298][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1884.504298][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1884.504298][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1884.504298][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1884.504298][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1884.504298][ T1643] 
[ 1884.504298][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1884.504298][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1884.504298][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1885.033219][ T1643] not chained 1010000 origins
[ 1885.037921][ T1643] CPU: 0 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1885.042964][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1885.053097][ T1643] Call Trace:
[ 1885.053097][ T1643]  dump_stack+0x21c/0x280
[ 1885.053097][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1885.053097][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1885.053097][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1885.053097][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1885.053097][ T1643]  ? _copy_from_user+0x201/0x310
[ 1885.053097][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1885.093018][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1885.093018][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1885.093018][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1885.093018][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1885.093018][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1885.093018][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1885.123058][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1885.129076][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1885.129076][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1885.138338][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1885.143132][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1885.153225][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1885.153225][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1885.166016][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1885.166016][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1885.173031][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1885.173031][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1885.186095][ T1643] RIP: 0023:0xf7fa4549
[ 1885.186095][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1885.206067][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1885.220215][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1885.226002][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1885.233024][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1885.243138][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1885.249823][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1885.256850][ T1643] Uninit was stored to memory at:
[ 1885.263138][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1885.266106][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1885.273203][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1885.273203][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1885.286080][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1885.286080][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1885.293017][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1885.293017][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1885.306156][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1885.313002][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1885.313002][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1885.323118][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1885.326321][ T1643] 
[ 1885.326321][ T1643] Uninit was stored to memory at:
[ 1885.333165][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1885.333165][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1885.346178][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1885.346178][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1885.356944][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1885.356944][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1885.363175][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1885.373032][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1885.376366][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1885.383158][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1885.386067][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1885.393289][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1885.393289][ T1643] 
[ 1885.393289][ T1643] Uninit was stored to memory at:
[ 1885.406073][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1885.413025][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1885.413025][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1885.413025][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1885.428266][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1885.433026][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1885.433026][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1885.443094][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1885.446112][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1885.453484][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1885.453484][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1885.463151][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1885.469850][ T1643] 
[ 1885.473087][ T1643] Uninit was stored to memory at:
[ 1885.476927][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1885.483122][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1885.486156][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1885.493047][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1885.493047][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1885.503137][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1885.506122][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1885.513230][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1885.513230][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1885.523161][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1885.528432][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1885.533300][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1885.533300][ T1643] 
[ 1885.543135][ T1643] Uninit was stored to memory at:
[ 1885.546185][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1885.553051][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1885.553051][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1885.563111][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1885.566266][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1885.573106][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1885.577012][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1885.583168][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1885.590187][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1885.593053][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1885.593053][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1885.606194][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1885.613041][ T1643] 
[ 1885.613041][ T1643] Uninit was stored to memory at:
[ 1885.613041][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1885.623174][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1885.629733][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1885.633215][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1885.633215][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1885.643159][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1885.646159][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1885.653047][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1885.653047][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1885.666297][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1885.673039][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1885.673039][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1885.683165][ T1643] 
[ 1885.683165][ T1643] Uninit was stored to memory at:
[ 1885.689889][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1885.696930][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1885.696930][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1885.706031][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1885.706031][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1885.713415][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1885.713415][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1885.726229][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1885.733022][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1885.733022][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1885.743085][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1885.746026][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1885.753177][ T1643] 
[ 1885.753177][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1885.763087][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1885.766025][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1886.154763][ T1643] not chained 1020000 origins
[ 1886.159492][ T1643] CPU: 1 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1886.162905][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1886.162905][ T1643] Call Trace:
[ 1886.162905][ T1643]  dump_stack+0x21c/0x280
[ 1886.162905][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1886.162905][ T1643]  ? do_user_addr_fault+0x1045/0x16d0
[ 1886.162905][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1886.162905][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1886.162905][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1886.162905][ T1643]  ? _copy_from_user+0x201/0x310
[ 1886.162905][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1886.162905][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1886.162905][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1886.162905][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1886.162905][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1886.162905][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1886.162905][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1886.162905][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1886.162905][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1886.162905][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1886.162905][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1886.162905][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1886.162905][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1886.162905][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1886.162905][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1886.162905][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1886.162905][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1886.162905][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1886.162905][ T1643] RIP: 0023:0xf7fa4549
[ 1886.162905][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1886.162905][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1886.162905][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1886.162905][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1886.162905][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1886.162905][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1886.162905][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1886.162905][ T1643] Uninit was stored to memory at:
[ 1886.162905][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1886.162905][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1886.162905][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1886.162905][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1886.162905][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1886.162905][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1886.162905][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1886.162905][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1886.162905][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1886.162905][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1886.162905][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1886.162905][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1886.162905][ T1643] 
[ 1886.162905][ T1643] Uninit was stored to memory at:
[ 1886.162905][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1886.162905][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1886.162905][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1886.162905][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1886.162905][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1886.162905][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1886.162905][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1886.162905][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1886.162905][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1886.162905][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1886.162905][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1886.162905][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1886.162905][ T1643] 
[ 1886.162905][ T1643] Uninit was stored to memory at:
[ 1886.162905][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1886.162905][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1886.162905][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1886.162905][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1886.162905][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1886.162905][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1886.162905][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1886.162905][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1886.162905][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1886.162905][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1886.162905][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1886.162905][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1886.162905][ T1643] 
[ 1886.162905][ T1643] Uninit was stored to memory at:
[ 1886.162905][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1886.162905][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1886.162905][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1886.162905][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1886.162905][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1886.162905][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1886.162905][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1886.162905][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1886.162905][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1886.162905][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1886.162905][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1886.162905][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1886.162905][ T1643] 
[ 1886.162905][ T1643] Uninit was stored to memory at:
[ 1886.162905][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1886.162905][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1886.162905][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1886.162905][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1886.162905][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1886.162905][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1886.162905][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1886.162905][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1886.162905][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1886.162905][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1886.162905][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1886.162905][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1886.162905][ T1643] 
[ 1886.162905][ T1643] Uninit was stored to memory at:
[ 1886.162905][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1886.162905][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1886.162905][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1886.162905][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1886.162905][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1886.162905][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1886.162905][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1886.162905][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1886.162905][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1886.162905][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1886.162905][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1886.162905][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1886.162905][ T1643] 
[ 1886.162905][ T1643] Uninit was stored to memory at:
[ 1886.162905][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1886.162905][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1886.162905][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1886.162905][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1886.162905][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1886.162905][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1886.162905][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1886.162905][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1886.162905][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1886.162905][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1886.162905][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1886.162905][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1886.162905][ T1643] 
[ 1886.162905][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1886.162905][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1886.162905][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1887.098991][ T1643] not chained 1030000 origins
[ 1887.102951][ T1643] CPU: 1 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1887.102951][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1887.102951][ T1643] Call Trace:
[ 1887.102951][ T1643]  dump_stack+0x21c/0x280
[ 1887.102951][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1887.102951][ T1643]  ? do_user_addr_fault+0x1045/0x16d0
[ 1887.102951][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1887.102951][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1887.102951][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1887.102951][ T1643]  ? _copy_from_user+0x201/0x310
[ 1887.102951][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1887.102951][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1887.102951][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1887.102951][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1887.102951][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1887.102951][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1887.102951][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1887.102951][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1887.102951][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1887.102951][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1887.102951][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1887.102951][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1887.102951][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1887.102951][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1887.102951][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1887.102951][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1887.102951][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1887.102951][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1887.102951][ T1643] RIP: 0023:0xf7fa4549
[ 1887.102951][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1887.102951][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1887.102951][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1887.102951][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1887.102951][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1887.102951][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1887.102951][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1887.102951][ T1643] Uninit was stored to memory at:
[ 1887.102951][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1887.102951][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1887.102951][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1887.102951][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1887.102951][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1887.102951][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1887.102951][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1887.102951][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1887.102951][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1887.102951][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1887.102951][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1887.102951][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1887.102951][ T1643] 
[ 1887.102951][ T1643] Uninit was stored to memory at:
[ 1887.102951][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1887.102951][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1887.102951][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1887.102951][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1887.102951][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1887.102951][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1887.102951][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1887.102951][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1887.102951][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1887.102951][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1887.102951][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1887.102951][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1887.102951][ T1643] 
[ 1887.102951][ T1643] Uninit was stored to memory at:
[ 1887.102951][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1887.102951][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1887.102951][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1887.102951][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1887.494417][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1887.494417][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1887.503006][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1887.503006][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1887.503006][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1887.503006][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1887.503006][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1887.503006][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1887.503006][ T1643] 
[ 1887.503006][ T1643] Uninit was stored to memory at:
[ 1887.503006][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1887.503006][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1887.503006][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1887.503006][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1887.503006][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1887.503006][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1887.503006][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1887.503006][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1887.503006][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1887.503006][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1887.503006][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1887.503006][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1887.503006][ T1643] 
[ 1887.503006][ T1643] Uninit was stored to memory at:
[ 1887.503006][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1887.503006][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1887.503006][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1887.503006][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1887.503006][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1887.503006][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1887.503006][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1887.503006][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1887.503006][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1887.503006][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1887.503006][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1887.503006][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1887.503006][ T1643] 
[ 1887.503006][ T1643] Uninit was stored to memory at:
[ 1887.503006][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1887.503006][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1887.503006][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1887.503006][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1887.503006][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1887.503006][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1887.503006][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1887.503006][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1887.503006][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1887.503006][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1887.503006][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1887.503006][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1887.503006][ T1643] 
[ 1887.503006][ T1643] Uninit was stored to memory at:
[ 1887.503006][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1887.503006][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1887.503006][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1887.503006][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1887.503006][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1887.503006][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1887.503006][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1887.503006][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1887.503006][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1887.503006][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1887.503006][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1887.503006][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1887.503006][ T1643] 
[ 1887.503006][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1887.503006][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1887.503006][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1888.049016][ T1643] not chained 1040000 origins
[ 1888.053253][ T1643] CPU: 1 PID: 1643 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1888.062070][ T1643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1888.072311][ T1643] Call Trace:
[ 1888.072873][ T1643]  dump_stack+0x21c/0x280
[ 1888.078459][ T1643]  kmsan_internal_chain_origin+0x6f/0x130
[ 1888.084301][ T1643]  ? do_user_addr_fault+0x1045/0x16d0
[ 1888.089675][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1888.095117][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1888.099943][ T1643]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1888.105205][ T1643]  ? _copy_from_user+0x201/0x310
[ 1888.110674][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1888.110674][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1888.121454][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1888.126910][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1888.130808][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1888.133193][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1888.133193][ T1643]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1888.133193][ T1643]  ? __msan_poison_alloca+0xe9/0x110
[ 1888.133193][ T1643]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1888.133193][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1888.133193][ T1643]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1888.133193][ T1643]  ? kmsan_get_metadata+0x116/0x180
[ 1888.173309][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1888.175464][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1888.183625][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1888.189727][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1888.189727][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1888.189727][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1888.189727][ T1643] RIP: 0023:0xf7fa4549
[ 1888.189727][ T1643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1888.228825][ T1643] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1888.238981][ T1643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000ac0
[ 1888.246711][ T1643] RDX: 00000000040003a0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1888.255798][ T1643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1888.263114][ T1643] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1888.269231][ T1643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1888.279866][ T1643] Uninit was stored to memory at:
[ 1888.285327][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1888.289201][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1888.296757][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1888.297065][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1888.297065][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1888.307822][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1888.314069][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1888.314069][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1888.324788][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1888.330192][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1888.336453][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1888.341512][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1888.347570][ T1643] 
[ 1888.347570][ T1643] Uninit was stored to memory at:
[ 1888.347570][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1888.347570][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1888.347570][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1888.347570][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1888.347570][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1888.347570][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1888.384729][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1888.391206][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1888.397405][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1888.397405][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1888.407484][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1888.412987][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1888.415189][ T1643] 
[ 1888.415189][ T1643] Uninit was stored to memory at:
[ 1888.425884][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1888.432046][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1888.432046][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1888.432046][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1888.432046][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1888.432046][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1888.432046][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1888.432046][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1888.432046][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1888.475164][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1888.476734][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1888.483386][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1888.489515][ T1643] 
[ 1888.489515][ T1643] Uninit was stored to memory at:
[ 1888.496825][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1888.496825][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1888.496825][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1888.496825][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1888.496825][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1888.496825][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1888.528648][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1888.530521][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1888.538582][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1888.538582][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1888.538582][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1888.538582][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1888.538582][ T1643] 
[ 1888.538582][ T1643] Uninit was stored to memory at:
[ 1888.538582][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1888.576742][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1888.583365][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1888.589533][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1888.589533][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1888.599194][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1888.599194][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1888.599194][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1888.599194][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1888.599194][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1888.599194][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1888.630146][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1888.636647][ T1643] 
[ 1888.636647][ T1643] Uninit was stored to memory at:
[ 1888.642674][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1888.647726][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1888.653839][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1888.653839][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1888.653839][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1888.653839][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1888.653839][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1888.653839][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1888.653839][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1888.653839][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1888.653839][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1888.698980][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1888.702486][ T1643] 
[ 1888.709571][ T1643] Uninit was stored to memory at:
[ 1888.709571][ T1643]  kmsan_internal_chain_origin+0xad/0x130
[ 1888.719831][ T1643]  __msan_chain_origin+0x57/0xa0
[ 1888.721460][ T1643]  __get_compat_msghdr+0x6db/0x9d0
[ 1888.727687][ T1643]  get_compat_msghdr+0x108/0x2b0
[ 1888.727687][ T1643]  do_recvmmsg+0xdc7/0x22e0
[ 1888.739715][ T1643]  __sys_recvmmsg+0x340/0x5f0
[ 1888.744589][ T1643]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1888.751330][ T1643]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1888.756098][ T1643]  __do_fast_syscall_32+0x129/0x180
[ 1888.761229][ T1643]  do_fast_syscall_32+0x6a/0xc0
[ 1888.766546][ T1643]  do_SYSENTER_32+0x73/0x90
[ 1888.771388][ T1643]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1888.777140][ T1643] 
[ 1888.777140][ T1643] Local variable ----msg_sys@do_recvmmsg created at:
[ 1888.777140][ T1643]  do_recvmmsg+0xc2/0x22e0
[ 1888.777140][ T1643]  do_recvmmsg+0xc2/0x22e0
11:22:20 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
close(r0)
r1 = socket$unix(0x1, 0x200000000001, 0x0)
bind$unix(r1, &(0x7f0000366000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc)
listen(r1, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
connect$unix(r2, &(0x7f0000932000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc)
accept4$packet(r0, 0x0, 0x0, 0x0)

11:22:20 executing program 2:
r0 = syz_open_dev$evdev(&(0x7f0000000040)='/dev/input/event#\x00', 0x0, 0x0)
ioctl$EVIOCREVOKE(r0, 0x40044591, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_SIOCSIFBR(r1, 0x8941, 0x0)

11:22:20 executing program 0:
socketpair(0x1, 0x5, 0x0, &(0x7f00000002c0)={<r0=>0xffffffffffffffff})
getsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, 0x0, &(0x7f0000000080))

11:22:20 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = epoll_create1(0x0)
dup3(r0, r1, 0x0)
sendmsg$SMC_PNETID_GET(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)

11:22:20 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
write$cgroup_subtree(r0, 0x0, 0x0)

11:22:20 executing program 3:
r0 = socket$inet6(0xa, 0x1, 0x0)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x3}, 0x1c)
recvmmsg(r0, &(0x7f0000001940), 0x173, 0x0, 0x0)
r1 = dup(r0)
sendmsg$NL80211_CMD_SET_REG(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000005c00)={0x0, 0x0, &(0x7f0000005900)=[{&(0x7f00000009c0)={0xfdc, 0x0, 0x0, 0x0, 0x0, "", [@generic="6a4c7936004a99be5ce720333365ed9dd7b038a1897e2769d0a0aec4dcc15c4cff65ee343a35293112fd81df2a7a0baba3ff2fc55336e683ddb1cb18606058855734d1777ee4f4950717b6f3c1732d1628608a5325c441cfb14df0189a5ac03448cdce530b4abbc725a5aa6ce7cfaa673434c87e196a58128544f70a40e3927859e5f31f1a73ce7df2f8340fc1d7", @nested={0xf3c, 0x0, 0x0, 0x1, [@generic="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"]}]}, 0xfdc}], 0x1}, 0x0)
r2 = gettid()
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12}, &(0x7f0000000340))
timer_settime(0x0, 0x0, &(0x7f00000000c0)={{0x77359400}, {0x0, 0x1c9c380}}, 0x0)
tkill(r2, 0x401004000000016)

11:22:21 executing program 2:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETSNDBUF(r0, 0x400454d4, 0x0)

11:22:21 executing program 0:
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$sock_SIOCBRADDBR(r0, 0x541b, &(0x7f0000000100)='rose0\x00')

11:22:21 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = openat$apparmor_thread_current(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/attr/current\x00', 0x2, 0x0)
dup2(r0, r1)
sendmsg$nl_generic(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)

11:22:21 executing program 4:
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x4, 0x2000000008031, 0xffffffffffffffff, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$packet(r0, &(0x7f00000000c0), 0x14)

11:22:21 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$KDFONTOP_COPY(r0, 0x5450, 0x0)

11:22:22 executing program 3:
r0 = socket$inet6_sctp(0x1c, 0x5, 0x84)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect(r1, &(0x7f0000000000)=@in6={0x1c, 0x1c, 0x2}, 0x1c)

11:22:22 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
connect(r0, &(0x7f0000000040)=@in={0x10, 0x2}, 0x10)

11:22:22 executing program 0:
r0 = socket$inet6_sctp(0x1c, 0x5, 0x84)
r1 = dup2(r0, r0)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0xa, &(0x7f0000000200)=ANY=[@ANYBLOB="1c1c4e2200000000fe8000000000000000000000000000aa00"/128, @ANYRES32=0x0, @ANYBLOB="000000000000000012"], 0x98)

11:22:22 executing program 1:
syz_emit_ethernet(0x2a, &(0x7f00000016c0)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000008060001"], 0x0)

11:22:22 executing program 5:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
sendmsg$inet_sctp(r0, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)=[@sndrcv={0x2c}], 0x2c}, 0x0)

11:22:22 executing program 3:
mlock(&(0x7f0000ffd000/0x3000)=nil, 0x3000)
mprotect(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0)

11:22:23 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
readv(r0, &(0x7f0000000300)=[{&(0x7f0000000000)=""/104, 0x68}], 0x1)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
recvfrom$inet(r1, 0x0, 0xccf3, 0x0, 0x0, 0x800e0050e)
dup(0xffffffffffffffff)
shutdown(0xffffffffffffffff, 0x0)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
readv(r2, &(0x7f0000000340)=[{&(0x7f00000000c0)=""/68, 0x44}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9)
recvfrom$inet(r3, 0x0, 0xffffff8b, 0x0, 0x0, 0x800e00515)
shutdown(r2, 0x0)
r4 = socket$inet_sctp(0x2, 0x1, 0x84)
connect$inet(r4, &(0x7f00000001c0)={0x10, 0x2}, 0x10)
shutdown(r3, 0x0)

11:22:23 executing program 5:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x23, &(0x7f0000000140), &(0x7f0000000200)=0x94)

11:22:23 executing program 1:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f00000000c0)={0x10, 0x2}, 0x10)
getsockopt$inet_sctp_SCTP_STATUS(r0, 0x84, 0x100, &(0x7f0000000100), &(0x7f0000000000)=0xb8)

11:22:23 executing program 0:
open(&(0x7f0000000000)='./file0\x00', 0xa10e4e, 0x0)
open(&(0x7f0000000180)='./file0/../file0\x00', 0x0, 0x0)

11:22:24 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_DEBUG_GET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x24008000)

11:22:24 executing program 5:
r0 = socket$inet6_sctp(0x1c, 0x1, 0x84)
bind(r0, &(0x7f0000000140)=@in6={0x1c, 0x1c, 0x1}, 0x1c)

11:22:24 executing program 3:
getgroups(0x3, &(0x7f0000000100)=[0x0, 0x0, <r0=>0x0])
setresgid(r0, 0x0, 0x0)
setregid(0x0, 0x0)

11:22:24 executing program 0:
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs\x00', 0x0, 0x0)
ioctl$TIOCMBIC(r0, 0x5417, 0x0)

11:22:24 executing program 1:
socketpair(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$NLBL_CALIPSO_C_REMOVE(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}}, 0x0)

11:22:24 executing program 2:
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_WAIT_SYNC(r0, 0x40089416, 0x0)

11:22:25 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={0x0}}, 0x48000)

11:22:25 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_SB_OCC_MAX_CLEAR(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x4000)

11:22:25 executing program 3:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000006c0), &(0x7f0000000700)=0x8)

11:22:25 executing program 2:
futimesat(0xffffffffffffffff, &(0x7f0000000b00)='./file0\x00', &(0x7f0000000b40))

11:22:25 executing program 5:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
sendmsg(r0, &(0x7f0000001400)={&(0x7f0000000000)=@in6={0x1c, 0x1c, 0x3}, 0x1c, 0x0, 0x0, 0x0, 0x10}, 0x0)

11:22:25 executing program 4:
r0 = socket$inet6_sctp(0x1c, 0x5, 0x84)
ppoll(&(0x7f0000000000)=[{r0, 0x2}], 0x1, &(0x7f0000000040), 0x0, 0x0)

11:22:25 executing program 3:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
bind$inet(r0, &(0x7f0000000300)={0x10, 0x2}, 0x10)
connect$inet(r0, &(0x7f0000000000)={0xfffffffffffffd91, 0x2}, 0x10)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0xa, &(0x7f0000000500)=ANY=[@ANYBLOB="10024e21ac"], &(0x7f0000000100)=0xa0)

11:22:25 executing program 1:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_EVENTS(r0, 0x84, 0xc, &(0x7f0000000040)={0x0, 0x0, 0x0, 0xfc}, 0xb)
r1 = dup(r0)
sendto$inet(r1, &(0x7f0000000100)='q', 0x1, 0x0, &(0x7f0000000080)={0x10, 0x2}, 0x10)
recvfrom(r1, 0x0, 0x0, 0x0, 0x0, 0x0)

11:22:26 executing program 2:
sendmsg$unix(0xffffffffffffffff, &(0x7f0000000880)={&(0x7f0000000040)=@abs={0x8}, 0x8, &(0x7f00000005c0)=[{0x0}, {0x0}, {0x0}], 0x3, &(0x7f0000000780)=[@rights, @cred, @rights, @cred, @rights, @cred, @rights, @rights], 0xb0}, 0x0)

11:22:26 executing program 0:
socketpair(0x1c, 0x0, 0x0, 0x0)

11:22:26 executing program 5:
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f0000000040)={0x3ff}, 0x0, 0x0)

11:22:26 executing program 4:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0xa, &(0x7f0000000500)=ANY=[], &(0x7f0000000100)=0xa0)

11:22:26 executing program 2:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_HMAC_IDENT(r0, 0x84, 0x14, &(0x7f0000000100)={0x1, [0x0]}, 0x6)

11:22:26 executing program 0:
socket$inet6_sctp(0x1c, 0x0, 0x84)

11:22:26 executing program 3:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_AUTOCLOSE(r0, 0x84, 0x5, &(0x7f0000000000)=0x2, 0x4)

11:22:26 executing program 1:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
sendmsg(r0, &(0x7f0000001400)={&(0x7f0000000000)=@in6={0x1c, 0x1c, 0x3}, 0x1c, 0x0, 0x0, 0x0, 0x10}, 0x0)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0xa, &(0x7f0000000140), &(0x7f0000002a00)=0x98)

11:22:27 executing program 4:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
bind$inet(r0, &(0x7f0000000300)={0x10, 0x2}, 0x10)
connect$inet(r0, &(0x7f0000000000)={0xfffffffffffffd91, 0x2}, 0x10)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0xa, &(0x7f0000000500)=ANY=[], &(0x7f0000000100)=0xa0)

11:22:27 executing program 2:
r0 = socket$inet6_sctp(0x1c, 0x1, 0x84)
r1 = socket$inet6_sctp(0x1c, 0x1, 0x84)
r2 = dup2(r0, r1)
r3 = dup2(r0, r2)
getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r3, 0x84, 0x7, &(0x7f0000000200), &(0x7f0000000000)=0x8c)

11:22:27 executing program 5:
socket(0x1, 0x3, 0x8c)

11:22:27 executing program 3:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
r1 = dup(r0)
sendto$inet(r1, 0x0, 0x0, 0x0, &(0x7f0000000100)={0x10, 0x2}, 0x10)
getsockopt$inet_sctp_SCTP_AUTO_ASCONF(r1, 0x84, 0x18, &(0x7f0000000280), &(0x7f00000002c0)=0x4)

11:22:27 executing program 1:
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x9, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

11:22:27 executing program 0:
socketpair(0xf, 0x0, 0x0, &(0x7f0000000380))

11:22:27 executing program 4:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000300)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x6, [@union]}, {0x0, [0x0, 0x2e, 0x5f, 0x0]}}, &(0x7f00000013c0)=""/4096, 0x2a, 0x1000, 0x1}, 0x20)

11:22:28 executing program 2:
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000200)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x10, 0x10, 0x2, [@int]}}, &(0x7f0000000280)=""/205, 0x2a, 0xcd, 0x1}, 0x20)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000240)={r0, 0x0, 0x0}, 0x10)

11:22:28 executing program 5:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg(r0, &(0x7f00000007c0)={&(0x7f0000000100)=@in, 0x20000180, 0x0}, 0x0)

11:22:28 executing program 3:
perf_event_open$cgroup(&(0x7f0000000100)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x55979cd42c11e904, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

11:22:28 executing program 2:
pipe2(&(0x7f00000000c0)={<r0=>0xffffffffffffffff}, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x0, 0x0)
poll(&(0x7f00000003c0)=[{r1, 0x1}, {r0}, {}], 0x3, 0x0)

11:22:29 executing program 1:
r0 = socket$inet(0x2, 0x3, 0x0)
recvfrom$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

11:22:29 executing program 4:
r0 = socket$unix(0x1, 0x2, 0x0)
sendmsg$unix(r0, &(0x7f0000000500)={&(0x7f0000000580)=ANY=[], 0xa, &(0x7f0000000340)=[{0x0}, {&(0x7f0000000240)="cd", 0x1}], 0x2}, 0x0)

11:22:29 executing program 0:
r0 = msgget(0x3, 0x0)
msgrcv(r0, &(0x7f0000000000)={0x0, ""/208}, 0xd8, 0x0, 0x1000)
msgsnd(r0, 0x0, 0x0, 0x0)

11:22:29 executing program 5:
openat$null(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/null\x00', 0x10, 0x0)

11:22:29 executing program 3:
r0 = socket$unix(0x1, 0x2, 0x0)
setsockopt$sock_cred(r0, 0xffff, 0x1022, &(0x7f0000000000), 0xc)

11:22:29 executing program 2:
bpf$PROG_LOAD(0x5, 0x0, 0x0)
pipe(&(0x7f0000001840))

11:22:29 executing program 4:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_emit_ethernet(0x42, &(0x7f0000000140)={@broadcast, @random="e0d35b1004bb", @val={@void}, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x0, 0x0, 0x3, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @loopback, @loopback}}}}}}, 0x0)

11:22:29 executing program 5:
pipe(&(0x7f0000000000))
socket$nl_generic(0x10, 0x3, 0x10)

11:22:29 executing program 0:
socket$inet(0x2, 0x0, 0xaf7f)

11:22:29 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ifreq(r0, 0x0, 0x0)

11:22:30 executing program 1:
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff})
getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x54, &(0x7f0000000040)=[@in6={0xa, 0x4e22, 0x0, @empty, 0x513c}, @in6={0xa, 0x4e20, 0x400, @private2={0xfc, 0x2, [], 0x1}}, @in6={0xa, 0x4e23, 0x0, @remote}]}, &(0x7f0000000100)=0x10)
bpf$BPF_GET_BTF_INFO(0xf, 0x0, 0x0)
accept4(r0, &(0x7f0000000400)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @broadcast}}}, 0x0, 0x80000)
accept4(0xffffffffffffffff, &(0x7f00000005c0)=@xdp, 0x0, 0x0)

11:22:30 executing program 2:
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000000))
pipe(&(0x7f0000001840))

11:22:30 executing program 4:
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000400)=@bpf_lsm={0x1d, 0x0, 0x0, &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

11:22:30 executing program 0:
socket$rxrpc(0x21, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
pipe(&(0x7f0000001840))

11:22:30 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r0, &(0x7f0000000c40)={&(0x7f0000000b00), 0xc, 0x0}, 0x0)

11:22:30 executing program 3:
r0 = socket$rxrpc(0x21, 0x2, 0xa)
ioctl$BTRFS_IOC_BALANCE_V2(r0, 0xc4009420, &(0x7f0000000100)={0x0, 0x0, {0x5, @usage=0x6, 0x0, 0x11, 0x8, 0x8, 0x5, 0xfffffffffffffffd, 0x484, @usage=0x80, 0x7, 0x3, [0x6, 0x9, 0x0, 0x100000000, 0x3, 0x7fff]}, {0x7fff, @usage=0x3, 0x0, 0x1, 0x150, 0xe739, 0xfffffffffffffffc, 0x20, 0x420, @struct={0x5, 0xffffffff}, 0x10001, 0x9, [0x71521e1f, 0x3, 0x100, 0xffff, 0x1e, 0x56]}, {0x3, @usage=0x1ff, 0x0, 0x0, 0x7, 0x0, 0x3, 0xffffffffffff053d, 0x95, @struct={0x8, 0x1}, 0xcf, 0x5, [0x8, 0x2, 0x7, 0x6, 0x3, 0x4]}, {0x288, 0x3, 0xff}})
socket$qrtr(0x2a, 0x2, 0x0)
pipe(&(0x7f0000001840))

11:22:30 executing program 1:
pipe(&(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, 0x0, 0x0)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000240)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
socket$inet6_sctp(0xa, 0x1, 0x84)

11:22:31 executing program 4:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = dup(r0)
sendmmsg$unix(r1, &(0x7f0000000500)=[{0x0, 0x0, 0x0}], 0x1, 0x40)

11:22:31 executing program 2:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff})
sendto(r0, &(0x7f0000000040)='\r', 0x1, 0x20054824, 0x0, 0x2b)

11:22:31 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net\x00')
fsetxattr(r0, &(0x7f00000001c0)=@known='user.syz\x00', 0x0, 0x0, 0x0)

11:22:31 executing program 3:
r0 = open$dir(&(0x7f00000000c0)='./file0\x00', 0x479d1daa606b3bfa, 0x0)
pwritev2(r0, &(0x7f0000000080)=[{0x0}], 0x1, 0x0, 0x0, 0x2)

11:22:31 executing program 0:
open$dir(&(0x7f0000000080)='./file0\x00', 0x640440, 0x0)
open$dir(&(0x7f0000000040)='./file0\x00', 0x1, 0x102)

11:22:31 executing program 4:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff})
sendto(r0, &(0x7f0000000100), 0x0, 0x4000005, 0x0, 0xa)

11:22:31 executing program 1:
socketpair(0x1, 0x2, 0x0, &(0x7f0000002180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
bind$unix(r0, &(0x7f00000001c0)=@file={0x1, './file0\x00'}, 0x6e)
statx(0xffffffffffffff9c, &(0x7f0000001440)='./file0\x00', 0x100, 0x0, &(0x7f0000000240))

11:22:31 executing program 5:
open$dir(&(0x7f0000000080)='./file0\x00', 0x640440, 0x0)
open$dir(&(0x7f0000001340)='./file0\x00', 0x121002, 0x6)

11:22:31 executing program 2:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fd\x00')
openat$cgroup_devices(r0, &(0x7f0000000340)='devices.deny\x00', 0x2, 0x0)

11:22:31 executing program 3:
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000140)='/dev/null\x00', 0x0, 0x0)
read$char_usb(r0, 0x0, 0x2d)

11:22:32 executing program 0:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
sendto(r0, 0x0, 0x0, 0x24004801, 0x0, 0x0)

11:22:32 executing program 1:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = dup(r0)
bind$unix(r1, &(0x7f0000000040)=@file={0x1, './file0\x00'}, 0x6e)
setxattr$trusted_overlay_origin(&(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x0, 0x0, 0x0)

11:22:32 executing program 4:
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x0, 0x0)
epoll_pwait(r0, &(0x7f0000000000)=[{}], 0x1, 0x0, 0x0, 0x0)

11:22:32 executing program 5:
pselect6(0x40, &(0x7f0000000040), &(0x7f0000000080)={0x8}, 0x0, 0x0, 0x0)

11:22:32 executing program 2:
timer_create(0x0, &(0x7f0000001180)={0x0, 0x0, 0x5, @thr={0x0, 0x0}}, 0x0)

11:22:32 executing program 3:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f00000016c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001600)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}, 0x0)

11:22:32 executing program 0:
syz_emit_ethernet(0x62, &(0x7f0000000080)=ANY=[@ANYBLOB="ffffffffffff0180c2030000080040000000000690"], 0x0)

11:22:33 executing program 1:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f00000016c0)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000040)="06", 0x1}, {&(0x7f0000000140)="d3", 0x1}], 0x2}, 0x0)

11:22:33 executing program 4:
request_key(&(0x7f0000000100)='user\x00', &(0x7f0000000140)={'syz', 0x3}, 0xfffffffffffffffe, 0xfffffffffffffffc)

11:22:33 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r0, &(0x7f0000000200)=@file={0x1, './file0\x00'}, 0x6e)
mount$fuseblk(&(0x7f0000000000)='/dev/loop0\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x49000, 0x0)
mount$fuseblk(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x23, 0x0)

11:22:33 executing program 2:
shmat(0x0, &(0x7f0000000000/0x2000)=nil, 0x5000)
get_mempolicy(0x0, 0x0, 0x0, &(0x7f0000000000/0x4000)=nil, 0x2)

11:22:33 executing program 3:
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
statx(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x800, 0x0, &(0x7f0000000100))

11:22:33 executing program 0:
socketpair(0x1, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
getsockname$packet(r0, 0x0, &(0x7f0000000100))

11:22:33 executing program 5:
syz_emit_ethernet(0x12, &(0x7f0000003080)={@broadcast, @local, @val={@void}, {@generic={0x800}}}, 0x0)

11:22:33 executing program 3:
syz_emit_ethernet(0x1e9, &(0x7f0000000840)=ANY=[@ANYBLOB="aaaaaaaaaaaa99dda45135fe86dd603ade7701b306fe00000000000000000000000000000000ff020000000000000000000000000001"], 0x0)

11:22:33 executing program 1:
r0 = shmget$private(0x0, 0x800000, 0x0, &(0x7f00007ff000/0x800000)=nil)
shmat(r0, &(0x7f0000a3d000/0x4000)=nil, 0x4000)
shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x6000)
shmat(0x0, &(0x7f0000ffd000/0x1000)=nil, 0x4000)
shmat(0x0, &(0x7f0000fcf000/0x1000)=nil, 0x7000)

11:22:33 executing program 4:
prctl$PR_SET_NAME(0xf, &(0x7f0000000000)='//selinux\x00\x00\x01\x10')
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r0)
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = open$dir(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
r3 = fcntl$dupfd(r1, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
r4 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="2400000026000106"], 0x24}}, 0x0)
recvmmsg(r4, &(0x7f0000005c80)=[{{0x0, 0x7ec0, 0x0}}], 0x344, 0x10122, 0x0)

11:22:34 executing program 2:
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x5000)
mincore(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0)

11:22:34 executing program 0:
syz_emit_ethernet(0x82, &(0x7f0000000300)=ANY=[@ANYBLOB="aaaaaaaaaaaa99dda45135fe86dd602850b6004c2f00fe88000000000000000000000001ff020000000000000000000000000001"], 0x0)

[ 1902.594701][ T1978] not chained 1050000 origins
[ 1902.599406][ T1978] CPU: 1 PID: 1978 Comm: //selinux Not tainted 5.9.0-rc8-syzkaller #0
[ 1902.602896][ T1978] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1902.602896][ T1978] Call Trace:
[ 1902.602896][ T1978]  dump_stack+0x21c/0x280
[ 1902.602896][ T1978]  kmsan_internal_chain_origin+0x6f/0x130
[ 1902.602896][ T1978]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1902.602896][ T1978]  ? kmsan_get_metadata+0x116/0x180
[ 1902.637254][ T1978]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1902.637254][ T1978]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1902.637254][ T1978]  ? __wake_up+0x1fc/0x250
[ 1902.637254][ T1978]  ? kmsan_get_metadata+0x116/0x180
[ 1902.637254][ T1978]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1902.637254][ T1978]  ? kmsan_get_metadata+0x116/0x180
[ 1902.637254][ T1978]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1902.637254][ T1978]  ? kmsan_internal_unpoison_shadow+0x42/0x70
[ 1902.637254][ T1978]  ? _copy_from_user+0x201/0x310
[ 1902.637254][ T1978]  ? kmsan_get_metadata+0x116/0x180
[ 1902.637254][ T1978]  __msan_chain_origin+0x57/0xa0
[ 1902.637254][ T1978]  __get_compat_msghdr+0x6db/0x9d0
[ 1902.637254][ T1978]  get_compat_msghdr+0x108/0x2b0
[ 1902.637254][ T1978]  do_recvmmsg+0xdc7/0x22e0
[ 1902.637254][ T1978]  ? kmsan_get_metadata+0x116/0x180
[ 1902.637254][ T1978]  ? kmsan_get_metadata+0x116/0x180
[ 1902.637254][ T1978]  ? kmsan_internal_set_origin+0x85/0xc0
[ 1902.637254][ T1978]  ? __msan_poison_alloca+0xe9/0x110
[ 1902.637254][ T1978]  ? __sys_recvmmsg+0xb5/0x5f0
[ 1902.637254][ T1978]  __sys_recvmmsg+0x340/0x5f0
[ 1902.637254][ T1978]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1902.637254][ T1978]  ? kmsan_get_metadata+0x116/0x180
[ 1902.637254][ T1978]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1902.637254][ T1978]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1902.771128][ T1978]  __do_fast_syscall_32+0x129/0x180
[ 1902.771128][ T1978]  do_fast_syscall_32+0x6a/0xc0
[ 1902.771128][ T1978]  do_SYSENTER_32+0x73/0x90
[ 1902.771128][ T1978]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1902.771128][ T1978] RIP: 0023:0xf7f62549
[ 1902.771128][ T1978] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1902.771128][ T1978] RSP: 002b:00000000f555c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1902.771128][ T1978] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020005c80
[ 1902.771128][ T1978] RDX: 0000000000000344 RSI: 0000000000010122 RDI: 0000000000000000
[ 1902.771128][ T1978] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1902.771128][ T1978] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1902.771128][ T1978] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1902.771128][ T1978] Uninit was stored to memory at:
[ 1902.771128][ T1978]  kmsan_internal_chain_origin+0xad/0x130
[ 1902.771128][ T1978]  __msan_chain_origin+0x57/0xa0
[ 1902.771128][ T1978]  __get_compat_msghdr+0x6db/0x9d0
[ 1902.771128][ T1978]  get_compat_msghdr+0x108/0x2b0
[ 1902.771128][ T1978]  do_recvmmsg+0xdc7/0x22e0
[ 1902.771128][ T1978]  __sys_recvmmsg+0x340/0x5f0
[ 1902.771128][ T1978]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1902.771128][ T1978]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1902.771128][ T1978]  __do_fast_syscall_32+0x129/0x180
[ 1902.771128][ T1978]  do_fast_syscall_32+0x6a/0xc0
[ 1902.771128][ T1978]  do_SYSENTER_32+0x73/0x90
[ 1902.771128][ T1978]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1902.771128][ T1978] 
[ 1902.771128][ T1978] Uninit was stored to memory at:
[ 1902.771128][ T1978]  kmsan_internal_chain_origin+0xad/0x130
[ 1902.771128][ T1978]  __msan_chain_origin+0x57/0xa0
[ 1902.771128][ T1978]  __get_compat_msghdr+0x6db/0x9d0
[ 1902.771128][ T1978]  get_compat_msghdr+0x108/0x2b0
[ 1902.771128][ T1978]  do_recvmmsg+0xdc7/0x22e0
[ 1902.771128][ T1978]  __sys_recvmmsg+0x340/0x5f0
[ 1902.771128][ T1978]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1902.771128][ T1978]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1902.771128][ T1978]  __do_fast_syscall_32+0x129/0x180
[ 1902.771128][ T1978]  do_fast_syscall_32+0x6a/0xc0
[ 1902.771128][ T1978]  do_SYSENTER_32+0x73/0x90
[ 1902.771128][ T1978]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1902.771128][ T1978] 
[ 1902.771128][ T1978] Uninit was stored to memory at:
[ 1902.771128][ T1978]  kmsan_internal_chain_origin+0xad/0x130
[ 1902.771128][ T1978]  __msan_chain_origin+0x57/0xa0
[ 1902.771128][ T1978]  __get_compat_msghdr+0x6db/0x9d0
[ 1902.771128][ T1978]  get_compat_msghdr+0x108/0x2b0
[ 1902.771128][ T1978]  do_recvmmsg+0xdc7/0x22e0
[ 1902.771128][ T1978]  __sys_recvmmsg+0x340/0x5f0
[ 1902.771128][ T1978]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1902.771128][ T1978]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1902.771128][ T1978]  __do_fast_syscall_32+0x129/0x180
[ 1902.771128][ T1978]  do_fast_syscall_32+0x6a/0xc0
[ 1902.771128][ T1978]  do_SYSENTER_32+0x73/0x90
[ 1902.771128][ T1978]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1902.771128][ T1978] 
[ 1902.771128][ T1978] Uninit was stored to memory at:
[ 1902.771128][ T1978]  kmsan_internal_chain_origin+0xad/0x130
[ 1902.771128][ T1978]  __msan_chain_origin+0x57/0xa0
[ 1902.771128][ T1978]  __get_compat_msghdr+0x6db/0x9d0
[ 1902.771128][ T1978]  get_compat_msghdr+0x108/0x2b0
[ 1902.771128][ T1978]  do_recvmmsg+0xdc7/0x22e0
[ 1902.771128][ T1978]  __sys_recvmmsg+0x340/0x5f0
[ 1902.771128][ T1978]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1902.771128][ T1978]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1902.771128][ T1978]  __do_fast_syscall_32+0x129/0x180
[ 1902.771128][ T1978]  do_fast_syscall_32+0x6a/0xc0
[ 1902.771128][ T1978]  do_SYSENTER_32+0x73/0x90
[ 1902.771128][ T1978]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1902.771128][ T1978] 
[ 1902.771128][ T1978] Uninit was stored to memory at:
[ 1902.771128][ T1978]  kmsan_internal_chain_origin+0xad/0x130
[ 1902.771128][ T1978]  __msan_chain_origin+0x57/0xa0
[ 1902.771128][ T1978]  __get_compat_msghdr+0x6db/0x9d0
[ 1902.771128][ T1978]  get_compat_msghdr+0x108/0x2b0
[ 1902.771128][ T1978]  do_recvmmsg+0xdc7/0x22e0
[ 1902.771128][ T1978]  __sys_recvmmsg+0x340/0x5f0
[ 1902.771128][ T1978]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1902.771128][ T1978]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1902.771128][ T1978]  __do_fast_syscall_32+0x129/0x180
[ 1902.771128][ T1978]  do_fast_syscall_32+0x6a/0xc0
[ 1902.771128][ T1978]  do_SYSENTER_32+0x73/0x90
[ 1902.771128][ T1978]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1902.771128][ T1978] 
[ 1902.771128][ T1978] Uninit was stored to memory at:
[ 1902.771128][ T1978]  kmsan_internal_chain_origin+0xad/0x130
[ 1902.771128][ T1978]  __msan_chain_origin+0x57/0xa0
[ 1902.771128][ T1978]  __get_compat_msghdr+0x6db/0x9d0
[ 1902.771128][ T1978]  get_compat_msghdr+0x108/0x2b0
[ 1902.771128][ T1978]  do_recvmmsg+0xdc7/0x22e0
[ 1902.771128][ T1978]  __sys_recvmmsg+0x340/0x5f0
[ 1902.771128][ T1978]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1902.771128][ T1978]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1902.771128][ T1978]  __do_fast_syscall_32+0x129/0x180
[ 1902.771128][ T1978]  do_fast_syscall_32+0x6a/0xc0
[ 1902.771128][ T1978]  do_SYSENTER_32+0x73/0x90
[ 1902.771128][ T1978]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1902.771128][ T1978] 
[ 1902.771128][ T1978] Uninit was stored to memory at:
[ 1902.771128][ T1978]  kmsan_internal_chain_origin+0xad/0x130
[ 1902.771128][ T1978]  __msan_chain_origin+0x57/0xa0
[ 1902.771128][ T1978]  __get_compat_msghdr+0x6db/0x9d0
[ 1902.771128][ T1978]  get_compat_msghdr+0x108/0x2b0
[ 1902.771128][ T1978]  do_recvmmsg+0xdc7/0x22e0
[ 1902.771128][ T1978]  __sys_recvmmsg+0x340/0x5f0
[ 1902.771128][ T1978]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[ 1902.771128][ T1978]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[ 1902.771128][ T1978]  __do_fast_syscall_32+0x129/0x180
11:22:35 executing program 2:
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0x5000)
mprotect(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0)

[ 1902.771128][ T1978]  do_fast_syscall_32+0x6a/0xc0
[ 1902.771128][ T1978]  do_SYSENTER_32+0x73/0x90
[ 1902.771128][ T1978]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1902.771128][ T1978] 
[ 1902.771128][ T1978] Local variable ----msg_sys@do_recvmmsg created at:
[ 1903.361786][ T1978]  do_recvmmsg+0xc2/0x22e0
[ 1903.361786][ T1978]  do_recvmmsg+0xc2/0x22e0
11:22:35 executing program 5:
r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$PIO_FONTX(r0, 0x541b, &(0x7f0000000040)={0x0, 0x0, 0x0})

11:22:35 executing program 3:
perf_event_open$cgroup(&(0x7f00000000c0)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

11:22:35 executing program 0:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000e40)='/proc/tty/drivers\x00', 0x0, 0x0)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/if_inet6\x00')
dup3(r0, r1, 0x0)

11:22:35 executing program 1:
perf_event_open(&(0x7f0000000080)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2902, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x80a2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

11:22:35 executing program 5:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f0000000600)={0x0, 0x0, 0x0}, 0x0)

11:22:35 executing program 2:
pselect6(0x40, &(0x7f0000000000), 0x0, 0x0, &(0x7f00000000c0)={0x0, 0x989680}, &(0x7f0000000140)={&(0x7f0000000100), 0x8})

11:22:36 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000440)={0x2c, 0x3, 0x1, 0x801, 0x0, 0x0, {}, [@CTA_TUPLE_ORIG={0x18, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @remote}}}]}]}, 0x2c}}, 0x0)

11:22:36 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f0000000140)={{0x2, 0x0, @dev}, {0x0, @broadcast}, 0x2a, {}, 'sit0\x00'})

11:22:37 executing program 4:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=@getsa={0x28, 0x12, 0x1, 0x0, 0x0, {@in=@loopback}}, 0x28}}, 0x0)

11:22:37 executing program 0:
mknod(&(0x7f0000000200)='./file1\x00', 0x1000, 0x0)
openat$dir(0xffffff9c, &(0x7f00000000c0)='./file1\x00', 0xc0043, 0x0)

11:22:37 executing program 5:
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000a00)={<r0=>0xffffffffffffffff})
ioctl$sock_inet_SIOCSIFBRDADDR(r0, 0x891a, &(0x7f0000000a40)={'bond0\x00', {0x2, 0x0, @multicast1}})
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r0, 0x8983, &(0x7f0000000000)={0x0, 'macvlan1\x00', {0x3}, 0x4})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000a00)={<r1=>0xffffffffffffffff})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000a00)={<r2=>0xffffffffffffffff})
ioctl$sock_inet_SIOCSIFBRDADDR(r2, 0x891a, &(0x7f0000000a40)={'bond0\x00', {0x2, 0x0, @multicast1}})
ioctl$sock_inet_SIOCSIFBRDADDR(r2, 0x891a, &(0x7f0000000100)={'veth1_virt_wifi\x00', {0x2, 0x0, @multicast1}})
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000080)={0x0, 'bridge_slave_1\x00', {0x2}, 0x40})
getpeername$packet(0xffffffffffffffff, 0x0, &(0x7f0000000040))

11:22:37 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000340)=ANY=[@ANYBLOB="3c00000024001d0f00"/20, @ANYRES32, @ANYBLOB="00000000f1ffffff000000000b00010064736d61726b00000c0002000600010008"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000e00)=ANY=[@ANYBLOB="d00800002400ffff01009e000000000000000000", @ANYRES32, @ANYBLOB="0000000bf1ffffff000000000800010063627100a408020004040600030000000500000000700300fdffffffffff00001f0000000500000000020000010000000000100083000000fdffffff070000000849000001ffff0002000000cf000000feffffff080000000180000003000000090000000200000000274a49ef6949a7bb000000050000000100000004000000ff7f000000000000000400000002000004000000ff0f0000f44f350001000000010400005eb768350100000008000000ffffffffc38d00001f000000040008830600000000000100f7ffffff030000000080ffff050104000600000006000000a900000000000000c0000000c0ffffff08000000018000000101000006000000b300000000000020050000000104000004000000070000010800000001010000c22e0000c0ffffff0500000004000000060000000900000008000000f7ffffff0800000003000000080000000400000001000080040000000400000000100000040000000700000009000000fcffffff01000000010000000900000000020000060e0000080000000200000002000000090000000800000007000000ab000000fb00000007000000ff0100000800000001040000070000000300000009000000ff07000008000000ffff0000a90100000900000005000000200000000500000001000000070000008eb7000000000080010000000000000007000000fffffffffcffffff01f0ffff000000003f00000003000000000100000080000000800000030000000500000005000000ffffffff0700000015ba000004000000070000000300000003000000ffffffff04000000554f00006ff800000700000003000000000200000600000008000000b300000006000000000000000007000001010000030000000080000000040000730a000001000080010000009e0c0000000800000100008000000000000000004000000000fefffff67d000004000400ff01000002000000000000004000000040000000ed000000010001000e0a05000000000000020000040000000600000002000000ff7f00000100000001000000060000007f000000020000000004000004000000090000007800000008000000b6000000040000000400000005000000f50a0000ffff0000060000008ff9ffff070000001eaaffff3f0000008000000000000000ff0c0000ff7f0000030000007f0000002d0000000800000000010000ff070000ffffffff2bab000002000000ace800000500000000000000e1bf934d070000001f000d000300000004000000070000000900000005000000030000000200000087d400000200000008000000000100007f0000000e000000080000000200000007000000ffffff7f06000000000000000500000001000000820000001f0000000004000001000000faffffff0500000006000000070000000300000010000500810306009fff040008"], 0x8d0}}, 0x0)
r1 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r1, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

11:22:37 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f00000000c0)={{}, {0x306, @dev}, 0x12, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 'veth0_to_batadv\x00'})

11:22:37 executing program 1:
r0 = socket(0xa, 0x3, 0x7)
ioctl$sock_ifreq(r0, 0x8918, &(0x7f0000000040)={'vlan0\x00', @ifru_map})

[ 1905.470954][ T2028] netlink: 1164 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1905.630234][ T2037] netlink: 1164 bytes leftover after parsing attributes in process `syz-executor.3'.
11:22:37 executing program 2:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000100)=@allocspi={0xf4, 0x16, 0x421, 0x0, 0x0, {{{@in6=@mcast2, @in6=@local}, {}, @in6=@ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}}}, 0xf4}}, 0x0)
request_key(&(0x7f0000000280)='id_legacy\x00', &(0x7f00000002c0)={'syz', 0x3}, &(0x7f0000000300)='-+]\x00', 0x0)

11:22:37 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x4)
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040)='IPVS\x00')
sendmsg$IPVS_CMD_DEL_SERVICE(r0, &(0x7f00000024c0)={0x0, 0x0, &(0x7f0000002480)={&(0x7f0000001c80)={0x14, r1, 0x1}, 0x14}}, 0x0)

11:22:37 executing program 1:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000400)={&(0x7f0000000000), 0xc, &(0x7f00000003c0)={&(0x7f0000000100)=@allocspi={0x190, 0x16, 0x0, 0x0, 0x0, {{{@in6=@mcast2, @in6=@local}}}, [@policy_type={0xa}, @XFRMA_SET_MARK={0x8}, @algo_auth={0x85, 0x1, {{'xxhash64\x00'}, 0x1e8, "fdc1b53a80b905cc974abfbc72b4606004f1b9f387060c19139c9e8b247db046c53bf91398efe844c87777e09e09f0c71c55ab456783573eb6d7596d76"}}]}, 0xff54}}, 0x0)

11:22:37 executing program 5:
r0 = socket$inet(0x2, 0x3, 0x3f)
recvmsg(r0, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x40002100)

11:22:37 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000340)=ANY=[@ANYBLOB="3c00000024001d0f00"/20, @ANYRES32, @ANYBLOB="00000000f1ffffff000000000b00010064736d61726b00000c0002000600010008"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000e00)=ANY=[@ANYBLOB="d00800002400ffff01009e000000000000000000", @ANYRES32, @ANYBLOB="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"], 0x8d0}}, 0x0)
r1 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r1, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

11:22:37 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0xa)
sendmsg$IPVS_CMD_SET_INFO(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x7c}}, 0x0)
sendmsg$IPVS_CMD_DEL_SERVICE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)

[ 1906.449844][ T2062] netlink: 1164 bytes leftover after parsing attributes in process `syz-executor.3'.
11:22:38 executing program 1:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ifreq(r0, 0x8930, &(0x7f0000000100)={'vlan0\x00', @ifru_addrs=@can})

11:22:38 executing program 2:
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000001100)='./file0\x00', 0x0, 0x0, &(0x7f0000001140), 0x2008041, &(0x7f0000000080)=ANY=[@ANYRESDEC])

11:22:38 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, 0x0, 0x0)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000000080)=0x1f, 0x4)

11:22:38 executing program 5:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x14, 0x7, 0x1, 0x101}, 0x14}}, 0x0)

11:22:38 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000340)=ANY=[@ANYBLOB="3c00000024001d0f00"/20, @ANYRES32, @ANYBLOB="00000000f1ffffff000000000b00010064736d61726b00000c0002000600010008"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000e00)=ANY=[@ANYBLOB="d00800002400ffff01009e000000000000000000", @ANYRES32, @ANYBLOB="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"], 0x8d0}}, 0x0)
r1 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r1, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

11:22:38 executing program 4:
syz_emit_ethernet(0x2a, &(0x7f0000000040)={@local, @broadcast, @void, {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x0, @dev, @dev, @random="6c4389a53749", @local}}}}, 0x0)

11:22:38 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_CAP_ACK(r0, 0x10e, 0xa, &(0x7f0000000000), 0x4)

11:22:39 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x2a, &(0x7f0000000040)=@raw={'raw\x00', 0x9, 0x3, 0x1c0, 0xc0, 0xffffffff, 0xffffffff, 0xc0, 0xffffffff, 0x178, 0xffffffff, 0xffffffff, 0x178, 0xffffffff, 0x3, 0x0, {[{{@ip={@dev, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 'wg1\x00', 'syzkaller0\x00'}, 0x0, 0x70, 0x98}, @common=@unspec=@AUDIT={0x28, 'AUDIT\x00'}}, {{@ip={@local, @private, 0x0, 0x0, 'rose0\x00', 'macvlan1\x00'}, 0x0, 0x70, 0x90}, @unspec=@NOTRACK={0x20, 'NOTRACK\x00'}}], {{[], 0x0, 0x70, 0x98}, {0x28}}}}, 0x220)

[ 1907.348354][ T2091] netlink: 1164 bytes leftover after parsing attributes in process `syz-executor.3'.
11:22:39 executing program 1:
capget(&(0x7f0000000000)={0x20080522, 0xffffffffffffffff}, 0x0)

11:22:39 executing program 2:
futex(&(0x7f0000000100), 0x1, 0x0, &(0x7f0000000140)={0x77359400}, 0x0, 0x0)

11:22:39 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000340)=ANY=[@ANYBLOB="3c00000024001d0f00"/20, @ANYRES32, @ANYBLOB="00000000f1ffffff000000000b00010064736d61726b00000c0002000600010008"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000e00)=ANY=[@ANYBLOB="d00800002400ffff01009e000000000000000000", @ANYRES32, @ANYBLOB="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"], 0x8d0}}, 0x0)
r1 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r1, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

11:22:39 executing program 4:
prctl$PR_GET_PDEATHSIG(0x1c, &(0x7f0000004440))

11:22:39 executing program 5:
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = dup3(r1, r0, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = gettid()
wait4(0x0, 0x0, 0x4000000a, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
ptrace$setopts(0x4206, r3, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/3, 0x3}], 0x3, 0x0, 0x0, 0x0)
tkill(r3, 0x40)
sched_setattr(0x0, &(0x7f00000000c0)={0x38, 0x0, 0x0, 0x8f, 0x0, 0x2}, 0x0)
ptrace$setregs(0xd, r3, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r3, 0x0, 0x0)

11:22:39 executing program 0:
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)

[ 1908.203199][ T2105] netlink: 1164 bytes leftover after parsing attributes in process `syz-executor.3'.
11:22:40 executing program 1:
select(0x40, &(0x7f0000001c40), 0x0, 0x0, 0x0)

[ 1908.440176][ T2109] ptrace attach of "/root/syz-executor.5"[2108] was attempted by "/root/syz-executor.5"[2109]
11:22:40 executing program 5:
fanotify_mark(0xffffffffffffffff, 0x71, 0x8000000, 0xffffffffffffffff, 0x0)

11:22:40 executing program 2:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
syz_mount_image$squashfs(&(0x7f0000000040)='squashfs\x00', &(0x7f0000000100)='./file0\x00', 0x1000, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="6873717307000000911d675f004000000000000003000e00d000020004", 0x1d}], 0x0, &(0x7f0000010200))

11:22:40 executing program 4:
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
getsockname(r0, 0x0, &(0x7f0000000a40))

11:22:40 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000340)=ANY=[@ANYBLOB="3c00000024001d0f00"/20, @ANYRES32, @ANYBLOB="00000000f1ffffff000000000b00010064736d61726b00000c0002000600010008"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000e00)=ANY=[@ANYBLOB="d00800002400ffff01009e000000000000000000", @ANYRES32, @ANYBLOB="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"], 0x8d0}}, 0x0)
sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

11:22:40 executing program 0:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x86040)

11:22:40 executing program 1:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, &(0x7f0000004580), 0x0, &(0x7f0000004680))

[ 1909.178248][ T2122] unable to read xattr id index table
11:22:41 executing program 4:
r0 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCOUTQNSD(r0, 0x8904, &(0x7f0000000000))

11:22:41 executing program 5:
perf_event_open(&(0x7f0000000900)={0x2, 0x70, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x700, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

11:22:41 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000340)=ANY=[@ANYBLOB="3c00000024001d0f00"/20, @ANYRES32, @ANYBLOB="00000000f1ffffff000000000b00010064736d61726b00000c0002000600010008"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000e00)=ANY=[@ANYBLOB="d00800002400ffff01009e000000000000000000", @ANYRES32, @ANYBLOB="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"], 0x8d0}}, 0x0)
sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

11:22:41 executing program 2:
r0 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_USER(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000840)={0x10}, 0x10}}, 0x0)

11:22:41 executing program 0:
keyctl$unlink(0x9, 0x0, 0xfffffffffffffffd)
add_key(&(0x7f0000000200)='keyring\x00', &(0x7f0000000240)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)

[ 1909.730988][ T2135] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
11:22:41 executing program 1:
mount$fuse(0x0, 0x0, 0x0, 0x200000000000000, 0x0)

11:22:42 executing program 5:
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x40, 0x0)

11:22:42 executing program 4:
timer_create(0x2, 0x0, &(0x7f0000000040))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)

11:22:42 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000340)=ANY=[@ANYBLOB="3c00000024001d0f00"/20, @ANYRES32, @ANYBLOB="00000000f1ffffff000000000b00010064736d61726b00000c0002000600010008"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000e00)=ANY=[@ANYBLOB="d00800002400ffff01009e000000000000000000", @ANYRES32, @ANYBLOB="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"], 0x8d0}}, 0x0)
sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

11:22:42 executing program 2:
syz_mount_image$btrfs(&(0x7f00000000c0)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)={[{@device={'device', 0x3d, './file0'}}]})

11:22:42 executing program 0:
keyctl$instantiate_iov(0x14, 0x0, &(0x7f0000002a00)=[{&(0x7f0000001900)="82", 0x1}, {0x0}], 0x2, 0x0)

11:22:42 executing program 5:
keyctl$instantiate(0xc, 0x0, &(0x7f0000000080)=@encrypted_load={'load ', 'ecryptfs', 0x20, 'user:', '}%}!/.:!*#&'}, 0x35, 0xfffffffffffffff8)

11:22:42 executing program 4:
add_key(&(0x7f0000000000)='trusted\x00', 0x0, 0x0, 0x0, 0xfffffffffffffff8)

11:22:42 executing program 1:
perf_event_open(&(0x7f0000000900)={0x8, 0x70, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

11:22:42 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000340)=ANY=[@ANYBLOB="3c00000024001d0f00"/20, @ANYRES32, @ANYBLOB="00000000f1ffffff000000000b00010064736d61726b00000c0002000600010008"], 0x3c}}, 0x0)
r1 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r1, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

11:22:43 executing program 2:
add_key$user(&(0x7f0000000000)='user\x00', &(0x7f0000000040)={'syz', 0x0}, &(0x7f0000000080)="de", 0x1, 0xfffffffffffffffb)

11:22:43 executing program 0:
r0 = add_key$user(&(0x7f0000000000)='user\x00', &(0x7f0000000040)={'syz', 0x0}, &(0x7f0000000080)="de", 0x1, 0xfffffffffffffffb)
keyctl$chown(0x4, r0, 0xee01, 0x0)

11:22:43 executing program 5:
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x14241, 0x0)

11:22:43 executing program 4:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs={0x1}, 0x6e)

11:22:43 executing program 1:
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$sock_SIOCOUTQNSD(r0, 0x8906, 0x0)

11:22:43 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000340)=ANY=[@ANYBLOB="3c00000024001d0f00"/20, @ANYRES32, @ANYBLOB="00000000f1ffffff000000000b00010064736d61726b00000c0002000600010008"], 0x3c}}, 0x0)
r1 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r1, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

11:22:43 executing program 2:
r0 = socket(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r0, 0x8982, &(0x7f0000000040)={0x0, 'lo\x00'})

11:22:44 executing program 0:
r0 = add_key$keyring(&(0x7f0000001840)='keyring\x00', &(0x7f0000001880)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
r1 = add_key$keyring(&(0x7f00000013c0)='keyring\x00', &(0x7f0000001800)={'syz', 0x2}, 0x0, 0x0, r0)
r2 = add_key$user(&(0x7f00000017c0)='user\x00', &(0x7f0000001940)={'syz', 0x3}, &(0x7f0000001f40)="e1", 0x1, r1)
keyctl$unlink(0x9, r2, r1)

11:22:44 executing program 4:
time(&(0x7f0000000a40))

11:22:44 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080)='msdos\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f00000003c0)=[{&(0x7f0000000100)="cfa66e2158bd0f3bf195921aa6", 0xd, 0x4}, {0x0, 0x0, 0x3d9}], 0x0, &(0x7f0000000440)={[], [{@smackfsdef={'smackfsdef', 0x3d, '/dev/vcs#\x00'}}]})

11:22:44 executing program 1:
perf_event_open(&(0x7f0000000900)={0x8, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

[ 1912.681311][ T2188] 8021q: VLANs not supported on lo
11:22:44 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000340)=ANY=[@ANYBLOB="3c00000024001d0f00"/20, @ANYRES32, @ANYBLOB="00000000f1ffffff000000000b00010064736d61726b00000c0002000600010008"], 0x3c}}, 0x0)
r1 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r1, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

11:22:44 executing program 0:
semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f0000000280)={{0x0, 0x0, 0x0, 0xee00, 0xee01}})

11:22:44 executing program 2:
openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/nvram\x00', 0x200000, 0x0)

[ 1913.045754][ T2193] FAT-fs (loop5): Unrecognized mount option "smackfsdef=/dev/vcs#" or missing value
[ 1913.161124][ T2193] FAT-fs (loop5): Unrecognized mount option "smackfsdef=/dev/vcs#" or missing value
11:22:44 executing program 4:
perf_event_open(&(0x7f0000000900)={0x2, 0x70, 0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

11:22:45 executing program 1:
semctl$SETALL(0x0, 0x0, 0x11, &(0x7f0000000040)=[0xfff9])

11:22:45 executing program 0:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000002780)='/dev/vcsu\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0x40049409, 0x0)

11:22:45 executing program 3:
socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000e00)=ANY=[@ANYBLOB="d00800002400ffff01009e000000000000000000", @ANYRES32, @ANYBLOB="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"], 0x8d0}}, 0x0)
r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

11:22:45 executing program 5:
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x4401, 0x0)

11:22:45 executing program 2:
getsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f00000005c0))
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCOUTQNSD(r0, 0x5411, &(0x7f0000000000))

11:22:45 executing program 4:
socket$inet(0x2, 0x0, 0xce8)

[ 1913.896213][ T2214] netlink: 1164 bytes leftover after parsing attributes in process `syz-executor.3'.
11:22:45 executing program 1:
perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x831, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x15000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

11:22:45 executing program 0:
socketpair(0x1, 0x0, 0x3, &(0x7f0000000000))

11:22:46 executing program 3:
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000e00)=ANY=[@ANYBLOB="d00800002400ffff01009e000000000000000000", @ANYRES32, @ANYBLOB="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"], 0x8d0}}, 0x0)
r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

11:22:46 executing program 5:
r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffc)
add_key$user(&(0x7f00000000c0)='user\x00', 0x0, 0x0, 0x0, r0)

11:22:46 executing program 2:
syz_open_dev$usbmon(&(0x7f0000000100)='/dev/usbmon#\x00', 0x0, 0x0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))

11:22:46 executing program 4:
keyctl$unlink(0x9, 0x0, 0xfffffffffffffffd)
add_key(&(0x7f0000000200)='keyring\x00', &(0x7f0000000240)={'syz', 0x3}, &(0x7f0000000280)="c7", 0x1, 0xffffffffffffffff)

[ 1914.697623][ T2227] netlink: 1164 bytes leftover after parsing attributes in process `syz-executor.3'.
11:22:46 executing program 1:
fanotify_mark(0xffffffffffffffff, 0x41, 0x0, 0xffffffffffffffff, 0x0)

11:22:46 executing program 0:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
sendmsg$NL80211_CMD_GET_SURVEY(r1, &(0x7f00000023c0)={0x0, 0x0, &(0x7f0000002380)={0x0}}, 0x40881)

11:22:46 executing program 5:
timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)

11:22:46 executing program 3:
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000e00)=ANY=[@ANYBLOB="d00800002400ffff01009e000000000000000000", @ANYRES32, @ANYBLOB="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"], 0x8d0}}, 0x0)
r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

11:22:46 executing program 2:
openat$tun(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/net/tun\x00', 0x0, 0x0)

11:22:47 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmmsg(r0, &(0x7f0000001440)=[{{&(0x7f0000000880)=@qipcrtr={0x10}, 0x80, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @remote}, 0x80, 0x0, 0x0, &(0x7f0000000340)=[{0x24}], 0x10}}], 0x2, 0x0)

11:22:47 executing program 0:
syz_mount_image$msdos(&(0x7f0000000000)='msdos\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, &(0x7f0000002580), 0x0, &(0x7f0000002680))

11:22:47 executing program 1:

[ 1915.610240][ T2244] netlink: 1164 bytes leftover after parsing attributes in process `syz-executor.3'.
11:22:47 executing program 5:

11:22:47 executing program 2:

11:22:47 executing program 3:
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000e00)=ANY=[@ANYBLOB="d00800002400ffff01009e000000000000000000", @ANYRES32, @ANYBLOB="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"], 0x8d0}}, 0x0)
r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

11:22:47 executing program 4:

[ 1916.004063][ T2252] FAT-fs (loop0): bogus number of reserved sectors
[ 1916.010775][ T2252] FAT-fs (loop0): Can't find a valid FAT filesystem
11:22:47 executing program 2:

11:22:47 executing program 1:

[ 1916.234680][ T2252] FAT-fs (loop0): bogus number of reserved sectors
[ 1916.241267][ T2252] FAT-fs (loop0): Can't find a valid FAT filesystem
11:22:48 executing program 5:

[ 1916.445950][ T2263] netlink: 1164 bytes leftover after parsing attributes in process `syz-executor.3'.
11:22:48 executing program 0:

11:22:48 executing program 4:

11:22:48 executing program 2:

11:22:48 executing program 3:
socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

11:22:48 executing program 1:

11:22:48 executing program 5:

11:22:48 executing program 4:

11:22:48 executing program 0:

11:22:49 executing program 2:

11:22:49 executing program 1:

11:22:49 executing program 5:

11:22:49 executing program 4:

11:22:49 executing program 0:

11:22:49 executing program 2:

11:22:49 executing program 1:

11:22:50 executing program 3:
socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

11:22:50 executing program 5:

11:22:50 executing program 4:

11:22:50 executing program 0:

11:22:50 executing program 2:

11:22:50 executing program 1:

11:22:50 executing program 5:

11:22:50 executing program 0:

11:22:51 executing program 4:

11:22:51 executing program 2:

11:22:51 executing program 1:

11:22:51 executing program 5:

11:22:52 executing program 3:
socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

11:22:52 executing program 4:

11:22:52 executing program 0:

11:22:52 executing program 2:

11:22:52 executing program 1:

11:22:52 executing program 5:
mq_open(&(0x7f0000000040)='\xf8[\xfb\xb0\x1bX\x15\xfe\xdc\xf4\xea\x1f\x9bim\xc7\x9b_Q\x83\xf6\x0f[\xad\xb6\xeb\xee\x14\xa4\x17.\b\xa3\xb7\xa1\x8e\x01\x00\x00\x00j\x18v\v\xa0\xd1\xde*\x10\x05/=\xdb\xd9\x01\xf0*\x12\xfe\x04\xa6\xda\xa4\xd9\xf4\x1c\xd8\xd6%\xf9\xe2\x86\"\bY\xce|4\xf9\xf2\x97\xf2\x95\x9bK\x99\'U\x1a\x99\xab\xe8\xb3\xf7\xd5\xd2\xba9\xc5t\xa5hx\xa7\xb1\xc8x\xa4\xde\n<\x8a\xfa>\xa1\x8c\xbf\x8e \x8dSP\x167F\x9fv\x9e\x87x\x04>K2&.\x8d\x82 u\xc2\x8b\xbbMf\xbb\x18\xfb\xe1\'\xab\f1\x80\x01\x17\x18\v\xf0.O\xf6\xd1b\t|1(\x85\xe5\x02L\xe2\xbb\xf6\x87CDeul\x0e\f\xe7\xf7\xc7\xd1\xab\xbe\xca\x0066\xcfe\xcf\xe3\xd7\xe6\xd0\f\xc8\xa3\x0f\xd5b\xa3\xfa\x98j\xef\x1e\x8bV\xb3\x9d\xe08\x01\b\xb2\xa3\x12\xaa\b\xe63%\x8b=\x03.\xea\x01\xd1ACHhr\x00\x00\x00\x00\x00\x00\x00\x00', 0x40, 0x0, 0x0)

11:22:52 executing program 4:
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
r2 = fcntl$dupfd(r1, 0x0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_mount_image$exfat(&(0x7f0000002880)='exfat\x00', &(0x7f00000028c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002b80), 0x0, &(0x7f0000002c00)={[{@allow_utime={'allow_utime', 0x3d, 0x8b02000000000000}}]})

11:22:52 executing program 0:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d)
bind$inet(r0, &(0x7f0000000440)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @local}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x0, &(0x7f0000000600), 0x4)
sendto$inet(r0, &(0x7f00000012c0)="0c268a927f1f6588b967481241ba7860005cf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x11, 0x0, 0x27)
recvmsg(r0, &(0x7f0000001500)={0x0, 0x0, &(0x7f0000002200)=[{&(0x7f00000035c0)=""/4106, 0x200045ca}], 0x1}, 0x100)

11:22:52 executing program 2:
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
sendmmsg$nfc_llcp(r0, &(0x7f0000001700)=[{0x0, 0x0, 0x0}], 0x1, 0x0)

11:22:53 executing program 1:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000040)="97d138dfe019fd586a5dedfa22443b665f07", 0x12}], 0x4, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$cont(0x18, r0, 0x0, 0x0)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x18, r0, 0x0, 0x0)

11:22:53 executing program 5:
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
r2 = fcntl$dupfd(r1, 0x0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_mount_image$exfat(&(0x7f0000002880)='exfat\x00', &(0x7f00000028c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002b80), 0x0, &(0x7f0000002c00)={[{@allow_utime={'allow_utime'}, 0x8}]})

11:22:53 executing program 4:
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000100)='/dev/zero\x00', 0x200442, 0x0)
mq_timedreceive(r0, 0x0, 0x0, 0x0, 0x0)

[ 1922.286089][ T2323] exfat: Bad value for 'allow_utime'
11:22:54 executing program 3:
socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0)
r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

11:22:54 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000000)={'tunl0\x00', &(0x7f0000000080)={'gretap0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast1, @multicast1}}}})

11:22:54 executing program 2:
socketpair(0x36, 0x0, 0x0, &(0x7f0000000000))

11:22:54 executing program 4:
r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x0, 0x0)
ioctl$SOUND_MIXER_READ_CAPS(r0, 0x80044dfc, &(0x7f0000000040))

11:22:54 executing program 5:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000040)="97d138dfe019fd586a5dedfa2244", 0xe}], 0x4, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$cont(0x18, r0, 0x0, 0x0)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x18, r0, 0x0, 0x0)

11:22:54 executing program 0:
syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000100)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}}}]}}]}}, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x2, [{0x4, &(0x7f0000000200)=@lang_id={0x4}}, {0x4, &(0x7f0000000240)=@lang_id={0x4}}]})

11:22:55 executing program 1:
r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x0, 0x0)
ioctl$SOUND_MIXER_READ_STEREODEVS(r0, 0x80044dff, &(0x7f0000000040))

11:22:55 executing program 2:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000040)="97d138dfe019fd", 0x7}], 0x4, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$cont(0x18, r0, 0x0, 0x0)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x18, r0, 0x0, 0x0)

11:22:55 executing program 4:
socketpair(0x22, 0x0, 0x0, &(0x7f0000001080))

11:22:55 executing program 3:
socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0)
r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

[ 1923.513515][    T5] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[ 1923.773537][    T5] usb 1-1: Using ep0 maxpacket: 8
11:22:55 executing program 4:
socketpair(0x2c, 0x0, 0x0, &(0x7f0000001080))

[ 1923.904791][    T5] usb 1-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
11:22:55 executing program 1:
syz_open_dev$sg(&(0x7f00000000c0)='/dev/sg#\x00', 0x0, 0x44081)

[ 1924.127782][    T5] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1924.138330][    T5] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1924.147137][    T5] usb 1-1: Product: syz
[ 1924.151462][    T5] usb 1-1: SerialNumber: syz
11:22:56 executing program 3:
socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0)
r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

[ 1924.309731][    T5] cdc_ether: probe of 1-1:1.0 failed with error -22
[ 1924.533203][    T5] usb 1-1: USB disconnect, device number 11
11:22:56 executing program 4:
socketpair(0x1e, 0x2, 0x0, &(0x7f0000001080))

11:22:56 executing program 1:
syz_usb_connect$uac1(0x0, 0x71, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5f, 0x3, 0x1, 0x0, 0x0, 0x0, {{}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x1, 0x9, 0x0, 0x0, 0x0, 0x0, {0x7}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x82, 0x9, 0x0, 0x0, 0x0, 0x0, {0x7}}}}}}}]}}, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x4, &(0x7f0000000180)=@lang_id={0x4}}]})

11:22:56 executing program 3:
socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={0x0, 0x8d0}}, 0x0)
r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

[ 1925.243328][    T5] usb 2-1: new high-speed USB device number 51 using dummy_hcd
[ 1925.333207][T28470] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[ 1925.493329][    T5] usb 2-1: Using ep0 maxpacket: 8
[ 1925.587551][T28470] usb 1-1: Using ep0 maxpacket: 8
[ 1925.623813][    T5] usb 2-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[ 1925.632817][    T5] usb 2-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[ 1925.643354][    T5] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1925.785515][T28470] usb 1-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[ 1925.853759][    T5] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1925.863168][    T5] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1925.872904][    T5] usb 2-1: Product: syz
[ 1925.877801][    T5] usb 2-1: Manufacturer: syz
[ 1925.882534][    T5] usb 2-1: SerialNumber: syz
[ 1925.976417][T28470] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1925.986056][T28470] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1925.994401][T28470] usb 1-1: Product: syz
[ 1925.998649][T28470] usb 1-1: SerialNumber: syz
[ 1926.106611][T28470] cdc_ether: probe of 1-1:1.0 failed with error -22
11:22:57 executing program 5:
sendmsg$SMC_PNETID_DEL(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000200)='devlink\x00')
r2 = gettid()
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x3c, r1, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, r2}}]}, 0x3c}}, 0x0)

11:22:57 executing program 0:
syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000100)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}}}]}}]}}, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x3, [{0x4, &(0x7f0000000200)=@lang_id={0x4}}, {0x4, &(0x7f0000000240)=@lang_id={0x4, 0x3, 0x44c}}, {0xac, &(0x7f00000002c0)=@string={0xac, 0x3, "7adc0391e5287efcbdd0b844662e2117c349b1a1475faf6eb659a9937cd54731a3abf699a772cf966636620b8e615821cc741eaf3283c33f93d45b6f99c99e50afe813d57359f3cef99c4b47fc33f45f8e20376ea81edc8a3d96517517a9fbffa18fbb3ed76c394b768e798753ca6959c9a6c7c3ce994146b1ef4f13af1a19b3939439261bd06614af142889c45f9325ae6bc4c754bf599ce8af45ce34d1933079579f8f5ea76d5837de"}}]})

11:22:57 executing program 4:
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, 0x0)
io_setup(0x1c68, &(0x7f0000000040))

[ 1926.200265][ T1691] usb 1-1: USB disconnect, device number 12
[ 1926.264018][    T5] usb 2-1: 0:2 : does not exist
[ 1926.316731][    T5] usb 2-1: USB disconnect, device number 51
[ 1926.795103][T27910] usb 1-1: new high-speed USB device number 13 using dummy_hcd
11:22:58 executing program 2:
r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x0, 0x0)
ioctl$SOUND_MIXER_READ_RECMASK(r0, 0x80044dfd, &(0x7f0000001340))

11:22:58 executing program 3:
socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={0x0, 0x8d0}}, 0x0)
r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

11:22:58 executing program 4:
socketpair(0x22, 0x0, 0x2000008, &(0x7f0000001080))

[ 1926.983251][T27952] usb 2-1: new high-speed USB device number 52 using dummy_hcd
[ 1927.055421][T27910] usb 1-1: Using ep0 maxpacket: 8
[ 1927.174916][T27910] usb 1-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[ 1927.223495][T27952] usb 2-1: Using ep0 maxpacket: 8
[ 1927.344015][T27952] usb 2-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[ 1927.353058][T27952] usb 2-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[ 1927.363520][T27952] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1927.368744][T27910] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1927.381997][T27910] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1927.390276][T27910] usb 1-1: Product: 鄃⣥ﱾ킽䒸⹦ᜡ䧃ꆱ彇溯妶鎩핼ㅇꮣ駶犧雏㙦ୢ憎⅘瓌꼞茲㿃풓潛즙傞픓女컳鳹䝋㏼忴₎渷Ẩ諜阽畑ꤗ辡㺻泗䬹蹶蝹쩓奩ꛉ쏇駎䙁ፏ᪯댙钓☹퀛ᑦᒯ褨忄▓殮쟄뽔鱙꿨칅턴ん坹辟Ꝟ塭
[ 1927.417433][T27910] usb 1-1: Manufacturer: ь
[ 1927.422041][T27910] usb 1-1: SerialNumber: syz
11:22:59 executing program 3:
socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={0x0, 0x8d0}}, 0x0)
r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

[ 1927.464003][ T2419] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
11:22:59 executing program 4:
syz_usb_connect$cdc_ecm(0x0, 0x55, &(0x7f0000000100)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x43, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, [@mbim_extended={0x8}]}}}]}}]}}, 0x0)

[ 1927.646064][T27952] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1927.655528][T27952] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1927.663848][T27952] usb 2-1: Product: syz
[ 1927.668193][T27952] usb 2-1: Manufacturer: syz
[ 1927.673056][T27952] usb 2-1: SerialNumber: syz
11:22:59 executing program 2:
syz_usb_connect$cdc_ecm(0x0, 0x6e, &(0x7f0000000100)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5c, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, [@mbim_extended={0x8}, @acm={0x4}, @network_terminal={0x7}, @country_functional={0x6}, @mbim_extended={0x8}]}}}]}}]}}, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x3, [{0x4, &(0x7f0000000200)=@lang_id={0x4}}, {0x4, &(0x7f0000000240)=@lang_id={0x4, 0x3, 0x44c}}, {0xac, &(0x7f00000002c0)=@string={0xac, 0x3, "7adc0391e5287efcbdd0b844662e2117c349b1a1475faf6eb659a9937cd54731a3abf699a772cf966636620b8e615821cc741eaf3283c33f93d45b6f99c99e50afe813d57359f3cef99c4b47fc33f45f8e20376ea81edc8a3d96517517a9fbffa18fbb3ed76c394b768e798753ca6959c9a6c7c3ce994146b1ef4f13af1a19b3939439261bd06614af142889c45f9325ae6bc4c754bf599ce8af45ce34d1933079579f8f5ea76d5837de"}}]})

[ 1927.826258][T27910] cdc_ether: probe of 1-1:1.0 failed with error -22
11:22:59 executing program 1:
syz_emit_ethernet(0xe81, &(0x7f0000000040)={@local, @broadcast, @val={@void}, {@mpls_mc={0x8848, {[], @ipv6=@gre_packet={0x0, 0x6, '){.', 0xe47, 0x2f, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @empty, {[@dstopts={0x0, 0x1, [], [@generic={0x0, 0x7, "33c77ffc68b0fb"}]}, @srh={0x0, 0x2, 0x4, 0x1, 0x0, 0x0, 0x0, [@empty]}, @hopopts={0x0, 0xb, [], [@calipso={0x7, 0x48, {0x0, 0x10, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, @hao={0xc9, 0x10, @loopback}]}, @fragment, @srh={0x0, 0x6, 0x4, 0x3, 0x0, 0x0, 0x0, [@mcast2, @loopback, @empty]}, @hopopts={0x0, 0x17b, [], [@padn={0x1, 0x7, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @pad1, @hao={0xc9, 0x10, @mcast2}, @ra, @enc_lim, @enc_lim, @padn={0x1, 0xa, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @generic={0x0, 0xba3, "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"}]}], {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x32, 0x0, [], "361842dfc35f103ab81df9647d4cb8fc89d5891fe9a1d2351c78d85fbf60d326429f2a482098aed6c98584e788c4023e05eb"}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, [0x0], "a81f7d6526d1a920d8f3904b3cb04ce3c015a7f1f09960d426d3400b05daa3017082c228702627686858ed2a3f3686618353b8df8178f3fa2f077087229ab4dc96c9a9ded22793f95c06e8e631e261389f6cf92103b53b48d3140acabd3cbe5583bdddbb78e59bc0418edc156d547130d11d3e69541557e1b7eedabae167653b9b9c4bae5dc11f45da7dc20dba8f01cc14b19e1c398b6b45a0455c4197382bed1d82e62977c8dc13ff6f00"}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x86dd, [0x0, 0x0, 0x0], "67f3a2d7bbc08ecb98e5ea77ae3867ede5c06c68530af4e62ccad4b0efdf225f7142e8fca1c3bb4b2f55c4"}, {}, {}, {0x8, 0x6558, 0x0, "57ae33c4791f542691eca01d297749c87dda343ba0e61a4e368532c9d4b6d221209c242d11a73d4e3b2b7f52c4846adb4de284"}}}}}}}}, 0x0)

[ 1928.267174][T27952] usb 2-1: 0:2 : does not exist
11:23:00 executing program 3:
socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000e00)=ANY=[@ANYBLOB="d00800002400ffff01009e000000000000000000", @ANYRES32], 0x8d0}}, 0x0)
r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

[ 1928.318746][ T2419] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1928.327457][T27952] usb 2-1: USB disconnect, device number 52
[ 1928.346996][T27910] usb 1-1: USB disconnect, device number 13
[ 1928.583305][T14610] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[ 1928.823388][T14610] usb 3-1: Using ep0 maxpacket: 8
[ 1928.913530][T27910] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[ 1928.918972][ T2419] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1928.945728][T14610] usb 3-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
11:23:00 executing program 4:
syz_usb_connect$uac1(0x0, 0x96, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x84, 0x3, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{}, [@processing_unit={0xb, 0x24, 0x7, 0x0, 0x0, 0x0, "67b8eb8f"}, @input_terminal={0xc}, @mixer_unit={0x6, 0x24, 0x4, 0x0, 0x0, '!'}, @mixer_unit={0x8, 0x24, 0x4, 0x0, 0x0, "6d3506"}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x1, 0x9, 0x0, 0x0, 0x0, 0x0, {0x7}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x82, 0x9, 0x0, 0x0, 0x0, 0x0, {0x7}}}}}}}]}}, 0x0)

[ 1929.024179][ T2470] netlink: 2220 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1929.134532][T14610] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1929.144076][T14610] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1929.153815][T14610] usb 3-1: Product: 鄃⣥ﱾ킽䒸⹦ᜡ䧃ꆱ彇溯妶鎩핼ㅇꮣ駶犧雏㙦ୢ憎⅘瓌꼞茲㿃풓潛즙傞픓女컳鳹䝋㏼忴₎渷Ẩ諜阽畑ꤗ辡㺻泗䬹蹶蝹쩓奩ꛉ쏇駎䙁ፏ᪯댙钓☹퀛ᑦᒯ褨忄▓殮쟄뽔鱙꿨칅턴ん坹辟Ꝟ塭
[ 1929.180027][T14610] usb 3-1: Manufacturer: ь
[ 1929.184794][T14610] usb 3-1: SerialNumber: syz
[ 1929.213408][T27910] usb 1-1: Using ep0 maxpacket: 8
[ 1929.338508][T27910] usb 1-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[ 1929.405917][T14610] cdc_ether: probe of 3-1:1.0 failed with error -22
[ 1929.515186][ T2419] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1929.532272][T27910] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1929.541813][T27910] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1929.550137][T27910] usb 1-1: Product: 鄃⣥ﱾ킽䒸⹦ᜡ䧃ꆱ彇溯妶鎩핼ㅇꮣ駶犧雏㙦ୢ憎⅘瓌꼞茲㿃풓潛즙傞픓女컳鳹䝋㏼忴₎渷Ẩ諜阽畑ꤗ辡㺻泗䬹蹶蝹쩓奩ꛉ쏇駎䙁ፏ᪯댙钓☹퀛ᑦᒯ褨忄▓殮쟄뽔鱙꿨칅턴ん坹辟Ꝟ塭
[ 1929.577384][T27910] usb 1-1: Manufacturer: ь
[ 1929.581994][T27910] usb 1-1: SerialNumber: syz
[ 1929.607991][T14610] usb 3-1: USB disconnect, device number 11
[ 1929.716045][T27910] usb 1-1: can't set config #1, error -71
[ 1929.783575][T27910] usb 1-1: USB disconnect, device number 14
[ 1929.859454][ T2419] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1929.879215][ T2419] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1929.897602][ T2419] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1929.915630][ T2419] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1929.938246][ T2430] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1930.031332][ T2430] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1930.141581][ T2430] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1930.237478][ T2430] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1930.388509][ T2430] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1930.394663][ T8477] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[ 1930.405812][ T2430] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1930.423256][ T2430] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1930.440782][ T2430] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1930.655377][ T8477] usb 3-1: Using ep0 maxpacket: 8
11:23:02 executing program 5:

11:23:02 executing program 1:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000040)="97d138dfe019fd586a5dedfa22443b665f070000", 0x14}], 0x4, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
write$FUSE_ATTR(0xffffffffffffffff, &(0x7f0000000080)={0x78}, 0x78)
tkill(r0, 0x3c)
ptrace$cont(0x18, r0, 0x0, 0x0)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x18, r0, 0x0, 0x0)

11:23:02 executing program 3:
socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000e00)=ANY=[@ANYBLOB="d00800002400ffff01009e000000000000000000", @ANYRES32], 0x8d0}}, 0x0)
r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

11:23:02 executing program 0:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d)
bind$inet(r0, &(0x7f0000000440)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @local}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x0, &(0x7f0000000600), 0x4)
sendto$inet(r0, &(0x7f00000012c0)="0c268a927f1f6588b967481241ba7860e8e2f65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x11, 0x0, 0x27)
recvmsg(r0, &(0x7f0000001500)={0x0, 0x0, &(0x7f0000002200)=[{&(0x7f00000035c0)=""/4106, 0x200045ca}], 0x1}, 0x100)

11:23:02 executing program 4:

[ 1930.784183][ T8477] usb 3-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[ 1930.941543][ T2520] netlink: 2220 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1931.034132][ T8477] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1931.043619][ T8477] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1931.051911][ T8477] usb 3-1: Product: 鄃⣥ﱾ킽䒸⹦ᜡ䧃ꆱ彇溯妶鎩핼ㅇꮣ駶犧雏㙦ୢ憎⅘瓌꼞茲㿃풓潛즙傞픓女컳鳹䝋㏼忴₎渷Ẩ諜阽畑ꤗ辡㺻泗䬹蹶蝹쩓奩ꛉ쏇駎䙁ፏ᪯댙钓☹퀛ᑦᒯ褨忄▓殮쟄뽔鱙꿨칅턴ん坹辟Ꝟ塭
[ 1931.078024][ T8477] usb 3-1: Manufacturer: ь
[ 1931.082700][ T8477] usb 3-1: SerialNumber: syz
11:23:03 executing program 3:
socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000e00)=ANY=[@ANYBLOB="d00800002400ffff01009e000000000000000000", @ANYRES32], 0x8d0}}, 0x0)
r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

11:23:03 executing program 2:

[ 1931.638073][ T8477] usb 3-1: can't set config #1, error -71
11:23:03 executing program 4:

[ 1931.681654][ T8477] usb 3-1: USB disconnect, device number 12
11:23:03 executing program 1:

11:23:03 executing program 5:

[ 1932.008835][ T2542] netlink: 2220 bytes leftover after parsing attributes in process `syz-executor.3'.
11:23:04 executing program 4:

11:23:04 executing program 3:
socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000e00)=ANY=[@ANYBLOB="d00800002400ffff01009e000000000000000000", @ANYRES32, @ANYBLOB], 0x8d0}}, 0x0)
r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

11:23:04 executing program 2:

11:23:04 executing program 1:

11:23:04 executing program 5:

[ 1932.722633][ T2552] netlink: 2220 bytes leftover after parsing attributes in process `syz-executor.3'.
11:23:04 executing program 0:

11:23:04 executing program 2:

11:23:04 executing program 4:

11:23:04 executing program 1:

11:23:04 executing program 3:
socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000e00)=ANY=[@ANYBLOB="d00800002400ffff01009e000000000000000000", @ANYRES32, @ANYBLOB], 0x8d0}}, 0x0)
r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

11:23:04 executing program 5:

[ 1933.423501][ T2561] netlink: 2220 bytes leftover after parsing attributes in process `syz-executor.3'.
11:23:05 executing program 4:

11:23:05 executing program 2:

11:23:05 executing program 0:

11:23:05 executing program 1:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_LISTEN(r0, &(0x7f0000000080)={0x7, 0x8, 0xfa00, {r1}}, 0x10)

11:23:05 executing program 3:
socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000e00)=ANY=[@ANYBLOB="d00800002400ffff01009e000000000000000000", @ANYRES32, @ANYBLOB], 0x8d0}}, 0x0)
r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

11:23:05 executing program 5:
openat$vmci(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vmci\x00', 0x2, 0x0)
syz_genetlink_get_family_id$l2tp(0x0)

11:23:05 executing program 4:

[ 1934.150747][ T2573] netlink: 2220 bytes leftover after parsing attributes in process `syz-executor.3'.
11:23:05 executing program 0:

11:23:05 executing program 2:

11:23:06 executing program 1:

11:23:06 executing program 3:
socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000e00)=ANY=[@ANYBLOB="d00800002400ffff01009e000000000000000000", @ANYRES32, @ANYBLOB="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"], 0x8d0}}, 0x0)
r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

11:23:06 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0xc0189436, &(0x7f0000000080)={0x0, {}, 0x0, {}, 0x0, 0x0, 0x0, 0x0, "3df946f41c0f05470ba4335beae344860341c517007a3eb2b920b7301ad82ee679b1948b2989103a9893c8515581f96f4aee7eeabcb998d16f1faa87f856c107", "3f292d4e2760903a4a2717f201070f92f141f9f21d4b4c4e5fbe6f840b7368dd"})

11:23:06 executing program 4:
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
setsockopt$llc_int(r0, 0x10c, 0x1, &(0x7f0000000440)=0xc0000002, 0x4)

11:23:06 executing program 2:
r0 = socket$qrtr(0x2a, 0x2, 0x0)
sendmsg$qrtr(r0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=[{0x10}], 0x10}, 0x38)

11:23:06 executing program 0:
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
bind$tipc(r0, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x3985b2039d18d999}, 0x10)

11:23:06 executing program 1:
openat$nullb(0xffffffffffffff9c, 0x0, 0x490580, 0x0)

[ 1934.943657][ T2582] netlink: 1180 bytes leftover after parsing attributes in process `syz-executor.3'.
11:23:07 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000180)='/dev/uinput\x00', 0x0, 0x0)
ioctl$UI_END_FF_ERASE(r0, 0x4004556b, &(0x7f00000001c0))

11:23:07 executing program 3:
socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000e00)=ANY=[@ANYBLOB="d00800002400ffff01009e000000000000000000", @ANYRES32, @ANYBLOB="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"], 0x8d0}}, 0x0)
r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

11:23:07 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r0, 0x0, 0x483, &(0x7f0000000000), &(0x7f0000000080)=0x68)

11:23:07 executing program 2:
r0 = gettid()
rt_sigqueueinfo(r0, 0x0, &(0x7f0000000080)={0x0, 0x0, 0xdf3})

11:23:07 executing program 1:
syz_open_dev$vcsa(&(0x7f00000007c0)='/dev/vcsa#\x00', 0x0, 0x1)

11:23:07 executing program 0:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
connect$l2tp6(r0, &(0x7f0000000000)={0x2, 0x0, 0x0, @mcast2}, 0x20)

[ 1935.679310][ T2596] netlink: 1180 bytes leftover after parsing attributes in process `syz-executor.3'.
11:23:07 executing program 3:
socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000e00)=ANY=[@ANYBLOB="d00800002400ffff01009e000000000000000000", @ANYRES32, @ANYBLOB="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"], 0x8d0}}, 0x0)
r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

11:23:07 executing program 5:
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001340)=@bpf_tracing={0x1a, 0x3, &(0x7f0000001140)=@framed, &(0x7f00000011c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

11:23:07 executing program 4:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000640)='/proc/stat\x00', 0x0, 0x0)
ioctl$KVM_IOEVENTFD(r0, 0x10, 0x0)

11:23:07 executing program 2:
syz_usb_connect$uac1(0x0, 0x71, &(0x7f0000002cc0)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5f, 0x3, 0x1, 0x0, 0x0, 0x0, {{}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x1, 0x9, 0x0, 0x0, 0x0, 0x0, {0x7}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x82, 0x9, 0x0, 0x0, 0x0, 0x0, {0x7}}}}}}}]}}, &(0x7f0000003280)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})

11:23:08 executing program 1:
r0 = socket(0x23, 0x2, 0x0)
sendmsg$NL80211_CMD_DEL_INTERFACE(r0, &(0x7f0000000100)={&(0x7f0000000000), 0xc, &(0x7f00000000c0)={0x0}}, 0x0)

11:23:08 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x11}, 0x40)

[ 1936.458692][ T2609] netlink: 1180 bytes leftover after parsing attributes in process `syz-executor.3'.
11:23:08 executing program 4:
r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0x1274, 0x0)

11:23:08 executing program 3:
socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000e00)=ANY=[@ANYBLOB="d00800002400ffff01009e000000000000000000", @ANYRES32, @ANYBLOB="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"], 0x8d0}}, 0x0)
r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

11:23:08 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0x1269, &(0x7f0000000080)={0x0, {}, 0x0, {}, 0x0, 0x0, 0x0, 0x0, "3df946f41c0f05470ba4335beae344860341c517007a3eb2b920b7301ad82ee679b1948b2989103a9893c8515581f96f4aee7eeabcb998d16f1faa87f856c107", "3f292d4e2760903a4a2717f201070f92f141f9f21d4b4c4e5fbe6f840b7368dd"})

[ 1936.943600][T27952] usb 3-1: new high-speed USB device number 13 using dummy_hcd
11:23:08 executing program 1:
r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0x125d, &(0x7f0000000080)={0x0, {}, 0x0, {}, 0x0, 0x0, 0x0, 0x0, "3df946f41c0f05470ba4335beae344860341c517007a3eb2b920b7301ad82ee679b1948b2989103a9893c8515581f96f4aee7eeabcb998d16f1faa87f856c107", "3f292d4e2760903a4a2717f201070f92f141f9f21d4b4c4e5fbe6f840b7368dd"})

11:23:08 executing program 0:
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)

[ 1937.154071][ T2626] netlink: 1180 bytes leftover after parsing attributes in process `syz-executor.3'.
11:23:08 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x0, 0x0, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

[ 1937.213273][T27952] usb 3-1: Using ep0 maxpacket: 8
11:23:09 executing program 5:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000640)='/proc/stat\x00', 0x0, 0x0)
ioctl$KVM_IOEVENTFD(r0, 0x40305829, 0x0)

[ 1937.344030][T27952] usb 3-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[ 1937.352891][T27952] usb 3-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[ 1937.363545][T27952] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
11:23:09 executing program 3:
socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000e00)=ANY=[@ANYBLOB="d00800002400ffff01009e000000000000000000", @ANYRES32, @ANYBLOB="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"], 0x8d0}}, 0x0)
r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

[ 1937.674162][T27952] usb 3-1: string descriptor 0 read error: -22
[ 1937.680792][T27952] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1937.690414][T27952] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
11:23:09 executing program 1:
modify_ldt$read_default(0x2, &(0x7f0000000300)=""/154, 0x9a)

[ 1937.897082][T27952] usb 3-1: 0:2 : does not exist
[ 1937.981343][ T2641] netlink: 1180 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1938.092586][T27952] usb 3-1: USB disconnect, device number 13
[ 1938.873210][T27952] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[ 1939.116524][T27952] usb 3-1: Using ep0 maxpacket: 8
[ 1939.243491][T27952] usb 3-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[ 1939.252465][T27952] usb 3-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[ 1939.263095][T27952] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1939.504065][T27952] usb 3-1: string descriptor 0 read error: -22
[ 1939.510660][T27952] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1939.520091][T27952] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
11:23:11 executing program 2:
syz_usb_connect$uac1(0x0, 0x71, &(0x7f0000002cc0)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5f, 0x3, 0x1, 0x0, 0x0, 0x0, {{}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x1, 0x9, 0x0, 0x0, 0x0, 0x0, {0x7}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x82, 0x9, 0x0, 0x0, 0x0, 0x0, {0x7}}}}}}}]}}, &(0x7f0000003280)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})

11:23:11 executing program 4:
syz_io_uring_setup(0x4c37, &(0x7f0000000000), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000000c0))

11:23:11 executing program 0:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x4, &(0x7f0000000080)=@framed={{}, [@func={0x48}]}, &(0x7f0000000100)='GPL\x00', 0x5, 0x86, &(0x7f00000001c0)=""/134, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

11:23:11 executing program 3:
socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000e00)=ANY=[@ANYBLOB="d00800002400ffff01009e000000000000000000", @ANYRES32, @ANYBLOB="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"], 0x8d0}}, 0x0)
r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

11:23:11 executing program 5:
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r0, &(0x7f0000000040), 0x26)

11:23:11 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$fou(&(0x7f0000000040)='fou\x00')
sendmsg$FOU_CMD_DEL(r0, &(0x7f0000000100)={&(0x7f0000000000), 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x24, r1, 0x1, 0x0, 0x0, {}, [@FOU_ATTR_AF={0x5, 0x2, 0x2}, @FOU_ATTR_IPPROTO={0x5}]}, 0x24}}, 0x0)

[ 1939.668199][T27952] usb 3-1: can't set config #1, error -71
[ 1939.707926][T27952] usb 3-1: USB disconnect, device number 14
[ 1939.876768][ T2682] netlink: 1180 bytes leftover after parsing attributes in process `syz-executor.3'.
11:23:11 executing program 0:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x0, 0x0})
pipe2(&(0x7f00000003c0), 0x0)

11:23:11 executing program 5:
bpf$BPF_PROG_QUERY(0x3, &(0x7f0000001640)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x20)

11:23:12 executing program 3:
socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000e00)=ANY=[@ANYBLOB="d00800002400ffff01009e000000000000000000", @ANYRES32, @ANYBLOB="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"], 0x8d0}}, 0x0)
r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

11:23:12 executing program 1:
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x0, &(0x7f0000000a40)={0x1, &(0x7f0000000a00)=[{0xff}]})
syz_genetlink_get_family_id$nl80211(0x0)

11:23:12 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, 0x0)

[ 1940.423737][T27952] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[ 1940.683361][T27952] usb 3-1: Using ep0 maxpacket: 8
[ 1940.735130][ T2703] netlink: 1180 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1940.817426][T27952] usb 3-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[ 1940.826414][T27952] usb 3-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[ 1940.836830][T27952] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
11:23:12 executing program 0:
getsockname$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, <r0=>0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000040)=0x14)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000004300)='ethtool\x00')
sendmsg$ETHTOOL_MSG_LINKINFO_SET(r1, &(0x7f0000004400)={&(0x7f00000042c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000043c0)={&(0x7f0000004340)={0x44, r2, 0x4, 0x70bd27, 0x25dfdbfe, {}, [@ETHTOOL_A_LINKINFO_TP_MDIX_CTRL={0x5, 0x5, 0x20}, @ETHTOOL_A_LINKINFO_PORT={0x5, 0x2, 0x5}, @ETHTOOL_A_LINKINFO_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0\x00'}]}, @ETHTOOL_A_LINKINFO_PHYADDR={0x5, 0x3, 0x9}]}, 0x44}, 0x1, 0x0, 0x0, 0x400c050}, 0x80)
r3 = syz_open_dev$vcsu(&(0x7f0000004480)='/dev/vcsu#\x00', 0x4, 0x2440)
bpf$MAP_CREATE(0x0, &(0x7f00000044c0)={0x14, 0x3, 0x9, 0x80000001, 0x99, 0x1, 0xa42, [], 0x0, r3, 0x4, 0x5, 0x5}, 0x40)
recvmmsg(0xffffffffffffffff, &(0x7f0000009280)=[{{&(0x7f0000004600)=@nl=@unspec, 0x80, &(0x7f0000004800)=[{&(0x7f0000004680)=""/11, 0xb}, {&(0x7f00000046c0)=""/48, 0x30}, {&(0x7f0000004700)=""/102, 0x66}, {&(0x7f0000004780)=""/78, 0x4e}], 0x4, &(0x7f0000004840)=""/5, 0x5}, 0x3}, {{&(0x7f0000004880)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @ipv4={[], [], @empty}}}}, 0x80, &(0x7f0000004bc0)=[{&(0x7f0000004900)=""/35, 0x23}, {&(0x7f0000004940)=""/201, 0xc9}, {&(0x7f0000004a40)=""/163, 0xa3}, {&(0x7f0000004b00)=""/191, 0xbf}], 0x4, &(0x7f0000004c00)=""/4096, 0x1000}, 0xfffffff8}, {{&(0x7f0000005c00)=@pppol2tpv3={0x18, 0x1, {0x0, <r4=>0xffffffffffffffff, {0x2, 0x0, @dev}}}, 0x80, &(0x7f0000005e80)=[{&(0x7f0000005c80)=""/210, 0xd2}, {&(0x7f0000005d80)=""/193, 0xc1}], 0x2}, 0x401}, {{&(0x7f0000005ec0)=@rc={0x1f, @none}, 0x80, &(0x7f0000006080)=[{&(0x7f0000005f40)=""/106, 0x6a}, {&(0x7f0000005fc0)=""/34, 0x22}, {&(0x7f0000006000)=""/99, 0x63}], 0x3, &(0x7f00000060c0)=""/182, 0xb6}, 0xffff8001}, {{0x0, 0x0, &(0x7f0000006200)=[{&(0x7f0000006180)=""/67, 0x43}], 0x1, &(0x7f0000006240)=""/163, 0xa3}, 0x9d66}, {{&(0x7f0000006300)=@pptp={0x18, 0x2, {0x0, @dev}}, 0x80, &(0x7f00000076c0)=[{&(0x7f0000006380)=""/244, 0xf4}, {&(0x7f0000006480)=""/211, 0xd3}, {&(0x7f0000006580)=""/144, 0x90}, {&(0x7f0000006640)=""/36, 0x24}, {&(0x7f0000006680)=""/55, 0x37}, {&(0x7f00000066c0)=""/4096, 0x1000}], 0x6}, 0x9}, {{&(0x7f0000007740)=@caif=@util, 0x80, &(0x7f0000008a40)=[{&(0x7f00000077c0)=""/112, 0x70}, {&(0x7f0000007840)=""/85, 0x55}, {&(0x7f00000078c0)=""/72, 0x48}, {&(0x7f0000007940)}, {&(0x7f0000007980)=""/4096, 0x1000}, {&(0x7f0000008980)=""/53, 0x35}, {&(0x7f00000089c0)=""/44, 0x2c}, {&(0x7f0000008a00)=""/27, 0x1b}], 0x8, &(0x7f0000008ac0)=""/31, 0x1f}, 0x9}, {{&(0x7f0000008b00)=@ax25={{}, [@default, @remote, @null, @default, @null, @rose, @bcast, @bcast]}, 0x80, &(0x7f0000009140)=[{&(0x7f0000008b80)=""/234, 0xea}, {&(0x7f0000008c80)=""/180, 0xb4}, {&(0x7f0000008d40)=""/223, 0xdf}, {&(0x7f0000008e40)=""/131, 0x83}, {&(0x7f0000008f00)=""/18, 0x12}, {&(0x7f0000008f40)=""/255, 0xff}, {&(0x7f0000009040)=""/218, 0xda}], 0x7, &(0x7f00000091c0)=""/145, 0x91}, 0x7ff}], 0x8, 0x2000, &(0x7f0000009480))
write$P9_RLERROR(r3, &(0x7f00000095c0)={0xf, 0x7, 0x1, {0x6, 'veth0\x00'}}, 0xf)
bind(r4, &(0x7f0000009600)=@l2tp={0x2, 0x0, @empty, 0x2}, 0x80)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f00000096c0)='ethtool\x00')
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000009700)={'batadv_slave_1\x00', <r6=>0x0})
sendmsg$ETHTOOL_MSG_PAUSE_SET(r1, &(0x7f00000098c0)={&(0x7f0000009680)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000009880)={&(0x7f0000009740)={0x128, r5, 0x4, 0x70bd2a, 0x25dfdbff, {}, [@ETHTOOL_A_PAUSE_AUTONEG={0x5, 0x2, 0x1}, @ETHTOOL_A_PAUSE_HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r0}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_PAUSE_AUTONEG={0x5}, @ETHTOOL_A_PAUSE_HEADER={0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'lo\x00'}]}, @ETHTOOL_A_PAUSE_TX={0x5, 0x4, 0x1}, @ETHTOOL_A_PAUSE_HEADER={0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r0}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macsec0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @ETHTOOL_A_PAUSE_RX={0x5, 0x3, 0x1}, @ETHTOOL_A_PAUSE_AUTONEG={0x5, 0x2, 0x1}, @ETHTOOL_A_PAUSE_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}]}, @ETHTOOL_A_PAUSE_RX={0x5}]}, 0x128}}, 0x40)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f000000ab00)={&(0x7f0000009900)="36a8daeee5dc1cd70e741013eeb8f5d7001e7ad07d3398ecb04e6d38442e1c2ccd8fbd11aabc4f94e939fc4c8ce9612be075f24639b425ff7f4f7e55eae241602fca14fca292f24e70bc317087b7abdec69411b808b0df4d74cd7cb727558f3210f759b5777b4bfda4e44b231149af93d3a562290f2b07b591ae3b925084cda3432de447cc9fca27249bcf7fc235876be2c8cbb560f60f9d1e7426d62cc353ebafd61988d9", &(0x7f00000099c0)=""/86, &(0x7f0000009a40)="4dbe30abec6d3adff3fb3862b83b91a950632bb9829cf3bf08fe2e3877d6909bc6c31cd3ba342935ed76be96325737d003bc930c13bef86e0c84a529202bffdbbce866b904f25c9d5a31f7022e625d9be4ecc28f754fc43024f7781da389bcd11df8f455c61750b58ff900539fc9ad37db9a83a2026ba539cccc1ed034aa8349414e5ddd40", &(0x7f0000009b00)="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", 0x4, r3}, 0x38)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_open_procfs$namespace(0x0, &(0x7f000000ab80)='ns/ipc\x00')
sendmsg$GTP_CMD_GETPDP(r7, &(0x7f000000ac40)={&(0x7f000000ab40)={0x10, 0x0, 0x0, 0x32300000}, 0xc, &(0x7f000000ac00)={&(0x7f000000abc0)={0x3c, 0x0, 0xe415bdd9ca90be7e, 0x70bd2a, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8}, @GTPA_NET_NS_FD={0x8, 0x7, r8}, @GTPA_NET_NS_FD={0x8, 0x7, r3}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_VERSION={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4000001}, 0x20000000)

[ 1941.114127][T27952] usb 3-1: string descriptor 0 read error: -22
[ 1941.120698][T27952] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1941.131291][T27952] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1941.322324][T27952] usb 3-1: 0:2 : does not exist
[ 1941.542546][T27952] usb 3-1: USB disconnect, device number 15
11:23:13 executing program 4:
openat$nvram(0xffffffffffffff9c, &(0x7f0000000300)='/dev/nvram\x00', 0x0, 0x0)

11:23:13 executing program 5:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_opts(r0, 0x0, 0x480, 0x0, 0x0)

11:23:13 executing program 1:
r0 = socket$l2tp(0x2, 0x2, 0x73)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000080)={'batadv_slave_0\x00'})

11:23:13 executing program 3:
socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000e00)=ANY=[@ANYBLOB="d00800002400ffff01009e000000000000000000", @ANYRES32, @ANYBLOB="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"], 0x8d0}}, 0x0)
r0 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

11:23:13 executing program 0:
r0 = socket$nl_crypto(0x10, 0x3, 0x15)
ioctl$sock_SIOCGIFCONF(r0, 0x8912, &(0x7f0000000040)=@req={0x28, &(0x7f0000000000)={'veth1\x00', @ifru_hwaddr=@random}})

11:23:13 executing program 2:
r0 = socket(0x2, 0x1, 0x0)
recvfrom$unix(r0, 0x0, 0xfffffffffffffd82, 0x0, 0x0, 0x0)

[ 1942.331163][ T2741] =====================================================
[ 1942.333183][ T2741] BUG: KMSAN: uninit-value in do_ip_vs_set_ctl+0x19c2/0x34a0
[ 1942.343047][ T2741] CPU: 0 PID: 2741 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0
[ 1942.343047][ T2741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1942.363027][ T2741] Call Trace:
[ 1942.363027][ T2741]  dump_stack+0x21c/0x280
[ 1942.363027][ T2741]  kmsan_report+0xf7/0x1e0
[ 1942.363027][ T2741]  __msan_warning+0x5f/0xa0
[ 1942.363027][ T2741]  do_ip_vs_set_ctl+0x19c2/0x34a0
[ 1942.363027][ T2741]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1942.363027][ T2741]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1942.363027][ T2741]  ? balance_callback+0x48/0x260
[ 1942.363027][ T2741]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[ 1942.363027][ T2741]  ? kmsan_get_metadata+0x116/0x180
[ 1942.363027][ T2741]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1942.363027][ T2741]  ? local_bh_enable+0x40/0x40
[ 1942.363027][ T2741]  nf_setsockopt+0x588/0x5e0
[ 1942.363027][ T2741]  ip_setsockopt+0x6412/0x8ae0
[ 1942.363027][ T2741]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1942.363027][ T2741]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1942.363027][ T2741]  ? aa_label_sk_perm+0x7ed/0x9b0
[ 1942.363027][ T2741]  ? do_futex+0x416b/0x6c50
[ 1942.363027][ T2741]  ? kmsan_get_metadata+0x116/0x180
[ 1942.363027][ T2741]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1942.363027][ T2741]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1942.363027][ T2741]  ? aa_sk_perm+0x99e/0xed0
[ 1942.363027][ T2741]  ? kmsan_get_metadata+0x116/0x180
[ 1942.363027][ T2741]  ? ipv4_pktinfo_prepare+0x820/0x820
[ 1942.363027][ T2741]  tcp_setsockopt+0x239/0x270
[ 1942.363027][ T2741]  ? tcp_sock_set_keepcnt+0x150/0x150
[ 1942.363027][ T2741]  sock_common_setsockopt+0x16c/0x1b0
[ 1942.363027][ T2741]  ? sock_common_recvmsg+0x2a0/0x2a0
[ 1942.363027][ T2741]  __sys_setsockopt+0x951/0xda0
[ 1942.363027][ T2741]  __se_sys_setsockopt+0xdd/0x100
[ 1942.363027][ T2741]  __ia32_sys_setsockopt+0x62/0x80
[ 1942.363027][ T2741]  __do_fast_syscall_32+0x129/0x180
[ 1942.363027][ T2741]  do_fast_syscall_32+0x6a/0xc0
[ 1942.363027][ T2741]  do_SYSENTER_32+0x73/0x90
[ 1942.363027][ T2741]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1942.363027][ T2741] RIP: 0023:0xf7fa4549
[ 1942.363027][ T2741] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1942.363027][ T2741] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[ 1942.363027][ T2741] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[ 1942.363027][ T2741] RDX: 0000000000000480 RSI: 0000000000000000 RDI: 0000000000000000
[ 1942.363027][ T2741] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1942.363027][ T2741] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1942.363027][ T2741] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1942.363027][ T2741] 
[ 1942.363027][ T2741] Uninit was stored to memory at:
[ 1942.363027][ T2741]  kmsan_internal_chain_origin+0xad/0x130
[ 1942.363027][ T2741]  __msan_chain_origin+0x57/0xa0
[ 1942.363027][ T2741]  do_ip_vs_set_ctl+0x1296/0x34a0
[ 1942.363027][ T2741]  nf_setsockopt+0x588/0x5e0
[ 1942.363027][ T2741]  ip_setsockopt+0x6412/0x8ae0
[ 1942.363027][ T2741]  tcp_setsockopt+0x239/0x270
[ 1942.363027][ T2741]  sock_common_setsockopt+0x16c/0x1b0
[ 1942.363027][ T2741]  __sys_setsockopt+0x951/0xda0
[ 1942.363027][ T2741]  __se_sys_setsockopt+0xdd/0x100
[ 1942.363027][ T2741]  __ia32_sys_setsockopt+0x62/0x80
[ 1942.363027][ T2741]  __do_fast_syscall_32+0x129/0x180
[ 1942.363027][ T2741]  do_fast_syscall_32+0x6a/0xc0
[ 1942.363027][ T2741]  do_SYSENTER_32+0x73/0x90
[ 1942.363027][ T2741]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1942.363027][ T2741] 
[ 1942.363027][ T2741] Local variable ----arg@do_ip_vs_set_ctl created at:
[ 1942.363027][ T2741]  do_ip_vs_set_ctl+0xd9/0x34a0
[ 1942.363027][ T2741]  do_ip_vs_set_ctl+0xd9/0x34a0
[ 1942.363027][ T2741] =====================================================
[ 1942.363027][ T2741] Disabling lock debugging due to kernel taint
[ 1942.363027][ T2741] Kernel panic - not syncing: panic_on_warn set ...
[ 1942.363027][ T2741] CPU: 0 PID: 2741 Comm: syz-executor.5 Tainted: G    B             5.9.0-rc8-syzkaller #0
[ 1942.363027][ T2741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1942.363027][ T2741] Call Trace:
[ 1942.363027][ T2741]  dump_stack+0x21c/0x280
[ 1942.363027][ T2741]  panic+0x4c8/0xea7
[ 1942.363027][ T2741]  ? add_taint+0x17c/0x210
[ 1942.363027][ T2741]  kmsan_report+0x1da/0x1e0
[ 1942.363027][ T2741]  __msan_warning+0x5f/0xa0
[ 1942.363027][ T2741]  do_ip_vs_set_ctl+0x19c2/0x34a0
[ 1942.363027][ T2741]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1942.363027][ T2741]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1942.363027][ T2741]  ? balance_callback+0x48/0x260
[ 1942.363027][ T2741]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[ 1942.363027][ T2741]  ? kmsan_get_metadata+0x116/0x180
[ 1942.363027][ T2741]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1942.363027][ T2741]  ? local_bh_enable+0x40/0x40
[ 1942.363027][ T2741]  nf_setsockopt+0x588/0x5e0
[ 1942.363027][ T2741]  ip_setsockopt+0x6412/0x8ae0
[ 1942.363027][ T2741]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1942.363027][ T2741]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1942.363027][ T2741]  ? aa_label_sk_perm+0x7ed/0x9b0
[ 1942.363027][ T2741]  ? do_futex+0x416b/0x6c50
[ 1942.363027][ T2741]  ? kmsan_get_metadata+0x116/0x180
[ 1942.363027][ T2741]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1942.363027][ T2741]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1942.363027][ T2741]  ? aa_sk_perm+0x99e/0xed0
[ 1942.363027][ T2741]  ? kmsan_get_metadata+0x116/0x180
[ 1942.363027][ T2741]  ? ipv4_pktinfo_prepare+0x820/0x820
[ 1942.363027][ T2741]  tcp_setsockopt+0x239/0x270
[ 1942.363027][ T2741]  ? tcp_sock_set_keepcnt+0x150/0x150
[ 1942.363027][ T2741]  sock_common_setsockopt+0x16c/0x1b0
[ 1942.363027][ T2741]  ? sock_common_recvmsg+0x2a0/0x2a0
[ 1942.363027][ T2741]  __sys_setsockopt+0x951/0xda0
[ 1942.363027][ T2741]  __se_sys_setsockopt+0xdd/0x100
[ 1942.363027][ T2741]  __ia32_sys_setsockopt+0x62/0x80
[ 1942.363027][ T2741]  __do_fast_syscall_32+0x129/0x180
[ 1942.363027][ T2741]  do_fast_syscall_32+0x6a/0xc0
[ 1942.363027][ T2741]  do_SYSENTER_32+0x73/0x90
[ 1942.363027][ T2741]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1942.363027][ T2741] RIP: 0023:0xf7fa4549
[ 1942.363027][ T2741] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[ 1942.363027][ T2741] RSP: 002b:00000000f559e0cc EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[ 1942.363027][ T2741] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[ 1942.363027][ T2741] RDX: 0000000000000480 RSI: 0000000000000000 RDI: 0000000000000000
[ 1942.363027][ T2741] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1942.363027][ T2741] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1942.363027][ T2741] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1942.363027][ T2741] Kernel Offset: disabled
[ 1942.363027][ T2741] Rebooting in 86400 seconds..