fced560667cead03a8976eb4229ff4e1bca5588d5d544cbca8588215a2f5ef7a5fc1a07438d3a3e05d21eb30d46f1688543d4327d36e07635396eaab4e9bc862ee9c7fa24de38c5cbf8fa5afd024116bc84854d01072145ecc4bb415d94a333e0d91e9cf6fda5a2c244a585e3a32c95398f44800c578faf4a2ccc5979664db7a55aa5cc02789f84321ccaeed4f37dd48c8d1484ade0588fc4255ec8780534a693e2bfe88b622034552084492c6757429239bbe8dad8b904e58007639ca773344040a441dc0027a46c22198f3d0b0588e164881a9fc7a85a63c459b0d002e3d890edd250742d363e85250badb91a734759baf773c32b177d36eefb662be70", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f00000000c0)=ANY=[@ANYBLOB="ac161421000000030100000004000000e0000001ffffffffac1414aae0000002"], 0x20)
r1 = memfd_create(&(0x7f0000000080)='ucgroup*/\x00', 0x5)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x2400, 0xffffffff)

08:51:30 executing program 2:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d02403162857170")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))

08:51:30 executing program 0:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
sendmsg$nl_crypto(r1, &(0x7f0000000540)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x10200a20}, 0xc, &(0x7f0000000500)={&(0x7f0000000400)=@upd={0xe8, 0x12, 0x404, 0x70bd26, 0x25dfdbfd, {{'aegis128l-generic\x00'}, [], [], 0x2000, 0x2000}, [{0x8, 0x1, 0xd3ec}]}, 0xe8}, 0x1, 0x0, 0x0, 0xc044}, 0x4000000)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
readv(r0, &(0x7f0000000380)=[{&(0x7f0000000140)=""/74, 0x4a}, {&(0x7f00000001c0)=""/132, 0x84}, {&(0x7f0000000280)=""/243, 0xf3}, {&(0x7f0000000000)=""/30, 0x1e}], 0x4)
dup2(r1, r0)

08:51:30 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000080), 0x1c)
r1 = dup2(r0, r0)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x131f64)
clone(0x2102001ff9, 0x0, 0xfffffffffffffffe, &(0x7f0000000140), 0xffffffffffffffff)
syz_execute_func(&(0x7f0000000040)="3666440f50f564ff0941c3c4e2c9975842c4c27d794e0066420fe2e33e0f1110c442019dccd3196f")
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2}, 0x1c)
write$eventfd(r1, &(0x7f0000000240), 0x8)
getsockopt$EBT_SO_GET_INIT_ENTRIES(0xffffffffffffffff, 0x0, 0x83, &(0x7f0000000180)={'broute\x00', 0x0, 0x0, 0xe6, [], 0x0, &(0x7f00000000c0), &(0x7f0000000280)=""/230}, &(0x7f0000000200)=0x78)

08:51:30 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$inet(0x10, 0x3, 0xc)
sendmsg(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)
fsetxattr$security_evm(r1, &(0x7f0000000100)='security.evm\x00', &(0x7f0000000140)=@v1={0x2, "f1859e7a98"}, 0x6, 0x3)

08:51:30 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d02403162857170")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
dup2(r2, r0)

[  583.432169] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
[  583.496845] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
08:51:30 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d02403162857170")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
dup2(r2, r0)

08:51:30 executing program 2:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{}, {}, 0x8, 0x1})
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))

08:51:30 executing program 3:
r0 = syz_open_dev$sndpcmc(&(0x7f0000000100)='/dev/snd/pcmC#D#c\x00', 0x1, 0x204002)
ioctl$KVM_GET_CPUID2(r0, 0xc008ae91, &(0x7f0000000140)={0x6, 0x0, [{}, {}, {}, {}, {}, {}]})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = socket$inet(0x10, 0x3, 0xc)
ioctl$VIDIOC_G_EDID(r0, 0xc0285628, &(0x7f0000000280)={0x9, 0x9, 0x62d2, [], &(0x7f0000000240)=0x6})
sendmsg(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r0)

08:51:30 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
socketpair(0x3, 0x807, 0xffff, &(0x7f0000000080))
syz_open_dev$vcsn(&(0x7f00000000c0)='/dev/vcs#\x00', 0x3f, 0x80000)
r1 = dup3(r0, r0, 0x80000)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0xfffffffffffffffd)

08:51:30 executing program 5:
socketpair$inet6_sctp(0xa, 0x1, 0x84, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
dup(r0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
gettid()
r1 = openat$uhid(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/uhid\x00', 0x2, 0x0)
write$UHID_CREATE(r1, &(0x7f0000000380)={0x0, 'syz0\x00', 'syz0\x00', 'syz0\x00', &(0x7f0000000200)=""/43, 0x2b, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x11c)
r2 = memfd_create(&(0x7f0000000280)='syz1\x00', 0x0)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000600)=ANY=[], &(0x7f0000000000))
futex(&(0x7f00000001c0), 0xd, 0x2, &(0x7f0000000240)={0x0, 0x989680}, &(0x7f0000000740), 0x0)
write$UHID_DESTROY(r1, &(0x7f0000000100), 0x4)
getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r2, 0x84, 0x72, &(0x7f00000002c0)={<r3=>0x0, 0x0, 0x30}, &(0x7f0000000340)=0xc)
getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f00000005c0)={0x0, 0x68}, &(0x7f0000000640)=0x8)
getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r2, 0x84, 0x66, &(0x7f0000000680)={0x0, 0x81}, &(0x7f00000006c0)=0x8)
sendmmsg$inet_sctp(r2, &(0x7f0000000700)=[{&(0x7f0000000040)=@in6={0xa, 0x4e21, 0x7ee, @mcast1, 0x1892}, 0x1c, &(0x7f0000000080)=[{&(0x7f00000004c0)="80f35449cbe24a2d8d5549738a7af08afd06413b4cd996626da8cb6d7b2e3aebeadf4ca3b737d3eff81d16630459dc3fd924b9282f35f5d382e4198314d0958ee9dc79b4a0ceef1e4e0ee0c5e8a8ab2050719190e021ab07168d6c2947a1e23dc85d143210afe0e7db0692afdad39a0cd5218a7c301d439e36f0a66fc42f792d211715b1d838732624501488e675108beeaa7580dae74cf35b3b5f0e081fee35776fe4a23868ed525e6a446c865f7421ae3418a42ea0f1a4200a2e", 0xbb}], 0x1, &(0x7f0000000780)=[@prinfo={0x18, 0x84, 0x5, {0x30, 0xcf}}, @sndrcv={0x30, 0x84, 0x1, {0x5, 0x4, 0x0, 0x6, 0x5, 0x1ff, 0x8, 0x7f, r3}}, @authinfo={0x18, 0x84, 0x6, {0xdf}}, @init={0x18, 0x84, 0x0, {0x0, 0x4, 0x5, 0x2}}], 0x78, 0x4800}], 0x1, 0xbd6a575ef38b3b15)

[  583.960301] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
[  584.081516] not chained 340000 origins
[  584.082194] CPU: 0 PID: 15543 Comm: syz-executor4 Not tainted 4.20.0-rc2+ #88
[  584.092429] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  584.101000] Call Trace:
[  584.101000]  dump_stack+0x32d/0x480
[  584.101000]  kmsan_internal_chain_origin+0x222/0x240
[  584.101000]  ? save_stack_trace+0xc6/0x110
[  584.101000]  ? __irqentry_text_end+0x1fa056/0x1fa056
[  584.101000]  ? kmsan_internal_chain_origin+0x90/0x240
08:51:31 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{}, {}, 0x8, 0x1})
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
dup2(r2, r0)

[  584.101000]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  584.101000]  ? is_bpf_text_address+0x49e/0x4d0
[  584.101000]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  584.101000]  ? in_task_stack+0x12c/0x210
[  584.101000]  __msan_chain_origin+0x6d/0xb0
[  584.101000]  ? kmsan_memcpy_origins+0x13d/0x190
[  584.101000]  __save_stack_trace+0x8be/0xc60
[  584.159799]  ? kmsan_memcpy_origins+0x13d/0x190
[  584.164787]  save_stack_trace+0xc6/0x110
[  584.164787]  kmsan_internal_chain_origin+0x136/0x240
[  584.170292]  ? tcp_push_one+0x195/0x230
[  584.170292]  ? kmsan_internal_chain_origin+0x136/0x240
[  584.170292]  ? kmsan_memcpy_origins+0x13d/0x190
[  584.170292]  ? __msan_memcpy+0x6f/0x80
[  584.170292]  ? pskb_expand_head+0x436/0x1d20
[  584.170292]  ? iptunnel_handle_offloads+0x455/0x810
[  584.170292]  ? ipip_tunnel_xmit+0x15d/0x4a0
[  584.206368]  ? dev_hard_start_xmit+0x6dc/0xde0
[  584.206368]  ? __dev_queue_xmit+0x2d9e/0x3e00
[  584.206368]  ? dev_queue_xmit+0x4b/0x60
[  584.206368]  ? neigh_direct_output+0x42/0x50
[  584.206368]  ? ip_finish_output2+0x141a/0x1560
[  584.206368]  ? ip_finish_output+0xd93/0x10f0
[  584.206368]  ? ip_output+0x55c/0x630
[  584.206368]  ? __ip_queue_xmit+0x1bb5/0x2170
[  584.206368]  ? ip_queue_xmit+0xcc/0xf0
[  584.206368]  ? __tcp_transmit_skb+0x425c/0x5e00
[  584.206368]  ? tcp_write_xmit+0x389a/0xacc0
[  584.206368]  ? tcp_push_one+0x195/0x230
[  584.206368]  ? tcp_sendmsg_locked+0x456d/0x6c30
[  584.206368]  ? tcp_sendmsg+0xb2/0x100
[  584.206368]  ? inet_sendmsg+0x4e9/0x800
[  584.206368]  ? __sys_sendto+0x940/0xb80
[  584.206368]  ? __se_sys_sendto+0x107/0x130
[  584.206368]  ? __x64_sys_sendto+0x6e/0x90
[  584.206368]  ? do_syscall_64+0xcf/0x110
[  584.206368]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  584.206368]  ? __kmalloc_node_track_caller+0x1010/0x14e0
[  584.206368]  ? __msan_get_context_state+0x9/0x20
[  584.206368]  ? INIT_INT+0xc/0x30
[  584.206368]  ? __kmalloc_node_track_caller+0x369/0x14e0
[  584.206368]  kmsan_memcpy_origins+0x13d/0x190
[  584.206368]  __msan_memcpy+0x6f/0x80
[  584.206368]  pskb_expand_head+0x436/0x1d20
[  584.206368]  iptunnel_handle_offloads+0x455/0x810
[  584.206368]  ipip_tunnel_xmit+0x15d/0x4a0
[  584.206368]  ? ipip_tunnel_init+0x240/0x240
[  584.206368]  dev_hard_start_xmit+0x6dc/0xde0
[  584.206368]  __dev_queue_xmit+0x2d9e/0x3e00
[  584.206368]  dev_queue_xmit+0x4b/0x60
[  584.206368]  neigh_direct_output+0x42/0x50
[  584.206368]  ? neigh_connected_output+0x700/0x700
[  584.206368]  ip_finish_output2+0x141a/0x1560
[  584.206368]  ip_finish_output+0xd93/0x10f0
[  584.206368]  ip_output+0x55c/0x630
[  584.206368]  ? ip_mc_finish_output+0x440/0x440
[  584.206368]  ? ip_finish_output+0x10f0/0x10f0
[  584.206368]  __ip_queue_xmit+0x1bb5/0x2170
[  584.206368]  ? kmsan_set_origin+0x7f/0x100
[  584.206368]  ip_queue_xmit+0xcc/0xf0
[  584.206368]  ? dst_hold_safe+0x5d0/0x5d0
[  584.206368]  __tcp_transmit_skb+0x425c/0x5e00
[  584.206368]  tcp_write_xmit+0x389a/0xacc0
[  584.206368]  tcp_push_one+0x195/0x230
[  584.206368]  tcp_sendmsg_locked+0x456d/0x6c30
[  584.206368]  ? kmsan_internal_unpoison_shadow+0x30/0xd0
[  584.206368]  tcp_sendmsg+0xb2/0x100
[  584.206368]  ? tcp_sendmsg_locked+0x6c30/0x6c30
[  584.206368]  inet_sendmsg+0x4e9/0x800
[  584.206368]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  584.206368]  ? security_socket_sendmsg+0x1bd/0x200
[  584.206368]  ? inet_getname+0x490/0x490
[  584.206368]  __sys_sendto+0x940/0xb80
[  584.206368]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  584.206368]  ? prepare_exit_to_usermode+0x182/0x4c0
[  584.206368]  __se_sys_sendto+0x107/0x130
[  584.206368]  __x64_sys_sendto+0x6e/0x90
[  584.206368]  do_syscall_64+0xcf/0x110
[  584.206368]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  584.206368] RIP: 0033:0x457569
[  584.206368] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  584.206368] RSP: 002b:00007fe2bd024c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  584.206368] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000457569
[  584.206368] RDX: 00000000fffffdef RSI: 00000000200003c0 RDI: 0000000000000003
[  584.206368] RBP: 000000000072bf00 R08: 00000000200001c0 R09: 0000000000000010
[  584.206368] R10: 00000000000001f4 R11: 0000000000000246 R12: 00007fe2bd0256d4
[  584.206368] R13: 00000000004c3c11 R14: 00000000004d5e80 R15: 00000000ffffffff
[  584.206368] Uninit was stored to memory at:
[  584.206368]  kmsan_internal_chain_origin+0x136/0x240
[  584.206368]  __msan_chain_origin+0x6d/0xb0
[  584.206368]  __save_stack_trace+0x8be/0xc60
[  584.206368]  save_stack_trace+0xc6/0x110
[  584.206368]  kmsan_internal_chain_origin+0x136/0x240
[  584.206368]  kmsan_memcpy_origins+0x13d/0x190
[  584.206368]  __msan_memcpy+0x6f/0x80
[  584.206368]  pskb_expand_head+0x436/0x1d20
[  584.206368]  iptunnel_handle_offloads+0x455/0x810
[  584.206368]  ipip_tunnel_xmit+0x15d/0x4a0
[  584.206368]  dev_hard_start_xmit+0x6dc/0xde0
[  584.206368]  __dev_queue_xmit+0x2d9e/0x3e00
[  584.206368]  dev_queue_xmit+0x4b/0x60
[  584.206368]  neigh_direct_output+0x42/0x50
[  584.206368]  ip_finish_output2+0x141a/0x1560
[  584.206368]  ip_finish_output+0xd93/0x10f0
[  584.206368]  ip_output+0x55c/0x630
[  584.206368]  __ip_queue_xmit+0x1bb5/0x2170
[  584.206368]  ip_queue_xmit+0xcc/0xf0
[  584.206368]  __tcp_transmit_skb+0x425c/0x5e00
[  584.206368]  tcp_write_xmit+0x389a/0xacc0
[  584.206368]  tcp_push_one+0x195/0x230
[  584.206368]  tcp_sendmsg_locked+0x456d/0x6c30
[  584.206368]  tcp_sendmsg+0xb2/0x100
[  584.206368]  inet_sendmsg+0x4e9/0x800
[  584.206368]  __sys_sendto+0x940/0xb80
[  584.206368]  __se_sys_sendto+0x107/0x130
[  584.206368]  __x64_sys_sendto+0x6e/0x90
[  584.206368]  do_syscall_64+0xcf/0x110
[  584.206368]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  584.206368] 
[  584.206368] Uninit was stored to memory at:
[  584.206368]  kmsan_internal_chain_origin+0x136/0x240
[  584.206368]  __msan_chain_origin+0x6d/0xb0
[  584.206368]  __save_stack_trace+0x8be/0xc60
[  584.206368]  save_stack_trace+0xc6/0x110
[  584.206368]  kmsan_internal_chain_origin+0x136/0x240
[  584.206368]  kmsan_memcpy_origins+0x13d/0x190
[  584.206368]  __msan_memcpy+0x6f/0x80
[  584.206368]  pskb_expand_head+0x436/0x1d20
[  584.206368]  iptunnel_handle_offloads+0x455/0x810
[  584.206368]  ipip_tunnel_xmit+0x15d/0x4a0
[  584.206368]  dev_hard_start_xmit+0x6dc/0xde0
[  584.206368]  __dev_queue_xmit+0x2d9e/0x3e00
[  584.206368]  dev_queue_xmit+0x4b/0x60
[  584.206368]  neigh_direct_output+0x42/0x50
[  584.206368]  ip_finish_output2+0x141a/0x1560
[  584.206368]  ip_finish_output+0xd93/0x10f0
[  584.206368]  ip_output+0x55c/0x630
[  584.206368]  __ip_queue_xmit+0x1bb5/0x2170
[  584.206368]  ip_queue_xmit+0xcc/0xf0
[  584.206368]  __tcp_transmit_skb+0x425c/0x5e00
[  584.206368]  tcp_write_xmit+0x389a/0xacc0
[  584.206368]  tcp_push_one+0x195/0x230
[  584.206368]  tcp_sendmsg_locked+0x456d/0x6c30
[  584.206368]  tcp_sendmsg+0xb2/0x100
[  584.206368]  inet_sendmsg+0x4e9/0x800
[  584.206368]  __sys_sendto+0x940/0xb80
[  584.206368]  __se_sys_sendto+0x107/0x130
[  584.206368]  __x64_sys_sendto+0x6e/0x90
[  584.206368]  do_syscall_64+0xcf/0x110
[  584.206368]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  584.206368] 
[  584.206368] Uninit was stored to memory at:
[  584.206368]  kmsan_internal_chain_origin+0x136/0x240
[  584.206368]  __msan_chain_origin+0x6d/0xb0
[  584.206368]  __save_stack_trace+0x8be/0xc60
[  584.206368]  save_stack_trace+0xc6/0x110
[  584.206368]  kmsan_internal_chain_origin+0x136/0x240
[  584.206368]  kmsan_memcpy_origins+0x13d/0x190
[  584.206368]  __msan_memcpy+0x6f/0x80
[  584.206368]  pskb_expand_head+0x436/0x1d20
[  584.206368]  iptunnel_handle_offloads+0x455/0x810
[  584.206368]  ipip_tunnel_xmit+0x15d/0x4a0
[  584.206368]  dev_hard_start_xmit+0x6dc/0xde0
[  584.206368]  __dev_queue_xmit+0x2d9e/0x3e00
[  584.206368]  dev_queue_xmit+0x4b/0x60
[  584.206368]  neigh_direct_output+0x42/0x50
[  584.206368]  ip_finish_output2+0x141a/0x1560
[  584.206368]  ip_finish_output+0xd93/0x10f0
[  584.206368]  ip_output+0x55c/0x630
[  584.206368]  __ip_queue_xmit+0x1bb5/0x2170
[  584.206368]  ip_queue_xmit+0xcc/0xf0
[  584.206368]  __tcp_transmit_skb+0x425c/0x5e00
[  584.206368]  tcp_write_xmit+0x389a/0xacc0
[  584.206368]  tcp_push_one+0x195/0x230
[  584.206368]  tcp_sendmsg_locked+0x456d/0x6c30
[  584.206368]  tcp_sendmsg+0xb2/0x100
[  584.206368]  inet_sendmsg+0x4e9/0x800
[  584.206368]  __sys_sendto+0x940/0xb80
[  584.206368]  __se_sys_sendto+0x107/0x130
[  584.206368]  __x64_sys_sendto+0x6e/0x90
[  584.206368]  do_syscall_64+0xcf/0x110
[  584.206368]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  584.206368] 
[  584.206368] Uninit was stored to memory at:
[  584.206368]  kmsan_internal_chain_origin+0x136/0x240
[  584.206368]  __msan_chain_origin+0x6d/0xb0
[  584.206368]  __save_stack_trace+0x8be/0xc60
[  584.206368]  save_stack_trace+0xc6/0x110
[  584.206368]  kmsan_internal_chain_origin+0x136/0x240
[  584.206368]  kmsan_memcpy_origins+0x13d/0x190
[  584.206368]  __msan_memcpy+0x6f/0x80
[  584.206368]  pskb_expand_head+0x436/0x1d20
[  584.206368]  iptunnel_handle_offloads+0x455/0x810
[  584.206368]  ipip_tunnel_xmit+0x15d/0x4a0
[  584.206368]  dev_hard_start_xmit+0x6dc/0xde0
[  584.206368]  __dev_queue_xmit+0x2d9e/0x3e00
[  584.206368]  dev_queue_xmit+0x4b/0x60
[  584.206368]  neigh_direct_output+0x42/0x50
[  584.206368]  ip_finish_output2+0x141a/0x1560
[  584.206368]  ip_finish_output+0xd93/0x10f0
[  584.206368]  ip_output+0x55c/0x630
[  584.206368]  __ip_queue_xmit+0x1bb5/0x2170
[  584.206368]  ip_queue_xmit+0xcc/0xf0
[  584.206368]  __tcp_transmit_skb+0x425c/0x5e00
[  584.206368]  tcp_write_xmit+0x389a/0xacc0
[  584.206368]  tcp_push_one+0x195/0x230
[  584.206368]  tcp_sendmsg_locked+0x456d/0x6c30
[  584.206368]  tcp_sendmsg+0xb2/0x100
[  584.206368]  inet_sendmsg+0x4e9/0x800
[  585.052328]  __sys_sendto+0x940/0xb80
[  585.052328]  __se_sys_sendto+0x107/0x130
[  585.052328]  __x64_sys_sendto+0x6e/0x90
[  585.052328]  do_syscall_64+0xcf/0x110
[  585.052328]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  585.052328] 
[  585.052328] Uninit was stored to memory at:
[  585.052328]  kmsan_internal_chain_origin+0x136/0x240
[  585.052328]  __msan_chain_origin+0x6d/0xb0
[  585.052328]  __save_stack_trace+0x8be/0xc60
[  585.052328]  save_stack_trace+0xc6/0x110
[  585.052328]  kmsan_internal_chain_origin+0x136/0x240
[  585.052328]  kmsan_memcpy_origins+0x13d/0x190
[  585.052328]  __msan_memcpy+0x6f/0x80
[  585.052328]  pskb_expand_head+0x436/0x1d20
[  585.052328]  iptunnel_handle_offloads+0x455/0x810
[  585.052328]  ipip_tunnel_xmit+0x15d/0x4a0
[  585.052328]  dev_hard_start_xmit+0x6dc/0xde0
[  585.052328]  __dev_queue_xmit+0x2d9e/0x3e00
[  585.052328]  dev_queue_xmit+0x4b/0x60
[  585.052328]  neigh_direct_output+0x42/0x50
[  585.052328]  ip_finish_output2+0x141a/0x1560
[  585.052328]  ip_finish_output+0xd93/0x10f0
[  585.052328]  ip_output+0x55c/0x630
[  585.052328]  __ip_queue_xmit+0x1bb5/0x2170
[  585.052328]  ip_queue_xmit+0xcc/0xf0
[  585.052328]  __tcp_transmit_skb+0x425c/0x5e00
[  585.052328]  tcp_write_xmit+0x389a/0xacc0
[  585.052328]  tcp_push_one+0x195/0x230
[  585.052328]  tcp_sendmsg_locked+0x456d/0x6c30
[  585.052328]  tcp_sendmsg+0xb2/0x100
[  585.052328]  inet_sendmsg+0x4e9/0x800
[  585.052328]  __sys_sendto+0x940/0xb80
[  585.052328]  __se_sys_sendto+0x107/0x130
[  585.052328]  __x64_sys_sendto+0x6e/0x90
[  585.052328]  do_syscall_64+0xcf/0x110
[  585.052328]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  585.052328] 
[  585.052328] Uninit was stored to memory at:
[  585.052328]  kmsan_internal_chain_origin+0x136/0x240
[  585.052328]  __msan_chain_origin+0x6d/0xb0
[  585.052328]  __save_stack_trace+0x8be/0xc60
[  585.052328]  save_stack_trace+0xc6/0x110
[  585.052328]  kmsan_internal_chain_origin+0x136/0x240
[  585.052328]  kmsan_memcpy_origins+0x13d/0x190
[  585.052328]  __msan_memcpy+0x6f/0x80
[  585.052328]  pskb_expand_head+0x436/0x1d20
[  585.052328]  iptunnel_handle_offloads+0x455/0x810
[  585.052328]  ipip_tunnel_xmit+0x15d/0x4a0
[  585.052328]  dev_hard_start_xmit+0x6dc/0xde0
[  585.052328]  __dev_queue_xmit+0x2d9e/0x3e00
[  585.052328]  dev_queue_xmit+0x4b/0x60
[  585.052328]  neigh_direct_output+0x42/0x50
[  585.052328]  ip_finish_output2+0x141a/0x1560
[  585.052328]  ip_finish_output+0xd93/0x10f0
[  585.052328]  ip_output+0x55c/0x630
[  585.052328]  __ip_queue_xmit+0x1bb5/0x2170
[  585.052328]  ip_queue_xmit+0xcc/0xf0
[  585.052328]  __tcp_transmit_skb+0x425c/0x5e00
[  585.052328]  tcp_write_xmit+0x389a/0xacc0
[  585.052328]  tcp_push_one+0x195/0x230
[  585.052328]  tcp_sendmsg_locked+0x456d/0x6c30
[  585.052328]  tcp_sendmsg+0xb2/0x100
[  585.052328]  inet_sendmsg+0x4e9/0x800
[  585.052328]  __sys_sendto+0x940/0xb80
[  585.052328]  __se_sys_sendto+0x107/0x130
[  585.052328]  __x64_sys_sendto+0x6e/0x90
[  585.052328]  do_syscall_64+0xcf/0x110
[  585.052328]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  585.052328] 
[  585.052328] Uninit was stored to memory at:
[  585.052328]  kmsan_internal_chain_origin+0x136/0x240
[  585.052328]  __msan_chain_origin+0x6d/0xb0
[  585.052328]  __save_stack_trace+0x8be/0xc60
[  585.052328]  save_stack_trace+0xc6/0x110
[  585.052328]  kmsan_internal_chain_origin+0x136/0x240
[  585.052328]  kmsan_memcpy_origins+0x13d/0x190
[  585.052328]  __msan_memcpy+0x6f/0x80
[  585.052328]  pskb_expand_head+0x436/0x1d20
[  585.052328]  iptunnel_handle_offloads+0x455/0x810
[  585.052328]  ipip_tunnel_xmit+0x15d/0x4a0
[  585.052328]  dev_hard_start_xmit+0x6dc/0xde0
[  585.052328]  __dev_queue_xmit+0x2d9e/0x3e00
[  585.052328]  dev_queue_xmit+0x4b/0x60
[  585.052328]  neigh_direct_output+0x42/0x50
[  585.052328]  ip_finish_output2+0x141a/0x1560
[  585.052328]  ip_finish_output+0xd93/0x10f0
[  585.052328]  ip_output+0x55c/0x630
[  585.052328]  __ip_queue_xmit+0x1bb5/0x2170
[  585.052328]  ip_queue_xmit+0xcc/0xf0
[  585.052328]  __tcp_transmit_skb+0x425c/0x5e00
[  585.052328]  tcp_write_xmit+0x389a/0xacc0
[  585.052328]  tcp_push_one+0x195/0x230
[  585.052328]  tcp_sendmsg_locked+0x456d/0x6c30
[  585.052328]  tcp_sendmsg+0xb2/0x100
[  585.052328]  inet_sendmsg+0x4e9/0x800
[  585.052328]  __sys_sendto+0x940/0xb80
[  585.052328]  __se_sys_sendto+0x107/0x130
[  585.052328]  __x64_sys_sendto+0x6e/0x90
[  585.052328]  do_syscall_64+0xcf/0x110
[  585.052328]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  585.052328] 
[  585.052328] Local variable description: ----target@nf_nat_icmp_reply_translation
[  585.052328] Variable was created at:
08:51:32 executing program 2:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x0, 0x1})
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))

[  585.052328]  nf_nat_icmp_reply_translation+0x9b/0xa80
[  585.052328]  nf_nat_ipv4_out+0x22b/0x7c0
[  585.608252] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.615250] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.622017] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.628992] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.635891] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.642964] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.649744] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.656650] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.663616] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.670392] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.677306] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.684201] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.690981] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.697884] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.705006] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.711790] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.718730] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.725630] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.732671] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.739500] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.746493] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.753476] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.760243] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.767196] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.774092] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.780866] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.788085] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.794980] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.801754] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.808842] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.815764] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.822712] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.829450] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.836383] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.843340] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.850087] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
08:51:32 executing program 2:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8})
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))

[  585.856992] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.864157] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.870948] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.877997] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.884941] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.891714] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.898767] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  585.917396] hid-generic 0000:0000:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  586.014030] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.020952] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.028438] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.035315] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.042079] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.048923] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.055817] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.062728] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.069506] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.076371] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.083241] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.090010] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.096868] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.103735] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.110500] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.117376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.124257] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.131151] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.138007] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.144858] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.151622] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.158514] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.165395] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.172298] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.179069] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.185914] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.192762] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.199526] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.206396] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
08:51:33 executing program 0:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x32ee2683, 0x40040)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r1, 0x40045532, &(0x7f0000000140)=0x3)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
dup2(r2, r0)

08:51:33 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff})
syz_open_dev$dmmidi(&(0x7f0000000100)='/dev/dmmidi#\x00', 0x4, 0x400000)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = socket$inet(0x10, 0x3, 0xc)
fsetxattr$security_smack_entry(r0, &(0x7f0000000180)='security.SMACK64EXEC\x00', &(0x7f00000001c0)='eth1\x00', 0x5, 0x2)
sendmsg(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)

[  586.213367] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.220161] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.227130] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.233973] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.240763] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.247672] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.254545] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
08:51:33 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{}, {}, 0x8, 0x1})
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
dup2(r2, r0)

[  586.261323] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.268264] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.275123] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.281991] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.288833] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.295702] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  586.302595] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
08:51:33 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000280)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0x0, 0x1f4, &(0x7f00000001c0)={0x2, 0x40000, @rand_addr}, 0x10)
r1 = syz_open_dev$usb(&(0x7f0000000840)='/dev/bus/usb/00#/00#\x00', 0x7, 0x10000)
getsockopt$IP6T_SO_GET_REVISION_TARGET(r1, 0x29, 0x45, &(0x7f0000000880)={'NETMAP\x00'}, &(0x7f0000000900)=0x1e)
ioctl$LOOP_CLR_FD(r1, 0x4c01)
r2 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mixer\x00', 0x404, 0x0)
open(&(0x7f00000000c0)='./file0\x00', 0x101001, 0x80)
getsockopt$sock_linger(r2, 0x1, 0xd, &(0x7f0000000940), &(0x7f0000000980)=0x8)
openat$full(0xffffffffffffff9c, &(0x7f0000000100)='/dev/full\x00', 0x0, 0x0)
r3 = syz_open_dev$vcsn(&(0x7f0000000140)='/dev/vcs#\x00', 0x20, 0x800)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x7)
ioctl$sock_SIOCSIFBR(r2, 0x8941, &(0x7f0000000180)=@get={0x1, &(0x7f0000000200)=""/114, 0x80000000})

08:51:33 executing program 2:
syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r0, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
ioctl(0xffffffffffffffff, 0xffffffffffffffb2, &(0x7f0000000040))

[  586.396353] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
[  586.484639] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
08:51:33 executing program 0:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
r2 = gettid()
timer_create(0x0, &(0x7f0000000140)={0x0, 0x8, 0x4, @tid=r2}, &(0x7f0000000400))
timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x1}, {0x0, 0x1c9c380}}, &(0x7f0000040000))
r3 = signalfd4(0xffffffffffffffff, &(0x7f0000000040)={0xfffffffffffffdb0}, 0x8, 0x0)
read(r3, &(0x7f0000000080)=""/128, 0x88308aa)
r4 = msgget(0x0, 0x4)
msgsnd(r4, &(0x7f0000000240)={0x0, "a244411ae1a0055be4f5f3c3ad3bfead02e4a84d798be8a4cdf685cdc611c9596fa4c08d6cc03cb4dbde1b1e4d42c425889bb3ef12e20b4afc718e84dc857bbb8b0d52078f567473f0f0f518917691"}, 0x57, 0x800)
timer_settime(0x0, 0x0, &(0x7f0000000380)={{0x77359400}}, &(0x7f00000001c0))
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
dup2(r1, r0)

08:51:33 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000580)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000280)={<r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/autofs\x00', 0x20000, 0x0)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r3, 0x4008240b, &(0x7f0000000200)={0x1, 0x70, 0xfffffffffffffffc, 0xf9bd, 0xfffffffffffffff8, 0x20, 0x0, 0x7ff, 0x813a0, 0x6, 0x1, 0x276, 0x3, 0x3, 0xc38f, 0x3048, 0x80000000, 0x9, 0x8, 0x2, 0x2e4, 0x101, 0x6093, 0x7f, 0x9, 0x6, 0x184, 0x9, 0xe000000000000000, 0x8, 0x6, 0x0, 0x80000001, 0xffffffffffff0001, 0x3, 0x6, 0x8, 0x9, 0x0, 0xfff, 0x4, @perf_bp={&(0x7f00000001c0), 0x1}, 0x2000, 0x1000, 0x1, 0x0, 0x100000000, 0x1, 0x1f})
bind$unix(r1, &(0x7f0000000140)=@file={0x1, './file0\x00'}, 0x6e)
getgroups(0x3, &(0x7f0000000480)=[<r4=>0x0, 0x0, 0x0])
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f00000004c0)={0x0, 0x0, <r5=>0x0}, &(0x7f0000000500)=0xc)
getgroups(0x2, &(0x7f0000000540)=[r4, r5])
sendmsg$nl_generic(r0, &(0x7f0000000440)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000400)={&(0x7f0000000300)={0xf4, 0x1a, 0x0, 0x70bd2c, 0x25dfdbfb, {0x5}, [@generic="6eb8345c3ee614725429a593ba67696c06f978b6e0ec25415bc77eabf17d0ac69be84667065fe0aa3d230c2b2e222b2a77d6571adc097a476185f0915a0cbaebc23359fee79db062191f0c45bbb184d0ed", @generic="ef0f9d", @generic="04f5d696cb7d8e96e44fda7b29a7afb05ac5e3228197a2304327e84324dfe4c02f9aa675b2ddb06b04ef8f066f7334b5008f183916d1968ee282c00fd4b35a614a36a3d5ddb1e5cf03b98813d09d81146adb5d703efb7a74f6f1061ba1c1042791545f68357dd70a1fac2ee6425d24a5ff7bedca749f141110e6", @typed={0x8, 0x7b, @fd=r0}, @typed={0x8, 0x68, @fd=r2}]}, 0xf4}, 0x1, 0x0, 0x0, 0x4004}, 0x8000)
r6 = socket$inet(0x10, 0x0, 0xfffffffffffffff9)
sendmsg(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1000000000000124}, 0x0)
munmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000)

08:51:33 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{}, {}, 0x8, 0x1})
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
dup2(r2, r0)

[  587.146398] hid-generic 0000:0000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
08:51:34 executing program 5:
socketpair$unix(0x1, 0x400000001, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
mkdir(&(0x7f00000000c0)='./file0\x00', 0x0)
mount(&(0x7f0000000040)=@nullb='[d::d:-0,[:\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='ceph\x00', 0x0, &(0x7f0000000240)="f461895dd1ba64ef15b7ba189fb19052549ec864c16367580a53af83df9a941d447fa349cf48b70445a96908c388b16cb138df7b4af9a193f2f98167a7c9e93ee6ba61e8a2225d22fe1828246f268b03604c12c5a939bb46d55d3f13306355efb72265ffbbc07ad9dafb4ac49c23825a5cfe4e77cebbc5839b782b5249e4")

08:51:34 executing program 2:
syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r0, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
ioctl(0xffffffffffffffff, 0xffffffffffffffb2, &(0x7f0000000040))

08:51:34 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
r1 = fcntl$getown(r0, 0x9)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f0000000280)={0x3, [<r2=>0x0, 0x0, 0x0]}, &(0x7f00000002c0)=0x10)
setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000300)={r2, 0x80, 0x5}, 0x8)
ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000080)=r1)
sendto$inet(r0, &(0x7f00000000c0)="a516d9101b3b65bb8508b14141971ccb57ea4146a66062435897f946ac496a25a6a8236b46922989737a94da993beeba1564b649feadea7cd7d7a37babb7697d51622404a4b1a79d4a98dbc8b9a7cd74ede204227548380a954edd05264bbdb1d08e4c3baee91659f5e5157dab916787ada12f5cdfe0a9f86e784962b52db72a1d7b469690af9b16b17d60a2", 0xf01e, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
accept4$inet(r0, &(0x7f0000000180)={0x2, 0x0, @multicast2}, &(0x7f00000001c0)=0x10, 0x800)
r3 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000200)='/dev/dlm-monitor\x00', 0x2040, 0x0)
ioctl$RTC_PIE_ON(r3, 0x7005)
ioctl$TCGETA(r3, 0x5405, &(0x7f0000000240))
write(r0, &(0x7f0000000ec0)="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", 0x595)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

08:51:34 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x0, 0x1})
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
dup2(r2, r0)

08:51:34 executing program 0:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
r1 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x10000)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000240)={r1, &(0x7f0000000140)="d64633371f768bce95d3d74945a2774555855ff8c4da2bba1b08644dffbba8e17204b247aba8bb6a5b5e251171aef0c27e52ad43e799b5b61b9c69f98037a0e845c95cfbb8471b2b172ce6194cee4064e9135a6d7f9d4604eae38edfb16a38ebe7ed235faf3bd475c29c5d9b876fbaac7a3f8c36335ad7e30ff874ece20c072017e6913a33219749adf4bfc740b0cfea65653cdafdadc67a680f8e7f6482ec282d2296f4fd416afa242d27a65a6aff71feec0d0183ac2855b5b03fde057a6a31c7a0b9893629"}, 0x10)
dup2(r0, r0)

08:51:34 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
getsockopt$ARPT_SO_GET_REVISION_TARGET(r0, 0x0, 0x63, &(0x7f0000000100)={'ipvs\x00'}, &(0x7f0000000140)=0x1e)
r1 = socket$inet(0x10, 0x3, 0xc)
sendmsg(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000180)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)

[  587.495475] libceph: parse_ips bad ip '[d::d:-0,['
[  587.539236] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
08:51:34 executing program 2:
syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r0, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
ioctl(0xffffffffffffffff, 0xffffffffffffffb2, &(0x7f0000000040))

[  587.591391] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
08:51:34 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x0, 0x1})
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
dup2(r2, r0)

08:51:34 executing program 0:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
r2 = semget(0x3, 0x3, 0x82)
ioctl$SNDRV_CTL_IOCTL_PCM_INFO(r1, 0xc1205531, &(0x7f0000000240)={0x93b7, 0x0, 0xed, 0xff, [], [], [], 0x9, 0x2, 0x0, 0x12, "d950585baa709230a65376e2df79e7ab"})
semctl$GETNCNT(r2, 0x4, 0xe, &(0x7f0000000140)=""/203)
getsockopt$inet_sctp6_SCTP_RECVRCVINFO(r1, 0x84, 0x20, &(0x7f0000000000), &(0x7f0000000380)=0x4)
dup2(r1, r0)

08:51:34 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000240)={0x79})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, &(0x7f0000000180)="2e65f32efe0a6766c7442400008000006766c7442402000000006766c744240600000000670f011c24b866000f00d066b88044a2b20f23c80f21f866350400d0000f23f80f0766b80500000066b9080000000f01c10f0766b8010000000f01c10f01dfb835008ee0", 0x68}], 0x1, 0x0, &(0x7f00000000c0), 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f00000000c0)=0x6002)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000100)="460f300f07c483614804ee08440f20c03506000000440f22c0c402f93473230f09f20f013cb9b805000000b9c00000000f01d90fc728c4c1f9e79f2e000000", 0x3f}], 0x1, 0x0, &(0x7f0000000200), 0x1)
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000940)=ANY=[])
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000440)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_pktinfo(0xffffffffffffff9c, 0x0, 0x8, &(0x7f0000003fc0)={0x0, @dev, @loopback}, &(0x7f0000004000)=0xc)
socketpair$inet_icmp_raw(0x2, 0x3, 0x1, &(0x7f0000000040))
r3 = accept4$vsock_stream(r1, &(0x7f0000000640)={0x28, 0x0, 0xffffffff}, 0x10, 0x0)
getpeername(r3, &(0x7f00000040c0)=@can, &(0x7f00000005c0)=0xb)

08:51:35 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$inet(0x10, 0x7, 0xc)
sendmsg(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)

08:51:35 executing program 2:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
ioctl(r0, 0x0, &(0x7f0000000040))

08:51:35 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x0, 0x1})
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
dup2(r2, r0)

08:51:35 executing program 0:
syz_open_dev$dri(&(0x7f0000000180)='/dev/dri/card#\x00', 0x0, 0x20000)
r0 = syz_open_dev$swradio(&(0x7f0000000200)='/dev/swradio#\x00', 0x0, 0x2)
sendfile(r0, r0, 0x0, 0x7)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, &(0x7f0000000240)={<r1=>0x0, 0x80000, 0xffffffffffffff9c})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000001c0)={r1, 0x80000, <r2=>0xffffffffffffffff})
poll(&(0x7f0000000140)=[{r2, 0x2000}], 0x1, 0x7)
r3 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r3, 0xffffffffffffffb2, &(0x7f0000000040))
dup2(r4, r3)

08:51:35 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="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", 0x595)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x42080, 0x0)
r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00')
sendmsg$IPVS_CMD_SET_SERVICE(r1, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000200)={&(0x7f0000000140)={0x50, r2, 0x400, 0x70bd25, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x6}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, [@IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}, @IPVS_CMD_ATTR_SERVICE={0x14, 0x1, [@IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x3a}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x7fff}]}, @IPVS_CMD_ATTR_DEST={0xc, 0x2, [@IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x3}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x4040000}, 0x4000)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

08:51:35 executing program 2:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
ioctl(r0, 0x0, &(0x7f0000000040))

08:51:35 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$inet(0x10, 0x3, 0xc)
sendmsg(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)
r2 = syz_open_dev$radio(&(0x7f0000000100)='/dev/radio#\x00', 0x2, 0x2)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000140)={0x11, 0x0, <r3=>0x0}, &(0x7f0000000180)=0x14)
setsockopt$inet6_IPV6_PKTINFO(r2, 0x29, 0x32, &(0x7f00000001c0)={@ipv4={[], [], @rand_addr=0xf80000000000}, r3}, 0x14)

08:51:35 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8})
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
dup2(r2, r0)

08:51:35 executing program 0:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x88800, 0x0)
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r1, 0x40042409, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x403}, {0x0, 0x22}, 0x7fffffff, 0x1, 0x4})
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x48800, 0x0)
socketpair(0xa, 0x5, 0x6, &(0x7f0000000140))
prctl$intptr(0x18, 0x0)
ioctl$VIDIOC_S_PRIORITY(r1, 0x40045644, 0x1)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000002, 0x10013, r0, 0x0)
dup2(r2, r0)
ioctl$LOOP_SET_DIRECT_IO(r2, 0x4c08, 0x40c)

[  588.769596] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
08:51:36 executing program 2:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
ioctl(r0, 0x0, &(0x7f0000000040))

08:51:36 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000240))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, &(0x7f0000000180)="2e65f32efe0a6766c7442400008000006766c7442402000000006766c744240600000000670f011c24b866000f00d066b88044a2b20f23c80f21f866350400d0000f23f80f0766b80500000066b9080000000f01c10f0766b8010000000f01c10f01dfb835008ee0", 0x68}], 0x1, 0x0, &(0x7f00000000c0), 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f00000000c0)=0x6002)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000100)="460f300f07c483614804ee08440f20c03506000000440f22c0c402f93473230f09f20f013cb9b805000000b9c00000000f01d90fc728c4c1f9e79f2e000000", 0x3f}], 0x1, 0x0, &(0x7f0000000200), 0x1)
ioctl$FS_IOC_GETFSMAP(r2, 0xc0c0583b, &(0x7f0000000940)=ANY=[@ANYBLOB="00000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d348000005000000f9fffffffffffffffb0000000000000001800000000000000600000000000000000000000000000000000000100000000000000000000000ff010000f8ffffff07000000000000000700000000000000ff070000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b2633e3b0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000068ea7ad9"])
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_bp={&(0x7f0000000440)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_pktinfo(0xffffffffffffff9c, 0x0, 0x8, &(0x7f0000003fc0)={0x0, @dev, @loopback}, &(0x7f0000004000)=0xc)
socketpair$inet_icmp_raw(0x2, 0x3, 0x1, &(0x7f0000000040))

08:51:36 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8})
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
dup2(r2, r0)

08:51:36 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$inet(0x10, 0x3, 0xc)
sendmsg(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000100)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)

[  589.308713] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
[  589.385591] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
08:51:36 executing program 0:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(r1, 0x40286608, &(0x7f0000000000)={0x8001, 0x1, 0x9, 0x5, 0x80000000, 0x3})
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
dup2(r1, r0)

08:51:36 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
clone(0x210007fa, 0x0, 0xfffffffffffffffe, &(0x7f0000000040), 0xffffffffffffffff)

08:51:36 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8})
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
dup2(r2, r0)

[  589.806692] not chained 350000 origins
[  589.810641] CPU: 1 PID: 16 Comm: ksoftirqd/1 Not tainted 4.20.0-rc2+ #88
[  589.814869] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  589.814869] Call Trace:
[  589.814869]  dump_stack+0x32d/0x480
[  589.814869]  ? __skb_checksum+0xeb9/0xfe0
[  589.814869]  kmsan_internal_chain_origin+0x222/0x240
[  589.814869]  ? csum_partial_ext+0xa0/0xa0
[  589.814869]  ? tcp_tasklet_func+0x900/0x900
[  589.814869]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  589.814869]  ? skb_segment+0x5cae/0x6290
[  589.814869]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  589.814869]  ? in_task_stack+0x12c/0x210
[  589.814869]  ? task_kmsan_context_state+0x51/0x90
[  589.814869]  ? __msan_get_context_state+0x9/0x20
[  589.814869]  ? __kernel_text_address+0x19/0x350
[  589.814869]  ? ret_from_fork+0x35/0x40
[  589.814869]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  589.814869]  ? in_task_stack+0x12c/0x210
[  589.814869]  __msan_chain_origin+0x6d/0xb0
[  589.814869]  ? dev_queue_xmit+0x4b/0x60
[  589.814869]  __save_stack_trace+0x8be/0xc60
[  589.814869]  ? dev_queue_xmit+0x4b/0x60
[  589.814869]  save_stack_trace+0xc6/0x110
[  589.814869]  kmsan_internal_chain_origin+0x136/0x240
[  589.814869]  ? dev_queue_xmit+0x4b/0x60
[  589.814869]  ? tcp_v4_rcv+0x5a13/0x6520
[  589.814869]  ? kmsan_internal_chain_origin+0x136/0x240
[  589.814869]  ? kmsan_memcpy_origins+0x13d/0x190
[  589.814869]  ? __msan_memcpy+0x6f/0x80
[  589.814869]  ? pskb_expand_head+0x436/0x1d20
[  589.814869]  ? skb_checksum_help+0xa6f/0xd80
[  589.814869]  ? validate_xmit_skb+0x115c/0x1780
[  589.814869]  ? __dev_queue_xmit+0x2343/0x3e00
[  589.814869]  ? dev_queue_xmit+0x4b/0x60
[  589.814869]  ? ip_finish_output2+0x136d/0x1560
[  589.814869]  ? ip_finish_output+0xd93/0x10f0
[  589.814869]  ? ip_output+0x55c/0x630
[  589.814869]  ? ip_local_out+0x164/0x1d0
[  589.814869]  ? iptunnel_xmit+0x812/0xd30
[  589.814869]  ? ip_tunnel_xmit+0x3943/0x3d90
[  589.814869]  ? ipip_tunnel_xmit+0x3bb/0x4a0
[  589.814869]  ? dev_hard_start_xmit+0x6dc/0xde0
[  589.814869]  ? __dev_queue_xmit+0x2d9e/0x3e00
[  589.814869]  ? dev_queue_xmit+0x4b/0x60
[  589.814869]  ? neigh_direct_output+0x42/0x50
[  589.814869]  ? ip_finish_output2+0x141a/0x1560
[  589.814869]  ? ip_finish_output+0xd93/0x10f0
[  589.814869]  ? ip_output+0x55c/0x630
[  589.814869]  ? __ip_queue_xmit+0x1bb5/0x2170
[  589.814869]  ? ip_queue_xmit+0xcc/0xf0
[  589.814869]  ? __tcp_transmit_skb+0x425c/0x5e00
[  589.814869]  ? tcp_write_xmit+0x389a/0xacc0
[  589.814869]  ? __tcp_push_pending_frames+0x124/0x4e0
[  589.814869]  ? tcp_data_snd_check+0x1ec/0x1080
[  589.814869]  ? tcp_rcv_established+0x1bb2/0x2940
[  589.814869]  ? tcp_v4_do_rcv+0x686/0xd80
[  589.814869]  ? tcp_v4_rcv+0x5a13/0x6520
[  589.814869]  ? ip_local_deliver_finish+0x8d8/0xff0
[  589.814869]  ? ip_local_deliver+0x44b/0x510
[  589.814869]  ? ip_rcv+0x6b6/0x740
[  589.814869]  ? netif_receive_skb_internal+0x824/0xc10
[  589.814869]  ? napi_gro_receive+0x733/0xba0
[  589.814869]  ? gro_cell_poll+0x25c/0x3f0
[  589.814869]  ? net_rx_action+0x98f/0x1d50
[  589.814869]  ? __do_softirq+0x721/0xc7f
[  589.814869]  ? run_ksoftirqd+0x37/0x60
[  589.814869]  ? smpboot_thread_fn+0x69c/0xb30
[  589.814869]  ? kthread+0x5e7/0x620
[  589.814869]  ? ret_from_fork+0x35/0x40
[  589.814869]  ? __msan_get_context_state+0x9/0x20
[  589.814869]  ? INIT_INT+0xc/0x30
[  589.814869]  ? __kmalloc_node_track_caller+0x369/0x14e0
[  589.814869]  kmsan_memcpy_origins+0x13d/0x190
[  589.814869]  __msan_memcpy+0x6f/0x80
[  589.814869]  pskb_expand_head+0x436/0x1d20
[  589.814869]  skb_checksum_help+0xa6f/0xd80
[  589.814869]  validate_xmit_skb+0x115c/0x1780
[  589.814869]  ? __skb_tstamp_tx+0xe0f/0x10e0
[  589.814869]  __dev_queue_xmit+0x2343/0x3e00
[  589.814869]  dev_queue_xmit+0x4b/0x60
[  589.814869]  ip_finish_output2+0x136d/0x1560
[  589.814869]  ip_finish_output+0xd93/0x10f0
[  589.814869]  ip_output+0x55c/0x630
[  589.814869]  ? ip_mc_finish_output+0x440/0x440
[  589.814869]  ? ip_finish_output+0x10f0/0x10f0
[  589.814869]  ip_local_out+0x164/0x1d0
[  589.814869]  iptunnel_xmit+0x812/0xd30
[  589.814869]  ip_tunnel_xmit+0x3943/0x3d90
[  589.814869]  ipip_tunnel_xmit+0x3bb/0x4a0
[  589.814869]  ? ipip_tunnel_init+0x240/0x240
[  589.814869]  dev_hard_start_xmit+0x6dc/0xde0
[  589.814869]  __dev_queue_xmit+0x2d9e/0x3e00
[  589.814869]  ? __msan_poison_alloca+0x1e0/0x270
[  589.814869]  dev_queue_xmit+0x4b/0x60
[  589.814869]  neigh_direct_output+0x42/0x50
[  589.814869]  ? neigh_connected_output+0x700/0x700
[  589.814869]  ip_finish_output2+0x141a/0x1560
[  589.814869]  ip_finish_output+0xd93/0x10f0
[  589.814869]  ip_output+0x55c/0x630
[  589.814869]  ? ip_mc_finish_output+0x440/0x440
[  589.814869]  ? ip_finish_output+0x10f0/0x10f0
[  589.814869]  __ip_queue_xmit+0x1bb5/0x2170
[  589.814869]  ? kmsan_set_origin+0x7f/0x100
[  589.814869]  ip_queue_xmit+0xcc/0xf0
[  589.814869]  ? dst_hold_safe+0x5d0/0x5d0
[  589.814869]  __tcp_transmit_skb+0x425c/0x5e00
[  589.814869]  tcp_write_xmit+0x389a/0xacc0
[  589.814869]  __tcp_push_pending_frames+0x124/0x4e0
[  589.814869]  tcp_data_snd_check+0x1ec/0x1080
[  589.814869]  tcp_rcv_established+0x1bb2/0x2940
[  589.814869]  ? __msan_get_context_state+0x9/0x20
[  589.814869]  tcp_v4_do_rcv+0x686/0xd80
[  589.814869]  tcp_v4_rcv+0x5a13/0x6520
[  589.814869]  ? raw_local_deliver+0x141/0x1890
[  589.814869]  ? tcp_filter+0x260/0x260
[  589.814869]  ip_local_deliver_finish+0x8d8/0xff0
[  589.814869]  ? nf_hook_slow+0x36f/0x3d0
[  589.814869]  ip_local_deliver+0x44b/0x510
[  589.814869]  ? ip_local_deliver+0x510/0x510
[  589.814869]  ? ip_call_ra_chain+0x7a0/0x7a0
[  589.814869]  ip_rcv+0x6b6/0x740
[  589.814869]  ? ip_rcv_core+0x1370/0x1370
[  589.814869]  netif_receive_skb_internal+0x824/0xc10
[  589.814869]  ? ip_local_deliver_finish+0xff0/0xff0
[  589.814869]  napi_gro_receive+0x733/0xba0
[  589.814869]  gro_cell_poll+0x25c/0x3f0
[  589.814869]  ? gro_cells_init+0x550/0x550
[  589.814869]  net_rx_action+0x98f/0x1d50
[  589.814869]  ? net_tx_action+0xf20/0xf20
[  589.814869]  __do_softirq+0x721/0xc7f
[  589.814869]  ? ksoftirqd_should_run+0x50/0x50
[  589.814869]  run_ksoftirqd+0x37/0x60
[  589.814869]  smpboot_thread_fn+0x69c/0xb30
[  589.814869]  kthread+0x5e7/0x620
[  589.814869]  ? cpu_report_death+0x4a0/0x4a0
[  589.814869]  ? INIT_BOOL+0x30/0x30
[  589.814869]  ret_from_fork+0x35/0x40
[  589.814869] Uninit was stored to memory at:
[  589.814869]  kmsan_internal_chain_origin+0x136/0x240
[  589.814869]  __msan_chain_origin+0x6d/0xb0
[  589.814869]  __save_stack_trace+0x8be/0xc60
[  589.814869]  save_stack_trace+0xc6/0x110
[  589.814869]  kmsan_internal_chain_origin+0x136/0x240
[  589.814869]  kmsan_memcpy_origins+0x13d/0x190
[  589.814869]  __msan_memcpy+0x6f/0x80
[  589.814869]  pskb_expand_head+0x436/0x1d20
[  589.814869]  skb_checksum_help+0xa6f/0xd80
[  589.814869]  validate_xmit_skb+0x115c/0x1780
[  589.814869]  __dev_queue_xmit+0x2343/0x3e00
[  589.814869]  dev_queue_xmit+0x4b/0x60
[  589.814869]  ip_finish_output2+0x136d/0x1560
[  589.814869]  ip_finish_output+0xd93/0x10f0
[  589.814869]  ip_output+0x55c/0x630
[  589.814869]  ip_local_out+0x164/0x1d0
[  589.814869]  iptunnel_xmit+0x812/0xd30
[  589.814869]  ip_tunnel_xmit+0x3943/0x3d90
[  589.814869]  ipip_tunnel_xmit+0x3bb/0x4a0
[  589.814869]  dev_hard_start_xmit+0x6dc/0xde0
[  589.814869]  __dev_queue_xmit+0x2d9e/0x3e00
[  589.814869]  dev_queue_xmit+0x4b/0x60
[  589.814869]  neigh_direct_output+0x42/0x50
[  589.814869]  ip_finish_output2+0x141a/0x1560
[  589.814869]  ip_finish_output+0xd93/0x10f0
[  589.814869]  ip_output+0x55c/0x630
[  589.814869]  __ip_queue_xmit+0x1bb5/0x2170
[  589.814869]  ip_queue_xmit+0xcc/0xf0
[  589.814869]  __tcp_transmit_skb+0x425c/0x5e00
[  589.814869]  tcp_write_xmit+0x389a/0xacc0
[  589.814869]  __tcp_push_pending_frames+0x124/0x4e0
[  589.814869]  tcp_data_snd_check+0x1ec/0x1080
[  589.814869]  tcp_rcv_established+0x1bb2/0x2940
[  589.814869]  tcp_v4_do_rcv+0x686/0xd80
[  589.814869]  tcp_v4_rcv+0x5a13/0x6520
[  589.814869]  ip_local_deliver_finish+0x8d8/0xff0
[  589.814869]  ip_local_deliver+0x44b/0x510
[  589.814869]  ip_rcv+0x6b6/0x740
[  589.814869]  netif_receive_skb_internal+0x824/0xc10
[  589.814869]  napi_gro_receive+0x733/0xba0
[  589.814869]  gro_cell_poll+0x25c/0x3f0
[  589.814869]  net_rx_action+0x98f/0x1d50
[  589.814869]  __do_softirq+0x721/0xc7f
[  589.814869] 
[  589.814869] Uninit was stored to memory at:
[  589.814869]  kmsan_internal_chain_origin+0x136/0x240
[  589.814869]  __msan_chain_origin+0x6d/0xb0
[  589.814869]  __save_stack_trace+0x8be/0xc60
[  589.814869]  save_stack_trace+0xc6/0x110
[  589.814869]  kmsan_internal_chain_origin+0x136/0x240
[  589.814869]  kmsan_memcpy_origins+0x13d/0x190
[  589.814869]  __msan_memcpy+0x6f/0x80
[  589.814869]  pskb_expand_head+0x436/0x1d20
[  589.814869]  skb_checksum_help+0xa6f/0xd80
[  589.814869]  validate_xmit_skb+0x115c/0x1780
[  589.814869]  __dev_queue_xmit+0x2343/0x3e00
[  589.814869]  dev_queue_xmit+0x4b/0x60
[  589.814869]  ip_finish_output2+0x136d/0x1560
[  589.814869]  ip_finish_output+0xd93/0x10f0
[  589.814869]  ip_output+0x55c/0x630
[  589.814869]  ip_local_out+0x164/0x1d0
[  589.814869]  iptunnel_xmit+0x812/0xd30
[  589.814869]  ip_tunnel_xmit+0x3943/0x3d90
[  589.814869]  ipip_tunnel_xmit+0x3bb/0x4a0
[  589.814869]  dev_hard_start_xmit+0x6dc/0xde0
[  589.814869]  __dev_queue_xmit+0x2d9e/0x3e00
[  589.814869]  dev_queue_xmit+0x4b/0x60
[  589.814869]  neigh_direct_output+0x42/0x50
[  589.814869]  ip_finish_output2+0x141a/0x1560
[  589.814869]  ip_finish_output+0xd93/0x10f0
[  589.814869]  ip_output+0x55c/0x630
[  589.814869]  __ip_queue_xmit+0x1bb5/0x2170
[  589.814869]  ip_queue_xmit+0xcc/0xf0
[  589.814869]  __tcp_transmit_skb+0x425c/0x5e00
[  589.814869]  tcp_write_xmit+0x389a/0xacc0
[  589.814869]  __tcp_push_pending_frames+0x124/0x4e0
[  589.814869]  tcp_data_snd_check+0x1ec/0x1080
[  589.814869]  tcp_rcv_established+0x1bb2/0x2940
[  589.814869]  tcp_v4_do_rcv+0x686/0xd80
[  589.814869]  tcp_v4_rcv+0x5a13/0x6520
[  589.814869]  ip_local_deliver_finish+0x8d8/0xff0
[  589.814869]  ip_local_deliver+0x44b/0x510
[  589.814869]  ip_rcv+0x6b6/0x740
[  589.814869]  netif_receive_skb_internal+0x824/0xc10
[  589.814869]  napi_gro_receive+0x733/0xba0
[  589.814869]  gro_cell_poll+0x25c/0x3f0
[  589.814869]  net_rx_action+0x98f/0x1d50
[  589.814869]  __do_softirq+0x721/0xc7f
[  589.814869] 
[  589.814869] Uninit was stored to memory at:
[  589.814869]  kmsan_internal_chain_origin+0x136/0x240
[  589.814869]  __msan_chain_origin+0x6d/0xb0
[  589.814869]  __save_stack_trace+0x8be/0xc60
[  589.814869]  save_stack_trace+0xc6/0x110
[  589.814869]  kmsan_internal_chain_origin+0x136/0x240
[  589.814869]  kmsan_memcpy_origins+0x13d/0x190
[  589.814869]  __msan_memcpy+0x6f/0x80
[  589.814869]  pskb_expand_head+0x436/0x1d20
[  589.814869]  skb_checksum_help+0xa6f/0xd80
[  589.814869]  validate_xmit_skb+0x115c/0x1780
[  589.814869]  __dev_queue_xmit+0x2343/0x3e00
[  589.814869]  dev_queue_xmit+0x4b/0x60
[  589.814869]  ip_finish_output2+0x136d/0x1560
[  589.814869]  ip_finish_output+0xd93/0x10f0
[  589.814869]  ip_output+0x55c/0x630
[  589.814869]  ip_local_out+0x164/0x1d0
[  589.814869]  iptunnel_xmit+0x812/0xd30
[  589.814869]  ip_tunnel_xmit+0x3943/0x3d90
[  589.814869]  ipip_tunnel_xmit+0x3bb/0x4a0
[  589.814869]  dev_hard_start_xmit+0x6dc/0xde0
[  589.814869]  __dev_queue_xmit+0x2d9e/0x3e00
[  589.814869]  dev_queue_xmit+0x4b/0x60
[  589.814869]  neigh_direct_output+0x42/0x50
[  589.814869]  ip_finish_output2+0x141a/0x1560
[  589.814869]  ip_finish_output+0xd93/0x10f0
[  589.814869]  ip_output+0x55c/0x630
[  589.814869]  __ip_queue_xmit+0x1bb5/0x2170
[  589.814869]  ip_queue_xmit+0xcc/0xf0
[  589.814869]  __tcp_transmit_skb+0x425c/0x5e00
[  589.814869]  tcp_write_xmit+0x389a/0xacc0
[  589.814869]  __tcp_push_pending_frames+0x124/0x4e0
[  589.814869]  tcp_data_snd_check+0x1ec/0x1080
[  589.814869]  tcp_rcv_established+0x1bb2/0x2940
[  589.814869]  tcp_v4_do_rcv+0x686/0xd80
[  589.814869]  tcp_v4_rcv+0x5a13/0x6520
[  589.814869]  ip_local_deliver_finish+0x8d8/0xff0
[  589.814869]  ip_local_deliver+0x44b/0x510
[  589.814869]  ip_rcv+0x6b6/0x740
[  589.814869]  netif_receive_skb_internal+0x824/0xc10
[  589.814869]  napi_gro_receive+0x733/0xba0
[  589.814869]  gro_cell_poll+0x25c/0x3f0
[  589.814869]  net_rx_action+0x98f/0x1d50
[  589.814869]  __do_softirq+0x721/0xc7f
[  589.814869] 
[  589.814869] Uninit was stored to memory at:
[  589.814869]  kmsan_internal_chain_origin+0x136/0x240
[  589.814869]  __msan_chain_origin+0x6d/0xb0
[  589.814869]  __save_stack_trace+0x8be/0xc60
[  589.814869]  save_stack_trace+0xc6/0x110
[  589.814869]  kmsan_internal_chain_origin+0x136/0x240
[  589.814869]  kmsan_memcpy_origins+0x13d/0x190
[  589.814869]  __msan_memcpy+0x6f/0x80
[  589.814869]  pskb_expand_head+0x436/0x1d20
[  589.814869]  skb_checksum_help+0xa6f/0xd80
[  589.814869]  validate_xmit_skb+0x115c/0x1780
[  589.814869]  __dev_queue_xmit+0x2343/0x3e00
[  589.814869]  dev_queue_xmit+0x4b/0x60
[  589.814869]  ip_finish_output2+0x136d/0x1560
[  589.814869]  ip_finish_output+0xd93/0x10f0
[  589.814869]  ip_output+0x55c/0x630
[  589.814869]  ip_local_out+0x164/0x1d0
[  589.814869]  iptunnel_xmit+0x812/0xd30
[  589.814869]  ip_tunnel_xmit+0x3943/0x3d90
[  589.814869]  ipip_tunnel_xmit+0x3bb/0x4a0
[  589.814869]  dev_hard_start_xmit+0x6dc/0xde0
[  589.814869]  __dev_queue_xmit+0x2d9e/0x3e00
[  589.814869]  dev_queue_xmit+0x4b/0x60
[  589.814869]  neigh_direct_output+0x42/0x50
[  589.814869]  ip_finish_output2+0x141a/0x1560
[  589.814869]  ip_finish_output+0xd93/0x10f0
[  589.814869]  ip_output+0x55c/0x630
[  589.814869]  __ip_queue_xmit+0x1bb5/0x2170
[  589.814869]  ip_queue_xmit+0xcc/0xf0
[  589.814869]  __tcp_transmit_skb+0x425c/0x5e00
[  589.814869]  tcp_write_xmit+0x389a/0xacc0
[  589.814869]  __tcp_push_pending_frames+0x124/0x4e0
[  589.814869]  tcp_data_snd_check+0x1ec/0x1080
[  589.814869]  tcp_rcv_established+0x1bb2/0x2940
[  589.814869]  tcp_v4_do_rcv+0x686/0xd80
[  589.814869]  tcp_v4_rcv+0x5a13/0x6520
[  589.814869]  ip_local_deliver_finish+0x8d8/0xff0
[  589.814869]  ip_local_deliver+0x44b/0x510
[  589.814869]  ip_rcv+0x6b6/0x740
[  589.814869]  netif_receive_skb_internal+0x824/0xc10
[  589.814869]  napi_gro_receive+0x733/0xba0
[  589.814869]  gro_cell_poll+0x25c/0x3f0
[  589.814869]  net_rx_action+0x98f/0x1d50
[  589.814869]  __do_softirq+0x721/0xc7f
[  589.814869] 
[  589.814869] Uninit was stored to memory at:
[  589.814869]  kmsan_internal_chain_origin+0x136/0x240
[  589.814869]  __msan_chain_origin+0x6d/0xb0
[  589.814869]  __save_stack_trace+0x8be/0xc60
[  589.814869]  save_stack_trace+0xc6/0x110
[  589.814869]  kmsan_internal_chain_origin+0x136/0x240
[  589.814869]  kmsan_memcpy_origins+0x13d/0x190
[  589.814869]  __msan_memcpy+0x6f/0x80
[  589.814869]  pskb_expand_head+0x436/0x1d20
[  589.814869]  skb_checksum_help+0xa6f/0xd80
[  589.814869]  validate_xmit_skb+0x115c/0x1780
[  589.814869]  __dev_queue_xmit+0x2343/0x3e00
[  589.814869]  dev_queue_xmit+0x4b/0x60
[  589.814869]  ip_finish_output2+0x136d/0x1560
[  589.814869]  ip_finish_output+0xd93/0x10f0
[  589.814869]  ip_output+0x55c/0x630
[  589.814869]  ip_local_out+0x164/0x1d0
[  589.814869]  iptunnel_xmit+0x812/0xd30
[  589.814869]  ip_tunnel_xmit+0x3943/0x3d90
[  589.814869]  ipip_tunnel_xmit+0x3bb/0x4a0
[  589.814869]  dev_hard_start_xmit+0x6dc/0xde0
[  589.814869]  __dev_queue_xmit+0x2d9e/0x3e00
[  589.814869]  dev_queue_xmit+0x4b/0x60
[  589.814869]  neigh_direct_output+0x42/0x50
[  589.814869]  ip_finish_output2+0x141a/0x1560
[  589.814869]  ip_finish_output+0xd93/0x10f0
[  589.814869]  ip_output+0x55c/0x630
[  589.814869]  __ip_queue_xmit+0x1bb5/0x2170
[  589.814869]  ip_queue_xmit+0xcc/0xf0
[  589.814869]  __tcp_transmit_skb+0x425c/0x5e00
[  589.814869]  tcp_write_xmit+0x389a/0xacc0
[  589.814869]  __tcp_push_pending_frames+0x124/0x4e0
[  589.814869]  tcp_data_snd_check+0x1ec/0x1080
[  589.814869]  tcp_rcv_established+0x1bb2/0x2940
[  589.814869]  tcp_v4_do_rcv+0x686/0xd80
[  589.814869]  tcp_v4_rcv+0x5a13/0x6520
[  589.814869]  ip_local_deliver_finish+0x8d8/0xff0
[  589.814869]  ip_local_deliver+0x44b/0x510
[  589.814869]  ip_rcv+0x6b6/0x740
[  589.814869]  netif_receive_skb_internal+0x824/0xc10
[  589.814869]  napi_gro_receive+0x733/0xba0
[  589.814869]  gro_cell_poll+0x25c/0x3f0
[  589.814869]  net_rx_action+0x98f/0x1d50
[  589.814869]  __do_softirq+0x721/0xc7f
[  589.814869] 
[  589.814869] Uninit was stored to memory at:
[  589.814869]  kmsan_internal_chain_origin+0x136/0x240
[  589.814869]  __msan_chain_origin+0x6d/0xb0
[  589.814869]  __save_stack_trace+0x8be/0xc60
[  589.814869]  save_stack_trace+0xc6/0x110
[  589.814869]  kmsan_internal_chain_origin+0x136/0x240
[  589.814869]  kmsan_memcpy_origins+0x13d/0x190
[  589.814869]  __msan_memcpy+0x6f/0x80
[  589.814869]  pskb_expand_head+0x436/0x1d20
[  589.814869]  skb_checksum_help+0xa6f/0xd80
[  589.814869]  validate_xmit_skb+0x115c/0x1780
[  589.814869]  __dev_queue_xmit+0x2343/0x3e00
[  589.814869]  dev_queue_xmit+0x4b/0x60
[  589.814869]  ip_finish_output2+0x136d/0x1560
[  589.814869]  ip_finish_output+0xd93/0x10f0
[  589.814869]  ip_output+0x55c/0x630
[  589.814869]  ip_local_out+0x164/0x1d0
[  589.814869]  iptunnel_xmit+0x812/0xd30
[  589.814869]  ip_tunnel_xmit+0x3943/0x3d90
[  589.814869]  ipip_tunnel_xmit+0x3bb/0x4a0
[  589.814869]  dev_hard_start_xmit+0x6dc/0xde0
[  589.814869]  __dev_queue_xmit+0x2d9e/0x3e00
[  589.814869]  dev_queue_xmit+0x4b/0x60
[  589.814869]  neigh_direct_output+0x42/0x50
[  589.814869]  ip_finish_output2+0x141a/0x1560
[  589.814869]  ip_finish_output+0xd93/0x10f0
[  589.814869]  ip_output+0x55c/0x630
[  589.814869]  __ip_queue_xmit+0x1bb5/0x2170
[  589.814869]  ip_queue_xmit+0xcc/0xf0
[  589.814869]  __tcp_transmit_skb+0x425c/0x5e00
[  589.814869]  tcp_write_xmit+0x389a/0xacc0
[  589.814869]  __tcp_push_pending_frames+0x124/0x4e0
[  589.814869]  tcp_data_snd_check+0x1ec/0x1080
[  589.814869]  tcp_rcv_established+0x1bb2/0x2940
[  589.814869]  tcp_v4_do_rcv+0x686/0xd80
[  589.814869]  tcp_v4_rcv+0x5a13/0x6520
[  589.814869]  ip_local_deliver_finish+0x8d8/0xff0
[  589.814869]  ip_local_deliver+0x44b/0x510
[  589.814869]  ip_rcv+0x6b6/0x740
[  589.814869]  netif_receive_skb_internal+0x824/0xc10
[  589.814869]  napi_gro_receive+0x733/0xba0
[  589.814869]  gro_cell_poll+0x25c/0x3f0
[  589.814869]  net_rx_action+0x98f/0x1d50
[  589.814869]  __do_softirq+0x721/0xc7f
[  589.814869] 
[  589.814869] Uninit was stored to memory at:
[  589.814869]  kmsan_internal_chain_origin+0x136/0x240
[  589.814869]  __msan_chain_origin+0x6d/0xb0
[  589.814869]  __save_stack_trace+0x8be/0xc60
[  589.814869]  save_stack_trace+0xc6/0x110
[  589.814869]  kmsan_internal_chain_origin+0x136/0x240
[  589.814869]  kmsan_memcpy_origins+0x13d/0x190
[  589.814869]  __msan_memcpy+0x6f/0x80
[  589.814869]  pskb_expand_head+0x436/0x1d20
[  589.814869]  skb_checksum_help+0xa6f/0xd80
[  589.814869]  validate_xmit_skb+0x115c/0x1780
[  589.814869]  __dev_queue_xmit+0x2343/0x3e00
[  589.814869]  dev_queue_xmit+0x4b/0x60
[  589.814869]  ip_finish_output2+0x136d/0x1560
[  589.814869]  ip_finish_output+0xd93/0x10f0
[  589.814869]  ip_output+0x55c/0x630
[  589.814869]  ip_local_out+0x164/0x1d0
[  589.814869]  iptunnel_xmit+0x812/0xd30
[  589.814869]  ip_tunnel_xmit+0x3943/0x3d90
[  589.814869]  ipip_tunnel_xmit+0x3bb/0x4a0
[  589.814869]  dev_hard_start_xmit+0x6dc/0xde0
[  589.814869]  __dev_queue_xmit+0x2d9e/0x3e00
[  589.814869]  dev_queue_xmit+0x4b/0x60
[  589.814869]  neigh_direct_output+0x42/0x50
[  589.814869]  ip_finish_output2+0x141a/0x1560
[  589.814869]  ip_finish_output+0xd93/0x10f0
[  589.814869]  ip_output+0x55c/0x630
[  589.814869]  __ip_queue_xmit+0x1bb5/0x2170
[  589.814869]  ip_queue_xmit+0xcc/0xf0
[  589.814869]  __tcp_transmit_skb+0x425c/0x5e00
[  589.814869]  tcp_write_xmit+0x389a/0xacc0
[  589.814869]  __tcp_push_pending_frames+0x124/0x4e0
[  589.814869]  tcp_data_snd_check+0x1ec/0x1080
[  589.814869]  tcp_rcv_established+0x1bb2/0x2940
[  589.814869]  tcp_v4_do_rcv+0x686/0xd80
[  589.814869]  tcp_v4_rcv+0x5a13/0x6520
[  589.814869]  ip_local_deliver_finish+0x8d8/0xff0
[  589.814869]  ip_local_deliver+0x44b/0x510
[  589.814869]  ip_rcv+0x6b6/0x740
[  589.814869]  netif_receive_skb_internal+0x824/0xc10
[  589.814869]  napi_gro_receive+0x733/0xba0
[  589.814869]  gro_cell_poll+0x25c/0x3f0
[  589.814869]  net_rx_action+0x98f/0x1d50
[  589.814869]  __do_softirq+0x721/0xc7f
[  589.814869] 
[  589.814869] Local variable description: ----__ai_n1.i.i.i.i@kmem_cache_free
[  589.814869] Variable was created at:
[  589.814869]  kmem_cache_free+0x158/0x3370
[  589.814869]  __kfree_skb+0x2cc/0x310
[  591.892325] not chained 360000 origins
[  591.896299] CPU: 0 PID: 9 Comm: ksoftirqd/0 Not tainted 4.20.0-rc2+ #88
[  591.902218] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  591.902218] Call Trace:
[  591.902218]  dump_stack+0x32d/0x480
[  591.902218]  kmsan_internal_chain_origin+0x222/0x240
[  591.902218]  ? ret_from_fork+0x35/0x40
[  591.902218]  ? save_stack_trace+0xc6/0x110
[  591.902218]  ? __irqentry_text_end+0x1fa056/0x1fa056
[  591.902218]  ? kmsan_internal_chain_origin+0x90/0x240
[  591.940391]  ? task_kmsan_context_state+0x51/0x90
[  591.940391]  ? __msan_get_context_state+0x9/0x20
[  591.940391]  ? __kernel_text_address+0x19/0x350
[  591.955878]  ? ret_from_fork+0x35/0x40
[  591.955878]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  591.955878]  ? in_task_stack+0x12c/0x210
[  591.955878]  __msan_chain_origin+0x6d/0xb0
[  591.955878]  ? tcp_rcv_established+0xf7e/0x2940
[  591.955878]  __save_stack_trace+0x8be/0xc60
[  591.955878]  ? tcp_rcv_established+0xf7e/0x2940
[  591.955878]  save_stack_trace+0xc6/0x110
[  591.955878]  kmsan_internal_chain_origin+0x136/0x240
[  591.955878]  ? net_rx_action+0x98f/0x1d50
[  591.955878]  ? kmsan_internal_chain_origin+0x136/0x240
[  591.955878]  ? kmsan_memcpy_origins+0x13d/0x190
[  591.955878]  ? __msan_memcpy+0x6f/0x80
[  591.955878]  ? pskb_expand_head+0x436/0x1d20
[  591.955878]  ? skb_shift+0xfc3/0x2d10
[  591.955878]  ? tcp_sacktag_walk+0x2156/0x29d0
[  591.955878]  ? tcp_sacktag_write_queue+0x2805/0x4630
[  591.955878]  ? tcp_ack+0x2888/0xa010
[  591.955878]  ? tcp_rcv_established+0xf7e/0x2940
[  591.955878]  ? tcp_v4_do_rcv+0x686/0xd80
[  591.955878]  ? tcp_v4_rcv+0x5a13/0x6520
[  591.955878]  ? ip_local_deliver_finish+0x8d8/0xff0
[  591.955878]  ? ip_local_deliver+0x44b/0x510
[  591.955878]  ? ip_rcv+0x6b6/0x740
[  591.955878]  ? netif_receive_skb_internal+0x824/0xc10
[  591.955878]  ? napi_gro_receive+0x733/0xba0
[  591.955878]  ? gro_cell_poll+0x25c/0x3f0
[  591.955878]  ? net_rx_action+0x98f/0x1d50
[  591.955878]  ? __do_softirq+0x721/0xc7f
[  591.955878]  ? run_ksoftirqd+0x37/0x60
[  591.955878]  ? smpboot_thread_fn+0x69c/0xb30
[  591.955878]  ? kthread+0x5e7/0x620
[  591.955878]  ? ret_from_fork+0x35/0x40
[  591.955878]  ? memcg_kmem_put_cache+0x73/0x460
[  591.955878]  ? __kmalloc_node_track_caller+0x1010/0x14e0
[  591.955878]  ? __msan_get_context_state+0x9/0x20
[  591.955878]  ? INIT_INT+0xc/0x30
[  591.955878]  ? __kmalloc_node_track_caller+0x369/0x14e0
[  591.955878]  kmsan_memcpy_origins+0x13d/0x190
[  591.955878]  __msan_memcpy+0x6f/0x80
[  591.955878]  pskb_expand_head+0x436/0x1d20
[  591.955878]  skb_shift+0xfc3/0x2d10
[  591.955878]  tcp_sacktag_walk+0x2156/0x29d0
[  591.955878]  tcp_sacktag_write_queue+0x2805/0x4630
[  591.955878]  tcp_ack+0x2888/0xa010
[  591.955878]  ? tcp_parse_options+0xbe/0x1cf0
[  591.955878]  ? tcp_validate_incoming+0x50b/0x29d0
[  591.955878]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  591.955878]  ? tcp_parse_options+0x1c55/0x1cf0
[  591.955878]  tcp_rcv_established+0xf7e/0x2940
[  591.955878]  ? __msan_get_context_state+0x9/0x20
[  591.955878]  tcp_v4_do_rcv+0x686/0xd80
[  591.955878]  tcp_v4_rcv+0x5a13/0x6520
[  591.955878]  ? raw_local_deliver+0x141/0x1890
[  591.955878]  ? tcp_filter+0x260/0x260
[  591.955878]  ip_local_deliver_finish+0x8d8/0xff0
[  591.955878]  ? nf_hook_slow+0x36f/0x3d0
[  591.955878]  ip_local_deliver+0x44b/0x510
[  591.955878]  ? ip_local_deliver+0x510/0x510
[  591.955878]  ? ip_call_ra_chain+0x7a0/0x7a0
[  591.955878]  ip_rcv+0x6b6/0x740
[  591.955878]  ? ip_rcv_core+0x1370/0x1370
[  591.955878]  netif_receive_skb_internal+0x824/0xc10
[  591.955878]  ? ip_local_deliver_finish+0xff0/0xff0
[  591.955878]  napi_gro_receive+0x733/0xba0
[  591.955878]  gro_cell_poll+0x25c/0x3f0
[  591.955878]  ? gro_cells_init+0x550/0x550
[  591.955878]  net_rx_action+0x98f/0x1d50
[  591.955878]  ? net_tx_action+0xf20/0xf20
[  591.955878]  __do_softirq+0x721/0xc7f
[  591.955878]  ? ksoftirqd_should_run+0x50/0x50
[  591.955878]  run_ksoftirqd+0x37/0x60
[  591.955878]  smpboot_thread_fn+0x69c/0xb30
[  591.955878]  kthread+0x5e7/0x620
[  591.955878]  ? cpu_report_death+0x4a0/0x4a0
[  591.955878]  ? INIT_BOOL+0x30/0x30
[  591.955878]  ret_from_fork+0x35/0x40
[  591.955878] Uninit was stored to memory at:
[  591.955878]  kmsan_internal_chain_origin+0x136/0x240
[  591.955878]  __msan_chain_origin+0x6d/0xb0
[  591.955878]  __save_stack_trace+0x8be/0xc60
[  591.955878]  save_stack_trace+0xc6/0x110
[  591.955878]  kmsan_internal_chain_origin+0x136/0x240
[  591.955878]  kmsan_memcpy_origins+0x13d/0x190
[  591.955878]  __msan_memcpy+0x6f/0x80
[  591.955878]  pskb_expand_head+0x436/0x1d20
[  591.955878]  skb_shift+0xce2/0x2d10
[  591.955878]  tcp_sacktag_walk+0x2156/0x29d0
[  591.955878]  tcp_sacktag_write_queue+0x2805/0x4630
[  591.955878]  tcp_ack+0x2888/0xa010
[  591.955878]  tcp_rcv_established+0xf7e/0x2940
[  591.955878]  tcp_v4_do_rcv+0x686/0xd80
[  591.955878]  tcp_v4_rcv+0x5a13/0x6520
[  591.955878]  ip_local_deliver_finish+0x8d8/0xff0
[  591.955878]  ip_local_deliver+0x44b/0x510
[  591.955878]  ip_rcv+0x6b6/0x740
[  591.955878]  netif_receive_skb_internal+0x824/0xc10
[  591.955878]  napi_gro_receive+0x733/0xba0
[  591.955878]  gro_cell_poll+0x25c/0x3f0
[  591.955878]  net_rx_action+0x98f/0x1d50
[  591.955878]  __do_softirq+0x721/0xc7f
[  591.955878] 
[  591.955878] Uninit was stored to memory at:
[  591.955878]  kmsan_internal_chain_origin+0x136/0x240
[  591.955878]  __msan_chain_origin+0x6d/0xb0
[  591.955878]  __save_stack_trace+0x8be/0xc60
[  591.955878]  save_stack_trace+0xc6/0x110
[  591.955878]  kmsan_internal_chain_origin+0x136/0x240
[  591.955878]  kmsan_memcpy_origins+0x13d/0x190
[  591.955878]  __msan_memcpy+0x6f/0x80
[  591.955878]  pskb_expand_head+0x436/0x1d20
[  591.955878]  skb_shift+0xce2/0x2d10
[  591.955878]  tcp_sacktag_walk+0x2156/0x29d0
[  591.955878]  tcp_sacktag_write_queue+0x2805/0x4630
[  591.955878]  tcp_ack+0x2888/0xa010
[  591.955878]  tcp_rcv_established+0xf7e/0x2940
[  591.955878]  tcp_v4_do_rcv+0x686/0xd80
[  591.955878]  tcp_v4_rcv+0x5a13/0x6520
[  591.955878]  ip_local_deliver_finish+0x8d8/0xff0
[  591.955878]  ip_local_deliver+0x44b/0x510
[  591.955878]  ip_rcv+0x6b6/0x740
[  591.955878]  netif_receive_skb_internal+0x824/0xc10
[  591.955878]  napi_gro_receive+0x733/0xba0
[  591.955878]  gro_cell_poll+0x25c/0x3f0
[  591.955878]  net_rx_action+0x98f/0x1d50
[  591.955878]  __do_softirq+0x721/0xc7f
[  591.955878] 
[  591.955878] Uninit was stored to memory at:
[  591.955878]  kmsan_internal_chain_origin+0x136/0x240
[  591.955878]  __msan_chain_origin+0x6d/0xb0
[  591.955878]  __save_stack_trace+0x8be/0xc60
[  591.955878]  save_stack_trace+0xc6/0x110
[  591.955878]  kmsan_internal_chain_origin+0x136/0x240
[  591.955878]  kmsan_memcpy_origins+0x13d/0x190
[  591.955878]  __msan_memcpy+0x6f/0x80
[  591.955878]  pskb_expand_head+0x436/0x1d20
[  591.955878]  skb_shift+0xce2/0x2d10
[  591.955878]  tcp_sacktag_walk+0x2156/0x29d0
[  591.955878]  tcp_sacktag_write_queue+0x2805/0x4630
[  591.955878]  tcp_ack+0x2888/0xa010
[  591.955878]  tcp_rcv_established+0xf7e/0x2940
[  591.955878]  tcp_v4_do_rcv+0x686/0xd80
[  591.955878]  tcp_v4_rcv+0x5a13/0x6520
[  591.955878]  ip_local_deliver_finish+0x8d8/0xff0
[  591.955878]  ip_local_deliver+0x44b/0x510
[  591.955878]  ip_rcv+0x6b6/0x740
[  591.955878]  netif_receive_skb_internal+0x824/0xc10
[  591.955878]  napi_gro_receive+0x733/0xba0
[  591.955878]  gro_cell_poll+0x25c/0x3f0
[  591.955878]  net_rx_action+0x98f/0x1d50
[  591.955878]  __do_softirq+0x721/0xc7f
[  591.955878] 
[  591.955878] Uninit was stored to memory at:
[  591.955878]  kmsan_internal_chain_origin+0x136/0x240
[  591.955878]  __msan_chain_origin+0x6d/0xb0
[  591.955878]  __save_stack_trace+0x8be/0xc60
[  591.955878]  save_stack_trace+0xc6/0x110
[  591.955878]  kmsan_internal_chain_origin+0x136/0x240
[  591.955878]  kmsan_memcpy_origins+0x13d/0x190
[  591.955878]  __msan_memcpy+0x6f/0x80
[  591.955878]  pskb_expand_head+0x436/0x1d20
[  591.955878]  skb_shift+0xce2/0x2d10
[  591.955878]  tcp_sacktag_walk+0x2156/0x29d0
[  591.955878]  tcp_sacktag_write_queue+0x2805/0x4630
[  591.955878]  tcp_ack+0x2888/0xa010
[  591.955878]  tcp_rcv_established+0xf7e/0x2940
[  591.955878]  tcp_v4_do_rcv+0x686/0xd80
[  591.955878]  tcp_v4_rcv+0x5a13/0x6520
[  591.955878]  ip_local_deliver_finish+0x8d8/0xff0
[  591.955878]  ip_local_deliver+0x44b/0x510
[  591.955878]  ip_rcv+0x6b6/0x740
[  591.955878]  netif_receive_skb_internal+0x824/0xc10
[  591.955878]  napi_gro_receive+0x733/0xba0
[  591.955878]  gro_cell_poll+0x25c/0x3f0
[  591.955878]  net_rx_action+0x98f/0x1d50
[  591.955878]  __do_softirq+0x721/0xc7f
[  591.955878] 
[  591.955878] Uninit was stored to memory at:
[  591.955878]  kmsan_internal_chain_origin+0x136/0x240
[  591.955878]  __msan_chain_origin+0x6d/0xb0
[  591.955878]  __save_stack_trace+0x8be/0xc60
[  591.955878]  save_stack_trace+0xc6/0x110
[  591.955878]  kmsan_internal_chain_origin+0x136/0x240
[  591.955878]  kmsan_memcpy_origins+0x13d/0x190
[  591.955878]  __msan_memcpy+0x6f/0x80
[  591.955878]  pskb_expand_head+0x436/0x1d20
[  591.955878]  skb_shift+0xce2/0x2d10
[  591.955878]  tcp_sacktag_walk+0x2156/0x29d0
[  591.955878]  tcp_sacktag_write_queue+0x2805/0x4630
[  591.955878]  tcp_ack+0x2888/0xa010
[  591.955878]  tcp_rcv_established+0xf7e/0x2940
[  591.955878]  tcp_v4_do_rcv+0x686/0xd80
[  591.955878]  tcp_v4_rcv+0x5a13/0x6520
[  591.955878]  ip_local_deliver_finish+0x8d8/0xff0
[  591.955878]  ip_local_deliver+0x44b/0x510
[  591.955878]  ip_rcv+0x6b6/0x740
[  591.955878]  netif_receive_skb_internal+0x824/0xc10
[  591.955878]  napi_gro_receive+0x733/0xba0
[  591.955878]  gro_cell_poll+0x25c/0x3f0
[  591.955878]  net_rx_action+0x98f/0x1d50
[  591.955878]  __do_softirq+0x721/0xc7f
[  591.955878] 
[  591.955878] Uninit was stored to memory at:
[  591.955878]  kmsan_internal_chain_origin+0x136/0x240
[  591.955878]  __msan_chain_origin+0x6d/0xb0
[  591.955878]  __save_stack_trace+0x8be/0xc60
[  591.955878]  save_stack_trace+0xc6/0x110
[  591.955878]  kmsan_internal_chain_origin+0x136/0x240
[  591.955878]  kmsan_memcpy_origins+0x13d/0x190
[  591.955878]  __msan_memcpy+0x6f/0x80
[  591.955878]  pskb_expand_head+0x436/0x1d20
[  591.955878]  skb_shift+0xce2/0x2d10
[  591.955878]  tcp_sacktag_walk+0x2156/0x29d0
[  591.955878]  tcp_sacktag_write_queue+0x2805/0x4630
[  591.955878]  tcp_ack+0x2888/0xa010
[  591.955878]  tcp_rcv_established+0xf7e/0x2940
[  591.955878]  tcp_v4_do_rcv+0x686/0xd80
[  591.955878]  tcp_v4_rcv+0x5a13/0x6520
[  591.955878]  ip_local_deliver_finish+0x8d8/0xff0
[  591.955878]  ip_local_deliver+0x44b/0x510
[  591.955878]  ip_rcv+0x6b6/0x740
[  591.955878]  netif_receive_skb_internal+0x824/0xc10
[  591.955878]  napi_gro_receive+0x733/0xba0
[  591.955878]  gro_cell_poll+0x25c/0x3f0
[  591.955878]  net_rx_action+0x98f/0x1d50
[  591.955878]  __do_softirq+0x721/0xc7f
[  591.955878] 
[  591.955878] Uninit was stored to memory at:
[  591.955878]  kmsan_internal_chain_origin+0x136/0x240
[  591.955878]  __msan_chain_origin+0x6d/0xb0
[  591.955878]  __save_stack_trace+0x8be/0xc60
[  591.955878]  save_stack_trace+0xc6/0x110
[  591.955878]  kmsan_internal_chain_origin+0x136/0x240
[  591.955878]  kmsan_memcpy_origins+0x13d/0x190
[  591.955878]  __msan_memcpy+0x6f/0x80
[  591.955878]  pskb_expand_head+0x436/0x1d20
[  591.955878]  skb_shift+0xce2/0x2d10
[  591.955878]  tcp_sacktag_walk+0x2156/0x29d0
[  591.955878]  tcp_sacktag_write_queue+0x2805/0x4630
[  591.955878]  tcp_ack+0x2888/0xa010
[  591.955878]  tcp_rcv_established+0xf7e/0x2940
[  591.955878]  tcp_v4_do_rcv+0x686/0xd80
[  591.955878]  tcp_v4_rcv+0x5a13/0x6520
[  591.955878]  ip_local_deliver_finish+0x8d8/0xff0
[  591.955878]  ip_local_deliver+0x44b/0x510
[  591.955878]  ip_rcv+0x6b6/0x740
[  591.955878]  netif_receive_skb_internal+0x824/0xc10
[  591.955878]  napi_gro_receive+0x733/0xba0
[  591.955878]  gro_cell_poll+0x25c/0x3f0
[  591.955878]  net_rx_action+0x98f/0x1d50
[  591.955878]  __do_softirq+0x721/0xc7f
[  591.955878] 
[  591.955878] Local variable description: ----flags.i.i.i.i@__local_bh_enable_ip
[  591.955878] Variable was created at:
[  591.955878]  __local_bh_enable_ip+0x46/0x260
[  591.955878]  local_bh_enable+0x36/0x40
08:51:40 executing program 2:
r0 = socket(0x11, 0x3, 0x0)
read(r0, &(0x7f0000000000)=""/200, 0xc8)
shutdown(r0, 0x0)

08:51:40 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e20, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="89f9d765312b4001000000b0967bdae72ee5094371136a6477ba0a51a2969dbc2d4028ac7b5af67f178f9314ea2bb3ac1c442eaf749c21ae2af8e39a40c3dc032e6f8eb738786a79df71302ff3b5d42731597d995bed6103ff63b9a908bcc05e0400000092bdf4d3282f62d6928117f82c2dae48742dac857de846096e82c1a02e1edcadda721a3f8dc9a54da05d467ed35b6f931d8686986960e756048c61c2a2c374c318d21d7a7ef550779190066e82ea3f6724a9f61ff028ec7e8d7a04352e7a78f777a68b823abb646bdc55dbde285ce15bf45820f0ae20e4023f57c71f8b41e08eff14c3441485c6f54a30750c780852dad879d6d4be7243bd07f841f89009000000c23d6b4f70fe48b54577449cfcbc4d5dbefb8b465d45bc2d11afbe7bfbe6ca76ac259e634eebf8db694ff02fe2b4c80783b443ef68287e9cf7cbcc2ee196f10c4ffb3f59e4921e0f9f08cba9a2c56c49fa7465b4836da5b2d9b142763889caa718d8a4fcb2f3ef6dc6185708fb1e0f9081d29fb3defae8c525f07437c7835b4eac8f86e2a22a81eff4120340e4a379446aac45dbff791d147805cd2748d74b8996c9b51ec03b410ef8fe126117fbf106795bc1b25d8dd786b6496bd743b7c75c638b516214ff56ec99a9c0f2919fa781cd8b4f2f2e425a6780c630a05c8e60011bc8e10055a6b6b652e5a13c73fd96f79038a65d6991ac38899ab98486d92bbcffdcf39a08a248ae1045ff8c6123de2f15d9ac360a3497c07001a3a1936ff1c03194ace131d380f515629ff016bd890ff822704c0db8bc68efad2eace5466628e7d6c2f2b3043698c46fdd62588fc54b72a786af0d026353879892c58007f7988a3f2240a43303218cc1df27807bfbde117c505f060396850a82459830a89a6a8601ea2e47f2e41379d110b96576f8f7705bba7ec63d6b44ccf84073cf9bdcf1aee48cb60c2f6dd3e89f3626a5e23339ea99c918d76a43fecf7401f7550e8eaefa4d84f1143320599daf7699858b2bf408e9093aa91d6dd9ae39d8decf3f7a199b0c1918d47be3b7aeff9a8c10efabe787b43141e7abaa4317158864b0361568140ab79cade1223c3ef81da4c4eefdd5b21fcc1b87872fc3b346737105589b84ba9814679b7510ed9b4f290083ee634ae12243ccc63413d7bc35eee0d1a4bc9dd33c37f5130303edddfc2636ffbf1ee0febb953436710c2ed9bd001d2ebe878788ddf7f7ad55b7a8cbcb348e82cd65b59315858086606115d04a3cda0e4af2a703afe09e4afedf00d5fbb2284df9af1d1ec9f15356c58fdcde45fff250568347f3b0b49e11e44c0a4d98a1e3393ce5d76614990f23b2e146842b166fb070894c128f957b0cc7d80a16275efd15659e0f81990062ebfdf9454d12e63d1ce1dad7848fcbab642a0d62ebb17abc824883e4c6e1e81992f28f5bbd7b26e2645c7941b03dd2f27c29baa2412976a05fa13d8fc4d6bd152a8668d986a9cf605b8b4a61600481e01bdd74c96d73390518add968100ac742aaf5dd7eb4ccf0868ee3ef7f12c32298737dea65bd5d7161dd679b4dd6799aa086bf3b8c889780ac102b7b1ebcf2569dd77f201d74d94a61400ced9c613414012b451628a96e6cc8fe738e964940f7b753065677776f3b5398975aeac974fced560667cead03a8976eb4229ff4e1bca5588d5d544cbca8588215a2f5ef7a5fc1a07438d3a3e05d21eb30d46f1688543d4327d36e07635396eaab4e9bc862ee9c7fa24de38c5cbf8fa5afd024116bc84854d01072145ecc4bb415d94a333e0d91e9cf6fda5a2c244a585e3a32c95398f44800c578faf4a2ccc5979664db7a55aa5cc02789f84321ccaeed4f37dd48c8d1484ade0588fc4255ec8780534a693e2bfe88b622034552084492c6757429239bbe8dad8b904e58007639ca773344040a441dc0027a46c22198f3d0b0588e164881a9fc7a85a63c459b0d002e3d890edd250742d363e85250badb91a734759baf773c32b177d36eefb662be70", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

08:51:40 executing program 5:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r0, 0x20000000008912, &(0x7f00000001c0)="0a5c2d0240316285717070")
r1 = socket$inet6(0xa, 0x1000000000002, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000240)={'gretap0\x00'})
sendmsg$nl_route(r2, &(0x7f0000000040)={&(0x7f0000000000), 0xc, &(0x7f0000000080)={&(0x7f0000000500)=ANY=[@ANYBLOB="000000000000000014000400430000007674693000000000000000000c000100aaaaaaaaaa000000"], 0x1}}, 0x0)

08:51:40 executing program 0:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
poll(&(0x7f0000000140)=[{r1, 0x10}, {r1, 0x100}, {r0, 0x1}, {r0}, {r0, 0x8000}, {r1, 0x1446}, {r0}, {r0, 0x1}, {r0, 0x420}, {r0, 0x400}], 0xa, 0x9)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
dup2(r1, r0)

08:51:40 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(0xffffffffffffffff, 0xffffffffffffffb2, &(0x7f0000000040))
dup2(r2, r0)

08:51:40 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = getpid()
r2 = syz_open_dev$sndpcmc(&(0x7f00000001c0)='/dev/snd/pcmC#D#c\x00', 0x2, 0x8000)
ioctl$TCGETS(r2, 0x5401, &(0x7f0000000200))
ioctl$TIOCGETD(r2, 0x5424, &(0x7f0000000240))
perf_event_open(&(0x7f0000000140)={0x4, 0x70, 0x6, 0x6, 0x688d, 0x5, 0x0, 0x1, 0x20, 0xa, 0xffffffff, 0x5, 0x9, 0x8, 0x1, 0xfffffffffffff33f, 0x57, 0x8001, 0x1, 0x3, 0x7f, 0x0, 0x1, 0xfffffffffffffff9, 0x6, 0x101, 0x1, 0x7, 0x7, 0x7, 0x5, 0xffffffffffffffff, 0x600000, 0x9, 0x1, 0xee9, 0xe2f0, 0x8, 0x0, 0x3f, 0x6, @perf_bp={&(0x7f0000000100), 0x2}, 0x1004, 0x8, 0x4000000000000, 0x2, 0x78, 0x94e, 0x6}, r1, 0x1, r2, 0x2)
r3 = socket$inet(0x10, 0x0, 0xc)
sendmsg(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)

08:51:40 executing program 0:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x7, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
dup2(r0, r1)

08:51:40 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(0xffffffffffffffff, 0xffffffffffffffb2, &(0x7f0000000040))
dup2(r2, r0)

08:51:40 executing program 3:
socketpair$unix(0x1, 0xd510beddc7c2a13f, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
getgid()
r1 = socket$inet(0x10, 0xffffffdffffffffb, 0x1000)
sendmsg(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)

08:51:40 executing program 5:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000e5b000)={0x2, 0x10000004e20, @multicast1}, 0x10)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x4e20}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x1, 0x3, &(0x7f00009ff000)=ANY=[@ANYBLOB="18000000030000dc00000000000000819500000000000000"], &(0x7f00002bf000)='syzkaller\x00', 0x1, 0xb7, &(0x7f0000000440)=""/183}, 0x48)
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = socket$kcm(0x29, 0x1000000000002, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x89e0, &(0x7f000031aff8)={r0, r1})
ioctl$sock_kcm_SIOCKCMUNATTACH(r2, 0x89e1, &(0x7f0000000040)={r0})

08:51:40 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in6={0xa, 0x4e21, 0x1f, @remote, 0x9}], 0x1c)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="89f9d765312b4001000000b0967bdae72ee5094371136a6477ba0a51a2969dbc2d4028ac7b5af67f178f9314ea2bb3ac1c442eaf749c21ae2af8e39a40c3dc032e6f8eb738786a79df71302ff3b5d42731597d995bed6103ff63b9a908bcc05e0400000092bdf4d3282f62d6928117f82c2dae48742dac857de846096e82c1a02e1edcadda721a3f8dc9a54da05d467ed35b6f931d8686986960e756048c61c2a2c374c318d21d7a7ef550779190066e82ea3f6724a9f61ff028ec7e8d7a04352e7a78f777a68b823abb646bdc55dbde285ce15bf45820f0ae20e4023f57c71f8b41e08eff14c3441485c6f54a30750c780852dad879d6d4be7243bd07f841f89009000000c23d6b4f70fe48b54577449cfcbc4d5dbefb8b465d45bc2d11afbe7bfbe6ca76ac259e634eebf8db694ff02fe2b4c80783b443ef68287e9cf7cbcc2ee196f10c4ffb3f59e4921e0f9f08cba9a2c56c49fa7465b4836da5b2d9b142763889caa718d8a4fcb2f3ef6dc6185708fb1e0f9081d29fb3defae8c525f07437c7835b4eac8f86e2a22a81eff4120340e4a379446aac45dbff791d147805cd2748d74b8996c9b51ec03b410ef8fe126117fbf106795bc1b25d8dd786b6496bd743b7c75c638b516214ff56ec99a9c0f2919fa781cd8b4f2f2e425a6780c630a05c8e60011bc8e10055a6b6b652e5a13c73fd96f79038a65d6991ac38899ab98486d92bbcffdcf39a08a248ae1045ff8c6123de2f15d9ac360a3497c07001a3a1936ff1c03194ace131d380f515629ff016bd890ff822704c0db8bc68efad2eace5466628e7d6c2f2b3043698c46fdd62588fc54b72a786af0d026353879892c58007f7988a3f2240a43303218cc1df27807bfbde117c505f060396850a82459830a89a6a8601ea2e47f2e41379d110b96576f8f7705bba7ec63d6b44ccf84073cf9bdcf1aee48cb60c2f6dd3e89f3626a5e23339ea99c918d76a43fecf7401f7550e8eaefa4d84f1143320599daf7699858b2bf408e9093aa91d6dd9ae39d8decf3f7a199b0c1918d47be3b7aeff9a8c10efabe787b43141e7abaa4317158864b0361568140ab79cade1223c3ef81da4c4eefdd5b21fcc1b87872fc3b346737105589b84ba9814679b7510ed9b4f290083ee634ae12243ccc63413d7bc35eee0d1a4bc9dd33c37f5130303edddfc2636ffbf1ee0febb953436710c2ed9bd001d2ebe878788ddf7f7ad55b7a8cbcb348e82cd65b59315858086606115d04a3cda0e4af2a703afe09e4afedf00d5fbb2284df9af1d1ec9f15356c58fdcde45fff250568347f3b0b49e11e44c0a4d98a1e3393ce5d76614990f23b2e146842b166fb070894c128f957b0cc7d80a16275efd15659e0f81990062ebfdf9454d12e63d1ce1dad7848fcbab642a0d62ebb17abc824883e4c6e1e81992f28f5bbd7b26e2645c7941b03dd2f27c29baa2412976a05fa13d8fc4d6bd152a8668d986a9cf605b8b4a61600481e01bdd74c96d73390518add968100ac742aaf5dd7eb4ccf0868ee3ef7f12c32298737dea65bd5d7161dd679b4dd6799aa086bf3b8c889780ac102b7b1ebcf2569dd77f201d74d94a61400ced9c613414012b451628a96e6cc8fe738e964940f7b753065677776f3b5398975aeac974fced560667cead03a8976eb4229ff4e1bca5588d5d544cbca8588215a2f5ef7a5fc1a07438d3a3e05d21eb30d46f1688543d4327d36e07635396eaab4e9bc862ee9c7fa24de38c5cbf8fa5afd024116bc84854d01072145ecc4bb415d94a333e0d91e9cf6fda5a2c244a585e3a32c95398f44800c578faf4a2ccc5979664db7a55aa5cc02789f84321ccaeed4f37dd48c8d1484ade0588fc4255ec8780534a693e2bfe88b622034552084492c6757429239bbe8dad8b904e58007639ca773344040a441dc0027a46c22198f3d0b0588e164881a9fc7a85a63c459b0d002e3d890edd250742d363e85250badb91a734759baf773c32b177d36eefb662be70", 0x595)
sendto$inet(r0, &(0x7f00000000c0)="d6fcd38742637c1c9dc098c2630f3cad2242a698a139718e99dd19c7970bf686e9b4e23e5bf2251bd629e13fb1cb16a10124bb4f192d2556f8b4", 0x3a, 0x1f4, &(0x7f0000000180)={0x2, 0x0, @rand_addr}, 0xffffffffffffff66)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$VIDIOC_G_PRIORITY(r1, 0x80045643, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
ioctl$TIOCGPGRP(r1, 0x540f, &(0x7f0000000140)=<r3=>0x0)
fcntl$setown(r2, 0x8, r3)

08:51:40 executing program 0:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x1000, 0x401}, {}, 0x8, 0x1})
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffff9c, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x4, &(0x7f00000001c0)={<r1=>0xffffffffffffffff}, 0x2, 0x100b}}, 0x20)
write$RDMA_USER_CM_CMD_BIND_IP(0xffffffffffffffff, &(0x7f0000000240)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e22, 0x2, @dev={0xfe, 0x80, [], 0x15}, 0x9}, r1}}, 0x30)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
fsetxattr$trusted_overlay_redirect(r0, &(0x7f0000000000)='trusted.overlay.redirect\x00', &(0x7f0000000140)='./file0\x00', 0x8, 0x3)
dup2(r2, r0)
getsockopt$inet_tcp_int(r2, 0x6, 0x0, &(0x7f0000000180), &(0x7f0000000280)=0x4)

[  593.873942] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based  firewall rule not found. Use the iptables CT target to attach helpers instead.
08:51:41 executing program 2:
r0 = syz_open_dev$sndctrl(&(0x7f0000000080)='/dev/snd/controlC#\x00', 0x2, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105511, &(0x7f00000001c0)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'syz0\x00', &(0x7f0000000040)})

08:51:41 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(0xffffffffffffffff, 0xffffffffffffffb2, &(0x7f0000000040))
dup2(r2, r0)

08:51:41 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = getpgrp(0xffffffffffffffff)
process_vm_writev(r1, &(0x7f0000000400)=[{&(0x7f0000000100)=""/188, 0xbc}, {&(0x7f00000001c0)=""/85, 0x55}, {&(0x7f0000000240)=""/97, 0x61}, {&(0x7f00000002c0)=""/11, 0xb}, {&(0x7f0000000300)=""/77, 0x4d}, {&(0x7f0000000380)=""/85, 0x55}], 0x6, &(0x7f0000000500)=[{&(0x7f0000000480)=""/88, 0x58}], 0x1, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r2 = socket$inet(0x10, 0x3, 0xc)
sendmsg(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)
getsockopt(r0, 0xdb, 0x5, &(0x7f0000000540)=""/247, &(0x7f0000000640)=0xf7)

08:51:41 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
socket$inet(0x2, 0x80005, 0x6)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

08:51:41 executing program 0:
r0 = syz_open_dev$dri(&(0x7f0000000140)='/dev/dri/card#\x00', 0x3, 0x402000)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))

[  594.358770] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
08:51:41 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, &(0x7f0000000180)="2e65f32efe0a6766c7442400008000006766c7442402000000006766c744240600000000670f011c24b866000f00d066b88044a2b20f23c80f21f866350400d0000f23f80f0766b80500000066b9080000000f01c10f0766b8010000000f01c10f01dfb835008ee0", 0x68}], 0x1, 0x0, &(0x7f00000000c0), 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f00000000c0)=0x6002)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000100)="460f300f07c483614804ee08440f20c03506000000440f22c0c402f93473230f09f20f013cb9b805000000b9c00000000f01d90fc728c4c1f9e79f2e000000", 0x3f}], 0x1, 0x0, &(0x7f0000000200), 0x1)
ioctl$FS_IOC_GETFSMAP(r2, 0xc0c0583b, &(0x7f0000000940)=ANY=[@ANYBLOB="00000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d348000005000000f9fffffffffffffffb0000000000000001800000000000000600000000000000000000000000000000000000100000000000000000000000ff010000f8ffffff07000000000000000700000000000000ff070000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b2633e3b0000000000000000000000000000000000000000000000000000000000000000000000"])
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_bp={&(0x7f0000000440)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
accept4$vsock_stream(r1, &(0x7f0000000640)={0x28, 0x0, 0xffffffff}, 0x10, 0x0)
getpeername(0xffffffffffffffff, &(0x7f00000040c0)=@can, &(0x7f00000005c0)=0xb)

[  594.445239] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
08:51:41 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0x0, &(0x7f0000000040))
dup2(r2, r0)

08:51:41 executing program 2:
io_setup(0x5, &(0x7f0000000100))
r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x40, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setaffinity(0x0, 0x7, &(0x7f00000000c0))
r1 = getpid()
r2 = fcntl$dupfd(r0, 0x406, 0xffffffffffffffff)
sched_setattr(r1, &(0x7f00000002c0), 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_TCP_MD5SIG(r3, 0x6, 0xe, &(0x7f00000003c0)={@in6={{0xa, 0x0, 0x0, @loopback}}, 0x0, 0x8, 0x0, "a7cdd39773de2dd6a4045751e52c2f868aefaf53799dd2935273694c8dcf6f614c943663e67f9fc978831ffe20ba70f00200000000000000d2a100111f9b0a0388dc952e1a4d7e4bdf797aeb227900"}, 0xd8)
sendto$inet6(r3, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)
ioctl$EXT4_IOC_PRECACHE_EXTENTS(0xffffffffffffffff, 0x6612)
read(0xffffffffffffffff, &(0x7f00000000c0)=""/5, 0x5)
readv(0xffffffffffffffff, &(0x7f0000000200), 0x0)
r4 = creat(&(0x7f0000000280)='./file0\x00', 0x0)
ioctl$UI_SET_ABSBIT(0xffffffffffffffff, 0x40045567, 0x3)
fallocate(r4, 0x0, 0x0, 0x8200003)
sendmmsg(0xffffffffffffffff, &(0x7f0000001d80)=[{{&(0x7f0000000000)=@in6={0xa, 0x4e21, 0x0, @loopback}, 0x1c, &(0x7f0000000000), 0x0, &(0x7f0000000080)}}, {{&(0x7f0000000a80)=@un=@abs, 0x1, &(0x7f0000001bc0), 0x0, &(0x7f0000000040)}}], 0x2, 0x0)
accept$inet(r2, &(0x7f0000000080)={0x2, 0x0, @remote}, &(0x7f0000000100)=0x10)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/net/tun\x00', 0x2, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r5, 0x800c6613, &(0x7f0000000080)={0x0, @speck128, 0x0, "fc89d7b52c79f136"})
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000400)={"0000000000000000000000000200", 0x20000005001})
mmap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x0, 0x2000000000000032, 0xffffffffffffffff, 0x0)
socketpair(0x10, 0xa, 0x6, &(0x7f0000000000)={<r6=>0xffffffffffffffff})
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r6, 0x28, 0x1, &(0x7f0000000040)=0xffffffffffffffff, 0x8)

08:51:41 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$inet(0x10, 0x3, 0xc)
r2 = syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0x1, 0x0)
getsockname$packet(r2, &(0x7f0000000180)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @local}, &(0x7f00000001c0)=0x14)
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f0000000240)={<r4=>0x0, 0xa72, 0x5d}, &(0x7f0000000280)=0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f00000002c0)={r4, 0x7}, 0x8)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000200)={'vcan0\x00', r3})
ioctl$TUNSETSNDBUF(r2, 0x400454d4, &(0x7f0000000140)=0x2)
sendmsg(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)

08:51:42 executing program 0:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x80140, 0x0)
ioctl$TCFLSH(r1, 0x540b, 0x10001)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
ioctl$KDSETLED(r2, 0x4b32, 0x1)
dup2(r2, r0)

08:51:42 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0x0, &(0x7f0000000040))
dup2(r2, r0)

08:51:42 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
setsockopt$IP_VS_SO_SET_ADDDEST(r0, 0x0, 0x487, &(0x7f0000000080)={{0x2f, @local, 0x4e23, 0x3, 'none\x00', 0x26, 0x80, 0x2f}, {@rand_addr, 0x4e21, 0x12003, 0x100, 0xc7, 0xda2e}}, 0x44)

08:51:42 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0))
creat(&(0x7f0000000100)='./file0\x00', 0x40)
open(&(0x7f0000000140)='./file0\x00', 0x10000, 0x38)
pipe(&(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x13, &(0x7f00000001c0)={<r2=>0x0, 0x8}, &(0x7f0000000200)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000240)={r2, @in6={{0xa, 0x4e21, 0x9, @mcast1, 0x5}}, 0xe051, 0x400, 0x74894ba8, 0x68, 0x1}, 0x98)
r3 = socket$inet(0x10, 0x3, 0xc)
r4 = pkey_alloc(0x0, 0x3)
pkey_mprotect(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1, r4)
sendmsg(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)

[  595.347391] not chained 370000 origins
[  595.351337] CPU: 0 PID: 15796 Comm: syz-executor4 Not tainted 4.20.0-rc2+ #88
[  595.352331] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  595.352331] Call Trace:
[  595.352331]  dump_stack+0x32d/0x480
[  595.352331]  kmsan_internal_chain_origin+0x222/0x240
[  595.352331]  ? save_stack_trace+0xc6/0x110
[  595.352331]  ? __irqentry_text_end+0x1fa056/0x1fa056
[  595.352331]  ? kmsan_internal_chain_origin+0x90/0x240
[  595.352331]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  595.352331]  ? is_bpf_text_address+0x49e/0x4d0
[  595.352331]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  595.352331]  ? in_task_stack+0x12c/0x210
[  595.352331]  __msan_chain_origin+0x6d/0xb0
[  595.352331]  __save_stack_trace+0x833/0xc60
[  595.418882]  ? save_stack_trace+0xc6/0x110
[  595.418882]  save_stack_trace+0xc6/0x110
[  595.418882]  kmsan_internal_chain_origin+0x136/0x240
[  595.432365]  ? tcp_push_one+0x195/0x230
[  595.432365]  ? kmsan_internal_chain_origin+0x136/0x240
[  595.432365]  ? kmsan_memcpy_origins+0x13d/0x190
[  595.432365]  ? __msan_memcpy+0x6f/0x80
[  595.432365]  ? pskb_expand_head+0x436/0x1d20
[  595.432365]  ? iptunnel_handle_offloads+0x455/0x810
[  595.432365]  ? ipip_tunnel_xmit+0x15d/0x4a0
[  595.432365]  ? dev_hard_start_xmit+0x6dc/0xde0
[  595.432365]  ? __dev_queue_xmit+0x2d9e/0x3e00
[  595.432365]  ? dev_queue_xmit+0x4b/0x60
[  595.432365]  ? neigh_direct_output+0x42/0x50
[  595.432365]  ? ip_finish_output2+0x141a/0x1560
[  595.432365]  ? ip_finish_output+0xd93/0x10f0
[  595.432365]  ? ip_output+0x55c/0x630
[  595.432365]  ? __ip_queue_xmit+0x1bb5/0x2170
[  595.502460]  ? ip_queue_xmit+0xcc/0xf0
[  595.502460]  ? __tcp_transmit_skb+0x425c/0x5e00
[  595.502460]  ? tcp_write_xmit+0x389a/0xacc0
[  595.502460]  ? tcp_push_one+0x195/0x230
[  595.502460]  ? tcp_sendmsg_locked+0x456d/0x6c30
[  595.502460]  ? tcp_sendmsg+0xb2/0x100
[  595.502460]  ? inet_sendmsg+0x4e9/0x800
[  595.502460]  ? __sys_sendto+0x940/0xb80
[  595.534349]  ? __se_sys_sendto+0x107/0x130
[  595.534349]  ? __x64_sys_sendto+0x6e/0x90
[  595.534349]  ? do_syscall_64+0xcf/0x110
[  595.546025] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
[  595.534349]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  595.534349]  ? __kmalloc_node_track_caller+0x1010/0x14e0
[  595.534349]  ? __msan_get_context_state+0x9/0x20
[  595.534349]  ? INIT_INT+0xc/0x30
[  595.534349]  ? __kmalloc_node_track_caller+0x369/0x14e0
[  595.534349]  kmsan_memcpy_origins+0x13d/0x190
[  595.558514]  __msan_memcpy+0x6f/0x80
[  595.558514]  pskb_expand_head+0x436/0x1d20
[  595.558514]  iptunnel_handle_offloads+0x455/0x810
[  595.558514]  ipip_tunnel_xmit+0x15d/0x4a0
[  595.558514]  ? ipip_tunnel_init+0x240/0x240
[  595.558514]  dev_hard_start_xmit+0x6dc/0xde0
[  595.558514]  __dev_queue_xmit+0x2d9e/0x3e00
[  595.558514]  dev_queue_xmit+0x4b/0x60
[  595.558514]  neigh_direct_output+0x42/0x50
[  595.558514]  ? neigh_connected_output+0x700/0x700
[  595.558514]  ip_finish_output2+0x141a/0x1560
[  595.558514]  ip_finish_output+0xd93/0x10f0
[  595.558514]  ip_output+0x55c/0x630
[  595.558514]  ? ip_mc_finish_output+0x440/0x440
[  595.558514]  ? ip_finish_output+0x10f0/0x10f0
[  595.558514]  __ip_queue_xmit+0x1bb5/0x2170
[  595.558514]  ? kmsan_set_origin+0x7f/0x100
[  595.558514]  ip_queue_xmit+0xcc/0xf0
[  595.558514]  ? dst_hold_safe+0x5d0/0x5d0
[  595.558514]  __tcp_transmit_skb+0x425c/0x5e00
[  595.558514]  tcp_write_xmit+0x389a/0xacc0
[  595.558514]  tcp_push_one+0x195/0x230
[  595.558514]  tcp_sendmsg_locked+0x456d/0x6c30
[  595.558514]  ? kmsan_internal_unpoison_shadow+0x30/0xd0
[  595.558514]  tcp_sendmsg+0xb2/0x100
[  595.558514]  ? tcp_sendmsg_locked+0x6c30/0x6c30
[  595.558514]  inet_sendmsg+0x4e9/0x800
[  595.558514]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  595.558514]  ? security_socket_sendmsg+0x1bd/0x200
[  595.558514]  ? inet_getname+0x490/0x490
[  595.558514]  __sys_sendto+0x940/0xb80
[  595.558514]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  595.558514]  ? prepare_exit_to_usermode+0x182/0x4c0
[  595.558514]  __se_sys_sendto+0x107/0x130
[  595.558514]  __x64_sys_sendto+0x6e/0x90
[  595.558514]  do_syscall_64+0xcf/0x110
[  595.558514]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  595.558514] RIP: 0033:0x457569
[  595.558514] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  595.558514] RSP: 002b:00007fe2bd024c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  595.558514] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000457569
[  595.558514] RDX: 00000000fffffdef RSI: 00000000200003c0 RDI: 0000000000000003
[  595.558514] RBP: 000000000072bf00 R08: 00000000200001c0 R09: 0000000000000010
[  595.558514] R10: 00000000000001f4 R11: 0000000000000246 R12: 00007fe2bd0256d4
[  595.558514] R13: 00000000004c3c11 R14: 00000000004d5e80 R15: 00000000ffffffff
[  595.558514] Uninit was stored to memory at:
[  595.558514]  kmsan_internal_chain_origin+0x136/0x240
[  595.558514]  __msan_chain_origin+0x6d/0xb0
[  595.558514]  save_stack_trace+0xfa/0x110
[  595.558514]  kmsan_internal_chain_origin+0x136/0x240
[  595.558514]  kmsan_memcpy_origins+0x13d/0x190
[  595.558514]  __msan_memcpy+0x6f/0x80
[  595.558514]  pskb_expand_head+0x436/0x1d20
[  595.558514]  iptunnel_handle_offloads+0x455/0x810
[  595.558514]  ipip_tunnel_xmit+0x15d/0x4a0
[  595.558514]  dev_hard_start_xmit+0x6dc/0xde0
[  595.558514]  __dev_queue_xmit+0x2d9e/0x3e00
[  595.558514]  dev_queue_xmit+0x4b/0x60
[  595.558514]  neigh_direct_output+0x42/0x50
[  595.558514]  ip_finish_output2+0x141a/0x1560
[  595.558514]  ip_finish_output+0xd93/0x10f0
[  595.558514]  ip_output+0x55c/0x630
[  595.558514]  __ip_queue_xmit+0x1bb5/0x2170
[  595.558514]  ip_queue_xmit+0xcc/0xf0
[  595.558514]  __tcp_transmit_skb+0x425c/0x5e00
[  595.558514]  tcp_write_xmit+0x389a/0xacc0
[  595.558514]  tcp_push_one+0x195/0x230
[  595.558514]  tcp_sendmsg_locked+0x456d/0x6c30
[  595.558514]  tcp_sendmsg+0xb2/0x100
[  595.558514]  inet_sendmsg+0x4e9/0x800
[  595.558514]  __sys_sendto+0x940/0xb80
[  595.558514]  __se_sys_sendto+0x107/0x130
[  595.558514]  __x64_sys_sendto+0x6e/0x90
[  595.558514]  do_syscall_64+0xcf/0x110
[  595.558514]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  595.558514] 
[  595.558514] Uninit was stored to memory at:
[  595.558514]  kmsan_internal_chain_origin+0x136/0x240
[  595.558514]  __msan_chain_origin+0x6d/0xb0
[  595.558514]  __save_stack_trace+0x833/0xc60
[  595.558514]  save_stack_trace+0xc6/0x110
[  595.558514]  kmsan_internal_chain_origin+0x136/0x240
[  595.558514]  kmsan_memcpy_origins+0x13d/0x190
[  595.558514]  __msan_memcpy+0x6f/0x80
[  595.558514]  pskb_expand_head+0x436/0x1d20
[  595.558514]  iptunnel_handle_offloads+0x455/0x810
[  595.558514]  ipip_tunnel_xmit+0x15d/0x4a0
[  595.558514]  dev_hard_start_xmit+0x6dc/0xde0
[  595.558514]  __dev_queue_xmit+0x2d9e/0x3e00
[  595.558514]  dev_queue_xmit+0x4b/0x60
[  595.558514]  neigh_direct_output+0x42/0x50
[  595.558514]  ip_finish_output2+0x141a/0x1560
[  595.558514]  ip_finish_output+0xd93/0x10f0
[  595.558514]  ip_output+0x55c/0x630
[  595.558514]  __ip_queue_xmit+0x1bb5/0x2170
[  595.558514]  ip_queue_xmit+0xcc/0xf0
[  595.558514]  __tcp_transmit_skb+0x425c/0x5e00
[  595.558514]  tcp_write_xmit+0x389a/0xacc0
[  595.558514]  tcp_push_one+0x195/0x230
[  595.558514]  tcp_sendmsg_locked+0x456d/0x6c30
[  595.558514]  tcp_sendmsg+0xb2/0x100
[  595.558514]  inet_sendmsg+0x4e9/0x800
[  595.558514]  __sys_sendto+0x940/0xb80
[  595.558514]  __se_sys_sendto+0x107/0x130
[  595.558514]  __x64_sys_sendto+0x6e/0x90
[  595.558514]  do_syscall_64+0xcf/0x110
[  595.558514]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  595.558514] 
[  595.558514] Uninit was stored to memory at:
[  595.558514]  kmsan_internal_chain_origin+0x136/0x240
[  595.558514]  __msan_chain_origin+0x6d/0xb0
[  595.558514]  save_stack_trace+0xfa/0x110
[  595.558514]  kmsan_internal_chain_origin+0x136/0x240
[  595.558514]  kmsan_memcpy_origins+0x13d/0x190
[  595.558514]  __msan_memcpy+0x6f/0x80
[  595.558514]  pskb_expand_head+0x436/0x1d20
[  595.558514]  iptunnel_handle_offloads+0x455/0x810
[  595.558514]  ipip_tunnel_xmit+0x15d/0x4a0
[  595.558514]  dev_hard_start_xmit+0x6dc/0xde0
[  595.558514]  __dev_queue_xmit+0x2d9e/0x3e00
[  595.558514]  dev_queue_xmit+0x4b/0x60
[  595.558514]  neigh_direct_output+0x42/0x50
[  595.558514]  ip_finish_output2+0x141a/0x1560
[  595.558514]  ip_finish_output+0xd93/0x10f0
[  595.558514]  ip_output+0x55c/0x630
[  595.558514]  __ip_queue_xmit+0x1bb5/0x2170
[  595.558514]  ip_queue_xmit+0xcc/0xf0
[  595.558514]  __tcp_transmit_skb+0x425c/0x5e00
[  595.558514]  tcp_write_xmit+0x389a/0xacc0
[  595.558514]  tcp_push_one+0x195/0x230
[  595.558514]  tcp_sendmsg_locked+0x456d/0x6c30
[  595.558514]  tcp_sendmsg+0xb2/0x100
[  595.558514]  inet_sendmsg+0x4e9/0x800
[  595.558514]  __sys_sendto+0x940/0xb80
[  595.558514]  __se_sys_sendto+0x107/0x130
[  595.558514]  __x64_sys_sendto+0x6e/0x90
[  595.558514]  do_syscall_64+0xcf/0x110
[  595.558514]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  595.558514] 
[  595.558514] Uninit was stored to memory at:
[  595.558514]  kmsan_internal_chain_origin+0x136/0x240
[  595.558514]  __msan_chain_origin+0x6d/0xb0
[  595.558514]  __save_stack_trace+0x833/0xc60
[  595.558514]  save_stack_trace+0xc6/0x110
[  595.558514]  kmsan_internal_chain_origin+0x136/0x240
[  595.558514]  kmsan_memcpy_origins+0x13d/0x190
[  595.558514]  __msan_memcpy+0x6f/0x80
[  595.558514]  pskb_expand_head+0x436/0x1d20
[  595.558514]  iptunnel_handle_offloads+0x455/0x810
[  595.558514]  ipip_tunnel_xmit+0x15d/0x4a0
[  595.558514]  dev_hard_start_xmit+0x6dc/0xde0
[  595.558514]  __dev_queue_xmit+0x2d9e/0x3e00
[  595.558514]  dev_queue_xmit+0x4b/0x60
[  595.558514]  neigh_direct_output+0x42/0x50
[  595.558514]  ip_finish_output2+0x141a/0x1560
[  595.558514]  ip_finish_output+0xd93/0x10f0
[  595.558514]  ip_output+0x55c/0x630
[  595.558514]  __ip_queue_xmit+0x1bb5/0x2170
[  595.558514]  ip_queue_xmit+0xcc/0xf0
[  595.558514]  __tcp_transmit_skb+0x425c/0x5e00
[  595.558514]  tcp_write_xmit+0x389a/0xacc0
[  595.558514]  tcp_push_one+0x195/0x230
[  595.558514]  tcp_sendmsg_locked+0x456d/0x6c30
[  595.558514]  tcp_sendmsg+0xb2/0x100
[  595.558514]  inet_sendmsg+0x4e9/0x800
[  595.558514]  __sys_sendto+0x940/0xb80
[  595.558514]  __se_sys_sendto+0x107/0x130
[  595.558514]  __x64_sys_sendto+0x6e/0x90
[  595.558514]  do_syscall_64+0xcf/0x110
[  595.558514]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  595.558514] 
[  595.558514] Uninit was stored to memory at:
[  595.558514]  kmsan_internal_chain_origin+0x136/0x240
[  595.558514]  __msan_chain_origin+0x6d/0xb0
[  595.558514]  save_stack_trace+0xfa/0x110
[  595.558514]  kmsan_internal_chain_origin+0x136/0x240
[  595.558514]  kmsan_memcpy_origins+0x13d/0x190
[  595.558514]  __msan_memcpy+0x6f/0x80
[  595.558514]  pskb_expand_head+0x436/0x1d20
[  595.558514]  iptunnel_handle_offloads+0x455/0x810
[  595.558514]  ipip_tunnel_xmit+0x15d/0x4a0
[  595.558514]  dev_hard_start_xmit+0x6dc/0xde0
[  595.558514]  __dev_queue_xmit+0x2d9e/0x3e00
[  595.558514]  dev_queue_xmit+0x4b/0x60
[  595.558514]  neigh_direct_output+0x42/0x50
[  595.558514]  ip_finish_output2+0x141a/0x1560
[  595.558514]  ip_finish_output+0xd93/0x10f0
[  595.558514]  ip_output+0x55c/0x630
[  595.558514]  __ip_queue_xmit+0x1bb5/0x2170
[  595.558514]  ip_queue_xmit+0xcc/0xf0
[  595.558514]  __tcp_transmit_skb+0x425c/0x5e00
[  595.558514]  tcp_write_xmit+0x389a/0xacc0
[  595.558514]  tcp_push_one+0x195/0x230
[  595.558514]  tcp_sendmsg_locked+0x456d/0x6c30
[  595.558514]  tcp_sendmsg+0xb2/0x100
[  595.558514]  inet_sendmsg+0x4e9/0x800
[  595.558514]  __sys_sendto+0x940/0xb80
[  595.558514]  __se_sys_sendto+0x107/0x130
[  595.558514]  __x64_sys_sendto+0x6e/0x90
[  595.558514]  do_syscall_64+0xcf/0x110
[  595.558514]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  595.558514] 
[  595.558514] Uninit was stored to memory at:
[  595.558514]  kmsan_internal_chain_origin+0x136/0x240
[  595.558514]  __msan_chain_origin+0x6d/0xb0
[  595.558514]  __save_stack_trace+0x833/0xc60
[  595.558514]  save_stack_trace+0xc6/0x110
[  595.558514]  kmsan_internal_chain_origin+0x136/0x240
[  595.558514]  kmsan_memcpy_origins+0x13d/0x190
[  595.558514]  __msan_memcpy+0x6f/0x80
[  595.558514]  pskb_expand_head+0x436/0x1d20
[  595.558514]  iptunnel_handle_offloads+0x455/0x810
[  595.558514]  ipip_tunnel_xmit+0x15d/0x4a0
[  595.558514]  dev_hard_start_xmit+0x6dc/0xde0
[  595.558514]  __dev_queue_xmit+0x2d9e/0x3e00
[  595.558514]  dev_queue_xmit+0x4b/0x60
[  595.558514]  neigh_direct_output+0x42/0x50
[  595.558514]  ip_finish_output2+0x141a/0x1560
[  595.558514]  ip_finish_output+0xd93/0x10f0
[  595.558514]  ip_output+0x55c/0x630
[  595.558514]  __ip_queue_xmit+0x1bb5/0x2170
[  595.558514]  ip_queue_xmit+0xcc/0xf0
[  595.558514]  __tcp_transmit_skb+0x425c/0x5e00
[  595.558514]  tcp_write_xmit+0x389a/0xacc0
[  595.558514]  tcp_push_one+0x195/0x230
[  595.558514]  tcp_sendmsg_locked+0x456d/0x6c30
[  595.558514]  tcp_sendmsg+0xb2/0x100
[  595.558514]  inet_sendmsg+0x4e9/0x800
[  595.558514]  __sys_sendto+0x940/0xb80
[  595.558514]  __se_sys_sendto+0x107/0x130
[  595.558514]  __x64_sys_sendto+0x6e/0x90
[  595.558514]  do_syscall_64+0xcf/0x110
[  595.558514]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  595.558514] 
[  595.558514] Uninit was stored to memory at:
[  595.558514]  kmsan_internal_chain_origin+0x136/0x240
[  595.558514]  __msan_chain_origin+0x6d/0xb0
[  595.558514]  save_stack_trace+0xfa/0x110
[  595.558514]  kmsan_internal_chain_origin+0x136/0x240
[  595.558514]  kmsan_memcpy_origins+0x13d/0x190
[  595.558514]  __msan_memcpy+0x6f/0x80
[  595.558514]  pskb_expand_head+0x436/0x1d20
[  595.558514]  iptunnel_handle_offloads+0x455/0x810
[  595.558514]  ipip_tunnel_xmit+0x15d/0x4a0
[  595.558514]  dev_hard_start_xmit+0x6dc/0xde0
[  595.558514]  __dev_queue_xmit+0x2d9e/0x3e00
[  595.558514]  dev_queue_xmit+0x4b/0x60
[  595.558514]  neigh_direct_output+0x42/0x50
[  595.558514]  ip_finish_output2+0x141a/0x1560
[  595.558514]  ip_finish_output+0xd93/0x10f0
[  595.558514]  ip_output+0x55c/0x630
[  595.558514]  __ip_queue_xmit+0x1bb5/0x2170
[  595.558514]  ip_queue_xmit+0xcc/0xf0
[  595.558514]  __tcp_transmit_skb+0x425c/0x5e00
[  595.558514]  tcp_write_xmit+0x389a/0xacc0
[  595.558514]  tcp_push_one+0x195/0x230
[  595.558514]  tcp_sendmsg_locked+0x456d/0x6c30
[  595.558514]  tcp_sendmsg+0xb2/0x100
[  595.558514]  inet_sendmsg+0x4e9/0x800
[  595.558514]  __sys_sendto+0x940/0xb80
[  595.558514]  __se_sys_sendto+0x107/0x130
[  595.558514]  __x64_sys_sendto+0x6e/0x90
[  595.558514]  do_syscall_64+0xcf/0x110
[  595.558514]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  595.558514] 
[  595.558514] Local variable description: ----_tcph.i@ip_vs_in
[  595.558514] Variable was created at:
[  595.558514]  ip_vs_in+0xe9/0x3250
[  595.558514]  ip_vs_local_request4+0xec/0x130
08:51:43 executing program 0:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
readv(r0, &(0x7f00000015c0)=[{&(0x7f0000000000)=""/22, 0x16}, {&(0x7f0000000140)=""/27, 0x1b}, {&(0x7f0000000180)=""/44, 0x2c}, {&(0x7f00000001c0)=""/254, 0xfe}, {&(0x7f00000002c0)=""/3, 0x3}, {&(0x7f0000000300)=""/162, 0xa2}, {&(0x7f00000003c0)=""/4096, 0x1000}, {&(0x7f00000013c0)=""/121, 0x79}, {&(0x7f0000001440)=""/224, 0xe0}, {&(0x7f0000001540)=""/128, 0x80}], 0xa)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
dup2(r1, r0)

08:51:43 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0x0, &(0x7f0000000040))
dup2(r2, r0)

[  596.837615] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
08:51:44 executing program 3:
r0 = semget$private(0x0, 0x0, 0x200)
semctl$GETPID(r0, 0x2, 0xb, &(0x7f0000000100)=""/152)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = socket$inet(0x10, 0x3, 0xc)
sendmsg(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)

08:51:44 executing program 5:

08:51:44 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
dup2(0xffffffffffffffff, r0)

[  597.237153] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
08:51:44 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = socket$inet(0x10, 0x3, 0xc)
sendmsg(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)
getsockname$unix(r0, &(0x7f0000000100)=@abs, &(0x7f0000000180)=0x6e)

[  597.526728] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
[  597.551780] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
[  597.621063] IPVS: set_ctl: invalid protocol: 47 172.20.20.170:20003
08:51:44 executing program 2:
fcntl$dupfd(0xffffffffffffff9c, 0x406, 0xffffffffffffffff)
accept$packet(0xffffffffffffffff, &(0x7f00000002c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000300)=0x14)
setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000340)={0x0, 0x1, 0x6, @remote}, 0x10)
getrusage(0x0, &(0x7f0000000840))
ioctl$KDGKBDIACR(0xffffffffffffffff, 0x4b4a, &(0x7f00000000c0)=""/211)
timer_delete(0x0)
r0 = socket$inet(0x2, 0x0, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$int_in(r0, 0x5452, &(0x7f00000006c0)=0x3)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='clear_refs\x00')
r2 = syz_open_procfs(0x0, &(0x7f0000000440)='stat\x00')
sendfile(r1, r2, &(0x7f0000000080), 0x1)
setsockopt$inet_tcp_int(r0, 0x6, 0x19, &(0x7f0000000100)=0x2, 0x4)

08:51:44 executing program 5:
r0 = socket$alg(0x26, 0x5, 0x0)
accept4$alg(0xffffffffffffffff, 0x0, 0x0, 0x0)
bind$alg(r0, &(0x7f0000000140)={0x26, 'skcipher\x00', 0x0, 0x0, 'chacha20-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="b7f2288a9119939144bcc0b83111d8ad4e211c2cf0265df5cf1cdd8b55b06295", 0x20)
r1 = accept$alg(r0, 0x0, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
recvmsg(r1, &(0x7f0000001480)={0x0, 0x0, &(0x7f00000013c0)=[{&(0x7f00000002c0)=""/4096, 0x34000}], 0x1, &(0x7f0000001400)=""/123, 0x7b}, 0x0)
ioctl$sock_inet6_SIOCSIFDSTADDR(0xffffffffffffffff, 0x8918, &(0x7f00000000c0)={@loopback})

08:51:44 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
dup2(r2, 0xffffffffffffffff)

08:51:44 executing program 3:
socketpair$unix(0x1, 0xfffffffffffffffe, 0x0, &(0x7f0000000180))
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff, 0x0, 0x6, &(0x7f0000000140)='icmp6\x00', 0xffffffffffffffff}, 0x30)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x20)
r1 = socket$inet(0x10, 0x3, 0xc)
getsockopt$ARPT_SO_GET_REVISION_TARGET(r1, 0x0, 0x63, &(0x7f0000000100)={'icmp6\x00'}, &(0x7f00000000c0)=0xfffffffffffffcec)
sendmsg(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)

[  597.924061] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
08:51:45 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
r1 = perf_event_open(&(0x7f0000000080)={0x4, 0x70, 0x1, 0x3, 0x2, 0x7fffffff, 0x0, 0xffffffff, 0x10000, 0x8, 0x6, 0x1, 0x0, 0xffffffff00000000, 0x0, 0x10000, 0x2, 0x8, 0x400, 0x4f, 0x51d1, 0x9, 0x6, 0xfffffffffffffffb, 0xfffffffffffffffd, 0x1f, 0x8001, 0x5c6d16fd, 0x7, 0x2ab0, 0x2508b055, 0x8, 0x2, 0x7, 0x7fffffff, 0x8, 0x7, 0x3ff, 0x0, 0x8, 0x0, @perf_config_ext={0x2, 0x18000000}, 0xb5, 0x4, 0x80000001, 0x9, 0x1, 0x0, 0xffa}, 0xffffffffffffffff, 0x5, r0, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0)

08:51:45 executing program 0:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
socket$inet6(0xa, 0x800, 0xfa0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0x8ab0, &(0x7f0000000000)="d39e9aa3bf65e0d56f97cbc70f7c61e0188b06efcbb71112d0ffffff7f509c80f89fd3c5202f745089d181249250ce09186a810000004c28a92a1d")
dup2(r1, r0)

08:51:45 executing program 1:
r0 = socket$inet6(0xa, 0x80001, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x2a, &(0x7f0000fca000)={0x100000001, {{0xa, 0x0, 0x0, @mcast1}}}, 0x88)
setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f0000000240)={0x1, {{0xa, 0x0, 0x0, @mcast1}}}, 0x90)

08:51:45 executing program 3:
r0 = syz_open_dev$radio(&(0x7f0000000180)='/dev/radio#\x00', 0x0, 0x2)
ioctl$VIDIOC_RESERVED(r0, 0x5601, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x96)
r2 = socket$inet(0x10, 0x3, 0xc)
sendmsg(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100), 0x1000000000000091, 0x0, 0xffffffffffffffc3}, 0x0)
socketpair(0x3, 0x6, 0x4, &(0x7f0000000080))
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000240)}}, 0x20)

08:51:45 executing program 0:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
pwritev(r1, &(0x7f00000003c0)=[{&(0x7f0000000140)="ee48e6e846e47afc32acf988687b3466b2257e73d30d76a2f5094084fcf7877230171bade2cdbcba129d0f26a4c7c779c98a6b8dba6c5b00e70a1228bf3ae150014e8530a273270d1555fc2292dbcd3e", 0x50}, {&(0x7f00000001c0)="83a7e6b59cf80dd4b6441aa04847a65295f833bcd54e0ed8858ec0a273da812011acc41ecd540a607080d19eaaf771a13e6721797b7638129e75f891649ca34bb982e0612bb84c15705d02c6120593a439030e5fa703091e2d356dfaa2da13d552266332c48d07e4601d384d17387286c8feaa24ee0c0191cfecef388d6de4fda762c5aedfd351a21569c538e230dd4f46bb625356f8876e046ebaec61d4aa6467ea5daaa29f2d37b6ed664e907704562e25c0345df5be2413332f6e9fcc9a480356f7a61e4295490fed924dfb4d25fdfde48bbfcce71cc4bca875a596121272bc538f14f41f7012", 0xe8}, {&(0x7f00000002c0)="c0c4f21335f6edcf8d523d00dcea2ef81b036bd43e5278eb73dd44b0768608f8c5c0316dfe6125f4ad4532ab9e1fc7b2ad3a7272ccf0d74b24bc0578cfd5d9e1ac697cbb22316b9f99fb08cd457b57c66c71060eccfefa59ce8a85a13fbb3c9c2f47e800a556729840944738bd41753800", 0x71}, {&(0x7f0000000000)="450cdb421364367c82", 0x9}, {&(0x7f0000000340)="d28f23807f6942f2a983412dbda0f529f7c08b39e1", 0x15}, {&(0x7f0000000380)}], 0x6, 0x0)
dup2(r1, r0)

08:51:45 executing program 1:
perf_event_open(&(0x7f0000000140)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000200)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000240)="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", 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000500)='cgroup.procs\x00', 0x2, 0x0)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup/syz1\x00', 0x200002, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f0000000140)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r3, &(0x7f0000000040), 0x9b)
write$cgroup_pid(r1, &(0x7f0000000000), 0x17f)

08:51:45 executing program 2:
r0 = open(&(0x7f00000000c0)='./file0\x00', 0x40c2, 0x0)
write(r0, &(0x7f0000000600)="bb8f9f640903127a53527c6fbfe65d43b0e0586f2d40c7e7df58cac83420e83662d6e39bb6d5430622431454eedeeaee423d8f210bc3525fa7927c18d5fbc91ab13c2041136047d8da9375934d00f325499bfe7712208d387d41c31821c2a22d1325b556528e9b790b74053d1ed631c6ec8126d37c87216173138c00cef396868029af5b76bebac5e38b74d8bbc6ae66b6e202b6d505710377710ea7d43edf00e1a4c1c670bb4c263ce777da81abdd5ba5a5c82f67232f9b4d6f21b2e6afa8b38e4642b0daa2acbc0478d89b88e8b2094d4248855e5e81992e60be3afff0f3c3799350615489a901a659abdeca0c615a622ebf64175f990320e0356d4a11ed62eff72b709c23dd65942e8b534d7d775d370c1e435654a2634e6ee3649c4c3bcbe39e866f1eb9972af1a9cef42e701798a53dc92a242aadbac343e1765cf8ea5665e22deda69777e52b1e9e5d3edc022256939e1eee013448294911139d5b9c6241049fecdf9b31f4cdf6cff65d71b5071ef70e1798347c8846aa5b905e83050e3e606986ed3f603d18c5cdeb11cda1ce3abddea9376231af130e19fc7601ec1ab8cb5a7de9e2174547f18225b09a54fc8720dbb91eb69c1be88e601c3c9df4f2758f39a5151951b9c6dbb419ffd783a34c9fad10f201b8724d31865e2fc1fcf48db2be713053b43a0e3943c1e2b08e8a26e946c439d891db2a80b5ffa054bc8d0177d3214056250c61a537d2ec7630fb90395df2cd6aa9c5e573365db580520bdc3f1c6b2be992e1516a4b810a11935dc780699e461d9715f70c6d103ff49bf168f3cff4c0d0d6ba5671fcd2975450b0e1a3474139cb0f2d3476fcd87a8bccbeb2f5f8a821017b879aa5b9d1fafa9f4c429a74cd2da782114d97bf031746a817dd0293c4eddc3a9ecb5afe496f4971474ccd827449409f07cf94dda2e7dbe8520b5afff10a7e3b0b4289a167fc692635b5b7426d9e771b95860b09a3e752c867213c772e48ba30a78feecc7ff26e63e1749c62b52d377ac5cc52db830c965e04ccfcfb24ceacc69cfdc2094124dd27b2d68f699476a2562bab1de117ffc2b0702ee8b0b77f85fecec3a25b37ab7eb06232c9a73b4470f1727c82581d81942abf42d3ea37957927ad3dbd0ebe46678a9f4d25c47acaac83c14210a54b71fed40df017e2be27f01e3e6ea3ea381ca14efd202858e6535ad4f79a8cdf47e385b740a70c14e3651731a45cc0ca4a56f2e903cad0384efcc364caf67e09551d35c682ebc90a9286c4d274ba1b8ced742ede4e55a62db7ef9a96fde2add05b41599fd72a79ba280cc125cb266ef21b7eeafe3ee6aa78eeef56fdd154549c3ec298cb683a55a32208cf6ce88b560166159d59e65f30540f62c5437652ea7f2a02f87ca242dd2250f58e75938a9a3ded51ae6598c2aba53287ff5cdaab17be7f4310f8e07e310d52778de79e1c2e4391b254be38910aa1cf6e1ca0e75d24be97d59f7025f16c6fbd549529b74e319c58f50438765ef0e3dc394eeb75dec41b3d80435b17520c97f5cd7ee692fb86d188fb0089fbf737dc1b96b9cc49be23a38a8cd92e5075f349993d7866369dd25eccbe1481477a05fee14e0edd1617921d7fcaa8fdc642e63b64388fa5b63442ff1466b19317b28f5872bcf9e77b5f1f038d02546750b01ed9c980282ccbe10f204741249aed88c555ed6fdf7f68af9209807a71bbf4f31bef5a4223466da74ba8b034df529aef6ec6610a0d25973961e50e02af22d0ca8be1b9804a5918acbdb536e8f2f441ec9d640ed15133ee747440c86fc4526c9195954528673d25c8390170f3c19cb0b0c30b9e634c7ebae96946ae97c19eabca92226da925d22be37abbe0740938ea899ec42fd529a3b1063981e4c154219df5cf5af60a29b5a8ee530905725a14b28900eae937e705401ba8f632a7bca00d9724a992afdc9ed14aac71b8e3a7ee5ca095888feb195b4e083c3b611a1c2f8d092febe3b9f5f0df61e8d3c31a643c935b76bc1ad4265164e755484beb06610510bc51e8c6da8d71123bbe83a5e4128f41cf5c486d6a60496c300c406f990bee485cbdef794f2663ee66d2b18d8e55210c25c04b1a0c6d9c5f904e72806d2d4f5e5439bcdf146343cdffe4d0d70d42a9959cff9bd50c37cd478b0b0add16aae4dc839b46bca2ac7547144b6a422aed5e2db661bcb31a82bc0fc678e71a6cb090ef772860f3008b4152b5d281033be4a77b367baec3ab8ce7c83c601b11c8199bafcd15161a5454a6a982dbc3c2e3a5172b6a63e4904817075754eccbb0188c9cb2e5da9600f567485014887463b40f189b7ec3c5c0f36d502509e402c285765c78417ce6b3aab130ee79622dcd8ada842233e73a14554ee5e4995e32b3fe4075e247eb9bdeef64d1a7436c9b5782fb2f84f74e4c6e976289729c37b5bb8200a9480d181a6b11f5ec229b818134b8334967ae935ac1d81be4776fae4cb68b6fa330e93bd8de388b38455d569159bcd166df030a6dfedf28caf4608de7243f5df2c76f6680c301d819dc67d24d2f780432a931700a253b0a5b075195c6dbfd1fe17a1c11a3dffa872a07b877adc66d069fffb6d8326e1998c5a337c3d530250cae335ceffcf81dc438a47e73490d050a053813dbe6674e42c91ae94b4a88144f36adc1b08b4bcd6ddf4058c4e08d4dc83d5fbd843ee27eaf50b297c220350260d9abbeeb6deb921e50cae0ea590cfb6f00fb3c71520f565bb769705e2481ef27cf537d29f163c9fe3d39ed9fd18dc8b0c976cd302283e430807a9d751357f89092532d89fe280c69ad36e3541b5da9dea13fd19d0434c760fe295dfd9b9e63453c7853914c50b1b77ccd4b33c8b1f31fcb1aec040ffe2f9d728d8ea84297bac2e22230ebd1488c503b05b2e433cc37ce9fc123b7d3eb244b4549e9a841e73b664c8f6621ea5a4c9ff9c1da032255311f2c063a682baf4c97e7ba552bf71af4bd64f43872b846d15c65c487089be272cfa24a33f8c50930ea0bc4b089505fb8e9e688d35a978813c38add66548d7575727ded0e7e64a5ce897da6b940df4c3dddb8b4871d773f6ebf02058518c55c19aadb0f266caf18777ae68d2bfcfb2225961fcd10538ba664fd053a443320072707533ab761b9397bd0559126b84fe9196463ae50633017ea2d80940311d9c867102b1017f34af1965d8eb61be616a0d40656e2bbb750aee6f74f788c8acb2578e8686f5f8da6a19e979c152b7ee7c7f16902120588e2ff630144b5f929ffc593e946d9717c5968aa16c2d73d689fb5cce117acda3e23e5e0116de1cb6bddfa1a84cefb22c1e2c3753017696f27b9aec5d44f15411247643b84dd4410e784b4eb5b9c68fea671976f9b51c6526e2ddb40659611b0b3bcc7e249c77396fdb8c864ea9318f9de7fd3936fcbdc732c2f8b9556ec9afeb15d5e2df890351d66074d53dddc6e8dba8c91d733623ac95a49eb69c7de37ff2364ccddb01f6500750a012c2acf32a9f6bbd9e92d17ef858fbc34575db414ea42ad87a65b11ae5506469db256c421328f45aec73bdf18562447dc2840bbe9fc84dedd0fe6276fa174f21210d40193530ec7a70a9e60bfd6b00cba4d483be59950f16fa0dbd089b5fd0bb078badfcf42270cc62fe37be22b0d81f755263d74636fa466d2574ca62b58c649936d21e949de73ea45df3acade6609413f56fc218d6f11947bf1fd629d38d8acce90ee3c1a51117601ae126bec537e3e76ce7ecc53cfeefee8aaa104aa853a65aadf27bac9849ee0122793b11cd8e4f32fb07afa39e439cb738c30a6df958160aac15c26032a61aaf614b2e6601581fb0ab8d115e045005dee3df8ea42643cbcbb0b111130c42c94b7e874cfee50d5c2eb13b3a38c417fce9d740b7d43120431a7d44bc3934ee87b112401cbee3553837b6a0b4b3faaceb46eca4064301c8060870350e256ac9d5557f674536b9d9717a82fa211e7dfb52ca410d8a4f2f6b733c2a082f247538a6c40f56cf64204e62515db692f32733ff6f4b0787ef305d5e80881375467ae603ac3600e688c42f89a4fea4fdda09a8d59e19457c654a98c8129a8c65bae3310af2b170729e18400c915d0a2f4c4fc51747846630b95ec181228bda7ef48ad389815aa82de6c4a3b0746c28c01f9ec697ff17f095e1cf9d2fe78fdab9cbb1ca7aefc8af6a0cd98444735fad79e394a8f9c2fd358c3cde4ca6d57a620d0bb52dc6ff93f034b596f407c21511cc2c5ec8b0ede7f5c0acca61939ac7f2cad820c15133e69507eaa739e9a88936f4a74f0ad1574a1591f31f582a76157d89805cb3ba5e8d10509bf7a08e928653b4f05ba797a06765b74c8759fc34178624c08a2b99e59bcff5d33af2b0f9176b56c35f4da31c751a4c2fd88a1997cd9fc9bbf78220731d4c8cea23be1fd29c36b34d8458b7021ebcfafdc7e54096e517da3eb684298f742532d776164d9c9658e5faca0a3b08afca1bc27ed357884f49fe51bd0c38057f4288f1917e36e3865310b5eed140aef6150ae363293cf7467abd5e06cd7af5e2c49e7c5253a1155741e380bccb023a0faed93d9a64512d72436f1ef4ac0904a413e45164c23413bd57274a0a951c41a9a43aed094d4ea5c480ce64663cc9d36723179e2b19a48e9277a6591bbd888a06e0f2f142cd4495be4ba7274d69ba32a2788b935b2f18c5f336cb9de062829e2e0bb476efb36c3f53a766c14314f31637a464ac59d378ad7f51bef8d88715613653a427038e0d3e4dc3948bb1d70eb55c91c92f7510b1c0387253b458d2c90d17238f9eb239c680179a6c1e0759be367963e3b4d7395fd3911626582a094e6a8d0e746242f94267a4c57d5b2360ce3a6f7f3e3c10e124a54ed24d1585bc7b731cf731c94ee00ebf070b999b9bf28d76bfec6b943b5f39e9151a764ba1cd0cd6c1c7cdc3aa824cf17da705be27a18fbee41be39d6ae4dd4312f5f4bfee2c5bb21d941666f9d79b0f80c9b1bace84a05d2b0e3be1c3fd04d72b4b0124595c435813969d413960fddc858730a433383f3bc0472cb7683ea569e001f49338003280cba762268e62b14b7ae78571512fc3b589f402db1c08513f0ded6e40a03a29efca39bafbf63e3e4b60fd268675326ae396833e48daee94e887af86d74dc202b0681331461d67bf873f30dc4cd3dc8ab7c59f0a259c30a06b0ec37d7759c5d6b073b3feea2a72e1af5503e259d30b98dc98d67d3354bb9f06b63a78e235189e3497a62f98bfa9e165775ec29af5ca492de44304ac33aaea65b45383b33376830b4b206bdfb97e36afff62b71c9487b7d6d0fcd07d8dc654bbc4d52f550825f34ccb1c1162dfe3d66eb159d98b130ee24a936e431c8c04bb0e28bdb0f8358be2b72aa5f42eb66279573adc6058764ced002325c0acf0029e9840d6a4b2e7924733d7d94bd0db5c901a3c1415a1ea6f4a4d15d7f91bdac94fca88c98d5a022f8439f253d76a0e23968c48b26c00c84683359d42c3c1ecf93f7118a582e4d21c59b85d50c5e0b16681f017a0658a0e195fe322fab16f51d1eeaf4a9b702ff44a9dcddcc8b531ca00dcfa3e8770ecc918bebf379925253ddea9e53d6232202d77974aa3978bd9d51ddb1417780aa16498dce71760b346bc4f38939f3deeda2551e84087a2797e00175fb1af143724d969cead04999af8ee2de0799941ca5be211d2eb379f274fecbbf2659cf97a7e27453b88f9369f2e6a01ad155ec008d086acaa7e3d20d4f2f929d3cdfaf6e95d4c8a4000000000000000000000000", 0x1000)
fallocate(0xffffffffffffffff, 0x3, 0x0, 0x2cbd)
ioctl$TCSETSF(0xffffffffffffffff, 0x5404, &(0x7f0000000000)={0x1634, 0x20, 0x2, 0xefd3, 0x1, 0x7ff, 0xb4b, 0x8, 0xfffffffffffffff8, 0x2a, 0x10000, 0x9})
fallocate(r0, 0x0, 0x0, 0x10000)

08:51:45 executing program 4:
r0 = socket$inet(0x2, 0x80001, 0x5)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

08:51:45 executing program 0:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000000000)={0x0, 0x9f, 0x73})
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
syz_emit_ethernet(0x5a, &(0x7f0000000140)={@link_local, @empty, [{[], {0x8100, 0x2, 0x4, 0x3}}], {@canfd={0xd, {{0x3, 0x7, 0x565, 0x9}, 0x34, 0x3, 0x0, 0x0, "08f5962e969cfe319162410dfd863f6e02844c0edf9348094b52bd8437f3e8a68a3d38df023c5e78e6afe1d26e9c96a34f73309b164e24dd528d1faebd930636"}}}}, &(0x7f00000001c0)={0x0, 0x3, [0x750, 0x97d, 0x407, 0x74f]})
dup2(r1, r0)

08:51:46 executing program 5:
r0 = socket$alg(0x26, 0x5, 0x0)
accept4$alg(0xffffffffffffffff, 0x0, 0x0, 0x0)
bind$alg(r0, &(0x7f0000000140)={0x26, 'skcipher\x00', 0x0, 0x0, 'chacha20-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="b7f2288a9119939144bcc0b83111d8ad4e211c2cf0265df5cf1cdd8b55b06295", 0x20)
r1 = accept$alg(r0, 0x0, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
recvmsg(r1, &(0x7f0000001480)={0x0, 0x0, &(0x7f00000013c0)=[{&(0x7f00000002c0)=""/4096, 0x34000}], 0x1, &(0x7f0000001400)=""/123, 0x7b}, 0x0)
ioctl$sock_inet6_SIOCSIFDSTADDR(0xffffffffffffffff, 0x8918, &(0x7f00000000c0)={@loopback})

08:51:46 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$rtc(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/rtc0\x00', 0x101104, 0x0)
ioctl$DRM_IOCTL_RES_CTX(r1, 0xc0106426, &(0x7f0000000180)={0x2, &(0x7f0000000140)=[{}, {}]})
r2 = socket$inet(0x10, 0x3, 0xc)
sendmsg(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)
setsockopt$inet6_MRT6_ADD_MIF(r1, 0x29, 0xca, &(0x7f00000001c0)={0x35, 0x1, 0x80000001, 0xfffffffffffffffb, 0x9}, 0xc)

08:51:46 executing program 2:

08:51:46 executing program 1:

[  599.264191] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
08:51:46 executing program 0:
r0 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x100000001, 0x2)
ioctl$SCSI_IOCTL_STOP_UNIT(r0, 0x6)
r1 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r1, 0xffffffffffffffb2, &(0x7f0000000040))
dup2(r2, r1)

08:51:46 executing program 4:
r0 = socket$inet(0x2, 0x3, 0xbb71784)
r1 = socket$inet6_sctp(0xa, 0x200000000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x14, &(0x7f0000ad2000)=ANY=[@ANYBLOB='\x00\x00Z\x00'], &(0x7f0000000080)=0x4)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f0000000200)="9d0ce36f6c88100c2ebcb0347fba82a1a6b381ce8e58a9ba71df2301bbd2d7a40c4088098e4d699499cd91871c765603aa32ac10ea0a1f9d0ed133fc291c7826cd9507b0f5cb06f59f2c862771f42a206bb516ae3103d6f37568d36a67d52226d20cf7dabbaef156f1bc613cb18ad52d", 0x70, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @local}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0xfffffffffffffdb9)
pipe(&(0x7f0000000180))
ioctl$BLKBSZGET(r0, 0x80081270, &(0x7f0000000140))
write(r0, &(0x7f0000000ec0)="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", 0x595)
r2 = syz_open_dev$vbi(&(0x7f00000000c0)='/dev/vbi#\x00', 0x0, 0x2)
ioctl$KVM_SET_ONE_REG(r2, 0x4010aeac, &(0x7f0000000100)={0x8001, 0xffff})
sendto$inet(r0, &(0x7f00000003c0), 0xae551c9f, 0x80000001f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

08:51:46 executing program 2:

08:51:46 executing program 3:
time(&(0x7f0000000140))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$cec(&(0x7f0000000240)='/dev/cec#\x00', 0x2, 0x2)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(0xffffffffffffffff, 0x84, 0x70, &(0x7f0000000280)={<r2=>0x0, @in={{0x2, 0x4e24, @multicast1}}, [0x0, 0x2, 0x6, 0x1, 0x2, 0x9, 0xff, 0x3, 0x1000000000000000, 0xccc200000000, 0x6, 0x6, 0x6, 0x9, 0x7]}, &(0x7f0000000380)=0x100)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r1, 0x84, 0x77, &(0x7f00000003c0)=ANY=[@ANYRES32=r2, @ANYBLOB="25ed6c00000069400000040600c2f7cc0040"], 0x16)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r3 = socket$inet(0x10, 0x3, 0xc)
rt_sigsuspend(&(0x7f0000000100)={0x2}, 0x8)
r4 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/dlm-control\x00', 0x8500, 0x0)
getpeername$packet(r4, &(0x7f00000001c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000200)=0x14)
sendmsg(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)

08:51:46 executing program 1:

[  599.688854] sctp: [Deprecated]: syz-executor4 (pid 15925) Use of int in max_burst socket option.
[  599.688854] Use struct sctp_assoc_value instead
[  599.765919] sctp: [Deprecated]: syz-executor4 (pid 15930) Use of int in max_burst socket option.
[  599.765919] Use struct sctp_assoc_value instead
08:51:46 executing program 0:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
dup2(r1, r0)
fsetxattr$security_ima(r0, &(0x7f0000000000)='security.ima\x00', &(0x7f0000000140)=@v1={0x2, "a29d3d7294d3ef322d7749"}, 0xc, 0x1)

[  599.831595] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
08:51:46 executing program 1:

08:51:47 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
lsetxattr$security_smack_entry(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='security.SMACK64\x00', &(0x7f0000000100)='@:mime_type\x00', 0xc, 0x1)
write(r0, &(0x7f0000000ec0)="89f9d765312b4001000000b0967bdae72ee5094371136a6477ba0a51a2969dbc2d4028ac7b5af67f178f9314ea2bb3ac1c442eaf749c21ae2af8e39a40c3dc032e6f8eb738786a79df71302ff3b5d42731597d995bed6103ff63b9a908bcc05e0400000092bdf4d3282f62d6928117f82c2dae48742dac857de846096e82c1a02e1edcadda721a3f8dc9a54da05d467ed35b6f931d8686986960e756048c61c2a2c374c318d21d7a7ef550779190066e82ea3f6724a9f61ff028ec7e8d7a04352e7a78f777a68b823abb646bdc55dbde285ce15bf45820f0ae20e4023f57c71f8b41e08eff14c3441485c6f54a30750c780852dad879d6d4be7243bd07f841f89009000000c23d6b4f70fe48b54577449cfcbc4d5dbefb8b465d45bc2d11afbe7bfbe6ca76ac259e634eebf8db694ff02fe2b4c80783b443ef68287e9cf7cbcc2ee196f10c4ffb3f59e4921e0f9f08cba9a2c56c49fa7465b4836da5b2d9b142763889caa718d8a4fcb2f3ef6dc6185708fb1e0f9081d29fb3defae8c525f07437c7835b4eac8f86e2a22a81eff4120340e4a379446aac45dbff791d147805cd2748d74b8996c9b51ec03b410ef8fe126117fbf106795bc1b25d8dd786b6496bd743b7c75c638b516214ff56ec99a9c0f2919fa781cd8b4f2f2e425a6780c630a05c8e60011bc8e10055a6b6b652e5a13c73fd96f79038a65d6991ac38899ab98486d92bbcffdcf39a08a248ae1045ff8c6123de2f15d9ac360a3497c07001a3a1936ff1c03194ace131d380f515629ff016bd890ff822704c0db8bc68efad2eace5466628e7d6c2f2b3043698c46fdd62588fc54b72a786af0d026353879892c58007f7988a3f2240a43303218cc1df27807bfbde117c505f060396850a82459830a89a6a8601ea2e47f2e41379d110b96576f8f7705bba7ec63d6b44ccf84073cf9bdcf1aee48cb60c2f6dd3e89f3626a5e23339ea99c918d76a43fecf7401f7550e8eaefa4d84f1143320599daf7699858b2bf408e9093aa91d6dd9ae39d8decf3f7a199b0c1918d47be3b7aeff9a8c10efabe787b43141e7abaa4317158864b0361568140ab79cade1223c3ef81da4c4eefdd5b21fcc1b87872fc3b346737105589b84ba9814679b7510ed9b4f290083ee634ae12243ccc63413d7bc35eee0d1a4bc9dd33c37f5130303edddfc2636ffbf1ee0febb953436710c2ed9bd001d2ebe878788ddf7f7ad55b7a8cbcb348e82cd65b59315858086606115d04a3cda0e4af2a703afe09e4afedf00d5fbb2284df9af1d1ec9f15356c58fdcde45fff250568347f3b0b49e11e44c0a4d98a1e3393ce5d76614990f23b2e146842b166fb070894c128f957b0cc7d80a16275efd15659e0f81990062ebfdf9454d12e63d1ce1dad7848fcbab642a0d62ebb17abc824883e4c6e1e81992f28f5bbd7b26e2645c7941b03dd2f27c29baa2412976a05fa13d8fc4d6bd152a8668d986a9cf605b8b4a61600481e01bdd74c96d73390518add968100ac742aaf5dd7eb4ccf0868ee3ef7f12c32298737dea65bd5d7161dd679b4dd6799aa086bf3b8c889780ac102b7b1ebcf2569dd77f201d74d94a61400ced9c613414012b451628a96e6cc8fe738e964940f7b753065677776f3b5398975aeac974fced560667cead03a8976eb4229ff4e1bca5588d5d544cbca8588215a2f5ef7a5fc1a07438d3a3e05d21eb30d46f1688543d4327d36e07635396eaab4e9bc862ee9c7fa24de38c5cbf8fa5afd024116bc84854d01072145ecc4bb415d94a333e0d91e9cf6fda5a2c244a585e3a32c95398f44800c578faf4a2ccc5979664db7a55aa5cc02789f84321ccaeed4f37dd48c8d1484ade0588fc4255ec8780534a693e2bfe88b622034552084492c6757429239bbe8dad8b904e58007639ca773344040a441dc0027a46c22198f3d0b0588e164881a9fc7a85a63c459b0d002e3d890edd250742d363e85250badb91a734759baf773c32b177d36eefb662be70", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

08:51:47 executing program 5:
r0 = socket$alg(0x26, 0x5, 0x0)
accept4$alg(0xffffffffffffffff, 0x0, 0x0, 0x0)
bind$alg(r0, &(0x7f0000000140)={0x26, 'skcipher\x00', 0x0, 0x0, 'chacha20-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="b7f2288a9119939144bcc0b83111d8ad4e211c2cf0265df5cf1cdd8b55b06295", 0x20)
r1 = accept$alg(r0, 0x0, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
recvmsg(r1, &(0x7f0000001480)={0x0, 0x0, &(0x7f00000013c0)=[{&(0x7f00000002c0)=""/4096, 0x34000}], 0x1, &(0x7f0000001400)=""/123, 0x7b}, 0x0)
ioctl$sock_inet6_SIOCSIFDSTADDR(0xffffffffffffffff, 0x8918, &(0x7f00000000c0)={@loopback})

08:51:47 executing program 2:

08:51:47 executing program 1:

[  600.266444] not chained 380000 origins
[  600.270377] CPU: 0 PID: 15941 Comm: syz-executor4 Not tainted 4.20.0-rc2+ #88
[  600.272426] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  600.272426] Call Trace:
[  600.272426]  dump_stack+0x32d/0x480
[  600.272426]  kmsan_internal_chain_origin+0x222/0x240
[  600.272426]  ? save_stack_trace+0xc6/0x110
[  600.272426]  ? __irqentry_text_end+0x1fa056/0x1fa056
[  600.272426]  ? kmsan_internal_chain_origin+0x90/0x240
[  600.272426]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  600.272426]  ? is_bpf_text_address+0x49e/0x4d0
[  600.272426]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  600.272426]  ? in_task_stack+0x12c/0x210
[  600.272426]  __msan_chain_origin+0x6d/0xb0
[  600.272426]  ? ip_finish_output+0xd93/0x10f0
[  600.272426]  __save_stack_trace+0x8be/0xc60
[  600.342591]  ? ip_finish_output+0xd93/0x10f0
[  600.342591]  save_stack_trace+0xc6/0x110
[  600.342591]  kmsan_internal_chain_origin+0x136/0x240
[  600.342591]  ? tcp_push_one+0x195/0x230
[  600.342591]  ? kmsan_internal_chain_origin+0x136/0x240
[  600.342591]  ? kmsan_memcpy_origins+0x13d/0x190
[  600.342591]  ? __msan_memcpy+0x6f/0x80
[  600.342591]  ? pskb_expand_head+0x436/0x1d20
[  600.342591]  ? iptunnel_handle_offloads+0x455/0x810
[  600.342591]  ? ipip_tunnel_xmit+0x15d/0x4a0
[  600.342591]  ? dev_hard_start_xmit+0x6dc/0xde0
[  600.342591]  ? __dev_queue_xmit+0x2d9e/0x3e00
[  600.342591]  ? dev_queue_xmit+0x4b/0x60
[  600.342591]  ? neigh_direct_output+0x42/0x50
[  600.342591]  ? ip_finish_output2+0x141a/0x1560
[  600.412503]  ? ip_finish_output+0xd93/0x10f0
[  600.412503]  ? ip_output+0x55c/0x630
[  600.412503]  ? __ip_queue_xmit+0x1bb5/0x2170
[  600.412503]  ? ip_queue_xmit+0xcc/0xf0
[  600.412503]  ? __tcp_transmit_skb+0x425c/0x5e00
[  600.412503]  ? tcp_write_xmit+0x389a/0xacc0
[  600.412503]  ? tcp_push_one+0x195/0x230
[  600.412503]  ? tcp_sendmsg_locked+0x456d/0x6c30
[  600.412503]  ? tcp_sendmsg+0xb2/0x100
[  600.412503]  ? inet_sendmsg+0x4e9/0x800
[  600.412503]  ? __sys_sendto+0x940/0xb80
[  600.412503]  ? __se_sys_sendto+0x107/0x130
08:51:47 executing program 0:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x40100, 0x0)
ioctl$VIDIOC_CREATE_BUFS(r1, 0xc100565c, &(0x7f0000000140)={0x7, 0x800, 0x1, {0x7, @sliced={0x7, [0x8, 0x10001, 0x3, 0xa49, 0x4, 0x30370ad7, 0xa29, 0x9, 0x603e, 0x9f06, 0x8, 0x10000, 0x3, 0x6, 0x3, 0x7, 0x80000001, 0x5f2, 0x1f, 0x4, 0x1, 0x1000, 0x9, 0x9, 0x6, 0x23, 0x3, 0x4, 0x1, 0x0, 0xe28, 0x1, 0x5, 0x4, 0x8, 0x1, 0x0, 0x5, 0xff, 0x9, 0x6, 0x200, 0x28, 0x100, 0x45, 0x802d, 0x358, 0x2], 0x7}}})
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
dup2(r2, r0)

[  600.412503]  ? __x64_sys_sendto+0x6e/0x90
[  600.412503]  ? do_syscall_64+0xcf/0x110
[  600.469290]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  600.469290]  ? __kmalloc_node_track_caller+0x1010/0x14e0
[  600.477802]  ? __msan_get_context_state+0x9/0x20
[  600.477802]  ? INIT_INT+0xc/0x30
[  600.477802]  ? __kmalloc_node_track_caller+0x369/0x14e0
[  600.477802]  kmsan_memcpy_origins+0x13d/0x190
[  600.477802]  __msan_memcpy+0x6f/0x80
[  600.477802]  pskb_expand_head+0x436/0x1d20
[  600.477802]  iptunnel_handle_offloads+0x455/0x810
08:51:47 executing program 2:

[  600.477802]  ipip_tunnel_xmit+0x15d/0x4a0
[  600.477802]  ? ipip_tunnel_init+0x240/0x240
[  600.477802]  dev_hard_start_xmit+0x6dc/0xde0
[  600.477802]  __dev_queue_xmit+0x2d9e/0x3e00
[  600.477802]  dev_queue_xmit+0x4b/0x60
[  600.477802]  neigh_direct_output+0x42/0x50
[  600.477802]  ? neigh_connected_output+0x700/0x700
[  600.477802]  ip_finish_output2+0x141a/0x1560
[  600.477802]  ip_finish_output+0xd93/0x10f0
[  600.477802]  ip_output+0x55c/0x630
[  600.477802]  ? ip_mc_finish_output+0x440/0x440
[  600.477802]  ? ip_finish_output+0x10f0/0x10f0
[  600.477802]  __ip_queue_xmit+0x1bb5/0x2170
[  600.477802]  ? kmsan_set_origin+0x7f/0x100
[  600.574324]  ip_queue_xmit+0xcc/0xf0
[  600.574324]  ? dst_hold_safe+0x5d0/0x5d0
[  600.574324]  __tcp_transmit_skb+0x425c/0x5e00
[  600.574324]  tcp_write_xmit+0x389a/0xacc0
[  600.574324]  tcp_push_one+0x195/0x230
[  600.591752]  tcp_sendmsg_locked+0x456d/0x6c30
[  600.591752]  ? kmsan_internal_unpoison_shadow+0x30/0xd0
[  600.591752]  tcp_sendmsg+0xb2/0x100
[  600.591752]  ? tcp_sendmsg_locked+0x6c30/0x6c30
[  600.591752]  inet_sendmsg+0x4e9/0x800
[  600.591752]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  600.591752]  ? security_socket_sendmsg+0x1bd/0x200
[  600.591752]  ? inet_getname+0x490/0x490
[  600.591752]  __sys_sendto+0x940/0xb80
[  600.591752]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  600.591752]  ? prepare_exit_to_usermode+0x182/0x4c0
[  600.591752]  __se_sys_sendto+0x107/0x130
[  600.591752]  __x64_sys_sendto+0x6e/0x90
[  600.591752]  do_syscall_64+0xcf/0x110
[  600.591752]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  600.591752] RIP: 0033:0x457569
[  600.591752] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  600.678740] RSP: 002b:00007fe2bd024c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  600.685997] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000457569
[  600.685997] RDX: 00000000fffffdef RSI: 00000000200003c0 RDI: 0000000000000003
[  600.707752] RBP: 000000000072bf00 R08: 00000000200001c0 R09: 0000000000000010
[  600.707752] R10: 00000000000001f4 R11: 0000000000000246 R12: 00007fe2bd0256d4
[  600.722390] R13: 00000000004c3c11 R14: 00000000004d5e80 R15: 00000000ffffffff
[  600.722390] Uninit was stored to memory at:
[  600.722390]  kmsan_internal_chain_origin+0x136/0x240
[  600.722390]  __msan_chain_origin+0x6d/0xb0
[  600.722390]  __save_stack_trace+0x8be/0xc60
[  600.746477]  save_stack_trace+0xc6/0x110
[  600.746477]  kmsan_internal_chain_origin+0x136/0x240
[  600.746477]  kmsan_memcpy_origins+0x13d/0x190
[  600.746477]  __msan_memcpy+0x6f/0x80
[  600.746477]  pskb_expand_head+0x436/0x1d20
[  600.746477]  iptunnel_handle_offloads+0x455/0x810
[  600.746477]  ipip_tunnel_xmit+0x15d/0x4a0
[  600.746477]  dev_hard_start_xmit+0x6dc/0xde0
[  600.746477]  __dev_queue_xmit+0x2d9e/0x3e00
[  600.746477]  dev_queue_xmit+0x4b/0x60
[  600.746477]  neigh_direct_output+0x42/0x50
[  600.746477]  ip_finish_output2+0x141a/0x1560
[  600.746477]  ip_finish_output+0xd93/0x10f0
[  600.746477]  ip_output+0x55c/0x630
[  600.746477]  __ip_queue_xmit+0x1bb5/0x2170
[  600.746477]  ip_queue_xmit+0xcc/0xf0
08:51:47 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x4001ff)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ppp\x00', 0x400000000000, 0x0)
ioctl$EVIOCGVERSION(r1, 0x80044501, &(0x7f00000001c0)=""/4096)
clock_gettime(0x0, &(0x7f00000012c0)={<r2=>0x0, <r3=>0x0})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r1, 0x4040534e, &(0x7f0000001200)={0x194, @time={r2, r3+10000000}, 0x2, {0x1, 0x1}, 0x101, 0x0, 0x9})
r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000100)='/dev/hwrng\x00', 0x40, 0x0)
getsockname$packet(r1, &(0x7f00000011c0)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000001280)=0x14)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000001300)={'team0\x00', r5})
ioctl$VHOST_GET_VRING_ENDIAN(r4, 0x4008af14, &(0x7f0000000140)={0x3, 0x1})
r6 = socket$inet(0x10, 0x3, 0xc)
getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000001340)={{{@in=@local, @in=@remote}}, {{@in=@loopback}}}, &(0x7f0000001440)=0xe8)
write$RDMA_USER_CM_CMD_JOIN_MCAST(r4, &(0x7f0000001500)={0x16, 0x98, 0xfa00, {&(0x7f00000014c0)={<r7=>0xffffffffffffffff}, 0x1, 0xffffffffffffffff, 0x1c, 0x0, @in6={0xa, 0x4e22, 0x10001, @remote, 0x80}}}, 0xa0)
write$RDMA_USER_CM_CMD_LEAVE_MCAST(r4, &(0x7f00000015c0)={0x11, 0x10, 0xfa00, {&(0x7f0000001480), r7}}, 0x18)
sendmsg(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)

[  600.746477]  __tcp_transmit_skb+0x425c/0x5e00
[  600.746477]  tcp_write_xmit+0x389a/0xacc0
[  600.746477]  tcp_push_one+0x195/0x230
[  600.746477]  tcp_sendmsg_locked+0x456d/0x6c30
[  600.746477]  tcp_sendmsg+0xb2/0x100
[  600.746477]  inet_sendmsg+0x4e9/0x800
[  600.746477]  __sys_sendto+0x940/0xb80
[  600.746477]  __se_sys_sendto+0x107/0x130
[  600.746477]  __x64_sys_sendto+0x6e/0x90
[  600.746477]  do_syscall_64+0xcf/0x110
[  600.746477]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  600.746477] 
[  600.746477] Uninit was stored to memory at:
[  600.746477]  kmsan_internal_chain_origin+0x136/0x240
[  600.746477]  __msan_chain_origin+0x6d/0xb0
[  600.746477]  __save_stack_trace+0x8be/0xc60
[  600.746477]  save_stack_trace+0xc6/0x110
[  600.746477]  kmsan_internal_chain_origin+0x136/0x240
[  600.746477]  kmsan_memcpy_origins+0x13d/0x190
[  600.746477]  __msan_memcpy+0x6f/0x80
[  600.746477]  pskb_expand_head+0x436/0x1d20
[  600.746477]  iptunnel_handle_offloads+0x455/0x810
[  600.746477]  ipip_tunnel_xmit+0x15d/0x4a0
[  600.746477]  dev_hard_start_xmit+0x6dc/0xde0
[  600.746477]  __dev_queue_xmit+0x2d9e/0x3e00
[  600.746477]  dev_queue_xmit+0x4b/0x60
[  600.746477]  neigh_direct_output+0x42/0x50
[  600.746477]  ip_finish_output2+0x141a/0x1560
[  600.746477]  ip_finish_output+0xd93/0x10f0
[  600.746477]  ip_output+0x55c/0x630
[  600.746477]  __ip_queue_xmit+0x1bb5/0x2170
[  600.746477]  ip_queue_xmit+0xcc/0xf0
[  600.746477]  __tcp_transmit_skb+0x425c/0x5e00
[  600.746477]  tcp_write_xmit+0x389a/0xacc0
[  600.746477]  tcp_push_one+0x195/0x230
[  600.746477]  tcp_sendmsg_locked+0x456d/0x6c30
[  600.746477]  tcp_sendmsg+0xb2/0x100
[  600.746477]  inet_sendmsg+0x4e9/0x800
[  600.746477]  __sys_sendto+0x940/0xb80
[  600.746477]  __se_sys_sendto+0x107/0x130
[  600.746477]  __x64_sys_sendto+0x6e/0x90
[  600.746477]  do_syscall_64+0xcf/0x110
[  600.746477]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  600.746477] 
[  600.746477] Uninit was stored to memory at:
[  600.746477]  kmsan_internal_chain_origin+0x136/0x240
[  600.746477]  __msan_chain_origin+0x6d/0xb0
[  601.008323]  __save_stack_trace+0x8be/0xc60
[  601.008323]  save_stack_trace+0xc6/0x110
[  601.008323]  kmsan_internal_chain_origin+0x136/0x240
[  601.008323]  kmsan_memcpy_origins+0x13d/0x190
[  601.008323]  __msan_memcpy+0x6f/0x80
[  601.008323]  pskb_expand_head+0x436/0x1d20
[  601.008323]  iptunnel_handle_offloads+0x455/0x810
[  601.008323]  ipip_tunnel_xmit+0x15d/0x4a0
[  601.008323]  dev_hard_start_xmit+0x6dc/0xde0
[  601.008323]  __dev_queue_xmit+0x2d9e/0x3e00
[  601.052475]  dev_queue_xmit+0x4b/0x60
[  601.052475]  neigh_direct_output+0x42/0x50
[  601.052475]  ip_finish_output2+0x141a/0x1560
[  601.052475]  ip_finish_output+0xd93/0x10f0
[  601.052475]  ip_output+0x55c/0x630
[  601.052475]  __ip_queue_xmit+0x1bb5/0x2170
[  601.052475]  ip_queue_xmit+0xcc/0xf0
[  601.052475]  __tcp_transmit_skb+0x425c/0x5e00
[  601.052475]  tcp_write_xmit+0x389a/0xacc0
[  601.052475]  tcp_push_one+0x195/0x230
[  601.052475]  tcp_sendmsg_locked+0x456d/0x6c30
[  601.052475]  tcp_sendmsg+0xb2/0x100
[  601.052475]  inet_sendmsg+0x4e9/0x800
[  601.052475]  __sys_sendto+0x940/0xb80
[  601.052475]  __se_sys_sendto+0x107/0x130
[  601.052475]  __x64_sys_sendto+0x6e/0x90
[  601.052475]  do_syscall_64+0xcf/0x110
[  601.122390]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  601.122390] 
[  601.122390] Uninit was stored to memory at:
[  601.122390]  kmsan_internal_chain_origin+0x136/0x240
[  601.122390]  __msan_chain_origin+0x6d/0xb0
[  601.122390]  __save_stack_trace+0x8be/0xc60
[  601.122390]  save_stack_trace+0xc6/0x110
[  601.122390]  kmsan_internal_chain_origin+0x136/0x240
[  601.122390]  kmsan_memcpy_origins+0x13d/0x190
[  601.122390]  __msan_memcpy+0x6f/0x80
[  601.122390]  pskb_expand_head+0x436/0x1d20
[  601.122390]  iptunnel_handle_offloads+0x455/0x810
[  601.122390]  ipip_tunnel_xmit+0x15d/0x4a0
[  601.122390]  dev_hard_start_xmit+0x6dc/0xde0
[  601.122390]  __dev_queue_xmit+0x2d9e/0x3e00
[  601.122390]  dev_queue_xmit+0x4b/0x60
[  601.122390]  neigh_direct_output+0x42/0x50
[  601.122390]  ip_finish_output2+0x141a/0x1560
[  601.122390]  ip_finish_output+0xd93/0x10f0
[  601.122390]  ip_output+0x55c/0x630
[  601.122390]  __ip_queue_xmit+0x1bb5/0x2170
[  601.122390]  ip_queue_xmit+0xcc/0xf0
[  601.122390]  __tcp_transmit_skb+0x425c/0x5e00
[  601.122390]  tcp_write_xmit+0x389a/0xacc0
[  601.122390]  tcp_push_one+0x195/0x230
[  601.122390]  tcp_sendmsg_locked+0x456d/0x6c30
[  601.122390]  tcp_sendmsg+0xb2/0x100
[  601.122390]  inet_sendmsg+0x4e9/0x800
[  601.122390]  __sys_sendto+0x940/0xb80
[  601.122390]  __se_sys_sendto+0x107/0x130
[  601.122390]  __x64_sys_sendto+0x6e/0x90
[  601.122390]  do_syscall_64+0xcf/0x110
[  601.122390]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  601.122390] 
[  601.122390] Uninit was stored to memory at:
[  601.122390]  kmsan_internal_chain_origin+0x136/0x240
[  601.122390]  __msan_chain_origin+0x6d/0xb0
[  601.122390]  __save_stack_trace+0x8be/0xc60
[  601.122390]  save_stack_trace+0xc6/0x110
[  601.122390]  kmsan_internal_chain_origin+0x136/0x240
[  601.122390]  kmsan_memcpy_origins+0x13d/0x190
[  601.122390]  __msan_memcpy+0x6f/0x80
[  601.122390]  pskb_expand_head+0x436/0x1d20
[  601.122390]  iptunnel_handle_offloads+0x455/0x810
[  601.122390]  ipip_tunnel_xmit+0x15d/0x4a0
[  601.122390]  dev_hard_start_xmit+0x6dc/0xde0
[  601.122390]  __dev_queue_xmit+0x2d9e/0x3e00
08:51:48 executing program 1:

08:51:48 executing program 5:

[  601.122390]  dev_queue_xmit+0x4b/0x60
[  601.122390]  neigh_direct_output+0x42/0x50
[  601.122390]  ip_finish_output2+0x141a/0x1560
[  601.122390]  ip_finish_output+0xd93/0x10f0
[  601.122390]  ip_output+0x55c/0x630
[  601.122390]  __ip_queue_xmit+0x1bb5/0x2170
[  601.122390]  ip_queue_xmit+0xcc/0xf0
[  601.122390]  __tcp_transmit_skb+0x425c/0x5e00
[  601.122390]  tcp_write_xmit+0x389a/0xacc0
[  601.122390]  tcp_push_one+0x195/0x230
[  601.122390]  tcp_sendmsg_locked+0x456d/0x6c30
[  601.122390]  tcp_sendmsg+0xb2/0x100
08:51:48 executing program 2:

[  601.122390]  inet_sendmsg+0x4e9/0x800
[  601.372047]  __sys_sendto+0x940/0xb80
[  601.372047]  __se_sys_sendto+0x107/0x130
[  601.372047]  __x64_sys_sendto+0x6e/0x90
[  601.372047]  do_syscall_64+0xcf/0x110
[  601.372047]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  601.391436] 
[  601.391436] Uninit was stored to memory at:
[  601.391436]  kmsan_internal_chain_origin+0x136/0x240
[  601.391436]  __msan_chain_origin+0x6d/0xb0
[  601.391436]  __save_stack_trace+0x8be/0xc60
[  601.391436]  save_stack_trace+0xc6/0x110
[  601.391436]  kmsan_internal_chain_origin+0x136/0x240
[  601.391436]  kmsan_memcpy_origins+0x13d/0x190
[  601.391436]  __msan_memcpy+0x6f/0x80
[  601.391436]  pskb_expand_head+0x436/0x1d20
[  601.391436]  iptunnel_handle_offloads+0x455/0x810
[  601.391436]  ipip_tunnel_xmit+0x15d/0x4a0
[  601.391436]  dev_hard_start_xmit+0x6dc/0xde0
[  601.391436]  __dev_queue_xmit+0x2d9e/0x3e00
[  601.452466]  dev_queue_xmit+0x4b/0x60
[  601.452466]  neigh_direct_output+0x42/0x50
[  601.461137]  ip_finish_output2+0x141a/0x1560
[  601.461137]  ip_finish_output+0xd93/0x10f0
[  601.461137]  ip_output+0x55c/0x630
[  601.473770]  __ip_queue_xmit+0x1bb5/0x2170
[  601.473770]  ip_queue_xmit+0xcc/0xf0
[  601.473770]  __tcp_transmit_skb+0x425c/0x5e00
[  601.473770]  tcp_write_xmit+0x389a/0xacc0
[  601.473770]  tcp_push_one+0x195/0x230
[  601.473770]  tcp_sendmsg_locked+0x456d/0x6c30
[  601.473770]  tcp_sendmsg+0xb2/0x100
[  601.473770]  inet_sendmsg+0x4e9/0x800
[  601.473770]  __sys_sendto+0x940/0xb80
[  601.473770]  __se_sys_sendto+0x107/0x130
[  601.473770]  __x64_sys_sendto+0x6e/0x90
[  601.473770]  do_syscall_64+0xcf/0x110
[  601.473770]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  601.473770] 
[  601.473770] Uninit was stored to memory at:
[  601.473770]  kmsan_internal_chain_origin+0x136/0x240
[  601.473770]  __msan_chain_origin+0x6d/0xb0
[  601.473770]  __save_stack_trace+0x8be/0xc60
[  601.473770]  save_stack_trace+0xc6/0x110
[  601.473770]  kmsan_internal_chain_origin+0x136/0x240
[  601.473770]  kmsan_memcpy_origins+0x13d/0x190
[  601.473770]  __msan_memcpy+0x6f/0x80
[  601.473770]  pskb_expand_head+0x436/0x1d20
[  601.473770]  iptunnel_handle_offloads+0x455/0x810
[  601.473770]  ipip_tunnel_xmit+0x15d/0x4a0
[  601.473770]  dev_hard_start_xmit+0x6dc/0xde0
[  601.473770]  __dev_queue_xmit+0x2d9e/0x3e00
[  601.473770]  dev_queue_xmit+0x4b/0x60
[  601.473770]  neigh_direct_output+0x42/0x50
[  601.473770]  ip_finish_output2+0x141a/0x1560
[  601.473770]  ip_finish_output+0xd93/0x10f0
[  601.473770]  ip_output+0x55c/0x630
[  601.605695] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
[  601.473770]  __ip_queue_xmit+0x1bb5/0x2170
[  601.473770]  ip_queue_xmit+0xcc/0xf0
[  601.473770]  __tcp_transmit_skb+0x425c/0x5e00
[  601.473770]  tcp_write_xmit+0x389a/0xacc0
[  601.473770]  tcp_push_one+0x195/0x230
[  601.473770]  tcp_sendmsg_locked+0x456d/0x6c30
[  601.473770]  tcp_sendmsg+0xb2/0x100
[  601.473770]  inet_sendmsg+0x4e9/0x800
[  601.473770]  __sys_sendto+0x940/0xb80
[  601.473770]  __se_sys_sendto+0x107/0x130
[  601.473770]  __x64_sys_sendto+0x6e/0x90
[  601.473770]  do_syscall_64+0xcf/0x110
[  601.473770]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  601.473770] 
[  601.473770] Local variable description: ----target@nf_nat_icmp_reply_translation
[  601.473770] Variable was created at:
[  601.473770]  nf_nat_icmp_reply_translation+0x9b/0xa80
[  601.473770]  nf_nat_ipv4_out+0x22b/0x7c0
[  601.761415] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
08:51:48 executing program 1:

08:51:48 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000240)="120000001600e70d017b00000000008e1584", 0x12, 0x0, 0x0, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000006e80)="0a5c2d0240316285717070")
recvmsg(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000280)=""/75, 0x4b}, 0x0)

08:51:49 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
fstat(r0, &(0x7f0000000140))
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000340)='/dev/dlm_plock\x00', 0x400, 0x0)
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000440)={<r3=>0x0, @local, @dev}, &(0x7f0000000480)=0xc)
connect$can_bcm(r2, &(0x7f00000004c0)={0x1d, r3}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000080)={'eql\x00', 0x809})
poll(&(0x7f00000002c0)=[{r5}], 0x1, 0x0)
ioctl$sock_ifreq(r4, 0x8914, &(0x7f00000000c0)={"65716c000000a95b00", @ifru_mtu=0x1})
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="89f9d765312b4001000000b0967bdae72ee5094371136a6477ba0a51a2969dbc2d4028ac7b5af67f178f9314ea2bb3ac1c442eaf749c21ae2af8e39a40c3dc032e6f8eb738786a79df71302ff3b5d42731597d995bed6103ff63b9a908bcc05e0400000092bdf4d3282f62d6928117f82c2dae48742dac857de846096e82c1a02e1edcadda721a3f8dc9a54da05d467ed35b6f931d8686986960e756048c61c2a2c374c318d21d7a7ef550779190066e82ea3f6724a9f61ff028ec7e8d7a04352e7a78f777a68b823abb646bdc55dbde285ce15bf45820f0ae20e4023f57c71f8b41e08eff14c3441485c6f54a30750c780852dad879d6d4be7243bd07f841f89009000000c23d6b4f70fe48b54577449cfcbc4d5dbefb8b465d45bc2d11afbe7bfbe6ca76ac259e634eebf8db694ff02fe2b4c80783b443ef68287e9cf7cbcc2ee196f10c4ffb3f59e4921e0f9f08cba9a2c56c49fa7465b4836da5b2d9b142763889caa718d8a4fcb2f3ef6dc6185708fb1e0f9081d29fb3defae8c525f07437c7835b4eac8f86e2a22a81eff4120340e4a379446aac45dbff791d147805cd2748d74b8996c9b51ec03b410ef8fe126117fbf106795bc1b25d8dd786b6496bd743b7c75c638b516214ff56ec99a9c0f2919fa781cd8b4f2f2e425a6780c630a05c8e60011bc8e10055a6b6b652e5a13c73fd96f79038a65d6991ac38899ab98486d92bbcffdcf39a08a248ae1045ff8c6123de2f15d9ac360a3497c07001a3a1936ff1c03194ace131d380f515629ff016bd890ff822704c0db8bc68efad2eace5466628e7d6c2f2b3043698c46fdd62588fc54b72a786af0d026353879892c58007f7988a3f2240a43303218cc1df27807bfbde117c505f060396850a82459830a89a6a8601ea2e47f2e41379d110b96576f8f7705bba7ec63d6b44ccf84073cf9bdcf1aee48cb60c2f6dd3e89f3626a5e23339ea99c918d76a43fecf7401f7550e8eaefa4d84f1143320599daf7699858b2bf408e9093aa91d6dd9ae39d8decf3f7a199b0c1918d47be3b7aeff9a8c10efabe787b43141e7abaa4317158864b0361568140ab79cade1223c3ef81da4c4eefdd5b21fcc1b87872fc3b346737105589b84ba9814679b7510ed9b4f290083ee634ae12243ccc63413d7bc35eee0d1a4bc9dd33c37f5130303edddfc2636ffbf1ee0febb953436710c2ed9bd001d2ebe878788ddf7f7ad55b7a8cbcb348e82cd65b59315858086606115d04a3cda0e4af2a703afe09e4afedf00d5fbb2284df9af1d1ec9f15356c58fdcde45fff250568347f3b0b49e11e44c0a4d98a1e3393ce5d76614990f23b2e146842b166fb070894c128f957b0cc7d80a16275efd15659e0f81990062ebfdf9454d12e63d1ce1dad7848fcbab642a0d62ebb17abc824883e4c6e1e81992f28f5bbd7b26e2645c7941b03dd2f27c29baa2412976a05fa13d8fc4d6bd152a8668d986a9cf605b8b4a61600481e01bdd74c96d73390518add968100ac742aaf5dd7eb4ccf0868ee3ef7f12c32298737dea65bd5d7161dd679b4dd6799aa086bf3b8c889780ac102b7b1ebcf2569dd77f201d74d94a61400ced9c613414012b451628a96e6cc8fe738e964940f7b753065677776f3b5398975aeac974fced560667cead03a8976eb4229ff4e1bca5588d5d544cbca8588215a2f5ef7a5fc1a07438d3a3e05d21eb30d46f1688543d4327d36e07635396eaab4e9bc862ee9c7fa24de38c5cbf8fa5afd024116bc84854d01072145ecc4bb415d94a333e0d91e9cf6fda5a2c244a585e3a32c95398f44800c578faf4a2ccc5979664db7a55aa5cc02789f84321ccaeed4f37dd48c8d1484ade0588fc4255ec8780534a693e2bfe88b622034552084492c6757429239bbe8dad8b904e58007639ca773344040a441dc0027a46c22198f3d0b0588e164881a9fc7a85a63c459b0d002e3d890edd250742d363e85250badb91a734759baf773c32b177d36eefb662be70", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
r6 = memfd_create(&(0x7f0000000100)='.@(\x00', 0x0)
ioctl$VIDIOC_TRY_FMT(r6, 0xc0d05640, &(0x7f0000000200)={0xb, @pix_mp={0x6770, 0x0, 0x7f734f6f, 0x4, 0x7, [{0xca, 0x8}, {0x8, 0xfffffffffffffff9}, {0x0, 0x4}, {0x8, 0x7}, {0x100, 0x1}, {0x5}, {0x7}, {0x1ff}], 0x0, 0x8, 0x7}})
vmsplice(r2, &(0x7f0000000300), 0x0, 0x9)
r7 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r6, 0x801c581f, &(0x7f0000000300)={0x1, 0x0, 0x9, 0x4, 0x3})
ioctl$DRM_IOCTL_CONTROL(r7, 0x40086414, &(0x7f00000000c0)={0x0, 0x100})
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

08:51:49 executing program 2:
fcntl$dupfd(0xffffffffffffff9c, 0x406, 0xffffffffffffffff)
accept$packet(0xffffffffffffffff, &(0x7f00000002c0)={0x11, 0x0, <r0=>0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000300)=0x14)
setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000340)={r0, 0x1, 0x6, @remote}, 0x10)
getrusage(0x0, &(0x7f0000000840))
ioctl$KDGKBDIACR(0xffffffffffffffff, 0x4b4a, &(0x7f00000000c0)=""/211)
timer_delete(0x0)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$int_in(r1, 0x5452, &(0x7f00000006c0))
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='clear_refs\x00')
r3 = syz_open_procfs(0x0, &(0x7f0000000440)='stat\x00')
sendfile(r2, r3, &(0x7f0000000080), 0x1)

08:51:49 executing program 0:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
ioctl$DRM_IOCTL_RM_MAP(r0, 0x4028641b, &(0x7f0000000000)={&(0x7f0000ffa000/0x3000)=nil, 0x3, 0x1, 0x2, &(0x7f0000ffa000/0x2000)=nil, 0x2})
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
r2 = dup2(r1, r0)
ioctl$TIOCGPTPEER(r2, 0x5441, 0x0)

08:51:49 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = open(&(0x7f00000002c0)='./file0\x00', 0x0, 0x10)
sendto$inet6(r1, &(0x7f0000000300)="08fcf79efc528d710e2facea974d392eabebd65a712f9bd58b86e93bd2829b6589e05f1cefc0734ebe410d538abcb198757b1bc4114309d8a79abfcb4c0a92ce71b9f7da5dd85233ed4d0774f33a9dcb2d65f7fb054bc57e8f8e71d8d92b91f7644111149fcf9c2018cedbae05f4e399ed2bbe39123aa36cf69cf255ca1f324638e722a4d7c878fb0d7f84d11c6082b65f715aade43ce3d0cce63448f4352b7421b1", 0xa2, 0x20000014, &(0x7f00000003c0)={0xa, 0x4e21, 0x8000, @ipv4={[], [], @local}, 0x7f}, 0x1c)
r2 = socket$inet(0x10, 0x3, 0xc)
sendmsg(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x10000000000002ec}, 0x0)
socket$inet6(0xa, 0x80000, 0x4)
ioctl$DRM_IOCTL_MARK_BUFS(r1, 0x40206417, &(0x7f0000000200)={0x1, 0x6, 0x692, 0x0, 0x11, 0x8})
getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r2, 0x84, 0x72, &(0x7f0000000100)={<r3=>0x0, 0x8, 0x30}, &(0x7f0000000140)=0xc)
getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r2, 0x84, 0x22, &(0x7f0000000180)={0x7, 0x8001, 0x3, 0x5, r3}, &(0x7f00000001c0)=0x10)

08:51:49 executing program 1:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = dup2(r0, r0)
ioctl$TIOCLINUX2(r1, 0x541c, &(0x7f0000001280)={0x2, 0x3, 0x4, 0x401, 0x6, 0xf4f1})
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/tcp6\x00')
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r2, 0x40505330, &(0x7f0000000080)={{0x4, 0x6}, {0x2, 0xfffffffffffffe01}, 0x8, 0x1, 0xffffffffffff7fff})
clone(0x210007fa, 0x0, 0xfffffffffffffffe, &(0x7f0000001240), 0xffffffffffffffff)
r3 = add_key(&(0x7f00000001c0)='keyring\x00', &(0x7f0000000200)={'syz', 0x0}, &(0x7f0000000240)="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", 0x1000, 0xfffffffffffffffb)
request_key(&(0x7f0000000100)='dns_resolver\x00', &(0x7f0000000140)={'syz', 0x1}, &(0x7f0000000180)='net/tcp6\x00', r3)

08:51:49 executing program 5:
syz_emit_ethernet(0x30060b, &(0x7f0000000000)={@local, @empty, [], {@ipv6={0x86dd, {0x0, 0x6, "b40900", 0x3005ca, 0x32, 0x0, @ipv4={[], [], @multicast2}, @mcast2, {[], @icmpv6=@time_exceed={0xffffff83, 0x0, 0x0, 0x0, [0x0, 0x4], {0x0, 0x6, "b680fa", 0x0, 0x0, 0x0, @ipv4={[], [], @broadcast}, @ipv4={[], [], @remote={0xac, 0x14, 0xffffffffffffffff}}}}}}}}}, 0x0)

08:51:49 executing program 1:
setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000340)={0x0, 0x1, 0x6, @remote}, 0x10)
timer_delete(0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f00000006c0)=0x3)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='clear_refs\x00')
r1 = syz_open_procfs(0x0, &(0x7f0000000440)='stat\x00')
sendfile(r0, r1, &(0x7f0000000080), 0x1)

08:51:49 executing program 0:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket(0x11, 0x8000a, 0x20)
sendmsg$nl_route(r1, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)=@ipv6_delroute={0x38, 0x19, 0x320, 0x70bd25, 0x25dfdbfe, {0xa, 0x0, 0x0, 0xd46, 0xfd, 0x1, 0xff, 0x7, 0x400}, [@RTA_ENCAP={0xc, 0x16, @typed={0x8, 0x9, @fd=r0}}, @RTA_MARK={0x8, 0x10, 0x100}, @RTA_ENCAP_TYPE={0x8}]}, 0x38}, 0x1, 0x0, 0x0, 0x24004000}, 0x20004044)
socket$netlink(0x10, 0x3, 0xf)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
dup2(r2, r0)

08:51:49 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x80003, 0x1)
recvmmsg(r0, &(0x7f0000008880), 0x45b, 0x44000102, 0x0)
sendto$inet6(r0, &(0x7f0000000140)='9', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @mcast2}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0x31, &(0x7f0000000000)=0x3, 0x4)

08:51:49 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000040))
r0 = socket$inet6(0xa, 0x80003, 0x1)
recvmmsg(r0, &(0x7f0000008880), 0x45b, 0x44000102, 0x0)
sendto$inet6(r0, &(0x7f0000000140)='9', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @mcast2}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0x31, &(0x7f0000000000)=0x3, 0x4)

08:51:50 executing program 3:
r0 = syz_open_dev$midi(&(0x7f0000000100)='/dev/midi#\x00', 0x0, 0x424a01)
getsockopt$inet_udp_int(r0, 0x11, 0x1, &(0x7f0000000140), &(0x7f0000000180)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
getsockopt$inet6_tcp_buf(r0, 0x6, 0x1d, &(0x7f00000001c0)=""/97, &(0x7f0000000240)=0x61)
r2 = socket$inet(0x10, 0x3, 0xc)
sendmsg(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)

08:51:50 executing program 0:
socket$unix(0x1, 0x3, 0x0)
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
dup2(r1, r0)

[  603.279181] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
[  603.961541] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
08:51:51 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
r1 = socket$inet(0x2, 0x0, 0x3)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
getsockopt$ARPT_SO_GET_REVISION_TARGET(r1, 0x0, 0x63, &(0x7f0000000080)={'IDLETIMER\x00'}, &(0x7f00000000c0)=0x1e)
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000100)='/dev/full\x00', 0x40152, 0x0)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(0xffffffffffffff9c, 0x84, 0x6d, &(0x7f0000000240)=ANY=[@ANYRES32=<r3=>0x0, @ANYBLOB="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"], &(0x7f0000000180)=0xa3)
setsockopt$inet_sctp6_SCTP_RTOINFO(r2, 0x84, 0x0, &(0x7f0000000200)={r3, 0x3, 0x0, 0x10001}, 0x10)

08:51:51 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000240)={0x79})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, &(0x7f0000000180)="2e65f32efe0a6766c7442400008000006766c7442402000000006766c744240600000000670f011c24b866000f00d066b88044a2b20f23c80f21f866350400d0000f23f80f0766b80500000066b9080000000f01c10f0766b8010000000f01c10f01dfb835008ee0", 0x68}], 0x1, 0x0, &(0x7f00000000c0), 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f00000000c0)=0x6002)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000100)="460f300f07c483614804ee08440f20c03506000000440f22c0c402f93473230f09f20f013cb9b805000000b9c00000000f01d90fc728c4c1f9e79f2e000000", 0x3f}], 0x1, 0x0, &(0x7f0000000200), 0x1)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_bp={&(0x7f0000000440)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_pktinfo(0xffffffffffffff9c, 0x0, 0x8, &(0x7f0000003fc0)={0x0, @dev, @loopback}, &(0x7f0000004000)=0xc)
socketpair$inet_icmp_raw(0x2, 0x3, 0x1, &(0x7f0000000040))

08:51:51 executing program 1:
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x400, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, &(0x7f00000001c0))
open(&(0x7f0000000780)='./bus\x00', 0x14103e, 0x0)
ioctl$TUNSETGROUP(0xffffffffffffffff, 0x400454ce, 0x0)
read(0xffffffffffffffff, &(0x7f0000000200)=""/19, 0x93fa513f)
socket$inet6(0xa, 0x800000100000002, 0x0)
sendmmsg(0xffffffffffffffff, &(0x7f0000002000), 0x0, 0x0)
sync()

08:51:51 executing program 0:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
r2 = dup2(r1, r0)
bind$bt_rfcomm(r2, &(0x7f0000000000)={0x1f, {0x0, 0x8, 0x5, 0x80000001, 0x7, 0xfffffffffffffffc}, 0x3f}, 0xa)

08:51:51 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x80003, 0x1)
recvmmsg(r0, &(0x7f0000008880), 0x45b, 0x44000102, 0x0)
sendto$inet6(r0, &(0x7f0000000140)='9', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @mcast2}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0x31, &(0x7f0000000000)=0x3, 0x4)

08:51:51 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$adsp(&(0x7f0000000180)='/dev/adsp#\x00', 0x7fffffff, 0x80000)
r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000200)='nbd\x00')
sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x14, r2, 0x400, 0x70bd29, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x48000}, 0x40)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000100)='/dev/null\x00', 0x400000, 0x0)
ioctl$BLKROGET(r3, 0x125e, &(0x7f0000000140))
r4 = socket$inet(0x10, 0x3, 0xc)
sendmsg(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)

[  604.339448] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
08:51:51 executing program 0:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, &(0x7f0000000440)=ANY=[@ANYRES32=<r2=>0x0, @ANYBLOB="f5000000a3c24913ae4c6d4f68866c0ed8bdc0675ff835c2c42c70291077e4985a94573f6ed0d351fe52f675218b13475c988e88a904265121c3b546a41b4387bc42618c48082ad72b93465119ab96c17563e1afb28d71d9039ab191c85d65aa368087cd11383e4798e4d8153e98fc4ed3f3f8dc8292fbf2b652affb251020a4726102badfa057d0c7c02fe4c35ac3df4132050ea121c843fa4f2f33ea5b7f1c2c14fef3bc6dc75e34f3a85a40d57294681fabd0ae554ed00cedec0eea10d767cb4d7cb31f574ec6b6fd8401b5401b9c739adde29b24abcbe8bd3fde4ac942eae5d6a46b9d90c344f5ca8391b36cffb2c0828a510203761059a9fbef0135549cc03451252447b91939d2e627dd8bfb0c0a739e204a3e98131cf7f787fcfee4d12d4397f041dba6e3653750710e560ebfe96783f8974b6157d714ecd365426a7a72ecc87a26925c067e779f83b3e9026b906fcec7addeb7d63637f22d461ad9ad604766366fd81744a25249341512dd725d518418a7a1a5eda055ac3b92a7fd318a9cf7261b0322d07db69d0a7e6bda4bf0e3a7a5aadaf9ad9733cf9c1c7ff47391455a"], &(0x7f0000000240)=0xfd)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r1, 0x84, 0x6, &(0x7f0000000280)={r2, @in={{0x2, 0x4e24, @loopback}}}, &(0x7f0000000340)=0x84)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ppp\x00', 0x200100, 0x0)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
dup2(r3, r0)

08:51:51 executing program 1:
fcntl$getownex(0xffffffffffffff9c, 0x10, &(0x7f0000000200))
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x80003, 0x1)
recvmmsg(r0, &(0x7f0000008880), 0x45b, 0x44000102, 0x0)
sendto$inet6(r0, &(0x7f0000000140)='9', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @mcast2}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0x31, &(0x7f0000000000)=0x3, 0x4)

08:51:51 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x7)
pipe(&(0x7f0000000240)={<r1=>0xffffffffffffffff})
sendmsg$kcm(r1, &(0x7f0000001700)={&(0x7f0000000280)=@in={0x2, 0x4e20, @local}, 0x80, &(0x7f0000001680)=[{&(0x7f0000000300)="d3095e9f7b42cad842060dd5e97292109a27793e0e6bdc14bea83a59e28d8797251ecf9ae2642566dd317083fc4b745d984fdc815897942618efe0f773bc997664b41d48e4f18caccf20fbc4603ecc54ca5666457607c0939aa832406cf36f1b2d75ef0a495088a5b9062ab103fd", 0x6e}, {&(0x7f0000000380)="35bed8a63904ed3992010d77bd4cab790b1455d2d0750163fa1d595bc5763ad2e70dcf415637088a3381f790661822997566aadd75a3a9ff20d5e88eace4a18040fa9b3b3e6257c6cc3156e46ba3a7d3a3e7e21522e55b62d176929aa54ccc14992c9f0be4192f83a85cc5a310bce10a2bd7f4dfcb0b6e166e5c506e0843b4ce816192d4e7f61c159bee389274f981d00098550f130a304eb19d", 0x9a}, {&(0x7f0000000440)="b05302240ac5d4913d4019b5c24a7495e232fd6f20c184ec80786dc5fd2744d4eae8792dd73d58f1794123de935a329175c863acb551e09740769417d242109dd342632db50f0e5d26ce2bac2ba1a82eaa9f2dac5694f0b0cd682022096c8080697b4bf4468c3db7707f2e5fc353ad5ae47782defcb464d05a55d2de794c98be74163174b6d63793c93b8cf7bf869b29a591cf96c2ae05f492c34b0a2c26a86b863987e80e1ebd0713e5c2", 0xab}, {&(0x7f0000000500)="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", 0xfa}, {&(0x7f0000000600)="7d4b98191787b3af76f2586e46accdebed201ef7be082184d226fb9f325db8adfd07697803ef5745dd44a9bc9fb3f1df90cac483ef81d9430e878be3aadbe66c93a22d0adc1968f9a86b03284d070c1307ace74823151670dfe7c5981d9b51eba8faecc87162966e3234a826c1537e0039360317d6fb9f9bb80c105dd6812331a58eb89d920d62ee6f408f69a28bb3652c2eec1b84925f7f7539dfcca841bbb75b82d7a305ec2f99cb1211cc050c3c7026e6960538ec0ecb5587a1c28f184f1e9783f6a9f66d3cb4e8686f51814632520d82c0c0e4f091bc7158e61a69a4412c45f8155213ea1b2a7caf3fec8c6f8b8b18f4e58adc739806805eccf9ee936b458729654e6e07ac1d3fcbcce9832da84f76eacb198392d3a7f5022f0fdec6db2daf40cd78dc358bff81868acbfa882f9626499f28ed1a20ccfcb47b3c85db3fe99f1665ed2880516f06bc8d80756e26f198b94a989016a05008c7290b3c33ca7a2e022ce5d0722964c44515351738974cdd63b12fa6ab2b84461e5e5ab5a6c6ef68f7af4a1e32fc56e4447ee2ba0f92cecd4853b06c164f221523eaed7595bd77bfc86c60b1b377ab09cff52358c6b860beb9509166d138802ccfef0ae734cfe0d99870c6903a787bcfce44f2621761183325592301b905886486fe8cee781510d020c29f51e20438c6560a0bc085118b71740480b1ac1ed82c35ab1bda4cf867d7727c7e9783be59d3b2b0a42f5668a4c79b3ca08db3cf5207a4cc9aae103e03cb63e4d331132cee361ef3922d2d77790f70dfef3059fce95fd6d284c26ecde26b1351d15dc6e66f89987c3f7c1d38c7a6bfdbcd6c9969884b3e725208a1daa43d31d3621f43c61743603570b8091fb79a4cf9eaeef1f6fc8ac0e54892d0e5945446dbb41efdf008c8efdafe0da68657b92c7a9eccf7760ade702829bea17b2670fb5230c9d40ff88e194b38f481a9c424a7119075c8235692ce6713beaab2605baa82c2f3fc406ab4d5f6b05d66350817dcb046c130d53087e02c1b74864907a6ecc2ec3063a875c8f3efa017a2de423ebd3b4631b1627a71a623b24d7c3d6d0d48170a6ce045e9eb3e02b02716bd1f4d6e77b46ba54e13e074743fbd7f750028be45330eca68b7bb76f54de0e1634b868c24c8c4c3cf9d471d395d366f59bd7224c2f2da4b8479999fc35ef34df9e5d6519d2d44f5cc67ce55916ad2e862c0f00b0e49d418b6a8531828f580b0f1518f084b57f4f2ebbc1a727014369336cef868c4d61f79f17783158cdfd0c2670bdef46ec8cf3fc9edbc442c5fd94d90256e1e1aa31f1d677cc76bf09d97e59314e0bb93e346692517bfb724886bbefcd7c7508ce1029f2ce89ba8037f4b55f68fc30cda286d1e808689132fab5724569e00c727ce79be87ba7506c2e62b07541650fa9c2e028085bd98b3e06436d41a9d0aab1eedfaa95c6b4966c97b7906dcfb275ed97edba46172b9da48e9e5f7f796b7bd3408efe3211ee22567d7571f98a82582e146ec1452cc3db903e4c6f6f2346b482b75abc8fb96f35129f9e347faca3176a5739ef824b1af44ba9daaecb5d15853d034b0034fa0197efac1c13b8d2a5c2dac9bfca46bbe4c1fb3d606beb4bdb573db7c6a21e122da0d059e41ae0c463ed757f4301c63514e55994e4e9da5d31e2fc5cc8eb5af53853883a97d121536e549eb873c88a6b2bb39bef83f7289d046b41db3270d806878f528dd918a769623c03a7bd3f89cb7a980f0965031ea4bd59fc1f8265e27497664113d51dd7c0fcb7a65f3c6f0c9652a9d2f8188a62dc512a32a6503127814d6e4ecd4e6df993e441c3c94b51effef3ab17a88252b6737a6a920cd7a1b0f1647af8ba6501bff0e736704f638c414a8fe0f41db5da0263f95e86e12a994891bbf2c5a1a86a43831f2a78f5d270d426d3c1704777520b5081349801254e4e110efb1f5e2b3680b0240d0073bdaff1730158ebeb741363cb5e8a160bb65655b2635426d93b8690a3a4ad93c9f3f3abe283f136b3b0d9b6b7e6b01ca3140b495fdf011b48d9c48837b24bc5d0ac25b1c7da817a35691e0d20542f393c0a0f230f9cbe32f3ea930c318d8910b12a613c99adbe80a5e71c8596ffee8975af5c5701fcd3560c059b73dc84044679038ef4be38da2c4eb8be203ea2ee61e85112d6c90d01b3ac6661bbb0d81a58671cf282938ccfb6c5793e2b7608fd1fd3e33e2079a973e31c5dd1cbb2a4380d28debfba19929775ae3cba6b900d59a367eb4bf7f89afc1f56ce2b2b77639311771922f5221cea09191efa04243dc10958a0684798cd306927e7d511cdc66ecc75bb7b5579beb389bdbd9aafec3c074d8f71ffc1ef9567c6515d6d9de6137c9e84dcfb83199e03826338aaa9e7683764ee8683bd1b27a690d4e8307669df51175692965654541abae5f7a511adccef4f10e0d11fc35fca2d864921e0a2f33ee8f90640bb07d197eba35fd5eee788cb40e76338735a4a8e0864b0d7e0f984756ddc7775916be756683ae5efe8a5bf80510f646e842d01c114b41fda019e8341a6d5b0db7e027c98e147a38efeb02c19e59ad7e5090a12df4d9fee20a79db21ca4dd136cf99b01b87d482f7c76891ca0579f8eb124417fd3ab5acc047b6847b3b8dfc6e7d24aa26de427e131078c91963971a830a442906ba75787089df875f18a44ba90674b33e4e8eb8aae489c28586ba4277c7cb9f4a76dfebf6d9b9712bc46a11bc33a51c099858c3b6fd18734aa6db92e259d4f1c63b52add8c2db901d13d376f5aba80dc97fe0826f380f79e67623c94e0b7555f6378d62c785545aacd630cc0e244211c3ba5a199aced4f2d194aaf5f5c032e6bf8712729f08993851c8544eb1f2b075b7131b93e779fd7b9911881e7b0c5606cf2af420f7e17aaf18550fd3516265ebe7bf68dd22d0a65bdbc7da0e4e3eb1ab0bf9cdbdabfc08c393cdb1ffc047eb6c8a37534ac73c7978c3b9244296a7ef66e57b482e393490a8d53195b2e836f6d2bac125408fc332e46b99c19f29da0ef5c561a5a899cf1ef96fa0d46642ac4210247212085b27ea6e595d57d82db0a00bf170136bd5650fcc435814a53d1960f416a559ab91afda8e0c61421fd13bbc54deff053b766d7352a561176dc2347ba39157cc424e1b06b8a0b39ddafb6e387c145cfd5ed48b147665aed2da7fa5a6608e9112670dc64914ce85cd50c82c1e988e29d030f3792f0cbcb9e179ad2659121ee6ba9c1c3d7e1caea0b0bc8982a52adec5629e9b4d16f28c0e7ab283e15298b27e8a6e7111be49a409641de44d98628ec023fafc2dffd94a6a573f1affbccb2ac52eca1c99759478a244e487f6eb934c108361c8d6d4c0cfa1809b9cac6565cd692aa62cc48f88aee627dc9a2a0712e4060323e1a8ab66fed8f5ce560a02d783d9dcdd9884d1e098c84d52b6d34e7004fe70f512d4020c38a62e8ea8c761bb93c6f20a333df6d9d2bd5000b882305d2fcc511af2473455ca9a5db19df6e5e332207d184cee378db63c7b9b78065d815e06d03ccb2da265d144fe47e06f2276caa215a7425d4d9afd1ff049a14a44f1d76d7d0941c63874d839978a836d492731e7ed862e0cec7ab2974cc3d28117204d7094935ff7cd9b308217a66831906fa9bf47d1d7abc6fd69afd8c8bdf93648d03fe152f4c66b6a1fd5d67341275f5c1de8dabec8d01fd06df45f4c004ce57c523c37ced3b5d1c75dccf0f5d7376ba3a768a46adac5516ed257bffca8f2b3358fc2892188a674a8debeba793f0016efd24ce325f38704872ed9e7430d08b60dd1509787daa14864ad49c80e9aa240d8a7584837318c4dc6c55de9c435972e4637dbf42b3ec3e6cc0b686f3837ae55eb1e540de0dd252c9fef8b39878babebab44d8c916e76ae8a62d8aa2be47ba1682f3700f2b64b59bfcc3281d2cf7817a14e7de0dea0c522a91f212c52e62023f5b9631180fb91b5544d51b5868c540c12726362363f4a15e92dbca050ef74d25a9781ab2e2ae65af6e4ece5d1215a0aea4cca61d1c5dec212cac3b8a576e645ac4dae2a7ef183dda3aefed259e9f60c0ed86ee19cd37f8dcdc8a4f6e0d735a5f03620dd8530c51d180680e8979777c624a680a0740b7f1b8dd7d4c0943ddfb8b65b41931fb3246ef18b242db9ec6d762a4aff646df52f3614ff186190142c9d3e0d3001bb3204f36c007f22e4f0585358de92ab9110e064c1c6745f986709afcfcb0628221f0ce4c94b3324409633fc139f12177ee89898c2b78e45a90928e836f8521b6619ab84a806f7bdd5992962b1b80636622ff67c2d4a3f1b6c5f3583d0edad9e84128032cfc4e43127eb1935f6e27e74b0b57ee7020de33ccf55fab23f447a34e6f512c2e14ce57657d1555cf83b048567e1051cb81b24d153d8137177846e14e6079aa861f4c9d852ba2b256313257ece8b550b1b3738677a90ce887f1d5737547da24728f73d712418f8b7aad73f7a0384bd9ed02027fb5f1ab07eb0b0ab0dcdfeb7def218c5515c73c14435ba5966b26c19eb00fed88b51dc62634808d89b40eb072c4ce4451d3194d2745251c0aceee68f217938cf7e705877129ddf58e9594d65f751e732742a27924d08cbf39830ac764762a526dab830a792e9486d5476b758d10ba045f276898489c54bf1ca89002e21df8c9378a77fbd26fd274c99b98ae4c2e87328db5eb5d229f75eacf0527050fd03764bd7c4a2c077e7ec334c82930838d5fab18bb58a04a5768cc10b936da39d25c9f7115ad382cd7c2f3bf73bb34ac4d8ea9d0790cbffc4bfe5654cc5bb2a43c793111cbe82ee10dec624b67a5040b9587ceccef3de9ce0fae27f8d669e939b64e5979e60a8fb434f2c726da4f9efb473bd05f91ca9159acb7b227cc39cb0da99b5c17ad832c97d91e3e4c8584649bd8a0fd1327557e8614ba6ea757ec068c4e4e1db25e4673ad2aa832f55eda3f3a727fa215705f82e9bc91e8fdce4c858f3df26b7d6b209d048984a5f035b651b77d286d2e0c725b6d1edd8accb5995ed6dc02411e6069326c286f54dbd0c9e039a225eaf7868ffd315f59fd2ddaa99ffb6896cd2c132686591f4fd76cf0f5f651a3836aa8c7df89ee4070a03a2251b2bdae064405a84de623b9dc89827254ef24ba41d77dcaa844634758265ae17222f680f08060956d65fc0a26d73f96f45edfa18abd438f7d7b8d5035d4ad56be93742b74bb9bc14ee90dc2575276682895184d84a5bff6fb5f5e37e43a1ea4eaa06a7cfa89e59d1302a8d2f299018746e4512cf538e2434f3682c80b762a353bd4164f4c2775bc333e0577e92de3ef3110791cc22630f4edd1ee5a9ea0d32eaab42d3d75fe57061c676ef5c641c4dcb9c975b0ca488144a834e1602f1b1117f75401c76ab1234cd2998fedac673edb650c22a521531437ae917791457a22c939bbf7cc2f1cd1fc0d00270f55e793c1b109141adcbd0fce8c4b57e6de895a76b75a6c7cf6f1162cd159b782c645e7a698dec378b3666b6e4196837779f8321375370d1c837861f5c67ab336bb22c1f28fbf507db37d354cf2900472f4f5dc679b032e170548398dbc84fa0c136a9cd7874221d4d78c76f4629940768f680bad42626874edf6bb6c2f2737202ba4add9d996eef826ca02f15c0f4da62846655c3aea20cb5d0704ca7130446e2b57ddd03a466a9d1e1816b2a5014eb49fe1044dd86ac6c7753b0c3a83a206e022c57a22cca5fb680dd4902198751326a7ed0efda7c773100de1f505703f0d009f7ca0957b932da2c4", 0x1000}, {&(0x7f0000001600)="ca58ad495c54bf2ae2f25a71c3d3b25aab5bbc20c43bd8fd09742e776f458d317ef7bcb8f752b5df474147078559282f6c91d4dc8bcfbe11c76fd795e925fd89873e78950c93fa81046fbbc5b9d1c7d5a0adbff2cc54c9fbf3aeda32077afff0f3f8da0c34e9fd6b918a28e64adf915cd24caf534960e5d2", 0x78}], 0x6, 0x0, 0x0, 0x800}, 0x20040001)
r2 = socket$inet(0x10, 0x3, 0xc)
sendmsg(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)
getsockopt$SO_TIMESTAMPING(r2, 0x1, 0x25, &(0x7f0000000100), &(0x7f0000000140)=0x4)
r3 = syz_open_dev$adsp(&(0x7f0000000180)='/dev/adsp#\x00', 0x9, 0x101000)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r3, 0x10e, 0x4, &(0x7f00000001c0)=0x509fd5a4, 0x4)
ioctl$RTC_PLL_SET(r3, 0x40207012, &(0x7f0000000200)={0x7, 0x54, 0x7a17, 0x100, 0xffff, 0x5, 0x9})

[  604.911936] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
[  604.987257] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
08:51:52 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000), 0x10)
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x5e0e3ce42a60e762, 0x0)
bind$rds(r1, &(0x7f00000000c0)={0x2, 0x4e24, @multicast1}, 0x10)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

08:51:52 executing program 0:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
pipe(&(0x7f00000000c0)={<r1=>0xffffffffffffffff})
sendmsg$nl_route(r1, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4000002}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)=@ipv4_delrule={0x28, 0x21, 0x0, 0x70bd2c, 0x25dfdbfc, {0x2, 0xa0, 0x14, 0x5, 0x81, 0x0, 0x0, 0x0, 0x10000}, [@FRA_GENERIC_POLICY=@FRA_L3MDEV={0x8, 0x13, 0x40}]}, 0x28}, 0x1, 0x0, 0x0, 0x5}, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ppp\x00', 0x8080, 0x0)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
dup2(r2, r0)

08:51:52 executing program 5:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000e5b000)={0x2, 0x10000004e20, @multicast1}, 0x10)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x4e20}, 0x10)

08:51:52 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r0=>0xffffffffffffffff})
r1 = syz_open_dev$sndpcmp(&(0x7f0000000100)='/dev/snd/pcmC#D#p\x00', 0x3, 0x80000)
r2 = syz_open_dev$vbi(&(0x7f0000000180)='/dev/vbi#\x00', 0x2, 0x2)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400400200)
r3 = syz_genetlink_get_family_id$nbd(&(0x7f0000000200)='nbd\x00')
sendmsg$NBD_CMD_STATUS(r1, &(0x7f0000000300)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4040}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="00000100000000000000000000000000000000", @ANYRES32=r2, @ANYBLOB="08000100", @ANYRES32=r1, @ANYBLOB="0c00020008000000000000000c00020090000000000000000c0008000400000000000000"], 0x4c}, 0x1, 0x0, 0x0, 0x4040000}, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f00000000c0)={0x8001, 0xffffffffffffffac, 0x9, 0x8, 0x1, 0x3})
r4 = socket$inet(0x10, 0x3, 0x20000000000000c)
sendmsg(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)

08:51:52 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x80003, 0x1)
recvmmsg(r0, &(0x7f0000008880), 0x45b, 0x44000102, 0x0)
sendto$inet6(r0, &(0x7f0000000140)='9', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @mcast2}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0x31, &(0x7f0000000000)=0x3, 0x4)

[  605.439543] not chained 390000 origins
[  605.442397] CPU: 0 PID: 16079 Comm: syz-executor4 Not tainted 4.20.0-rc2+ #88
[  605.449076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  605.449076] Call Trace:
[  605.449076]  dump_stack+0x32d/0x480
[  605.449076]  kmsan_internal_chain_origin+0x222/0x240
[  605.449076]  ? save_stack_trace+0xc6/0x110
[  605.449076]  ? __irqentry_text_end+0x1fa056/0x1fa056
[  605.449076]  ? kmsan_internal_chain_origin+0x90/0x240
[  605.449076]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  605.449076]  ? is_bpf_text_address+0x49e/0x4d0
[  605.449076]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  605.449076]  ? in_task_stack+0x12c/0x210
[  605.449076]  __msan_chain_origin+0x6d/0xb0
[  605.449076]  __save_stack_trace+0x833/0xc60
[  605.449076]  ? save_stack_trace+0xc6/0x110
[  605.449076]  save_stack_trace+0xc6/0x110
[  605.449076]  kmsan_internal_chain_origin+0x136/0x240
[  605.449076]  ? kmsan_internal_chain_origin+0x136/0x240
[  605.449076]  ? kmsan_memcpy_origins+0x13d/0x190
[  605.449076]  ? __msan_memcpy+0x6f/0x80
[  605.449076]  ? skb_copy_bits+0x1d2/0xc90
[  605.449076]  ? skb_copy+0x56c/0xba0
[  605.449076]  ? tcp_send_synack+0x7a3/0x18f0
[  605.449076]  ? tcp_rcv_state_process+0x275d/0x6c60
[  605.449076]  ? tcp_v4_do_rcv+0xb25/0xd80
[  605.449076]  ? __release_sock+0x32d/0x750
[  605.449076]  ? release_sock+0x99/0x2a0
[  605.449076]  ? __inet_stream_connect+0xdff/0x15d0
[  605.449076]  ? tcp_sendmsg_locked+0x6655/0x6c30
[  605.449076]  ? tcp_sendmsg+0xb2/0x100
[  605.449076]  ? inet_sendmsg+0x4e9/0x800
[  605.449076]  ? __sys_sendto+0x940/0xb80
[  605.449076]  ? __se_sys_sendto+0x107/0x130
[  605.449076]  ? __x64_sys_sendto+0x6e/0x90
[  605.449076]  ? do_syscall_64+0xcf/0x110
[  605.449076]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  605.449076]  ? memcg_kmem_put_cache+0x73/0x460
[  605.449076]  ? __kmalloc_node_track_caller+0x1010/0x14e0
[  605.449076]  ? __msan_get_context_state+0x9/0x20
[  605.449076]  ? INIT_INT+0xc/0x30
[  605.449076]  ? __kmalloc_node_track_caller+0x369/0x14e0
[  605.449076]  ? __msan_get_context_state+0x9/0x20
[  605.449076]  kmsan_memcpy_origins+0x13d/0x190
[  605.449076]  __msan_memcpy+0x6f/0x80
[  605.449076]  skb_copy_bits+0x1d2/0xc90
[  605.449076]  skb_copy+0x56c/0xba0
[  605.449076]  tcp_send_synack+0x7a3/0x18f0
[  605.449076]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  605.449076]  tcp_rcv_state_process+0x275d/0x6c60
[  605.449076]  tcp_v4_do_rcv+0xb25/0xd80
[  605.449076]  ? __local_bh_enable_ip+0x11f/0x260
[  605.449076]  ? inet_sk_rx_dst_set+0x200/0x200
[  605.449076]  __release_sock+0x32d/0x750
[  605.449076]  release_sock+0x99/0x2a0
[  605.449076]  __inet_stream_connect+0xdff/0x15d0
[  605.449076]  ? wait_woken+0x5b0/0x5b0
[  605.449076]  tcp_sendmsg_locked+0x6655/0x6c30
[  605.449076]  ? aa_label_sk_perm+0xda/0x960
[  605.449076]  ? kmsan_set_origin+0x7f/0x100
[  605.449076]  ? kmsan_internal_unpoison_shadow+0x83/0xd0
[  605.449076]  ? __msan_poison_alloca+0x1e0/0x270
[  605.449076]  ? __local_bh_enable_ip+0x46/0x260
[  605.449076]  ? __msan_poison_alloca+0x1e0/0x270
[  605.449076]  tcp_sendmsg+0xb2/0x100
[  605.449076]  ? tcp_sendmsg_locked+0x6c30/0x6c30
[  605.449076]  inet_sendmsg+0x4e9/0x800
[  605.449076]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  605.449076]  ? security_socket_sendmsg+0x1bd/0x200
[  605.449076]  ? inet_getname+0x490/0x490
[  605.449076]  __sys_sendto+0x940/0xb80
[  605.449076]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  605.449076]  ? prepare_exit_to_usermode+0x182/0x4c0
[  605.449076]  __se_sys_sendto+0x107/0x130
[  605.449076]  __x64_sys_sendto+0x6e/0x90
[  605.449076]  do_syscall_64+0xcf/0x110
[  605.449076]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  605.449076] RIP: 0033:0x457569
[  605.449076] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  605.449076] RSP: 002b:00007fe2bd024c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  605.449076] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000457569
[  605.449076] RDX: 0000000000000275 RSI: 00000000200000c0 RDI: 0000000000000003
[  605.449076] RBP: 000000000072bf00 R08: 0000000020000040 R09: 0000000000000010
[  605.449076] R10: 0000000020000802 R11: 0000000000000246 R12: 00007fe2bd0256d4
[  605.449076] R13: 00000000004c3c11 R14: 00000000004d5e80 R15: 00000000ffffffff
[  605.449076] Uninit was stored to memory at:
[  605.449076]  kmsan_internal_chain_origin+0x136/0x240
[  605.449076]  __msan_chain_origin+0x6d/0xb0
[  605.449076]  save_stack_trace+0xfa/0x110
[  605.449076]  kmsan_internal_chain_origin+0x136/0x240
[  605.449076]  kmsan_memcpy_origins+0x13d/0x190
[  605.449076]  __msan_memcpy+0x6f/0x80
[  605.449076]  skb_copy_bits+0x1d2/0xc90
[  605.449076]  skb_copy+0x56c/0xba0
[  605.449076]  tcp_send_synack+0x7a3/0x18f0
[  605.449076]  tcp_rcv_state_process+0x275d/0x6c60
[  605.449076]  tcp_v4_do_rcv+0xb25/0xd80
[  605.449076]  __release_sock+0x32d/0x750
[  605.449076]  release_sock+0x99/0x2a0
[  605.449076]  __inet_stream_connect+0xdff/0x15d0
[  605.449076]  tcp_sendmsg_locked+0x6655/0x6c30
[  605.449076]  tcp_sendmsg+0xb2/0x100
[  605.449076]  inet_sendmsg+0x4e9/0x800
[  605.449076]  __sys_sendto+0x940/0xb80
[  605.449076]  __se_sys_sendto+0x107/0x130
[  605.449076]  __x64_sys_sendto+0x6e/0x90
[  605.449076]  do_syscall_64+0xcf/0x110
[  605.449076]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  605.449076] 
[  605.449076] Uninit was stored to memory at:
[  605.449076]  kmsan_internal_chain_origin+0x136/0x240
[  605.449076]  __msan_chain_origin+0x6d/0xb0
[  605.449076]  __save_stack_trace+0x833/0xc60
[  605.449076]  save_stack_trace+0xc6/0x110
[  605.449076]  kmsan_internal_chain_origin+0x136/0x240
[  605.449076]  kmsan_memcpy_origins+0x13d/0x190
[  605.449076]  __msan_memcpy+0x6f/0x80
[  605.449076]  skb_copy_bits+0x1d2/0xc90
[  605.449076]  skb_copy+0x56c/0xba0
[  605.449076]  tcp_send_synack+0x7a3/0x18f0
[  605.449076]  tcp_rcv_state_process+0x275d/0x6c60
[  605.449076]  tcp_v4_do_rcv+0xb25/0xd80
[  605.449076]  __release_sock+0x32d/0x750
[  605.449076]  release_sock+0x99/0x2a0
[  605.449076]  __inet_stream_connect+0xdff/0x15d0
[  605.449076]  tcp_sendmsg_locked+0x6655/0x6c30
[  605.449076]  tcp_sendmsg+0xb2/0x100
[  605.449076]  inet_sendmsg+0x4e9/0x800
[  605.449076]  __sys_sendto+0x940/0xb80
[  605.449076]  __se_sys_sendto+0x107/0x130
[  605.449076]  __x64_sys_sendto+0x6e/0x90
[  605.449076]  do_syscall_64+0xcf/0x110
[  605.449076]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  605.449076] 
[  605.449076] Uninit was stored to memory at:
[  605.449076]  kmsan_internal_chain_origin+0x136/0x240
[  605.449076]  __msan_chain_origin+0x6d/0xb0
[  605.449076]  save_stack_trace+0xfa/0x110
[  605.449076]  kmsan_internal_chain_origin+0x136/0x240
[  605.449076]  kmsan_memcpy_origins+0x13d/0x190
[  605.449076]  __msan_memcpy+0x6f/0x80
[  605.449076]  skb_copy_bits+0x1d2/0xc90
[  605.449076]  skb_copy+0x56c/0xba0
[  605.449076]  tcp_send_synack+0x7a3/0x18f0
[  605.449076]  tcp_rcv_state_process+0x275d/0x6c60
[  605.449076]  tcp_v4_do_rcv+0xb25/0xd80
[  605.449076]  __release_sock+0x32d/0x750
[  605.449076]  release_sock+0x99/0x2a0
[  605.449076]  __inet_stream_connect+0xdff/0x15d0
[  605.449076]  tcp_sendmsg_locked+0x6655/0x6c30
[  605.449076]  tcp_sendmsg+0xb2/0x100
[  605.449076]  inet_sendmsg+0x4e9/0x800
[  605.449076]  __sys_sendto+0x940/0xb80
[  605.449076]  __se_sys_sendto+0x107/0x130
[  605.449076]  __x64_sys_sendto+0x6e/0x90
[  605.449076]  do_syscall_64+0xcf/0x110
[  605.449076]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  605.449076] 
[  605.449076] Uninit was stored to memory at:
[  605.449076]  kmsan_internal_chain_origin+0x136/0x240
[  605.449076]  __msan_chain_origin+0x6d/0xb0
[  605.449076]  __save_stack_trace+0x833/0xc60
[  605.449076]  save_stack_trace+0xc6/0x110
[  605.449076]  kmsan_internal_chain_origin+0x136/0x240
[  605.449076]  kmsan_memcpy_origins+0x13d/0x190
[  605.449076]  __msan_memcpy+0x6f/0x80
[  605.449076]  skb_copy_bits+0x1d2/0xc90
[  605.449076]  skb_copy+0x56c/0xba0
[  605.449076]  tcp_send_synack+0x7a3/0x18f0
[  605.449076]  tcp_rcv_state_process+0x275d/0x6c60
[  605.449076]  tcp_v4_do_rcv+0xb25/0xd80
[  605.449076]  __release_sock+0x32d/0x750
[  605.449076]  release_sock+0x99/0x2a0
[  605.449076]  __inet_stream_connect+0xdff/0x15d0
[  605.449076]  tcp_sendmsg_locked+0x6655/0x6c30
[  605.449076]  tcp_sendmsg+0xb2/0x100
[  605.449076]  inet_sendmsg+0x4e9/0x800
[  605.449076]  __sys_sendto+0x940/0xb80
[  605.449076]  __se_sys_sendto+0x107/0x130
[  605.449076]  __x64_sys_sendto+0x6e/0x90
[  605.449076]  do_syscall_64+0xcf/0x110
[  605.449076]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  605.449076] 
[  605.449076] Uninit was stored to memory at:
[  605.449076]  kmsan_internal_chain_origin+0x136/0x240
[  605.449076]  __msan_chain_origin+0x6d/0xb0
[  605.449076]  save_stack_trace+0xfa/0x110
[  605.449076]  kmsan_internal_chain_origin+0x136/0x240
[  605.449076]  kmsan_memcpy_origins+0x13d/0x190
[  605.449076]  __msan_memcpy+0x6f/0x80
[  605.449076]  skb_copy_bits+0x1d2/0xc90
[  605.449076]  skb_copy+0x56c/0xba0
[  605.449076]  tcp_send_synack+0x7a3/0x18f0
[  605.449076]  tcp_rcv_state_process+0x275d/0x6c60
[  605.449076]  tcp_v4_do_rcv+0xb25/0xd80
[  605.449076]  __release_sock+0x32d/0x750
[  605.449076]  release_sock+0x99/0x2a0
[  605.449076]  __inet_stream_connect+0xdff/0x15d0
[  605.449076]  tcp_sendmsg_locked+0x6655/0x6c30
[  605.449076]  tcp_sendmsg+0xb2/0x100
[  605.449076]  inet_sendmsg+0x4e9/0x800
[  605.449076]  __sys_sendto+0x940/0xb80
[  605.449076]  __se_sys_sendto+0x107/0x130
[  605.449076]  __x64_sys_sendto+0x6e/0x90
[  605.449076]  do_syscall_64+0xcf/0x110
[  605.449076]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  605.449076] 
[  605.449076] Uninit was stored to memory at:
[  605.449076]  kmsan_internal_chain_origin+0x136/0x240
[  605.449076]  __msan_chain_origin+0x6d/0xb0
[  605.449076]  __save_stack_trace+0x833/0xc60
[  605.449076]  save_stack_trace+0xc6/0x110
[  605.449076]  kmsan_internal_chain_origin+0x136/0x240
[  605.449076]  kmsan_memcpy_origins+0x13d/0x190
[  605.449076]  __msan_memcpy+0x6f/0x80
[  605.449076]  skb_copy_bits+0x1d2/0xc90
[  605.449076]  skb_copy+0x56c/0xba0
[  605.449076]  tcp_send_synack+0x7a3/0x18f0
[  605.449076]  tcp_rcv_state_process+0x275d/0x6c60
[  605.449076]  tcp_v4_do_rcv+0xb25/0xd80
[  605.449076]  __release_sock+0x32d/0x750
[  605.449076]  release_sock+0x99/0x2a0
[  605.449076]  __inet_stream_connect+0xdff/0x15d0
[  605.449076]  tcp_sendmsg_locked+0x6655/0x6c30
[  605.449076]  tcp_sendmsg+0xb2/0x100
[  605.449076]  inet_sendmsg+0x4e9/0x800
[  605.449076]  __sys_sendto+0x940/0xb80
[  605.449076]  __se_sys_sendto+0x107/0x130
[  605.449076]  __x64_sys_sendto+0x6e/0x90
[  605.449076]  do_syscall_64+0xcf/0x110
[  605.449076]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  605.449076] 
[  605.449076] Uninit was stored to memory at:
[  605.449076]  kmsan_internal_chain_origin+0x136/0x240
[  605.449076]  __msan_chain_origin+0x6d/0xb0
[  605.449076]  save_stack_trace+0xfa/0x110
[  605.449076]  kmsan_internal_chain_origin+0x136/0x240
[  605.449076]  kmsan_memcpy_origins+0x13d/0x190
[  605.449076]  __msan_memcpy+0x6f/0x80
[  605.449076]  skb_copy_bits+0x1d2/0xc90
[  605.449076]  skb_copy+0x56c/0xba0
[  605.449076]  tcp_send_synack+0x7a3/0x18f0
[  605.449076]  tcp_rcv_state_process+0x275d/0x6c60
[  605.449076]  tcp_v4_do_rcv+0xb25/0xd80
[  605.449076]  __release_sock+0x32d/0x750
[  605.449076]  release_sock+0x99/0x2a0
[  605.449076]  __inet_stream_connect+0xdff/0x15d0
[  605.449076]  tcp_sendmsg_locked+0x6655/0x6c30
[  605.449076]  tcp_sendmsg+0xb2/0x100
[  605.449076]  inet_sendmsg+0x4e9/0x800
[  605.449076]  __sys_sendto+0x940/0xb80
[  605.449076]  __se_sys_sendto+0x107/0x130
[  605.449076]  __x64_sys_sendto+0x6e/0x90
[  605.449076]  do_syscall_64+0xcf/0x110
[  605.449076]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  605.449076] 
[  605.449076] Local variable description: ----iph@ip_vs_in
[  605.449076] Variable was created at:
[  605.449076]  ip_vs_in+0x155/0x3250
[  605.449076]  ip_vs_local_request4+0xec/0x130
[  606.710680] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
08:51:53 executing program 5:
fcntl$dupfd(0xffffffffffffff9c, 0x406, 0xffffffffffffffff)
accept$packet(0xffffffffffffffff, &(0x7f00000002c0)={0x11, 0x0, <r0=>0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000300)=0x14)
setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000340)={r0, 0x1, 0x6, @remote}, 0x10)
getrusage(0x0, &(0x7f0000000840))
ioctl$KDGKBDIACR(0xffffffffffffffff, 0x4b4a, &(0x7f00000000c0)=""/211)
timer_delete(0x0)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$int_in(r1, 0x5452, &(0x7f00000006c0)=0x3)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='clear_refs\x00')
r3 = syz_open_procfs(0x0, &(0x7f0000000440)='stat\x00')
sendfile(r2, r3, &(0x7f0000000080), 0x1)

[  606.759348] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
08:51:53 executing program 0:
r0 = syz_open_dev$dri(&(0x7f00000003c0)='/dev/dri/card#\x00', 0x9, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
socketpair$inet_smc(0x2b, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
getsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f0000000240), &(0x7f0000000280)=0x8)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r2, 0xc0605345, &(0x7f0000000300)={0x5, 0x2, {0xffffffffffffffff, 0x1, 0x5, 0x3, 0xff}})
fsetxattr(r0, &(0x7f0000000000)=@random={'trusted.', '/dev/dri/card#\x00'}, &(0x7f00000002c0)="2f008084e4e1ce3448a8175fdc872b5e72ad0e2b45504a609a399c97c7a2a4ec000000000000", 0x26, 0x2)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
r3 = dup2(r2, r0)
ioctl$PPPIOCGMRU(r3, 0x80047453, &(0x7f00000001c0))
ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_POOL(r2, 0xc058534b, &(0x7f0000000140)={0x1, 0x6, 0x99, 0x7ff, 0xfffffffffffffff7, 0xfffffffffffffffa})

08:51:54 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
syz_open_dev$sndmidi(&(0x7f0000000100)='/dev/snd/midiC#D#\x00', 0x7, 0x600)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$inet(0x10, 0x3, 0xc)
sendmsg(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)

08:51:54 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000fc0)={'syz_tun\x00'})
sendmsg$nl_route(r0, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0xf0ffffff}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="fefffe000a000200ff00000000002a81"], 0x1}}, 0x0)

[  607.136000] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
08:51:54 executing program 0:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
dup2(r1, r0)
ioctl$EVIOCGVERSION(r1, 0x80044501, &(0x7f0000000240)=""/247)

08:51:54 executing program 1:
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x400, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BLKBSZSET(0xffffffffffffffff, 0x40081271, &(0x7f0000000180)=0x100000000)
ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, &(0x7f00000001c0))
r0 = open(&(0x7f0000000780)='./bus\x00', 0x14103e, 0x0)
r1 = getgid()
ioctl$TUNSETGROUP(r0, 0x400454ce, r1)
read(r0, &(0x7f0000000200)=""/19, 0x93fa513f)
tee(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)
r2 = socket$inet6(0xa, 0x800000100000002, 0x0)
sendmmsg(r2, &(0x7f0000002000)=[{{&(0x7f0000000000)=@in6={0xa, 0x0, 0x0, @mcast1}, 0x80, &(0x7f0000000280), 0x0, &(0x7f0000000100)}}], 0x1, 0x0)
keyctl$clear(0x7, 0x0)
sync()

08:51:54 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0))
socket$inet(0x10, 0x3, 0xc)

08:51:54 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000080)=<r1=>0x0)
wait4(r1, 0x0, 0x8, &(0x7f00000000c0))
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

08:51:54 executing program 5:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000903000)={0x1, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002e0000009700000000f4ff009500000000000000"], &(0x7f0000000200)="73797a6b616c6c65722c493d6c2b78db01beb8234b8301e2918b8b33e703f173263d15127d1c5309a0593d0f6dbe9cd5434619dfff6e61ba74ed3776315503f2d22b3ecd7a62819bc2345afd348344bed224a114267fd4cd1e55f8cf69c16cfffd3a4dc7721aacdfb55e39d507f86531752d2affc30318f5da65be34374a24f6", 0xfffffffffffffffa, 0x1000, &(0x7f00009ab000)=""/4096}, 0x48)
r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r0)

08:51:54 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, &(0x7f0000000180)="2e65f32efe0a6766c7442400008000006766c7442402000000006766c744240600000000670f011c24b866000f00d066b88044a2b20f23c80f21f866350400d0000f23f80f0766b80500000066b9080000000f01c10f0766b8010000000f01c10f01dfb835008ee0", 0x68}], 0x1, 0x0, &(0x7f00000000c0), 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000100)="460f300f07c483614804ee08440f20c03506000000440f22c0c402f93473230f09f20f013cb9b805000000b9c00000000f01d90fc728c4c1f9e79f2e000000", 0x3f}], 0x1, 0x0, &(0x7f0000000200), 0x1)
ioctl$FS_IOC_GETFSMAP(r2, 0xc0c0583b, &(0x7f0000000940)=ANY=[@ANYBLOB="00000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d348000005000000f9fffffffffffffffb0000000000000001800000000000000600000000000000000000000000000000000000100000000000000000000000ff010000f8ffffff07000000000000000700000000000000ff070000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b2633e3b00000000000000000000000000000000000000000000000000000000000000000000000000000000000000"])
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_bp={&(0x7f0000000440)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_pktinfo(0xffffffffffffff9c, 0x0, 0x8, &(0x7f0000003fc0)={0x0, @dev, @loopback}, &(0x7f0000004000)=0xc)
socketpair$inet_icmp_raw(0x2, 0x3, 0x1, &(0x7f0000000040))

08:51:54 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={&(0x7f0000000280), 0xc, &(0x7f00000000c0)={&(0x7f00000001c0)=@newlink={0x38, 0x10, 0xf21, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x4}}}, @IFLA_LINK_NETNSID={0x8, 0x2e}]}, 0x38}}, 0x0)

08:51:54 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$inet(0x10, 0x3, 0xc)
r2 = getpgrp(0xffffffffffffffff)
syz_open_procfs$namespace(r2, &(0x7f0000000100)='ns/uts\x00')
sendmsg(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)

08:51:54 executing program 0:
clone(0x3102001ffe, 0x0, 0xfffffffffffffffe, &(0x7f0000000000), 0xffffffffffffffff)
r0 = gettid()
clock_gettime(0x0, &(0x7f00000003c0)={0x0, <r1=>0x0})
clock_nanosleep(0x0, 0x0, &(0x7f0000000180)={0x0, r1+10000000}, &(0x7f00000001c0))
ptrace$setopts(0x4206, r0, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0x0, 0x8, 0x4}, 0x2f)
tkill(r0, 0x1b)
ptrace$cont(0x18, r0, 0x0, 0x0)
clock_adjtime(0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3fffc00, 0xc})
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x1f, r0, 0x0, 0x0)

[  607.958874] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
08:51:55 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))

08:51:55 executing program 0:
io_setup(0x203, &(0x7f00000000c0)=<r0=>0x0)
r1 = openat$md(0xffffffffffffff9c, &(0x7f0000000000)='/dev/md0\x00', 0x0, 0x0)
close(r1)
syz_open_dev$usb(&(0x7f0000000040)='/dev/bus/usb/00#/00#\x00', 0x19b, 0x0)
io_submit(r0, 0x1, &(0x7f0000000b00)=[&(0x7f00000002c0)={0x0, 0x0, 0x0, 0x5, 0x0, r1, 0x0}])

08:51:55 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'md4\x00'}, 0x58)
ioctl$TCSETS(0xffffffffffffffff, 0x5402, &(0x7f0000000300))
r1 = accept$alg(r0, 0x0, 0x0)
sendmmsg(r1, &(0x7f0000007f00)=[{{&(0x7f00000056c0)=@can, 0x7ffff000, &(0x7f00000000c0)}}, {{&(0x7f0000005900)=@pppoe={0x18, 0x0, {0x0, @link_local, 'syzkaller0\x00'}}, 0x80, &(0x7f0000007ac0), 0x1a9, &(0x7f0000007b00)}}], 0x3fffffffffffe0d, 0x0)

08:51:55 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff})
r1 = syz_open_dev$vcsn(&(0x7f0000000140)='/dev/vcs#\x00', 0x2, 0x400)
write$P9_ROPEN(r1, &(0x7f0000000180)={0x18, 0x71, 0x2, {{0x1, 0x2, 0x6}, 0x7}}, 0x18)
prctl$getreaper(0x0, &(0x7f00000001c0))
syz_open_dev$evdev(&(0x7f0000000200)='/dev/input/event#\x00', 0x2d, 0x40)
sysinfo(&(0x7f0000000440)=""/251)
r2 = syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x8, 0x2000)
accept$inet6(r2, 0x0, &(0x7f0000000280))
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x4001ff)
ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x89e2, &(0x7f0000000240)={r0})
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000400)='/dev/snapshot\x00', 0x200404, 0x0)
socketpair(0x13, 0x80000, 0x3ff, &(0x7f0000000300))
sendmsg(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)
fcntl$F_GET_FILE_RW_HINT(r1, 0x40d, &(0x7f00000003c0))
ioctl$GIO_FONTX(r2, 0x4b6b, &(0x7f00000002c0)=""/45)

08:51:55 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))

08:51:55 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f0000000340)="b9cc60f63984ccf813e23dc9838f38", 0xf, 0x1, &(0x7f0000000300)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
r1 = syz_open_dev$vcsa(&(0x7f0000000080)='/dev/vcsa#\x00', 0x7, 0x20002)
getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x13, &(0x7f0000000140)={<r2=>0x0, 0x7}, &(0x7f0000000180)=0x8)
socketpair$inet_icmp_raw(0x2, 0x3, 0x1, &(0x7f0000000380))
getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000200)={r2, 0x12d2}, &(0x7f0000000240)=0x8)
getsockname$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @ipv4={[], [], @broadcast}}, &(0x7f0000000100)=0x1c)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

08:51:55 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, &(0x7f00000000c0)="c744240006000000c744240200000080c7442406000000000f01142466b8c2008ec80f070f0f369a0f2002674669f9c12c000026660f38157e0f660f0dbead00000066baf80cb8bcecb281ef66bafc0cb80b000000ef0f20d835080000000f22d8", 0x61}], 0x1, 0x0, &(0x7f0000000180), 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_NMI(r3, 0xae9a)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000027000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f00000001c0)="4a0fc72f65440f3066b8b4000f00d00f013348b8b6000000000000000f23d00f21f8350000000f0f23f8f30f5c42274a0fc7983e0d4ff566baf80cb8d87a5b80ef66bafc0cb800380000ef66470f765a00c744240030000000c74424020e800000ff2c24", 0x64}], 0x1, 0x0, &(0x7f0000000380), 0x0)
fsetxattr$security_evm(0xffffffffffffffff, &(0x7f0000000040)='security.evm\x00', &(0x7f0000000080)=ANY=[@ANYBLOB="f0"], 0x1, 0x0)
ioctl$sock_inet_SIOCGIFDSTADDR(0xffffffffffffffff, 0x8917, &(0x7f0000000000)={'teql0\x00', {0x2, 0x0, @dev}})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

08:51:56 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$inet(0x10, 0x3, 0xc)
socketpair$inet_dccp(0x2, 0x6, 0x0, &(0x7f0000000100))
sendmsg(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)

08:51:56 executing program 2:
syz_emit_ethernet(0x7ffff, &(0x7f0000000040)={@random="3fada9fcd703", @local, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x0, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}, @multicast1}, @dccp={{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "d73cde", 0x0, "f53475"}}}}}}, 0x0)

08:51:56 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x5}, 0x1c)
r1 = socket$l2tp(0x18, 0x1, 0x1)
connect$l2tp(r1, &(0x7f0000000180)=@pppol2tpv3={0x18, 0x1, {0x0, r0, {0x2, 0x0, @multicast2}, 0x4}}, 0x26)
connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={[], [], @multicast2}}, 0x1c)
sendmmsg(r1, &(0x7f0000005fc0), 0x80000000000006a, 0x0)

[  609.211749] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
[  609.253227] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
[  609.339539] not chained 400000 origins
[  609.342202] CPU: 0 PID: 16194 Comm: syz-executor1 Not tainted 4.20.0-rc2+ #88
[  609.342202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  609.342202] Call Trace:
[  609.342202]  dump_stack+0x32d/0x480
[  609.342202]  ? save_stack_trace+0xc6/0x110
[  609.342202]  kmsan_internal_chain_origin+0x222/0x240
[  609.342202]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  609.342202]  ? is_bpf_text_address+0x49e/0x4d0
[  609.342202]  ? INIT_INT+0xc/0x30
[  609.342202]  ? __msan_warning+0x76/0xc0
[  609.342202]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  609.342202]  ? __save_stack_trace+0x9f2/0xc60
[  609.342202]  __msan_chain_origin+0x6d/0xb0
[  609.342202]  save_stack_trace+0xfa/0x110
[  609.342202]  kmsan_internal_chain_origin+0x136/0x240
[  609.342202]  ? kmsan_internal_chain_origin+0x136/0x240
[  609.342202]  ? kmsan_memcpy_origins+0x13d/0x190
[  609.342202]  ? __msan_memcpy+0x6f/0x80
[  609.342202]  ? pskb_expand_head+0x436/0x1d20
[  609.342202]  ? l2tp_xmit_skb+0x5a7/0x24b0
[  609.342202]  ? pppol2tp_sendmsg+0x79a/0xba0
[  609.342202]  ? ___sys_sendmsg+0xe3b/0x1240
[  609.342202]  ? __sys_sendmmsg+0x56b/0xa90
[  609.342202]  ? __se_sys_sendmmsg+0xbd/0xe0
[  609.342202]  ? __x64_sys_sendmmsg+0x56/0x70
[  609.342202]  ? do_syscall_64+0xcf/0x110
[  609.342202]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  609.342202]  ? __msan_poison_alloca+0x1e0/0x270
[  609.342202]  ? memcg_kmem_put_cache+0x73/0x460
[  609.342202]  ? __kmalloc_node_track_caller+0x1010/0x14e0
[  609.342202]  ? __msan_get_context_state+0x9/0x20
[  609.342202]  ? INIT_INT+0xc/0x30
[  609.342202]  ? __kmalloc_node_track_caller+0x369/0x14e0
[  609.342202]  ? memcg_kmem_put_cache+0x73/0x460
[  609.342202]  kmsan_memcpy_origins+0x13d/0x190
[  609.342202]  __msan_memcpy+0x6f/0x80
[  609.342202]  pskb_expand_head+0x436/0x1d20
[  609.342202]  l2tp_xmit_skb+0x5a7/0x24b0
[  609.342202]  pppol2tp_sendmsg+0x79a/0xba0
[  609.342202]  ___sys_sendmsg+0xe3b/0x1240
[  609.342202]  ? pppol2tp_getsockopt+0x1060/0x1060
[  609.342202]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  609.342202]  ? kmsan_set_origin+0x7f/0x100
[  609.342202]  ? kmsan_internal_unpoison_shadow+0x83/0xd0
[  609.342202]  ? _cond_resched+0xc7/0x120
[  609.342202]  __sys_sendmmsg+0x56b/0xa90
[  609.342202]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  609.342202]  ? prepare_exit_to_usermode+0x182/0x4c0
[  609.342202]  __se_sys_sendmmsg+0xbd/0xe0
[  609.342202]  __x64_sys_sendmmsg+0x56/0x70
[  609.342202]  do_syscall_64+0xcf/0x110
[  609.342202]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  609.342202] RIP: 0033:0x457569
[  609.342202] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  609.342202] RSP: 002b:00007fbe0995ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  609.342202] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000457569
[  609.342202] RDX: 080000000000006a RSI: 0000000020005fc0 RDI: 0000000000000004
[  609.342202] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  609.342202] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbe0995b6d4
[  609.342202] R13: 00000000004c37d5 R14: 00000000004d5970 R15: 00000000ffffffff
[  609.342202] Uninit was stored to memory at:
[  609.342202]  kmsan_internal_chain_origin+0x136/0x240
[  609.342202]  __msan_chain_origin+0x6d/0xb0
[  609.342202]  save_stack_trace+0xfa/0x110
[  609.342202]  kmsan_internal_chain_origin+0x136/0x240
[  609.342202]  kmsan_memcpy_origins+0x13d/0x190
[  609.342202]  __msan_memcpy+0x6f/0x80
[  609.342202]  pskb_expand_head+0x436/0x1d20
[  609.342202]  l2tp_xmit_skb+0x5a7/0x24b0
[  609.342202]  pppol2tp_sendmsg+0x79a/0xba0
[  609.342202]  ___sys_sendmsg+0xe3b/0x1240
[  609.342202]  __sys_sendmmsg+0x56b/0xa90
[  609.342202]  __se_sys_sendmmsg+0xbd/0xe0
[  609.342202]  __x64_sys_sendmmsg+0x56/0x70
[  609.342202]  do_syscall_64+0xcf/0x110
[  609.342202]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  609.342202] 
[  609.342202] Uninit was stored to memory at:
[  609.342202]  kmsan_internal_chain_origin+0x136/0x240
[  609.342202]  __msan_chain_origin+0x6d/0xb0
[  609.342202]  __save_stack_trace+0x833/0xc60
[  609.342202]  save_stack_trace+0xc6/0x110
[  609.342202]  kmsan_internal_chain_origin+0x136/0x240
[  609.342202]  kmsan_memcpy_origins+0x13d/0x190
[  609.342202]  __msan_memcpy+0x6f/0x80
[  609.342202]  pskb_expand_head+0x436/0x1d20
[  609.342202]  l2tp_xmit_skb+0x5a7/0x24b0
[  609.342202]  pppol2tp_sendmsg+0x79a/0xba0
[  609.342202]  ___sys_sendmsg+0xe3b/0x1240
[  609.342202]  __sys_sendmmsg+0x56b/0xa90
[  609.342202]  __se_sys_sendmmsg+0xbd/0xe0
[  609.342202]  __x64_sys_sendmmsg+0x56/0x70
[  609.342202]  do_syscall_64+0xcf/0x110
[  609.342202]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  609.342202] 
[  609.342202] Uninit was stored to memory at:
[  609.342202]  kmsan_internal_chain_origin+0x136/0x240
[  609.342202]  __msan_chain_origin+0x6d/0xb0
[  609.342202]  save_stack_trace+0xfa/0x110
[  609.342202]  kmsan_internal_chain_origin+0x136/0x240
[  609.342202]  kmsan_memcpy_origins+0x13d/0x190
[  609.342202]  __msan_memcpy+0x6f/0x80
[  609.342202]  pskb_expand_head+0x436/0x1d20
[  609.342202]  l2tp_xmit_skb+0x5a7/0x24b0
[  609.342202]  pppol2tp_sendmsg+0x79a/0xba0
[  609.342202]  ___sys_sendmsg+0xe3b/0x1240
[  609.342202]  __sys_sendmmsg+0x56b/0xa90
[  609.342202]  __se_sys_sendmmsg+0xbd/0xe0
[  609.342202]  __x64_sys_sendmmsg+0x56/0x70
[  609.342202]  do_syscall_64+0xcf/0x110
[  609.342202]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  609.342202] 
[  609.342202] Uninit was stored to memory at:
[  609.342202]  kmsan_internal_chain_origin+0x136/0x240
[  609.342202]  __msan_chain_origin+0x6d/0xb0
[  609.342202]  __save_stack_trace+0x833/0xc60
[  609.342202]  save_stack_trace+0xc6/0x110
[  609.342202]  kmsan_internal_chain_origin+0x136/0x240
[  609.342202]  kmsan_memcpy_origins+0x13d/0x190
[  609.342202]  __msan_memcpy+0x6f/0x80
[  609.342202]  pskb_expand_head+0x436/0x1d20
[  609.342202]  l2tp_xmit_skb+0x5a7/0x24b0
[  609.342202]  pppol2tp_sendmsg+0x79a/0xba0
[  609.342202]  ___sys_sendmsg+0xe3b/0x1240
[  609.342202]  __sys_sendmmsg+0x56b/0xa90
[  609.342202]  __se_sys_sendmmsg+0xbd/0xe0
[  609.342202]  __x64_sys_sendmmsg+0x56/0x70
[  609.342202]  do_syscall_64+0xcf/0x110
[  609.342202]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  609.342202] 
[  609.342202] Uninit was stored to memory at:
[  609.342202]  kmsan_internal_chain_origin+0x136/0x240
[  609.342202]  __msan_chain_origin+0x6d/0xb0
[  609.342202]  save_stack_trace+0xfa/0x110
[  609.342202]  kmsan_internal_chain_origin+0x136/0x240
[  609.342202]  kmsan_memcpy_origins+0x13d/0x190
[  609.342202]  __msan_memcpy+0x6f/0x80
[  609.342202]  pskb_expand_head+0x436/0x1d20
[  609.342202]  l2tp_xmit_skb+0x5a7/0x24b0
[  609.342202]  pppol2tp_sendmsg+0x79a/0xba0
[  609.342202]  ___sys_sendmsg+0xe3b/0x1240
[  609.342202]  __sys_sendmmsg+0x56b/0xa90
[  609.342202]  __se_sys_sendmmsg+0xbd/0xe0
[  609.342202]  __x64_sys_sendmmsg+0x56/0x70
[  609.342202]  do_syscall_64+0xcf/0x110
[  609.342202]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  609.342202] 
[  609.342202] Uninit was stored to memory at:
[  609.342202]  kmsan_internal_chain_origin+0x136/0x240
[  609.342202]  __msan_chain_origin+0x6d/0xb0
[  609.342202]  __save_stack_trace+0x833/0xc60
[  609.342202]  save_stack_trace+0xc6/0x110
[  609.342202]  kmsan_internal_chain_origin+0x136/0x240
[  609.342202]  kmsan_memcpy_origins+0x13d/0x190
[  609.342202]  __msan_memcpy+0x6f/0x80
[  609.342202]  pskb_expand_head+0x436/0x1d20
[  609.342202]  l2tp_xmit_skb+0x5a7/0x24b0
[  609.342202]  pppol2tp_sendmsg+0x79a/0xba0
[  609.342202]  ___sys_sendmsg+0xe3b/0x1240
[  609.342202]  __sys_sendmmsg+0x56b/0xa90
[  609.342202]  __se_sys_sendmmsg+0xbd/0xe0
[  609.342202]  __x64_sys_sendmmsg+0x56/0x70
[  609.342202]  do_syscall_64+0xcf/0x110
[  609.342202]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  609.342202] 
[  609.342202] Uninit was stored to memory at:
[  609.342202]  kmsan_internal_chain_origin+0x136/0x240
[  609.342202]  __msan_chain_origin+0x6d/0xb0
[  609.342202]  save_stack_trace+0xfa/0x110
[  609.342202]  kmsan_internal_chain_origin+0x136/0x240
[  609.342202]  kmsan_memcpy_origins+0x13d/0x190
[  609.342202]  __msan_memcpy+0x6f/0x80
[  609.342202]  pskb_expand_head+0x436/0x1d20
[  609.342202]  l2tp_xmit_skb+0x5a7/0x24b0
[  609.342202]  pppol2tp_sendmsg+0x79a/0xba0
[  609.342202]  ___sys_sendmsg+0xe3b/0x1240
[  609.342202]  __sys_sendmmsg+0x56b/0xa90
08:51:57 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x0, 0x0)
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f00000000c0)={<r2=>0x0, 0x3, 0x400}, &(0x7f0000000100)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r1, 0x84, 0x10, &(0x7f0000000140)=@sack_info={r2, 0x7, 0x7}, &(0x7f0000000180)=0xc)

[  609.342202]  __se_sys_sendmmsg+0xbd/0xe0
[  609.342202]  __x64_sys_sendmmsg+0x56/0x70
[  609.342202]  do_syscall_64+0xcf/0x110
[  609.342202]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  609.342202] 
[  609.342202] Local variable description: ----iph@ip_vs_out
[  609.342202] Variable was created at:
[  609.342202]  ip_vs_out+0x1bf/0x4570
[  609.342202]  ip_vs_local_reply6+0xec/0x130
08:51:57 executing program 2:
r0 = syz_open_procfs(0x0, &(0x7f00004c6f8b)='mounts\x00')
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f00000001c0)="0a5c2d0240316285717070")
read$eventfd(r0, &(0x7f0000000080), 0xff97)

[  610.389988] not chained 410000 origins
[  610.392208] CPU: 0 PID: 16194 Comm: syz-executor1 Not tainted 4.20.0-rc2+ #88
[  610.399841] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  610.399841] Call Trace:
[  610.399841]  dump_stack+0x32d/0x480
[  610.399841]  ? save_stack_trace+0xc6/0x110
[  610.419240]  kmsan_internal_chain_origin+0x222/0x240
[  610.419240]  ? kmsan_internal_chain_origin+0x136/0x240
[  610.419240]  ? __msan_chain_origin+0x6d/0xb0
[  610.419240]  ? __save_stack_trace+0x833/0xc60
[  610.419240]  ? save_stack_trace+0xc6/0x110
[  610.419240]  ? kmsan_internal_chain_origin+0x136/0x240
[  610.419240]  ? kmsan_memcpy_origins+0x13d/0x190
[  610.419240]  ? __msan_memcpy+0x6f/0x80
[  610.419240]  ? pskb_expand_head+0x436/0x1d20
[  610.419240]  ? l2tp_xmit_skb+0x5a7/0x24b0
[  610.419240]  ? pppol2tp_sendmsg+0x79a/0xba0
[  610.419240]  ? ___sys_sendmsg+0xe3b/0x1240
[  610.419240]  ? __sys_sendmmsg+0x56b/0xa90
[  610.419240]  ? __se_sys_sendmmsg+0xbd/0xe0
[  610.419240]  ? __x64_sys_sendmmsg+0x56/0x70
[  610.419240]  ? do_syscall_64+0xcf/0x110
[  610.419240]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  610.419240]  ? save_stack_trace+0xc6/0x110
[  610.419240]  ? __irqentry_text_end+0x1fa056/0x1fa056
[  610.419240]  ? kmsan_internal_chain_origin+0x1e3/0x240
[  610.419240]  ? kmsan_internal_chain_origin+0x136/0x240
[  610.419240]  ? __msan_chain_origin+0x6d/0xb0
[  610.419240]  ? save_stack_trace+0xfa/0x110
[  610.522829]  ? kmsan_internal_chain_origin+0x136/0x240
[  610.522829]  ? kmsan_memcpy_origins+0x13d/0x190
[  610.522829]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  610.522829]  ? in_task_stack+0x12c/0x210
[  610.522829]  __msan_chain_origin+0x6d/0xb0
[  610.522829]  ? __sys_sendmmsg+0x56b/0xa90
[  610.522829]  __save_stack_trace+0x8be/0xc60
[  610.522829]  ? __sys_sendmmsg+0x56b/0xa90
[  610.522829]  save_stack_trace+0xc6/0x110
[  610.522829]  kmsan_internal_chain_origin+0x136/0x240
[  610.522829]  ? kmsan_internal_chain_origin+0x136/0x240
[  610.522829]  ? kmsan_memcpy_origins+0x13d/0x190
[  610.522829]  ? __msan_memcpy+0x6f/0x80
[  610.522829]  ? pskb_expand_head+0x436/0x1d20
[  610.522829]  ? l2tp_xmit_skb+0x5a7/0x24b0
[  610.592895]  ? pppol2tp_sendmsg+0x79a/0xba0
[  610.592895]  ? ___sys_sendmsg+0xe3b/0x1240
[  610.592895]  ? __sys_sendmmsg+0x56b/0xa90
[  610.592895]  ? __se_sys_sendmmsg+0xbd/0xe0
[  610.592895]  ? __x64_sys_sendmmsg+0x56/0x70
[  610.592895]  ? do_syscall_64+0xcf/0x110
[  610.592895]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  610.592895]  ? __msan_poison_alloca+0x1e0/0x270
[  610.592895]  ? memcg_kmem_put_cache+0x73/0x460
[  610.592895]  ? __kmalloc_node_track_caller+0x1010/0x14e0
[  610.592895]  ? __msan_get_context_state+0x9/0x20
[  610.592895]  ? INIT_INT+0xc/0x30
[  610.592895]  ? __kmalloc_node_track_caller+0x369/0x14e0
[  610.592895]  ? memcg_kmem_put_cache+0x73/0x460
[  610.592895]  kmsan_memcpy_origins+0x13d/0x190
[  610.592895]  __msan_memcpy+0x6f/0x80
[  610.592895]  pskb_expand_head+0x436/0x1d20
[  610.592895]  l2tp_xmit_skb+0x5a7/0x24b0
[  610.592895]  pppol2tp_sendmsg+0x79a/0xba0
[  610.592895]  ___sys_sendmsg+0xe3b/0x1240
[  610.592895]  ? pppol2tp_getsockopt+0x1060/0x1060
[  610.592895]  ? __msan_poison_alloca+0x1e0/0x270
[  610.592895]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  610.592895]  ? rcu_all_qs+0x3b/0x2b0
[  610.592895]  ? _cond_resched+0x59/0x120
[  610.592895]  ? rcu_all_qs+0x53/0x2b0
[  610.592895]  ? _cond_resched+0x37/0x120
[  610.712544]  ? __sys_sendmmsg+0x7c9/0xa90
[  610.712544]  ? _cond_resched+0x59/0x120
[  610.712544]  __sys_sendmmsg+0x56b/0xa90
[  610.712544]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  610.712544]  ? prepare_exit_to_usermode+0x182/0x4c0
[  610.712544]  __se_sys_sendmmsg+0xbd/0xe0
[  610.712544]  __x64_sys_sendmmsg+0x56/0x70
[  610.712544]  do_syscall_64+0xcf/0x110
[  610.712544]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  610.712544] RIP: 0033:0x457569
[  610.712544] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  610.712544] RSP: 002b:00007fbe0995ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  610.712544] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000457569
[  610.792366] RDX: 080000000000006a RSI: 0000000020005fc0 RDI: 0000000000000004
[  610.792366] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  610.792366] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbe0995b6d4
[  610.792366] R13: 00000000004c37d5 R14: 00000000004d5970 R15: 00000000ffffffff
[  610.792366] Uninit was stored to memory at:
[  610.792366]  kmsan_internal_chain_origin+0x136/0x240
[  610.792366]  __msan_chain_origin+0x6d/0xb0
[  610.792366]  __save_stack_trace+0x8be/0xc60
[  610.792366]  save_stack_trace+0xc6/0x110
[  610.792366]  kmsan_internal_chain_origin+0x136/0x240
[  610.792366]  kmsan_memcpy_origins+0x13d/0x190
[  610.792366]  __msan_memcpy+0x6f/0x80
[  610.792366]  pskb_expand_head+0x436/0x1d20
[  610.792366]  l2tp_xmit_skb+0x5a7/0x24b0
[  610.862431]  pppol2tp_sendmsg+0x79a/0xba0
[  610.862431]  ___sys_sendmsg+0xe3b/0x1240
[  610.862431]  __sys_sendmmsg+0x56b/0xa90
[  610.862431]  __se_sys_sendmmsg+0xbd/0xe0
[  610.879165]  __x64_sys_sendmmsg+0x56/0x70
[  610.879165]  do_syscall_64+0xcf/0x110
[  610.879165]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  610.879165] 
[  610.879165] Uninit was stored to memory at:
[  610.879165]  kmsan_internal_chain_origin+0x136/0x240
[  610.879165]  __msan_chain_origin+0x6d/0xb0
[  610.879165]  __save_stack_trace+0x8be/0xc60
[  610.879165]  save_stack_trace+0xc6/0x110
[  610.879165]  kmsan_internal_chain_origin+0x136/0x240
[  610.879165]  kmsan_memcpy_origins+0x13d/0x190
[  610.879165]  __msan_memcpy+0x6f/0x80
[  610.879165]  pskb_expand_head+0x436/0x1d20
[  610.879165]  l2tp_xmit_skb+0x5a7/0x24b0
[  610.879165]  pppol2tp_sendmsg+0x79a/0xba0
[  610.879165]  ___sys_sendmsg+0xe3b/0x1240
[  610.879165]  __sys_sendmmsg+0x56b/0xa90
[  610.879165]  __se_sys_sendmmsg+0xbd/0xe0
[  610.879165]  __x64_sys_sendmmsg+0x56/0x70
[  610.879165]  do_syscall_64+0xcf/0x110
[  610.879165]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  610.879165] 
[  610.879165] Uninit was stored to memory at:
[  610.879165]  kmsan_internal_chain_origin+0x136/0x240
[  610.879165]  __msan_chain_origin+0x6d/0xb0
[  610.879165]  __save_stack_trace+0x8be/0xc60
[  610.879165]  save_stack_trace+0xc6/0x110
[  610.879165]  kmsan_internal_chain_origin+0x136/0x240
[  610.879165]  kmsan_memcpy_origins+0x13d/0x190
[  611.003370]  __msan_memcpy+0x6f/0x80
[  611.003370]  pskb_expand_head+0x436/0x1d20
[  611.008077]  l2tp_xmit_skb+0x5a7/0x24b0
[  611.013176]  pppol2tp_sendmsg+0x79a/0xba0
[  611.013176]  ___sys_sendmsg+0xe3b/0x1240
[  611.013176]  __sys_sendmmsg+0x56b/0xa90
[  611.013176]  __se_sys_sendmmsg+0xbd/0xe0
[  611.013176]  __x64_sys_sendmmsg+0x56/0x70
[  611.032539]  do_syscall_64+0xcf/0x110
[  611.032539]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  611.032539] 
[  611.032539] Uninit was stored to memory at:
[  611.032539]  kmsan_internal_chain_origin+0x136/0x240
[  611.032539]  __msan_chain_origin+0x6d/0xb0
[  611.032539]  __save_stack_trace+0x8be/0xc60
[  611.061729]  save_stack_trace+0xc6/0x110
[  611.061729]  kmsan_internal_chain_origin+0x136/0x240
[  611.061729]  kmsan_memcpy_origins+0x13d/0x190
[  611.061729]  __msan_memcpy+0x6f/0x80
[  611.061729]  pskb_expand_head+0x436/0x1d20
[  611.061729]  l2tp_xmit_skb+0x5a7/0x24b0
[  611.061729]  pppol2tp_sendmsg+0x79a/0xba0
[  611.061729]  ___sys_sendmsg+0xe3b/0x1240
[  611.061729]  __sys_sendmmsg+0x56b/0xa90
[  611.061729]  __se_sys_sendmmsg+0xbd/0xe0
[  611.061729]  __x64_sys_sendmmsg+0x56/0x70
[  611.061729]  do_syscall_64+0xcf/0x110
[  611.061729]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  611.061729] 
[  611.061729] Uninit was stored to memory at:
[  611.061729]  kmsan_internal_chain_origin+0x136/0x240
[  611.061729]  __msan_chain_origin+0x6d/0xb0
[  611.061729]  __save_stack_trace+0x8be/0xc60
08:51:58 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x80003, 0x1)
recvmmsg(r0, &(0x7f0000008880), 0x45b, 0x44000102, 0x0)
sendto$inet6(r0, &(0x7f0000000140)='9', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @mcast2}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0x31, &(0x7f0000000000)=0x3, 0x4)

08:51:58 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x40440, 0x14d)
ioctl$NBD_CLEAR_QUE(r1, 0xab05)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

[  611.061729]  save_stack_trace+0xc6/0x110
[  611.061729]  kmsan_internal_chain_origin+0x136/0x240
[  611.145422]  kmsan_memcpy_origins+0x13d/0x190
[  611.145422]  __msan_memcpy+0x6f/0x80
[  611.145422]  pskb_expand_head+0x436/0x1d20
[  611.145422]  l2tp_xmit_skb+0x5a7/0x24b0
[  611.145422]  pppol2tp_sendmsg+0x79a/0xba0
[  611.168623]  ___sys_sendmsg+0xe3b/0x1240
[  611.172093]  __sys_sendmmsg+0x56b/0xa90
[  611.172093]  __se_sys_sendmmsg+0xbd/0xe0
[  611.180905]  __x64_sys_sendmmsg+0x56/0x70
[  611.180905]  do_syscall_64+0xcf/0x110
[  611.180905]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  611.180905] 
[  611.180905] Uninit was stored to memory at:
[  611.180905]  kmsan_internal_chain_origin+0x136/0x240
[  611.180905]  __msan_chain_origin+0x6d/0xb0
[  611.180905]  __save_stack_trace+0x8be/0xc60
[  611.213079]  save_stack_trace+0xc6/0x110
[  611.213079]  kmsan_internal_chain_origin+0x136/0x240
[  611.213079]  kmsan_memcpy_origins+0x13d/0x190
[  611.226555]  __msan_memcpy+0x6f/0x80
[  611.226555]  pskb_expand_head+0x436/0x1d20
[  611.226555]  l2tp_xmit_skb+0x5a7/0x24b0
[  611.226555]  pppol2tp_sendmsg+0x79a/0xba0
[  611.226555]  ___sys_sendmsg+0xe3b/0x1240
[  611.226555]  __sys_sendmmsg+0x56b/0xa90
[  611.226555]  __se_sys_sendmmsg+0xbd/0xe0
[  611.226555]  __x64_sys_sendmmsg+0x56/0x70
[  611.226555]  do_syscall_64+0xcf/0x110
[  611.226555]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  611.226555] 
[  611.226555] Uninit was stored to memory at:
[  611.226555]  kmsan_internal_chain_origin+0x136/0x240
[  611.226555]  __msan_chain_origin+0x6d/0xb0
[  611.226555]  __save_stack_trace+0x8be/0xc60
[  611.226555]  save_stack_trace+0xc6/0x110
[  611.226555]  kmsan_internal_chain_origin+0x136/0x240
[  611.226555]  kmsan_memcpy_origins+0x13d/0x190
[  611.300331]  __msan_memcpy+0x6f/0x80
[  611.300331]  pskb_expand_head+0x436/0x1d20
[  611.300331]  l2tp_xmit_skb+0x5a7/0x24b0
[  611.300331]  pppol2tp_sendmsg+0x79a/0xba0
[  611.300331]  ___sys_sendmsg+0xe3b/0x1240
[  611.300331]  __sys_sendmmsg+0x56b/0xa90
[  611.300331]  __se_sys_sendmmsg+0xbd/0xe0
[  611.300331]  __x64_sys_sendmmsg+0x56/0x70
[  611.300331]  do_syscall_64+0xcf/0x110
08:51:58 executing program 5:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = gettid()
prctl$intptr(0x1e, 0x1)
ioprio_get$pid(0x3, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r3 = dup2(r1, r1)
ioctl$TIOCLINUX2(r3, 0x541c, &(0x7f0000001280)={0x2, 0x3, 0x4, 0x401, 0x6, 0xf4f1})
fcntl$getownex(r0, 0x10, &(0x7f0000001340)={0x0, <r4=>0x0})
ioctl$SNDRV_TIMER_IOCTL_INFO(r3, 0x80e85411, &(0x7f0000001380)=""/151)
r5 = syz_open_procfs(r4, &(0x7f0000001300)='net/tcp6\x00')
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r5, 0x40505330, &(0x7f0000000080)={{0x4, 0x6}, {0x2, 0xfffffffffffffe01}, 0x8, 0x1, 0xffffffffffff7fff})
clone(0x210007fa, 0x0, 0xfffffffffffffffe, &(0x7f0000001240), 0xffffffffffffffff)
ioctl$KVM_GET_DIRTY_LOG(r3, 0x4010ae42, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000ffc000/0x1000)=nil})
r6 = add_key(&(0x7f00000001c0)='keyring\x00', &(0x7f0000000200)={'syz', 0x0}, &(0x7f0000000240)="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", 0x1000, 0xfffffffffffffffb)
request_key(&(0x7f0000000100)='dns_resolver\x00', &(0x7f0000000140)={'syz', 0x3}, &(0x7f0000000180)='net/tcp6\x00', r6)

08:51:58 executing program 0:
fcntl$dupfd(0xffffffffffffff9c, 0x406, 0xffffffffffffffff)
accept$packet(0xffffffffffffffff, &(0x7f00000002c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000300)=0x14)
getrusage(0x0, &(0x7f0000000840))
ioctl$KDGKBDIACR(0xffffffffffffffff, 0x4b4a, &(0x7f00000000c0)=""/211)
timer_delete(0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x0, &(0x7f00000006c0)=0x3)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='clear_refs\x00')
r1 = syz_open_procfs(0x0, &(0x7f0000000440)='stat\x00')
sendfile(r0, r1, &(0x7f0000000080), 0x1)

08:51:58 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x0, 0x0)
ioctl$RNDZAPENTCNT(0xffffffffffffffff, 0x5204, &(0x7f0000000140)=0x5)
getsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f00000000c0), &(0x7f0000000100)=0xb)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
ioctl$VIDIOC_G_SELECTION(r1, 0xc040565e, &(0x7f0000000180)={0x7, 0x0, 0x1, {0x1, 0x7fff, 0x81, 0x5}})
getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f0000000200)=ANY=[@ANYRES32=<r2=>0x0, @ANYBLOB="cd00000090f65a3870817f971df0c43b98578f0ed6ed0cf7adbbec6e82d41f1d360e29c7d63f32ea61e683369ea00543f16e8c7dcff0d4cc5f01eeb8ad0abf73f68cf660984587b41ff84f3d40ad3cdb2ba0cfa4a9e0800fe020ebdf7d880b94383acd0689444ecb6bc0bf13566adcdbb2e7c8e48b60093cae55801306dfd21a1088bcb8417ffc3a093a29ff4b29aeec7de671a7ac67afe690f3a5a7cc2e73463db15a6116fe9e85802f80c1952685a7d2032181b5b1502ae8f267a2552f6783060e249de318cff90cc4b721981aea5224"], &(0x7f0000000300)=0xd5)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x73, &(0x7f0000000340)={r2, 0x8a, 0x0, 0xffffffff, 0x6}, &(0x7f0000000380)=0x18)

[  611.337626]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  611.337626] 
[  611.337626] Local variable description: ----iph@ip_vs_out
[  611.337626] Variable was created at:
[  611.337626]  ip_vs_out+0x1bf/0x4570
[  611.337626]  ip_vs_local_reply6+0xec/0x130
08:51:58 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$inet(0x10, 0x3, 0xc)
sendmsg(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000100)="24000000060107031dfffd946fa2830020200a0009000100001d0300000000000000ff7e28000000110affffba010700000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0614a8b14e91712128fa8ce21653b28cee564d8297fbfc9caad4df207", 0x34}], 0x0, 0x0, 0xfffffd98}, 0x2)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_REM(r1, 0x84, 0x65, &(0x7f0000000000)=[@in={0x2, 0x4e23, @loopback}], 0x10)

[  611.488865] not chained 420000 origins
[  611.492265] CPU: 1 PID: 16194 Comm: syz-executor1 Not tainted 4.20.0-rc2+ #88
[  611.492265] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  611.492265] Call Trace:
[  611.492265]  dump_stack+0x32d/0x480
[  611.492265]  kmsan_internal_chain_origin+0x222/0x240
[  611.492265]  ? save_stack_trace+0xc6/0x110
[  611.492265]  ? __irqentry_text_end+0x1fa056/0x1fa056
[  611.492265]  ? kmsan_internal_chain_origin+0x90/0x240
08:51:58 executing program 5:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = gettid()
prctl$intptr(0x1e, 0x1)
ioprio_get$pid(0x3, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r3 = dup2(r1, r1)
ioctl$TIOCLINUX2(r3, 0x541c, &(0x7f0000001280)={0x2, 0x3, 0x4, 0x401, 0x6, 0xf4f1})
fcntl$getownex(r0, 0x10, &(0x7f0000001340)={0x0, <r4=>0x0})
ioctl$SNDRV_TIMER_IOCTL_INFO(r3, 0x80e85411, &(0x7f0000001380)=""/151)
r5 = syz_open_procfs(r4, &(0x7f0000001300)='net/tcp6\x00')
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r5, 0x40505330, &(0x7f0000000080)={{0x4, 0x6}, {0x2, 0xfffffffffffffe01}, 0x8, 0x1, 0xffffffffffff7fff})
clone(0x210007fa, 0x0, 0xfffffffffffffffe, &(0x7f0000001240), 0xffffffffffffffff)
ioctl$KVM_GET_DIRTY_LOG(r3, 0x4010ae42, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000ffc000/0x1000)=nil})
r6 = add_key(&(0x7f00000001c0)='keyring\x00', &(0x7f0000000200)={'syz', 0x0}, &(0x7f0000000240)="eff20b486c8809e3da3c107b290895adfb991604d16738b7970939084925488b71213bf1a8451ad062d6771695d1523ba7962e5d2f3bec4ea295af56f0ddf60a1e4ff765e04bc8e31dcb1864c2535010c6e8b2f791822eefebbb6bfd7a2a0c7f02e831957178d685920a742b73a334f7c885d7d940703a7b1663987fff106f9fbab82c6973b34b9746388eb9db901bc79c6426349292a340801b59532c188dd1b2debf5166c3b4d26a011202edb4ebfb895ff56d3a16bfd571fee07ddc0d3140b09438a2da7dc8869903723934b9a9146142ae5e8a6cd6f68a9934438633781c7490dbb2d23aa73ab98e3c90b75c36250b2599e61107bb0908c6e01e240bba240d59f503fbf710e43256276a9baf68294d8a61c6ef2275a0e47d2f1bdfc8d2dc82e9fc822bbf36a70f92b156ef6f955a09cb6f2abe03735526fce8fa2a352276208ef70e048e00907fa866793a3cd19a64949e96db31e3cb4db39f6a64aa5d713a2e09e88b9e467c5d5e3538747dcb0068a81229affc9f81f7b6c56cc8bec89d694a7b22253f6b2d61bfed61d7655586a6a915524be88c508d3492182a53984390b0b5161de4de65ae98e2db2fcc06ce0a4f9d7f19e8a6a9ad37e8ecc33efe76f06d3d54d211fc5d7804b2640a359e4669da3bedd951bbde94d91597a15b00bc7ab1a6d32189ecd7aea56311d186e40068f09d67e17abc7cf1db3e283f2c41f22f02eb6c420ba7423b349d47989ef889738a82ba7f140dc9755c7de497d333b579a361c2d9cdf0897951cea6fcd0f470a21523123edf71219320f3a5dc7a0938246e6609f8bebabc064e8dd78856676e0958baafaabe66b46fdc6099c9b7cec18d70dc0a1fe414bd075e2fc873fa58590b5133db4fc456dd8696677f5ebc093d21a39aba6fc9cc02576fcd5a3e1bf96f3398a7aa5d128e0dc31115dd3ece7073d59d0ef69e14ccaa1ca598556b7b635f2b43a746994cd3c92019965d053c4b09b73be50ef8ef6d39b421635b8ff835c7fbc8467ec40d8d12c01084b17479d458ff9544afa025e902162292f127bd229c20a1e63966c5ca6cf308f98f295e5796de2841032a964d267d04dd2bdd2b28ca522570258301e019411cb27a54c9dea81eac2c5d38489ba6cce895b19e40e895f72801ec2eb0c37b22ae9454d974ec69017ec7f64ce5192bb0cfb1ab01139f145dbe547711b3c8c383e76cb2e3437b74c7ff5cb6a7bba2990b9646fc4832e01c4bef37cc2d9485f93b36790e9046d7da4207d35f9a866b666f37ed57eff317120891ce58bde21ef3fe406af88f60911afe2ba6ac385ea20eb6298a50191069d5077333ea2781df195ebb10fcffc8ec9e8e342c33e5dfc8312856510adad03cb4b1c965940a987165f0798e2b1958969f1177ea6cbe2f3befd1ad725c16c9ff7b0214e78f972d757636a93bbd44bf00b34cd5b7031e442a7804d5e3295c302d62e57ba85aecd13ffa5e65f1a169dca118388f7942377f5e591ef380bcb0f31047835a9906aff4262f80e27f370d9efc62479dfb22751a87722186bf66dbbd7555599ee5a97009610b06eef8f0d74305cf17482b9782b9f603f8212e0550dbcdeeff4ab9dbcbb48417f5887bdecf7ce75abfadb110991e1efe4b09dc76de85b779f0661a113e0ba8fe8663ddc9d1f92b3c816e9ac617789f25418b17f34ff7cf9b73b9da516a9f1311ea17c25307e8d1f645e47e52ce3c3fe7778d8483f75721f8efc10f7bf73bbc4ec890d6b0c7e40e5d574c84d55dd79ac9d5bdd3cc4713c8ca37b821487e4c3dfe00e78bb12a873cd518110b86a464d8921ccfffa638a71e2bf6f41b504ff10e4a929a32e865a839e49ecb8aa04a590af31cc1c0809a9fa39de07e0d3e50c4921f6aa2a4f436854c0fdcc7093a2b98f63c5212d3a7f4303b1d032dd661e740877b7a1a15e8c43353537d9ba2103fbe2fde0fe419d61b000d57f4876eae9963d23720aa9c83cf2e84ec9a2ba7f223665b51008a39191eb712df82c099e0c05d9940ade05eb5ebcaeeb8f7b75c67f6573758ce370edfdc710d89fad6e6ac7ae03c230cae3efa37ca6b969acf6f810c0c381ea830130b86e8041de67db0ace754367a1df19b14c9ce3264ffc221aa0262a22c86b5e7c5a3def716ee25a441b87cca990940b5632dd92ec6f5dd655aa7205af3288a37a5c1945d44494cfb3207847e364e2cccfe6f2545ac6022270030172336a1e4a40db9a15cebad045f9439bcbffa6caaeddad8303eb414caebcb6d8cb363ccdcffbbbd36004e24c457a168a10f2de68dd01766f5e388f2bb30f4a612b88b505d437219f19639cf25f58ee17eb88d44008683b3bd1845e76ecaa52ef8bdf02ba0664c77df760746343257e74a96db3480c247b71b1a597c7de30ffb48cfbac66c463a73601f4856dd61cd7057623d47c728e622e24025d2266d686571e434443bb38ed604b96be054ab3a3691242da7230fe3886e42c3ca988d4aca05538183f9687a9a804822ca1ad45fb6aa612990647fb8becf1a788489ecbcba58a20c252133055afc75a17fd02ecffaba32450aebde3f8d938aa228c79fca6f466bf6c3d2afc356901d356e6f9e1f3cec66ebc677946bf2c7ffb43732d9bd6bd38694b83f7634eda1fa766d36136918ab8ab34b578e2a43fa0b19602f4afc0540332bfce53308bf8420d97c0e0c7fe6b45d4a268346a81a52d6340459c640e8ec71d44e05812123565bf9c4f5ac1b6ac0172793d0949dd2c3ee52cf4f6e5defdd87e8ee0827b777f3391d8653dfcb4f82c349d4dc550b6dc6b39de3f9eea08b9f367222619e43e6303a35ac41d506cc38a804dee0bf83bd5bf054978847cfa191e324b8e03c2d9b9a4dc48464784ea864460061e2af534489383fda2681cab7ed0330619e435b2acc58154e6b36679cf77bafba631c6acfc5920f71ef513bdc32d9da761ef7642792b1711fd974861ea5c189e75fe6799189f51df88f1aa082de19eda0ae3d374ae9deeed9dc74923a366c90d46ea3a30e1c67f053d291ba8a739fb33e83fc50bea03f54665b62528184778157c8e4a22e053180fca40e3c9709ebfe2ecb91ff4a763d843863eefffda7e6de7e3ce05a51620b70c4afc11aa71e24e304938b52d3d312121727f1d7feff0b6d76be1f8dac5a7b2bd8b74886dd080e14a7184f6efc03ff83c2d987d01f432d7b72a8e45100ff7521a376e603fe8929d4a4452d366233623688c9df2e19376d17a57a28f449b5f4ca4267747497771e0c6da81c23b364d18f1d3cf3f1221a2b4af78984653e6af12b3bbbd39cd8802bbfea6ef1f36f893173641c2a88cd006080fe85017fd36a567b09ad243e8b7127448350d981fad9acc037ccefd04be307a9512066fc0664616378c6982eeadc4291b10873fd9f83bde6c082a28b74bdb8aa9e1cc28ae34943681c0625d199ed7a3b53078c3a334b3a9ff09ac34b29fef5b276c23783c7492a75b612205ad2833c9e1ef470cefb4cd879a6d719d9c632d2703a92bdcf4cdfed72416223f717322a0853aac7df12cc34f83ae4372f3a3b523498edc169c1d33804dc88196fbc91187c80f4c908a75bf83a17509251c415b1bca438e3fffa51853286f726cf0ca0205b20cc319fe783d37a1e2232c3f65ac1f3e9c2b389e96702b4880cdc7f91588c4dab95cc6b9578a09e6c10c2a0d481840aa0aaf1ae4e60ddc8fbabeccb19b02519613bb39c1a202edadf82fccca2d171882633a31e0a331987e6b896a6be4f146948957b91c95f7ab0ceae2e3525658bfdf4cd7343c332922fd612bd7ebe4d982ec89681ea1c94ba6342908c44775a76629a3a801dc42969322f0a3b462a42ec9660b3fa816ca53704512aa45a903f13110cc1987eea623d2c4b3891a44c65e510f337e27b6f8b3353cda4b4a47b8eb482d0374df5e4444d309d4921cf392639810029ed0ce0ff577067ca881717a36f97b8614e1b6bb3cbbcead86b396fe9f8b54f2f8ab6d20c639d5978ce25ce170e96193f5adef963aeab3267a810cc056f680c3831af8de9eac48e10dcfcc3bfd4fff690e6cd6a0b9a44155314c02afd552950cde053e1b1976591dbda060387c8ca93892ffd520eea704154f69344c1dedf3142565683dcc237c3daaab9c1e9990bf2cdfab9fbba8bb66ca24a06b65125766be6c1e2ccf4a5f74c009a8a7e1fce96b3ca1554547210c31066cf18b59e9ef9b273bc7bf770e9a1ff1edb872a32ec3eb6c7b001e6ce09b0cbea598e37d3d1c51a80be3701a749fdaeeec40662050f842db5c1c6c4b2f34f59f3754d91f5ca08895c7280411fe43eca61944ace2fd8b04437acb5550a740d8388255b9a54428e8c292f4968442c729404b1316b415933470dffd795bf7fa5ff7d6fe557f81f6140e11f6dab2d5be9906996e34b1f390756cda2f383c5edc74da880998ddb3b55f3bf998e286246b194a7a4d9d6dbbaf96133ccdba467e31d5cb8aae6a623e2e897c5281780258809927418ecee05b5c8a1e4cc3fbe85914b43a05a3b124d3745a1be3890329b59f8c62e421e883b5bc5205d940f42a9bca1a238cbb43ba4382fd166672f74834cf0450c3372ea2727c52c5591c7ae11f7d05a95c599d63e9b34d332587961617ed75ef9207ff3c3d0c6938dc3816994d71f106c6c8354fa33d71aaea0dd5b7f1636e0e637eca7085764430a7a36aaaa52134906a7be8cbac538633eb9185b8d0fc63727e3b69aae664f4f24a819aca57078aa26a9fe9651514c6b2a886e63c9134d49b421ea740c7af0998dd603b1f85ef832b139d00985a03a3044da82f2da365592d5bf973cfd72f4b641da0441f41f3089ffe013c3cf900a29ecea9fe708053d962bdd78feb5bafc28f1a4227b2fd1bb703b84e4f25d6ec100d3945a29a84a1f5b209c1dfae64d2dd5888ca29cccdf6e4bdbef6c1cde64ab9201b076c0d90e4e7d7c3ece3b046eccb80164b93d5ff38e443ca07733c906580883ac14a37048bbab044f8783704a8d01ceec5434ec17eb79a800d6d019393cac546f8f750f8b231fabf6eba22291e7a23002f4506b43269cafffed8b460209d7ff8572a7934c5132258dd1f079f87b00133f9fe7643ddab191b51b896b7380cf0d5baac1f5a31e666f2c0b03a5d57e022cf14d2157196c40bf02b3e03e14044d0c0e17229537295ac6fb07ffe235e571ddf92f8d67e7b9deb73159ec7e8bfe1de58b43486d66b4353a314c551c02d81828c37f5e67ae05ba051135711d17fadd475e4f50d7186225061ed0032b65c58fa3c6171f176f98c7dbb92af8363b40ec6f16b405e27d7416f0b5c548d7d7c6df5fdc55dea3f76b062763e5f21eec0592e119e4dfc66886025c298e7de991a83cd5c26a9a34bc8c5b053f61d5bab5eb4c395e1eef8de4de19bcc788112cde5a994163b23832b12e5beb60328fdb51624e096077779d5c8833d021e914b30c2e5e69c634839f64a6e7f8be630f8badcbae588da001653b9cd4d210a9de5a31060d928fc53e9815b38bd2f28006367df02da30a4ccc378df95378acaabc37a3570ec842b9c274a9802f018588c1c41b99232af654bd9c2e1fe1c26dcb0852cedb22c6fe37e8b8e611dade39c79da6696e02a097274971b4f8b9dbf08641ec0eb088b44b1048aed04a135ed62855a46695096925b8f1566d016e8673f6286b2af182c77358a925130674f6037894d8e201b2c9fec45ee3e08d96e3a0619bac1b15f736039513b082d8c187401bebecab927bd12fec13e45317acf8223a4722e78b74d8dcfbeacffc30", 0x1000, 0xfffffffffffffffb)
request_key(&(0x7f0000000100)='dns_resolver\x00', &(0x7f0000000140)={'syz', 0x3}, &(0x7f0000000180)='net/tcp6\x00', r6)

[  611.492265]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  611.492265]  ? is_bpf_text_address+0x49e/0x4d0
[  611.492265]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  611.492265]  ? in_task_stack+0x12c/0x210
[  611.492265]  __msan_chain_origin+0x6d/0xb0
[  611.492265]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  611.492265]  __save_stack_trace+0x8be/0xc60
[  611.492265]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  611.492265]  save_stack_trace+0xc6/0x110
[  611.492265]  kmsan_internal_chain_origin+0x136/0x240
[  611.492265]  ? kmsan_internal_chain_origin+0x136/0x240
[  611.584154]  ? kmsan_memcpy_origins+0x13d/0x190
[  611.584154]  ? __msan_memcpy+0x6f/0x80
[  611.584154]  ? pskb_expand_head+0x436/0x1d20
[  611.584154]  ? l2tp_xmit_skb+0x5a7/0x24b0
[  611.584154]  ? pppol2tp_sendmsg+0x79a/0xba0
[  611.584154]  ? ___sys_sendmsg+0xe3b/0x1240
[  611.584154]  ? __sys_sendmmsg+0x56b/0xa90
[  611.584154]  ? __se_sys_sendmmsg+0xbd/0xe0
[  611.584154]  ? __x64_sys_sendmmsg+0x56/0x70
[  611.584154]  ? do_syscall_64+0xcf/0x110
[  611.584154]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  611.584154]  ? __msan_poison_alloca+0x1e0/0x270
[  611.584154]  ? memcg_kmem_put_cache+0x73/0x460
[  611.584154]  ? __kmalloc_node_track_caller+0x1010/0x14e0
[  611.584154]  ? __msan_get_context_state+0x9/0x20
[  611.584154]  ? INIT_INT+0xc/0x30
[  611.584154]  ? __kmalloc_node_track_caller+0x369/0x14e0
[  611.584154]  ? memcg_kmem_put_cache+0x73/0x460
[  611.584154]  kmsan_memcpy_origins+0x13d/0x190
[  611.584154]  __msan_memcpy+0x6f/0x80
[  611.584154]  pskb_expand_head+0x436/0x1d20
[  611.584154]  l2tp_xmit_skb+0x5a7/0x24b0
[  611.584154]  pppol2tp_sendmsg+0x79a/0xba0
[  611.584154]  ___sys_sendmsg+0xe3b/0x1240
[  611.584154]  ? pppol2tp_getsockopt+0x1060/0x1060
[  611.584154]  ? __msan_poison_alloca+0x1e0/0x270
[  611.584154]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  611.584154]  ? rcu_all_qs+0x3b/0x2b0
[  611.584154]  ? _cond_resched+0x59/0x120
[  611.584154]  ? rcu_all_qs+0x53/0x2b0
[  611.584154]  ? _cond_resched+0x37/0x120
[  611.584154]  ? __sys_sendmmsg+0x7c9/0xa90
[  611.584154]  ? _cond_resched+0x59/0x120
[  611.584154]  __sys_sendmmsg+0x56b/0xa90
08:51:58 executing program 3:
socket$inet(0x2, 0x5, 0x90)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vcs\x00', 0x20000, 0x0)
setsockopt$IP_VS_SO_SET_DEL(r1, 0x0, 0x484, &(0x7f0000000140)={0x0, @broadcast, 0x4e21, 0x0, 'fo\x00', 0x18, 0x80, 0x8}, 0x2c)
r2 = socket$inet(0x10, 0x3, 0xc)
getsockopt$inet_sctp6_SCTP_MAXSEG(r1, 0x84, 0xd, &(0x7f0000000180)=@assoc_value={<r3=>0x0}, &(0x7f00000001c0)=0x8)
setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r1, 0x84, 0x19, &(0x7f0000000200)={r3, 0x9}, 0x8)
sendmsg(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)

[  611.584154]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  611.584154]  ? prepare_exit_to_usermode+0x182/0x4c0
[  611.584154]  __se_sys_sendmmsg+0xbd/0xe0
[  611.584154]  __x64_sys_sendmmsg+0x56/0x70
[  611.584154]  do_syscall_64+0xcf/0x110
[  611.584154]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  611.584154] RIP: 0033:0x457569
[  611.584154] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  611.584154] RSP: 002b:00007fbe0995ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  611.584154] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000457569
[  611.584154] RDX: 080000000000006a RSI: 0000000020005fc0 RDI: 0000000000000004
[  611.584154] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  611.584154] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbe0995b6d4
[  611.584154] R13: 00000000004c37d5 R14: 00000000004d5970 R15: 00000000ffffffff
[  611.584154] Uninit was stored to memory at:
[  611.584154]  kmsan_internal_chain_origin+0x136/0x240
[  611.584154]  __msan_chain_origin+0x6d/0xb0
[  611.584154]  __save_stack_trace+0x8be/0xc60
[  611.584154]  save_stack_trace+0xc6/0x110
[  611.584154]  kmsan_internal_chain_origin+0x136/0x240
[  611.584154]  kmsan_memcpy_origins+0x13d/0x190
[  611.584154]  __msan_memcpy+0x6f/0x80
[  611.584154]  pskb_expand_head+0x436/0x1d20
[  611.584154]  l2tp_xmit_skb+0x5a7/0x24b0
[  611.584154]  pppol2tp_sendmsg+0x79a/0xba0
[  611.584154]  ___sys_sendmsg+0xe3b/0x1240
[  611.584154]  __sys_sendmmsg+0x56b/0xa90
08:51:58 executing program 5:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = gettid()
prctl$intptr(0x1e, 0x1)
ioprio_get$pid(0x3, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r3 = dup2(r1, r1)
ioctl$TIOCLINUX2(r3, 0x541c, &(0x7f0000001280)={0x2, 0x3, 0x4, 0x401, 0x6, 0xf4f1})
fcntl$getownex(r0, 0x10, &(0x7f0000001340)={0x0, <r4=>0x0})
ioctl$SNDRV_TIMER_IOCTL_INFO(r3, 0x80e85411, &(0x7f0000001380)=""/151)
r5 = syz_open_procfs(r4, &(0x7f0000001300)='net/tcp6\x00')
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r5, 0x40505330, &(0x7f0000000080)={{0x4, 0x6}, {0x2, 0xfffffffffffffe01}, 0x8, 0x1, 0xffffffffffff7fff})
clone(0x210007fa, 0x0, 0xfffffffffffffffe, &(0x7f0000001240), 0xffffffffffffffff)
ioctl$KVM_GET_DIRTY_LOG(r3, 0x4010ae42, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000ffc000/0x1000)=nil})
r6 = add_key(&(0x7f00000001c0)='keyring\x00', &(0x7f0000000200)={'syz', 0x0}, &(0x7f0000000240)="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", 0x1000, 0xfffffffffffffffb)
request_key(&(0x7f0000000100)='dns_resolver\x00', &(0x7f0000000140)={'syz', 0x3}, &(0x7f0000000180)='net/tcp6\x00', r6)

[  611.584154]  __se_sys_sendmmsg+0xbd/0xe0
[  611.584154]  __x64_sys_sendmmsg+0x56/0x70
[  611.896518]  do_syscall_64+0xcf/0x110
[  611.896518]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  611.896518] 
[  611.896518] Uninit was stored to memory at:
[  611.896518]  kmsan_internal_chain_origin+0x136/0x240
[  611.896518]  __msan_chain_origin+0x6d/0xb0
[  611.896518]  __save_stack_trace+0x8be/0xc60
[  611.896518]  save_stack_trace+0xc6/0x110
[  611.896518]  kmsan_internal_chain_origin+0x136/0x240
[  611.896518]  kmsan_memcpy_origins+0x13d/0x190
[  611.896518]  __msan_memcpy+0x6f/0x80
[  611.896518]  pskb_expand_head+0x436/0x1d20
[  611.896518]  l2tp_xmit_skb+0x5a7/0x24b0
[  611.896518]  pppol2tp_sendmsg+0x79a/0xba0
[  611.896518]  ___sys_sendmsg+0xe3b/0x1240
[  611.896518]  __sys_sendmmsg+0x56b/0xa90
[  611.896518]  __se_sys_sendmmsg+0xbd/0xe0
[  611.896518]  __x64_sys_sendmmsg+0x56/0x70
[  611.896518]  do_syscall_64+0xcf/0x110
[  611.896518]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  611.896518] 
[  611.896518] Uninit was stored to memory at:
[  611.896518]  kmsan_internal_chain_origin+0x136/0x240
[  611.896518]  __msan_chain_origin+0x6d/0xb0
[  611.896518]  __save_stack_trace+0x8be/0xc60
[  611.896518]  save_stack_trace+0xc6/0x110
[  611.896518]  kmsan_internal_chain_origin+0x136/0x240
[  611.896518]  kmsan_memcpy_origins+0x13d/0x190
[  611.896518]  __msan_memcpy+0x6f/0x80
[  611.896518]  pskb_expand_head+0x436/0x1d20
[  611.896518]  l2tp_xmit_skb+0x5a7/0x24b0
[  611.896518]  pppol2tp_sendmsg+0x79a/0xba0
[  611.896518]  ___sys_sendmsg+0xe3b/0x1240
[  611.896518]  __sys_sendmmsg+0x56b/0xa90
[  611.896518]  __se_sys_sendmmsg+0xbd/0xe0
[  611.896518]  __x64_sys_sendmmsg+0x56/0x70
[  611.896518]  do_syscall_64+0xcf/0x110
[  611.896518]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  611.896518] 
[  611.896518] Uninit was stored to memory at:
[  611.896518]  kmsan_internal_chain_origin+0x136/0x240
[  611.896518]  __msan_chain_origin+0x6d/0xb0
[  611.896518]  __save_stack_trace+0x8be/0xc60
[  611.896518]  save_stack_trace+0xc6/0x110
[  611.896518]  kmsan_internal_chain_origin+0x136/0x240
[  611.896518]  kmsan_memcpy_origins+0x13d/0x190
[  611.896518]  __msan_memcpy+0x6f/0x80
[  611.896518]  pskb_expand_head+0x436/0x1d20
[  611.896518]  l2tp_xmit_skb+0x5a7/0x24b0
[  611.896518]  pppol2tp_sendmsg+0x79a/0xba0
[  611.896518]  ___sys_sendmsg+0xe3b/0x1240
[  611.896518]  __sys_sendmmsg+0x56b/0xa90
[  611.896518]  __se_sys_sendmmsg+0xbd/0xe0
[  611.896518]  __x64_sys_sendmmsg+0x56/0x70
[  611.896518]  do_syscall_64+0xcf/0x110
[  611.896518]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  611.896518] 
[  611.896518] Uninit was stored to memory at:
[  611.896518]  kmsan_internal_chain_origin+0x136/0x240
[  611.896518]  __msan_chain_origin+0x6d/0xb0
[  611.896518]  __save_stack_trace+0x8be/0xc60
[  611.896518]  save_stack_trace+0xc6/0x110
[  611.896518]  kmsan_internal_chain_origin+0x136/0x240
[  611.896518]  kmsan_memcpy_origins+0x13d/0x190
[  611.896518]  __msan_memcpy+0x6f/0x80
[  611.896518]  pskb_expand_head+0x436/0x1d20
[  611.896518]  l2tp_xmit_skb+0x5a7/0x24b0
[  611.896518]  pppol2tp_sendmsg+0x79a/0xba0
[  611.896518]  ___sys_sendmsg+0xe3b/0x1240
[  611.896518]  __sys_sendmmsg+0x56b/0xa90
[  611.896518]  __se_sys_sendmmsg+0xbd/0xe0
[  611.896518]  __x64_sys_sendmmsg+0x56/0x70
[  611.896518]  do_syscall_64+0xcf/0x110
[  611.896518]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  611.896518] 
[  611.896518] Uninit was stored to memory at:
[  611.896518]  kmsan_internal_chain_origin+0x136/0x240
[  611.896518]  __msan_chain_origin+0x6d/0xb0
[  611.896518]  __save_stack_trace+0x8be/0xc60
[  611.896518]  save_stack_trace+0xc6/0x110
[  611.896518]  kmsan_internal_chain_origin+0x136/0x240
[  611.896518]  kmsan_memcpy_origins+0x13d/0x190
[  611.896518]  __msan_memcpy+0x6f/0x80
[  611.896518]  pskb_expand_head+0x436/0x1d20
[  611.896518]  l2tp_xmit_skb+0x5a7/0x24b0
[  611.896518]  pppol2tp_sendmsg+0x79a/0xba0
[  611.896518]  ___sys_sendmsg+0xe3b/0x1240
[  611.896518]  __sys_sendmmsg+0x56b/0xa90
[  611.896518]  __se_sys_sendmmsg+0xbd/0xe0
[  611.896518]  __x64_sys_sendmmsg+0x56/0x70
[  611.896518]  do_syscall_64+0xcf/0x110
[  611.896518]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  611.896518] 
[  611.896518] Uninit was stored to memory at:
[  611.896518]  kmsan_internal_chain_origin+0x136/0x240
[  611.896518]  __msan_chain_origin+0x6d/0xb0
[  611.896518]  __save_stack_trace+0x8be/0xc60
[  611.896518]  save_stack_trace+0xc6/0x110
[  611.896518]  kmsan_internal_chain_origin+0x136/0x240
[  611.896518]  kmsan_memcpy_origins+0x13d/0x190
[  611.896518]  __msan_memcpy+0x6f/0x80
[  611.896518]  pskb_expand_head+0x436/0x1d20
[  611.896518]  l2tp_xmit_skb+0x5a7/0x24b0
[  611.896518]  pppol2tp_sendmsg+0x79a/0xba0
[  611.896518]  ___sys_sendmsg+0xe3b/0x1240
[  611.896518]  __sys_sendmmsg+0x56b/0xa90
[  611.896518]  __se_sys_sendmmsg+0xbd/0xe0
[  611.896518]  __x64_sys_sendmmsg+0x56/0x70
[  611.896518]  do_syscall_64+0xcf/0x110
[  611.896518]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  611.896518] 
[  611.896518] Local variable description: ----iph@ip_vs_out
[  611.896518] Variable was created at:
[  611.896518]  ip_vs_out+0x1bf/0x4570
[  611.896518]  ip_vs_local_reply6+0xec/0x130
[  612.003024] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
[  612.278708] not chained 430000 origins
[  612.278744] CPU: 1 PID: 16194 Comm: syz-executor1 Not tainted 4.20.0-rc2+ #88
[  612.278757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  612.278769] Call Trace:
[  612.278809]  dump_stack+0x32d/0x480
[  612.278857]  kmsan_internal_chain_origin+0x222/0x240
[  612.278942]  ? save_stack_trace+0xc6/0x110
[  612.278967]  ? __irqentry_text_end+0x1fa056/0x1fa056
[  612.278996]  ? kmsan_internal_chain_origin+0x90/0x240
[  612.279036]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  612.279060]  ? is_bpf_text_address+0x49e/0x4d0
[  612.279091]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  612.279113]  ? in_task_stack+0x12c/0x210
[  612.279152]  __msan_chain_origin+0x6d/0xb0
[  612.279182]  ? pskb_expand_head+0x436/0x1d20
[  612.279218]  __save_stack_trace+0x8be/0xc60
[  612.279304]  ? pskb_expand_head+0x436/0x1d20
[  612.279334]  save_stack_trace+0xc6/0x110
[  612.279366]  kmsan_internal_chain_origin+0x136/0x240
[  612.279404]  ? kmsan_internal_chain_origin+0x136/0x240
[  612.279427]  ? kmsan_memcpy_origins+0x13d/0x190
[  612.279449]  ? __msan_memcpy+0x6f/0x80
[  612.279473]  ? pskb_expand_head+0x436/0x1d20
[  612.279496]  ? l2tp_xmit_skb+0x5a7/0x24b0
[  612.279519]  ? pppol2tp_sendmsg+0x79a/0xba0
[  612.279539]  ? ___sys_sendmsg+0xe3b/0x1240
[  612.279575]  ? __sys_sendmmsg+0x56b/0xa90
[  612.279609]  ? __se_sys_sendmmsg+0xbd/0xe0
[  612.279628]  ? __x64_sys_sendmmsg+0x56/0x70
[  612.279650]  ? do_syscall_64+0xcf/0x110
[  612.279674]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  612.279701]  ? __msan_poison_alloca+0x1e0/0x270
[  612.279743]  ? memcg_kmem_put_cache+0x73/0x460
[  612.279765]  ? __kmalloc_node_track_caller+0x1010/0x14e0
[  612.279810]  ? __msan_get_context_state+0x9/0x20
[  612.279830]  ? INIT_INT+0xc/0x30
[  612.279854]  ? __kmalloc_node_track_caller+0x369/0x14e0
[  612.279877]  ? memcg_kmem_put_cache+0x73/0x460
[  612.279916]  kmsan_memcpy_origins+0x13d/0x190
[  612.279952]  __msan_memcpy+0x6f/0x80
[  612.279980]  pskb_expand_head+0x436/0x1d20
[  612.280037]  l2tp_xmit_skb+0x5a7/0x24b0
[  612.280101]  pppol2tp_sendmsg+0x79a/0xba0
[  612.280163]  ___sys_sendmsg+0xe3b/0x1240
[  612.280185]  ? kmsan_set_origin+0x7f/0x100
[  612.280222]  ? pppol2tp_getsockopt+0x1060/0x1060
[  612.280277]  ? __msan_poison_alloca+0x1e0/0x270
[  612.280301]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  612.280333]  ? rcu_all_qs+0x3b/0x2b0
[  612.280360]  ? _cond_resched+0x59/0x120
[  612.280391]  ? rcu_all_qs+0x53/0x2b0
[  612.280412]  ? _cond_resched+0x37/0x120
[  612.280431]  ? __sys_sendmmsg+0x7c9/0xa90
[  612.280459]  ? _cond_resched+0x59/0x120
[  612.280484]  __sys_sendmmsg+0x56b/0xa90
[  612.280541]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  612.280563]  ? prepare_exit_to_usermode+0x182/0x4c0
[  612.280599]  __se_sys_sendmmsg+0xbd/0xe0
[  612.280630]  __x64_sys_sendmmsg+0x56/0x70
[  612.280654]  do_syscall_64+0xcf/0x110
[  612.280682]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  612.280702] RIP: 0033:0x457569
[  612.280733] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  612.280747] RSP: 002b:00007fbe0995ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  612.280769] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000457569
[  612.280783] RDX: 080000000000006a RSI: 0000000020005fc0 RDI: 0000000000000004
[  612.280798] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  612.280812] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbe0995b6d4
[  612.280827] R13: 00000000004c37d5 R14: 00000000004d5970 R15: 00000000ffffffff
[  612.280858] Uninit was stored to memory at:
[  612.280882]  kmsan_internal_chain_origin+0x136/0x240
[  612.280902]  __msan_chain_origin+0x6d/0xb0
[  612.280922]  __save_stack_trace+0x8be/0xc60
[  612.280942]  save_stack_trace+0xc6/0x110
[  612.280962]  kmsan_internal_chain_origin+0x136/0x240
[  612.280982]  kmsan_memcpy_origins+0x13d/0x190
[  612.281002]  __msan_memcpy+0x6f/0x80
[  612.281023]  pskb_expand_head+0x436/0x1d20
[  612.281043]  l2tp_xmit_skb+0x5a7/0x24b0
[  612.281063]  pppol2tp_sendmsg+0x79a/0xba0
[  612.281081]  ___sys_sendmsg+0xe3b/0x1240
[  612.281098]  __sys_sendmmsg+0x56b/0xa90
[  612.281116]  __se_sys_sendmmsg+0xbd/0xe0
[  612.281133]  __x64_sys_sendmmsg+0x56/0x70
[  612.281153]  do_syscall_64+0xcf/0x110
[  612.281175]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  612.281182] 
[  612.281190] Uninit was stored to memory at:
[  612.281229]  kmsan_internal_chain_origin+0x136/0x240
[  612.281251]  __msan_chain_origin+0x6d/0xb0
[  612.281270]  __save_stack_trace+0x8be/0xc60
[  612.281288]  save_stack_trace+0xc6/0x110
[  612.281309]  kmsan_internal_chain_origin+0x136/0x240
[  612.281329]  kmsan_memcpy_origins+0x13d/0x190
[  612.281348]  __msan_memcpy+0x6f/0x80
[  612.281368]  pskb_expand_head+0x436/0x1d20
[  612.281388]  l2tp_xmit_skb+0x5a7/0x24b0
[  612.281409]  pppol2tp_sendmsg+0x79a/0xba0
[  612.281426]  ___sys_sendmsg+0xe3b/0x1240
[  612.281443]  __sys_sendmmsg+0x56b/0xa90
[  612.281475]  __se_sys_sendmmsg+0xbd/0xe0
[  612.406774] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
[  612.367666]  __x64_sys_sendmmsg+0x56/0x70
[  612.367666]  do_syscall_64+0xcf/0x110
[  612.367666]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  612.367666] 
[  612.367666] Uninit was stored to memory at:
[  612.367666]  kmsan_internal_chain_origin+0x136/0x240
[  612.367666]  __msan_chain_origin+0x6d/0xb0
[  613.182797]  __save_stack_trace+0x8be/0xc60
[  613.182797]  save_stack_trace+0xc6/0x110
[  613.182797]  kmsan_internal_chain_origin+0x136/0x240
[  613.182797]  kmsan_memcpy_origins+0x13d/0x190
[  613.182797]  __msan_memcpy+0x6f/0x80
[  613.182797]  pskb_expand_head+0x436/0x1d20
[  613.182797]  l2tp_xmit_skb+0x5a7/0x24b0
[  613.182797]  pppol2tp_sendmsg+0x79a/0xba0
[  613.182797]  ___sys_sendmsg+0xe3b/0x1240
[  613.182797]  __sys_sendmmsg+0x56b/0xa90
[  613.182797]  __se_sys_sendmmsg+0xbd/0xe0
[  613.182797]  __x64_sys_sendmmsg+0x56/0x70
[  613.182797]  do_syscall_64+0xcf/0x110
[  613.182797]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  613.182797] 
[  613.182797] Uninit was stored to memory at:
[  613.182797]  kmsan_internal_chain_origin+0x136/0x240
[  613.182797]  __msan_chain_origin+0x6d/0xb0
[  613.182797]  __save_stack_trace+0x8be/0xc60
[  613.182797]  save_stack_trace+0xc6/0x110
[  613.182797]  kmsan_internal_chain_origin+0x136/0x240
[  613.182797]  kmsan_memcpy_origins+0x13d/0x190
[  613.275131]  __msan_memcpy+0x6f/0x80
[  613.275131]  pskb_expand_head+0x436/0x1d20
[  613.281505]  l2tp_xmit_skb+0x5a7/0x24b0
[  613.284968]  pppol2tp_sendmsg+0x79a/0xba0
[  613.284968]  ___sys_sendmsg+0xe3b/0x1240
[  613.284968]  __sys_sendmmsg+0x56b/0xa90
[  613.284968]  __se_sys_sendmmsg+0xbd/0xe0
[  613.284968]  __x64_sys_sendmmsg+0x56/0x70
[  613.284968]  do_syscall_64+0xcf/0x110
[  613.284968]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  613.284968] 
[  613.284968] Uninit was stored to memory at:
[  613.284968]  kmsan_internal_chain_origin+0x136/0x240
[  613.284968]  __msan_chain_origin+0x6d/0xb0
[  613.284968]  __save_stack_trace+0x8be/0xc60
[  613.284968]  save_stack_trace+0xc6/0x110
[  613.284968]  kmsan_internal_chain_origin+0x136/0x240
[  613.284968]  kmsan_memcpy_origins+0x13d/0x190
[  613.284968]  __msan_memcpy+0x6f/0x80
[  613.284968]  pskb_expand_head+0x436/0x1d20
[  613.284968]  l2tp_xmit_skb+0x5a7/0x24b0
[  613.284968]  pppol2tp_sendmsg+0x79a/0xba0
[  613.284968]  ___sys_sendmsg+0xe3b/0x1240
[  613.284968]  __sys_sendmmsg+0x56b/0xa90
[  613.284968]  __se_sys_sendmmsg+0xbd/0xe0
[  613.284968]  __x64_sys_sendmmsg+0x56/0x70
[  613.284968]  do_syscall_64+0xcf/0x110
[  613.284968]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  613.284968] 
[  613.284968] Uninit was stored to memory at:
[  613.284968]  kmsan_internal_chain_origin+0x136/0x240
[  613.284968]  __msan_chain_origin+0x6d/0xb0
[  613.284968]  __save_stack_trace+0x8be/0xc60
[  613.284968]  save_stack_trace+0xc6/0x110
[  613.284968]  kmsan_internal_chain_origin+0x136/0x240
[  613.284968]  kmsan_memcpy_origins+0x13d/0x190
[  613.284968]  __msan_memcpy+0x6f/0x80
[  613.284968]  pskb_expand_head+0x436/0x1d20
[  613.284968]  l2tp_xmit_skb+0x5a7/0x24b0
[  613.284968]  pppol2tp_sendmsg+0x79a/0xba0
[  613.284968]  ___sys_sendmsg+0xe3b/0x1240
[  613.284968]  __sys_sendmmsg+0x56b/0xa90
[  613.284968]  __se_sys_sendmmsg+0xbd/0xe0
[  613.284968]  __x64_sys_sendmmsg+0x56/0x70
[  613.284968]  do_syscall_64+0xcf/0x110
[  613.284968]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  613.284968] 
[  613.284968] Uninit was stored to memory at:
[  613.284968]  kmsan_internal_chain_origin+0x136/0x240
[  613.284968]  __msan_chain_origin+0x6d/0xb0
[  613.284968]  __save_stack_trace+0x8be/0xc60
[  613.284968]  save_stack_trace+0xc6/0x110
[  613.284968]  kmsan_internal_chain_origin+0x136/0x240
[  613.284968]  kmsan_memcpy_origins+0x13d/0x190
[  613.284968]  __msan_memcpy+0x6f/0x80
[  613.284968]  pskb_expand_head+0x436/0x1d20
[  613.284968]  l2tp_xmit_skb+0x5a7/0x24b0
[  613.284968]  pppol2tp_sendmsg+0x79a/0xba0
[  613.284968]  ___sys_sendmsg+0xe3b/0x1240
[  613.284968]  __sys_sendmmsg+0x56b/0xa90
[  613.284968]  __se_sys_sendmmsg+0xbd/0xe0
[  613.284968]  __x64_sys_sendmmsg+0x56/0x70
[  613.284968]  do_syscall_64+0xcf/0x110
[  613.284968]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  613.284968] 
[  613.284968] Local variable description: ----iph@ip_vs_out
[  613.284968] Variable was created at:
[  613.284968]  ip_vs_out+0x1bf/0x4570
[  613.284968]  ip_vs_local_reply6+0xec/0x130
[  613.580996] not chained 440000 origins
[  613.582298] CPU: 1 PID: 16194 Comm: syz-executor1 Not tainted 4.20.0-rc2+ #88
[  613.582298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  613.582298] Call Trace:
[  613.582298]  dump_stack+0x32d/0x480
[  613.582298]  kmsan_internal_chain_origin+0x222/0x240
[  613.582298]  ? save_stack_trace+0xc6/0x110
[  613.582298]  ? __irqentry_text_end+0x1fa056/0x1fa056
[  613.582298]  ? kmsan_internal_chain_origin+0x90/0x240
[  613.582298]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  613.582298]  ? is_bpf_text_address+0x49e/0x4d0
[  613.582298]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  613.582298]  ? in_task_stack+0x12c/0x210
[  613.582298]  __msan_chain_origin+0x6d/0xb0
[  613.582298]  ? __se_sys_sendmmsg+0xbd/0xe0
[  613.582298]  __save_stack_trace+0x8be/0xc60
[  613.582298]  ? __se_sys_sendmmsg+0xbd/0xe0
[  613.582298]  save_stack_trace+0xc6/0x110
[  613.582298]  kmsan_internal_chain_origin+0x136/0x240
[  613.582298]  ? kmsan_internal_chain_origin+0x136/0x240
[  613.582298]  ? kmsan_memcpy_origins+0x13d/0x190
[  613.582298]  ? __msan_memcpy+0x6f/0x80
[  613.582298]  ? pskb_expand_head+0x436/0x1d20
[  613.582298]  ? l2tp_xmit_skb+0x5a7/0x24b0
[  613.582298]  ? pppol2tp_sendmsg+0x79a/0xba0
[  613.582298]  ? ___sys_sendmsg+0xe3b/0x1240
[  613.582298]  ? __sys_sendmmsg+0x56b/0xa90
[  613.582298]  ? __se_sys_sendmmsg+0xbd/0xe0
[  613.582298]  ? __x64_sys_sendmmsg+0x56/0x70
[  613.582298]  ? do_syscall_64+0xcf/0x110
[  613.582298]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  613.582298]  ? __msan_poison_alloca+0x1e0/0x270
[  613.582298]  ? memcg_kmem_put_cache+0x73/0x460
[  613.582298]  ? __kmalloc_node_track_caller+0x1010/0x14e0
[  613.582298]  ? __msan_get_context_state+0x9/0x20
[  613.582298]  ? INIT_INT+0xc/0x30
[  613.582298]  ? __kmalloc_node_track_caller+0x369/0x14e0
[  613.582298]  ? memcg_kmem_put_cache+0x73/0x460
[  613.582298]  kmsan_memcpy_origins+0x13d/0x190
[  613.582298]  __msan_memcpy+0x6f/0x80
[  613.582298]  pskb_expand_head+0x436/0x1d20
[  613.582298]  l2tp_xmit_skb+0x5a7/0x24b0
[  613.582298]  pppol2tp_sendmsg+0x79a/0xba0
[  613.582298]  ___sys_sendmsg+0xe3b/0x1240
[  613.582298]  ? kmsan_set_origin+0x7f/0x100
[  613.582298]  ? pppol2tp_getsockopt+0x1060/0x1060
[  613.582298]  ? __msan_poison_alloca+0x1e0/0x270
[  613.582298]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  613.582298]  ? rcu_all_qs+0x3b/0x2b0
[  613.582298]  ? _cond_resched+0x59/0x120
[  613.582298]  ? rcu_all_qs+0x53/0x2b0
[  613.582298]  ? _cond_resched+0x37/0x120
[  613.582298]  ? __sys_sendmmsg+0x7c9/0xa90
[  613.582298]  ? _cond_resched+0x59/0x120
[  613.582298]  __sys_sendmmsg+0x56b/0xa90
[  613.582298]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  613.582298]  ? prepare_exit_to_usermode+0x182/0x4c0
[  613.582298]  __se_sys_sendmmsg+0xbd/0xe0
[  613.582298]  __x64_sys_sendmmsg+0x56/0x70
[  613.582298]  do_syscall_64+0xcf/0x110
[  613.582298]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  613.582298] RIP: 0033:0x457569
[  613.582298] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  613.582298] RSP: 002b:00007fbe0995ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  613.582298] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000457569
[  613.582298] RDX: 080000000000006a RSI: 0000000020005fc0 RDI: 0000000000000004
[  613.582298] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  613.582298] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbe0995b6d4
[  613.582298] R13: 00000000004c37d5 R14: 00000000004d5970 R15: 00000000ffffffff
[  613.582298] Uninit was stored to memory at:
[  613.582298]  kmsan_internal_chain_origin+0x136/0x240
[  613.582298]  __msan_chain_origin+0x6d/0xb0
[  613.582298]  __save_stack_trace+0x8be/0xc60
[  613.582298]  save_stack_trace+0xc6/0x110
[  613.582298]  kmsan_internal_chain_origin+0x136/0x240
[  613.582298]  kmsan_memcpy_origins+0x13d/0x190
[  613.582298]  __msan_memcpy+0x6f/0x80
[  613.582298]  pskb_expand_head+0x436/0x1d20
[  613.582298]  l2tp_xmit_skb+0x5a7/0x24b0
[  613.582298]  pppol2tp_sendmsg+0x79a/0xba0
[  613.582298]  ___sys_sendmsg+0xe3b/0x1240
[  613.582298]  __sys_sendmmsg+0x56b/0xa90
[  613.582298]  __se_sys_sendmmsg+0xbd/0xe0
[  613.582298]  __x64_sys_sendmmsg+0x56/0x70
[  613.582298]  do_syscall_64+0xcf/0x110
[  613.582298]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  613.582298] 
[  613.582298] Uninit was stored to memory at:
[  613.582298]  kmsan_internal_chain_origin+0x136/0x240
[  613.582298]  __msan_chain_origin+0x6d/0xb0
[  613.582298]  __save_stack_trace+0x8be/0xc60
[  613.582298]  save_stack_trace+0xc6/0x110
[  613.582298]  kmsan_internal_chain_origin+0x136/0x240
[  613.582298]  kmsan_memcpy_origins+0x13d/0x190
[  613.582298]  __msan_memcpy+0x6f/0x80
[  613.582298]  pskb_expand_head+0x436/0x1d20
[  613.582298]  l2tp_xmit_skb+0x5a7/0x24b0
[  613.582298]  pppol2tp_sendmsg+0x79a/0xba0
[  613.582298]  ___sys_sendmsg+0xe3b/0x1240
[  613.582298]  __sys_sendmmsg+0x56b/0xa90
[  613.582298]  __se_sys_sendmmsg+0xbd/0xe0
[  613.582298]  __x64_sys_sendmmsg+0x56/0x70
[  613.582298]  do_syscall_64+0xcf/0x110
[  613.582298]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  613.582298] 
[  613.582298] Uninit was stored to memory at:
[  613.582298]  kmsan_internal_chain_origin+0x136/0x240
[  613.582298]  __msan_chain_origin+0x6d/0xb0
[  613.582298]  __save_stack_trace+0x8be/0xc60
[  614.092484]  save_stack_trace+0xc6/0x110
[  614.092484]  kmsan_internal_chain_origin+0x136/0x240
[  614.092484]  kmsan_memcpy_origins+0x13d/0x190
[  614.092484]  __msan_memcpy+0x6f/0x80
[  614.092484]  pskb_expand_head+0x436/0x1d20
[  614.092484]  l2tp_xmit_skb+0x5a7/0x24b0
[  614.092484]  pppol2tp_sendmsg+0x79a/0xba0
[  614.092484]  ___sys_sendmsg+0xe3b/0x1240
[  614.092484]  __sys_sendmmsg+0x56b/0xa90
[  614.092484]  __se_sys_sendmmsg+0xbd/0xe0
[  614.092484]  __x64_sys_sendmmsg+0x56/0x70
[  614.092484]  do_syscall_64+0xcf/0x110
[  614.092484]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  614.092484] 
[  614.092484] Uninit was stored to memory at:
[  614.092484]  kmsan_internal_chain_origin+0x136/0x240
[  614.092484]  __msan_chain_origin+0x6d/0xb0
[  614.092484]  __save_stack_trace+0x8be/0xc60
[  614.092484]  save_stack_trace+0xc6/0x110
[  614.092484]  kmsan_internal_chain_origin+0x136/0x240
[  614.092484]  kmsan_memcpy_origins+0x13d/0x190
[  614.092484]  __msan_memcpy+0x6f/0x80
[  614.092484]  pskb_expand_head+0x436/0x1d20
[  614.092484]  l2tp_xmit_skb+0x5a7/0x24b0
[  614.092484]  pppol2tp_sendmsg+0x79a/0xba0
[  614.092484]  ___sys_sendmsg+0xe3b/0x1240
[  614.092484]  __sys_sendmmsg+0x56b/0xa90
[  614.092484]  __se_sys_sendmmsg+0xbd/0xe0
[  614.092484]  __x64_sys_sendmmsg+0x56/0x70
[  614.092484]  do_syscall_64+0xcf/0x110
[  614.092484]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  614.092484] 
[  614.092484] Uninit was stored to memory at:
[  614.092484]  kmsan_internal_chain_origin+0x136/0x240
[  614.092484]  __msan_chain_origin+0x6d/0xb0
[  614.092484]  __save_stack_trace+0x8be/0xc60
[  614.092484]  save_stack_trace+0xc6/0x110
[  614.092484]  kmsan_internal_chain_origin+0x136/0x240
[  614.092484]  kmsan_memcpy_origins+0x13d/0x190
[  614.092484]  __msan_memcpy+0x6f/0x80
[  614.092484]  pskb_expand_head+0x436/0x1d20
[  614.092484]  l2tp_xmit_skb+0x5a7/0x24b0
[  614.092484]  pppol2tp_sendmsg+0x79a/0xba0
[  614.092484]  ___sys_sendmsg+0xe3b/0x1240
[  614.092484]  __sys_sendmmsg+0x56b/0xa90
[  614.092484]  __se_sys_sendmmsg+0xbd/0xe0
[  614.092484]  __x64_sys_sendmmsg+0x56/0x70
[  614.092484]  do_syscall_64+0xcf/0x110
[  614.092484]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  614.092484] 
[  614.092484] Uninit was stored to memory at:
[  614.092484]  kmsan_internal_chain_origin+0x136/0x240
[  614.092484]  __msan_chain_origin+0x6d/0xb0
[  614.092484]  __save_stack_trace+0x8be/0xc60
[  614.092484]  save_stack_trace+0xc6/0x110
[  614.092484]  kmsan_internal_chain_origin+0x136/0x240
[  614.092484]  kmsan_memcpy_origins+0x13d/0x190
[  614.092484]  __msan_memcpy+0x6f/0x80
[  614.092484]  pskb_expand_head+0x436/0x1d20
[  614.092484]  l2tp_xmit_skb+0x5a7/0x24b0
[  614.092484]  pppol2tp_sendmsg+0x79a/0xba0
[  614.092484]  ___sys_sendmsg+0xe3b/0x1240
[  614.092484]  __sys_sendmmsg+0x56b/0xa90
[  614.092484]  __se_sys_sendmmsg+0xbd/0xe0
[  614.092484]  __x64_sys_sendmmsg+0x56/0x70
[  614.092484]  do_syscall_64+0xcf/0x110
[  614.092484]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  614.092484] 
[  614.092484] Uninit was stored to memory at:
[  614.092484]  kmsan_internal_chain_origin+0x136/0x240
[  614.092484]  __msan_chain_origin+0x6d/0xb0
[  614.092484]  __save_stack_trace+0x8be/0xc60
[  614.092484]  save_stack_trace+0xc6/0x110
[  614.092484]  kmsan_internal_chain_origin+0x136/0x240
[  614.092484]  kmsan_memcpy_origins+0x13d/0x190
[  614.092484]  __msan_memcpy+0x6f/0x80
[  614.092484]  pskb_expand_head+0x436/0x1d20
[  614.092484]  l2tp_xmit_skb+0x5a7/0x24b0
[  614.092484]  pppol2tp_sendmsg+0x79a/0xba0
[  614.092484]  ___sys_sendmsg+0xe3b/0x1240
[  614.092484]  __sys_sendmmsg+0x56b/0xa90
[  614.092484]  __se_sys_sendmmsg+0xbd/0xe0
[  614.092484]  __x64_sys_sendmmsg+0x56/0x70
[  614.092484]  do_syscall_64+0xcf/0x110
[  614.092484]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  614.092484] 
[  614.092484] Local variable description: ----iph@ip_vs_out
[  614.092484] Variable was created at:
[  614.092484]  ip_vs_out+0x1bf/0x4570
[  614.092484]  ip_vs_local_reply6+0xec/0x130
08:52:01 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x1, &(0x7f00000000c0)=@raw=[@jmp={0x5, 0x0, 0xf}], &(0x7f0000003ff6)='syzkaller\x00', 0x1000000000000005, 0xc3, &(0x7f0000386000)=""/195}, 0x48)

08:52:01 executing program 2:
mkdir(&(0x7f0000000880)='./file0\x00', 0x800000000)
write$RDMA_USER_CM_CMD_JOIN_MCAST(0xffffffffffffffff, &(0x7f0000000700)={0x16, 0x98, 0xfa00, {&(0x7f0000000280), 0x0, 0xffffffffffffffff, 0x0, 0x0, @ib={0x1b, 0x0, 0x0, {"6d3a03a22ad13804238c25806cdd75ac"}}}}, 0xa5e0936e7f46bf5c)
fchmodat(0xffffffffffffffff, &(0x7f00000007c0)='./file0\x00', 0x0)
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f00000008c0))
r1 = socket$nl_generic(0x10, 0x3, 0x10)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$NBD_SET_SIZE_BLOCKS(0xffffffffffffffff, 0xab07, 0x7ff)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(0xffffffffffffffff, 0xc04c5349, &(0x7f0000000800)={0xfffffffffffff800, 0x73e})
ioprio_get$pid(0x1, 0x0)
kcmp(0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
clone(0x802102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000340), 0xffffffffffffffff)
r2 = perf_event_open(&(0x7f0000000000)={0x5, 0xfffffffffffffd14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x8000000000000000, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x200000000, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount(&(0x7f0000000240)=ANY=[], &(0x7f0000000180)='./file0\x00', &(0x7f0000000100)='nfs\x00', 0x0, &(0x7f0000000000))
ioctl$KVM_SET_XCRS(0xffffffffffffffff, 0x4188aea7, &(0x7f0000000a00)=ANY=[@ANYBLOB="050021e300000000b00481000000000000000800008f00000000bbdedd6f0000000000000020050000000d0000410100000000000047000100000000000000000000000000000700000000000000000000000000000000000000000000"])
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(0xffffffffffffffff, 0x84, 0x7, &(0x7f0000000600), 0x4)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000140)={r0, &(0x7f0000000640)="2d3739107c1df1263f87ca2cb0eccf60c4f3d84e1e719fd265e679af66c0050b8eb2e2f9384c50d49bd3f3d67cf8d6b6011fd3ac175785358e11c9d183bc1d58a9f9b44b312e324d824f740e2ad7fb71696ac1109de953ebb2cd0d", &(0x7f0000000900)=""/74}, 0x18)
clone(0x3003, 0x0, 0xfffffffffffffffe, &(0x7f0000000100), 0xffffffffffffffff)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000e40)=ANY=[@ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=<r3=>0x0], &(0x7f00000001c0)=0x3)
getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f00000003c0)={r3, 0x10, &(0x7f0000000380)=[@in={0x2, 0x4e22, @local}]}, &(0x7f0000000540)=0x10)
ioctl$sock_inet_SIOCGIFADDR(r0, 0x8915, &(0x7f00000000c0)={'bond0\x00', {0x2, 0x4e23}})
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r2, 0x4008240b, &(0x7f00000002c0)={0x7, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x80000, 0xf, 0x8, 0x3, 0x8, 0x0, 0x0, 0x3, 0x5, 0x100, 0x3cb6, 0x0, 0x5, 0x0, 0xfffffffffffffffb, 0x0, 0x8, 0x0, 0xd9, 0xfffffffffffffffa, 0xc6, 0xfffffffffffffffc, 0xdb, 0x8, 0x9, 0x0, 0x4, 0x9, 0x5, 0x9, 0x0, 0x400, 0x5, @perf_config_ext={0x1, 0x1}, 0x2000, 0x0, 0x1, 0xd, 0x86, 0x4, 0x5})
getpid()
getsockopt$IP_VS_SO_GET_INFO(r1, 0x0, 0x481, &(0x7f0000000200), &(0x7f0000000480)=0xc)
write$P9_RSYMLINK(0xffffffffffffffff, &(0x7f0000000440)={0xffffffffffffffa0, 0x11, 0x0, {0x20}}, 0x14)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(0xffffffffffffffff, 0x84, 0xc, &(0x7f0000000240), &(0x7f0000000400)=0x4)

08:52:01 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

08:52:01 executing program 5:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = gettid()
prctl$intptr(0x1e, 0x1)
ioprio_get$pid(0x3, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r3 = dup2(r1, r1)
ioctl$TIOCLINUX2(r3, 0x541c, &(0x7f0000001280)={0x2, 0x3, 0x4, 0x401, 0x6, 0xf4f1})
fcntl$getownex(r0, 0x10, &(0x7f0000001340)={0x0, <r4=>0x0})
ioctl$SNDRV_TIMER_IOCTL_INFO(r3, 0x80e85411, &(0x7f0000001380)=""/151)
r5 = syz_open_procfs(r4, &(0x7f0000001300)='net/tcp6\x00')
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r5, 0x40505330, &(0x7f0000000080)={{0x4, 0x6}, {0x2, 0xfffffffffffffe01}, 0x8, 0x1, 0xffffffffffff7fff})
clone(0x210007fa, 0x0, 0xfffffffffffffffe, &(0x7f0000001240), 0xffffffffffffffff)
ioctl$KVM_GET_DIRTY_LOG(r3, 0x4010ae42, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000ffc000/0x1000)=nil})
r6 = add_key(&(0x7f00000001c0)='keyring\x00', &(0x7f0000000200)={'syz', 0x0}, &(0x7f0000000240)="eff20b486c8809e3da3c107b290895adfb991604d16738b7970939084925488b71213bf1a8451ad062d6771695d1523ba7962e5d2f3bec4ea295af56f0ddf60a1e4ff765e04bc8e31dcb1864c2535010c6e8b2f791822eefebbb6bfd7a2a0c7f02e831957178d685920a742b73a334f7c885d7d940703a7b1663987fff106f9fbab82c6973b34b9746388eb9db901bc79c6426349292a340801b59532c188dd1b2debf5166c3b4d26a011202edb4ebfb895ff56d3a16bfd571fee07ddc0d3140b09438a2da7dc8869903723934b9a9146142ae5e8a6cd6f68a9934438633781c7490dbb2d23aa73ab98e3c90b75c36250b2599e61107bb0908c6e01e240bba240d59f503fbf710e43256276a9baf68294d8a61c6ef2275a0e47d2f1bdfc8d2dc82e9fc822bbf36a70f92b156ef6f955a09cb6f2abe03735526fce8fa2a352276208ef70e048e00907fa866793a3cd19a64949e96db31e3cb4db39f6a64aa5d713a2e09e88b9e467c5d5e3538747dcb0068a81229affc9f81f7b6c56cc8bec89d694a7b22253f6b2d61bfed61d7655586a6a915524be88c508d3492182a53984390b0b5161de4de65ae98e2db2fcc06ce0a4f9d7f19e8a6a9ad37e8ecc33efe76f06d3d54d211fc5d7804b2640a359e4669da3bedd951bbde94d91597a15b00bc7ab1a6d32189ecd7aea56311d186e40068f09d67e17abc7cf1db3e283f2c41f22f02eb6c420ba7423b349d47989ef889738a82ba7f140dc9755c7de497d333b579a361c2d9cdf0897951cea6fcd0f470a21523123edf71219320f3a5dc7a0938246e6609f8bebabc064e8dd78856676e0958baafaabe66b46fdc6099c9b7cec18d70dc0a1fe414bd075e2fc873fa58590b5133db4fc456dd8696677f5ebc093d21a39aba6fc9cc02576fcd5a3e1bf96f3398a7aa5d128e0dc31115dd3ece7073d59d0ef69e14ccaa1ca598556b7b635f2b43a746994cd3c92019965d053c4b09b73be50ef8ef6d39b421635b8ff835c7fbc8467ec40d8d12c01084b17479d458ff9544afa025e902162292f127bd229c20a1e63966c5ca6cf308f98f295e5796de2841032a964d267d04dd2bdd2b28ca522570258301e019411cb27a54c9dea81eac2c5d38489ba6cce895b19e40e895f72801ec2eb0c37b22ae9454d974ec69017ec7f64ce5192bb0cfb1ab01139f145dbe547711b3c8c383e76cb2e3437b74c7ff5cb6a7bba2990b9646fc4832e01c4bef37cc2d9485f93b36790e9046d7da4207d35f9a866b666f37ed57eff317120891ce58bde21ef3fe406af88f60911afe2ba6ac385ea20eb6298a50191069d5077333ea2781df195ebb10fcffc8ec9e8e342c33e5dfc8312856510adad03cb4b1c965940a987165f0798e2b1958969f1177ea6cbe2f3befd1ad725c16c9ff7b0214e78f972d757636a93bbd44bf00b34cd5b7031e442a7804d5e3295c302d62e57ba85aecd13ffa5e65f1a169dca118388f7942377f5e591ef380bcb0f31047835a9906aff4262f80e27f370d9efc62479dfb22751a87722186bf66dbbd7555599ee5a97009610b06eef8f0d74305cf17482b9782b9f603f8212e0550dbcdeeff4ab9dbcbb48417f5887bdecf7ce75abfadb110991e1efe4b09dc76de85b779f0661a113e0ba8fe8663ddc9d1f92b3c816e9ac617789f25418b17f34ff7cf9b73b9da516a9f1311ea17c25307e8d1f645e47e52ce3c3fe7778d8483f75721f8efc10f7bf73bbc4ec890d6b0c7e40e5d574c84d55dd79ac9d5bdd3cc4713c8ca37b821487e4c3dfe00e78bb12a873cd518110b86a464d8921ccfffa638a71e2bf6f41b504ff10e4a929a32e865a839e49ecb8aa04a590af31cc1c0809a9fa39de07e0d3e50c4921f6aa2a4f436854c0fdcc7093a2b98f63c5212d3a7f4303b1d032dd661e740877b7a1a15e8c43353537d9ba2103fbe2fde0fe419d61b000d57f4876eae9963d23720aa9c83cf2e84ec9a2ba7f223665b51008a39191eb712df82c099e0c05d9940ade05eb5ebcaeeb8f7b75c67f6573758ce370edfdc710d89fad6e6ac7ae03c230cae3efa37ca6b969acf6f810c0c381ea830130b86e8041de67db0ace754367a1df19b14c9ce3264ffc221aa0262a22c86b5e7c5a3def716ee25a441b87cca990940b5632dd92ec6f5dd655aa7205af3288a37a5c1945d44494cfb3207847e364e2cccfe6f2545ac6022270030172336a1e4a40db9a15cebad045f9439bcbffa6caaeddad8303eb414caebcb6d8cb363ccdcffbbbd36004e24c457a168a10f2de68dd01766f5e388f2bb30f4a612b88b505d437219f19639cf25f58ee17eb88d44008683b3bd1845e76ecaa52ef8bdf02ba0664c77df760746343257e74a96db3480c247b71b1a597c7de30ffb48cfbac66c463a73601f4856dd61cd7057623d47c728e622e24025d2266d686571e434443bb38ed604b96be054ab3a3691242da7230fe3886e42c3ca988d4aca05538183f9687a9a804822ca1ad45fb6aa612990647fb8becf1a788489ecbcba58a20c252133055afc75a17fd02ecffaba32450aebde3f8d938aa228c79fca6f466bf6c3d2afc356901d356e6f9e1f3cec66ebc677946bf2c7ffb43732d9bd6bd38694b83f7634eda1fa766d36136918ab8ab34b578e2a43fa0b19602f4afc0540332bfce53308bf8420d97c0e0c7fe6b45d4a268346a81a52d6340459c640e8ec71d44e05812123565bf9c4f5ac1b6ac0172793d0949dd2c3ee52cf4f6e5defdd87e8ee0827b777f3391d8653dfcb4f82c349d4dc550b6dc6b39de3f9eea08b9f367222619e43e6303a35ac41d506cc38a804dee0bf83bd5bf054978847cfa191e324b8e03c2d9b9a4dc48464784ea864460061e2af534489383fda2681cab7ed0330619e435b2acc58154e6b36679cf77bafba631c6acfc5920f71ef513bdc32d9da761ef7642792b1711fd974861ea5c189e75fe6799189f51df88f1aa082de19eda0ae3d374ae9deeed9dc74923a366c90d46ea3a30e1c67f053d291ba8a739fb33e83fc50bea03f54665b62528184778157c8e4a22e053180fca40e3c9709ebfe2ecb91ff4a763d843863eefffda7e6de7e3ce05a51620b70c4afc11aa71e24e304938b52d3d312121727f1d7feff0b6d76be1f8dac5a7b2bd8b74886dd080e14a7184f6efc03ff83c2d987d01f432d7b72a8e45100ff7521a376e603fe8929d4a4452d366233623688c9df2e19376d17a57a28f449b5f4ca4267747497771e0c6da81c23b364d18f1d3cf3f1221a2b4af78984653e6af12b3bbbd39cd8802bbfea6ef1f36f893173641c2a88cd006080fe85017fd36a567b09ad243e8b7127448350d981fad9acc037ccefd04be307a9512066fc0664616378c6982eeadc4291b10873fd9f83bde6c082a28b74bdb8aa9e1cc28ae34943681c0625d199ed7a3b53078c3a334b3a9ff09ac34b29fef5b276c23783c7492a75b612205ad2833c9e1ef470cefb4cd879a6d719d9c632d2703a92bdcf4cdfed72416223f717322a0853aac7df12cc34f83ae4372f3a3b523498edc169c1d33804dc88196fbc91187c80f4c908a75bf83a17509251c415b1bca438e3fffa51853286f726cf0ca0205b20cc319fe783d37a1e2232c3f65ac1f3e9c2b389e96702b4880cdc7f91588c4dab95cc6b9578a09e6c10c2a0d481840aa0aaf1ae4e60ddc8fbabeccb19b02519613bb39c1a202edadf82fccca2d171882633a31e0a331987e6b896a6be4f146948957b91c95f7ab0ceae2e3525658bfdf4cd7343c332922fd612bd7ebe4d982ec89681ea1c94ba6342908c44775a76629a3a801dc42969322f0a3b462a42ec9660b3fa816ca53704512aa45a903f13110cc1987eea623d2c4b3891a44c65e510f337e27b6f8b3353cda4b4a47b8eb482d0374df5e4444d309d4921cf392639810029ed0ce0ff577067ca881717a36f97b8614e1b6bb3cbbcead86b396fe9f8b54f2f8ab6d20c639d5978ce25ce170e96193f5adef963aeab3267a810cc056f680c3831af8de9eac48e10dcfcc3bfd4fff690e6cd6a0b9a44155314c02afd552950cde053e1b1976591dbda060387c8ca93892ffd520eea704154f69344c1dedf3142565683dcc237c3daaab9c1e9990bf2cdfab9fbba8bb66ca24a06b65125766be6c1e2ccf4a5f74c009a8a7e1fce96b3ca1554547210c31066cf18b59e9ef9b273bc7bf770e9a1ff1edb872a32ec3eb6c7b001e6ce09b0cbea598e37d3d1c51a80be3701a749fdaeeec40662050f842db5c1c6c4b2f34f59f3754d91f5ca08895c7280411fe43eca61944ace2fd8b04437acb5550a740d8388255b9a54428e8c292f4968442c729404b1316b415933470dffd795bf7fa5ff7d6fe557f81f6140e11f6dab2d5be9906996e34b1f390756cda2f383c5edc74da880998ddb3b55f3bf998e286246b194a7a4d9d6dbbaf96133ccdba467e31d5cb8aae6a623e2e897c5281780258809927418ecee05b5c8a1e4cc3fbe85914b43a05a3b124d3745a1be3890329b59f8c62e421e883b5bc5205d940f42a9bca1a238cbb43ba4382fd166672f74834cf0450c3372ea2727c52c5591c7ae11f7d05a95c599d63e9b34d332587961617ed75ef9207ff3c3d0c6938dc3816994d71f106c6c8354fa33d71aaea0dd5b7f1636e0e637eca7085764430a7a36aaaa52134906a7be8cbac538633eb9185b8d0fc63727e3b69aae664f4f24a819aca57078aa26a9fe9651514c6b2a886e63c9134d49b421ea740c7af0998dd603b1f85ef832b139d00985a03a3044da82f2da365592d5bf973cfd72f4b641da0441f41f3089ffe013c3cf900a29ecea9fe708053d962bdd78feb5bafc28f1a4227b2fd1bb703b84e4f25d6ec100d3945a29a84a1f5b209c1dfae64d2dd5888ca29cccdf6e4bdbef6c1cde64ab9201b076c0d90e4e7d7c3ece3b046eccb80164b93d5ff38e443ca07733c906580883ac14a37048bbab044f8783704a8d01ceec5434ec17eb79a800d6d019393cac546f8f750f8b231fabf6eba22291e7a23002f4506b43269cafffed8b460209d7ff8572a7934c5132258dd1f079f87b00133f9fe7643ddab191b51b896b7380cf0d5baac1f5a31e666f2c0b03a5d57e022cf14d2157196c40bf02b3e03e14044d0c0e17229537295ac6fb07ffe235e571ddf92f8d67e7b9deb73159ec7e8bfe1de58b43486d66b4353a314c551c02d81828c37f5e67ae05ba051135711d17fadd475e4f50d7186225061ed0032b65c58fa3c6171f176f98c7dbb92af8363b40ec6f16b405e27d7416f0b5c548d7d7c6df5fdc55dea3f76b062763e5f21eec0592e119e4dfc66886025c298e7de991a83cd5c26a9a34bc8c5b053f61d5bab5eb4c395e1eef8de4de19bcc788112cde5a994163b23832b12e5beb60328fdb51624e096077779d5c8833d021e914b30c2e5e69c634839f64a6e7f8be630f8badcbae588da001653b9cd4d210a9de5a31060d928fc53e9815b38bd2f28006367df02da30a4ccc378df95378acaabc37a3570ec842b9c274a9802f018588c1c41b99232af654bd9c2e1fe1c26dcb0852cedb22c6fe37e8b8e611dade39c79da6696e02a097274971b4f8b9dbf08641ec0eb088b44b1048aed04a135ed62855a46695096925b8f1566d016e8673f6286b2af182c77358a925130674f6037894d8e201b2c9fec45ee3e08d96e3a0619bac1b15f736039513b082d8c187401bebecab927bd12fec13e45317acf8223a4722e78b74d8dcfbeacffc30", 0x1000, 0xfffffffffffffffb)
request_key(&(0x7f0000000100)='dns_resolver\x00', &(0x7f0000000140)={'syz', 0x3}, &(0x7f0000000180)='net/tcp6\x00', r6)

08:52:01 executing program 0:
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000001c0)="2e2f6367726f75700000000000db887974a9d4b8049e206606a808fcfe3dd31291f786cee92a2ed9cc0eeb0f6e1b21700557d7d321c616f2a69f975e5d58075a8df0683103cf48516fd96063fa603193e1cc3109ac8eeb348189c6a5d86eea6fc66adc6c92378db59369d821efce230434933db28e9293e63e57b130097975522e694ac5b335833ce7aab22af6b8a13c699a3add0b2a3b860ea1e6", 0x200002, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='.\x00', 0x410802, 0x0)
perf_event_open(&(0x7f0000940000)={0x2, 0x78, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$cgroup_pid(r1, &(0x7f0000000100), 0x0)

08:52:01 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$inet(0x10, 0x3, 0xc)
r2 = memfd_create(&(0x7f0000000100)='mime_type.bdev[selinuxposix_acl_access!vmnet0#vboxnet1$#\x00', 0x6)
r3 = syz_open_dev$midi(&(0x7f0000000140)='/dev/midi#\x00', 0x5, 0x1)
clock_gettime(0x0, &(0x7f0000000e40)={<r4=>0x0, <r5=>0x0})
recvmmsg(r1, &(0x7f0000000dc0)=[{{&(0x7f0000000200)=@can={0x1d, <r6=>0x0}, 0x80, &(0x7f0000000880)=[{&(0x7f0000000280)=""/224, 0xe0}, {&(0x7f0000000380)=""/163, 0xa3}, {&(0x7f0000000440)=""/133, 0x85}, {&(0x7f0000000500)=""/116, 0x74}, {&(0x7f0000000580)=""/109, 0x6d}, {&(0x7f0000000600)=""/192, 0xc0}, {&(0x7f00000006c0)=""/9, 0x9}, {&(0x7f0000000700)=""/183, 0xb7}, {&(0x7f00000007c0)=""/149, 0x95}], 0x9, &(0x7f0000000940)=""/175, 0xaf, 0x84}, 0x8}, {{0x0, 0x0, &(0x7f0000000c40)=[{&(0x7f0000000a00)=""/141, 0x8d}, {&(0x7f0000000ac0)=""/22, 0x16}, {&(0x7f0000000b00)=""/52, 0x34}, {&(0x7f0000000b40)=""/60, 0x3c}, {&(0x7f0000000b80)=""/4, 0x4}, {&(0x7f0000000bc0)=""/88, 0x58}], 0x6, &(0x7f0000000cc0)=""/203, 0xcb, 0x2}}], 0x2, 0x101, &(0x7f0000000e80)={r4, r5+30000000})
bpf$PROG_LOAD(0x5, &(0x7f0000000ec0)={0xb, 0x7, &(0x7f0000000180)=@raw=[@jmp={0x5, 0xac, 0xf, 0xf, 0x7, 0x8, 0x1}, @exit, @generic={0x7, 0x8000, 0x2, 0x3, 0x100000000}, @map={0x18, 0x5, 0x1, 0x0, r2}, @map={0x18, 0x1, 0x1, 0x0, r3}], &(0x7f00000001c0)='GPL\x00', 0x6, 0x0, 0x0, 0x41100, 0x1, [], r6, 0x9}, 0x48)
sendmsg(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)

08:52:01 executing program 5:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))

[  614.724605] not chained 450000 origins
[  614.728573] CPU: 0 PID: 16268 Comm: syz-executor4 Not tainted 4.20.0-rc2+ #88
[  614.732205] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  614.732205] Call Trace:
[  614.732205]  dump_stack+0x32d/0x480
[  614.732205]  ? save_stack_trace+0xc6/0x110
[  614.732205]  kmsan_internal_chain_origin+0x222/0x240
[  614.732205]  ? kmsan_internal_chain_origin+0x136/0x240
[  614.732205]  ? __msan_chain_origin+0x6d/0xb0
[  614.732205]  ? __save_stack_trace+0x8be/0xc60
[  614.732205]  ? save_stack_trace+0xc6/0x110
[  614.732205]  ? kmsan_internal_chain_origin+0x136/0x240
[  614.732205]  ? kmsan_memcpy_origins+0x13d/0x190
[  614.732205]  ? __msan_memcpy+0x6f/0x80
[  614.792383]  ? pskb_expand_head+0x436/0x1d20
[  614.792383]  ? tcp_trim_head+0x214/0x9b0
[  614.792383]  ? tcp_ack+0x3193/0xa010
[  614.792383]  ? tcp_rcv_established+0xf7e/0x2940
[  614.792383]  ? tcp_v4_do_rcv+0x686/0xd80
[  614.792383]  ? __release_sock+0x32d/0x750
[  614.792383]  ? __sk_flush_backlog+0x52/0x70
[  614.792383]  ? tcp_sendmsg_locked+0xd72/0x6c30
[  614.792383]  ? tcp_sendmsg+0xb2/0x100
[  614.792383]  ? inet_sendmsg+0x4e9/0x800
[  614.792383]  ? __sys_sendto+0x940/0xb80
[  614.792383]  ? __se_sys_sendto+0x107/0x130
[  614.792383]  ? __x64_sys_sendto+0x6e/0x90
[  614.792383]  ? do_syscall_64+0xcf/0x110
[  614.792383]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  614.792383]  ? is_bpf_text_address+0x49e/0x4d0
[  614.862385]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  614.862385]  ? __module_address+0x6a/0x5f0
[  614.862385]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  614.862385]  ? is_bpf_text_address+0x49e/0x4d0
[  614.862385]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  614.862385]  ? in_task_stack+0x12c/0x210
[  614.862385]  __msan_chain_origin+0x6d/0xb0
[  614.862385]  ? __msan_memcpy+0x6f/0x80
[  614.862385]  __save_stack_trace+0x8be/0xc60
[  614.862385]  ? __msan_memcpy+0x6f/0x80
[  614.862385]  save_stack_trace+0xc6/0x110
[  614.862385]  kmsan_internal_chain_origin+0x136/0x240
[  614.862385]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  614.862385]  ? kmsan_internal_chain_origin+0x136/0x240
[  614.862385]  ? kmsan_memcpy_origins+0x13d/0x190
[  614.862385]  ? __msan_memcpy+0x6f/0x80
[  614.862385]  ? pskb_expand_head+0x436/0x1d20
[  614.862385]  ? tcp_trim_head+0x214/0x9b0
[  614.862385]  ? tcp_ack+0x3193/0xa010
[  614.862385]  ? tcp_rcv_established+0xf7e/0x2940
[  614.862385]  ? tcp_v4_do_rcv+0x686/0xd80
[  614.862385]  ? __release_sock+0x32d/0x750
[  614.862385]  ? __sk_flush_backlog+0x52/0x70
[  614.862385]  ? tcp_sendmsg_locked+0xd72/0x6c30
[  614.862385]  ? tcp_sendmsg+0xb2/0x100
[  614.862385]  ? inet_sendmsg+0x4e9/0x800
[  614.862385]  ? __sys_sendto+0x940/0xb80
[  614.862385]  ? __se_sys_sendto+0x107/0x130
[  614.862385]  ? __x64_sys_sendto+0x6e/0x90
[  614.862385]  ? do_syscall_64+0xcf/0x110
[  614.862385]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  614.862385]  ? memcg_kmem_put_cache+0x73/0x460
[  614.862385]  ? __kmalloc_node_track_caller+0x1010/0x14e0
[  614.862385]  ? __msan_get_context_state+0x9/0x20
[  614.862385]  ? INIT_INT+0xc/0x30
[  614.862385]  ? __kmalloc_node_track_caller+0x369/0x14e0
[  614.862385]  kmsan_memcpy_origins+0x13d/0x190
[  614.862385]  __msan_memcpy+0x6f/0x80
[  614.862385]  pskb_expand_head+0x436/0x1d20
[  614.862385]  tcp_trim_head+0x214/0x9b0
[  614.862385]  tcp_ack+0x3193/0xa010
[  614.862385]  ? hostap_80211_rx+0x51fa/0x93c0
[  614.862385]  tcp_rcv_established+0xf7e/0x2940
[  614.862385]  ? __msan_get_context_state+0x9/0x20
[  614.862385]  tcp_v4_do_rcv+0x686/0xd80
[  614.862385]  ? inet_sk_rx_dst_set+0x200/0x200
[  614.862385]  __release_sock+0x32d/0x750
[  614.862385]  __sk_flush_backlog+0x52/0x70
[  614.862385]  ? tcp_v4_init_sock+0xc0/0xc0
[  614.862385]  tcp_sendmsg_locked+0xd72/0x6c30
[  614.862385]  ? kmsan_internal_unpoison_shadow+0x30/0xd0
[  614.862385]  tcp_sendmsg+0xb2/0x100
[  614.862385]  ? tcp_sendmsg_locked+0x6c30/0x6c30
[  614.862385]  inet_sendmsg+0x4e9/0x800
[  614.862385]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  614.862385]  ? security_socket_sendmsg+0x1bd/0x200
[  614.862385]  ? inet_getname+0x490/0x490
[  614.862385]  __sys_sendto+0x940/0xb80
[  614.862385]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  614.862385]  ? prepare_exit_to_usermode+0x182/0x4c0
[  614.862385]  __se_sys_sendto+0x107/0x130
[  614.862385]  __x64_sys_sendto+0x6e/0x90
[  614.862385]  do_syscall_64+0xcf/0x110
[  614.862385]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  614.862385] RIP: 0033:0x457569
[  614.862385] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  614.862385] RSP: 002b:00007fe2bd024c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  614.862385] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000457569
[  614.862385] RDX: 00000000fffffdef RSI: 00000000200003c0 RDI: 0000000000000003
[  614.862385] RBP: 000000000072bf00 R08: 00000000200001c0 R09: 0000000000000010
[  614.862385] R10: 00000000000001f4 R11: 0000000000000246 R12: 00007fe2bd0256d4
[  614.862385] R13: 00000000004c3c11 R14: 00000000004d5e80 R15: 00000000ffffffff
[  614.862385] Uninit was stored to memory at:
[  614.862385]  kmsan_internal_chain_origin+0x136/0x240
[  614.862385]  __msan_chain_origin+0x6d/0xb0
[  614.862385]  __save_stack_trace+0x8be/0xc60
[  614.862385]  save_stack_trace+0xc6/0x110
[  614.862385]  kmsan_internal_chain_origin+0x136/0x240
[  614.862385]  kmsan_memcpy_origins+0x13d/0x190
[  614.862385]  __msan_memcpy+0x6f/0x80
[  614.862385]  pskb_expand_head+0x436/0x1d20
[  614.862385]  tcp_trim_head+0x214/0x9b0
[  614.862385]  tcp_ack+0x3193/0xa010
[  614.862385]  tcp_rcv_established+0xf7e/0x2940
[  614.862385]  tcp_v4_do_rcv+0x686/0xd80
[  614.862385]  __release_sock+0x32d/0x750
[  614.862385]  __sk_flush_backlog+0x52/0x70
[  614.862385]  tcp_sendmsg_locked+0xd72/0x6c30
[  614.862385]  tcp_sendmsg+0xb2/0x100
[  614.862385]  inet_sendmsg+0x4e9/0x800
[  614.862385]  __sys_sendto+0x940/0xb80
[  614.862385]  __se_sys_sendto+0x107/0x130
[  614.862385]  __x64_sys_sendto+0x6e/0x90
[  614.862385]  do_syscall_64+0xcf/0x110
[  614.862385]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  614.862385] 
[  614.862385] Uninit was stored to memory at:
[  614.862385]  kmsan_internal_chain_origin+0x136/0x240
[  614.862385]  __msan_chain_origin+0x6d/0xb0
[  614.862385]  __save_stack_trace+0x8be/0xc60
[  614.862385]  save_stack_trace+0xc6/0x110
[  614.862385]  kmsan_internal_chain_origin+0x136/0x240
[  614.862385]  kmsan_memcpy_origins+0x13d/0x190
[  614.862385]  __msan_memcpy+0x6f/0x80
[  614.862385]  pskb_expand_head+0x436/0x1d20
[  614.862385]  tcp_trim_head+0x214/0x9b0
[  614.862385]  tcp_ack+0x3193/0xa010
[  614.862385]  tcp_rcv_established+0xf7e/0x2940
[  614.862385]  tcp_v4_do_rcv+0x686/0xd80
[  614.862385]  __release_sock+0x32d/0x750
[  614.862385]  __sk_flush_backlog+0x52/0x70
[  614.862385]  tcp_sendmsg_locked+0xd72/0x6c30
[  614.862385]  tcp_sendmsg+0xb2/0x100
[  614.862385]  inet_sendmsg+0x4e9/0x800
[  614.862385]  __sys_sendto+0x940/0xb80
[  614.862385]  __se_sys_sendto+0x107/0x130
[  614.862385]  __x64_sys_sendto+0x6e/0x90
[  614.862385]  do_syscall_64+0xcf/0x110
[  614.862385]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  614.862385] 
[  614.862385] Uninit was stored to memory at:
[  614.862385]  kmsan_internal_chain_origin+0x136/0x240
[  614.862385]  __msan_chain_origin+0x6d/0xb0
[  614.862385]  __save_stack_trace+0x8be/0xc60
[  614.862385]  save_stack_trace+0xc6/0x110
[  614.862385]  kmsan_internal_chain_origin+0x136/0x240
[  614.862385]  kmsan_memcpy_origins+0x13d/0x190
[  614.862385]  __msan_memcpy+0x6f/0x80
[  614.862385]  pskb_expand_head+0x436/0x1d20
[  614.862385]  tcp_trim_head+0x214/0x9b0
[  614.862385]  tcp_ack+0x3193/0xa010
[  614.862385]  tcp_rcv_established+0xf7e/0x2940
[  614.862385]  tcp_v4_do_rcv+0x686/0xd80
[  614.862385]  __release_sock+0x32d/0x750
[  614.862385]  __sk_flush_backlog+0x52/0x70
[  614.862385]  tcp_sendmsg_locked+0xd72/0x6c30
[  614.862385]  tcp_sendmsg+0xb2/0x100
[  614.862385]  inet_sendmsg+0x4e9/0x800
[  614.862385]  __sys_sendto+0x940/0xb80
[  614.862385]  __se_sys_sendto+0x107/0x130
[  614.862385]  __x64_sys_sendto+0x6e/0x90
[  614.862385]  do_syscall_64+0xcf/0x110
[  614.862385]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  614.862385] 
[  614.862385] Uninit was stored to memory at:
[  614.862385]  kmsan_internal_chain_origin+0x136/0x240
[  614.862385]  __msan_chain_origin+0x6d/0xb0
[  614.862385]  __save_stack_trace+0x8be/0xc60
[  614.862385]  save_stack_trace+0xc6/0x110
[  614.862385]  kmsan_internal_chain_origin+0x136/0x240
[  614.862385]  kmsan_memcpy_origins+0x13d/0x190
[  614.862385]  __msan_memcpy+0x6f/0x80
[  614.862385]  pskb_expand_head+0x436/0x1d20
[  614.862385]  tcp_trim_head+0x214/0x9b0
[  614.862385]  tcp_ack+0x3193/0xa010
[  614.862385]  tcp_rcv_established+0xf7e/0x2940
[  614.862385]  tcp_v4_do_rcv+0x686/0xd80
[  614.862385]  __release_sock+0x32d/0x750
[  614.862385]  __sk_flush_backlog+0x52/0x70
[  614.862385]  tcp_sendmsg_locked+0xd72/0x6c30
[  614.862385]  tcp_sendmsg+0xb2/0x100
[  614.862385]  inet_sendmsg+0x4e9/0x800
[  614.862385]  __sys_sendto+0x940/0xb80
[  614.862385]  __se_sys_sendto+0x107/0x130
[  614.862385]  __x64_sys_sendto+0x6e/0x90
[  614.862385]  do_syscall_64+0xcf/0x110
[  614.862385]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  614.862385] 
[  614.862385] Uninit was stored to memory at:
[  614.862385]  kmsan_internal_chain_origin+0x136/0x240
[  614.862385]  __msan_chain_origin+0x6d/0xb0
[  614.862385]  __save_stack_trace+0x8be/0xc60
[  614.862385]  save_stack_trace+0xc6/0x110
[  614.862385]  kmsan_internal_chain_origin+0x136/0x240
[  614.862385]  kmsan_memcpy_origins+0x13d/0x190
[  614.862385]  __msan_memcpy+0x6f/0x80
[  614.862385]  pskb_expand_head+0x436/0x1d20
[  614.862385]  tcp_trim_head+0x214/0x9b0
[  614.862385]  tcp_ack+0x3193/0xa010
[  614.862385]  tcp_rcv_established+0xf7e/0x2940
[  614.862385]  tcp_v4_do_rcv+0x686/0xd80
[  614.862385]  __release_sock+0x32d/0x750
[  614.862385]  __sk_flush_backlog+0x52/0x70
[  614.862385]  tcp_sendmsg_locked+0xd72/0x6c30
[  614.862385]  tcp_sendmsg+0xb2/0x100
[  614.862385]  inet_sendmsg+0x4e9/0x800
[  614.862385]  __sys_sendto+0x940/0xb80
[  614.862385]  __se_sys_sendto+0x107/0x130
[  614.862385]  __x64_sys_sendto+0x6e/0x90
[  614.862385]  do_syscall_64+0xcf/0x110
[  614.862385]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  614.862385] 
[  614.862385] Uninit was stored to memory at:
[  614.862385]  kmsan_internal_chain_origin+0x136/0x240
[  614.862385]  __msan_chain_origin+0x6d/0xb0
[  614.862385]  __save_stack_trace+0x8be/0xc60
[  614.862385]  save_stack_trace+0xc6/0x110
[  614.862385]  kmsan_internal_chain_origin+0x136/0x240
[  614.862385]  kmsan_memcpy_origins+0x13d/0x190
[  614.862385]  __msan_memcpy+0x6f/0x80
[  614.862385]  pskb_expand_head+0x436/0x1d20
[  614.862385]  tcp_trim_head+0x214/0x9b0
[  614.862385]  tcp_ack+0x3193/0xa010
[  614.862385]  tcp_rcv_established+0xf7e/0x2940
[  614.862385]  tcp_v4_do_rcv+0x686/0xd80
[  614.862385]  __release_sock+0x32d/0x750
[  614.862385]  __sk_flush_backlog+0x52/0x70
[  614.862385]  tcp_sendmsg_locked+0xd72/0x6c30
[  614.862385]  tcp_sendmsg+0xb2/0x100
[  614.862385]  inet_sendmsg+0x4e9/0x800
[  614.862385]  __sys_sendto+0x940/0xb80
[  614.862385]  __se_sys_sendto+0x107/0x130
[  614.862385]  __x64_sys_sendto+0x6e/0x90
[  614.862385]  do_syscall_64+0xcf/0x110
[  614.862385]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  614.862385] 
[  614.862385] Uninit was stored to memory at:
[  614.862385]  kmsan_internal_chain_origin+0x136/0x240
[  614.862385]  __msan_chain_origin+0x6d/0xb0
[  614.862385]  __save_stack_trace+0x8be/0xc60
[  614.862385]  save_stack_trace+0xc6/0x110
[  614.862385]  kmsan_internal_chain_origin+0x136/0x240
[  614.862385]  kmsan_memcpy_origins+0x13d/0x190
[  614.862385]  __msan_memcpy+0x6f/0x80
[  614.862385]  pskb_expand_head+0x436/0x1d20
[  614.862385]  tcp_trim_head+0x214/0x9b0
[  614.862385]  tcp_ack+0x3193/0xa010
[  614.862385]  tcp_rcv_established+0xf7e/0x2940
[  614.862385]  tcp_v4_do_rcv+0x686/0xd80
[  614.862385]  __release_sock+0x32d/0x750
[  614.862385]  __sk_flush_backlog+0x52/0x70
[  614.862385]  tcp_sendmsg_locked+0xd72/0x6c30
[  614.862385]  tcp_sendmsg+0xb2/0x100
[  614.862385]  inet_sendmsg+0x4e9/0x800
[  614.862385]  __sys_sendto+0x940/0xb80
[  614.862385]  __se_sys_sendto+0x107/0x130
[  614.862385]  __x64_sys_sendto+0x6e/0x90
[  614.862385]  do_syscall_64+0xcf/0x110
[  614.862385]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  614.862385] 
[  614.862385] Local variable description: ----acpar@ipt_do_table
[  614.862385] Variable was created at:
[  614.862385]  ipt_do_table+0x97/0x29d0
[  614.862385]  iptable_mangle_hook+0x35b/0x730
08:52:03 executing program 1:
syz_emit_ethernet(0x7e, &(0x7f0000000080)={@local, @empty, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x70, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @dev={0xac, 0x14, 0x14, 0x11}}, @icmp=@parameter_prob={0x3, 0x4, 0x0, 0x0, 0x0, 0x0, {0x15, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x689, 0x0, @local, @dev, {[@timestamp={0x44, 0x40, 0x0, 0x0, 0x0, [{[@rand_addr]}, {[@multicast2]}, {[@multicast1]}, {}, {[@loopback]}, {[@broadcast]}, {[@multicast1]}, {[@dev]}]}]}}}}}}}, &(0x7f0000000100))

08:52:03 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$inet(0x10, 0x3, 0xc)
sendmsg(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)
r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rtc0\x00', 0x62100, 0x0)
write$FUSE_INIT(r2, &(0x7f0000000140)={0x50, 0x0, 0x2, {0x7, 0x1c, 0x1, 0x800, 0x14a2800, 0x2, 0x6, 0x5}}, 0x50)

08:52:03 executing program 5:
fcntl$getownex(0xffffffffffffff9c, 0x10, &(0x7f0000000200))
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000040))
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000180)={0x7b, 0x0, [0x0, 0x0, 0x2]})
r0 = socket$inet6(0xa, 0x80003, 0x1)
recvmmsg(r0, &(0x7f0000008880), 0x45b, 0x44000102, 0x0)
sendto$inet6(r0, &(0x7f0000000140)='9', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @mcast2}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0x31, &(0x7f0000000000)=0x3, 0x4)

08:52:03 executing program 1:
fcntl$dupfd(0xffffffffffffff9c, 0x406, 0xffffffffffffffff)
setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000340)={0x0, 0x1, 0x6, @remote}, 0x10)
ioctl$KDGKBDIACR(0xffffffffffffffff, 0x4b4a, &(0x7f00000000c0)=""/211)
timer_delete(0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x0, &(0x7f00000006c0)=0x3)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='clear_refs\x00')
r1 = syz_open_procfs(0x0, &(0x7f0000000440)='stat\x00')
sendfile(r0, r1, &(0x7f0000000080), 0x1)

08:52:03 executing program 0:

[  616.297518] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
[  616.373186] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
08:52:03 executing program 2:

08:52:03 executing program 0:

08:52:04 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vsock\x00', 0xc0, 0x0)
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f00000000c0)={<r2=>0x0, @empty, @loopback}, &(0x7f0000000100)=0xc)
setsockopt$inet6_mreq(r1, 0x29, 0x14, &(0x7f0000000140)={@mcast1, r2}, 0x14)
write(r0, &(0x7f0000000200)="89f9d765312b4001000000b0967bdae72ee5094371136a6477ba0a51a2969dbc2d4028ac7b5af67f178f9314ea2bb3ac1c442eaf749c21ae2af8e39a40c3dc032e6f8eb738786a79df71302ff3b5d42731597d995bed6103fff4d3282f62d6928117f82c2dae48742dac857de846096e82c1a02e1edcadda721a3f8dc9a54da05d467ed35b6f931d8686986960e756048c61c2a2c374c318d21d7a7ef550779190066e82ea3f6724a9f61ff028ec7e8d7a04352e7a78f777a68b823abb646bdc55dbde285ce15bf45820f0ae20e4023f57c71f8b41e08eff14c3441485c6f54a30750c780852dad879d6d4be7243bd07f841f89009000000c23d6b4f70fe48b54577449cfcbc4d5dbefb8b465d45bc2d11afbe7bfbe6ca76ac259e634eebf8db694ff02fe2b4c80783b443ef68287e9cf7cbcc2ee196f10c4ffb3f59e4921e0f9f08cba9a2c56c49fa7465b4836da5b2d9b142763889caa718d8a4fcb2f3ef6dc6185708fb1e0f9081d29f0000fae8c525f07437c7835b4eac8f86e2a22a81eff4120340e4a379446aac45dbff791d147805cd2748d74b8996c9b51ec03b410ef8fe126117fbf106795bc1b25d8dd786b6496bd743b7c75c638b516214ff56ec99a9c0f2919fa781cd8b4f2f2e425a6780c630a05c8e60011bc8e10055a6b6b652e5a13c73fd96f79038a65d6991ac38899ab98486d92bbcffdcf39a08a248ae1045ff8c6123de2f15d9ac360a3497c07001a3a1936ff1c0314194ace131d380f515629ff016bd890ff822704c0db8bc68efad2eace5466628e7d6c2f2b3043698c46fdd62588fc54b72a786af0d026353879892c58007f7988a3f2240a43303218cc1df27807bfbde117c505f060396850a82459830a89a6a8601ea2e47f2e41379d110b96576f8f7705bba7ec63d6b44ccf84073cf9bdcf1aee48cb60c2f6dd3e89f3626a5e23339ea99c918d76a43fecf7401f7550e8eaefa4d84f1143320599daf7699858b2bf408e9093aa91d6dd9ae39d8decf3f7a199b0c1918d47be3b7aeff9a8c10efabe787b43141e7abaa4317158864b0361568140ab79cade1223c3ef81da4c4eefdd5b21fcc1b87872fc3b346737105589b84ba9814679b7510ed9b4f290083ee634ae12243ccc63413d7bc35eee0d1a4bc9dd33c37f5130303edddfc2636ffbf1ee0febb953436710c2ed9bd001d2ebe878788ddf7f7ad55b7a8cbcb348e82cd65b59315858086606115d04a3cda0e4af2a703afe09e4afedf00d5fbb2284df9af1d1ec9f15356c58fdcde45fff250568347f3b0b49e11e44c0a4d98a1e3393ce5d76614990f23b2e146842b166fb070894c128f957b0cc7d80a16275efd15659e0f81990062ebfdf9454d12e63d1ce1dad7848fcbab642a0d62ebb17abc824883e4c6e1e81992f28f5bbd7b26e2645c7941b03dd2f27c29baa2412976a05fa13d8fc4d6bd152a8668d986a9cf605b8b4a61600481e01bdd74c96d73390518add968100ab4ccf0868ee3ef7f12c32298737dea65bd5d7161dd679b4dd6799aa086bf3b8c889780ac102b7b1ebcf2569dd77f201d74d94a61400ced9c613414012b451628a96e6cc8fe738e964940f7b753065677776f3b5398975aeac974fced560667cead03a8976eb4229ff4e1bca5588d5d544cbca8588215a2f5ef7a5fc1a07438d3a3e05d21eb30d46f1688543d4327d36e07635396eaab4e9bc862ee9c7fa24de38c5cbf8fa5afd024116bc84854d01072145ecc4bb415d94a333e0d91e9cf6fda5a2c244a585e3a32c95398f44800c578faf4a2ccc5979664db7a55aa5cc02789f84321ccaeed4f37dd48c8d1484ade0588fc4255ec8780534a693e2bfe88b622034552084492c6757429239bbe8dad8b904e58007639ca773344040a441dc0027a46c22198f3d0b0588e164881a9fc7a85a63c26a8d00b276bf15c60173358817416459b0d002e3d890edd250742d363e85250badb91a734759baf773c32b177d36eefb662be7000000000000000000000000000", 0x59f)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

08:52:04 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
syz_execute_func(&(0x7f0000000100)="c461c95da308000000c4a11b7def3e400fcb44ff85931ce7c164dc964c0900008fe830ceb2290000000d0f74efc4e3b5691a033e0faea8000000008f6800a25300f3")
r1 = socket$inet(0x10, 0x3, 0xc)
sendmsg(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)

08:52:04 executing program 1:
fcntl$dupfd(0xffffffffffffff9c, 0x406, 0xffffffffffffffff)
setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000340)={0x0, 0x1, 0x6, @remote}, 0x10)
ioctl$KDGKBDIACR(0xffffffffffffffff, 0x4b4a, &(0x7f00000000c0)=""/211)
timer_delete(0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x0, &(0x7f00000006c0)=0x3)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='clear_refs\x00')
r1 = syz_open_procfs(0x0, &(0x7f0000000440)='stat\x00')
sendfile(r0, r1, &(0x7f0000000080), 0x1)

08:52:04 executing program 0:

08:52:04 executing program 2:

08:52:04 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00009e3ff6)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00000000c0))
r1 = syz_open_pts(r0, 0x10020201)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000698000)=0x3)
write(r1, &(0x7f0000000200), 0x0)

08:52:04 executing program 2:

08:52:04 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
lseek(r0, 0x0, 0x3)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$inet(0x10, 0x3, 0xc)
sendmsg(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1, 0x0, 0xfffffffffffffead}, 0x0)
r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer2\x00', 0x400000, 0x0)
ioctl$UI_SET_MSCBIT(r2, 0x40045568, 0x2)

08:52:04 executing program 0:

08:52:04 executing program 5:

08:52:04 executing program 1:

08:52:04 executing program 2:

08:52:04 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
socket$nl_xfrm(0x10, 0x3, 0x6)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
r1 = syz_open_dev$usbmon(&(0x7f0000000080)='/dev/usbmon#\x00', 0x4, 0x8000)
ioctl$BLKTRACESTART(r1, 0x1274, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

08:52:04 executing program 3:
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000240)='/dev/null\x00', 0x100, 0x0)
ioctl$KDDELIO(r0, 0x4b35, 0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x5, 0x200)
ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000140)={0xc0000, 0x0, [0x3, 0x101, 0x80000000, 0xaead, 0x100, 0x2, 0x2, 0x46717ebc]})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r3 = socket$inet(0x10, 0x3, 0xc)
getsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(r3, 0x84, 0x8, &(0x7f00000001c0), &(0x7f0000000200)=0x4)
sendmsg(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)

08:52:05 executing program 5:

08:52:05 executing program 1:

08:52:05 executing program 0:

[  618.194650] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
08:52:05 executing program 2:

08:52:05 executing program 1:

08:52:05 executing program 5:

08:52:05 executing program 0:

08:52:05 executing program 4:
bind$inet(0xffffffffffffffff, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(0xffffffffffffffff, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(0xffffffffffffffff, &(0x7f0000000ec0)="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", 0x595)
r0 = open(&(0x7f0000000200)='./file0\x00', 0x800, 0x42)
r1 = msgget(0x1, 0x110)
msgctl$IPC_RMID(r1, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/qat_adf_ctl\x00', 0x1, 0x0)
syz_kvm_setup_cpu$x86(r0, r2, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000080)=[@text16={0x10, &(0x7f0000000100)="0f65fb6766c74424009ee100006766c7442402060000806766c744240600000000670f011c240f381eb43e2466b9480200000f32640f88da49b84f008ee0260f01d1826f001fbaf80c66b870ef458866efbafc0c66b84400000066ef6766c7442400c9bc00006766c7442402d34c00006766c744240600000000670f011424", 0x7f}], 0x1, 0x1, &(0x7f0000000200), 0x0)
sendto$inet(0xffffffffffffffff, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0xfffffffffffffff3)
getpeername$netlink(r0, &(0x7f0000000380), &(0x7f00000003c0)=0xc)
ioctl$SNDRV_TIMER_IOCTL_PAUSE(r0, 0x54a3)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f0000000240)={<r3=>0x0, @in6={{0xa, 0x4e23, 0x84f, @mcast2, 0x7ff}}, 0xffffffff, 0x9, 0x4, 0x20, 0x64}, &(0x7f0000000180)=0x98)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000300)={r3, 0x10a2000}, &(0x7f0000000340)=0x8)

08:52:05 executing program 3:
socketpair$inet_udp(0x2, 0x2, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff})
accept$inet(r0, &(0x7f0000000140)={0x2, 0x0, @rand_addr}, &(0x7f0000000180)=0x10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = socket$inet(0x10, 0x3, 0xc)
sendmsg(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)

08:52:05 executing program 5:

08:52:05 executing program 2:

[  618.815349] QAT: Invalid ioctl
08:52:05 executing program 1:

[  618.842932] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
[  618.917118] QAT: Invalid ioctl
08:52:06 executing program 0:

08:52:06 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000080)={<r2=>0x0, 0x20}, &(0x7f00000000c0)=0x8)
setsockopt$inet_sctp6_SCTP_ADD_STREAMS(r1, 0x84, 0x79, &(0x7f0000000100)={r2, 0xfffffffffffffffa, 0x4}, 0x8)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000001a80)="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", 0xfffffffffffffef7)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

08:52:06 executing program 5:

08:52:06 executing program 2:

[  619.282156] not chained 460000 origins
[  619.282244] CPU: 1 PID: 16385 Comm: syz-executor4 Not tainted 4.20.0-rc2+ #88
[  619.288784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  619.288784] Call Trace:
[  619.288784]  dump_stack+0x32d/0x480
[  619.288784]  kmsan_internal_chain_origin+0x222/0x240
[  619.288784]  ? save_stack_trace+0xc6/0x110
[  619.288784]  ? __irqentry_text_end+0x1fa056/0x1fa056
[  619.288784]  ? kmsan_internal_chain_origin+0x90/0x240
[  619.288784]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  619.288784]  ? is_bpf_text_address+0x49e/0x4d0
[  619.288784]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  619.288784]  ? in_task_stack+0x12c/0x210
[  619.288784]  __msan_chain_origin+0x6d/0xb0
[  619.288784]  ? tcp_v4_do_rcv+0xb25/0xd80
[  619.288784]  __save_stack_trace+0x8be/0xc60
[  619.288784]  ? tcp_v4_do_rcv+0xb25/0xd80
[  619.288784]  save_stack_trace+0xc6/0x110
[  619.367867]  kmsan_internal_chain_origin+0x136/0x240
[  619.371403]  ? kmsan_internal_chain_origin+0x136/0x240
[  619.371403]  ? kmsan_memcpy_origins+0x13d/0x190
[  619.371403]  ? __msan_memcpy+0x6f/0x80
[  619.371403]  ? skb_copy_bits+0x1d2/0xc90
[  619.371403]  ? skb_copy+0x56c/0xba0
[  619.371403]  ? tcp_send_synack+0x7a3/0x18f0
[  619.371403]  ? tcp_rcv_state_process+0x275d/0x6c60
[  619.371403]  ? tcp_v4_do_rcv+0xb25/0xd80
[  619.371403]  ? __release_sock+0x32d/0x750
[  619.371403]  ? release_sock+0x99/0x2a0
[  619.371403]  ? __inet_stream_connect+0xdff/0x15d0
[  619.417884]  ? tcp_sendmsg_locked+0x6655/0x6c30
[  619.417884]  ? tcp_sendmsg+0xb2/0x100
[  619.417884]  ? inet_sendmsg+0x4e9/0x800
[  619.417884]  ? __sys_sendto+0x940/0xb80
[  619.417884]  ? __se_sys_sendto+0x107/0x130
[  619.417884]  ? __x64_sys_sendto+0x6e/0x90
[  619.417884]  ? do_syscall_64+0xcf/0x110
[  619.417884]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  619.417884]  ? memcg_kmem_put_cache+0x73/0x460
[  619.417884]  ? __kmalloc_node_track_caller+0x1010/0x14e0
[  619.417884]  ? __msan_get_context_state+0x9/0x20
[  619.417884]  ? INIT_INT+0xc/0x30
[  619.417884]  ? __kmalloc_node_track_caller+0x369/0x14e0
[  619.417884]  ? __msan_get_context_state+0x9/0x20
[  619.417884]  kmsan_memcpy_origins+0x13d/0x190
[  619.417884]  __msan_memcpy+0x6f/0x80
[  619.417884]  skb_copy_bits+0x1d2/0xc90
[  619.417884]  skb_copy+0x56c/0xba0
[  619.417884]  tcp_send_synack+0x7a3/0x18f0
[  619.417884]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  619.417884]  tcp_rcv_state_process+0x275d/0x6c60
[  619.417884]  tcp_v4_do_rcv+0xb25/0xd80
[  619.417884]  ? __local_bh_enable_ip+0x11f/0x260
[  619.417884]  ? inet_sk_rx_dst_set+0x200/0x200
[  619.417884]  __release_sock+0x32d/0x750
[  619.417884]  release_sock+0x99/0x2a0
[  619.417884]  __inet_stream_connect+0xdff/0x15d0
[  619.417884]  ? wait_woken+0x5b0/0x5b0
[  619.417884]  tcp_sendmsg_locked+0x6655/0x6c30
[  619.417884]  ? aa_label_sk_perm+0xda/0x960
[  619.417884]  ? kmsan_set_origin+0x7f/0x100
[  619.417884]  ? kmsan_internal_unpoison_shadow+0x83/0xd0
[  619.417884]  ? __msan_poison_alloca+0x1e0/0x270
[  619.417884]  ? __local_bh_enable_ip+0x46/0x260
[  619.417884]  ? __msan_poison_alloca+0x1e0/0x270
[  619.417884]  tcp_sendmsg+0xb2/0x100
[  619.417884]  ? tcp_sendmsg_locked+0x6c30/0x6c30
[  619.417884]  inet_sendmsg+0x4e9/0x800
[  619.417884]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  619.417884]  ? security_socket_sendmsg+0x1bd/0x200
[  619.417884]  ? inet_getname+0x490/0x490
[  619.417884]  __sys_sendto+0x940/0xb80
[  619.417884]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  619.417884]  ? prepare_exit_to_usermode+0x182/0x4c0
[  619.417884]  __se_sys_sendto+0x107/0x130
[  619.417884]  __x64_sys_sendto+0x6e/0x90
[  619.417884]  do_syscall_64+0xcf/0x110
[  619.417884]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  619.417884] RIP: 0033:0x457569
[  619.417884] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  619.417884] RSP: 002b:00007fe2bd024c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  619.417884] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000457569
[  619.417884] RDX: 0000000000000275 RSI: 00000000200000c0 RDI: 0000000000000003
[  619.417884] RBP: 000000000072bf00 R08: 0000000020000040 R09: 0000000000000010
[  619.417884] R10: 0000000020000802 R11: 0000000000000246 R12: 00007fe2bd0256d4
[  619.417884] R13: 00000000004c3c11 R14: 00000000004d5e80 R15: 00000000ffffffff
[  619.417884] Uninit was stored to memory at:
[  619.417884]  kmsan_internal_chain_origin+0x136/0x240
[  619.417884]  __msan_chain_origin+0x6d/0xb0
[  619.417884]  __save_stack_trace+0x8be/0xc60
[  619.417884]  save_stack_trace+0xc6/0x110
[  619.417884]  kmsan_internal_chain_origin+0x136/0x240
08:52:06 executing program 2:

08:52:06 executing program 5:

08:52:06 executing program 0:

08:52:06 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x4021fd)
r1 = shmget$private(0x0, 0x3000, 0x0, &(0x7f0000ffd000/0x3000)=nil)
shmctl$IPC_RMID(r1, 0x0)
r2 = socket$inet(0x10, 0x3, 0xc)
sendmsg(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)

[  619.417884]  kmsan_memcpy_origins+0x13d/0x190
[  619.417884]  __msan_memcpy+0x6f/0x80
[  619.738136]  skb_copy_bits+0x1d2/0xc90
[  619.738136]  skb_copy+0x56c/0xba0
[  619.738136]  tcp_send_synack+0x7a3/0x18f0
[  619.738136]  tcp_rcv_state_process+0x275d/0x6c60
[  619.738136]  tcp_v4_do_rcv+0xb25/0xd80
[  619.738136]  __release_sock+0x32d/0x750
[  619.738136]  release_sock+0x99/0x2a0
[  619.738136]  __inet_stream_connect+0xdff/0x15d0
[  619.738136]  tcp_sendmsg_locked+0x6655/0x6c30
[  619.738136]  tcp_sendmsg+0xb2/0x100
[  619.738136]  inet_sendmsg+0x4e9/0x800
08:52:06 executing program 1:

[  619.738136]  __sys_sendto+0x940/0xb80
[  619.738136]  __se_sys_sendto+0x107/0x130
[  619.738136]  __x64_sys_sendto+0x6e/0x90
[  619.738136]  do_syscall_64+0xcf/0x110
[  619.798413]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  619.798413] 
[  619.798413] Uninit was stored to memory at:
[  619.798413]  kmsan_internal_chain_origin+0x136/0x240
[  619.814669]  __msan_chain_origin+0x6d/0xb0
[  619.819149]  __save_stack_trace+0x8be/0xc60
[  619.819149]  save_stack_trace+0xc6/0x110
[  619.819149]  kmsan_internal_chain_origin+0x136/0x240
[  619.819149]  kmsan_memcpy_origins+0x13d/0x190
[  619.819149]  __msan_memcpy+0x6f/0x80
[  619.819149]  skb_copy_bits+0x1d2/0xc90
[  619.819149]  skb_copy+0x56c/0xba0
[  619.819149]  tcp_send_synack+0x7a3/0x18f0
[  619.819149]  tcp_rcv_state_process+0x275d/0x6c60
[  619.856821]  tcp_v4_do_rcv+0xb25/0xd80
[  619.856821]  __release_sock+0x32d/0x750
[  619.856821]  release_sock+0x99/0x2a0
[  619.856821]  __inet_stream_connect+0xdff/0x15d0
[  619.856821]  tcp_sendmsg_locked+0x6655/0x6c30
[  619.856821]  tcp_sendmsg+0xb2/0x100
[  619.856821]  inet_sendmsg+0x4e9/0x800
[  619.856821]  __sys_sendto+0x940/0xb80
[  619.856821]  __se_sys_sendto+0x107/0x130
[  619.856821]  __x64_sys_sendto+0x6e/0x90
[  619.856821]  do_syscall_64+0xcf/0x110
[  619.856821]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  619.856821] 
[  619.856821] Uninit was stored to memory at:
[  619.856821]  kmsan_internal_chain_origin+0x136/0x240
[  619.856821]  __msan_chain_origin+0x6d/0xb0
[  619.856821]  __save_stack_trace+0x8be/0xc60
[  619.856821]  save_stack_trace+0xc6/0x110
[  619.856821]  kmsan_internal_chain_origin+0x136/0x240
[  619.856821]  kmsan_memcpy_origins+0x13d/0x190
[  619.856821]  __msan_memcpy+0x6f/0x80
[  619.856821]  skb_copy_bits+0x1d2/0xc90
[  619.856821]  skb_copy+0x56c/0xba0
[  619.856821]  tcp_send_synack+0x7a3/0x18f0
[  619.856821]  tcp_rcv_state_process+0x275d/0x6c60
[  619.856821]  tcp_v4_do_rcv+0xb25/0xd80
[  619.856821]  __release_sock+0x32d/0x750
[  619.856821]  release_sock+0x99/0x2a0
[  619.856821]  __inet_stream_connect+0xdff/0x15d0
[  619.856821]  tcp_sendmsg_locked+0x6655/0x6c30
[  619.856821]  tcp_sendmsg+0xb2/0x100
[  619.856821]  inet_sendmsg+0x4e9/0x800
[  619.856821]  __sys_sendto+0x940/0xb80
[  619.856821]  __se_sys_sendto+0x107/0x130
[  619.856821]  __x64_sys_sendto+0x6e/0x90
[  619.856821]  do_syscall_64+0xcf/0x110
[  619.856821]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  619.856821] 
[  619.856821] Uninit was stored to memory at:
[  619.856821]  kmsan_internal_chain_origin+0x136/0x240
[  619.856821]  __msan_chain_origin+0x6d/0xb0
[  619.856821]  __save_stack_trace+0x8be/0xc60
[  619.856821]  save_stack_trace+0xc6/0x110
08:52:07 executing program 5:

[  619.856821]  kmsan_internal_chain_origin+0x136/0x240
[  619.856821]  kmsan_memcpy_origins+0x13d/0x190
[  619.856821]  __msan_memcpy+0x6f/0x80
[  619.856821]  skb_copy_bits+0x1d2/0xc90
[  619.856821]  skb_copy+0x56c/0xba0
[  619.856821]  tcp_send_synack+0x7a3/0x18f0
[  619.856821]  tcp_rcv_state_process+0x275d/0x6c60
[  619.856821]  tcp_v4_do_rcv+0xb25/0xd80
[  619.856821]  __release_sock+0x32d/0x750
[  619.856821]  release_sock+0x99/0x2a0
[  619.856821]  __inet_stream_connect+0xdff/0x15d0
[  619.856821]  tcp_sendmsg_locked+0x6655/0x6c30
[  619.856821]  tcp_sendmsg+0xb2/0x100
[  619.856821]  inet_sendmsg+0x4e9/0x800
[  619.856821]  __sys_sendto+0x940/0xb80
[  619.856821]  __se_sys_sendto+0x107/0x130
[  619.856821]  __x64_sys_sendto+0x6e/0x90
[  619.856821]  do_syscall_64+0xcf/0x110
[  619.856821]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  619.856821] 
[  619.856821] Uninit was stored to memory at:
[  619.856821]  kmsan_internal_chain_origin+0x136/0x240
[  619.856821]  __msan_chain_origin+0x6d/0xb0
[  619.856821]  __save_stack_trace+0x8be/0xc60
08:52:07 executing program 1:

[  619.856821]  save_stack_trace+0xc6/0x110
[  619.856821]  kmsan_internal_chain_origin+0x136/0x240
[  619.856821]  kmsan_memcpy_origins+0x13d/0x190
[  619.856821]  __msan_memcpy+0x6f/0x80
[  619.856821]  skb_copy_bits+0x1d2/0xc90
[  619.856821]  skb_copy+0x56c/0xba0
[  619.856821]  tcp_send_synack+0x7a3/0x18f0
[  619.856821]  tcp_rcv_state_process+0x275d/0x6c60
[  619.856821]  tcp_v4_do_rcv+0xb25/0xd80
[  619.856821]  __release_sock+0x32d/0x750
[  619.856821]  release_sock+0x99/0x2a0
[  619.856821]  __inet_stream_connect+0xdff/0x15d0
[  619.856821]  tcp_sendmsg_locked+0x6655/0x6c30
[  619.856821]  tcp_sendmsg+0xb2/0x100
[  619.856821]  inet_sendmsg+0x4e9/0x800
[  619.856821]  __sys_sendto+0x940/0xb80
[  619.856821]  __se_sys_sendto+0x107/0x130
[  619.856821]  __x64_sys_sendto+0x6e/0x90
[  619.856821]  do_syscall_64+0xcf/0x110
[  619.856821]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  619.856821] 
[  619.856821] Uninit was stored to memory at:
[  619.856821]  kmsan_internal_chain_origin+0x136/0x240
[  619.856821]  __msan_chain_origin+0x6d/0xb0
[  619.856821]  __save_stack_trace+0x8be/0xc60
[  619.856821]  save_stack_trace+0xc6/0x110
[  619.856821]  kmsan_internal_chain_origin+0x136/0x240
[  619.856821]  kmsan_memcpy_origins+0x13d/0x190
[  619.856821]  __msan_memcpy+0x6f/0x80
[  619.856821]  skb_copy_bits+0x1d2/0xc90
[  619.856821]  skb_copy+0x56c/0xba0
[  619.856821]  tcp_send_synack+0x7a3/0x18f0
[  619.856821]  tcp_rcv_state_process+0x275d/0x6c60
[  619.856821]  tcp_v4_do_rcv+0xb25/0xd80
[  619.856821]  __release_sock+0x32d/0x750
[  619.856821]  release_sock+0x99/0x2a0
[  619.856821]  __inet_stream_connect+0xdff/0x15d0
[  619.856821]  tcp_sendmsg_locked+0x6655/0x6c30
[  619.856821]  tcp_sendmsg+0xb2/0x100
[  619.856821]  inet_sendmsg+0x4e9/0x800
[  619.856821]  __sys_sendto+0x940/0xb80
[  619.856821]  __se_sys_sendto+0x107/0x130
[  619.856821]  __x64_sys_sendto+0x6e/0x90
[  619.856821]  do_syscall_64+0xcf/0x110
[  619.856821]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  619.856821] 
[  619.856821] Uninit was stored to memory at:
[  619.856821]  kmsan_internal_chain_origin+0x136/0x240
[  619.856821]  __msan_chain_origin+0x6d/0xb0
[  619.856821]  __save_stack_trace+0x8be/0xc60
[  619.856821]  save_stack_trace+0xc6/0x110
[  619.856821]  kmsan_internal_chain_origin+0x136/0x240
[  619.856821]  kmsan_memcpy_origins+0x13d/0x190
[  619.856821]  __msan_memcpy+0x6f/0x80
[  619.856821]  skb_copy_bits+0x1d2/0xc90
[  619.856821]  skb_copy+0x56c/0xba0
[  619.856821]  tcp_send_synack+0x7a3/0x18f0
[  619.856821]  tcp_rcv_state_process+0x275d/0x6c60
[  619.856821]  tcp_v4_do_rcv+0xb25/0xd80
[  619.856821]  __release_sock+0x32d/0x750
[  619.856821]  release_sock+0x99/0x2a0
08:52:07 executing program 5:

[  619.856821]  __inet_stream_connect+0xdff/0x15d0
[  619.856821]  tcp_sendmsg_locked+0x6655/0x6c30
[  619.856821]  tcp_sendmsg+0xb2/0x100
[  619.856821]  inet_sendmsg+0x4e9/0x800
[  619.856821]  __sys_sendto+0x940/0xb80
[  619.856821]  __se_sys_sendto+0x107/0x130
[  619.856821]  __x64_sys_sendto+0x6e/0x90
[  619.856821]  do_syscall_64+0xcf/0x110
[  619.856821]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  619.856821] 
[  619.856821] Local variable description: ----_tcph.i@ip_vs_in
[  619.856821] Variable was created at:
[  619.856821]  ip_vs_in+0xe9/0x3250
[  620.435523]  ip_vs_local_request4+0xec/0x130
08:52:07 executing program 1:

[  620.503818] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
08:52:08 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e1f, @remote}, 0x1d4)
sendto$inet(r0, &(0x7f00000000c0), 0x0, 0xfffffffffffffffd, &(0x7f0000000040)={0x2, 0x404e23, @multicast2}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
r1 = open(&(0x7f0000000300)='./file0\x00', 0xae481, 0x10)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0x7, &(0x7f0000000340)={0x4, 0x23e124d, 0xffff, 0x1ff}, 0x10)
ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r0, 0x40106614, &(0x7f0000000180))
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)="8000000000000000505f191d00", 0xb0)
ioctl$FS_IOC_FIEMAP(r0, 0xc020660b, &(0x7f0000000200)={0x1, 0x9, 0x1, 0x546, 0x4, [{0x800, 0x8, 0x8, 0x0, 0x0, 0xa}, {0xfff, 0x2, 0x0, 0x0, 0x0, 0x200}, {0x80000000, 0x0, 0x61, 0x0, 0x0, 0x500}, {0x7, 0x9, 0x450, 0x0, 0x0, 0x80}]})
getsockopt$inet_int(r0, 0x0, 0x32, &(0x7f0000000100), &(0x7f0000000140)=0x4)
r2 = syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x83, 0xa0000)
setsockopt$inet6_udp_int(r2, 0x11, 0x0, &(0x7f00000000c0)=0x100, 0x4)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

08:52:08 executing program 0:

08:52:08 executing program 2:

08:52:08 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = socket$inet(0x10, 0x4008000a, 0x5)
poll(&(0x7f0000000100)=[{r0}], 0x1, 0x7)
sendmsg(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)

08:52:08 executing program 5:

08:52:08 executing program 1:

08:52:08 executing program 2:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/vhci\x00', 0x20001, 0x0)
writev(r0, &(0x7f0000000680)=[{&(0x7f00000009c0)='c', 0x1}], 0x1)

08:52:08 executing program 1:
socketpair$inet6_sctp(0xa, 0x1, 0x84, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
dup(r0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
gettid()
r1 = openat$uhid(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/uhid\x00', 0x2, 0x0)
write$UHID_CREATE(r1, &(0x7f0000000380)={0x0, 'syz0\x00', 'syz0\x00', 'syz0\x00', &(0x7f0000000200)=""/43, 0x2b, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x11c)
r2 = memfd_create(&(0x7f0000000280)='syz1\x00', 0x0)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000600)=ANY=[@ANYRES32=0x0], &(0x7f0000000000)=0x1)
futex(&(0x7f00000001c0), 0x0, 0x2, &(0x7f0000000240)={0x0, 0x989680}, &(0x7f0000000740), 0x0)
write$UHID_DESTROY(r1, &(0x7f0000000100), 0x4)
getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r2, 0x84, 0x72, &(0x7f00000002c0)={<r3=>0x0, 0x0, 0x30}, &(0x7f0000000340)=0xc)
getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f00000005c0)={0x0, 0x68}, &(0x7f0000000640)=0x8)
getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r2, 0x84, 0x66, &(0x7f0000000680)={0x0, 0x81}, &(0x7f00000006c0)=0x8)
sendmmsg$inet_sctp(r2, &(0x7f0000000700)=[{&(0x7f0000000040)=@in6={0xa, 0x4e21, 0x7ee, @mcast1, 0x1892}, 0x1c, &(0x7f0000000080)=[{&(0x7f00000004c0)="80f35449cbe24a2d8d5549738a7af08afd06413b4cd996626da8cb6d7b2e3aebeadf4ca3b737d3eff81d16630459dc3fd924b9282f35f5d382e4198314d0958ee9dc79b4a0ceef1e4e0ee0c5e8a8ab2050719190e021ab07168d6c2947a1e23dc85d143210afe0e7db0692afdad39a0cd5218a7c301d439e36f0a66fc42f792d211715b1d838732624501488e675108beeaa7580dae74cf35b3b5f0e081fee35776fe4a23868ed525e6a446c865f7421ae3418a42ea0f1a4200a2e", 0xbb}], 0x1, &(0x7f0000000780)=[@prinfo={0x18, 0x84, 0x5, {0x30, 0xcf}}, @sndrcv={0x30, 0x84, 0x1, {0x5, 0x4, 0x0, 0x6, 0x5, 0x1ff, 0x8, 0x7f, r3}}, @authinfo={0x18, 0x84, 0x6, {0xdf}}, @init={0x18, 0x84, 0x0, {0x0, 0x4, 0x5, 0x2}}], 0x78, 0x4800}], 0x1, 0xbd6a575ef38b3b15)

08:52:08 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$inet(0x10, 0x3, 0xc)
fanotify_init(0x0, 0x1)
sendmsg(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)

08:52:08 executing program 5:
socket$nl_xfrm(0x11, 0x3, 0x6)
socket$inet6(0xa, 0x3, 0x9)
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000400)={@ipv4={[], [], @loopback}})
clock_gettime(0x0, &(0x7f0000000240))
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000180)='/dev/rtc0\x00', 0x0, 0x0)
write$P9_RLOCK(r0, &(0x7f0000000200)={0x8}, 0x8)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000003700)='/proc/self/net/pfkey\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_PAUSE(0xffffffffffffffff, 0x54a3)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000500))
getpgid(0x0)
r1 = syz_open_dev$evdev(&(0x7f0000dfdfee)='/dev/input/event#\x00', 0x0, 0x2)
write$evdev(r1, &(0x7f000004d000)=[{}], 0x18)
msgget$private(0x0, 0x0)
ioctl$ASHMEM_GET_PROT_MASK(0xffffffffffffffff, 0x7706, &(0x7f00000002c0))
getsockname(0xffffffffffffffff, &(0x7f0000000480)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @dev}}}, &(0x7f0000000100)=0x80)
creat(&(0x7f0000000180)="131377c5fc35d41454d5d41d29ad1a6029598146e6be166e41ad0dbd4054033c9f33bbda8224a2f3d772e7636e48b33cbf708372e8f1b9933ec5127743be2206209ef02df9cbf2f6e880d3382f00", 0x8)

08:52:08 executing program 0:
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, &(0x7f00000001c0))
r0 = open(&(0x7f0000000780)='./bus\x00', 0x0, 0x0)
ioctl$TUNSETGROUP(0xffffffffffffffff, 0x400454ce, 0x0)
read(r0, &(0x7f0000000200)=""/19, 0x93fa513f)
r1 = socket$inet6(0xa, 0x800000100000002, 0x0)
sendmmsg(r1, &(0x7f0000002000)=[{{&(0x7f0000000000)=@in6={0xa, 0x0, 0x0, @mcast1}, 0x80, &(0x7f0000000280), 0x0, &(0x7f0000000100)}}], 0x1, 0x0)
keyctl$clear(0x7, 0x0)
sync()

08:52:08 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000002c0), 0xfffffffffffffe92, 0x20000806, &(0x7f0000000240)={0x2, 0x404e23, @multicast1}, 0xffffffffffffff41)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000040), &(0x7f0000000140)=0x4)
getsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=<r1=>0x0, &(0x7f00000000c0)=0x4)
setsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000100)={r1, 0x2f7}, 0x8)

[  621.525085] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
[  621.554470] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.561370] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.568377] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.575354] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.582123] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.589146] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.596035] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.603105] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.609874] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.616821] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.618562] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
[  621.623705] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.623788] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.646064] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.652997] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.659759] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.666789] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.673680] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.680474] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.687442] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.694384] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.701153] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.708173] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.715147] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.721964] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.728887] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.735859] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.742778] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.749521] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.756543] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.763386] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.770136] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.776998] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.783860] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.790777] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.797667] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.804555] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.811318] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.818189] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.825138] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.831931] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.838899] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.845771] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  621.852680] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
08:52:08 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000080)={@remote}, 0x14)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000100)='/dev/zero\x00', 0x0, 0x0)
dup2(r2, r0)
r3 = socket(0x100000000a, 0x1, 0x0)
setsockopt$inet6_group_source_req(r3, 0x29, 0x2e, &(0x7f0000000000)={0x0, {{0xa, 0x0, 0x0, @mcast2={0xff, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff5]}}}, {{0xa, 0x0, 0x0, @mcast2}}}, 0x108)

08:52:09 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
r1 = syz_open_dev$media(&(0x7f0000000080)='/dev/media#\x00', 0x9, 0x8000)
r2 = syz_genetlink_get_family_id$team(&(0x7f0000000100)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000440)={'team0\x00', <r3=>0x0})
getsockopt$inet6_mreq(0xffffffffffffff9c, 0x29, 0x1c, &(0x7f0000000480)={@mcast1, <r4=>0x0}, &(0x7f00000004c0)=0x14)
sendmsg$TEAM_CMD_NOOP(r1, &(0x7f0000000600)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x84}, 0xc, &(0x7f00000005c0)={&(0x7f0000000500)={0x98, r2, 0x300, 0x70bd2c, 0x25dfdbfe, {}, [{{0x8, 0x1, r3}, {0x7c, 0x2, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8}, {0x8, 0x4, r4}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0x8}}}]}}]}, 0x98}, 0x1, 0x0, 0x0, 0x801}, 0x1)
write(r0, &(0x7f0000000ec0)="89f9d765312b4001000000b0967bdae72ee5094371136a6477ba0a51a2969dbc2d4028ac7b5af67f178f9314ea2bb3ac1c442eaf749c21ae2af8e39a40c3dc032e6f8eb738786a79df71302ff3b5d42731597d995bed6103ff63b9a908bcc05e0400000092bdf4d3282f62d6928117f82c2dae48742dac857de846096e82c1a02e1edcadda721a3f8dc9a54da05d467ed35b6f931d8686986960e756048c61c2a2c374c318d21d7a7ef550779190066e82ea3f6724a9f61ff028ec7e8d7a04352e7a78f777a68b823abb646bdc55dbde285ce15bf45820f0ae20e4023f57c71f8b41e08eff14c3441485c6f54a30750c780852dad879d6d4be7243bd07f841f89009000000c23d6b4f70fe48b54577449cfcbc4d5dbefb8b465d45bc2d11afbe7bfbe6ca76ac259e634eebf8db694ff02fe2b4c80783b443ef68287e9cf7cbcc2ee196f10c4ffb3f59e4921e0f9f08cba9a2c56c49fa7465b4836da5b2d9b142763889caa718d8a4fcb2f3ef6dc6185708fb1e0f9081d29fb3defae8c525f07437c7835b4eac8f86e2a22a81eff4120340e4a379446aac45dbff791d147805cd2748d74b8996c9b51ec03b410ef8fe126117fbf106795bc1b25d8dd786b6496bd743b7c75c638b516214ff56ec99a9c0f2919fa781cd8b4f2f2e425a6780c630a05c8e60011bc8e10055a6b6b652e5a13c73fd96f79038a65d6991ac38899ab98486d92bbcffdcf39a08a248ae1045ff8c6123de2f15d9ac360a3497c07001a3a1936ff1c03194ace131d380f515629ff016bd890ff822704c0db8bc68efad2eace5466628e7d6c2f2b3043698c46fdd62588fc54b72a786af0d026353879892c58007f7988a3f2240a43303218cc1df27807bfbde117c505f060396850a82459830a89a6a8601ea2e47f2e41379d110b96576f8f7705bba7ec63d6b44ccf84073cf9bdcf1aee48cb60c2f6dd3e89f3626a5e23339ea99c918d76a43fecf7401f7550e8eaefa4d84f1143320599daf7699858b2bf408e9093aa91d6dd9ae39d8decf3f7a199b0c1918d47be3b7aeff9a8c10efabe787b43141e7abaa4317158864b0361568140ab79cade1223c3ef81da4c4eefdd5b21fcc1b87872fc3b346737105589b84ba9814679b7510ed9b4f290083ee634ae12243ccc63413d7bc35eee0d1a4bc9dd33c37f5130303edddfc2636ffbf1ee0febb953436710c2ed9bd001d2ebe878788ddf7f7ad55b7a8cbcb348e82cd65b59315858086606115d04a3cda0e4af2a703afe09e4afedf00d5fbb2284df9af1d1ec9f15356c58fdcde45fff250568347f3b0b49e11e44c0a4d98a1e3393ce5d76614990f23b2e146842b166fb070894c128f957b0cc7d80a16275efd15659e0f81990062ebfdf9454d12e63d1ce1dad7848fcbab642a0d62ebb17abc824883e4c6e1e81992f28f5bbd7b26e2645c7941b03dd2f27c29baa2412976a05fa13d8fc4d6bd152a8668d986a9cf605b8b4a61600481e01bdd74c96d73390518add968100ac742aaf5dd7eb4ccf0868ee3ef7f12c32298737dea65bd5d7161dd679b4dd6799aa086bf3b8c889780ac102b7b1ebcf2569dd77f201d74d94a61400ced9c613414012b451628a96e6cc8fe738e964940f7b753065677776f3b5398975aeac974fced560667cead03a8976eb4229ff4e1bca5588d5d544cbca8588215a2f5ef7a5fc1a07438d3a3e05d21eb30d46f1688543d4327d36e07635396eaab4e9bc862ee9c7fa24de38c5cbf8fa5afd024116bc84854d01072145ecc4bb415d94a333e0d91e9cf6fda5a2c244a585e3a32c95398f44800c578faf4a2ccc5979664db7a55aa5cc02789f84321ccaeed4f37dd48c8d1484ade0588fc4255ec8780534a693e2bfe88b622034552084492c6757429239bbe8dad8b904e58007639ca773344040a441dc0027a46c22198f3d0b0588e164881a9fc7a85a63c459b0d002e3d890edd250742d363e85250badb91a734759baf773c32b177d36eefb662be70", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

08:52:09 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$inet(0x10, 0x3, 0xc)
sendmsg(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)

[  621.978290] hid-generic 0000:0000:0000.0005: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  622.042365] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.049135] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.056051] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.062954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.069713] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.076695] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.083591] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.090361] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.097310] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.104189] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.110995] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.117990] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.124888] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.131663] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.138609] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.145655] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.152637] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.159434] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.166438] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.173443] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.180279] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.187306] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.194161] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.200939] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.207944] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.214801] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.221564] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.228546] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.235458] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.242423] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.249192] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.256100] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.263007] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.269768] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.276700] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.283629] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
08:52:09 executing program 0:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
fstat(r0, &(0x7f0000000140))
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000340)='/dev/dlm_plock\x00', 0x400, 0x0)
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000440)={<r3=>0x0, @local, @dev}, &(0x7f0000000480)=0xc)
connect$can_bcm(r2, &(0x7f00000004c0)={0x1d, r3}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000080)={'eql\x00', 0x809})
poll(&(0x7f00000002c0)=[{r5}], 0x1, 0x0)
ioctl$sock_ifreq(r4, 0x8914, &(0x7f00000000c0)={"65716c000000a95b00", @ifru_mtu=0x1})
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="89f9d765312b4001000000b0967bdae72ee5094371136a6477ba0a51a2969dbc2d4028ac7b5af67f178f9314ea2bb3ac1c442eaf749c21ae2af8e39a40c3dc032e6f8eb738786a79df71302ff3b5d42731597d995bed6103ff63b9a908bcc05e0400000092bdf4d3282f62d6928117f82c2dae48742dac857de846096e82c1a02e1edcadda721a3f8dc9a54da05d467ed35b6f931d8686986960e756048c61c2a2c374c318d21d7a7ef550779190066e82ea3f6724a9f61ff028ec7e8d7a04352e7a78f777a68b823abb646bdc55dbde285ce15bf45820f0ae20e4023f57c71f8b41e08eff14c3441485c6f54a30750c780852dad879d6d4be7243bd07f841f89009000000c23d6b4f70fe48b54577449cfcbc4d5dbefb8b465d45bc2d11afbe7bfbe6ca76ac259e634eebf8db694ff02fe2b4c80783b443ef68287e9cf7cbcc2ee196f10c4ffb3f59e4921e0f9f08cba9a2c56c49fa7465b4836da5b2d9b142763889caa718d8a4fcb2f3ef6dc6185708fb1e0f9081d29fb3defae8c525f07437c7835b4eac8f86e2a22a81eff4120340e4a379446aac45dbff791d147805cd2748d74b8996c9b51ec03b410ef8fe126117fbf106795bc1b25d8dd786b6496bd743b7c75c638b516214ff56ec99a9c0f2919fa781cd8b4f2f2e425a6780c630a05c8e60011bc8e10055a6b6b652e5a13c73fd96f79038a65d6991ac38899ab98486d92bbcffdcf39a08a248ae1045ff8c6123de2f15d9ac360a3497c07001a3a1936ff1c03194ace131d380f515629ff016bd890ff822704c0db8bc68efad2eace5466628e7d6c2f2b3043698c46fdd62588fc54b72a786af0d026353879892c58007f7988a3f2240a43303218cc1df27807bfbde117c505f060396850a82459830a89a6a8601ea2e47f2e41379d110b96576f8f7705bba7ec63d6b44ccf84073cf9bdcf1aee48cb60c2f6dd3e89f3626a5e23339ea99c918d76a43fecf7401f7550e8eaefa4d84f1143320599daf7699858b2bf408e9093aa91d6dd9ae39d8decf3f7a199b0c1918d47be3b7aeff9a8c10efabe787b43141e7abaa4317158864b0361568140ab79cade1223c3ef81da4c4eefdd5b21fcc1b87872fc3b346737105589b84ba9814679b7510ed9b4f290083ee634ae12243ccc63413d7bc35eee0d1a4bc9dd33c37f5130303edddfc2636ffbf1ee0febb953436710c2ed9bd001d2ebe878788ddf7f7ad55b7a8cbcb348e82cd65b59315858086606115d04a3cda0e4af2a703afe09e4afedf00d5fbb2284df9af1d1ec9f15356c58fdcde45fff250568347f3b0b49e11e44c0a4d98a1e3393ce5d76614990f23b2e146842b166fb070894c128f957b0cc7d80a16275efd15659e0f81990062ebfdf9454d12e63d1ce1dad7848fcbab642a0d62ebb17abc824883e4c6e1e81992f28f5bbd7b26e2645c7941b03dd2f27c29baa2412976a05fa13d8fc4d6bd152a8668d986a9cf605b8b4a61600481e01bdd74c96d73390518add968100ac742aaf5dd7eb4ccf0868ee3ef7f12c32298737dea65bd5d7161dd679b4dd6799aa086bf3b8c889780ac102b7b1ebcf2569dd77f201d74d94a61400ced9c613414012b451628a96e6cc8fe738e964940f7b753065677776f3b5398975aeac974fced560667cead03a8976eb4229ff4e1bca5588d5d544cbca8588215a2f5ef7a5fc1a07438d3a3e05d21eb30d46f1688543d4327d36e07635396eaab4e9bc862ee9c7fa24de38c5cbf8fa5afd024116bc84854d01072145ecc4bb415d94a333e0d91e9cf6fda5a2c244a585e3a32c95398f44800c578faf4a2ccc5979664db7a55aa5cc02789f84321ccaeed4f37dd48c8d1484ade0588fc4255ec8780534a693e2bfe88b622034552084492c6757429239bbe8dad8b904e58007639ca773344040a441dc0027a46c22198f3d0b0588e164881a9fc7a85a63c459b0d002e3d890edd250742d363e85250badb91a734759baf773c32b177d36eefb662be70", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
r6 = memfd_create(&(0x7f0000000100)='.@(\x00', 0x0)
ioctl$VIDIOC_TRY_FMT(r6, 0xc0d05640, &(0x7f0000000200)={0xb, @pix_mp={0x6770, 0x0, 0x7f734f6f, 0x4, 0x7, [{0xca, 0x8}, {0x8, 0xfffffffffffffff9}, {0x0, 0x4}, {0x8, 0x7}, {0x100, 0x1}, {0x5}, {0x7}, {0x1ff}], 0x0, 0x8, 0x7}})
vmsplice(r2, &(0x7f0000000300), 0x0, 0x9)
r7 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r6, 0x801c581f, &(0x7f0000000300)={0x1, 0x0, 0x9, 0x4, 0x3})
ioctl$DRM_IOCTL_CONTROL(r7, 0x40086414, &(0x7f00000000c0)={0x0, 0x100})
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

[  622.290397] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.297419] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.304289] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.311053] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.317923] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.324809] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.331595] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  622.438576] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
[  622.496242] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
08:52:09 executing program 5:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
fstat(r0, &(0x7f0000000140))
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000340)='/dev/dlm_plock\x00', 0x400, 0x0)
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000440)={<r3=>0x0, @local, @dev}, &(0x7f0000000480)=0xc)
connect$can_bcm(r2, &(0x7f00000004c0)={0x1d, r3}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000080)={'eql\x00', 0x809})
poll(&(0x7f00000002c0)=[{r5}], 0x1, 0x0)
ioctl$sock_ifreq(r4, 0x8914, &(0x7f00000000c0)={"65716c000000a95b00", @ifru_mtu=0x1})
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
r6 = memfd_create(&(0x7f0000000100)='.@(\x00', 0x0)
ioctl$VIDIOC_TRY_FMT(r6, 0xc0d05640, &(0x7f0000000200)={0xb, @pix_mp={0x6770, 0x0, 0x7f734f6f, 0x4, 0x7, [{0xca, 0x8}, {0x8, 0xfffffffffffffff9}, {0x0, 0x4}, {0x8, 0x7}, {0x100, 0x1}, {0x5}, {0x7}, {0x1ff}], 0x0, 0x8, 0x7}})
vmsplice(r2, &(0x7f0000000300), 0x0, 0x9)
r7 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r6, 0x801c581f, &(0x7f0000000300)={0x1, 0x0, 0x9, 0x4, 0x3})
ioctl$DRM_IOCTL_CONTROL(r7, 0x40086414, &(0x7f00000000c0)={0x0, 0x100})
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

08:52:09 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = creat(&(0x7f0000000180)='./file0\x00', 0x4)
ioctl$KVM_GET_IRQCHIP(r1, 0xc208ae62, &(0x7f00000006c0))
r2 = syz_open_dev$mice(&(0x7f00000001c0)='/dev/input/mice\x00', 0x0, 0x48200)
ioctl$RNDGETENTCNT(r2, 0x80045200, &(0x7f0000000140))
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r3 = socket$inet(0x10, 0x3, 0xc)
sendmsg(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)

08:52:09 executing program 4:
r0 = socket$inet(0x2, 0x3, 0x400000000000000)
r1 = syz_open_dev$mouse(&(0x7f0000000080)='/dev/input/mouse#\x00', 0xf4ad, 0x400)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f00000000c0)=r1, 0x4)
r2 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r2, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r2, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r2, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r2, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

[  622.883599] hid-generic 0000:0000:0000.0006: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  623.052706] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
08:52:10 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
socket$inet6(0xa, 0x800, 0xfa0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0x8ab0, &(0x7f0000000000)="d39e9aa3bf65e0d56f97cbc70f7c61e0188b06efcbb71112d0ffffff7f509c80f89fd3c5202f745089d181249250ce09186a810000004c28a92a1d")
dup2(r1, r0)

08:52:10 executing program 2:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
r1 = syz_open_dev$media(&(0x7f0000000080)='/dev/media#\x00', 0x9, 0x8000)
r2 = syz_genetlink_get_family_id$team(&(0x7f0000000100)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000440)={'team0\x00', <r3=>0x0})
getsockopt$inet6_mreq(0xffffffffffffff9c, 0x29, 0x1c, &(0x7f0000000480)={@mcast1, <r4=>0x0}, &(0x7f00000004c0)=0x14)
sendmsg$TEAM_CMD_NOOP(r1, &(0x7f0000000600)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x84}, 0xc, &(0x7f00000005c0)={&(0x7f0000000500)={0x98, r2, 0x300, 0x70bd2c, 0x25dfdbfe, {}, [{{0x8, 0x1, r3}, {0x7c, 0x2, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8}, {0x8, 0x4, r4}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0x8}}}]}}]}, 0x98}, 0x1, 0x0, 0x0, 0x801}, 0x1)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

[  623.176294] not chained 470000 origins
[  623.180242] CPU: 0 PID: 16482 Comm: syz-executor4 Not tainted 4.20.0-rc2+ #88
[  623.182208] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  623.193528] Call Trace:
[  623.193528]  dump_stack+0x32d/0x480
[  623.203022]  ? save_stack_trace+0xc6/0x110
[  623.203022]  kmsan_internal_chain_origin+0x222/0x240
[  623.203022]  ? kmsan_internal_chain_origin+0x136/0x240
[  623.203022]  ? __msan_chain_origin+0x6d/0xb0
[  623.203022]  ? __save_stack_trace+0x8be/0xc60
[  623.203022]  ? save_stack_trace+0xc6/0x110
[  623.203022]  ? kmsan_internal_chain_origin+0x136/0x240
[  623.203022]  ? kmsan_memcpy_origins+0x13d/0x190
[  623.203022]  ? __msan_memcpy+0x6f/0x80
[  623.203022]  ? pskb_expand_head+0x436/0x1d20
[  623.203022]  ? iptunnel_handle_offloads+0x455/0x810
[  623.203022]  ? ipip_tunnel_xmit+0x15d/0x4a0
[  623.203022]  ? dev_hard_start_xmit+0x6dc/0xde0
[  623.262974]  ? __dev_queue_xmit+0x2d9e/0x3e00
[  623.262974]  ? dev_queue_xmit+0x4b/0x60
[  623.262974]  ? neigh_direct_output+0x42/0x50
[  623.262974]  ? ip_finish_output2+0x141a/0x1560
[  623.262974]  ? ip_finish_output+0xd93/0x10f0
[  623.262974]  ? ip_output+0x55c/0x630
[  623.262974]  ? __ip_queue_xmit+0x1bb5/0x2170
[  623.262974]  ? ip_queue_xmit+0xcc/0xf0
[  623.262974]  ? __tcp_transmit_skb+0x425c/0x5e00
[  623.262974]  ? tcp_write_xmit+0x389a/0xacc0
[  623.262974]  ? tcp_push_one+0x195/0x230
[  623.262974]  ? tcp_sendmsg_locked+0x456d/0x6c30
[  623.262974]  ? tcp_sendmsg+0xb2/0x100
[  623.262974]  ? inet_sendmsg+0x4e9/0x800
[  623.262974]  ? __sys_sendto+0x940/0xb80
[  623.262974]  ? __se_sys_sendto+0x107/0x130
[  623.262974]  ? __x64_sys_sendto+0x6e/0x90
[  623.333477]  ? do_syscall_64+0xcf/0x110
[  623.333477]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  623.333477]  ? kmsan_internal_chain_origin+0x136/0x240
[  623.333477]  ? __msan_chain_origin+0x6d/0xb0
[  623.333477]  ? save_stack_trace+0xfa/0x110
[  623.333477]  ? kmsan_internal_chain_origin+0x136/0x240
[  623.333477]  ? kmsan_memcpy_origins+0x13d/0x190
[  623.333477]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  623.333477]  ? in_task_stack+0x12c/0x210
[  623.333477]  __msan_chain_origin+0x6d/0xb0
[  623.333477]  ? dev_queue_xmit+0x4b/0x60
[  623.333477]  __save_stack_trace+0x8be/0xc60
[  623.333477]  ? dev_queue_xmit+0x4b/0x60
[  623.333477]  save_stack_trace+0xc6/0x110
[  623.333477]  kmsan_internal_chain_origin+0x136/0x240
[  623.333477]  ? tcp_push_one+0x195/0x230
[  623.333477]  ? kmsan_internal_chain_origin+0x136/0x240
[  623.333477]  ? kmsan_memcpy_origins+0x13d/0x190
[  623.333477]  ? __msan_memcpy+0x6f/0x80
[  623.333477]  ? pskb_expand_head+0x436/0x1d20
[  623.333477]  ? iptunnel_handle_offloads+0x455/0x810
[  623.333477]  ? ipip_tunnel_xmit+0x15d/0x4a0
[  623.333477]  ? dev_hard_start_xmit+0x6dc/0xde0
[  623.333477]  ? __dev_queue_xmit+0x2d9e/0x3e00
[  623.333477]  ? __msan_poison_alloca+0x1e0/0x270
[  623.333477]  ? memcg_kmem_put_cache+0x73/0x460
[  623.333477]  ? __kmalloc_node_track_caller+0x1010/0x14e0
[  623.333477]  ? __msan_get_context_state+0x9/0x20
[  623.333477]  ? INIT_INT+0xc/0x30
[  623.333477]  ? __kmalloc_node_track_caller+0x369/0x14e0
[  623.473939]  kmsan_memcpy_origins+0x13d/0x190
[  623.473939]  __msan_memcpy+0x6f/0x80
[  623.473939]  pskb_expand_head+0x436/0x1d20
[  623.473939]  iptunnel_handle_offloads+0x455/0x810
[  623.473939]  ipip_tunnel_xmit+0x15d/0x4a0
[  623.473939]  ? ipip_tunnel_init+0x240/0x240
[  623.473939]  dev_hard_start_xmit+0x6dc/0xde0
[  623.473939]  __dev_queue_xmit+0x2d9e/0x3e00
[  623.473939]  dev_queue_xmit+0x4b/0x60
[  623.473939]  neigh_direct_output+0x42/0x50
[  623.473939]  ? neigh_connected_output+0x700/0x700
[  623.473939]  ip_finish_output2+0x141a/0x1560
[  623.473939]  ip_finish_output+0xd93/0x10f0
[  623.473939]  ip_output+0x55c/0x630
[  623.532430]  ? ip_mc_finish_output+0x440/0x440
[  623.532430]  ? ip_finish_output+0x10f0/0x10f0
[  623.532430]  __ip_queue_xmit+0x1bb5/0x2170
[  623.532430]  ? kmsan_set_origin+0x7f/0x100
[  623.532430]  ip_queue_xmit+0xcc/0xf0
[  623.532430]  ? dst_hold_safe+0x5d0/0x5d0
[  623.532430]  __tcp_transmit_skb+0x425c/0x5e00
[  623.532430]  tcp_write_xmit+0x389a/0xacc0
[  623.532430]  tcp_push_one+0x195/0x230
[  623.532430]  tcp_sendmsg_locked+0x456d/0x6c30
[  623.573609]  ? kmsan_internal_unpoison_shadow+0x30/0xd0
[  623.573609]  tcp_sendmsg+0xb2/0x100
[  623.573609]  ? tcp_sendmsg_locked+0x6c30/0x6c30
[  623.573609]  inet_sendmsg+0x4e9/0x800
[  623.573609]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  623.573609]  ? security_socket_sendmsg+0x1bd/0x200
[  623.602348]  ? inet_getname+0x490/0x490
[  623.602348]  __sys_sendto+0x940/0xb80
[  623.602348]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  623.602348]  ? prepare_exit_to_usermode+0x182/0x4c0
[  623.602348]  __se_sys_sendto+0x107/0x130
[  623.602348]  __x64_sys_sendto+0x6e/0x90
[  623.602348]  do_syscall_64+0xcf/0x110
[  623.602348]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  623.602348] RIP: 0033:0x457569
[  623.602348] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  623.602348] RSP: 002b:00007fe2bd003c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  623.602348] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000457569
[  623.602348] RDX: 00000000fffffdef RSI: 00000000200003c0 RDI: 0000000000000003
[  623.602348] RBP: 000000000072bfa0 R08: 00000000200001c0 R09: 0000000000000010
[  623.602348] R10: 00000000000001f4 R11: 0000000000000246 R12: 00007fe2bd0046d4
[  623.602348] R13: 00000000004c3c11 R14: 00000000004d5e80 R15: 00000000ffffffff
[  623.602348] Uninit was stored to memory at:
[  623.602348]  kmsan_internal_chain_origin+0x136/0x240
[  623.602348]  __msan_chain_origin+0x6d/0xb0
[  623.602348]  __save_stack_trace+0x8be/0xc60
[  623.602348]  save_stack_trace+0xc6/0x110
[  623.602348]  kmsan_internal_chain_origin+0x136/0x240
[  623.602348]  kmsan_memcpy_origins+0x13d/0x190
[  623.602348]  __msan_memcpy+0x6f/0x80
[  623.742885]  pskb_expand_head+0x436/0x1d20
[  623.742885]  iptunnel_handle_offloads+0x455/0x810
[  623.742885]  ipip_tunnel_xmit+0x15d/0x4a0
[  623.742885]  dev_hard_start_xmit+0x6dc/0xde0
[  623.742885]  __dev_queue_xmit+0x2d9e/0x3e00
[  623.742885]  dev_queue_xmit+0x4b/0x60
[  623.742885]  neigh_direct_output+0x42/0x50
[  623.742885]  ip_finish_output2+0x141a/0x1560
[  623.742885]  ip_finish_output+0xd93/0x10f0
[  623.742885]  ip_output+0x55c/0x630
[  623.742885]  __ip_queue_xmit+0x1bb5/0x2170
[  623.789823]  ip_queue_xmit+0xcc/0xf0
[  623.790671]  __tcp_transmit_skb+0x425c/0x5e00
[  623.790671]  tcp_write_xmit+0x389a/0xacc0
[  623.790671]  tcp_push_one+0x195/0x230
[  623.790671]  tcp_sendmsg_locked+0x456d/0x6c30
[  623.790671]  tcp_sendmsg+0xb2/0x100
[  623.790671]  inet_sendmsg+0x4e9/0x800
[  623.790671]  __sys_sendto+0x940/0xb80
[  623.790671]  __se_sys_sendto+0x107/0x130
[  623.790671]  __x64_sys_sendto+0x6e/0x90
[  623.790671]  do_syscall_64+0xcf/0x110
[  623.790671]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  623.837831] 
[  623.837831] Uninit was stored to memory at:
[  623.837831]  kmsan_internal_chain_origin+0x136/0x240
[  623.848899]  __msan_chain_origin+0x6d/0xb0
[  623.848899]  __save_stack_trace+0x8be/0xc60
[  623.848899]  save_stack_trace+0xc6/0x110
[  623.848899]  kmsan_internal_chain_origin+0x136/0x240
[  623.848899]  kmsan_memcpy_origins+0x13d/0x190
[  623.869362]  __msan_memcpy+0x6f/0x80
[  623.869362]  pskb_expand_head+0x436/0x1d20
[  623.869362]  iptunnel_handle_offloads+0x455/0x810
[  623.869362]  ipip_tunnel_xmit+0x15d/0x4a0
[  623.869362]  dev_hard_start_xmit+0x6dc/0xde0
[  623.869362]  __dev_queue_xmit+0x2d9e/0x3e00
[  623.869362]  dev_queue_xmit+0x4b/0x60
[  623.869362]  neigh_direct_output+0x42/0x50
[  623.869362]  ip_finish_output2+0x141a/0x1560
[  623.869362]  ip_finish_output+0xd93/0x10f0
[  623.869362]  ip_output+0x55c/0x630
[  623.869362]  __ip_queue_xmit+0x1bb5/0x2170
[  623.869362]  ip_queue_xmit+0xcc/0xf0
08:52:10 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
socket$inet6(0xa, 0x800, 0xfa0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0x8ab0, &(0x7f0000000000)="d39e9aa3bf65e0d56f97cbc70f7c61e0188b06efcbb71112d0ffffff7f509c80f89fd3c5202f745089d181249250ce09186a810000004c28a92a1d")
dup2(r1, r0)

08:52:10 executing program 2:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
r1 = syz_open_dev$media(&(0x7f0000000080)='/dev/media#\x00', 0x9, 0x8000)
r2 = syz_genetlink_get_family_id$team(&(0x7f0000000100)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000440)={'team0\x00', <r3=>0x0})
getsockopt$inet6_mreq(0xffffffffffffff9c, 0x29, 0x1c, &(0x7f0000000480)={@mcast1, <r4=>0x0}, &(0x7f00000004c0)=0x14)
sendmsg$TEAM_CMD_NOOP(r1, &(0x7f0000000600)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x84}, 0xc, &(0x7f00000005c0)={&(0x7f0000000500)={0x98, r2, 0x300, 0x70bd2c, 0x25dfdbfe, {}, [{{0x8, 0x1, r3}, {0x7c, 0x2, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8}, {0x8, 0x4, r4}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0x8}}}]}}]}, 0x98}, 0x1, 0x0, 0x0, 0x801}, 0x1)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

[  623.869362]  __tcp_transmit_skb+0x425c/0x5e00
[  623.869362]  tcp_write_xmit+0x389a/0xacc0
[  623.932385]  tcp_push_one+0x195/0x230
[  623.932385]  tcp_sendmsg_locked+0x456d/0x6c30
[  623.932385]  tcp_sendmsg+0xb2/0x100
[  623.932385]  inet_sendmsg+0x4e9/0x800
[  623.932385]  __sys_sendto+0x940/0xb80
[  623.932385]  __se_sys_sendto+0x107/0x130
[  623.957020]  __x64_sys_sendto+0x6e/0x90
[  623.957020]  do_syscall_64+0xcf/0x110
[  623.957020]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  623.970111] 
[  623.970111] Uninit was stored to memory at:
[  623.970111]  kmsan_internal_chain_origin+0x136/0x240
[  623.970111]  __msan_chain_origin+0x6d/0xb0
[  623.970111]  __save_stack_trace+0x8be/0xc60
[  623.970111]  save_stack_trace+0xc6/0x110
[  623.970111]  kmsan_internal_chain_origin+0x136/0x240
[  623.970111]  kmsan_memcpy_origins+0x13d/0x190
[  624.002527]  __msan_memcpy+0x6f/0x80
[  624.002527]  pskb_expand_head+0x436/0x1d20
[  624.002527]  iptunnel_handle_offloads+0x455/0x810
[  624.002527]  ipip_tunnel_xmit+0x15d/0x4a0
[  624.002527]  dev_hard_start_xmit+0x6dc/0xde0
[  624.002527]  __dev_queue_xmit+0x2d9e/0x3e00
[  624.002527]  dev_queue_xmit+0x4b/0x60
[  624.002527]  neigh_direct_output+0x42/0x50
[  624.002527]  ip_finish_output2+0x141a/0x1560
[  624.002527]  ip_finish_output+0xd93/0x10f0
[  624.002527]  ip_output+0x55c/0x630
[  624.002527]  __ip_queue_xmit+0x1bb5/0x2170
[  624.002527]  ip_queue_xmit+0xcc/0xf0
[  624.002527]  __tcp_transmit_skb+0x425c/0x5e00
[  624.002527]  tcp_write_xmit+0x389a/0xacc0
[  624.002527]  tcp_push_one+0x195/0x230
[  624.072503]  tcp_sendmsg_locked+0x456d/0x6c30
[  624.072503]  tcp_sendmsg+0xb2/0x100
[  624.072503]  inet_sendmsg+0x4e9/0x800
[  624.072503]  __sys_sendto+0x940/0xb80
[  624.072503]  __se_sys_sendto+0x107/0x130
[  624.072503]  __x64_sys_sendto+0x6e/0x90
[  624.072503]  do_syscall_64+0xcf/0x110
[  624.072503]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  624.072503] 
[  624.072503] Uninit was stored to memory at:
[  624.072503]  kmsan_internal_chain_origin+0x136/0x240
[  624.072503]  __msan_chain_origin+0x6d/0xb0
[  624.072503]  __save_stack_trace+0x8be/0xc60
[  624.072503]  save_stack_trace+0xc6/0x110
[  624.072503]  kmsan_internal_chain_origin+0x136/0x240
[  624.072503]  kmsan_memcpy_origins+0x13d/0x190
[  624.072503]  __msan_memcpy+0x6f/0x80
[  624.142559]  pskb_expand_head+0x436/0x1d20
[  624.142559]  iptunnel_handle_offloads+0x455/0x810
[  624.142559]  ipip_tunnel_xmit+0x15d/0x4a0
[  624.142559]  dev_hard_start_xmit+0x6dc/0xde0
[  624.142559]  __dev_queue_xmit+0x2d9e/0x3e00
[  624.142559]  dev_queue_xmit+0x4b/0x60
[  624.142559]  neigh_direct_output+0x42/0x50
[  624.142559]  ip_finish_output2+0x141a/0x1560
[  624.142559]  ip_finish_output+0xd93/0x10f0
[  624.142559]  ip_output+0x55c/0x630
[  624.142559]  __ip_queue_xmit+0x1bb5/0x2170
[  624.142559]  ip_queue_xmit+0xcc/0xf0
[  624.142559]  __tcp_transmit_skb+0x425c/0x5e00
[  624.142559]  tcp_write_xmit+0x389a/0xacc0
[  624.142559]  tcp_push_one+0x195/0x230
[  624.142559]  tcp_sendmsg_locked+0x456d/0x6c30
[  624.142559]  tcp_sendmsg+0xb2/0x100
[  624.142559]  inet_sendmsg+0x4e9/0x800
[  624.142559]  __sys_sendto+0x940/0xb80
[  624.142559]  __se_sys_sendto+0x107/0x130
[  624.142559]  __x64_sys_sendto+0x6e/0x90
[  624.142559]  do_syscall_64+0xcf/0x110
[  624.142559]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  624.142559] 
[  624.142559] Uninit was stored to memory at:
[  624.142559]  kmsan_internal_chain_origin+0x136/0x240
[  624.142559]  __msan_chain_origin+0x6d/0xb0
[  624.142559]  __save_stack_trace+0x8be/0xc60
[  624.142559]  save_stack_trace+0xc6/0x110
[  624.142559]  kmsan_internal_chain_origin+0x136/0x240
[  624.142559]  kmsan_memcpy_origins+0x13d/0x190
[  624.142559]  __msan_memcpy+0x6f/0x80
[  624.142559]  pskb_expand_head+0x436/0x1d20
[  624.142559]  iptunnel_handle_offloads+0x455/0x810
[  624.142559]  ipip_tunnel_xmit+0x15d/0x4a0
[  624.142559]  dev_hard_start_xmit+0x6dc/0xde0
[  624.142559]  __dev_queue_xmit+0x2d9e/0x3e00
[  624.142559]  dev_queue_xmit+0x4b/0x60
[  624.142559]  neigh_direct_output+0x42/0x50
[  624.142559]  ip_finish_output2+0x141a/0x1560
[  624.142559]  ip_finish_output+0xd93/0x10f0
[  624.142559]  ip_output+0x55c/0x630
[  624.142559]  __ip_queue_xmit+0x1bb5/0x2170
[  624.142559]  ip_queue_xmit+0xcc/0xf0
[  624.142559]  __tcp_transmit_skb+0x425c/0x5e00
[  624.142559]  tcp_write_xmit+0x389a/0xacc0
[  624.142559]  tcp_push_one+0x195/0x230
[  624.142559]  tcp_sendmsg_locked+0x456d/0x6c30
[  624.142559]  tcp_sendmsg+0xb2/0x100
[  624.142559]  inet_sendmsg+0x4e9/0x800
[  624.142559]  __sys_sendto+0x940/0xb80
[  624.142559]  __se_sys_sendto+0x107/0x130
[  624.142559]  __x64_sys_sendto+0x6e/0x90
[  624.142559]  do_syscall_64+0xcf/0x110
[  624.142559]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  624.142559] 
[  624.142559] Uninit was stored to memory at:
[  624.142559]  kmsan_internal_chain_origin+0x136/0x240
[  624.142559]  __msan_chain_origin+0x6d/0xb0
[  624.142559]  __save_stack_trace+0x8be/0xc60
[  624.142559]  save_stack_trace+0xc6/0x110
[  624.142559]  kmsan_internal_chain_origin+0x136/0x240
[  624.142559]  kmsan_memcpy_origins+0x13d/0x190
[  624.142559]  __msan_memcpy+0x6f/0x80
[  624.142559]  pskb_expand_head+0x436/0x1d20
[  624.142559]  iptunnel_handle_offloads+0x455/0x810
[  624.142559]  ipip_tunnel_xmit+0x15d/0x4a0
[  624.142559]  dev_hard_start_xmit+0x6dc/0xde0
[  624.142559]  __dev_queue_xmit+0x2d9e/0x3e00
[  624.142559]  dev_queue_xmit+0x4b/0x60
[  624.142559]  neigh_direct_output+0x42/0x50
[  624.142559]  ip_finish_output2+0x141a/0x1560
[  624.142559]  ip_finish_output+0xd93/0x10f0
[  624.142559]  ip_output+0x55c/0x630
[  624.142559]  __ip_queue_xmit+0x1bb5/0x2170
[  624.142559]  ip_queue_xmit+0xcc/0xf0
[  624.142559]  __tcp_transmit_skb+0x425c/0x5e00
[  624.142559]  tcp_write_xmit+0x389a/0xacc0
[  624.142559]  tcp_push_one+0x195/0x230
[  624.142559]  tcp_sendmsg_locked+0x456d/0x6c30
[  624.142559]  tcp_sendmsg+0xb2/0x100
[  624.142559]  inet_sendmsg+0x4e9/0x800
[  624.142559]  __sys_sendto+0x940/0xb80
[  624.142559]  __se_sys_sendto+0x107/0x130
[  624.142559]  __x64_sys_sendto+0x6e/0x90
[  624.142559]  do_syscall_64+0xcf/0x110
[  624.142559]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  624.142559] 
[  624.142559] Uninit was stored to memory at:
[  624.142559]  kmsan_internal_chain_origin+0x136/0x240
[  624.142559]  __msan_chain_origin+0x6d/0xb0
[  624.142559]  __save_stack_trace+0x8be/0xc60
[  624.142559]  save_stack_trace+0xc6/0x110
[  624.142559]  kmsan_internal_chain_origin+0x136/0x240
[  624.142559]  kmsan_memcpy_origins+0x13d/0x190
[  624.142559]  __msan_memcpy+0x6f/0x80
[  624.142559]  pskb_expand_head+0x436/0x1d20
[  624.142559]  iptunnel_handle_offloads+0x455/0x810
[  624.142559]  ipip_tunnel_xmit+0x15d/0x4a0
[  624.142559]  dev_hard_start_xmit+0x6dc/0xde0
[  624.142559]  __dev_queue_xmit+0x2d9e/0x3e00
[  624.142559]  dev_queue_xmit+0x4b/0x60
[  624.142559]  neigh_direct_output+0x42/0x50
[  624.142559]  ip_finish_output2+0x141a/0x1560
[  624.142559]  ip_finish_output+0xd93/0x10f0
[  624.142559]  ip_output+0x55c/0x630
[  624.142559]  __ip_queue_xmit+0x1bb5/0x2170
[  624.142559]  ip_queue_xmit+0xcc/0xf0
[  624.142559]  __tcp_transmit_skb+0x425c/0x5e00
[  624.142559]  tcp_write_xmit+0x389a/0xacc0
[  624.142559]  tcp_push_one+0x195/0x230
[  624.142559]  tcp_sendmsg_locked+0x456d/0x6c30
[  624.142559]  tcp_sendmsg+0xb2/0x100
[  624.142559]  inet_sendmsg+0x4e9/0x800
[  624.142559]  __sys_sendto+0x940/0xb80
[  624.142559]  __se_sys_sendto+0x107/0x130
[  624.142559]  __x64_sys_sendto+0x6e/0x90
[  624.142559]  do_syscall_64+0xcf/0x110
[  624.142559]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  624.142559] 
[  624.142559] Local variable description: ----target@nf_nat_icmp_reply_translation
[  624.142559] Variable was created at:
[  624.142559]  nf_nat_icmp_reply_translation+0x9b/0xa80
[  624.142559]  nf_nat_ipv4_out+0x22b/0x7c0
08:52:11 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
socket$inet6(0xa, 0x800, 0xfa0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0x8ab0, &(0x7f0000000000)="d39e9aa3bf65e0d56f97cbc70f7c61e0188b06efcbb71112d0ffffff7f509c80f89fd3c5202f745089d181249250ce09186a810000004c28a92a1d")
dup2(r1, r0)

08:52:12 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
socket$inet6(0xa, 0x800, 0xfa0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0x8ab0, &(0x7f0000000000)="d39e9aa3bf65e0d56f97cbc70f7c61e0188b06efcbb71112d0ffffff7f509c80f89fd3c5202f745089d181249250ce09186a810000004c28a92a1d")

08:52:12 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
r1 = syz_open_dev$vbi(&(0x7f0000000080)='/dev/vbi#\x00', 0x0, 0x2)
ioctl$KVM_SET_DEBUGREGS(r1, 0x4080aea2, &(0x7f00000000c0)={[0xf000, 0x115000, 0x7000, 0x4000], 0x5, 0x2, 0x7fff})
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="89f9d765312b4001000000b0967bdae72ee5094371136a6477ba0a51a2969dbc2d4028ac7b5af67f178f9314ea2bb3ac1c442eaf749c21ae2af8e39a40c3dc032e6f8eb738786a79df71302ff3b5d42731597d995bed6103ff63b9a908bcc05e0400000092bdf4d3282f62d6928117f82c2dae48742dac857de846096e82c1a02e1edcadda721a3f8dc9a54da05d467ed35b6f931d8686986960e756048c61c2a2c374c318d21d7a7ef550779190066e82ea3f6724a9f61ff028ec7e8d7a04352e7a78f777a68b823abb646bdc55dbde285ce15bf45820f0ae20e4023f57c71f8b41e08eff14c3441485c6f54a30750c780852dad879d6d4be7243bd07f841f89009000000c23d6b4f70fe48b54577449cfcbc4d5dbefb8b465d45bc2d11afbe7bfbe6ca76ac259e634eebf8db694ff02fe2b4c80783b443ef68287e9cf7cbcc2ee196f10c4ffb3f59e4921e0f9f08cba9a2c56c49fa7465b4836da5b2d9b142763889caa718d8a4fcb2f3ef6dc6185708fb1e0f9081d29fb3defae8c525f07437c7835b4eac8f86e2a22a81eff4120340e4a379446aac45dbff791d147805cd2748d74b8996c9b51ec03b410ef8fe126117fbf106795bc1b25d8dd786b6496bd743b7c75c638b516214ff56ec99a9c0f2919fa781cd8b4f2f2e425a6780c630a05c8e60011bc8e10055a6b6b652e5a13c73fd96f79038a65d6991ac38899ab98486d92bbcffdcf39a08a248ae1045ff8c6123de2f15d9ac360a3497c07001a3a1936ff1c03194ace131d380f515629ff016bd890ff822704c0db8bc68efad2eace5466628e7d6c2f2b3043698c46fdd62588fc54b72a786af0d026353879892c58007f7988a3f2240a43303218cc1df27807bfbde117c505f060396850a82459830a89a6a8601ea2e47f2e41379d110b96576f8f7705bba7ec63d6b44ccf84073cf9bdcf1aee48cb60c2f6dd3e89f3626a5e23339ea99c918d76a43fecf7401f7550e8eaefa4d84f1143320599daf7699858b2bf408e9093aa91d6dd9ae39d8decf3f7a199b0c1918d47be3b7aeff9a8c10efabe787b43141e7abaa4317158864b0361568140ab79cade1223c3ef81da4c4eefdd5b21fcc1b87872fc3b346737105589b84ba9814679b7510ed9b4f290083ee634ae12243ccc63413d7bc35eee0d1a4bc9dd33c37f5130303edddfc2636ffbf1ee0febb953436710c2ed9bd001d2ebe878788ddf7f7ad55b7a8cbcb348e82cd65b59315858086606115d04a3cda0e4af2a703afe09e4afedf00d5fbb2284df9af1d1ec9f15356c58fdcde45fff250568347f3b0b49e11e44c0a4d98a1e3393ce5d76614990f23b2e146842b166fb070894c128f957b0cc7d80a16275efd15659e0f81990062ebfdf9454d12e63d1ce1dad7848fcbab642a0d62ebb17abc824883e4c6e1e81992f28f5bbd7b26e2645c7941b03dd2f27c29baa2412976a05fa13d8fc4d6bd152a8668d986a9cf605b8b4a61600481e01bdd74c96d73390518add968100ac742aaf5dd7eb4ccf0868ee3ef7f12c32298737dea65bd5d7161dd679b4dd6799aa086bf3b8c889780ac102b7b1ebcf2569dd77f201d74d94a61400ced9c613414012b451628a96e6cc8fe738e964940f7b753065677776f3b5398975aeac974fced560667cead03a8976eb4229ff4e1bca5588d5d544cbca8588215a2f5ef7a5fc1a07438d3a3e05d21eb30d46f1688543d4327d36e07635396eaab4e9bc862ee9c7fa24de38c5cbf8fa5afd024116bc84854d01072145ecc4bb415d94a333e0d91e9cf6fda5a2c244a585e3a32c95398f44800c578faf4a2ccc5979664db7a55aa5cc02789f84321ccaeed4f37dd48c8d1484ade0588fc4255ec8780534a693e2bfe88b622034552084492c6757429239bbe8dad8b904e58007639ca773344040a441dc0027a46c22198f3d0b0588e164881a9fc7a85a63c459b0d002e3d890edd250742d363e85250badb91a734759baf773c32b177d36eefb662be70", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
ioctl$NBD_CLEAR_SOCK(r1, 0xab04)

08:52:12 executing program 2:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
r1 = syz_open_dev$media(&(0x7f0000000080)='/dev/media#\x00', 0x9, 0x8000)
r2 = syz_genetlink_get_family_id$team(&(0x7f0000000100)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000440)={'team0\x00', <r3=>0x0})
getsockopt$inet6_mreq(0xffffffffffffff9c, 0x29, 0x1c, &(0x7f0000000480)={@mcast1, <r4=>0x0}, &(0x7f00000004c0)=0x14)
sendmsg$TEAM_CMD_NOOP(r1, &(0x7f0000000600)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x84}, 0xc, &(0x7f00000005c0)={&(0x7f0000000500)={0x98, r2, 0x300, 0x70bd2c, 0x25dfdbfe, {}, [{{0x8, 0x1, r3}, {0x7c, 0x2, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8}, {0x8, 0x4, r4}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0x8}}}]}}]}, 0x98}, 0x1, 0x0, 0x0, 0x801}, 0x1)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

[  625.454643] not chained 480000 origins
[  625.458609] CPU: 0 PID: 16516 Comm: syz-executor4 Not tainted 4.20.0-rc2+ #88
[  625.462339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  625.462339] Call Trace:
[  625.462339]  dump_stack+0x32d/0x480
[  625.462339]  ? save_stack_trace+0xc6/0x110
[  625.462339]  kmsan_internal_chain_origin+0x222/0x240
[  625.462339]  ? kmsan_internal_chain_origin+0x136/0x240
[  625.462339]  ? __msan_chain_origin+0x6d/0xb0
[  625.499942]  ? __save_stack_trace+0x833/0xc60
[  625.499942]  ? save_stack_trace+0xc6/0x110
[  625.499942]  ? kmsan_internal_chain_origin+0x136/0x240
[  625.499942]  ? kmsan_memcpy_origins+0x13d/0x190
[  625.499942]  ? __msan_memcpy+0x6f/0x80
[  625.499942]  ? skb_copy_bits+0x1d2/0xc90
[  625.499942]  ? skb_copy+0x56c/0xba0
[  625.499942]  ? tcp_send_synack+0x7a3/0x18f0
[  625.499942]  ? tcp_rcv_state_process+0x275d/0x6c60
[  625.499942]  ? tcp_v4_do_rcv+0xb25/0xd80
[  625.499942]  ? __release_sock+0x32d/0x750
[  625.499942]  ? release_sock+0x99/0x2a0
[  625.499942]  ? __inet_stream_connect+0xdff/0x15d0
[  625.499942]  ? tcp_sendmsg_locked+0x6655/0x6c30
[  625.499942]  ? tcp_sendmsg+0xb2/0x100
[  625.499942]  ? inet_sendmsg+0x4e9/0x800
[  625.499942]  ? __sys_sendto+0x940/0xb80
[  625.499942]  ? __se_sys_sendto+0x107/0x130
[  625.499942]  ? __x64_sys_sendto+0x6e/0x90
[  625.499942]  ? do_syscall_64+0xcf/0x110
[  625.499942]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  625.499942]  ? kmsan_internal_chain_origin+0x1e3/0x240
[  625.499942]  ? kmsan_internal_chain_origin+0x136/0x240
[  625.499942]  ? __msan_chain_origin+0x6d/0xb0
[  625.499942]  ? save_stack_trace+0xfa/0x110
[  625.499942]  ? kmsan_internal_chain_origin+0x136/0x240
[  625.499942]  ? kmsan_memcpy_origins+0x13d/0x190
[  625.499942]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  625.499942]  ? in_task_stack+0x12c/0x210
[  625.499942]  __msan_chain_origin+0x6d/0xb0
[  625.499942]  ? kmsan_memcpy_origins+0x13d/0x190
[  625.499942]  __save_stack_trace+0x8be/0xc60
[  625.499942]  ? kmsan_memcpy_origins+0x13d/0x190
[  625.499942]  save_stack_trace+0xc6/0x110
[  625.499942]  kmsan_internal_chain_origin+0x136/0x240
[  625.499942]  ? kmsan_internal_chain_origin+0x136/0x240
[  625.499942]  ? kmsan_memcpy_origins+0x13d/0x190
[  625.499942]  ? __msan_memcpy+0x6f/0x80
[  625.499942]  ? skb_copy_bits+0x1d2/0xc90
[  625.499942]  ? skb_copy+0x56c/0xba0
[  625.499942]  ? tcp_send_synack+0x7a3/0x18f0
[  625.499942]  ? tcp_rcv_state_process+0x275d/0x6c60
[  625.499942]  ? tcp_v4_do_rcv+0xb25/0xd80
[  625.499942]  ? __release_sock+0x32d/0x750
[  625.499942]  ? release_sock+0x99/0x2a0
[  625.499942]  ? __inet_stream_connect+0xdff/0x15d0
[  625.499942]  ? tcp_sendmsg_locked+0x6655/0x6c30
[  625.499942]  ? tcp_sendmsg+0xb2/0x100
[  625.499942]  ? inet_sendmsg+0x4e9/0x800
[  625.499942]  ? __sys_sendto+0x940/0xb80
[  625.499942]  ? __se_sys_sendto+0x107/0x130
[  625.499942]  ? __x64_sys_sendto+0x6e/0x90
[  625.499942]  ? do_syscall_64+0xcf/0x110
[  625.499942]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  625.499942]  ? memcg_kmem_put_cache+0x73/0x460
[  625.499942]  ? __kmalloc_node_track_caller+0x1010/0x14e0
[  625.499942]  ? __msan_get_context_state+0x9/0x20
[  625.499942]  ? INIT_INT+0xc/0x30
[  625.499942]  ? __kmalloc_node_track_caller+0x369/0x14e0
[  625.499942]  ? __msan_get_context_state+0x9/0x20
[  625.499942]  kmsan_memcpy_origins+0x13d/0x190
[  625.499942]  __msan_memcpy+0x6f/0x80
[  625.499942]  skb_copy_bits+0x1d2/0xc90
[  625.499942]  skb_copy+0x56c/0xba0
[  625.499942]  tcp_send_synack+0x7a3/0x18f0
[  625.499942]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  625.499942]  tcp_rcv_state_process+0x275d/0x6c60
[  625.499942]  tcp_v4_do_rcv+0xb25/0xd80
[  625.499942]  ? __local_bh_enable_ip+0x11f/0x260
[  625.499942]  ? inet_sk_rx_dst_set+0x200/0x200
[  625.499942]  __release_sock+0x32d/0x750
[  625.499942]  release_sock+0x99/0x2a0
[  625.499942]  __inet_stream_connect+0xdff/0x15d0
[  625.499942]  ? wait_woken+0x5b0/0x5b0
[  625.499942]  tcp_sendmsg_locked+0x6655/0x6c30
[  625.499942]  ? aa_label_sk_perm+0xda/0x960
[  625.499942]  ? kmsan_set_origin+0x7f/0x100
[  625.499942]  ? kmsan_internal_unpoison_shadow+0x83/0xd0
[  625.499942]  ? __msan_poison_alloca+0x1e0/0x270
[  625.499942]  ? __local_bh_enable_ip+0x46/0x260
[  625.499942]  ? __msan_poison_alloca+0x1e0/0x270
[  625.499942]  tcp_sendmsg+0xb2/0x100
[  625.499942]  ? tcp_sendmsg_locked+0x6c30/0x6c30
[  625.499942]  inet_sendmsg+0x4e9/0x800
[  625.499942]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  625.499942]  ? security_socket_sendmsg+0x1bd/0x200
[  625.499942]  ? inet_getname+0x490/0x490
[  625.499942]  __sys_sendto+0x940/0xb80
[  625.499942]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  625.499942]  ? prepare_exit_to_usermode+0x182/0x4c0
[  625.499942]  __se_sys_sendto+0x107/0x130
[  625.499942]  __x64_sys_sendto+0x6e/0x90
[  625.499942]  do_syscall_64+0xcf/0x110
[  625.499942]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  625.499942] RIP: 0033:0x457569
[  625.499942] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  625.499942] RSP: 002b:00007fe2bd024c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  625.499942] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000457569
[  625.499942] RDX: 0000000000000275 RSI: 00000000200000c0 RDI: 0000000000000003
[  625.499942] RBP: 000000000072bf00 R08: 0000000020000040 R09: 0000000000000010
[  625.499942] R10: 0000000020000802 R11: 0000000000000246 R12: 00007fe2bd0256d4
[  625.499942] R13: 00000000004c3c11 R14: 00000000004d5e80 R15: 00000000ffffffff
[  625.499942] Uninit was stored to memory at:
[  625.499942]  kmsan_internal_chain_origin+0x136/0x240
[  625.499942]  __msan_chain_origin+0x6d/0xb0
[  625.499942]  __save_stack_trace+0x8be/0xc60
[  625.499942]  save_stack_trace+0xc6/0x110
[  625.499942]  kmsan_internal_chain_origin+0x136/0x240
[  625.499942]  kmsan_memcpy_origins+0x13d/0x190
[  625.499942]  __msan_memcpy+0x6f/0x80
[  625.499942]  skb_copy_bits+0x1d2/0xc90
[  625.499942]  skb_copy+0x56c/0xba0
[  625.499942]  tcp_send_synack+0x7a3/0x18f0
[  625.499942]  tcp_rcv_state_process+0x275d/0x6c60
[  625.499942]  tcp_v4_do_rcv+0xb25/0xd80
[  625.499942]  __release_sock+0x32d/0x750
[  625.499942]  release_sock+0x99/0x2a0
[  625.499942]  __inet_stream_connect+0xdff/0x15d0
[  625.499942]  tcp_sendmsg_locked+0x6655/0x6c30
[  625.499942]  tcp_sendmsg+0xb2/0x100
[  625.499942]  inet_sendmsg+0x4e9/0x800
[  625.499942]  __sys_sendto+0x940/0xb80
[  625.499942]  __se_sys_sendto+0x107/0x130
[  625.499942]  __x64_sys_sendto+0x6e/0x90
[  625.499942]  do_syscall_64+0xcf/0x110
[  625.499942]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  625.499942] 
[  625.499942] Uninit was stored to memory at:
[  625.499942]  kmsan_internal_chain_origin+0x136/0x240
[  625.499942]  __msan_chain_origin+0x6d/0xb0
[  625.499942]  __save_stack_trace+0x8be/0xc60
[  625.499942]  save_stack_trace+0xc6/0x110
[  625.499942]  kmsan_internal_chain_origin+0x136/0x240
[  625.499942]  kmsan_memcpy_origins+0x13d/0x190
[  625.499942]  __msan_memcpy+0x6f/0x80
[  625.499942]  skb_copy_bits+0x1d2/0xc90
[  625.499942]  skb_copy+0x56c/0xba0
[  625.499942]  tcp_send_synack+0x7a3/0x18f0
[  625.499942]  tcp_rcv_state_process+0x275d/0x6c60
[  625.499942]  tcp_v4_do_rcv+0xb25/0xd80
[  625.499942]  __release_sock+0x32d/0x750
[  625.499942]  release_sock+0x99/0x2a0
[  625.499942]  __inet_stream_connect+0xdff/0x15d0
[  625.499942]  tcp_sendmsg_locked+0x6655/0x6c30
[  625.499942]  tcp_sendmsg+0xb2/0x100
[  625.499942]  inet_sendmsg+0x4e9/0x800
[  625.499942]  __sys_sendto+0x940/0xb80
[  625.499942]  __se_sys_sendto+0x107/0x130
[  625.499942]  __x64_sys_sendto+0x6e/0x90
[  625.499942]  do_syscall_64+0xcf/0x110
[  625.499942]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  625.499942] 
[  625.499942] Uninit was stored to memory at:
[  625.499942]  kmsan_internal_chain_origin+0x136/0x240
[  625.499942]  __msan_chain_origin+0x6d/0xb0
[  625.499942]  __save_stack_trace+0x8be/0xc60
[  625.499942]  save_stack_trace+0xc6/0x110
[  625.499942]  kmsan_internal_chain_origin+0x136/0x240
[  625.499942]  kmsan_memcpy_origins+0x13d/0x190
[  625.499942]  __msan_memcpy+0x6f/0x80
[  625.499942]  skb_copy_bits+0x1d2/0xc90
[  625.499942]  skb_copy+0x56c/0xba0
[  625.499942]  tcp_send_synack+0x7a3/0x18f0
[  625.499942]  tcp_rcv_state_process+0x275d/0x6c60
[  625.499942]  tcp_v4_do_rcv+0xb25/0xd80
[  625.499942]  __release_sock+0x32d/0x750
[  625.499942]  release_sock+0x99/0x2a0
[  625.499942]  __inet_stream_connect+0xdff/0x15d0
[  625.499942]  tcp_sendmsg_locked+0x6655/0x6c30
[  625.499942]  tcp_sendmsg+0xb2/0x100
[  625.499942]  inet_sendmsg+0x4e9/0x800
[  625.499942]  __sys_sendto+0x940/0xb80
[  625.499942]  __se_sys_sendto+0x107/0x130
[  625.499942]  __x64_sys_sendto+0x6e/0x90
[  625.499942]  do_syscall_64+0xcf/0x110
[  625.499942]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  625.499942] 
[  625.499942] Uninit was stored to memory at:
[  625.499942]  kmsan_internal_chain_origin+0x136/0x240
[  625.499942]  __msan_chain_origin+0x6d/0xb0
[  625.499942]  __save_stack_trace+0x8be/0xc60
[  625.499942]  save_stack_trace+0xc6/0x110
[  625.499942]  kmsan_internal_chain_origin+0x136/0x240
[  625.499942]  kmsan_memcpy_origins+0x13d/0x190
[  625.499942]  __msan_memcpy+0x6f/0x80
[  625.499942]  skb_copy_bits+0x1d2/0xc90
[  625.499942]  skb_copy+0x56c/0xba0
[  625.499942]  tcp_send_synack+0x7a3/0x18f0
[  625.499942]  tcp_rcv_state_process+0x275d/0x6c60
[  625.499942]  tcp_v4_do_rcv+0xb25/0xd80
[  625.499942]  __release_sock+0x32d/0x750
[  625.499942]  release_sock+0x99/0x2a0
[  625.499942]  __inet_stream_connect+0xdff/0x15d0
[  625.499942]  tcp_sendmsg_locked+0x6655/0x6c30
[  625.499942]  tcp_sendmsg+0xb2/0x100
[  625.499942]  inet_sendmsg+0x4e9/0x800
[  625.499942]  __sys_sendto+0x940/0xb80
[  625.499942]  __se_sys_sendto+0x107/0x130
[  625.499942]  __x64_sys_sendto+0x6e/0x90
[  625.499942]  do_syscall_64+0xcf/0x110
[  625.499942]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  625.499942] 
[  625.499942] Uninit was stored to memory at:
[  625.499942]  kmsan_internal_chain_origin+0x136/0x240
[  625.499942]  __msan_chain_origin+0x6d/0xb0
[  625.499942]  __save_stack_trace+0x8be/0xc60
[  625.499942]  save_stack_trace+0xc6/0x110
[  625.499942]  kmsan_internal_chain_origin+0x136/0x240
[  625.499942]  kmsan_memcpy_origins+0x13d/0x190
[  625.499942]  __msan_memcpy+0x6f/0x80
[  625.499942]  skb_copy_bits+0x1d2/0xc90
[  625.499942]  skb_copy+0x56c/0xba0
[  625.499942]  tcp_send_synack+0x7a3/0x18f0
[  625.499942]  tcp_rcv_state_process+0x275d/0x6c60
[  625.499942]  tcp_v4_do_rcv+0xb25/0xd80
[  625.499942]  __release_sock+0x32d/0x750
[  625.499942]  release_sock+0x99/0x2a0
[  625.499942]  __inet_stream_connect+0xdff/0x15d0
[  625.499942]  tcp_sendmsg_locked+0x6655/0x6c30
[  625.499942]  tcp_sendmsg+0xb2/0x100
[  625.499942]  inet_sendmsg+0x4e9/0x800
[  625.499942]  __sys_sendto+0x940/0xb80
[  625.499942]  __se_sys_sendto+0x107/0x130
[  625.499942]  __x64_sys_sendto+0x6e/0x90
[  625.499942]  do_syscall_64+0xcf/0x110
[  625.499942]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  625.499942] 
[  625.499942] Uninit was stored to memory at:
[  625.499942]  kmsan_internal_chain_origin+0x136/0x240
[  625.499942]  __msan_chain_origin+0x6d/0xb0
[  625.499942]  __save_stack_trace+0x8be/0xc60
[  625.499942]  save_stack_trace+0xc6/0x110
[  625.499942]  kmsan_internal_chain_origin+0x136/0x240
[  625.499942]  kmsan_memcpy_origins+0x13d/0x190
[  625.499942]  __msan_memcpy+0x6f/0x80
[  625.499942]  skb_copy_bits+0x1d2/0xc90
[  625.499942]  skb_copy+0x56c/0xba0
[  625.499942]  tcp_send_synack+0x7a3/0x18f0
[  625.499942]  tcp_rcv_state_process+0x275d/0x6c60
[  625.499942]  tcp_v4_do_rcv+0xb25/0xd80
[  625.499942]  __release_sock+0x32d/0x750
[  625.499942]  release_sock+0x99/0x2a0
[  625.499942]  __inet_stream_connect+0xdff/0x15d0
[  625.499942]  tcp_sendmsg_locked+0x6655/0x6c30
[  625.499942]  tcp_sendmsg+0xb2/0x100
[  625.499942]  inet_sendmsg+0x4e9/0x800
[  625.499942]  __sys_sendto+0x940/0xb80
[  625.499942]  __se_sys_sendto+0x107/0x130
[  625.499942]  __x64_sys_sendto+0x6e/0x90
[  625.499942]  do_syscall_64+0xcf/0x110
[  625.499942]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  625.499942] 
[  625.499942] Uninit was stored to memory at:
[  625.499942]  kmsan_internal_chain_origin+0x136/0x240
[  625.499942]  __msan_chain_origin+0x6d/0xb0
[  625.499942]  __save_stack_trace+0x8be/0xc60
[  625.499942]  save_stack_trace+0xc6/0x110
[  625.499942]  kmsan_internal_chain_origin+0x136/0x240
[  625.499942]  kmsan_memcpy_origins+0x13d/0x190
[  625.499942]  __msan_memcpy+0x6f/0x80
[  625.499942]  skb_copy_bits+0x1d2/0xc90
[  625.499942]  skb_copy+0x56c/0xba0
[  625.499942]  tcp_send_synack+0x7a3/0x18f0
[  625.499942]  tcp_rcv_state_process+0x275d/0x6c60
[  625.499942]  tcp_v4_do_rcv+0xb25/0xd80
[  625.499942]  __release_sock+0x32d/0x750
[  625.499942]  release_sock+0x99/0x2a0
[  625.499942]  __inet_stream_connect+0xdff/0x15d0
[  625.499942]  tcp_sendmsg_locked+0x6655/0x6c30
[  625.499942]  tcp_sendmsg+0xb2/0x100
[  625.499942]  inet_sendmsg+0x4e9/0x800
[  625.499942]  __sys_sendto+0x940/0xb80
[  625.499942]  __se_sys_sendto+0x107/0x130
[  625.499942]  __x64_sys_sendto+0x6e/0x90
[  625.499942]  do_syscall_64+0xcf/0x110
[  625.499942]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  625.499942] 
[  625.499942] Local variable description: ----_tcph.i@ip_vs_in
[  625.499942] Variable was created at:
[  625.499942]  ip_vs_in+0xe9/0x3250
[  625.499942]  ip_vs_local_request4+0xec/0x130
08:52:14 executing program 0:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
fstat(r0, &(0x7f0000000140))
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000340)='/dev/dlm_plock\x00', 0x400, 0x0)
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000440)={<r3=>0x0, @local, @dev}, &(0x7f0000000480)=0xc)
connect$can_bcm(r2, &(0x7f00000004c0)={0x1d, r3}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000080)={'eql\x00', 0x809})
poll(&(0x7f00000002c0)=[{r5}], 0x1, 0x0)
ioctl$sock_ifreq(r4, 0x8914, &(0x7f00000000c0)={"65716c000000a95b00", @ifru_mtu=0x1})
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
r6 = memfd_create(&(0x7f0000000100)='.@(\x00', 0x0)
ioctl$VIDIOC_TRY_FMT(r6, 0xc0d05640, &(0x7f0000000200)={0xb, @pix_mp={0x6770, 0x0, 0x7f734f6f, 0x4, 0x7, [{0xca, 0x8}, {0x8, 0xfffffffffffffff9}, {0x0, 0x4}, {0x8, 0x7}, {0x100, 0x1}, {0x5}, {0x7}, {0x1ff}], 0x0, 0x8, 0x7}})
vmsplice(r2, &(0x7f0000000300), 0x0, 0x9)
r7 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r6, 0x801c581f, &(0x7f0000000300)={0x1, 0x0, 0x9, 0x4, 0x3})
ioctl$DRM_IOCTL_CONTROL(r7, 0x40086414, &(0x7f00000000c0)={0x0, 0x100})
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

08:52:14 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
socket$inet6(0xa, 0x800, 0xfa0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
ioctl(r0, 0x8ab0, &(0x7f0000000000)="d39e9aa3bf65e0d56f97cbc70f7c61e0188b06efcbb71112d0ffffff7f509c80f89fd3c5202f745089d181249250ce09186a810000004c28a92a1d")

08:52:14 executing program 2:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
r1 = syz_open_dev$media(&(0x7f0000000080)='/dev/media#\x00', 0x9, 0x8000)
r2 = syz_genetlink_get_family_id$team(&(0x7f0000000100)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000440)={'team0\x00', <r3=>0x0})
getsockopt$inet6_mreq(0xffffffffffffff9c, 0x29, 0x1c, &(0x7f0000000480)={@mcast1, <r4=>0x0}, &(0x7f00000004c0)=0x14)
sendmsg$TEAM_CMD_NOOP(r1, &(0x7f0000000600)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x84}, 0xc, &(0x7f00000005c0)={&(0x7f0000000500)={0x98, r2, 0x300, 0x70bd2c, 0x25dfdbfe, {}, [{{0x8, 0x1, r3}, {0x7c, 0x2, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8}, {0x8, 0x4, r4}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0x8}}}]}}]}, 0x98}, 0x1, 0x0, 0x0, 0x801}, 0x1)
write(r0, &(0x7f0000000ec0)="89f9d765312b4001000000b0967bdae72ee5094371136a6477ba0a51a2969dbc2d4028ac7b5af67f178f9314ea2bb3ac1c442eaf749c21ae2af8e39a40c3dc032e6f8eb738786a79df71302ff3b5d42731597d995bed6103ff63b9a908bcc05e0400000092bdf4d3282f62d6928117f82c2dae48742dac857de846096e82c1a02e1edcadda721a3f8dc9a54da05d467ed35b6f931d8686986960e756048c61c2a2c374c318d21d7a7ef550779190066e82ea3f6724a9f61ff028ec7e8d7a04352e7a78f777a68b823abb646bdc55dbde285ce15bf45820f0ae20e4023f57c71f8b41e08eff14c3441485c6f54a30750c780852dad879d6d4be7243bd07f841f89009000000c23d6b4f70fe48b54577449cfcbc4d5dbefb8b465d45bc2d11afbe7bfbe6ca76ac259e634eebf8db694ff02fe2b4c80783b443ef68287e9cf7cbcc2ee196f10c4ffb3f59e4921e0f9f08cba9a2c56c49fa7465b4836da5b2d9b142763889caa718d8a4fcb2f3ef6dc6185708fb1e0f9081d29fb3defae8c525f07437c7835b4eac8f86e2a22a81eff4120340e4a379446aac45dbff791d147805cd2748d74b8996c9b51ec03b410ef8fe126117fbf106795bc1b25d8dd786b6496bd743b7c75c638b516214ff56ec99a9c0f2919fa781cd8b4f2f2e425a6780c630a05c8e60011bc8e10055a6b6b652e5a13c73fd96f79038a65d6991ac38899ab98486d92bbcffdcf39a08a248ae1045ff8c6123de2f15d9ac360a3497c07001a3a1936ff1c03194ace131d380f515629ff016bd890ff822704c0db8bc68efad2eace5466628e7d6c2f2b3043698c46fdd62588fc54b72a786af0d026353879892c58007f7988a3f2240a43303218cc1df27807bfbde117c505f060396850a82459830a89a6a8601ea2e47f2e41379d110b96576f8f7705bba7ec63d6b44ccf84073cf9bdcf1aee48cb60c2f6dd3e89f3626a5e23339ea99c918d76a43fecf7401f7550e8eaefa4d84f1143320599daf7699858b2bf408e9093aa91d6dd9ae39d8decf3f7a199b0c1918d47be3b7aeff9a8c10efabe787b43141e7abaa4317158864b0361568140ab79cade1223c3ef81da4c4eefdd5b21fcc1b87872fc3b346737105589b84ba9814679b7510ed9b4f290083ee634ae12243ccc63413d7bc35eee0d1a4bc9dd33c37f5130303edddfc2636ffbf1ee0febb953436710c2ed9bd001d2ebe878788ddf7f7ad55b7a8cbcb348e82cd65b59315858086606115d04a3cda0e4af2a703afe09e4afedf00d5fbb2284df9af1d1ec9f15356c58fdcde45fff250568347f3b0b49e11e44c0a4d98a1e3393ce5d76614990f23b2e146842b166fb070894c128f957b0cc7d80a16275efd15659e0f81990062ebfdf9454d12e63d1ce1dad7848fcbab642a0d62ebb17abc824883e4c6e1e81992f28f5bbd7b26e2645c7941b03dd2f27c29baa2412976a05fa13d8fc4d6bd152a8668d986a9cf605b8b4a61600481e01bdd74c96d73390518add968100ac742aaf5dd7eb4ccf0868ee3ef7f12c32298737dea65bd5d7161dd679b4dd6799aa086bf3b8c889780ac102b7b1ebcf2569dd77f201d74d94a61400ced9c613414012b451628a96e6cc8fe738e964940f7b753065677776f3b5398975aeac974fced560667cead03a8976eb4229ff4e1bca5588d5d544cbca8588215a2f5ef7a5fc1a07438d3a3e05d21eb30d46f1688543d4327d36e07635396eaab4e9bc862ee9c7fa24de38c5cbf8fa5afd024116bc84854d01072145ecc4bb415d94a333e0d91e9cf6fda5a2c244a585e3a32c95398f44800c578faf4a2ccc5979664db7a55aa5cc02789f84321ccaeed4f37dd48c8d1484ade0588fc4255ec8780534a693e2bfe88b622034552084492c6757429239bbe8dad8b904e58007639ca773344040a441dc0027a46c22198f3d0b0588e164881a9fc7a85a63c459b0d002e3d890edd250742d363e85250badb91a734759baf773c32b177d36eefb662be70", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)

08:52:14 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/sequencer\x00', 0x0, 0x0)
openat$cgroup_procs(r1, &(0x7f00000000c0)='cgroup.procs\x00', 0x2, 0x0)
recvmsg(r1, &(0x7f0000000380)={&(0x7f0000000100)=@ipx, 0x80, &(0x7f0000000180)=[{&(0x7f0000001480)=""/4096, 0x1000}, {&(0x7f0000000200)=""/165, 0xa5}], 0x2, &(0x7f00000002c0)=""/137, 0x89, 0x1bd}, 0x2003)

08:52:14 executing program 5:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
fstat(r0, &(0x7f0000000140))
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000340)='/dev/dlm_plock\x00', 0x400, 0x0)
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000440)={<r3=>0x0, @local, @dev}, &(0x7f0000000480)=0xc)
connect$can_bcm(r2, &(0x7f00000004c0)={0x1d, r3}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000080)={'eql\x00', 0x809})
poll(&(0x7f00000002c0)=[{r5}], 0x1, 0x0)
ioctl$sock_ifreq(r4, 0x8914, &(0x7f00000000c0)={"65716c000000a95b00", @ifru_mtu=0x1})
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
r6 = memfd_create(&(0x7f0000000100)='.@(\x00', 0x0)
ioctl$VIDIOC_TRY_FMT(r6, 0xc0d05640, &(0x7f0000000200)={0xb, @pix_mp={0x6770, 0x0, 0x7f734f6f, 0x4, 0x7, [{0xca, 0x8}, {0x8, 0xfffffffffffffff9}, {0x0, 0x4}, {0x8, 0x7}, {0x100, 0x1}, {0x5}, {0x7}, {0x1ff}], 0x0, 0x8, 0x7}})
vmsplice(r2, &(0x7f0000000300), 0x0, 0x9)
r7 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r6, 0x801c581f, &(0x7f0000000300)={0x1, 0x0, 0x9, 0x4, 0x3})
ioctl$DRM_IOCTL_CONTROL(r7, 0x40086414, &(0x7f00000000c0)={0x0, 0x100})
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

08:52:14 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$inet(0x10, 0x3, 0xc)
sendmsg(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)

[  627.672441] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
[  627.716523] not chained 490000 origins
[  627.720444] CPU: 1 PID: 16532 Comm: syz-executor5 Not tainted 4.20.0-rc2+ #88
[  627.722219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  627.722219] Call Trace:
[  627.722219]  dump_stack+0x32d/0x480
[  627.722219]  kmsan_internal_chain_origin+0x222/0x240
[  627.722219]  ? save_stack_trace+0xc6/0x110
[  627.722219]  ? __irqentry_text_end+0x1fa056/0x1fa056
[  627.722219]  ? kmsan_internal_chain_origin+0x90/0x240
[  627.722219]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  627.722219]  ? is_bpf_text_address+0x49e/0x4d0
[  627.722219]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  627.722219]  ? in_task_stack+0x12c/0x210
[  627.722219]  __msan_chain_origin+0x6d/0xb0
[  627.722219]  ? tcp_v4_do_rcv+0xb25/0xd80
[  627.722219]  __save_stack_trace+0x8be/0xc60
[  627.722219]  ? tcp_v4_do_rcv+0xb25/0xd80
[  627.722219]  save_stack_trace+0xc6/0x110
[  627.722219]  kmsan_internal_chain_origin+0x136/0x240
[  627.722219]  ? kmsan_internal_chain_origin+0x136/0x240
[  627.722219]  ? kmsan_memcpy_origins+0x13d/0x190
[  627.722219]  ? __msan_memcpy+0x6f/0x80
[  627.722219]  ? skb_copy_bits+0x1d2/0xc90
[  627.722219]  ? skb_copy+0x56c/0xba0
[  627.722219]  ? tcp_send_synack+0x7a3/0x18f0
[  627.722219]  ? tcp_rcv_state_process+0x275d/0x6c60
[  627.722219]  ? tcp_v4_do_rcv+0xb25/0xd80
[  627.722219]  ? __release_sock+0x32d/0x750
[  627.722219]  ? release_sock+0x99/0x2a0
[  627.722219]  ? __inet_stream_connect+0xdff/0x15d0
[  627.722219]  ? tcp_sendmsg_locked+0x6655/0x6c30
[  627.722219]  ? tcp_sendmsg+0xb2/0x100
[  627.722219]  ? inet_sendmsg+0x4e9/0x800
[  627.722219]  ? __sys_sendto+0x940/0xb80
[  627.722219]  ? __se_sys_sendto+0x107/0x130
[  627.722219]  ? __x64_sys_sendto+0x6e/0x90
[  627.722219]  ? do_syscall_64+0xcf/0x110
[  627.722219]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  627.722219]  ? memcg_kmem_put_cache+0x73/0x460
[  627.722219]  ? __kmalloc_node_track_caller+0x1010/0x14e0
[  627.722219]  ? __msan_get_context_state+0x9/0x20
[  627.722219]  ? INIT_INT+0xc/0x30
[  627.722219]  ? __kmalloc_node_track_caller+0x369/0x14e0
[  627.722219]  ? __msan_get_context_state+0x9/0x20
[  627.722219]  kmsan_memcpy_origins+0x13d/0x190
[  627.722219]  __msan_memcpy+0x6f/0x80
[  627.722219]  skb_copy_bits+0x1d2/0xc90
[  627.722219]  skb_copy+0x56c/0xba0
[  627.722219]  tcp_send_synack+0x7a3/0x18f0
[  627.722219]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  627.722219]  tcp_rcv_state_process+0x275d/0x6c60
[  627.722219]  tcp_v4_do_rcv+0xb25/0xd80
[  627.722219]  ? __local_bh_enable_ip+0x11f/0x260
[  627.722219]  ? inet_sk_rx_dst_set+0x200/0x200
[  627.722219]  __release_sock+0x32d/0x750
[  627.722219]  release_sock+0x99/0x2a0
[  627.722219]  __inet_stream_connect+0xdff/0x15d0
[  627.722219]  ? wait_woken+0x5b0/0x5b0
[  627.722219]  tcp_sendmsg_locked+0x6655/0x6c30
[  627.722219]  ? aa_label_sk_perm+0xda/0x960
[  627.722219]  ? kmsan_set_origin+0x7f/0x100
[  627.722219]  ? kmsan_internal_unpoison_shadow+0x83/0xd0
[  627.722219]  ? __msan_poison_alloca+0x1e0/0x270
[  627.722219]  ? __local_bh_enable_ip+0x46/0x260
[  627.722219]  ? __msan_poison_alloca+0x1e0/0x270
[  627.722219]  tcp_sendmsg+0xb2/0x100
[  627.722219]  ? tcp_sendmsg_locked+0x6c30/0x6c30
[  627.722219]  inet_sendmsg+0x4e9/0x800
[  627.722219]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  627.722219]  ? security_socket_sendmsg+0x1bd/0x200
[  627.722219]  ? inet_getname+0x490/0x490
[  627.722219]  __sys_sendto+0x940/0xb80
[  627.722219]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  627.722219]  ? prepare_exit_to_usermode+0x182/0x4c0
[  627.722219]  __se_sys_sendto+0x107/0x130
[  627.722219]  __x64_sys_sendto+0x6e/0x90
[  627.722219]  do_syscall_64+0xcf/0x110
[  627.722219]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  627.722219] RIP: 0033:0x457569
[  627.722219] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  627.722219] RSP: 002b:00007f41e42a8c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  627.722219] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000457569
[  627.722219] RDX: 0000000000000275 RSI: 00000000200000c0 RDI: 0000000000000003
[  627.722219] RBP: 000000000072bf00 R08: 0000000020000040 R09: 0000000000000010
[  627.722219] R10: 0000000020000802 R11: 0000000000000246 R12: 00007f41e42a96d4
[  627.722219] R13: 00000000004c3c11 R14: 00000000004d5e80 R15: 00000000ffffffff
[  627.722219] Uninit was stored to memory at:
[  627.722219]  kmsan_internal_chain_origin+0x136/0x240
[  627.722219]  __msan_chain_origin+0x6d/0xb0
[  627.722219]  __save_stack_trace+0x8be/0xc60
[  627.722219]  save_stack_trace+0xc6/0x110
[  627.722219]  kmsan_internal_chain_origin+0x136/0x240
[  627.722219]  kmsan_memcpy_origins+0x13d/0x190
[  627.722219]  __msan_memcpy+0x6f/0x80
[  627.722219]  skb_copy_bits+0x1d2/0xc90
[  627.722219]  skb_copy+0x56c/0xba0
[  627.722219]  tcp_send_synack+0x7a3/0x18f0
[  627.722219]  tcp_rcv_state_process+0x275d/0x6c60
[  627.722219]  tcp_v4_do_rcv+0xb25/0xd80
[  627.722219]  __release_sock+0x32d/0x750
[  627.722219]  release_sock+0x99/0x2a0
[  627.722219]  __inet_stream_connect+0xdff/0x15d0
[  627.722219]  tcp_sendmsg_locked+0x6655/0x6c30
[  627.722219]  tcp_sendmsg+0xb2/0x100
[  627.722219]  inet_sendmsg+0x4e9/0x800
[  627.722219]  __sys_sendto+0x940/0xb80
[  627.722219]  __se_sys_sendto+0x107/0x130
[  627.722219]  __x64_sys_sendto+0x6e/0x90
[  627.722219]  do_syscall_64+0xcf/0x110
[  627.722219]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  627.722219] 
[  627.722219] Uninit was stored to memory at:
[  627.722219]  kmsan_internal_chain_origin+0x136/0x240
[  627.722219]  __msan_chain_origin+0x6d/0xb0
[  627.722219]  __save_stack_trace+0x8be/0xc60
[  627.722219]  save_stack_trace+0xc6/0x110
[  627.722219]  kmsan_internal_chain_origin+0x136/0x240
[  627.722219]  kmsan_memcpy_origins+0x13d/0x190
[  627.722219]  __msan_memcpy+0x6f/0x80
[  627.722219]  skb_copy_bits+0x1d2/0xc90
[  627.722219]  skb_copy+0x56c/0xba0
[  627.722219]  tcp_send_synack+0x7a3/0x18f0
[  627.722219]  tcp_rcv_state_process+0x275d/0x6c60
[  627.722219]  tcp_v4_do_rcv+0xb25/0xd80
[  627.722219]  __release_sock+0x32d/0x750
[  627.722219]  release_sock+0x99/0x2a0
[  627.722219]  __inet_stream_connect+0xdff/0x15d0
[  627.722219]  tcp_sendmsg_locked+0x6655/0x6c30
[  627.722219]  tcp_sendmsg+0xb2/0x100
[  627.722219]  inet_sendmsg+0x4e9/0x800
[  627.722219]  __sys_sendto+0x940/0xb80
[  627.722219]  __se_sys_sendto+0x107/0x130
[  627.722219]  __x64_sys_sendto+0x6e/0x90
[  627.722219]  do_syscall_64+0xcf/0x110
[  627.722219]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  627.722219] 
[  627.722219] Uninit was stored to memory at:
[  627.722219]  kmsan_internal_chain_origin+0x136/0x240
[  627.722219]  __msan_chain_origin+0x6d/0xb0
[  627.722219]  __save_stack_trace+0x8be/0xc60
[  627.722219]  save_stack_trace+0xc6/0x110
[  627.722219]  kmsan_internal_chain_origin+0x136/0x240
[  627.722219]  kmsan_memcpy_origins+0x13d/0x190
[  627.722219]  __msan_memcpy+0x6f/0x80
[  627.722219]  skb_copy_bits+0x1d2/0xc90
[  627.722219]  skb_copy+0x56c/0xba0
[  627.722219]  tcp_send_synack+0x7a3/0x18f0
[  627.722219]  tcp_rcv_state_process+0x275d/0x6c60
[  627.722219]  tcp_v4_do_rcv+0xb25/0xd80
[  627.722219]  __release_sock+0x32d/0x750
[  627.722219]  release_sock+0x99/0x2a0
[  627.722219]  __inet_stream_connect+0xdff/0x15d0
[  627.722219]  tcp_sendmsg_locked+0x6655/0x6c30
[  627.722219]  tcp_sendmsg+0xb2/0x100
[  627.722219]  inet_sendmsg+0x4e9/0x800
[  627.722219]  __sys_sendto+0x940/0xb80
[  627.722219]  __se_sys_sendto+0x107/0x130
[  627.722219]  __x64_sys_sendto+0x6e/0x90
[  627.722219]  do_syscall_64+0xcf/0x110
[  627.722219]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  627.722219] 
[  627.722219] Uninit was stored to memory at:
[  627.722219]  kmsan_internal_chain_origin+0x136/0x240
[  627.722219]  __msan_chain_origin+0x6d/0xb0
[  627.722219]  __save_stack_trace+0x8be/0xc60
[  627.722219]  save_stack_trace+0xc6/0x110
[  627.722219]  kmsan_internal_chain_origin+0x136/0x240
[  627.722219]  kmsan_memcpy_origins+0x13d/0x190
[  627.722219]  __msan_memcpy+0x6f/0x80
[  627.722219]  skb_copy_bits+0x1d2/0xc90
[  627.722219]  skb_copy+0x56c/0xba0
[  627.722219]  tcp_send_synack+0x7a3/0x18f0
[  627.722219]  tcp_rcv_state_process+0x275d/0x6c60
[  627.722219]  tcp_v4_do_rcv+0xb25/0xd80
[  627.722219]  __release_sock+0x32d/0x750
[  627.722219]  release_sock+0x99/0x2a0
[  627.722219]  __inet_stream_connect+0xdff/0x15d0
[  627.722219]  tcp_sendmsg_locked+0x6655/0x6c30
[  627.722219]  tcp_sendmsg+0xb2/0x100
[  627.722219]  inet_sendmsg+0x4e9/0x800
[  627.722219]  __sys_sendto+0x940/0xb80
[  627.722219]  __se_sys_sendto+0x107/0x130
[  627.722219]  __x64_sys_sendto+0x6e/0x90
[  627.722219]  do_syscall_64+0xcf/0x110
[  627.722219]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  627.722219] 
[  627.722219] Uninit was stored to memory at:
[  627.722219]  kmsan_internal_chain_origin+0x136/0x240
[  627.722219]  __msan_chain_origin+0x6d/0xb0
[  627.722219]  __save_stack_trace+0x8be/0xc60
[  627.722219]  save_stack_trace+0xc6/0x110
[  627.722219]  kmsan_internal_chain_origin+0x136/0x240
[  627.722219]  kmsan_memcpy_origins+0x13d/0x190
[  627.722219]  __msan_memcpy+0x6f/0x80
[  627.722219]  skb_copy_bits+0x1d2/0xc90
[  627.722219]  skb_copy+0x56c/0xba0
[  627.722219]  tcp_send_synack+0x7a3/0x18f0
[  627.722219]  tcp_rcv_state_process+0x275d/0x6c60
[  627.722219]  tcp_v4_do_rcv+0xb25/0xd80
[  627.722219]  __release_sock+0x32d/0x750
[  627.722219]  release_sock+0x99/0x2a0
[  627.722219]  __inet_stream_connect+0xdff/0x15d0
[  627.722219]  tcp_sendmsg_locked+0x6655/0x6c30
[  627.722219]  tcp_sendmsg+0xb2/0x100
[  627.722219]  inet_sendmsg+0x4e9/0x800
[  627.722219]  __sys_sendto+0x940/0xb80
[  627.722219]  __se_sys_sendto+0x107/0x130
[  627.722219]  __x64_sys_sendto+0x6e/0x90
[  627.722219]  do_syscall_64+0xcf/0x110
[  627.722219]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  627.722219] 
[  627.722219] Uninit was stored to memory at:
[  627.722219]  kmsan_internal_chain_origin+0x136/0x240
[  627.722219]  __msan_chain_origin+0x6d/0xb0
[  627.722219]  __save_stack_trace+0x8be/0xc60
[  627.722219]  save_stack_trace+0xc6/0x110
[  627.722219]  kmsan_internal_chain_origin+0x136/0x240
[  627.722219]  kmsan_memcpy_origins+0x13d/0x190
[  627.722219]  __msan_memcpy+0x6f/0x80
[  627.722219]  skb_copy_bits+0x1d2/0xc90
[  627.722219]  skb_copy+0x56c/0xba0
[  627.722219]  tcp_send_synack+0x7a3/0x18f0
[  627.722219]  tcp_rcv_state_process+0x275d/0x6c60
[  627.722219]  tcp_v4_do_rcv+0xb25/0xd80
[  627.722219]  __release_sock+0x32d/0x750
[  627.722219]  release_sock+0x99/0x2a0
[  627.722219]  __inet_stream_connect+0xdff/0x15d0
[  627.722219]  tcp_sendmsg_locked+0x6655/0x6c30
[  627.722219]  tcp_sendmsg+0xb2/0x100
[  627.722219]  inet_sendmsg+0x4e9/0x800
[  627.722219]  __sys_sendto+0x940/0xb80
[  627.722219]  __se_sys_sendto+0x107/0x130
[  627.722219]  __x64_sys_sendto+0x6e/0x90
[  627.722219]  do_syscall_64+0xcf/0x110
[  627.722219]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  627.722219] 
[  627.722219] Uninit was stored to memory at:
[  627.722219]  kmsan_internal_chain_origin+0x136/0x240
[  627.722219]  __msan_chain_origin+0x6d/0xb0
[  627.722219]  __save_stack_trace+0x8be/0xc60
[  627.722219]  save_stack_trace+0xc6/0x110
[  627.722219]  kmsan_internal_chain_origin+0x136/0x240
[  627.722219]  kmsan_memcpy_origins+0x13d/0x190
[  627.722219]  __msan_memcpy+0x6f/0x80
[  627.722219]  skb_copy_bits+0x1d2/0xc90
[  627.722219]  skb_copy+0x56c/0xba0
[  627.722219]  tcp_send_synack+0x7a3/0x18f0
[  627.722219]  tcp_rcv_state_process+0x275d/0x6c60
[  627.722219]  tcp_v4_do_rcv+0xb25/0xd80
[  627.722219]  __release_sock+0x32d/0x750
[  627.722219]  release_sock+0x99/0x2a0
[  627.722219]  __inet_stream_connect+0xdff/0x15d0
[  627.722219]  tcp_sendmsg_locked+0x6655/0x6c30
[  627.722219]  tcp_sendmsg+0xb2/0x100
[  627.722219]  inet_sendmsg+0x4e9/0x800
[  627.722219]  __sys_sendto+0x940/0xb80
[  627.722219]  __se_sys_sendto+0x107/0x130
[  627.722219]  __x64_sys_sendto+0x6e/0x90
[  627.722219]  do_syscall_64+0xcf/0x110
[  627.722219]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  627.722219] 
[  627.722219] Local variable description: ----_tcph.i@ip_vs_in
[  627.722219] Variable was created at:
[  627.722219]  ip_vs_in+0xe9/0x3250
[  627.722219]  ip_vs_local_request4+0xec/0x130
08:52:15 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
socket$inet6(0xa, 0x800, 0xfa0)
ioctl(r0, 0x8ab0, &(0x7f0000000000)="d39e9aa3bf65e0d56f97cbc70f7c61e0188b06efcbb71112d0ffffff7f509c80f89fd3c5202f745089d181249250ce09186a810000004c28a92a1d")

08:52:16 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$inet(0x10, 0x3, 0xc)
r2 = syz_open_dev$mouse(&(0x7f0000000100)='/dev/input/mouse#\x00', 0x2, 0x80040)
ioctl$VIDIOC_QUERY_DV_TIMINGS(r2, 0x80845663, &(0x7f0000000140)={0x0, @reserved})
sendmsg(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)

08:52:16 executing program 4:
r0 = syz_open_dev$dspn(&(0x7f00000000c0)='/dev/dsp#\x00', 0x1, 0x141000)
ioctl$SNDRV_CTL_IOCTL_TLV_COMMAND(r0, 0xc008551c, &(0x7f0000000100)={0x7fffffff, 0x10, [0x100, 0x4b7f8, 0x7f, 0xddf]})
r1 = socket$inet(0x2, 0x6000040000000001, 0x0)
ioctl$FS_IOC_FIEMAP(r1, 0xc020660b, &(0x7f0000000140)={0x58b, 0x100000000, 0x1, 0x8, 0x1, [{0x4, 0x1b1, 0x100000001, 0x0, 0x0, 0x1}]})
sync_file_range(r1, 0x7, 0x8, 0x101)
bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r1, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x2400, 0x8)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r1, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r1, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
r2 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm-monitor\x00', 0x900, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x1)

08:52:16 executing program 2:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
r1 = syz_open_dev$media(&(0x7f0000000080)='/dev/media#\x00', 0x9, 0x8000)
r2 = syz_genetlink_get_family_id$team(&(0x7f0000000100)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000440)={'team0\x00', <r3=>0x0})
getsockopt$inet6_mreq(0xffffffffffffff9c, 0x29, 0x1c, &(0x7f0000000480)={@mcast1, <r4=>0x0}, &(0x7f00000004c0)=0x14)
sendmsg$TEAM_CMD_NOOP(r1, &(0x7f0000000600)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x84}, 0xc, &(0x7f00000005c0)={&(0x7f0000000500)={0x98, r2, 0x300, 0x70bd2c, 0x25dfdbfe, {}, [{{0x8, 0x1, r3}, {0x7c, 0x2, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8}, {0x8, 0x4, r4}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0x8}}}]}}]}, 0x98}, 0x1, 0x0, 0x0, 0x801}, 0x1)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)

08:52:16 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000100)={'syz', 0x0}, &(0x7f0000001540)="6cc092aa1d9672112fbcdc1ad8bdf54a7dc4bfba1ef26b175ef5b784a4f1d75ffca4c078fd1718167640a01cde39d5cc87417d0d7282d4c01a50e2d759d61de58ee54c0806", 0x45, 0xfffffffffffffff9)
keyctl$get_keyring_id(0x0, r1, 0x4)
socket$inet(0x10, 0x3, 0xc)
sendmsg(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100), 0x38, 0x0, 0xfffffffffffffe5a}, 0x0)
r2 = memfd_create(&(0x7f0000000000)='^&,\x00', 0x2)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000001480)={&(0x7f0000000140)=@can, 0x80, &(0x7f00000017c0)=[{&(0x7f00000001c0)=""/248, 0xffffffffffffff4e}, {&(0x7f00000002c0)=""/200, 0xc8}, {&(0x7f0000001800)=""/4096, 0x1000}], 0x10000000000000a5, &(0x7f0000001400)=""/119, 0x77, 0x6}, 0x0)
ioctl$KVM_XEN_HVM_CONFIG(r2, 0x4038ae7a, &(0x7f0000001780)={0x8, 0xbee, &(0x7f00000015c0)="c5f642350da844b5047a706ee7e7cf056222211c4b6f64f0e021e1324660c2f7d73ea79d6a69c43a6eaf24ae2922cdce6a2ae9997a361b5aee71b2e776eeeb066f5f9234bae9cc9ea4963a1146d3c45654827ee0e792818d81bb369300d1d3175bf281346170a1813e687b88b86c0eea78d910d842566e4961103941d197b5051504195397c585ab2be34a87f9f537ebecdc95abd2fa038dc7d059d1a7bb3f39a1ff004bb0d1bb8b06e54e4f8380d458c4f01b11dca0d453b8c40f66a49a4405d382470b5f4a6ea281d76f5800229aaee0604ca4886c330e6be653e6dda1f47607c956e59f2d08d1", &(0x7f00000016c0)="2e7e269ee70f8ad96edb9aa533390405b0fef252b8eacb7fe1b9154081886815b9c5a4da5a79a3eff9dfe3e136a5e483addd8b7cdb064b62444eb6822134a9fe0f4b81e1611d33e75770c1075b4b77a9fecae55100a76d2671b20154ab7d26782c1f71c150ee9c8359f7cf6134a03f0947d90a3698c2d2c0c31433b96c827f7b3c81659017ed9d00c70e4c1fa1ac7e93b48534bf0c2d26", 0xe8, 0x97})

08:52:16 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
ioctl(r0, 0x8ab0, &(0x7f0000000000)="d39e9aa3bf65e0d56f97cbc70f7c61e0188b06efcbb71112d0ffffff7f509c80f89fd3c5202f745089d181249250ce09186a810000004c28a92a1d")

[  629.545087] not chained 500000 origins
[  629.549033] CPU: 0 PID: 16556 Comm: syz-executor2 Not tainted 4.20.0-rc2+ #88
[  629.552244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  629.563947] Call Trace:
[  629.563947]  dump_stack+0x32d/0x480
[  629.563947]  ? save_stack_trace+0xc6/0x110
[  629.563947]  kmsan_internal_chain_origin+0x222/0x240
[  629.563947]  ? kmsan_internal_chain_origin+0x136/0x240
[  629.563947]  ? __msan_chain_origin+0x6d/0xb0
[  629.563947]  ? __save_stack_trace+0x8be/0xc60
[  629.563947]  ? save_stack_trace+0xc6/0x110
[  629.597696]  ? kmsan_internal_chain_origin+0x136/0x240
[  629.597696]  ? kmsan_memcpy_origins+0x13d/0x190
[  629.597696]  ? __msan_memcpy+0x6f/0x80
[  629.597696]  ? pskb_expand_head+0x436/0x1d20
[  629.597696]  ? iptunnel_handle_offloads+0x455/0x810
[  629.597696]  ? ipip_tunnel_xmit+0x15d/0x4a0
[  629.597696]  ? dev_hard_start_xmit+0x6dc/0xde0
[  629.597696]  ? __dev_queue_xmit+0x2d9e/0x3e00
[  629.597696]  ? dev_queue_xmit+0x4b/0x60
[  629.597696]  ? neigh_direct_output+0x42/0x50
[  629.597696]  ? ip_finish_output2+0x141a/0x1560
[  629.597696]  ? ip_finish_output+0xd93/0x10f0
[  629.597696]  ? ip_output+0x55c/0x630
[  629.597696]  ? __ip_queue_xmit+0x1bb5/0x2170
[  629.597696]  ? ip_queue_xmit+0xcc/0xf0
[  629.597696]  ? __tcp_transmit_skb+0x425c/0x5e00
[  629.597696]  ? tcp_write_xmit+0x389a/0xacc0
[  629.597696]  ? tcp_push_one+0x195/0x230
[  629.597696]  ? tcp_sendmsg_locked+0x456d/0x6c30
[  629.597696]  ? tcp_sendmsg+0xb2/0x100
[  629.597696]  ? inet_sendmsg+0x4e9/0x800
[  629.597696]  ? __sys_sendto+0x940/0xb80
[  629.597696]  ? __se_sys_sendto+0x107/0x130
[  629.597696]  ? __x64_sys_sendto+0x6e/0x90
[  629.597696]  ? do_syscall_64+0xcf/0x110
[  629.597696]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  629.597696]  ? kmsan_internal_chain_origin+0x136/0x240
[  629.597696]  ? __msan_chain_origin+0x6d/0xb0
[  629.597696]  ? save_stack_trace+0xfa/0x110
[  629.597696]  ? kmsan_internal_chain_origin+0x136/0x240
[  629.597696]  ? kmsan_memcpy_origins+0x13d/0x190
[  629.597696]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  629.597696]  ? in_task_stack+0x12c/0x210
[  629.597696]  __msan_chain_origin+0x6d/0xb0
[  629.597696]  ? __x64_sys_sendto+0x6e/0x90
[  629.597696]  __save_stack_trace+0x8be/0xc60
[  629.597696]  ? __x64_sys_sendto+0x6e/0x90
[  629.761318]  save_stack_trace+0xc6/0x110
[  629.761318]  kmsan_internal_chain_origin+0x136/0x240
[  629.761318]  ? tcp_push_one+0x195/0x230
[  629.761318]  ? kmsan_internal_chain_origin+0x136/0x240
[  629.780236]  ? kmsan_memcpy_origins+0x13d/0x190
[  629.786513]  ? __msan_memcpy+0x6f/0x80
[  629.786513]  ? pskb_expand_head+0x436/0x1d20
[  629.786513]  ? iptunnel_handle_offloads+0x455/0x810
[  629.786513]  ? ipip_tunnel_xmit+0x15d/0x4a0
[  629.786513]  ? dev_hard_start_xmit+0x6dc/0xde0
[  629.786513]  ? __dev_queue_xmit+0x2d9e/0x3e00
[  629.786513]  ? dev_queue_xmit+0x4b/0x60
[  629.786513]  ? neigh_direct_output+0x42/0x50
[  629.786513]  ? ip_finish_output2+0x141a/0x1560
[  629.786513]  ? ip_finish_output+0xd93/0x10f0
[  629.786513]  ? ip_output+0x55c/0x630
[  629.786513]  ? __ip_queue_xmit+0x1bb5/0x2170
[  629.786513]  ? ip_queue_xmit+0xcc/0xf0
[  629.786513]  ? __tcp_transmit_skb+0x425c/0x5e00
[  629.786513]  ? tcp_write_xmit+0x389a/0xacc0
[  629.786513]  ? tcp_push_one+0x195/0x230
[  629.786513]  ? tcp_sendmsg_locked+0x456d/0x6c30
[  629.863667]  ? tcp_sendmsg+0xb2/0x100
[  629.863808]  ? inet_sendmsg+0x4e9/0x800
[  629.868836]  ? __sys_sendto+0x940/0xb80
[  629.868836]  ? __se_sys_sendto+0x107/0x130
[  629.877924]  ? memcg_kmem_put_cache+0x73/0x460
[  629.881890]  ? __kmalloc_node_track_caller+0x1010/0x14e0
[  629.881890]  ? __msan_get_context_state+0x9/0x20
[  629.881890]  ? INIT_INT+0xc/0x30
[  629.881890]  ? __kmalloc_node_track_caller+0x369/0x14e0
[  629.903125]  kmsan_memcpy_origins+0x13d/0x190
[  629.904179]  __msan_memcpy+0x6f/0x80
[  629.904179]  pskb_expand_head+0x436/0x1d20
[  629.904179]  iptunnel_handle_offloads+0x455/0x810
[  629.904179]  ipip_tunnel_xmit+0x15d/0x4a0
[  629.904179]  ? ipip_tunnel_init+0x240/0x240
[  629.904179]  dev_hard_start_xmit+0x6dc/0xde0
[  629.904179]  __dev_queue_xmit+0x2d9e/0x3e00
[  629.904179]  dev_queue_xmit+0x4b/0x60
[  629.904179]  neigh_direct_output+0x42/0x50
[  629.904179]  ? neigh_connected_output+0x700/0x700
[  629.904179]  ip_finish_output2+0x141a/0x1560
[  629.952850]  ip_finish_output+0xd93/0x10f0
[  629.952850]  ip_output+0x55c/0x630
[  629.952850]  ? ip_mc_finish_output+0x440/0x440
[  629.952850]  ? ip_finish_output+0x10f0/0x10f0
[  629.952850]  __ip_queue_xmit+0x1bb5/0x2170
[  629.952850]  ? kmsan_set_origin+0x7f/0x100
[  629.952850]  ip_queue_xmit+0xcc/0xf0
[  629.952850]  ? dst_hold_safe+0x5d0/0x5d0
[  629.952850]  __tcp_transmit_skb+0x425c/0x5e00
[  629.952850]  tcp_write_xmit+0x389a/0xacc0
[  629.952850]  tcp_push_one+0x195/0x230
[  629.952850]  tcp_sendmsg_locked+0x456d/0x6c30
[  629.952850]  ? kmsan_internal_unpoison_shadow+0x30/0xd0
[  629.952850]  tcp_sendmsg+0xb2/0x100
[  629.952850]  ? tcp_sendmsg_locked+0x6c30/0x6c30
[  629.952850]  inet_sendmsg+0x4e9/0x800
[  629.952850]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  629.952850]  ? security_socket_sendmsg+0x1bd/0x200
[  629.952850]  ? inet_getname+0x490/0x490
[  629.952850]  __sys_sendto+0x940/0xb80
[  629.952850]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  629.952850]  ? prepare_exit_to_usermode+0x182/0x4c0
[  629.952850]  __se_sys_sendto+0x107/0x130
[  629.952850]  __x64_sys_sendto+0x6e/0x90
[  629.952850]  do_syscall_64+0xcf/0x110
[  629.952850]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  629.952850] RIP: 0033:0x457569
[  629.952850] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  629.952850] RSP: 002b:00007f84db90fc78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  629.952850] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000457569
[  629.952850] RDX: 00000000fffffdef RSI: 00000000200003c0 RDI: 0000000000000003
[  629.952850] RBP: 000000000072bf00 R08: 00000000200001c0 R09: 0000000000000010
[  629.952850] R10: 00000000000001f4 R11: 0000000000000246 R12: 00007f84db9106d4
[  629.952850] R13: 00000000004c3c11 R14: 00000000004d5e80 R15: 00000000ffffffff
[  629.952850] Uninit was stored to memory at:
[  629.952850]  kmsan_internal_chain_origin+0x136/0x240
[  629.952850]  __msan_chain_origin+0x6d/0xb0
[  629.952850]  __save_stack_trace+0x8be/0xc60
[  629.952850]  save_stack_trace+0xc6/0x110
[  629.952850]  kmsan_internal_chain_origin+0x136/0x240
[  629.952850]  kmsan_memcpy_origins+0x13d/0x190
[  629.952850]  __msan_memcpy+0x6f/0x80
[  629.952850]  pskb_expand_head+0x436/0x1d20
[  629.952850]  iptunnel_handle_offloads+0x455/0x810
[  629.952850]  ipip_tunnel_xmit+0x15d/0x4a0
[  629.952850]  dev_hard_start_xmit+0x6dc/0xde0
[  629.952850]  __dev_queue_xmit+0x2d9e/0x3e00
[  629.952850]  dev_queue_xmit+0x4b/0x60
[  629.952850]  neigh_direct_output+0x42/0x50
[  629.952850]  ip_finish_output2+0x141a/0x1560
[  629.952850]  ip_finish_output+0xd93/0x10f0
[  629.952850]  ip_output+0x55c/0x630
[  629.952850]  __ip_queue_xmit+0x1bb5/0x2170
[  629.952850]  ip_queue_xmit+0xcc/0xf0
[  629.952850]  __tcp_transmit_skb+0x425c/0x5e00
[  629.952850]  tcp_write_xmit+0x389a/0xacc0
[  629.952850]  tcp_push_one+0x195/0x230
[  629.952850]  tcp_sendmsg_locked+0x456d/0x6c30
[  629.952850]  tcp_sendmsg+0xb2/0x100
[  629.952850]  inet_sendmsg+0x4e9/0x800
[  629.952850]  __sys_sendto+0x940/0xb80
[  630.250111]  __se_sys_sendto+0x107/0x130
[  630.250111]  __x64_sys_sendto+0x6e/0x90
[  630.250111]  do_syscall_64+0xcf/0x110
[  630.250111]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  630.250111] 
[  630.269226] Uninit was stored to memory at:
[  630.269226]  kmsan_internal_chain_origin+0x136/0x240
[  630.269226]  __msan_chain_origin+0x6d/0xb0
[  630.269226]  __save_stack_trace+0x8be/0xc60
[  630.269226]  save_stack_trace+0xc6/0x110
[  630.269226]  kmsan_internal_chain_origin+0x136/0x240
[  630.269226]  kmsan_memcpy_origins+0x13d/0x190
[  630.298577]  __msan_memcpy+0x6f/0x80
[  630.298577]  pskb_expand_head+0x436/0x1d20
[  630.298577]  iptunnel_handle_offloads+0x455/0x810
[  630.298577]  ipip_tunnel_xmit+0x15d/0x4a0
[  630.298577]  dev_hard_start_xmit+0x6dc/0xde0
[  630.298577]  __dev_queue_xmit+0x2d9e/0x3e00
[  630.327008]  dev_queue_xmit+0x4b/0x60
[  630.327008]  neigh_direct_output+0x42/0x50
[  630.327008]  ip_finish_output2+0x141a/0x1560
[  630.327008]  ip_finish_output+0xd93/0x10f0
[  630.327008]  ip_output+0x55c/0x630
[  630.327008]  __ip_queue_xmit+0x1bb5/0x2170
[  630.327008]  ip_queue_xmit+0xcc/0xf0
[  630.327008]  __tcp_transmit_skb+0x425c/0x5e00
[  630.327008]  tcp_write_xmit+0x389a/0xacc0
[  630.327008]  tcp_push_one+0x195/0x230
[  630.327008]  tcp_sendmsg_locked+0x456d/0x6c30
[  630.327008]  tcp_sendmsg+0xb2/0x100
[  630.327008]  inet_sendmsg+0x4e9/0x800
[  630.327008]  __sys_sendto+0x940/0xb80
[  630.327008]  __se_sys_sendto+0x107/0x130
[  630.327008]  __x64_sys_sendto+0x6e/0x90
[  630.327008]  do_syscall_64+0xcf/0x110
[  630.327008]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  630.327008] 
[  630.327008] Uninit was stored to memory at:
[  630.327008]  kmsan_internal_chain_origin+0x136/0x240
[  630.327008]  __msan_chain_origin+0x6d/0xb0
[  630.327008]  __save_stack_trace+0x8be/0xc60
[  630.327008]  save_stack_trace+0xc6/0x110
[  630.422457]  kmsan_internal_chain_origin+0x136/0x240
[  630.422457]  kmsan_memcpy_origins+0x13d/0x190
[  630.422457]  __msan_memcpy+0x6f/0x80
[  630.422457]  pskb_expand_head+0x436/0x1d20
[  630.422457]  iptunnel_handle_offloads+0x455/0x810
[  630.422457]  ipip_tunnel_xmit+0x15d/0x4a0
[  630.422457]  dev_hard_start_xmit+0x6dc/0xde0
[  630.422457]  __dev_queue_xmit+0x2d9e/0x3e00
[  630.422457]  dev_queue_xmit+0x4b/0x60
[  630.422457]  neigh_direct_output+0x42/0x50
[  630.422457]  ip_finish_output2+0x141a/0x1560
[  630.422457]  ip_finish_output+0xd93/0x10f0
[  630.422457]  ip_output+0x55c/0x630
[  630.422457]  __ip_queue_xmit+0x1bb5/0x2170
[  630.422457]  ip_queue_xmit+0xcc/0xf0
[  630.422457]  __tcp_transmit_skb+0x425c/0x5e00
[  630.422457]  tcp_write_xmit+0x389a/0xacc0
[  630.422457]  tcp_push_one+0x195/0x230
[  630.422457]  tcp_sendmsg_locked+0x456d/0x6c30
[  630.422457]  tcp_sendmsg+0xb2/0x100
[  630.422457]  inet_sendmsg+0x4e9/0x800
[  630.422457]  __sys_sendto+0x940/0xb80
[  630.516578]  __se_sys_sendto+0x107/0x130
[  630.520894]  __x64_sys_sendto+0x6e/0x90
[  630.524692]  do_syscall_64+0xcf/0x110
[  630.528621]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  630.530823] 
[  630.530823] Uninit was stored to memory at:
[  630.530823]  kmsan_internal_chain_origin+0x136/0x240
[  630.530823]  __msan_chain_origin+0x6d/0xb0
[  630.530823]  __save_stack_trace+0x8be/0xc60
[  630.530823]  save_stack_trace+0xc6/0x110
[  630.530823]  kmsan_internal_chain_origin+0x136/0x240
[  630.560754]  kmsan_memcpy_origins+0x13d/0x190
[  630.560754]  __msan_memcpy+0x6f/0x80
[  630.570305]  pskb_expand_head+0x436/0x1d20
[  630.573875]  iptunnel_handle_offloads+0x455/0x810
[  630.573875]  ipip_tunnel_xmit+0x15d/0x4a0
[  630.583706]  dev_hard_start_xmit+0x6dc/0xde0
[  630.588776]  __dev_queue_xmit+0x2d9e/0x3e00
[  630.590890]  dev_queue_xmit+0x4b/0x60
[  630.593476]  neigh_direct_output+0x42/0x50
[  630.593476]  ip_finish_output2+0x141a/0x1560
[  630.593476]  ip_finish_output+0xd93/0x10f0
[  630.593476]  ip_output+0x55c/0x630
[  630.593476]  __ip_queue_xmit+0x1bb5/0x2170
[  630.593476]  ip_queue_xmit+0xcc/0xf0
[  630.593476]  __tcp_transmit_skb+0x425c/0x5e00
[  630.593476]  tcp_write_xmit+0x389a/0xacc0
[  630.593476]  tcp_push_one+0x195/0x230
[  630.593476]  tcp_sendmsg_locked+0x456d/0x6c30
[  630.593476]  tcp_sendmsg+0xb2/0x100
[  630.593476]  inet_sendmsg+0x4e9/0x800
[  630.593476]  __sys_sendto+0x940/0xb80
[  630.648677]  __se_sys_sendto+0x107/0x130
[  630.653020]  __x64_sys_sendto+0x6e/0x90
[  630.656455]  do_syscall_64+0xcf/0x110
[  630.656455]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  630.666528] 
[  630.668041] Uninit was stored to memory at:
[  630.672110]  kmsan_internal_chain_origin+0x136/0x240
[  630.675494]  __msan_chain_origin+0x6d/0xb0
[  630.678136]  __save_stack_trace+0x8be/0xc60
[  630.678136]  save_stack_trace+0xc6/0x110
[  630.678136]  kmsan_internal_chain_origin+0x136/0x240
[  630.678136]  kmsan_memcpy_origins+0x13d/0x190
[  630.678136]  __msan_memcpy+0x6f/0x80
[  630.678136]  pskb_expand_head+0x436/0x1d20
[  630.678136]  iptunnel_handle_offloads+0x455/0x810
[  630.678136]  ipip_tunnel_xmit+0x15d/0x4a0
[  630.678136]  dev_hard_start_xmit+0x6dc/0xde0
[  630.720734]  __dev_queue_xmit+0x2d9e/0x3e00
[  630.725101]  dev_queue_xmit+0x4b/0x60
[  630.729530]  neigh_direct_output+0x42/0x50
[  630.733470]  ip_finish_output2+0x141a/0x1560
[  630.735448]  ip_finish_output+0xd93/0x10f0
[  630.735448]  ip_output+0x55c/0x630
[  630.735448]  __ip_queue_xmit+0x1bb5/0x2170
[  630.735448]  ip_queue_xmit+0xcc/0xf0
[  630.735448]  __tcp_transmit_skb+0x425c/0x5e00
[  630.735448]  tcp_write_xmit+0x389a/0xacc0
[  630.735448]  tcp_push_one+0x195/0x230
[  630.735448]  tcp_sendmsg_locked+0x456d/0x6c30
[  630.771126]  tcp_sendmsg+0xb2/0x100
[  630.772635]  inet_sendmsg+0x4e9/0x800
[  630.777143]  __sys_sendto+0x940/0xb80
[  630.781494]  __se_sys_sendto+0x107/0x130
[  630.785828]  __x64_sys_sendto+0x6e/0x90
[  630.790415]  do_syscall_64+0xcf/0x110
[  630.793440]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  630.799195] 
[  630.801096] Uninit was stored to memory at:
[  630.805032]  kmsan_internal_chain_origin+0x136/0x240
[  630.809891]  __msan_chain_origin+0x6d/0xb0
[  630.813616]  __save_stack_trace+0x8be/0xc60
[  630.816795]  save_stack_trace+0xc6/0x110
[  630.816795]  kmsan_internal_chain_origin+0x136/0x240
[  630.816795]  kmsan_memcpy_origins+0x13d/0x190
[  630.816795]  __msan_memcpy+0x6f/0x80
[  630.816795]  pskb_expand_head+0x436/0x1d20
[  630.816795]  iptunnel_handle_offloads+0x455/0x810
[  630.845628]  ipip_tunnel_xmit+0x15d/0x4a0
[  630.849744]  dev_hard_start_xmit+0x6dc/0xde0
[  630.853986]  __dev_queue_xmit+0x2d9e/0x3e00
[  630.858128]  dev_queue_xmit+0x4b/0x60
[  630.862373]  neigh_direct_output+0x42/0x50
[  630.866555]  ip_finish_output2+0x141a/0x1560
[  630.870621]  ip_finish_output+0xd93/0x10f0
[  630.874870]  ip_output+0x55c/0x630
[  630.877811]  __ip_queue_xmit+0x1bb5/0x2170
[  630.881982]  ip_queue_xmit+0xcc/0xf0
[  630.886354]  __tcp_transmit_skb+0x425c/0x5e00
[  630.890575]  tcp_write_xmit+0x389a/0xacc0
[  630.894787]  tcp_push_one+0x195/0x230
[  630.899038]  tcp_sendmsg_locked+0x456d/0x6c30
[  630.903222]  tcp_sendmsg+0xb2/0x100
[  630.907276]  inet_sendmsg+0x4e9/0x800
[  630.911514]  __sys_sendto+0x940/0xb80
[  630.914239]  __se_sys_sendto+0x107/0x130
[  630.918437]  __x64_sys_sendto+0x6e/0x90
[  630.922661]  do_syscall_64+0xcf/0x110
[  630.926735]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  630.932240] 
[  630.933607] Uninit was stored to memory at:
[  630.937855]  kmsan_internal_chain_origin+0x136/0x240
[  630.943382]  __msan_chain_origin+0x6d/0xb0
[  630.947483]  __save_stack_trace+0x8be/0xc60
[  630.950964]  save_stack_trace+0xc6/0x110
[  630.954927]  kmsan_internal_chain_origin+0x136/0x240
[  630.960259]  kmsan_memcpy_origins+0x13d/0x190
[  630.965364]  __msan_memcpy+0x6f/0x80
[  630.969197]  pskb_expand_head+0x436/0x1d20
[  630.972968]  iptunnel_handle_offloads+0x455/0x810
[  630.978235]  ipip_tunnel_xmit+0x15d/0x4a0
[  630.982166]  dev_hard_start_xmit+0x6dc/0xde0
[  630.986072]  __dev_queue_xmit+0x2d9e/0x3e00
[  630.991291]  dev_queue_xmit+0x4b/0x60
[  630.995052]  neigh_direct_output+0x42/0x50
[  630.998923]  ip_finish_output2+0x141a/0x1560
[  631.002768]  ip_finish_output+0xd93/0x10f0
[  631.008001]  ip_output+0x55c/0x630
[  631.011830]  __ip_queue_xmit+0x1bb5/0x2170
[  631.015637]  ip_queue_xmit+0xcc/0xf0
[  631.019493]  __tcp_transmit_skb+0x425c/0x5e00
[  631.023396]  tcp_write_xmit+0x389a/0xacc0
[  631.027343]  tcp_push_one+0x195/0x230
[  631.031240]  tcp_sendmsg_locked+0x456d/0x6c30
[  631.036425]  tcp_sendmsg+0xb2/0x100
[  631.040230]  inet_sendmsg+0x4e9/0x800
[  631.044140]  __sys_sendto+0x940/0xb80
[  631.047964]  __se_sys_sendto+0x107/0x130
[  631.051779]  __x64_sys_sendto+0x6e/0x90
[  631.055674]  do_syscall_64+0xcf/0x110
[  631.059491]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  631.064561] 
[  631.065849] Local variable description: ----target@nf_nat_icmp_reply_translation
[  631.073490] Variable was created at:
[  631.077396]  nf_nat_icmp_reply_translation+0x9b/0xa80
[  631.082507]  nf_nat_ipv4_out+0x22b/0x7c0
08:52:18 executing program 0:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
fstat(r0, &(0x7f0000000140))
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000340)='/dev/dlm_plock\x00', 0x400, 0x0)
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000440)={<r3=>0x0, @local, @dev}, &(0x7f0000000480)=0xc)
connect$can_bcm(r2, &(0x7f00000004c0)={0x1d, r3}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000080)={'eql\x00', 0x809})
poll(&(0x7f00000002c0)=[{r5}], 0x1, 0x0)
ioctl$sock_ifreq(r4, 0x8914, &(0x7f00000000c0)={"65716c000000a95b00", @ifru_mtu=0x1})
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
r6 = memfd_create(&(0x7f0000000100)='.@(\x00', 0x0)
ioctl$VIDIOC_TRY_FMT(r6, 0xc0d05640, &(0x7f0000000200)={0xb, @pix_mp={0x6770, 0x0, 0x7f734f6f, 0x4, 0x7, [{0xca, 0x8}, {0x8, 0xfffffffffffffff9}, {0x0, 0x4}, {0x8, 0x7}, {0x100, 0x1}, {0x5}, {0x7}, {0x1ff}], 0x0, 0x8, 0x7}})
vmsplice(r2, &(0x7f0000000300), 0x0, 0x9)
r7 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r6, 0x801c581f, &(0x7f0000000300)={0x1, 0x0, 0x9, 0x4, 0x3})
ioctl$DRM_IOCTL_CONTROL(r7, 0x40086414, &(0x7f00000000c0)={0x0, 0x100})
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

08:52:18 executing program 3:
socketpair$unix(0x1, 0x4, 0x0, &(0x7f0000000100)={<r0=>0xffffffffffffffff})
r1 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0xff, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x1000)
ioctl$FS_IOC_GETFSLABEL(r0, 0x81009431, &(0x7f0000000140))
r2 = socket$inet(0x10, 0x100000000003, 0xc)
sendmsg(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)

08:52:18 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x100, 0x0)
ioctl$EVIOCGKEY(r1, 0x80404518, &(0x7f00000000c0)=""/13)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f0000000100)={0x0, 0x101000, 0xb8700, 0x1f, 0x5})
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

08:52:18 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
ioctl(r0, 0x8ab0, &(0x7f0000000000)="d39e9aa3bf65e0d56f97cbc70f7c61e0188b06efcbb71112d0ffffff7f509c80f89fd3c5202f745089d181249250ce09186a810000004c28a92a1d")

[  631.952090] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
[  632.004850] not chained 510000 origins
[  632.008766] CPU: 1 PID: 16575 Comm: syz-executor4 Not tainted 4.20.0-rc2+ #88
[  632.012536] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  632.017156] Call Trace:
[  632.017156]  dump_stack+0x32d/0x480
[  632.017156]  ? save_stack_trace+0xc6/0x110
[  632.035932]  kmsan_internal_chain_origin+0x222/0x240
[  632.035932]  ? kmsan_internal_chain_origin+0x136/0x240
[  632.035932]  ? __msan_chain_origin+0x6d/0xb0
[  632.035932]  ? __save_stack_trace+0x8be/0xc60
[  632.035932]  ? save_stack_trace+0xc6/0x110
[  632.035932]  ? kmsan_internal_chain_origin+0x136/0x240
[  632.035932]  ? kmsan_memcpy_origins+0x13d/0x190
[  632.035932]  ? __msan_memcpy+0x6f/0x80
[  632.035932]  ? pskb_expand_head+0x436/0x1d20
[  632.035932]  ? tcp_trim_head+0x214/0x9b0
[  632.035932]  ? tcp_ack+0x3193/0xa010
[  632.035932]  ? tcp_rcv_established+0xf7e/0x2940
[  632.035932]  ? tcp_v4_do_rcv+0x686/0xd80
[  632.035932]  ? __release_sock+0x32d/0x750
[  632.035932]  ? __sk_flush_backlog+0x52/0x70
[  632.035932]  ? tcp_sendmsg_locked+0xd72/0x6c30
[  632.035932]  ? tcp_sendmsg+0xb2/0x100
[  632.035932]  ? inet_sendmsg+0x4e9/0x800
[  632.035932]  ? __sys_sendto+0x940/0xb80
[  632.035932]  ? __se_sys_sendto+0x107/0x130
[  632.035932]  ? __x64_sys_sendto+0x6e/0x90
[  632.035932]  ? do_syscall_64+0xcf/0x110
[  632.035932]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  632.035932]  ? is_bpf_text_address+0x49e/0x4d0
[  632.035932]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  632.035932]  ? __module_address+0x6a/0x5f0
[  632.035932]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  632.035932]  ? is_bpf_text_address+0x49e/0x4d0
[  632.035932]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  632.035932]  ? in_task_stack+0x12c/0x210
[  632.035932]  __msan_chain_origin+0x6d/0xb0
[  632.035932]  ? __release_sock+0x32d/0x750
[  632.035932]  __save_stack_trace+0x8be/0xc60
[  632.035932]  ? __release_sock+0x32d/0x750
[  632.035932]  save_stack_trace+0xc6/0x110
[  632.035932]  kmsan_internal_chain_origin+0x136/0x240
[  632.035932]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  632.035932]  ? kmsan_internal_chain_origin+0x136/0x240
[  632.035932]  ? kmsan_memcpy_origins+0x13d/0x190
[  632.035932]  ? __msan_memcpy+0x6f/0x80
[  632.035932]  ? pskb_expand_head+0x436/0x1d20
[  632.035932]  ? tcp_trim_head+0x214/0x9b0
[  632.035932]  ? tcp_ack+0x3193/0xa010
[  632.035932]  ? tcp_rcv_established+0xf7e/0x2940
[  632.035932]  ? tcp_v4_do_rcv+0x686/0xd80
[  632.035932]  ? __release_sock+0x32d/0x750
[  632.035932]  ? __sk_flush_backlog+0x52/0x70
[  632.035932]  ? tcp_sendmsg_locked+0xd72/0x6c30
[  632.035932]  ? tcp_sendmsg+0xb2/0x100
[  632.035932]  ? inet_sendmsg+0x4e9/0x800
[  632.035932]  ? __sys_sendto+0x940/0xb80
[  632.035932]  ? __se_sys_sendto+0x107/0x130
[  632.035932]  ? __x64_sys_sendto+0x6e/0x90
[  632.035932]  ? do_syscall_64+0xcf/0x110
[  632.035932]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  632.035932]  ? memcg_kmem_put_cache+0x73/0x460
[  632.035932]  ? __kmalloc_node_track_caller+0x1010/0x14e0
[  632.035932]  ? __msan_get_context_state+0x9/0x20
[  632.035932]  ? INIT_INT+0xc/0x30
[  632.035932]  ? __kmalloc_node_track_caller+0x369/0x14e0
[  632.035932]  kmsan_memcpy_origins+0x13d/0x190
[  632.035932]  __msan_memcpy+0x6f/0x80
[  632.035932]  pskb_expand_head+0x436/0x1d20
[  632.035932]  tcp_trim_head+0x214/0x9b0
[  632.035932]  tcp_ack+0x3193/0xa010
[  632.035932]  tcp_rcv_established+0xf7e/0x2940
[  632.035932]  ? __msan_get_context_state+0x9/0x20
[  632.035932]  tcp_v4_do_rcv+0x686/0xd80
[  632.035932]  ? inet_sk_rx_dst_set+0x200/0x200
[  632.035932]  __release_sock+0x32d/0x750
[  632.035932]  __sk_flush_backlog+0x52/0x70
[  632.035932]  ? tcp_v4_init_sock+0xc0/0xc0
[  632.035932]  tcp_sendmsg_locked+0xd72/0x6c30
[  632.035932]  ? kmsan_internal_unpoison_shadow+0x30/0xd0
[  632.035932]  tcp_sendmsg+0xb2/0x100
[  632.035932]  ? tcp_sendmsg_locked+0x6c30/0x6c30
[  632.035932]  inet_sendmsg+0x4e9/0x800
[  632.035932]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  632.035932]  ? security_socket_sendmsg+0x1bd/0x200
[  632.035932]  ? inet_getname+0x490/0x490
[  632.035932]  __sys_sendto+0x940/0xb80
[  632.035932]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  632.035932]  ? prepare_exit_to_usermode+0x182/0x4c0
[  632.035932]  __se_sys_sendto+0x107/0x130
[  632.035932]  __x64_sys_sendto+0x6e/0x90
[  632.035932]  do_syscall_64+0xcf/0x110
[  632.035932]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  632.035932] RIP: 0033:0x457569
[  632.035932] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  632.035932] RSP: 002b:00007fe2bd024c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  632.035932] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000457569
[  632.035932] RDX: 00000000fffffdef RSI: 00000000200003c0 RDI: 0000000000000003
[  632.035932] RBP: 000000000072bf00 R08: 00000000200001c0 R09: 0000000000000010
[  632.035932] R10: 00000000000001f4 R11: 0000000000000246 R12: 00007fe2bd0256d4
[  632.035932] R13: 00000000004c3c11 R14: 00000000004d5e80 R15: 00000000ffffffff
[  632.035932] Uninit was stored to memory at:
[  632.035932]  kmsan_internal_chain_origin+0x136/0x240
[  632.035932]  __msan_chain_origin+0x6d/0xb0
[  632.035932]  __save_stack_trace+0x8be/0xc60
[  632.035932]  save_stack_trace+0xc6/0x110
[  632.035932]  kmsan_internal_chain_origin+0x136/0x240
[  632.035932]  kmsan_memcpy_origins+0x13d/0x190
[  632.035932]  __msan_memcpy+0x6f/0x80
[  632.035932]  pskb_expand_head+0x436/0x1d20
[  632.035932]  tcp_trim_head+0x214/0x9b0
[  632.035932]  tcp_ack+0x3193/0xa010
[  632.035932]  tcp_rcv_established+0xf7e/0x2940
[  632.035932]  tcp_v4_do_rcv+0x686/0xd80
[  632.035932]  __release_sock+0x32d/0x750
[  632.035932]  __sk_flush_backlog+0x52/0x70
[  632.035932]  tcp_sendmsg_locked+0xd72/0x6c30
[  632.035932]  tcp_sendmsg+0xb2/0x100
[  632.035932]  inet_sendmsg+0x4e9/0x800
[  632.035932]  __sys_sendto+0x940/0xb80
[  632.035932]  __se_sys_sendto+0x107/0x130
[  632.035932]  __x64_sys_sendto+0x6e/0x90
[  632.035932]  do_syscall_64+0xcf/0x110
[  632.035932]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  632.035932] 
[  632.035932] Uninit was stored to memory at:
[  632.035932]  kmsan_internal_chain_origin+0x136/0x240
[  632.035932]  __msan_chain_origin+0x6d/0xb0
[  632.035932]  __save_stack_trace+0x8be/0xc60
[  632.035932]  save_stack_trace+0xc6/0x110
[  632.035932]  kmsan_internal_chain_origin+0x136/0x240
[  632.035932]  kmsan_memcpy_origins+0x13d/0x190
[  632.035932]  __msan_memcpy+0x6f/0x80
[  632.035932]  pskb_expand_head+0x436/0x1d20
[  632.035932]  tcp_trim_head+0x214/0x9b0
[  632.035932]  tcp_ack+0x3193/0xa010
[  632.035932]  tcp_rcv_established+0xf7e/0x2940
[  632.035932]  tcp_v4_do_rcv+0x686/0xd80
[  632.035932]  __release_sock+0x32d/0x750
[  632.035932]  __sk_flush_backlog+0x52/0x70
[  632.035932]  tcp_sendmsg_locked+0xd72/0x6c30
[  632.035932]  tcp_sendmsg+0xb2/0x100
[  632.035932]  inet_sendmsg+0x4e9/0x800
[  632.035932]  __sys_sendto+0x940/0xb80
[  632.035932]  __se_sys_sendto+0x107/0x130
[  632.035932]  __x64_sys_sendto+0x6e/0x90
[  632.035932]  do_syscall_64+0xcf/0x110
[  632.035932]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  632.035932] 
[  632.035932] Uninit was stored to memory at:
[  632.035932]  kmsan_internal_chain_origin+0x136/0x240
[  632.035932]  __msan_chain_origin+0x6d/0xb0
[  632.035932]  __save_stack_trace+0x8be/0xc60
[  632.035932]  save_stack_trace+0xc6/0x110
[  632.035932]  kmsan_internal_chain_origin+0x136/0x240
[  632.035932]  kmsan_memcpy_origins+0x13d/0x190
[  632.035932]  __msan_memcpy+0x6f/0x80
[  632.035932]  pskb_expand_head+0x436/0x1d20
[  632.035932]  tcp_trim_head+0x214/0x9b0
[  632.035932]  tcp_ack+0x3193/0xa010
[  632.035932]  tcp_rcv_established+0xf7e/0x2940
[  632.035932]  tcp_v4_do_rcv+0x686/0xd80
[  632.035932]  __release_sock+0x32d/0x750
[  632.035932]  __sk_flush_backlog+0x52/0x70
[  632.035932]  tcp_sendmsg_locked+0xd72/0x6c30
[  632.035932]  tcp_sendmsg+0xb2/0x100
[  632.035932]  inet_sendmsg+0x4e9/0x800
[  632.035932]  __sys_sendto+0x940/0xb80
[  632.035932]  __se_sys_sendto+0x107/0x130
[  632.035932]  __x64_sys_sendto+0x6e/0x90
[  632.035932]  do_syscall_64+0xcf/0x110
[  632.035932]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  632.035932] 
[  632.035932] Uninit was stored to memory at:
[  632.035932]  kmsan_internal_chain_origin+0x136/0x240
[  632.035932]  __msan_chain_origin+0x6d/0xb0
[  632.035932]  __save_stack_trace+0x8be/0xc60
[  632.035932]  save_stack_trace+0xc6/0x110
[  632.035932]  kmsan_internal_chain_origin+0x136/0x240
[  632.035932]  kmsan_memcpy_origins+0x13d/0x190
[  632.035932]  __msan_memcpy+0x6f/0x80
[  632.035932]  pskb_expand_head+0x436/0x1d20
[  632.035932]  tcp_trim_head+0x214/0x9b0
[  632.035932]  tcp_ack+0x3193/0xa010
[  632.035932]  tcp_rcv_established+0xf7e/0x2940
[  632.035932]  tcp_v4_do_rcv+0x686/0xd80
[  632.035932]  __release_sock+0x32d/0x750
[  632.035932]  __sk_flush_backlog+0x52/0x70
[  632.035932]  tcp_sendmsg_locked+0xd72/0x6c30
[  632.035932]  tcp_sendmsg+0xb2/0x100
[  632.035932]  inet_sendmsg+0x4e9/0x800
[  632.035932]  __sys_sendto+0x940/0xb80
[  632.035932]  __se_sys_sendto+0x107/0x130
[  632.035932]  __x64_sys_sendto+0x6e/0x90
[  632.035932]  do_syscall_64+0xcf/0x110
[  632.035932]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  632.035932] 
[  632.035932] Uninit was stored to memory at:
[  632.035932]  kmsan_internal_chain_origin+0x136/0x240
[  632.035932]  __msan_chain_origin+0x6d/0xb0
[  632.035932]  __save_stack_trace+0x8be/0xc60
[  632.035932]  save_stack_trace+0xc6/0x110
[  632.035932]  kmsan_internal_chain_origin+0x136/0x240
[  632.035932]  kmsan_memcpy_origins+0x13d/0x190
[  632.035932]  __msan_memcpy+0x6f/0x80
[  632.035932]  pskb_expand_head+0x436/0x1d20
[  632.035932]  tcp_trim_head+0x214/0x9b0
[  632.035932]  tcp_ack+0x3193/0xa010
[  632.035932]  tcp_rcv_established+0xf7e/0x2940
[  632.035932]  tcp_v4_do_rcv+0x686/0xd80
[  632.035932]  __release_sock+0x32d/0x750
[  632.035932]  __sk_flush_backlog+0x52/0x70
[  632.035932]  tcp_sendmsg_locked+0xd72/0x6c30
[  632.035932]  tcp_sendmsg+0xb2/0x100
[  632.035932]  inet_sendmsg+0x4e9/0x800
[  632.035932]  __sys_sendto+0x940/0xb80
[  632.035932]  __se_sys_sendto+0x107/0x130
[  632.035932]  __x64_sys_sendto+0x6e/0x90
[  632.035932]  do_syscall_64+0xcf/0x110
[  632.035932]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  632.035932] 
[  632.035932] Uninit was stored to memory at:
[  632.035932]  kmsan_internal_chain_origin+0x136/0x240
[  632.035932]  __msan_chain_origin+0x6d/0xb0
[  632.035932]  __save_stack_trace+0x8be/0xc60
[  632.035932]  save_stack_trace+0xc6/0x110
[  632.035932]  kmsan_internal_chain_origin+0x136/0x240
[  632.035932]  kmsan_memcpy_origins+0x13d/0x190
[  632.035932]  __msan_memcpy+0x6f/0x80
[  632.035932]  pskb_expand_head+0x436/0x1d20
[  632.035932]  tcp_trim_head+0x214/0x9b0
[  632.035932]  tcp_ack+0x3193/0xa010
[  632.035932]  tcp_rcv_established+0xf7e/0x2940
[  632.035932]  tcp_v4_do_rcv+0x686/0xd80
[  632.035932]  __release_sock+0x32d/0x750
[  632.035932]  __sk_flush_backlog+0x52/0x70
[  632.035932]  tcp_sendmsg_locked+0xd72/0x6c30
[  632.035932]  tcp_sendmsg+0xb2/0x100
[  632.035932]  inet_sendmsg+0x4e9/0x800
[  632.035932]  __sys_sendto+0x940/0xb80
[  632.035932]  __se_sys_sendto+0x107/0x130
[  632.035932]  __x64_sys_sendto+0x6e/0x90
[  632.035932]  do_syscall_64+0xcf/0x110
[  632.035932]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  632.035932] 
[  632.035932] Uninit was stored to memory at:
[  632.035932]  kmsan_internal_chain_origin+0x136/0x240
[  632.035932]  __msan_chain_origin+0x6d/0xb0
[  632.035932]  __save_stack_trace+0x8be/0xc60
[  632.035932]  save_stack_trace+0xc6/0x110
[  632.035932]  kmsan_internal_chain_origin+0x136/0x240
[  632.035932]  kmsan_memcpy_origins+0x13d/0x190
[  632.035932]  __msan_memcpy+0x6f/0x80
[  632.035932]  pskb_expand_head+0x436/0x1d20
[  632.035932]  tcp_trim_head+0x214/0x9b0
[  632.035932]  tcp_ack+0x3193/0xa010
[  632.035932]  tcp_rcv_established+0xf7e/0x2940
[  632.035932]  tcp_v4_do_rcv+0x686/0xd80
[  632.035932]  __release_sock+0x32d/0x750
[  632.035932]  __sk_flush_backlog+0x52/0x70
[  632.035932]  tcp_sendmsg_locked+0xd72/0x6c30
[  632.035932]  tcp_sendmsg+0xb2/0x100
[  632.035932]  inet_sendmsg+0x4e9/0x800
[  632.035932]  __sys_sendto+0x940/0xb80
[  632.035932]  __se_sys_sendto+0x107/0x130
[  632.035932]  __x64_sys_sendto+0x6e/0x90
[  632.035932]  do_syscall_64+0xcf/0x110
[  632.035932]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  632.035932] 
[  632.035932] Local variable description: ----acpar@ipt_do_table
[  632.035932] Variable was created at:
[  632.035932]  ipt_do_table+0x97/0x29d0
[  632.035932]  iptable_mangle_hook+0x35b/0x730
08:52:20 executing program 5:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
fstat(r0, &(0x7f0000000140))
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000340)='/dev/dlm_plock\x00', 0x400, 0x0)
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000440)={<r3=>0x0, @local, @dev}, &(0x7f0000000480)=0xc)
connect$can_bcm(r2, &(0x7f00000004c0)={0x1d, r3}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000080)={'eql\x00', 0x809})
poll(&(0x7f00000002c0)=[{r5}], 0x1, 0x0)
ioctl$sock_ifreq(r4, 0x8914, &(0x7f00000000c0)={"65716c000000a95b00", @ifru_mtu=0x1})
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
r6 = memfd_create(&(0x7f0000000100)='.@(\x00', 0x0)
ioctl$VIDIOC_TRY_FMT(r6, 0xc0d05640, &(0x7f0000000200)={0xb, @pix_mp={0x6770, 0x0, 0x7f734f6f, 0x4, 0x7, [{0xca, 0x8}, {0x8, 0xfffffffffffffff9}, {0x0, 0x4}, {0x8, 0x7}, {0x100, 0x1}, {0x5}, {0x7}, {0x1ff}], 0x0, 0x8, 0x7}})
vmsplice(r2, &(0x7f0000000300), 0x0, 0x9)
r7 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r6, 0x801c581f, &(0x7f0000000300)={0x1, 0x0, 0x9, 0x4, 0x3})
ioctl$DRM_IOCTL_CONTROL(r7, 0x40086414, &(0x7f00000000c0)={0x0, 0x100})
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

08:52:20 executing program 2:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
r1 = syz_open_dev$media(&(0x7f0000000080)='/dev/media#\x00', 0x9, 0x8000)
r2 = syz_genetlink_get_family_id$team(&(0x7f0000000100)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000440)={'team0\x00', <r3=>0x0})
getsockopt$inet6_mreq(0xffffffffffffff9c, 0x29, 0x1c, &(0x7f0000000480)={@mcast1, <r4=>0x0}, &(0x7f00000004c0)=0x14)
sendmsg$TEAM_CMD_NOOP(r1, &(0x7f0000000600)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x84}, 0xc, &(0x7f00000005c0)={&(0x7f0000000500)={0x98, r2, 0x300, 0x70bd2c, 0x25dfdbfe, {}, [{{0x8, 0x1, r3}, {0x7c, 0x2, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8}, {0x8, 0x4, r4}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0x8}}}]}}]}, 0x98}, 0x1, 0x0, 0x0, 0x801}, 0x1)
write(r0, &(0x7f0000000ec0)="89f9d765312b4001000000b0967bdae72ee5094371136a6477ba0a51a2969dbc2d4028ac7b5af67f178f9314ea2bb3ac1c442eaf749c21ae2af8e39a40c3dc032e6f8eb738786a79df71302ff3b5d42731597d995bed6103ff63b9a908bcc05e0400000092bdf4d3282f62d6928117f82c2dae48742dac857de846096e82c1a02e1edcadda721a3f8dc9a54da05d467ed35b6f931d8686986960e756048c61c2a2c374c318d21d7a7ef550779190066e82ea3f6724a9f61ff028ec7e8d7a04352e7a78f777a68b823abb646bdc55dbde285ce15bf45820f0ae20e4023f57c71f8b41e08eff14c3441485c6f54a30750c780852dad879d6d4be7243bd07f841f89009000000c23d6b4f70fe48b54577449cfcbc4d5dbefb8b465d45bc2d11afbe7bfbe6ca76ac259e634eebf8db694ff02fe2b4c80783b443ef68287e9cf7cbcc2ee196f10c4ffb3f59e4921e0f9f08cba9a2c56c49fa7465b4836da5b2d9b142763889caa718d8a4fcb2f3ef6dc6185708fb1e0f9081d29fb3defae8c525f07437c7835b4eac8f86e2a22a81eff4120340e4a379446aac45dbff791d147805cd2748d74b8996c9b51ec03b410ef8fe126117fbf106795bc1b25d8dd786b6496bd743b7c75c638b516214ff56ec99a9c0f2919fa781cd8b4f2f2e425a6780c630a05c8e60011bc8e10055a6b6b652e5a13c73fd96f79038a65d6991ac38899ab98486d92bbcffdcf39a08a248ae1045ff8c6123de2f15d9ac360a3497c07001a3a1936ff1c03194ace131d380f515629ff016bd890ff822704c0db8bc68efad2eace5466628e7d6c2f2b3043698c46fdd62588fc54b72a786af0d026353879892c58007f7988a3f2240a43303218cc1df27807bfbde117c505f060396850a82459830a89a6a8601ea2e47f2e41379d110b96576f8f7705bba7ec63d6b44ccf84073cf9bdcf1aee48cb60c2f6dd3e89f3626a5e23339ea99c918d76a43fecf7401f7550e8eaefa4d84f1143320599daf7699858b2bf408e9093aa91d6dd9ae39d8decf3f7a199b0c1918d47be3b7aeff9a8c10efabe787b43141e7abaa4317158864b0361568140ab79cade1223c3ef81da4c4eefdd5b21fcc1b87872fc3b346737105589b84ba9814679b7510ed9b4f290083ee634ae12243ccc63413d7bc35eee0d1a4bc9dd33c37f5130303edddfc2636ffbf1ee0febb953436710c2ed9bd001d2ebe878788ddf7f7ad55b7a8cbcb348e82cd65b59315858086606115d04a3cda0e4af2a703afe09e4afedf00d5fbb2284df9af1d1ec9f15356c58fdcde45fff250568347f3b0b49e11e44c0a4d98a1e3393ce5d76614990f23b2e146842b166fb070894c128f957b0cc7d80a16275efd15659e0f81990062ebfdf9454d12e63d1ce1dad7848fcbab642a0d62ebb17abc824883e4c6e1e81992f28f5bbd7b26e2645c7941b03dd2f27c29baa2412976a05fa13d8fc4d6bd152a8668d986a9cf605b8b4a61600481e01bdd74c96d73390518add968100ac742aaf5dd7eb4ccf0868ee3ef7f12c32298737dea65bd5d7161dd679b4dd6799aa086bf3b8c889780ac102b7b1ebcf2569dd77f201d74d94a61400ced9c613414012b451628a96e6cc8fe738e964940f7b753065677776f3b5398975aeac974fced560667cead03a8976eb4229ff4e1bca5588d5d544cbca8588215a2f5ef7a5fc1a07438d3a3e05d21eb30d46f1688543d4327d36e07635396eaab4e9bc862ee9c7fa24de38c5cbf8fa5afd024116bc84854d01072145ecc4bb415d94a333e0d91e9cf6fda5a2c244a585e3a32c95398f44800c578faf4a2ccc5979664db7a55aa5cc02789f84321ccaeed4f37dd48c8d1484ade0588fc4255ec8780534a693e2bfe88b622034552084492c6757429239bbe8dad8b904e58007639ca773344040a441dc0027a46c22198f3d0b0588e164881a9fc7a85a63c459b0d002e3d890edd250742d363e85250badb91a734759baf773c32b177d36eefb662be70", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)

08:52:20 executing program 1:
ioctl(0xffffffffffffffff, 0x8ab0, &(0x7f0000000000)="d39e9aa3bf65e0d56f97cbc70f7c61e0188b06efcbb71112d0ffffff7f509c80f89fd3c5202f745089d181249250ce09186a810000004c28a92a1d")

08:52:20 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
r2 = gettid()
timer_create(0x0, &(0x7f0000000140)={0x0, 0x8, 0x4, @tid=r2}, &(0x7f0000000400))
timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x1}, {0x0, 0x1c9c380}}, &(0x7f0000040000))
r3 = signalfd4(0xffffffffffffffff, &(0x7f0000000040)={0xfffffffffffffdb0}, 0x8, 0x0)
read(r3, &(0x7f0000000080)=""/128, 0x88308aa)
r4 = msgget(0x0, 0x4)
msgsnd(r4, &(0x7f0000000240)={0x0, "a244411ae1a0055be4f5f3c3ad3bfead02e4a84d798be8a4cdf685cdc611c9596fa4c08d6cc03cb4dbde1b1e4d42c425889bb3ef12e20b4afc718e84dc857bbb8b0d52078f567473f0f0f518917691"}, 0x57, 0x800)
timer_settime(0x0, 0x0, &(0x7f0000000380)={{0x77359400}}, &(0x7f00000001c0))
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
dup2(r1, r0)

08:52:20 executing program 1:
ioctl(0xffffffffffffffff, 0x8ab0, &(0x7f0000000000)="d39e9aa3bf65e0d56f97cbc70f7c61e0188b06efcbb71112d0ffffff7f509c80f89fd3c5202f745089d181249250ce09186a810000004c28a92a1d")

08:52:20 executing program 2:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
r1 = syz_open_dev$media(&(0x7f0000000080)='/dev/media#\x00', 0x9, 0x8000)
r2 = syz_genetlink_get_family_id$team(&(0x7f0000000100)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000440)={'team0\x00', <r3=>0x0})
getsockopt$inet6_mreq(0xffffffffffffff9c, 0x29, 0x1c, &(0x7f0000000480)={@mcast1, <r4=>0x0}, &(0x7f00000004c0)=0x14)
sendmsg$TEAM_CMD_NOOP(r1, &(0x7f0000000600)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x84}, 0xc, &(0x7f00000005c0)={&(0x7f0000000500)={0x98, r2, 0x300, 0x70bd2c, 0x25dfdbfe, {}, [{{0x8, 0x1, r3}, {0x7c, 0x2, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8}, {0x8, 0x4, r4}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0x8}}}]}}]}, 0x98}, 0x1, 0x0, 0x0, 0x801}, 0x1)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

08:52:21 executing program 1:
ioctl(0xffffffffffffffff, 0x8ab0, &(0x7f0000000000)="d39e9aa3bf65e0d56f97cbc70f7c61e0188b06efcbb71112d0ffffff7f509c80f89fd3c5202f745089d181249250ce09186a810000004c28a92a1d")

08:52:21 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @broadcast}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
r1 = syz_open_dev$mice(&(0x7f0000000080)='/dev/input/mice\x00', 0x0, 0x200)
ioctl$LOOP_CHANGE_FD(r1, 0x4c06, r0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

08:52:22 executing program 0:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = userfaultfd(0x0)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000040)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
ioctl$UFFDIO_REGISTER(r3, 0xc028aa03, &(0x7f0000000000)={{&(0x7f00005e3000/0x800000)=nil, 0x730000}, 0x200000})
r4 = gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000000040))
timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x989680}, {0x0, 0x9}}, &(0x7f0000040000))
tkill(r4, 0x1000000000013)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
dup2(r1, r0)

08:52:22 executing program 2:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
r1 = syz_open_dev$media(&(0x7f0000000080)='/dev/media#\x00', 0x9, 0x8000)
r2 = syz_genetlink_get_family_id$team(&(0x7f0000000100)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000440)={'team0\x00', <r3=>0x0})
getsockopt$inet6_mreq(0xffffffffffffff9c, 0x29, 0x1c, &(0x7f0000000480)={@mcast1, <r4=>0x0}, &(0x7f00000004c0)=0x14)
sendmsg$TEAM_CMD_NOOP(r1, &(0x7f0000000600)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x84}, 0xc, &(0x7f00000005c0)={&(0x7f0000000500)={0x98, r2, 0x300, 0x70bd2c, 0x25dfdbfe, {}, [{{0x8, 0x1, r3}, {0x7c, 0x2, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8}, {0x8, 0x4, r4}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0x8}}}]}}]}, 0x98}, 0x1, 0x0, 0x0, 0x801}, 0x1)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

08:52:22 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
ioctl(r0, 0x8ab0, &(0x7f0000000000)="d39e9aa3bf65e0d56f97cbc70f7c61e0188b06efcbb71112d0ffffff7f509c80f89fd3c5202f745089d181249250ce09186a810000004c28a92a1d")

08:52:22 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000200)="89f9d765312b4001000000b0967bdae72ee5094371136a6477ba0a51a2969dbc2d4028ac7b5af67f178f9314ea2bb3ac1c442eaf749c21ae2af8e39a40c3dc032e6f8eb738786a79df71302ff3b5d42731597d995bed6103ff63b9a908bcc05e0400000092bdf4d3282f62d6928117f82c2dae48742dac857de846096e82c1a02e1edcadda721a3f8dc9a54da05d467ed35b6f931d8686986960e756048c61c2a2c374c318d21d7a7ef550779190066e82ea3f6724a9f61ff028ec7e8d7a04352e7a78f777a68b823abb646bdc55dbde285ce15bf45820f0ae20e4023f57c71f8b41e08eff14c3441485c6f54a30750c780852dad879d6d4be7243bd07f841f89009000000c23d6b4f70fe48b54577449cfcbc4d5dbefb8b465d45bc2d11afbe7bfbe6ca76ac259e634eebf8db694ff02fe2b4c80783b443ef68287e9cf7cbcc2ee196f10c4ffb3f59e4921e0f9f08cba9a2c56c49fa7465b4836da5b2d9b142763889caa718d8a4fcb2f3ef6dc6185708fb1e0f9081d29fb3defae8c525f07437c7835b4eac8f86e2a22a81eff4120340e4a379446aac45dbff791d147805cd2748d74b8996c9b51ec03b410ef8fe126117fbf106795bc1b25d8dd786b6496bd743b7c75c638b516214ff56ec99a9c0f2919fa781cd8b4f2f2e425a6780c630a05c8e60011bc8e10055a6b6b652e5a13c73fd96f79038a65d6991ac38899ab98486d92bbcffdcf39a08a248ae1045ff8c6123de2f15d9ac360a3497c07001a3a1936ff1c03194ace131d380f515629ff016bd890ff822704c0db8bc68efad2eace5466628e7d6c2f2b3043698c46fdd62588fc54b72a786af0d026353879892c58007f7988a3f2240a43303218cc1df27807bfbde117c505f060396850a82459830a89a6a8601ea2e47f2e41379d110b96576f8f7705bba7ec63d6b44ccf84073cf9bdcf1aee48cb60c2f6dd3e89f3626a5e23339ea99c918d76a43fecf7401f7550e8eaefa4d84f1143320599daf7699858b2bf408e9093aa91d6dd9ae39d8decf3f7a199b0c1918d47be3b7aeff9a8c10efabe787b43141e7abaa4317158864b0361568140ab79cade1223c3ef81da4c4eefdd5b21fcc1b87872fc3b346737105589b84ba9814679b7510ed9b4f290083ee634ae12243ccc63413d7bc35eee0d1a4bc9dd33c37f5130303edddfc2636ffbf1ee0febb953436710c2ed9bd001d2ebe878788ddf7f7ad55b7a8cbcb348e82cd65b59315858086606115d04a3cda0e4af2a703afe09e4afedf00d5fbb2284df9af1d1ec9f15356c58fdcde45fff250568347f3b0b49e11e44c0a4d98a1e3393ce5d76614990f23b2e146842b166fb070894c128f957b0cc7d80a16275efd15659e0f81990062ebfdf9454d12e63d1ce1dad7848fcbab642a0d62ebb17abc824883e4c6e1e81992f28f5bbd7b26e2645c7941b03dd2f27c29baa2412976a05fa13d8fc4d6bd152a8668d986a9cf605b8b4a61600481e01bdd74c96d73390518add968100ac742aaf5dd7eb4ccf0868ee3ef7f12c32298737dea65bd5d7161dd679b4dd6799aa086bf3b8c889780ac102b7b1ebcf2569dd77f201d74d94a61400ced9c613414012b451628a96e6cc8fe738e964940f7b753065677776f3b5398975aeac974fced560667cead03a8976eb4229ff4e1bca5588d5d544cbca8588215a2f5ef7a5fc1a07438d3a3e05d21eb30d46f1688543d4327d36e07635396eaab4e9bc862ee9c7fa24de38c5cbf8fa5afd024116bc84854d01072145ecc4bb415d94a333e0d91e9cf6fda5a2c244a585e3a32c95398f44800c578faf4a2ccc5979664db7a55aa5cc02789f84321ccaeed4f37dd48c8d1484ade0588fc4255ec8780534a693e2bfe88b622034552084492c6757429239bbe8dad8b904e58007639ca773344040a441dc0027a46c22198f3d0b0588e164881a9fc7a85a63c459b0d002e3d890edd250742d363e85250badb91a734759baf773c32b177d36eefb662be70", 0x48a)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

[  635.327516] not chained 520000 origins
[  635.331486] CPU: 0 PID: 16616 Comm: syz-executor4 Not tainted 4.20.0-rc2+ #88
[  635.336439] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  635.346057] Call Trace:
[  635.346057]  dump_stack+0x32d/0x480
[  635.346057]  kmsan_internal_chain_origin+0x222/0x240
[  635.346057]  ? save_stack_trace+0xc6/0x110
[  635.346057]  ? __irqentry_text_end+0x1fa056/0x1fa056
[  635.346057]  ? kmsan_internal_chain_origin+0x90/0x240
[  635.346057]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  635.346057]  ? is_bpf_text_address+0x49e/0x4d0
[  635.346057]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  635.346057]  ? in_task_stack+0x12c/0x210
[  635.346057]  __msan_chain_origin+0x6d/0xb0
[  635.346057]  ? tcp_v4_do_rcv+0xb25/0xd80
[  635.346057]  __save_stack_trace+0x8be/0xc60
[  635.402418]  ? tcp_v4_do_rcv+0xb25/0xd80
[  635.402418]  save_stack_trace+0xc6/0x110
[  635.402418]  kmsan_internal_chain_origin+0x136/0x240
[  635.402418]  ? kmsan_internal_chain_origin+0x136/0x240
[  635.402418]  ? kmsan_memcpy_origins+0x13d/0x190
[  635.402418]  ? __msan_memcpy+0x6f/0x80
[  635.402418]  ? skb_copy_bits+0x1d2/0xc90
[  635.402418]  ? skb_copy+0x56c/0xba0
[  635.402418]  ? tcp_send_synack+0x7a3/0x18f0
[  635.402418]  ? tcp_rcv_state_process+0x275d/0x6c60
[  635.402418]  ? tcp_v4_do_rcv+0xb25/0xd80
[  635.402418]  ? __release_sock+0x32d/0x750
[  635.402418]  ? release_sock+0x99/0x2a0
[  635.402418]  ? __inet_stream_connect+0xdff/0x15d0
[  635.402418]  ? tcp_sendmsg_locked+0x6655/0x6c30
[  635.402418]  ? tcp_sendmsg+0xb2/0x100
[  635.473873]  ? inet_sendmsg+0x4e9/0x800
[  635.473873]  ? __sys_sendto+0x940/0xb80
[  635.473873]  ? __se_sys_sendto+0x107/0x130
[  635.473873]  ? __x64_sys_sendto+0x6e/0x90
[  635.473873]  ? do_syscall_64+0xcf/0x110
[  635.473873]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  635.473873]  ? memcg_kmem_put_cache+0x73/0x460
[  635.473873]  ? __kmalloc_node_track_caller+0x1010/0x14e0
[  635.473873]  ? __msan_get_context_state+0x9/0x20
[  635.473873]  ? INIT_INT+0xc/0x30
[  635.473873]  ? __kmalloc_node_track_caller+0x369/0x14e0
[  635.473873]  ? __msan_get_context_state+0x9/0x20
[  635.473873]  kmsan_memcpy_origins+0x13d/0x190
[  635.473873]  __msan_memcpy+0x6f/0x80
[  635.473873]  skb_copy_bits+0x1d2/0xc90
[  635.541038]  skb_copy+0x56c/0xba0
[  635.541038]  tcp_send_synack+0x7a3/0x18f0
[  635.541038]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  635.541038]  tcp_rcv_state_process+0x275d/0x6c60
[  635.541038]  tcp_v4_do_rcv+0xb25/0xd80
[  635.541038]  ? __local_bh_enable_ip+0x11f/0x260
[  635.541038]  ? inet_sk_rx_dst_set+0x200/0x200
[  635.541038]  __release_sock+0x32d/0x750
[  635.541038]  release_sock+0x99/0x2a0
[  635.541038]  __inet_stream_connect+0xdff/0x15d0
[  635.541038]  ? wait_woken+0x5b0/0x5b0
[  635.541038]  tcp_sendmsg_locked+0x6655/0x6c30
[  635.541038]  ? aa_label_sk_perm+0xda/0x960
[  635.541038]  ? kmsan_set_origin+0x7f/0x100
[  635.602642]  ? kmsan_internal_unpoison_shadow+0x83/0xd0
[  635.602642]  ? __msan_poison_alloca+0x1e0/0x270
[  635.612668]  ? __local_bh_enable_ip+0x46/0x260
[  635.612668]  ? __msan_poison_alloca+0x1e0/0x270
[  635.612668]  tcp_sendmsg+0xb2/0x100
[  635.612668]  ? tcp_sendmsg_locked+0x6c30/0x6c30
[  635.612668]  inet_sendmsg+0x4e9/0x800
[  635.612668]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  635.612668]  ? security_socket_sendmsg+0x1bd/0x200
[  635.612668]  ? inet_getname+0x490/0x490
[  635.612668]  __sys_sendto+0x940/0xb80
[  635.612668]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  635.612668]  ? prepare_exit_to_usermode+0x182/0x4c0
[  635.612668]  __se_sys_sendto+0x107/0x130
[  635.612668]  __x64_sys_sendto+0x6e/0x90
[  635.612668]  do_syscall_64+0xcf/0x110
[  635.612668]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  635.612668] RIP: 0033:0x457569
[  635.612668] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  635.701695] RSP: 002b:00007fe2bd024c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  635.701695] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000457569
[  635.701695] RDX: 0000000000000275 RSI: 00000000200000c0 RDI: 0000000000000003
[  635.701695] RBP: 000000000072bf00 R08: 0000000020000040 R09: 0000000000000010
[  635.701695] R10: 0000000020000802 R11: 0000000000000246 R12: 00007fe2bd0256d4
[  635.701695] R13: 00000000004c3c11 R14: 00000000004d5e80 R15: 00000000ffffffff
[  635.701695] Uninit was stored to memory at:
[  635.701695]  kmsan_internal_chain_origin+0x136/0x240
[  635.701695]  __msan_chain_origin+0x6d/0xb0
[  635.701695]  __save_stack_trace+0x8be/0xc60
[  635.701695]  save_stack_trace+0xc6/0x110
[  635.701695]  kmsan_internal_chain_origin+0x136/0x240
[  635.701695]  kmsan_memcpy_origins+0x13d/0x190
[  635.701695]  __msan_memcpy+0x6f/0x80
[  635.701695]  skb_copy_bits+0x1d2/0xc90
[  635.701695]  skb_copy+0x56c/0xba0
[  635.701695]  tcp_send_synack+0x7a3/0x18f0
[  635.701695]  tcp_rcv_state_process+0x275d/0x6c60
[  635.701695]  tcp_v4_do_rcv+0xb25/0xd80
[  635.701695]  __release_sock+0x32d/0x750
[  635.701695]  release_sock+0x99/0x2a0
[  635.701695]  __inet_stream_connect+0xdff/0x15d0
[  635.701695]  tcp_sendmsg_locked+0x6655/0x6c30
[  635.701695]  tcp_sendmsg+0xb2/0x100
[  635.701695]  inet_sendmsg+0x4e9/0x800
[  635.701695]  __sys_sendto+0x940/0xb80
[  635.701695]  __se_sys_sendto+0x107/0x130
[  635.701695]  __x64_sys_sendto+0x6e/0x90
[  635.701695]  do_syscall_64+0xcf/0x110
[  635.701695]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  635.701695] 
[  635.701695] Uninit was stored to memory at:
[  635.701695]  kmsan_internal_chain_origin+0x136/0x240
[  635.701695]  __msan_chain_origin+0x6d/0xb0
[  635.701695]  __save_stack_trace+0x8be/0xc60
[  635.701695]  save_stack_trace+0xc6/0x110
[  635.701695]  kmsan_internal_chain_origin+0x136/0x240
[  635.701695]  kmsan_memcpy_origins+0x13d/0x190
[  635.701695]  __msan_memcpy+0x6f/0x80
[  635.701695]  skb_copy_bits+0x1d2/0xc90
[  635.890605]  skb_copy+0x56c/0xba0
[  635.890605]  tcp_send_synack+0x7a3/0x18f0
[  635.890605]  tcp_rcv_state_process+0x275d/0x6c60
[  635.890605]  tcp_v4_do_rcv+0xb25/0xd80
[  635.890605]  __release_sock+0x32d/0x750
[  635.890605]  release_sock+0x99/0x2a0
[  635.890605]  __inet_stream_connect+0xdff/0x15d0
[  635.890605]  tcp_sendmsg_locked+0x6655/0x6c30
[  635.890605]  tcp_sendmsg+0xb2/0x100
[  635.890605]  inet_sendmsg+0x4e9/0x800
[  635.930025]  __sys_sendto+0x940/0xb80
[  635.930025]  __se_sys_sendto+0x107/0x130
[  635.930025]  __x64_sys_sendto+0x6e/0x90
[  635.930025]  do_syscall_64+0xcf/0x110
[  635.930025]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  635.951825] 
[  635.951825] Uninit was stored to memory at:
[  635.951825]  kmsan_internal_chain_origin+0x136/0x240
[  635.951825]  __msan_chain_origin+0x6d/0xb0
[  635.951825]  __save_stack_trace+0x8be/0xc60
[  635.951825]  save_stack_trace+0xc6/0x110
[  635.951825]  kmsan_internal_chain_origin+0x136/0x240
[  635.951825]  kmsan_memcpy_origins+0x13d/0x190
[  635.951825]  __msan_memcpy+0x6f/0x80
[  635.951825]  skb_copy_bits+0x1d2/0xc90
[  635.951825]  skb_copy+0x56c/0xba0
[  635.951825]  tcp_send_synack+0x7a3/0x18f0
[  635.951825]  tcp_rcv_state_process+0x275d/0x6c60
[  635.951825]  tcp_v4_do_rcv+0xb25/0xd80
[  636.009826]  __release_sock+0x32d/0x750
[  636.009826]  release_sock+0x99/0x2a0
[  636.009826]  __inet_stream_connect+0xdff/0x15d0
[  636.009826]  tcp_sendmsg_locked+0x6655/0x6c30
[  636.009826]  tcp_sendmsg+0xb2/0x100
[  636.009826]  inet_sendmsg+0x4e9/0x800
[  636.009826]  __sys_sendto+0x940/0xb80
[  636.009826]  __se_sys_sendto+0x107/0x130
[  636.009826]  __x64_sys_sendto+0x6e/0x90
[  636.009826]  do_syscall_64+0xcf/0x110
[  636.009826]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  636.009826] 
[  636.009826] Uninit was stored to memory at:
[  636.009826]  kmsan_internal_chain_origin+0x136/0x240
[  636.009826]  __msan_chain_origin+0x6d/0xb0
[  636.009826]  __save_stack_trace+0x8be/0xc60
[  636.009826]  save_stack_trace+0xc6/0x110
[  636.009826]  kmsan_internal_chain_origin+0x136/0x240
[  636.009826]  kmsan_memcpy_origins+0x13d/0x190
[  636.009826]  __msan_memcpy+0x6f/0x80
[  636.009826]  skb_copy_bits+0x1d2/0xc90
[  636.009826]  skb_copy+0x56c/0xba0
[  636.009826]  tcp_send_synack+0x7a3/0x18f0
[  636.009826]  tcp_rcv_state_process+0x275d/0x6c60
[  636.009826]  tcp_v4_do_rcv+0xb25/0xd80
[  636.009826]  __release_sock+0x32d/0x750
[  636.009826]  release_sock+0x99/0x2a0
[  636.009826]  __inet_stream_connect+0xdff/0x15d0
[  636.009826]  tcp_sendmsg_locked+0x6655/0x6c30
[  636.009826]  tcp_sendmsg+0xb2/0x100
[  636.009826]  inet_sendmsg+0x4e9/0x800
[  636.009826]  __sys_sendto+0x940/0xb80
[  636.009826]  __se_sys_sendto+0x107/0x130
[  636.009826]  __x64_sys_sendto+0x6e/0x90
[  636.009826]  do_syscall_64+0xcf/0x110
[  636.009826]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  636.009826] 
[  636.009826] Uninit was stored to memory at:
[  636.009826]  kmsan_internal_chain_origin+0x136/0x240
[  636.009826]  __msan_chain_origin+0x6d/0xb0
[  636.009826]  __save_stack_trace+0x8be/0xc60
[  636.009826]  save_stack_trace+0xc6/0x110
[  636.009826]  kmsan_internal_chain_origin+0x136/0x240
[  636.009826]  kmsan_memcpy_origins+0x13d/0x190
[  636.009826]  __msan_memcpy+0x6f/0x80
[  636.009826]  skb_copy_bits+0x1d2/0xc90
[  636.009826]  skb_copy+0x56c/0xba0
[  636.009826]  tcp_send_synack+0x7a3/0x18f0
[  636.009826]  tcp_rcv_state_process+0x275d/0x6c60
[  636.009826]  tcp_v4_do_rcv+0xb25/0xd80
[  636.009826]  __release_sock+0x32d/0x750
[  636.009826]  release_sock+0x99/0x2a0
[  636.009826]  __inet_stream_connect+0xdff/0x15d0
[  636.009826]  tcp_sendmsg_locked+0x6655/0x6c30
[  636.009826]  tcp_sendmsg+0xb2/0x100
[  636.009826]  inet_sendmsg+0x4e9/0x800
[  636.009826]  __sys_sendto+0x940/0xb80
[  636.009826]  __se_sys_sendto+0x107/0x130
[  636.009826]  __x64_sys_sendto+0x6e/0x90
[  636.009826]  do_syscall_64+0xcf/0x110
[  636.009826]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  636.009826] 
[  636.009826] Uninit was stored to memory at:
[  636.009826]  kmsan_internal_chain_origin+0x136/0x240
[  636.009826]  __msan_chain_origin+0x6d/0xb0
[  636.009826]  __save_stack_trace+0x8be/0xc60
[  636.009826]  save_stack_trace+0xc6/0x110
[  636.009826]  kmsan_internal_chain_origin+0x136/0x240
[  636.009826]  kmsan_memcpy_origins+0x13d/0x190
[  636.009826]  __msan_memcpy+0x6f/0x80
[  636.009826]  skb_copy_bits+0x1d2/0xc90
[  636.009826]  skb_copy+0x56c/0xba0
[  636.009826]  tcp_send_synack+0x7a3/0x18f0
[  636.009826]  tcp_rcv_state_process+0x275d/0x6c60
[  636.009826]  tcp_v4_do_rcv+0xb25/0xd80
[  636.009826]  __release_sock+0x32d/0x750
[  636.009826]  release_sock+0x99/0x2a0
[  636.009826]  __inet_stream_connect+0xdff/0x15d0
[  636.009826]  tcp_sendmsg_locked+0x6655/0x6c30
[  636.009826]  tcp_sendmsg+0xb2/0x100
[  636.009826]  inet_sendmsg+0x4e9/0x800
[  636.009826]  __sys_sendto+0x940/0xb80
[  636.009826]  __se_sys_sendto+0x107/0x130
[  636.009826]  __x64_sys_sendto+0x6e/0x90
[  636.009826]  do_syscall_64+0xcf/0x110
[  636.009826]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  636.009826] 
[  636.009826] Uninit was stored to memory at:
[  636.009826]  kmsan_internal_chain_origin+0x136/0x240
[  636.009826]  __msan_chain_origin+0x6d/0xb0
[  636.009826]  __save_stack_trace+0x8be/0xc60
[  636.009826]  save_stack_trace+0xc6/0x110
[  636.009826]  kmsan_internal_chain_origin+0x136/0x240
[  636.009826]  kmsan_memcpy_origins+0x13d/0x190
[  636.009826]  __msan_memcpy+0x6f/0x80
[  636.009826]  skb_copy_bits+0x1d2/0xc90
[  636.009826]  skb_copy+0x56c/0xba0
[  636.009826]  tcp_send_synack+0x7a3/0x18f0
[  636.009826]  tcp_rcv_state_process+0x275d/0x6c60
[  636.009826]  tcp_v4_do_rcv+0xb25/0xd80
[  636.009826]  __release_sock+0x32d/0x750
[  636.009826]  release_sock+0x99/0x2a0
[  636.428589]  __inet_stream_connect+0xdff/0x15d0
[  636.428589]  tcp_sendmsg_locked+0x6655/0x6c30
[  636.428589]  tcp_sendmsg+0xb2/0x100
[  636.428589]  inet_sendmsg+0x4e9/0x800
[  636.428589]  __sys_sendto+0x940/0xb80
[  636.428589]  __se_sys_sendto+0x107/0x130
[  636.428589]  __x64_sys_sendto+0x6e/0x90
[  636.428589]  do_syscall_64+0xcf/0x110
[  636.428589]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  636.428589] 
[  636.428589] Local variable description: ----_tcph.i@ip_vs_in
[  636.428589] Variable was created at:
[  636.428589]  ip_vs_in+0xe9/0x3250
[  636.428589]  ip_vs_local_request4+0xec/0x130
08:52:23 executing program 5:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
fstat(r0, &(0x7f0000000140))
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000340)='/dev/dlm_plock\x00', 0x400, 0x0)
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000440)={<r3=>0x0, @local, @dev}, &(0x7f0000000480)=0xc)
connect$can_bcm(r2, &(0x7f00000004c0)={0x1d, r3}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000080)={'eql\x00', 0x809})
poll(&(0x7f00000002c0)=[{r5}], 0x1, 0x0)
ioctl$sock_ifreq(r4, 0x8914, &(0x7f00000000c0)={"65716c000000a95b00", @ifru_mtu=0x1})
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
r6 = memfd_create(&(0x7f0000000100)='.@(\x00', 0x0)
ioctl$VIDIOC_TRY_FMT(r6, 0xc0d05640, &(0x7f0000000200)={0xb, @pix_mp={0x6770, 0x0, 0x7f734f6f, 0x4, 0x7, [{0xca, 0x8}, {0x8, 0xfffffffffffffff9}, {0x0, 0x4}, {0x8, 0x7}, {0x100, 0x1}, {0x5}, {0x7}, {0x1ff}], 0x0, 0x8, 0x7}})
vmsplice(r2, &(0x7f0000000300), 0x0, 0x9)
r7 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r6, 0x801c581f, &(0x7f0000000300)={0x1, 0x0, 0x9, 0x4, 0x3})
ioctl$DRM_IOCTL_CONTROL(r7, 0x40086414, &(0x7f00000000c0)={0x0, 0x100})

08:52:23 executing program 3:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000080)=0x7fe, 0x4)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

08:52:23 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
ioctl(r0, 0x8ab0, &(0x7f0000000000)="d39e9aa3bf65e0d56f97cbc70f7c61e0188b06efcbb71112d0ffffff7f509c80f89fd3c5202f745089d181249250ce09186a810000004c28a92a1d")

08:52:23 executing program 2:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
r1 = syz_open_dev$media(&(0x7f0000000080)='/dev/media#\x00', 0x9, 0x8000)
r2 = syz_genetlink_get_family_id$team(&(0x7f0000000100)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000440)={'team0\x00', <r3=>0x0})
getsockopt$inet6_mreq(0xffffffffffffff9c, 0x29, 0x1c, &(0x7f0000000480)={@mcast1, <r4=>0x0}, &(0x7f00000004c0)=0x14)
sendmsg$TEAM_CMD_NOOP(r1, &(0x7f0000000600)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x84}, 0xc, &(0x7f00000005c0)={&(0x7f0000000500)={0x98, r2, 0x300, 0x70bd2c, 0x25dfdbfe, {}, [{{0x8, 0x1, r3}, {0x7c, 0x2, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8}, {0x8, 0x4, r4}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0x8}}}]}}]}, 0x98}, 0x1, 0x0, 0x0, 0x801}, 0x1)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

08:52:23 executing program 0:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
getpeername(r1, &(0x7f00000001c0)=@hci={0x1f, <r2=>0x0}, &(0x7f0000000240)=0x80)
connect$can_bcm(r1, &(0x7f0000000280)={0x1d, r2}, 0x10)
dup2(r1, r0)

08:52:23 executing program 4:
bind$inet(0xffffffffffffffff, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
r0 = syz_open_dev$vcsa(&(0x7f0000000080)='/dev/vcsa#\x00', 0x8, 0x800)
ioctl$DRM_IOCTL_RES_CTX(0xffffffffffffff9c, 0xc0106426, &(0x7f0000000100)={0x5, &(0x7f00000000c0)=[{}, {}, {}, {<r1=>0x0}, {}]})
ioctl$DRM_IOCTL_SWITCH_CTX(r0, 0x40086424, &(0x7f0000000140)={r1, 0x2})
ioctl$DRM_IOCTL_ADD_CTX(r0, 0xc0086420, &(0x7f0000000180))
sendto$inet(0xffffffffffffffff, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
ioctl$PIO_FONT(r0, 0x4b61, &(0x7f00000002c0)="e0d8f21b962a934663f52f27060339d130abdde8a0f86ba558cd")
setsockopt$sock_int(r0, 0x1, 0x1, &(0x7f0000000200)=0x10000, 0x4)
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
ioctl$DRM_IOCTL_CONTROL(r0, 0x40086414, &(0x7f0000000280)={0x3, 0x5})
write(0xffffffffffffffff, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(0xffffffffffffffff, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000240)=0x8000)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

08:52:24 executing program 0 (fault-call:6 fault-nth:0):
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
dup2(r2, r0)

08:52:24 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
ioctl(r0, 0x8ab0, &(0x7f0000000000)="d39e9aa3bf65e0d56f97cbc70f7c61e0188b06efcbb71112d0ffffff7f509c80f89fd3c5202f745089d181249250ce09186a810000004c28a92a1d")

08:52:24 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ppp\x00', 0x200100, 0x0)
lstat(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
fstat(r0, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0})
fchownat(r1, &(0x7f00000000c0)='./file0\x00', r2, r3, 0x800)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000280)=0x3)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x80000001)

08:52:24 executing program 3:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000080)=0x7fe, 0x4)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

[  637.198772] syz-executor3 (16636) used greatest stack depth: 50976 bytes left
08:52:24 executing program 2:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
syz_open_dev$media(&(0x7f0000000080)='/dev/media#\x00', 0x9, 0x8000)
syz_genetlink_get_family_id$team(&(0x7f0000000100)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000440)={'team0\x00'})
getsockopt$inet6_mreq(0xffffffffffffff9c, 0x29, 0x1c, &(0x7f0000000480)={@mcast1}, &(0x7f00000004c0)=0x14)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

[  637.400371] not chained 530000 origins
[  637.402234] CPU: 1 PID: 16660 Comm: syz-executor4 Not tainted 4.20.0-rc2+ #88
[  637.402234] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  637.402234] Call Trace:
[  637.402234]  dump_stack+0x32d/0x480
[  637.402234]  kmsan_internal_chain_origin+0x222/0x240
[  637.402234]  ? save_stack_trace+0xc6/0x110
[  637.432682]  ? __irqentry_text_end+0x1fa056/0x1fa056
[  637.432682]  ? kmsan_internal_chain_origin+0x90/0x240
[  637.432682]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  637.432682]  ? is_bpf_text_address+0x49e/0x4d0
[  637.432682]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  637.432682]  ? in_task_stack+0x12c/0x210
[  637.432682]  __msan_chain_origin+0x6d/0xb0
[  637.432682]  ? tcp_sendmsg+0xb2/0x100
[  637.432682]  __save_stack_trace+0x8be/0xc60
[  637.432682]  ? tcp_sendmsg+0xb2/0x100
[  637.432682]  save_stack_trace+0xc6/0x110
[  637.432682]  kmsan_internal_chain_origin+0x136/0x240
[  637.432682]  ? kmsan_internal_chain_origin+0x136/0x240
[  637.432682]  ? kmsan_memcpy_origins+0x13d/0x190
[  637.432682]  ? __msan_memcpy+0x6f/0x80
[  637.432682]  ? skb_copy_bits+0x1d2/0xc90
[  637.432682]  ? skb_copy+0x56c/0xba0
[  637.432682]  ? tcp_send_synack+0x7a3/0x18f0
[  637.432682]  ? tcp_rcv_state_process+0x275d/0x6c60
[  637.432682]  ? tcp_v4_do_rcv+0xb25/0xd80
[  637.432682]  ? __release_sock+0x32d/0x750
[  637.432682]  ? release_sock+0x99/0x2a0
[  637.432682]  ? __inet_stream_connect+0xdff/0x15d0
[  637.432682]  ? tcp_sendmsg_locked+0x6655/0x6c30
[  637.432682]  ? tcp_sendmsg+0xb2/0x100
[  637.432682]  ? inet_sendmsg+0x4e9/0x800
[  637.432682]  ? __sys_sendto+0x940/0xb80
[  637.432682]  ? __se_sys_sendto+0x107/0x130
[  637.432682]  ? __x64_sys_sendto+0x6e/0x90
[  637.432682]  ? do_syscall_64+0xcf/0x110
[  637.432682]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  637.432682]  ? memcg_kmem_put_cache+0x73/0x460
[  637.432682]  ? __kmalloc_node_track_caller+0x1010/0x14e0
[  637.432682]  ? __msan_get_context_state+0x9/0x20
[  637.432682]  ? INIT_INT+0xc/0x30
[  637.432682]  ? __kmalloc_node_track_caller+0x369/0x14e0
[  637.432682]  ? __msan_get_context_state+0x9/0x20
[  637.432682]  ? kmem_cache_alloc_node+0x27b/0xec0
[  637.432682]  kmsan_memcpy_origins+0x13d/0x190
[  637.432682]  __msan_memcpy+0x6f/0x80
[  637.432682]  skb_copy_bits+0x1d2/0xc90
[  637.432682]  skb_copy+0x56c/0xba0
[  637.432682]  tcp_send_synack+0x7a3/0x18f0
[  637.432682]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  637.432682]  tcp_rcv_state_process+0x275d/0x6c60
[  637.432682]  tcp_v4_do_rcv+0xb25/0xd80
[  637.432682]  ? __local_bh_enable_ip+0x11f/0x260
[  637.432682]  ? inet_sk_rx_dst_set+0x200/0x200
[  637.432682]  __release_sock+0x32d/0x750
[  637.432682]  release_sock+0x99/0x2a0
[  637.432682]  __inet_stream_connect+0xdff/0x15d0
[  637.432682]  ? wait_woken+0x5b0/0x5b0
[  637.432682]  tcp_sendmsg_locked+0x6655/0x6c30
[  637.432682]  ? aa_label_sk_perm+0xda/0x960
[  637.432682]  ? kmsan_set_origin+0x7f/0x100
[  637.432682]  ? kmsan_internal_unpoison_shadow+0x83/0xd0
[  637.432682]  ? __msan_poison_alloca+0x1e0/0x270
[  637.432682]  ? __local_bh_enable_ip+0x46/0x260
[  637.432682]  ? __msan_poison_alloca+0x1e0/0x270
[  637.432682]  tcp_sendmsg+0xb2/0x100
[  637.432682]  ? tcp_sendmsg_locked+0x6c30/0x6c30
[  637.432682]  inet_sendmsg+0x4e9/0x800
[  637.432682]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  637.432682]  ? security_socket_sendmsg+0x1bd/0x200
[  637.432682]  ? inet_getname+0x490/0x490
[  637.432682]  __sys_sendto+0x940/0xb80
[  637.432682]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  637.432682]  ? prepare_exit_to_usermode+0x182/0x4c0
[  637.432682]  __se_sys_sendto+0x107/0x130
[  637.432682]  __x64_sys_sendto+0x6e/0x90
[  637.432682]  do_syscall_64+0xcf/0x110
[  637.432682]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  637.432682] RIP: 0033:0x457569
[  637.432682] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  637.432682] RSP: 002b:00007fe2bd024c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  637.432682] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000457569
[  637.432682] RDX: 0000000000000275 RSI: 00000000200000c0 RDI: 0000000000000003
[  637.432682] RBP: 000000000072bf00 R08: 0000000020000040 R09: 0000000000000010
[  637.432682] R10: 0000000020000802 R11: 0000000000000246 R12: 00007fe2bd0256d4
[  637.432682] R13: 00000000004c3c11 R14: 00000000004d5e80 R15: 00000000ffffffff
[  637.432682] Uninit was stored to memory at:
[  637.432682]  kmsan_internal_chain_origin+0x136/0x240
[  637.432682]  __msan_chain_origin+0x6d/0xb0
[  637.432682]  __save_stack_trace+0x8be/0xc60
[  637.432682]  save_stack_trace+0xc6/0x110
[  637.432682]  kmsan_internal_chain_origin+0x136/0x240
[  637.432682]  kmsan_memcpy_origins+0x13d/0x190
[  637.432682]  __msan_memcpy+0x6f/0x80
[  637.432682]  skb_copy_bits+0x1d2/0xc90
[  637.432682]  skb_copy+0x56c/0xba0
[  637.432682]  tcp_send_synack+0x7a3/0x18f0
[  637.432682]  tcp_rcv_state_process+0x275d/0x6c60
[  637.432682]  tcp_v4_do_rcv+0xb25/0xd80
[  637.432682]  __release_sock+0x32d/0x750
[  637.432682]  release_sock+0x99/0x2a0
[  637.432682]  __inet_stream_connect+0xdff/0x15d0
[  637.432682]  tcp_sendmsg_locked+0x6655/0x6c30
[  637.432682]  tcp_sendmsg+0xb2/0x100
[  637.432682]  inet_sendmsg+0x4e9/0x800
[  637.432682]  __sys_sendto+0x940/0xb80
[  637.432682]  __se_sys_sendto+0x107/0x130
[  637.432682]  __x64_sys_sendto+0x6e/0x90
[  637.432682]  do_syscall_64+0xcf/0x110
[  637.432682]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  637.432682] 
[  637.432682] Uninit was stored to memory at:
[  637.432682]  kmsan_internal_chain_origin+0x136/0x240
[  637.432682]  __msan_chain_origin+0x6d/0xb0
[  637.432682]  __save_stack_trace+0x8be/0xc60
[  637.432682]  save_stack_trace+0xc6/0x110
[  637.432682]  kmsan_internal_chain_origin+0x136/0x240
[  637.432682]  kmsan_memcpy_origins+0x13d/0x190
[  637.432682]  __msan_memcpy+0x6f/0x80
[  637.432682]  skb_copy_bits+0x1d2/0xc90
[  637.432682]  skb_copy+0x56c/0xba0
[  637.432682]  tcp_send_synack+0x7a3/0x18f0
[  637.432682]  tcp_rcv_state_process+0x275d/0x6c60
[  637.432682]  tcp_v4_do_rcv+0xb25/0xd80
[  637.432682]  __release_sock+0x32d/0x750
[  637.432682]  release_sock+0x99/0x2a0
[  637.432682]  __inet_stream_connect+0xdff/0x15d0
[  637.432682]  tcp_sendmsg_locked+0x6655/0x6c30
[  637.432682]  tcp_sendmsg+0xb2/0x100
[  637.432682]  inet_sendmsg+0x4e9/0x800
[  637.432682]  __sys_sendto+0x940/0xb80
[  637.432682]  __se_sys_sendto+0x107/0x130
[  637.432682]  __x64_sys_sendto+0x6e/0x90
[  637.432682]  do_syscall_64+0xcf/0x110
[  637.432682]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  637.432682] 
[  637.432682] Uninit was stored to memory at:
[  637.432682]  kmsan_internal_chain_origin+0x136/0x240
[  637.432682]  __msan_chain_origin+0x6d/0xb0
[  637.432682]  __save_stack_trace+0x8be/0xc60
[  637.432682]  save_stack_trace+0xc6/0x110
[  637.432682]  kmsan_internal_chain_origin+0x136/0x240
[  637.432682]  kmsan_memcpy_origins+0x13d/0x190
[  637.432682]  __msan_memcpy+0x6f/0x80
[  637.432682]  skb_copy_bits+0x1d2/0xc90
[  637.432682]  skb_copy+0x56c/0xba0
[  637.432682]  tcp_send_synack+0x7a3/0x18f0
[  637.432682]  tcp_rcv_state_process+0x275d/0x6c60
[  637.432682]  tcp_v4_do_rcv+0xb25/0xd80
[  637.432682]  __release_sock+0x32d/0x750
[  637.432682]  release_sock+0x99/0x2a0
[  637.432682]  __inet_stream_connect+0xdff/0x15d0
[  637.432682]  tcp_sendmsg_locked+0x6655/0x6c30
[  637.432682]  tcp_sendmsg+0xb2/0x100
[  637.432682]  inet_sendmsg+0x4e9/0x800
[  637.432682]  __sys_sendto+0x940/0xb80
[  637.432682]  __se_sys_sendto+0x107/0x130
[  637.432682]  __x64_sys_sendto+0x6e/0x90
[  637.432682]  do_syscall_64+0xcf/0x110
[  637.432682]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  637.432682] 
[  637.432682] Uninit was stored to memory at:
[  637.432682]  kmsan_internal_chain_origin+0x136/0x240
[  637.432682]  __msan_chain_origin+0x6d/0xb0
[  637.432682]  __save_stack_trace+0x8be/0xc60
[  637.432682]  save_stack_trace+0xc6/0x110
[  637.432682]  kmsan_internal_chain_origin+0x136/0x240
[  637.432682]  kmsan_memcpy_origins+0x13d/0x190
[  637.432682]  __msan_memcpy+0x6f/0x80
[  637.432682]  skb_copy_bits+0x1d2/0xc90
[  637.432682]  skb_copy+0x56c/0xba0
[  637.432682]  tcp_send_synack+0x7a3/0x18f0
[  637.432682]  tcp_rcv_state_process+0x275d/0x6c60
[  637.432682]  tcp_v4_do_rcv+0xb25/0xd80
[  637.432682]  __release_sock+0x32d/0x750
[  637.432682]  release_sock+0x99/0x2a0
[  637.432682]  __inet_stream_connect+0xdff/0x15d0
[  637.432682]  tcp_sendmsg_locked+0x6655/0x6c30
[  637.432682]  tcp_sendmsg+0xb2/0x100
[  637.432682]  inet_sendmsg+0x4e9/0x800
[  637.432682]  __sys_sendto+0x940/0xb80
[  637.432682]  __se_sys_sendto+0x107/0x130
[  637.432682]  __x64_sys_sendto+0x6e/0x90
[  637.432682]  do_syscall_64+0xcf/0x110
[  637.432682]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  637.432682] 
[  637.432682] Uninit was stored to memory at:
[  637.432682]  kmsan_internal_chain_origin+0x136/0x240
[  637.432682]  __msan_chain_origin+0x6d/0xb0
[  637.432682]  __save_stack_trace+0x8be/0xc60
[  637.432682]  save_stack_trace+0xc6/0x110
[  637.432682]  kmsan_internal_chain_origin+0x136/0x240
[  637.432682]  kmsan_memcpy_origins+0x13d/0x190
[  637.432682]  __msan_memcpy+0x6f/0x80
[  637.432682]  skb_copy_bits+0x1d2/0xc90
[  637.432682]  skb_copy+0x56c/0xba0
[  637.432682]  tcp_send_synack+0x7a3/0x18f0
[  637.432682]  tcp_rcv_state_process+0x275d/0x6c60
[  637.432682]  tcp_v4_do_rcv+0xb25/0xd80
[  637.432682]  __release_sock+0x32d/0x750
[  637.432682]  release_sock+0x99/0x2a0
[  637.432682]  __inet_stream_connect+0xdff/0x15d0
[  637.432682]  tcp_sendmsg_locked+0x6655/0x6c30
[  637.432682]  tcp_sendmsg+0xb2/0x100
[  637.432682]  inet_sendmsg+0x4e9/0x800
[  637.432682]  __sys_sendto+0x940/0xb80
[  637.432682]  __se_sys_sendto+0x107/0x130
[  637.432682]  __x64_sys_sendto+0x6e/0x90
[  637.432682]  do_syscall_64+0xcf/0x110
[  637.432682]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  637.432682] 
[  637.432682] Uninit was stored to memory at:
[  637.432682]  kmsan_internal_chain_origin+0x136/0x240
[  637.432682]  __msan_chain_origin+0x6d/0xb0
[  637.432682]  __save_stack_trace+0x8be/0xc60
[  637.432682]  save_stack_trace+0xc6/0x110
[  637.432682]  kmsan_internal_chain_origin+0x136/0x240
[  637.432682]  kmsan_memcpy_origins+0x13d/0x190
[  637.432682]  __msan_memcpy+0x6f/0x80
[  637.432682]  skb_copy_bits+0x1d2/0xc90
[  637.432682]  skb_copy+0x56c/0xba0
[  637.432682]  tcp_send_synack+0x7a3/0x18f0
[  637.432682]  tcp_rcv_state_process+0x275d/0x6c60
[  637.432682]  tcp_v4_do_rcv+0xb25/0xd80
[  637.432682]  __release_sock+0x32d/0x750
[  637.432682]  release_sock+0x99/0x2a0
[  637.432682]  __inet_stream_connect+0xdff/0x15d0
[  637.432682]  tcp_sendmsg_locked+0x6655/0x6c30
[  637.432682]  tcp_sendmsg+0xb2/0x100
[  637.432682]  inet_sendmsg+0x4e9/0x800
[  637.432682]  __sys_sendto+0x940/0xb80
[  637.432682]  __se_sys_sendto+0x107/0x130
[  637.432682]  __x64_sys_sendto+0x6e/0x90
[  637.432682]  do_syscall_64+0xcf/0x110
[  637.432682]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  637.432682] 
[  637.432682] Uninit was stored to memory at:
[  637.432682]  kmsan_internal_chain_origin+0x136/0x240
[  637.432682]  __msan_chain_origin+0x6d/0xb0
[  637.432682]  __save_stack_trace+0x8be/0xc60
[  637.432682]  save_stack_trace+0xc6/0x110
[  637.432682]  kmsan_internal_chain_origin+0x136/0x240
[  637.432682]  kmsan_memcpy_origins+0x13d/0x190
[  637.432682]  __msan_memcpy+0x6f/0x80
[  637.432682]  skb_copy_bits+0x1d2/0xc90
[  637.432682]  skb_copy+0x56c/0xba0
[  637.432682]  tcp_send_synack+0x7a3/0x18f0
[  637.432682]  tcp_rcv_state_process+0x275d/0x6c60
[  637.432682]  tcp_v4_do_rcv+0xb25/0xd80
[  637.432682]  __release_sock+0x32d/0x750
[  637.432682]  release_sock+0x99/0x2a0
[  637.432682]  __inet_stream_connect+0xdff/0x15d0
[  637.432682]  tcp_sendmsg_locked+0x6655/0x6c30
[  637.432682]  tcp_sendmsg+0xb2/0x100
[  637.432682]  inet_sendmsg+0x4e9/0x800
[  637.432682]  __sys_sendto+0x940/0xb80
[  637.432682]  __se_sys_sendto+0x107/0x130
[  637.432682]  __x64_sys_sendto+0x6e/0x90
[  637.432682]  do_syscall_64+0xcf/0x110
[  637.432682]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  637.432682] 
[  637.432682] Local variable description: ----_tcph.i@ip_vs_in
[  637.432682] Variable was created at:
[  637.432682]  ip_vs_in+0xe9/0x3250
[  637.432682]  ip_vs_local_request4+0xec/0x130
08:52:25 executing program 1:
syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
ioctl(0xffffffffffffffff, 0x8ab0, &(0x7f0000000000)="d39e9aa3bf65e0d56f97cbc70f7c61e0188b06efcbb71112d0ffffff7f509c80f89fd3c5202f745089d181249250ce09186a810000004c28a92a1d")

[  638.669979] not chained 540000 origins
[  638.672350] CPU: 1 PID: 16665 Comm: syz-executor2 Not tainted 4.20.0-rc2+ #88
[  638.675043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  638.675043] Call Trace:
[  638.675043]  dump_stack+0x32d/0x480
[  638.695622]  ? save_stack_trace+0xc6/0x110
[  638.695622]  kmsan_internal_chain_origin+0x222/0x240
[  638.695622]  ? kmsan_internal_chain_origin+0x136/0x240
[  638.695622]  ? __msan_chain_origin+0x6d/0xb0
[  638.695622]  ? __save_stack_trace+0x8be/0xc60
[  638.695622]  ? save_stack_trace+0xc6/0x110
[  638.695622]  ? kmsan_internal_chain_origin+0x136/0x240
[  638.695622]  ? kmsan_memcpy_origins+0x13d/0x190
[  638.695622]  ? __msan_memcpy+0x6f/0x80
[  638.695622]  ? pskb_expand_head+0x436/0x1d20
[  638.695622]  ? tcp_trim_head+0x214/0x9b0
[  638.695622]  ? tcp_ack+0x3193/0xa010
[  638.695622]  ? tcp_rcv_established+0xf7e/0x2940
[  638.752362]  ? tcp_v4_do_rcv+0x686/0xd80
[  638.752362]  ? __release_sock+0x32d/0x750
[  638.752362]  ? __sk_flush_backlog+0x52/0x70
[  638.752362]  ? tcp_sendmsg_locked+0xd72/0x6c30
[  638.752362]  ? tcp_sendmsg+0xb2/0x100
[  638.752362]  ? inet_sendmsg+0x4e9/0x800
[  638.752362]  ? __sys_sendto+0x940/0xb80
[  638.752362]  ? __se_sys_sendto+0x107/0x130
[  638.752362]  ? __x64_sys_sendto+0x6e/0x90
[  638.752362]  ? do_syscall_64+0xcf/0x110
[  638.752362]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  638.752362]  ? is_bpf_text_address+0x49e/0x4d0
[  638.752362]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  638.752362]  ? __module_address+0x6a/0x5f0
[  638.752362]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  638.752362]  ? is_bpf_text_address+0x49e/0x4d0
[  638.752362]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  638.752362]  ? in_task_stack+0x12c/0x210
[  638.752362]  __msan_chain_origin+0x6d/0xb0
[  638.752362]  ? kmsan_internal_chain_origin+0x136/0x240
[  638.752362]  __save_stack_trace+0x8be/0xc60
[  638.752362]  ? kmsan_internal_chain_origin+0x136/0x240
[  638.752362]  save_stack_trace+0xc6/0x110
[  638.752362]  kmsan_internal_chain_origin+0x136/0x240
[  638.752362]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  638.752362]  ? kmsan_internal_chain_origin+0x136/0x240
[  638.752362]  ? kmsan_memcpy_origins+0x13d/0x190
[  638.752362]  ? __msan_memcpy+0x6f/0x80
[  638.752362]  ? pskb_expand_head+0x436/0x1d20
[  638.752362]  ? tcp_trim_head+0x214/0x9b0
[  638.752362]  ? tcp_ack+0x3193/0xa010
[  638.752362]  ? tcp_rcv_established+0xf7e/0x2940
[  638.752362]  ? tcp_v4_do_rcv+0x686/0xd80
[  638.752362]  ? __release_sock+0x32d/0x750
[  638.752362]  ? __sk_flush_backlog+0x52/0x70
[  638.752362]  ? tcp_sendmsg_locked+0xd72/0x6c30
[  638.752362]  ? tcp_sendmsg+0xb2/0x100
[  638.752362]  ? inet_sendmsg+0x4e9/0x800
[  638.752362]  ? __sys_sendto+0x940/0xb80
[  638.752362]  ? __se_sys_sendto+0x107/0x130
[  638.752362]  ? __x64_sys_sendto+0x6e/0x90
[  638.752362]  ? do_syscall_64+0xcf/0x110
[  638.752362]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  638.752362]  ? memcg_kmem_put_cache+0x73/0x460
[  638.752362]  ? __kmalloc_node_track_caller+0x1010/0x14e0
[  638.752362]  ? __msan_get_context_state+0x9/0x20
[  638.752362]  ? INIT_INT+0xc/0x30
[  638.752362]  ? __kmalloc_node_track_caller+0x369/0x14e0
[  638.752362]  kmsan_memcpy_origins+0x13d/0x190
[  638.752362]  __msan_memcpy+0x6f/0x80
[  638.752362]  pskb_expand_head+0x436/0x1d20
[  638.752362]  tcp_trim_head+0x214/0x9b0
[  638.752362]  tcp_ack+0x3193/0xa010
[  638.752362]  tcp_rcv_established+0xf7e/0x2940
[  638.752362]  ? __msan_get_context_state+0x9/0x20
[  638.752362]  tcp_v4_do_rcv+0x686/0xd80
[  638.752362]  ? inet_sk_rx_dst_set+0x200/0x200
[  638.752362]  __release_sock+0x32d/0x750
[  638.752362]  __sk_flush_backlog+0x52/0x70
[  638.752362]  ? tcp_v4_init_sock+0xc0/0xc0
[  638.752362]  tcp_sendmsg_locked+0xd72/0x6c30
[  638.752362]  ? kmsan_internal_unpoison_shadow+0x30/0xd0
[  638.752362]  tcp_sendmsg+0xb2/0x100
[  638.752362]  ? tcp_sendmsg_locked+0x6c30/0x6c30
[  638.752362]  inet_sendmsg+0x4e9/0x800
[  638.752362]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  638.752362]  ? security_socket_sendmsg+0x1bd/0x200
[  638.752362]  ? inet_getname+0x490/0x490
[  638.752362]  __sys_sendto+0x940/0xb80
[  638.752362]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  638.752362]  ? prepare_exit_to_usermode+0x182/0x4c0
[  638.752362]  __se_sys_sendto+0x107/0x130
[  638.752362]  __x64_sys_sendto+0x6e/0x90
[  638.752362]  do_syscall_64+0xcf/0x110
[  638.752362]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  638.752362] RIP: 0033:0x457569
[  638.752362] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  638.752362] RSP: 002b:00007f84db90fc78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  638.752362] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000457569
[  638.752362] RDX: 00000000fffffdef RSI: 00000000200003c0 RDI: 0000000000000003
[  638.752362] RBP: 000000000072bf00 R08: 00000000200001c0 R09: 0000000000000010
[  638.752362] R10: 00000000000001f4 R11: 0000000000000246 R12: 00007f84db9106d4
[  638.752362] R13: 00000000004c3c11 R14: 00000000004d5e80 R15: 00000000ffffffff
[  638.752362] Uninit was stored to memory at:
[  638.752362]  kmsan_internal_chain_origin+0x136/0x240
[  638.752362]  __msan_chain_origin+0x6d/0xb0
[  638.752362]  __save_stack_trace+0x8be/0xc60
[  638.752362]  save_stack_trace+0xc6/0x110
[  638.752362]  kmsan_internal_chain_origin+0x136/0x240
[  638.752362]  kmsan_memcpy_origins+0x13d/0x190
[  638.752362]  __msan_memcpy+0x6f/0x80
[  638.752362]  pskb_expand_head+0x436/0x1d20
[  638.752362]  tcp_trim_head+0x214/0x9b0
[  638.752362]  tcp_ack+0x3193/0xa010
[  638.752362]  tcp_rcv_established+0xf7e/0x2940
[  638.752362]  tcp_v4_do_rcv+0x686/0xd80
[  638.752362]  __release_sock+0x32d/0x750
[  638.752362]  __sk_flush_backlog+0x52/0x70
[  638.752362]  tcp_sendmsg_locked+0xd72/0x6c30
[  638.752362]  tcp_sendmsg+0xb2/0x100
[  638.752362]  inet_sendmsg+0x4e9/0x800
[  638.752362]  __sys_sendto+0x940/0xb80
[  638.752362]  __se_sys_sendto+0x107/0x130
[  638.752362]  __x64_sys_sendto+0x6e/0x90
[  638.752362]  do_syscall_64+0xcf/0x110
[  638.752362]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  638.752362] 
[  638.752362] Uninit was stored to memory at:
[  638.752362]  kmsan_internal_chain_origin+0x136/0x240
[  638.752362]  __msan_chain_origin+0x6d/0xb0
[  638.752362]  __save_stack_trace+0x8be/0xc60
[  638.752362]  save_stack_trace+0xc6/0x110
[  638.752362]  kmsan_internal_chain_origin+0x136/0x240
[  638.752362]  kmsan_memcpy_origins+0x13d/0x190
[  638.752362]  __msan_memcpy+0x6f/0x80
[  638.752362]  pskb_expand_head+0x436/0x1d20
[  638.752362]  tcp_trim_head+0x214/0x9b0
[  638.752362]  tcp_ack+0x3193/0xa010
[  638.752362]  tcp_rcv_established+0xf7e/0x2940
[  638.752362]  tcp_v4_do_rcv+0x686/0xd80
[  638.752362]  __release_sock+0x32d/0x750
[  638.752362]  __sk_flush_backlog+0x52/0x70
[  638.752362]  tcp_sendmsg_locked+0xd72/0x6c30
[  638.752362]  tcp_sendmsg+0xb2/0x100
[  638.752362]  inet_sendmsg+0x4e9/0x800
[  638.752362]  __sys_sendto+0x940/0xb80
[  638.752362]  __se_sys_sendto+0x107/0x130
[  638.752362]  __x64_sys_sendto+0x6e/0x90
[  638.752362]  do_syscall_64+0xcf/0x110
[  638.752362]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  638.752362] 
[  638.752362] Uninit was stored to memory at:
[  638.752362]  kmsan_internal_chain_origin+0x136/0x240
[  638.752362]  __msan_chain_origin+0x6d/0xb0
[  638.752362]  __save_stack_trace+0x8be/0xc60
[  638.752362]  save_stack_trace+0xc6/0x110
[  638.752362]  kmsan_internal_chain_origin+0x136/0x240
[  638.752362]  kmsan_memcpy_origins+0x13d/0x190
[  638.752362]  __msan_memcpy+0x6f/0x80
[  638.752362]  pskb_expand_head+0x436/0x1d20
[  638.752362]  tcp_trim_head+0x214/0x9b0
[  638.752362]  tcp_ack+0x3193/0xa010
[  638.752362]  tcp_rcv_established+0xf7e/0x2940
[  638.752362]  tcp_v4_do_rcv+0x686/0xd80
[  638.752362]  __release_sock+0x32d/0x750
[  638.752362]  __sk_flush_backlog+0x52/0x70
[  638.752362]  tcp_sendmsg_locked+0xd72/0x6c30
[  638.752362]  tcp_sendmsg+0xb2/0x100
[  638.752362]  inet_sendmsg+0x4e9/0x800
[  638.752362]  __sys_sendto+0x940/0xb80
[  638.752362]  __se_sys_sendto+0x107/0x130
[  638.752362]  __x64_sys_sendto+0x6e/0x90
[  638.752362]  do_syscall_64+0xcf/0x110
[  638.752362]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  638.752362] 
[  638.752362] Uninit was stored to memory at:
[  638.752362]  kmsan_internal_chain_origin+0x136/0x240
[  638.752362]  __msan_chain_origin+0x6d/0xb0
[  638.752362]  __save_stack_trace+0x8be/0xc60
[  638.752362]  save_stack_trace+0xc6/0x110
[  638.752362]  kmsan_internal_chain_origin+0x136/0x240
[  638.752362]  kmsan_memcpy_origins+0x13d/0x190
[  638.752362]  __msan_memcpy+0x6f/0x80
[  638.752362]  pskb_expand_head+0x436/0x1d20
[  638.752362]  tcp_trim_head+0x214/0x9b0
[  638.752362]  tcp_ack+0x3193/0xa010
[  638.752362]  tcp_rcv_established+0xf7e/0x2940
[  638.752362]  tcp_v4_do_rcv+0x686/0xd80
[  638.752362]  __release_sock+0x32d/0x750
[  638.752362]  __sk_flush_backlog+0x52/0x70
[  638.752362]  tcp_sendmsg_locked+0xd72/0x6c30
[  638.752362]  tcp_sendmsg+0xb2/0x100
[  638.752362]  inet_sendmsg+0x4e9/0x800
[  638.752362]  __sys_sendto+0x940/0xb80
[  638.752362]  __se_sys_sendto+0x107/0x130
[  638.752362]  __x64_sys_sendto+0x6e/0x90
[  638.752362]  do_syscall_64+0xcf/0x110
[  638.752362]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  638.752362] 
[  638.752362] Uninit was stored to memory at:
[  638.752362]  kmsan_internal_chain_origin+0x136/0x240
[  638.752362]  __msan_chain_origin+0x6d/0xb0
[  638.752362]  __save_stack_trace+0x8be/0xc60
[  638.752362]  save_stack_trace+0xc6/0x110
[  638.752362]  kmsan_internal_chain_origin+0x136/0x240
[  638.752362]  kmsan_memcpy_origins+0x13d/0x190
[  638.752362]  __msan_memcpy+0x6f/0x80
[  638.752362]  pskb_expand_head+0x436/0x1d20
[  638.752362]  tcp_trim_head+0x214/0x9b0
[  638.752362]  tcp_ack+0x3193/0xa010
[  638.752362]  tcp_rcv_established+0xf7e/0x2940
[  638.752362]  tcp_v4_do_rcv+0x686/0xd80
[  638.752362]  __release_sock+0x32d/0x750
[  638.752362]  __sk_flush_backlog+0x52/0x70
[  638.752362]  tcp_sendmsg_locked+0xd72/0x6c30
[  638.752362]  tcp_sendmsg+0xb2/0x100
[  638.752362]  inet_sendmsg+0x4e9/0x800
[  638.752362]  __sys_sendto+0x940/0xb80
[  638.752362]  __se_sys_sendto+0x107/0x130
[  638.752362]  __x64_sys_sendto+0x6e/0x90
[  638.752362]  do_syscall_64+0xcf/0x110
[  638.752362]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  638.752362] 
[  638.752362] Uninit was stored to memory at:
[  638.752362]  kmsan_internal_chain_origin+0x136/0x240
[  638.752362]  __msan_chain_origin+0x6d/0xb0
[  638.752362]  __save_stack_trace+0x8be/0xc60
[  638.752362]  save_stack_trace+0xc6/0x110
[  638.752362]  kmsan_internal_chain_origin+0x136/0x240
[  638.752362]  kmsan_memcpy_origins+0x13d/0x190
[  638.752362]  __msan_memcpy+0x6f/0x80
[  638.752362]  pskb_expand_head+0x436/0x1d20
[  638.752362]  tcp_trim_head+0x214/0x9b0
[  638.752362]  tcp_ack+0x3193/0xa010
[  638.752362]  tcp_rcv_established+0xf7e/0x2940
[  638.752362]  tcp_v4_do_rcv+0x686/0xd80
[  638.752362]  __release_sock+0x32d/0x750
[  638.752362]  __sk_flush_backlog+0x52/0x70
[  638.752362]  tcp_sendmsg_locked+0xd72/0x6c30
[  638.752362]  tcp_sendmsg+0xb2/0x100
[  638.752362]  inet_sendmsg+0x4e9/0x800
[  638.752362]  __sys_sendto+0x940/0xb80
[  638.752362]  __se_sys_sendto+0x107/0x130
[  638.752362]  __x64_sys_sendto+0x6e/0x90
[  638.752362]  do_syscall_64+0xcf/0x110
[  638.752362]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  638.752362] 
[  638.752362] Uninit was stored to memory at:
[  638.752362]  kmsan_internal_chain_origin+0x136/0x240
[  638.752362]  __msan_chain_origin+0x6d/0xb0
[  638.752362]  __save_stack_trace+0x8be/0xc60
[  638.752362]  save_stack_trace+0xc6/0x110
[  638.752362]  kmsan_internal_chain_origin+0x136/0x240
[  638.752362]  kmsan_memcpy_origins+0x13d/0x190
[  638.752362]  __msan_memcpy+0x6f/0x80
[  638.752362]  pskb_expand_head+0x436/0x1d20
[  638.752362]  tcp_trim_head+0x214/0x9b0
[  638.752362]  tcp_ack+0x3193/0xa010
[  638.752362]  tcp_rcv_established+0xf7e/0x2940
[  638.752362]  tcp_v4_do_rcv+0x686/0xd80
[  638.752362]  __release_sock+0x32d/0x750
[  638.752362]  __sk_flush_backlog+0x52/0x70
[  638.752362]  tcp_sendmsg_locked+0xd72/0x6c30
[  638.752362]  tcp_sendmsg+0xb2/0x100
[  638.752362]  inet_sendmsg+0x4e9/0x800
[  638.752362]  __sys_sendto+0x940/0xb80
[  638.752362]  __se_sys_sendto+0x107/0x130
[  638.752362]  __x64_sys_sendto+0x6e/0x90
[  638.752362]  do_syscall_64+0xcf/0x110
[  638.752362]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  638.752362] 
[  638.752362] Local variable description: ----acpar@ipt_do_table
[  638.752362] Variable was created at:
[  638.752362]  ipt_do_table+0x97/0x29d0
[  638.752362]  iptable_mangle_hook+0x35b/0x730
08:52:27 executing program 5:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
fstat(r0, &(0x7f0000000140))
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000340)='/dev/dlm_plock\x00', 0x400, 0x0)
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000440)={<r3=>0x0, @local, @dev}, &(0x7f0000000480)=0xc)
connect$can_bcm(r2, &(0x7f00000004c0)={0x1d, r3}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000080)={'eql\x00', 0x809})
poll(&(0x7f00000002c0)=[{r5}], 0x1, 0x0)
ioctl$sock_ifreq(r4, 0x8914, &(0x7f00000000c0)={"65716c000000a95b00", @ifru_mtu=0x1})
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="89f9d765312b4001000000b0967bdae72ee5094371136a6477ba0a51a2969dbc2d4028ac7b5af67f178f9314ea2bb3ac1c442eaf749c21ae2af8e39a40c3dc032e6f8eb738786a79df71302ff3b5d42731597d995bed6103ff63b9a908bcc05e0400000092bdf4d3282f62d6928117f82c2dae48742dac857de846096e82c1a02e1edcadda721a3f8dc9a54da05d467ed35b6f931d8686986960e756048c61c2a2c374c318d21d7a7ef550779190066e82ea3f6724a9f61ff028ec7e8d7a04352e7a78f777a68b823abb646bdc55dbde285ce15bf45820f0ae20e4023f57c71f8b41e08eff14c3441485c6f54a30750c780852dad879d6d4be7243bd07f841f89009000000c23d6b4f70fe48b54577449cfcbc4d5dbefb8b465d45bc2d11afbe7bfbe6ca76ac259e634eebf8db694ff02fe2b4c80783b443ef68287e9cf7cbcc2ee196f10c4ffb3f59e4921e0f9f08cba9a2c56c49fa7465b4836da5b2d9b142763889caa718d8a4fcb2f3ef6dc6185708fb1e0f9081d29fb3defae8c525f07437c7835b4eac8f86e2a22a81eff4120340e4a379446aac45dbff791d147805cd2748d74b8996c9b51ec03b410ef8fe126117fbf106795bc1b25d8dd786b6496bd743b7c75c638b516214ff56ec99a9c0f2919fa781cd8b4f2f2e425a6780c630a05c8e60011bc8e10055a6b6b652e5a13c73fd96f79038a65d6991ac38899ab98486d92bbcffdcf39a08a248ae1045ff8c6123de2f15d9ac360a3497c07001a3a1936ff1c03194ace131d380f515629ff016bd890ff822704c0db8bc68efad2eace5466628e7d6c2f2b3043698c46fdd62588fc54b72a786af0d026353879892c58007f7988a3f2240a43303218cc1df27807bfbde117c505f060396850a82459830a89a6a8601ea2e47f2e41379d110b96576f8f7705bba7ec63d6b44ccf84073cf9bdcf1aee48cb60c2f6dd3e89f3626a5e23339ea99c918d76a43fecf7401f7550e8eaefa4d84f1143320599daf7699858b2bf408e9093aa91d6dd9ae39d8decf3f7a199b0c1918d47be3b7aeff9a8c10efabe787b43141e7abaa4317158864b0361568140ab79cade1223c3ef81da4c4eefdd5b21fcc1b87872fc3b346737105589b84ba9814679b7510ed9b4f290083ee634ae12243ccc63413d7bc35eee0d1a4bc9dd33c37f5130303edddfc2636ffbf1ee0febb953436710c2ed9bd001d2ebe878788ddf7f7ad55b7a8cbcb348e82cd65b59315858086606115d04a3cda0e4af2a703afe09e4afedf00d5fbb2284df9af1d1ec9f15356c58fdcde45fff250568347f3b0b49e11e44c0a4d98a1e3393ce5d76614990f23b2e146842b166fb070894c128f957b0cc7d80a16275efd15659e0f81990062ebfdf9454d12e63d1ce1dad7848fcbab642a0d62ebb17abc824883e4c6e1e81992f28f5bbd7b26e2645c7941b03dd2f27c29baa2412976a05fa13d8fc4d6bd152a8668d986a9cf605b8b4a61600481e01bdd74c96d73390518add968100ac742aaf5dd7eb4ccf0868ee3ef7f12c32298737dea65bd5d7161dd679b4dd6799aa086bf3b8c889780ac102b7b1ebcf2569dd77f201d74d94a61400ced9c613414012b451628a96e6cc8fe738e964940f7b753065677776f3b5398975aeac974fced560667cead03a8976eb4229ff4e1bca5588d5d544cbca8588215a2f5ef7a5fc1a07438d3a3e05d21eb30d46f1688543d4327d36e07635396eaab4e9bc862ee9c7fa24de38c5cbf8fa5afd024116bc84854d01072145ecc4bb415d94a333e0d91e9cf6fda5a2c244a585e3a32c95398f44800c578faf4a2ccc5979664db7a55aa5cc02789f84321ccaeed4f37dd48c8d1484ade0588fc4255ec8780534a693e2bfe88b622034552084492c6757429239bbe8dad8b904e58007639ca773344040a441dc0027a46c22198f3d0b0588e164881a9fc7a85a63c459b0d002e3d890edd250742d363e85250badb91a734759baf773c32b177d36eefb662be70", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
r6 = memfd_create(&(0x7f0000000100)='.@(\x00', 0x0)
ioctl$VIDIOC_TRY_FMT(r6, 0xc0d05640, &(0x7f0000000200)={0xb, @pix_mp={0x6770, 0x0, 0x7f734f6f, 0x4, 0x7, [{0xca, 0x8}, {0x8, 0xfffffffffffffff9}, {0x0, 0x4}, {0x8, 0x7}, {0x100, 0x1}, {0x5}, {0x7}, {0x1ff}], 0x0, 0x8, 0x7}})
vmsplice(r2, &(0x7f0000000300), 0x0, 0x9)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r6, 0x801c581f, &(0x7f0000000300)={0x1, 0x0, 0x9, 0x4, 0x3})

08:52:27 executing program 0:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
r2 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm-control\x00', 0x200, 0x0)
ioctl$VIDIOC_SUBDEV_S_SELECTION(r2, 0xc040563e, &(0x7f0000000080)={0x0, 0x1, 0x2, 0x1, {0x4db7b21, 0x2f8e, 0x0, 0x8000}})
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000200)={{0x7, 0x401}, {0x6}, 0xb, 0x3})
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
getsockname$packet(r2, &(0x7f0000000340)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
ioctl$TUNSETIFINDEX(r1, 0x400454da, &(0x7f0000000300)=r4)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
getsockname$packet(r3, &(0x7f0000000140)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000180)=0x14)
ioctl$TUNSETIFINDEX(r3, 0x400454da, &(0x7f00000001c0)=r5)
dup2(r3, r0)

08:52:27 executing program 3 (fault-call:4 fault-nth:0):
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))

08:52:27 executing program 1:
syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
ioctl(0xffffffffffffffff, 0x8ab0, &(0x7f0000000000)="d39e9aa3bf65e0d56f97cbc70f7c61e0188b06efcbb71112d0ffffff7f509c80f89fd3c5202f745089d181249250ce09186a810000004c28a92a1d")

08:52:27 executing program 2:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
r1 = syz_open_dev$media(&(0x7f0000000080)='/dev/media#\x00', 0x9, 0x8000)
r2 = syz_genetlink_get_family_id$team(&(0x7f0000000100)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000440)={'team0\x00', <r3=>0x0})
sendmsg$TEAM_CMD_NOOP(r1, &(0x7f0000000600)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x84}, 0xc, &(0x7f00000005c0)={&(0x7f0000000500)={0x98, r2, 0x300, 0x70bd2c, 0x25dfdbfe, {}, [{{0x8, 0x1, r3}, {0x7c, 0x2, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8}, {0x8}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0x8}}}]}}]}, 0x98}, 0x1, 0x0, 0x0, 0x801}, 0x1)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

08:52:27 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="89f9d765312b4001000000b0967bdae72ee5094371136a6477ba0a51a2969dbc2d4028ac7b5af67f178f9314ea2bb3ac1c442eaf749c21ae2af8e39a40c3dc032e6f8eb738786a79df71302ff3b5d42731597d995bed6103ff63b9a908bcc05e0400000092bdf4d3282f62d6928117f82c2dae48742dac857de846096e82c1a02e1edcadda721a3f8dc9a54da05d467ed35b6f931d8686986960e756048c61c2a2c374c318d21d7a7ef550779190066e82ea3f6724a9f61ff028ec7e8d7a04352e7a78f777a68b823abb646bdc55dbde285ce15bf45820f0ae20e4023f57c71f8b41e08eff14c3441485c6f54a30750c780852dad879d6d4be7243bd07f841f89009000000c23d6b4f70fe48b54577449cfcbc4d5dbefb8b465d45bc2d11afbe7bfbe6ca76ac259e634eebf8db694ff02fe2b4c80783b443ef68287e9cf7cbcc2ee196f10c4ffb3f59e4921e0f9f08cba9a2c56c49fa7465b4836da5b2d9b142763889caa718d8a4fcb2f3ef6dc6185708fb1e0f9081d29fb3defae8c525f07437c7835b4eac8f86e2a22a81eff4120340e4a379446aac45dbff791d147805cd2748d74b8996c9b51ec03b410ef8fe126117fbf106795bc1b25d8dd786b6496bd743b7c75c638b516214ff56ec99a9c0f2919fa781cd8b4f2f2e425a6780c630a05c8e60011bc8e10055a6b6b652e5a13c73fd96f79038a65d6991ac38899ab98486d92bbcffdcf39a08a248ae1045ff8c6123de2f15d9ac360a3497c07001a3a1936ff1c03194ace131d380f515629ff016bd890ff822704c0db8bc68efad2eace5466628e7d6c2f2b3043698c46fdd62588fc54b72a786af0d026353879892c58007f7988a3f2240a43303218cc1df27807bfbde117c505f060396850a82459830a89a6a8601ea2e47f2e41379d110b96576f8f7705bba7ec63d6b44ccf84073cf9bdcf1aee48cb60c2f6dd3e89f3626a5e23339ea99c918d76a43fecf7401f7550e8eaefa4d84f1143320599daf7699858b2bf408e9093aa91d6dd9ae39d8decf3f7a199b0c1918d47be3b7aeff9a8c10efabe787b43141e7abaa4317158864b0361568140ab79cade1223c3ef81da4c4eefdd5b21fcc1b87872fc3b346737105589b84ba9814679b7510ed9b4f290083ee634ae12243ccc63413d7bc35eee0d1a4bc9dd33c37f5130303edddfc2636ffbf1ee0febb953436710c2ed9bd001d2ebe878788ddf7f7ad55b7a8cbcb348e82cd65b59315858086606115d04a3cda0e4af2a703afe09e4afedf00d5fbb2284df9af1d1ec9f15356c58fdcde45fff250568347f3b0b49e11e44c0a4d98a1e3393ce5d76614990f23b2e146842b166fb070894c128f957b0cc7d80a16275efd15659e0f81990062ebfdf9454d12e63d1ce1dad7848fcbab642a0d62ebb17abc824883e4c6e1e81992f28f5bbd7b26e2645c7941b03dd2f27c29baa2412976a05fa13d8fc4d6bd152a8668d986a9cf605b8b4a61600481e01bdd74c96d73390518add968100ac742aaf5dd7eb4ccf0868ee3ef7f12c32298737dea65bd5d7161dd679b4dd6799aa086bf3b8c889780ac102b7b1ebcf2569dd77f201d74d94a61400ced9c613414012b451628a96e6cc8fe738e964940f7b753065677776f3b5398975aeac974fced560667cead03a8976eb4229ff4e1bca5588d5d544cbca8588215a2f5ef7a5fc1a07438d3a3e05d21eb30d46f1688543d4327d36e07635396eaab4e9bc862ee9c7fa24de38c5cbf8fa5afd024116bc84854d01072145ecc4bb415d94a333e0d91e9cf6fda5a2c244a585e3a32c95398f44800c578faf4a2ccc5979664db7a55aa5cc02789f84321ccaeed4f37dd48c8d1484ade0588fc4255ec8780534a693e2bfe88b622034552084492c6757429239bbe8dad8b904e58007639ca773344040a441dc0027a46c22198f3d0b0588e164881a9fc7a85a63c459b0d002e3d890edd250742d363e85250badb91a734759baf773c32b177d36eefb662be70", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0x0, 0x1f4, &(0x7f00000000c0)={0x2, 0x4e20, @rand_addr}, 0x10)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vga_arbiter\x00', 0x800, 0x0)
r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000140)='/dev/rfkill\x00', 0x4400, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x4e22, @multicast1}, 0x10)

[  640.680844] FAULT_INJECTION: forcing a failure.
[  640.680844] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  640.692946] CPU: 1 PID: 16678 Comm: syz-executor3 Not tainted 4.20.0-rc2+ #88
[  640.700279] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  640.702818] Call Trace:
[  640.702818]  dump_stack+0x32d/0x480
[  640.702818]  should_fail+0x11e5/0x13c0
[  640.702818]  __alloc_pages_nodemask+0x6f7/0x64d0
[  640.702818]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  640.702818]  ? __update_load_avg_cfs_rq+0x105/0x10b0
[  640.702818]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  640.702818]  ? __update_load_avg_cfs_rq+0x105/0x10b0
[  640.702818]  alloc_pages_current+0x55d/0x7d0
[  640.702818]  kmalloc_order_trace+0xd9/0x470
[  640.702818]  ? drm_mode_create_dumb+0x470/0x470
[  640.702818]  __kmalloc+0x4b2/0x4d0
[  640.702818]  ? __srcu_read_unlock+0x76/0xb0
[  640.702818]  ? drm_mode_create_dumb+0x470/0x470
[  640.702818]  drm_ioctl+0x862/0x1160
[  640.702818]  ? drm_mode_create_dumb+0x470/0x470
[  640.702818]  ? __msan_poison_alloca+0x1e0/0x270
[  640.702818]  ? do_vfs_ioctl+0x184/0x2f70
[  640.702818]  ? __se_sys_ioctl+0x1da/0x270
[  640.702818]  ? drm_ioctl_kernel+0x6e0/0x6e0
[  640.702818]  do_vfs_ioctl+0xfbc/0x2f70
[  640.702818]  ? security_file_ioctl+0x92/0x200
[  640.702818]  __se_sys_ioctl+0x1da/0x270
[  640.702818]  __x64_sys_ioctl+0x4a/0x70
[  640.702818]  do_syscall_64+0xcf/0x110
[  640.702818]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  640.702818] RIP: 0033:0x457569
[  640.702818] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  640.702818] RSP: 002b:00007f8dd312dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  640.702818] RAX: ffffffffffffffda RBX: 00007f8dd312dc90 RCX: 0000000000457569
[  640.702818] RDX: 0000000020000040 RSI: ffffffffffffffb2 RDI: 0000000000000003
[  640.702818] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  640.702818] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8dd312e6d4
[  640.702818] R13: 00000000004be737 R14: 00000000004ce6f8 R15: 0000000000000005
[  640.932461] not chained 550000 origins
[  640.936390] CPU: 0 PID: 16681 Comm: syz-executor2 Not tainted 4.20.0-rc2+ #88
[  640.942205] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  640.942205] Call Trace:
[  640.942205]  dump_stack+0x32d/0x480
[  640.942205]  kmsan_internal_chain_origin+0x222/0x240
[  640.942205]  ? save_stack_trace+0xc6/0x110
[  640.942205]  ? __irqentry_text_end+0x1fa056/0x1fa056
[  640.942205]  ? kmsan_internal_chain_origin+0x90/0x240
[  640.942205]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  640.942205]  ? is_bpf_text_address+0x49e/0x4d0
[  640.942205]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  640.942205]  ? in_task_stack+0x12c/0x210
[  640.942205]  __msan_chain_origin+0x6d/0xb0
[  641.000045]  ? __se_sys_sendto+0x107/0x130
[  641.000045]  __save_stack_trace+0x8be/0xc60
[  641.009968]  ? __se_sys_sendto+0x107/0x130
[  641.012451]  save_stack_trace+0xc6/0x110
[  641.012451]  kmsan_internal_chain_origin+0x136/0x240
[  641.012451]  ? tcp_push_one+0x195/0x230
[  641.012451]  ? kmsan_internal_chain_origin+0x136/0x240
[  641.012451]  ? kmsan_memcpy_origins+0x13d/0x190
[  641.012451]  ? __msan_memcpy+0x6f/0x80
[  641.012451]  ? pskb_expand_head+0x436/0x1d20
[  641.012451]  ? iptunnel_handle_offloads+0x455/0x810
[  641.012451]  ? ipip_tunnel_xmit+0x15d/0x4a0
[  641.012451]  ? dev_hard_start_xmit+0x6dc/0xde0
[  641.012451]  ? __dev_queue_xmit+0x2d9e/0x3e00
[  641.012451]  ? dev_queue_xmit+0x4b/0x60
[  641.012451]  ? neigh_direct_output+0x42/0x50
[  641.012451]  ? ip_finish_output2+0x141a/0x1560
08:52:28 executing program 1:
syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
ioctl(0xffffffffffffffff, 0x8ab0, &(0x7f0000000000)="d39e9aa3bf65e0d56f97cbc70f7c61e0188b06efcbb71112d0ffffff7f509c80f89fd3c5202f745089d181249250ce09186a810000004c28a92a1d")

08:52:28 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
r1 = syz_open_dev$mouse(&(0x7f0000000080)='/dev/input/mouse#\x00', 0x7, 0x10200)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r1, 0x4008af60, &(0x7f00000000c0)={@reserved})

[  641.012451]  ? ip_finish_output+0xd93/0x10f0
[  641.082355]  ? ip_output+0x55c/0x630
[  641.082355]  ? __ip_queue_xmit+0x1bb5/0x2170
[  641.082355]  ? ip_queue_xmit+0xcc/0xf0
[  641.093005]  ? __tcp_transmit_skb+0x425c/0x5e00
[  641.098326]  ? tcp_write_xmit+0x389a/0xacc0
[  641.098326]  ? tcp_push_one+0x195/0x230
[  641.098326]  ? tcp_sendmsg_locked+0x456d/0x6c30
[  641.098326]  ? tcp_sendmsg+0xb2/0x100
[  641.098326]  ? inet_sendmsg+0x4e9/0x800
[  641.098326]  ? __sys_sendto+0x940/0xb80
[  641.098326]  ? __se_sys_sendto+0x107/0x130
[  641.098326]  ? __x64_sys_sendto+0x6e/0x90
[  641.098326]  ? do_syscall_64+0xcf/0x110
[  641.098326]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  641.098326]  ? __kmalloc_node_track_caller+0x1010/0x14e0
[  641.145033]  ? __msan_get_context_state+0x9/0x20
[  641.152458]  ? INIT_INT+0xc/0x30
[  641.152458]  ? __kmalloc_node_track_caller+0x369/0x14e0
[  641.152458]  kmsan_memcpy_origins+0x13d/0x190
[  641.152458]  __msan_memcpy+0x6f/0x80
[  641.152458]  pskb_expand_head+0x436/0x1d20
[  641.152458]  iptunnel_handle_offloads+0x455/0x810
[  641.152458]  ipip_tunnel_xmit+0x15d/0x4a0
[  641.183307]  ? ipip_tunnel_init+0x240/0x240
[  641.183307]  dev_hard_start_xmit+0x6dc/0xde0
[  641.183307]  __dev_queue_xmit+0x2d9e/0x3e00
[  641.195988]  dev_queue_xmit+0x4b/0x60
[  641.195988]  neigh_direct_output+0x42/0x50
[  641.195988]  ? neigh_connected_output+0x700/0x700
[  641.195988]  ip_finish_output2+0x141a/0x1560
[  641.213965]  ip_finish_output+0xd93/0x10f0
[  641.213965]  ip_output+0x55c/0x630
[  641.222384]  ? ip_mc_finish_output+0x440/0x440
[  641.222384]  ? ip_finish_output+0x10f0/0x10f0
[  641.222384]  __ip_queue_xmit+0x1bb5/0x2170
[  641.222384]  ? kmsan_set_origin+0x7f/0x100
[  641.222384]  ip_queue_xmit+0xcc/0xf0
[  641.222384]  ? dst_hold_safe+0x5d0/0x5d0
[  641.222384]  __tcp_transmit_skb+0x425c/0x5e00
[  641.222384]  tcp_write_xmit+0x389a/0xacc0
[  641.222384]  tcp_push_one+0x195/0x230
[  641.222384]  tcp_sendmsg_locked+0x456d/0x6c30
[  641.262810]  ? kmsan_internal_unpoison_shadow+0x30/0xd0
[  641.262810]  tcp_sendmsg+0xb2/0x100
[  641.262810]  ? tcp_sendmsg_locked+0x6c30/0x6c30
[  641.262810]  inet_sendmsg+0x4e9/0x800
[  641.262810]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  641.262810]  ? security_socket_sendmsg+0x1bd/0x200
[  641.262810]  ? inet_getname+0x490/0x490
[  641.262810]  __sys_sendto+0x940/0xb80
[  641.262810]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  641.262810]  ? prepare_exit_to_usermode+0x182/0x4c0
[  641.262810]  __se_sys_sendto+0x107/0x130
[  641.262810]  __x64_sys_sendto+0x6e/0x90
[  641.262810]  do_syscall_64+0xcf/0x110
[  641.262810]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  641.262810] RIP: 0033:0x457569
[  641.262810] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  641.262810] RSP: 002b:00007f84db90fc78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  641.262810] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000457569
[  641.262810] RDX: 00000000fffffdef RSI: 00000000200003c0 RDI: 0000000000000003
[  641.262810] RBP: 000000000072bf00 R08: 00000000200001c0 R09: 0000000000000010
[  641.262810] R10: 00000000000001f4 R11: 0000000000000246 R12: 00007f84db9106d4
[  641.262810] R13: 00000000004c3c11 R14: 00000000004d5e80 R15: 00000000ffffffff
[  641.262810] Uninit was stored to memory at:
[  641.262810]  kmsan_internal_chain_origin+0x136/0x240
[  641.262810]  __msan_chain_origin+0x6d/0xb0
[  641.262810]  __save_stack_trace+0x8be/0xc60
[  641.262810]  save_stack_trace+0xc6/0x110
[  641.262810]  kmsan_internal_chain_origin+0x136/0x240
[  641.262810]  kmsan_memcpy_origins+0x13d/0x190
[  641.262810]  __msan_memcpy+0x6f/0x80
[  641.262810]  pskb_expand_head+0x436/0x1d20
[  641.262810]  iptunnel_handle_offloads+0x455/0x810
[  641.262810]  ipip_tunnel_xmit+0x15d/0x4a0
[  641.262810]  dev_hard_start_xmit+0x6dc/0xde0
[  641.262810]  __dev_queue_xmit+0x2d9e/0x3e00
[  641.262810]  dev_queue_xmit+0x4b/0x60
[  641.262810]  neigh_direct_output+0x42/0x50
[  641.262810]  ip_finish_output2+0x141a/0x1560
[  641.262810]  ip_finish_output+0xd93/0x10f0
[  641.262810]  ip_output+0x55c/0x630
[  641.262810]  __ip_queue_xmit+0x1bb5/0x2170
[  641.262810]  ip_queue_xmit+0xcc/0xf0
[  641.262810]  __tcp_transmit_skb+0x425c/0x5e00
[  641.262810]  tcp_write_xmit+0x389a/0xacc0
[  641.262810]  tcp_push_one+0x195/0x230
[  641.262810]  tcp_sendmsg_locked+0x456d/0x6c30
[  641.262810]  tcp_sendmsg+0xb2/0x100
[  641.262810]  inet_sendmsg+0x4e9/0x800
[  641.262810]  __sys_sendto+0x940/0xb80
[  641.262810]  __se_sys_sendto+0x107/0x130
[  641.262810]  __x64_sys_sendto+0x6e/0x90
[  641.262810]  do_syscall_64+0xcf/0x110
[  641.262810]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  641.262810] 
[  641.262810] Uninit was stored to memory at:
[  641.262810]  kmsan_internal_chain_origin+0x136/0x240
[  641.262810]  __msan_chain_origin+0x6d/0xb0
[  641.262810]  __save_stack_trace+0x8be/0xc60
[  641.262810]  save_stack_trace+0xc6/0x110
[  641.262810]  kmsan_internal_chain_origin+0x136/0x240
[  641.262810]  kmsan_memcpy_origins+0x13d/0x190
[  641.262810]  __msan_memcpy+0x6f/0x80
[  641.262810]  pskb_expand_head+0x436/0x1d20
[  641.262810]  iptunnel_handle_offloads+0x455/0x810
[  641.262810]  ipip_tunnel_xmit+0x15d/0x4a0
[  641.262810]  dev_hard_start_xmit+0x6dc/0xde0
[  641.262810]  __dev_queue_xmit+0x2d9e/0x3e00
[  641.262810]  dev_queue_xmit+0x4b/0x60
[  641.262810]  neigh_direct_output+0x42/0x50
[  641.262810]  ip_finish_output2+0x141a/0x1560
[  641.262810]  ip_finish_output+0xd93/0x10f0
[  641.262810]  ip_output+0x55c/0x630
[  641.262810]  __ip_queue_xmit+0x1bb5/0x2170
[  641.262810]  ip_queue_xmit+0xcc/0xf0
[  641.262810]  __tcp_transmit_skb+0x425c/0x5e00
[  641.262810]  tcp_write_xmit+0x389a/0xacc0
[  641.262810]  tcp_push_one+0x195/0x230
[  641.262810]  tcp_sendmsg_locked+0x456d/0x6c30
[  641.262810]  tcp_sendmsg+0xb2/0x100
[  641.262810]  inet_sendmsg+0x4e9/0x800
[  641.262810]  __sys_sendto+0x940/0xb80
[  641.262810]  __se_sys_sendto+0x107/0x130
[  641.262810]  __x64_sys_sendto+0x6e/0x90
[  641.262810]  do_syscall_64+0xcf/0x110
[  641.262810]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  641.262810] 
[  641.262810] Uninit was stored to memory at:
[  641.262810]  kmsan_internal_chain_origin+0x136/0x240
[  641.262810]  __msan_chain_origin+0x6d/0xb0
[  641.262810]  __save_stack_trace+0x8be/0xc60
[  641.262810]  save_stack_trace+0xc6/0x110
[  641.262810]  kmsan_internal_chain_origin+0x136/0x240
[  641.262810]  kmsan_memcpy_origins+0x13d/0x190
[  641.262810]  __msan_memcpy+0x6f/0x80
[  641.262810]  pskb_expand_head+0x436/0x1d20
[  641.262810]  iptunnel_handle_offloads+0x455/0x810
[  641.262810]  ipip_tunnel_xmit+0x15d/0x4a0
[  641.262810]  dev_hard_start_xmit+0x6dc/0xde0
[  641.262810]  __dev_queue_xmit+0x2d9e/0x3e00
[  641.262810]  dev_queue_xmit+0x4b/0x60
[  641.262810]  neigh_direct_output+0x42/0x50
[  641.262810]  ip_finish_output2+0x141a/0x1560
[  641.262810]  ip_finish_output+0xd93/0x10f0
[  641.262810]  ip_output+0x55c/0x630
[  641.262810]  __ip_queue_xmit+0x1bb5/0x2170
[  641.262810]  ip_queue_xmit+0xcc/0xf0
[  641.262810]  __tcp_transmit_skb+0x425c/0x5e00
[  641.262810]  tcp_write_xmit+0x389a/0xacc0
[  641.262810]  tcp_push_one+0x195/0x230
[  641.262810]  tcp_sendmsg_locked+0x456d/0x6c30
[  641.262810]  tcp_sendmsg+0xb2/0x100
[  641.262810]  inet_sendmsg+0x4e9/0x800
[  641.262810]  __sys_sendto+0x940/0xb80
[  641.262810]  __se_sys_sendto+0x107/0x130
[  641.262810]  __x64_sys_sendto+0x6e/0x90
[  641.262810]  do_syscall_64+0xcf/0x110
[  641.262810]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  641.262810] 
[  641.262810] Uninit was stored to memory at:
[  641.262810]  kmsan_internal_chain_origin+0x136/0x240
[  641.262810]  __msan_chain_origin+0x6d/0xb0
[  641.262810]  __save_stack_trace+0x8be/0xc60
[  641.262810]  save_stack_trace+0xc6/0x110
[  641.262810]  kmsan_internal_chain_origin+0x136/0x240
[  641.262810]  kmsan_memcpy_origins+0x13d/0x190
[  641.262810]  __msan_memcpy+0x6f/0x80
[  641.262810]  pskb_expand_head+0x436/0x1d20
[  641.262810]  iptunnel_handle_offloads+0x455/0x810
[  641.262810]  ipip_tunnel_xmit+0x15d/0x4a0
[  641.262810]  dev_hard_start_xmit+0x6dc/0xde0
[  641.262810]  __dev_queue_xmit+0x2d9e/0x3e00
[  641.262810]  dev_queue_xmit+0x4b/0x60
[  641.262810]  neigh_direct_output+0x42/0x50
[  641.262810]  ip_finish_output2+0x141a/0x1560
[  641.262810]  ip_finish_output+0xd93/0x10f0
[  641.262810]  ip_output+0x55c/0x630
[  641.262810]  __ip_queue_xmit+0x1bb5/0x2170
[  641.262810]  ip_queue_xmit+0xcc/0xf0
[  641.262810]  __tcp_transmit_skb+0x425c/0x5e00
[  641.262810]  tcp_write_xmit+0x389a/0xacc0
[  641.262810]  tcp_push_one+0x195/0x230
[  641.262810]  tcp_sendmsg_locked+0x456d/0x6c30
[  641.262810]  tcp_sendmsg+0xb2/0x100
[  641.262810]  inet_sendmsg+0x4e9/0x800
[  641.262810]  __sys_sendto+0x940/0xb80
[  641.262810]  __se_sys_sendto+0x107/0x130
[  641.262810]  __x64_sys_sendto+0x6e/0x90
[  641.262810]  do_syscall_64+0xcf/0x110
[  641.262810]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  641.262810] 
[  641.262810] Uninit was stored to memory at:
[  641.262810]  kmsan_internal_chain_origin+0x136/0x240
[  641.262810]  __msan_chain_origin+0x6d/0xb0
[  641.262810]  __save_stack_trace+0x8be/0xc60
[  641.262810]  save_stack_trace+0xc6/0x110
[  641.262810]  kmsan_internal_chain_origin+0x136/0x240
[  641.262810]  kmsan_memcpy_origins+0x13d/0x190
[  641.262810]  __msan_memcpy+0x6f/0x80
[  641.262810]  pskb_expand_head+0x436/0x1d20
[  641.262810]  iptunnel_handle_offloads+0x455/0x810
[  641.262810]  ipip_tunnel_xmit+0x15d/0x4a0
[  641.262810]  dev_hard_start_xmit+0x6dc/0xde0
[  641.262810]  __dev_queue_xmit+0x2d9e/0x3e00
[  641.262810]  dev_queue_xmit+0x4b/0x60
[  641.262810]  neigh_direct_output+0x42/0x50
[  641.262810]  ip_finish_output2+0x141a/0x1560
[  641.262810]  ip_finish_output+0xd93/0x10f0
[  641.262810]  ip_output+0x55c/0x630
[  641.262810]  __ip_queue_xmit+0x1bb5/0x2170
[  641.262810]  ip_queue_xmit+0xcc/0xf0
[  641.262810]  __tcp_transmit_skb+0x425c/0x5e00
[  641.262810]  tcp_write_xmit+0x389a/0xacc0
[  641.262810]  tcp_push_one+0x195/0x230
[  641.262810]  tcp_sendmsg_locked+0x456d/0x6c30
[  641.262810]  tcp_sendmsg+0xb2/0x100
[  641.262810]  inet_sendmsg+0x4e9/0x800
[  641.262810]  __sys_sendto+0x940/0xb80
[  641.262810]  __se_sys_sendto+0x107/0x130
[  641.262810]  __x64_sys_sendto+0x6e/0x90
[  641.262810]  do_syscall_64+0xcf/0x110
[  641.262810]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  641.262810] 
[  641.262810] Uninit was stored to memory at:
[  641.262810]  kmsan_internal_chain_origin+0x136/0x240
[  641.262810]  __msan_chain_origin+0x6d/0xb0
[  641.262810]  __save_stack_trace+0x8be/0xc60
[  641.262810]  save_stack_trace+0xc6/0x110
[  641.262810]  kmsan_internal_chain_origin+0x136/0x240
[  641.262810]  kmsan_memcpy_origins+0x13d/0x190
[  641.262810]  __msan_memcpy+0x6f/0x80
[  641.262810]  pskb_expand_head+0x436/0x1d20
[  641.262810]  iptunnel_handle_offloads+0x455/0x810
[  641.262810]  ipip_tunnel_xmit+0x15d/0x4a0
[  641.262810]  dev_hard_start_xmit+0x6dc/0xde0
[  641.262810]  __dev_queue_xmit+0x2d9e/0x3e00
[  641.262810]  dev_queue_xmit+0x4b/0x60
[  641.262810]  neigh_direct_output+0x42/0x50
[  641.262810]  ip_finish_output2+0x141a/0x1560
[  641.262810]  ip_finish_output+0xd93/0x10f0
[  641.262810]  ip_output+0x55c/0x630
[  641.262810]  __ip_queue_xmit+0x1bb5/0x2170
[  641.262810]  ip_queue_xmit+0xcc/0xf0
[  641.262810]  __tcp_transmit_skb+0x425c/0x5e00
[  641.262810]  tcp_write_xmit+0x389a/0xacc0
[  641.262810]  tcp_push_one+0x195/0x230
[  641.262810]  tcp_sendmsg_locked+0x456d/0x6c30
[  641.262810]  tcp_sendmsg+0xb2/0x100
[  641.262810]  inet_sendmsg+0x4e9/0x800
[  641.262810]  __sys_sendto+0x940/0xb80
[  641.262810]  __se_sys_sendto+0x107/0x130
[  641.262810]  __x64_sys_sendto+0x6e/0x90
[  641.262810]  do_syscall_64+0xcf/0x110
[  641.262810]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  641.262810] 
[  641.262810] Uninit was stored to memory at:
[  641.262810]  kmsan_internal_chain_origin+0x136/0x240
[  641.262810]  __msan_chain_origin+0x6d/0xb0
[  641.262810]  __save_stack_trace+0x8be/0xc60
[  641.262810]  save_stack_trace+0xc6/0x110
[  641.262810]  kmsan_internal_chain_origin+0x136/0x240
[  641.262810]  kmsan_memcpy_origins+0x13d/0x190
[  641.262810]  __msan_memcpy+0x6f/0x80
[  641.262810]  pskb_expand_head+0x436/0x1d20
[  641.262810]  iptunnel_handle_offloads+0x455/0x810
[  641.262810]  ipip_tunnel_xmit+0x15d/0x4a0
[  641.262810]  dev_hard_start_xmit+0x6dc/0xde0
[  641.262810]  __dev_queue_xmit+0x2d9e/0x3e00
[  641.262810]  dev_queue_xmit+0x4b/0x60
[  641.262810]  neigh_direct_output+0x42/0x50
[  641.262810]  ip_finish_output2+0x141a/0x1560
[  641.262810]  ip_finish_output+0xd93/0x10f0
[  641.262810]  ip_output+0x55c/0x630
[  641.262810]  __ip_queue_xmit+0x1bb5/0x2170
[  641.262810]  ip_queue_xmit+0xcc/0xf0
[  641.262810]  __tcp_transmit_skb+0x425c/0x5e00
[  641.262810]  tcp_write_xmit+0x389a/0xacc0
[  641.262810]  tcp_push_one+0x195/0x230
[  641.262810]  tcp_sendmsg_locked+0x456d/0x6c30
[  641.262810]  tcp_sendmsg+0xb2/0x100
[  641.262810]  inet_sendmsg+0x4e9/0x800
[  641.262810]  __sys_sendto+0x940/0xb80
[  641.262810]  __se_sys_sendto+0x107/0x130
[  641.262810]  __x64_sys_sendto+0x6e/0x90
[  641.262810]  do_syscall_64+0xcf/0x110
[  641.262810]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  641.262810] 
[  641.262810] Local variable description: ----target@nf_nat_icmp_reply_translation
[  641.262810] Variable was created at:
[  641.262810]  nf_nat_icmp_reply_translation+0x9b/0xa80
[  641.262810]  nf_nat_ipv4_out+0x22b/0x7c0
08:52:29 executing program 3 (fault-call:4 fault-nth:1):
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))

08:52:29 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
ioctl(r0, 0x0, &(0x7f0000000000)="d39e9aa3bf65e0d56f97cbc70f7c61e0188b06efcbb71112d0ffffff7f509c80f89fd3c5202f745089d181249250ce09186a810000004c28a92a1d")

[  642.739756] FAULT_INJECTION: forcing a failure.
[  642.739756] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  642.742208] CPU: 0 PID: 16710 Comm: syz-executor3 Not tainted 4.20.0-rc2+ #88
[  642.742208] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  642.742208] Call Trace:
[  642.742208]  dump_stack+0x32d/0x480
[  642.772434]  should_fail+0x11e5/0x13c0
[  642.772434]  ? __msan_memset+0x29/0xd0
[  642.772434]  __alloc_pages_nodemask+0x6f7/0x64d0
[  642.772434]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  642.772434]  ? __save_stack_trace+0x9f2/0xc60
[  642.772434]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  642.772434]  ? __wake_up_common+0x126/0xa20
[  642.772434]  ? __msan_poison_alloca+0x1e0/0x270
[  642.772434]  ? __inc_numa_state+0x96/0x4a0
[  642.772434]  kmsan_internal_alloc_meta_for_pages+0x9d/0x740
[  642.772434]  ? kmsan_internal_unpoison_shadow+0x83/0xd0
[  642.772434]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  642.772434]  ? prep_compound_page+0x49b/0x570
[  642.772434]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  642.772434]  ? get_page_from_freelist+0x1617/0x1c90
[  642.772434]  kmsan_alloc_page+0x77/0xc0
[  642.772434]  __alloc_pages_nodemask+0x12ac/0x64d0
[  642.772434]  ? kmsan_set_origin+0x7f/0x100
[  642.772434]  ? kmsan_internal_unpoison_shadow+0x83/0xd0
[  642.772434]  ? mntput_no_expire+0xa0/0x1860
[  642.772434]  ? lockref_put_or_lock+0x57a/0x6a0
[  642.772434]  alloc_pages_current+0x55d/0x7d0
[  642.772434]  kmalloc_order_trace+0xd9/0x470
[  642.772434]  ? drm_mode_create_dumb+0x470/0x470
08:52:29 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
ioctl(r0, 0x0, &(0x7f0000000000)="d39e9aa3bf65e0d56f97cbc70f7c61e0188b06efcbb71112d0ffffff7f509c80f89fd3c5202f745089d181249250ce09186a810000004c28a92a1d")

[  642.772434]  __kmalloc+0x4b2/0x4d0
[  642.772434]  ? __srcu_read_unlock+0x76/0xb0
[  642.896058]  ? drm_mode_create_dumb+0x470/0x470
[  642.896058]  drm_ioctl+0x862/0x1160
[  642.896058]  ? drm_mode_create_dumb+0x470/0x470
[  642.896058]  ? __msan_poison_alloca+0x1e0/0x270
[  642.896058]  ? do_vfs_ioctl+0x184/0x2f70
[  642.896058]  ? __se_sys_ioctl+0x1da/0x270
[  642.919456]  ? drm_ioctl_kernel+0x6e0/0x6e0
[  642.919456]  do_vfs_ioctl+0xfbc/0x2f70
[  642.919456]  ? security_file_ioctl+0x92/0x200
[  642.919456]  __se_sys_ioctl+0x1da/0x270
[  642.919456]  __x64_sys_ioctl+0x4a/0x70
[  642.919456]  do_syscall_64+0xcf/0x110
[  642.919456]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  642.919456] RIP: 0033:0x457569
[  642.919456] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  642.972790] RSP: 002b:00007f8dd310cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  642.972790] RAX: ffffffffffffffda RBX: 00007f8dd310cc90 RCX: 0000000000457569
08:52:30 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @multicast2}, 0x10)
sendto$inet(r0, &(0x7f0000000200)="c0628dba02e583dae4b29ff437b47cdbc065e4df92be1258fc510ceb979161320aa08bb4c502017e82254c727f10f4b97b82d0f0d8dc07c8ab932da578b589f7e544910aa0fc9cf4cf421a6bf65b3ff8162caa439e72b271fc28c28067ab8f60d547f1c4eaa4327683986a7487e573f54d6c1649868c9e87e0acc5ea93520252741f80fce51f77aa5dca8b5940707c5937dd4f95f868aa285756b46757d6d266b5a745c36f6122770f00b51c82787b21838a5cd8eca5d370d47731282f5f0120d9e426b1d48b22f65e985b9fe3576da4a9aecb85fb191b5b", 0xd8, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000180)=0x488, 0x4)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000380)='lo\x00', 0x10)
write(r0, &(0x7f0000000ec0)="89f9d765312b4001000000b0967bdae72ee5094371136a6477ba0a51a2969dbc2d4028ac7b5af67f178f9314ea2bb3ac1c442eaf749c21ae2af8e39a40c3dc032e6f8eb738786a79df71302ff3b5d42731597d995bed6103ff63b9a908bcc05e0400000092bdf4d3282f62d6928117f82c2dae48742dac857de846096e82c1a02e1edcadda721a3f8dc9a54da05d467ed35b6f931d8686986960e756048c61c2a2c374c318d21d7a7ef550779190066e82ea3f6724a9f61ff028ec7e8d7a04352e7a78f777a68b823abb646bdc55dbde285ce15bf45820f0ae20e4023f57c71f8b41e08eff14c3441485c6f54a30750c780852dad879d6d4be7243bd07f841f89009000000c23d6b4f70fe48b54577449cfcbc4d5dbefb8b465d45bc2d11afbe7bfbe6ca76ac259e634eebf8db694ff02fe2b4c80783b443ef68287e9cf7cbcc2ee196f10c4ffb3f59e4921e0f9f08cba9a2c56c49fa7465b4836da5b2d9b142763889caa718d8a4fcb2f3ef6dc6185708fb1e0f9081d29fb3defae8c525f07437c7835b4eac8f86e2a22a81eff4120340e4a379446aac45dbff791d147805cd2748d74b8996c9b51ec03b410ef8fe126117fbf106795bc1b25d8dd786b6496bd743b7c75c638b516214ff56ec99a9c0f2919fa781cd8b4f2f2e425a6780c630a05c8e60011bc8e10055a6b6b652e5a13c73fd96f79038a65d6991ac38899ab98486d92bbcffdcf39a08a248ae1045ff8c6123de2f15d9ac360a3497c07001a3a1936ff1c03194ace131d380f515629ff016bd890ff822704c0db8bc68efad2eace5466628e7d6c2f2b3043698c46fdd62588fc54b72a786af0d026353879892c58007f7988a3f2240a43303218cc1df27807bfbde117c505f060396850a82459830a89a6a8601ea2e47f2e41379d110b96576f8f7705bba7ec63d6b44ccf84073cf9bdcf1aee48cb60c2f6dd3e89f3626a5e23339ea99c918d76a43fecf7401f7550e8eaefa4d84f1143320599daf7699858b2bf408e9093aa91d6dd9ae39d8decf3f7a199b0c1918d47be3b7aeff9a8c10efabe787b43141e7abaa4317158864b0361568140ab79cade1223c3ef81da4c4eefdd5b21fcc1b87872fc3b346737105589b84ba9814679b7510ed9b4f290083ee634ae12243ccc63413d7bc35eee0d1a4bc9dd33c37f5130303edddfc2636ffbf1ee0febb953436710c2ed9bd001d2ebe878788ddf7f7ad55b7a8cbcb348e82cd65b59315858086606115d04a3cda0e4af2a703afe09e4afedf00d5fbb2284df9af1d1ec9f15356c58fdcde45fff250568347f3b0b49e11e44c0a4d98a1e3393ce5d76614990f23b2e146842b166fb070894c128f957b0cc7d80a16275efd15659e0f81990062ebfdf9454d12e63d1ce1dad7848fcbab642a0d62ebb17abc824883e4c6e1e81992f28f5bbd7b26e2645c7941b03dd2f27c29baa2412976a05fa13d8fc4d6bd152a8668d986a9cf605b8b4a61600481e01bdd74c96d73390518add968100ac742aaf5dd7eb4ccf0868ee3ef7f12c32298737dea65bd5d7161dd679b4dd6799aa086bf3b8c889780ac102b7b1ebcf2569dd77f201d74d94a61400ced9c613414012b451628a96e6cc8fe738e964940f7b753065677776f3b5398975aeac974fced560667cead03a8976eb4229ff4e1bca5588d5d544cbca8588215a2f5ef7a5fc1a07438d3a3e05d21eb30d46f1688543d4327d36e07635396eaab4e9bc862ee9c7fa24de38c5cbf8fa5afd024116bc84854d01072145ecc4bb415d94a333e0d91e9cf6fda5a2c244a585e3a32c95398f44800c578faf4a2ccc5979664db7a55aa5cc02789f84321ccaeed4f37dd48c8d1484ade0588fc4255ec8780534a693e2bfe88b622034552084492c6757429239bbe8dad8b904e58007639ca773344040a441dc0027a46c22198f3d0b0588e164881a9fc7a85a63c459b0d002e3d890edd250742d363e85250badb91a734759baf773c32b177d36eefb662be70", 0x595)
getsockname$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @remote}, &(0x7f00000003c0)=0x10)
timer_create(0x1, &(0x7f0000000080), &(0x7f00000000c0)=<r1=>0x0)
write$binfmt_elf32(r0, &(0x7f0000001480)={{0x7f, 0x45, 0x4c, 0x46, 0x968, 0x0, 0x516ace57, 0x2, 0x80000001, 0x1f601b56eee0d67b, 0x3e, 0x401, 0x2af, 0x38, 0x1ed, 0x15, 0x0, 0x20, 0x1, 0x8, 0x1, 0x1}, [{0x60000005, 0x1, 0x9, 0xfffffffffffffffc, 0x4, 0x9, 0x7, 0x5}], "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", [[], [], [], [], [], [], []]}, 0x1758)
timer_settime(r1, 0x1, &(0x7f0000000100)={{0x0, 0x989680}, {0x0, 0x989680}}, &(0x7f0000000140))
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f0000000000)={0x2, 0x0, @rand_addr}, 0xffffffffffffffb4)
r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cpuacct.usage_all\x00', 0x0, 0x0)
ioctl$TIOCGSOFTCAR(r2, 0x5419, &(0x7f0000000340))
openat$vnet(0xffffffffffffff9c, &(0x7f0000000400)='/dev/vhost-net\x00', 0x2, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x0)

[  642.972790] RDX: 0000000020000040 RSI: ffffffffffffffb2 RDI: 0000000000000003
[  642.972790] RBP: 000000000072bfa0 R08: 0000000000000000 R09: 0000000000000000
[  642.972790] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8dd310d6d4
[  642.972790] R13: 00000000004be737 R14: 00000000004ce6f8 R15: 0000000000000005
[  643.709585] syz-executor5 (16688) used greatest stack depth: 50160 bytes left
08:52:30 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
ioctl(r0, 0x0, &(0x7f0000000000)="d39e9aa3bf65e0d56f97cbc70f7c61e0188b06efcbb71112d0ffffff7f509c80f89fd3c5202f745089d181249250ce09186a810000004c28a92a1d")

08:52:30 executing program 2:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
r1 = syz_open_dev$media(&(0x7f0000000080)='/dev/media#\x00', 0x9, 0x8000)
r2 = syz_genetlink_get_family_id$team(&(0x7f0000000100)='team\x00')
getsockopt$inet6_mreq(0xffffffffffffff9c, 0x29, 0x1c, &(0x7f0000000480)={@mcast1, <r3=>0x0}, &(0x7f00000004c0)=0x14)
sendmsg$TEAM_CMD_NOOP(r1, &(0x7f0000000600)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x84}, 0xc, &(0x7f00000005c0)={&(0x7f0000000500)={0x98, r2, 0x300, 0x70bd2c, 0x25dfdbfe, {}, [{{0x8}, {0x7c, 0x2, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8}, {0x8, 0x4, r3}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0x8}}}]}}]}, 0x98}, 0x1, 0x0, 0x0, 0x801}, 0x1)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

08:52:30 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs\x00', 0x1, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f00000000c0)=<r2=>0x0)
mq_notify(r1, &(0x7f0000000100)={0x0, 0x4, 0x7, @tid=r2})
write(r0, &(0x7f0000000ec0)="89f9d765312b4001000000b0967bdae72ee5094371136a6477ba0a51a2969dbc2d4028ac7b5af67f178f9314ea2bb3ac1c442eaf749c21ae2af8e39a40c3dc032e6f8eb738786a79df71302ff3b5d42731597d995bed6103ff63b9a908bcc05e0400000092bdf4d3282f62d6928117f82c2dae48742dac857de846096e82c1a02e1edcadda721a3f8dc9a54da05d467ed35b6f931d8686986960e756048c61c2a2c374c318d21d7a7ef550779190066e82ea3f6724a9f61ff028ec7e8d7a04352e7a78f777a68b823abb646bdc55dbde285ce15bf45820f0ae20e4023f57c71f8b41e08eff14c3441485c6f54a30750c780852dad879d6d4be7243bd07f841f89009000000c23d6b4f70fe48b54577449cfcbc4d5dbefb8b465d45bc2d11afbe7bfbe6ca76ac259e634eebf8db694ff02fe2b4c80783b443ef68287e9cf7cbcc2ee196f10c4ffb3f59e4921e0f9f08cba9a2c56c49fa7465b4836da5b2d9b142763889caa718d8a4fcb2f3ef6dc6185708fb1e0f9081d29fb3defae8c525f07437c7835b4eac8f86e2a22a81eff4120340e4a379446aac45dbff791d147805cd2748d74b8996c9b51ec03b410ef8fe126117fbf106795bc1b25d8dd786b6496bd743b7c75c638b516214ff56ec99a9c0f2919fa781cd8b4f2f2e425a6780c630a05c8e60011bc8e10055a6b6b652e5a13c73fd96f79038a65d6991ac38899ab98486d92bbcffdcf39a08a248ae1045ff8c6123de2f15d9ac360a3497c07001a3a1936ff1c03194ace131d380f515629ff016bd890ff822704c0db8bc68efad2eace5466628e7d6c2f2b3043698c46fdd62588fc54b72a786af0d026353879892c58007f7988a3f2240a43303218cc1df27807bfbde117c505f060396850a82459830a89a6a8601ea2e47f2e41379d110b96576f8f7705bba7ec63d6b44ccf84073cf9bdcf1aee48cb60c2f6dd3e89f3626a5e23339ea99c918d76a43fecf7401f7550e8eaefa4d84f1143320599daf7699858b2bf408e9093aa91d6dd9ae39d8decf3f7a199b0c1918d47be3b7aeff9a8c10efabe787b43141e7abaa4317158864b0361568140ab79cade1223c3ef81da4c4eefdd5b21fcc1b87872fc3b346737105589b84ba9814679b7510ed9b4f290083ee634ae12243ccc63413d7bc35eee0d1a4bc9dd33c37f5130303edddfc2636ffbf1ee0febb953436710c2ed9bd001d2ebe878788ddf7f7ad55b7a8cbcb348e82cd65b59315858086606115d04a3cda0e4af2a703afe09e4afedf00d5fbb2284df9af1d1ec9f15356c58fdcde45fff250568347f3b0b49e11e44c0a4d98a1e3393ce5d76614990f23b2e146842b166fb070894c128f957b0cc7d80a16275efd15659e0f81990062ebfdf9454d12e63d1ce1dad7848fcbab642a0d62ebb17abc824883e4c6e1e81992f28f5bbd7b26e2645c7941b03dd2f27c29baa2412976a05fa13d8fc4d6bd152a8668d986a9cf605b8b4a61600481e01bdd74c96d73390518add968100ac742aaf5dd7eb4ccf0868ee3ef7f12c32298737dea65bd5d7161dd679b4dd6799aa086bf3b8c889780ac102b7b1ebcf2569dd77f201d74d94a61400ced9c613414012b451628a96e6cc8fe738e964940f7b753065677776f3b5398975aeac974fced560667cead03a8976eb4229ff4e1bca5588d5d544cbca8588215a2f5ef7a5fc1a07438d3a3e05d21eb30d46f1688543d4327d36e07635396eaab4e9bc862ee9c7fa24de38c5cbf8fa5afd024116bc84854d01072145ecc4bb415d94a333e0d91e9cf6fda5a2c244a585e3a32c95398f44800c578faf4a2ccc5979664db7a55aa5cc02789f84321ccaeed4f37dd48c8d1484ade0588fc4255ec8780534a693e2bfe88b622034552084492c6757429239bbe8dad8b904e58007639ca773344040a441dc0027a46c22198f3d0b0588e164881a9fc7a85a63c459b0d002e3d890edd250742d363e85250badb91a734759baf773c32b177d36eefb662be70", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0x0, 0x1f4, &(0x7f00000001c0)={0x2, 0x4e22}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
setsockopt$inet_sctp_SCTP_NODELAY(r1, 0x84, 0x3, &(0x7f0000000140)=0xffff, 0x4)

08:52:30 executing program 0:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl$SNDRV_RAWMIDI_IOCTL_DROP(r2, 0x40045730, &(0x7f0000000140)=0x7)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
dup2(r2, r0)

08:52:30 executing program 5:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
fstat(r0, &(0x7f0000000140))
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000340)='/dev/dlm_plock\x00', 0x400, 0x0)
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000440)={<r3=>0x0, @local, @dev}, &(0x7f0000000480)=0xc)
connect$can_bcm(r2, &(0x7f00000004c0)={0x1d, r3}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000080)={'eql\x00', 0x809})
poll(&(0x7f00000002c0)=[{r5}], 0x1, 0x0)
ioctl$sock_ifreq(r4, 0x8914, &(0x7f00000000c0)={"65716c000000a95b00", @ifru_mtu=0x1})
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
r6 = memfd_create(&(0x7f0000000100)='.@(\x00', 0x0)
ioctl$VIDIOC_TRY_FMT(r6, 0xc0d05640, &(0x7f0000000200)={0xb, @pix_mp={0x6770, 0x0, 0x7f734f6f, 0x4, 0x7, [{0xca, 0x8}, {0x8, 0xfffffffffffffff9}, {0x0, 0x4}, {0x8, 0x7}, {0x100, 0x1}, {0x5}, {0x7}, {0x1ff}], 0x0, 0x8, 0x7}})
vmsplice(r2, &(0x7f0000000300), 0x0, 0x9)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x0, 0x0)

08:52:30 executing program 3 (fault-call:4 fault-nth:2):
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))

[  643.964858] FAULT_INJECTION: forcing a failure.
[  643.964858] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  643.972251] CPU: 0 PID: 16730 Comm: syz-executor3 Not tainted 4.20.0-rc2+ #88
[  643.978498] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  643.978498] Call Trace:
[  643.978498]  dump_stack+0x32d/0x480
[  643.978498]  should_fail+0x11e5/0x13c0
[  643.978498]  ? __msan_memset+0x29/0xd0
[  643.978498]  __alloc_pages_nodemask+0x6f7/0x64d0
[  643.978498]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  644.015323]  ? __save_stack_trace+0x9f2/0xc60
[  644.015323]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  644.015323]  ? __wake_up_common+0x126/0xa20
[  644.015323]  ? __inc_numa_state+0x96/0x4a0
[  644.015323]  kmsan_internal_alloc_meta_for_pages+0x109/0x740
[  644.015323]  ? kmsan_internal_unpoison_shadow+0x83/0xd0
[  644.015323]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  644.015323]  ? prep_compound_page+0x49b/0x570
[  644.015323]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  644.015323]  ? get_page_from_freelist+0x1617/0x1c90
[  644.015323]  kmsan_alloc_page+0x77/0xc0
[  644.015323]  __alloc_pages_nodemask+0x12ac/0x64d0
[  644.015323]  ? kmsan_set_origin+0x7f/0x100
[  644.015323]  ? kmsan_internal_unpoison_shadow+0x83/0xd0
[  644.015323]  ? mntput_no_expire+0xa0/0x1860
[  644.015323]  ? lockref_put_or_lock+0x57a/0x6a0
[  644.015323]  alloc_pages_current+0x55d/0x7d0
[  644.015323]  kmalloc_order_trace+0xd9/0x470
[  644.015323]  ? drm_mode_create_dumb+0x470/0x470
[  644.015323]  __kmalloc+0x4b2/0x4d0
[  644.015323]  ? __srcu_read_unlock+0x76/0xb0
[  644.015323]  ? drm_mode_create_dumb+0x470/0x470
[  644.015323]  drm_ioctl+0x862/0x1160
[  644.015323]  ? drm_mode_create_dumb+0x470/0x470
[  644.015323]  ? __msan_poison_alloca+0x1e0/0x270
[  644.015323]  ? do_vfs_ioctl+0x184/0x2f70
[  644.015323]  ? __se_sys_ioctl+0x1da/0x270
[  644.015323]  ? drm_ioctl_kernel+0x6e0/0x6e0
[  644.015323]  do_vfs_ioctl+0xfbc/0x2f70
[  644.015323]  ? security_file_ioctl+0x92/0x200
[  644.153503]  __se_sys_ioctl+0x1da/0x270
[  644.156847]  __x64_sys_ioctl+0x4a/0x70
[  644.156847]  do_syscall_64+0xcf/0x110
[  644.156847]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  644.156847] RIP: 0033:0x457569
[  644.156847] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  644.156847] RSP: 002b:00007f8dd312dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  644.156847] RAX: ffffffffffffffda RBX: 00007f8dd312dc90 RCX: 0000000000457569
08:52:31 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
ioctl(r0, 0x8ab0, &(0x7f0000000000))

08:52:31 executing program 0:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x2, &(0x7f00000003c0)="0a5c2d0240316285717070")
r2 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x16}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fgetxattr(r2, &(0x7f00000006c0)=@random={'system.', '\x00'}, &(0x7f0000000700)=""/116, 0x74)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
keyctl$reject(0x13, 0x0, 0x0, 0x200, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
fcntl$getownex(r3, 0x10, &(0x7f00000000c0)={0x0, <r4=>0x0})
r5 = syz_open_dev$mice(&(0x7f0000000780)='/dev/input/mice\x00', 0x0, 0x0)
r6 = geteuid()
r7 = getegid()
getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000000e00)={{{@in=@multicast2, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r8=>0x0}}, {{@in6=@local}, 0x0, @in6=@dev}}, &(0x7f0000000f00)=0xe8)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000f40)={0x0, 0x0, <r9=>0x0}, &(0x7f0000000f80)=0xc)
r10 = geteuid()
getresgid(&(0x7f0000000fc0), &(0x7f0000001000), &(0x7f0000001040)=<r11=>0x0)
r12 = getuid()
getgroups(0x6, &(0x7f0000001080)=[0xffffffffffffffff, 0xee00, 0xffffffffffffffff, 0x0, <r13=>0xffffffffffffffff, 0xee00])
sendmsg$unix(r5, &(0x7f0000001200)={&(0x7f00000007c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e, &(0x7f0000000d80)=[{&(0x7f0000000840)="b8af8344b0285b4d419c68dc4d5afd659b315273dff0715f62f0ff7b85f8b850bce19cd1488fec26db49ea513dbefb72ab7c4a51836863e57a7bac69e81c66b850f5145a83bc185fdd38e32d67d7e0fef81f7dd10fa6d08169b245d8aed5d76535f773be2f50f08fea67d6ceda477b54d1d99ce8d9e6817a69bd9c4abe233f474abda47149407f2b54dc4151c62c15a5f0068759b5fa138497a61300efde7f6a5cdda46fb7e6ddc94f5da53bf89c0c24c3a5f76475faa7c8149576205118500343a1e3c24aad8712374a12e8bb6bcaf8322d561031a601c915b72be33537f6334127886ea51467fd3912c27eaf91", 0xee}, {&(0x7f0000000940)="7c5bdf88da5b84193500cda8c61a453429ba88889d203d1cbd2af1bcd2a0c1e3e296767399d3f065658f2b561fef57133e14a81eb50bcb5ede24f7fc0288741256d90e49e27ba785075dc39c65c8cd5cd4afc60ea7b0bc99e606649af7bc0cbac20f153a607a65f2df08540bb0762d2b4bc5490f898faf59e2714bdebc639cda7f89bf96a2d81f4e87b05a937e4ab996f77e179318048e0bdbccd5d320611d18222854dc96a5937ad52967deab1a62af6a0237c9d1acb31aa7edaa4e6c2cf10c708f7e6d681dad6ba88aef4b75e15aeec21a99b6c77c2d5cf2c5e547060844f39d073a63bb10db425809f856f130bc84054c2e9aac30d6b692d5daec", 0xfc}, {&(0x7f0000000a40)="722c9846c295f129262d1458729ab9eee0f46706053c5434e8eb1a914b5324394e82c6a092cac45b6278fbff8ebdcb1995861ba9aff3ccdf1fb7261b91c2f52d1364a999a3b52ad92b1ab44b87bb659afeac1f8a0ee3661ca9afd7af44cdf0d427bffdf3e16f0f4673ca2a0becf9e574bc3d06bf3e95adbc015bbc55af0916115f7dbea43980e8f29f595ef744970d207d7651d14e82c8b46839d8ed198ef1f535e149027ff7fe7e09b844b4f139d9b1132d7dac10f4f582cc5d", 0xba}, {&(0x7f0000000b00)="bfa912812c3b11dd9a521565607f9b8026d162e9802fbece5ef7071442766437c6cab2348baaf3803842e6eaf83c8308864d5201980e517ae2e665b784a9", 0x3e}, {&(0x7f0000000b40)="9621c30b5e0228ae31c77dc993c4b96cae0a98169c4f2d9f5e4187cc690cf47ebf7d93d759dc01ac0469c95f0b6ba99b5668da3244114e1addfca57561b66a58b6fd46eb964d4fb1bde2974b9a5b5288f636549cd24fae0bb264eced9863dd4d3c61165a8ba76569678052aa", 0x6c}, {&(0x7f0000000bc0)="5f1325fee247869001ad2c039ebbe6de8dbac85752b37a5911861321918612749f61294f7326dd5a454c47d0c3515af9cd0c1f7657859ab4ca2a4dbbc6fc7453e25c4ecae5a757a92fb497650f1cdfacae4593742243b80c8b5ae861d5b10f42b5ecd55d47764a9b6d49acf7d7ac5e58e4c2ace2723f", 0x76}, {&(0x7f0000000c40)="7d458fc59d0ae3818060aab2a33e0c84c64dc1b7cd10a469a3667529eceae71f76603be1ec887b3fce458bc54228d3d4614c6e6b74e231e55eba7b289509b74a4ccae911bcb582d5d9ad40ad7010a47dda615b8f445271b1df4a05e26da7cc5ef52054af6db7a79a153a03931a31f97f8873746d26879f00436963ece395e4a034d99200450bfe973b1c567d6191e4ba9e4f6b6c3bc9d39a9861a7c482da50555c10a4fe9d4aa4", 0xa7}, {&(0x7f0000000d00)="4e72fb636e25f1a5ca47ac18d46acc758ef90dc992841f7762850ed8165f670bcb95e2947d1ae6d4fd9376414244b7830dc7d888c7b87627628f1b08d8912201d17ae2814eba475c431d2b611858c64b", 0x50}], 0x8, &(0x7f00000010c0)=[@rights={0x28, 0x1, 0x1, [r0, r2, r2, r1, r1, r0]}, @rights={0x20, 0x1, 0x1, [r0, r2, r0]}, @rights={0x18, 0x1, 0x1, [r2]}, @cred={0x20, 0x1, 0x2, r4, r6, r7}, @rights={0x28, 0x1, 0x1, [r3, r1, r3, r3, r3, r1]}, @cred={0x20, 0x1, 0x2, r4, r8, r9}, @rights={0x20, 0x1, 0x1, [r0, r2, r0, r0]}, @cred={0x20, 0x1, 0x2, r4, r10, r11}, @rights={0x18, 0x1, 0x1, [r1]}, @cred={0x20, 0x1, 0x2, r4, r12, r13}], 0x140, 0x4000010}, 0x20008881)
ioctl$SNDRV_CTL_IOCTL_ELEM_REPLACE(r2, 0xc1105518, &(0x7f0000000280)={{0x1, 0x0, 0x1, 0xffff, '\x00', 0x7}, 0x0, 0x30, 0x6, r4, 0x8, 0x7fff, 'syz0\x00', &(0x7f0000000200)=['/dev/dri/card#\x00', '/dev/dri/card#\x00', '/dev/ppp\x00', '/dev/dri/card#\x00', '\x00', 'GPL[-user\x00', '##^\x00', '/dev/dri/card#\x00'], 0x54, [], [0x200, 0x1f, 0xbd7, 0x1000]})
r14 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000400)='/dev/vcs\x00', 0x2040, 0x0)
recvmsg$kcm(r14, &(0x7f0000000680)={&(0x7f0000000480)=@xdp, 0x80, &(0x7f0000000640)=[{&(0x7f0000000500)=""/36, 0x24}, {&(0x7f0000000540)=""/212, 0xd4}], 0x2}, 0x0)
setsockopt$packet_int(r14, 0x107, 0x1f, &(0x7f0000000440)=0x7ff, 0x1)
r15 = openat$ppp(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
dup2(r15, r0)

[  644.156847] RDX: 0000000020000040 RSI: ffffffffffffffb2 RDI: 0000000000000003
[  644.215215] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  644.224409] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8dd312e6d4
[  644.224409] R13: 00000000004be737 R14: 00000000004ce6f8 R15: 0000000000000005
08:52:31 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
ioctl(r0, 0x8ab0, &(0x7f0000000000))

08:52:31 executing program 2:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
r1 = syz_open_dev$media(&(0x7f0000000080)='/dev/media#\x00', 0x9, 0x8000)
r2 = syz_genetlink_get_family_id$team(&(0x7f0000000100)='team\x00')
getsockopt$inet6_mreq(0xffffffffffffff9c, 0x29, 0x1c, &(0x7f0000000480)={@mcast1, <r3=>0x0}, &(0x7f00000004c0)=0x14)
sendmsg$TEAM_CMD_NOOP(r1, &(0x7f0000000600)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x84}, 0xc, &(0x7f00000005c0)={&(0x7f0000000500)={0x98, r2, 0x300, 0x70bd2c, 0x25dfdbfe, {}, [{{0x8}, {0x7c, 0x2, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8}, {0x8, 0x4, r3}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0x8}}}]}}]}, 0x98}, 0x1, 0x0, 0x0, 0x801}, 0x1)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

08:52:31 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000080)='tunl0\x00', 0x10)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x10080, 0x0)
setsockopt$packet_int(r1, 0x107, 0x9, &(0x7f00000000c0)=0x101, 0x4)
write(r0, &(0x7f0000000200)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

08:52:31 executing program 1:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
fstat(r0, &(0x7f0000000140))
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000340)='/dev/dlm_plock\x00', 0x400, 0x0)
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000440)={<r3=>0x0, @local, @dev}, &(0x7f0000000480)=0xc)
connect$can_bcm(r2, &(0x7f00000004c0)={0x1d, r3}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000080)={'eql\x00', 0x809})
poll(&(0x7f00000002c0)=[{r5}], 0x1, 0x0)
ioctl$sock_ifreq(r4, 0x8914, &(0x7f00000000c0)={"65716c000000a95b00", @ifru_mtu=0x1})
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
r6 = memfd_create(&(0x7f0000000100)='.@(\x00', 0x0)
ioctl$VIDIOC_TRY_FMT(r6, 0xc0d05640, &(0x7f0000000200)={0xb, @pix_mp={0x6770, 0x0, 0x7f734f6f, 0x4, 0x7, [{0xca, 0x8}, {0x8, 0xfffffffffffffff9}, {0x0, 0x4}, {0x8, 0x7}, {0x100, 0x1}, {0x5}, {0x7}, {0x1ff}], 0x0, 0x8, 0x7}})
vmsplice(r2, &(0x7f0000000300), 0x0, 0x9)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r6, 0x801c581f, &(0x7f0000000300)={0x1, 0x0, 0x9, 0x4, 0x3})

08:52:32 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
getsockopt$inet_mreq(r0, 0x0, 0x0, &(0x7f0000000080)={@remote, @local}, &(0x7f00000000c0)=0x8)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="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", 0x595)
shmget(0x2, 0x1000, 0x8, &(0x7f0000ffd000/0x1000)=nil)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

[  645.174066] not chained 560000 origins
[  645.178027] CPU: 1 PID: 16765 Comm: syz-executor1 Not tainted 4.20.0-rc2+ #88
[  645.182197] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  645.182197] Call Trace:
[  645.182197]  dump_stack+0x32d/0x480
[  645.182197]  kmsan_internal_chain_origin+0x222/0x240
[  645.182197]  ? save_stack_trace+0xc6/0x110
[  645.182197]  ? __irqentry_text_end+0x1fa056/0x1fa056
[  645.182197]  ? kmsan_internal_chain_origin+0x90/0x240
[  645.182197]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  645.182197]  ? is_bpf_text_address+0x49e/0x4d0
[  645.182197]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  645.182197]  ? in_task_stack+0x12c/0x210
[  645.182197]  __msan_chain_origin+0x6d/0xb0
[  645.182197]  ? do_syscall_64+0xcf/0x110
[  645.182197]  __save_stack_trace+0x8be/0xc60
[  645.252452]  ? do_syscall_64+0xcf/0x110
[  645.252452]  save_stack_trace+0xc6/0x110
[  645.252452]  kmsan_internal_chain_origin+0x136/0x240
[  645.252452]  ? tcp_push_one+0x195/0x230
[  645.252452]  ? kmsan_internal_chain_origin+0x136/0x240
[  645.252452]  ? kmsan_memcpy_origins+0x13d/0x190
[  645.252452]  ? __msan_memcpy+0x6f/0x80
[  645.252452]  ? pskb_expand_head+0x436/0x1d20
[  645.252452]  ? iptunnel_handle_offloads+0x455/0x810
[  645.292404]  ? ipip_tunnel_xmit+0x15d/0x4a0
[  645.292404]  ? dev_hard_start_xmit+0x6dc/0xde0
[  645.292404]  ? __dev_queue_xmit+0x2d9e/0x3e00
[  645.292404]  ? dev_queue_xmit+0x4b/0x60
[  645.292404]  ? neigh_direct_output+0x42/0x50
[  645.292404]  ? ip_finish_output2+0x141a/0x1560
[  645.292404]  ? ip_finish_output+0xd93/0x10f0
[  645.292404]  ? ip_output+0x55c/0x630
[  645.292404]  ? __ip_queue_xmit+0x1bb5/0x2170
[  645.292404]  ? ip_queue_xmit+0xcc/0xf0
[  645.292404]  ? __tcp_transmit_skb+0x425c/0x5e00
[  645.292404]  ? tcp_write_xmit+0x389a/0xacc0
[  645.346062]  ? tcp_push_one+0x195/0x230
[  645.346062]  ? tcp_sendmsg_locked+0x456d/0x6c30
[  645.346062]  ? tcp_sendmsg+0xb2/0x100
[  645.346062]  ? inet_sendmsg+0x4e9/0x800
[  645.346062]  ? __sys_sendto+0x940/0xb80
[  645.346062]  ? __se_sys_sendto+0x107/0x130
[  645.346062]  ? __x64_sys_sendto+0x6e/0x90
[  645.346062]  ? do_syscall_64+0xcf/0x110
[  645.346062]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  645.346062]  ? __kmalloc_node_track_caller+0x1010/0x14e0
[  645.346062]  ? __msan_get_context_state+0x9/0x20
[  645.346062]  ? INIT_INT+0xc/0x30
[  645.346062]  ? __kmalloc_node_track_caller+0x369/0x14e0
[  645.346062]  kmsan_memcpy_origins+0x13d/0x190
[  645.346062]  __msan_memcpy+0x6f/0x80
[  645.346062]  pskb_expand_head+0x436/0x1d20
[  645.346062]  iptunnel_handle_offloads+0x455/0x810
[  645.346062]  ipip_tunnel_xmit+0x15d/0x4a0
[  645.346062]  ? ipip_tunnel_init+0x240/0x240
[  645.346062]  dev_hard_start_xmit+0x6dc/0xde0
[  645.346062]  __dev_queue_xmit+0x2d9e/0x3e00
[  645.346062]  dev_queue_xmit+0x4b/0x60
[  645.346062]  neigh_direct_output+0x42/0x50
[  645.346062]  ? neigh_connected_output+0x700/0x700
[  645.346062]  ip_finish_output2+0x141a/0x1560
[  645.346062]  ip_finish_output+0xd93/0x10f0
[  645.346062]  ip_output+0x55c/0x630
[  645.346062]  ? ip_mc_finish_output+0x440/0x440
[  645.346062]  ? ip_finish_output+0x10f0/0x10f0
[  645.346062]  __ip_queue_xmit+0x1bb5/0x2170
[  645.346062]  ? kmsan_set_origin+0x7f/0x100
[  645.346062]  ip_queue_xmit+0xcc/0xf0
[  645.346062]  ? dst_hold_safe+0x5d0/0x5d0
[  645.346062]  __tcp_transmit_skb+0x425c/0x5e00
[  645.346062]  tcp_write_xmit+0x389a/0xacc0
[  645.346062]  tcp_push_one+0x195/0x230
[  645.346062]  tcp_sendmsg_locked+0x456d/0x6c30
[  645.346062]  ? kmsan_internal_unpoison_shadow+0x30/0xd0
[  645.346062]  tcp_sendmsg+0xb2/0x100
[  645.346062]  ? tcp_sendmsg_locked+0x6c30/0x6c30
[  645.346062]  inet_sendmsg+0x4e9/0x800
[  645.346062]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  645.346062]  ? security_socket_sendmsg+0x1bd/0x200
[  645.346062]  ? inet_getname+0x490/0x490
[  645.346062]  __sys_sendto+0x940/0xb80
[  645.346062]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  645.346062]  ? prepare_exit_to_usermode+0x182/0x4c0
[  645.346062]  __se_sys_sendto+0x107/0x130
[  645.346062]  __x64_sys_sendto+0x6e/0x90
[  645.346062]  do_syscall_64+0xcf/0x110
[  645.346062]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  645.346062] RIP: 0033:0x457569
[  645.346062] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  645.346062] RSP: 002b:00007fbe098f7c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  645.346062] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000457569
[  645.346062] RDX: 00000000fffffdef RSI: 00000000200003c0 RDI: 0000000000000003
[  645.346062] RBP: 000000000072c0e0 R08: 00000000200001c0 R09: 0000000000000010
[  645.346062] R10: 00000000000001f4 R11: 0000000000000246 R12: 00007fbe098f86d4
[  645.346062] R13: 00000000004c3c11 R14: 00000000004d5e80 R15: 00000000ffffffff
[  645.346062] Uninit was stored to memory at:
[  645.346062]  kmsan_internal_chain_origin+0x136/0x240
[  645.346062]  __msan_chain_origin+0x6d/0xb0
[  645.346062]  __save_stack_trace+0x8be/0xc60
[  645.346062]  save_stack_trace+0xc6/0x110
[  645.346062]  kmsan_internal_chain_origin+0x136/0x240
[  645.346062]  kmsan_memcpy_origins+0x13d/0x190
[  645.346062]  __msan_memcpy+0x6f/0x80
[  645.346062]  pskb_expand_head+0x436/0x1d20
08:52:32 executing program 3 (fault-call:4 fault-nth:3):
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))

[  645.346062]  iptunnel_handle_offloads+0x455/0x810
[  645.346062]  ipip_tunnel_xmit+0x15d/0x4a0
[  645.346062]  dev_hard_start_xmit+0x6dc/0xde0
[  645.346062]  __dev_queue_xmit+0x2d9e/0x3e00
[  645.346062]  dev_queue_xmit+0x4b/0x60
[  645.346062]  neigh_direct_output+0x42/0x50
[  645.346062]  ip_finish_output2+0x141a/0x1560
[  645.346062]  ip_finish_output+0xd93/0x10f0
[  645.346062]  ip_output+0x55c/0x630
[  645.346062]  __ip_queue_xmit+0x1bb5/0x2170
[  645.346062]  ip_queue_xmit+0xcc/0xf0
[  645.346062]  __tcp_transmit_skb+0x425c/0x5e00
[  645.346062]  tcp_write_xmit+0x389a/0xacc0
[  645.346062]  tcp_push_one+0x195/0x230
[  645.346062]  tcp_sendmsg_locked+0x456d/0x6c30
[  645.346062]  tcp_sendmsg+0xb2/0x100
[  645.721834]  inet_sendmsg+0x4e9/0x800
[  645.721834]  __sys_sendto+0x940/0xb80
[  645.721834]  __se_sys_sendto+0x107/0x130
[  645.721834]  __x64_sys_sendto+0x6e/0x90
[  645.721834]  do_syscall_64+0xcf/0x110
[  645.721834]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  645.762412] 
[  645.762412] Uninit was stored to memory at:
[  645.762412]  kmsan_internal_chain_origin+0x136/0x240
[  645.762412]  __msan_chain_origin+0x6d/0xb0
[  645.762412]  __save_stack_trace+0x8be/0xc60
[  645.762412]  save_stack_trace+0xc6/0x110
[  645.762412]  kmsan_internal_chain_origin+0x136/0x240
[  645.762412]  kmsan_memcpy_origins+0x13d/0x190
[  645.762412]  __msan_memcpy+0x6f/0x80
[  645.762412]  pskb_expand_head+0x436/0x1d20
[  645.762412]  iptunnel_handle_offloads+0x455/0x810
[  645.762412]  ipip_tunnel_xmit+0x15d/0x4a0
[  645.762412]  dev_hard_start_xmit+0x6dc/0xde0
[  645.762412]  __dev_queue_xmit+0x2d9e/0x3e00
[  645.762412]  dev_queue_xmit+0x4b/0x60
[  645.762412]  neigh_direct_output+0x42/0x50
[  645.832534]  ip_finish_output2+0x141a/0x1560
[  645.832534]  ip_finish_output+0xd93/0x10f0
[  645.832534]  ip_output+0x55c/0x630
[  645.832534]  __ip_queue_xmit+0x1bb5/0x2170
[  645.832534]  ip_queue_xmit+0xcc/0xf0
[  645.832534]  __tcp_transmit_skb+0x425c/0x5e00
[  645.832534]  tcp_write_xmit+0x389a/0xacc0
[  645.832534]  tcp_push_one+0x195/0x230
[  645.832534]  tcp_sendmsg_locked+0x456d/0x6c30
[  645.832534]  tcp_sendmsg+0xb2/0x100
[  645.832534]  inet_sendmsg+0x4e9/0x800
[  645.832534]  __sys_sendto+0x940/0xb80
[  645.832534]  __se_sys_sendto+0x107/0x130
[  645.887875] FAULT_INJECTION: forcing a failure.
[  645.887875] name failslab, interval 1, probability 0, space 0, times 0
[  645.832534]  __x64_sys_sendto+0x6e/0x90
[  645.832534]  do_syscall_64+0xcf/0x110
[  645.899557] CPU: 0 PID: 16775 Comm: syz-executor3 Not tainted 4.20.0-rc2+ #88
[  645.832534]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  645.832534]  kmsan_internal_chain_origin+0x136/0x240
[  645.907005] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  645.832534]  __msan_chain_origin+0x6d/0xb0
[  645.832534]  __save_stack_trace+0x8be/0xc60
[  645.909368] Call Trace:
[  645.832534]  save_stack_trace+0xc6/0x110
[  645.832534]  kmsan_internal_chain_origin+0x136/0x240
[  645.909368]  dump_stack+0x32d/0x480
[  645.832534]  kmsan_memcpy_origins+0x13d/0x190
[  645.832534]  __msan_memcpy+0x6f/0x80
[  645.909368]  should_fail+0x11e5/0x13c0
[  645.832534]  pskb_expand_head+0x436/0x1d20
[  645.832534]  iptunnel_handle_offloads+0x455/0x810
[  645.909368]  __should_failslab+0x278/0x2a0
[  645.832534]  ipip_tunnel_xmit+0x15d/0x4a0
[  645.832534]  dev_hard_start_xmit+0x6dc/0xde0
[  645.909368]  should_failslab+0x29/0x70
[  645.832534]  __dev_queue_xmit+0x2d9e/0x3e00
[  645.832534]  dev_queue_xmit+0x4b/0x60
[  645.909368]  __kmalloc+0xcf/0x4d0
[  645.832534]  neigh_direct_output+0x42/0x50
[  645.832534]  ip_finish_output2+0x141a/0x1560
[  645.909368]  ? vkms_gem_create+0x13a/0x480
[  645.832534]  ip_finish_output+0xd93/0x10f0
[  645.832534]  ip_output+0x55c/0x630
[  645.909368]  vkms_gem_create+0x13a/0x480
[  645.832534]  __ip_queue_xmit+0x1bb5/0x2170
[  645.832534]  ip_queue_xmit+0xcc/0xf0
[  645.909368]  vkms_dumb_create+0x231/0x4b0
[  645.832534]  __tcp_transmit_skb+0x425c/0x5e00
[  645.832534]  tcp_write_xmit+0x389a/0xacc0
[  645.909368]  ? vkms_gem_create+0x480/0x480
[  645.832534]  tcp_push_one+0x195/0x230
[  645.832534]  tcp_sendmsg_locked+0x456d/0x6c30
[  645.909368]  drm_mode_create_dumb_ioctl+0x444/0x470
[  645.832534]  tcp_sendmsg+0xb2/0x100
[  645.832534]  inet_sendmsg+0x4e9/0x800
[  645.909368]  ? drm_mode_create_dumb+0x470/0x470
[  645.832534]  __sys_sendto+0x940/0xb80
[  645.832534]  __se_sys_sendto+0x107/0x130
[  645.909368]  drm_ioctl_kernel+0x664/0x6e0
[  645.832534]  __x64_sys_sendto+0x6e/0x90
[  645.832534]  do_syscall_64+0xcf/0x110
[  645.909368]  ? drm_mode_create_dumb+0x470/0x470
[  645.832534]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  645.832534]  kmsan_internal_chain_origin+0x136/0x240
[  645.909368]  ? drm_mode_create_dumb+0x470/0x470
[  645.832534]  __msan_chain_origin+0x6d/0xb0
[  645.832534]  __save_stack_trace+0x8be/0xc60
[  645.909368]  drm_ioctl+0xaba/0x1160
[  645.832534]  save_stack_trace+0xc6/0x110
[  645.832534]  kmsan_internal_chain_origin+0x136/0x240
[  645.909368]  ? drm_mode_create_dumb+0x470/0x470
[  645.832534]  kmsan_memcpy_origins+0x13d/0x190
[  645.832534]  __msan_memcpy+0x6f/0x80
[  645.909368]  ? __msan_poison_alloca+0x1e0/0x270
[  645.832534]  pskb_expand_head+0x436/0x1d20
[  645.832534]  iptunnel_handle_offloads+0x455/0x810
[  645.909368]  ? do_vfs_ioctl+0x184/0x2f70
[  645.832534]  ipip_tunnel_xmit+0x15d/0x4a0
[  645.832534]  dev_hard_start_xmit+0x6dc/0xde0
[  645.909368]  ? __se_sys_ioctl+0x1da/0x270
[  645.832534]  __dev_queue_xmit+0x2d9e/0x3e00
[  645.832534]  dev_queue_xmit+0x4b/0x60
[  645.909368]  ? drm_ioctl_kernel+0x6e0/0x6e0
[  645.832534]  neigh_direct_output+0x42/0x50
[  645.832534]  ip_finish_output2+0x141a/0x1560
[  645.909368]  do_vfs_ioctl+0xfbc/0x2f70
[  645.832534]  ip_finish_output+0xd93/0x10f0
[  645.832534]  ip_output+0x55c/0x630
[  645.909368]  ? security_file_ioctl+0x92/0x200
[  645.832534]  __ip_queue_xmit+0x1bb5/0x2170
[  645.832534]  ip_queue_xmit+0xcc/0xf0
[  645.909368]  __se_sys_ioctl+0x1da/0x270
[  645.832534]  __tcp_transmit_skb+0x425c/0x5e00
[  645.832534]  tcp_write_xmit+0x389a/0xacc0
[  645.909368]  __x64_sys_ioctl+0x4a/0x70
[  645.832534]  tcp_push_one+0x195/0x230
[  645.832534]  tcp_sendmsg_locked+0x456d/0x6c30
[  645.909368]  do_syscall_64+0xcf/0x110
[  645.832534]  tcp_sendmsg+0xb2/0x100
[  645.909368]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  645.832534]  inet_sendmsg+0x4e9/0x800
[  645.832534]  __sys_sendto+0x940/0xb80
[  645.909368] RIP: 0033:0x457569
[  645.832534]  __se_sys_sendto+0x107/0x130
[  645.832534]  __x64_sys_sendto+0x6e/0x90
[  645.909368] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  645.832534]  do_syscall_64+0xcf/0x110
[  645.832534]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  645.909368] RSP: 002b:00007f8dd310cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  645.832534] 
[  645.832534]  kmsan_internal_chain_origin+0x136/0x240
[  645.909368] RAX: ffffffffffffffda RBX: 00007f8dd310cc90 RCX: 0000000000457569
[  645.832534]  __msan_chain_origin+0x6d/0xb0
[  645.832534]  __save_stack_trace+0x8be/0xc60
[  645.909368] RDX: 0000000020000040 RSI: ffffffffffffffb2 RDI: 0000000000000003
[  645.832534]  save_stack_trace+0xc6/0x110
[  645.832534]  kmsan_internal_chain_origin+0x136/0x240
[  645.909368] RBP: 000000000072bfa0 R08: 0000000000000000 R09: 0000000000000000
[  645.832534]  kmsan_memcpy_origins+0x13d/0x190
[  645.832534]  __msan_memcpy+0x6f/0x80
[  645.909368] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8dd310d6d4
[  645.832534]  pskb_expand_head+0x436/0x1d20
[  645.832534]  iptunnel_handle_offloads+0x455/0x810
[  645.909368] R13: 00000000004be737 R14: 00000000004ce6f8 R15: 0000000000000005
[  645.832534]  ipip_tunnel_xmit+0x15d/0x4a0
[  645.832534]  dev_hard_start_xmit+0x6dc/0xde0
[  646.352409]  __dev_queue_xmit+0x2d9e/0x3e00
[  646.352409]  dev_queue_xmit+0x4b/0x60
[  646.352409]  neigh_direct_output+0x42/0x50
[  646.422659]  ip_finish_output2+0x141a/0x1560
[  646.422659]  ip_finish_output+0xd93/0x10f0
[  646.422659]  ip_output+0x55c/0x630
[  646.422659]  __ip_queue_xmit+0x1bb5/0x2170
[  646.422659]  ip_queue_xmit+0xcc/0xf0
[  646.422659]  __tcp_transmit_skb+0x425c/0x5e00
[  646.422659]  tcp_write_xmit+0x389a/0xacc0
[  646.422659]  tcp_push_one+0x195/0x230
[  646.422659]  tcp_sendmsg_locked+0x456d/0x6c30
[  646.422659]  tcp_sendmsg+0xb2/0x100
[  646.422659]  inet_sendmsg+0x4e9/0x800
[  646.422659]  __sys_sendto+0x940/0xb80
[  646.422659]  __se_sys_sendto+0x107/0x130
[  646.422659]  __x64_sys_sendto+0x6e/0x90
[  646.422659]  do_syscall_64+0xcf/0x110
[  646.422659]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  646.422659] 
[  646.422659] Uninit was stored to memory at:
[  646.492463]  kmsan_internal_chain_origin+0x136/0x240
[  646.492463]  __msan_chain_origin+0x6d/0xb0
[  646.492463]  __save_stack_trace+0x8be/0xc60
[  646.492463]  save_stack_trace+0xc6/0x110
[  646.492463]  kmsan_internal_chain_origin+0x136/0x240
[  646.492463]  kmsan_memcpy_origins+0x13d/0x190
[  646.492463]  __msan_memcpy+0x6f/0x80
[  646.492463]  pskb_expand_head+0x436/0x1d20
[  646.492463]  iptunnel_handle_offloads+0x455/0x810
[  646.492463]  ipip_tunnel_xmit+0x15d/0x4a0
[  646.492463]  dev_hard_start_xmit+0x6dc/0xde0
[  646.541796] not chained 570000 origins
[  646.492463]  __dev_queue_xmit+0x2d9e/0x3e00
[  646.542236] CPU: 0 PID: 16776 Comm: syz-executor4 Not tainted 4.20.0-rc2+ #88
[  646.492463]  dev_queue_xmit+0x4b/0x60
[  646.542236] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  646.492463]  neigh_direct_output+0x42/0x50
[  646.542236] Call Trace:
[  646.492463]  ip_finish_output2+0x141a/0x1560
[  646.542236]  dump_stack+0x32d/0x480
[  646.492463]  ip_finish_output+0xd93/0x10f0
[  646.542236]  kmsan_internal_chain_origin+0x222/0x240
[  646.492463]  ip_output+0x55c/0x630
[  646.542236]  ? save_stack_trace+0xc6/0x110
[  646.492463]  __ip_queue_xmit+0x1bb5/0x2170
[  646.542236]  ? __irqentry_text_end+0x1fa056/0x1fa056
[  646.492463]  ip_queue_xmit+0xcc/0xf0
[  646.542236]  ? kmsan_internal_chain_origin+0x90/0x240
[  646.492463]  __tcp_transmit_skb+0x425c/0x5e00
[  646.542236]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  646.492463]  tcp_write_xmit+0x389a/0xacc0
[  646.542236]  ? is_bpf_text_address+0x49e/0x4d0
[  646.492463]  tcp_push_one+0x195/0x230
[  646.542236]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  646.492463]  tcp_sendmsg_locked+0x456d/0x6c30
[  646.542236]  ? in_task_stack+0x12c/0x210
[  646.492463]  tcp_sendmsg+0xb2/0x100
[  646.542236]  __msan_chain_origin+0x6d/0xb0
[  646.492463]  inet_sendmsg+0x4e9/0x800
[  646.542236]  ? tcp_trim_head+0x214/0x9b0
[  646.492463]  __sys_sendto+0x940/0xb80
[  646.542236]  __save_stack_trace+0x8be/0xc60
[  646.492463]  __se_sys_sendto+0x107/0x130
[  646.542236]  ? tcp_trim_head+0x214/0x9b0
[  646.492463]  __x64_sys_sendto+0x6e/0x90
[  646.542236]  save_stack_trace+0xc6/0x110
[  646.492463]  do_syscall_64+0xcf/0x110
[  646.542236]  kmsan_internal_chain_origin+0x136/0x240
[  646.492463]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  646.542236]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  646.492463] 
[  646.542236]  ? kmsan_internal_chain_origin+0x136/0x240
[  646.492463] Uninit was stored to memory at:
[  646.542236]  ? kmsan_memcpy_origins+0x13d/0x190
[  646.492463]  kmsan_internal_chain_origin+0x136/0x240
[  646.542236]  ? __msan_memcpy+0x6f/0x80
[  646.492463]  __msan_chain_origin+0x6d/0xb0
[  646.542236]  ? pskb_expand_head+0x436/0x1d20
[  646.492463]  __save_stack_trace+0x8be/0xc60
[  646.542236]  ? tcp_trim_head+0x214/0x9b0
[  646.492463]  save_stack_trace+0xc6/0x110
[  646.542236]  ? tcp_ack+0x3193/0xa010
[  646.492463]  kmsan_internal_chain_origin+0x136/0x240
[  646.542236]  ? tcp_rcv_established+0xf7e/0x2940
[  646.492463]  kmsan_memcpy_origins+0x13d/0x190
[  646.542236]  ? tcp_v4_do_rcv+0x686/0xd80
[  646.492463]  __msan_memcpy+0x6f/0x80
[  646.542236]  ? __release_sock+0x32d/0x750
[  646.492463]  pskb_expand_head+0x436/0x1d20
[  646.542236]  ? __sk_flush_backlog+0x52/0x70
[  646.492463]  iptunnel_handle_offloads+0x455/0x810
[  646.542236]  ? tcp_sendmsg_locked+0xd72/0x6c30
[  646.492463]  ipip_tunnel_xmit+0x15d/0x4a0
[  646.542236]  ? tcp_sendmsg+0xb2/0x100
[  646.492463]  dev_hard_start_xmit+0x6dc/0xde0
[  646.542236]  ? inet_sendmsg+0x4e9/0x800
[  646.492463]  __dev_queue_xmit+0x2d9e/0x3e00
[  646.542236]  ? __sys_sendto+0x940/0xb80
[  646.492463]  dev_queue_xmit+0x4b/0x60
[  646.542236]  ? __se_sys_sendto+0x107/0x130
[  646.492463]  neigh_direct_output+0x42/0x50
[  646.542236]  ? __x64_sys_sendto+0x6e/0x90
[  646.492463]  ip_finish_output2+0x141a/0x1560
[  646.542236]  ? do_syscall_64+0xcf/0x110
[  646.492463]  ip_finish_output+0xd93/0x10f0
[  646.542236]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  646.492463]  ip_output+0x55c/0x630
[  646.542236]  ? memcg_kmem_put_cache+0x73/0x460
[  646.492463]  __ip_queue_xmit+0x1bb5/0x2170
[  646.542236]  ? __kmalloc_node_track_caller+0x1010/0x14e0
[  646.492463]  ip_queue_xmit+0xcc/0xf0
[  646.542236]  ? __msan_get_context_state+0x9/0x20
[  646.492463]  __tcp_transmit_skb+0x425c/0x5e00
[  646.542236]  ? INIT_INT+0xc/0x30
[  646.492463]  tcp_write_xmit+0x389a/0xacc0
[  646.542236]  ? __kmalloc_node_track_caller+0x369/0x14e0
[  646.492463]  tcp_push_one+0x195/0x230
[  646.542236]  kmsan_memcpy_origins+0x13d/0x190
[  646.492463]  tcp_sendmsg_locked+0x456d/0x6c30
[  646.542236]  __msan_memcpy+0x6f/0x80
[  646.492463]  tcp_sendmsg+0xb2/0x100
[  646.542236]  pskb_expand_head+0x436/0x1d20
[  646.492463]  inet_sendmsg+0x4e9/0x800
[  646.542236]  tcp_trim_head+0x214/0x9b0
[  646.492463]  __sys_sendto+0x940/0xb80
[  646.542236]  tcp_ack+0x3193/0xa010
[  646.492463]  __se_sys_sendto+0x107/0x130
[  646.542236]  tcp_rcv_established+0xf7e/0x2940
[  646.492463]  __x64_sys_sendto+0x6e/0x90
[  646.542236]  ? __msan_get_context_state+0x9/0x20
[  646.492463]  do_syscall_64+0xcf/0x110
[  646.542236]  tcp_v4_do_rcv+0x686/0xd80
[  646.492463]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  646.542236]  ? inet_sk_rx_dst_set+0x200/0x200
[  646.492463] 
[  646.542236]  __release_sock+0x32d/0x750
[  646.492463] Local variable description: ----target@nf_nat_icmp_reply_translation
[  646.542236]  __sk_flush_backlog+0x52/0x70
[  646.492463] Variable was created at:
[  646.542236]  ? tcp_v4_init_sock+0xc0/0xc0
[  646.492463]  nf_nat_icmp_reply_translation+0x9b/0xa80
[  646.542236]  tcp_sendmsg_locked+0xd72/0x6c30
[  646.492463]  nf_nat_ipv4_out+0x22b/0x7c0
[  646.542236]  ? kmsan_internal_unpoison_shadow+0x30/0xd0
[  646.542236]  tcp_sendmsg+0xb2/0x100
[  647.036354]  ? tcp_sendmsg_locked+0x6c30/0x6c30
[  647.036354]  inet_sendmsg+0x4e9/0x800
[  647.036354]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  647.036354]  ? security_socket_sendmsg+0x1bd/0x200
[  647.036354]  ? inet_getname+0x490/0x490
[  647.036354]  __sys_sendto+0x940/0xb80
[  647.036354]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  647.036354]  ? prepare_exit_to_usermode+0x182/0x4c0
[  647.074631]  __se_sys_sendto+0x107/0x130
[  647.077185]  __x64_sys_sendto+0x6e/0x90
[  647.080991]  do_syscall_64+0xcf/0x110
[  647.080991]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  647.080991] RIP: 0033:0x457569
[  647.080991] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  647.080991] RSP: 002b:00007fe2bd024c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  647.116884] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000457569
[  647.116884] RDX: 00000000fffffdef RSI: 00000000200003c0 RDI: 0000000000000003
[  647.116884] RBP: 000000000072bf00 R08: 00000000200001c0 R09: 0000000000000010
[  647.116884] R10: 00000000000001f4 R11: 0000000000000246 R12: 00007fe2bd0256d4
[  647.116884] R13: 00000000004c3c11 R14: 00000000004d5e80 R15: 00000000ffffffff
[  647.157395] Uninit was stored to memory at:
[  647.157395]  kmsan_internal_chain_origin+0x136/0x240
[  647.157395]  __msan_chain_origin+0x6d/0xb0
[  647.171548]  __save_stack_trace+0x8be/0xc60
[  647.171548]  save_stack_trace+0xc6/0x110
[  647.171548]  kmsan_internal_chain_origin+0x136/0x240
[  647.171548]  kmsan_memcpy_origins+0x13d/0x190
[  647.171548]  __msan_memcpy+0x6f/0x80
[  647.194540]  pskb_expand_head+0x436/0x1d20
[  647.198926]  tcp_trim_head+0x214/0x9b0
[  647.198926]  tcp_ack+0x3193/0xa010
[  647.198926]  tcp_rcv_established+0xf7e/0x2940
[  647.198926]  tcp_v4_do_rcv+0x686/0xd80
[  647.198926]  __release_sock+0x32d/0x750
[  647.198926]  __sk_flush_backlog+0x52/0x70
[  647.198926]  tcp_sendmsg_locked+0xd72/0x6c30
[  647.198926]  tcp_sendmsg+0xb2/0x100
[  647.198926]  inet_sendmsg+0x4e9/0x800
[  647.198926]  __sys_sendto+0x940/0xb80
[  647.198926]  __se_sys_sendto+0x107/0x130
[  647.198926]  __x64_sys_sendto+0x6e/0x90
[  647.198926]  do_syscall_64+0xcf/0x110
[  647.198926]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  647.198926] 
[  647.198926] Uninit was stored to memory at:
[  647.198926]  kmsan_internal_chain_origin+0x136/0x240
[  647.198926]  __msan_chain_origin+0x6d/0xb0
[  647.198926]  __save_stack_trace+0x8be/0xc60
[  647.198926]  save_stack_trace+0xc6/0x110
[  647.198926]  kmsan_internal_chain_origin+0x136/0x240
[  647.198926]  kmsan_memcpy_origins+0x13d/0x190
[  647.198926]  __msan_memcpy+0x6f/0x80
[  647.198926]  pskb_expand_head+0x436/0x1d20
[  647.198926]  tcp_trim_head+0x214/0x9b0
[  647.198926]  tcp_ack+0x3193/0xa010
[  647.198926]  tcp_rcv_established+0xf7e/0x2940
[  647.198926]  tcp_v4_do_rcv+0x686/0xd80
[  647.198926]  __release_sock+0x32d/0x750
[  647.198926]  __sk_flush_backlog+0x52/0x70
[  647.198926]  tcp_sendmsg_locked+0xd72/0x6c30
[  647.198926]  tcp_sendmsg+0xb2/0x100
[  647.198926]  inet_sendmsg+0x4e9/0x800
08:52:34 executing program 2:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
r1 = syz_open_dev$media(&(0x7f0000000080)='/dev/media#\x00', 0x9, 0x8000)
r2 = syz_genetlink_get_family_id$team(&(0x7f0000000100)='team\x00')
getsockopt$inet6_mreq(0xffffffffffffff9c, 0x29, 0x1c, &(0x7f0000000480)={@mcast1, <r3=>0x0}, &(0x7f00000004c0)=0x14)
sendmsg$TEAM_CMD_NOOP(r1, &(0x7f0000000600)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x84}, 0xc, &(0x7f00000005c0)={&(0x7f0000000500)={0x98, r2, 0x300, 0x70bd2c, 0x25dfdbfe, {}, [{{0x8}, {0x7c, 0x2, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8}, {0x8, 0x4, r3}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0x8}}}]}}]}, 0x98}, 0x1, 0x0, 0x0, 0x801}, 0x1)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

[  647.198926]  __sys_sendto+0x940/0xb80
[  647.198926]  __se_sys_sendto+0x107/0x130
[  647.340605]  __x64_sys_sendto+0x6e/0x90
[  647.343045]  do_syscall_64+0xcf/0x110
[  647.343045]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  647.343045] 
[  647.343045] Uninit was stored to memory at:
[  647.343045]  kmsan_internal_chain_origin+0x136/0x240
[  647.343045]  __msan_chain_origin+0x6d/0xb0
[  647.343045]  __save_stack_trace+0x8be/0xc60
[  647.343045]  save_stack_trace+0xc6/0x110
[  647.343045]  kmsan_internal_chain_origin+0x136/0x240
[  647.379809]  kmsan_memcpy_origins+0x13d/0x190
[  647.379809]  __msan_memcpy+0x6f/0x80
[  647.379809]  pskb_expand_head+0x436/0x1d20
[  647.379809]  tcp_trim_head+0x214/0x9b0
[  647.396973]  tcp_ack+0x3193/0xa010
[  647.396973]  tcp_rcv_established+0xf7e/0x2940
[  647.396973]  tcp_v4_do_rcv+0x686/0xd80
[  647.396973]  __release_sock+0x32d/0x750
[  647.396973]  __sk_flush_backlog+0x52/0x70
[  647.396973]  tcp_sendmsg_locked+0xd72/0x6c30
[  647.396973]  tcp_sendmsg+0xb2/0x100
[  647.396973]  inet_sendmsg+0x4e9/0x800
[  647.396973]  __sys_sendto+0x940/0xb80
[  647.396973]  __se_sys_sendto+0x107/0x130
[  647.396973]  __x64_sys_sendto+0x6e/0x90
[  647.396973]  do_syscall_64+0xcf/0x110
[  647.396973]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  647.396973] 
[  647.396973] Uninit was stored to memory at:
[  647.396973]  kmsan_internal_chain_origin+0x136/0x240
[  647.396973]  __msan_chain_origin+0x6d/0xb0
[  647.396973]  __save_stack_trace+0x8be/0xc60
[  647.469312]  save_stack_trace+0xc6/0x110
[  647.469312]  kmsan_internal_chain_origin+0x136/0x240
[  647.469312]  kmsan_memcpy_origins+0x13d/0x190
[  647.469312]  __msan_memcpy+0x6f/0x80
[  647.469312]  pskb_expand_head+0x436/0x1d20
[  647.469312]  tcp_trim_head+0x214/0x9b0
[  647.469312]  tcp_ack+0x3193/0xa010
[  647.469312]  tcp_rcv_established+0xf7e/0x2940
[  647.469312]  tcp_v4_do_rcv+0x686/0xd80
[  647.469312]  __release_sock+0x32d/0x750
[  647.469312]  __sk_flush_backlog+0x52/0x70
[  647.469312]  tcp_sendmsg_locked+0xd72/0x6c30
[  647.469312]  tcp_sendmsg+0xb2/0x100
[  647.469312]  inet_sendmsg+0x4e9/0x800
[  647.469312]  __sys_sendto+0x940/0xb80
[  647.532129]  __se_sys_sendto+0x107/0x130
[  647.538044]  __x64_sys_sendto+0x6e/0x90
[  647.541778]  do_syscall_64+0xcf/0x110
[  647.546469]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  647.551558] 
[  647.552823] Uninit was stored to memory at:
[  647.556694]  kmsan_internal_chain_origin+0x136/0x240
[  647.561859]  __msan_chain_origin+0x6d/0xb0
[  647.565743]  __save_stack_trace+0x8be/0xc60
[  647.570876]  save_stack_trace+0xc6/0x110
[  647.574758]  kmsan_internal_chain_origin+0x136/0x240
[  647.579911]  kmsan_memcpy_origins+0x13d/0x190
[  647.585069]  __msan_memcpy+0x6f/0x80
[  647.587644]  pskb_expand_head+0x436/0x1d20
[  647.592815]  tcp_trim_head+0x214/0x9b0
[  647.596663]  tcp_ack+0x3193/0xa010
[  647.600507]  tcp_rcv_established+0xf7e/0x2940
[  647.604410]  tcp_v4_do_rcv+0x686/0xd80
[  647.608312]  __release_sock+0x32d/0x750
[  647.612159]  __sk_flush_backlog+0x52/0x70
[  647.616025]  tcp_sendmsg_locked+0xd72/0x6c30
[  647.621164]  tcp_sendmsg+0xb2/0x100
[  647.625079]  inet_sendmsg+0x4e9/0x800
[  647.627676]  __sys_sendto+0x940/0xb80
[  647.631502]  __se_sys_sendto+0x107/0x130
[  647.636658]  __x64_sys_sendto+0x6e/0x90
[  647.640532]  do_syscall_64+0xcf/0x110
[  647.644429]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  647.649615] 
[  647.650890] Uninit was stored to memory at:
[  647.654743]  kmsan_internal_chain_origin+0x136/0x240
[  647.659912]  __msan_chain_origin+0x6d/0xb0
[  647.665059]  __save_stack_trace+0x8be/0xc60
[  647.668906]  save_stack_trace+0xc6/0x110
[  647.672788]  kmsan_internal_chain_origin+0x136/0x240
[  647.677884]  kmsan_memcpy_origins+0x13d/0x190
[  647.683027]  __msan_memcpy+0x6f/0x80
[  647.686875]  pskb_expand_head+0x436/0x1d20
[  647.690747]  tcp_trim_head+0x214/0x9b0
[  647.694571]  tcp_ack+0x3193/0xa010
[  647.698423]  tcp_rcv_established+0xf7e/0x2940
[  647.702410]  tcp_v4_do_rcv+0x686/0xd80
[  647.706289]  __release_sock+0x32d/0x750
[  647.710143]  __sk_flush_backlog+0x52/0x70
[  647.713966]  tcp_sendmsg_locked+0xd72/0x6c30
[  647.719106]  tcp_sendmsg+0xb2/0x100
[  647.722955]  inet_sendmsg+0x4e9/0x800
[  647.726778]  __sys_sendto+0x940/0xb80
[  647.730604]  __se_sys_sendto+0x107/0x130
[  647.734446]  __x64_sys_sendto+0x6e/0x90
[  647.738231]  do_syscall_64+0xcf/0x110
[  647.742074]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  647.747198] 
[  647.748508] Uninit was stored to memory at:
[  647.752450]  kmsan_internal_chain_origin+0x136/0x240
[  647.758811]  __msan_chain_origin+0x6d/0xb0
[  647.762577]  __save_stack_trace+0x8be/0xc60
[  647.766526]  save_stack_trace+0xc6/0x110
[  647.770406]  kmsan_internal_chain_origin+0x136/0x240
[  647.775512]  kmsan_memcpy_origins+0x13d/0x190
[  647.780747]  __msan_memcpy+0x6f/0x80
[  647.784642]  pskb_expand_head+0x436/0x1d20
[  647.788479]  tcp_trim_head+0x214/0x9b0
[  647.792396]  tcp_ack+0x3193/0xa010
[  647.796178]  tcp_rcv_established+0xf7e/0x2940
[  647.799982]  tcp_v4_do_rcv+0x686/0xd80
[  647.803912]  __release_sock+0x32d/0x750
[  647.807804]  __sk_flush_backlog+0x52/0x70
[  647.813054]  tcp_sendmsg_locked+0xd72/0x6c30
[  647.816786]  tcp_sendmsg+0xb2/0x100
[  647.820592]  inet_sendmsg+0x4e9/0x800
[  647.824443]  __sys_sendto+0x940/0xb80
[  647.828276]  __se_sys_sendto+0x107/0x130
[  647.832057]  __x64_sys_sendto+0x6e/0x90
[  647.835914]  do_syscall_64+0xcf/0x110
[  647.839733]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  647.844934] 
[  647.846221] Local variable description: ----acpar@ipt_do_table
[  647.852650] Variable was created at:
[  647.856470]  ipt_do_table+0x97/0x29d0
[  647.860307]  iptable_mangle_hook+0x35b/0x730
08:52:35 executing program 5:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
fstat(r0, &(0x7f0000000140))
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000340)='/dev/dlm_plock\x00', 0x400, 0x0)
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000440)={<r3=>0x0, @local, @dev}, &(0x7f0000000480)=0xc)
connect$can_bcm(r2, &(0x7f00000004c0)={0x1d, r3}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000080)={'eql\x00', 0x809})
poll(&(0x7f00000002c0)=[{r5}], 0x1, 0x0)
ioctl$sock_ifreq(r4, 0x8914, &(0x7f00000000c0)={"65716c000000a95b00", @ifru_mtu=0x1})
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="89f9d765312b4001000000b0967bdae72ee5094371136a6477ba0a51a2969dbc2d4028ac7b5af67f178f9314ea2bb3ac1c442eaf749c21ae2af8e39a40c3dc032e6f8eb738786a79df71302ff3b5d42731597d995bed6103ff63b9a908bcc05e0400000092bdf4d3282f62d6928117f82c2dae48742dac857de846096e82c1a02e1edcadda721a3f8dc9a54da05d467ed35b6f931d8686986960e756048c61c2a2c374c318d21d7a7ef550779190066e82ea3f6724a9f61ff028ec7e8d7a04352e7a78f777a68b823abb646bdc55dbde285ce15bf45820f0ae20e4023f57c71f8b41e08eff14c3441485c6f54a30750c780852dad879d6d4be7243bd07f841f89009000000c23d6b4f70fe48b54577449cfcbc4d5dbefb8b465d45bc2d11afbe7bfbe6ca76ac259e634eebf8db694ff02fe2b4c80783b443ef68287e9cf7cbcc2ee196f10c4ffb3f59e4921e0f9f08cba9a2c56c49fa7465b4836da5b2d9b142763889caa718d8a4fcb2f3ef6dc6185708fb1e0f9081d29fb3defae8c525f07437c7835b4eac8f86e2a22a81eff4120340e4a379446aac45dbff791d147805cd2748d74b8996c9b51ec03b410ef8fe126117fbf106795bc1b25d8dd786b6496bd743b7c75c638b516214ff56ec99a9c0f2919fa781cd8b4f2f2e425a6780c630a05c8e60011bc8e10055a6b6b652e5a13c73fd96f79038a65d6991ac38899ab98486d92bbcffdcf39a08a248ae1045ff8c6123de2f15d9ac360a3497c07001a3a1936ff1c03194ace131d380f515629ff016bd890ff822704c0db8bc68efad2eace5466628e7d6c2f2b3043698c46fdd62588fc54b72a786af0d026353879892c58007f7988a3f2240a43303218cc1df27807bfbde117c505f060396850a82459830a89a6a8601ea2e47f2e41379d110b96576f8f7705bba7ec63d6b44ccf84073cf9bdcf1aee48cb60c2f6dd3e89f3626a5e23339ea99c918d76a43fecf7401f7550e8eaefa4d84f1143320599daf7699858b2bf408e9093aa91d6dd9ae39d8decf3f7a199b0c1918d47be3b7aeff9a8c10efabe787b43141e7abaa4317158864b0361568140ab79cade1223c3ef81da4c4eefdd5b21fcc1b87872fc3b346737105589b84ba9814679b7510ed9b4f290083ee634ae12243ccc63413d7bc35eee0d1a4bc9dd33c37f5130303edddfc2636ffbf1ee0febb953436710c2ed9bd001d2ebe878788ddf7f7ad55b7a8cbcb348e82cd65b59315858086606115d04a3cda0e4af2a703afe09e4afedf00d5fbb2284df9af1d1ec9f15356c58fdcde45fff250568347f3b0b49e11e44c0a4d98a1e3393ce5d76614990f23b2e146842b166fb070894c128f957b0cc7d80a16275efd15659e0f81990062ebfdf9454d12e63d1ce1dad7848fcbab642a0d62ebb17abc824883e4c6e1e81992f28f5bbd7b26e2645c7941b03dd2f27c29baa2412976a05fa13d8fc4d6bd152a8668d986a9cf605b8b4a61600481e01bdd74c96d73390518add968100ac742aaf5dd7eb4ccf0868ee3ef7f12c32298737dea65bd5d7161dd679b4dd6799aa086bf3b8c889780ac102b7b1ebcf2569dd77f201d74d94a61400ced9c613414012b451628a96e6cc8fe738e964940f7b753065677776f3b5398975aeac974fced560667cead03a8976eb4229ff4e1bca5588d5d544cbca8588215a2f5ef7a5fc1a07438d3a3e05d21eb30d46f1688543d4327d36e07635396eaab4e9bc862ee9c7fa24de38c5cbf8fa5afd024116bc84854d01072145ecc4bb415d94a333e0d91e9cf6fda5a2c244a585e3a32c95398f44800c578faf4a2ccc5979664db7a55aa5cc02789f84321ccaeed4f37dd48c8d1484ade0588fc4255ec8780534a693e2bfe88b622034552084492c6757429239bbe8dad8b904e58007639ca773344040a441dc0027a46c22198f3d0b0588e164881a9fc7a85a63c459b0d002e3d890edd250742d363e85250badb91a734759baf773c32b177d36eefb662be70", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
r6 = memfd_create(&(0x7f0000000100)='.@(\x00', 0x0)
ioctl$VIDIOC_TRY_FMT(r6, 0xc0d05640, &(0x7f0000000200)={0xb, @pix_mp={0x6770, 0x0, 0x7f734f6f, 0x4, 0x7, [{0xca, 0x8}, {0x8, 0xfffffffffffffff9}, {0x0, 0x4}, {0x8, 0x7}, {0x100, 0x1}, {0x5}, {0x7}, {0x1ff}], 0x0, 0x8, 0x7}})
vmsplice(r2, &(0x7f0000000300), 0x0, 0x9)

08:52:35 executing program 2:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
r1 = syz_open_dev$media(&(0x7f0000000080)='/dev/media#\x00', 0x9, 0x8000)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000440)={'team0\x00', <r2=>0x0})
getsockopt$inet6_mreq(0xffffffffffffff9c, 0x29, 0x1c, &(0x7f0000000480)={@mcast1, <r3=>0x0}, &(0x7f00000004c0)=0x14)
sendmsg$TEAM_CMD_NOOP(r1, &(0x7f0000000600)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x84}, 0xc, &(0x7f00000005c0)={&(0x7f0000000500)={0x98, 0x0, 0x300, 0x70bd2c, 0x25dfdbfe, {}, [{{0x8, 0x1, r2}, {0x7c, 0x2, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8}, {0x8, 0x4, r3}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0x8}}}]}}]}, 0x98}, 0x1, 0x0, 0x0, 0x801}, 0x1)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

08:52:35 executing program 0:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r0, 0x20000000008910, &(0x7f00000001c0)="0a5c2d02ef51628471918609f45a810dcbcd62b08f0f646b547d64c0ffe0184a7ef7f3ca4a96447408550194a32fe94ea6b2f2be5ca2b894ab815617b9ca9c9f7cf600e434040ef4f62e5c0a1f7b0bab06e782616f17fcc6e822019b3406a6bb44e68739b7117ae72f9ebfe784897762681aa33ce3a9ec50e86361857a97b09ae1050accee1010cd428ccb15040000002ec626260d5010793d4c143f4775ab24bc1e4a5078300973711217c81004f7fb2abea99091e20abd58f99cd196082143d1660da7804dcb8399ddf7ecf5d8376d4943c5dd0bd25fff08b77267cc73492cecb1ee2775fe5eb778df392ce9e6f234d234b96be0cddef8aa")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {0x0, 0x1000000}, 0x8, 0x1})
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000340)='/dev/ppp\x00', 0x40, 0x0)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
setsockopt$inet6_MRT6_ADD_MFC_PROXY(r1, 0x29, 0xd2, &(0x7f0000000140)={{0xa, 0x4e21, 0x0, @local, 0x4}, {0xa, 0x4e24, 0x6, @remote, 0x800}, 0x6, [0x100000000, 0x800, 0x5, 0x5, 0x5b, 0x238, 0xff, 0x3]}, 0x5c)
ioctl$PIO_UNIMAP(r1, 0x4b67, &(0x7f00000002c0)={0x8, &(0x7f0000000000)=[{0x7, 0x3ff}, {0x400, 0x3f}, {0x1, 0x800}, {0xe40a, 0x1f}, {0x949, 0x3}, {0x9, 0xf5}, {0x7, 0xfffffffffffffffa}, {0x6, 0x7}]})
ioctl$VIDIOC_G_JPEGCOMP(r1, 0x808c563d, &(0x7f0000000380))
dup2(r1, r0)

08:52:35 executing program 3 (fault-call:4 fault-nth:4):
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))

08:52:35 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f0000000080)="2fd17b16d77b941c22c1163f60ab581322d23a26326b0000000000000000bfe029dedbd143c69876a86fec9424633ad4290dbd6b0e15e23b5be00c5139b45612d6f34bb21232a6b37b94e2294e8baf2937009483c3a29d9239a57ac8a8aa4efbabb19ceb2dc41e850a8d0c363c72fd5c000000", 0x73, 0x20000800, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="89f9d765312b4001000000b0967bdae72ee5094371136a6477ba0a51a2969dbc2d4028ac7b5af67f178f9314ea2bb3ac1c442eaf749c21ae2af8e39a40c3dc032e6f8eb738786a79df71302ff3b5d42731597d995bed6103ff63b9a908bcc05e0400000092bdf4d3282f62d6928117f82c2dae48742dac857de846096e82c1a02e1edcadda721a3f8dc9a54da05d467ed35b6f931d8686986960e756048c61c2a2c374c318d21d7a7ef550779190066e82ea3f6724a9f61ff028ec7e8d7a04352e7a78f777a68b823abb646bdc55dbde285ce15bf45820f0ae20e4023f57c71f8b41e08eff14c3441485c6f54a30750c780852dad879d6d4be7243bd07f841f89009000000c23d6b4f70fe48b54577449cfcbc4d5dbefb8b465d45bc2d11afbe7bfbe6ca76ac259e634eebf8db694ff02fe2b4c80783b443ef68287e9cf7cbcc2ee196f10c4ffb3f59e4921e0f9f08cba9a2c56c49fa7465b4836da5b2d9b142763889caa718d8a4fcb2f3ef6dc6185708fb1e0f9081d29fb3defae8c525f07437c7835b4eac8f86e2a22a81eff4120340e4a379446aac45dbff791d147805cd2748d74b8996c9b51ec03b410ef8fe126117fbf106795bc1b25d8dd786b6496bd743b7c75c638b516214ff56ec99a9c0f2919fa781cd8b4f2f2e425a6780c630a05c8e60011bc8e10055a6b6b652e5a13c73fd96f79038a65d6991ac38899ab98486d92bbcffdcf39a08a248ae1045ff8c6123de2f15d9ac360a3497c07001a3a1936ff1c03194ace131d380f515629ff016bd890ff822704c0db8bc68efad2eace5466628e7d6c2f2b3043698c46fdd62588fc54b72a786af0d026353879892c58007f7988a3f2240a43303218cc1df27807bfbde117c505f060396850a82459830a89a6a8601ea2e47f2e41379d110b96576f8f7705bba7ec63d6b44ccf84073cf9bdcf1aee48cb60c2f6dd3e89f3626a5e23339ea99c918d76a43fecf7401f7550e8eaefa4d84f1143320599daf7699858b2bf408e9093aa91d6dd9ae39d8decf3f7a199b0c1918d47be3b7aeff9a8c10efabe787b43141e7abaa4317158864b0361568140ab79cade1223c3ef81da4c4eefdd5b21fcc1b87872fc3b346737105589b84ba9814679b7510ed9b4f290083ee634ae12243ccc63413d7bc35eee0d1a4bc9dd33c37f5130303edddfc2636ffbf1ee0febb953436710c2ed9bd001d2ebe878788ddf7f7ad55b7a8cbcb348e82cd65b59315858086606115d04a3cda0e4af2a703afe09e4afedf00d5fbb2284df9af1d1ec9f15356c58fdcde45fff250568347f3b0b49e11e44c0a4d98a1e3393ce5d76614990f23b2e146842b166fb070894c128f957b0cc7d80a16275efd15659e0f81990062ebfdf9454d12e63d1ce1dad7848fcbab642a0d62ebb17abc824883e4c6e1e81992f28f5bbd7b26e2645c7941b03dd2f27c29baa2412976a05fa13d8fc4d6bd152a8668d986a9cf605b8b4a61600481e01bdd74c96d73390518add968100ac742aaf5dd7eb4ccf0868ee3ef7f12c32298737dea65bd5d7161dd679b4dd6799aa086bf3b8c889780ac102b7b1ebcf2569dd77f201d74d94a61400ced9c613414012b451628a96e6cc8fe738e964940f7b753065677776f3b5398975aeac974fced560667cead03a8976eb4229ff4e1bca5588d5d544cbca8588215a2f5ef7a5fc1a07438d3a3e05d21eb30d46f1688543d4327d36e07635396eaab4e9bc862ee9c7fa24de38c5cbf8fa5afd024116bc84854d01072145ecc4bb415d94a333e0d91e9cf6fda5a2c244a585e3a32c95398f44800c578faf4a2ccc5979664db7a55aa5cc02789f84321ccaeed4f37dd48c8d1484ade0588fc4255ec8780534a693e2bfe88b622034552084492c6757429239bbe8dad8b904e58007639ca773344040a441dc0027a46c22198f3d0b0588e164881a9fc7a85a63c459b0d002e3d890edd250742d363e85250badb91a734759baf773c32b177d36eefb662be70", 0x595)
r1 = syz_open_dev$cec(&(0x7f0000000100)='/dev/cec#\x00', 0x2, 0x2)
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x40082406, &(0x7f0000000140)='ppp1(\\]\x00')
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

[  648.604966] FAULT_INJECTION: forcing a failure.
[  648.604966] name failslab, interval 1, probability 0, space 0, times 0
[  648.616462] CPU: 1 PID: 16794 Comm: syz-executor3 Not tainted 4.20.0-rc2+ #88
[  648.623788] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  648.626261] Call Trace:
[  648.626261]  dump_stack+0x32d/0x480
[  648.637944] not chained 580000 origins
[  648.626261]  ? __should_failslab+0x278/0x2a0
[  648.626261]  should_fail+0x11e5/0x13c0
[  648.626261]  __should_failslab+0x278/0x2a0
[  648.626261]  should_failslab+0x29/0x70
[  648.626261]  kmem_cache_alloc+0x146/0xe20
[  648.626261]  ? __x64_sys_ioctl+0x4a/0x70
[  648.626261]  ? do_syscall_64+0xcf/0x110
[  648.626261]  ? shmem_alloc_inode+0x5b/0xe0
[  648.626261]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  648.626261]  ? prep_compound_page+0x49b/0x570
[  648.626261]  ? shmem_write_end+0xac0/0xac0
[  648.626261]  shmem_alloc_inode+0x5b/0xe0
[  648.626261]  ? shmem_write_end+0xac0/0xac0
[  648.626261]  new_inode_pseudo+0x95/0x460
[  648.626261]  new_inode+0x6a/0x3e0
[  648.626261]  ? shmem_get_inode+0xb1/0xf20
[  648.626261]  shmem_get_inode+0x1ff/0xf20
[  648.626261]  __shmem_file_setup+0x286/0x5d0
[  648.626261]  shmem_file_setup+0xc7/0xe0
[  648.626261]  drm_gem_object_init+0x2b7/0x480
[  648.626261]  vkms_gem_create+0x1f1/0x480
[  648.626261]  vkms_dumb_create+0x231/0x4b0
[  648.626261]  ? vkms_gem_create+0x480/0x480
[  648.626261]  drm_mode_create_dumb_ioctl+0x444/0x470
[  648.626261]  ? drm_mode_create_dumb+0x470/0x470
[  648.626261]  drm_ioctl_kernel+0x664/0x6e0
[  648.626261]  ? drm_mode_create_dumb+0x470/0x470
[  648.626261]  ? drm_mode_create_dumb+0x470/0x470
[  648.626261]  drm_ioctl+0xaba/0x1160
[  648.626261]  ? drm_mode_create_dumb+0x470/0x470
[  648.626261]  ? __msan_poison_alloca+0x1e0/0x270
[  648.626261]  ? do_vfs_ioctl+0x184/0x2f70
[  648.626261]  ? __se_sys_ioctl+0x1da/0x270
[  648.626261]  ? drm_ioctl_kernel+0x6e0/0x6e0
[  648.626261]  do_vfs_ioctl+0xfbc/0x2f70
[  648.626261]  ? security_file_ioctl+0x92/0x200
[  648.626261]  __se_sys_ioctl+0x1da/0x270
[  648.626261]  __x64_sys_ioctl+0x4a/0x70
[  648.626261]  do_syscall_64+0xcf/0x110
[  648.626261]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  648.626261] RIP: 0033:0x457569
[  648.626261] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  648.626261] RSP: 002b:00007f8dd312dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  648.626261] RAX: ffffffffffffffda RBX: 00007f8dd312dc90 RCX: 0000000000457569
[  648.626261] RDX: 0000000020000040 RSI: ffffffffffffffb2 RDI: 0000000000000003
[  648.626261] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  648.626261] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8dd312e6d4
[  648.626261] R13: 00000000004be737 R14: 00000000004ce6f8 R15: 0000000000000005
[  648.642233] CPU: 0 PID: 16793 Comm: syz-executor2 Not tainted 4.20.0-rc2+ #88
[  648.642233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  648.892810] Call Trace:
[  648.892810]  dump_stack+0x32d/0x480
[  648.892810]  kmsan_internal_chain_origin+0x222/0x240
[  648.892810]  ? save_stack_trace+0xc6/0x110
[  648.892810]  ? __irqentry_text_end+0x1fa056/0x1fa056
[  648.892810]  ? kmsan_internal_chain_origin+0x90/0x240
[  648.892810]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  648.892810]  ? is_bpf_text_address+0x49e/0x4d0
[  648.892810]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  648.892810]  ? in_task_stack+0x12c/0x210
[  648.892810]  __msan_chain_origin+0x6d/0xb0
[  648.947727]  ? pskb_expand_head+0x436/0x1d20
[  648.947727]  __save_stack_trace+0x8be/0xc60
[  648.947727]  ? pskb_expand_head+0x436/0x1d20
[  648.947727]  save_stack_trace+0xc6/0x110
[  648.947727]  kmsan_internal_chain_origin+0x136/0x240
[  648.947727]  ? tcp_push_one+0x195/0x230
[  648.947727]  ? kmsan_internal_chain_origin+0x136/0x240
[  648.947727]  ? kmsan_memcpy_origins+0x13d/0x190
[  648.947727]  ? __msan_memcpy+0x6f/0x80
[  648.947727]  ? pskb_expand_head+0x436/0x1d20
[  648.947727]  ? iptunnel_handle_offloads+0x455/0x810
[  648.947727]  ? ipip_tunnel_xmit+0x15d/0x4a0
[  648.947727]  ? dev_hard_start_xmit+0x6dc/0xde0
[  648.947727]  ? __dev_queue_xmit+0x2d9e/0x3e00
[  649.011448]  ? dev_queue_xmit+0x4b/0x60
[  649.011448]  ? neigh_direct_output+0x42/0x50
[  649.011448]  ? ip_finish_output2+0x141a/0x1560
[  649.011448]  ? ip_finish_output+0xd93/0x10f0
[  649.011448]  ? ip_output+0x55c/0x630
[  649.011448]  ? __ip_queue_xmit+0x1bb5/0x2170
[  649.011448]  ? ip_queue_xmit+0xcc/0xf0
[  649.011448]  ? __tcp_transmit_skb+0x425c/0x5e00
[  649.011448]  ? tcp_write_xmit+0x389a/0xacc0
[  649.011448]  ? tcp_push_one+0x195/0x230
[  649.011448]  ? tcp_sendmsg_locked+0x456d/0x6c30
[  649.011448]  ? tcp_sendmsg+0xb2/0x100
[  649.011448]  ? inet_sendmsg+0x4e9/0x800
[  649.011448]  ? __sys_sendto+0x940/0xb80
[  649.011448]  ? __se_sys_sendto+0x107/0x130
[  649.011448]  ? __x64_sys_sendto+0x6e/0x90
[  649.011448]  ? do_syscall_64+0xcf/0x110
[  649.011448]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  649.011448]  ? __kmalloc_node_track_caller+0x1010/0x14e0
[  649.094454]  ? __msan_get_context_state+0x9/0x20
[  649.094454]  ? INIT_INT+0xc/0x30
[  649.102167]  ? __kmalloc_node_track_caller+0x369/0x14e0
[  649.102167]  kmsan_memcpy_origins+0x13d/0x190
[  649.102167]  __msan_memcpy+0x6f/0x80
[  649.102167]  pskb_expand_head+0x436/0x1d20
[  649.102167]  iptunnel_handle_offloads+0x455/0x810
[  649.102167]  ipip_tunnel_xmit+0x15d/0x4a0
[  649.129780]  ? ipip_tunnel_init+0x240/0x240
[  649.129780]  dev_hard_start_xmit+0x6dc/0xde0
[  649.129780]  __dev_queue_xmit+0x2d9e/0x3e00
[  649.129780]  dev_queue_xmit+0x4b/0x60
[  649.129780]  neigh_direct_output+0x42/0x50
[  649.129780]  ? neigh_connected_output+0x700/0x700
[  649.129780]  ip_finish_output2+0x141a/0x1560
[  649.129780]  ip_finish_output+0xd93/0x10f0
[  649.166329]  ip_output+0x55c/0x630
[  649.166329]  ? ip_mc_finish_output+0x440/0x440
[  649.166329]  ? ip_finish_output+0x10f0/0x10f0
[  649.166329]  __ip_queue_xmit+0x1bb5/0x2170
[  649.181448]  ? kmsan_set_origin+0x7f/0x100
[  649.181448]  ip_queue_xmit+0xcc/0xf0
[  649.181448]  ? dst_hold_safe+0x5d0/0x5d0
[  649.181448]  __tcp_transmit_skb+0x425c/0x5e00
[  649.181448]  tcp_write_xmit+0x389a/0xacc0
[  649.181448]  tcp_push_one+0x195/0x230
[  649.181448]  tcp_sendmsg_locked+0x456d/0x6c30
[  649.181448]  ? kmsan_internal_unpoison_shadow+0x30/0xd0
[  649.181448]  tcp_sendmsg+0xb2/0x100
[  649.181448]  ? tcp_sendmsg_locked+0x6c30/0x6c30
[  649.181448]  inet_sendmsg+0x4e9/0x800
[  649.181448]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  649.181448]  ? security_socket_sendmsg+0x1bd/0x200
[  649.181448]  ? inet_getname+0x490/0x490
[  649.181448]  __sys_sendto+0x940/0xb80
[  649.181448]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  649.181448]  ? prepare_exit_to_usermode+0x182/0x4c0
[  649.181448]  __se_sys_sendto+0x107/0x130
[  649.181448]  __x64_sys_sendto+0x6e/0x90
[  649.181448]  do_syscall_64+0xcf/0x110
[  649.181448]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  649.181448] RIP: 0033:0x457569
[  649.181448] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  649.181448] RSP: 002b:00007f84db90fc78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  649.181448] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000457569
[  649.181448] RDX: 00000000fffffdef RSI: 00000000200003c0 RDI: 0000000000000003
[  649.181448] RBP: 000000000072bf00 R08: 00000000200001c0 R09: 0000000000000010
[  649.181448] R10: 00000000000001f4 R11: 0000000000000246 R12: 00007f84db9106d4
[  649.181448] R13: 00000000004c3c11 R14: 00000000004d5e80 R15: 00000000ffffffff
[  649.181448] Uninit was stored to memory at:
[  649.181448]  kmsan_internal_chain_origin+0x136/0x240
[  649.181448]  __msan_chain_origin+0x6d/0xb0
[  649.181448]  __save_stack_trace+0x8be/0xc60
[  649.181448]  save_stack_trace+0xc6/0x110
[  649.181448]  kmsan_internal_chain_origin+0x136/0x240
[  649.181448]  kmsan_memcpy_origins+0x13d/0x190
[  649.181448]  __msan_memcpy+0x6f/0x80
[  649.181448]  pskb_expand_head+0x436/0x1d20
[  649.181448]  iptunnel_handle_offloads+0x455/0x810
[  649.181448]  ipip_tunnel_xmit+0x15d/0x4a0
[  649.181448]  dev_hard_start_xmit+0x6dc/0xde0
[  649.181448]  __dev_queue_xmit+0x2d9e/0x3e00
[  649.181448]  dev_queue_xmit+0x4b/0x60
[  649.181448]  neigh_direct_output+0x42/0x50
[  649.181448]  ip_finish_output2+0x141a/0x1560
[  649.181448]  ip_finish_output+0xd93/0x10f0
[  649.181448]  ip_output+0x55c/0x630
[  649.181448]  __ip_queue_xmit+0x1bb5/0x2170
[  649.181448]  ip_queue_xmit+0xcc/0xf0
[  649.181448]  __tcp_transmit_skb+0x425c/0x5e00
[  649.181448]  tcp_write_xmit+0x389a/0xacc0
[  649.181448]  tcp_push_one+0x195/0x230
[  649.181448]  tcp_sendmsg_locked+0x456d/0x6c30
[  649.181448]  tcp_sendmsg+0xb2/0x100
[  649.181448]  inet_sendmsg+0x4e9/0x800
[  649.181448]  __sys_sendto+0x940/0xb80
[  649.181448]  __se_sys_sendto+0x107/0x130
[  649.181448]  __x64_sys_sendto+0x6e/0x90
[  649.181448]  do_syscall_64+0xcf/0x110
[  649.466781] not chained 590000 origins
[  649.181448]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  649.472191] CPU: 1 PID: 16805 Comm: syz-executor4 Not tainted 4.20.0-rc2+ #88
[  649.181448] 
[  649.472191] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  649.181448] Uninit was stored to memory at:
[  649.472191] Call Trace:
[  649.181448]  kmsan_internal_chain_origin+0x136/0x240
[  649.472191]  dump_stack+0x32d/0x480
[  649.181448]  __msan_chain_origin+0x6d/0xb0
[  649.472191]  kmsan_internal_chain_origin+0x222/0x240
[  649.181448]  __save_stack_trace+0x8be/0xc60
[  649.472191]  ? _raw_spin_lock_irqsave+0x320/0x490
[  649.181448]  save_stack_trace+0xc6/0x110
[  649.472191]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  649.181448]  kmsan_internal_chain_origin+0x136/0x240
[  649.472191]  ? depot_save_stack+0x398/0x4b0
[  649.181448]  kmsan_memcpy_origins+0x13d/0x190
[  649.472191]  ? __irqentry_text_end+0x1fa056/0x1fa056
[  649.181448]  __msan_memcpy+0x6f/0x80
[  649.472191]  ? kmsan_internal_chain_origin+0x90/0x240
[  649.181448]  pskb_expand_head+0x436/0x1d20
[  649.472191]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  649.181448]  iptunnel_handle_offloads+0x455/0x810
[  649.472191]  ? is_bpf_text_address+0x49e/0x4d0
[  649.181448]  ipip_tunnel_xmit+0x15d/0x4a0
[  649.472191]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  649.181448]  dev_hard_start_xmit+0x6dc/0xde0
[  649.472191]  ? in_task_stack+0x12c/0x210
[  649.181448]  __dev_queue_xmit+0x2d9e/0x3e00
[  649.472191]  __msan_chain_origin+0x6d/0xb0
[  649.181448]  dev_queue_xmit+0x4b/0x60
[  649.472191]  ? pskb_expand_head+0x436/0x1d20
[  649.181448]  neigh_direct_output+0x42/0x50
[  649.472191]  __save_stack_trace+0x8be/0xc60
[  649.181448]  ip_finish_output2+0x141a/0x1560
[  649.472191]  ? kmsan_internal_unpoison_shadow+0x83/0xd0
[  649.181448]  ip_finish_output+0xd93/0x10f0
[  649.472191]  ? pskb_expand_head+0x436/0x1d20
[  649.181448]  ip_output+0x55c/0x630
[  649.472191]  save_stack_trace+0xc6/0x110
[  649.181448]  __ip_queue_xmit+0x1bb5/0x2170
[  649.472191]  kmsan_internal_chain_origin+0x136/0x240
[  649.181448]  ip_queue_xmit+0xcc/0xf0
[  649.472191]  ? __tcp_push_pending_frames+0x124/0x4e0
[  649.181448]  __tcp_transmit_skb+0x425c/0x5e00
[  649.472191]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  649.181448]  tcp_write_xmit+0x389a/0xacc0
[  649.472191]  ? kmsan_internal_chain_origin+0x136/0x240
[  649.181448]  tcp_push_one+0x195/0x230
[  649.472191]  ? kmsan_memcpy_origins+0x13d/0x190
[  649.181448]  tcp_sendmsg_locked+0x456d/0x6c30
[  649.472191]  ? __msan_memcpy+0x6f/0x80
[  649.181448]  tcp_sendmsg+0xb2/0x100
[  649.472191]  ? pskb_expand_head+0x436/0x1d20
[  649.181448]  inet_sendmsg+0x4e9/0x800
[  649.472191]  ? iptunnel_handle_offloads+0x455/0x810
[  649.181448]  __sys_sendto+0x940/0xb80
[  649.472191]  ? ipip_tunnel_xmit+0x15d/0x4a0
[  649.181448]  __se_sys_sendto+0x107/0x130
[  649.472191]  ? dev_hard_start_xmit+0x6dc/0xde0
[  649.181448]  __x64_sys_sendto+0x6e/0x90
[  649.472191]  ? __dev_queue_xmit+0x2d9e/0x3e00
[  649.181448]  do_syscall_64+0xcf/0x110
[  649.472191]  ? dev_queue_xmit+0x4b/0x60
[  649.181448]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  649.472191]  ? neigh_direct_output+0x42/0x50
[  649.181448] 
[  649.472191]  ? ip_finish_output2+0x141a/0x1560
[  649.181448] Uninit was stored to memory at:
[  649.472191]  ? ip_finish_output+0xd93/0x10f0
[  649.181448]  kmsan_internal_chain_origin+0x136/0x240
[  649.472191]  ? ip_output+0x55c/0x630
[  649.181448]  __msan_chain_origin+0x6d/0xb0
[  649.472191]  ? __ip_queue_xmit+0x1bb5/0x2170
[  649.181448]  __save_stack_trace+0x8be/0xc60
[  649.472191]  ? ip_queue_xmit+0xcc/0xf0
[  649.181448]  save_stack_trace+0xc6/0x110
[  649.472191]  ? __tcp_transmit_skb+0x425c/0x5e00
[  649.181448]  kmsan_internal_chain_origin+0x136/0x240
[  649.472191]  ? tcp_write_xmit+0x389a/0xacc0
[  649.181448]  kmsan_memcpy_origins+0x13d/0x190
[  649.472191]  ? __tcp_push_pending_frames+0x124/0x4e0
[  649.181448]  __msan_memcpy+0x6f/0x80
[  649.472191]  ? tcp_data_snd_check+0x1ec/0x1080
[  649.181448]  pskb_expand_head+0x436/0x1d20
[  649.472191]  ? tcp_rcv_established+0x1bb2/0x2940
[  649.181448]  iptunnel_handle_offloads+0x455/0x810
[  649.472191]  ? tcp_v4_do_rcv+0x686/0xd80
[  649.181448]  ipip_tunnel_xmit+0x15d/0x4a0
[  649.472191]  ? __release_sock+0x32d/0x750
[  649.181448]  dev_hard_start_xmit+0x6dc/0xde0
[  649.472191]  ? __sk_flush_backlog+0x52/0x70
[  649.181448]  __dev_queue_xmit+0x2d9e/0x3e00
[  649.472191]  ? tcp_sendmsg_locked+0xd72/0x6c30
[  649.181448]  dev_queue_xmit+0x4b/0x60
[  649.181448]  neigh_direct_output+0x42/0x50
[  649.472191]  ? tcp_sendmsg+0xb2/0x100
[  649.181448]  ip_finish_output2+0x141a/0x1560
[  649.472191]  ? inet_sendmsg+0x4e9/0x800
[  649.181448]  ip_finish_output+0xd93/0x10f0
[  649.472191]  ? __sys_sendto+0x940/0xb80
[  649.181448]  ip_output+0x55c/0x630
[  649.472191]  ? __se_sys_sendto+0x107/0x130
[  649.181448]  __ip_queue_xmit+0x1bb5/0x2170
[  649.472191]  ? __x64_sys_sendto+0x6e/0x90
[  649.181448]  ip_queue_xmit+0xcc/0xf0
[  649.472191]  ? do_syscall_64+0xcf/0x110
[  649.181448]  __tcp_transmit_skb+0x425c/0x5e00
[  649.472191]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  649.181448]  tcp_write_xmit+0x389a/0xacc0
[  649.472191]  ? __msan_get_context_state+0x9/0x20
[  649.181448]  tcp_push_one+0x195/0x230
[  649.472191]  ? INIT_INT+0xc/0x30
[  649.181448]  tcp_sendmsg_locked+0x456d/0x6c30
[  649.472191]  ? __kmalloc_node_track_caller+0x369/0x14e0
[  649.181448]  tcp_sendmsg+0xb2/0x100
[  649.472191]  kmsan_memcpy_origins+0x13d/0x190
[  649.181448]  inet_sendmsg+0x4e9/0x800
[  649.472191]  __msan_memcpy+0x6f/0x80
[  649.181448]  __sys_sendto+0x940/0xb80
[  649.472191]  pskb_expand_head+0x436/0x1d20
[  649.181448]  __se_sys_sendto+0x107/0x130
[  649.472191]  iptunnel_handle_offloads+0x455/0x810
[  649.181448]  __x64_sys_sendto+0x6e/0x90
[  649.472191]  ipip_tunnel_xmit+0x15d/0x4a0
[  649.181448]  do_syscall_64+0xcf/0x110
[  649.472191]  ? ipip_tunnel_init+0x240/0x240
[  649.181448]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  649.472191]  dev_hard_start_xmit+0x6dc/0xde0
[  649.181448] 
[  649.472191]  __dev_queue_xmit+0x2d9e/0x3e00
[  649.181448] Uninit was stored to memory at:
[  649.472191]  dev_queue_xmit+0x4b/0x60
[  649.181448]  kmsan_internal_chain_origin+0x136/0x240
[  649.472191]  neigh_direct_output+0x42/0x50
[  649.181448]  __msan_chain_origin+0x6d/0xb0
[  649.472191]  ? neigh_connected_output+0x700/0x700
[  649.181448]  __save_stack_trace+0x8be/0xc60
[  649.472191]  ip_finish_output2+0x141a/0x1560
[  649.181448]  save_stack_trace+0xc6/0x110
[  649.472191]  ip_finish_output+0xd93/0x10f0
[  649.181448]  kmsan_internal_chain_origin+0x136/0x240
[  649.472191]  ip_output+0x55c/0x630
[  649.181448]  kmsan_memcpy_origins+0x13d/0x190
[  649.472191]  ? ip_mc_finish_output+0x440/0x440
[  649.181448]  __msan_memcpy+0x6f/0x80
[  649.472191]  ? ip_finish_output+0x10f0/0x10f0
[  649.181448]  pskb_expand_head+0x436/0x1d20
[  649.472191]  __ip_queue_xmit+0x1bb5/0x2170
[  649.181448]  iptunnel_handle_offloads+0x455/0x810
[  649.472191]  ? kmsan_set_origin+0x7f/0x100
[  649.181448]  ipip_tunnel_xmit+0x15d/0x4a0
[  649.472191]  ip_queue_xmit+0xcc/0xf0
[  649.181448]  dev_hard_start_xmit+0x6dc/0xde0
[  649.472191]  ? dst_hold_safe+0x5d0/0x5d0
[  649.181448]  __dev_queue_xmit+0x2d9e/0x3e00
[  649.472191]  __tcp_transmit_skb+0x425c/0x5e00
[  649.181448]  dev_queue_xmit+0x4b/0x60
[  649.472191]  tcp_write_xmit+0x389a/0xacc0
[  649.181448]  neigh_direct_output+0x42/0x50
[  649.472191]  __tcp_push_pending_frames+0x124/0x4e0
[  649.181448]  ip_finish_output2+0x141a/0x1560
[  649.472191]  tcp_data_snd_check+0x1ec/0x1080
[  649.181448]  ip_finish_output+0xd93/0x10f0
[  649.472191]  tcp_rcv_established+0x1bb2/0x2940
[  649.181448]  ip_output+0x55c/0x630
[  649.472191]  ? __msan_get_context_state+0x9/0x20
[  649.181448]  __ip_queue_xmit+0x1bb5/0x2170
[  649.472191]  tcp_v4_do_rcv+0x686/0xd80
[  649.181448]  ip_queue_xmit+0xcc/0xf0
[  649.472191]  ? inet_sk_rx_dst_set+0x200/0x200
[  649.181448]  __tcp_transmit_skb+0x425c/0x5e00
[  649.472191]  __release_sock+0x32d/0x750
[  649.181448]  tcp_write_xmit+0x389a/0xacc0
[  649.472191]  __sk_flush_backlog+0x52/0x70
[  649.181448]  tcp_push_one+0x195/0x230
[  649.472191]  ? tcp_v4_init_sock+0xc0/0xc0
[  649.181448]  tcp_sendmsg_locked+0x456d/0x6c30
[  649.472191]  tcp_sendmsg_locked+0xd72/0x6c30
[  649.181448]  tcp_sendmsg+0xb2/0x100
[  649.472191]  ? kmsan_internal_unpoison_shadow+0x30/0xd0
[  649.181448]  inet_sendmsg+0x4e9/0x800
[  649.472191]  tcp_sendmsg+0xb2/0x100
[  649.181448]  __sys_sendto+0x940/0xb80
[  649.472191]  ? tcp_sendmsg_locked+0x6c30/0x6c30
[  649.181448]  __se_sys_sendto+0x107/0x130
[  649.472191]  inet_sendmsg+0x4e9/0x800
[  649.181448]  __x64_sys_sendto+0x6e/0x90
[  649.472191]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  649.181448]  do_syscall_64+0xcf/0x110
[  649.472191]  ? security_socket_sendmsg+0x1bd/0x200
[  649.181448]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  649.472191]  ? inet_getname+0x490/0x490
[  649.181448] 
[  649.472191]  __sys_sendto+0x940/0xb80
[  649.181448] Uninit was stored to memory at:
[  649.472191]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  649.181448]  kmsan_internal_chain_origin+0x136/0x240
[  649.472191]  ? prepare_exit_to_usermode+0x182/0x4c0
[  649.181448]  __msan_chain_origin+0x6d/0xb0
[  649.472191]  __se_sys_sendto+0x107/0x130
[  649.181448]  __save_stack_trace+0x8be/0xc60
[  649.472191]  __x64_sys_sendto+0x6e/0x90
[  649.181448]  save_stack_trace+0xc6/0x110
[  649.472191]  do_syscall_64+0xcf/0x110
[  649.181448]  kmsan_internal_chain_origin+0x136/0x240
[  649.472191]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  649.181448]  kmsan_memcpy_origins+0x13d/0x190
[  649.472191] RIP: 0033:0x457569
[  649.181448]  __msan_memcpy+0x6f/0x80
[  649.472191] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  649.181448]  pskb_expand_head+0x436/0x1d20
[  649.472191] RSP: 002b:00007fe2bd024c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  649.181448]  iptunnel_handle_offloads+0x455/0x810
[  649.472191] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000457569
[  649.181448]  ipip_tunnel_xmit+0x15d/0x4a0
[  649.472191] RDX: 00000000fffffdef RSI: 00000000200003c0 RDI: 0000000000000003
[  649.181448]  dev_hard_start_xmit+0x6dc/0xde0
[  649.472191] RBP: 000000000072bf00 R08: 00000000200001c0 R09: 0000000000000010
[  649.181448]  __dev_queue_xmit+0x2d9e/0x3e00
[  649.472191] R10: 00000000000001f4 R11: 0000000000000246 R12: 00007fe2bd0256d4
[  649.181448]  dev_queue_xmit+0x4b/0x60
[  649.472191] R13: 00000000004c3c11 R14: 00000000004d5e80 R15: 00000000ffffffff
[  649.181448]  neigh_direct_output+0x42/0x50
[  649.472191] Uninit was stored to memory at:
[  649.181448]  ip_finish_output2+0x141a/0x1560
[  649.472191]  kmsan_internal_chain_origin+0x136/0x240
[  649.181448]  ip_finish_output+0xd93/0x10f0
[  649.472191]  __msan_chain_origin+0x6d/0xb0
[  649.181448]  ip_output+0x55c/0x630
[  649.472191]  __save_stack_trace+0x8be/0xc60
[  649.181448]  __ip_queue_xmit+0x1bb5/0x2170
[  649.472191]  save_stack_trace+0xc6/0x110
[  649.181448]  ip_queue_xmit+0xcc/0xf0
[  649.472191]  kmsan_internal_chain_origin+0x136/0x240
[  649.181448]  __tcp_transmit_skb+0x425c/0x5e00
[  649.472191]  kmsan_memcpy_origins+0x13d/0x190
[  649.181448]  tcp_write_xmit+0x389a/0xacc0
[  649.472191]  __msan_memcpy+0x6f/0x80
[  649.181448]  tcp_push_one+0x195/0x230
[  649.472191]  pskb_expand_head+0x436/0x1d20
[  649.181448]  tcp_sendmsg_locked+0x456d/0x6c30
[  649.472191]  iptunnel_handle_offloads+0x455/0x810
[  649.181448]  tcp_sendmsg+0xb2/0x100
[  649.472191]  ipip_tunnel_xmit+0x15d/0x4a0
[  649.181448]  inet_sendmsg+0x4e9/0x800
[  649.472191]  dev_hard_start_xmit+0x6dc/0xde0
[  649.181448]  __sys_sendto+0x940/0xb80
[  649.472191]  __dev_queue_xmit+0x2d9e/0x3e00
[  649.181448]  __se_sys_sendto+0x107/0x130
[  649.472191]  dev_queue_xmit+0x4b/0x60
[  649.181448]  __x64_sys_sendto+0x6e/0x90
[  649.472191]  neigh_direct_output+0x42/0x50
[  649.181448]  do_syscall_64+0xcf/0x110
[  649.472191]  ip_finish_output2+0x141a/0x1560
[  649.181448]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  649.472191]  ip_finish_output+0xd93/0x10f0
[  649.181448] 
[  649.472191]  ip_output+0x55c/0x630
[  649.181448] Uninit was stored to memory at:
[  649.472191]  __ip_queue_xmit+0x1bb5/0x2170
[  649.181448]  kmsan_internal_chain_origin+0x136/0x240
[  649.472191]  ip_queue_xmit+0xcc/0xf0
[  649.181448]  __msan_chain_origin+0x6d/0xb0
[  649.472191]  __tcp_transmit_skb+0x425c/0x5e00
[  649.181448]  __save_stack_trace+0x8be/0xc60
[  649.472191]  tcp_write_xmit+0x389a/0xacc0
[  649.181448]  save_stack_trace+0xc6/0x110
[  649.472191]  __tcp_push_pending_frames+0x124/0x4e0
[  649.181448]  kmsan_internal_chain_origin+0x136/0x240
[  649.472191]  tcp_data_snd_check+0x1ec/0x1080
[  649.181448]  kmsan_memcpy_origins+0x13d/0x190
[  649.472191]  tcp_rcv_established+0x1bb2/0x2940
[  649.181448]  __msan_memcpy+0x6f/0x80
[  649.472191]  tcp_v4_do_rcv+0x686/0xd80
[  649.181448]  pskb_expand_head+0x436/0x1d20
[  649.472191]  __release_sock+0x32d/0x750
[  649.181448]  iptunnel_handle_offloads+0x455/0x810
[  649.472191]  __sk_flush_backlog+0x52/0x70
[  649.181448]  ipip_tunnel_xmit+0x15d/0x4a0
[  649.472191]  tcp_sendmsg_locked+0xd72/0x6c30
[  649.181448]  dev_hard_start_xmit+0x6dc/0xde0
[  649.472191]  tcp_sendmsg+0xb2/0x100
[  649.181448]  __dev_queue_xmit+0x2d9e/0x3e00
[  649.472191]  inet_sendmsg+0x4e9/0x800
[  649.181448]  dev_queue_xmit+0x4b/0x60
[  649.472191]  __sys_sendto+0x940/0xb80
[  649.181448]  neigh_direct_output+0x42/0x50
[  649.472191]  __se_sys_sendto+0x107/0x130
[  649.181448]  ip_finish_output2+0x141a/0x1560
[  649.472191]  __x64_sys_sendto+0x6e/0x90
[  649.181448]  ip_finish_output+0xd93/0x10f0
[  649.472191]  do_syscall_64+0xcf/0x110
[  649.181448]  ip_output+0x55c/0x630
[  649.472191]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  649.181448]  __ip_queue_xmit+0x1bb5/0x2170
[  649.472191] 
[  649.181448]  ip_queue_xmit+0xcc/0xf0
[  649.472191] Uninit was stored to memory at:
[  649.181448]  __tcp_transmit_skb+0x425c/0x5e00
[  649.472191]  kmsan_internal_chain_origin+0x136/0x240
[  649.181448]  tcp_write_xmit+0x389a/0xacc0
[  649.472191]  __msan_chain_origin+0x6d/0xb0
[  649.181448]  tcp_push_one+0x195/0x230
[  649.472191]  __save_stack_trace+0x8be/0xc60
[  649.181448]  tcp_sendmsg_locked+0x456d/0x6c30
[  649.472191]  save_stack_trace+0xc6/0x110
[  649.181448]  tcp_sendmsg+0xb2/0x100
[  649.472191]  kmsan_internal_chain_origin+0x136/0x240
[  649.181448]  inet_sendmsg+0x4e9/0x800
[  649.472191]  kmsan_memcpy_origins+0x13d/0x190
[  649.181448]  __sys_sendto+0x940/0xb80
[  649.472191]  __msan_memcpy+0x6f/0x80
[  649.181448]  __se_sys_sendto+0x107/0x130
[  649.472191]  pskb_expand_head+0x436/0x1d20
[  649.181448]  __x64_sys_sendto+0x6e/0x90
[  649.472191]  iptunnel_handle_offloads+0x455/0x810
[  649.181448]  do_syscall_64+0xcf/0x110
[  649.472191]  ipip_tunnel_xmit+0x15d/0x4a0
[  649.181448]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  649.472191]  dev_hard_start_xmit+0x6dc/0xde0
[  649.181448] 
[  649.472191]  __dev_queue_xmit+0x2d9e/0x3e00
[  649.181448] Uninit was stored to memory at:
[  649.472191]  dev_queue_xmit+0x4b/0x60
[  649.181448]  kmsan_internal_chain_origin+0x136/0x240
[  649.472191]  neigh_direct_output+0x42/0x50
[  649.181448]  __msan_chain_origin+0x6d/0xb0
[  649.472191]  ip_finish_output2+0x141a/0x1560
[  649.181448]  __save_stack_trace+0x8be/0xc60
[  649.472191]  ip_finish_output+0xd93/0x10f0
[  649.181448]  save_stack_trace+0xc6/0x110
[  649.472191]  ip_output+0x55c/0x630
[  649.181448]  kmsan_internal_chain_origin+0x136/0x240
[  649.472191]  __ip_queue_xmit+0x1bb5/0x2170
[  649.181448]  kmsan_memcpy_origins+0x13d/0x190
[  649.472191]  ip_queue_xmit+0xcc/0xf0
[  649.181448]  __msan_memcpy+0x6f/0x80
[  649.472191]  __tcp_transmit_skb+0x425c/0x5e00
[  649.181448]  pskb_expand_head+0x436/0x1d20
[  649.472191]  tcp_write_xmit+0x389a/0xacc0
[  649.181448]  iptunnel_handle_offloads+0x455/0x810
[  649.472191]  __tcp_push_pending_frames+0x124/0x4e0
[  649.181448]  ipip_tunnel_xmit+0x15d/0x4a0
[  649.472191]  tcp_data_snd_check+0x1ec/0x1080
[  649.181448]  dev_hard_start_xmit+0x6dc/0xde0
[  649.472191]  tcp_rcv_established+0x1bb2/0x2940
[  649.181448]  __dev_queue_xmit+0x2d9e/0x3e00
[  649.472191]  tcp_v4_do_rcv+0x686/0xd80
[  649.181448]  dev_queue_xmit+0x4b/0x60
[  649.472191]  __release_sock+0x32d/0x750
[  649.181448]  neigh_direct_output+0x42/0x50
[  649.472191]  __sk_flush_backlog+0x52/0x70
[  649.181448]  ip_finish_output2+0x141a/0x1560
[  649.472191]  tcp_sendmsg_locked+0xd72/0x6c30
[  649.181448]  ip_finish_output+0xd93/0x10f0
[  649.472191]  tcp_sendmsg+0xb2/0x100
[  649.181448]  ip_output+0x55c/0x630
[  649.472191]  inet_sendmsg+0x4e9/0x800
[  649.181448]  __ip_queue_xmit+0x1bb5/0x2170
[  649.472191]  __sys_sendto+0x940/0xb80
[  649.181448]  ip_queue_xmit+0xcc/0xf0
[  649.472191]  __se_sys_sendto+0x107/0x130
[  649.181448]  __tcp_transmit_skb+0x425c/0x5e00
[  649.472191]  __x64_sys_sendto+0x6e/0x90
[  649.181448]  tcp_write_xmit+0x389a/0xacc0
[  649.472191]  do_syscall_64+0xcf/0x110
[  649.181448]  tcp_push_one+0x195/0x230
[  649.472191]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  649.181448]  tcp_sendmsg_locked+0x456d/0x6c30
[  649.472191] 
[  649.181448]  tcp_sendmsg+0xb2/0x100
[  649.472191]  kmsan_internal_chain_origin+0x136/0x240
[  649.181448]  inet_sendmsg+0x4e9/0x800
[  649.472191]  __msan_chain_origin+0x6d/0xb0
[  649.181448]  __sys_sendto+0x940/0xb80
[  649.472191]  __save_stack_trace+0x8be/0xc60
[  649.181448]  __se_sys_sendto+0x107/0x130
[  649.472191]  save_stack_trace+0xc6/0x110
08:52:36 executing program 1:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
fstat(r0, &(0x7f0000000140))
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000340)='/dev/dlm_plock\x00', 0x400, 0x0)
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000440)={<r3=>0x0, @local, @dev}, &(0x7f0000000480)=0xc)
connect$can_bcm(r2, &(0x7f00000004c0)={0x1d, r3}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000080)={'eql\x00', 0x809})
poll(&(0x7f00000002c0)=[{r5}], 0x1, 0x0)
ioctl$sock_ifreq(r4, 0x8914, &(0x7f00000000c0)={"65716c000000a95b00", @ifru_mtu=0x1})
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
r6 = memfd_create(&(0x7f0000000100)='.@(\x00', 0x0)
ioctl$VIDIOC_TRY_FMT(r6, 0xc0d05640, &(0x7f0000000200)={0xb, @pix_mp={0x6770, 0x0, 0x7f734f6f, 0x4, 0x7, [{0xca, 0x8}, {0x8, 0xfffffffffffffff9}, {0x0, 0x4}, {0x8, 0x7}, {0x100, 0x1}, {0x5}, {0x7}, {0x1ff}], 0x0, 0x8, 0x7}})
vmsplice(r2, &(0x7f0000000300), 0x0, 0x9)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r6, 0x801c581f, &(0x7f0000000300)={0x1, 0x0, 0x9, 0x4, 0x3})

08:52:36 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
socketpair$packet(0x11, 0x3, 0x300, &(0x7f0000000080))

08:52:36 executing program 0:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
openat$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x22040, 0x0)
dup2(r2, r0)

[  649.181448]  __x64_sys_sendto+0x6e/0x90
[  649.472191]  kmsan_internal_chain_origin+0x136/0x240
[  649.181448]  do_syscall_64+0xcf/0x110
[  649.472191]  kmsan_memcpy_origins+0x13d/0x190
[  649.181448]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  649.472191]  __msan_memcpy+0x6f/0x80
[  649.181448] 
[  649.472191]  pskb_expand_head+0x436/0x1d20
[  649.472191]  iptunnel_handle_offloads+0x455/0x810
[  649.472191]  ipip_tunnel_xmit+0x15d/0x4a0
[  649.472191]  dev_hard_start_xmit+0x6dc/0xde0
[  649.472191]  __dev_queue_xmit+0x2d9e/0x3e00
[  649.472191]  dev_queue_xmit+0x4b/0x60
[  649.472191]  neigh_direct_output+0x42/0x50
[  649.472191]  ip_finish_output2+0x141a/0x1560
[  649.472191]  ip_finish_output+0xd93/0x10f0
[  649.472191]  ip_output+0x55c/0x630
[  649.472191]  __ip_queue_xmit+0x1bb5/0x2170
[  649.472191]  ip_queue_xmit+0xcc/0xf0
[  649.472191]  __tcp_transmit_skb+0x425c/0x5e00
[  649.472191]  tcp_write_xmit+0x389a/0xacc0
[  649.472191]  __tcp_push_pending_frames+0x124/0x4e0
[  649.472191]  tcp_data_snd_check+0x1ec/0x1080
[  649.472191]  tcp_rcv_established+0x1bb2/0x2940
[  649.472191]  tcp_v4_do_rcv+0x686/0xd80
[  649.472191]  __release_sock+0x32d/0x750
[  649.472191]  __sk_flush_backlog+0x52/0x70
[  649.472191]  tcp_sendmsg_locked+0xd72/0x6c30
[  649.472191]  tcp_sendmsg+0xb2/0x100
[  649.472191]  inet_sendmsg+0x4e9/0x800
[  649.472191]  __sys_sendto+0x940/0xb80
[  649.472191]  __se_sys_sendto+0x107/0x130
[  649.472191]  __x64_sys_sendto+0x6e/0x90
[  649.472191]  do_syscall_64+0xcf/0x110
[  649.472191]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  649.472191] 
[  649.472191] Uninit was stored to memory at:
[  649.472191]  kmsan_internal_chain_origin+0x136/0x240
[  649.472191]  __msan_chain_origin+0x6d/0xb0
[  649.472191]  __save_stack_trace+0x8be/0xc60
[  649.472191]  save_stack_trace+0xc6/0x110
[  649.472191]  kmsan_internal_chain_origin+0x136/0x240
[  649.472191]  kmsan_memcpy_origins+0x13d/0x190
[  649.472191]  __msan_memcpy+0x6f/0x80
[  649.472191]  pskb_expand_head+0x436/0x1d20
[  649.472191]  iptunnel_handle_offloads+0x455/0x810
[  649.472191]  ipip_tunnel_xmit+0x15d/0x4a0
[  649.472191]  dev_hard_start_xmit+0x6dc/0xde0
[  649.472191]  __dev_queue_xmit+0x2d9e/0x3e00
[  649.472191]  dev_queue_xmit+0x4b/0x60
[  649.472191]  neigh_direct_output+0x42/0x50
[  649.472191]  ip_finish_output2+0x141a/0x1560
[  649.472191]  ip_finish_output+0xd93/0x10f0
[  649.472191]  ip_output+0x55c/0x630
[  649.472191]  __ip_queue_xmit+0x1bb5/0x2170
[  649.472191]  ip_queue_xmit+0xcc/0xf0
[  649.472191]  __tcp_transmit_skb+0x425c/0x5e00
[  649.472191]  tcp_write_xmit+0x389a/0xacc0
[  649.472191]  __tcp_push_pending_frames+0x124/0x4e0
[  649.472191]  tcp_data_snd_check+0x1ec/0x1080
[  649.472191]  tcp_rcv_established+0x1bb2/0x2940
[  649.472191]  tcp_v4_do_rcv+0x686/0xd80
[  649.472191]  __release_sock+0x32d/0x750
[  649.472191]  __sk_flush_backlog+0x52/0x70
[  649.472191]  tcp_sendmsg_locked+0xd72/0x6c30
[  649.472191]  tcp_sendmsg+0xb2/0x100
[  649.472191]  inet_sendmsg+0x4e9/0x800
[  649.472191]  __sys_sendto+0x940/0xb80
[  649.472191]  __se_sys_sendto+0x107/0x130
[  649.472191]  __x64_sys_sendto+0x6e/0x90
[  649.472191]  do_syscall_64+0xcf/0x110
[  649.472191]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
08:52:35 executing program 3 (fault-call:4 fault-nth:5):
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))

[  649.472191] 
[  649.472191] Uninit was stored to memory at:
[  649.472191]  kmsan_internal_chain_origin+0x136/0x240
[  649.472191]  __msan_chain_origin+0x6d/0xb0
[  649.472191]  __save_stack_trace+0x8be/0xc60
[  649.472191]  save_stack_trace+0xc6/0x110
[  649.472191]  kmsan_internal_chain_origin+0x136/0x240
[  649.472191]  kmsan_memcpy_origins+0x13d/0x190
[  649.472191]  __msan_memcpy+0x6f/0x80
[  649.472191]  pskb_expand_head+0x436/0x1d20
[  649.472191]  iptunnel_handle_offloads+0x455/0x810
[  649.472191]  ipip_tunnel_xmit+0x15d/0x4a0
[  649.472191]  dev_hard_start_xmit+0x6dc/0xde0
[  649.472191]  __dev_queue_xmit+0x2d9e/0x3e00
[  649.472191]  dev_queue_xmit+0x4b/0x60
[  649.472191]  neigh_direct_output+0x42/0x50
[  649.472191]  ip_finish_output2+0x141a/0x1560
[  649.472191] FAULT_INJECTION: forcing a failure.
[  649.472191] name failslab, interval 1, probability 0, space 0, times 0
[  649.472191]  ip_finish_output+0xd93/0x10f0
[  649.472191]  ip_output+0x55c/0x630
[  649.472191]  __ip_queue_xmit+0x1bb5/0x2170
[  649.472191] CPU: 0 PID: 16811 Comm: syz-executor3 Not tainted 4.20.0-rc2+ #88
[  649.472191]  ip_queue_xmit+0xcc/0xf0
[  649.472191]  __tcp_transmit_skb+0x425c/0x5e00
[  649.472191] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  649.472191]  tcp_write_xmit+0x389a/0xacc0
[  649.472191]  __tcp_push_pending_frames+0x124/0x4e0
[  649.472191] Call Trace:
[  649.472191]  tcp_data_snd_check+0x1ec/0x1080
[  649.472191]  tcp_rcv_established+0x1bb2/0x2940
[  649.472191]  dump_stack+0x32d/0x480
[  649.472191]  tcp_v4_do_rcv+0x686/0xd80
[  649.472191]  __release_sock+0x32d/0x750
[  649.472191]  should_fail+0x11e5/0x13c0
[  649.472191]  __sk_flush_backlog+0x52/0x70
[  649.472191]  tcp_sendmsg_locked+0xd72/0x6c30
[  649.472191]  __should_failslab+0x278/0x2a0
[  649.472191]  tcp_sendmsg+0xb2/0x100
[  649.472191]  inet_sendmsg+0x4e9/0x800
[  649.472191]  should_failslab+0x29/0x70
[  649.472191]  __sys_sendto+0x940/0xb80
[  649.472191]  __se_sys_sendto+0x107/0x130
[  649.472191]  kmem_cache_alloc+0x146/0xe20
[  649.472191]  __x64_sys_sendto+0x6e/0x90
[  649.472191]  do_syscall_64+0xcf/0x110
[  649.472191]  ? __d_alloc+0xd2/0xdd0
[  649.472191]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  649.472191]  kmsan_internal_chain_origin+0x136/0x240
[  649.472191]  ? __msan_poison_alloca+0x1e0/0x270
[  649.472191]  __msan_chain_origin+0x6d/0xb0
[  649.472191]  __save_stack_trace+0x8be/0xc60
[  649.472191]  __d_alloc+0xd2/0xdd0
[  649.472191]  save_stack_trace+0xc6/0x110
[  649.472191]  kmsan_internal_chain_origin+0x136/0x240
[  649.472191]  ? __msan_poison_alloca+0x1e0/0x270
[  649.472191]  kmsan_memcpy_origins+0x13d/0x190
[  649.472191]  __msan_memcpy+0x6f/0x80
[  649.472191]  d_alloc_pseudo+0x68/0x80
[  649.472191]  pskb_expand_head+0x436/0x1d20
[  649.472191]  iptunnel_handle_offloads+0x455/0x810
[  649.472191]  alloc_file_pseudo+0x19f/0x4e0
[  649.472191]  ipip_tunnel_xmit+0x15d/0x4a0
[  649.472191]  dev_hard_start_xmit+0x6dc/0xde0
[  649.472191]  ? clear_nlink+0x163/0x220
[  649.472191]  __dev_queue_xmit+0x2d9e/0x3e00
[  649.472191]  dev_queue_xmit+0x4b/0x60
[  649.472191]  __shmem_file_setup+0x3ef/0x5d0
[  649.472191]  neigh_direct_output+0x42/0x50
[  649.472191]  ip_finish_output2+0x141a/0x1560
[  649.472191]  shmem_file_setup+0xc7/0xe0
[  649.472191]  ip_finish_output+0xd93/0x10f0
[  649.472191]  ip_output+0x55c/0x630
[  649.472191]  drm_gem_object_init+0x2b7/0x480
[  649.472191]  __ip_queue_xmit+0x1bb5/0x2170
[  649.472191]  ip_queue_xmit+0xcc/0xf0
[  649.472191]  vkms_gem_create+0x1f1/0x480
[  649.472191]  __tcp_transmit_skb+0x425c/0x5e00
[  649.472191]  tcp_write_xmit+0x389a/0xacc0
[  649.472191]  vkms_dumb_create+0x231/0x4b0
[  649.472191]  __tcp_push_pending_frames+0x124/0x4e0
[  649.472191]  tcp_data_snd_check+0x1ec/0x1080
[  649.472191]  ? vkms_gem_create+0x480/0x480
[  649.472191]  tcp_rcv_established+0x1bb2/0x2940
[  649.472191]  tcp_v4_do_rcv+0x686/0xd80
[  649.472191]  drm_mode_create_dumb_ioctl+0x444/0x470
[  649.472191]  __release_sock+0x32d/0x750
[  649.472191]  __sk_flush_backlog+0x52/0x70
[  649.472191]  ? drm_mode_create_dumb+0x470/0x470
[  649.472191]  tcp_sendmsg_locked+0xd72/0x6c30
[  649.472191]  tcp_sendmsg+0xb2/0x100
[  649.472191]  drm_ioctl_kernel+0x664/0x6e0
[  649.472191]  inet_sendmsg+0x4e9/0x800
[  649.472191]  __sys_sendto+0x940/0xb80
[  649.472191]  ? drm_mode_create_dumb+0x470/0x470
[  649.472191]  __se_sys_sendto+0x107/0x130
[  649.472191]  __x64_sys_sendto+0x6e/0x90
[  649.472191]  ? drm_mode_create_dumb+0x470/0x470
[  649.472191]  do_syscall_64+0xcf/0x110
[  649.472191]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  649.472191]  drm_ioctl+0xaba/0x1160
[  649.472191] 
[  649.472191]  kmsan_internal_chain_origin+0x136/0x240
[  649.472191]  ? drm_mode_create_dumb+0x470/0x470
[  649.472191]  __msan_chain_origin+0x6d/0xb0
[  649.472191]  __save_stack_trace+0x8be/0xc60
[  649.472191]  ? __msan_poison_alloca+0x1e0/0x270
[  649.472191]  save_stack_trace+0xc6/0x110
[  649.472191]  kmsan_internal_chain_origin+0x136/0x240
[  649.472191]  ? do_vfs_ioctl+0x184/0x2f70
[  649.472191]  kmsan_memcpy_origins+0x13d/0x190
[  649.472191]  __msan_memcpy+0x6f/0x80
[  649.472191]  ? __se_sys_ioctl+0x1da/0x270
[  649.472191]  pskb_expand_head+0x436/0x1d20
[  649.472191]  iptunnel_handle_offloads+0x455/0x810
[  649.472191]  ? drm_ioctl_kernel+0x6e0/0x6e0
[  649.472191]  ipip_tunnel_xmit+0x15d/0x4a0
[  649.472191]  dev_hard_start_xmit+0x6dc/0xde0
[  649.472191]  do_vfs_ioctl+0xfbc/0x2f70
[  649.472191]  __dev_queue_xmit+0x2d9e/0x3e00
[  649.472191]  dev_queue_xmit+0x4b/0x60
[  649.472191]  ? security_file_ioctl+0x92/0x200
[  649.472191]  neigh_direct_output+0x42/0x50
[  649.472191]  ip_finish_output2+0x141a/0x1560
[  649.472191]  __se_sys_ioctl+0x1da/0x270
[  649.472191]  ip_finish_output+0xd93/0x10f0
[  649.472191]  ip_output+0x55c/0x630
[  649.472191]  __x64_sys_ioctl+0x4a/0x70
[  649.472191]  __ip_queue_xmit+0x1bb5/0x2170
[  649.472191]  ip_queue_xmit+0xcc/0xf0
[  649.472191]  do_syscall_64+0xcf/0x110
[  649.472191]  __tcp_transmit_skb+0x425c/0x5e00
[  649.472191]  tcp_write_xmit+0x389a/0xacc0
[  649.472191]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  649.472191]  __tcp_push_pending_frames+0x124/0x4e0
[  649.472191]  tcp_data_snd_check+0x1ec/0x1080
[  649.472191] RIP: 0033:0x457569
[  649.472191]  tcp_rcv_established+0x1bb2/0x2940
[  649.472191]  tcp_v4_do_rcv+0x686/0xd80
[  649.472191] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  649.472191]  __release_sock+0x32d/0x750
[  649.472191]  __sk_flush_backlog+0x52/0x70
[  649.472191] RSP: 002b:00007f8dd312dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  649.472191]  tcp_sendmsg_locked+0xd72/0x6c30
[  649.472191]  tcp_sendmsg+0xb2/0x100
[  649.472191] RAX: ffffffffffffffda RBX: 00007f8dd312dc90 RCX: 0000000000457569
[  649.472191]  inet_sendmsg+0x4e9/0x800
[  649.472191]  __sys_sendto+0x940/0xb80
[  649.472191] RDX: 0000000020000040 RSI: ffffffffffffffb2 RDI: 0000000000000003
[  649.472191]  __se_sys_sendto+0x107/0x130
[  649.472191]  __x64_sys_sendto+0x6e/0x90
[  649.472191] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  649.472191]  do_syscall_64+0xcf/0x110
[  649.472191]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  649.472191] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8dd312e6d4
[  649.472191] 
[  649.472191] not chained 600000 origins
[  649.472191] R13: 00000000004be737 R14: 00000000004ce6f8 R15: 0000000000000005
[  649.472191] CPU: 1 PID: 16805 Comm: syz-executor4 Not tainted 4.20.0-rc2+ #88
[  649.472191] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  649.472191] Call Trace:
[  649.472191]  dump_stack+0x32d/0x480
[  649.472191]  kmsan_internal_chain_origin+0x222/0x240
[  649.472191]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  649.472191]  ? __module_address+0x6a/0x5f0
[  649.472191]  ? __module_address+0x6a/0x5f0
[  649.472191]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  649.472191]  ? __module_address+0x6a/0x5f0
[  649.472191]  ? is_bpf_text_address+0x3e5/0x4d0
[  649.472191]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  649.472191]  ? is_bpf_text_address+0x49e/0x4d0
[  649.472191]  ? kmsan_internal_chain_origin+0x90/0x240
[  649.472191]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  649.472191]  ? is_bpf_text_address+0x49e/0x4d0
[  649.472191]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  649.472191]  ? in_task_stack+0x12c/0x210
[  649.472191]  __msan_chain_origin+0x6d/0xb0
[  649.472191]  ? tcp_data_snd_check+0x1ec/0x1080
[  649.472191]  __save_stack_trace+0x8be/0xc60
[  649.472191]  ? tcp_data_snd_check+0x1ec/0x1080
[  649.472191]  save_stack_trace+0xc6/0x110
[  649.472191]  kmsan_internal_chain_origin+0x136/0x240
[  649.472191]  ? __tcp_push_pending_frames+0x124/0x4e0
[  649.472191]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  649.472191]  ? kmsan_internal_chain_origin+0x136/0x240
[  649.472191]  ? kmsan_memcpy_origins+0x13d/0x190
[  649.472191]  ? __msan_memcpy+0x6f/0x80
[  649.472191]  ? pskb_expand_head+0x436/0x1d20
[  649.472191]  ? iptunnel_handle_offloads+0x455/0x810
[  649.472191]  ? ipip_tunnel_xmit+0x15d/0x4a0
[  649.472191]  ? dev_hard_start_xmit+0x6dc/0xde0
[  649.472191]  ? __dev_queue_xmit+0x2d9e/0x3e00
[  649.472191]  ? dev_queue_xmit+0x4b/0x60
[  649.472191]  ? neigh_direct_output+0x42/0x50
[  649.472191]  ? ip_finish_output2+0x141a/0x1560
[  649.472191]  ? ip_finish_output+0xd93/0x10f0
[  649.472191]  ? ip_output+0x55c/0x630
[  649.472191]  ? __ip_queue_xmit+0x1bb5/0x2170
[  649.472191]  ? ip_queue_xmit+0xcc/0xf0
[  649.472191]  ? __tcp_transmit_skb+0x425c/0x5e00
[  649.472191]  ? tcp_write_xmit+0x389a/0xacc0
[  649.472191]  ? __tcp_push_pending_frames+0x124/0x4e0
[  649.472191]  ? tcp_data_snd_check+0x1ec/0x1080
[  649.472191]  ? tcp_rcv_established+0x1bb2/0x2940
[  649.472191]  ? tcp_v4_do_rcv+0x686/0xd80
[  649.472191]  ? __release_sock+0x32d/0x750
[  649.472191]  ? __sk_flush_backlog+0x52/0x70
[  649.472191]  ? tcp_sendmsg_locked+0xd72/0x6c30
[  649.472191]  ? tcp_sendmsg+0xb2/0x100
[  649.472191]  ? inet_sendmsg+0x4e9/0x800
[  649.472191]  ? __sys_sendto+0x940/0xb80
[  649.472191]  ? __se_sys_sendto+0x107/0x130
[  649.472191]  ? __x64_sys_sendto+0x6e/0x90
[  649.472191]  ? do_syscall_64+0xcf/0x110
[  649.472191]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  649.472191]  ? __msan_get_context_state+0x9/0x20
[  649.472191]  ? INIT_INT+0xc/0x30
[  649.472191]  ? __kmalloc_node_track_caller+0x369/0x14e0
[  649.472191]  kmsan_memcpy_origins+0x13d/0x190
[  649.472191]  __msan_memcpy+0x6f/0x80
[  649.472191]  pskb_expand_head+0x436/0x1d20
[  649.472191]  iptunnel_handle_offloads+0x455/0x810
[  649.472191]  ipip_tunnel_xmit+0x15d/0x4a0
[  649.472191]  ? ipip_tunnel_init+0x240/0x240
[  649.472191]  dev_hard_start_xmit+0x6dc/0xde0
[  649.472191]  __dev_queue_xmit+0x2d9e/0x3e00
[  649.472191]  dev_queue_xmit+0x4b/0x60
[  649.472191]  neigh_direct_output+0x42/0x50
[  649.472191]  ? neigh_connected_output+0x700/0x700
[  649.472191]  ip_finish_output2+0x141a/0x1560
[  649.472191]  ip_finish_output+0xd93/0x10f0
[  649.472191]  ip_output+0x55c/0x630
[  649.472191]  ? ip_mc_finish_output+0x440/0x440
[  649.472191]  ? ip_finish_output+0x10f0/0x10f0
[  649.472191]  __ip_queue_xmit+0x1bb5/0x2170
[  649.472191]  ? kmsan_set_origin+0x7f/0x100
[  649.472191]  ip_queue_xmit+0xcc/0xf0
[  649.472191]  ? dst_hold_safe+0x5d0/0x5d0
[  649.472191]  __tcp_transmit_skb+0x425c/0x5e00
[  649.472191]  tcp_write_xmit+0x389a/0xacc0
[  649.472191]  __tcp_push_pending_frames+0x124/0x4e0
[  649.472191]  tcp_data_snd_check+0x1ec/0x1080
[  649.472191]  tcp_rcv_established+0x1bb2/0x2940
[  649.472191]  ? __msan_get_context_state+0x9/0x20
[  649.472191]  tcp_v4_do_rcv+0x686/0xd80
[  649.472191]  ? inet_sk_rx_dst_set+0x200/0x200
[  649.472191]  __release_sock+0x32d/0x750
[  649.472191]  __sk_flush_backlog+0x52/0x70
[  649.472191]  ? tcp_v4_init_sock+0xc0/0xc0
[  649.472191]  tcp_sendmsg_locked+0xd72/0x6c30
[  649.472191]  ? kmsan_internal_unpoison_shadow+0x30/0xd0
[  649.472191]  tcp_sendmsg+0xb2/0x100
[  649.472191]  ? tcp_sendmsg_locked+0x6c30/0x6c30
[  649.472191]  inet_sendmsg+0x4e9/0x800
[  649.472191]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  649.472191]  ? security_socket_sendmsg+0x1bd/0x200
[  649.472191]  ? inet_getname+0x490/0x490
[  649.472191]  __sys_sendto+0x940/0xb80
[  649.472191]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  649.472191]  ? prepare_exit_to_usermode+0x182/0x4c0
[  649.472191]  __se_sys_sendto+0x107/0x130
[  649.472191]  __x64_sys_sendto+0x6e/0x90
[  649.472191]  do_syscall_64+0xcf/0x110
[  649.472191]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  649.472191] RIP: 0033:0x457569
[  649.472191] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  649.472191] RSP: 002b:00007fe2bd024c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  649.472191] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000457569
[  649.472191] RDX: 00000000fffffdef RSI: 00000000200003c0 RDI: 0000000000000003
[  649.472191] RBP: 000000000072bf00 R08: 00000000200001c0 R09: 0000000000000010
[  649.472191] R10: 00000000000001f4 R11: 0000000000000246 R12: 00007fe2bd0256d4
[  649.472191] R13: 00000000004c3c11 R14: 00000000004d5e80 R15: 00000000ffffffff
[  649.472191] Uninit was stored to memory at:
[  649.472191]  kmsan_internal_chain_origin+0x136/0x240
[  649.472191]  __msan_chain_origin+0x6d/0xb0
[  649.472191]  __save_stack_trace+0x8be/0xc60
[  649.472191]  save_stack_trace+0xc6/0x110
[  649.472191]  kmsan_internal_chain_origin+0x136/0x240
[  649.472191]  kmsan_memcpy_origins+0x13d/0x190
[  649.472191]  __msan_memcpy+0x6f/0x80
[  649.472191]  pskb_expand_head+0x436/0x1d20
[  649.472191]  iptunnel_handle_offloads+0x455/0x810
[  649.472191]  ipip_tunnel_xmit+0x15d/0x4a0
[  649.472191]  dev_hard_start_xmit+0x6dc/0xde0
[  649.472191]  __dev_queue_xmit+0x2d9e/0x3e00
[  649.472191]  dev_queue_xmit+0x4b/0x60
[  649.472191]  neigh_direct_output+0x42/0x50
[  649.472191]  ip_finish_output2+0x141a/0x1560
[  649.472191]  ip_finish_output+0xd93/0x10f0
[  649.472191]  ip_output+0x55c/0x630
[  649.472191]  __ip_queue_xmit+0x1bb5/0x2170
[  649.472191]  ip_queue_xmit+0xcc/0xf0
[  649.472191]  __tcp_transmit_skb+0x425c/0x5e00
[  649.472191]  tcp_write_xmit+0x389a/0xacc0
[  649.472191]  __tcp_push_pending_frames+0x124/0x4e0
[  649.472191]  tcp_data_snd_check+0x1ec/0x1080
[  649.472191]  tcp_rcv_established+0x1bb2/0x2940
[  649.472191]  tcp_v4_do_rcv+0x686/0xd80
[  649.472191]  __release_sock+0x32d/0x750
[  649.472191]  __sk_flush_backlog+0x52/0x70
[  649.472191]  tcp_sendmsg_locked+0xd72/0x6c30
[  649.472191]  tcp_sendmsg+0xb2/0x100
[  649.472191]  inet_sendmsg+0x4e9/0x800
[  649.472191]  __sys_sendto+0x940/0xb80
[  649.472191]  __se_sys_sendto+0x107/0x130
[  649.472191]  __x64_sys_sendto+0x6e/0x90
[  649.472191]  do_syscall_64+0xcf/0x110
[  649.472191]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  649.472191] 
[  649.472191] Uninit was stored to memory at:
[  649.472191]  kmsan_internal_chain_origin+0x136/0x240
[  649.472191]  __msan_chain_origin+0x6d/0xb0
[  649.472191]  __save_stack_trace+0x8be/0xc60
[  649.472191]  save_stack_trace+0xc6/0x110
[  649.472191]  kmsan_internal_chain_origin+0x136/0x240
[  649.472191]  kmsan_memcpy_origins+0x13d/0x190
[  649.472191]  __msan_memcpy+0x6f/0x80
[  649.472191]  pskb_expand_head+0x436/0x1d20
[  649.472191]  iptunnel_handle_offloads+0x455/0x810
[  649.472191]  ipip_tunnel_xmit+0x15d/0x4a0
[  649.472191]  dev_hard_start_xmit+0x6dc/0xde0
[  649.472191]  __dev_queue_xmit+0x2d9e/0x3e00
[  649.472191]  dev_queue_xmit+0x4b/0x60
[  649.472191]  neigh_direct_output+0x42/0x50
[  649.472191]  ip_finish_output2+0x141a/0x1560
[  649.472191]  ip_finish_output+0xd93/0x10f0
[  649.472191]  ip_output+0x55c/0x630
[  649.472191]  __ip_queue_xmit+0x1bb5/0x2170
[  649.472191]  ip_queue_xmit+0xcc/0xf0
[  649.472191]  __tcp_transmit_skb+0x425c/0x5e00
[  649.472191]  tcp_write_xmit+0x389a/0xacc0
[  649.472191]  __tcp_push_pending_frames+0x124/0x4e0
[  649.472191]  tcp_data_snd_check+0x1ec/0x1080
[  649.472191]  tcp_rcv_established+0x1bb2/0x2940
[  649.472191]  tcp_v4_do_rcv+0x686/0xd80
[  649.472191]  __release_sock+0x32d/0x750
[  649.472191]  __sk_flush_backlog+0x52/0x70
[  649.472191]  tcp_sendmsg_locked+0xd72/0x6c30
[  649.472191]  tcp_sendmsg+0xb2/0x100
[  649.472191]  inet_sendmsg+0x4e9/0x800
[  649.472191]  __sys_sendto+0x940/0xb80
[  649.472191]  __se_sys_sendto+0x107/0x130
[  649.472191]  __x64_sys_sendto+0x6e/0x90
[  649.472191]  do_syscall_64+0xcf/0x110
[  649.472191]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  649.472191] 
[  649.472191] Uninit was stored to memory at:
[  649.472191]  kmsan_internal_chain_origin+0x136/0x240
[  649.472191]  __msan_chain_origin+0x6d/0xb0
[  649.472191]  __save_stack_trace+0x8be/0xc60
[  649.472191]  save_stack_trace+0xc6/0x110
[  649.472191]  kmsan_internal_chain_origin+0x136/0x240
[  649.472191]  kmsan_memcpy_origins+0x13d/0x190
[  649.472191]  __msan_memcpy+0x6f/0x80
[  649.472191]  pskb_expand_head+0x436/0x1d20
[  649.472191]  iptunnel_handle_offloads+0x455/0x810
[  649.472191]  ipip_tunnel_xmit+0x15d/0x4a0
[  649.472191]  dev_hard_start_xmit+0x6dc/0xde0
[  649.472191]  __dev_queue_xmit+0x2d9e/0x3e00
[  649.472191]  dev_queue_xmit+0x4b/0x60
[  649.472191]  neigh_direct_output+0x42/0x50
[  649.472191]  ip_finish_output2+0x141a/0x1560
[  649.472191]  ip_finish_output+0xd93/0x10f0
[  649.472191]  ip_output+0x55c/0x630
[  649.472191]  __ip_queue_xmit+0x1bb5/0x2170
[  649.472191]  ip_queue_xmit+0xcc/0xf0
[  649.472191]  __tcp_transmit_skb+0x425c/0x5e00
[  649.472191]  tcp_write_xmit+0x389a/0xacc0
[  649.472191]  __tcp_push_pending_frames+0x124/0x4e0
[  649.472191]  tcp_data_snd_check+0x1ec/0x1080
[  649.472191]  tcp_rcv_established+0x1bb2/0x2940
[  649.472191]  tcp_v4_do_rcv+0x686/0xd80
[  649.472191]  __release_sock+0x32d/0x750
[  649.472191]  __sk_flush_backlog+0x52/0x70
[  649.472191]  tcp_sendmsg_locked+0xd72/0x6c30
[  649.472191]  tcp_sendmsg+0xb2/0x100
[  649.472191]  inet_sendmsg+0x4e9/0x800
[  649.472191]  __sys_sendto+0x940/0xb80
[  649.472191]  __se_sys_sendto+0x107/0x130
[  649.472191]  __x64_sys_sendto+0x6e/0x90
[  649.472191]  do_syscall_64+0xcf/0x110
[  649.472191]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  649.472191] 
[  649.472191] Uninit was stored to memory at:
[  649.472191]  kmsan_internal_chain_origin+0x136/0x240
[  649.472191]  __msan_chain_origin+0x6d/0xb0
[  649.472191]  __save_stack_trace+0x8be/0xc60
[  649.472191]  save_stack_trace+0xc6/0x110
[  649.472191]  kmsan_internal_chain_origin+0x136/0x240
[  649.472191]  kmsan_memcpy_origins+0x13d/0x190
[  649.472191]  __msan_memcpy+0x6f/0x80
[  649.472191]  pskb_expand_head+0x436/0x1d20
[  649.472191]  iptunnel_handle_offloads+0x455/0x810
[  649.472191]  ipip_tunnel_xmit+0x15d/0x4a0
[  649.472191]  dev_hard_start_xmit+0x6dc/0xde0
[  649.472191]  __dev_queue_xmit+0x2d9e/0x3e00
[  649.472191]  dev_queue_xmit+0x4b/0x60
[  649.472191]  neigh_direct_output+0x42/0x50
[  649.472191]  ip_finish_output2+0x141a/0x1560
[  649.472191]  ip_finish_output+0xd93/0x10f0
[  649.472191]  ip_output+0x55c/0x630
[  649.472191]  __ip_queue_xmit+0x1bb5/0x2170
[  649.472191]  ip_queue_xmit+0xcc/0xf0
[  649.472191]  __tcp_transmit_skb+0x425c/0x5e00
[  649.472191]  tcp_write_xmit+0x389a/0xacc0
[  649.472191]  __tcp_push_pending_frames+0x124/0x4e0
[  649.472191]  tcp_data_snd_check+0x1ec/0x1080
[  649.472191]  tcp_rcv_established+0x1bb2/0x2940
[  649.472191]  tcp_v4_do_rcv+0x686/0xd80
[  649.472191]  __release_sock+0x32d/0x750
[  649.472191]  __sk_flush_backlog+0x52/0x70
[  649.472191]  tcp_sendmsg_locked+0xd72/0x6c30
[  649.472191]  tcp_sendmsg+0xb2/0x100
[  649.472191]  inet_sendmsg+0x4e9/0x800
[  649.472191]  __sys_sendto+0x940/0xb80
[  649.472191]  __se_sys_sendto+0x107/0x130
[  649.472191]  __x64_sys_sendto+0x6e/0x90
[  649.472191]  do_syscall_64+0xcf/0x110
[  649.472191]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  649.472191] 
[  649.472191] Uninit was stored to memory at:
[  649.472191]  kmsan_internal_chain_origin+0x136/0x240
[  649.472191]  __msan_chain_origin+0x6d/0xb0
[  649.472191]  __save_stack_trace+0x8be/0xc60
[  649.472191]  save_stack_trace+0xc6/0x110
[  649.472191]  kmsan_internal_chain_origin+0x136/0x240
[  649.472191]  kmsan_memcpy_origins+0x13d/0x190
[  649.472191]  __msan_memcpy+0x6f/0x80
08:52:35 executing program 3 (fault-call:4 fault-nth:6):
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))

08:52:35 executing program 1:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
fstat(r0, &(0x7f0000000140))
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000340)='/dev/dlm_plock\x00', 0x400, 0x0)
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000440)={<r3=>0x0, @local, @dev}, &(0x7f0000000480)=0xc)
connect$can_bcm(r2, &(0x7f00000004c0)={0x1d, r3}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000080)={'eql\x00', 0x809})
poll(&(0x7f00000002c0)=[{r5}], 0x1, 0x0)
ioctl$sock_ifreq(r4, 0x8914, &(0x7f00000000c0)={"65716c000000a95b00", @ifru_mtu=0x1})
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
r6 = memfd_create(&(0x7f0000000100)='.@(\x00', 0x0)
ioctl$VIDIOC_TRY_FMT(r6, 0xc0d05640, &(0x7f0000000200)={0xb, @pix_mp={0x6770, 0x0, 0x7f734f6f, 0x4, 0x7, [{0xca, 0x8}, {0x8, 0xfffffffffffffff9}, {0x0, 0x4}, {0x8, 0x7}, {0x100, 0x1}, {0x5}, {0x7}, {0x1ff}], 0x0, 0x8, 0x7}})
vmsplice(r2, &(0x7f0000000300), 0x0, 0x9)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r6, 0x801c581f, &(0x7f0000000300)={0x1, 0x0, 0x9, 0x4, 0x3})

08:52:35 executing program 2:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
r1 = syz_open_dev$media(&(0x7f0000000080)='/dev/media#\x00', 0x9, 0x8000)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000440)={'team0\x00', <r2=>0x0})
getsockopt$inet6_mreq(0xffffffffffffff9c, 0x29, 0x1c, &(0x7f0000000480)={@mcast1, <r3=>0x0}, &(0x7f00000004c0)=0x14)
sendmsg$TEAM_CMD_NOOP(r1, &(0x7f0000000600)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x84}, 0xc, &(0x7f00000005c0)={&(0x7f0000000500)={0x98, 0x0, 0x300, 0x70bd2c, 0x25dfdbfe, {}, [{{0x8, 0x1, r2}, {0x7c, 0x2, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8}, {0x8, 0x4, r3}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0x8}}}]}}]}, 0x98}, 0x1, 0x0, 0x0, 0x801}, 0x1)
write(r0, &(0x7f0000000ec0)="89f9d765312b4001000000b0967bdae72ee5094371136a6477ba0a51a2969dbc2d4028ac7b5af67f178f9314ea2bb3ac1c442eaf749c21ae2af8e39a40c3dc032e6f8eb738786a79df71302ff3b5d42731597d995bed6103ff63b9a908bcc05e0400000092bdf4d3282f62d6928117f82c2dae48742dac857de846096e82c1a02e1edcadda721a3f8dc9a54da05d467ed35b6f931d8686986960e756048c61c2a2c374c318d21d7a7ef550779190066e82ea3f6724a9f61ff028ec7e8d7a04352e7a78f777a68b823abb646bdc55dbde285ce15bf45820f0ae20e4023f57c71f8b41e08eff14c3441485c6f54a30750c780852dad879d6d4be7243bd07f841f89009000000c23d6b4f70fe48b54577449cfcbc4d5dbefb8b465d45bc2d11afbe7bfbe6ca76ac259e634eebf8db694ff02fe2b4c80783b443ef68287e9cf7cbcc2ee196f10c4ffb3f59e4921e0f9f08cba9a2c56c49fa7465b4836da5b2d9b142763889caa718d8a4fcb2f3ef6dc6185708fb1e0f9081d29fb3defae8c525f07437c7835b4eac8f86e2a22a81eff4120340e4a379446aac45dbff791d147805cd2748d74b8996c9b51ec03b410ef8fe126117fbf106795bc1b25d8dd786b6496bd743b7c75c638b516214ff56ec99a9c0f2919fa781cd8b4f2f2e425a6780c630a05c8e60011bc8e10055a6b6b652e5a13c73fd96f79038a65d6991ac38899ab98486d92bbcffdcf39a08a248ae1045ff8c6123de2f15d9ac360a3497c07001a3a1936ff1c03194ace131d380f515629ff016bd890ff822704c0db8bc68efad2eace5466628e7d6c2f2b3043698c46fdd62588fc54b72a786af0d026353879892c58007f7988a3f2240a43303218cc1df27807bfbde117c505f060396850a82459830a89a6a8601ea2e47f2e41379d110b96576f8f7705bba7ec63d6b44ccf84073cf9bdcf1aee48cb60c2f6dd3e89f3626a5e23339ea99c918d76a43fecf7401f7550e8eaefa4d84f1143320599daf7699858b2bf408e9093aa91d6dd9ae39d8decf3f7a199b0c1918d47be3b7aeff9a8c10efabe787b43141e7abaa4317158864b0361568140ab79cade1223c3ef81da4c4eefdd5b21fcc1b87872fc3b346737105589b84ba9814679b7510ed9b4f290083ee634ae12243ccc63413d7bc35eee0d1a4bc9dd33c37f5130303edddfc2636ffbf1ee0febb953436710c2ed9bd001d2ebe878788ddf7f7ad55b7a8cbcb348e82cd65b59315858086606115d04a3cda0e4af2a703afe09e4afedf00d5fbb2284df9af1d1ec9f15356c58fdcde45fff250568347f3b0b49e11e44c0a4d98a1e3393ce5d76614990f23b2e146842b166fb070894c128f957b0cc7d80a16275efd15659e0f81990062ebfdf9454d12e63d1ce1dad7848fcbab642a0d62ebb17abc824883e4c6e1e81992f28f5bbd7b26e2645c7941b03dd2f27c29baa2412976a05fa13d8fc4d6bd152a8668d986a9cf605b8b4a61600481e01bdd74c96d73390518add968100ac742aaf5dd7eb4ccf0868ee3ef7f12c32298737dea65bd5d7161dd679b4dd6799aa086bf3b8c889780ac102b7b1ebcf2569dd77f201d74d94a61400ced9c613414012b451628a96e6cc8fe738e964940f7b753065677776f3b5398975aeac974fced560667cead03a8976eb4229ff4e1bca5588d5d544cbca8588215a2f5ef7a5fc1a07438d3a3e05d21eb30d46f1688543d4327d36e07635396eaab4e9bc862ee9c7fa24de38c5cbf8fa5afd024116bc84854d01072145ecc4bb415d94a333e0d91e9cf6fda5a2c244a585e3a32c95398f44800c578faf4a2ccc5979664db7a55aa5cc02789f84321ccaeed4f37dd48c8d1484ade0588fc4255ec8780534a693e2bfe88b622034552084492c6757429239bbe8dad8b904e58007639ca773344040a441dc0027a46c22198f3d0b0588e164881a9fc7a85a63c459b0d002e3d890edd250742d363e85250badb91a734759baf773c32b177d36eefb662be70", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

[  649.472191]  pskb_expand_head+0x436/0x1d20
[  649.472191]  iptunnel_handle_offloads+0x455/0x810
[  649.472191]  ipip_tunnel_xmit+0x15d/0x4a0
[  649.472191]  dev_hard_start_xmit+0x6dc/0xde0
[  649.472191]  __dev_queue_xmit+0x2d9e/0x3e00
[  649.472191]  dev_queue_xmit+0x4b/0x60
[  649.472191]  neigh_direct_output+0x42/0x50
[  649.472191]  ip_finish_output2+0x141a/0x1560
[  649.472191]  ip_finish_output+0xd93/0x10f0
[  649.472191]  ip_output+0x55c/0x630
[  649.472191]  __ip_queue_xmit+0x1bb5/0x2170
[  649.472191]  ip_queue_xmit+0xcc/0xf0
[  649.472191]  __tcp_transmit_skb+0x425c/0x5e00
[  649.472191]  tcp_write_xmit+0x389a/0xacc0
[  649.472191]  __tcp_push_pending_frames+0x124/0x4e0
[  649.472191]  tcp_data_snd_check+0x1ec/0x1080
[  649.472191]  tcp_rcv_established+0x1bb2/0x2940
[  649.472191]  tcp_v4_do_rcv+0x686/0xd80
[  649.472191]  __release_sock+0x32d/0x750
[  649.472191]  __sk_flush_backlog+0x52/0x70
[  649.472191]  tcp_sendmsg_locked+0xd72/0x6c30
[  649.472191]  tcp_sendmsg+0xb2/0x100
[  649.472191]  inet_sendmsg+0x4e9/0x800
[  649.472191]  __sys_sendto+0x940/0xb80
[  649.472191]  __se_sys_sendto+0x107/0x130
[  649.472191]  __x64_sys_sendto+0x6e/0x90
[  649.472191]  do_syscall_64+0xcf/0x110
[  649.472191]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  649.472191] 
[  649.472191] Uninit was stored to memory at:
[  649.472191]  kmsan_internal_chain_origin+0x136/0x240
[  649.472191]  __msan_chain_origin+0x6d/0xb0
[  649.472191]  __save_stack_trace+0x8be/0xc60
[  649.472191]  save_stack_trace+0xc6/0x110
[  649.472191]  kmsan_internal_chain_origin+0x136/0x240
[  649.472191]  kmsan_memcpy_origins+0x13d/0x190
[  649.472191]  __msan_memcpy+0x6f/0x80
[  649.472191]  pskb_expand_head+0x436/0x1d20
[  649.472191]  iptunnel_handle_offloads+0x455/0x810
[  649.472191]  ipip_tunnel_xmit+0x15d/0x4a0
[  649.472191]  dev_hard_start_xmit+0x6dc/0xde0
[  649.472191]  __dev_queue_xmit+0x2d9e/0x3e00
[  649.472191]  dev_queue_xmit+0x4b/0x60
[  649.472191]  neigh_direct_output+0x42/0x50
[  649.472191]  ip_finish_output2+0x141a/0x1560
[  649.472191]  ip_finish_output+0xd93/0x10f0
[  649.472191]  ip_output+0x55c/0x630
[  649.472191]  __ip_queue_xmit+0x1bb5/0x2170
[  649.472191]  ip_queue_xmit+0xcc/0xf0
[  649.472191]  __tcp_transmit_skb+0x425c/0x5e00
[  649.472191]  tcp_write_xmit+0x389a/0xacc0
[  649.472191]  __tcp_push_pending_frames+0x124/0x4e0
[  649.472191]  tcp_data_snd_check+0x1ec/0x1080
[  649.472191]  tcp_rcv_established+0x1bb2/0x2940
[  649.472191]  tcp_v4_do_rcv+0x686/0xd80
[  649.472191]  __release_sock+0x32d/0x750
[  649.472191]  __sk_flush_backlog+0x52/0x70
[  649.472191]  tcp_sendmsg_locked+0xd72/0x6c30
[  649.472191]  tcp_sendmsg+0xb2/0x100
[  649.472191]  inet_sendmsg+0x4e9/0x800
[  649.472191]  __sys_sendto+0x940/0xb80
[  649.472191]  __se_sys_sendto+0x107/0x130
[  649.472191]  __x64_sys_sendto+0x6e/0x90
[  649.472191]  do_syscall_64+0xcf/0x110
[  649.472191]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  649.472191] 
[  649.472191] Uninit was stored to memory at:
[  649.472191]  kmsan_internal_chain_origin+0x136/0x240
[  649.472191]  __msan_chain_origin+0x6d/0xb0
[  649.472191]  __save_stack_trace+0x8be/0xc60
[  649.472191]  save_stack_trace+0xc6/0x110
[  649.472191]  kmsan_internal_chain_origin+0x136/0x240
[  649.472191]  kmsan_memcpy_origins+0x13d/0x190
[  649.472191]  __msan_memcpy+0x6f/0x80
[  649.472191]  pskb_expand_head+0x436/0x1d20
[  649.472191]  iptunnel_handle_offloads+0x455/0x810
[  649.472191]  ipip_tunnel_xmit+0x15d/0x4a0
[  649.472191]  dev_hard_start_xmit+0x6dc/0xde0
[  649.472191]  __dev_queue_xmit+0x2d9e/0x3e00
[  649.472191]  dev_queue_xmit+0x4b/0x60
[  649.472191]  neigh_direct_output+0x42/0x50
[  649.472191]  ip_finish_output2+0x141a/0x1560
[  649.472191]  ip_finish_output+0xd93/0x10f0
[  649.472191]  ip_output+0x55c/0x630
[  649.472191]  __ip_queue_xmit+0x1bb5/0x2170
[  649.472191]  ip_queue_xmit+0xcc/0xf0
[  649.472191]  __tcp_transmit_skb+0x425c/0x5e00
[  649.472191]  tcp_write_xmit+0x389a/0xacc0
[  649.472191]  __tcp_push_pending_frames+0x124/0x4e0
[  649.472191]  tcp_data_snd_check+0x1ec/0x1080
[  649.472191]  tcp_rcv_established+0x1bb2/0x2940
[  649.472191]  tcp_v4_do_rcv+0x686/0xd80
[  649.472191]  __release_sock+0x32d/0x750
[  649.472191]  __sk_flush_backlog+0x52/0x70
[  649.472191]  tcp_sendmsg_locked+0xd72/0x6c30
[  649.472191]  tcp_sendmsg+0xb2/0x100
[  649.472191]  inet_sendmsg+0x4e9/0x800
[  649.472191]  __sys_sendto+0x940/0xb80
[  649.472191]  __se_sys_sendto+0x107/0x130
[  649.472191]  __x64_sys_sendto+0x6e/0x90
[  649.472191]  do_syscall_64+0xcf/0x110
[  649.472191]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  649.472191] 
[  649.472191] Local variable description: ----flags.i.i.i.i@__local_bh_enable_ip
[  649.472191] Variable was created at:
[  649.472191]  __local_bh_enable_ip+0x46/0x260
[  649.472191]  local_bh_enable+0x36/0x40
[  649.472191] not chained 610000 origins
[  649.472191] CPU: 1 PID: 16805 Comm: syz-executor4 Not tainted 4.20.0-rc2+ #88
[  649.472191] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  649.472191] Call Trace:
[  649.472191]  dump_stack+0x32d/0x480
[  649.472191]  kmsan_internal_chain_origin+0x222/0x240
[  649.472191]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  649.472191]  ? __module_address+0x6a/0x5f0
[  649.472191]  ? __module_address+0x6a/0x5f0
[  649.472191]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  649.472191]  ? __module_address+0x6a/0x5f0
[  649.472191]  ? is_bpf_text_address+0x3e5/0x4d0
[  649.472191]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  649.472191]  ? is_bpf_text_address+0x49e/0x4d0
[  649.472191]  ? kmsan_internal_chain_origin+0x90/0x240
[  649.472191]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  649.472191]  ? is_bpf_text_address+0x49e/0x4d0
[  649.472191]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  649.472191]  ? in_task_stack+0x12c/0x210
[  649.472191]  __msan_chain_origin+0x6d/0xb0
[  649.472191]  ? tcp_sendmsg_locked+0xd72/0x6c30
[  649.472191]  __save_stack_trace+0x8be/0xc60
[  649.472191]  ? tcp_sendmsg_locked+0xd72/0x6c30
[  649.472191]  save_stack_trace+0xc6/0x110
[  649.472191]  kmsan_internal_chain_origin+0x136/0x240
[  649.472191]  ? __tcp_push_pending_frames+0x124/0x4e0
[  649.472191]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  649.472191]  ? kmsan_internal_chain_origin+0x136/0x240
[  649.472191]  ? kmsan_memcpy_origins+0x13d/0x190
[  649.472191]  ? __msan_memcpy+0x6f/0x80
[  649.472191]  ? pskb_expand_head+0x436/0x1d20
[  649.472191]  ? iptunnel_handle_offloads+0x455/0x810
[  649.472191]  ? ipip_tunnel_xmit+0x15d/0x4a0
[  649.472191]  ? dev_hard_start_xmit+0x6dc/0xde0
[  649.472191]  ? __dev_queue_xmit+0x2d9e/0x3e00
[  649.472191]  ? dev_queue_xmit+0x4b/0x60
[  649.472191]  ? neigh_direct_output+0x42/0x50
[  649.472191]  ? ip_finish_output2+0x141a/0x1560
[  649.472191]  ? ip_finish_output+0xd93/0x10f0
[  649.472191]  ? ip_output+0x55c/0x630
[  649.472191]  ? __ip_queue_xmit+0x1bb5/0x2170
[  649.472191]  ? ip_queue_xmit+0xcc/0xf0
[  649.472191] FAULT_INJECTION: forcing a failure.
[  649.472191] name failslab, interval 1, probability 0, space 0, times 0
[  649.472191]  ? __tcp_transmit_skb+0x425c/0x5e00
[  649.472191]  ? tcp_write_xmit+0x389a/0xacc0
[  649.472191]  ? __tcp_push_pending_frames+0x124/0x4e0
[  649.472191]  ? tcp_data_snd_check+0x1ec/0x1080
[  649.472191]  ? tcp_rcv_established+0x1bb2/0x2940
[  649.472191]  ? tcp_v4_do_rcv+0x686/0xd80
[  649.472191]  ? __release_sock+0x32d/0x750
[  649.472191]  ? __sk_flush_backlog+0x52/0x70
[  649.472191]  ? tcp_sendmsg_locked+0xd72/0x6c30
[  649.472191]  ? tcp_sendmsg+0xb2/0x100
[  649.472191]  ? inet_sendmsg+0x4e9/0x800
[  649.472191]  ? __sys_sendto+0x940/0xb80
[  649.472191]  ? __se_sys_sendto+0x107/0x130
[  649.472191]  ? __x64_sys_sendto+0x6e/0x90
[  649.472191]  ? do_syscall_64+0xcf/0x110
[  649.472191]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  649.472191]  ? __msan_get_context_state+0x9/0x20
[  649.472191]  ? INIT_INT+0xc/0x30
[  649.472191]  ? __kmalloc_node_track_caller+0x369/0x14e0
[  649.472191]  kmsan_memcpy_origins+0x13d/0x190
[  649.472191]  __msan_memcpy+0x6f/0x80
[  649.472191]  pskb_expand_head+0x436/0x1d20
[  649.472191]  iptunnel_handle_offloads+0x455/0x810
[  649.472191]  ipip_tunnel_xmit+0x15d/0x4a0
[  649.472191]  ? ipip_tunnel_init+0x240/0x240
[  649.472191]  dev_hard_start_xmit+0x6dc/0xde0
[  649.472191]  __dev_queue_xmit+0x2d9e/0x3e00
[  649.472191]  dev_queue_xmit+0x4b/0x60
[  649.472191]  neigh_direct_output+0x42/0x50
[  649.472191]  ? neigh_connected_output+0x700/0x700
[  649.472191]  ip_finish_output2+0x141a/0x1560
[  649.472191]  ip_finish_output+0xd93/0x10f0
[  649.472191]  ip_output+0x55c/0x630
[  649.472191]  ? ip_mc_finish_output+0x440/0x440
[  649.472191]  ? ip_finish_output+0x10f0/0x10f0
[  649.472191]  __ip_queue_xmit+0x1bb5/0x2170
[  649.472191]  ? kmsan_set_origin+0x7f/0x100
[  649.472191]  ip_queue_xmit+0xcc/0xf0
[  649.472191]  ? dst_hold_safe+0x5d0/0x5d0
[  649.472191]  __tcp_transmit_skb+0x425c/0x5e00
[  649.472191]  tcp_write_xmit+0x389a/0xacc0
[  649.472191]  __tcp_push_pending_frames+0x124/0x4e0
[  649.472191]  tcp_data_snd_check+0x1ec/0x1080
[  649.472191]  tcp_rcv_established+0x1bb2/0x2940
[  649.472191]  ? __msan_get_context_state+0x9/0x20
[  649.472191]  tcp_v4_do_rcv+0x686/0xd80
[  649.472191]  ? inet_sk_rx_dst_set+0x200/0x200
[  649.472191]  __release_sock+0x32d/0x750
[  649.472191]  __sk_flush_backlog+0x52/0x70
[  649.472191]  ? tcp_v4_init_sock+0xc0/0xc0
[  649.472191]  tcp_sendmsg_locked+0xd72/0x6c30
[  649.472191]  ? kmsan_internal_unpoison_shadow+0x30/0xd0
[  649.472191]  tcp_sendmsg+0xb2/0x100
[  649.472191]  ? tcp_sendmsg_locked+0x6c30/0x6c30
[  649.472191]  inet_sendmsg+0x4e9/0x800
[  649.472191]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  649.472191]  ? security_socket_sendmsg+0x1bd/0x200
[  649.472191]  ? inet_getname+0x490/0x490
[  649.472191]  __sys_sendto+0x940/0xb80
[  649.472191]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  649.472191]  ? prepare_exit_to_usermode+0x182/0x4c0
[  649.472191]  __se_sys_sendto+0x107/0x130
[  649.472191]  __x64_sys_sendto+0x6e/0x90
[  649.472191]  do_syscall_64+0xcf/0x110
[  649.472191]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  649.472191] RIP: 0033:0x457569
[  649.472191] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  649.472191] RSP: 002b:00007fe2bd024c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  649.472191] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000457569
[  649.472191] RDX: 00000000fffffdef RSI: 00000000200003c0 RDI: 0000000000000003
[  649.472191] RBP: 000000000072bf00 R08: 00000000200001c0 R09: 0000000000000010
[  649.472191] R10: 00000000000001f4 R11: 0000000000000246 R12: 00007fe2bd0256d4
[  649.472191] R13: 00000000004c3c11 R14: 00000000004d5e80 R15: 00000000ffffffff
[  649.472191] Uninit was stored to memory at:
[  649.656208] CPU: 0 PID: 16827 Comm: syz-executor3 Not tainted 4.20.0-rc2+ #88
[  649.656236] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  649.472191]  kmsan_internal_chain_origin+0x136/0x240
[  649.472191]  __msan_chain_origin+0x6d/0xb0
[  649.662227] Call Trace:
[  649.472191]  __save_stack_trace+0x8be/0xc60
[  649.472191]  save_stack_trace+0xc6/0x110
[  649.662227]  dump_stack+0x32d/0x480
[  649.472191]  kmsan_internal_chain_origin+0x136/0x240
[  649.472191]  kmsan_memcpy_origins+0x13d/0x190
[  649.662227]  ? __should_failslab+0x278/0x2a0
[  649.472191]  __msan_memcpy+0x6f/0x80
[  649.472191]  pskb_expand_head+0x436/0x1d20
[  649.662227]  should_fail+0x11e5/0x13c0
[  649.472191]  iptunnel_handle_offloads+0x455/0x810
[  649.472191]  ipip_tunnel_xmit+0x15d/0x4a0
[  649.662227]  __should_failslab+0x278/0x2a0
[  649.472191]  dev_hard_start_xmit+0x6dc/0xde0
[  649.472191]  __dev_queue_xmit+0x2d9e/0x3e00
[  649.662227]  should_failslab+0x29/0x70
[  649.472191]  dev_queue_xmit+0x4b/0x60
[  649.472191]  neigh_direct_output+0x42/0x50
[  649.662227]  kmem_cache_alloc+0x146/0xe20
[  649.472191]  ip_finish_output2+0x141a/0x1560
[  649.472191]  ip_finish_output+0xd93/0x10f0
[  649.662227]  ? __alloc_file+0xd2/0x7b0
[  649.472191]  ip_output+0x55c/0x630
[  649.472191]  __ip_queue_xmit+0x1bb5/0x2170
[  649.662227]  ? __msan_poison_alloca+0x1e0/0x270
[  649.472191]  ip_queue_xmit+0xcc/0xf0
[  649.472191]  __tcp_transmit_skb+0x425c/0x5e00
[  649.662227]  ? kmsan_internal_unpoison_shadow+0x83/0xd0
[  649.472191]  tcp_write_xmit+0x389a/0xacc0
[  649.472191]  __tcp_push_pending_frames+0x124/0x4e0
[  649.662227]  __alloc_file+0xd2/0x7b0
[  649.472191]  tcp_data_snd_check+0x1ec/0x1080
[  649.472191]  tcp_rcv_established+0x1bb2/0x2940
[  649.662227]  alloc_empty_file+0x1f5/0x4b0
[  649.472191]  tcp_v4_do_rcv+0x686/0xd80
[  649.472191]  __release_sock+0x32d/0x750
[  649.662227]  alloc_file+0xdb/0x8c0
[  649.472191]  __sk_flush_backlog+0x52/0x70
[  649.472191]  tcp_sendmsg_locked+0xd72/0x6c30
[  649.662227]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  649.472191]  tcp_sendmsg+0xb2/0x100
[  649.472191]  inet_sendmsg+0x4e9/0x800
[  649.662227]  ? d_instantiate+0x11e/0x190
[  649.472191]  __sys_sendto+0x940/0xb80
[  649.472191]  __se_sys_sendto+0x107/0x130
[  649.662227]  alloc_file_pseudo+0x3ff/0x4e0
[  649.472191]  __x64_sys_sendto+0x6e/0x90
[  649.472191]  do_syscall_64+0xcf/0x110
[  649.662227]  __shmem_file_setup+0x3ef/0x5d0
[  649.472191]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  649.472191]  kmsan_internal_chain_origin+0x136/0x240
[  649.662227]  shmem_file_setup+0xc7/0xe0
[  649.472191]  __msan_chain_origin+0x6d/0xb0
[  649.472191]  __save_stack_trace+0x8be/0xc60
[  649.662227]  drm_gem_object_init+0x2b7/0x480
[  649.472191]  save_stack_trace+0xc6/0x110
[  649.472191]  kmsan_internal_chain_origin+0x136/0x240
[  649.662227]  vkms_gem_create+0x1f1/0x480
[  649.472191]  kmsan_memcpy_origins+0x13d/0x190
[  649.472191]  __msan_memcpy+0x6f/0x80
[  649.662227]  vkms_dumb_create+0x231/0x4b0
[  649.472191]  pskb_expand_head+0x436/0x1d20
[  649.472191]  iptunnel_handle_offloads+0x455/0x810
[  649.662227]  ? vkms_gem_create+0x480/0x480
[  649.472191]  ipip_tunnel_xmit+0x15d/0x4a0
[  649.472191]  dev_hard_start_xmit+0x6dc/0xde0
[  649.662227]  drm_mode_create_dumb_ioctl+0x444/0x470
[  649.472191]  __dev_queue_xmit+0x2d9e/0x3e00
[  649.472191]  dev_queue_xmit+0x4b/0x60
[  649.662227]  ? drm_mode_create_dumb+0x470/0x470
[  649.472191]  neigh_direct_output+0x42/0x50
[  649.472191]  ip_finish_output2+0x141a/0x1560
[  649.662227]  drm_ioctl_kernel+0x664/0x6e0
[  649.472191]  ip_finish_output+0xd93/0x10f0
[  649.472191]  ip_output+0x55c/0x630
[  649.662227]  ? drm_mode_create_dumb+0x470/0x470
[  649.472191]  __ip_queue_xmit+0x1bb5/0x2170
[  649.472191]  ip_queue_xmit+0xcc/0xf0
[  649.662227]  ? drm_mode_create_dumb+0x470/0x470
[  649.472191]  __tcp_transmit_skb+0x425c/0x5e00
[  649.472191]  tcp_write_xmit+0x389a/0xacc0
[  649.662227]  drm_ioctl+0xaba/0x1160
[  649.472191]  __tcp_push_pending_frames+0x124/0x4e0
[  649.472191]  tcp_data_snd_check+0x1ec/0x1080
[  649.662227]  ? drm_mode_create_dumb+0x470/0x470
[  649.472191]  tcp_rcv_established+0x1bb2/0x2940
[  649.472191]  tcp_v4_do_rcv+0x686/0xd80
[  649.662227]  ? __msan_poison_alloca+0x1e0/0x270
[  649.472191]  __release_sock+0x32d/0x750
[  649.472191]  __sk_flush_backlog+0x52/0x70
[  649.662227]  ? do_vfs_ioctl+0x184/0x2f70
[  649.472191]  tcp_sendmsg_locked+0xd72/0x6c30
[  649.472191]  tcp_sendmsg+0xb2/0x100
[  649.662227]  ? __se_sys_ioctl+0x1da/0x270
[  649.472191]  inet_sendmsg+0x4e9/0x800
[  649.472191]  __sys_sendto+0x940/0xb80
[  649.662227]  ? drm_ioctl_kernel+0x6e0/0x6e0
[  649.472191]  __se_sys_sendto+0x107/0x130
[  649.472191]  __x64_sys_sendto+0x6e/0x90
[  649.662227]  do_vfs_ioctl+0xfbc/0x2f70
[  649.472191]  do_syscall_64+0xcf/0x110
[  649.472191]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  649.662227]  ? security_file_ioctl+0x92/0x200
[  649.472191] 
[  649.472191]  kmsan_internal_chain_origin+0x136/0x240
[  649.662227]  __se_sys_ioctl+0x1da/0x270
[  649.472191]  __msan_chain_origin+0x6d/0xb0
[  649.472191]  __save_stack_trace+0x8be/0xc60
[  649.662227]  __x64_sys_ioctl+0x4a/0x70
[  649.472191]  save_stack_trace+0xc6/0x110
[  649.472191]  kmsan_internal_chain_origin+0x136/0x240
[  649.662227]  do_syscall_64+0xcf/0x110
[  649.472191]  kmsan_memcpy_origins+0x13d/0x190
[  649.472191]  __msan_memcpy+0x6f/0x80
[  649.662227]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  649.472191]  pskb_expand_head+0x436/0x1d20
[  649.472191]  iptunnel_handle_offloads+0x455/0x810
[  649.662227] RIP: 0033:0x457569
[  649.472191]  ipip_tunnel_xmit+0x15d/0x4a0
[  649.472191]  dev_hard_start_xmit+0x6dc/0xde0
[  649.662227] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  649.472191]  __dev_queue_xmit+0x2d9e/0x3e00
[  649.472191]  dev_queue_xmit+0x4b/0x60
[  649.662227] RSP: 002b:00007f8dd30ebc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  649.472191]  neigh_direct_output+0x42/0x50
[  649.472191]  ip_finish_output2+0x141a/0x1560
[  649.662227] RAX: ffffffffffffffda RBX: 00007f8dd30ebc90 RCX: 0000000000457569
[  649.472191]  ip_finish_output+0xd93/0x10f0
[  649.472191]  ip_output+0x55c/0x630
[  649.662227] RDX: 0000000020000040 RSI: ffffffffffffffb2 RDI: 0000000000000003
[  649.472191]  __ip_queue_xmit+0x1bb5/0x2170
[  649.472191]  ip_queue_xmit+0xcc/0xf0
[  649.662227] RBP: 000000000072c040 R08: 0000000000000000 R09: 0000000000000000
[  649.472191]  __tcp_transmit_skb+0x425c/0x5e00
[  649.472191]  tcp_write_xmit+0x389a/0xacc0
[  649.662227] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8dd30ec6d4
[  649.472191]  __tcp_push_pending_frames+0x124/0x4e0
[  649.472191]  tcp_data_snd_check+0x1ec/0x1080
[  649.662227] R13: 00000000004be737 R14: 00000000004ce6f8 R15: 0000000000000005
[  649.472191]  tcp_rcv_established+0x1bb2/0x2940
[  649.472191]  tcp_v4_do_rcv+0x686/0xd80
[  650.285233]  __release_sock+0x32d/0x750
[  650.285233]  __sk_flush_backlog+0x52/0x70
[  650.285233]  tcp_sendmsg_locked+0xd72/0x6c30
[  650.285233]  tcp_sendmsg+0xb2/0x100
[  650.285233]  inet_sendmsg+0x4e9/0x800
[  650.285233]  __sys_sendto+0x940/0xb80
[  650.285233]  __se_sys_sendto+0x107/0x130
[  650.285233]  __x64_sys_sendto+0x6e/0x90
[  650.285233]  do_syscall_64+0xcf/0x110
[  650.285233]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  650.285233] 
[  650.285233] Uninit was stored to memory at:
[  650.285233]  kmsan_internal_chain_origin+0x136/0x240
[  650.285233]  __msan_chain_origin+0x6d/0xb0
[  650.285233]  __save_stack_trace+0x8be/0xc60
[  650.285233]  save_stack_trace+0xc6/0x110
[  650.285233]  kmsan_internal_chain_origin+0x136/0x240
[  650.285233]  kmsan_memcpy_origins+0x13d/0x190
[  650.285233]  __msan_memcpy+0x6f/0x80
[  650.285233]  pskb_expand_head+0x436/0x1d20
[  650.285233]  iptunnel_handle_offloads+0x455/0x810
[  650.285233]  ipip_tunnel_xmit+0x15d/0x4a0
[  650.285233]  dev_hard_start_xmit+0x6dc/0xde0
[  650.285233]  __dev_queue_xmit+0x2d9e/0x3e00
[  650.285233]  dev_queue_xmit+0x4b/0x60
[  650.285233]  neigh_direct_output+0x42/0x50
[  650.285233]  ip_finish_output2+0x141a/0x1560
[  650.285233]  ip_finish_output+0xd93/0x10f0
[  650.285233]  ip_output+0x55c/0x630
[  650.285233]  __ip_queue_xmit+0x1bb5/0x2170
[  650.285233]  ip_queue_xmit+0xcc/0xf0
[  650.285233]  __tcp_transmit_skb+0x425c/0x5e00
[  650.285233]  tcp_write_xmit+0x389a/0xacc0
[  650.285233]  __tcp_push_pending_frames+0x124/0x4e0
[  650.285233]  tcp_data_snd_check+0x1ec/0x1080
[  650.285233]  tcp_rcv_established+0x1bb2/0x2940
[  650.285233]  tcp_v4_do_rcv+0x686/0xd80
[  650.285233]  __release_sock+0x32d/0x750
[  650.285233]  __sk_flush_backlog+0x52/0x70
[  650.285233]  tcp_sendmsg_locked+0xd72/0x6c30
[  650.285233]  tcp_sendmsg+0xb2/0x100
[  650.285233]  inet_sendmsg+0x4e9/0x800
[  650.285233]  __sys_sendto+0x940/0xb80
[  650.285233]  __se_sys_sendto+0x107/0x130
[  650.285233]  __x64_sys_sendto+0x6e/0x90
[  650.285233]  do_syscall_64+0xcf/0x110
[  650.285233]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  650.285233] 
[  650.285233] Uninit was stored to memory at:
[  650.285233]  kmsan_internal_chain_origin+0x136/0x240
[  650.285233]  __msan_chain_origin+0x6d/0xb0
[  650.285233]  __save_stack_trace+0x8be/0xc60
[  650.285233]  save_stack_trace+0xc6/0x110
[  650.285233]  kmsan_internal_chain_origin+0x136/0x240
[  650.285233]  kmsan_memcpy_origins+0x13d/0x190
[  650.285233]  __msan_memcpy+0x6f/0x80
[  650.285233]  pskb_expand_head+0x436/0x1d20
[  650.285233]  iptunnel_handle_offloads+0x455/0x810
[  650.285233]  ipip_tunnel_xmit+0x15d/0x4a0
[  650.285233]  dev_hard_start_xmit+0x6dc/0xde0
[  650.285233]  __dev_queue_xmit+0x2d9e/0x3e00
[  650.285233]  dev_queue_xmit+0x4b/0x60
[  650.285233]  neigh_direct_output+0x42/0x50
[  650.285233]  ip_finish_output2+0x141a/0x1560
[  650.285233]  ip_finish_output+0xd93/0x10f0
[  650.285233]  ip_output+0x55c/0x630
[  650.285233]  __ip_queue_xmit+0x1bb5/0x2170
[  650.285233]  ip_queue_xmit+0xcc/0xf0
[  650.285233]  __tcp_transmit_skb+0x425c/0x5e00
[  650.285233]  tcp_write_xmit+0x389a/0xacc0
[  650.285233]  __tcp_push_pending_frames+0x124/0x4e0
[  650.285233]  tcp_data_snd_check+0x1ec/0x1080
[  650.285233]  tcp_rcv_established+0x1bb2/0x2940
[  650.285233]  tcp_v4_do_rcv+0x686/0xd80
[  650.285233]  __release_sock+0x32d/0x750
[  650.285233]  __sk_flush_backlog+0x52/0x70
[  650.285233]  tcp_sendmsg_locked+0xd72/0x6c30
[  650.285233]  tcp_sendmsg+0xb2/0x100
[  650.285233]  inet_sendmsg+0x4e9/0x800
[  650.285233]  __sys_sendto+0x940/0xb80
[  650.285233]  __se_sys_sendto+0x107/0x130
[  650.285233]  __x64_sys_sendto+0x6e/0x90
[  650.285233]  do_syscall_64+0xcf/0x110
[  650.285233]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  650.285233] 
[  650.285233] Uninit was stored to memory at:
[  650.285233]  kmsan_internal_chain_origin+0x136/0x240
[  650.285233]  __msan_chain_origin+0x6d/0xb0
[  650.285233]  __save_stack_trace+0x8be/0xc60
[  650.285233]  save_stack_trace+0xc6/0x110
[  650.285233]  kmsan_internal_chain_origin+0x136/0x240
[  650.285233]  kmsan_memcpy_origins+0x13d/0x190
[  650.285233]  __msan_memcpy+0x6f/0x80
[  650.285233]  pskb_expand_head+0x436/0x1d20
[  650.285233]  iptunnel_handle_offloads+0x455/0x810
[  650.285233]  ipip_tunnel_xmit+0x15d/0x4a0
[  650.285233]  dev_hard_start_xmit+0x6dc/0xde0
[  650.285233]  __dev_queue_xmit+0x2d9e/0x3e00
[  650.285233]  dev_queue_xmit+0x4b/0x60
[  650.285233]  neigh_direct_output+0x42/0x50
[  650.285233]  ip_finish_output2+0x141a/0x1560
[  650.285233]  ip_finish_output+0xd93/0x10f0
[  650.285233]  ip_output+0x55c/0x630
[  650.285233]  __ip_queue_xmit+0x1bb5/0x2170
[  650.285233]  ip_queue_xmit+0xcc/0xf0
[  650.285233]  __tcp_transmit_skb+0x425c/0x5e00
[  650.285233]  tcp_write_xmit+0x389a/0xacc0
[  650.285233]  __tcp_push_pending_frames+0x124/0x4e0
[  650.285233]  tcp_data_snd_check+0x1ec/0x1080
[  650.285233]  tcp_rcv_established+0x1bb2/0x2940
[  650.285233]  tcp_v4_do_rcv+0x686/0xd80
[  650.285233]  __release_sock+0x32d/0x750
[  650.285233]  __sk_flush_backlog+0x52/0x70
[  650.285233]  tcp_sendmsg_locked+0xd72/0x6c30
[  650.285233]  tcp_sendmsg+0xb2/0x100
[  650.285233]  inet_sendmsg+0x4e9/0x800
[  650.285233]  __sys_sendto+0x940/0xb80
[  650.285233]  __se_sys_sendto+0x107/0x130
[  650.285233]  __x64_sys_sendto+0x6e/0x90
[  650.285233]  do_syscall_64+0xcf/0x110
[  650.285233]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  650.285233] 
[  650.285233] Uninit was stored to memory at:
[  650.285233]  kmsan_internal_chain_origin+0x136/0x240
[  650.285233]  __msan_chain_origin+0x6d/0xb0
[  650.285233]  __save_stack_trace+0x8be/0xc60
[  650.285233]  save_stack_trace+0xc6/0x110
[  650.285233]  kmsan_internal_chain_origin+0x136/0x240
[  650.285233]  kmsan_memcpy_origins+0x13d/0x190
[  650.285233]  __msan_memcpy+0x6f/0x80
[  650.285233]  pskb_expand_head+0x436/0x1d20
[  650.285233]  iptunnel_handle_offloads+0x455/0x810
[  650.285233]  ipip_tunnel_xmit+0x15d/0x4a0
[  650.285233]  dev_hard_start_xmit+0x6dc/0xde0
[  650.285233]  __dev_queue_xmit+0x2d9e/0x3e00
[  650.285233]  dev_queue_xmit+0x4b/0x60
[  650.285233]  neigh_direct_output+0x42/0x50
[  650.285233]  ip_finish_output2+0x141a/0x1560
[  650.285233]  ip_finish_output+0xd93/0x10f0
[  650.285233]  ip_output+0x55c/0x630
[  650.285233]  __ip_queue_xmit+0x1bb5/0x2170
[  650.285233]  ip_queue_xmit+0xcc/0xf0
[  650.285233]  __tcp_transmit_skb+0x425c/0x5e00
[  650.285233]  tcp_write_xmit+0x389a/0xacc0
[  650.285233]  __tcp_push_pending_frames+0x124/0x4e0
[  650.285233]  tcp_data_snd_check+0x1ec/0x1080
[  650.285233]  tcp_rcv_established+0x1bb2/0x2940
[  650.285233]  tcp_v4_do_rcv+0x686/0xd80
[  650.285233]  __release_sock+0x32d/0x750
[  650.285233]  __sk_flush_backlog+0x52/0x70
[  650.285233]  tcp_sendmsg_locked+0xd72/0x6c30
[  650.285233]  tcp_sendmsg+0xb2/0x100
[  650.285233]  inet_sendmsg+0x4e9/0x800
[  650.285233]  __sys_sendto+0x940/0xb80
[  650.285233]  __se_sys_sendto+0x107/0x130
[  650.285233]  __x64_sys_sendto+0x6e/0x90
[  650.285233]  do_syscall_64+0xcf/0x110
[  650.285233]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  650.285233] 
[  650.285233] Local variable description: ----flags.i.i.i.i@__local_bh_enable_ip
[  650.285233] Variable was created at:
[  650.285233]  __local_bh_enable_ip+0x46/0x260
[  650.285233]  local_bh_enable+0x36/0x40
[  651.016119] not chained 620000 origins
[  651.020033] CPU: 1 PID: 16805 Comm: syz-executor4 Not tainted 4.20.0-rc2+ #88
[  651.022606] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  651.022606] Call Trace:
[  651.022606]  dump_stack+0x32d/0x480
[  651.022606]  kmsan_internal_chain_origin+0x222/0x240
[  651.022606]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  651.022606]  ? __module_address+0x6a/0x5f0
[  651.022606]  ? __module_address+0x6a/0x5f0
[  651.022606]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  651.022606]  ? __module_address+0x6a/0x5f0
[  651.022606]  ? is_bpf_text_address+0x3e5/0x4d0
[  651.022606]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  651.022606]  ? is_bpf_text_address+0x49e/0x4d0
[  651.022606]  ? kmsan_internal_chain_origin+0x90/0x240
[  651.022606]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  651.022606]  ? is_bpf_text_address+0x49e/0x4d0
[  651.022606]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  651.022606]  ? in_task_stack+0x12c/0x210
[  651.022606]  __msan_chain_origin+0x6d/0xb0
[  651.022606]  ? __se_sys_sendto+0x107/0x130
[  651.022606]  __save_stack_trace+0x8be/0xc60
[  651.122346]  ? __se_sys_sendto+0x107/0x130
[  651.122346]  save_stack_trace+0xc6/0x110
[  651.122346]  kmsan_internal_chain_origin+0x136/0x240
[  651.122346]  ? __tcp_push_pending_frames+0x124/0x4e0
[  651.122346]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  651.122346]  ? kmsan_internal_chain_origin+0x136/0x240
[  651.122346]  ? kmsan_memcpy_origins+0x13d/0x190
[  651.122346]  ? __msan_memcpy+0x6f/0x80
[  651.122346]  ? pskb_expand_head+0x436/0x1d20
[  651.122346]  ? iptunnel_handle_offloads+0x455/0x810
[  651.122346]  ? ipip_tunnel_xmit+0x15d/0x4a0
[  651.122346]  ? dev_hard_start_xmit+0x6dc/0xde0
[  651.122346]  ? __dev_queue_xmit+0x2d9e/0x3e00
[  651.122346]  ? dev_queue_xmit+0x4b/0x60
[  651.122346]  ? neigh_direct_output+0x42/0x50
[  651.192355]  ? ip_finish_output2+0x141a/0x1560
[  651.192355]  ? ip_finish_output+0xd93/0x10f0
[  651.192355]  ? ip_output+0x55c/0x630
[  651.192355]  ? __ip_queue_xmit+0x1bb5/0x2170
[  651.192355]  ? ip_queue_xmit+0xcc/0xf0
[  651.192355]  ? __tcp_transmit_skb+0x425c/0x5e00
[  651.192355]  ? tcp_write_xmit+0x389a/0xacc0
[  651.192355]  ? __tcp_push_pending_frames+0x124/0x4e0
[  651.192355]  ? tcp_data_snd_check+0x1ec/0x1080
[  651.192355]  ? tcp_rcv_established+0x1bb2/0x2940
[  651.192355]  ? tcp_v4_do_rcv+0x686/0xd80
[  651.192355]  ? __release_sock+0x32d/0x750
[  651.192355]  ? __sk_flush_backlog+0x52/0x70
[  651.192355]  ? tcp_sendmsg_locked+0xd72/0x6c30
[  651.192355]  ? tcp_sendmsg+0xb2/0x100
[  651.192355]  ? inet_sendmsg+0x4e9/0x800
[  651.192355]  ? __sys_sendto+0x940/0xb80
[  651.192355]  ? __se_sys_sendto+0x107/0x130
[  651.192355]  ? __x64_sys_sendto+0x6e/0x90
[  651.192355]  ? do_syscall_64+0xcf/0x110
[  651.192355]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  651.192355]  ? __msan_get_context_state+0x9/0x20
[  651.192355]  ? INIT_INT+0xc/0x30
[  651.192355]  ? __kmalloc_node_track_caller+0x369/0x14e0
[  651.192355]  kmsan_memcpy_origins+0x13d/0x190
[  651.192355]  __msan_memcpy+0x6f/0x80
[  651.192355]  pskb_expand_head+0x436/0x1d20
[  651.192355]  iptunnel_handle_offloads+0x455/0x810
[  651.192355]  ipip_tunnel_xmit+0x15d/0x4a0
[  651.192355]  ? ipip_tunnel_init+0x240/0x240
[  651.192355]  dev_hard_start_xmit+0x6dc/0xde0
[  651.192355]  __dev_queue_xmit+0x2d9e/0x3e00
[  651.192355]  dev_queue_xmit+0x4b/0x60
[  651.192355]  neigh_direct_output+0x42/0x50
[  651.192355]  ? neigh_connected_output+0x700/0x700
[  651.192355]  ip_finish_output2+0x141a/0x1560
[  651.192355]  ip_finish_output+0xd93/0x10f0
[  651.192355]  ip_output+0x55c/0x630
[  651.192355]  ? ip_mc_finish_output+0x440/0x440
[  651.192355]  ? ip_finish_output+0x10f0/0x10f0
[  651.192355]  __ip_queue_xmit+0x1bb5/0x2170
[  651.192355]  ? kmsan_set_origin+0x7f/0x100
[  651.192355]  ip_queue_xmit+0xcc/0xf0
[  651.192355]  ? dst_hold_safe+0x5d0/0x5d0
[  651.192355]  __tcp_transmit_skb+0x425c/0x5e00
[  651.192355]  tcp_write_xmit+0x389a/0xacc0
[  651.192355]  __tcp_push_pending_frames+0x124/0x4e0
[  651.192355]  tcp_data_snd_check+0x1ec/0x1080
[  651.192355]  tcp_rcv_established+0x1bb2/0x2940
[  651.192355]  ? __msan_get_context_state+0x9/0x20
[  651.192355]  tcp_v4_do_rcv+0x686/0xd80
[  651.192355]  ? inet_sk_rx_dst_set+0x200/0x200
[  651.192355]  __release_sock+0x32d/0x750
[  651.192355]  __sk_flush_backlog+0x52/0x70
[  651.192355]  ? tcp_v4_init_sock+0xc0/0xc0
[  651.192355]  tcp_sendmsg_locked+0xd72/0x6c30
[  651.435120]  ? kmsan_internal_unpoison_shadow+0x30/0xd0
[  651.435120]  tcp_sendmsg+0xb2/0x100
[  651.435120]  ? tcp_sendmsg_locked+0x6c30/0x6c30
[  651.435120]  inet_sendmsg+0x4e9/0x800
[  651.435120]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  651.435120]  ? security_socket_sendmsg+0x1bd/0x200
[  651.435120]  ? inet_getname+0x490/0x490
[  651.435120]  __sys_sendto+0x940/0xb80
[  651.435120]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  651.435120]  ? prepare_exit_to_usermode+0x182/0x4c0
[  651.435120]  __se_sys_sendto+0x107/0x130
[  651.435120]  __x64_sys_sendto+0x6e/0x90
[  651.435120]  do_syscall_64+0xcf/0x110
[  651.435120]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  651.435120] RIP: 0033:0x457569
[  651.435120] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  651.435120] RSP: 002b:00007fe2bd024c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  651.435120] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000457569
[  651.435120] RDX: 00000000fffffdef RSI: 00000000200003c0 RDI: 0000000000000003
[  651.435120] RBP: 000000000072bf00 R08: 00000000200001c0 R09: 0000000000000010
[  651.435120] R10: 00000000000001f4 R11: 0000000000000246 R12: 00007fe2bd0256d4
[  651.435120] R13: 00000000004c3c11 R14: 00000000004d5e80 R15: 00000000ffffffff
[  651.435120] Uninit was stored to memory at:
[  651.435120]  kmsan_internal_chain_origin+0x136/0x240
[  651.435120]  __msan_chain_origin+0x6d/0xb0
[  651.435120]  __save_stack_trace+0x8be/0xc60
[  651.435120]  save_stack_trace+0xc6/0x110
[  651.435120]  kmsan_internal_chain_origin+0x136/0x240
[  651.435120]  kmsan_memcpy_origins+0x13d/0x190
[  651.435120]  __msan_memcpy+0x6f/0x80
[  651.435120]  pskb_expand_head+0x436/0x1d20
[  651.435120]  iptunnel_handle_offloads+0x455/0x810
[  651.435120]  ipip_tunnel_xmit+0x15d/0x4a0
[  651.435120]  dev_hard_start_xmit+0x6dc/0xde0
[  651.435120]  __dev_queue_xmit+0x2d9e/0x3e00
[  651.435120]  dev_queue_xmit+0x4b/0x60
[  651.435120]  neigh_direct_output+0x42/0x50
[  651.435120]  ip_finish_output2+0x141a/0x1560
[  651.435120]  ip_finish_output+0xd93/0x10f0
[  651.435120]  ip_output+0x55c/0x630
[  651.435120]  __ip_queue_xmit+0x1bb5/0x2170
[  651.435120]  ip_queue_xmit+0xcc/0xf0
[  651.435120]  __tcp_transmit_skb+0x425c/0x5e00
[  651.435120]  tcp_write_xmit+0x389a/0xacc0
[  651.435120]  __tcp_push_pending_frames+0x124/0x4e0
[  651.435120]  tcp_data_snd_check+0x1ec/0x1080
[  651.435120]  tcp_rcv_established+0x1bb2/0x2940
[  651.435120]  tcp_v4_do_rcv+0x686/0xd80
[  651.435120]  __release_sock+0x32d/0x750
[  651.435120]  __sk_flush_backlog+0x52/0x70
[  651.435120]  tcp_sendmsg_locked+0xd72/0x6c30
[  651.435120]  tcp_sendmsg+0xb2/0x100
[  651.435120]  inet_sendmsg+0x4e9/0x800
[  651.435120]  __sys_sendto+0x940/0xb80
[  651.435120]  __se_sys_sendto+0x107/0x130
[  651.435120]  __x64_sys_sendto+0x6e/0x90
[  651.435120]  do_syscall_64+0xcf/0x110
[  651.435120]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  651.435120] 
[  651.435120] Uninit was stored to memory at:
[  651.435120]  kmsan_internal_chain_origin+0x136/0x240
[  651.435120]  __msan_chain_origin+0x6d/0xb0
[  651.435120]  __save_stack_trace+0x8be/0xc60
[  651.435120]  save_stack_trace+0xc6/0x110
[  651.435120]  kmsan_internal_chain_origin+0x136/0x240
[  651.435120]  kmsan_memcpy_origins+0x13d/0x190
[  651.435120]  __msan_memcpy+0x6f/0x80
[  651.435120]  pskb_expand_head+0x436/0x1d20
[  651.435120]  iptunnel_handle_offloads+0x455/0x810
[  651.435120]  ipip_tunnel_xmit+0x15d/0x4a0
[  651.435120]  dev_hard_start_xmit+0x6dc/0xde0
[  651.435120]  __dev_queue_xmit+0x2d9e/0x3e00
[  651.435120]  dev_queue_xmit+0x4b/0x60
[  651.435120]  neigh_direct_output+0x42/0x50
[  651.435120]  ip_finish_output2+0x141a/0x1560
[  651.435120]  ip_finish_output+0xd93/0x10f0
[  651.435120]  ip_output+0x55c/0x630
[  651.435120]  __ip_queue_xmit+0x1bb5/0x2170
[  651.435120]  ip_queue_xmit+0xcc/0xf0
[  651.435120]  __tcp_transmit_skb+0x425c/0x5e00
[  651.435120]  tcp_write_xmit+0x389a/0xacc0
[  651.435120]  __tcp_push_pending_frames+0x124/0x4e0
[  651.435120]  tcp_data_snd_check+0x1ec/0x1080
[  651.435120]  tcp_rcv_established+0x1bb2/0x2940
[  651.435120]  tcp_v4_do_rcv+0x686/0xd80
[  651.435120]  __release_sock+0x32d/0x750
[  651.435120]  __sk_flush_backlog+0x52/0x70
[  651.435120]  tcp_sendmsg_locked+0xd72/0x6c30
[  651.435120]  tcp_sendmsg+0xb2/0x100
[  651.435120]  inet_sendmsg+0x4e9/0x800
[  651.435120]  __sys_sendto+0x940/0xb80
[  651.435120]  __se_sys_sendto+0x107/0x130
[  651.435120]  __x64_sys_sendto+0x6e/0x90
[  651.435120]  do_syscall_64+0xcf/0x110
[  651.435120]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  651.435120] 
[  651.435120] Uninit was stored to memory at:
[  651.435120]  kmsan_internal_chain_origin+0x136/0x240
[  651.435120]  __msan_chain_origin+0x6d/0xb0
[  651.435120]  __save_stack_trace+0x8be/0xc60
[  651.435120]  save_stack_trace+0xc6/0x110
[  651.435120]  kmsan_internal_chain_origin+0x136/0x240
[  651.435120]  kmsan_memcpy_origins+0x13d/0x190
[  651.435120]  __msan_memcpy+0x6f/0x80
[  651.435120]  pskb_expand_head+0x436/0x1d20
[  651.435120]  iptunnel_handle_offloads+0x455/0x810
[  651.435120]  ipip_tunnel_xmit+0x15d/0x4a0
[  651.435120]  dev_hard_start_xmit+0x6dc/0xde0
[  651.435120]  __dev_queue_xmit+0x2d9e/0x3e00
[  651.435120]  dev_queue_xmit+0x4b/0x60
[  651.435120]  neigh_direct_output+0x42/0x50
[  651.435120]  ip_finish_output2+0x141a/0x1560
[  651.435120]  ip_finish_output+0xd93/0x10f0
[  651.435120]  ip_output+0x55c/0x630
[  651.435120]  __ip_queue_xmit+0x1bb5/0x2170
[  651.435120]  ip_queue_xmit+0xcc/0xf0
[  651.435120]  __tcp_transmit_skb+0x425c/0x5e00
[  651.435120]  tcp_write_xmit+0x389a/0xacc0
[  651.435120]  __tcp_push_pending_frames+0x124/0x4e0
[  651.435120]  tcp_data_snd_check+0x1ec/0x1080
[  651.435120]  tcp_rcv_established+0x1bb2/0x2940
[  651.435120]  tcp_v4_do_rcv+0x686/0xd80
[  651.435120]  __release_sock+0x32d/0x750
[  651.435120]  __sk_flush_backlog+0x52/0x70
[  651.435120]  tcp_sendmsg_locked+0xd72/0x6c30
[  651.435120]  tcp_sendmsg+0xb2/0x100
[  651.435120]  inet_sendmsg+0x4e9/0x800
[  651.435120]  __sys_sendto+0x940/0xb80
[  651.435120]  __se_sys_sendto+0x107/0x130
[  651.435120]  __x64_sys_sendto+0x6e/0x90
[  651.435120]  do_syscall_64+0xcf/0x110
[  652.025021]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  652.025021] 
[  652.033262] Uninit was stored to memory at:
[  652.038183]  kmsan_internal_chain_origin+0x136/0x240
[  652.043231]  __msan_chain_origin+0x6d/0xb0
[  652.047027]  __save_stack_trace+0x8be/0xc60
[  652.050857]  save_stack_trace+0xc6/0x110
[  652.055840]  kmsan_internal_chain_origin+0x136/0x240
[  652.060877]  kmsan_memcpy_origins+0x13d/0x190
[  652.064630]  __msan_memcpy+0x6f/0x80
[  652.068392]  pskb_expand_head+0x436/0x1d20
[  652.073486]  iptunnel_handle_offloads+0x455/0x810
[  652.077290]  ipip_tunnel_xmit+0x15d/0x4a0
[  652.082473]  dev_hard_start_xmit+0x6dc/0xde0
[  652.086224]  __dev_queue_xmit+0x2d9e/0x3e00
[  652.091210]  dev_queue_xmit+0x4b/0x60
[  652.094008]  neigh_direct_output+0x42/0x50
[  652.099051]  ip_finish_output2+0x141a/0x1560
[  652.102855]  ip_finish_output+0xd93/0x10f0
[  652.107875]  ip_output+0x55c/0x630
[  652.110467]  __ip_queue_xmit+0x1bb5/0x2170
[  652.115467]  ip_queue_xmit+0xcc/0xf0
[  652.119165]  __tcp_transmit_skb+0x425c/0x5e00
[  652.122999]  tcp_write_xmit+0x389a/0xacc0
[  652.128022]  __tcp_push_pending_frames+0x124/0x4e0
[  652.133016]  tcp_data_snd_check+0x1ec/0x1080
[  652.136771]  tcp_rcv_established+0x1bb2/0x2940
[  652.141731]  tcp_v4_do_rcv+0x686/0xd80
[  652.145493]  __release_sock+0x32d/0x750
[  652.149352]  __sk_flush_backlog+0x52/0x70
[  652.153082]  tcp_sendmsg_locked+0xd72/0x6c30
[  652.158234]  tcp_sendmsg+0xb2/0x100
[  652.162070]  inet_sendmsg+0x4e9/0x800
[  652.165859]  __sys_sendto+0x940/0xb80
[  652.169747]  __se_sys_sendto+0x107/0x130
[  652.173512]  __x64_sys_sendto+0x6e/0x90
[  652.177269]  do_syscall_64+0xcf/0x110
[  652.181075]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  652.186292] 
[  652.187528] Uninit was stored to memory at:
[  652.192479]  kmsan_internal_chain_origin+0x136/0x240
[  652.197783]  __msan_chain_origin+0x6d/0xb0
[  652.201533]  __save_stack_trace+0x8be/0xc60
[  652.205256]  save_stack_trace+0xc6/0x110
[  652.210282]  kmsan_internal_chain_origin+0x136/0x240
[  652.215307]  kmsan_memcpy_origins+0x13d/0x190
[  652.219107]  __msan_memcpy+0x6f/0x80
[  652.222880]  pskb_expand_head+0x436/0x1d20
[  652.228020]  iptunnel_handle_offloads+0x455/0x810
[  652.232507]  ipip_tunnel_xmit+0x15d/0x4a0
[  652.236808]  dev_hard_start_xmit+0x6dc/0xde0
[  652.240562]  __dev_queue_xmit+0x2d9e/0x3e00
[  652.245599]  dev_queue_xmit+0x4b/0x60
[  652.249367]  neigh_direct_output+0x42/0x50
[  652.253445]  ip_finish_output2+0x141a/0x1560
[  652.257190]  ip_finish_output+0xd93/0x10f0
[  652.262509]  ip_output+0x55c/0x630
[  652.265008]  __ip_queue_xmit+0x1bb5/0x2170
[  652.269991]  ip_queue_xmit+0xcc/0xf0
[  652.273896]  __tcp_transmit_skb+0x425c/0x5e00
[  652.277704]  tcp_write_xmit+0x389a/0xacc0
[  652.277704]  __tcp_push_pending_frames+0x124/0x4e0
[  652.286669]  tcp_data_snd_check+0x1ec/0x1080
[  652.291597]  tcp_rcv_established+0x1bb2/0x2940
[  652.296605]  tcp_v4_do_rcv+0x686/0xd80
[  652.300385]  __release_sock+0x32d/0x750
[  652.304164]  __sk_flush_backlog+0x52/0x70
[  652.307962]  tcp_sendmsg_locked+0xd72/0x6c30
[  652.312946]  tcp_sendmsg+0xb2/0x100
[  652.316699]  inet_sendmsg+0x4e9/0x800
[  652.320489]  __sys_sendto+0x940/0xb80
[  652.324266]  __se_sys_sendto+0x107/0x130
[  652.327965]  __x64_sys_sendto+0x6e/0x90
[  652.332369]  do_syscall_64+0xcf/0x110
[  652.335623]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  652.340717] 
[  652.342323] Uninit was stored to memory at:
[  652.347062]  kmsan_internal_chain_origin+0x136/0x240
[  652.352524]  __msan_chain_origin+0x6d/0xb0
[  652.355924]  __save_stack_trace+0x8be/0xc60
[  652.360980]  save_stack_trace+0xc6/0x110
[  652.364754]  kmsan_internal_chain_origin+0x136/0x240
[  652.369880]  kmsan_memcpy_origins+0x13d/0x190
[  652.373894]  __msan_memcpy+0x6f/0x80
[  652.377698]  pskb_expand_head+0x436/0x1d20
[  652.382717]  iptunnel_handle_offloads+0x455/0x810
[  652.386481]  ipip_tunnel_xmit+0x15d/0x4a0
[  652.391467]  dev_hard_start_xmit+0x6dc/0xde0
[  652.395247]  __dev_queue_xmit+0x2d9e/0x3e00
[  652.400311]  dev_queue_xmit+0x4b/0x60
[  652.404171]  neigh_direct_output+0x42/0x50
[  652.407880]  ip_finish_output2+0x141a/0x1560
[  652.412824]  ip_finish_output+0xd93/0x10f0
[  652.416645]  ip_output+0x55c/0x630
[  652.420360]  __ip_queue_xmit+0x1bb5/0x2170
[  652.424086]  ip_queue_xmit+0xcc/0xf0
[  652.427866]  __tcp_transmit_skb+0x425c/0x5e00
[  652.432854]  tcp_write_xmit+0x389a/0xacc0
[  652.436215]  __tcp_push_pending_frames+0x124/0x4e0
[  652.441269]  tcp_data_snd_check+0x1ec/0x1080
[  652.446378]  tcp_rcv_established+0x1bb2/0x2940
[  652.450193]  tcp_v4_do_rcv+0x686/0xd80
[  652.455296]  __release_sock+0x32d/0x750
[  652.459142]  __sk_flush_backlog+0x52/0x70
[  652.462903]  tcp_sendmsg_locked+0xd72/0x6c30
[  652.466721]  tcp_sendmsg+0xb2/0x100
[  652.470504]  inet_sendmsg+0x4e9/0x800
[  652.474364]  __sys_sendto+0x940/0xb80
[  652.478148]  __se_sys_sendto+0x107/0x130
[  652.483247]  __x64_sys_sendto+0x6e/0x90
[  652.486978]  do_syscall_64+0xcf/0x110
[  652.490785]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  652.495871] 
[  652.497135] Uninit was stored to memory at:
[  652.502156]  kmsan_internal_chain_origin+0x136/0x240
[  652.507135]  __msan_chain_origin+0x6d/0xb0
[  652.510950]  __save_stack_trace+0x8be/0xc60
[  652.514741]  save_stack_trace+0xc6/0x110
[  652.519724]  kmsan_internal_chain_origin+0x136/0x240
[  652.524976]  kmsan_memcpy_origins+0x13d/0x190
[  652.528742]  __msan_memcpy+0x6f/0x80
[  652.532747]  pskb_expand_head+0x436/0x1d20
[  652.536537]  iptunnel_handle_offloads+0x455/0x810
[  652.542353]  ipip_tunnel_xmit+0x15d/0x4a0
[  652.545352]  dev_hard_start_xmit+0x6dc/0xde0
[  652.550391]  __dev_queue_xmit+0x2d9e/0x3e00
[  652.554105]  dev_queue_xmit+0x4b/0x60
[  652.559175]  neigh_direct_output+0x42/0x50
[  652.563073]  ip_finish_output2+0x141a/0x1560
[  652.566779]  ip_finish_output+0xd93/0x10f0
[  652.571895]  ip_output+0x55c/0x630
[  652.575696]  __ip_queue_xmit+0x1bb5/0x2170
[  652.579477]  ip_queue_xmit+0xcc/0xf0
[  652.583322]  __tcp_transmit_skb+0x425c/0x5e00
[  652.587052]  tcp_write_xmit+0x389a/0xacc0
[  652.592365]  __tcp_push_pending_frames+0x124/0x4e0
[  652.597050]  tcp_data_snd_check+0x1ec/0x1080
[  652.600794]  tcp_rcv_established+0x1bb2/0x2940
[  652.605855]  tcp_v4_do_rcv+0x686/0xd80
[  652.609584]  __release_sock+0x32d/0x750
[  652.613377]  __sk_flush_backlog+0x52/0x70
[  652.617126]  tcp_sendmsg_locked+0xd72/0x6c30
[  652.622351]  tcp_sendmsg+0xb2/0x100
[  652.626084]  inet_sendmsg+0x4e9/0x800
[  652.629816]  __sys_sendto+0x940/0xb80
[  652.633841]  __se_sys_sendto+0x107/0x130
[  652.637642]  __x64_sys_sendto+0x6e/0x90
[  652.641387]  do_syscall_64+0xcf/0x110
[  652.645234]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  652.650301] 
[  652.652490] Local variable description: ----flags.i.i.i.i@__local_bh_enable_ip
[  652.659064] Variable was created at:
[  652.662894]  __local_bh_enable_ip+0x46/0x260
[  652.667970]  local_bh_enable+0x36/0x40
08:52:40 executing program 5:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
fstat(r0, &(0x7f0000000140))
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000340)='/dev/dlm_plock\x00', 0x400, 0x0)
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000440)={<r3=>0x0, @local, @dev}, &(0x7f0000000480)=0xc)
connect$can_bcm(r2, &(0x7f00000004c0)={0x1d, r3}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000080)={'eql\x00', 0x809})
poll(&(0x7f00000002c0)=[{r5}], 0x1, 0x0)
ioctl$sock_ifreq(r4, 0x8914, &(0x7f00000000c0)={"65716c000000a95b00", @ifru_mtu=0x1})
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="89f9d765312b4001000000b0967bdae72ee5094371136a6477ba0a51a2969dbc2d4028ac7b5af67f178f9314ea2bb3ac1c442eaf749c21ae2af8e39a40c3dc032e6f8eb738786a79df71302ff3b5d42731597d995bed6103ff63b9a908bcc05e0400000092bdf4d3282f62d6928117f82c2dae48742dac857de846096e82c1a02e1edcadda721a3f8dc9a54da05d467ed35b6f931d8686986960e756048c61c2a2c374c318d21d7a7ef550779190066e82ea3f6724a9f61ff028ec7e8d7a04352e7a78f777a68b823abb646bdc55dbde285ce15bf45820f0ae20e4023f57c71f8b41e08eff14c3441485c6f54a30750c780852dad879d6d4be7243bd07f841f89009000000c23d6b4f70fe48b54577449cfcbc4d5dbefb8b465d45bc2d11afbe7bfbe6ca76ac259e634eebf8db694ff02fe2b4c80783b443ef68287e9cf7cbcc2ee196f10c4ffb3f59e4921e0f9f08cba9a2c56c49fa7465b4836da5b2d9b142763889caa718d8a4fcb2f3ef6dc6185708fb1e0f9081d29fb3defae8c525f07437c7835b4eac8f86e2a22a81eff4120340e4a379446aac45dbff791d147805cd2748d74b8996c9b51ec03b410ef8fe126117fbf106795bc1b25d8dd786b6496bd743b7c75c638b516214ff56ec99a9c0f2919fa781cd8b4f2f2e425a6780c630a05c8e60011bc8e10055a6b6b652e5a13c73fd96f79038a65d6991ac38899ab98486d92bbcffdcf39a08a248ae1045ff8c6123de2f15d9ac360a3497c07001a3a1936ff1c03194ace131d380f515629ff016bd890ff822704c0db8bc68efad2eace5466628e7d6c2f2b3043698c46fdd62588fc54b72a786af0d026353879892c58007f7988a3f2240a43303218cc1df27807bfbde117c505f060396850a82459830a89a6a8601ea2e47f2e41379d110b96576f8f7705bba7ec63d6b44ccf84073cf9bdcf1aee48cb60c2f6dd3e89f3626a5e23339ea99c918d76a43fecf7401f7550e8eaefa4d84f1143320599daf7699858b2bf408e9093aa91d6dd9ae39d8decf3f7a199b0c1918d47be3b7aeff9a8c10efabe787b43141e7abaa4317158864b0361568140ab79cade1223c3ef81da4c4eefdd5b21fcc1b87872fc3b346737105589b84ba9814679b7510ed9b4f290083ee634ae12243ccc63413d7bc35eee0d1a4bc9dd33c37f5130303edddfc2636ffbf1ee0febb953436710c2ed9bd001d2ebe878788ddf7f7ad55b7a8cbcb348e82cd65b59315858086606115d04a3cda0e4af2a703afe09e4afedf00d5fbb2284df9af1d1ec9f15356c58fdcde45fff250568347f3b0b49e11e44c0a4d98a1e3393ce5d76614990f23b2e146842b166fb070894c128f957b0cc7d80a16275efd15659e0f81990062ebfdf9454d12e63d1ce1dad7848fcbab642a0d62ebb17abc824883e4c6e1e81992f28f5bbd7b26e2645c7941b03dd2f27c29baa2412976a05fa13d8fc4d6bd152a8668d986a9cf605b8b4a61600481e01bdd74c96d73390518add968100ac742aaf5dd7eb4ccf0868ee3ef7f12c32298737dea65bd5d7161dd679b4dd6799aa086bf3b8c889780ac102b7b1ebcf2569dd77f201d74d94a61400ced9c613414012b451628a96e6cc8fe738e964940f7b753065677776f3b5398975aeac974fced560667cead03a8976eb4229ff4e1bca5588d5d544cbca8588215a2f5ef7a5fc1a07438d3a3e05d21eb30d46f1688543d4327d36e07635396eaab4e9bc862ee9c7fa24de38c5cbf8fa5afd024116bc84854d01072145ecc4bb415d94a333e0d91e9cf6fda5a2c244a585e3a32c95398f44800c578faf4a2ccc5979664db7a55aa5cc02789f84321ccaeed4f37dd48c8d1484ade0588fc4255ec8780534a693e2bfe88b622034552084492c6757429239bbe8dad8b904e58007639ca773344040a441dc0027a46c22198f3d0b0588e164881a9fc7a85a63c459b0d002e3d890edd250742d363e85250badb91a734759baf773c32b177d36eefb662be70", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
r6 = memfd_create(&(0x7f0000000100)='.@(\x00', 0x0)
ioctl$VIDIOC_TRY_FMT(r6, 0xc0d05640, &(0x7f0000000200)={0xb, @pix_mp={0x6770, 0x0, 0x7f734f6f, 0x4, 0x7, [{0xca, 0x8}, {0x8, 0xfffffffffffffff9}, {0x0, 0x4}, {0x8, 0x7}, {0x100, 0x1}, {0x5}, {0x7}, {0x1ff}], 0x0, 0x8, 0x7}})

08:52:40 executing program 2:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
r1 = syz_open_dev$media(&(0x7f0000000080)='/dev/media#\x00', 0x9, 0x8000)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000440)={'team0\x00', <r2=>0x0})
getsockopt$inet6_mreq(0xffffffffffffff9c, 0x29, 0x1c, &(0x7f0000000480)={@mcast1, <r3=>0x0}, &(0x7f00000004c0)=0x14)
sendmsg$TEAM_CMD_NOOP(r1, &(0x7f0000000600)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x84}, 0xc, &(0x7f00000005c0)={&(0x7f0000000500)={0x98, 0x0, 0x300, 0x70bd2c, 0x25dfdbfe, {}, [{{0x8, 0x1, r2}, {0x7c, 0x2, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8}, {0x8, 0x4, r3}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0x8}}}]}}]}, 0x98}, 0x1, 0x0, 0x0, 0x801}, 0x1)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

08:52:40 executing program 4:
r0 = socket$inet(0x2, 0x804, 0x735b)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
syncfs(r0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0xfffffffffffffda0)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="89f9d765312b4001000000b0967bdae72ee5094371136a6477ba0a51a2969dbc2d4028ac7b5af67f178f9314ea2bb3ac1c442eaf749c21ae2af8e39a40c3dc032e6f8eb738786a79df71302ff3b5d42731597d995bed6103ff63b9a908bcc05e0400000092bdf4d3282f62d6928117f82c2dae48742dac857de846096e82c1a02e1edcadda721a3f8dc9a54da05d467ed35b6f931d8686986960e756048c61c2a2c374c318d21d7a7ef550779190066e82ea3f6724a9f61ff028ec7e8d7a04352e7a78f777a68b823abb646bdc55dbde285ce15bf45820f0ae20e4023f57c71f8b41e08eff14c3441485c6f54a30750c780852dad879d6d4be7243bd07f841f89009000000c23d6b4f70fe48b54577449cfcbc4d5dbefb8b465d45bc2d11afbe7bfbe6ca76ac259e634eebf8db694ff02fe2b4c80783b443ef68287e9cf7cbcc2ee196f10c4ffb3f59e4921e0f9f08cba9a2c56c49fa7465b4836da5b2d9b142763889caa718d8a4fcb2f3ef6dc6185708fb1e0f9081d29fb3defae8c525f07437c7835b4eac8f86e2a22a81eff4120340e4a379446aac45dbff791d147805cd2748d74b8996c9b51ec03b410ef8fe126117fbf106795bc1b25d8dd786b6496bd743b7c75c638b516214ff56ec99a9c0f2919fa781cd8b4f2f2e425a6780c630a05c8e60011bc8e10055a6b6b652e5a13c73fd96f79038a65d6991ac38899ab98486d92bbcffdcf39a08a248ae1045ff8c6123de2f15d9ac360a3497c07001a3a1936ff1c03194ace131d380f515629ff016bd890ff822704c0db8bc68efad2eace5466628e7d6c2f2b3043698c46fdd62588fc54b72a786af0d026353879892c58007f7988a3f2240a43303218cc1df27807bfbde117c505f060396850a82459830a89a6a8601ea2e47f2e41379d110b96576f8f7705bba7ec63d6b44ccf84073cf9bdcf1aee48cb60c2f6dd3e89f3626a5e23339ea99c918d76a43fecf7401f7550e8eaefa4d84f1143320599daf7699858b2bf408e9093aa91d6dd9ae39d8decf3f7a199b0c1918d47be3b7aeff9a8c10efabe787b43141e7abaa4317158864b0361568140ab79cade1223c3ef81da4c4eefdd5b21fcc1b87872fc3b346737105589b84ba9814679b7510ed9b4f290083ee634ae12243ccc63413d7bc35eee0d1a4bc9dd33c37f5130303edddfc2636ffbf1ee0febb953436710c2ed9bd001d2ebe878788ddf7f7ad55b7a8cbcb348e82cd65b59315858086606115d04a3cda0e4af2a703afe09e4afedf00d5fbb2284df9af1d1ec9f15356c58fdcde45fff250568347f3b0b49e11e44c0a4d98a1e3393ce5d76614990f23b2e146842b166fb070894c128f957b0cc7d80a16275efd15659e0f81990062ebfdf9454d12e63d1ce1dad7848fcbab642a0d62ebb17abc824883e4c6e1e81992f28f5bbd7b26e2645c7941b03dd2f27c29baa2412976a05fa13d8fc4d6bd152a8668d986a9cf605b8b4a61600481e01bdd74c96d73390518add968100ac742aaf5dd7eb4ccf0868ee3ef7f12c32298737dea65bd5d7161dd679b4dd6799aa086bf3b8c889780ac102b7b1ebcf2569dd77f201d74d94a61400ced9c613414012b451628a96e6cc8fe738e964940f7b753065677776f3b5398975aeac974fced560667cead03a8976eb4229ff4e1bca5588d5d544cbca8588215a2f5ef7a5fc1a07438d3a3e05d21eb30d46f1688543d4327d36e07635396eaab4e9bc862ee9c7fa24de38c5cbf8fa5afd024116bc84854d01072145ecc4bb415d94a333e0d91e9cf6fda5a2c244a585e3a32c95398f44800c578faf4a2ccc5979664db7a55aa5cc02789f84321ccaeed4f37dd48c8d1484ade0588fc4255ec8780534a693e2bfe88b622034552084492c6757429239bbe8dad8b904e58007639ca773344040a441dc0027a46c22198f3d0b0588e164881a9fc7a85a63c459b0d002e3d890edd250742d363e85250badb91a734759baf773c32b177d36eefb662be70", 0x595)
r1 = syz_open_dev$usbmon(&(0x7f0000000080)='/dev/usbmon#\x00', 0x8, 0x101042)
fsetxattr$trusted_overlay_opaque(r0, &(0x7f0000000100)='trusted.overlay.opaque\x00', &(0x7f0000000140)='y\x00', 0xfffffffffffffe92, 0x2)
ioctl$VIDIOC_SUBDEV_S_FRAME_INTERVAL(r1, 0xc0305616, &(0x7f00000000c0)={0x800, {0xa8d, 0x6}})
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x2400, 0x2)

08:52:40 executing program 0:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
r3 = dup2(r2, r0)
write$binfmt_elf64(r3, &(0x7f0000000140)={{0x7f, 0x45, 0x4c, 0x46, 0x3, 0x0, 0x7, 0x634, 0xfffffffffffffff7, 0x3, 0x0, 0x6, 0x244, 0x40, 0x23a, 0x4, 0xffffffff, 0x38, 0x2, 0x5, 0x6, 0x7}, [{0x7, 0x4, 0x7, 0x1c6b51a6, 0x1, 0x3, 0x9f, 0x5}, {0x5, 0xc0000000000, 0x7e, 0x200, 0x2, 0x2a9836aa, 0x1f, 0x200}], "09942727a8f5f40febaec88856083f56a4fbd648c836ed8693024d92f4e70d19b79bfc4e890cc309f6aa75a56665992fe60583e8959a6604b0fcf36888e621f02f2ba1308629b688fea1399070c3d766b61e8234a498962cc581c6b4f49ce30b85b9378b8898fc34adf6364f635a704701eb1eb357ee9ecda0cd0d085194a486", [[]]}, 0x230)

08:52:40 executing program 1:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
fstat(r0, &(0x7f0000000140))
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000340)='/dev/dlm_plock\x00', 0x400, 0x0)
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000440)={<r3=>0x0, @local, @dev}, &(0x7f0000000480)=0xc)
connect$can_bcm(r2, &(0x7f00000004c0)={0x1d, r3}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000080)={'eql\x00', 0x809})
poll(&(0x7f00000002c0)=[{r5}], 0x1, 0x0)
ioctl$sock_ifreq(r4, 0x8914, &(0x7f00000000c0)={"65716c000000a95b00", @ifru_mtu=0x1})
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
r6 = memfd_create(&(0x7f0000000100)='.@(\x00', 0x0)
ioctl$VIDIOC_TRY_FMT(r6, 0xc0d05640, &(0x7f0000000200)={0xb, @pix_mp={0x6770, 0x0, 0x7f734f6f, 0x4, 0x7, [{0xca, 0x8}, {0x8, 0xfffffffffffffff9}, {0x0, 0x4}, {0x8, 0x7}, {0x100, 0x1}, {0x5}, {0x7}, {0x1ff}], 0x0, 0x8, 0x7}})
vmsplice(r2, &(0x7f0000000300), 0x0, 0x9)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x0, 0x0)

08:52:40 executing program 3 (fault-call:4 fault-nth:7):
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))

[  653.412983] FAULT_INJECTION: forcing a failure.
[  653.412983] name failslab, interval 1, probability 0, space 0, times 0
[  653.424538] CPU: 0 PID: 16843 Comm: syz-executor3 Not tainted 4.20.0-rc2+ #88
[  653.431871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  653.434371] Call Trace:
[  653.434371]  dump_stack+0x32d/0x480
[  653.434371]  ? __should_failslab+0x278/0x2a0
[  653.434371]  should_fail+0x11e5/0x13c0
[  653.434371]  __should_failslab+0x278/0x2a0
[  653.434371]  should_failslab+0x29/0x70
[  653.434371]  __kmalloc+0xcf/0x4d0
[  653.434371]  ? apparmor_file_alloc_security+0x240/0x700
[  653.434371]  apparmor_file_alloc_security+0x240/0x700
[  653.434371]  ? apparmor_file_permission+0x4d0/0x4d0
[  653.434371]  security_file_alloc+0xcf/0x1a0
[  653.434371]  __alloc_file+0x22b/0x7b0
[  653.434371]  alloc_empty_file+0x1f5/0x4b0
[  653.434371]  alloc_file+0xdb/0x8c0
[  653.434371]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  653.434371]  ? d_instantiate+0x11e/0x190
[  653.434371]  alloc_file_pseudo+0x3ff/0x4e0
[  653.434371]  __shmem_file_setup+0x3ef/0x5d0
[  653.434371]  shmem_file_setup+0xc7/0xe0
[  653.434371]  drm_gem_object_init+0x2b7/0x480
[  653.434371]  vkms_gem_create+0x1f1/0x480
[  653.434371]  vkms_dumb_create+0x231/0x4b0
[  653.434371]  ? vkms_gem_create+0x480/0x480
[  653.434371]  drm_mode_create_dumb_ioctl+0x444/0x470
[  653.434371]  ? drm_mode_create_dumb+0x470/0x470
[  653.434371]  drm_ioctl_kernel+0x664/0x6e0
[  653.434371]  ? drm_mode_create_dumb+0x470/0x470
[  653.434371]  ? drm_mode_create_dumb+0x470/0x470
[  653.434371]  drm_ioctl+0xaba/0x1160
[  653.434371]  ? drm_mode_create_dumb+0x470/0x470
[  653.434371]  ? __msan_poison_alloca+0x1e0/0x270
[  653.434371]  ? do_vfs_ioctl+0x184/0x2f70
[  653.434371]  ? __se_sys_ioctl+0x1da/0x270
[  653.434371]  ? drm_ioctl_kernel+0x6e0/0x6e0
[  653.434371]  do_vfs_ioctl+0xfbc/0x2f70
[  653.434371]  ? security_file_ioctl+0x92/0x200
[  653.434371]  __se_sys_ioctl+0x1da/0x270
[  653.434371]  __x64_sys_ioctl+0x4a/0x70
[  653.434371]  do_syscall_64+0xcf/0x110
[  653.434371]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  653.434371] RIP: 0033:0x457569
[  653.434371] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  653.434371] RSP: 002b:00007f8dd312dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  653.434371] RAX: ffffffffffffffda RBX: 00007f8dd312dc90 RCX: 0000000000457569
[  653.434371] RDX: 0000000020000040 RSI: ffffffffffffffb2 RDI: 0000000000000003
[  653.434371] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  653.434371] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8dd312e6d4
[  653.434371] R13: 00000000004be737 R14: 00000000004ce6f8 R15: 0000000000000005
[  653.695972] not chained 630000 origins
[  653.699917] CPU: 0 PID: 16844 Comm: syz-executor2 Not tainted 4.20.0-rc2+ #88
[  653.702233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  653.702233] Call Trace:
[  653.702233]  dump_stack+0x32d/0x480
[  653.702233]  kmsan_internal_chain_origin+0x222/0x240
[  653.702233]  ? save_stack_trace+0xc6/0x110
[  653.702233]  ? __irqentry_text_end+0x1fa056/0x1fa056
[  653.702233]  ? kmsan_internal_chain_origin+0x90/0x240
[  653.702233]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  653.702233]  ? is_bpf_text_address+0x49e/0x4d0
[  653.702233]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  653.702233]  ? in_task_stack+0x12c/0x210
[  653.702233]  __msan_chain_origin+0x6d/0xb0
[  653.702233]  ? kmsan_internal_chain_origin+0x136/0x240
[  653.702233]  __save_stack_trace+0x8be/0xc60
[  653.702233]  ? kmsan_internal_chain_origin+0x136/0x240
[  653.702233]  save_stack_trace+0xc6/0x110
[  653.785361]  kmsan_internal_chain_origin+0x136/0x240
[  653.785361]  ? kmsan_internal_chain_origin+0x136/0x240
[  653.791609]  ? kmsan_memcpy_origins+0x13d/0x190
[  653.791609]  ? __msan_memcpy+0x6f/0x80
[  653.791609]  ? skb_copy_bits+0x1d2/0xc90
[  653.791609]  ? skb_copy+0x56c/0xba0
[  653.791609]  ? tcp_send_synack+0x7a3/0x18f0
[  653.791609]  ? tcp_rcv_state_process+0x275d/0x6c60
[  653.791609]  ? tcp_v4_do_rcv+0xb25/0xd80
[  653.791609]  ? __release_sock+0x32d/0x750
[  653.791609]  ? release_sock+0x99/0x2a0
[  653.791609]  ? __inet_stream_connect+0xdff/0x15d0
[  653.791609]  ? tcp_sendmsg_locked+0x6655/0x6c30
[  653.791609]  ? tcp_sendmsg+0xb2/0x100
[  653.791609]  ? inet_sendmsg+0x4e9/0x800
[  653.791609]  ? __sys_sendto+0x940/0xb80
[  653.791609]  ? __se_sys_sendto+0x107/0x130
[  653.791609]  ? __x64_sys_sendto+0x6e/0x90
[  653.860878]  ? do_syscall_64+0xcf/0x110
[  653.860878]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  653.860878]  ? memcg_kmem_put_cache+0x73/0x460
[  653.860878]  ? __kmalloc_node_track_caller+0x1010/0x14e0
[  653.860878]  ? __msan_get_context_state+0x9/0x20
[  653.860878]  ? INIT_INT+0xc/0x30
[  653.860878]  ? __kmalloc_node_track_caller+0x369/0x14e0
[  653.860878]  ? __msan_get_context_state+0x9/0x20
[  653.860878]  kmsan_memcpy_origins+0x13d/0x190
[  653.860878]  __msan_memcpy+0x6f/0x80
[  653.860878]  skb_copy_bits+0x1d2/0xc90
[  653.860878]  skb_copy+0x56c/0xba0
[  653.860878]  tcp_send_synack+0x7a3/0x18f0
[  653.860878]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  653.860878]  tcp_rcv_state_process+0x275d/0x6c60
[  653.860878]  tcp_v4_do_rcv+0xb25/0xd80
[  653.860878]  ? __local_bh_enable_ip+0x11f/0x260
[  653.860878]  ? inet_sk_rx_dst_set+0x200/0x200
[  653.860878]  __release_sock+0x32d/0x750
[  653.860878]  release_sock+0x99/0x2a0
[  653.860878]  __inet_stream_connect+0xdff/0x15d0
[  653.860878]  ? wait_woken+0x5b0/0x5b0
[  653.860878]  tcp_sendmsg_locked+0x6655/0x6c30
[  653.860878]  ? aa_label_sk_perm+0xda/0x960
[  653.860878]  ? kmsan_set_origin+0x7f/0x100
[  653.860878]  ? kmsan_internal_unpoison_shadow+0x83/0xd0
[  653.860878]  ? __msan_poison_alloca+0x1e0/0x270
[  653.860878]  ? __local_bh_enable_ip+0x46/0x260
[  653.860878]  ? __msan_poison_alloca+0x1e0/0x270
[  653.860878]  tcp_sendmsg+0xb2/0x100
[  653.860878]  ? tcp_sendmsg_locked+0x6c30/0x6c30
[  653.860878]  inet_sendmsg+0x4e9/0x800
[  653.860878]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  653.860878]  ? security_socket_sendmsg+0x1bd/0x200
[  653.860878]  ? inet_getname+0x490/0x490
[  653.860878]  __sys_sendto+0x940/0xb80
[  653.860878]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  653.860878]  ? prepare_exit_to_usermode+0x182/0x4c0
[  653.860878]  __se_sys_sendto+0x107/0x130
[  653.860878]  __x64_sys_sendto+0x6e/0x90
[  653.860878]  do_syscall_64+0xcf/0x110
[  653.860878]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  653.860878] RIP: 0033:0x457569
[  653.860878] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  653.860878] RSP: 002b:00007f84db90fc78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  653.860878] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000457569
[  653.860878] RDX: 0000000000000275 RSI: 00000000200000c0 RDI: 0000000000000003
[  653.860878] RBP: 000000000072bf00 R08: 0000000020000040 R09: 0000000000000010
[  653.860878] R10: 0000000020000802 R11: 0000000000000246 R12: 00007f84db9106d4
[  653.860878] R13: 00000000004c3c11 R14: 00000000004d5e80 R15: 00000000ffffffff
[  653.860878] Uninit was stored to memory at:
[  653.860878]  kmsan_internal_chain_origin+0x136/0x240
[  653.860878]  __msan_chain_origin+0x6d/0xb0
[  653.860878]  __save_stack_trace+0x8be/0xc60
[  653.860878]  save_stack_trace+0xc6/0x110
[  653.860878]  kmsan_internal_chain_origin+0x136/0x240
[  653.860878]  kmsan_memcpy_origins+0x13d/0x190
[  653.860878]  __msan_memcpy+0x6f/0x80
[  653.860878]  skb_copy_bits+0x1d2/0xc90
[  653.860878]  skb_copy+0x56c/0xba0
[  653.860878]  tcp_send_synack+0x7a3/0x18f0
[  653.860878]  tcp_rcv_state_process+0x275d/0x6c60
[  653.860878]  tcp_v4_do_rcv+0xb25/0xd80
[  653.860878]  __release_sock+0x32d/0x750
[  653.860878]  release_sock+0x99/0x2a0
[  653.860878]  __inet_stream_connect+0xdff/0x15d0
[  653.860878]  tcp_sendmsg_locked+0x6655/0x6c30
[  653.860878]  tcp_sendmsg+0xb2/0x100
[  653.860878]  inet_sendmsg+0x4e9/0x800
[  653.860878]  __sys_sendto+0x940/0xb80
[  653.860878]  __se_sys_sendto+0x107/0x130
[  653.860878]  __x64_sys_sendto+0x6e/0x90
[  653.860878]  do_syscall_64+0xcf/0x110
[  653.860878]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  653.860878] 
[  653.860878] Uninit was stored to memory at:
[  653.860878]  kmsan_internal_chain_origin+0x136/0x240
[  653.860878]  __msan_chain_origin+0x6d/0xb0
[  653.860878]  __save_stack_trace+0x8be/0xc60
[  653.860878]  save_stack_trace+0xc6/0x110
[  653.860878]  kmsan_internal_chain_origin+0x136/0x240
[  653.860878]  kmsan_memcpy_origins+0x13d/0x190
[  653.860878]  __msan_memcpy+0x6f/0x80
[  653.860878]  skb_copy_bits+0x1d2/0xc90
[  653.860878]  skb_copy+0x56c/0xba0
[  653.860878]  tcp_send_synack+0x7a3/0x18f0
[  653.860878]  tcp_rcv_state_process+0x275d/0x6c60
[  653.860878]  tcp_v4_do_rcv+0xb25/0xd80
[  653.860878]  __release_sock+0x32d/0x750
[  653.860878]  release_sock+0x99/0x2a0
[  653.860878]  __inet_stream_connect+0xdff/0x15d0
[  653.860878]  tcp_sendmsg_locked+0x6655/0x6c30
[  653.860878]  tcp_sendmsg+0xb2/0x100
[  653.860878]  inet_sendmsg+0x4e9/0x800
[  653.860878]  __sys_sendto+0x940/0xb80
[  653.860878]  __se_sys_sendto+0x107/0x130
[  653.860878]  __x64_sys_sendto+0x6e/0x90
[  653.860878]  do_syscall_64+0xcf/0x110
[  653.860878]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  653.860878] 
[  653.860878] Uninit was stored to memory at:
[  653.860878]  kmsan_internal_chain_origin+0x136/0x240
[  653.860878]  __msan_chain_origin+0x6d/0xb0
[  653.860878]  __save_stack_trace+0x8be/0xc60
[  653.860878]  save_stack_trace+0xc6/0x110
[  653.860878]  kmsan_internal_chain_origin+0x136/0x240
[  653.860878]  kmsan_memcpy_origins+0x13d/0x190
[  653.860878]  __msan_memcpy+0x6f/0x80
[  653.860878]  skb_copy_bits+0x1d2/0xc90
[  653.860878]  skb_copy+0x56c/0xba0
[  653.860878]  tcp_send_synack+0x7a3/0x18f0
[  653.860878]  tcp_rcv_state_process+0x275d/0x6c60
[  653.860878]  tcp_v4_do_rcv+0xb25/0xd80
[  653.860878]  __release_sock+0x32d/0x750
[  653.860878]  release_sock+0x99/0x2a0
[  653.860878]  __inet_stream_connect+0xdff/0x15d0
[  653.860878]  tcp_sendmsg_locked+0x6655/0x6c30
[  653.860878]  tcp_sendmsg+0xb2/0x100
[  653.860878]  inet_sendmsg+0x4e9/0x800
[  653.860878]  __sys_sendto+0x940/0xb80
[  653.860878]  __se_sys_sendto+0x107/0x130
[  653.860878]  __x64_sys_sendto+0x6e/0x90
[  653.860878]  do_syscall_64+0xcf/0x110
[  653.860878]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  653.860878] 
[  653.860878] Uninit was stored to memory at:
[  653.860878]  kmsan_internal_chain_origin+0x136/0x240
[  653.860878]  __msan_chain_origin+0x6d/0xb0
[  653.860878]  __save_stack_trace+0x8be/0xc60
[  653.860878]  save_stack_trace+0xc6/0x110
[  653.860878]  kmsan_internal_chain_origin+0x136/0x240
[  653.860878]  kmsan_memcpy_origins+0x13d/0x190
[  653.860878]  __msan_memcpy+0x6f/0x80
[  653.860878]  skb_copy_bits+0x1d2/0xc90
[  653.860878]  skb_copy+0x56c/0xba0
[  653.860878]  tcp_send_synack+0x7a3/0x18f0
[  653.860878]  tcp_rcv_state_process+0x275d/0x6c60
[  653.860878]  tcp_v4_do_rcv+0xb25/0xd80
[  653.860878]  __release_sock+0x32d/0x750
[  653.860878]  release_sock+0x99/0x2a0
[  653.860878]  __inet_stream_connect+0xdff/0x15d0
[  653.860878]  tcp_sendmsg_locked+0x6655/0x6c30
[  653.860878]  tcp_sendmsg+0xb2/0x100
[  653.860878]  inet_sendmsg+0x4e9/0x800
[  653.860878]  __sys_sendto+0x940/0xb80
[  653.860878]  __se_sys_sendto+0x107/0x130
[  653.860878]  __x64_sys_sendto+0x6e/0x90
[  653.860878]  do_syscall_64+0xcf/0x110
[  653.860878]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  653.860878] 
[  653.860878] Uninit was stored to memory at:
[  653.860878]  kmsan_internal_chain_origin+0x136/0x240
[  653.860878]  __msan_chain_origin+0x6d/0xb0
[  653.860878]  __save_stack_trace+0x8be/0xc60
[  653.860878]  save_stack_trace+0xc6/0x110
[  653.860878]  kmsan_internal_chain_origin+0x136/0x240
[  653.860878]  kmsan_memcpy_origins+0x13d/0x190
[  653.860878]  __msan_memcpy+0x6f/0x80
[  653.860878]  skb_copy_bits+0x1d2/0xc90
[  653.860878]  skb_copy+0x56c/0xba0
[  653.860878]  tcp_send_synack+0x7a3/0x18f0
[  653.860878]  tcp_rcv_state_process+0x275d/0x6c60
[  653.860878]  tcp_v4_do_rcv+0xb25/0xd80
[  653.860878]  __release_sock+0x32d/0x750
[  653.860878]  release_sock+0x99/0x2a0
[  653.860878]  __inet_stream_connect+0xdff/0x15d0
[  653.860878]  tcp_sendmsg_locked+0x6655/0x6c30
[  653.860878]  tcp_sendmsg+0xb2/0x100
[  653.860878]  inet_sendmsg+0x4e9/0x800
[  653.860878]  __sys_sendto+0x940/0xb80
[  653.860878]  __se_sys_sendto+0x107/0x130
[  653.860878]  __x64_sys_sendto+0x6e/0x90
[  653.860878]  do_syscall_64+0xcf/0x110
[  653.860878]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  653.860878] 
[  653.860878] Uninit was stored to memory at:
[  653.860878]  kmsan_internal_chain_origin+0x136/0x240
[  653.860878]  __msan_chain_origin+0x6d/0xb0
[  653.860878]  __save_stack_trace+0x8be/0xc60
[  653.860878]  save_stack_trace+0xc6/0x110
[  653.860878]  kmsan_internal_chain_origin+0x136/0x240
[  653.860878]  kmsan_memcpy_origins+0x13d/0x190
[  653.860878]  __msan_memcpy+0x6f/0x80
[  653.860878]  skb_copy_bits+0x1d2/0xc90
[  653.860878]  skb_copy+0x56c/0xba0
[  653.860878]  tcp_send_synack+0x7a3/0x18f0
[  653.860878]  tcp_rcv_state_process+0x275d/0x6c60
[  653.860878]  tcp_v4_do_rcv+0xb25/0xd80
[  653.860878]  __release_sock+0x32d/0x750
[  653.860878]  release_sock+0x99/0x2a0
[  653.860878]  __inet_stream_connect+0xdff/0x15d0
[  653.860878]  tcp_sendmsg_locked+0x6655/0x6c30
[  653.860878]  tcp_sendmsg+0xb2/0x100
[  653.860878]  inet_sendmsg+0x4e9/0x800
[  653.860878]  __sys_sendto+0x940/0xb80
[  653.860878]  __se_sys_sendto+0x107/0x130
[  653.860878]  __x64_sys_sendto+0x6e/0x90
[  653.860878]  do_syscall_64+0xcf/0x110
[  653.860878]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  653.860878] 
[  653.860878] Uninit was stored to memory at:
[  653.860878]  kmsan_internal_chain_origin+0x136/0x240
[  653.860878]  __msan_chain_origin+0x6d/0xb0
[  653.860878]  __save_stack_trace+0x8be/0xc60
[  653.860878]  save_stack_trace+0xc6/0x110
[  653.860878]  kmsan_internal_chain_origin+0x136/0x240
[  653.860878]  kmsan_memcpy_origins+0x13d/0x190
[  653.860878]  __msan_memcpy+0x6f/0x80
[  653.860878]  skb_copy_bits+0x1d2/0xc90
[  653.860878]  skb_copy+0x56c/0xba0
[  653.860878]  tcp_send_synack+0x7a3/0x18f0
[  653.860878]  tcp_rcv_state_process+0x275d/0x6c60
[  653.860878]  tcp_v4_do_rcv+0xb25/0xd80
[  653.860878]  __release_sock+0x32d/0x750
[  653.860878]  release_sock+0x99/0x2a0
[  653.860878]  __inet_stream_connect+0xdff/0x15d0
[  653.860878]  tcp_sendmsg_locked+0x6655/0x6c30
[  653.860878]  tcp_sendmsg+0xb2/0x100
[  653.860878]  inet_sendmsg+0x4e9/0x800
08:52:41 executing program 0:
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/pfkey\x00', 0x10100, 0x0)
ioctl$KVM_S390_VCPU_FAULT(r0, 0x4008ae52, &(0x7f0000000200)=0x80000001)
syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
openat$null(0xffffffffffffff9c, &(0x7f0000000240)='/dev/null\x00', 0x400000, 0x0)
ioctl(r2, 0xffffffffffffffb2, &(0x7f0000000180)="23503a1b15c6359d5ccae89754c757a5ed230bd8e4239bc8b7da78f2a87fc78344f8549744b2b3f5ca54e97d11f4f99d9c663d322442f94e7a1814b6a50ce711b242806a8c3664f2cacc000200007ee30c919a35d77de8858d66b4")
dup2(r2, r2)

[  653.860878]  __sys_sendto+0x940/0xb80
[  653.860878]  __se_sys_sendto+0x107/0x130
[  653.860878]  __x64_sys_sendto+0x6e/0x90
[  653.860878]  do_syscall_64+0xcf/0x110
[  653.860878]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  653.860878] 
[  653.860878] Local variable description: ----_tcph.i@ip_vs_in
[  653.860878] Variable was created at:
[  653.860878]  ip_vs_in+0xe9/0x3250
[  653.860878]  ip_vs_local_request4+0xec/0x130
08:52:41 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000004, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

08:52:42 executing program 3 (fault-call:4 fault-nth:8):
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))

[  655.222008] FAULT_INJECTION: forcing a failure.
[  655.222008] name failslab, interval 1, probability 0, space 0, times 0
[  655.233561] CPU: 0 PID: 16866 Comm: syz-executor3 Not tainted 4.20.0-rc2+ #88
[  655.240878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  655.243360] Call Trace:
[  655.243360]  dump_stack+0x32d/0x480
[  655.243360]  ? __should_failslab+0x278/0x2a0
[  655.243360]  should_fail+0x11e5/0x13c0
[  655.243360]  __should_failslab+0x278/0x2a0
[  655.243360]  should_failslab+0x29/0x70
[  655.243360]  kmem_cache_alloc+0x146/0xe20
[  655.243360]  ? kmsan_internal_unpoison_shadow+0x83/0xd0
[  655.243360]  ? radix_tree_node_alloc+0x146/0x630
[  655.243360]  radix_tree_node_alloc+0x146/0x630
[  655.243360]  ? idr_alloc+0x293/0x590
[  655.243360]  idr_get_free+0x69a/0x12c0
[  655.243360]  idr_alloc+0x293/0x590
[  655.243360]  drm_gem_handle_create_tail+0x2ba/0x730
[  655.243360]  drm_gem_handle_create+0xd8/0x100
[  655.243360]  vkms_gem_create+0x3c9/0x480
[  655.243360]  vkms_dumb_create+0x231/0x4b0
[  655.243360]  ? vkms_gem_create+0x480/0x480
[  655.243360]  drm_mode_create_dumb_ioctl+0x444/0x470
[  655.243360]  ? drm_mode_create_dumb+0x470/0x470
[  655.243360]  drm_ioctl_kernel+0x664/0x6e0
[  655.243360]  ? drm_mode_create_dumb+0x470/0x470
[  655.243360]  ? drm_mode_create_dumb+0x470/0x470
[  655.243360]  drm_ioctl+0xaba/0x1160
[  655.243360]  ? drm_mode_create_dumb+0x470/0x470
[  655.243360]  ? __msan_poison_alloca+0x1e0/0x270
[  655.243360]  ? do_vfs_ioctl+0x184/0x2f70
[  655.243360]  ? __se_sys_ioctl+0x1da/0x270
[  655.243360]  ? drm_ioctl_kernel+0x6e0/0x6e0
[  655.243360]  do_vfs_ioctl+0xfbc/0x2f70
[  655.243360]  ? security_file_ioctl+0x92/0x200
[  655.243360]  __se_sys_ioctl+0x1da/0x270
[  655.243360]  __x64_sys_ioctl+0x4a/0x70
[  655.243360]  do_syscall_64+0xcf/0x110
[  655.243360]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  655.243360] RIP: 0033:0x457569
[  655.243360] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  655.243360] RSP: 002b:00007f8dd310cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  655.243360] RAX: ffffffffffffffda RBX: 00007f8dd310cc90 RCX: 0000000000457569
[  655.243360] RDX: 0000000020000040 RSI: ffffffffffffffb2 RDI: 0000000000000003
[  655.243360] RBP: 000000000072bfa0 R08: 0000000000000000 R09: 0000000000000000
[  655.243360] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8dd310d6d4
[  655.243360] R13: 00000000004be737 R14: 00000000004ce6f8 R15: 0000000000000005
08:52:42 executing program 2:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
r1 = syz_genetlink_get_family_id$team(&(0x7f0000000100)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000440)={'team0\x00', <r2=>0x0})
getsockopt$inet6_mreq(0xffffffffffffff9c, 0x29, 0x1c, &(0x7f0000000480)={@mcast1, <r3=>0x0}, &(0x7f00000004c0)=0x14)
sendmsg$TEAM_CMD_NOOP(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x84}, 0xc, &(0x7f00000005c0)={&(0x7f0000000500)={0x98, r1, 0x300, 0x70bd2c, 0x25dfdbfe, {}, [{{0x8, 0x1, r2}, {0x7c, 0x2, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8}, {0x8, 0x4, r3}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0x8}}}]}}]}, 0x98}, 0x1, 0x0, 0x0, 0x801}, 0x1)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

08:52:42 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
r1 = syz_open_dev$radio(&(0x7f0000000080)='/dev/radio#\x00', 0x2, 0x2)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
getsockopt$bt_BT_VOICE(r1, 0x112, 0xb, &(0x7f00000000c0)=0x80000001, &(0x7f0000000100)=0x2)

08:52:43 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x800, 0xffffffb0)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

[  656.390394] not chained 640000 origins
[  656.392279] CPU: 0 PID: 16883 Comm: syz-executor4 Not tainted 4.20.0-rc2+ #88
[  656.392279] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  656.392279] Call Trace:
[  656.392279]  dump_stack+0x32d/0x480
[  656.392279]  kmsan_internal_chain_origin+0x222/0x240
[  656.392279]  ? save_stack_trace+0xc6/0x110
[  656.392279]  ? __irqentry_text_end+0x1fa056/0x1fa056
[  656.392279]  ? kmsan_internal_chain_origin+0x90/0x240
[  656.392279]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  656.392279]  ? is_bpf_text_address+0x49e/0x4d0
[  656.392279]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  656.392279]  ? in_task_stack+0x12c/0x210
[  656.392279]  __msan_chain_origin+0x6d/0xb0
[  656.392279]  ? tcp_sendmsg_locked+0x6655/0x6c30
[  656.392279]  __save_stack_trace+0x8be/0xc60
[  656.392279]  ? tcp_sendmsg_locked+0x6655/0x6c30
[  656.392279]  save_stack_trace+0xc6/0x110
[  656.392279]  kmsan_internal_chain_origin+0x136/0x240
[  656.392279]  ? kmsan_internal_chain_origin+0x136/0x240
[  656.392279]  ? kmsan_memcpy_origins+0x13d/0x190
[  656.392279]  ? __msan_memcpy+0x6f/0x80
[  656.392279]  ? skb_copy_bits+0x1d2/0xc90
[  656.392279]  ? skb_copy+0x56c/0xba0
[  656.392279]  ? tcp_send_synack+0x7a3/0x18f0
[  656.392279]  ? tcp_rcv_state_process+0x275d/0x6c60
[  656.392279]  ? tcp_v4_do_rcv+0xb25/0xd80
[  656.392279]  ? __release_sock+0x32d/0x750
[  656.392279]  ? release_sock+0x99/0x2a0
[  656.392279]  ? __inet_stream_connect+0xdff/0x15d0
[  656.392279]  ? tcp_sendmsg_locked+0x6655/0x6c30
[  656.392279]  ? tcp_sendmsg+0xb2/0x100
[  656.392279]  ? inet_sendmsg+0x4e9/0x800
[  656.392279]  ? __sys_sendto+0x940/0xb80
[  656.392279]  ? __se_sys_sendto+0x107/0x130
[  656.392279]  ? __x64_sys_sendto+0x6e/0x90
[  656.555994]  ? do_syscall_64+0xcf/0x110
[  656.555994]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  656.555994]  ? memcg_kmem_put_cache+0x73/0x460
[  656.555994]  ? __kmalloc_node_track_caller+0x1010/0x14e0
[  656.555994]  ? __msan_get_context_state+0x9/0x20
[  656.555994]  ? INIT_INT+0xc/0x30
[  656.555994]  ? __kmalloc_node_track_caller+0x369/0x14e0
[  656.555994]  ? __msan_get_context_state+0x9/0x20
[  656.555994]  kmsan_memcpy_origins+0x13d/0x190
[  656.555994]  __msan_memcpy+0x6f/0x80
[  656.555994]  skb_copy_bits+0x1d2/0xc90
[  656.555994]  skb_copy+0x56c/0xba0
[  656.555994]  tcp_send_synack+0x7a3/0x18f0
[  656.555994]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  656.555994]  tcp_rcv_state_process+0x275d/0x6c60
[  656.555994]  tcp_v4_do_rcv+0xb25/0xd80
[  656.555994]  ? __local_bh_enable_ip+0x11f/0x260
[  656.555994]  ? inet_sk_rx_dst_set+0x200/0x200
[  656.555994]  __release_sock+0x32d/0x750
[  656.640848]  release_sock+0x99/0x2a0
[  656.640848]  __inet_stream_connect+0xdff/0x15d0
[  656.640848]  ? wait_woken+0x5b0/0x5b0
[  656.640848]  tcp_sendmsg_locked+0x6655/0x6c30
[  656.640848]  ? aa_label_sk_perm+0xda/0x960
[  656.640848]  ? kmsan_set_origin+0x7f/0x100
[  656.640848]  ? kmsan_internal_unpoison_shadow+0x83/0xd0
[  656.640848]  ? __msan_poison_alloca+0x1e0/0x270
[  656.640848]  ? __local_bh_enable_ip+0x46/0x260
[  656.640848]  ? __msan_poison_alloca+0x1e0/0x270
[  656.640848]  tcp_sendmsg+0xb2/0x100
[  656.640848]  ? tcp_sendmsg_locked+0x6c30/0x6c30
[  656.640848]  inet_sendmsg+0x4e9/0x800
[  656.640848]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  656.640848]  ? security_socket_sendmsg+0x1bd/0x200
[  656.640848]  ? inet_getname+0x490/0x490
[  656.640848]  __sys_sendto+0x940/0xb80
[  656.640848]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  656.640848]  ? prepare_exit_to_usermode+0x182/0x4c0
[  656.640848]  __se_sys_sendto+0x107/0x130
[  656.640848]  __x64_sys_sendto+0x6e/0x90
[  656.640848]  do_syscall_64+0xcf/0x110
[  656.640848]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  656.640848] RIP: 0033:0x457569
[  656.640848] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  656.765903] RSP: 002b:00007fe2bd024c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  656.771278] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000457569
[  656.771278] RDX: 0000000000000275 RSI: 00000000200000c0 RDI: 0000000000000003
[  656.771278] RBP: 000000000072bf00 R08: 0000000020000040 R09: 0000000000000010
[  656.771278] R10: 0000000020000802 R11: 0000000000000246 R12: 00007fe2bd0256d4
[  656.771278] R13: 00000000004c3c11 R14: 00000000004d5e80 R15: 00000000ffffffff
[  656.771278] Uninit was stored to memory at:
[  656.771278]  kmsan_internal_chain_origin+0x136/0x240
[  656.771278]  __msan_chain_origin+0x6d/0xb0
[  656.771278]  __save_stack_trace+0x8be/0xc60
[  656.771278]  save_stack_trace+0xc6/0x110
[  656.771278]  kmsan_internal_chain_origin+0x136/0x240
[  656.771278]  kmsan_memcpy_origins+0x13d/0x190
[  656.771278]  __msan_memcpy+0x6f/0x80
[  656.771278]  skb_copy_bits+0x1d2/0xc90
[  656.771278]  skb_copy+0x56c/0xba0
[  656.771278]  tcp_send_synack+0x7a3/0x18f0
[  656.771278]  tcp_rcv_state_process+0x275d/0x6c60
[  656.771278]  tcp_v4_do_rcv+0xb25/0xd80
[  656.771278]  __release_sock+0x32d/0x750
[  656.771278]  release_sock+0x99/0x2a0
[  656.771278]  __inet_stream_connect+0xdff/0x15d0
[  656.771278]  tcp_sendmsg_locked+0x6655/0x6c30
[  656.771278]  tcp_sendmsg+0xb2/0x100
[  656.771278]  inet_sendmsg+0x4e9/0x800
[  656.771278]  __sys_sendto+0x940/0xb80
[  656.771278]  __se_sys_sendto+0x107/0x130
[  656.771278]  __x64_sys_sendto+0x6e/0x90
[  656.771278]  do_syscall_64+0xcf/0x110
[  656.771278]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  656.771278] 
[  656.771278] Uninit was stored to memory at:
[  656.771278]  kmsan_internal_chain_origin+0x136/0x240
[  656.771278]  __msan_chain_origin+0x6d/0xb0
[  656.771278]  __save_stack_trace+0x8be/0xc60
[  656.771278]  save_stack_trace+0xc6/0x110
[  656.771278]  kmsan_internal_chain_origin+0x136/0x240
[  656.771278]  kmsan_memcpy_origins+0x13d/0x190
[  656.771278]  __msan_memcpy+0x6f/0x80
[  656.771278]  skb_copy_bits+0x1d2/0xc90
[  656.771278]  skb_copy+0x56c/0xba0
[  656.771278]  tcp_send_synack+0x7a3/0x18f0
[  656.771278]  tcp_rcv_state_process+0x275d/0x6c60
[  656.771278]  tcp_v4_do_rcv+0xb25/0xd80
[  656.771278]  __release_sock+0x32d/0x750
[  656.771278]  release_sock+0x99/0x2a0
[  656.771278]  __inet_stream_connect+0xdff/0x15d0
[  656.771278]  tcp_sendmsg_locked+0x6655/0x6c30
[  656.771278]  tcp_sendmsg+0xb2/0x100
[  656.771278]  inet_sendmsg+0x4e9/0x800
[  656.771278]  __sys_sendto+0x940/0xb80
[  656.771278]  __se_sys_sendto+0x107/0x130
[  656.771278]  __x64_sys_sendto+0x6e/0x90
[  656.771278]  do_syscall_64+0xcf/0x110
[  656.771278]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  656.771278] 
[  656.771278] Uninit was stored to memory at:
[  656.771278]  kmsan_internal_chain_origin+0x136/0x240
[  656.771278]  __msan_chain_origin+0x6d/0xb0
[  656.771278]  __save_stack_trace+0x8be/0xc60
[  656.771278]  save_stack_trace+0xc6/0x110
[  656.771278]  kmsan_internal_chain_origin+0x136/0x240
[  656.771278]  kmsan_memcpy_origins+0x13d/0x190
[  656.771278]  __msan_memcpy+0x6f/0x80
[  656.771278]  skb_copy_bits+0x1d2/0xc90
[  656.771278]  skb_copy+0x56c/0xba0
[  656.771278]  tcp_send_synack+0x7a3/0x18f0
[  656.771278]  tcp_rcv_state_process+0x275d/0x6c60
[  656.771278]  tcp_v4_do_rcv+0xb25/0xd80
[  656.771278]  __release_sock+0x32d/0x750
[  656.771278]  release_sock+0x99/0x2a0
[  656.771278]  __inet_stream_connect+0xdff/0x15d0
[  656.771278]  tcp_sendmsg_locked+0x6655/0x6c30
[  656.771278]  tcp_sendmsg+0xb2/0x100
[  656.771278]  inet_sendmsg+0x4e9/0x800
[  656.771278]  __sys_sendto+0x940/0xb80
[  656.771278]  __se_sys_sendto+0x107/0x130
[  656.771278]  __x64_sys_sendto+0x6e/0x90
[  656.771278]  do_syscall_64+0xcf/0x110
[  656.771278]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  656.771278] 
[  656.771278] Uninit was stored to memory at:
[  656.771278]  kmsan_internal_chain_origin+0x136/0x240
[  656.771278]  __msan_chain_origin+0x6d/0xb0
[  656.771278]  __save_stack_trace+0x8be/0xc60
[  656.771278]  save_stack_trace+0xc6/0x110
[  656.771278]  kmsan_internal_chain_origin+0x136/0x240
[  656.771278]  kmsan_memcpy_origins+0x13d/0x190
[  656.771278]  __msan_memcpy+0x6f/0x80
[  656.771278]  skb_copy_bits+0x1d2/0xc90
[  656.771278]  skb_copy+0x56c/0xba0
[  656.771278]  tcp_send_synack+0x7a3/0x18f0
[  656.771278]  tcp_rcv_state_process+0x275d/0x6c60
[  656.771278]  tcp_v4_do_rcv+0xb25/0xd80
[  656.771278]  __release_sock+0x32d/0x750
[  656.771278]  release_sock+0x99/0x2a0
[  656.771278]  __inet_stream_connect+0xdff/0x15d0
[  656.771278]  tcp_sendmsg_locked+0x6655/0x6c30
[  656.771278]  tcp_sendmsg+0xb2/0x100
[  656.771278]  inet_sendmsg+0x4e9/0x800
[  656.771278]  __sys_sendto+0x940/0xb80
[  656.771278]  __se_sys_sendto+0x107/0x130
[  656.771278]  __x64_sys_sendto+0x6e/0x90
[  656.771278]  do_syscall_64+0xcf/0x110
[  656.771278]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  656.771278] 
[  656.771278] Uninit was stored to memory at:
[  656.771278]  kmsan_internal_chain_origin+0x136/0x240
[  656.771278]  __msan_chain_origin+0x6d/0xb0
[  656.771278]  __save_stack_trace+0x8be/0xc60
[  656.771278]  save_stack_trace+0xc6/0x110
[  656.771278]  kmsan_internal_chain_origin+0x136/0x240
[  656.771278]  kmsan_memcpy_origins+0x13d/0x190
[  656.771278]  __msan_memcpy+0x6f/0x80
[  656.771278]  skb_copy_bits+0x1d2/0xc90
[  656.771278]  skb_copy+0x56c/0xba0
[  656.771278]  tcp_send_synack+0x7a3/0x18f0
[  656.771278]  tcp_rcv_state_process+0x275d/0x6c60
[  656.771278]  tcp_v4_do_rcv+0xb25/0xd80
[  656.771278]  __release_sock+0x32d/0x750
[  656.771278]  release_sock+0x99/0x2a0
[  656.771278]  __inet_stream_connect+0xdff/0x15d0
[  656.771278]  tcp_sendmsg_locked+0x6655/0x6c30
[  656.771278]  tcp_sendmsg+0xb2/0x100
[  656.771278]  inet_sendmsg+0x4e9/0x800
[  656.771278]  __sys_sendto+0x940/0xb80
[  656.771278]  __se_sys_sendto+0x107/0x130
[  656.771278]  __x64_sys_sendto+0x6e/0x90
[  656.771278]  do_syscall_64+0xcf/0x110
[  656.771278]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  656.771278] 
[  656.771278] Uninit was stored to memory at:
[  656.771278]  kmsan_internal_chain_origin+0x136/0x240
[  656.771278]  __msan_chain_origin+0x6d/0xb0
[  656.771278]  __save_stack_trace+0x8be/0xc60
[  656.771278]  save_stack_trace+0xc6/0x110
[  656.771278]  kmsan_internal_chain_origin+0x136/0x240
[  656.771278]  kmsan_memcpy_origins+0x13d/0x190
[  656.771278]  __msan_memcpy+0x6f/0x80
[  656.771278]  skb_copy_bits+0x1d2/0xc90
[  656.771278]  skb_copy+0x56c/0xba0
[  656.771278]  tcp_send_synack+0x7a3/0x18f0
[  656.771278]  tcp_rcv_state_process+0x275d/0x6c60
[  656.771278]  tcp_v4_do_rcv+0xb25/0xd80
[  656.771278]  __release_sock+0x32d/0x750
[  656.771278]  release_sock+0x99/0x2a0
[  656.771278]  __inet_stream_connect+0xdff/0x15d0
[  656.771278]  tcp_sendmsg_locked+0x6655/0x6c30
[  656.771278]  tcp_sendmsg+0xb2/0x100
[  656.771278]  inet_sendmsg+0x4e9/0x800
[  656.771278]  __sys_sendto+0x940/0xb80
[  656.771278]  __se_sys_sendto+0x107/0x130
[  656.771278]  __x64_sys_sendto+0x6e/0x90
[  656.771278]  do_syscall_64+0xcf/0x110
[  656.771278]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  656.771278] 
[  656.771278] Uninit was stored to memory at:
[  656.771278]  kmsan_internal_chain_origin+0x136/0x240
[  656.771278]  __msan_chain_origin+0x6d/0xb0
[  656.771278]  __save_stack_trace+0x8be/0xc60
[  656.771278]  save_stack_trace+0xc6/0x110
[  656.771278]  kmsan_internal_chain_origin+0x136/0x240
[  656.771278]  kmsan_memcpy_origins+0x13d/0x190
[  656.771278]  __msan_memcpy+0x6f/0x80
[  656.771278]  skb_copy_bits+0x1d2/0xc90
[  656.771278]  skb_copy+0x56c/0xba0
[  656.771278]  tcp_send_synack+0x7a3/0x18f0
[  656.771278]  tcp_rcv_state_process+0x275d/0x6c60
[  656.771278]  tcp_v4_do_rcv+0xb25/0xd80
[  656.771278]  __release_sock+0x32d/0x750
[  656.771278]  release_sock+0x99/0x2a0
[  656.771278]  __inet_stream_connect+0xdff/0x15d0
[  656.771278]  tcp_sendmsg_locked+0x6655/0x6c30
[  656.771278]  tcp_sendmsg+0xb2/0x100
[  656.771278]  inet_sendmsg+0x4e9/0x800
[  656.771278]  __sys_sendto+0x940/0xb80
[  656.771278]  __se_sys_sendto+0x107/0x130
[  656.771278]  __x64_sys_sendto+0x6e/0x90
[  656.771278]  do_syscall_64+0xcf/0x110
[  656.771278]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  656.771278] 
[  656.771278] Local variable description: ----_tcph.i@ip_vs_in
[  656.771278] Variable was created at:
[  656.771278]  ip_vs_in+0xe9/0x3250
[  656.771278]  ip_vs_local_request4+0xec/0x130
08:52:45 executing program 5:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
fstat(r0, &(0x7f0000000140))
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000340)='/dev/dlm_plock\x00', 0x400, 0x0)
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000440)={<r3=>0x0, @local, @dev}, &(0x7f0000000480)=0xc)
connect$can_bcm(r2, &(0x7f00000004c0)={0x1d, r3}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000080)={'eql\x00', 0x809})
poll(&(0x7f00000002c0)=[{r5}], 0x1, 0x0)
ioctl$sock_ifreq(r4, 0x8914, &(0x7f00000000c0)={"65716c000000a95b00", @ifru_mtu=0x1})
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="89f9d765312b4001000000b0967bdae72ee5094371136a6477ba0a51a2969dbc2d4028ac7b5af67f178f9314ea2bb3ac1c442eaf749c21ae2af8e39a40c3dc032e6f8eb738786a79df71302ff3b5d42731597d995bed6103ff63b9a908bcc05e0400000092bdf4d3282f62d6928117f82c2dae48742dac857de846096e82c1a02e1edcadda721a3f8dc9a54da05d467ed35b6f931d8686986960e756048c61c2a2c374c318d21d7a7ef550779190066e82ea3f6724a9f61ff028ec7e8d7a04352e7a78f777a68b823abb646bdc55dbde285ce15bf45820f0ae20e4023f57c71f8b41e08eff14c3441485c6f54a30750c780852dad879d6d4be7243bd07f841f89009000000c23d6b4f70fe48b54577449cfcbc4d5dbefb8b465d45bc2d11afbe7bfbe6ca76ac259e634eebf8db694ff02fe2b4c80783b443ef68287e9cf7cbcc2ee196f10c4ffb3f59e4921e0f9f08cba9a2c56c49fa7465b4836da5b2d9b142763889caa718d8a4fcb2f3ef6dc6185708fb1e0f9081d29fb3defae8c525f07437c7835b4eac8f86e2a22a81eff4120340e4a379446aac45dbff791d147805cd2748d74b8996c9b51ec03b410ef8fe126117fbf106795bc1b25d8dd786b6496bd743b7c75c638b516214ff56ec99a9c0f2919fa781cd8b4f2f2e425a6780c630a05c8e60011bc8e10055a6b6b652e5a13c73fd96f79038a65d6991ac38899ab98486d92bbcffdcf39a08a248ae1045ff8c6123de2f15d9ac360a3497c07001a3a1936ff1c03194ace131d380f515629ff016bd890ff822704c0db8bc68efad2eace5466628e7d6c2f2b3043698c46fdd62588fc54b72a786af0d026353879892c58007f7988a3f2240a43303218cc1df27807bfbde117c505f060396850a82459830a89a6a8601ea2e47f2e41379d110b96576f8f7705bba7ec63d6b44ccf84073cf9bdcf1aee48cb60c2f6dd3e89f3626a5e23339ea99c918d76a43fecf7401f7550e8eaefa4d84f1143320599daf7699858b2bf408e9093aa91d6dd9ae39d8decf3f7a199b0c1918d47be3b7aeff9a8c10efabe787b43141e7abaa4317158864b0361568140ab79cade1223c3ef81da4c4eefdd5b21fcc1b87872fc3b346737105589b84ba9814679b7510ed9b4f290083ee634ae12243ccc63413d7bc35eee0d1a4bc9dd33c37f5130303edddfc2636ffbf1ee0febb953436710c2ed9bd001d2ebe878788ddf7f7ad55b7a8cbcb348e82cd65b59315858086606115d04a3cda0e4af2a703afe09e4afedf00d5fbb2284df9af1d1ec9f15356c58fdcde45fff250568347f3b0b49e11e44c0a4d98a1e3393ce5d76614990f23b2e146842b166fb070894c128f957b0cc7d80a16275efd15659e0f81990062ebfdf9454d12e63d1ce1dad7848fcbab642a0d62ebb17abc824883e4c6e1e81992f28f5bbd7b26e2645c7941b03dd2f27c29baa2412976a05fa13d8fc4d6bd152a8668d986a9cf605b8b4a61600481e01bdd74c96d73390518add968100ac742aaf5dd7eb4ccf0868ee3ef7f12c32298737dea65bd5d7161dd679b4dd6799aa086bf3b8c889780ac102b7b1ebcf2569dd77f201d74d94a61400ced9c613414012b451628a96e6cc8fe738e964940f7b753065677776f3b5398975aeac974fced560667cead03a8976eb4229ff4e1bca5588d5d544cbca8588215a2f5ef7a5fc1a07438d3a3e05d21eb30d46f1688543d4327d36e07635396eaab4e9bc862ee9c7fa24de38c5cbf8fa5afd024116bc84854d01072145ecc4bb415d94a333e0d91e9cf6fda5a2c244a585e3a32c95398f44800c578faf4a2ccc5979664db7a55aa5cc02789f84321ccaeed4f37dd48c8d1484ade0588fc4255ec8780534a693e2bfe88b622034552084492c6757429239bbe8dad8b904e58007639ca773344040a441dc0027a46c22198f3d0b0588e164881a9fc7a85a63c459b0d002e3d890edd250742d363e85250badb91a734759baf773c32b177d36eefb662be70", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
memfd_create(&(0x7f0000000100)='.@(\x00', 0x0)

08:52:45 executing program 2:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
r1 = syz_genetlink_get_family_id$team(&(0x7f0000000100)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000440)={'team0\x00', <r2=>0x0})
getsockopt$inet6_mreq(0xffffffffffffff9c, 0x29, 0x1c, &(0x7f0000000480)={@mcast1, <r3=>0x0}, &(0x7f00000004c0)=0x14)
sendmsg$TEAM_CMD_NOOP(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x84}, 0xc, &(0x7f00000005c0)={&(0x7f0000000500)={0x98, r1, 0x300, 0x70bd2c, 0x25dfdbfe, {}, [{{0x8, 0x1, r2}, {0x7c, 0x2, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8}, {0x8, 0x4, r3}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0x8}}}]}}]}, 0x98}, 0x1, 0x0, 0x0, 0x801}, 0x1)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

08:52:45 executing program 4:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000080)='/dev/rfkill\x00', 0x40, 0x0)
setsockopt$bt_BT_POWER(r1, 0x112, 0x9, &(0x7f00000000c0)=0x400000000, 0x1)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x9)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
fdatasync(r0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

08:52:45 executing program 0:
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/dsp\x00', 0x80000, 0x0)
ioctl$KVM_ARM_SET_DEVICE_ADDR(r0, 0x4010aeab, &(0x7f0000000180)={0x400, 0x6000})
getsockopt$EBT_SO_GET_INIT_ENTRIES(r0, 0x0, 0x83, &(0x7f0000000300)={'filter\x00', 0x0, 0x4, 0xe6, [], 0x4, &(0x7f0000000140)=[{}, {}, {}, {}], &(0x7f0000000200)=""/230}, &(0x7f0000000380)=0x78)
r1 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r2, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r1, 0xffffffffffffffb2, &(0x7f0000000040))
dup2(r3, r1)

08:52:45 executing program 3 (fault-call:4 fault-nth:9):
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))

08:52:45 executing program 1:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
fstat(r0, &(0x7f0000000140))
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @remote}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x275, 0x20000802, &(0x7f0000000040)={0x2, 0x404e23, @remote}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000008c0)=0x7fe, 0x370)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000340)='/dev/dlm_plock\x00', 0x400, 0x0)
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000440)={<r3=>0x0, @local, @dev}, &(0x7f0000000480)=0xc)
connect$can_bcm(r2, &(0x7f00000004c0)={0x1d, r3}, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000080)={'eql\x00', 0x809})
poll(&(0x7f00000002c0)=[{r5}], 0x1, 0x0)
ioctl$sock_ifreq(r4, 0x8914, &(0x7f00000000c0)={"65716c000000a95b00", @ifru_mtu=0x1})
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
write(r0, &(0x7f0000000ec0)="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", 0x595)
sendto$inet(r0, &(0x7f00000003c0), 0xfffffdef, 0x1f4, &(0x7f00000001c0)={0x2, 0x0, @rand_addr}, 0x10)
r6 = memfd_create(&(0x7f0000000100)='.@(\x00', 0x0)
ioctl$VIDIOC_TRY_FMT(r6, 0xc0d05640, &(0x7f0000000200)={0xb, @pix_mp={0x6770, 0x0, 0x7f734f6f, 0x4, 0x7, [{0xca, 0x8}, {0x8, 0xfffffffffffffff9}, {0x0, 0x4}, {0x8, 0x7}, {0x100, 0x1}, {0x5}, {0x7}, {0x1ff}], 0x0, 0x8, 0x7}})
vmsplice(r2, &(0x7f0000000300), 0x0, 0x9)

[  658.438705] FAULT_INJECTION: forcing a failure.
[  658.438705] name failslab, interval 1, probability 0, space 0, times 0
[  658.450379] CPU: 1 PID: 16900 Comm: syz-executor3 Not tainted 4.20.0-rc2+ #88
[  658.457707] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  658.460151] Call Trace:
[  658.460151]  dump_stack+0x32d/0x480
[  658.460151]  should_fail+0x11e5/0x13c0
[  658.460151]  __should_failslab+0x278/0x2a0
[  658.460151]  should_failslab+0x29/0x70
[  658.460151]  __kmalloc+0xcf/0x4d0
[  658.460151]  ? drm_vma_node_allow+0x72/0x5b0
[  658.460151]  drm_vma_node_allow+0x72/0x5b0
[  658.460151]  ? mutex_unlock+0x21c/0x300
[  658.460151]  drm_gem_handle_create_tail+0x36f/0x730
[  658.460151]  drm_gem_handle_create+0xd8/0x100
[  658.460151]  vkms_gem_create+0x3c9/0x480
[  658.460151]  vkms_dumb_create+0x231/0x4b0
[  658.460151]  ? vkms_gem_create+0x480/0x480
[  658.460151]  drm_mode_create_dumb_ioctl+0x444/0x470
[  658.460151]  ? drm_mode_create_dumb+0x470/0x470
[  658.460151]  drm_ioctl_kernel+0x664/0x6e0
[  658.460151]  ? drm_mode_create_dumb+0x470/0x470
[  658.460151]  ? drm_mode_create_dumb+0x470/0x470
[  658.460151]  drm_ioctl+0xaba/0x1160
[  658.460151]  ? drm_mode_create_dumb+0x470/0x470
[  658.460151]  ? __msan_poison_alloca+0x1e0/0x270
[  658.460151]  ? do_vfs_ioctl+0x184/0x2f70
[  658.460151]  ? __se_sys_ioctl+0x1da/0x270
[  658.460151]  ? drm_ioctl_kernel+0x6e0/0x6e0
[  658.460151]  do_vfs_ioctl+0xfbc/0x2f70
[  658.460151]  ? security_file_ioctl+0x92/0x200
[  658.460151]  __se_sys_ioctl+0x1da/0x270
[  658.460151]  __x64_sys_ioctl+0x4a/0x70
[  658.460151]  do_syscall_64+0xcf/0x110
[  658.460151]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  658.460151] RIP: 0033:0x457569
[  658.603593] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  658.617178] RSP: 002b:00007f8dd312dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  658.617178] RAX: ffffffffffffffda RBX: 00007f8dd312dc90 RCX: 0000000000457569
08:52:45 executing program 0:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r1, 0x20000000008912, &(0x7f0000000000)="0a5c2d0240316285717070")
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(0xffffffffffffffff, 0x40505330, &(0x7f0000000040)={{0x0, 0x401}, {}, 0x8, 0x1})
epoll_create(0x80)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
ioctl(r0, 0xffffffffffffffb2, &(0x7f0000000040))
dup2(r2, r0)

[  658.617178] RDX: 0000000020000040 RSI: ffffffffffffffb2 RDI: 0000000000000004
[  658.617178] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  658.617178] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8dd312e6d4
[  658.617178] R13: 00000000004be737 R14: 00000000004ce6f8 R15: 0000000000000005
[  658.710834] ==================================================================
[  658.712237] BUG: KMSAN: uninit-value in load_elf_binary+0x1fbb/0x9480
[  658.712237] CPU: 1 PID: 16909 Comm: blkid Not tainted 4.20.0-rc2+ #88
[  658.726912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  658.726912] Call Trace:
[  658.740969]  dump_stack+0x32d/0x480
[  658.740969]  ? load_elf_binary+0x1fbb/0x9480
[  658.740969]  kmsan_report+0x19f/0x300
[  658.752449]  __msan_warning+0x76/0xc0
[  658.752449]  load_elf_binary+0x1fbb/0x9480
[  658.752449]  ? load_elf_binary+0x5001/0x9480
[  658.752449]  ? load_script+0xd50/0xd50
[  658.752449]  search_binary_handler+0x4a7/0x1050
[  658.752449]  __do_execve_file+0x2212/0x33d0
[  658.752449]  __se_sys_execve+0xec/0x110
[  658.752449]  __x64_sys_execve+0x4a/0x70
[  658.752449]  do_syscall_64+0xcf/0x110
[  658.752449]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  658.752449] RIP: 0033:0x7f5f6cfc6207
[  658.752449] Code: Bad RIP value.
[  658.752449] RSP: 002b:00007ffd83299708 EFLAGS: 00000202 ORIG_RAX: 000000000000003b
[  658.752449] RAX: ffffffffffffffda RBX: 00000000ffffffff RCX: 00007f5f6cfc6207
[  658.752449] RDX: 000000000243ffe0 RSI: 00007ffd83299800 RDI: 00007ffd8329a810
[  658.824623] RBP: 0000000000625500 R08: 000000000000352e R09: 000000000000352e
[  658.824623] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000243ffe0
[  658.824623] R13: 0000000000000007 R14: 000000000242f250 R15: 0000000000000005
[  658.824623] 
[  658.824623] Uninit was created at:
[  658.824623]  kmsan_internal_poison_shadow+0xc8/0x1c0
[  658.824623]  kmsan_kmalloc+0x98/0xf0
[  658.824623]  kmsan_slab_alloc+0xe/0x10
[  658.824623]  __kmalloc+0x379/0x4d0
[  658.824623]  load_elf_binary+0x4f92/0x9480
[  658.824623]  search_binary_handler+0x4a7/0x1050
[  658.824623]  __do_execve_file+0x2212/0x33d0
[  658.824623]  __se_sys_execve+0xec/0x110
[  658.824623]  __x64_sys_execve+0x4a/0x70
[  658.824623]  do_syscall_64+0xcf/0x110
[  658.824623]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  658.824623] ==================================================================
[  658.824623] Disabling lock debugging due to kernel taint
[  658.910051] Kernel panic - not syncing: panic_on_warn set ...
[  658.910051] CPU: 1 PID: 16909 Comm: blkid Tainted: G    B             4.20.0-rc2+ #88
[  658.910051] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  658.910051] Call Trace:
[  658.910051]  dump_stack+0x32d/0x480
[  658.910051]  panic+0x624/0xc08
[  658.910051]  kmsan_report+0x300/0x300
[  658.910051]  __msan_warning+0x76/0xc0
[  658.910051]  load_elf_binary+0x1fbb/0x9480
[  658.910051]  ? load_elf_binary+0x5001/0x9480
[  658.910051]  ? load_script+0xd50/0xd50
[  658.910051]  search_binary_handler+0x4a7/0x1050
[  658.910051]  __do_execve_file+0x2212/0x33d0
[  658.910051]  __se_sys_execve+0xec/0x110
[  658.910051]  __x64_sys_execve+0x4a/0x70
[  658.910051]  do_syscall_64+0xcf/0x110
[  658.910051]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  658.910051] RIP: 0033:0x7f5f6cfc6207
[  658.910051] Code: Bad RIP value.
[  658.910051] RSP: 002b:00007ffd83299708 EFLAGS: 00000202 ORIG_RAX: 000000000000003b
[  658.910051] RAX: ffffffffffffffda RBX: 00000000ffffffff RCX: 00007f5f6cfc6207
[  658.910051] RDX: 000000000243ffe0 RSI: 00007ffd83299800 RDI: 00007ffd8329a810
[  659.022518] RBP: 0000000000625500 R08: 000000000000352e R09: 000000000000352e
[  659.022518] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000243ffe0
[  659.022518] R13: 0000000000000007 R14: 000000000242f250 R15: 0000000000000005
[  659.042986] Kernel Offset: disabled
[  659.042986] Rebooting in 86400 seconds..