ogle 01/01/2011
[  385.869238][T11980] Call Trace:
[  385.869238][T11980]  dump_stack+0x1df/0x240
[  385.869238][T11980]  kmsan_internal_chain_origin+0x6f/0x130
[  385.869238][T11980]  ? is_module_text_address+0x4d/0x2a0
[  385.869238][T11980]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  385.869238][T11980]  ? __kernel_text_address+0x171/0x2d0
[  385.869238][T11980]  ? unwind_get_return_address+0x8c/0x130
[  385.869238][T11980]  ? entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  385.869238][T11980]  ? arch_stack_walk+0x2a2/0x3e0
[  385.869238][T11980]  ? stack_trace_save+0x1a0/0x1a0
[  385.869238][T11980]  ? kmsan_get_metadata+0x4f/0x180
[  385.869238][T11980]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  385.869238][T11980]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  385.949540][T11980]  ? stack_trace_save+0x123/0x1a0
[  385.949540][T11980]  ? kmsan_get_metadata+0x11d/0x180
[  385.962002][T11980]  __msan_chain_origin+0x50/0x90
[  385.962002][T11980]  rmd256_transform+0x4328/0x4440
[  385.962002][T11980]  rmd256_update+0x343/0x4f0
[  385.962002][T11980]  ? rmd256_init+0x260/0x260
[  385.962002][T11980]  crypto_shash_update+0x4e9/0x550
[  385.962002][T11980]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  385.962002][T11980]  ? crypto_hash_walk_first+0x1fd/0x360
[  385.962002][T11980]  ? kmsan_get_metadata+0x4f/0x180
[  385.962002][T11980]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  385.962002][T11980]  shash_async_update+0x113/0x1d0
[  385.962002][T11980]  ? shash_async_init+0x1e0/0x1e0
[  385.962002][T11980]  hash_sendpage+0x8ef/0xdf0
[  385.962002][T11980]  ? hash_recvmsg+0xd30/0xd30
[  385.962002][T11980]  sock_sendpage+0x1e1/0x2c0
[  385.962002][T11980]  pipe_to_sendpage+0x38c/0x4c0
[  385.962002][T11980]  ? sock_fasync+0x250/0x250
[  385.962002][T11980]  __splice_from_pipe+0x565/0xf00
[  385.962002][T11980]  ? generic_splice_sendpage+0x2d0/0x2d0
[  385.962002][T11980]  generic_splice_sendpage+0x1d5/0x2d0
[  385.962002][T11980]  ? iter_file_splice_write+0x1800/0x1800
[  385.962002][T11980]  direct_splice_actor+0x1fd/0x580
[  385.962002][T11980]  ? kmsan_get_metadata+0x4f/0x180
[  385.962002][T11980]  splice_direct_to_actor+0x6b2/0xf50
[  385.962002][T11980]  ? do_splice_direct+0x580/0x580
[  385.962002][T11980]  do_splice_direct+0x342/0x580
[  385.962002][T11980]  do_sendfile+0x101b/0x1d40
[  385.962002][T11980]  __se_sys_sendfile64+0x2bb/0x360
[  385.962002][T11980]  ? kmsan_get_metadata+0x4f/0x180
[  385.962002][T11980]  __x64_sys_sendfile64+0x56/0x70
[  385.962002][T11980]  do_syscall_64+0xb0/0x150
[  385.962002][T11980]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  385.962002][T11980] RIP: 0033:0x45c1d9
[  385.962002][T11980] Code: Bad RIP value.
[  385.962002][T11980] RSP: 002b:00007f3a4d702c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  385.962002][T11980] RAX: ffffffffffffffda RBX: 0000000000025a00 RCX: 000000000045c1d9
[  385.962002][T11980] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004
[  385.962002][T11980] RBP: 000000000078bf48 R08: 0000000000000000 R09: 0000000000000000
[  385.962002][T11980] R10: 001000007ffff000 R11: 0000000000000246 R12: 000000000078bf0c
[  385.962002][T11980] R13: 0000000000c9fb6f R14: 00007f3a4d7039c0 R15: 000000000078bf0c
[  386.175984][T11980] Uninit was stored to memory at:
[  386.175984][T11980]  kmsan_internal_chain_origin+0xad/0x130
[  386.175984][T11980]  __msan_chain_origin+0x50/0x90
[  386.175984][T11980]  rmd256_transform+0x4328/0x4440
[  386.175984][T11980]  rmd256_update+0x343/0x4f0
[  386.175984][T11980]  crypto_shash_update+0x4e9/0x550
[  386.175984][T11980]  shash_async_update+0x113/0x1d0
[  386.175984][T11980]  hash_sendpage+0x8ef/0xdf0
[  386.175984][T11980]  sock_sendpage+0x1e1/0x2c0
[  386.175984][T11980]  pipe_to_sendpage+0x38c/0x4c0
[  386.175984][T11980]  __splice_from_pipe+0x565/0xf00
[  386.175984][T11980]  generic_splice_sendpage+0x1d5/0x2d0
[  386.175984][T11980]  direct_splice_actor+0x1fd/0x580
[  386.175984][T11980]  splice_direct_to_actor+0x6b2/0xf50
[  386.175984][T11980]  do_splice_direct+0x342/0x580
[  386.175984][T11980]  do_sendfile+0x101b/0x1d40
[  386.254704][T11980]  __se_sys_sendfile64+0x2bb/0x360
[  386.254704][T11980]  __x64_sys_sendfile64+0x56/0x70
[  386.254704][T11980]  do_syscall_64+0xb0/0x150
[  386.254704][T11980]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  386.254704][T11980] 
[  386.254704][T11980] Uninit was stored to memory at:
[  386.254704][T11980]  kmsan_internal_chain_origin+0xad/0x130
[  386.254704][T11980]  __msan_chain_origin+0x50/0x90
[  386.254704][T11980]  rmd256_transform+0x4328/0x4440
[  386.254704][T11980]  rmd256_update+0x343/0x4f0
[  386.254704][T11980]  crypto_shash_update+0x4e9/0x550
[  386.254704][T11980]  shash_async_update+0x113/0x1d0
[  386.254704][T11980]  hash_sendpage+0x8ef/0xdf0
[  386.319505][T11980]  sock_sendpage+0x1e1/0x2c0
[  386.319505][T11980]  pipe_to_sendpage+0x38c/0x4c0
[  386.319505][T11980]  __splice_from_pipe+0x565/0xf00
[  386.319505][T11980]  generic_splice_sendpage+0x1d5/0x2d0
[  386.319505][T11980]  direct_splice_actor+0x1fd/0x580
[  386.319505][T11980]  splice_direct_to_actor+0x6b2/0xf50
[  386.319505][T11980]  do_splice_direct+0x342/0x580
[  386.319505][T11980]  do_sendfile+0x101b/0x1d40
[  386.319505][T11980]  __se_sys_sendfile64+0x2bb/0x360
[  386.319505][T11980]  __x64_sys_sendfile64+0x56/0x70
[  386.319505][T11980]  do_syscall_64+0xb0/0x150
[  386.319505][T11980]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  386.319505][T11980] 
[  386.319505][T11980] Uninit was stored to memory at:
[  386.319505][T11980]  kmsan_internal_chain_origin+0xad/0x130
[  386.389544][T11980]  __msan_chain_origin+0x50/0x90
[  386.389544][T11980]  rmd256_transform+0x4328/0x4440
[  386.389544][T11980]  rmd256_update+0x343/0x4f0
[  386.389544][T11980]  crypto_shash_update+0x4e9/0x550
[  386.389544][T11980]  shash_async_update+0x113/0x1d0
[  386.417326][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  386.389544][T11980]  hash_sendpage+0x8ef/0xdf0
[  386.389544][T11980]  sock_sendpage+0x1e1/0x2c0
[  386.389544][T11980]  pipe_to_sendpage+0x38c/0x4c0
[  386.389544][T11980]  __splice_from_pipe+0x565/0xf00
[  386.389544][T11980]  generic_splice_sendpage+0x1d5/0x2d0
[  386.389544][T11980]  direct_splice_actor+0x1fd/0x580
[  386.389544][T11980]  splice_direct_to_actor+0x6b2/0xf50
[  386.389544][T11980]  do_splice_direct+0x342/0x580
[  386.389544][T11980]  do_sendfile+0x101b/0x1d40
[  386.389544][T11980]  __se_sys_sendfile64+0x2bb/0x360
[  386.389544][T11980]  __x64_sys_sendfile64+0x56/0x70
[  386.389544][T11980]  do_syscall_64+0xb0/0x150
[  386.389544][T11980]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  386.389544][T11980] 
[  386.389544][T11980] Uninit was stored to memory at:
[  386.389544][T11980]  kmsan_internal_chain_origin+0xad/0x130
[  386.389544][T11980]  __msan_chain_origin+0x50/0x90
[  386.389544][T11980]  rmd256_transform+0x4328/0x4440
[  386.389544][T11980]  rmd256_update+0x343/0x4f0
[  386.389544][T11980]  crypto_shash_update+0x4e9/0x550
[  386.389544][T11980]  shash_async_update+0x113/0x1d0
[  386.389544][T11980]  hash_sendpage+0x8ef/0xdf0
[  386.389544][T11980]  sock_sendpage+0x1e1/0x2c0
[  386.389544][T11980]  pipe_to_sendpage+0x38c/0x4c0
[  386.389544][T11980]  __splice_from_pipe+0x565/0xf00
[  386.389544][T11980]  generic_splice_sendpage+0x1d5/0x2d0
[  386.389544][T11980]  direct_splice_actor+0x1fd/0x580
[  386.559575][T11980]  splice_direct_to_actor+0x6b2/0xf50
[  386.559575][T11980]  do_splice_direct+0x342/0x580
[  386.559575][T11980]  do_sendfile+0x101b/0x1d40
[  386.559575][T11980]  __se_sys_sendfile64+0x2bb/0x360
[  386.559575][T11980]  __x64_sys_sendfile64+0x56/0x70
[  386.559575][T11980]  do_syscall_64+0xb0/0x150
[  386.559575][T11980]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  386.559575][T11980] 
[  386.559575][T11980] Uninit was stored to memory at:
[  386.559575][T11980]  kmsan_internal_chain_origin+0xad/0x130
[  386.559575][T11980]  __msan_chain_origin+0x50/0x90
[  386.559575][T11980]  rmd256_transform+0x4328/0x4440
[  386.559575][T11980]  rmd256_update+0x343/0x4f0
[  386.559575][T11980]  crypto_shash_update+0x4e9/0x550
[  386.559575][T11980]  shash_async_update+0x113/0x1d0
[  386.559575][T11980]  hash_sendpage+0x8ef/0xdf0
[  386.559575][T11980]  sock_sendpage+0x1e1/0x2c0
[  386.559575][T11980]  pipe_to_sendpage+0x38c/0x4c0
[  386.559575][T11980]  __splice_from_pipe+0x565/0xf00
[  386.559575][T11980]  generic_splice_sendpage+0x1d5/0x2d0
[  386.559575][T11980]  direct_splice_actor+0x1fd/0x580
[  386.661375][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  386.559575][T11980]  splice_direct_to_actor+0x6b2/0xf50
[  386.559575][T11980]  do_splice_direct+0x342/0x580
[  386.559575][T11980]  do_sendfile+0x101b/0x1d40
[  386.559575][T11980]  __se_sys_sendfile64+0x2bb/0x360
[  386.559575][T11980]  __x64_sys_sendfile64+0x56/0x70
[  386.559575][T11980]  do_syscall_64+0xb0/0x150
[  386.559575][T11980]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  386.559575][T11980] 
[  386.559575][T11980] Uninit was stored to memory at:
[  386.559575][T11980]  kmsan_internal_chain_origin+0xad/0x130
[  386.559575][T11980]  __msan_chain_origin+0x50/0x90
[  386.559575][T11980]  rmd256_transform+0x4328/0x4440
[  386.559575][T11980]  rmd256_update+0x227/0x4f0
[  386.559575][T11980]  crypto_shash_update+0x4e9/0x550
[  386.559575][T11980]  shash_async_update+0x113/0x1d0
[  386.559575][T11980]  hash_sendpage+0x8ef/0xdf0
[  386.559575][T11980]  sock_sendpage+0x1e1/0x2c0
[  386.559575][T11980]  pipe_to_sendpage+0x38c/0x4c0
[  386.559575][T11980]  __splice_from_pipe+0x565/0xf00
[  386.559575][T11980]  generic_splice_sendpage+0x1d5/0x2d0
[  386.559575][T11980]  direct_splice_actor+0x1fd/0x580
[  386.559575][T11980]  splice_direct_to_actor+0x6b2/0xf50
[  386.559575][T11980]  do_splice_direct+0x342/0x580
[  386.559575][T11980]  do_sendfile+0x101b/0x1d40
[  386.559575][T11980]  __se_sys_sendfile64+0x2bb/0x360
[  386.559575][T11980]  __x64_sys_sendfile64+0x56/0x70
[  386.559575][T11980]  do_syscall_64+0xb0/0x150
[  386.559575][T11980]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  386.559575][T11980] 
[  386.559575][T11980] Uninit was stored to memory at:
[  386.559575][T11980]  kmsan_internal_chain_origin+0xad/0x130
[  386.821085][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  386.559575][T11980]  kmsan_memcpy_memmove_metadata+0x272/0x2e0
[  386.559575][T11980]  kmsan_memcpy_metadata+0xb/0x10
[  386.559575][T11980]  __msan_memcpy+0x43/0x50
[  386.559575][T11980]  rmd256_update+0x1fc/0x4f0
[  386.559575][T11980]  crypto_shash_update+0x4e9/0x550
[  386.559575][T11980]  shash_async_update+0x113/0x1d0
[  386.559575][T11980]  hash_sendpage+0x8ef/0xdf0
[  386.559575][T11980]  sock_sendpage+0x1e1/0x2c0
[  386.559575][T11980]  pipe_to_sendpage+0x38c/0x4c0
[  386.559575][T11980]  __splice_from_pipe+0x565/0xf00
[  386.559575][T11980]  generic_splice_sendpage+0x1d5/0x2d0
[  386.559575][T11980]  direct_splice_actor+0x1fd/0x580
[  386.559575][T11980]  splice_direct_to_actor+0x6b2/0xf50
[  386.559575][T11980]  do_splice_direct+0x342/0x580
[  386.559575][T11980]  do_sendfile+0x101b/0x1d40
[  386.559575][T11980]  __se_sys_sendfile64+0x2bb/0x360
[  386.559575][T11980]  __x64_sys_sendfile64+0x56/0x70
[  386.559575][T11980]  do_syscall_64+0xb0/0x150
[  386.559575][T11980]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  386.559575][T11980] 
[  386.559575][T11980] Uninit was created at:
[  386.559575][T11980]  kmsan_save_stack_with_flags+0x3c/0x90
[  386.559575][T11980]  kmsan_alloc_page+0xb9/0x180
[  386.559575][T11980]  __alloc_pages_nodemask+0x56a2/0x5dc0
[  386.559575][T11980]  alloc_pages_current+0x672/0x990
[  386.559575][T11980]  push_pipe+0x605/0xb70
[  386.559575][T11980]  iov_iter_get_pages_alloc+0x18a9/0x21c0
[  386.559575][T11980]  do_splice_to+0x4fc/0x14f0
[  386.559575][T11980]  splice_direct_to_actor+0x45c/0xf50
[  386.972895][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  386.559575][T11980]  do_splice_direct+0x342/0x580
[  386.559575][T11980]  do_sendfile+0x101b/0x1d40
[  386.559575][T11980]  __se_sys_sendfile64+0x2bb/0x360
[  386.559575][T11980]  __x64_sys_sendfile64+0x56/0x70
[  386.559575][T11980]  do_syscall_64+0xb0/0x150
[  386.559575][T11980]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
20:07:59 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(0x0, 0x0, 0x5)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e35bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93981b20e03b86d4e999bbb53a7b0ee0ce30e80600cff8ca2996e518e3e69051f6d24317f9ebfeb82ee2469fb31bdbb2768d25f196ab6f2dc045421b94d878d0d9c2a5c74633a687a135308e49ce118c81517ac7bb2994cc008dd3deaafaab51144c1ef00f00001f5e73ff040000000000000000000000000000009a583b79ab00f70d85463c57c5bb1f1084e683b591fc2c8b8a38b7ee57afa01aea88fb413e1ee8ebbdf1fa9155bf6409b065a980528827de08737cf643db6de62f253b1304780753de6634bf57fbe09a7eb84cae7f000000886871080d1588bb30abcbfecb4e10d4067a02736f08914faa037346191241c88e57569256cd58ec82518bc8bac2ef0f6e8bfd9ad94599c3230328ddf749f6c754f2781bccc42e6ef592a1fc36a03c9a0328b63ed42db18137f243d01a67ea9fe8e34b25676f9816cdae263897bbb3aaa1148cb80e7aa12869a052b3ea1dfa17ce754e76f57ed0868864d66429bc1d9e8c430deeb6331c152d637740b4efbe95880a2f28902b3358519f08f638235a295a63eb1c8f9460ced7b22ceb4c2c5504a2012c2c8f47fd9152910bc908e41e38ba60cbdffefadbe92a7ed8ce577bdb383c2f625067eec438180f282d638ac72b92ec020d66863813f5ab6189075ebf22d92ecafe4eb1fb9c6b2b88eb965af65c3d0b179a43bcf1840dc8466796c04a4baa9f82bbd989477b56cda9e60dd7da5c5b437be2f2fcdd62a20b6ba534ed9dc198fc041c003bc1340d124062352ad8e3ce63546ded69d5fcaafcffed51ab1b1f4ff88615446fe96983cabf08c3e7ccc1d4e8bdf884347f6156d91f42060477bdf30abcb5e9b6705c5adc1cedd2e7d38fbdef12d569db367978805652eb6f5ccaa6b377839d2b7525417fe4a97300017f2410fc9448ab6c3b9fea9f2287e2a0b83beee2c77a6bb5c3cafea3a7a42f9b5324b98680e6ecf240abdeee92ecd6c972701c39c3e7a77d8dcd1ed368eaf557ad34b0c1cb8eec9c963001f3905cba6c67b6eab0fae90504e30dc799fe07128d711b61834f3d4cb2cb47745c15fae1a2b694fe5983471b336a0829abfd46e6b5f420d723608591b372bb"], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

20:07:59 executing program 2:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x48, &(0x7f00000001c0)={@ipv4={[0x2, 0x4, 0x0, 0x0, 0x4, 0x0, 0x2], [], @loopback}}, 0x20)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f00000000c0)={0xa, 0x4e23, 0x0, @dev}, 0x1c)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f0000000000)=0x2dda, 0x4)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000040)=0x7, 0x4)
sendto$inet6(r1, 0x0, 0x0, 0x0, &(0x7f0000000080)={0xa, 0x5e20, 0x0, @empty}, 0x1c)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
r6 = socket(0x10, 0x2, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa)
sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r7, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="4800000024000705000000000000000000001f00", @ANYRES32=r7, @ANYBLOB="00000400f1ffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)=@delchain={0x54, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0x0, 0xffff}}, [@TCA_RATE={0x6}, @filter_kind_options=@f_cgroup={{0xb, 0x1, 'cgroup\x00'}, {0x1c, 0x2, [@TCA_CGROUP_POLICE={0x18, 0x2, [@TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x6}, @TCA_POLICE_RESULT={0x8, 0x5, 0x3}]}]}}]}, 0x54}}, 0x26048000)
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=@newlink={0x20, 0x11, 0x40d, 0x0, 0x0, {0x0, 0x0, 0x0, r7}}, 0x20}}, 0x0)
ioctl$sock_inet6_SIOCSIFDSTADDR(r1, 0x8918, &(0x7f0000000000)={@dev={0xfe, 0x80, [], 0x3c}, 0x11, r7})

20:07:59 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x48, &(0x7f00000001c0)={@ipv4={[0x2, 0x4, 0x0, 0x0, 0x4, 0x0, 0x2], [], @loopback}}, 0x20)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f00000000c0)={0xa, 0x4e23, 0x0, @dev}, 0x1c)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f0000000000)=0x2dda, 0x4)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000040)=0x7, 0x4)
sendto$inet6(r1, 0x0, 0x0, 0x0, &(0x7f0000000080)={0xa, 0x5e20, 0x0, @empty}, 0x1c)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
r6 = socket(0x10, 0x2, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa)
sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r7, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="4800000024000705000000000000000000001f00", @ANYRES32=r7, @ANYBLOB="00000400f1ffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)=@delchain={0x54, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0x0, 0xffff}}, [@TCA_RATE={0x6}, @filter_kind_options=@f_cgroup={{0xb, 0x1, 'cgroup\x00'}, {0x1c, 0x2, [@TCA_CGROUP_POLICE={0x18, 0x2, [@TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x6}, @TCA_POLICE_RESULT={0x8, 0x5, 0x3}]}]}}]}, 0x54}}, 0x26048000)
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=@newlink={0x20, 0x11, 0x40d, 0x0, 0x0, {0x0, 0x0, 0x0, r7}}, 0x20}}, 0x0)
ioctl$sock_inet6_SIOCSIFDSTADDR(r1, 0x8918, &(0x7f0000000000)={@dev={0xfe, 0x80, [], 0x3c}, 0x11, r7})

20:07:59 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=@encrypted_new={'new ', 'default', 0x20, 'user:', 'syz', 0x20, 0x1000}, 0x2a, 0x0)
r2 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180)={'syz'}, &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000000)={'syz'}, &(0x7f0000000440)='X', 0x1, 0xfffffffffffffffe)
keyctl$read(0xb, r2, &(0x7f0000000240)=""/112, 0x349b7f55)

[  387.587797][T12024] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'.
[  387.784702][T12034] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
20:08:00 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=@encrypted_new={'new ', 'default', 0x20, 'user:', 'syz', 0x20, 0x1000}, 0x2a, 0x0)
r2 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180)={'syz'}, &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000000)={'syz'}, &(0x7f0000000440)='X', 0x1, 0xfffffffffffffffe)
keyctl$read(0xb, r2, &(0x7f0000000240)=""/112, 0x349b7f55)

20:08:00 executing program 2:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x48, &(0x7f00000001c0)={@ipv4={[0x2, 0x4, 0x0, 0x0, 0x4, 0x0, 0x2], [], @loopback}}, 0x20)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f00000000c0)={0xa, 0x4e23, 0x0, @dev}, 0x1c)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f0000000000)=0x2dda, 0x4)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000040)=0x7, 0x4)
sendto$inet6(r1, 0x0, 0x0, 0x0, &(0x7f0000000080)={0xa, 0x5e20, 0x0, @empty}, 0x1c)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
r6 = socket(0x10, 0x2, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa)
sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r7, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="4800000024000705000000000000000000001f00", @ANYRES32=r7, @ANYBLOB="00000400f1ffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)=@delchain={0x54, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0x0, 0xffff}}, [@TCA_RATE={0x6}, @filter_kind_options=@f_cgroup={{0xb, 0x1, 'cgroup\x00'}, {0x1c, 0x2, [@TCA_CGROUP_POLICE={0x18, 0x2, [@TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x6}, @TCA_POLICE_RESULT={0x8, 0x5, 0x3}]}]}}]}, 0x54}}, 0x26048000)
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=@newlink={0x20, 0x11, 0x40d, 0x0, 0x0, {0x0, 0x0, 0x0, r7}}, 0x20}}, 0x0)
ioctl$sock_inet6_SIOCSIFDSTADDR(r1, 0x8918, &(0x7f0000000000)={@dev={0xfe, 0x80, [], 0x3c}, 0x11, r7})

20:08:00 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=@encrypted_new={'new ', 'default', 0x20, 'user:', 'syz', 0x20, 0x1000}, 0x2a, 0x0)
r2 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180)={'syz'}, &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000000)={'syz'}, &(0x7f0000000440)='X', 0x1, 0xfffffffffffffffe)
keyctl$read(0xb, r2, &(0x7f0000000240)=""/112, 0x349b7f55)

20:08:00 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

[  388.630294][T12059] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'.
[  388.918168][T12060] not chained 550000 origins
[  388.919294][T12060] CPU: 0 PID: 12060 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0
[  388.919294][T12060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  388.919294][T12060] Call Trace:
[  388.919294][T12060]  dump_stack+0x1df/0x240
[  388.919294][T12060]  kmsan_internal_chain_origin+0x6f/0x130
[  388.919294][T12060]  ? is_module_text_address+0x4d/0x2a0
[  388.919294][T12060]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  388.919294][T12060]  ? __kernel_text_address+0x171/0x2d0
[  388.919294][T12060]  ? unwind_get_return_address+0x8c/0x130
[  388.919294][T12060]  ? entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  388.919294][T12060]  ? arch_stack_walk+0x2a2/0x3e0
[  388.919294][T12060]  ? stack_trace_save+0x1a0/0x1a0
[  388.919294][T12060]  ? kmsan_get_metadata+0x4f/0x180
[  388.919294][T12060]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  388.919294][T12060]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  388.919294][T12060]  ? stack_trace_save+0x123/0x1a0
[  388.919294][T12060]  ? kmsan_get_metadata+0x11d/0x180
[  388.919294][T12060]  __msan_chain_origin+0x50/0x90
[  388.919294][T12060]  rmd256_transform+0x442f/0x4440
[  388.919294][T12060]  rmd256_update+0x343/0x4f0
[  388.919294][T12060]  ? rmd256_init+0x260/0x260
[  388.919294][T12060]  crypto_shash_update+0x4e9/0x550
[  388.919294][T12060]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  388.919294][T12060]  ? crypto_hash_walk_first+0x1fd/0x360
[  388.919294][T12060]  ? kmsan_get_metadata+0x4f/0x180
[  388.919294][T12060]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  388.919294][T12060]  shash_async_update+0x113/0x1d0
[  388.919294][T12060]  ? shash_async_init+0x1e0/0x1e0
[  388.919294][T12060]  hash_sendpage+0x8ef/0xdf0
[  388.919294][T12060]  ? hash_recvmsg+0xd30/0xd30
[  388.919294][T12060]  sock_sendpage+0x1e1/0x2c0
[  388.919294][T12060]  pipe_to_sendpage+0x38c/0x4c0
[  389.097535][T12060]  ? sock_fasync+0x250/0x250
[  389.097535][T12060]  __splice_from_pipe+0x565/0xf00
[  389.097535][T12060]  ? generic_splice_sendpage+0x2d0/0x2d0
[  389.097535][T12060]  generic_splice_sendpage+0x1d5/0x2d0
[  389.097535][T12060]  ? iter_file_splice_write+0x1800/0x1800
[  389.097535][T12060]  direct_splice_actor+0x1fd/0x580
[  389.097535][T12060]  ? kmsan_get_metadata+0x4f/0x180
[  389.097535][T12060]  splice_direct_to_actor+0x6b2/0xf50
[  389.097535][T12060]  ? do_splice_direct+0x580/0x580
[  389.097535][T12060]  do_splice_direct+0x342/0x580
[  389.097535][T12060]  do_sendfile+0x101b/0x1d40
[  389.097535][T12060]  __se_sys_sendfile64+0x2bb/0x360
[  389.097535][T12060]  ? kmsan_get_metadata+0x4f/0x180
[  389.097535][T12060]  __x64_sys_sendfile64+0x56/0x70
[  389.097535][T12060]  do_syscall_64+0xb0/0x150
[  389.172934][T12060]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  389.180699][T12060] RIP: 0033:0x45c1d9
[  389.180699][T12060] Code: Bad RIP value.
[  389.180699][T12060] RSP: 002b:00007f42d54efc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  389.180699][T12060] RAX: ffffffffffffffda RBX: 0000000000025a00 RCX: 000000000045c1d9
[  389.180699][T12060] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000007
[  389.180699][T12060] RBP: 000000000078bf48 R08: 0000000000000000 R09: 0000000000000000
[  389.180699][T12060] R10: 001000007ffff000 R11: 0000000000000246 R12: 000000000078bf0c
[  389.180699][T12060] R13: 0000000000c9fb6f R14: 00007f42d54f09c0 R15: 000000000078bf0c
[  389.180699][T12060] Uninit was stored to memory at:
[  389.180699][T12060]  kmsan_internal_chain_origin+0xad/0x130
[  389.180699][T12060]  __msan_chain_origin+0x50/0x90
[  389.180699][T12060]  rmd256_transform+0x442f/0x4440
[  389.180699][T12060]  rmd256_update+0x343/0x4f0
[  389.180699][T12060]  crypto_shash_update+0x4e9/0x550
[  389.180699][T12060]  shash_async_update+0x113/0x1d0
[  389.180699][T12060]  hash_sendpage+0x8ef/0xdf0
[  389.180699][T12060]  sock_sendpage+0x1e1/0x2c0
[  389.180699][T12060]  pipe_to_sendpage+0x38c/0x4c0
[  389.180699][T12060]  __splice_from_pipe+0x565/0xf00
[  389.180699][T12060]  generic_splice_sendpage+0x1d5/0x2d0
[  389.180699][T12060]  direct_splice_actor+0x1fd/0x580
[  389.180699][T12060]  splice_direct_to_actor+0x6b2/0xf50
[  389.180699][T12060]  do_splice_direct+0x342/0x580
[  389.180699][T12060]  do_sendfile+0x101b/0x1d40
[  389.180699][T12060]  __se_sys_sendfile64+0x2bb/0x360
[  389.180699][T12060]  __x64_sys_sendfile64+0x56/0x70
[  389.180699][T12060]  do_syscall_64+0xb0/0x150
[  389.180699][T12060]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  389.180699][T12060] 
[  389.180699][T12060] Uninit was stored to memory at:
[  389.180699][T12060]  kmsan_internal_chain_origin+0xad/0x130
[  389.180699][T12060]  __msan_chain_origin+0x50/0x90
[  389.180699][T12060]  rmd256_transform+0x442f/0x4440
[  389.180699][T12060]  rmd256_update+0x343/0x4f0
[  389.180699][T12060]  crypto_shash_update+0x4e9/0x550
[  389.180699][T12060]  shash_async_update+0x113/0x1d0
[  389.180699][T12060]  hash_sendpage+0x8ef/0xdf0
[  389.180699][T12060]  sock_sendpage+0x1e1/0x2c0
[  389.180699][T12060]  pipe_to_sendpage+0x38c/0x4c0
[  389.180699][T12060]  __splice_from_pipe+0x565/0xf00
[  389.180699][T12060]  generic_splice_sendpage+0x1d5/0x2d0
[  389.180699][T12060]  direct_splice_actor+0x1fd/0x580
[  389.180699][T12060]  splice_direct_to_actor+0x6b2/0xf50
[  389.180699][T12060]  do_splice_direct+0x342/0x580
[  389.180699][T12060]  do_sendfile+0x101b/0x1d40
[  389.180699][T12060]  __se_sys_sendfile64+0x2bb/0x360
[  389.180699][T12060]  __x64_sys_sendfile64+0x56/0x70
[  389.180699][T12060]  do_syscall_64+0xb0/0x150
[  389.180699][T12060]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  389.180699][T12060] 
[  389.180699][T12060] Uninit was stored to memory at:
[  389.180699][T12060]  kmsan_internal_chain_origin+0xad/0x130
[  389.180699][T12060]  __msan_chain_origin+0x50/0x90
[  389.180699][T12060]  rmd256_transform+0x442f/0x4440
[  389.180699][T12060]  rmd256_update+0x343/0x4f0
[  389.180699][T12060]  crypto_shash_update+0x4e9/0x550
[  389.180699][T12060]  shash_async_update+0x113/0x1d0
[  389.180699][T12060]  hash_sendpage+0x8ef/0xdf0
[  389.180699][T12060]  sock_sendpage+0x1e1/0x2c0
[  389.180699][T12060]  pipe_to_sendpage+0x38c/0x4c0
[  389.180699][T12060]  __splice_from_pipe+0x565/0xf00
[  389.180699][T12060]  generic_splice_sendpage+0x1d5/0x2d0
[  389.180699][T12060]  direct_splice_actor+0x1fd/0x580
[  389.180699][T12060]  splice_direct_to_actor+0x6b2/0xf50
[  389.180699][T12060]  do_splice_direct+0x342/0x580
[  389.180699][T12060]  do_sendfile+0x101b/0x1d40
[  389.180699][T12060]  __se_sys_sendfile64+0x2bb/0x360
[  389.180699][T12060]  __x64_sys_sendfile64+0x56/0x70
[  389.180699][T12060]  do_syscall_64+0xb0/0x150
[  389.180699][T12060]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  389.180699][T12060] 
[  389.180699][T12060] Uninit was stored to memory at:
[  389.180699][T12060]  kmsan_internal_chain_origin+0xad/0x130
[  389.180699][T12060]  __msan_chain_origin+0x50/0x90
[  389.180699][T12060]  rmd256_transform+0x442f/0x4440
[  389.180699][T12060]  rmd256_update+0x343/0x4f0
[  389.180699][T12060]  crypto_shash_update+0x4e9/0x550
[  389.180699][T12060]  shash_async_update+0x113/0x1d0
[  389.180699][T12060]  hash_sendpage+0x8ef/0xdf0
[  389.180699][T12060]  sock_sendpage+0x1e1/0x2c0
[  389.180699][T12060]  pipe_to_sendpage+0x38c/0x4c0
[  389.180699][T12060]  __splice_from_pipe+0x565/0xf00
[  389.180699][T12060]  generic_splice_sendpage+0x1d5/0x2d0
[  389.180699][T12060]  direct_splice_actor+0x1fd/0x580
[  389.180699][T12060]  splice_direct_to_actor+0x6b2/0xf50
[  389.180699][T12060]  do_splice_direct+0x342/0x580
[  389.180699][T12060]  do_sendfile+0x101b/0x1d40
[  389.180699][T12060]  __se_sys_sendfile64+0x2bb/0x360
[  389.180699][T12060]  __x64_sys_sendfile64+0x56/0x70
[  389.180699][T12060]  do_syscall_64+0xb0/0x150
[  389.180699][T12060]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  389.180699][T12060] 
[  389.180699][T12060] Uninit was stored to memory at:
[  389.180699][T12060]  kmsan_internal_chain_origin+0xad/0x130
[  389.180699][T12060]  __msan_chain_origin+0x50/0x90
[  389.180699][T12060]  rmd256_transform+0x442f/0x4440
[  389.180699][T12060]  rmd256_update+0x343/0x4f0
[  389.180699][T12060]  crypto_shash_update+0x4e9/0x550
[  389.679504][T12060]  shash_async_update+0x113/0x1d0
[  389.682055][T12060]  hash_sendpage+0x8ef/0xdf0
[  389.689495][T12060]  sock_sendpage+0x1e1/0x2c0
[  389.689495][T12060]  pipe_to_sendpage+0x38c/0x4c0
[  389.689495][T12060]  __splice_from_pipe+0x565/0xf00
[  389.689495][T12060]  generic_splice_sendpage+0x1d5/0x2d0
[  389.689495][T12060]  direct_splice_actor+0x1fd/0x580
[  389.689495][T12060]  splice_direct_to_actor+0x6b2/0xf50
[  389.689495][T12060]  do_splice_direct+0x342/0x580
[  389.689495][T12060]  do_sendfile+0x101b/0x1d40
[  389.689495][T12060]  __se_sys_sendfile64+0x2bb/0x360
[  389.689495][T12060]  __x64_sys_sendfile64+0x56/0x70
[  389.738839][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  389.689495][T12060]  do_syscall_64+0xb0/0x150
[  389.689495][T12060]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  389.689495][T12060] 
[  389.689495][T12060] Uninit was stored to memory at:
[  389.689495][T12060]  kmsan_internal_chain_origin+0xad/0x130
[  389.689495][T12060]  __msan_chain_origin+0x50/0x90
[  389.689495][T12060]  rmd256_transform+0x442f/0x4440
[  389.689495][T12060]  rmd256_update+0x227/0x4f0
[  389.689495][T12060]  crypto_shash_update+0x4e9/0x550
[  389.749226][T12060]  shash_async_update+0x113/0x1d0
[  389.749226][T12060]  hash_sendpage+0x8ef/0xdf0
[  389.797357][T12060]  sock_sendpage+0x1e1/0x2c0
[  389.797357][T12060]  pipe_to_sendpage+0x38c/0x4c0
[  389.797357][T12060]  __splice_from_pipe+0x565/0xf00
[  389.797357][T12060]  generic_splice_sendpage+0x1d5/0x2d0
[  389.797357][T12060]  direct_splice_actor+0x1fd/0x580
[  389.797357][T12060]  splice_direct_to_actor+0x6b2/0xf50
[  389.797357][T12060]  do_splice_direct+0x342/0x580
[  389.797357][T12060]  do_sendfile+0x101b/0x1d40
[  389.797357][T12060]  __se_sys_sendfile64+0x2bb/0x360
[  389.797357][T12060]  __x64_sys_sendfile64+0x56/0x70
[  389.797357][T12060]  do_syscall_64+0xb0/0x150
[  389.797357][T12060]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  389.797357][T12060] 
[  389.863435][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  389.797357][T12060] Uninit was stored to memory at:
[  389.797357][T12060]  kmsan_internal_chain_origin+0xad/0x130
[  389.797357][T12060]  kmsan_memcpy_memmove_metadata+0x272/0x2e0
[  389.797357][T12060]  kmsan_memcpy_metadata+0xb/0x10
[  389.797357][T12060]  __msan_memcpy+0x43/0x50
[  389.797357][T12060]  rmd256_update+0x1fc/0x4f0
[  389.797357][T12060]  crypto_shash_update+0x4e9/0x550
[  389.797357][T12060]  shash_async_update+0x113/0x1d0
[  389.797357][T12060]  hash_sendpage+0x8ef/0xdf0
[  389.797357][T12060]  sock_sendpage+0x1e1/0x2c0
[  389.797357][T12060]  pipe_to_sendpage+0x38c/0x4c0
[  389.797357][T12060]  __splice_from_pipe+0x565/0xf00
[  389.797357][T12060]  generic_splice_sendpage+0x1d5/0x2d0
[  389.797357][T12060]  direct_splice_actor+0x1fd/0x580
[  389.797357][T12060]  splice_direct_to_actor+0x6b2/0xf50
[  389.797357][T12060]  do_splice_direct+0x342/0x580
[  389.797357][T12060]  do_sendfile+0x101b/0x1d40
[  389.797357][T12060]  __se_sys_sendfile64+0x2bb/0x360
[  389.797357][T12060]  __x64_sys_sendfile64+0x56/0x70
[  389.797357][T12060]  do_syscall_64+0xb0/0x150
[  389.797357][T12060]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  389.797357][T12060] 
[  389.797357][T12060] Uninit was created at:
[  389.797357][T12060]  kmsan_save_stack_with_flags+0x3c/0x90
[  389.797357][T12060]  kmsan_alloc_page+0xb9/0x180
[  389.797357][T12060]  __alloc_pages_nodemask+0x56a2/0x5dc0
[  389.797357][T12060]  alloc_pages_current+0x672/0x990
[  389.797357][T12060]  push_pipe+0x605/0xb70
[  389.797357][T12060]  iov_iter_get_pages_alloc+0x18a9/0x21c0
[  389.797357][T12060]  do_splice_to+0x4fc/0x14f0
[  389.797357][T12060]  splice_direct_to_actor+0x45c/0xf50
[  389.797357][T12060]  do_splice_direct+0x342/0x580
[  389.797357][T12060]  do_sendfile+0x101b/0x1d40
[  389.797357][T12060]  __se_sys_sendfile64+0x2bb/0x360
[  389.797357][T12060]  __x64_sys_sendfile64+0x56/0x70
[  390.043402][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  389.797357][T12060]  do_syscall_64+0xb0/0x150
[  389.797357][T12060]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
20:08:02 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
accept4(r0, 0x0, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r0, r1, 0x0, 0x1000007ffff000)

20:08:02 executing program 3:
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000008c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="000426bd7000fedbdf250d000000080034", @ANYRES32=0x0, @ANYBLOB="e0f0fdcb69a067053b14d7a44ca9ff6dedc9d15f7745c5298ff283c1edd156d0beaa2059b57c0366b4ef51f4f58652ef0dbdde68cd9d7f6a7ddbcbe278a8"], 0x2c}, 0x1, 0x0, 0x0, 0x4060}, 0x2400c004)
r2 = openat$cgroup_ro(r0, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r2, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x24, r1, 0x712, 0x70bd26, 0x25dfdbff}, 0x24}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv4/vs/lblc_expiration\x00', 0x2, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r4, 0xc0406618, &(0x7f0000000200)={{0x1, 0x0, @reserved="17ab2c017fe48acae4edfade24b5668ddf938ad676b2d20bfc7abe3f3075ff67"}})
openat$cgroup_ro(r3, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_GEM_FLINK(r3, 0xc008640a, &(0x7f0000000080)={<r5=>0x0})
r6 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
openat$cgroup_ro(r6, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r2, 0xc00c642d, &(0x7f0000000140)={r5, 0x80000, r6})
prlimit64(0x0, 0x10, 0x0, 0x0)
r7 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nvram\x00', 0x4000, 0x0)
r8 = socket$inet6_sctp(0xa, 0x5, 0x84)
r9 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r9, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r10=>0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r8, 0x84, 0x75, &(0x7f00000000c0)={r10}, &(0x7f0000000100)=0x8)
setsockopt$inet_sctp6_SCTP_MAXSEG(r7, 0x84, 0xd, &(0x7f0000000040)=@assoc_id=r10, 0x4)

20:08:02 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=@encrypted_new={'new ', 'default', 0x20, 'user:', 'syz', 0x20, 0x1000}, 0x2a, 0x0)
r2 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180)={'syz'}, &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000000)={'syz'}, &(0x7f0000000440)='X', 0x1, 0xfffffffffffffffe)
keyctl$read(0xb, r2, &(0x7f0000000240)=""/112, 0x349b7f55)

20:08:02 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=@encrypted_new={'new ', 'default', 0x20, 'user:', 'syz', 0x20, 0x1000}, 0x2a, 0x0)
r2 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180)={'syz'}, &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000000)={'syz'}, &(0x7f0000000440)='X', 0x1, 0xfffffffffffffffe)
keyctl$read(0xb, r2, &(0x7f0000000240)=""/112, 0x349b7f55)

20:08:02 executing program 2:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x48, &(0x7f00000001c0)={@ipv4={[0x2, 0x4, 0x0, 0x0, 0x4, 0x0, 0x2], [], @loopback}}, 0x20)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f00000000c0)={0xa, 0x4e23, 0x0, @dev}, 0x1c)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f0000000000)=0x2dda, 0x4)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000040)=0x7, 0x4)
sendto$inet6(r1, 0x0, 0x0, 0x0, &(0x7f0000000080)={0xa, 0x5e20, 0x0, @empty}, 0x1c)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
r6 = socket(0x10, 0x2, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa)
sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r7, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="4800000024000705000000000000000000001f00", @ANYRES32=r7, @ANYBLOB="00000400f1ffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)=@delchain={0x54, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0x0, 0xffff}}, [@TCA_RATE={0x6}, @filter_kind_options=@f_cgroup={{0xb, 0x1, 'cgroup\x00'}, {0x1c, 0x2, [@TCA_CGROUP_POLICE={0x18, 0x2, [@TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x6}, @TCA_POLICE_RESULT={0x8, 0x5, 0x3}]}]}}]}, 0x54}}, 0x26048000)
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=@newlink={0x20, 0x11, 0x40d, 0x0, 0x0, {0x0, 0x0, 0x0, r7}}, 0x20}}, 0x0)
ioctl$sock_inet6_SIOCSIFDSTADDR(r1, 0x8918, &(0x7f0000000000)={@dev={0xfe, 0x80, [], 0x3c}, 0x11, r7})

20:08:02 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=@encrypted_new={'new ', 'default', 0x20, 'user:', 'syz', 0x20, 0x1000}, 0x2a, 0x0)
r2 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180)={'syz'}, &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000000)={'syz'}, &(0x7f0000000440)='X', 0x1, 0xfffffffffffffffe)
keyctl$read(0xb, r2, &(0x7f0000000240)=""/112, 0x349b7f55)

20:08:02 executing program 3:
prlimit64(0x0, 0x10, 0x0, 0x0)
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000008c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="000426bd7000fedbdf250d000000080034", @ANYRES32=0x0, @ANYBLOB="e0f0fdcb69a067053b14d7a44ca9ff6dedc9d15f7745c5298ff283c1edd156d0beaa2059b57c0366b4ef51f4f58652ef0dbdde68cd9d7f6a7ddbcbe278a8"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2400c004)
r2 = openat$cgroup_ro(r0, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r2, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x24, r1, 0x712, 0x70bd26, 0x25dfdbff}, 0x24}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f0000000000)={{0x0, 0x2, 0xcefa, 0x3, 0x4}})

20:08:02 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=@encrypted_new={'new ', 'default', 0x20, 'user:', 'syz', 0x20, 0x1000}, 0x2a, 0x0)
r2 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180)={'syz'}, &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000000)={'syz'}, &(0x7f0000000440)='X', 0x1, 0xfffffffffffffffe)
keyctl$read(0xb, r2, &(0x7f0000000240)=""/112, 0x349b7f55)

20:08:02 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
r5 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
openat$cgroup_ro(r5, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
r6 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r7 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000008c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="000426bd7000fedbdf250d000000080034", @ANYRES32=0x0, @ANYBLOB="e0f0fdcb69a067053b14d7a44ca9ff6dedc9d15f7745c5298ff283c1edd156d0beaa2059b57c0366b4ef51f4f58652ef0dbdde68cd9d7f6a7ddbcbe278a8"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2400c004)
r8 = openat$cgroup_ro(r6, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r8, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x24, r7, 0x712, 0x70bd26, 0x25dfdbff}, 0x24}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
r9 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r10 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000008c0)={&(0x7f0000000200)=ANY=[@ANYRES64=r8, @ANYRESDEC=r9, @ANYRESOCT=r1, @ANYRES32=r8, @ANYRES64=r10], 0x2c}, 0x1, 0x0, 0x0, 0x404c001}, 0x2400c004)
r11 = openat$cgroup_ro(r3, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r11, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x24, r4, 0x712, 0x70bd26, 0x25dfdbff}, 0x24}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
ioctl$ASHMEM_SET_NAME(r11, 0x41007701, &(0x7f00000000c0)='hash\x00')
sendfile(r1, r2, 0x0, 0x1000007ffff000)

[  390.508057][T12086] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'.
20:08:03 executing program 3:
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
openat$cgroup_ro(r0, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000008c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="000426bd7000fedbdf250d000000080034", @ANYRES32=0x0, @ANYBLOB="e0f0fdcb69a067053b14d7a44ca9ff6dedc9d15f7745c5298ff283c1edd156d0beaa2059b57c0366b4ef51f4f58652ef0dbdde68cd9d7f6a7ddbcbe278a8"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2400c004)
r4 = openat$cgroup_ro(r2, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
r5 = socket$isdn_base(0x22, 0x3, 0x0)
ioctl$sock_SIOCSIFVLAN_GET_VLAN_EGRESS_PRIORITY_CMD(r5, 0x8983, &(0x7f0000000200))
sendmsg$BATADV_CMD_GET_ORIGINATORS(r4, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x24, r3, 0x712, 0x70bd26, 0x25dfdbff}, 0x24}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040)='batadv\x00')
sendmsg$BATADV_CMD_TP_METER_CANCEL(r4, &(0x7f0000000100)={&(0x7f0000000000), 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010027bd7000fcdbdf2503000004050030000000001a050030000000000008003100a894000008003a00ffff0000"], 0x34}, 0x1, 0x0, 0x0, 0x80}, 0x8002)
setsockopt(r1, 0x800000010d, 0x2, &(0x7f0000000240)='\x00\x00\x00\x00\x00', 0x5)
getsockopt$inet_int(r1, 0x10d, 0x2, 0x0, &(0x7f0000000180)=0x2b)
r7 = dup2(0xffffffffffffffff, r1)
openat$cgroup_ro(r7, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
ioctl$UI_SET_SWBIT(r7, 0x4004556d, 0xe)
prlimit64(0x0, 0x10, 0x0, 0x0)

20:08:03 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=@encrypted_new={'new ', 'default', 0x20, 'user:', 'syz', 0x20, 0x1000}, 0x2a, 0x0)
r2 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180)={'syz'}, &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000000)={'syz'}, &(0x7f0000000440)='X', 0x1, 0xfffffffffffffffe)
keyctl$read(0xb, r2, &(0x7f0000000240)=""/112, 0x349b7f55)

20:08:03 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

20:08:03 executing program 5:
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x8, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x6e}, [@ldst={0x2, 0x0, 0x3, 0xa, 0x0, 0xff02}]}, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f2, 0x10, &(0x7f0000000000), 0xfffffe51}, 0x48)

20:08:03 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=@newlink={0x48, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_AF_SPEC={0xc, 0x1a, 0x0, 0x1, [@AF_INET={0x67, 0x2, 0x0, 0x1, {0x4}}]}, @IFLA_GROUP={0x8}, @IFLA_IFNAME={0x14, 0x3, 'bridge_slave_0\x00'}]}, 0x48}}, 0x0)

20:08:03 executing program 3:
prlimit64(0x0, 0x10, 0x0, 0x0)
r0 = gettid()
ptrace$setopts(0x4206, r0, 0x0, 0x0)
r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
openat$cgroup_ro(r1, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
r2 = dup3(0xffffffffffffffff, r1, 0x0)
recvmsg$can_raw(r2, &(0x7f00000001c0)={&(0x7f0000000080)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @loopback}}}, 0x80, &(0x7f0000000180)=[{&(0x7f0000000100)=""/73, 0x49}], 0x1}, 0x10000)
tkill(r0, 0x3)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)
ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r0, 0x10000, &(0x7f0000000000)=""/95)

20:08:03 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(0xffffffffffffffff, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x24, 0x0, 0x712, 0x70bd26, 0x25dfdbff}, 0x24}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
r1 = gettid()
ptrace$setopts(0x4206, r1, 0x0, 0x0)
tkill(r1, 0x40)
ptrace$setregs(0xd, r1, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r1, 0x0, 0x0)
ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0286405, &(0x7f0000000140)={0x4, 0x0, {r1}, {<r2=>0xee01}, 0x8, 0x2})
r3 = socket(0x10, 0x3, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x19)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r6, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000007c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)=@newqdisc={0x34, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb, 0x1, 'taprio\x00'}, {0x4}}]}, 0x34}}, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000640)={&(0x7f0000000100), 0xc, &(0x7f0000000600)={&(0x7f0000000180)=@newpolicy={0x474, 0x13, 0x15, 0x70bd25, 0x25dfdbfc, {{@in6=@initdev={0xfe, 0x88, [], 0x0, 0x0}, @in6=@private1, 0x4e24, 0x57, 0x4e21, 0x1ff, 0x2, 0xa0, 0x80, 0x6, 0x0, r2}, {0x2, 0x1, 0x1, 0xd, 0x3, 0x0, 0x785eb420, 0x40}, {0x8, 0x8, 0x20, 0x2}, 0x1f, 0x6e6bb1, 0x0, 0xd3f6139d3341668b, 0x2, 0x2}, [@algo_crypt={0xf4, 0x2, {{'ctr(camellia)\x00'}, 0x560, "96ea85c6072c285e2ead7bf9c538bf5de6d5ad607298f4e7ef22485704e88575724ac45cd6a5a9a982d387e3323095530161ae82598cef0c34559021bfc915b76d5ee8e0b7f235397b7d771f8273b805f679f5717d8492c0ea31fb9ec1d7b331ea2cbdbcce186f3a38ec067cf7591005a412ff02a4ee890335b85773ea6d984870882fe55f761f2daae8edf4d962c54150d793e15c9322bb5d2a1739459143b885efbdee3a8f419e410083d8"}}, @XFRMA_SET_MARK={0x8, 0x1d, 0x8}, @replay_val={0x10, 0xa, {0x70bd26, 0x70bd27, 0x8001}}, @replay_thresh={0x8, 0xb, 0x5}, @lifetime_val={0x24, 0x9, {0x8, 0x40, 0x8, 0x7fa}}, @mark={0xc, 0x15, {0x35075c, 0x8}}, @algo_auth={0xe3, 0x1, {{'crct10dif\x00'}, 0x4d8, "77e7419d4a22958bf8e7bc240e5bed19a8c5814ae598ebb71b628d9ed65439d0aee559942d891b69c78340405adecb94470d7ed4446f28276d394e3a4f24d2740ef808ca92e2c416d0e7c4d8e24b9ec60cbabd62bedd7537d533228821c2913ee9fca6d716f7038031b00a0b1cb8318dce607326121b509b8964c75062d423198ad35cb0e89770bbea1cfdda77575210aae017084503d5ca3e65df"}}, @XFRMA_SET_MARK_MASK={0x8, 0x1e, 0xe6a}, @XFRMA_IF_ID={0x8, 0x1f, r6}, @tmpl={0x184, 0x5, [{{@in=@private=0xa010100, 0x4d3, 0xff}, 0x2, @in6=@loopback, 0x3502, 0x6, 0x0, 0x8, 0x5, 0x5, 0x1}, {{@in=@remote, 0x4d6, 0x3c}, 0x2, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x3502, 0x2, 0x0, 0x6, 0x5, 0x1000, 0xffff}, {{@in6=@mcast1, 0x4d2, 0x3c}, 0xa, @in=@initdev={0xac, 0x1e, 0x1, 0x0}, 0x0, 0x0, 0x1, 0x8, 0x1, 0xfffffffc, 0x6}, {{@in6=@empty, 0x4d2, 0xff}, 0xa, @in=@initdev={0xac, 0x1e, 0x1, 0x0}, 0x3507, 0x3, 0x3, 0x20, 0x4, 0x1, 0x1f}, {{@in6=@ipv4={[], [], @multicast2}, 0x4d3, 0xff}, 0x8, @in6=@empty, 0x3506, 0x1, 0x0, 0xff, 0x5, 0xb3}, {{@in6=@private1={0xfc, 0x1, [], 0x1}, 0x4d3, 0xff}, 0x2, @in6=@local, 0x3505, 0x3, 0x2, 0x7f, 0x5, 0x8, 0x6}]}]}, 0x474}, 0x1, 0x0, 0x0, 0x20000000}, 0x4040050)
bind$alg(r0, &(0x7f0000000040)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts-twofish-avx\x00'}, 0x58)
r7 = accept4(r0, 0x0, 0x0, 0x0)
r8 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r7, r8, 0x0, 0x1000007ffff000)

20:08:03 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=@encrypted_new={'new ', 'default', 0x20, 'user:', 'syz', 0x20, 0x1000}, 0x2a, 0x0)
r2 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180)={'syz'}, &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000000)={'syz'}, &(0x7f0000000440)='X', 0x1, 0xfffffffffffffffe)
keyctl$read(0xb, r2, &(0x7f0000000240)=""/112, 0x349b7f55)

20:08:04 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=@newlink={0x48, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_AF_SPEC={0xc, 0x1a, 0x0, 0x1, [@AF_INET={0x67, 0x2, 0x0, 0x1, {0x4}}]}, @IFLA_GROUP={0x8}, @IFLA_IFNAME={0x14, 0x3, 'bridge_slave_0\x00'}]}, 0x48}}, 0x0)

20:08:04 executing program 3:
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000008c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="000426bd7000fedbdf250d000000080034", @ANYRES32=0x0, @ANYBLOB="e0f0fdcb69a067053b14d7a44ca9ff6dedc9d15f7745c5298ff283c1edd156d0beaa2059b57c0366b4ef51f4f58652ef0dbdde68cd9d7f6a7ddbcbe278a8"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2400c004)
r2 = openat$cgroup_ro(r0, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r2, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x24, r1, 0x712, 0x70bd26, 0x25dfdbff}, 0x24}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
r4 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r5=>0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r3, 0x84, 0x75, &(0x7f00000000c0)={r5}, &(0x7f0000000100)=0x8)
setsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r2, 0x84, 0x6, &(0x7f0000000000)={r5, @in6={{0xa, 0x4e23, 0x4, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x3ff}}}, 0x84)
prlimit64(0x0, 0x10, 0x0, 0x0)

20:08:04 executing program 5:
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x8, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x6e}, [@ldst={0x2, 0x0, 0x3, 0xa, 0x0, 0xff02}]}, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f2, 0x10, &(0x7f0000000000), 0xfffffe51}, 0x48)

20:08:04 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r1, r2, 0x0, 0x1000007ffff000)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
openat$cgroup_ro(r3, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
r5 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r6=>0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r4, 0x84, 0x75, &(0x7f00000000c0)={r6}, &(0x7f0000000100)=0x8)
r7 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r8 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000008c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="000426bd7000fedbdf250d000000080034", @ANYRES32=0x0, @ANYBLOB="e0f0fdcb69a067053b14d7a44ca9ff6dedc9d15f7745c5298ff283c1edd156d0beaa2059b57c0366b4ef51f4f58652ef0dbdde68cd9d7f6a7ddbcbe278a8"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2400c004)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
write$P9_RUNLINKAT(0xffffffffffffffff, &(0x7f0000000200)={0x7, 0x4d, 0x1}, 0x7)
r9 = openat$cgroup_ro(r7, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r9, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x24, r8, 0x712, 0x70bd26, 0x25dfdbff}, 0x24}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
getsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r9, 0x84, 0xc, &(0x7f0000000180), &(0x7f00000001c0)=0x4)
setsockopt$inet_sctp6_SCTP_RTOINFO(r3, 0x84, 0x0, &(0x7f00000000c0)={r6, 0x3ff, 0x30000, 0x401}, 0x10)

20:08:04 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=@encrypted_new={'new ', 'default', 0x20, 'user:', 'syz', 0x20, 0x1000}, 0x2a, 0x0)
r2 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180)={'syz'}, &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000000)={'syz'}, &(0x7f0000000440)='X', 0x1, 0xfffffffffffffffe)
keyctl$read(0xb, r2, &(0x7f0000000240)=""/112, 0x349b7f55)

[  392.276211][T12140] not chained 560000 origins
[  392.279256][T12140] CPU: 0 PID: 12140 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0
[  392.279256][T12140] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  392.279256][T12140] Call Trace:
[  392.279256][T12140]  dump_stack+0x1df/0x240
[  392.279256][T12140]  kmsan_internal_chain_origin+0x6f/0x130
[  392.279256][T12140]  ? is_module_text_address+0x4d/0x2a0
[  392.279256][T12140]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  392.279256][T12140]  ? __kernel_text_address+0x171/0x2d0
[  392.279256][T12140]  ? unwind_get_return_address+0x8c/0x130
[  392.279256][T12140]  ? entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  392.279256][T12140]  ? arch_stack_walk+0x2a2/0x3e0
[  392.279256][T12140]  ? stack_trace_save+0x1a0/0x1a0
[  392.279256][T12140]  ? kmsan_get_metadata+0x4f/0x180
[  392.279256][T12140]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  392.279256][T12140]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  392.279256][T12140]  ? stack_trace_save+0x123/0x1a0
[  392.279256][T12140]  ? kmsan_get_metadata+0x11d/0x180
[  392.279256][T12140]  __msan_chain_origin+0x50/0x90
[  392.279256][T12140]  rmd256_transform+0x4373/0x4440
[  392.279256][T12140]  ? create_autodetect_quirks+0x212/0x5b0
[  392.279256][T12140]  rmd256_update+0x343/0x4f0
[  392.279256][T12140]  ? rmd256_init+0x260/0x260
[  392.279256][T12140]  crypto_shash_update+0x4e9/0x550
[  392.279256][T12140]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  392.279256][T12140]  ? crypto_hash_walk_first+0x1fd/0x360
[  392.279256][T12140]  ? kmsan_get_metadata+0x4f/0x180
[  392.279256][T12140]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  392.279256][T12140]  shash_async_update+0x113/0x1d0
[  392.279256][T12140]  ? shash_async_init+0x1e0/0x1e0
[  392.279256][T12140]  hash_sendpage+0x8ef/0xdf0
[  392.279256][T12140]  ? hash_recvmsg+0xd30/0xd30
[  392.279256][T12140]  sock_sendpage+0x1e1/0x2c0
[  392.279256][T12140]  pipe_to_sendpage+0x38c/0x4c0
[  392.279256][T12140]  ? sock_fasync+0x250/0x250
[  392.279256][T12140]  __splice_from_pipe+0x565/0xf00
[  392.279256][T12140]  ? generic_splice_sendpage+0x2d0/0x2d0
[  392.279256][T12140]  generic_splice_sendpage+0x1d5/0x2d0
[  392.279256][T12140]  ? iter_file_splice_write+0x1800/0x1800
[  392.279256][T12140]  direct_splice_actor+0x1fd/0x580
[  392.279256][T12140]  ? kmsan_get_metadata+0x4f/0x180
[  392.279256][T12140]  splice_direct_to_actor+0x6b2/0xf50
[  392.279256][T12140]  ? do_splice_direct+0x580/0x580
[  392.279256][T12140]  do_splice_direct+0x342/0x580
[  392.279256][T12140]  do_sendfile+0x101b/0x1d40
[  392.279256][T12140]  __se_sys_sendfile64+0x2bb/0x360
[  392.279256][T12140]  ? kmsan_get_metadata+0x4f/0x180
[  392.279256][T12140]  __x64_sys_sendfile64+0x56/0x70
[  392.279256][T12140]  do_syscall_64+0xb0/0x150
[  392.279256][T12140]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  392.279256][T12140] RIP: 0033:0x45c1d9
[  392.279256][T12140] Code: Bad RIP value.
[  392.279256][T12140] RSP: 002b:00007f3a4d702c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  392.279256][T12140] RAX: ffffffffffffffda RBX: 0000000000025a00 RCX: 000000000045c1d9
[  392.279256][T12140] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004
[  392.279256][T12140] RBP: 000000000078bf48 R08: 0000000000000000 R09: 0000000000000000
[  392.279256][T12140] R10: 001000007ffff000 R11: 0000000000000246 R12: 000000000078bf0c
[  392.279256][T12140] R13: 0000000000c9fb6f R14: 00007f3a4d7039c0 R15: 000000000078bf0c
[  392.279256][T12140] Uninit was stored to memory at:
[  392.279256][T12140]  kmsan_internal_chain_origin+0xad/0x130
[  392.279256][T12140]  __msan_chain_origin+0x50/0x90
[  392.279256][T12140]  rmd256_transform+0x4373/0x4440
[  392.279256][T12140]  rmd256_update+0x343/0x4f0
[  392.279256][T12140]  crypto_shash_update+0x4e9/0x550
[  392.279256][T12140]  shash_async_update+0x113/0x1d0
[  392.279256][T12140]  hash_sendpage+0x8ef/0xdf0
[  392.279256][T12140]  sock_sendpage+0x1e1/0x2c0
[  392.279256][T12140]  pipe_to_sendpage+0x38c/0x4c0
[  392.279256][T12140]  __splice_from_pipe+0x565/0xf00
[  392.279256][T12140]  generic_splice_sendpage+0x1d5/0x2d0
[  392.279256][T12140]  direct_splice_actor+0x1fd/0x580
[  392.279256][T12140]  splice_direct_to_actor+0x6b2/0xf50
[  392.279256][T12140]  do_splice_direct+0x342/0x580
[  392.279256][T12140]  do_sendfile+0x101b/0x1d40
[  392.279256][T12140]  __se_sys_sendfile64+0x2bb/0x360
[  392.279256][T12140]  __x64_sys_sendfile64+0x56/0x70
[  392.279256][T12140]  do_syscall_64+0xb0/0x150
[  392.279256][T12140]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  392.279256][T12140] 
[  392.279256][T12140] Uninit was stored to memory at:
[  392.279256][T12140]  kmsan_internal_chain_origin+0xad/0x130
[  392.279256][T12140]  __msan_chain_origin+0x50/0x90
[  392.279256][T12140]  rmd256_transform+0x4373/0x4440
[  392.279256][T12140]  rmd256_update+0x343/0x4f0
[  392.279256][T12140]  crypto_shash_update+0x4e9/0x550
[  392.279256][T12140]  shash_async_update+0x113/0x1d0
[  392.279256][T12140]  hash_sendpage+0x8ef/0xdf0
[  392.279256][T12140]  sock_sendpage+0x1e1/0x2c0
[  392.279256][T12140]  pipe_to_sendpage+0x38c/0x4c0
[  392.279256][T12140]  __splice_from_pipe+0x565/0xf00
[  392.279256][T12140]  generic_splice_sendpage+0x1d5/0x2d0
[  392.279256][T12140]  direct_splice_actor+0x1fd/0x580
[  392.279256][T12140]  splice_direct_to_actor+0x6b2/0xf50
[  392.279256][T12140]  do_splice_direct+0x342/0x580
[  392.279256][T12140]  do_sendfile+0x101b/0x1d40
[  392.279256][T12140]  __se_sys_sendfile64+0x2bb/0x360
[  392.279256][T12140]  __x64_sys_sendfile64+0x56/0x70
[  392.279256][T12140]  do_syscall_64+0xb0/0x150
[  392.279256][T12140]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  392.279256][T12140] 
[  392.279256][T12140] Uninit was stored to memory at:
[  392.279256][T12140]  kmsan_internal_chain_origin+0xad/0x130
[  392.279256][T12140]  __msan_chain_origin+0x50/0x90
[  392.279256][T12140]  rmd256_transform+0x4373/0x4440
[  392.279256][T12140]  rmd256_update+0x343/0x4f0
[  392.279256][T12140]  crypto_shash_update+0x4e9/0x550
[  392.279256][T12140]  shash_async_update+0x113/0x1d0
[  392.279256][T12140]  hash_sendpage+0x8ef/0xdf0
[  392.279256][T12140]  sock_sendpage+0x1e1/0x2c0
[  392.279256][T12140]  pipe_to_sendpage+0x38c/0x4c0
[  392.279256][T12140]  __splice_from_pipe+0x565/0xf00
[  392.279256][T12140]  generic_splice_sendpage+0x1d5/0x2d0
[  392.279256][T12140]  direct_splice_actor+0x1fd/0x580
[  392.279256][T12140]  splice_direct_to_actor+0x6b2/0xf50
[  392.279256][T12140]  do_splice_direct+0x342/0x580
[  392.279256][T12140]  do_sendfile+0x101b/0x1d40
[  392.279256][T12140]  __se_sys_sendfile64+0x2bb/0x360
[  392.279256][T12140]  __x64_sys_sendfile64+0x56/0x70
[  392.279256][T12140]  do_syscall_64+0xb0/0x150
[  392.279256][T12140]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  392.279256][T12140] 
[  392.279256][T12140] Uninit was stored to memory at:
[  392.279256][T12140]  kmsan_internal_chain_origin+0xad/0x130
[  392.279256][T12140]  __msan_chain_origin+0x50/0x90
[  392.279256][T12140]  rmd256_transform+0x4373/0x4440
[  392.279256][T12140]  rmd256_update+0x343/0x4f0
[  392.279256][T12140]  crypto_shash_update+0x4e9/0x550
[  392.279256][T12140]  shash_async_update+0x113/0x1d0
[  392.279256][T12140]  hash_sendpage+0x8ef/0xdf0
[  392.279256][T12140]  sock_sendpage+0x1e1/0x2c0
[  392.279256][T12140]  pipe_to_sendpage+0x38c/0x4c0
[  392.279256][T12140]  __splice_from_pipe+0x565/0xf00
[  392.279256][T12140]  generic_splice_sendpage+0x1d5/0x2d0
[  392.279256][T12140]  direct_splice_actor+0x1fd/0x580
[  392.279256][T12140]  splice_direct_to_actor+0x6b2/0xf50
[  392.279256][T12140]  do_splice_direct+0x342/0x580
[  392.279256][T12140]  do_sendfile+0x101b/0x1d40
[  392.279256][T12140]  __se_sys_sendfile64+0x2bb/0x360
[  392.279256][T12140]  __x64_sys_sendfile64+0x56/0x70
[  392.279256][T12140]  do_syscall_64+0xb0/0x150
[  392.279256][T12140]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  392.279256][T12140] 
[  392.279256][T12140] Uninit was stored to memory at:
[  392.279256][T12140]  kmsan_internal_chain_origin+0xad/0x130
[  392.279256][T12140]  __msan_chain_origin+0x50/0x90
[  392.279256][T12140]  rmd256_transform+0x4373/0x4440
[  392.279256][T12140]  rmd256_update+0x343/0x4f0
[  392.279256][T12140]  crypto_shash_update+0x4e9/0x550
[  392.279256][T12140]  shash_async_update+0x113/0x1d0
[  392.279256][T12140]  hash_sendpage+0x8ef/0xdf0
[  392.279256][T12140]  sock_sendpage+0x1e1/0x2c0
[  392.279256][T12140]  pipe_to_sendpage+0x38c/0x4c0
[  392.279256][T12140]  __splice_from_pipe+0x565/0xf00
[  392.279256][T12140]  generic_splice_sendpage+0x1d5/0x2d0
[  392.279256][T12140]  direct_splice_actor+0x1fd/0x580
[  392.279256][T12140]  splice_direct_to_actor+0x6b2/0xf50
[  392.279256][T12140]  do_splice_direct+0x342/0x580
[  392.279256][T12140]  do_sendfile+0x101b/0x1d40
[  392.279256][T12140]  __se_sys_sendfile64+0x2bb/0x360
[  392.279256][T12140]  __x64_sys_sendfile64+0x56/0x70
[  392.279256][T12140]  do_syscall_64+0xb0/0x150
[  392.279256][T12140]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  392.279256][T12140] 
[  392.279256][T12140] Uninit was stored to memory at:
[  392.279256][T12140]  kmsan_internal_chain_origin+0xad/0x130
[  392.279256][T12140]  __msan_chain_origin+0x50/0x90
[  392.279256][T12140]  rmd256_transform+0x4373/0x4440
[  392.279256][T12140]  rmd256_update+0x227/0x4f0
[  392.279256][T12140]  crypto_shash_update+0x4e9/0x550
[  392.279256][T12140]  shash_async_update+0x113/0x1d0
[  392.279256][T12140]  hash_sendpage+0x8ef/0xdf0
[  392.279256][T12140]  sock_sendpage+0x1e1/0x2c0
[  392.279256][T12140]  pipe_to_sendpage+0x38c/0x4c0
[  392.279256][T12140]  __splice_from_pipe+0x565/0xf00
[  392.279256][T12140]  generic_splice_sendpage+0x1d5/0x2d0
[  392.279256][T12140]  direct_splice_actor+0x1fd/0x580
[  392.279256][T12140]  splice_direct_to_actor+0x6b2/0xf50
[  392.279256][T12140]  do_splice_direct+0x342/0x580
[  392.279256][T12140]  do_sendfile+0x101b/0x1d40
[  392.279256][T12140]  __se_sys_sendfile64+0x2bb/0x360
[  392.279256][T12140]  __x64_sys_sendfile64+0x56/0x70
[  392.279256][T12140]  do_syscall_64+0xb0/0x150
[  392.279256][T12140]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  392.279256][T12140] 
[  392.279256][T12140] Uninit was stored to memory at:
[  392.279256][T12140]  kmsan_internal_chain_origin+0xad/0x130
[  392.279256][T12140]  kmsan_memcpy_memmove_metadata+0x272/0x2e0
[  392.279256][T12140]  kmsan_memcpy_metadata+0xb/0x10
[  392.279256][T12140]  __msan_memcpy+0x43/0x50
[  392.279256][T12140]  rmd256_update+0x1fc/0x4f0
[  392.279256][T12140]  crypto_shash_update+0x4e9/0x550
[  392.279256][T12140]  shash_async_update+0x113/0x1d0
[  392.279256][T12140]  hash_sendpage+0x8ef/0xdf0
[  392.279256][T12140]  sock_sendpage+0x1e1/0x2c0
[  392.279256][T12140]  pipe_to_sendpage+0x38c/0x4c0
[  392.279256][T12140]  __splice_from_pipe+0x565/0xf00
[  392.279256][T12140]  generic_splice_sendpage+0x1d5/0x2d0
[  392.279256][T12140]  direct_splice_actor+0x1fd/0x580
[  392.279256][T12140]  splice_direct_to_actor+0x6b2/0xf50
[  392.279256][T12140]  do_splice_direct+0x342/0x580
[  392.279256][T12140]  do_sendfile+0x101b/0x1d40
[  392.279256][T12140]  __se_sys_sendfile64+0x2bb/0x360
[  392.279256][T12140]  __x64_sys_sendfile64+0x56/0x70
[  392.279256][T12140]  do_syscall_64+0xb0/0x150
[  392.279256][T12140]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  392.279256][T12140] 
[  392.279256][T12140] Uninit was created at:
[  392.279256][T12140]  kmsan_save_stack_with_flags+0x3c/0x90
[  392.279256][T12140]  kmsan_alloc_page+0xb9/0x180
[  392.279256][T12140]  __alloc_pages_nodemask+0x56a2/0x5dc0
[  392.279256][T12140]  alloc_pages_current+0x672/0x990
[  392.279256][T12140]  push_pipe+0x605/0xb70
[  392.279256][T12140]  iov_iter_get_pages_alloc+0x18a9/0x21c0
[  392.279256][T12140]  do_splice_to+0x4fc/0x14f0
[  392.279256][T12140]  splice_direct_to_actor+0x45c/0xf50
[  392.279256][T12140]  do_splice_direct+0x342/0x580
[  392.279256][T12140]  do_sendfile+0x101b/0x1d40
[  392.279256][T12140]  __se_sys_sendfile64+0x2bb/0x360
[  392.279256][T12140]  __x64_sys_sendfile64+0x56/0x70
[  392.279256][T12140]  do_syscall_64+0xb0/0x150
[  392.279256][T12140]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  393.464265][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
20:08:05 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=@newlink={0x48, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_AF_SPEC={0xc, 0x1a, 0x0, 0x1, [@AF_INET={0x67, 0x2, 0x0, 0x1, {0x4}}]}, @IFLA_GROUP={0x8}, @IFLA_IFNAME={0x14, 0x3, 'bridge_slave_0\x00'}]}, 0x48}}, 0x0)

20:08:07 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

20:08:07 executing program 3:
r0 = gettid()
ptrace$setopts(0x4206, r0, 0x0, 0x0)
tkill(r0, 0x40)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)
r1 = gettid()
ptrace$setopts(0x4206, r1, 0x0, 0x0)
tkill(r1, 0x40)
ptrace$setregs(0xd, r1, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r1, 0x0, 0x0)
r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
openat$cgroup_ro(r2, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
ioctl$TIOCGSID(r2, 0x5429, &(0x7f0000000000)=<r3=>0x0)
prlimit64(r3, 0x4, 0x0, 0x0)

20:08:07 executing program 5:
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x8, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x6e}, [@ldst={0x2, 0x0, 0x3, 0xa, 0x0, 0xff02}]}, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f2, 0x10, &(0x7f0000000000), 0xfffffe51}, 0x48)

20:08:07 executing program 2:
r0 = socket$inet6(0xa, 0x200000000003, 0x87)
connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @dev, 0x6}, 0x1c)
sendmsg(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000014c0)=[{&(0x7f00000004c0)="d2e6e5bdf62ea8fa95935fbada0f2e600b9b7e5bb7a62806db30ee344d1b4bd85a6e562c75298e91fc46d3f3b2076872eac0000000002cf31b301135752802cef6a09bb9b302790adb2d6bf96af67582c855bfa485ef2960d3651a4ffe1966ac8802b03eb4438d82fc4d", 0x6a}, {&(0x7f0000000140)="b2a64dec2b1dfbef31af2fe1278053db9542d8968387f9a729f2bf2d1089120f8f59855f6238681e306a461ecf5d0a598f46f4a80547d49d96251e67bd15e3e1f06ee7de0610e1d286263817f0f0f088125a66ab825cc127fbc387a47323f9d54832d4e6ff55923b7a13f64aaddb6dba6a97002d36fa91114de3c5713ddeac750e1d00b25951e2c512e0ffe7b348206b159e00ed7a0ef091bfa021b4110f63ab73ea2f8f", 0xa4}, {&(0x7f0000000300)="ea208626b121abc07c9794b7142a765c14df21cafe34cfc7ecf33b5eb87a4db40df258c9b49949a03a5351277b4e83f7c79b8bf03db9b333b58bbc255b6a125c19f6207e70", 0x45}, {&(0x7f0000001540)="742d9d028feb561502b8bc03676a6177fe3132466448c444e2dd7791ad9bd24123f434a4cf25364b6af5d589397792caaffabd65f6791c648fa455ca071bfa776d81a365fa7cad6c199ab7feb3bd78f8450a4be4c404a56a8010529449c6244a5eb15fb1bae6d19ef9562c59657888900d44795ca929d2a64998329281e52afb0861bf110952d3b4d687849a306fbbdff5452232b3241cd81d81e5c7b54bc5929a74594161efbc49bf8e2a7456d830e24a3f78557b1a11109d614c4feca8a2ab752a0cedca1884814846a61a735b5e820a638815cf3f3d9857727d76565b6911a41e3c7f60d9d256767d87d7bd185310da08e1988fa6ca475a3758e975b4d7682af385d852e8184cba5b1f0778cf46f3a9d5393980eaa3fd3d0993edf19bb75039b238e22a095d7409fd2950ec1bf2ffb74b82c6a13bd8bfb27417ea27079368a1fb12215c9d9bf7bd459f83a9b55eefb9a4e3af1152f4abd55e0ddf00d61052c55ed06245f39f61ea00b35de68af6c9fc05fe4bddd8e1c1cfa9860e81e6cb63264f1d10df31237acf3c5860a30af73a8a62e61f7441bbf1e440cea26a8d79146f3c3aca38fbf8b96f439f4d84ca2fa782085b374772d18ed0e6c7416446c9b8f4a4a624d7d8db390c61e9f1c210a278f3a7fff2ec20aac0fb5c3cf1c84fc919eda263b64ccad04ee63b37efb43507df20c21eefd8b1bc9868567c6f8a0539be267809ce139d975b06fa580cfa841883dc152314cdf92e026d4182d129238fc38b3e8c4d63f747b8dc5ed39122c162a4447411f15c77be6a6761c7dde936bb2d520872fe142433a05b3e6455a3db3b49f45e206d8c6efab5eeddc310c23895d31d56a7729b6768f6649262754a614e0e83f8a535aa0938813f629261f9b9cc19bd31aacd7114244cb6a532bf8514b07b5ee4b41489fc95b31e24065f7b9d8165bc2ec7e19b21aed48c9c3e815fe385bf1fba20ffcfdd6579cac2d7e913a9148e58e1ba161e1911cbe4fd402db9ecd7d6fd6e014f4eaa7e24d23ff36ad6ed0baad9b3b90844c0d480487ff66d60842fbf5f10d517da68a3edd0cc02ed3a79c7a153790380de94fb7b2792cad348bae883fd9ecd84e924ad35bd524a45b59d2f8dade802ed2c517b7749135cf62d88a59a2614535b8da1909e2b5ad52aed8cd207c280f471cb2fce35e7ef3884f63d46963533a101a4de6b8dd7b328d90a7a43653c79367256a4bbb5110ee53cdf082b3ea8568f285d3f64a5fff77f531002b287c1bcdad03f077e417f68b27f7cebb8836440f74b094ad3d6c0ce8f5ac6197d5276700610b125f453f8bea8b015da8d3a0a9fded9348fcd8333997c3f576f354b1ef01c66f26e3f4f7a7e1fbe7309721193562d98eeffdae0746a0bc2138550fe251a7fe18071244e602a9f9675ce27960cc0d22d4a00b2b8c0162261fada999ffc99db0d12d32212306f1986b769204aaaafb14af3b022cb62eed42e1a1173dd28a3c3a55dc45eb996a6440d5558152335acdbef0ed71276d385052546f7a1933d89caa0265ef077da6349895ff4", 0x44e}], 0x4}, 0x4008042)
sendmsg(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000100)="0002af19", 0x4}], 0x1}, 0x0)

20:08:07 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=@newlink={0x48, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_AF_SPEC={0xc, 0x1a, 0x0, 0x1, [@AF_INET={0x67, 0x2, 0x0, 0x1, {0x4}}]}, @IFLA_GROUP={0x8}, @IFLA_IFNAME={0x14, 0x3, 'bridge_slave_0\x00'}]}, 0x48}}, 0x0)

20:08:07 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/netstat\x00')
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
openat$cgroup_ro(r3, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
ioctl$KDSIGACCEPT(r3, 0x4b4e, 0x2f)
sendfile(r1, r2, 0x0, 0x1000007ffff000)
r4 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt(r4, 0x800000010d, 0x2, &(0x7f0000000240)='\x00\x00\x00\x00\x00', 0x5)
getsockopt$inet_int(r4, 0x10d, 0x2, 0x0, &(0x7f0000000180)=0x2b)
setxattr$security_capability(&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='security.capability\x00', &(0x7f0000000340)=@v2={0x2000000, [{0x6, 0x2}, {0x2}]}, 0x14, 0x1)
getsockopt$inet_IP_XFRM_POLICY(r4, 0x0, 0x11, &(0x7f00000000c0)={{{@in6=@private1, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}}, {{@in6=@ipv4={[], [], @private}}, 0x0, @in6=@loopback}}, &(0x7f00000001c0)=0xe8)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r2, 0x89f2, &(0x7f00000002c0)={'syztnl1\x00', &(0x7f0000000200)={'syztnl0\x00', r5, 0x29, 0x20, 0x1, 0x7fb, 0x10, @private0={0xfc, 0x0, [], 0x1}, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x68, 0x40, 0x0, 0x1}})

20:08:07 executing program 2:
r0 = socket$inet6(0xa, 0x200000000003, 0x87)
connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @dev, 0x6}, 0x1c)
sendmsg(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000014c0)=[{&(0x7f00000004c0)="d2e6e5bdf62ea8fa95935fbada0f2e600b9b7e5bb7a62806db30ee344d1b4bd85a6e562c75298e91fc46d3f3b2076872eac0000000002cf31b301135752802cef6a09bb9b302790adb2d6bf96af67582c855bfa485ef2960d3651a4ffe1966ac8802b03eb4438d82fc4d", 0x6a}, {&(0x7f0000000140)="b2a64dec2b1dfbef31af2fe1278053db9542d8968387f9a729f2bf2d1089120f8f59855f6238681e306a461ecf5d0a598f46f4a80547d49d96251e67bd15e3e1f06ee7de0610e1d286263817f0f0f088125a66ab825cc127fbc387a47323f9d54832d4e6ff55923b7a13f64aaddb6dba6a97002d36fa91114de3c5713ddeac750e1d00b25951e2c512e0ffe7b348206b159e00ed7a0ef091bfa021b4110f63ab73ea2f8f", 0xa4}, {&(0x7f0000000300)="ea208626b121abc07c9794b7142a765c14df21cafe34cfc7ecf33b5eb87a4db40df258c9b49949a03a5351277b4e83f7c79b8bf03db9b333b58bbc255b6a125c19f6207e70", 0x45}, {&(0x7f0000001540)="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", 0x44e}], 0x4}, 0x4008042)
sendmsg(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000100)="0002af19", 0x4}], 0x1}, 0x0)

20:08:07 executing program 3:
prlimit64(0x0, 0x10, 0x0, 0x0)
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
openat$dlm_plock(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dlm_plock\x00', 0xb2c01, 0x0)
r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000008c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="000426bd7000fedbdf250d000000080034", @ANYRES32=0x0, @ANYBLOB="e0f0fdcb69a067053b14d7a44ca9ff6dedc9d15f7745c5298ff283c1edd156d0beaa2059b57c0366b4ef51f4f58652ef0dbdde68cd9d7f6a7ddbcbe278a8"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2400c004)
r3 = openat$cgroup_ro(r1, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r3, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x14, r2, 0x712, 0x70bd26, 0x25dfdc00}, 0x14}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
openat$cgroup_ro(r3, &(0x7f0000000080)='memory.stat\x00', 0x0, 0x0)
getsockopt$bt_BT_FLUSHABLE(r0, 0x112, 0x8, &(0x7f0000000000)=0xd9ca, &(0x7f0000000040)=0x4)
r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
openat$cgroup_ro(r4, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)

20:08:07 executing program 5:
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x8, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x6e}, [@ldst={0x2, 0x0, 0x3, 0xa, 0x0, 0xff02}]}, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f2, 0x10, &(0x7f0000000000), 0xfffffe51}, 0x48)

20:08:07 executing program 4:
r0 = socket$inet6(0xa, 0x200000000003, 0x87)
connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @dev, 0x6}, 0x1c)
sendmsg(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000014c0)=[{&(0x7f00000004c0)="d2e6e5bdf62ea8fa95935fbada0f2e600b9b7e5bb7a62806db30ee344d1b4bd85a6e562c75298e91fc46d3f3b2076872eac0000000002cf31b301135752802cef6a09bb9b302790adb2d6bf96af67582c855bfa485ef2960d3651a4ffe1966ac8802b03eb4438d82fc4d", 0x6a}, {&(0x7f0000000140)="b2a64dec2b1dfbef31af2fe1278053db9542d8968387f9a729f2bf2d1089120f8f59855f6238681e306a461ecf5d0a598f46f4a80547d49d96251e67bd15e3e1f06ee7de0610e1d286263817f0f0f088125a66ab825cc127fbc387a47323f9d54832d4e6ff55923b7a13f64aaddb6dba6a97002d36fa91114de3c5713ddeac750e1d00b25951e2c512e0ffe7b348206b159e00ed7a0ef091bfa021b4110f63ab73ea2f8f", 0xa4}, {&(0x7f0000000300)="ea208626b121abc07c9794b7142a765c14df21cafe34cfc7ecf33b5eb87a4db40df258c9b49949a03a5351277b4e83f7c79b8bf03db9b333b58bbc255b6a125c19f6207e70", 0x45}, {&(0x7f0000001540)="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", 0x44e}], 0x4}, 0x4008042)
sendmsg(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000100)="0002af19", 0x4}], 0x1}, 0x0)

20:08:07 executing program 3:
r0 = gettid()
ptrace$setopts(0x4206, r0, 0x0, 0x0)
tkill(r0, 0x40)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)
r1 = gettid()
ptrace$setopts(0x4206, r1, 0x0, 0x0)
tkill(r1, 0x40)
ptrace$setregs(0xd, r1, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r1, 0x0, 0x0)
prlimit64(r1, 0x10, 0x0, 0x0)

20:08:08 executing program 2:
r0 = socket$inet6(0xa, 0x200000000003, 0x87)
connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @dev, 0x6}, 0x1c)
sendmsg(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000014c0)=[{&(0x7f00000004c0)="d2e6e5bdf62ea8fa95935fbada0f2e600b9b7e5bb7a62806db30ee344d1b4bd85a6e562c75298e91fc46d3f3b2076872eac0000000002cf31b301135752802cef6a09bb9b302790adb2d6bf96af67582c855bfa485ef2960d3651a4ffe1966ac8802b03eb4438d82fc4d", 0x6a}, {&(0x7f0000000140)="b2a64dec2b1dfbef31af2fe1278053db9542d8968387f9a729f2bf2d1089120f8f59855f6238681e306a461ecf5d0a598f46f4a80547d49d96251e67bd15e3e1f06ee7de0610e1d286263817f0f0f088125a66ab825cc127fbc387a47323f9d54832d4e6ff55923b7a13f64aaddb6dba6a97002d36fa91114de3c5713ddeac750e1d00b25951e2c512e0ffe7b348206b159e00ed7a0ef091bfa021b4110f63ab73ea2f8f", 0xa4}, {&(0x7f0000000300)="ea208626b121abc07c9794b7142a765c14df21cafe34cfc7ecf33b5eb87a4db40df258c9b49949a03a5351277b4e83f7c79b8bf03db9b333b58bbc255b6a125c19f6207e70", 0x45}, {&(0x7f0000001540)="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", 0x44e}], 0x4}, 0x4008042)
sendmsg(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000100)="0002af19", 0x4}], 0x1}, 0x0)

20:08:08 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r2 = accept4(r1, 0x0, 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r2, r3, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r3, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

20:08:08 executing program 5:
r0 = socket(0x11, 0x800000003, 0x0)
r1 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000600)={'team0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x8c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb, 0x1, 'taprio\x00'}, {0x5c, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0xd, [0x0, 0x0, 0x0, 0xfd]}}]}}]}, 0x8c}}, 0x0)

20:08:08 executing program 4:
r0 = socket$inet6(0xa, 0x200000000003, 0x87)
connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @dev, 0x6}, 0x1c)
sendmsg(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000014c0)=[{&(0x7f00000004c0)="d2e6e5bdf62ea8fa95935fbada0f2e600b9b7e5bb7a62806db30ee344d1b4bd85a6e562c75298e91fc46d3f3b2076872eac0000000002cf31b301135752802cef6a09bb9b302790adb2d6bf96af67582c855bfa485ef2960d3651a4ffe1966ac8802b03eb4438d82fc4d", 0x6a}, {&(0x7f0000000140)="b2a64dec2b1dfbef31af2fe1278053db9542d8968387f9a729f2bf2d1089120f8f59855f6238681e306a461ecf5d0a598f46f4a80547d49d96251e67bd15e3e1f06ee7de0610e1d286263817f0f0f088125a66ab825cc127fbc387a47323f9d54832d4e6ff55923b7a13f64aaddb6dba6a97002d36fa91114de3c5713ddeac750e1d00b25951e2c512e0ffe7b348206b159e00ed7a0ef091bfa021b4110f63ab73ea2f8f", 0xa4}, {&(0x7f0000000300)="ea208626b121abc07c9794b7142a765c14df21cafe34cfc7ecf33b5eb87a4db40df258c9b49949a03a5351277b4e83f7c79b8bf03db9b333b58bbc255b6a125c19f6207e70", 0x45}, {&(0x7f0000001540)="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", 0x44e}], 0x4}, 0x4008042)
sendmsg(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000100)="0002af19", 0x4}], 0x1}, 0x0)

20:08:08 executing program 3:
prlimit64(0x0, 0x10, 0x0, 0x0)
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
openat$cgroup_ro(r0, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TEMPO(r0, 0xc02c5341, &(0x7f0000000000))
r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
openat$cgroup_ro(r2, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
ioctl$TIOCEXCL(r2, 0x540c)
openat$cgroup_ro(r1, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
getsockopt$netlink(r1, 0x10e, 0x5, &(0x7f0000000180)=""/4096, &(0x7f0000000080)=0x1000)

20:08:08 executing program 2:
r0 = socket$inet6(0xa, 0x200000000003, 0x87)
connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @dev, 0x6}, 0x1c)
sendmsg(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000014c0)=[{&(0x7f00000004c0)="d2e6e5bdf62ea8fa95935fbada0f2e600b9b7e5bb7a62806db30ee344d1b4bd85a6e562c75298e91fc46d3f3b2076872eac0000000002cf31b301135752802cef6a09bb9b302790adb2d6bf96af67582c855bfa485ef2960d3651a4ffe1966ac8802b03eb4438d82fc4d", 0x6a}, {&(0x7f0000000140)="b2a64dec2b1dfbef31af2fe1278053db9542d8968387f9a729f2bf2d1089120f8f59855f6238681e306a461ecf5d0a598f46f4a80547d49d96251e67bd15e3e1f06ee7de0610e1d286263817f0f0f088125a66ab825cc127fbc387a47323f9d54832d4e6ff55923b7a13f64aaddb6dba6a97002d36fa91114de3c5713ddeac750e1d00b25951e2c512e0ffe7b348206b159e00ed7a0ef091bfa021b4110f63ab73ea2f8f", 0xa4}, {&(0x7f0000000300)="ea208626b121abc07c9794b7142a765c14df21cafe34cfc7ecf33b5eb87a4db40df258c9b49949a03a5351277b4e83f7c79b8bf03db9b333b58bbc255b6a125c19f6207e70", 0x45}, {&(0x7f0000001540)="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", 0x44e}], 0x4}, 0x4008042)
sendmsg(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000100)="0002af19", 0x4}], 0x1}, 0x0)

20:08:08 executing program 4:
r0 = socket$inet6(0xa, 0x200000000003, 0x87)
connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @dev, 0x6}, 0x1c)
sendmsg(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000014c0)=[{&(0x7f00000004c0)="d2e6e5bdf62ea8fa95935fbada0f2e600b9b7e5bb7a62806db30ee344d1b4bd85a6e562c75298e91fc46d3f3b2076872eac0000000002cf31b301135752802cef6a09bb9b302790adb2d6bf96af67582c855bfa485ef2960d3651a4ffe1966ac8802b03eb4438d82fc4d", 0x6a}, {&(0x7f0000000140)="b2a64dec2b1dfbef31af2fe1278053db9542d8968387f9a729f2bf2d1089120f8f59855f6238681e306a461ecf5d0a598f46f4a80547d49d96251e67bd15e3e1f06ee7de0610e1d286263817f0f0f088125a66ab825cc127fbc387a47323f9d54832d4e6ff55923b7a13f64aaddb6dba6a97002d36fa91114de3c5713ddeac750e1d00b25951e2c512e0ffe7b348206b159e00ed7a0ef091bfa021b4110f63ab73ea2f8f", 0xa4}, {&(0x7f0000000300)="ea208626b121abc07c9794b7142a765c14df21cafe34cfc7ecf33b5eb87a4db40df258c9b49949a03a5351277b4e83f7c79b8bf03db9b333b58bbc255b6a125c19f6207e70", 0x45}, {&(0x7f0000001540)="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", 0x44e}], 0x4}, 0x4008042)
sendmsg(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000100)="0002af19", 0x4}], 0x1}, 0x0)

20:08:08 executing program 3:
prlimit64(0x0, 0x10, 0x0, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x800)

20:08:08 executing program 5:
r0 = socket(0x11, 0x800000003, 0x0)
r1 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000600)={'team0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x8c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb, 0x1, 'taprio\x00'}, {0x5c, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0xd, [0x0, 0x0, 0x0, 0xfd]}}]}}]}, 0x8c}}, 0x0)

[  396.729143][T12198] not chained 570000 origins
[  396.729259][T12198] CPU: 0 PID: 12198 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0
[  396.729259][T12198] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  396.729259][T12198] Call Trace:
[  396.754841][T12198]  dump_stack+0x1df/0x240
[  396.754841][T12198]  kmsan_internal_chain_origin+0x6f/0x130
[  396.754841][T12198]  ? is_module_text_address+0x4d/0x2a0
[  396.754841][T12198]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  396.754841][T12198]  ? __kernel_text_address+0x171/0x2d0
[  396.754841][T12198]  ? unwind_get_return_address+0x8c/0x130
[  396.754841][T12198]  ? entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  396.754841][T12198]  ? arch_stack_walk+0x2a2/0x3e0
[  396.754841][T12198]  ? stack_trace_save+0x1a0/0x1a0
[  396.754841][T12198]  ? kmsan_get_metadata+0x4f/0x180
[  396.754841][T12198]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  396.754841][T12198]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  396.754841][T12198]  ? stack_trace_save+0x123/0x1a0
[  396.754841][T12198]  ? kmsan_get_metadata+0x11d/0x180
[  396.754841][T12198]  __msan_chain_origin+0x50/0x90
[  396.754841][T12198]  rmd256_transform+0x4373/0x4440
[  396.754841][T12198]  rmd256_update+0x343/0x4f0
[  396.754841][T12198]  ? rmd256_init+0x260/0x260
[  396.754841][T12198]  crypto_shash_update+0x4e9/0x550
[  396.754841][T12198]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  396.754841][T12198]  ? crypto_hash_walk_first+0x1fd/0x360
[  396.754841][T12198]  ? kmsan_get_metadata+0x4f/0x180
[  396.754841][T12198]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  396.754841][T12198]  shash_async_update+0x113/0x1d0
[  396.754841][T12198]  ? shash_async_init+0x1e0/0x1e0
[  396.754841][T12198]  hash_sendpage+0x8ef/0xdf0
[  396.754841][T12198]  ? hash_recvmsg+0xd30/0xd30
[  396.754841][T12198]  sock_sendpage+0x1e1/0x2c0
[  396.754841][T12198]  pipe_to_sendpage+0x38c/0x4c0
[  396.754841][T12198]  ? sock_fasync+0x250/0x250
[  396.754841][T12198]  __splice_from_pipe+0x565/0xf00
[  396.754841][T12198]  ? generic_splice_sendpage+0x2d0/0x2d0
[  396.754841][T12198]  generic_splice_sendpage+0x1d5/0x2d0
[  396.754841][T12198]  ? iter_file_splice_write+0x1800/0x1800
[  396.754841][T12198]  direct_splice_actor+0x1fd/0x580
[  396.754841][T12198]  ? kmsan_get_metadata+0x4f/0x180
[  396.754841][T12198]  splice_direct_to_actor+0x6b2/0xf50
[  396.754841][T12198]  ? do_splice_direct+0x580/0x580
[  396.754841][T12198]  do_splice_direct+0x342/0x580
[  396.754841][T12198]  do_sendfile+0x101b/0x1d40
[  396.754841][T12198]  __se_sys_sendfile64+0x2bb/0x360
[  396.754841][T12198]  ? kmsan_get_metadata+0x4f/0x180
[  396.754841][T12198]  __x64_sys_sendfile64+0x56/0x70
[  396.754841][T12198]  do_syscall_64+0xb0/0x150
[  396.754841][T12198]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  396.754841][T12198] RIP: 0033:0x45c1d9
[  396.754841][T12198] Code: Bad RIP value.
[  396.754841][T12198] RSP: 002b:00007f42d54efc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  396.754841][T12198] RAX: ffffffffffffffda RBX: 0000000000025a00 RCX: 000000000045c1d9
[  396.754841][T12198] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000007
[  396.754841][T12198] RBP: 000000000078bf48 R08: 0000000000000000 R09: 0000000000000000
[  396.754841][T12198] R10: 001000007ffff000 R11: 0000000000000246 R12: 000000000078bf0c
[  396.754841][T12198] R13: 0000000000c9fb6f R14: 00007f42d54f09c0 R15: 000000000078bf0c
[  396.754841][T12198] Uninit was stored to memory at:
[  396.754841][T12198]  kmsan_internal_chain_origin+0xad/0x130
[  396.754841][T12198]  __msan_chain_origin+0x50/0x90
[  396.754841][T12198]  rmd256_transform+0x4373/0x4440
[  396.754841][T12198]  rmd256_update+0x343/0x4f0
[  396.754841][T12198]  crypto_shash_update+0x4e9/0x550
[  396.754841][T12198]  shash_async_update+0x113/0x1d0
[  396.754841][T12198]  hash_sendpage+0x8ef/0xdf0
[  396.754841][T12198]  sock_sendpage+0x1e1/0x2c0
[  396.754841][T12198]  pipe_to_sendpage+0x38c/0x4c0
[  396.754841][T12198]  __splice_from_pipe+0x565/0xf00
[  396.754841][T12198]  generic_splice_sendpage+0x1d5/0x2d0
[  396.754841][T12198]  direct_splice_actor+0x1fd/0x580
[  396.754841][T12198]  splice_direct_to_actor+0x6b2/0xf50
[  396.754841][T12198]  do_splice_direct+0x342/0x580
[  396.754841][T12198]  do_sendfile+0x101b/0x1d40
[  396.754841][T12198]  __se_sys_sendfile64+0x2bb/0x360
[  396.754841][T12198]  __x64_sys_sendfile64+0x56/0x70
[  396.754841][T12198]  do_syscall_64+0xb0/0x150
[  396.754841][T12198]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  396.754841][T12198] 
[  396.754841][T12198] Uninit was stored to memory at:
[  396.754841][T12198]  kmsan_internal_chain_origin+0xad/0x130
[  396.754841][T12198]  __msan_chain_origin+0x50/0x90
[  396.754841][T12198]  rmd256_transform+0x4373/0x4440
[  396.754841][T12198]  rmd256_update+0x343/0x4f0
[  396.754841][T12198]  crypto_shash_update+0x4e9/0x550
[  396.754841][T12198]  shash_async_update+0x113/0x1d0
[  396.754841][T12198]  hash_sendpage+0x8ef/0xdf0
[  396.754841][T12198]  sock_sendpage+0x1e1/0x2c0
[  396.754841][T12198]  pipe_to_sendpage+0x38c/0x4c0
[  396.754841][T12198]  __splice_from_pipe+0x565/0xf00
[  396.754841][T12198]  generic_splice_sendpage+0x1d5/0x2d0
[  396.754841][T12198]  direct_splice_actor+0x1fd/0x580
[  396.754841][T12198]  splice_direct_to_actor+0x6b2/0xf50
[  396.754841][T12198]  do_splice_direct+0x342/0x580
[  396.754841][T12198]  do_sendfile+0x101b/0x1d40
[  396.754841][T12198]  __se_sys_sendfile64+0x2bb/0x360
[  396.754841][T12198]  __x64_sys_sendfile64+0x56/0x70
[  396.754841][T12198]  do_syscall_64+0xb0/0x150
[  396.754841][T12198]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  396.754841][T12198] 
[  396.754841][T12198] Uninit was stored to memory at:
[  396.754841][T12198]  kmsan_internal_chain_origin+0xad/0x130
[  396.754841][T12198]  __msan_chain_origin+0x50/0x90
[  396.754841][T12198]  rmd256_transform+0x4373/0x4440
[  396.754841][T12198]  rmd256_update+0x343/0x4f0
[  396.754841][T12198]  crypto_shash_update+0x4e9/0x550
[  396.754841][T12198]  shash_async_update+0x113/0x1d0
[  396.754841][T12198]  hash_sendpage+0x8ef/0xdf0
[  396.754841][T12198]  sock_sendpage+0x1e1/0x2c0
[  396.754841][T12198]  pipe_to_sendpage+0x38c/0x4c0
[  396.754841][T12198]  __splice_from_pipe+0x565/0xf00
[  396.754841][T12198]  generic_splice_sendpage+0x1d5/0x2d0
[  396.754841][T12198]  direct_splice_actor+0x1fd/0x580
[  396.754841][T12198]  splice_direct_to_actor+0x6b2/0xf50
[  396.754841][T12198]  do_splice_direct+0x342/0x580
[  396.754841][T12198]  do_sendfile+0x101b/0x1d40
[  396.754841][T12198]  __se_sys_sendfile64+0x2bb/0x360
[  396.754841][T12198]  __x64_sys_sendfile64+0x56/0x70
[  396.754841][T12198]  do_syscall_64+0xb0/0x150
[  396.754841][T12198]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  396.754841][T12198] 
[  396.754841][T12198] Uninit was stored to memory at:
[  396.754841][T12198]  kmsan_internal_chain_origin+0xad/0x130
[  396.754841][T12198]  __msan_chain_origin+0x50/0x90
[  396.754841][T12198]  rmd256_transform+0x4373/0x4440
[  396.754841][T12198]  rmd256_update+0x343/0x4f0
[  396.754841][T12198]  crypto_shash_update+0x4e9/0x550
[  396.754841][T12198]  shash_async_update+0x113/0x1d0
[  396.754841][T12198]  hash_sendpage+0x8ef/0xdf0
[  396.754841][T12198]  sock_sendpage+0x1e1/0x2c0
[  396.754841][T12198]  pipe_to_sendpage+0x38c/0x4c0
[  396.754841][T12198]  __splice_from_pipe+0x565/0xf00
[  396.754841][T12198]  generic_splice_sendpage+0x1d5/0x2d0
[  396.754841][T12198]  direct_splice_actor+0x1fd/0x580
[  396.754841][T12198]  splice_direct_to_actor+0x6b2/0xf50
[  396.754841][T12198]  do_splice_direct+0x342/0x580
[  396.754841][T12198]  do_sendfile+0x101b/0x1d40
[  396.754841][T12198]  __se_sys_sendfile64+0x2bb/0x360
[  396.754841][T12198]  __x64_sys_sendfile64+0x56/0x70
[  396.754841][T12198]  do_syscall_64+0xb0/0x150
[  396.754841][T12198]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  396.754841][T12198] 
[  396.754841][T12198] Uninit was stored to memory at:
[  396.754841][T12198]  kmsan_internal_chain_origin+0xad/0x130
[  396.754841][T12198]  __msan_chain_origin+0x50/0x90
[  396.754841][T12198]  rmd256_transform+0x4373/0x4440
[  396.754841][T12198]  rmd256_update+0x343/0x4f0
[  396.754841][T12198]  crypto_shash_update+0x4e9/0x550
[  396.754841][T12198]  shash_async_update+0x113/0x1d0
[  396.754841][T12198]  hash_sendpage+0x8ef/0xdf0
[  396.754841][T12198]  sock_sendpage+0x1e1/0x2c0
[  396.754841][T12198]  pipe_to_sendpage+0x38c/0x4c0
[  396.754841][T12198]  __splice_from_pipe+0x565/0xf00
[  396.754841][T12198]  generic_splice_sendpage+0x1d5/0x2d0
[  396.754841][T12198]  direct_splice_actor+0x1fd/0x580
[  396.754841][T12198]  splice_direct_to_actor+0x6b2/0xf50
[  396.754841][T12198]  do_splice_direct+0x342/0x580
[  396.754841][T12198]  do_sendfile+0x101b/0x1d40
[  396.754841][T12198]  __se_sys_sendfile64+0x2bb/0x360
[  396.754841][T12198]  __x64_sys_sendfile64+0x56/0x70
[  396.754841][T12198]  do_syscall_64+0xb0/0x150
[  396.754841][T12198]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  396.754841][T12198] 
[  396.754841][T12198] Uninit was stored to memory at:
[  396.754841][T12198]  kmsan_internal_chain_origin+0xad/0x130
[  396.754841][T12198]  __msan_chain_origin+0x50/0x90
[  396.754841][T12198]  rmd256_transform+0x4373/0x4440
[  396.754841][T12198]  rmd256_update+0x227/0x4f0
[  396.754841][T12198]  crypto_shash_update+0x4e9/0x550
[  396.754841][T12198]  shash_async_update+0x113/0x1d0
[  396.754841][T12198]  hash_sendpage+0x8ef/0xdf0
[  396.754841][T12198]  sock_sendpage+0x1e1/0x2c0
[  396.754841][T12198]  pipe_to_sendpage+0x38c/0x4c0
[  396.754841][T12198]  __splice_from_pipe+0x565/0xf00
[  396.754841][T12198]  generic_splice_sendpage+0x1d5/0x2d0
[  396.754841][T12198]  direct_splice_actor+0x1fd/0x580
[  396.754841][T12198]  splice_direct_to_actor+0x6b2/0xf50
[  396.754841][T12198]  do_splice_direct+0x342/0x580
[  396.754841][T12198]  do_sendfile+0x101b/0x1d40
[  396.754841][T12198]  __se_sys_sendfile64+0x2bb/0x360
[  396.754841][T12198]  __x64_sys_sendfile64+0x56/0x70
[  396.754841][T12198]  do_syscall_64+0xb0/0x150
[  396.754841][T12198]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  396.754841][T12198] 
[  396.754841][T12198] Uninit was stored to memory at:
[  396.754841][T12198]  kmsan_internal_chain_origin+0xad/0x130
[  396.754841][T12198]  kmsan_memcpy_memmove_metadata+0x272/0x2e0
[  396.754841][T12198]  kmsan_memcpy_metadata+0xb/0x10
[  396.754841][T12198]  __msan_memcpy+0x43/0x50
[  396.754841][T12198]  rmd256_update+0x1fc/0x4f0
[  396.754841][T12198]  crypto_shash_update+0x4e9/0x550
[  396.754841][T12198]  shash_async_update+0x113/0x1d0
[  396.754841][T12198]  hash_sendpage+0x8ef/0xdf0
[  396.754841][T12198]  sock_sendpage+0x1e1/0x2c0
[  396.754841][T12198]  pipe_to_sendpage+0x38c/0x4c0
[  396.754841][T12198]  __splice_from_pipe+0x565/0xf00
[  396.754841][T12198]  generic_splice_sendpage+0x1d5/0x2d0
[  396.754841][T12198]  direct_splice_actor+0x1fd/0x580
[  396.754841][T12198]  splice_direct_to_actor+0x6b2/0xf50
[  396.754841][T12198]  do_splice_direct+0x342/0x580
[  396.754841][T12198]  do_sendfile+0x101b/0x1d40
[  396.754841][T12198]  __se_sys_sendfile64+0x2bb/0x360
[  396.754841][T12198]  __x64_sys_sendfile64+0x56/0x70
[  396.754841][T12198]  do_syscall_64+0xb0/0x150
[  396.754841][T12198]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  396.754841][T12198] 
[  396.754841][T12198] Uninit was created at:
[  396.754841][T12198]  kmsan_save_stack_with_flags+0x3c/0x90
[  396.754841][T12198]  kmsan_alloc_page+0xb9/0x180
[  396.754841][T12198]  __alloc_pages_nodemask+0x56a2/0x5dc0
[  396.754841][T12198]  alloc_pages_current+0x672/0x990
[  396.754841][T12198]  push_pipe+0x605/0xb70
[  396.754841][T12198]  iov_iter_get_pages_alloc+0x18a9/0x21c0
[  396.754841][T12198]  do_splice_to+0x4fc/0x14f0
[  396.754841][T12198]  splice_direct_to_actor+0x45c/0xf50
[  396.754841][T12198]  do_splice_direct+0x342/0x580
[  396.754841][T12198]  do_sendfile+0x101b/0x1d40
[  396.754841][T12198]  __se_sys_sendfile64+0x2bb/0x360
[  396.754841][T12198]  __x64_sys_sendfile64+0x56/0x70
[  396.754841][T12198]  do_syscall_64+0xb0/0x150
[  396.754841][T12198]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
20:08:10 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e35bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93981b20e03b86d4e999bbb53a7b0ee0ce30e80600cff8ca2996e518e3e69051f6d24317f9ebfeb82ee2469fb31bdbb2768d25f196ab6f2dc045421b94d878d0d9c2a5c74633a687a135308e49ce118c81517ac7bb2994cc008dd3deaafaab51144c1ef00f00001f5e73ff040000000000000000000000000000009a583b79ab00f70d85463c57c5bb1f1084e683b591fc2c8b8a38b7ee57afa01aea88fb413e1ee8ebbdf1fa9155bf6409b065a980528827de08737cf643db6de62f253b1304780753de6634bf57fbe09a7eb84cae7f000000886871080d1588bb30abcbfecb4e10d4067a02736f08914faa037346191241c88e57569256cd58ec82518bc8bac2ef0f6e8bfd9ad94599c3230328ddf749f6c754f2781bccc42e6ef592a1fc36a03c9a0328b63ed42db18137f243d01a67ea9fe8e34b25676f9816cdae263897bbb3aaa1148cb80e7aa12869a052b3ea1dfa17ce754e76f57ed0868864d66429bc1d9e8c430deeb6331c152d637740b4efbe95880a2f28902b3358519f08f638235a295a63eb1c8f9460ced7b22ceb4c2c5504a2012c2c8f47fd9152910bc908e41e38ba60cbdffefadbe92a7ed8ce577bdb383c2f625067eec438180f282d638ac72b92ec020d66863813f5ab6189075ebf22d92ecafe4eb1fb9c6b2b88eb965af65c3d0b179a43bcf1840dc8466796c04a4baa9f82bbd989477b56cda9e60dd7da5c5b437be2f2fcdd62a20b6ba534ed9dc198fc041c003bc1340d124062352ad8e3ce63546ded69d5fcaafcffed51ab1b1f4ff88615446fe96983cabf08c3e7ccc1d4e8bdf884347f6156d91f42060477bdf30abcb5e9b6705c5adc1cedd2e7d38fbdef12d569db367978805652eb6f5ccaa6b377839d2b7525417fe4a97300017f2410fc9448ab6c3b9fea9f2287e2a0b83beee2c77a6bb5c3cafea3a7a42f9b5324b98680e6ecf240abdeee92ecd6c972701c39c3e7a77d8dcd1ed368eaf557ad34b0c1cb8eec9c963001f3905cba6c67b6eab0fae90504e30dc799fe07128d711b61834f3d4cb2cb47745c15fae1a2b694fe5983471b336a0829abfd46e6b5f420d723608591b372bb"], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r2 = accept4(r1, 0x0, 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r2, r3, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r3, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

20:08:10 executing program 2:
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = socket(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f0000000000)=@broute={'broute\x00', 0x20, 0x1, 0x990, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e670000000000000000000000000000000000000000000000000000002008000000000000140400000c000000000000000a000000000000040000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000008fc7660c490587b3ab213098a6767c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000440a00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f18a0afe993500000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f4f016fa70c1255400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008c7f8f1b44f000000000feffffff00000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000009abde2255a00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e0ffffff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fffffff90000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f2573bd04a330000000e00000000000000000000000000000000000000e9ffffff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000cb33322c9c564ae5f8eef74ddaa7cc9c00000000000000000000000000000000000000000000000000000500000000000000000000000000000000000000003f7f1c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d3d2e85100000000000000000000000000000000000000000000000000000000006e666c6f670000001100000000000000000000000000000000000000000000005080000000000000000000000000000000010000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c7700"/2448]}, 0xa08)

[  397.962492][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
20:08:10 executing program 5:
r0 = socket(0x11, 0x800000003, 0x0)
r1 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000600)={'team0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x8c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb, 0x1, 'taprio\x00'}, {0x5c, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0xd, [0x0, 0x0, 0x0, 0xfd]}}]}}]}, 0x8c}}, 0x0)

20:08:10 executing program 3:
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
openat$cgroup_ro(r0, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
openat$proc_capi20(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/capi/capi20\x00', 0x1, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_KEY_STATUS(r0, 0xc080661a, &(0x7f0000000000)={{0x1, 0x0, @reserved="5997b96bf906dead2a5585169b94b2eb17329d72f4d80b19555e963cb969e982"}})
r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
openat$cgroup_ro(r1, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$AUDIT_LIST_RULES(r1, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x10, 0x3f5, 0x8, 0x70bd2d, 0x25dfdbfe, "", ["", "", "", "", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x4008045}, 0x800)

20:08:10 executing program 4:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x9}, 0x1c)
setsockopt$sock_linger(r0, 0x1, 0x3c, &(0x7f0000000180)={0x200000000000001}, 0x8)
sendmmsg(r0, &(0x7f0000004d80)=[{{0x0, 0x0, &(0x7f0000001500)=[{&(0x7f0000000040)="d3622fe131479cee20fb607a9585dc0b411519fd3b65066522d73df58b9257b566c6fc626776defc3a2e249c9120cab00220bc31d41e44f96f67971b8ed8a3dc9eb4123a903d58da02dd1eca653150422bc91e9585fb", 0x56}, {&(0x7f00000011c0)="7cc3be44ec866303c11f9ec49c2fe80d4ccef580f3bf717b5e129f1dc7766fdf864b7bc35924f34bb5fd1dd89172a4b0db90eea51bdfec78bb53e8d41773cba7f1305a8a40b7368445a71ef7870273f1544930baf73a8bfa6ece09d54376b821b65fdf1e0704f1f3c5a823fa67f635159af010053f5b909f8e944c43d6fb1c4fca639b470d3e6ad140d0838958ecf0fc98a780205474fdeb93a97d27b4f3314a9585129aaec893d7fe36d87fd746841ac5c60b31e1732a1a3ca0afcc4068cdde63b142700c563c1ab59dc0b7200723bf21c694583ed8fed1b2bc5c204df3812c223ce0de2f40b69e7f4e8ba1c3ebc31de2f4190e3f1ceb", 0xf7}, {&(0x7f00000012c0)}, {0x0, 0x9}, {&(0x7f0000001440)="7b18908bcd34b2f4eef2193c5f89bb79551b5d7000ccc31628374b03e7f0b8bbfe45", 0x22}], 0x5, 0x0, 0x0, 0xffffffe0}}], 0x1, 0x4000000)

20:08:10 executing program 5:
r0 = socket(0x11, 0x800000003, 0x0)
r1 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000600)={'team0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x8c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb, 0x1, 'taprio\x00'}, {0x5c, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0xd, [0x0, 0x0, 0x0, 0xfd]}}]}}]}, 0x8c}}, 0x0)

20:08:10 executing program 4:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x9}, 0x1c)
setsockopt$sock_linger(r0, 0x1, 0x3c, &(0x7f0000000180)={0x200000000000001}, 0x8)
sendmmsg(r0, &(0x7f0000004d80)=[{{0x0, 0x0, &(0x7f0000001500)=[{&(0x7f0000000040)="d3622fe131479cee20fb607a9585dc0b411519fd3b65066522d73df58b9257b566c6fc626776defc3a2e249c9120cab00220bc31d41e44f96f67971b8ed8a3dc9eb4123a903d58da02dd1eca653150422bc91e9585fb", 0x56}, {&(0x7f00000011c0)="7cc3be44ec866303c11f9ec49c2fe80d4ccef580f3bf717b5e129f1dc7766fdf864b7bc35924f34bb5fd1dd89172a4b0db90eea51bdfec78bb53e8d41773cba7f1305a8a40b7368445a71ef7870273f1544930baf73a8bfa6ece09d54376b821b65fdf1e0704f1f3c5a823fa67f635159af010053f5b909f8e944c43d6fb1c4fca639b470d3e6ad140d0838958ecf0fc98a780205474fdeb93a97d27b4f3314a9585129aaec893d7fe36d87fd746841ac5c60b31e1732a1a3ca0afcc4068cdde63b142700c563c1ab59dc0b7200723bf21c694583ed8fed1b2bc5c204df3812c223ce0de2f40b69e7f4e8ba1c3ebc31de2f4190e3f1ceb", 0xf7}, {&(0x7f00000012c0)}, {0x0, 0x9}, {&(0x7f0000001440)="7b18908bcd34b2f4eef2193c5f89bb79551b5d7000ccc31628374b03e7f0b8bbfe45", 0x22}], 0x5, 0x0, 0x0, 0xffffffe0}}], 0x1, 0x4000000)

20:08:10 executing program 3:
prlimit64(0x0, 0x16, 0x0, 0x0)

20:08:11 executing program 3:
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
openat$cgroup_ro(r0, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
ioctl$EVIOCGKEY(r0, 0x80404518, &(0x7f0000000000)=""/244)
prlimit64(0x0, 0x10, 0x0, 0x0)

20:08:11 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r2 = accept4(r1, 0x0, 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r2, r3, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r3, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

20:08:11 executing program 4:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x9}, 0x1c)
setsockopt$sock_linger(r0, 0x1, 0x3c, &(0x7f0000000180)={0x200000000000001}, 0x8)
sendmmsg(r0, &(0x7f0000004d80)=[{{0x0, 0x0, &(0x7f0000001500)=[{&(0x7f0000000040)="d3622fe131479cee20fb607a9585dc0b411519fd3b65066522d73df58b9257b566c6fc626776defc3a2e249c9120cab00220bc31d41e44f96f67971b8ed8a3dc9eb4123a903d58da02dd1eca653150422bc91e9585fb", 0x56}, {&(0x7f00000011c0)="7cc3be44ec866303c11f9ec49c2fe80d4ccef580f3bf717b5e129f1dc7766fdf864b7bc35924f34bb5fd1dd89172a4b0db90eea51bdfec78bb53e8d41773cba7f1305a8a40b7368445a71ef7870273f1544930baf73a8bfa6ece09d54376b821b65fdf1e0704f1f3c5a823fa67f635159af010053f5b909f8e944c43d6fb1c4fca639b470d3e6ad140d0838958ecf0fc98a780205474fdeb93a97d27b4f3314a9585129aaec893d7fe36d87fd746841ac5c60b31e1732a1a3ca0afcc4068cdde63b142700c563c1ab59dc0b7200723bf21c694583ed8fed1b2bc5c204df3812c223ce0de2f40b69e7f4e8ba1c3ebc31de2f4190e3f1ceb", 0xf7}, {&(0x7f00000012c0)}, {0x0, 0x9}, {&(0x7f0000001440)="7b18908bcd34b2f4eef2193c5f89bb79551b5d7000ccc31628374b03e7f0b8bbfe45", 0x22}], 0x5, 0x0, 0x0, 0xffffffe0}}], 0x1, 0x4000000)

20:08:11 executing program 5:
r0 = socket$unix(0x1, 0x2, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_int(r2, 0x1f00000000000000, 0xcc, &(0x7f0000000000), 0x3c)

20:08:11 executing program 4:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x9}, 0x1c)
setsockopt$sock_linger(r0, 0x1, 0x3c, &(0x7f0000000180)={0x200000000000001}, 0x8)
sendmmsg(r0, &(0x7f0000004d80)=[{{0x0, 0x0, &(0x7f0000001500)=[{&(0x7f0000000040)="d3622fe131479cee20fb607a9585dc0b411519fd3b65066522d73df58b9257b566c6fc626776defc3a2e249c9120cab00220bc31d41e44f96f67971b8ed8a3dc9eb4123a903d58da02dd1eca653150422bc91e9585fb", 0x56}, {&(0x7f00000011c0)="7cc3be44ec866303c11f9ec49c2fe80d4ccef580f3bf717b5e129f1dc7766fdf864b7bc35924f34bb5fd1dd89172a4b0db90eea51bdfec78bb53e8d41773cba7f1305a8a40b7368445a71ef7870273f1544930baf73a8bfa6ece09d54376b821b65fdf1e0704f1f3c5a823fa67f635159af010053f5b909f8e944c43d6fb1c4fca639b470d3e6ad140d0838958ecf0fc98a780205474fdeb93a97d27b4f3314a9585129aaec893d7fe36d87fd746841ac5c60b31e1732a1a3ca0afcc4068cdde63b142700c563c1ab59dc0b7200723bf21c694583ed8fed1b2bc5c204df3812c223ce0de2f40b69e7f4e8ba1c3ebc31de2f4190e3f1ceb", 0xf7}, {&(0x7f00000012c0)}, {0x0, 0x9}, {&(0x7f0000001440)="7b18908bcd34b2f4eef2193c5f89bb79551b5d7000ccc31628374b03e7f0b8bbfe45", 0x22}], 0x5, 0x0, 0x0, 0xffffffe0}}], 0x1, 0x4000000)

[  399.945665][T12244] ebt_among: dst integrity fail: 100
20:08:12 executing program 5:
r0 = socket$unix(0x1, 0x2, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_int(r2, 0x1f00000000000000, 0xcc, &(0x7f0000000000), 0x3c)

20:08:12 executing program 3:
prlimit64(0x0, 0x10, 0x0, 0x0)
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x501000, 0x0)
r1 = syz_open_dev$vcsu(&(0x7f0000000080)='/dev/vcsu#\x00', 0x3f, 0x591c82)
setsockopt$inet6_opts(r1, 0x29, 0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="5c00000300000000000000000000000000000000000000d51e6800fe80000000dfffffffffffffff0020aa"], 0x28)
ioctl$TCSETS2(r0, 0x402c542b, &(0x7f0000000040)={0x9, 0x8, 0xfb1a, 0xff, 0xac, "0163d9f81ddbf0cfb5612701a90bb0965cca1a", 0x5, 0x8})

20:08:12 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r1, 0x0, 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

20:08:12 executing program 2:
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = socket(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f0000000000)=@broute={'broute\x00', 0x20, 0x1, 0x990, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e670000000000000000000000000000000000000000000000000000002008000000000000140400000c000000000000000a000000000000040000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000008fc7660c490587b3ab213098a6767c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000440a00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f18a0afe993500000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f4f016fa70c1255400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008c7f8f1b44f000000000feffffff00000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000009abde2255a00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e0ffffff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fffffff90000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f2573bd04a330000000e00000000000000000000000000000000000000e9ffffff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000cb33322c9c564ae5f8eef74ddaa7cc9c00000000000000000000000000000000000000000000000000000500000000000000000000000000000000000000003f7f1c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d3d2e85100000000000000000000000000000000000000000000000000000000006e666c6f670000001100000000000000000000000000000000000000000000005080000000000000000000000000000000010000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c7700"/2448]}, 0xa08)

20:08:12 executing program 4:
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0xa0002, 0x0)
write$sndseq(r0, &(0x7f0000000080)=[{0x10081, 0x6, 0x0, 0x0, @time, {}, {}, @quote}], 0x1c)

20:08:12 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
openat$cgroup_ro(r2, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000200)='IPVS\x00')
sendmsg$IPVS_CMD_NEW_SERVICE(r3, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="1400000070f1fa2fdb397e2eb4faa0779de919a162776b066ce8ce95ecf5aa59ba9163a4d942", @ANYRES16=r4, @ANYBLOB="0101000000000000000001000000"], 0x14}}, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000200)='IPVS\x00')
sendmsg$IPVS_CMD_NEW_SERVICE(r5, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)={0x14, r6, 0x101}, 0x14}}, 0x0)
sendmsg$IPVS_CMD_DEL_SERVICE(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x24, r6, 0x8, 0x70bd2c, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x101}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x2400000}]}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x10)
sendmsg$IPVS_CMD_DEL_SERVICE(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000080)={0x24, r6, 0x800, 0x70bd2c, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x101}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x2400000}]}, 0x24}, 0x1, 0x0, 0x0, 0x840}, 0x10)
sendmsg$IPVS_CMD_GET_DEST(r2, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYBLOB='$\b\x00\x00', @ANYRES16=r4, @ANYBLOB="08002abd7000fcdbdf250800000008000600090000000800040012020000"], 0x24}, 0x1, 0x0, 0x0, 0x4000001}, 0x21)
r7 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r1, r7, 0x0, 0x1000007ffff000)

[  400.261326][T12252] not chained 580000 origins
[  400.265944][T12252] CPU: 0 PID: 12252 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0
[  400.269267][T12252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  400.269267][T12252] Call Trace:
[  400.269267][T12252]  dump_stack+0x1df/0x240
[  400.269267][T12252]  kmsan_internal_chain_origin+0x6f/0x130
[  400.269267][T12252]  ? is_module_text_address+0x4d/0x2a0
[  400.302518][T12252]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  400.302518][T12252]  ? __kernel_text_address+0x171/0x2d0
[  400.314337][T12252]  ? unwind_get_return_address+0x8c/0x130
[  400.314337][T12252]  ? entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  400.314337][T12252]  ? arch_stack_walk+0x2a2/0x3e0
[  400.314337][T12252]  ? stack_trace_save+0x1a0/0x1a0
[  400.314337][T12252]  ? kmsan_get_metadata+0x4f/0x180
[  400.314337][T12252]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  400.314337][T12252]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  400.314337][T12252]  ? stack_trace_save+0x123/0x1a0
[  400.314337][T12252]  ? kmsan_get_metadata+0x11d/0x180
[  400.314337][T12252]  __msan_chain_origin+0x50/0x90
[  400.314337][T12252]  rmd256_transform+0x4373/0x4440
[  400.314337][T12252]  rmd256_update+0x343/0x4f0
[  400.314337][T12252]  ? rmd256_init+0x260/0x260
[  400.314337][T12252]  crypto_shash_update+0x4e9/0x550
[  400.314337][T12252]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  400.314337][T12252]  ? crypto_hash_walk_first+0x1fd/0x360
[  400.314337][T12252]  ? kmsan_get_metadata+0x4f/0x180
[  400.314337][T12252]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  400.314337][T12252]  shash_async_update+0x113/0x1d0
[  400.314337][T12252]  ? shash_async_init+0x1e0/0x1e0
[  400.314337][T12252]  hash_sendpage+0x8ef/0xdf0
[  400.314337][T12252]  ? hash_recvmsg+0xd30/0xd30
[  400.314337][T12252]  sock_sendpage+0x1e1/0x2c0
[  400.314337][T12252]  pipe_to_sendpage+0x38c/0x4c0
[  400.314337][T12252]  ? sock_fasync+0x250/0x250
[  400.314337][T12252]  __splice_from_pipe+0x565/0xf00
[  400.314337][T12252]  ? generic_splice_sendpage+0x2d0/0x2d0
[  400.314337][T12252]  generic_splice_sendpage+0x1d5/0x2d0
[  400.314337][T12252]  ? iter_file_splice_write+0x1800/0x1800
[  400.314337][T12252]  direct_splice_actor+0x1fd/0x580
[  400.314337][T12252]  ? kmsan_get_metadata+0x4f/0x180
[  400.314337][T12252]  splice_direct_to_actor+0x6b2/0xf50
[  400.314337][T12252]  ? do_splice_direct+0x580/0x580
[  400.314337][T12252]  do_splice_direct+0x342/0x580
[  400.314337][T12252]  do_sendfile+0x101b/0x1d40
[  400.314337][T12252]  __se_sys_sendfile64+0x2bb/0x360
[  400.314337][T12252]  ? kmsan_get_metadata+0x4f/0x180
[  400.314337][T12252]  __x64_sys_sendfile64+0x56/0x70
[  400.314337][T12252]  do_syscall_64+0xb0/0x150
[  400.314337][T12252]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  400.314337][T12252] RIP: 0033:0x45c1d9
[  400.314337][T12252] Code: Bad RIP value.
[  400.314337][T12252] RSP: 002b:00007f3a4d702c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  400.314337][T12252] RAX: ffffffffffffffda RBX: 0000000000025a00 RCX: 000000000045c1d9
[  400.314337][T12252] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000004
[  400.314337][T12252] RBP: 000000000078bf48 R08: 0000000000000000 R09: 0000000000000000
[  400.314337][T12252] R10: 001000007ffff000 R11: 0000000000000246 R12: 000000000078bf0c
[  400.314337][T12252] R13: 0000000000c9fb6f R14: 00007f3a4d7039c0 R15: 000000000078bf0c
[  400.314337][T12252] Uninit was stored to memory at:
[  400.314337][T12252]  kmsan_internal_chain_origin+0xad/0x130
[  400.314337][T12252]  __msan_chain_origin+0x50/0x90
[  400.314337][T12252]  rmd256_transform+0x4373/0x4440
[  400.314337][T12252]  rmd256_update+0x343/0x4f0
[  400.314337][T12252]  crypto_shash_update+0x4e9/0x550
[  400.314337][T12252]  shash_async_update+0x113/0x1d0
[  400.314337][T12252]  hash_sendpage+0x8ef/0xdf0
[  400.314337][T12252]  sock_sendpage+0x1e1/0x2c0
[  400.314337][T12252]  pipe_to_sendpage+0x38c/0x4c0
[  400.314337][T12252]  __splice_from_pipe+0x565/0xf00
[  400.314337][T12252]  generic_splice_sendpage+0x1d5/0x2d0
[  400.314337][T12252]  direct_splice_actor+0x1fd/0x580
[  400.314337][T12252]  splice_direct_to_actor+0x6b2/0xf50
[  400.314337][T12252]  do_splice_direct+0x342/0x580
[  400.314337][T12252]  do_sendfile+0x101b/0x1d40
[  400.314337][T12252]  __se_sys_sendfile64+0x2bb/0x360
[  400.314337][T12252]  __x64_sys_sendfile64+0x56/0x70
[  400.314337][T12252]  do_syscall_64+0xb0/0x150
[  400.314337][T12252]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  400.314337][T12252] 
[  400.314337][T12252] Uninit was stored to memory at:
[  400.314337][T12252]  kmsan_internal_chain_origin+0xad/0x130
[  400.314337][T12252]  __msan_chain_origin+0x50/0x90
[  400.314337][T12252]  rmd256_transform+0x4373/0x4440
[  400.314337][T12252]  rmd256_update+0x343/0x4f0
[  400.314337][T12252]  crypto_shash_update+0x4e9/0x550
[  400.314337][T12252]  shash_async_update+0x113/0x1d0
[  400.314337][T12252]  hash_sendpage+0x8ef/0xdf0
[  400.314337][T12252]  sock_sendpage+0x1e1/0x2c0
[  400.314337][T12252]  pipe_to_sendpage+0x38c/0x4c0
[  400.314337][T12252]  __splice_from_pipe+0x565/0xf00
[  400.314337][T12252]  generic_splice_sendpage+0x1d5/0x2d0
[  400.314337][T12252]  direct_splice_actor+0x1fd/0x580
[  400.314337][T12252]  splice_direct_to_actor+0x6b2/0xf50
[  400.314337][T12252]  do_splice_direct+0x342/0x580
[  400.314337][T12252]  do_sendfile+0x101b/0x1d40
[  400.314337][T12252]  __se_sys_sendfile64+0x2bb/0x360
[  400.314337][T12252]  __x64_sys_sendfile64+0x56/0x70
[  400.314337][T12252]  do_syscall_64+0xb0/0x150
[  400.314337][T12252]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  400.314337][T12252] 
[  400.314337][T12252] Uninit was stored to memory at:
[  400.314337][T12252]  kmsan_internal_chain_origin+0xad/0x130
[  400.314337][T12252]  __msan_chain_origin+0x50/0x90
[  400.314337][T12252]  rmd256_transform+0x4373/0x4440
[  400.314337][T12252]  rmd256_update+0x343/0x4f0
[  400.314337][T12252]  crypto_shash_update+0x4e9/0x550
[  400.314337][T12252]  shash_async_update+0x113/0x1d0
[  400.314337][T12252]  hash_sendpage+0x8ef/0xdf0
[  400.314337][T12252]  sock_sendpage+0x1e1/0x2c0
[  400.314337][T12252]  pipe_to_sendpage+0x38c/0x4c0
[  400.314337][T12252]  __splice_from_pipe+0x565/0xf00
[  400.314337][T12252]  generic_splice_sendpage+0x1d5/0x2d0
[  400.314337][T12252]  direct_splice_actor+0x1fd/0x580
[  400.314337][T12252]  splice_direct_to_actor+0x6b2/0xf50
[  400.314337][T12252]  do_splice_direct+0x342/0x580
[  400.314337][T12252]  do_sendfile+0x101b/0x1d40
[  400.314337][T12252]  __se_sys_sendfile64+0x2bb/0x360
[  400.314337][T12252]  __x64_sys_sendfile64+0x56/0x70
[  400.314337][T12252]  do_syscall_64+0xb0/0x150
[  400.314337][T12252]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  400.314337][T12252] 
[  400.314337][T12252] Uninit was stored to memory at:
[  400.314337][T12252]  kmsan_internal_chain_origin+0xad/0x130
[  400.314337][T12252]  __msan_chain_origin+0x50/0x90
[  400.314337][T12252]  rmd256_transform+0x4373/0x4440
[  400.314337][T12252]  rmd256_update+0x343/0x4f0
[  400.314337][T12252]  crypto_shash_update+0x4e9/0x550
[  400.314337][T12252]  shash_async_update+0x113/0x1d0
[  400.314337][T12252]  hash_sendpage+0x8ef/0xdf0
[  400.314337][T12252]  sock_sendpage+0x1e1/0x2c0
[  400.314337][T12252]  pipe_to_sendpage+0x38c/0x4c0
[  400.314337][T12252]  __splice_from_pipe+0x565/0xf00
[  400.314337][T12252]  generic_splice_sendpage+0x1d5/0x2d0
[  400.314337][T12252]  direct_splice_actor+0x1fd/0x580
[  400.314337][T12252]  splice_direct_to_actor+0x6b2/0xf50
[  400.314337][T12252]  do_splice_direct+0x342/0x580
[  400.314337][T12252]  do_sendfile+0x101b/0x1d40
[  400.314337][T12252]  __se_sys_sendfile64+0x2bb/0x360
[  400.314337][T12252]  __x64_sys_sendfile64+0x56/0x70
[  400.314337][T12252]  do_syscall_64+0xb0/0x150
[  400.314337][T12252]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  400.314337][T12252] 
[  400.314337][T12252] Uninit was stored to memory at:
[  400.314337][T12252]  kmsan_internal_chain_origin+0xad/0x130
[  400.314337][T12252]  __msan_chain_origin+0x50/0x90
[  400.314337][T12252]  rmd256_transform+0x4373/0x4440
[  400.314337][T12252]  rmd256_update+0x343/0x4f0
[  400.314337][T12252]  crypto_shash_update+0x4e9/0x550
[  400.314337][T12252]  shash_async_update+0x113/0x1d0
[  400.314337][T12252]  hash_sendpage+0x8ef/0xdf0
[  400.314337][T12252]  sock_sendpage+0x1e1/0x2c0
[  400.314337][T12252]  pipe_to_sendpage+0x38c/0x4c0
[  400.314337][T12252]  __splice_from_pipe+0x565/0xf00
[  400.314337][T12252]  generic_splice_sendpage+0x1d5/0x2d0
[  400.314337][T12252]  direct_splice_actor+0x1fd/0x580
[  400.314337][T12252]  splice_direct_to_actor+0x6b2/0xf50
[  400.314337][T12252]  do_splice_direct+0x342/0x580
[  400.314337][T12252]  do_sendfile+0x101b/0x1d40
[  400.314337][T12252]  __se_sys_sendfile64+0x2bb/0x360
[  400.314337][T12252]  __x64_sys_sendfile64+0x56/0x70
[  400.314337][T12252]  do_syscall_64+0xb0/0x150
[  400.314337][T12252]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  400.314337][T12252] 
[  400.314337][T12252] Uninit was stored to memory at:
[  400.314337][T12252]  kmsan_internal_chain_origin+0xad/0x130
[  400.314337][T12252]  __msan_chain_origin+0x50/0x90
[  400.314337][T12252]  rmd256_transform+0x4373/0x4440
[  400.314337][T12252]  rmd256_update+0x227/0x4f0
[  400.314337][T12252]  crypto_shash_update+0x4e9/0x550
[  400.314337][T12252]  shash_async_update+0x113/0x1d0
[  400.314337][T12252]  hash_sendpage+0x8ef/0xdf0
[  400.314337][T12252]  sock_sendpage+0x1e1/0x2c0
[  400.314337][T12252]  pipe_to_sendpage+0x38c/0x4c0
[  400.314337][T12252]  __splice_from_pipe+0x565/0xf00
[  400.314337][T12252]  generic_splice_sendpage+0x1d5/0x2d0
[  400.314337][T12252]  direct_splice_actor+0x1fd/0x580
[  400.314337][T12252]  splice_direct_to_actor+0x6b2/0xf50
[  400.314337][T12252]  do_splice_direct+0x342/0x580
[  400.314337][T12252]  do_sendfile+0x101b/0x1d40
[  400.314337][T12252]  __se_sys_sendfile64+0x2bb/0x360
[  400.314337][T12252]  __x64_sys_sendfile64+0x56/0x70
[  400.314337][T12252]  do_syscall_64+0xb0/0x150
[  400.314337][T12252]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  400.314337][T12252] 
[  400.314337][T12252] Uninit was stored to memory at:
[  400.314337][T12252]  kmsan_internal_chain_origin+0xad/0x130
[  400.314337][T12252]  kmsan_memcpy_memmove_metadata+0x272/0x2e0
[  400.314337][T12252]  kmsan_memcpy_metadata+0xb/0x10
[  400.314337][T12252]  __msan_memcpy+0x43/0x50
[  400.314337][T12252]  rmd256_update+0x1fc/0x4f0
[  400.314337][T12252]  crypto_shash_update+0x4e9/0x550
[  400.314337][T12252]  shash_async_update+0x113/0x1d0
[  400.314337][T12252]  hash_sendpage+0x8ef/0xdf0
[  400.314337][T12252]  sock_sendpage+0x1e1/0x2c0
[  400.314337][T12252]  pipe_to_sendpage+0x38c/0x4c0
[  400.314337][T12252]  __splice_from_pipe+0x565/0xf00
[  400.314337][T12252]  generic_splice_sendpage+0x1d5/0x2d0
[  400.314337][T12252]  direct_splice_actor+0x1fd/0x580
[  400.314337][T12252]  splice_direct_to_actor+0x6b2/0xf50
[  400.314337][T12252]  do_splice_direct+0x342/0x580
[  400.314337][T12252]  do_sendfile+0x101b/0x1d40
[  400.314337][T12252]  __se_sys_sendfile64+0x2bb/0x360
[  400.314337][T12252]  __x64_sys_sendfile64+0x56/0x70
[  400.314337][T12252]  do_syscall_64+0xb0/0x150
[  400.314337][T12252]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  400.314337][T12252] 
[  400.314337][T12252] Uninit was created at:
[  400.314337][T12252]  kmsan_save_stack_with_flags+0x3c/0x90
[  400.314337][T12252]  kmsan_alloc_page+0xb9/0x180
[  400.314337][T12252]  __alloc_pages_nodemask+0x56a2/0x5dc0
[  400.314337][T12252]  alloc_pages_current+0x672/0x990
[  400.314337][T12252]  push_pipe+0x605/0xb70
[  400.314337][T12252]  iov_iter_get_pages_alloc+0x18a9/0x21c0
[  400.314337][T12252]  do_splice_to+0x4fc/0x14f0
[  400.314337][T12252]  splice_direct_to_actor+0x45c/0xf50
[  400.314337][T12252]  do_splice_direct+0x342/0x580
[  400.314337][T12252]  do_sendfile+0x101b/0x1d40
[  400.314337][T12252]  __se_sys_sendfile64+0x2bb/0x360
20:08:13 executing program 4:
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/timer\x00', 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40485404, &(0x7f0000000140)={{0x1, 0x0, 0x0, 0x0, 0x20000}})

[  400.314337][T12252]  __x64_sys_sendfile64+0x56/0x70
[  400.314337][T12252]  do_syscall_64+0xb0/0x150
[  400.314337][T12252]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
20:08:13 executing program 3:
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000000)={0x0, <r0=>0x0})
prlimit64(r0, 0x10, 0x0, 0x0)

[  401.489014][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
20:08:13 executing program 5:
r0 = socket$unix(0x1, 0x2, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_int(r2, 0x1f00000000000000, 0xcc, &(0x7f0000000000), 0x3c)

20:08:13 executing program 3:
r0 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20\x00', 0x200, 0x0)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000080)={0x188, 0x9, 0x6, 0x5, 0x0, 0x0, {0x5, 0x0, 0x5}, [@IPSET_ATTR_ADT={0x30, 0x8, 0x0, 0x1, [{0x1c, 0x7, 0x0, 0x1, @IPSET_ATTR_IP2={0x18, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @dev={0xfe, 0x80, [], 0x12}}}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}}]}, @IPSET_ATTR_ADT={0x74, 0x8, 0x0, 0x1, [{0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_ETHER={0xa, 0x11, @broadcast}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_PROTO={0x5}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @local}}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_COMMENT={0x8, 0x1a, '%+[\x00'}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @private=0xa010101}}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x8}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_SKBQUEUE={0x6}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_PACKETS={0xc, 0x19, 0x1, 0x0, 0x100000001}}]}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x9}, @IPSET_ATTR_DATA={0x50, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP_TO={0x18, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @remote}}, @IPSET_ATTR_BYTES={0xc, 0x18, 0x1, 0x0, 0x4d1}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0xd55}, @IPSET_ATTR_IFACE={0x14, 0x17, 'veth0_virt_wifi\x00'}, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @remote}}]}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x2}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_ADT={0x10, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e24}}]}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0x2}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0xaf20}]}, @IPSET_ATTR_DATA={0x38, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0xfffffffb}, @IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0x2}, @IPSET_ATTR_SKBQUEUE={0x6, 0x1d, 0x1, 0x0, 0x12}, @IPSET_ATTR_SKBQUEUE={0x6, 0x1d, 0x1, 0x0, 0x8}, @IPSET_ATTR_SKBPRIO={0x8, 0x1c, 0x1, 0x0, 0x7}, @IPSET_ATTR_NAME={0x9, 0x12, 'syz2\x00'}]}]}, 0x188}, 0x1, 0x0, 0x0, 0x48000}, 0x4008000)
prlimit64(0x0, 0x10, 0x0, 0x0)

20:08:13 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r1, 0x0, 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

20:08:13 executing program 4:
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/timer\x00', 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40485404, &(0x7f0000000140)={{0x1, 0x0, 0x0, 0x0, 0x20000}})

[  401.913496][T12264] ebt_among: dst integrity fail: 100
20:08:14 executing program 5:
r0 = socket$unix(0x1, 0x2, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_int(r2, 0x1f00000000000000, 0xcc, &(0x7f0000000000), 0x3c)

20:08:14 executing program 2:
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = socket(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f0000000000)=@broute={'broute\x00', 0x20, 0x1, 0x990, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e670000000000000000000000000000000000000000000000000000002008000000000000140400000c000000000000000a000000000000040000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000008fc7660c490587b3ab213098a6767c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000440a00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f18a0afe993500000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f4f016fa70c1255400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008c7f8f1b44f000000000feffffff00000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000009abde2255a00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e0ffffff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fffffff90000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f2573bd04a330000000e00000000000000000000000000000000000000e9ffffff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000cb33322c9c564ae5f8eef74ddaa7cc9c00000000000000000000000000000000000000000000000000000500000000000000000000000000000000000000003f7f1c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d3d2e85100000000000000000000000000000000000000000000000000000000006e666c6f670000001100000000000000000000000000000000000000000000005080000000000000000000000000000000010000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c7700"/2448]}, 0xa08)

20:08:14 executing program 4:
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/timer\x00', 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40485404, &(0x7f0000000140)={{0x1, 0x0, 0x0, 0x0, 0x20000}})

[  402.272640][T12286] ebt_among: dst integrity fail: 100
20:08:14 executing program 2:
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = socket(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f0000000000)=@broute={'broute\x00', 0x20, 0x1, 0x990, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e670000000000000000000000000000000000000000000000000000002008000000000000140400000c000000000000000a000000000000040000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000008fc7660c490587b3ab213098a6767c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000440a00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f18a0afe993500000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f4f016fa70c1255400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008c7f8f1b44f000000000feffffff00000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000009abde2255a00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e0ffffff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fffffff90000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f2573bd04a330000000e00000000000000000000000000000000000000e9ffffff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000cb33322c9c564ae5f8eef74ddaa7cc9c00000000000000000000000000000000000000000000000000000500000000000000000000000000000000000000003f7f1c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d3d2e85100000000000000000000000000000000000000000000000000000000006e666c6f670000001100000000000000000000000000000000000000000000005080000000000000000000000000000000010000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c7700"/2448]}, 0xa08)

20:08:14 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x1d4)
connect$inet6(r0, &(0x7f0000000080), 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000001c0)='tls\x00', 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "95115dd958e90a67", "d0812ca7027ffbffffff28fe74b645c2", "47d8d686", "e5a5f2c79914e71c"}, 0x28)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000200)=@ccm_128={{}, "a52b2b2ebfbf0ef6", "7bc21633036ebdbcf402fb1f72270139", "a0c0cdc4", "d5c9708a155bf52b"}, 0x28)

20:08:14 executing program 0:
openat$null(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/null\x00', 0x620043, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r1, r2, 0x0, 0x1000007ffff000)

20:08:14 executing program 4:
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/timer\x00', 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40485404, &(0x7f0000000140)={{0x1, 0x0, 0x0, 0x0, 0x20000}})

20:08:14 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r1, 0x0, 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

[  402.769063][T12293] ebt_among: dst integrity fail: 100
[  403.106436][T12302] not chained 590000 origins
[  403.109310][T12302] CPU: 0 PID: 12302 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0
[  403.109310][T12302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  403.109310][T12302] Call Trace:
[  403.109310][T12302]  dump_stack+0x1df/0x240
[  403.109310][T12302]  kmsan_internal_chain_origin+0x6f/0x130
[  403.143188][T12302]  ? is_module_text_address+0x4d/0x2a0
[  403.143188][T12302]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  403.143188][T12302]  ? __kernel_text_address+0x171/0x2d0
[  403.143188][T12302]  ? unwind_get_return_address+0x8c/0x130
[  403.143188][T12302]  ? entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  403.143188][T12302]  ? arch_stack_walk+0x2a2/0x3e0
[  403.143188][T12302]  ? stack_trace_save+0x1a0/0x1a0
[  403.143188][T12302]  ? kmsan_get_metadata+0x4f/0x180
[  403.143188][T12302]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  403.143188][T12302]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  403.143188][T12302]  ? stack_trace_save+0x123/0x1a0
[  403.143188][T12302]  ? kmsan_get_metadata+0x11d/0x180
[  403.143188][T12302]  __msan_chain_origin+0x50/0x90
[  403.143188][T12302]  rmd256_transform+0x4373/0x4440
[  403.143188][T12302]  rmd256_update+0x343/0x4f0
[  403.143188][T12302]  ? rmd256_init+0x260/0x260
[  403.143188][T12302]  crypto_shash_update+0x4e9/0x550
[  403.143188][T12302]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  403.143188][T12302]  ? crypto_hash_walk_first+0x1fd/0x360
[  403.143188][T12302]  ? kmsan_get_metadata+0x4f/0x180
[  403.143188][T12302]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  403.143188][T12302]  shash_async_update+0x113/0x1d0
[  403.143188][T12302]  ? shash_async_init+0x1e0/0x1e0
[  403.143188][T12302]  hash_sendpage+0x8ef/0xdf0
[  403.143188][T12302]  ? hash_recvmsg+0xd30/0xd30
[  403.143188][T12302]  sock_sendpage+0x1e1/0x2c0
[  403.143188][T12302]  pipe_to_sendpage+0x38c/0x4c0
[  403.143188][T12302]  ? sock_fasync+0x250/0x250
[  403.143188][T12302]  __splice_from_pipe+0x565/0xf00
[  403.143188][T12302]  ? generic_splice_sendpage+0x2d0/0x2d0
[  403.143188][T12302]  generic_splice_sendpage+0x1d5/0x2d0
[  403.143188][T12302]  ? iter_file_splice_write+0x1800/0x1800
[  403.143188][T12302]  direct_splice_actor+0x1fd/0x580
[  403.143188][T12302]  ? kmsan_get_metadata+0x4f/0x180
[  403.143188][T12302]  splice_direct_to_actor+0x6b2/0xf50
[  403.143188][T12302]  ? do_splice_direct+0x580/0x580
[  403.143188][T12302]  do_splice_direct+0x342/0x580
[  403.143188][T12302]  do_sendfile+0x101b/0x1d40
[  403.143188][T12302]  __se_sys_sendfile64+0x2bb/0x360
[  403.143188][T12302]  ? kmsan_get_metadata+0x4f/0x180
[  403.143188][T12302]  __x64_sys_sendfile64+0x56/0x70
[  403.143188][T12302]  do_syscall_64+0xb0/0x150
[  403.143188][T12302]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  403.143188][T12302] RIP: 0033:0x45c1d9
[  403.143188][T12302] Code: Bad RIP value.
[  403.143188][T12302] RSP: 002b:00007f3a4d702c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  403.143188][T12302] RAX: ffffffffffffffda RBX: 0000000000025a00 RCX: 000000000045c1d9
[  403.143188][T12302] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000005
[  403.143188][T12302] RBP: 000000000078bf48 R08: 0000000000000000 R09: 0000000000000000
[  403.143188][T12302] R10: 001000007ffff000 R11: 0000000000000246 R12: 000000000078bf0c
[  403.143188][T12302] R13: 0000000000c9fb6f R14: 00007f3a4d7039c0 R15: 000000000078bf0c
[  403.143188][T12302] Uninit was stored to memory at:
[  403.143188][T12302]  kmsan_internal_chain_origin+0xad/0x130
[  403.143188][T12302]  __msan_chain_origin+0x50/0x90
[  403.143188][T12302]  rmd256_transform+0x4373/0x4440
[  403.143188][T12302]  rmd256_update+0x343/0x4f0
[  403.143188][T12302]  crypto_shash_update+0x4e9/0x550
[  403.143188][T12302]  shash_async_update+0x113/0x1d0
[  403.143188][T12302]  hash_sendpage+0x8ef/0xdf0
[  403.143188][T12302]  sock_sendpage+0x1e1/0x2c0
[  403.143188][T12302]  pipe_to_sendpage+0x38c/0x4c0
[  403.143188][T12302]  __splice_from_pipe+0x565/0xf00
[  403.143188][T12302]  generic_splice_sendpage+0x1d5/0x2d0
[  403.143188][T12302]  direct_splice_actor+0x1fd/0x580
[  403.143188][T12302]  splice_direct_to_actor+0x6b2/0xf50
[  403.143188][T12302]  do_splice_direct+0x342/0x580
[  403.143188][T12302]  do_sendfile+0x101b/0x1d40
[  403.143188][T12302]  __se_sys_sendfile64+0x2bb/0x360
[  403.143188][T12302]  __x64_sys_sendfile64+0x56/0x70
[  403.143188][T12302]  do_syscall_64+0xb0/0x150
[  403.143188][T12302]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  403.143188][T12302] 
[  403.143188][T12302] Uninit was stored to memory at:
[  403.143188][T12302]  kmsan_internal_chain_origin+0xad/0x130
[  403.143188][T12302]  __msan_chain_origin+0x50/0x90
[  403.143188][T12302]  rmd256_transform+0x4373/0x4440
[  403.143188][T12302]  rmd256_update+0x343/0x4f0
[  403.143188][T12302]  crypto_shash_update+0x4e9/0x550
[  403.143188][T12302]  shash_async_update+0x113/0x1d0
[  403.143188][T12302]  hash_sendpage+0x8ef/0xdf0
[  403.143188][T12302]  sock_sendpage+0x1e1/0x2c0
[  403.143188][T12302]  pipe_to_sendpage+0x38c/0x4c0
[  403.143188][T12302]  __splice_from_pipe+0x565/0xf00
[  403.143188][T12302]  generic_splice_sendpage+0x1d5/0x2d0
[  403.143188][T12302]  direct_splice_actor+0x1fd/0x580
[  403.143188][T12302]  splice_direct_to_actor+0x6b2/0xf50
[  403.143188][T12302]  do_splice_direct+0x342/0x580
[  403.143188][T12302]  do_sendfile+0x101b/0x1d40
[  403.143188][T12302]  __se_sys_sendfile64+0x2bb/0x360
[  403.143188][T12302]  __x64_sys_sendfile64+0x56/0x70
[  403.143188][T12302]  do_syscall_64+0xb0/0x150
[  403.143188][T12302]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  403.143188][T12302] 
[  403.143188][T12302] Uninit was stored to memory at:
[  403.143188][T12302]  kmsan_internal_chain_origin+0xad/0x130
[  403.143188][T12302]  __msan_chain_origin+0x50/0x90
[  403.143188][T12302]  rmd256_transform+0x4373/0x4440
[  403.143188][T12302]  rmd256_update+0x343/0x4f0
[  403.143188][T12302]  crypto_shash_update+0x4e9/0x550
[  403.143188][T12302]  shash_async_update+0x113/0x1d0
[  403.143188][T12302]  hash_sendpage+0x8ef/0xdf0
[  403.143188][T12302]  sock_sendpage+0x1e1/0x2c0
[  403.143188][T12302]  pipe_to_sendpage+0x38c/0x4c0
[  403.143188][T12302]  __splice_from_pipe+0x565/0xf00
[  403.143188][T12302]  generic_splice_sendpage+0x1d5/0x2d0
[  403.143188][T12302]  direct_splice_actor+0x1fd/0x580
[  403.143188][T12302]  splice_direct_to_actor+0x6b2/0xf50
[  403.143188][T12302]  do_splice_direct+0x342/0x580
[  403.143188][T12302]  do_sendfile+0x101b/0x1d40
[  403.143188][T12302]  __se_sys_sendfile64+0x2bb/0x360
[  403.143188][T12302]  __x64_sys_sendfile64+0x56/0x70
[  403.143188][T12302]  do_syscall_64+0xb0/0x150
[  403.143188][T12302]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  403.143188][T12302] 
[  403.143188][T12302] Uninit was stored to memory at:
[  403.143188][T12302]  kmsan_internal_chain_origin+0xad/0x130
[  403.143188][T12302]  __msan_chain_origin+0x50/0x90
[  403.143188][T12302]  rmd256_transform+0x4373/0x4440
[  403.143188][T12302]  rmd256_update+0x343/0x4f0
[  403.143188][T12302]  crypto_shash_update+0x4e9/0x550
[  403.143188][T12302]  shash_async_update+0x113/0x1d0
[  403.143188][T12302]  hash_sendpage+0x8ef/0xdf0
[  403.143188][T12302]  sock_sendpage+0x1e1/0x2c0
[  403.143188][T12302]  pipe_to_sendpage+0x38c/0x4c0
[  403.143188][T12302]  __splice_from_pipe+0x565/0xf00
[  403.143188][T12302]  generic_splice_sendpage+0x1d5/0x2d0
[  403.143188][T12302]  direct_splice_actor+0x1fd/0x580
[  403.143188][T12302]  splice_direct_to_actor+0x6b2/0xf50
[  403.143188][T12302]  do_splice_direct+0x342/0x580
[  403.143188][T12302]  do_sendfile+0x101b/0x1d40
[  403.143188][T12302]  __se_sys_sendfile64+0x2bb/0x360
[  403.143188][T12302]  __x64_sys_sendfile64+0x56/0x70
[  403.143188][T12302]  do_syscall_64+0xb0/0x150
[  403.143188][T12302]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  403.143188][T12302] 
[  403.143188][T12302] Uninit was stored to memory at:
[  403.143188][T12302]  kmsan_internal_chain_origin+0xad/0x130
[  403.143188][T12302]  __msan_chain_origin+0x50/0x90
[  403.143188][T12302]  rmd256_transform+0x4373/0x4440
[  403.143188][T12302]  rmd256_update+0x343/0x4f0
[  403.143188][T12302]  crypto_shash_update+0x4e9/0x550
[  403.143188][T12302]  shash_async_update+0x113/0x1d0
[  403.143188][T12302]  hash_sendpage+0x8ef/0xdf0
[  403.143188][T12302]  sock_sendpage+0x1e1/0x2c0
[  403.143188][T12302]  pipe_to_sendpage+0x38c/0x4c0
[  403.143188][T12302]  __splice_from_pipe+0x565/0xf00
[  403.143188][T12302]  generic_splice_sendpage+0x1d5/0x2d0
[  403.143188][T12302]  direct_splice_actor+0x1fd/0x580
[  403.143188][T12302]  splice_direct_to_actor+0x6b2/0xf50
[  403.143188][T12302]  do_splice_direct+0x342/0x580
[  403.143188][T12302]  do_sendfile+0x101b/0x1d40
[  403.143188][T12302]  __se_sys_sendfile64+0x2bb/0x360
[  403.143188][T12302]  __x64_sys_sendfile64+0x56/0x70
[  403.143188][T12302]  do_syscall_64+0xb0/0x150
[  403.143188][T12302]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  403.143188][T12302] 
[  403.143188][T12302] Uninit was stored to memory at:
[  403.143188][T12302]  kmsan_internal_chain_origin+0xad/0x130
[  403.143188][T12302]  __msan_chain_origin+0x50/0x90
[  403.143188][T12302]  rmd256_transform+0x4373/0x4440
[  403.143188][T12302]  rmd256_update+0x227/0x4f0
[  403.143188][T12302]  crypto_shash_update+0x4e9/0x550
[  403.143188][T12302]  shash_async_update+0x113/0x1d0
[  403.143188][T12302]  hash_sendpage+0x8ef/0xdf0
[  403.143188][T12302]  sock_sendpage+0x1e1/0x2c0
[  403.143188][T12302]  pipe_to_sendpage+0x38c/0x4c0
[  403.143188][T12302]  __splice_from_pipe+0x565/0xf00
[  403.143188][T12302]  generic_splice_sendpage+0x1d5/0x2d0
[  403.143188][T12302]  direct_splice_actor+0x1fd/0x580
[  403.143188][T12302]  splice_direct_to_actor+0x6b2/0xf50
[  403.143188][T12302]  do_splice_direct+0x342/0x580
[  403.143188][T12302]  do_sendfile+0x101b/0x1d40
[  403.143188][T12302]  __se_sys_sendfile64+0x2bb/0x360
[  403.143188][T12302]  __x64_sys_sendfile64+0x56/0x70
[  403.143188][T12302]  do_syscall_64+0xb0/0x150
[  403.143188][T12302]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  403.143188][T12302] 
[  403.143188][T12302] Uninit was stored to memory at:
[  403.143188][T12302]  kmsan_internal_chain_origin+0xad/0x130
[  403.143188][T12302]  kmsan_memcpy_memmove_metadata+0x272/0x2e0
[  403.143188][T12302]  kmsan_memcpy_metadata+0xb/0x10
[  403.143188][T12302]  __msan_memcpy+0x43/0x50
[  403.143188][T12302]  rmd256_update+0x1fc/0x4f0
[  403.143188][T12302]  crypto_shash_update+0x4e9/0x550
[  403.143188][T12302]  shash_async_update+0x113/0x1d0
[  403.143188][T12302]  hash_sendpage+0x8ef/0xdf0
[  403.143188][T12302]  sock_sendpage+0x1e1/0x2c0
[  403.143188][T12302]  pipe_to_sendpage+0x38c/0x4c0
[  403.143188][T12302]  __splice_from_pipe+0x565/0xf00
[  403.143188][T12302]  generic_splice_sendpage+0x1d5/0x2d0
[  403.143188][T12302]  direct_splice_actor+0x1fd/0x580
[  403.143188][T12302]  splice_direct_to_actor+0x6b2/0xf50
[  403.143188][T12302]  do_splice_direct+0x342/0x580
[  403.143188][T12302]  do_sendfile+0x101b/0x1d40
[  403.143188][T12302]  __se_sys_sendfile64+0x2bb/0x360
[  403.143188][T12302]  __x64_sys_sendfile64+0x56/0x70
[  403.143188][T12302]  do_syscall_64+0xb0/0x150
[  403.143188][T12302]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  403.143188][T12302] 
[  403.143188][T12302] Uninit was created at:
[  403.143188][T12302]  kmsan_save_stack_with_flags+0x3c/0x90
[  403.143188][T12302]  kmsan_alloc_page+0xb9/0x180
[  403.143188][T12302]  __alloc_pages_nodemask+0x56a2/0x5dc0
[  403.143188][T12302]  alloc_pages_current+0x672/0x990
[  403.143188][T12302]  push_pipe+0x605/0xb70
[  403.143188][T12302]  iov_iter_get_pages_alloc+0x18a9/0x21c0
[  403.143188][T12302]  do_splice_to+0x4fc/0x14f0
[  403.143188][T12302]  splice_direct_to_actor+0x45c/0xf50
[  403.143188][T12302]  do_splice_direct+0x342/0x580
[  403.143188][T12302]  do_sendfile+0x101b/0x1d40
[  403.143188][T12302]  __se_sys_sendfile64+0x2bb/0x360
20:08:16 executing program 2:
r0 = syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0x8000, 0x0)
ioctl$VIDIOC_TRY_FMT(r0, 0xc0d05640, &(0x7f0000000040)={0xa, @sliced})

20:08:16 executing program 3:
prlimit64(0x0, 0x10, 0x0, 0x0)
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
openat$cgroup_ro(r0, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
ioctl$SNDRV_RAWMIDI_IOCTL_DROP(r0, 0x40045730, &(0x7f0000000000)=0xfffffffe)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000200)='IPVS\x00')
sendmsg$IPVS_CMD_NEW_SERVICE(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)={0x14, r2, 0x101}, 0x14}}, 0x0)
sendmsg$IPVS_CMD_DEL_SERVICE(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x24, r2, 0x8, 0x70bd2c, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x101}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x2400000}]}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x10)
sendmsg$IPVS_CMD_SET_DEST(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x34, r2, 0x100, 0x70bd29, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x4}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xfffffffe}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x3238}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x1ff}]}, 0x34}, 0x1, 0x0, 0x0, 0x20004014}, 0x40)

[  403.143188][T12302]  __x64_sys_sendfile64+0x56/0x70
[  403.143188][T12302]  do_syscall_64+0xb0/0x150
[  403.143188][T12302]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  404.266173][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
20:08:16 executing program 4:
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000300)={'vxcan0\x00', <r1=>0x0})
connect$can_bcm(r0, &(0x7f0000001ff0)={0x1d, r1}, 0x10)
sendmsg$can_raw(r0, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000ff0)={&(0x7f0000000000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e684cd4b0039576a7d5cb2bd856b76b5ee04000c4d8c000000000000000000000047ff030020000000008000"}, 0x48}}, 0x0)

[  404.353207][T12294] crypto_alloc_aead failed rc=-4
[  404.361791][T12317] crypto_alloc_aead failed rc=-2
20:08:16 executing program 2:
r0 = syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0x8000, 0x0)
ioctl$VIDIOC_TRY_FMT(r0, 0xc0d05640, &(0x7f0000000040)={0xa, @sliced})

20:08:16 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

20:08:16 executing program 3:
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
openat$cgroup_ro(r0, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendto$l2tp6(r0, &(0x7f0000000000)="6549861e17622ddd796e788948adbb1bd8310ec3a8508125b87523f579344ea7bcc4627183be948641040b6427dc7a9c14c9648a13", 0x35, 0x40010, 0x0, 0x0)
r1 = gettid()
ptrace$setopts(0x4206, r1, 0x0, 0x0)
tkill(r1, 0x40)
ptrace$setregs(0xd, r1, 0x0, &(0x7f0000000080))
r2 = gettid()
ptrace$setopts(0x4206, r2, 0x0, 0x0)
tkill(r2, 0x40)
ptrace$setregs(0xd, r1, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r2, 0x0, 0x0)
r3 = gettid()
ptrace$setopts(0x4206, r3, 0x0, 0x0)
tkill(r3, 0x40)
ptrace$setregs(0xd, r3, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r3, 0x0, 0x0)
ptrace$cont(0x7, r3, 0x0, 0xfffffffffffffffd)
prlimit64(r1, 0x10, 0x0, 0x0)

20:08:16 executing program 4:
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000300)={'vxcan0\x00', <r1=>0x0})
connect$can_bcm(r0, &(0x7f0000001ff0)={0x1d, r1}, 0x10)
sendmsg$can_raw(r0, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000ff0)={&(0x7f0000000000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e684cd4b0039576a7d5cb2bd856b76b5ee04000c4d8c000000000000000000000047ff030020000000008000"}, 0x48}}, 0x0)

20:08:16 executing program 2:
r0 = syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0x8000, 0x0)
ioctl$VIDIOC_TRY_FMT(r0, 0xc0d05640, &(0x7f0000000040)={0xa, @sliced})

20:08:16 executing program 5:
r0 = add_key$keyring(&(0x7f0000000100)='keyring\x00', &(0x7f0000000180)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$restrict_keyring(0x1d, r0, 0x0, 0x0)
keyctl$restrict_keyring(0x1d, r0, 0x0, 0x0)

[  404.766110][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
20:08:17 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000008c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="000426bd7000fedbdf250d000000080034", @ANYRES32=0x0, @ANYBLOB="e0f0fdcb69a067053b14d7a44ca9ff6dedc9d15f7745c5298ff283c1edd156d0beaa2059b57c0366b4ef51f4f58652ef0dbdde68cd9d7f6a7ddbcbe278a8"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2400c004)
r5 = openat$cgroup_ro(r3, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r5, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x24, r4, 0x712, 0x70bd26, 0x25dfdbff}, 0x24}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
ioctl$SNDCTL_DSP_GETODELAY(r5, 0x80045017, &(0x7f0000000040))
sendfile(r1, r2, 0x0, 0x1000007ffff000)

20:08:17 executing program 2:
r0 = syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0x8000, 0x0)
ioctl$VIDIOC_TRY_FMT(r0, 0xc0d05640, &(0x7f0000000040)={0xa, @sliced})

20:08:17 executing program 4:
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000300)={'vxcan0\x00', <r1=>0x0})
connect$can_bcm(r0, &(0x7f0000001ff0)={0x1d, r1}, 0x10)
sendmsg$can_raw(r0, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000ff0)={&(0x7f0000000000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e684cd4b0039576a7d5cb2bd856b76b5ee04000c4d8c000000000000000000000047ff030020000000008000"}, 0x48}}, 0x0)

20:08:17 executing program 3:
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt(r0, 0x800000010d, 0x2, &(0x7f0000000240)='\x00\x00\x00\x00\x00', 0x5)
getsockopt$inet_int(r0, 0x10d, 0x2, 0x0, &(0x7f0000000180)=0x2b)
sendmsg$RDMA_NLDEV_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x40, 0x1401, 0x800, 0x70bd2a, 0x25dfdbfb, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x1}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}]}, 0x40}, 0x1, 0x0, 0x0, 0x40010}, 0x40)
ioctl$sock_inet_SIOCRTMSG(r0, 0x890d, &(0x7f0000000040)={0x0, {0x2, 0x4e20, @multicast1}, {0x2, 0x4e21, @broadcast}, {0x2, 0x4e24, @rand_addr=0x64010102}, 0x8, 0x0, 0x0, 0x0, 0x400, 0x0, 0x7, 0xdf8, 0x81})
prlimit64(0x0, 0x10, 0x0, 0x0)
open$dir(&(0x7f0000000000)='./file0\x00', 0x20000, 0x100)

20:08:17 executing program 5:
r0 = add_key$keyring(&(0x7f0000000100)='keyring\x00', &(0x7f0000000180)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$restrict_keyring(0x1d, r0, 0x0, 0x0)
keyctl$restrict_keyring(0x1d, r0, 0x0, 0x0)

20:08:17 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
openat$cgroup_ro(r2, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
r4 = openat$dlm_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dlm-control\x00', 0x10000, 0x0)
r5 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000180)='wireguard\x00')
sendmsg$WG_CMD_SET_DEVICE(r4, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, r5, 0x812, 0x70bd28, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x48045}, 0x8000)
sendfile(r1, r3, 0x0, 0x1000007ffff000)

20:08:17 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
sendmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x1000000, &(0x7f0000000080)=[{&(0x7f0000000180)="2e0000001d008103e00f80ecdb4cb9d90163190405000f00000000fb12000100ac14141840d819a9060015000000", 0x2e}], 0x1}, 0x0)

20:08:18 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

20:08:18 executing program 5:
r0 = add_key$keyring(&(0x7f0000000100)='keyring\x00', &(0x7f0000000180)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$restrict_keyring(0x1d, r0, 0x0, 0x0)
keyctl$restrict_keyring(0x1d, r0, 0x0, 0x0)

20:08:18 executing program 3:
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
openat$cgroup_ro(r0, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
ioctl$MON_IOCH_MFLUSH(r0, 0x9208, 0xffffffff)
prlimit64(0x0, 0x10, 0x0, 0x0)

20:08:18 executing program 4:
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000300)={'vxcan0\x00', <r1=>0x0})
connect$can_bcm(r0, &(0x7f0000001ff0)={0x1d, r1}, 0x10)
sendmsg$can_raw(r0, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000ff0)={&(0x7f0000000000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e684cd4b0039576a7d5cb2bd856b76b5ee04000c4d8c000000000000000000000047ff030020000000008000"}, 0x48}}, 0x0)

20:08:18 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
sendmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x1000000, &(0x7f0000000080)=[{&(0x7f0000000180)="2e0000001d008103e00f80ecdb4cb9d90163190405000f00000000fb12000100ac14141840d819a9060015000000", 0x2e}], 0x1}, 0x0)

20:08:18 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000000c0)={<r2=>0x0}, &(0x7f0000000100)=0xc)
r3 = syz_open_procfs(r2, &(0x7f0000000000)='net/ipv6_route\x00')
ioctl$LOOP_CHANGE_FD(r3, 0x4c06, r1)
sendfile(r1, r3, 0x0, 0x1000007ffff000)

[  406.189007][T12384] not chained 600000 origins
[  406.189257][T12384] CPU: 0 PID: 12384 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0
[  406.189257][T12384] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  406.189257][T12384] Call Trace:
[  406.189257][T12384]  dump_stack+0x1df/0x240
[  406.189257][T12384]  kmsan_internal_chain_origin+0x6f/0x130
[  406.189257][T12384]  ? is_module_text_address+0x4d/0x2a0
[  406.189257][T12384]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  406.189257][T12384]  ? __kernel_text_address+0x171/0x2d0
[  406.189257][T12384]  ? unwind_get_return_address+0x8c/0x130
[  406.248742][T12384]  ? entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  406.248742][T12384]  ? arch_stack_walk+0x2a2/0x3e0
[  406.248742][T12384]  ? stack_trace_save+0x1a0/0x1a0
[  406.248742][T12384]  ? kmsan_get_metadata+0x4f/0x180
[  406.248742][T12384]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  406.248742][T12384]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  406.248742][T12384]  ? stack_trace_save+0x123/0x1a0
[  406.248742][T12384]  ? kmsan_get_metadata+0x11d/0x180
[  406.248742][T12384]  __msan_chain_origin+0x50/0x90
[  406.248742][T12384]  rmd256_transform+0x4373/0x4440
[  406.248742][T12384]  rmd256_update+0x343/0x4f0
[  406.248742][T12384]  ? rmd256_init+0x260/0x260
[  406.248742][T12384]  crypto_shash_update+0x4e9/0x550
[  406.248742][T12384]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  406.248742][T12384]  ? crypto_hash_walk_first+0x1fd/0x360
[  406.248742][T12384]  ? kmsan_get_metadata+0x4f/0x180
[  406.248742][T12384]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  406.248742][T12384]  shash_async_update+0x113/0x1d0
[  406.248742][T12384]  ? shash_async_init+0x1e0/0x1e0
[  406.248742][T12384]  hash_sendpage+0x8ef/0xdf0
[  406.248742][T12384]  ? hash_recvmsg+0xd30/0xd30
[  406.248742][T12384]  sock_sendpage+0x1e1/0x2c0
[  406.248742][T12384]  pipe_to_sendpage+0x38c/0x4c0
[  406.248742][T12384]  ? sock_fasync+0x250/0x250
[  406.248742][T12384]  __splice_from_pipe+0x565/0xf00
[  406.248742][T12384]  ? generic_splice_sendpage+0x2d0/0x2d0
[  406.248742][T12384]  generic_splice_sendpage+0x1d5/0x2d0
[  406.248742][T12384]  ? iter_file_splice_write+0x1800/0x1800
[  406.248742][T12384]  direct_splice_actor+0x1fd/0x580
[  406.248742][T12384]  ? kmsan_get_metadata+0x4f/0x180
[  406.248742][T12384]  splice_direct_to_actor+0x6b2/0xf50
[  406.248742][T12384]  ? do_splice_direct+0x580/0x580
[  406.248742][T12384]  do_splice_direct+0x342/0x580
[  406.248742][T12384]  do_sendfile+0x101b/0x1d40
[  406.248742][T12384]  __se_sys_sendfile64+0x2bb/0x360
[  406.248742][T12384]  ? kmsan_get_metadata+0x4f/0x180
[  406.248742][T12384]  __x64_sys_sendfile64+0x56/0x70
[  406.248742][T12384]  do_syscall_64+0xb0/0x150
[  406.248742][T12384]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  406.248742][T12384] RIP: 0033:0x45c1d9
[  406.248742][T12384] Code: Bad RIP value.
[  406.248742][T12384] RSP: 002b:00007f42d54efc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  406.248742][T12384] RAX: ffffffffffffffda RBX: 0000000000025a00 RCX: 000000000045c1d9
[  406.248742][T12384] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000007
[  406.248742][T12384] RBP: 000000000078bf48 R08: 0000000000000000 R09: 0000000000000000
[  406.248742][T12384] R10: 001000007ffff000 R11: 0000000000000246 R12: 000000000078bf0c
[  406.248742][T12384] R13: 0000000000c9fb6f R14: 00007f42d54f09c0 R15: 000000000078bf0c
[  406.248742][T12384] Uninit was stored to memory at:
[  406.248742][T12384]  kmsan_internal_chain_origin+0xad/0x130
[  406.248742][T12384]  __msan_chain_origin+0x50/0x90
[  406.248742][T12384]  rmd256_transform+0x4373/0x4440
[  406.248742][T12384]  rmd256_update+0x343/0x4f0
[  406.248742][T12384]  crypto_shash_update+0x4e9/0x550
[  406.248742][T12384]  shash_async_update+0x113/0x1d0
[  406.248742][T12384]  hash_sendpage+0x8ef/0xdf0
[  406.248742][T12384]  sock_sendpage+0x1e1/0x2c0
[  406.248742][T12384]  pipe_to_sendpage+0x38c/0x4c0
[  406.248742][T12384]  __splice_from_pipe+0x565/0xf00
[  406.248742][T12384]  generic_splice_sendpage+0x1d5/0x2d0
[  406.248742][T12384]  direct_splice_actor+0x1fd/0x580
[  406.248742][T12384]  splice_direct_to_actor+0x6b2/0xf50
[  406.248742][T12384]  do_splice_direct+0x342/0x580
[  406.248742][T12384]  do_sendfile+0x101b/0x1d40
[  406.248742][T12384]  __se_sys_sendfile64+0x2bb/0x360
[  406.248742][T12384]  __x64_sys_sendfile64+0x56/0x70
[  406.248742][T12384]  do_syscall_64+0xb0/0x150
[  406.248742][T12384]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  406.248742][T12384] 
[  406.248742][T12384] Uninit was stored to memory at:
[  406.248742][T12384]  kmsan_internal_chain_origin+0xad/0x130
[  406.248742][T12384]  __msan_chain_origin+0x50/0x90
[  406.248742][T12384]  rmd256_transform+0x4373/0x4440
[  406.248742][T12384]  rmd256_update+0x343/0x4f0
[  406.248742][T12384]  crypto_shash_update+0x4e9/0x550
[  406.248742][T12384]  shash_async_update+0x113/0x1d0
[  406.248742][T12384]  hash_sendpage+0x8ef/0xdf0
[  406.248742][T12384]  sock_sendpage+0x1e1/0x2c0
[  406.248742][T12384]  pipe_to_sendpage+0x38c/0x4c0
[  406.248742][T12384]  __splice_from_pipe+0x565/0xf00
[  406.248742][T12384]  generic_splice_sendpage+0x1d5/0x2d0
[  406.248742][T12384]  direct_splice_actor+0x1fd/0x580
[  406.248742][T12384]  splice_direct_to_actor+0x6b2/0xf50
[  406.248742][T12384]  do_splice_direct+0x342/0x580
[  406.248742][T12384]  do_sendfile+0x101b/0x1d40
[  406.248742][T12384]  __se_sys_sendfile64+0x2bb/0x360
[  406.248742][T12384]  __x64_sys_sendfile64+0x56/0x70
[  406.248742][T12384]  do_syscall_64+0xb0/0x150
[  406.248742][T12384]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  406.248742][T12384] 
[  406.248742][T12384] Uninit was stored to memory at:
[  406.248742][T12384]  kmsan_internal_chain_origin+0xad/0x130
[  406.248742][T12384]  __msan_chain_origin+0x50/0x90
[  406.248742][T12384]  rmd256_transform+0x4373/0x4440
[  406.248742][T12384]  rmd256_update+0x343/0x4f0
[  406.248742][T12384]  crypto_shash_update+0x4e9/0x550
[  406.248742][T12384]  shash_async_update+0x113/0x1d0
[  406.248742][T12384]  hash_sendpage+0x8ef/0xdf0
[  406.248742][T12384]  sock_sendpage+0x1e1/0x2c0
[  406.248742][T12384]  pipe_to_sendpage+0x38c/0x4c0
[  406.248742][T12384]  __splice_from_pipe+0x565/0xf00
[  406.248742][T12384]  generic_splice_sendpage+0x1d5/0x2d0
[  406.248742][T12384]  direct_splice_actor+0x1fd/0x580
[  406.248742][T12384]  splice_direct_to_actor+0x6b2/0xf50
[  406.248742][T12384]  do_splice_direct+0x342/0x580
[  406.248742][T12384]  do_sendfile+0x101b/0x1d40
[  406.248742][T12384]  __se_sys_sendfile64+0x2bb/0x360
[  406.248742][T12384]  __x64_sys_sendfile64+0x56/0x70
[  406.248742][T12384]  do_syscall_64+0xb0/0x150
[  406.248742][T12384]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  406.248742][T12384] 
[  406.248742][T12384] Uninit was stored to memory at:
[  406.248742][T12384]  kmsan_internal_chain_origin+0xad/0x130
[  406.248742][T12384]  __msan_chain_origin+0x50/0x90
[  406.248742][T12384]  rmd256_transform+0x4373/0x4440
[  406.248742][T12384]  rmd256_update+0x343/0x4f0
[  406.248742][T12384]  crypto_shash_update+0x4e9/0x550
[  406.248742][T12384]  shash_async_update+0x113/0x1d0
[  406.248742][T12384]  hash_sendpage+0x8ef/0xdf0
[  406.248742][T12384]  sock_sendpage+0x1e1/0x2c0
[  406.248742][T12384]  pipe_to_sendpage+0x38c/0x4c0
[  406.248742][T12384]  __splice_from_pipe+0x565/0xf00
[  406.248742][T12384]  generic_splice_sendpage+0x1d5/0x2d0
[  406.248742][T12384]  direct_splice_actor+0x1fd/0x580
[  406.248742][T12384]  splice_direct_to_actor+0x6b2/0xf50
[  406.248742][T12384]  do_splice_direct+0x342/0x580
[  406.248742][T12384]  do_sendfile+0x101b/0x1d40
[  406.248742][T12384]  __se_sys_sendfile64+0x2bb/0x360
[  406.248742][T12384]  __x64_sys_sendfile64+0x56/0x70
[  406.248742][T12384]  do_syscall_64+0xb0/0x150
[  406.248742][T12384]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  406.248742][T12384] 
[  406.248742][T12384] Uninit was stored to memory at:
[  406.248742][T12384]  kmsan_internal_chain_origin+0xad/0x130
[  406.248742][T12384]  __msan_chain_origin+0x50/0x90
[  406.248742][T12384]  rmd256_transform+0x4373/0x4440
[  406.248742][T12384]  rmd256_update+0x343/0x4f0
[  406.248742][T12384]  crypto_shash_update+0x4e9/0x550
[  406.248742][T12384]  shash_async_update+0x113/0x1d0
[  406.248742][T12384]  hash_sendpage+0x8ef/0xdf0
[  406.248742][T12384]  sock_sendpage+0x1e1/0x2c0
[  406.248742][T12384]  pipe_to_sendpage+0x38c/0x4c0
[  406.248742][T12384]  __splice_from_pipe+0x565/0xf00
[  406.248742][T12384]  generic_splice_sendpage+0x1d5/0x2d0
[  406.248742][T12384]  direct_splice_actor+0x1fd/0x580
[  406.248742][T12384]  splice_direct_to_actor+0x6b2/0xf50
[  406.248742][T12384]  do_splice_direct+0x342/0x580
[  406.248742][T12384]  do_sendfile+0x101b/0x1d40
[  406.248742][T12384]  __se_sys_sendfile64+0x2bb/0x360
[  406.248742][T12384]  __x64_sys_sendfile64+0x56/0x70
[  406.248742][T12384]  do_syscall_64+0xb0/0x150
[  406.248742][T12384]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  406.248742][T12384] 
[  406.248742][T12384] Uninit was stored to memory at:
[  406.248742][T12384]  kmsan_internal_chain_origin+0xad/0x130
[  406.248742][T12384]  __msan_chain_origin+0x50/0x90
[  406.248742][T12384]  rmd256_transform+0x4373/0x4440
[  406.248742][T12384]  rmd256_update+0x227/0x4f0
[  406.248742][T12384]  crypto_shash_update+0x4e9/0x550
[  406.248742][T12384]  shash_async_update+0x113/0x1d0
[  406.248742][T12384]  hash_sendpage+0x8ef/0xdf0
[  406.248742][T12384]  sock_sendpage+0x1e1/0x2c0
[  406.248742][T12384]  pipe_to_sendpage+0x38c/0x4c0
[  406.248742][T12384]  __splice_from_pipe+0x565/0xf00
[  406.248742][T12384]  generic_splice_sendpage+0x1d5/0x2d0
[  406.248742][T12384]  direct_splice_actor+0x1fd/0x580
[  406.248742][T12384]  splice_direct_to_actor+0x6b2/0xf50
[  406.248742][T12384]  do_splice_direct+0x342/0x580
[  406.248742][T12384]  do_sendfile+0x101b/0x1d40
[  406.248742][T12384]  __se_sys_sendfile64+0x2bb/0x360
[  406.248742][T12384]  __x64_sys_sendfile64+0x56/0x70
[  406.248742][T12384]  do_syscall_64+0xb0/0x150
[  406.248742][T12384]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  406.248742][T12384] 
[  406.248742][T12384] Uninit was stored to memory at:
[  406.248742][T12384]  kmsan_internal_chain_origin+0xad/0x130
[  406.248742][T12384]  kmsan_memcpy_memmove_metadata+0x272/0x2e0
[  406.248742][T12384]  kmsan_memcpy_metadata+0xb/0x10
[  406.248742][T12384]  __msan_memcpy+0x43/0x50
[  406.248742][T12384]  rmd256_update+0x1fc/0x4f0
[  406.248742][T12384]  crypto_shash_update+0x4e9/0x550
[  406.248742][T12384]  shash_async_update+0x113/0x1d0
[  406.248742][T12384]  hash_sendpage+0x8ef/0xdf0
[  406.248742][T12384]  sock_sendpage+0x1e1/0x2c0
[  406.248742][T12384]  pipe_to_sendpage+0x38c/0x4c0
[  406.248742][T12384]  __splice_from_pipe+0x565/0xf00
[  406.248742][T12384]  generic_splice_sendpage+0x1d5/0x2d0
[  406.248742][T12384]  direct_splice_actor+0x1fd/0x580
[  406.248742][T12384]  splice_direct_to_actor+0x6b2/0xf50
[  406.248742][T12384]  do_splice_direct+0x342/0x580
[  406.248742][T12384]  do_sendfile+0x101b/0x1d40
[  406.248742][T12384]  __se_sys_sendfile64+0x2bb/0x360
[  406.248742][T12384]  __x64_sys_sendfile64+0x56/0x70
[  406.248742][T12384]  do_syscall_64+0xb0/0x150
[  406.248742][T12384]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  406.248742][T12384] 
[  406.248742][T12384] Uninit was created at:
[  406.248742][T12384]  kmsan_save_stack_with_flags+0x3c/0x90
[  406.248742][T12384]  kmsan_alloc_page+0xb9/0x180
[  406.248742][T12384]  __alloc_pages_nodemask+0x56a2/0x5dc0
[  406.248742][T12384]  alloc_pages_current+0x672/0x990
[  406.248742][T12384]  push_pipe+0x605/0xb70
[  406.248742][T12384]  iov_iter_get_pages_alloc+0x18a9/0x21c0
[  406.248742][T12384]  do_splice_to+0x4fc/0x14f0
[  406.248742][T12384]  splice_direct_to_actor+0x45c/0xf50
[  406.248742][T12384]  do_splice_direct+0x342/0x580
[  406.248742][T12384]  do_sendfile+0x101b/0x1d40
[  406.248742][T12384]  __se_sys_sendfile64+0x2bb/0x360
[  406.248742][T12384]  __x64_sys_sendfile64+0x56/0x70
[  406.248742][T12384]  do_syscall_64+0xb0/0x150
[  406.248742][T12384]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
20:08:19 executing program 5:
r0 = add_key$keyring(&(0x7f0000000100)='keyring\x00', &(0x7f0000000180)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$restrict_keyring(0x1d, r0, 0x0, 0x0)
keyctl$restrict_keyring(0x1d, r0, 0x0, 0x0)

[  407.393855][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
20:08:19 executing program 4:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000400)="6653070000053c27bc3376003639405cb4aed12f0000001500ae47a825d86800278dcff47d010000805acf4f8f36460234432479aed75d492b415bcee00a06dc9d8e99adaf81dcfc6afd983f79e65199615607676f8f9fc0ebf8b0b16d6f2c59957ab364884b3c5d05692e664ebf68e6faa53367", 0x74}], 0x4, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$cont(0x18, r0, 0x0, 0x0)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x20, r0, 0x0, 0x0)

20:08:19 executing program 3:
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000001c0), 0xc, &(0x7f00000008c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="000426bd7000fedbdf250d000000080034", @ANYRES32=0x0, @ANYBLOB="e0f0fdcb69a067053b14d7a44ca9ff6dedc9d15f7745c5298ff283c1edd156d0beaa2059b57c0366b4ef51f4f58652ef0dbdde68cd9d7f6a7ddbcbe278a8"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2400c004)
r2 = openat$cgroup_ro(r0, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r2, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x24, r1, 0x712, 0x70bd26, 0x25dfdbff}, 0x24}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
mmap$usbfs(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x180001d, 0x80010, r2, 0x8a0)
prlimit64(0x0, 0x10, 0x0, 0x0)

20:08:19 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
sendmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x1000000, &(0x7f0000000080)=[{&(0x7f0000000180)="2e0000001d008103e00f80ecdb4cb9d90163190405000f00000000fb12000100ac14141840d819a9060015000000", 0x2e}], 0x1}, 0x0)

20:08:19 executing program 4:
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
mount$fuse(0x20000000, &(0x7f00000004c0)='./file0\x00', 0x0, 0x7a04, 0x0)
chdir(&(0x7f0000000240)='./file0\x00')
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = fcntl$dupfd(r0, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='cpuset.memory_pressure\x00', 0x275a, 0x0)
syz_genetlink_get_family_id$SEG6(&(0x7f0000000140)='SEG6\x00')
syncfs(r3)

20:08:20 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000200), 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0x3c)
execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffffff, 0xc0206434, &(0x7f0000000140)={0xcdf2, <r1=>0x0, 0x2, 0xcb})
ioctl$DRM_IOCTL_SG_ALLOC(0xffffffffffffffff, 0xc0106438, &(0x7f0000000280)={0x9, r1})
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000740)={@in6={{0xa, 0x4e23, 0x0, @ipv4={[], [], @private=0xa010102}}}, 0x0, 0x2, 0x46, 0x0, "0000000000000400"}, 0xd8)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x1802}, 0x1c)
r2 = clone3(&(0x7f0000001680)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x40)
rt_sigqueueinfo(r2, 0x40, &(0x7f00000016c0)={0x0, 0x0, 0x80000000})
r3 = syz_open_procfs(0x0, &(0x7f0000000100)='net/dev_snmp6\x00')
bind$inet6(0xffffffffffffffff, &(0x7f00000003c0)={0xa, 0x4e20, 0x1, @private2={0xfc, 0x2, [], 0x1}, 0xd950}, 0x1c)
getdents(r3, &(0x7f0000000040)=""/46, 0x2e)
ioctl$FIONREAD(r3, 0x541b, &(0x7f0000000080))
syz_open_dev$ptys(0xc, 0x3, 0x1)
io_pgetevents(0x0, 0x100, 0x1, &(0x7f0000000240)=[{}], &(0x7f00000002c0)={0x77359400}, &(0x7f0000000440)={&(0x7f0000000400), 0x8})
get_robust_list(r2, 0x0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f0000000300)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaa0086dd6000000000082b00fe9f00000000000090e500d8b7e96780000000000068d33e3b7ff8df33be4fed859b7672ca8537c3e9ef51d2cbb505e259e651fe9e84246feb582fa0ab34e6185d50ae95235a79157b2bee14c0a0ff8990538db3b6c922bc320c813d001e161bddd042c6ba39cef70a49df1245887c00"/144], 0x0)
setxattr$security_ima(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='security.ima\x00', &(0x7f00000001c0)=@md5={0x1, "cb2f0453a173e6b22ccf2f7ac8f1493d"}, 0x11, 0x3)

20:08:21 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

20:08:21 executing program 3:
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000280)=0x2)
r1 = openat$cgroup_ro(r0, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
ioctl$SNAPSHOT_ALLOC_SWAP_PAGE(r1, 0x80083314, &(0x7f0000000200))
ioctl$sock_SIOCGIFVLAN_SET_VLAN_NAME_TYPE_CMD(r0, 0x8982, &(0x7f0000000180)={0x6, 'veth0_to_team\x00', {0x5}, 0xed})
r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000008c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="000426bd7000fedbdf250d000000080034", @ANYRES32=0x0, @ANYBLOB="e0f0fdcb69a067053b14d7a44ca9ff6dedc9d15f7745c5298ff283c1edd156d0beaa2059b57c0366b4ef51f4f58652ef0dbdde68cd9d7f6a7ddbcbe278a8"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2400c004)
r4 = openat$cgroup_ro(r2, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r4, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x14, r3, 0x712, 0x70bd26, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4040086}, 0x8004845)
sendmsg$RDMA_NLDEV_CMD_DELLINK(r4, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000240)={0x40, 0x1404, 0x100, 0x70bd2b, 0x25dfdbfc, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x1}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}]}, 0x40}, 0x1, 0x0, 0x0, 0x10}, 0x80)

20:08:21 executing program 2:
r0 = socket$kcm(0x10, 0x2, 0x10)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
sendmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x1000000, &(0x7f0000000080)=[{&(0x7f0000000180)="2e0000001d008103e00f80ecdb4cb9d90163190405000f00000000fb12000100ac14141840d819a9060015000000", 0x2e}], 0x1}, 0x0)

20:08:21 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r1, r2, 0x0, 0x1000007ffff000)
chroot(&(0x7f00000000c0)='./file0\x00')
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
accept$alg(r2, 0x0, 0x0)
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000008c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="000426bd7000fedbdf250d000000080034", @ANYRES32=0x0, @ANYBLOB="e0f0fdcb69a067053b14d7a44ca9ff6dedc9d15f7745c5298ff283c1edd156d0beaa2059b57c0366b4ef51f4f58652ef0dbdde68cd9d7f6a7ddbcbe278a8"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2400c004)
r5 = openat$cgroup_ro(r3, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r5, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000180)={0x1c, r4, 0x712, 0x70bd26, 0x25dfdbff, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
write$vhci(r5, &(0x7f0000000100)=@HCI_EVENT_PKT={0x4, @hci_ev_key_refresh_complete={{0x30, 0x3}, {0xff, 0x7f}}}, 0x6)

20:08:21 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000200), 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0x3c)
execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffffff, 0xc0206434, &(0x7f0000000140)={0xcdf2, <r1=>0x0, 0x2, 0xcb})
ioctl$DRM_IOCTL_SG_ALLOC(0xffffffffffffffff, 0xc0106438, &(0x7f0000000280)={0x9, r1})
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000740)={@in6={{0xa, 0x4e23, 0x0, @ipv4={[], [], @private=0xa010102}}}, 0x0, 0x2, 0x46, 0x0, "0000000000000400"}, 0xd8)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x1802}, 0x1c)
r2 = clone3(&(0x7f0000001680)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x40)
rt_sigqueueinfo(r2, 0x40, &(0x7f00000016c0)={0x0, 0x0, 0x80000000})
r3 = syz_open_procfs(0x0, &(0x7f0000000100)='net/dev_snmp6\x00')
bind$inet6(0xffffffffffffffff, &(0x7f00000003c0)={0xa, 0x4e20, 0x1, @private2={0xfc, 0x2, [], 0x1}, 0xd950}, 0x1c)
getdents(r3, &(0x7f0000000040)=""/46, 0x2e)
ioctl$FIONREAD(r3, 0x541b, &(0x7f0000000080))
syz_open_dev$ptys(0xc, 0x3, 0x1)
io_pgetevents(0x0, 0x100, 0x1, &(0x7f0000000240)=[{}], &(0x7f00000002c0)={0x77359400}, &(0x7f0000000440)={&(0x7f0000000400), 0x8})
get_robust_list(r2, 0x0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f0000000300)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaa0086dd6000000000082b00fe9f00000000000090e500d8b7e96780000000000068d33e3b7ff8df33be4fed859b7672ca8537c3e9ef51d2cbb505e259e651fe9e84246feb582fa0ab34e6185d50ae95235a79157b2bee14c0a0ff8990538db3b6c922bc320c813d001e161bddd042c6ba39cef70a49df1245887c00"/144], 0x0)
setxattr$security_ima(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='security.ima\x00', &(0x7f00000001c0)=@md5={0x1, "cb2f0453a173e6b22ccf2f7ac8f1493d"}, 0x11, 0x3)

20:08:21 executing program 4:
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
mount$fuse(0x20000000, &(0x7f00000004c0)='./file0\x00', 0x0, 0x7a04, 0x0)
chdir(&(0x7f0000000240)='./file0\x00')
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = fcntl$dupfd(r0, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='cpuset.memory_pressure\x00', 0x275a, 0x0)
syz_genetlink_get_family_id$SEG6(&(0x7f0000000140)='SEG6\x00')
syncfs(r3)

20:08:21 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000200), 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0x3c)
execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffffff, 0xc0206434, &(0x7f0000000140)={0xcdf2, <r1=>0x0, 0x2, 0xcb})
ioctl$DRM_IOCTL_SG_ALLOC(0xffffffffffffffff, 0xc0106438, &(0x7f0000000280)={0x9, r1})
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000740)={@in6={{0xa, 0x4e23, 0x0, @ipv4={[], [], @private=0xa010102}}}, 0x0, 0x2, 0x46, 0x0, "0000000000000400"}, 0xd8)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x1802}, 0x1c)
r2 = clone3(&(0x7f0000001680)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x40)
rt_sigqueueinfo(r2, 0x40, &(0x7f00000016c0)={0x0, 0x0, 0x80000000})
r3 = syz_open_procfs(0x0, &(0x7f0000000100)='net/dev_snmp6\x00')
bind$inet6(0xffffffffffffffff, &(0x7f00000003c0)={0xa, 0x4e20, 0x1, @private2={0xfc, 0x2, [], 0x1}, 0xd950}, 0x1c)
getdents(r3, &(0x7f0000000040)=""/46, 0x2e)
ioctl$FIONREAD(r3, 0x541b, &(0x7f0000000080))
syz_open_dev$ptys(0xc, 0x3, 0x1)
io_pgetevents(0x0, 0x100, 0x1, &(0x7f0000000240)=[{}], &(0x7f00000002c0)={0x77359400}, &(0x7f0000000440)={&(0x7f0000000400), 0x8})
get_robust_list(r2, 0x0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f0000000300)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaa0086dd6000000000082b00fe9f00000000000090e500d8b7e96780000000000068d33e3b7ff8df33be4fed859b7672ca8537c3e9ef51d2cbb505e259e651fe9e84246feb582fa0ab34e6185d50ae95235a79157b2bee14c0a0ff8990538db3b6c922bc320c813d001e161bddd042c6ba39cef70a49df1245887c00"/144], 0x0)
setxattr$security_ima(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='security.ima\x00', &(0x7f00000001c0)=@md5={0x1, "cb2f0453a173e6b22ccf2f7ac8f1493d"}, 0x11, 0x3)

[  409.339499][T12425] not chained 610000 origins
[  409.344125][T12425] CPU: 1 PID: 12425 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0
[  409.349249][T12425] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  409.349249][T12425] Call Trace:
[  409.349249][T12425]  dump_stack+0x1df/0x240
[  409.349249][T12425]  kmsan_internal_chain_origin+0x6f/0x130
[  409.349249][T12425]  ? is_module_text_address+0x4d/0x2a0
[  409.349249][T12425]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  409.349249][T12425]  ? __kernel_text_address+0x171/0x2d0
[  409.349249][T12425]  ? unwind_get_return_address+0x8c/0x130
[  409.349249][T12425]  ? entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  409.349249][T12425]  ? arch_stack_walk+0x2a2/0x3e0
[  409.349249][T12425]  ? stack_trace_save+0x1a0/0x1a0
[  409.349249][T12425]  ? kmsan_get_metadata+0x4f/0x180
[  409.349249][T12425]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  409.349249][T12425]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  409.349249][T12425]  ? stack_trace_save+0x123/0x1a0
[  409.349249][T12425]  ? kmsan_get_metadata+0x11d/0x180
[  409.349249][T12425]  __msan_chain_origin+0x50/0x90
[  409.349249][T12425]  rmd256_transform+0x4373/0x4440
[  409.349249][T12425]  rmd256_update+0x343/0x4f0
[  409.349249][T12425]  ? rmd256_init+0x260/0x260
[  409.349249][T12425]  crypto_shash_update+0x4e9/0x550
[  409.349249][T12425]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  409.349249][T12425]  ? crypto_hash_walk_first+0x1fd/0x360
[  409.349249][T12425]  ? kmsan_get_metadata+0x4f/0x180
[  409.349249][T12425]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  409.349249][T12425]  shash_async_update+0x113/0x1d0
[  409.349249][T12425]  ? shash_async_init+0x1e0/0x1e0
[  409.349249][T12425]  hash_sendpage+0x8ef/0xdf0
[  409.349249][T12425]  ? hash_recvmsg+0xd30/0xd30
[  409.349249][T12425]  sock_sendpage+0x1e1/0x2c0
[  409.349249][T12425]  pipe_to_sendpage+0x38c/0x4c0
[  409.349249][T12425]  ? sock_fasync+0x250/0x250
[  409.349249][T12425]  __splice_from_pipe+0x565/0xf00
[  409.349249][T12425]  ? generic_splice_sendpage+0x2d0/0x2d0
[  409.349249][T12425]  generic_splice_sendpage+0x1d5/0x2d0
[  409.349249][T12425]  ? iter_file_splice_write+0x1800/0x1800
[  409.349249][T12425]  direct_splice_actor+0x1fd/0x580
[  409.349249][T12425]  ? kmsan_get_metadata+0x4f/0x180
[  409.349249][T12425]  splice_direct_to_actor+0x6b2/0xf50
[  409.349249][T12425]  ? do_splice_direct+0x580/0x580
[  409.349249][T12425]  do_splice_direct+0x342/0x580
[  409.349249][T12425]  do_sendfile+0x101b/0x1d40
[  409.349249][T12425]  __se_sys_sendfile64+0x2bb/0x360
[  409.349249][T12425]  ? kmsan_get_metadata+0x4f/0x180
[  409.349249][T12425]  __x64_sys_sendfile64+0x56/0x70
[  409.349249][T12425]  do_syscall_64+0xb0/0x150
[  409.349249][T12425]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  409.349249][T12425] RIP: 0033:0x45c1d9
[  409.349249][T12425] Code: Bad RIP value.
[  409.349249][T12425] RSP: 002b:00007f3a4d702c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  409.349249][T12425] RAX: ffffffffffffffda RBX: 0000000000025a00 RCX: 000000000045c1d9
[  409.349249][T12425] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004
[  409.349249][T12425] RBP: 000000000078bf48 R08: 0000000000000000 R09: 0000000000000000
[  409.349249][T12425] R10: 001000007ffff000 R11: 0000000000000246 R12: 000000000078bf0c
[  409.349249][T12425] R13: 0000000000c9fb6f R14: 00007f3a4d7039c0 R15: 000000000078bf0c
[  409.349249][T12425] Uninit was stored to memory at:
[  409.349249][T12425]  kmsan_internal_chain_origin+0xad/0x130
[  409.349249][T12425]  __msan_chain_origin+0x50/0x90
[  409.349249][T12425]  rmd256_transform+0x4373/0x4440
[  409.349249][T12425]  rmd256_update+0x343/0x4f0
[  409.349249][T12425]  crypto_shash_update+0x4e9/0x550
[  409.349249][T12425]  shash_async_update+0x113/0x1d0
[  409.349249][T12425]  hash_sendpage+0x8ef/0xdf0
[  409.349249][T12425]  sock_sendpage+0x1e1/0x2c0
[  409.349249][T12425]  pipe_to_sendpage+0x38c/0x4c0
[  409.349249][T12425]  __splice_from_pipe+0x565/0xf00
[  409.349249][T12425]  generic_splice_sendpage+0x1d5/0x2d0
[  409.720698][T12425]  direct_splice_actor+0x1fd/0x580
[  409.720698][T12425]  splice_direct_to_actor+0x6b2/0xf50
[  409.727241][T12425]  do_splice_direct+0x342/0x580
[  409.727241][T12425]  do_sendfile+0x101b/0x1d40
[  409.727241][T12425]  __se_sys_sendfile64+0x2bb/0x360
[  409.727241][T12425]  __x64_sys_sendfile64+0x56/0x70
[  409.727241][T12425]  do_syscall_64+0xb0/0x150
[  409.727241][T12425]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  409.727241][T12425] 
[  409.727241][T12425] Uninit was stored to memory at:
[  409.727241][T12425]  kmsan_internal_chain_origin+0xad/0x130
[  409.727241][T12425]  __msan_chain_origin+0x50/0x90
[  409.727241][T12425]  rmd256_transform+0x4373/0x4440
[  409.727241][T12425]  rmd256_update+0x343/0x4f0
[  409.727241][T12425]  crypto_shash_update+0x4e9/0x550
[  409.727241][T12425]  shash_async_update+0x113/0x1d0
[  409.727241][T12425]  hash_sendpage+0x8ef/0xdf0
[  409.727241][T12425]  sock_sendpage+0x1e1/0x2c0
[  409.727241][T12425]  pipe_to_sendpage+0x38c/0x4c0
[  409.727241][T12425]  __splice_from_pipe+0x565/0xf00
[  409.727241][T12425]  generic_splice_sendpage+0x1d5/0x2d0
[  409.727241][T12425]  direct_splice_actor+0x1fd/0x580
[  409.727241][T12425]  splice_direct_to_actor+0x6b2/0xf50
[  409.727241][T12425]  do_splice_direct+0x342/0x580
[  409.727241][T12425]  do_sendfile+0x101b/0x1d40
[  409.727241][T12425]  __se_sys_sendfile64+0x2bb/0x360
[  409.727241][T12425]  __x64_sys_sendfile64+0x56/0x70
[  409.727241][T12425]  do_syscall_64+0xb0/0x150
[  409.727241][T12425]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  409.727241][T12425] 
[  409.727241][T12425] Uninit was stored to memory at:
[  409.727241][T12425]  kmsan_internal_chain_origin+0xad/0x130
[  409.727241][T12425]  __msan_chain_origin+0x50/0x90
[  409.727241][T12425]  rmd256_transform+0x4373/0x4440
[  409.727241][T12425]  rmd256_update+0x343/0x4f0
[  409.727241][T12425]  crypto_shash_update+0x4e9/0x550
[  409.727241][T12425]  shash_async_update+0x113/0x1d0
[  409.727241][T12425]  hash_sendpage+0x8ef/0xdf0
[  409.727241][T12425]  sock_sendpage+0x1e1/0x2c0
[  409.727241][T12425]  pipe_to_sendpage+0x38c/0x4c0
[  409.727241][T12425]  __splice_from_pipe+0x565/0xf00
[  409.727241][T12425]  generic_splice_sendpage+0x1d5/0x2d0
[  409.727241][T12425]  direct_splice_actor+0x1fd/0x580
[  409.727241][T12425]  splice_direct_to_actor+0x6b2/0xf50
[  409.727241][T12425]  do_splice_direct+0x342/0x580
[  409.727241][T12425]  do_sendfile+0x101b/0x1d40
[  409.727241][T12425]  __se_sys_sendfile64+0x2bb/0x360
[  409.727241][T12425]  __x64_sys_sendfile64+0x56/0x70
[  409.727241][T12425]  do_syscall_64+0xb0/0x150
[  409.727241][T12425]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  409.727241][T12425] 
[  409.727241][T12425] Uninit was stored to memory at:
[  409.727241][T12425]  kmsan_internal_chain_origin+0xad/0x130
[  409.727241][T12425]  __msan_chain_origin+0x50/0x90
[  409.727241][T12425]  rmd256_transform+0x4373/0x4440
[  409.727241][T12425]  rmd256_update+0x343/0x4f0
[  409.727241][T12425]  crypto_shash_update+0x4e9/0x550
[  409.727241][T12425]  shash_async_update+0x113/0x1d0
[  409.727241][T12425]  hash_sendpage+0x8ef/0xdf0
[  409.727241][T12425]  sock_sendpage+0x1e1/0x2c0
[  409.727241][T12425]  pipe_to_sendpage+0x38c/0x4c0
[  409.727241][T12425]  __splice_from_pipe+0x565/0xf00
[  409.727241][T12425]  generic_splice_sendpage+0x1d5/0x2d0
[  409.727241][T12425]  direct_splice_actor+0x1fd/0x580
[  409.727241][T12425]  splice_direct_to_actor+0x6b2/0xf50
[  409.727241][T12425]  do_splice_direct+0x342/0x580
[  409.727241][T12425]  do_sendfile+0x101b/0x1d40
[  409.727241][T12425]  __se_sys_sendfile64+0x2bb/0x360
[  409.727241][T12425]  __x64_sys_sendfile64+0x56/0x70
[  409.727241][T12425]  do_syscall_64+0xb0/0x150
[  409.727241][T12425]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  409.727241][T12425] 
[  409.727241][T12425] Uninit was stored to memory at:
[  409.727241][T12425]  kmsan_internal_chain_origin+0xad/0x130
[  409.727241][T12425]  __msan_chain_origin+0x50/0x90
[  409.727241][T12425]  rmd256_transform+0x4373/0x4440
[  409.727241][T12425]  rmd256_update+0x343/0x4f0
[  409.727241][T12425]  crypto_shash_update+0x4e9/0x550
[  409.727241][T12425]  shash_async_update+0x113/0x1d0
[  409.727241][T12425]  hash_sendpage+0x8ef/0xdf0
[  409.727241][T12425]  sock_sendpage+0x1e1/0x2c0
[  409.727241][T12425]  pipe_to_sendpage+0x38c/0x4c0
[  409.727241][T12425]  __splice_from_pipe+0x565/0xf00
[  409.727241][T12425]  generic_splice_sendpage+0x1d5/0x2d0
[  409.727241][T12425]  direct_splice_actor+0x1fd/0x580
[  409.727241][T12425]  splice_direct_to_actor+0x6b2/0xf50
[  409.727241][T12425]  do_splice_direct+0x342/0x580
[  409.727241][T12425]  do_sendfile+0x101b/0x1d40
[  409.727241][T12425]  __se_sys_sendfile64+0x2bb/0x360
[  409.727241][T12425]  __x64_sys_sendfile64+0x56/0x70
[  409.727241][T12425]  do_syscall_64+0xb0/0x150
[  409.727241][T12425]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  409.727241][T12425] 
[  409.727241][T12425] Uninit was stored to memory at:
[  409.727241][T12425]  kmsan_internal_chain_origin+0xad/0x130
[  409.727241][T12425]  __msan_chain_origin+0x50/0x90
[  409.727241][T12425]  rmd256_transform+0x4373/0x4440
[  409.727241][T12425]  rmd256_update+0x227/0x4f0
[  409.727241][T12425]  crypto_shash_update+0x4e9/0x550
[  409.727241][T12425]  shash_async_update+0x113/0x1d0
[  409.727241][T12425]  hash_sendpage+0x8ef/0xdf0
[  409.727241][T12425]  sock_sendpage+0x1e1/0x2c0
[  409.727241][T12425]  pipe_to_sendpage+0x38c/0x4c0
[  409.727241][T12425]  __splice_from_pipe+0x565/0xf00
[  409.727241][T12425]  generic_splice_sendpage+0x1d5/0x2d0
[  409.727241][T12425]  direct_splice_actor+0x1fd/0x580
[  409.727241][T12425]  splice_direct_to_actor+0x6b2/0xf50
[  409.727241][T12425]  do_splice_direct+0x342/0x580
[  409.727241][T12425]  do_sendfile+0x101b/0x1d40
[  409.727241][T12425]  __se_sys_sendfile64+0x2bb/0x360
[  409.727241][T12425]  __x64_sys_sendfile64+0x56/0x70
[  409.727241][T12425]  do_syscall_64+0xb0/0x150
[  409.727241][T12425]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  409.727241][T12425] 
[  409.727241][T12425] Uninit was stored to memory at:
[  409.727241][T12425]  kmsan_internal_chain_origin+0xad/0x130
[  409.727241][T12425]  kmsan_memcpy_memmove_metadata+0x272/0x2e0
[  409.727241][T12425]  kmsan_memcpy_metadata+0xb/0x10
[  409.727241][T12425]  __msan_memcpy+0x43/0x50
[  409.727241][T12425]  rmd256_update+0x1fc/0x4f0
[  409.727241][T12425]  crypto_shash_update+0x4e9/0x550
[  409.727241][T12425]  shash_async_update+0x113/0x1d0
[  409.727241][T12425]  hash_sendpage+0x8ef/0xdf0
[  409.727241][T12425]  sock_sendpage+0x1e1/0x2c0
[  409.727241][T12425]  pipe_to_sendpage+0x38c/0x4c0
[  409.727241][T12425]  __splice_from_pipe+0x565/0xf00
[  409.727241][T12425]  generic_splice_sendpage+0x1d5/0x2d0
[  409.727241][T12425]  direct_splice_actor+0x1fd/0x580
[  409.727241][T12425]  splice_direct_to_actor+0x6b2/0xf50
[  409.727241][T12425]  do_splice_direct+0x342/0x580
[  409.727241][T12425]  do_sendfile+0x101b/0x1d40
[  409.727241][T12425]  __se_sys_sendfile64+0x2bb/0x360
[  409.727241][T12425]  __x64_sys_sendfile64+0x56/0x70
[  409.727241][T12425]  do_syscall_64+0xb0/0x150
[  409.727241][T12425]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  409.727241][T12425] 
[  409.727241][T12425] Uninit was created at:
[  409.727241][T12425]  kmsan_save_stack_with_flags+0x3c/0x90
[  409.727241][T12425]  kmsan_alloc_page+0xb9/0x180
[  409.727241][T12425]  __alloc_pages_nodemask+0x56a2/0x5dc0
[  409.727241][T12425]  alloc_pages_current+0x672/0x990
[  409.727241][T12425]  push_pipe+0x605/0xb70
[  409.727241][T12425]  iov_iter_get_pages_alloc+0x18a9/0x21c0
[  409.727241][T12425]  do_splice_to+0x4fc/0x14f0
[  409.727241][T12425]  splice_direct_to_actor+0x45c/0xf50
[  409.727241][T12425]  do_splice_direct+0x342/0x580
[  409.727241][T12425]  do_sendfile+0x101b/0x1d40
[  409.727241][T12425]  __se_sys_sendfile64+0x2bb/0x360
20:08:22 executing program 4:
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
mount$fuse(0x20000000, &(0x7f00000004c0)='./file0\x00', 0x0, 0x7a04, 0x0)
chdir(&(0x7f0000000240)='./file0\x00')
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = fcntl$dupfd(r0, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='cpuset.memory_pressure\x00', 0x275a, 0x0)
syz_genetlink_get_family_id$SEG6(&(0x7f0000000140)='SEG6\x00')
syncfs(r3)

[  409.727241][T12425]  __x64_sys_sendfile64+0x56/0x70
[  409.727241][T12425]  do_syscall_64+0xb0/0x150
[  409.727241][T12425]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  410.552014][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
20:08:23 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

20:08:23 executing program 4:
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
mount$fuse(0x20000000, &(0x7f00000004c0)='./file0\x00', 0x0, 0x7a04, 0x0)
chdir(&(0x7f0000000240)='./file0\x00')
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = fcntl$dupfd(r0, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='cpuset.memory_pressure\x00', 0x275a, 0x0)
syz_genetlink_get_family_id$SEG6(&(0x7f0000000140)='SEG6\x00')
syncfs(r3)

20:08:23 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000200), 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0x3c)
execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffffff, 0xc0206434, &(0x7f0000000140)={0xcdf2, <r1=>0x0, 0x2, 0xcb})
ioctl$DRM_IOCTL_SG_ALLOC(0xffffffffffffffff, 0xc0106438, &(0x7f0000000280)={0x9, r1})
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000740)={@in6={{0xa, 0x4e23, 0x0, @ipv4={[], [], @private=0xa010102}}}, 0x0, 0x2, 0x46, 0x0, "0000000000000400"}, 0xd8)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x1802}, 0x1c)
r2 = clone3(&(0x7f0000001680)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x40)
rt_sigqueueinfo(r2, 0x40, &(0x7f00000016c0)={0x0, 0x0, 0x80000000})
r3 = syz_open_procfs(0x0, &(0x7f0000000100)='net/dev_snmp6\x00')
bind$inet6(0xffffffffffffffff, &(0x7f00000003c0)={0xa, 0x4e20, 0x1, @private2={0xfc, 0x2, [], 0x1}, 0xd950}, 0x1c)
getdents(r3, &(0x7f0000000040)=""/46, 0x2e)
ioctl$FIONREAD(r3, 0x541b, &(0x7f0000000080))
syz_open_dev$ptys(0xc, 0x3, 0x1)
io_pgetevents(0x0, 0x100, 0x1, &(0x7f0000000240)=[{}], &(0x7f00000002c0)={0x77359400}, &(0x7f0000000440)={&(0x7f0000000400), 0x8})
get_robust_list(r2, 0x0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f0000000300)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaa0086dd6000000000082b00fe9f00000000000090e500d8b7e96780000000000068d33e3b7ff8df33be4fed859b7672ca8537c3e9ef51d2cbb505e259e651fe9e84246feb582fa0ab34e6185d50ae95235a79157b2bee14c0a0ff8990538db3b6c922bc320c813d001e161bddd042c6ba39cef70a49df1245887c00"/144], 0x0)
setxattr$security_ima(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='security.ima\x00', &(0x7f00000001c0)=@md5={0x1, "cb2f0453a173e6b22ccf2f7ac8f1493d"}, 0x11, 0x3)

20:08:23 executing program 4:
socket(0x28, 0x2, 0x0)

20:08:23 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

20:08:24 executing program 4:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff})
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/timer\x00', 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000000300)={{0x1}})
readv(r1, &(0x7f0000000340)=[{&(0x7f0000000480)=""/4096, 0x1000}], 0x1)
ioctl$SNDRV_TIMER_IOCTL_START(r1, 0x54a0)
r2 = dup2(r0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)

[  412.102253][T12458] not chained 620000 origins
[  412.106875][T12458] CPU: 1 PID: 12458 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0
[  412.109467][T12458] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  412.121092][T12458] Call Trace:
[  412.121092][T12458]  dump_stack+0x1df/0x240
[  412.121092][T12458]  kmsan_internal_chain_origin+0x6f/0x130
[  412.138297][T12458]  ? is_module_text_address+0x4d/0x2a0
[  412.138297][T12458]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  412.138297][T12458]  ? __kernel_text_address+0x171/0x2d0
[  412.138297][T12458]  ? unwind_get_return_address+0x8c/0x130
[  412.138297][T12458]  ? entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  412.138297][T12458]  ? arch_stack_walk+0x2a2/0x3e0
[  412.138297][T12458]  ? stack_trace_save+0x1a0/0x1a0
[  412.138297][T12458]  ? kmsan_get_metadata+0x4f/0x180
[  412.179457][T12458]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  412.179457][T12458]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  412.179457][T12458]  ? stack_trace_save+0x123/0x1a0
[  412.179457][T12458]  ? kmsan_get_metadata+0x11d/0x180
[  412.179457][T12458]  __msan_chain_origin+0x50/0x90
[  412.179457][T12458]  rmd256_transform+0x4373/0x4440
[  412.179457][T12458]  ? vub300_enable_sdio_irq+0x5a8/0xdd0
[  412.179457][T12458]  rmd256_update+0x343/0x4f0
[  412.179457][T12458]  ? rmd256_init+0x260/0x260
[  412.179457][T12458]  crypto_shash_update+0x4e9/0x550
[  412.179457][T12458]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  412.179457][T12458]  ? crypto_hash_walk_first+0x1fd/0x360
[  412.179457][T12458]  ? kmsan_get_metadata+0x4f/0x180
[  412.179457][T12458]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  412.179457][T12458]  shash_async_update+0x113/0x1d0
[  412.179457][T12458]  ? shash_async_init+0x1e0/0x1e0
[  412.179457][T12458]  hash_sendpage+0x8ef/0xdf0
[  412.179457][T12458]  ? hash_recvmsg+0xd30/0xd30
[  412.179457][T12458]  sock_sendpage+0x1e1/0x2c0
[  412.179457][T12458]  pipe_to_sendpage+0x38c/0x4c0
[  412.179457][T12458]  ? sock_fasync+0x250/0x250
[  412.179457][T12458]  __splice_from_pipe+0x565/0xf00
[  412.179457][T12458]  ? generic_splice_sendpage+0x2d0/0x2d0
[  412.179457][T12458]  generic_splice_sendpage+0x1d5/0x2d0
[  412.179457][T12458]  ? iter_file_splice_write+0x1800/0x1800
[  412.179457][T12458]  direct_splice_actor+0x1fd/0x580
[  412.179457][T12458]  ? kmsan_get_metadata+0x4f/0x180
[  412.179457][T12458]  splice_direct_to_actor+0x6b2/0xf50
[  412.179457][T12458]  ? do_splice_direct+0x580/0x580
[  412.179457][T12458]  do_splice_direct+0x342/0x580
[  412.179457][T12458]  do_sendfile+0x101b/0x1d40
[  412.179457][T12458]  __se_sys_sendfile64+0x2bb/0x360
[  412.179457][T12458]  ? kmsan_get_metadata+0x4f/0x180
[  412.179457][T12458]  __x64_sys_sendfile64+0x56/0x70
[  412.179457][T12458]  do_syscall_64+0xb0/0x150
[  412.179457][T12458]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  412.179457][T12458] RIP: 0033:0x45c1d9
[  412.179457][T12458] Code: Bad RIP value.
[  412.179457][T12458] RSP: 002b:00007f42d54efc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  412.179457][T12458] RAX: ffffffffffffffda RBX: 0000000000025a00 RCX: 000000000045c1d9
[  412.179457][T12458] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000007
[  412.179457][T12458] RBP: 000000000078bf48 R08: 0000000000000000 R09: 0000000000000000
[  412.179457][T12458] R10: 001000007ffff000 R11: 0000000000000246 R12: 000000000078bf0c
[  412.179457][T12458] R13: 0000000000c9fb6f R14: 00007f42d54f09c0 R15: 000000000078bf0c
[  412.179457][T12458] Uninit was stored to memory at:
[  412.179457][T12458]  kmsan_internal_chain_origin+0xad/0x130
[  412.179457][T12458]  __msan_chain_origin+0x50/0x90
[  412.179457][T12458]  rmd256_transform+0x4373/0x4440
[  412.179457][T12458]  rmd256_update+0x343/0x4f0
[  412.179457][T12458]  crypto_shash_update+0x4e9/0x550
[  412.179457][T12458]  shash_async_update+0x113/0x1d0
[  412.179457][T12458]  hash_sendpage+0x8ef/0xdf0
[  412.179457][T12458]  sock_sendpage+0x1e1/0x2c0
[  412.179457][T12458]  pipe_to_sendpage+0x38c/0x4c0
[  412.179457][T12458]  __splice_from_pipe+0x565/0xf00
[  412.179457][T12458]  generic_splice_sendpage+0x1d5/0x2d0
[  412.179457][T12458]  direct_splice_actor+0x1fd/0x580
[  412.179457][T12458]  splice_direct_to_actor+0x6b2/0xf50
[  412.179457][T12458]  do_splice_direct+0x342/0x580
[  412.179457][T12458]  do_sendfile+0x101b/0x1d40
[  412.179457][T12458]  __se_sys_sendfile64+0x2bb/0x360
[  412.179457][T12458]  __x64_sys_sendfile64+0x56/0x70
[  412.179457][T12458]  do_syscall_64+0xb0/0x150
[  412.179457][T12458]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  412.179457][T12458] 
[  412.179457][T12458] Uninit was stored to memory at:
[  412.179457][T12458]  kmsan_internal_chain_origin+0xad/0x130
[  412.179457][T12458]  __msan_chain_origin+0x50/0x90
[  412.179457][T12458]  rmd256_transform+0x4373/0x4440
[  412.179457][T12458]  rmd256_update+0x343/0x4f0
[  412.179457][T12458]  crypto_shash_update+0x4e9/0x550
[  412.179457][T12458]  shash_async_update+0x113/0x1d0
[  412.179457][T12458]  hash_sendpage+0x8ef/0xdf0
[  412.179457][T12458]  sock_sendpage+0x1e1/0x2c0
[  412.179457][T12458]  pipe_to_sendpage+0x38c/0x4c0
[  412.179457][T12458]  __splice_from_pipe+0x565/0xf00
[  412.179457][T12458]  generic_splice_sendpage+0x1d5/0x2d0
[  412.179457][T12458]  direct_splice_actor+0x1fd/0x580
[  412.179457][T12458]  splice_direct_to_actor+0x6b2/0xf50
[  412.179457][T12458]  do_splice_direct+0x342/0x580
[  412.179457][T12458]  do_sendfile+0x101b/0x1d40
[  412.179457][T12458]  __se_sys_sendfile64+0x2bb/0x360
[  412.179457][T12458]  __x64_sys_sendfile64+0x56/0x70
[  412.179457][T12458]  do_syscall_64+0xb0/0x150
[  412.179457][T12458]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  412.179457][T12458] 
[  412.179457][T12458] Uninit was stored to memory at:
[  412.179457][T12458]  kmsan_internal_chain_origin+0xad/0x130
[  412.179457][T12458]  __msan_chain_origin+0x50/0x90
[  412.179457][T12458]  rmd256_transform+0x4373/0x4440
[  412.179457][T12458]  rmd256_update+0x343/0x4f0
[  412.179457][T12458]  crypto_shash_update+0x4e9/0x550
[  412.179457][T12458]  shash_async_update+0x113/0x1d0
[  412.179457][T12458]  hash_sendpage+0x8ef/0xdf0
[  412.179457][T12458]  sock_sendpage+0x1e1/0x2c0
[  412.179457][T12458]  pipe_to_sendpage+0x38c/0x4c0
[  412.179457][T12458]  __splice_from_pipe+0x565/0xf00
[  412.179457][T12458]  generic_splice_sendpage+0x1d5/0x2d0
[  412.179457][T12458]  direct_splice_actor+0x1fd/0x580
[  412.179457][T12458]  splice_direct_to_actor+0x6b2/0xf50
[  412.179457][T12458]  do_splice_direct+0x342/0x580
[  412.179457][T12458]  do_sendfile+0x101b/0x1d40
[  412.179457][T12458]  __se_sys_sendfile64+0x2bb/0x360
[  412.179457][T12458]  __x64_sys_sendfile64+0x56/0x70
[  412.179457][T12458]  do_syscall_64+0xb0/0x150
[  412.179457][T12458]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  412.179457][T12458] 
[  412.179457][T12458] Uninit was stored to memory at:
[  412.179457][T12458]  kmsan_internal_chain_origin+0xad/0x130
[  412.179457][T12458]  __msan_chain_origin+0x50/0x90
[  412.179457][T12458]  rmd256_transform+0x4373/0x4440
[  412.179457][T12458]  rmd256_update+0x343/0x4f0
[  412.179457][T12458]  crypto_shash_update+0x4e9/0x550
[  412.179457][T12458]  shash_async_update+0x113/0x1d0
[  412.179457][T12458]  hash_sendpage+0x8ef/0xdf0
[  412.179457][T12458]  sock_sendpage+0x1e1/0x2c0
[  412.179457][T12458]  pipe_to_sendpage+0x38c/0x4c0
[  412.179457][T12458]  __splice_from_pipe+0x565/0xf00
[  412.179457][T12458]  generic_splice_sendpage+0x1d5/0x2d0
[  412.179457][T12458]  direct_splice_actor+0x1fd/0x580
[  412.179457][T12458]  splice_direct_to_actor+0x6b2/0xf50
[  412.179457][T12458]  do_splice_direct+0x342/0x580
[  412.179457][T12458]  do_sendfile+0x101b/0x1d40
[  412.179457][T12458]  __se_sys_sendfile64+0x2bb/0x360
[  412.179457][T12458]  __x64_sys_sendfile64+0x56/0x70
[  412.179457][T12458]  do_syscall_64+0xb0/0x150
[  412.179457][T12458]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  412.179457][T12458] 
[  412.179457][T12458] Uninit was stored to memory at:
[  412.179457][T12458]  kmsan_internal_chain_origin+0xad/0x130
[  412.179457][T12458]  __msan_chain_origin+0x50/0x90
[  412.179457][T12458]  rmd256_transform+0x4373/0x4440
[  412.179457][T12458]  rmd256_update+0x343/0x4f0
[  412.179457][T12458]  crypto_shash_update+0x4e9/0x550
[  412.179457][T12458]  shash_async_update+0x113/0x1d0
[  412.179457][T12458]  hash_sendpage+0x8ef/0xdf0
[  412.179457][T12458]  sock_sendpage+0x1e1/0x2c0
[  412.179457][T12458]  pipe_to_sendpage+0x38c/0x4c0
[  412.179457][T12458]  __splice_from_pipe+0x565/0xf00
[  412.179457][T12458]  generic_splice_sendpage+0x1d5/0x2d0
[  412.179457][T12458]  direct_splice_actor+0x1fd/0x580
[  412.179457][T12458]  splice_direct_to_actor+0x6b2/0xf50
[  412.179457][T12458]  do_splice_direct+0x342/0x580
[  412.179457][T12458]  do_sendfile+0x101b/0x1d40
[  412.179457][T12458]  __se_sys_sendfile64+0x2bb/0x360
[  412.179457][T12458]  __x64_sys_sendfile64+0x56/0x70
[  412.179457][T12458]  do_syscall_64+0xb0/0x150
[  412.179457][T12458]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  412.179457][T12458] 
[  412.179457][T12458] Uninit was stored to memory at:
[  412.179457][T12458]  kmsan_internal_chain_origin+0xad/0x130
[  412.179457][T12458]  __msan_chain_origin+0x50/0x90
[  412.179457][T12458]  rmd256_transform+0x4373/0x4440
[  412.179457][T12458]  rmd256_update+0x227/0x4f0
[  412.179457][T12458]  crypto_shash_update+0x4e9/0x550
[  412.179457][T12458]  shash_async_update+0x113/0x1d0
[  412.179457][T12458]  hash_sendpage+0x8ef/0xdf0
[  412.179457][T12458]  sock_sendpage+0x1e1/0x2c0
[  412.179457][T12458]  pipe_to_sendpage+0x38c/0x4c0
[  412.179457][T12458]  __splice_from_pipe+0x565/0xf00
[  412.179457][T12458]  generic_splice_sendpage+0x1d5/0x2d0
[  412.179457][T12458]  direct_splice_actor+0x1fd/0x580
[  412.179457][T12458]  splice_direct_to_actor+0x6b2/0xf50
[  412.179457][T12458]  do_splice_direct+0x342/0x580
[  412.179457][T12458]  do_sendfile+0x101b/0x1d40
[  412.179457][T12458]  __se_sys_sendfile64+0x2bb/0x360
[  412.179457][T12458]  __x64_sys_sendfile64+0x56/0x70
[  412.179457][T12458]  do_syscall_64+0xb0/0x150
[  412.179457][T12458]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  412.179457][T12458] 
[  412.179457][T12458] Uninit was stored to memory at:
[  412.179457][T12458]  kmsan_internal_chain_origin+0xad/0x130
[  412.179457][T12458]  kmsan_memcpy_memmove_metadata+0x272/0x2e0
[  412.179457][T12458]  kmsan_memcpy_metadata+0xb/0x10
[  412.179457][T12458]  __msan_memcpy+0x43/0x50
[  412.179457][T12458]  rmd256_update+0x1fc/0x4f0
[  412.179457][T12458]  crypto_shash_update+0x4e9/0x550
[  412.179457][T12458]  shash_async_update+0x113/0x1d0
[  412.179457][T12458]  hash_sendpage+0x8ef/0xdf0
[  412.179457][T12458]  sock_sendpage+0x1e1/0x2c0
[  412.179457][T12458]  pipe_to_sendpage+0x38c/0x4c0
[  412.179457][T12458]  __splice_from_pipe+0x565/0xf00
[  412.179457][T12458]  generic_splice_sendpage+0x1d5/0x2d0
[  412.179457][T12458]  direct_splice_actor+0x1fd/0x580
[  412.179457][T12458]  splice_direct_to_actor+0x6b2/0xf50
[  412.179457][T12458]  do_splice_direct+0x342/0x580
[  412.179457][T12458]  do_sendfile+0x101b/0x1d40
[  412.179457][T12458]  __se_sys_sendfile64+0x2bb/0x360
[  412.179457][T12458]  __x64_sys_sendfile64+0x56/0x70
[  412.179457][T12458]  do_syscall_64+0xb0/0x150
[  412.179457][T12458]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  412.179457][T12458] 
[  412.179457][T12458] Uninit was created at:
[  412.179457][T12458]  kmsan_save_stack_with_flags+0x3c/0x90
[  412.179457][T12458]  kmsan_alloc_page+0xb9/0x180
[  412.179457][T12458]  __alloc_pages_nodemask+0x56a2/0x5dc0
[  412.179457][T12458]  alloc_pages_current+0x672/0x990
[  412.179457][T12458]  push_pipe+0x605/0xb70
[  412.179457][T12458]  iov_iter_get_pages_alloc+0x18a9/0x21c0
[  412.179457][T12458]  do_splice_to+0x4fc/0x14f0
[  412.179457][T12458]  splice_direct_to_actor+0x45c/0xf50
[  412.179457][T12458]  do_splice_direct+0x342/0x580
[  412.179457][T12458]  do_sendfile+0x101b/0x1d40
20:08:25 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000200), 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0x3c)
execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffffff, 0xc0206434, &(0x7f0000000140)={0xcdf2, <r1=>0x0, 0x2, 0xcb})
ioctl$DRM_IOCTL_SG_ALLOC(0xffffffffffffffff, 0xc0106438, &(0x7f0000000280)={0x9, r1})
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000740)={@in6={{0xa, 0x4e23, 0x0, @ipv4={[], [], @private=0xa010102}}}, 0x0, 0x2, 0x46, 0x0, "0000000000000400"}, 0xd8)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x1802}, 0x1c)
r2 = clone3(&(0x7f0000001680)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x40)
rt_sigqueueinfo(r2, 0x40, &(0x7f00000016c0)={0x0, 0x0, 0x80000000})
r3 = syz_open_procfs(0x0, &(0x7f0000000100)='net/dev_snmp6\x00')
bind$inet6(0xffffffffffffffff, &(0x7f00000003c0)={0xa, 0x4e20, 0x1, @private2={0xfc, 0x2, [], 0x1}, 0xd950}, 0x1c)
getdents(r3, &(0x7f0000000040)=""/46, 0x2e)
ioctl$FIONREAD(r3, 0x541b, &(0x7f0000000080))
syz_open_dev$ptys(0xc, 0x3, 0x1)
io_pgetevents(0x0, 0x100, 0x1, &(0x7f0000000240)=[{}], &(0x7f00000002c0)={0x77359400}, &(0x7f0000000440)={&(0x7f0000000400), 0x8})
get_robust_list(r2, 0x0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f0000000300)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaa0086dd6000000000082b00fe9f00000000000090e500d8b7e96780000000000068d33e3b7ff8df33be4fed859b7672ca8537c3e9ef51d2cbb505e259e651fe9e84246feb582fa0ab34e6185d50ae95235a79157b2bee14c0a0ff8990538db3b6c922bc320c813d001e161bddd042c6ba39cef70a49df1245887c00"/144], 0x0)
setxattr$security_ima(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='security.ima\x00', &(0x7f00000001c0)=@md5={0x1, "cb2f0453a173e6b22ccf2f7ac8f1493d"}, 0x11, 0x3)

[  412.179457][T12458]  __se_sys_sendfile64+0x2bb/0x360
[  412.179457][T12458]  __x64_sys_sendfile64+0x56/0x70
[  412.179457][T12458]  do_syscall_64+0xb0/0x150
[  412.179457][T12458]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
20:08:25 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
openat$cgroup_ro(r1, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x6, &(0x7f0000000340)={<r2=>0x0, @in={{0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0xa}}}}, &(0x7f0000000400)=0x84)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000440)={r2, 0xee6}, &(0x7f0000000480)=0x8)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000008c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="000426bd7000fedbdf250d000000080034", @ANYRES32=0x0, @ANYBLOB="e0f0fdcb69a067053b14d7a44ca9ff6dedc9d15f7745c5298ff283c1edd156d0beaa2059b57c0366b4ef51f4f58652ef0dbdde68cd9d7f6a7ddbcbe278a8"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2400c004)
r5 = openat$cgroup_ro(r3, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r5, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x24, r4, 0x712, 0x70bd26, 0x25dfdbff}, 0x24}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
bind$alg(r5, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r6 = accept4(r0, 0x0, 0x0, 0x0)
r7 = syz_open_procfs(0x0, &(0x7f0000000180)='net/unix\x00')
ioctl$RNDADDENTROPY(r5, 0x40085203, &(0x7f0000000200)={0xb0000000, 0x8f, "e902b04ddcb3f0f2f2d00537fd37620f0b78ffaabec8b7c58aa72f1fc8788e617ebda45dec0f6ed7643309536555dd33e78d349d309b725f9d7b92130f3eee7619733b495d8c6d9aba1ad941280241125836152572ac8943c226e2a3b3cf00211d7688d84b5427e76fe383b571c2b702ff24ef3f50c9d664861e7a9d7722937277327fd957a9a8b5547ada41bc73a1"})
sendfile(r6, r7, 0x0, 0x1000007ffff000)

[  413.317508][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
20:08:25 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000200), 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0x3c)
execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffffff, 0xc0206434, &(0x7f0000000140)={0xcdf2, <r1=>0x0, 0x2, 0xcb})
ioctl$DRM_IOCTL_SG_ALLOC(0xffffffffffffffff, 0xc0106438, &(0x7f0000000280)={0x9, r1})
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000740)={@in6={{0xa, 0x4e23, 0x0, @ipv4={[], [], @private=0xa010102}}}, 0x0, 0x2, 0x46, 0x0, "0000000000000400"}, 0xd8)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x1802}, 0x1c)
r2 = clone3(&(0x7f0000001680)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x40)
rt_sigqueueinfo(r2, 0x40, &(0x7f00000016c0)={0x0, 0x0, 0x80000000})
r3 = syz_open_procfs(0x0, &(0x7f0000000100)='net/dev_snmp6\x00')
bind$inet6(0xffffffffffffffff, &(0x7f00000003c0)={0xa, 0x4e20, 0x1, @private2={0xfc, 0x2, [], 0x1}, 0xd950}, 0x1c)
getdents(r3, &(0x7f0000000040)=""/46, 0x2e)
ioctl$FIONREAD(r3, 0x541b, &(0x7f0000000080))
syz_open_dev$ptys(0xc, 0x3, 0x1)
io_pgetevents(0x0, 0x100, 0x1, &(0x7f0000000240)=[{}], &(0x7f00000002c0)={0x77359400}, &(0x7f0000000440)={&(0x7f0000000400), 0x8})
get_robust_list(r2, 0x0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f0000000300)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaa0086dd6000000000082b00fe9f00000000000090e500d8b7e96780000000000068d33e3b7ff8df33be4fed859b7672ca8537c3e9ef51d2cbb505e259e651fe9e84246feb582fa0ab34e6185d50ae95235a79157b2bee14c0a0ff8990538db3b6c922bc320c813d001e161bddd042c6ba39cef70a49df1245887c00"/144], 0x0)
setxattr$security_ima(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='security.ima\x00', &(0x7f00000001c0)=@md5={0x1, "cb2f0453a173e6b22ccf2f7ac8f1493d"}, 0x11, 0x3)

20:08:25 executing program 4:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff})
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/timer\x00', 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000000300)={{0x1}})
readv(r1, &(0x7f0000000340)=[{&(0x7f0000000480)=""/4096, 0x1000}], 0x1)
ioctl$SNDRV_TIMER_IOCTL_START(r1, 0x54a0)
r2 = dup2(r0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)

20:08:26 executing program 3:
prlimit64(0x0, 0x10, 0x0, 0x0)
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
openat$cgroup_ro(r0, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
pipe(&(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket$inet_udp(0x2, 0x2, 0x0)
close(r3)
splice(r1, 0x0, r3, 0x0, 0xe583, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)=@newqdisc={0x34, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb, 0x1, 'taprio\x00'}, {0x4}}]}, 0x34}}, 0x0)
sendmsg$WG_CMD_GET_DEVICE(r0, &(0x7f0000000580)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000540)={&(0x7f0000000940)={0xd48, 0x0, 0x0, 0x70bd2b, 0x25dfdbfb, {}, [@WGDEVICE_A_FWMARK={0x8, 0x7, 0xd1}, @WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @b='\xb0\x80s\xe8\xd4N\x91\xe3\xda\x92,\"C\x82D\xbb\x88\\i\xe2i\xc8\xe9\xd85\xb1\x14):M\xdcn'}, @WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @c='\xa0\xcb\x87\x9aG\xf5\xbcdL\x0ei?\xa6\xd01\xc7J\x15S\xb6\xe9\x01\xb9\xff/Q\x8cx\x04/\xb5B'}, @WGDEVICE_A_PEERS={0xca8, 0x8, 0x0, 0x1, [{0xa4, 0x0, 0x0, 0x1, [@WGPEER_A_FLAGS={0x8, 0x3, 0x7}, @WGPEER_A_FLAGS={0x8, 0x3, 0x1}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0x800}, @WGPEER_A_FLAGS={0x8, 0x3, 0x2}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e24, @private=0xa010101}}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e23, @rand_addr=0x64010102}}, @WGPEER_A_ALLOWEDIPS={0x2c, 0x9, 0x0, 0x1, [{0x28, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, {0x5}}]}]}, @WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "3cdda03a251d42963e4e1855c4fc4008e8c5dd1b5efa52cbfb58355ced7be27b"}]}, {0x14, 0x0, 0x0, 0x1, [@WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_PROTOCOL_VERSION={0x8}]}, {0xc, 0x0, 0x0, 0x1, [@WGPEER_A_PROTOCOL_VERSION={0x8}]}, {0x318, 0x0, 0x0, 0x1, [@WGPEER_A_PRESHARED_KEY={0x24, 0x2, "e081ddecb2dc40160ac9cca641762f83d56facc9721dc10baf6b5943def650cd"}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e20, 0x0, @loopback, 0xffffffff}}, @WGPEER_A_FLAGS={0x8, 0x3, 0x4}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e20, 0x14136488, @mcast2, 0x3}}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "71986b305bb576df45c46a20d725bbc24aed5b1bb3cf000cad824dba758a088f"}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e21, 0xaf4, @private2={0xfc, 0x2, [], 0x1}, 0x7}}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "2405e96c0719e5d2e08b297997f41a5535a0c6618c049fe8ed1025d09a405694"}, @WGPEER_A_ALLOWEDIPS={0x240, 0x9, 0x0, 0x1, [{0x88, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @multicast2}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @loopback}, {0x5}}]}, {0x7c, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @local}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @private0={0xfc, 0x0, [], 0x1}}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @remote}, {0x5, 0x3, 0x3}}]}, {0x28, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @loopback}, {0x5}}]}, {0x1c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x39}}, {0x5, 0x3, 0x3}}]}, {0xf4, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @mcast1}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @dev={0xfe, 0x80, [], 0x3b}}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @rand_addr=0x64010102}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5}}]}]}]}, {0xc, 0x0, 0x0, 0x1, [@WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0x6}]}, {0x26c, 0x0, 0x0, 0x1, [@WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0x1000}, @WGPEER_A_ALLOWEDIPS={0x260, 0x9, 0x0, 0x1, [{0xdc, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x28}}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x35}}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @private0}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @initdev={0xfe, 0x88, [], 0x0, 0x0}}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5, 0x3, 0x2}}]}, {0x4c, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @ipv4={[], [], @loopback}}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @initdev={0xfe, 0x88, [], 0x0, 0x0}}, {0x5, 0x3, 0x1}}]}, {0xdc, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @loopback}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @dev={0xfe, 0x80, [], 0x12}}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @empty}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x5}}]}, {0x58, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @initdev={0xfe, 0x88, [], 0x0, 0x0}}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x29}}, {0x5}}]}]}]}, {0x650, 0x0, 0x0, 0x1, [@WGPEER_A_ALLOWEDIPS={0x5f0, 0x9, 0x0, 0x1, [{0x100, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @empty}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @multicast2}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @rand_addr=0x64010102}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @private1={0xfc, 0x1, [], 0x1}}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5, 0x3, 0x1}}]}, {0x64, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @private1={0xfc, 0x1, [], 0x1}}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @mcast1}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x5, 0x3, 0x1}}]}, {0x40, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @mcast1}, {0x5, 0x3, 0x2}}]}, {0xf4, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @local}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @initdev={0xfe, 0x88, [], 0x0, 0x0}}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @local}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @rand_addr=0x64010101}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @multicast2}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @mcast1}, {0x5}}]}, {0xc4, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @loopback}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @ipv4={[], [], @remote}}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @dev={0xfe, 0x80, [], 0xe}}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @mcast1}, {0x5, 0x3, 0x3}}]}, {0x124, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @empty}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @private=0xa010102}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @rand_addr=0x64010101}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @empty}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @multicast2}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @private=0xa010101}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @rand_addr=' \x01\x00'}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @private0}, {0x5, 0x3, 0x2}}]}, {0x4c, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @rand_addr=' \x01\x00'}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @ipv4={[], [], @multicast1}}, {0x5, 0x3, 0x3}}]}, {0xd0, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0xf}}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @local}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @private2={0xfc, 0x2, [], 0x1}}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @private1={0xfc, 0x1, [], 0x1}}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @private0}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @private2={0xfc, 0x2, [], 0x1}}, {0x5, 0x3, 0x3}}]}, {0x1c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x5, 0x3, 0x3}}]}, {0x34, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @rand_addr=0x64010100}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @private=0xa010102}, {0x5}}]}]}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0x800}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e21, @private=0xa010101}}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e23, 0x3, @private1, 0x6}}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e20, 0x400, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0xc8cb}}]}]}, @WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @a='\xa0\\\xa8Ol\x9c\x8e8S\xe2\xfdzp\xae\x0f\xb2\x0f\xa1R`\f\xb0\bE\x17O\b\ao\x8dxC'}, @WGDEVICE_A_IFINDEX={0x8}, @WGDEVICE_A_FWMARK={0x8, 0x7, 0x7fffffff}, @WGDEVICE_A_FWMARK={0x8, 0x7, 0x9}]}, 0xd48}, 0x1, 0x0, 0x0, 0x4000811}, 0x6fc3d6c616ebf5d1)
r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000300)='nbd\x00')
r5 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000008c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="000426bd7000fedbdf250d000000080034", @ANYRES32=0x0, @ANYBLOB="e0f0fdcb69a067053b7745c5298ff283c1edd156d0beaa2059b57c0366b4ef51f4f58652ef0dbdde68cd9d7f6a7ddbcbe278a8"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2400c004)
r7 = openat$cgroup_ro(r5, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r7, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x24, r6, 0x712, 0x70bd26, 0x25dfdbff}, 0x24}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
r8 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
openat$cgroup_ro(r8, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
ioctl$sock_bt_hidp_HIDPCONNADD(r7, 0x400448c8, &(0x7f0000000440)={r2, r8, 0x100, 0x80, &(0x7f0000000240)="14cbb89a1bac9823632ed0d08855a88b32fa9dc36fe6851d944f0be4bb73b3b85691a64a147ec421fe22c519bd3f00e3805aebf9752b8761c6d6f1739000d6b3c49c6836553ea14b0a5977debbff2ed85ec48717816fa189d4af266ed06de52777705a910c8d695775b8dabf3bb7f8468b5637b6b57729f721e9a89b49abff9d", 0x42, 0x1, 0x3ff, 0x0, 0x100, 0x2, 0x4, 'syz1\x00'})
sendmsg$NBD_CMD_STATUS(r1, &(0x7f0000000400)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000003c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="04002dbd7000ffdb968133769b80df25050000000800010000000000"], 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000000)
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="200000006964bfa1d03d55478975bf04dd73e57dbe92a53c6db6c72a30887f05e81c3dbee720ccedb999f8bf13dc3229e07e62d4a2509f46654b78f64900f994af902e4d82c3da27150e8c37cb9435c0dd1b4056cf29f6b33f805978a9cccdf13b10672c287ec1ca085edadeea657e6b68c9", @ANYRES16=r4, @ANYBLOB="020025bd7000fcdbdf25010000000c0006000300000000000000"], 0x20}, 0x1, 0x0, 0x0, 0x80}, 0x4010)

20:08:26 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

20:08:26 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-twofish-avx\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo\x00')
sendfile(r1, r2, 0x0, 0x1000007ffff000)

20:08:26 executing program 4:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff})
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/timer\x00', 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000000300)={{0x1}})
readv(r1, &(0x7f0000000340)=[{&(0x7f0000000480)=""/4096, 0x1000}], 0x1)
ioctl$SNDRV_TIMER_IOCTL_START(r1, 0x54a0)
r2 = dup2(r0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)

20:08:26 executing program 3:
r0 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0xfffffffffffff955, 0x125700)
ioctl$TIOCEXCL(r0, 0x540c)
prlimit64(0x0, 0x10, 0x0, 0x0)

20:08:27 executing program 4:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff})
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/timer\x00', 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000000300)={{0x1}})
readv(r1, &(0x7f0000000340)=[{&(0x7f0000000480)=""/4096, 0x1000}], 0x1)
ioctl$SNDRV_TIMER_IOCTL_START(r1, 0x54a0)
r2 = dup2(r0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)

20:08:27 executing program 3:
prlimit64(0x0, 0x7, 0x0, 0x0)
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
openat$cgroup_ro(r0, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040)='nl80211\x00')
sendmsg$NL80211_CMD_SET_BEACON(r0, &(0x7f0000000a00)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000009c0)={&(0x7f0000000080)={0x930, r1, 0x400, 0x70bd27, 0x25dfdbfc, {}, [@NL80211_ATTR_ACL_POLICY={0x8, 0xa5, 0x1}, @NL80211_ATTR_WPA_VERSIONS={0x8, 0x4b, 0x4}, @NL80211_ATTR_CIPHER_SUITE_GROUP={0x8, 0x4a, 0xfac0b}, @NL80211_ATTR_TX_RATES={0xf0, 0x5a, 0x0, 0x1, [@NL80211_BAND_5GHZ={0xec, 0x1, [@NL80211_TXRATE_HT={0x31, 0x2, "79bdbbe50880a99e9005d4955cf21a2188d36402022052a6b522d25b850ffd652c843122b5c65d3b241ca9c0c1"}, @NL80211_TXRATE_HT={0x29, 0x2, "8df9d330add8f1c92abcd68112dc44fdd2dc597e6394cf9eb93ec7e67b747572799be0004d"}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x0, 0x5, 0x4, 0x6, 0x4a5, 0x1, 0x9, 0x5]}}, @NL80211_TXRATE_HT={0x37, 0x2, "be73a5f1926813808dad47ddcefd304a0cbbe6cbf93a50439f1bbbcbf89da0cca8f7119c5311731a33b6db457ba03e415adaee"}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_HT={0x17, 0x2, "4e8a1cb6855fa1ae4fe1a6ee7fbde8c105e6d8"}, @NL80211_TXRATE_HT={0x13, 0x2, "abd04d71a6e78c5f91ab3146fcce7d"}, @NL80211_TXRATE_GI={0x5}]}]}, @NL80211_ATTR_IE_RIC={0x7ba, 0xb2, "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"}, @NL80211_ATTR_EXTERNAL_AUTH_SUPPORT={0x4}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x9, 0xffffffffffffffff}}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0xffffffffffffffff}, @NL80211_ATTR_MAC_ADDRS={0x40, 0xa6, 0x0, 0x1, [{0xa, 0x0, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}, {0xa, 0x0, @remote}, {0xa, 0x0, @local}, {0xa}, {0xa, 0x0, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}]}]}, 0x930}, 0x1, 0x0, 0x0, 0x800}, 0x80)

20:08:27 executing program 0:
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
openat$cgroup_ro(r0, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000008c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="000426bd7000fedbdf250d000000080034", @ANYRES32=0x0, @ANYBLOB="e0f0fdcb69a067053b14d7a44ca9ff6dedc9d15f7745c5298ff283c1edd156d0beaa2059b57c0366b4ef51f4f58652ef0dbdde68cd9d7f6a7ddbcbe278a8"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2400c004)
r3 = openat$cgroup_ro(r1, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r3, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x24, r2, 0x712, 0x70bd26, 0x25dfdbff}, 0x24}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000200)={0xffffffffffffffff, r3, 0x0, 0xd, &(0x7f00000001c0)='veth1_to_hsr\x00', 0xffffffffffffffff}, 0x30)
ioctl$PERF_EVENT_IOC_DISABLE(0xffffffffffffffff, 0x2401, 0x10001)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r5 = accept4(r4, 0x0, 0x0, 0x0)
r6 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
ioctl$VT_RELDISP(r0, 0x5605)
sendfile(r5, r6, 0x0, 0x1000007ffff000)
r7 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
openat$cgroup_ro(r7, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
ioctl$FIONREAD(r7, 0x541b, &(0x7f0000000180))
r8 = socket$bt_cmtp(0x1f, 0x3, 0x5)
ioctl$sock_SIOCGIFCONF(r8, 0x8912, &(0x7f0000000100)=@req={0x28, &(0x7f00000000c0)={'veth1_to_hsr\x00', @ifru_names='wg1\x00'}})

20:08:27 executing program 5:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000733000)={0x5, 0x5, 0x7, 0x9}, 0x2c)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0xd, 0x100000001, 0x4, 0x100000001, 0x0, r0}, 0x2c)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0xd, 0x100000001, 0x4, 0x100000001, 0x0, r1}, 0x40)

20:08:28 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000200), 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0x3c)
execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffffff, 0xc0206434, &(0x7f0000000140)={0xcdf2, <r1=>0x0, 0x2, 0xcb})
ioctl$DRM_IOCTL_SG_ALLOC(0xffffffffffffffff, 0xc0106438, &(0x7f0000000280)={0x9, r1})
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000740)={@in6={{0xa, 0x4e23, 0x0, @ipv4={[], [], @private=0xa010102}}}, 0x0, 0x2, 0x46, 0x0, "0000000000000400"}, 0xd8)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x1802}, 0x1c)
r2 = clone3(&(0x7f0000001680)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x40)
rt_sigqueueinfo(r2, 0x40, &(0x7f00000016c0)={0x0, 0x0, 0x80000000})
r3 = syz_open_procfs(0x0, &(0x7f0000000100)='net/dev_snmp6\x00')
bind$inet6(0xffffffffffffffff, &(0x7f00000003c0)={0xa, 0x4e20, 0x1, @private2={0xfc, 0x2, [], 0x1}, 0xd950}, 0x1c)
getdents(r3, &(0x7f0000000040)=""/46, 0x2e)
ioctl$FIONREAD(r3, 0x541b, &(0x7f0000000080))
syz_open_dev$ptys(0xc, 0x3, 0x1)
io_pgetevents(0x0, 0x100, 0x1, &(0x7f0000000240)=[{}], &(0x7f00000002c0)={0x77359400}, &(0x7f0000000440)={&(0x7f0000000400), 0x8})
get_robust_list(r2, 0x0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f0000000300)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaa0086dd6000000000082b00fe9f00000000000090e500d8b7e96780000000000068d33e3b7ff8df33be4fed859b7672ca8537c3e9ef51d2cbb505e259e651fe9e84246feb582fa0ab34e6185d50ae95235a79157b2bee14c0a0ff8990538db3b6c922bc320c813d001e161bddd042c6ba39cef70a49df1245887c00"/144], 0x0)
setxattr$security_ima(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='security.ima\x00', &(0x7f00000001c0)=@md5={0x1, "cb2f0453a173e6b22ccf2f7ac8f1493d"}, 0x11, 0x3)

20:08:28 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e35bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93981b20e03b86d4e999bbb53a7b0ee0ce30e80600cff8ca2996e518e3e69051f6d24317f9ebfeb82ee2469fb31bdbb2768d25f196ab6f2dc045421b94d878d0d9c2a5c74633a687a135308e49ce118c81517ac7bb2994cc008dd3deaafaab51144c1ef00f00001f5e73ff040000000000000000000000000000009a583b79ab00f70d85463c57c5bb1f1084e683b591fc2c8b8a38b7ee57afa01aea88fb413e1ee8ebbdf1fa9155bf6409b065a980528827de08737cf643db6de62f253b1304780753de6634bf57fbe09a7eb84cae7f000000886871080d1588bb30abcbfecb4e10d4067a02736f08914faa037346191241c88e57569256cd58ec82518bc8bac2ef0f6e8bfd9ad94599c3230328ddf749f6c754f2781bccc42e6ef592a1"], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

20:08:28 executing program 3:
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000008c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="2c000000e6bc1addde401b06a85d7df7a3ce9983d0bbf756d79e1dc8884a9f7f953b073118d70e9c83c096aa006e81a18396cf", @ANYRES16=r1, @ANYBLOB="000426bd7000fedbdf250d000000080034", @ANYRES32=0x0, @ANYBLOB="e0f0fdcb69a067053b14d7a44ca9ff6dedc9d15f7745c5298ff283c1edd156d0beaa2059b57c0366b4ef51f4f58652ef0dbdde68cd9d7f6a7ddbcbe278a8"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2400c004)
r2 = openat$cgroup_ro(r0, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r2, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x14, r1, 0x712, 0x70bd27, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
ioctl$PPPIOCSMRU(r2, 0x40047452, &(0x7f0000000180)=0x140000)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000008c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1bc61810", @ANYRES16=r4, @ANYBLOB="000426bd7000fedbdf250d000000080034", @ANYRES32=0x0, @ANYBLOB="e0f0fdcb69a067053b14d7a44ca9ff6dedc9d15f7745c5298ff283c1edd156d0beaa2059b57c0366b4ef51f4f58652ef0dbdde68cd9d7f6a7ddbcbe278a8"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2400c004)
r5 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000008c0)={&(0x7f00000002c0)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2400c004)
ioctl$BLKPBSZGET(0xffffffffffffffff, 0x127b, &(0x7f0000000280))
r7 = openat$cgroup_ro(r5, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
socket$inet_sctp(0x2, 0x5, 0x84)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r7, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x24, r6, 0x712, 0x70bd26, 0x25dfdbff}, 0x24}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
ioctl$VIDIOC_PREPARE_BUF(r2, 0xc058565d, &(0x7f0000000200)={0xfffffc01, 0x5, 0x4, 0xe000, 0x0, {}, {0x3, 0x1, 0x40, 0x4, 0x40, 0x9, "9e66a69d"}, 0xff, 0x2, @fd, 0x800, 0x0, r7})
r8 = openat$cgroup_ro(r3, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r8, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x24, r4, 0x712, 0x70bd26, 0x25dfdbff}, 0x24}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
unlinkat(r5, &(0x7f0000000380)='./file0\x00', 0x200)

20:08:28 executing program 4:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="2000000032000903"], 0x1}}, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x4ffe0, 0x0)

[  416.142977][    C0] sd 0:0:1:0: [sg0] tag#2728 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  416.153682][    C0] sd 0:0:1:0: [sg0] tag#2728 CDB: Test Unit Ready
[  416.160486][    C0] sd 0:0:1:0: [sg0] tag#2728 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  416.170494][    C0] sd 0:0:1:0: [sg0] tag#2728 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  416.180691][    C0] sd 0:0:1:0: [sg0] tag#2728 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  416.190578][    C0] sd 0:0:1:0: [sg0] tag#2728 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  416.200467][    C0] sd 0:0:1:0: [sg0] tag#2728 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  416.210350][    C0] sd 0:0:1:0: [sg0] tag#2728 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  416.220206][    C0] sd 0:0:1:0: [sg0] tag#2728 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  416.230056][    C0] sd 0:0:1:0: [sg0] tag#2728 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
20:08:28 executing program 5:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000733000)={0x5, 0x5, 0x7, 0x9}, 0x2c)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0xd, 0x100000001, 0x4, 0x100000001, 0x0, r0}, 0x2c)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0xd, 0x100000001, 0x4, 0x100000001, 0x0, r1}, 0x40)

[  416.239923][    C0] sd 0:0:1:0: [sg0] tag#2728 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  416.249776][    C0] sd 0:0:1:0: [sg0] tag#2728 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  416.259699][    C0] sd 0:0:1:0: [sg0] tag#2728 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  416.269637][    C0] sd 0:0:1:0: [sg0] tag#2728 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  416.279484][    C0] sd 0:0:1:0: [sg0] tag#2728 CDB[c0]: 00 00 00 00 00 00 00 00
[  416.462520][T12524] not chained 630000 origins
[  416.467138][T12524] CPU: 0 PID: 12524 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0
[  416.469255][T12524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  416.469255][T12524] Call Trace:
[  416.469255][T12524]  dump_stack+0x1df/0x240
[  416.469255][T12524]  kmsan_internal_chain_origin+0x6f/0x130
[  416.469255][T12524]  ? is_module_text_address+0x4d/0x2a0
[  416.469255][T12524]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  416.469255][T12524]  ? __kernel_text_address+0x171/0x2d0
[  416.469255][T12524]  ? unwind_get_return_address+0x8c/0x130
[  416.469255][T12524]  ? entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  416.469255][T12524]  ? arch_stack_walk+0x2a2/0x3e0
[  416.469255][T12524]  ? stack_trace_save+0x1a0/0x1a0
[  416.469255][T12524]  ? kmsan_get_metadata+0x4f/0x180
[  416.469255][T12524]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  416.469255][T12524]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  416.469255][T12524]  ? stack_trace_save+0x123/0x1a0
[  416.469255][T12524]  ? kmsan_get_metadata+0x11d/0x180
[  416.469255][T12524]  __msan_chain_origin+0x50/0x90
[  416.469255][T12524]  rmd256_transform+0x4373/0x4440
[  416.469255][T12524]  rmd256_update+0x343/0x4f0
[  416.469255][T12524]  ? rmd256_init+0x260/0x260
[  416.469255][T12524]  crypto_shash_update+0x4e9/0x550
[  416.469255][T12524]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  416.469255][T12524]  ? crypto_hash_walk_first+0x1fd/0x360
[  416.469255][T12524]  ? kmsan_get_metadata+0x4f/0x180
[  416.469255][T12524]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  416.469255][T12524]  shash_async_update+0x113/0x1d0
[  416.469255][T12524]  ? shash_async_init+0x1e0/0x1e0
[  416.469255][T12524]  hash_sendpage+0x8ef/0xdf0
[  416.469255][T12524]  ? hash_recvmsg+0xd30/0xd30
[  416.469255][T12524]  sock_sendpage+0x1e1/0x2c0
[  416.469255][T12524]  pipe_to_sendpage+0x38c/0x4c0
[  416.469255][T12524]  ? sock_fasync+0x250/0x250
[  416.469255][T12524]  __splice_from_pipe+0x565/0xf00
[  416.469255][T12524]  ? generic_splice_sendpage+0x2d0/0x2d0
[  416.469255][T12524]  generic_splice_sendpage+0x1d5/0x2d0
[  416.469255][T12524]  ? iter_file_splice_write+0x1800/0x1800
[  416.469255][T12524]  direct_splice_actor+0x1fd/0x580
[  416.469255][T12524]  ? kmsan_get_metadata+0x4f/0x180
[  416.469255][T12524]  splice_direct_to_actor+0x6b2/0xf50
[  416.469255][T12524]  ? do_splice_direct+0x580/0x580
[  416.469255][T12524]  do_splice_direct+0x342/0x580
[  416.469255][T12524]  do_sendfile+0x101b/0x1d40
[  416.469255][T12524]  __se_sys_sendfile64+0x2bb/0x360
[  416.469255][T12524]  ? kmsan_get_metadata+0x4f/0x180
[  416.469255][T12524]  __x64_sys_sendfile64+0x56/0x70
[  416.469255][T12524]  do_syscall_64+0xb0/0x150
[  416.469255][T12524]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  416.469255][T12524] RIP: 0033:0x45c1d9
[  416.469255][T12524] Code: Bad RIP value.
[  416.469255][T12524] RSP: 002b:00007f42d54efc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  416.469255][T12524] RAX: ffffffffffffffda RBX: 0000000000025a00 RCX: 000000000045c1d9
[  416.469255][T12524] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000007
[  416.469255][T12524] RBP: 000000000078bf48 R08: 0000000000000000 R09: 0000000000000000
[  416.469255][T12524] R10: 001000007ffff000 R11: 0000000000000246 R12: 000000000078bf0c
[  416.469255][T12524] R13: 0000000000c9fb6f R14: 00007f42d54f09c0 R15: 000000000078bf0c
[  416.469255][T12524] Uninit was stored to memory at:
[  416.469255][T12524]  kmsan_internal_chain_origin+0xad/0x130
[  416.469255][T12524]  __msan_chain_origin+0x50/0x90
[  416.469255][T12524]  rmd256_transform+0x4373/0x4440
[  416.469255][T12524]  rmd256_update+0x343/0x4f0
[  416.469255][T12524]  crypto_shash_update+0x4e9/0x550
[  416.469255][T12524]  shash_async_update+0x113/0x1d0
[  416.469255][T12524]  hash_sendpage+0x8ef/0xdf0
[  416.469255][T12524]  sock_sendpage+0x1e1/0x2c0
[  416.469255][T12524]  pipe_to_sendpage+0x38c/0x4c0
[  416.469255][T12524]  __splice_from_pipe+0x565/0xf00
[  416.469255][T12524]  generic_splice_sendpage+0x1d5/0x2d0
[  416.469255][T12524]  direct_splice_actor+0x1fd/0x580
[  416.469255][T12524]  splice_direct_to_actor+0x6b2/0xf50
[  416.469255][T12524]  do_splice_direct+0x342/0x580
[  416.469255][T12524]  do_sendfile+0x101b/0x1d40
[  416.469255][T12524]  __se_sys_sendfile64+0x2bb/0x360
[  416.469255][T12524]  __x64_sys_sendfile64+0x56/0x70
[  416.469255][T12524]  do_syscall_64+0xb0/0x150
[  416.469255][T12524]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  416.469255][T12524] 
[  416.469255][T12524] Uninit was stored to memory at:
[  416.469255][T12524]  kmsan_internal_chain_origin+0xad/0x130
[  416.469255][T12524]  __msan_chain_origin+0x50/0x90
[  416.469255][T12524]  rmd256_transform+0x4373/0x4440
[  416.469255][T12524]  rmd256_update+0x343/0x4f0
[  416.469255][T12524]  crypto_shash_update+0x4e9/0x550
[  416.469255][T12524]  shash_async_update+0x113/0x1d0
[  416.469255][T12524]  hash_sendpage+0x8ef/0xdf0
[  416.469255][T12524]  sock_sendpage+0x1e1/0x2c0
[  416.469255][T12524]  pipe_to_sendpage+0x38c/0x4c0
[  416.469255][T12524]  __splice_from_pipe+0x565/0xf00
[  416.469255][T12524]  generic_splice_sendpage+0x1d5/0x2d0
[  416.469255][T12524]  direct_splice_actor+0x1fd/0x580
[  416.469255][T12524]  splice_direct_to_actor+0x6b2/0xf50
[  416.469255][T12524]  do_splice_direct+0x342/0x580
[  416.469255][T12524]  do_sendfile+0x101b/0x1d40
[  416.469255][T12524]  __se_sys_sendfile64+0x2bb/0x360
[  416.469255][T12524]  __x64_sys_sendfile64+0x56/0x70
[  416.469255][T12524]  do_syscall_64+0xb0/0x150
[  416.469255][T12524]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  416.469255][T12524] 
[  416.469255][T12524] Uninit was stored to memory at:
[  416.469255][T12524]  kmsan_internal_chain_origin+0xad/0x130
[  416.469255][T12524]  __msan_chain_origin+0x50/0x90
[  416.469255][T12524]  rmd256_transform+0x4373/0x4440
[  416.469255][T12524]  rmd256_update+0x343/0x4f0
[  416.469255][T12524]  crypto_shash_update+0x4e9/0x550
[  416.469255][T12524]  shash_async_update+0x113/0x1d0
[  416.469255][T12524]  hash_sendpage+0x8ef/0xdf0
[  416.469255][T12524]  sock_sendpage+0x1e1/0x2c0
[  416.469255][T12524]  pipe_to_sendpage+0x38c/0x4c0
[  416.469255][T12524]  __splice_from_pipe+0x565/0xf00
[  416.469255][T12524]  generic_splice_sendpage+0x1d5/0x2d0
[  416.469255][T12524]  direct_splice_actor+0x1fd/0x580
[  416.469255][T12524]  splice_direct_to_actor+0x6b2/0xf50
[  416.469255][T12524]  do_splice_direct+0x342/0x580
[  416.469255][T12524]  do_sendfile+0x101b/0x1d40
[  416.469255][T12524]  __se_sys_sendfile64+0x2bb/0x360
[  416.469255][T12524]  __x64_sys_sendfile64+0x56/0x70
[  416.469255][T12524]  do_syscall_64+0xb0/0x150
[  416.469255][T12524]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  416.469255][T12524] 
[  416.469255][T12524] Uninit was stored to memory at:
[  416.469255][T12524]  kmsan_internal_chain_origin+0xad/0x130
[  416.469255][T12524]  __msan_chain_origin+0x50/0x90
[  416.469255][T12524]  rmd256_transform+0x4373/0x4440
[  416.469255][T12524]  rmd256_update+0x343/0x4f0
[  416.469255][T12524]  crypto_shash_update+0x4e9/0x550
[  416.469255][T12524]  shash_async_update+0x113/0x1d0
[  416.469255][T12524]  hash_sendpage+0x8ef/0xdf0
[  416.469255][T12524]  sock_sendpage+0x1e1/0x2c0
[  416.469255][T12524]  pipe_to_sendpage+0x38c/0x4c0
[  416.469255][T12524]  __splice_from_pipe+0x565/0xf00
[  416.469255][T12524]  generic_splice_sendpage+0x1d5/0x2d0
[  416.469255][T12524]  direct_splice_actor+0x1fd/0x580
[  416.469255][T12524]  splice_direct_to_actor+0x6b2/0xf50
[  416.469255][T12524]  do_splice_direct+0x342/0x580
[  416.469255][T12524]  do_sendfile+0x101b/0x1d40
[  416.469255][T12524]  __se_sys_sendfile64+0x2bb/0x360
[  416.469255][T12524]  __x64_sys_sendfile64+0x56/0x70
[  416.469255][T12524]  do_syscall_64+0xb0/0x150
[  416.469255][T12524]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  416.469255][T12524] 
[  416.469255][T12524] Uninit was stored to memory at:
[  416.469255][T12524]  kmsan_internal_chain_origin+0xad/0x130
[  416.469255][T12524]  __msan_chain_origin+0x50/0x90
[  416.469255][T12524]  rmd256_transform+0x4373/0x4440
[  416.469255][T12524]  rmd256_update+0x343/0x4f0
[  416.469255][T12524]  crypto_shash_update+0x4e9/0x550
[  416.469255][T12524]  shash_async_update+0x113/0x1d0
[  416.469255][T12524]  hash_sendpage+0x8ef/0xdf0
[  416.469255][T12524]  sock_sendpage+0x1e1/0x2c0
[  416.469255][T12524]  pipe_to_sendpage+0x38c/0x4c0
[  416.469255][T12524]  __splice_from_pipe+0x565/0xf00
[  416.469255][T12524]  generic_splice_sendpage+0x1d5/0x2d0
[  416.469255][T12524]  direct_splice_actor+0x1fd/0x580
[  416.469255][T12524]  splice_direct_to_actor+0x6b2/0xf50
[  416.469255][T12524]  do_splice_direct+0x342/0x580
[  416.469255][T12524]  do_sendfile+0x101b/0x1d40
[  416.469255][T12524]  __se_sys_sendfile64+0x2bb/0x360
[  416.469255][T12524]  __x64_sys_sendfile64+0x56/0x70
[  416.469255][T12524]  do_syscall_64+0xb0/0x150
[  416.469255][T12524]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  416.469255][T12524] 
[  416.469255][T12524] Uninit was stored to memory at:
[  416.469255][T12524]  kmsan_internal_chain_origin+0xad/0x130
[  416.469255][T12524]  __msan_chain_origin+0x50/0x90
[  416.469255][T12524]  rmd256_transform+0x4373/0x4440
[  416.469255][T12524]  rmd256_update+0x227/0x4f0
[  416.469255][T12524]  crypto_shash_update+0x4e9/0x550
[  416.469255][T12524]  shash_async_update+0x113/0x1d0
[  416.469255][T12524]  hash_sendpage+0x8ef/0xdf0
[  416.469255][T12524]  sock_sendpage+0x1e1/0x2c0
[  416.469255][T12524]  pipe_to_sendpage+0x38c/0x4c0
[  416.469255][T12524]  __splice_from_pipe+0x565/0xf00
[  416.469255][T12524]  generic_splice_sendpage+0x1d5/0x2d0
[  416.469255][T12524]  direct_splice_actor+0x1fd/0x580
[  416.469255][T12524]  splice_direct_to_actor+0x6b2/0xf50
[  416.469255][T12524]  do_splice_direct+0x342/0x580
[  416.469255][T12524]  do_sendfile+0x101b/0x1d40
[  416.469255][T12524]  __se_sys_sendfile64+0x2bb/0x360
[  416.469255][T12524]  __x64_sys_sendfile64+0x56/0x70
[  416.469255][T12524]  do_syscall_64+0xb0/0x150
[  416.469255][T12524]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  416.469255][T12524] 
[  416.469255][T12524] Uninit was stored to memory at:
[  416.469255][T12524]  kmsan_internal_chain_origin+0xad/0x130
[  416.469255][T12524]  kmsan_memcpy_memmove_metadata+0x272/0x2e0
[  416.469255][T12524]  kmsan_memcpy_metadata+0xb/0x10
[  416.469255][T12524]  __msan_memcpy+0x43/0x50
[  416.469255][T12524]  rmd256_update+0x1fc/0x4f0
[  416.469255][T12524]  crypto_shash_update+0x4e9/0x550
[  416.469255][T12524]  shash_async_update+0x113/0x1d0
[  416.469255][T12524]  hash_sendpage+0x8ef/0xdf0
[  416.469255][T12524]  sock_sendpage+0x1e1/0x2c0
[  416.469255][T12524]  pipe_to_sendpage+0x38c/0x4c0
[  416.469255][T12524]  __splice_from_pipe+0x565/0xf00
[  416.469255][T12524]  generic_splice_sendpage+0x1d5/0x2d0
[  416.469255][T12524]  direct_splice_actor+0x1fd/0x580
[  416.469255][T12524]  splice_direct_to_actor+0x6b2/0xf50
[  416.469255][T12524]  do_splice_direct+0x342/0x580
[  416.469255][T12524]  do_sendfile+0x101b/0x1d40
[  416.469255][T12524]  __se_sys_sendfile64+0x2bb/0x360
[  416.469255][T12524]  __x64_sys_sendfile64+0x56/0x70
[  416.469255][T12524]  do_syscall_64+0xb0/0x150
[  416.469255][T12524]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  416.469255][T12524] 
[  416.469255][T12524] Uninit was created at:
[  416.469255][T12524]  kmsan_save_stack_with_flags+0x3c/0x90
[  416.469255][T12524]  kmsan_alloc_page+0xb9/0x180
[  416.469255][T12524]  __alloc_pages_nodemask+0x56a2/0x5dc0
[  416.469255][T12524]  alloc_pages_current+0x672/0x990
[  416.469255][T12524]  push_pipe+0x605/0xb70
[  416.469255][T12524]  iov_iter_get_pages_alloc+0x18a9/0x21c0
[  416.469255][T12524]  do_splice_to+0x4fc/0x14f0
[  416.469255][T12524]  splice_direct_to_actor+0x45c/0xf50
[  416.469255][T12524]  do_splice_direct+0x342/0x580
[  416.469255][T12524]  do_sendfile+0x101b/0x1d40
[  416.469255][T12524]  __se_sys_sendfile64+0x2bb/0x360
[  416.469255][T12524]  __x64_sys_sendfile64+0x56/0x70
[  416.469255][T12524]  do_syscall_64+0xb0/0x150
[  416.469255][T12524]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
20:08:29 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt(r1, 0x800000010d, 0x2, &(0x7f0000000240)='\x00\x00\x00\x00\x00', 0x5)
getsockopt$inet_int(r1, 0x10d, 0x2, 0x0, &(0x7f0000000180)=0x2b)
r2 = accept4(r1, 0x0, 0x0, 0x0)
r3 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dlm_plock\x00', 0x30000, 0x0)
ioctl$DRM_IOCTL_AGP_ENABLE(r3, 0x40086432, &(0x7f0000000100)=0x3)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r2, r4, 0x0, 0x1000007ffff000)

[  417.662425][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
20:08:29 executing program 5:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000733000)={0x5, 0x5, 0x7, 0x9}, 0x2c)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0xd, 0x100000001, 0x4, 0x100000001, 0x0, r0}, 0x2c)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0xd, 0x100000001, 0x4, 0x100000001, 0x0, r1}, 0x40)

20:08:30 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
ioctl$USBDEVFS_CLAIM_PORT(r2, 0x80045518, &(0x7f00000000c0)=0x9)
sendfile(r1, r2, 0x0, 0x1000007ffff000)

20:08:30 executing program 3:
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000008c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="000426bd7000fedbdf250d000000080034", @ANYRES32=0x0, @ANYBLOB="e0f0fdcb69a067053b14d7a44ca9ff6dedc9d15f7745c5298ff283c1edd156d0beaa2059b57c0366b4ef51f4f58652ef0dbdde68cd9d7f6a7ddbcbe278a8"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2400c004)
r2 = openat$cgroup_ro(r0, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r2, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x24, r1, 0x712, 0x70bd26, 0x25dfdbff}, 0x24}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000008c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="000426bd7000fedbdf250d000000080034", @ANYRES32=0x0, @ANYBLOB="e0f0fdcb69a067053b14d7a44ca9ff6dedc9d15f7745c5298ff283c1edd156d0beaa2059b57c0366b4ef51f4f58652ef0dbdde68cd9d7f6a7ddbcbe278a8"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2400c004)
r5 = openat$cgroup_ro(r3, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r5, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x24, r4, 0x712, 0x70bd26, 0x25dfdbff}, 0x24}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
ioctl$TIOCSSOFTCAR(r5, 0x541a, &(0x7f0000000180))
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_CLIENT(r2, 0xc0bc5351, &(0x7f0000000000)={0x9, 0x1, 'client0\x00', 0x3, "f3ab61d8b4efa543", "74df257873d2823dde18a23bd0061dc804a5dd1ff23f7b3506ac99454790dc87", 0x6, 0x1})
prlimit64(0x0, 0x10, 0x0, 0x0)

20:08:30 executing program 5:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000733000)={0x5, 0x5, 0x7, 0x9}, 0x2c)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0xd, 0x100000001, 0x4, 0x100000001, 0x0, r0}, 0x2c)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0xd, 0x100000001, 0x4, 0x100000001, 0x0, r1}, 0x40)

20:08:30 executing program 3:
prlimit64(0x0, 0x10, 0x0, 0x0)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x200001, 0x0)
getsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r0, 0x84, 0x8, &(0x7f0000000040), &(0x7f0000000080)=0x4)

20:08:30 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

[  418.514825][    C0] sd 0:0:1:0: [sg0] tag#2729 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  418.525494][    C0] sd 0:0:1:0: [sg0] tag#2729 CDB: Test Unit Ready
[  418.532298][    C0] sd 0:0:1:0: [sg0] tag#2729 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  418.542244][    C0] sd 0:0:1:0: [sg0] tag#2729 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  418.552189][    C0] sd 0:0:1:0: [sg0] tag#2729 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  418.562075][    C0] sd 0:0:1:0: [sg0] tag#2729 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  418.568803][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  418.571979][    C0] sd 0:0:1:0: [sg0] tag#2729 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  418.590332][    C0] sd 0:0:1:0: [sg0] tag#2729 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  418.600248][    C0] sd 0:0:1:0: [sg0] tag#2729 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  418.610159][    C0] sd 0:0:1:0: [sg0] tag#2729 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  418.620040][    C0] sd 0:0:1:0: [sg0] tag#2729 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  418.630165][    C0] sd 0:0:1:0: [sg0] tag#2729 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  418.640119][    C0] sd 0:0:1:0: [sg0] tag#2729 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  418.649999][    C0] sd 0:0:1:0: [sg0] tag#2729 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
20:08:30 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
openat$cgroup_ro(r3, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000008c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="000426bd7000fedbdf250d000000080034", @ANYRES32=0x0, @ANYBLOB="e0f0fdcb69a067053b14d7a44ca9ff6dedc9d15f7745c5298ff283c1edd156d0beaa2059b57c0366b4ef51f4f58652ef0dbdde68cd9d7f6a7ddbcbe278a8"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2400c004)
r6 = openat$cgroup_ro(r4, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r6, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x24, r5, 0x712, 0x70bd26, 0x25dfdbff}, 0x24}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
r7 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r8 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000008c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="000426bd7000fedbdf250d000000080034", @ANYRES32=0x0, @ANYBLOB="e0f0fdcb69a067053b14d7a44ca9ff6dedc9d15f7745c5298ff283c1edd156d0beaa2059b57c0366b4ef51f4f58652ef0dbdde68cd9d7f6a7ddbcbe278a8"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2400c004)
r9 = openat$cgroup_ro(r7, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r9, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x24, r8, 0x712, 0x70bd26, 0x25dfdbff}, 0x24}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
ioctl$SNDRV_PCM_IOCTL_REWIND(r9, 0x40084146, &(0x7f0000000180)=0x7)
sendfile(r1, r2, 0x0, 0x1)

20:08:30 executing program 3:
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt(r0, 0x800000010d, 0x2, &(0x7f0000000240)='\x00\x00\x00\x00\x00', 0x5)
getsockopt$inet_int(r0, 0x10d, 0x2, 0x0, &(0x7f0000000180)=0x2b)
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, &(0x7f0000000540)={0x990000, 0x2, 0x8, <r1=>r0, 0x0, &(0x7f0000000500)={0x14c070a, 0x7fff, [], @ptr=0x8}})
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000580)=0x2, 0x4)
prlimit64(0x0, 0x10, 0x0, 0x0)
r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
openat$cgroup_ro(r2, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r2, 0xc4c85513, &(0x7f0000000000)={{0x7, 0x0, 0x4, 0x10001, 'syz1\x00', 0xf78b}, 0x0, [0x3f, 0x5, 0xa8c, 0x7, 0x1, 0x8, 0x80, 0x4, 0x7, 0x7fffffff, 0xfc, 0x400, 0x1, 0x3, 0x10000, 0xe01, 0x1, 0x7, 0x408, 0x3, 0x400, 0x9cc6000, 0x0, 0xfffffffffffffffa, 0x9d9f, 0xffffffffffff5237, 0xa5, 0x100000001, 0x8, 0xfffffffffffffff9, 0x2, 0x9, 0xfffffffffffffffd, 0x59, 0x3a1, 0x7f, 0x4, 0x76c, 0x0, 0x7, 0x4, 0x3, 0x5, 0x0, 0x7, 0x1, 0x7f, 0x9, 0x6, 0x0, 0x10001, 0x0, 0x6, 0xbe3, 0xfffffffffffffffc, 0x9, 0x8, 0x6, 0x10001, 0x8000, 0xfffffffffffffff9, 0x9, 0x4, 0xffffffff, 0x7fffffff, 0x7, 0x100, 0x9, 0x23f, 0x9, 0x40000000000, 0x5, 0x1, 0x6, 0x26, 0x70ce, 0x0, 0x7fff, 0x5, 0x8, 0x3, 0x7, 0x0, 0x0, 0x6, 0xdbe5, 0x0, 0x7, 0x2, 0xffffffff, 0x1, 0xf9, 0xd43, 0x80000000, 0x81, 0x101, 0x6ee, 0x10001, 0x2, 0x9, 0x4, 0x10000, 0x10001, 0xe292, 0x0, 0x49d, 0x1, 0x9, 0x100000001, 0x4, 0xfff, 0xfffffffffffffffe, 0x9, 0xd3, 0x10001, 0xffffffff, 0x6, 0xffffffff, 0xffffffffffffb664, 0xfffffffffffffe00, 0x3, 0xcc0, 0x5, 0x4, 0x10001, 0x100, 0x46ca, 0x900]})

20:08:30 executing program 5:
r0 = syz_open_dev$usbfs(&(0x7f00000000c0)='/dev/bus/usb/00#/00#\x00', 0x908, 0x201)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000040)=@urb_type_control={0x2, {}, 0x0, 0x61, &(0x7f0000000140), 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

[  418.659886][    C0] sd 0:0:1:0: [sg0] tag#2729 CDB[c0]: 00 00 00 00 00 00 00 00
[  418.683398][T12532] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[  418.692859][T12532] tc_dump_action: action bad kind
[  418.771032][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  418.965745][T12565] usb usb2: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  418.973792][T12565] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
20:08:31 executing program 4:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="2000000032000903"], 0x1}}, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x4ffe0, 0x0)

20:08:31 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
write(r0, &(0x7f000018efdc)="140000004e001f0014f9f4070009040002000710", 0x14)

[  419.102262][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
20:08:31 executing program 3:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/locks\x00', 0x0, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
r2 = socket$inet(0x2, 0x80001, 0x84)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ppp\x00', 0x12c2c0, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r3=>0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x8)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000040)={r3, @in={{0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0xd}}}}, &(0x7f0000000100)=0x84)
prlimit64(0x0, 0x10, 0x0, 0x0)

20:08:31 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000008c0)={&(0x7f0000000680)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="000426bd7000fedbdf250d000000080034", @ANYRES32=0x0, @ANYBLOB="e0f0fdcb69a067053b14100859ff9e685fb77a0aa978121cf336d7a44ca9ff6dedc9d15f7745c5298ff283c1edd156d0beaa2059b57c034b10a4adf4f58652ef0d7f6a7debcbe278a80000000000af19eb0eb15d928507d94d7c6aa04ae21caab2a2baed4a67dd4e52dad884d3866dad619ebd22879d278b2a285e8d3b515a18d9cae8d16da192d8aa366dd6571dcc07f19afca844a14f9702e50d64fb089b8711f1d577"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2400c004)
r3 = openat$cgroup_ro(r1, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r3, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000640)=ANY=[@ANYRESHEX, @ANYRESHEX, @ANYRES32], 0x24}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
ioctl$TUNSETLINK(r3, 0x400454cd, 0x304)
r4 = socket$phonet_pipe(0x23, 0x5, 0x2)
r5 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
openat$cgroup_ro(r5, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r4, 0xc020f509, &(0x7f0000000540)={r5, 0x3ff, 0x7ff, 0xd06d})
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r6 = accept4(r0, 0x0, 0x0, 0x0)
r7 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r6, r7, 0x0, 0x1000007ffff000)
getsockopt$inet_int(0xffffffffffffffff, 0x10d, 0x2, 0x0, &(0x7f0000000180)=0x2b)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(0xffffffffffffffff, 0x800c6613, &(0x7f00000005c0)=@v2={0x2, @adiantum, 0x8, [], "372203f67a42575b66161db9a34753da"})
r8 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000580)='/dev/dlm-monitor\x00', 0x20000, 0x0)
ioctl$SNAPSHOT_FREE_SWAP_PAGES(r8, 0x3309)
sendmsg$tipc(r7, &(0x7f0000000500)={&(0x7f00000000c0)=@nameseq={0x1e, 0x1, 0x3, {0x40, 0x2, 0x3}}, 0x10, &(0x7f0000000400)=[{&(0x7f0000000100)="228560a6bd75bffb92bc7e1419f4d555d64e15f9441e293eb05610c497d62e985ae35a77ff75206e23d9eeda2450fb8157d1c90a08dad0399d2214ba73f268d372ee2450ad4b068fb8e85fbee4b7a471daf4f0b3211351f814393f10ffc20aa7d7e2ecf0c58894f1f63aac8cfbbdc27860de66cc370d355cd886d0947fb4f8604ee59f79cf84645090cabd27a5e58455599f88c788f82129bfea76709d1dfd", 0x9f}, {&(0x7f00000001c0)="e3ddf03072d20b91603475286d58977a2e513893b74b048bd8e791493c7064f7c8690bc07524facba026bb12c33eee2edbd835c5750919f59e0f961218ea9620c8b8fa659d119c7bbdbe4028fadd9ef2ca967b24aa50634f71ee1f6fc4d6048db512fd6466e78a47ba0f43c0936f8e4c0dd495c707c8679e4415ac469281f9801480c9b94d8d192e9f8b19515f6e1080763830e5e8ac9d8cf68986df94156c92f968d5f93c8b3a89957ece1347b23a5e954250ed7c", 0xb5}, {&(0x7f0000000280)="17078ee804cc263ffa6257f39855288b131367dbe75bab3803743786cdfeb8fb005f46625b56299140825f1b01ef2cdec5acc7edd4f87066eb5e0ba756c9177b7472d143191131651c69c93cd6f6d8b9e0c6713296e05f55e2a3ad869b55aebdac6c017a18110a60de5e2b752bb5f794fa17b6725b3ba3a0cf19068bca8c8a8c3d45c177fbedb9a16a4c4091c4df3c32812aa4b8b835e37fc45fe2d9dc9ec4c0c050a760df54747679a6f81aa8a5de9292a4515197b9ad8b6baa23e361e3639e59cad7f6c5304a54bbf08a50ad2d491b15", 0xd1}, {&(0x7f0000000380)="f5c854bf5b900240679e21014a3d930f53aff00526f063c087ba4a0af15fcc355e0770f2a656ef133516bf3a2302b337b369379b0453b710e90ecb29e530fb643dda1b3c393f81803248ab384faae99574413f05b003e958f4f1d7a7d624af41e4b327f29c485d2f549e124199399f2fc046e6", 0x73}], 0x4, &(0x7f0000000440)="12370fb17639592a75b5f40522193d7d1a35eb3017c9e0897bda6ec34c46a72c427792905b4aa829c3f278f0712c166c60d2033bc82879cbafd3aa2143199f9e6bdc5b5748b3e32a45cd548c4269f34561ba84cab3a31e48a1b9e5eac75db48f54ace73024f5367914b976cfa3c8b23ab066ac31b67a24ee8ec2fbb176f5766a98075caf03c515dc9a34b35f252df0b5005ac722e72bac58095e8ce81d7755f6a0510319dec08b658d", 0xa9, 0x8040000}, 0x20040000)

[  419.294973][T12574] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[  419.304459][T12574] tc_dump_action: action bad kind
20:08:31 executing program 5:
r0 = syz_open_dev$usbfs(&(0x7f00000000c0)='/dev/bus/usb/00#/00#\x00', 0x908, 0x201)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000040)=@urb_type_control={0x2, {}, 0x0, 0x61, &(0x7f0000000140), 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

[  419.458709][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
20:08:31 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
write(r0, &(0x7f000018efdc)="140000004e001f0014f9f4070009040002000710", 0x14)

20:08:31 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

[  419.625906][T12582] usb usb2: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  419.633740][T12582] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  419.678294][T12578] not chained 640000 origins
[  419.679238][T12578] CPU: 1 PID: 12578 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0
[  419.679238][T12578] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  419.679238][T12578] Call Trace:
[  419.679238][T12578]  dump_stack+0x1df/0x240
[  419.679238][T12578]  kmsan_internal_chain_origin+0x6f/0x130
[  419.679238][T12578]  ? is_module_text_address+0x4d/0x2a0
[  419.679238][T12578]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  419.679238][T12578]  ? __kernel_text_address+0x171/0x2d0
[  419.679238][T12578]  ? unwind_get_return_address+0x8c/0x130
[  419.679238][T12578]  ? entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  419.679238][T12578]  ? arch_stack_walk+0x2a2/0x3e0
[  419.679238][T12578]  ? stack_trace_save+0x1a0/0x1a0
[  419.679238][T12578]  ? kmsan_get_metadata+0x4f/0x180
[  419.679238][T12578]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  419.679238][T12578]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  419.679238][T12578]  ? stack_trace_save+0x123/0x1a0
[  419.679238][T12578]  ? kmsan_get_metadata+0x11d/0x180
[  419.679238][T12578]  __msan_chain_origin+0x50/0x90
[  419.679238][T12578]  rmd256_transform+0x43e9/0x4440
[  419.679238][T12578]  ? __clk_set_parent_before+0x37/0xd20
[  419.679238][T12578]  rmd256_update+0x343/0x4f0
[  419.799320][T12578]  ? rmd256_init+0x260/0x260
[  419.799320][T12578]  crypto_shash_update+0x4e9/0x550
[  419.799320][T12578]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  419.799320][T12578]  ? crypto_hash_walk_first+0x1fd/0x360
[  419.799320][T12578]  ? kmsan_get_metadata+0x4f/0x180
[  419.799320][T12578]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  419.799320][T12578]  shash_async_update+0x113/0x1d0
[  419.799320][T12578]  ? shash_async_init+0x1e0/0x1e0
[  419.799320][T12578]  hash_sendpage+0x8ef/0xdf0
[  419.799320][T12578]  ? hash_recvmsg+0xd30/0xd30
[  419.799320][T12578]  sock_sendpage+0x1e1/0x2c0
[  419.799320][T12578]  pipe_to_sendpage+0x38c/0x4c0
[  419.799320][T12578]  ? sock_fasync+0x250/0x250
[  419.799320][T12578]  __splice_from_pipe+0x565/0xf00
[  419.799320][T12578]  ? generic_splice_sendpage+0x2d0/0x2d0
[  419.799320][T12578]  generic_splice_sendpage+0x1d5/0x2d0
[  419.799320][T12578]  ? iter_file_splice_write+0x1800/0x1800
[  419.799320][T12578]  direct_splice_actor+0x1fd/0x580
[  419.799320][T12578]  ? kmsan_get_metadata+0x4f/0x180
[  419.799320][T12578]  splice_direct_to_actor+0x6b2/0xf50
[  419.799320][T12578]  ? do_splice_direct+0x580/0x580
[  419.799320][T12578]  do_splice_direct+0x342/0x580
[  419.799320][T12578]  do_sendfile+0x101b/0x1d40
[  419.799320][T12578]  __se_sys_sendfile64+0x2bb/0x360
[  419.799320][T12578]  ? kmsan_get_metadata+0x4f/0x180
[  419.799320][T12578]  __x64_sys_sendfile64+0x56/0x70
[  419.799320][T12578]  do_syscall_64+0xb0/0x150
[  419.799320][T12578]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  419.799320][T12578] RIP: 0033:0x45c1d9
[  419.799320][T12578] Code: Bad RIP value.
[  419.799320][T12578] RSP: 002b:00007f3a4d702c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  419.799320][T12578] RAX: ffffffffffffffda RBX: 0000000000025a00 RCX: 000000000045c1d9
[  419.799320][T12578] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004
[  419.799320][T12578] RBP: 000000000078bf48 R08: 0000000000000000 R09: 0000000000000000
[  419.799320][T12578] R10: 001000007ffff000 R11: 0000000000000246 R12: 000000000078bf0c
[  419.799320][T12578] R13: 0000000000c9fb6f R14: 00007f3a4d7039c0 R15: 000000000078bf0c
[  419.799320][T12578] Uninit was stored to memory at:
[  419.799320][T12578]  kmsan_internal_chain_origin+0xad/0x130
[  419.799320][T12578]  __msan_chain_origin+0x50/0x90
[  419.799320][T12578]  rmd256_transform+0x43e9/0x4440
[  419.799320][T12578]  rmd256_update+0x343/0x4f0
[  419.799320][T12578]  crypto_shash_update+0x4e9/0x550
[  419.799320][T12578]  shash_async_update+0x113/0x1d0
[  419.799320][T12578]  hash_sendpage+0x8ef/0xdf0
[  419.799320][T12578]  sock_sendpage+0x1e1/0x2c0
[  419.799320][T12578]  pipe_to_sendpage+0x38c/0x4c0
[  419.799320][T12578]  __splice_from_pipe+0x565/0xf00
[  419.799320][T12578]  generic_splice_sendpage+0x1d5/0x2d0
[  419.799320][T12578]  direct_splice_actor+0x1fd/0x580
[  419.799320][T12578]  splice_direct_to_actor+0x6b2/0xf50
[  419.799320][T12578]  do_splice_direct+0x342/0x580
[  419.799320][T12578]  do_sendfile+0x101b/0x1d40
[  419.799320][T12578]  __se_sys_sendfile64+0x2bb/0x360
[  419.799320][T12578]  __x64_sys_sendfile64+0x56/0x70
[  419.799320][T12578]  do_syscall_64+0xb0/0x150
[  419.799320][T12578]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  419.799320][T12578] 
[  419.799320][T12578] Uninit was stored to memory at:
[  419.799320][T12578]  kmsan_internal_chain_origin+0xad/0x130
[  419.799320][T12578]  __msan_chain_origin+0x50/0x90
[  419.799320][T12578]  rmd256_transform+0x43e9/0x4440
[  419.799320][T12578]  rmd256_update+0x343/0x4f0
[  419.799320][T12578]  crypto_shash_update+0x4e9/0x550
[  419.799320][T12578]  shash_async_update+0x113/0x1d0
[  419.799320][T12578]  hash_sendpage+0x8ef/0xdf0
[  419.799320][T12578]  sock_sendpage+0x1e1/0x2c0
[  419.799320][T12578]  pipe_to_sendpage+0x38c/0x4c0
[  419.799320][T12578]  __splice_from_pipe+0x565/0xf00
[  419.799320][T12578]  generic_splice_sendpage+0x1d5/0x2d0
[  419.799320][T12578]  direct_splice_actor+0x1fd/0x580
[  419.799320][T12578]  splice_direct_to_actor+0x6b2/0xf50
[  419.799320][T12578]  do_splice_direct+0x342/0x580
[  419.799320][T12578]  do_sendfile+0x101b/0x1d40
[  419.799320][T12578]  __se_sys_sendfile64+0x2bb/0x360
[  419.799320][T12578]  __x64_sys_sendfile64+0x56/0x70
[  419.799320][T12578]  do_syscall_64+0xb0/0x150
[  419.799320][T12578]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  419.799320][T12578] 
[  419.799320][T12578] Uninit was stored to memory at:
[  419.799320][T12578]  kmsan_internal_chain_origin+0xad/0x130
[  419.799320][T12578]  __msan_chain_origin+0x50/0x90
[  419.799320][T12578]  rmd256_transform+0x43e9/0x4440
[  419.799320][T12578]  rmd256_update+0x343/0x4f0
[  419.799320][T12578]  crypto_shash_update+0x4e9/0x550
[  419.799320][T12578]  shash_async_update+0x113/0x1d0
[  419.799320][T12578]  hash_sendpage+0x8ef/0xdf0
[  419.799320][T12578]  sock_sendpage+0x1e1/0x2c0
[  419.799320][T12578]  pipe_to_sendpage+0x38c/0x4c0
[  419.799320][T12578]  __splice_from_pipe+0x565/0xf00
[  419.799320][T12578]  generic_splice_sendpage+0x1d5/0x2d0
[  419.799320][T12578]  direct_splice_actor+0x1fd/0x580
[  419.799320][T12578]  splice_direct_to_actor+0x6b2/0xf50
[  419.799320][T12578]  do_splice_direct+0x342/0x580
[  419.799320][T12578]  do_sendfile+0x101b/0x1d40
[  419.799320][T12578]  __se_sys_sendfile64+0x2bb/0x360
[  419.799320][T12578]  __x64_sys_sendfile64+0x56/0x70
[  419.799320][T12578]  do_syscall_64+0xb0/0x150
[  419.799320][T12578]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  419.799320][T12578] 
[  419.799320][T12578] Uninit was stored to memory at:
[  419.799320][T12578]  kmsan_internal_chain_origin+0xad/0x130
[  419.799320][T12578]  __msan_chain_origin+0x50/0x90
[  419.799320][T12578]  rmd256_transform+0x43e9/0x4440
[  419.799320][T12578]  rmd256_update+0x343/0x4f0
[  419.799320][T12578]  crypto_shash_update+0x4e9/0x550
[  419.799320][T12578]  shash_async_update+0x113/0x1d0
[  419.799320][T12578]  hash_sendpage+0x8ef/0xdf0
[  419.799320][T12578]  sock_sendpage+0x1e1/0x2c0
[  419.799320][T12578]  pipe_to_sendpage+0x38c/0x4c0
[  419.799320][T12578]  __splice_from_pipe+0x565/0xf00
[  419.799320][T12578]  generic_splice_sendpage+0x1d5/0x2d0
[  419.799320][T12578]  direct_splice_actor+0x1fd/0x580
[  419.799320][T12578]  splice_direct_to_actor+0x6b2/0xf50
[  419.799320][T12578]  do_splice_direct+0x342/0x580
[  419.799320][T12578]  do_sendfile+0x101b/0x1d40
[  419.799320][T12578]  __se_sys_sendfile64+0x2bb/0x360
[  419.799320][T12578]  __x64_sys_sendfile64+0x56/0x70
[  419.799320][T12578]  do_syscall_64+0xb0/0x150
[  419.799320][T12578]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  419.799320][T12578] 
[  419.799320][T12578] Uninit was stored to memory at:
[  419.799320][T12578]  kmsan_internal_chain_origin+0xad/0x130
[  419.799320][T12578]  __msan_chain_origin+0x50/0x90
[  419.799320][T12578]  rmd256_transform+0x43e9/0x4440
[  419.799320][T12578]  rmd256_update+0x343/0x4f0
[  419.799320][T12578]  crypto_shash_update+0x4e9/0x550
[  419.799320][T12578]  shash_async_update+0x113/0x1d0
[  419.799320][T12578]  hash_sendpage+0x8ef/0xdf0
[  419.799320][T12578]  sock_sendpage+0x1e1/0x2c0
[  419.799320][T12578]  pipe_to_sendpage+0x38c/0x4c0
[  419.799320][T12578]  __splice_from_pipe+0x565/0xf00
[  419.799320][T12578]  generic_splice_sendpage+0x1d5/0x2d0
[  419.799320][T12578]  direct_splice_actor+0x1fd/0x580
[  419.799320][T12578]  splice_direct_to_actor+0x6b2/0xf50
[  419.799320][T12578]  do_splice_direct+0x342/0x580
[  419.799320][T12578]  do_sendfile+0x101b/0x1d40
[  419.799320][T12578]  __se_sys_sendfile64+0x2bb/0x360
[  419.799320][T12578]  __x64_sys_sendfile64+0x56/0x70
[  419.799320][T12578]  do_syscall_64+0xb0/0x150
[  419.799320][T12578]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  419.799320][T12578] 
[  419.799320][T12578] Uninit was stored to memory at:
[  419.799320][T12578]  kmsan_internal_chain_origin+0xad/0x130
[  419.799320][T12578]  __msan_chain_origin+0x50/0x90
[  419.799320][T12578]  rmd256_transform+0x43e9/0x4440
[  419.799320][T12578]  rmd256_update+0x227/0x4f0
[  419.799320][T12578]  crypto_shash_update+0x4e9/0x550
[  419.799320][T12578]  shash_async_update+0x113/0x1d0
[  419.799320][T12578]  hash_sendpage+0x8ef/0xdf0
[  419.799320][T12578]  sock_sendpage+0x1e1/0x2c0
[  419.799320][T12578]  pipe_to_sendpage+0x38c/0x4c0
[  419.799320][T12578]  __splice_from_pipe+0x565/0xf00
[  419.799320][T12578]  generic_splice_sendpage+0x1d5/0x2d0
[  419.799320][T12578]  direct_splice_actor+0x1fd/0x580
[  419.799320][T12578]  splice_direct_to_actor+0x6b2/0xf50
[  419.799320][T12578]  do_splice_direct+0x342/0x580
[  419.799320][T12578]  do_sendfile+0x101b/0x1d40
[  419.799320][T12578]  __se_sys_sendfile64+0x2bb/0x360
[  419.799320][T12578]  __x64_sys_sendfile64+0x56/0x70
[  419.799320][T12578]  do_syscall_64+0xb0/0x150
[  419.799320][T12578]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  419.799320][T12578] 
[  419.799320][T12578] Uninit was stored to memory at:
[  419.799320][T12578]  kmsan_internal_chain_origin+0xad/0x130
[  419.799320][T12578]  kmsan_memcpy_memmove_metadata+0x272/0x2e0
[  419.799320][T12578]  kmsan_memcpy_metadata+0xb/0x10
[  419.799320][T12578]  __msan_memcpy+0x43/0x50
[  419.799320][T12578]  rmd256_update+0x1fc/0x4f0
[  419.799320][T12578]  crypto_shash_update+0x4e9/0x550
[  419.799320][T12578]  shash_async_update+0x113/0x1d0
[  419.799320][T12578]  hash_sendpage+0x8ef/0xdf0
[  419.799320][T12578]  sock_sendpage+0x1e1/0x2c0
[  419.799320][T12578]  pipe_to_sendpage+0x38c/0x4c0
[  419.799320][T12578]  __splice_from_pipe+0x565/0xf00
[  419.799320][T12578]  generic_splice_sendpage+0x1d5/0x2d0
[  419.799320][T12578]  direct_splice_actor+0x1fd/0x580
[  419.799320][T12578]  splice_direct_to_actor+0x6b2/0xf50
[  419.799320][T12578]  do_splice_direct+0x342/0x580
[  419.799320][T12578]  do_sendfile+0x101b/0x1d40
[  419.799320][T12578]  __se_sys_sendfile64+0x2bb/0x360
[  419.799320][T12578]  __x64_sys_sendfile64+0x56/0x70
[  419.799320][T12578]  do_syscall_64+0xb0/0x150
[  419.799320][T12578]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  419.799320][T12578] 
[  419.799320][T12578] Uninit was created at:
[  419.799320][T12578]  kmsan_save_stack_with_flags+0x3c/0x90
[  419.799320][T12578]  kmsan_alloc_page+0xb9/0x180
[  419.799320][T12578]  __alloc_pages_nodemask+0x56a2/0x5dc0
[  419.799320][T12578]  alloc_pages_current+0x672/0x990
[  419.799320][T12578]  push_pipe+0x605/0xb70
[  419.799320][T12578]  iov_iter_get_pages_alloc+0x18a9/0x21c0
[  419.799320][T12578]  do_splice_to+0x4fc/0x14f0
[  419.799320][T12578]  splice_direct_to_actor+0x45c/0xf50
[  419.799320][T12578]  do_splice_direct+0x342/0x580
[  419.799320][T12578]  do_sendfile+0x101b/0x1d40
[  419.799320][T12578]  __se_sys_sendfile64+0x2bb/0x360
[  419.799320][T12578]  __x64_sys_sendfile64+0x56/0x70
[  419.799320][T12578]  do_syscall_64+0xb0/0x150
[  419.799320][T12578]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
20:08:33 executing program 3:
prlimit64(0x0, 0x10, 0x0, 0x0)
r0 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x22040, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r0, 0xc038563b, &(0x7f0000000040)={0x0, 0x0, {0x3800, 0x1, 0x5, 0x80}})
r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000008c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="000426bd7000fedbdf250d000000080034", @ANYRES32=0x0, @ANYBLOB="e0f0fdcb69a067053b14d7a44ca9ff6dedc9d15f7745c5298ff283c1edd156d0beaa2059b57c0366b4ef51f4f58652ef0dbdde68cd9d7f6a7ddbcbe278a8"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2400c004)
r3 = openat$cgroup_ro(r1, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r3, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x24, r2, 0x712, 0x70bd26, 0x25dfdbff}, 0x24}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
setsockopt$sock_int(r3, 0x1, 0x1e, &(0x7f0000000080)=0x6, 0x4)

20:08:33 executing program 4:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="2000000032000903"], 0x1}}, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x4ffe0, 0x0)

[  420.905740][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
20:08:33 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
write(r0, &(0x7f000018efdc)="140000004e001f0014f9f4070009040002000710", 0x14)

20:08:33 executing program 5:
r0 = syz_open_dev$usbfs(&(0x7f00000000c0)='/dev/bus/usb/00#/00#\x00', 0x908, 0x201)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000040)=@urb_type_control={0x2, {}, 0x0, 0x61, &(0x7f0000000140), 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

[  421.852961][T12602] usb usb2: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  421.861269][T12602] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  421.887969][    C0] sd 0:0:1:0: [sg0] tag#2730 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  421.898717][    C0] sd 0:0:1:0: [sg0] tag#2730 CDB: Test Unit Ready
[  421.905508][    C0] sd 0:0:1:0: [sg0] tag#2730 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  421.905812][T12605] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[  421.915337][    C0] sd 0:0:1:0: [sg0] tag#2730 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  421.925248][T12605] tc_dump_action: action bad kind
[  421.935007][    C0] sd 0:0:1:0: [sg0] tag#2730 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  421.949828][    C0] sd 0:0:1:0: [sg0] tag#2730 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  421.959678][    C0] sd 0:0:1:0: [sg0] tag#2730 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  421.969534][    C0] sd 0:0:1:0: [sg0] tag#2730 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  421.979385][    C0] sd 0:0:1:0: [sg0] tag#2730 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  421.989125][    C0] sd 0:0:1:0: [sg0] tag#2730 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  421.999442][    C0] sd 0:0:1:0: [sg0] tag#2730 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  422.009399][    C0] sd 0:0:1:0: [sg0] tag#2730 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  422.019443][    C0] sd 0:0:1:0: [sg0] tag#2730 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  422.028240][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  422.029174][    C0] sd 0:0:1:0: [sg0] tag#2730 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
20:08:34 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
write(r0, &(0x7f000018efdc)="140000004e001f0014f9f4070009040002000710", 0x14)

[  422.047467][    C0] sd 0:0:1:0: [sg0] tag#2730 CDB[c0]: 00 00 00 00 00 00 00 00
20:08:34 executing program 3:
r0 = gettid()
ptrace$setopts(0x4206, r0, 0x0, 0x0)
tkill(r0, 0x40)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)
r1 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r2=>0x0, <r3=>0x0}, &(0x7f0000cab000)=0xc)
keyctl$chown(0x1d, 0x0, r2, r3)
ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0286405, &(0x7f0000000000)={0x0, 0x7, {r0}, {r2}, 0x1, 0x80})
r4 = gettid()
ptrace$setopts(0x4206, r4, 0x0, 0x0)
tkill(r4, 0x40)
ptrace$setregs(0xd, r4, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r4, 0x0, 0x0)
prlimit64(r4, 0x1, 0x0, 0x0)

20:08:34 executing program 5:
r0 = syz_open_dev$usbfs(&(0x7f00000000c0)='/dev/bus/usb/00#/00#\x00', 0x908, 0x201)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000040)=@urb_type_control={0x2, {}, 0x0, 0x61, &(0x7f0000000140), 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

[  422.357672][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
20:08:34 executing program 3:
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
openat$cgroup_ro(r0, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
fcntl$setflags(r0, 0x2, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000000240)={@in6={{0xa, 0x0, 0x0, @ipv4={[], [], @broadcast}}}, 0x0, 0x5, 0x1}, 0xd8)
setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000000400)={@in6={{0xa, 0x0, 0x0, @ipv4={[], [], @broadcast}}}}, 0xd8)
setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000000240)={@in6={{0xa, 0x0, 0x0, @mcast2}}, 0x0, 0x5, 0x2b}, 0xd8)
r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000008c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="000426bd7000fedbdf250d000000080034", @ANYRES32=0x0, @ANYBLOB="e0f0fdcb69a067053b14d7a44ca9ff6dedc9d15f7745c5298ff283c1edd156d0beaa2059b57c0366b4ef51f4f58652ef0dbdde68cd9d7f6a7ddbcbe278a8"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2400c004)
r6 = openat$cgroup_ro(r4, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r6, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x24, r5, 0x712, 0x70bd26, 0x25dfdbff}, 0x24}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000008c0)={&(0x7f0000000340)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0xc084)
r7 = openat$cgroup_ro(r2, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r7, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r3, @ANYBLOB], 0x24}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
ioctl$KVM_SET_IDENTITY_MAP_ADDR(r7, 0x4008ae48, &(0x7f0000000000)=0x4)
prlimit64(0x0, 0x10, 0x0, 0x0)

[  422.581743][T12614] usb usb2: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  422.589474][T12614] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  422.614757][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
20:08:35 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff})
fcntl$lock(0xffffffffffffffff, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x800000})
close(r0)
socket$pppl2tp(0x18, 0x1, 0x1)
io_setup(0x6, &(0x7f0000000140)=<r1=>0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
r3 = dup(r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
io_submit(r1, 0x1e09328e, &(0x7f0000000040)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x1000800000000001, 0x0, r0, 0x0, 0x7ffff000}])

20:08:35 executing program 2:
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyS3\x00', 0x100801, 0x0)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
writev(r0, &(0x7f0000000340)=[{&(0x7f0000001680)="cd", 0xfffffcf0}], 0x1)
r3 = socket$inet6(0xa, 0x1, 0x0)
ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "c300"})
dup2(r3, r0)

20:08:35 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000380)='/dev/autofs\x00', 0x0, 0x0)
ioctl(r3, 0x937e, &(0x7f00000001c0)="0100000000000000180100000500000300000000000000002f")

20:08:35 executing program 4:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="2000000032000903"], 0x1}}, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x4ffe0, 0x0)

20:08:35 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
openat2(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)={0x115182, 0x181, 0x10}, 0x18)
sendfile(r1, r2, 0x0, 0x1000007ffff000)
ioctl$LOOP_GET_STATUS64(r2, 0x4c05, &(0x7f00000000c0))
r3 = gettid()
ptrace$setopts(0x4206, r3, 0x0, 0x0)
tkill(r3, 0x40)
ptrace$setregs(0xd, r3, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r3, 0x0, 0x0)
r4 = syz_open_procfs(r3, &(0x7f0000000240)='net/vlan/vlan1\x00')
ioctl$SNDCTL_DSP_GETIPTR(r4, 0x800c5011, &(0x7f0000000280))

20:08:35 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

[  423.618975][    C1] sd 0:0:1:0: [sg0] tag#2731 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  423.629606][    C1] sd 0:0:1:0: [sg0] tag#2731 CDB: Test Unit Ready
[  423.636227][    C1] sd 0:0:1:0: [sg0] tag#2731 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  423.646138][    C1] sd 0:0:1:0: [sg0] tag#2731 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  423.656081][    C1] sd 0:0:1:0: [sg0] tag#2731 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  423.666009][    C1] sd 0:0:1:0: [sg0] tag#2731 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  423.675898][    C1] sd 0:0:1:0: [sg0] tag#2731 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  423.685810][    C1] sd 0:0:1:0: [sg0] tag#2731 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  423.695882][    C1] sd 0:0:1:0: [sg0] tag#2731 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  423.705755][    C1] sd 0:0:1:0: [sg0] tag#2731 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  423.705959][T12639] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[  423.715588][    C1] sd 0:0:1:0: [sg0] tag#2731 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  423.715688][    C1] sd 0:0:1:0: [sg0] tag#2731 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  423.715792][    C1] sd 0:0:1:0: [sg0] tag#2731 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  423.715896][    C1] sd 0:0:1:0: [sg0] tag#2731 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  423.715996][    C1] sd 0:0:1:0: [sg0] tag#2731 CDB[c0]: 00 00 00 00 00 00 00 00
[  423.725543][T12639] tc_dump_action: action bad kind
20:08:36 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000380)='/dev/autofs\x00', 0x0, 0x0)
ioctl(r3, 0x937e, &(0x7f00000001c0)="0100000000000000180100000500000300000000000000002f")

20:08:36 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = gettid()
ptrace$setopts(0xffffffffffffffff, r2, 0xfffffffffffffffd, 0x100051)
tkill(r2, 0x40)
ptrace$setregs(0xd, r2, 0x0, &(0x7f0000000080))
ptrace$cont(0x9, 0x0, 0x3, 0x4)
r3 = gettid()
ptrace$setopts(0x4206, r3, 0x0, 0x0)
tkill(r3, 0x40)
ptrace$setregs(0xd, r3, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r3, 0x0, 0x0)
r4 = gettid()
ptrace$setopts(0x4206, r4, 0x0, 0x0)
tkill(r4, 0x40)
ptrace$setregs(0xd, r4, 0x0, &(0x7f0000000080))
ptrace$cont(0x18, r4, 0xd, 0x20)
r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/tcp\x00')
sendfile(r1, r5, 0x0, 0x1000007ffff000)

[  424.099458][T12635] not chained 650000 origins
[  424.104071][T12635] CPU: 1 PID: 12635 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0
[  424.109302][T12635] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  424.120120][T12635] Call Trace:
[  424.120120][T12635]  dump_stack+0x1df/0x240
[  424.120120][T12635]  kmsan_internal_chain_origin+0x6f/0x130
[  424.120120][T12635]  ? is_module_text_address+0x4d/0x2a0
[  424.120120][T12635]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  424.120120][T12635]  ? __kernel_text_address+0x171/0x2d0
[  424.120120][T12635]  ? unwind_get_return_address+0x8c/0x130
[  424.120120][T12635]  ? entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  424.120120][T12635]  ? arch_stack_walk+0x2a2/0x3e0
[  424.167243][T12635]  ? stack_trace_save+0x1a0/0x1a0
[  424.167243][T12635]  ? kmsan_get_metadata+0x4f/0x180
[  424.179468][T12635]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  424.179468][T12635]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  424.179468][T12635]  ? stack_trace_save+0x123/0x1a0
[  424.179468][T12635]  ? kmsan_get_metadata+0x11d/0x180
[  424.179468][T12635]  __msan_chain_origin+0x50/0x90
[  424.179468][T12635]  rmd256_transform+0x43e9/0x4440
[  424.179468][T12635]  rmd256_update+0x343/0x4f0
[  424.179468][T12635]  ? rmd256_init+0x260/0x260
[  424.179468][T12635]  crypto_shash_update+0x4e9/0x550
[  424.179468][T12635]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  424.179468][T12635]  ? crypto_hash_walk_first+0x1fd/0x360
[  424.179468][T12635]  ? kmsan_get_metadata+0x4f/0x180
[  424.179468][T12635]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  424.179468][T12635]  shash_async_update+0x113/0x1d0
[  424.179468][T12635]  ? shash_async_init+0x1e0/0x1e0
[  424.179468][T12635]  hash_sendpage+0x8ef/0xdf0
[  424.179468][T12635]  ? hash_recvmsg+0xd30/0xd30
[  424.267315][T12635]  sock_sendpage+0x1e1/0x2c0
[  424.267315][T12635]  pipe_to_sendpage+0x38c/0x4c0
[  424.267315][T12635]  ? sock_fasync+0x250/0x250
[  424.267315][T12635]  __splice_from_pipe+0x565/0xf00
[  424.267315][T12635]  ? generic_splice_sendpage+0x2d0/0x2d0
[  424.267315][T12635]  generic_splice_sendpage+0x1d5/0x2d0
[  424.267315][T12635]  ? iter_file_splice_write+0x1800/0x1800
[  424.267315][T12635]  direct_splice_actor+0x1fd/0x580
[  424.267315][T12635]  ? kmsan_get_metadata+0x4f/0x180
[  424.267315][T12635]  splice_direct_to_actor+0x6b2/0xf50
[  424.267315][T12635]  ? do_splice_direct+0x580/0x580
[  424.267315][T12635]  do_splice_direct+0x342/0x580
[  424.267315][T12635]  do_sendfile+0x101b/0x1d40
[  424.267315][T12635]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  424.267315][T12635]  __se_sys_sendfile64+0x2bb/0x360
[  424.267315][T12635]  ? kmsan_get_metadata+0x4f/0x180
[  424.267315][T12635]  __x64_sys_sendfile64+0x56/0x70
[  424.267315][T12635]  do_syscall_64+0xb0/0x150
[  424.267315][T12635]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  424.267315][T12635] RIP: 0033:0x45c1d9
[  424.267315][T12635] Code: Bad RIP value.
[  424.267315][T12635] RSP: 002b:00007f42d54efc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  424.267315][T12635] RAX: ffffffffffffffda RBX: 0000000000025a00 RCX: 000000000045c1d9
[  424.267315][T12635] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000007
[  424.267315][T12635] RBP: 000000000078bf48 R08: 0000000000000000 R09: 0000000000000000
[  424.267315][T12635] R10: 001000007ffff000 R11: 0000000000000246 R12: 000000000078bf0c
[  424.267315][T12635] R13: 0000000000c9fb6f R14: 00007f42d54f09c0 R15: 000000000078bf0c
[  424.267315][T12635] Uninit was stored to memory at:
[  424.267315][T12635]  kmsan_internal_chain_origin+0xad/0x130
[  424.267315][T12635]  __msan_chain_origin+0x50/0x90
[  424.267315][T12635]  rmd256_transform+0x43e9/0x4440
[  424.267315][T12635]  rmd256_update+0x343/0x4f0
[  424.267315][T12635]  crypto_shash_update+0x4e9/0x550
[  424.267315][T12635]  shash_async_update+0x113/0x1d0
[  424.267315][T12635]  hash_sendpage+0x8ef/0xdf0
[  424.267315][T12635]  sock_sendpage+0x1e1/0x2c0
[  424.267315][T12635]  pipe_to_sendpage+0x38c/0x4c0
[  424.267315][T12635]  __splice_from_pipe+0x565/0xf00
[  424.267315][T12635]  generic_splice_sendpage+0x1d5/0x2d0
[  424.267315][T12635]  direct_splice_actor+0x1fd/0x580
[  424.267315][T12635]  splice_direct_to_actor+0x6b2/0xf50
[  424.267315][T12635]  do_splice_direct+0x342/0x580
[  424.267315][T12635]  do_sendfile+0x101b/0x1d40
[  424.267315][T12635]  __se_sys_sendfile64+0x2bb/0x360
[  424.267315][T12635]  __x64_sys_sendfile64+0x56/0x70
[  424.267315][T12635]  do_syscall_64+0xb0/0x150
[  424.267315][T12635]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  424.267315][T12635] 
[  424.267315][T12635] Uninit was stored to memory at:
[  424.267315][T12635]  kmsan_internal_chain_origin+0xad/0x130
[  424.267315][T12635]  __msan_chain_origin+0x50/0x90
[  424.267315][T12635]  rmd256_transform+0x43e9/0x4440
[  424.267315][T12635]  rmd256_update+0x343/0x4f0
[  424.267315][T12635]  crypto_shash_update+0x4e9/0x550
[  424.267315][T12635]  shash_async_update+0x113/0x1d0
[  424.267315][T12635]  hash_sendpage+0x8ef/0xdf0
[  424.267315][T12635]  sock_sendpage+0x1e1/0x2c0
[  424.267315][T12635]  pipe_to_sendpage+0x38c/0x4c0
[  424.267315][T12635]  __splice_from_pipe+0x565/0xf00
[  424.267315][T12635]  generic_splice_sendpage+0x1d5/0x2d0
[  424.267315][T12635]  direct_splice_actor+0x1fd/0x580
[  424.267315][T12635]  splice_direct_to_actor+0x6b2/0xf50
[  424.267315][T12635]  do_splice_direct+0x342/0x580
[  424.267315][T12635]  do_sendfile+0x101b/0x1d40
[  424.267315][T12635]  __se_sys_sendfile64+0x2bb/0x360
[  424.267315][T12635]  __x64_sys_sendfile64+0x56/0x70
[  424.267315][T12635]  do_syscall_64+0xb0/0x150
[  424.267315][T12635]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  424.267315][T12635] 
[  424.267315][T12635] Uninit was stored to memory at:
[  424.267315][T12635]  kmsan_internal_chain_origin+0xad/0x130
[  424.267315][T12635]  __msan_chain_origin+0x50/0x90
[  424.267315][T12635]  rmd256_transform+0x43e9/0x4440
[  424.267315][T12635]  rmd256_update+0x343/0x4f0
[  424.267315][T12635]  crypto_shash_update+0x4e9/0x550
[  424.267315][T12635]  shash_async_update+0x113/0x1d0
[  424.267315][T12635]  hash_sendpage+0x8ef/0xdf0
[  424.267315][T12635]  sock_sendpage+0x1e1/0x2c0
[  424.267315][T12635]  pipe_to_sendpage+0x38c/0x4c0
[  424.267315][T12635]  __splice_from_pipe+0x565/0xf00
[  424.267315][T12635]  generic_splice_sendpage+0x1d5/0x2d0
[  424.267315][T12635]  direct_splice_actor+0x1fd/0x580
[  424.267315][T12635]  splice_direct_to_actor+0x6b2/0xf50
[  424.267315][T12635]  do_splice_direct+0x342/0x580
[  424.267315][T12635]  do_sendfile+0x101b/0x1d40
[  424.267315][T12635]  __se_sys_sendfile64+0x2bb/0x360
[  424.267315][T12635]  __x64_sys_sendfile64+0x56/0x70
[  424.267315][T12635]  do_syscall_64+0xb0/0x150
[  424.267315][T12635]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  424.267315][T12635] 
[  424.267315][T12635] Uninit was stored to memory at:
[  424.267315][T12635]  kmsan_internal_chain_origin+0xad/0x130
[  424.267315][T12635]  __msan_chain_origin+0x50/0x90
[  424.267315][T12635]  rmd256_transform+0x43e9/0x4440
[  424.267315][T12635]  rmd256_update+0x343/0x4f0
[  424.267315][T12635]  crypto_shash_update+0x4e9/0x550
[  424.267315][T12635]  shash_async_update+0x113/0x1d0
[  424.267315][T12635]  hash_sendpage+0x8ef/0xdf0
[  424.267315][T12635]  sock_sendpage+0x1e1/0x2c0
[  424.267315][T12635]  pipe_to_sendpage+0x38c/0x4c0
[  424.267315][T12635]  __splice_from_pipe+0x565/0xf00
[  424.267315][T12635]  generic_splice_sendpage+0x1d5/0x2d0
[  424.267315][T12635]  direct_splice_actor+0x1fd/0x580
[  424.267315][T12635]  splice_direct_to_actor+0x6b2/0xf50
[  424.267315][T12635]  do_splice_direct+0x342/0x580
[  424.267315][T12635]  do_sendfile+0x101b/0x1d40
[  424.267315][T12635]  __se_sys_sendfile64+0x2bb/0x360
[  424.267315][T12635]  __x64_sys_sendfile64+0x56/0x70
[  424.267315][T12635]  do_syscall_64+0xb0/0x150
[  424.267315][T12635]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  424.267315][T12635] 
[  424.267315][T12635] Uninit was stored to memory at:
[  424.267315][T12635]  kmsan_internal_chain_origin+0xad/0x130
[  424.267315][T12635]  __msan_chain_origin+0x50/0x90
[  424.267315][T12635]  rmd256_transform+0x43e9/0x4440
[  424.267315][T12635]  rmd256_update+0x343/0x4f0
[  424.267315][T12635]  crypto_shash_update+0x4e9/0x550
[  424.267315][T12635]  shash_async_update+0x113/0x1d0
[  424.267315][T12635]  hash_sendpage+0x8ef/0xdf0
[  424.267315][T12635]  sock_sendpage+0x1e1/0x2c0
[  424.267315][T12635]  pipe_to_sendpage+0x38c/0x4c0
[  424.267315][T12635]  __splice_from_pipe+0x565/0xf00
[  424.267315][T12635]  generic_splice_sendpage+0x1d5/0x2d0
[  424.267315][T12635]  direct_splice_actor+0x1fd/0x580
[  424.267315][T12635]  splice_direct_to_actor+0x6b2/0xf50
[  424.267315][T12635]  do_splice_direct+0x342/0x580
[  424.267315][T12635]  do_sendfile+0x101b/0x1d40
[  424.267315][T12635]  __se_sys_sendfile64+0x2bb/0x360
[  424.267315][T12635]  __x64_sys_sendfile64+0x56/0x70
[  424.267315][T12635]  do_syscall_64+0xb0/0x150
[  424.267315][T12635]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  424.267315][T12635] 
[  424.267315][T12635] Uninit was stored to memory at:
[  424.267315][T12635]  kmsan_internal_chain_origin+0xad/0x130
[  424.267315][T12635]  __msan_chain_origin+0x50/0x90
[  424.267315][T12635]  rmd256_transform+0x43e9/0x4440
[  424.267315][T12635]  rmd256_update+0x227/0x4f0
[  424.267315][T12635]  crypto_shash_update+0x4e9/0x550
[  424.267315][T12635]  shash_async_update+0x113/0x1d0
[  424.267315][T12635]  hash_sendpage+0x8ef/0xdf0
[  424.267315][T12635]  sock_sendpage+0x1e1/0x2c0
[  424.267315][T12635]  pipe_to_sendpage+0x38c/0x4c0
[  424.267315][T12635]  __splice_from_pipe+0x565/0xf00
[  424.267315][T12635]  generic_splice_sendpage+0x1d5/0x2d0
[  424.267315][T12635]  direct_splice_actor+0x1fd/0x580
[  424.267315][T12635]  splice_direct_to_actor+0x6b2/0xf50
[  424.267315][T12635]  do_splice_direct+0x342/0x580
[  424.267315][T12635]  do_sendfile+0x101b/0x1d40
[  424.267315][T12635]  __se_sys_sendfile64+0x2bb/0x360
[  424.267315][T12635]  __x64_sys_sendfile64+0x56/0x70
[  424.267315][T12635]  do_syscall_64+0xb0/0x150
[  424.267315][T12635]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  424.267315][T12635] 
[  424.267315][T12635] Uninit was stored to memory at:
[  424.267315][T12635]  kmsan_internal_chain_origin+0xad/0x130
[  424.267315][T12635]  kmsan_memcpy_memmove_metadata+0x272/0x2e0
[  424.267315][T12635]  kmsan_memcpy_metadata+0xb/0x10
[  424.267315][T12635]  __msan_memcpy+0x43/0x50
[  424.267315][T12635]  rmd256_update+0x1fc/0x4f0
[  424.267315][T12635]  crypto_shash_update+0x4e9/0x550
[  424.267315][T12635]  shash_async_update+0x113/0x1d0
[  424.267315][T12635]  hash_sendpage+0x8ef/0xdf0
[  424.267315][T12635]  sock_sendpage+0x1e1/0x2c0
[  424.267315][T12635]  pipe_to_sendpage+0x38c/0x4c0
[  424.267315][T12635]  __splice_from_pipe+0x565/0xf00
[  424.267315][T12635]  generic_splice_sendpage+0x1d5/0x2d0
[  424.267315][T12635]  direct_splice_actor+0x1fd/0x580
[  424.267315][T12635]  splice_direct_to_actor+0x6b2/0xf50
[  424.267315][T12635]  do_splice_direct+0x342/0x580
[  424.267315][T12635]  do_sendfile+0x101b/0x1d40
[  424.267315][T12635]  __se_sys_sendfile64+0x2bb/0x360
[  424.267315][T12635]  __x64_sys_sendfile64+0x56/0x70
[  424.267315][T12635]  do_syscall_64+0xb0/0x150
[  424.267315][T12635]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  424.267315][T12635] 
[  424.267315][T12635] Uninit was created at:
[  424.267315][T12635]  kmsan_save_stack_with_flags+0x3c/0x90
[  424.267315][T12635]  kmsan_alloc_page+0xb9/0x180
[  424.267315][T12635]  __alloc_pages_nodemask+0x56a2/0x5dc0
[  424.267315][T12635]  alloc_pages_current+0x672/0x990
[  424.267315][T12635]  push_pipe+0x605/0xb70
[  424.267315][T12635]  iov_iter_get_pages_alloc+0x18a9/0x21c0
[  424.267315][T12635]  do_splice_to+0x4fc/0x14f0
[  424.267315][T12635]  splice_direct_to_actor+0x45c/0xf50
[  424.267315][T12635]  do_splice_direct+0x342/0x580
[  424.267315][T12635]  do_sendfile+0x101b/0x1d40
[  424.267315][T12635]  __se_sys_sendfile64+0x2bb/0x360
[  424.267315][T12635]  __x64_sys_sendfile64+0x56/0x70
[  424.267315][T12635]  do_syscall_64+0xb0/0x150
[  424.267315][T12635]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
20:08:37 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff})
fcntl$lock(0xffffffffffffffff, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x800000})
close(r0)
socket$pppl2tp(0x18, 0x1, 0x1)
io_setup(0x6, &(0x7f0000000140)=<r1=>0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
r3 = dup(r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
io_submit(r1, 0x1e09328e, &(0x7f0000000040)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x1000800000000001, 0x0, r0, 0x0, 0x7ffff000}])

20:08:37 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000380)='/dev/autofs\x00', 0x0, 0x0)
ioctl(r3, 0x937e, &(0x7f00000001c0)="0100000000000000180100000500000300000000000000002f")

20:08:37 executing program 2:
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyS3\x00', 0x100801, 0x0)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
writev(r0, &(0x7f0000000340)=[{&(0x7f0000001680)="cd", 0xfffffcf0}], 0x1)
r3 = socket$inet6(0xa, 0x1, 0x0)
ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "c300"})
dup2(r3, r0)

20:08:37 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000008c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="000426bd7000fedbdf250d000000080034", @ANYRES32=0x0, @ANYBLOB="e0f0fdcb69a067053b14d7a44ca9ff6dedc9d15f7745c5298ff283c1edd156d0beaa2059b57c0366b4ef51f4f58652ef0dbdde68cd9d7f6a7ddbcbe278a8"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2400c004)
r4 = openat$cgroup_ro(r2, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r4, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRESDEC=r1, @ANYBLOB="120726bd7000ff4af5db20000000"], 0x24}, 0x1, 0x0, 0x0, 0x4003}, 0x8045)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_REM(r4, 0x84, 0x65, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0xfffffff7, @private0={0xfc, 0x0, [], 0x1}, 0x6}, @in6={0xa, 0x4e21, 0x200, @loopback, 0x5}, @in={0x2, 0x4e21, @empty}, @in6={0xa, 0x4e22, 0x3, @loopback, 0x7}], 0x64)
r5 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r1, r5, 0x0, 0x1000007ffff000)

[  425.379058][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
20:08:37 executing program 4:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
perf_event_open(&(0x7f0000001240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r2, &(0x7f00000014c0)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26710000000049d2e181baf9459c5c953148c6801d2c0945c08ba88552fc99b742200765020000000000000080812d274014ae40b8af4f2a88d2fbea75e16a61fd063f026bd7360627ec60cb274e00da971f7ee096d74c92fad707e2d5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092c0100b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93981b20e03b86d4e999bba83a7b0ee0ce30e80600cff8ca2996e518e3e6"], 0x14f)
getgroups(0x2, &(0x7f0000000140)=[0xffffffffffffffff, 0x0])
gettid()
r3 = fcntl$dupfd(0xffffffffffffffff, 0x2, 0xffffffffffffffff)
timerfd_settime(r3, 0x0, &(0x7f00000001c0)={{0x77359400}, {0x0, 0x989680}}, 0x0)
setsockopt$EBT_SO_SET_COUNTERS(0xffffffffffffffff, 0x0, 0x81, &(0x7f0000001100)={'nat\x00', 0x0, 0x0, 0x0, [], 0x2, &(0x7f0000001080)=[{}, {}, {}, {}], 0x0, [{}, {}]}, 0x98)
ioctl$sock_inet_tcp_SIOCINQ(r1, 0x541b, &(0x7f0000001040))
socket$inet_udplite(0x2, 0x2, 0x88)
keyctl$get_persistent(0x3, 0x0, 0x0)
gettid()
write$UHID_INPUT(r1, &(0x7f0000000000)={0x8, {"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", 0x1000}}, 0x1006)

[  425.611913][    C1] sd 0:0:1:0: [sg0] tag#2732 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  425.622575][    C1] sd 0:0:1:0: [sg0] tag#2732 CDB: Test Unit Ready
[  425.623535][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  425.629213][    C1] sd 0:0:1:0: [sg0] tag#2732 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  425.629454][    C1] sd 0:0:1:0: [sg0] tag#2732 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  425.629562][    C1] sd 0:0:1:0: [sg0] tag#2732 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  425.629665][    C1] sd 0:0:1:0: [sg0] tag#2732 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  425.677110][    C1] sd 0:0:1:0: [sg0] tag#2732 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  425.687039][    C1] sd 0:0:1:0: [sg0] tag#2732 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  425.698603][    C1] sd 0:0:1:0: [sg0] tag#2732 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  425.708538][    C1] sd 0:0:1:0: [sg0] tag#2732 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  425.713321][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  425.718381][    C1] sd 0:0:1:0: [sg0] tag#2732 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  425.718489][    C1] sd 0:0:1:0: [sg0] tag#2732 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  425.746548][    C1] sd 0:0:1:0: [sg0] tag#2732 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
20:08:37 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000380)='/dev/autofs\x00', 0x0, 0x0)
ioctl(r3, 0x937e, &(0x7f00000001c0)="0100000000000000180100000500000300000000000000002f")

[  425.758317][    C1] sd 0:0:1:0: [sg0] tag#2732 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  425.768153][    C1] sd 0:0:1:0: [sg0] tag#2732 CDB[c0]: 00 00 00 00 00 00 00 00
20:08:38 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
keyctl$set_reqkey_keyring(0xe, 0x5)
request_key(&(0x7f000000aff5)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0xffffffffffffffff, 0x6c}, &(0x7f0000001fee)='R\x05rist\xe3cusgrVid:De', 0x0)

20:08:38 executing program 2:
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyS3\x00', 0x100801, 0x0)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
writev(r0, &(0x7f0000000340)=[{&(0x7f0000001680)="cd", 0xfffffcf0}], 0x1)
r3 = socket$inet6(0xa, 0x1, 0x0)
ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "c300"})
dup2(r3, r0)

20:08:38 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
keyctl$set_reqkey_keyring(0xe, 0x5)
request_key(&(0x7f000000aff5)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0xffffffffffffffff, 0x6c}, &(0x7f0000001fee)='R\x05rist\xe3cusgrVid:De', 0x0)

[  426.280846][    C0] sd 0:0:1:0: [sg0] tag#2733 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  426.291504][    C0] sd 0:0:1:0: [sg0] tag#2733 CDB: Test Unit Ready
[  426.298191][    C0] sd 0:0:1:0: [sg0] tag#2733 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  426.299069][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  426.308504][    C0] sd 0:0:1:0: [sg0] tag#2733 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  426.326825][    C0] sd 0:0:1:0: [sg0] tag#2733 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  426.336751][    C0] sd 0:0:1:0: [sg0] tag#2733 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  426.346654][    C0] sd 0:0:1:0: [sg0] tag#2733 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  426.356643][    C0] sd 0:0:1:0: [sg0] tag#2733 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  426.366640][    C0] sd 0:0:1:0: [sg0] tag#2733 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  426.376539][    C0] sd 0:0:1:0: [sg0] tag#2733 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  426.386715][    C0] sd 0:0:1:0: [sg0] tag#2733 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  426.396617][    C0] sd 0:0:1:0: [sg0] tag#2733 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  426.416386][    C0] sd 0:0:1:0: [sg0] tag#2733 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  426.426302][    C0] sd 0:0:1:0: [sg0] tag#2733 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  426.436159][    C0] sd 0:0:1:0: [sg0] tag#2733 CDB[c0]: 00 00 00 00 00 00 00 00
[  426.448119][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
20:08:38 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

20:08:38 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff})
fcntl$lock(0xffffffffffffffff, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x800000})
close(r0)
socket$pppl2tp(0x18, 0x1, 0x1)
io_setup(0x6, &(0x7f0000000140)=<r1=>0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
r3 = dup(r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
io_submit(r1, 0x1e09328e, &(0x7f0000000040)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x1000800000000001, 0x0, r0, 0x0, 0x7ffff000}])

20:08:38 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
keyctl$set_reqkey_keyring(0xe, 0x5)
request_key(&(0x7f000000aff5)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0xffffffffffffffff, 0x6c}, &(0x7f0000001fee)='R\x05rist\xe3cusgrVid:De', 0x0)

20:08:38 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = gettid()
ptrace$setopts(0x4206, r1, 0x0, 0x0)
tkill(r1, 0x40)
ptrace$setregs(0xd, r1, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r1, 0x0, 0x0)
r2 = syz_open_procfs(r1, &(0x7f00000000c0)='clear_refs\x00')
r3 = socket(0x10, 0x3, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x19)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r6, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000007c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)=@newqdisc={0x34, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb, 0x1, 'taprio\x00'}, {0x4}}]}, 0x34}}, 0x0)
sendmsg$NL80211_CMD_DEL_INTERFACE(r2, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x54, 0x0, 0x10, 0x70bd27, 0x25dfdbfc, {}, [@NL80211_ATTR_WDEV={0xc, 0x99, {0xf2, 0x4}}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x4}, @NL80211_ATTR_IFINDEX={0x8}, @NL80211_ATTR_IFINDEX={0x8, 0x3, r6}, @NL80211_ATTR_IFNAME={0x14, 0x4, 'ip6gre0\x00'}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0xffffffffffffffff}]}, 0x54}, 0x1, 0x0, 0x0, 0x24000000}, 0x800)
ioctl$SNDCTL_DSP_SETDUPLEX(r2, 0x5016, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r7 = accept4(r0, 0x0, 0x0, 0x0)
r8 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r7, r8, 0x0, 0x1000007ffff000)

20:08:38 executing program 4:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
perf_event_open(&(0x7f0000001240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r2, &(0x7f00000014c0)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26710000000049d2e181baf9459c5c953148c6801d2c0945c08ba88552fc99b742200765020000000000000080812d274014ae40b8af4f2a88d2fbea75e16a61fd063f026bd7360627ec60cb274e00da971f7ee096d74c92fad707e2d5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092c0100b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93981b20e03b86d4e999bba83a7b0ee0ce30e80600cff8ca2996e518e3e6"], 0x14f)
getgroups(0x2, &(0x7f0000000140)=[0xffffffffffffffff, 0x0])
gettid()
r3 = fcntl$dupfd(0xffffffffffffffff, 0x2, 0xffffffffffffffff)
timerfd_settime(r3, 0x0, &(0x7f00000001c0)={{0x77359400}, {0x0, 0x989680}}, 0x0)
setsockopt$EBT_SO_SET_COUNTERS(0xffffffffffffffff, 0x0, 0x81, &(0x7f0000001100)={'nat\x00', 0x0, 0x0, 0x0, [], 0x2, &(0x7f0000001080)=[{}, {}, {}, {}], 0x0, [{}, {}]}, 0x98)
ioctl$sock_inet_tcp_SIOCINQ(r1, 0x541b, &(0x7f0000001040))
socket$inet_udplite(0x2, 0x2, 0x88)
keyctl$get_persistent(0x3, 0x0, 0x0)
gettid()
write$UHID_INPUT(r1, &(0x7f0000000000)={0x8, {"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", 0x1000}}, 0x1006)

[  426.936952][    C1] sd 0:0:1:0: [sg0] tag#2734 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  426.947732][    C1] sd 0:0:1:0: [sg0] tag#2734 CDB: Test Unit Ready
[  426.954495][    C1] sd 0:0:1:0: [sg0] tag#2734 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  426.966295][    C1] sd 0:0:1:0: [sg0] tag#2734 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  426.976116][    C1] sd 0:0:1:0: [sg0] tag#2734 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
20:08:39 executing program 2:
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyS3\x00', 0x100801, 0x0)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
writev(r0, &(0x7f0000000340)=[{&(0x7f0000001680)="cd", 0xfffffcf0}], 0x1)
r3 = socket$inet6(0xa, 0x1, 0x0)
ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "c300"})
dup2(r3, r0)

[  426.986210][    C1] sd 0:0:1:0: [sg0] tag#2734 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  426.996225][    C1] sd 0:0:1:0: [sg0] tag#2734 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  427.006064][    C1] sd 0:0:1:0: [sg0] tag#2734 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  427.015893][    C1] sd 0:0:1:0: [sg0] tag#2734 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  427.025721][    C1] sd 0:0:1:0: [sg0] tag#2734 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  427.036502][    C1] sd 0:0:1:0: [sg0] tag#2734 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  427.046336][    C1] sd 0:0:1:0: [sg0] tag#2734 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  427.059141][    C1] sd 0:0:1:0: [sg0] tag#2734 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  427.068978][    C1] sd 0:0:1:0: [sg0] tag#2734 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  427.078801][    C1] sd 0:0:1:0: [sg0] tag#2734 CDB[c0]: 00 00 00 00 00 00 00 00
[  427.083751][    C0] sd 0:0:1:0: [sg0] tag#2735 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  427.097104][    C0] sd 0:0:1:0: [sg0] tag#2735 CDB: Test Unit Ready
[  427.103900][    C0] sd 0:0:1:0: [sg0] tag#2735 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  427.113883][    C0] sd 0:0:1:0: [sg0] tag#2735 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  427.113979][    C0] sd 0:0:1:0: [sg0] tag#2735 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  427.114088][    C0] sd 0:0:1:0: [sg0] tag#2735 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  427.114199][    C0] sd 0:0:1:0: [sg0] tag#2735 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  427.114302][    C0] sd 0:0:1:0: [sg0] tag#2735 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  427.114413][    C0] sd 0:0:1:0: [sg0] tag#2735 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  427.157098][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
20:08:39 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
openat$cgroup_ro(r1, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000008c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="000426bd7000fedbdf250d000000080034", @ANYRES32=0x0, @ANYBLOB="e0f0fdcb69a067053b14d7a44ca9ff6dedc9d15f7745c5298ff283c1edd156d0beaa2059b57c0366b4ef51f4f58652ef0dbdde68cd9d7f6a7ddbcbe278a8"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2400c004)
r4 = openat$cgroup_ro(r2, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r4, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x24, r3, 0x712, 0x70bd26, 0x25dfdbff}, 0x24}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
bind$alg(r4, &(0x7f00000000c0)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_sha384\x00'}, 0x39)
r5 = accept4(r0, 0x0, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r5, r0, 0x0, 0x1000007ffff000)

[  427.163185][    C0] sd 0:0:1:0: [sg0] tag#2735 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  427.191301][    C0] sd 0:0:1:0: [sg0] tag#2735 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  427.191400][    C0] sd 0:0:1:0: [sg0] tag#2735 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  427.191507][    C0] sd 0:0:1:0: [sg0] tag#2735 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
20:08:39 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
keyctl$set_reqkey_keyring(0xe, 0x5)
request_key(&(0x7f000000aff5)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0xffffffffffffffff, 0x6c}, &(0x7f0000001fee)='R\x05rist\xe3cusgrVid:De', 0x0)

[  427.191613][    C0] sd 0:0:1:0: [sg0] tag#2735 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  427.191717][    C0] sd 0:0:1:0: [sg0] tag#2735 CDB[c0]: 00 00 00 00 00 00 00 00
[  427.241233][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  427.360997][T12695] not chained 660000 origins
[  427.361018][T12695] CPU: 1 PID: 12695 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0
20:08:39 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

20:08:39 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
openat$cgroup_ro(r2, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
ioctl$TIOCGSID(r2, 0x5429, &(0x7f00000000c0))
r3 = gettid()
ptrace$setopts(0x4206, r3, 0x0, 0x0)
tkill(r3, 0x40)
ptrace$setregs(0xd, r3, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r3, 0x4, 0x655)
r4 = syz_open_procfs(r3, &(0x7f0000000000)='net/ip6_flowlabel\x00')
sendfile(r1, r4, 0x0, 0x1000007ffff000)

[  427.361026][T12695] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  427.361032][T12695] Call Trace:
[  427.361059][T12695]  dump_stack+0x1df/0x240
[  427.361085][T12695]  kmsan_internal_chain_origin+0x6f/0x130
[  427.361117][T12695]  ? is_module_text_address+0x4d/0x2a0
[  427.361135][T12695]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
20:08:39 executing program 5:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = dup2(r1, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)={0x4c, 0x2, 0x6, 0x185, 0x0, 0x0, {}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}]}, 0x4c}}, 0x0)

20:08:39 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, 0x0}], 0x1, 0x1c, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000000)={r3})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  427.361159][T12695]  ? __kernel_text_address+0x171/0x2d0
[  427.361180][T12695]  ? unwind_get_return_address+0x8c/0x130
[  427.361202][T12695]  ? entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  427.361219][T12695]  ? arch_stack_walk+0x2a2/0x3e0
[  427.361237][T12695]  ? stack_trace_save+0x1a0/0x1a0
[  427.361258][T12695]  ? kmsan_get_metadata+0x4f/0x180
20:08:40 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff})
fcntl$lock(0xffffffffffffffff, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x800000})
close(r0)
socket$pppl2tp(0x18, 0x1, 0x1)
io_setup(0x6, &(0x7f0000000140)=<r1=>0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
r3 = dup(r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
io_submit(r1, 0x1e09328e, &(0x7f0000000040)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x1000800000000001, 0x0, r0, 0x0, 0x7ffff000}])

[  427.361277][T12695]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  427.361296][T12695]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  427.361313][T12695]  ? stack_trace_save+0x123/0x1a0
20:08:40 executing program 5:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = dup2(r1, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)={0x4c, 0x2, 0x6, 0x185, 0x0, 0x0, {}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}]}, 0x4c}}, 0x0)

[  427.361330][T12695]  ? kmsan_get_metadata+0x11d/0x180
[  427.361352][T12695]  __msan_chain_origin+0x50/0x90
[  427.361375][T12695]  rmd256_transform+0x4328/0x4440
20:08:40 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, 0x0}], 0x1, 0x1c, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000000)={r3})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  427.361444][T12695]  rmd256_update+0x343/0x4f0
[  427.361471][T12695]  ? rmd256_init+0x260/0x260
[  427.361489][T12695]  crypto_shash_update+0x4e9/0x550
[  427.361507][T12695]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  427.361542][T12695]  ? crypto_hash_walk_first+0x1fd/0x360
[  427.361558][T12695]  ? kmsan_get_metadata+0x4f/0x180
20:08:40 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, 0x0}], 0x1, 0x1c, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000000)={r3})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  427.361576][T12695]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  427.361594][T12695]  shash_async_update+0x113/0x1d0
[  427.361613][T12695]  ? shash_async_init+0x1e0/0x1e0
[  427.361629][T12695]  hash_sendpage+0x8ef/0xdf0
[  427.361654][T12695]  ? hash_recvmsg+0xd30/0xd30
[  427.361674][T12695]  sock_sendpage+0x1e1/0x2c0
[  427.361702][T12695]  pipe_to_sendpage+0x38c/0x4c0
[  427.361719][T12695]  ? sock_fasync+0x250/0x250
[  427.361746][T12695]  __splice_from_pipe+0x565/0xf00
[  427.361766][T12695]  ? generic_splice_sendpage+0x2d0/0x2d0
[  427.361801][T12695]  generic_splice_sendpage+0x1d5/0x2d0
[  427.361828][T12695]  ? iter_file_splice_write+0x1800/0x1800
[  427.361846][T12695]  direct_splice_actor+0x1fd/0x580
[  427.361871][T12695]  ? kmsan_get_metadata+0x4f/0x180
[  427.361893][T12695]  splice_direct_to_actor+0x6b2/0xf50
[  427.361909][T12695]  ? do_splice_direct+0x580/0x580
[  427.361946][T12695]  do_splice_direct+0x342/0x580
[  427.361980][T12695]  do_sendfile+0x101b/0x1d40
[  427.362018][T12695]  __se_sys_sendfile64+0x2bb/0x360
[  427.362036][T12695]  ? kmsan_get_metadata+0x4f/0x180
[  427.362058][T12695]  __x64_sys_sendfile64+0x56/0x70
[  427.362091][T12695]  do_syscall_64+0xb0/0x150
[  427.362118][T12695]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  427.362132][T12695] RIP: 0033:0x45c1d9
[  427.362138][T12695] Code: Bad RIP value.
[  427.362146][T12695] RSP: 002b:00007f42d54efc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  427.362162][T12695] RAX: ffffffffffffffda RBX: 0000000000025a00 RCX: 000000000045c1d9
[  427.362172][T12695] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000007
[  427.362181][T12695] RBP: 000000000078bf48 R08: 0000000000000000 R09: 0000000000000000
[  427.362192][T12695] R10: 001000007ffff000 R11: 0000000000000246 R12: 000000000078bf0c
[  427.362202][T12695] R13: 0000000000c9fb6f R14: 00007f42d54f09c0 R15: 000000000078bf0c
[  427.362219][T12695] Uninit was stored to memory at:
[  427.362236][T12695]  kmsan_internal_chain_origin+0xad/0x130
[  427.362250][T12695]  __msan_chain_origin+0x50/0x90
[  427.362266][T12695]  rmd256_transform+0x4328/0x4440
[  427.362282][T12695]  rmd256_update+0x343/0x4f0
[  427.362295][T12695]  crypto_shash_update+0x4e9/0x550
[  427.362308][T12695]  shash_async_update+0x113/0x1d0
[  427.362320][T12695]  hash_sendpage+0x8ef/0xdf0
[  427.362336][T12695]  sock_sendpage+0x1e1/0x2c0
[  427.362351][T12695]  pipe_to_sendpage+0x38c/0x4c0
[  427.362365][T12695]  __splice_from_pipe+0x565/0xf00
[  427.362380][T12695]  generic_splice_sendpage+0x1d5/0x2d0
[  427.362395][T12695]  direct_splice_actor+0x1fd/0x580
[  427.362410][T12695]  splice_direct_to_actor+0x6b2/0xf50
[  427.362425][T12695]  do_splice_direct+0x342/0x580
[  427.362435][T12695]  do_sendfile+0x101b/0x1d40
[  427.362446][T12695]  __se_sys_sendfile64+0x2bb/0x360
[  427.362459][T12695]  __x64_sys_sendfile64+0x56/0x70
[  427.362474][T12695]  do_syscall_64+0xb0/0x150
[  427.362491][T12695]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  427.362495][T12695] 
[  427.362500][T12695] Uninit was stored to memory at:
[  427.362514][T12695]  kmsan_internal_chain_origin+0xad/0x130
[  427.362528][T12695]  __msan_chain_origin+0x50/0x90
[  427.362544][T12695]  rmd256_transform+0x4328/0x4440
[  427.362559][T12695]  rmd256_update+0x343/0x4f0
[  427.362572][T12695]  crypto_shash_update+0x4e9/0x550
[  427.362584][T12695]  shash_async_update+0x113/0x1d0
[  427.362597][T12695]  hash_sendpage+0x8ef/0xdf0
[  427.362612][T12695]  sock_sendpage+0x1e1/0x2c0
[  427.362626][T12695]  pipe_to_sendpage+0x38c/0x4c0
[  427.362641][T12695]  __splice_from_pipe+0x565/0xf00
[  427.362656][T12695]  generic_splice_sendpage+0x1d5/0x2d0
[  427.362670][T12695]  direct_splice_actor+0x1fd/0x580
[  427.362684][T12695]  splice_direct_to_actor+0x6b2/0xf50
[  427.362699][T12695]  do_splice_direct+0x342/0x580
[  427.362711][T12695]  do_sendfile+0x101b/0x1d40
[  427.362724][T12695]  __se_sys_sendfile64+0x2bb/0x360
[  427.362736][T12695]  __x64_sys_sendfile64+0x56/0x70
[  427.362751][T12695]  do_syscall_64+0xb0/0x150
[  427.362767][T12695]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  427.362771][T12695] 
[  427.362775][T12695] Uninit was stored to memory at:
[  427.362788][T12695]  kmsan_internal_chain_origin+0xad/0x130
[  427.362800][T12695]  __msan_chain_origin+0x50/0x90
[  427.362814][T12695]  rmd256_transform+0x4328/0x4440
[  427.362829][T12695]  rmd256_update+0x343/0x4f0
[  427.362842][T12695]  crypto_shash_update+0x4e9/0x550
[  427.362854][T12695]  shash_async_update+0x113/0x1d0
[  427.362867][T12695]  hash_sendpage+0x8ef/0xdf0
[  427.362882][T12695]  sock_sendpage+0x1e1/0x2c0
[  427.362895][T12695]  pipe_to_sendpage+0x38c/0x4c0
[  427.362909][T12695]  __splice_from_pipe+0x565/0xf00
[  427.362923][T12695]  generic_splice_sendpage+0x1d5/0x2d0
[  427.362938][T12695]  direct_splice_actor+0x1fd/0x580
[  427.362953][T12695]  splice_direct_to_actor+0x6b2/0xf50
[  427.362968][T12695]  do_splice_direct+0x342/0x580
[  427.362980][T12695]  do_sendfile+0x101b/0x1d40
[  427.362993][T12695]  __se_sys_sendfile64+0x2bb/0x360
[  427.363006][T12695]  __x64_sys_sendfile64+0x56/0x70
[  427.363021][T12695]  do_syscall_64+0xb0/0x150
[  427.363037][T12695]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  427.363040][T12695] 
[  427.363044][T12695] Uninit was stored to memory at:
[  427.363058][T12695]  kmsan_internal_chain_origin+0xad/0x130
[  427.363071][T12695]  __msan_chain_origin+0x50/0x90
[  427.363090][T12695]  rmd256_transform+0x4328/0x4440
[  427.363112][T12695]  rmd256_update+0x343/0x4f0
[  427.363126][T12695]  crypto_shash_update+0x4e9/0x550
[  427.363138][T12695]  shash_async_update+0x113/0x1d0
[  427.363151][T12695]  hash_sendpage+0x8ef/0xdf0
[  427.363168][T12695]  sock_sendpage+0x1e1/0x2c0
[  427.363183][T12695]  pipe_to_sendpage+0x38c/0x4c0
[  427.363199][T12695]  __splice_from_pipe+0x565/0xf00
[  427.363213][T12695]  generic_splice_sendpage+0x1d5/0x2d0
[  427.363229][T12695]  direct_splice_actor+0x1fd/0x580
[  427.363243][T12695]  splice_direct_to_actor+0x6b2/0xf50
[  427.363258][T12695]  do_splice_direct+0x342/0x580
[  427.363272][T12695]  do_sendfile+0x101b/0x1d40
[  427.363284][T12695]  __se_sys_sendfile64+0x2bb/0x360
[  427.363302][T12695]  __x64_sys_sendfile64+0x56/0x70
[  427.363317][T12695]  do_syscall_64+0xb0/0x150
[  427.363334][T12695]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  427.363338][T12695] 
[  427.363342][T12695] Uninit was stored to memory at:
[  427.363357][T12695]  kmsan_internal_chain_origin+0xad/0x130
[  427.363371][T12695]  __msan_chain_origin+0x50/0x90
[  427.363386][T12695]  rmd256_transform+0x4328/0x4440
[  427.363401][T12695]  rmd256_update+0x343/0x4f0
[  427.363413][T12695]  crypto_shash_update+0x4e9/0x550
[  427.363425][T12695]  shash_async_update+0x113/0x1d0
[  427.363437][T12695]  hash_sendpage+0x8ef/0xdf0
[  427.363453][T12695]  sock_sendpage+0x1e1/0x2c0
[  427.363466][T12695]  pipe_to_sendpage+0x38c/0x4c0
[  427.363478][T12695]  __splice_from_pipe+0x565/0xf00
[  427.363490][T12695]  generic_splice_sendpage+0x1d5/0x2d0
[  427.363504][T12695]  direct_splice_actor+0x1fd/0x580
[  427.363518][T12695]  splice_direct_to_actor+0x6b2/0xf50
[  427.363529][T12695]  do_splice_direct+0x342/0x580
[  427.363539][T12695]  do_sendfile+0x101b/0x1d40
[  427.363550][T12695]  __se_sys_sendfile64+0x2bb/0x360
[  427.363563][T12695]  __x64_sys_sendfile64+0x56/0x70
[  427.363576][T12695]  do_syscall_64+0xb0/0x150
[  427.363591][T12695]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  427.363594][T12695] 
[  427.363598][T12695] Uninit was stored to memory at:
[  427.363612][T12695]  kmsan_internal_chain_origin+0xad/0x130
[  427.363626][T12695]  __msan_chain_origin+0x50/0x90
[  427.363639][T12695]  rmd256_transform+0x4328/0x4440
[  427.363653][T12695]  rmd256_update+0x227/0x4f0
[  427.363664][T12695]  crypto_shash_update+0x4e9/0x550
[  427.363675][T12695]  shash_async_update+0x113/0x1d0
[  427.363687][T12695]  hash_sendpage+0x8ef/0xdf0
[  427.363702][T12695]  sock_sendpage+0x1e1/0x2c0
[  427.363716][T12695]  pipe_to_sendpage+0x38c/0x4c0
[  427.363729][T12695]  __splice_from_pipe+0x565/0xf00
[  427.363744][T12695]  generic_splice_sendpage+0x1d5/0x2d0
[  427.363758][T12695]  direct_splice_actor+0x1fd/0x580
[  427.363773][T12695]  splice_direct_to_actor+0x6b2/0xf50
[  427.363786][T12695]  do_splice_direct+0x342/0x580
[  427.363796][T12695]  do_sendfile+0x101b/0x1d40
[  427.363807][T12695]  __se_sys_sendfile64+0x2bb/0x360
[  427.363818][T12695]  __x64_sys_sendfile64+0x56/0x70
[  427.363831][T12695]  do_syscall_64+0xb0/0x150
[  427.363848][T12695]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  427.363851][T12695] 
[  427.363856][T12695] Uninit was stored to memory at:
[  427.363869][T12695]  kmsan_internal_chain_origin+0xad/0x130
[  427.363881][T12695]  kmsan_memcpy_memmove_metadata+0x272/0x2e0
[  427.363894][T12695]  kmsan_memcpy_metadata+0xb/0x10
[  427.363907][T12695]  __msan_memcpy+0x43/0x50
[  427.363922][T12695]  rmd256_update+0x1fc/0x4f0
[  427.363934][T12695]  crypto_shash_update+0x4e9/0x550
[  427.363946][T12695]  shash_async_update+0x113/0x1d0
[  427.363959][T12695]  hash_sendpage+0x8ef/0xdf0
[  427.363974][T12695]  sock_sendpage+0x1e1/0x2c0
[  427.363988][T12695]  pipe_to_sendpage+0x38c/0x4c0
[  427.364003][T12695]  __splice_from_pipe+0x565/0xf00
[  427.364018][T12695]  generic_splice_sendpage+0x1d5/0x2d0
[  427.364032][T12695]  direct_splice_actor+0x1fd/0x580
[  427.364047][T12695]  splice_direct_to_actor+0x6b2/0xf50
[  427.364062][T12695]  do_splice_direct+0x342/0x580
[  427.364074][T12695]  do_sendfile+0x101b/0x1d40
[  427.364087][T12695]  __se_sys_sendfile64+0x2bb/0x360
[  427.364106][T12695]  __x64_sys_sendfile64+0x56/0x70
[  427.364123][T12695]  do_syscall_64+0xb0/0x150
[  427.364140][T12695]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  427.364144][T12695] 
[  427.364148][T12695] Uninit was created at:
[  427.364164][T12695]  kmsan_save_stack_with_flags+0x3c/0x90
[  427.364178][T12695]  kmsan_alloc_page+0xb9/0x180
[  427.364191][T12695]  __alloc_pages_nodemask+0x56a2/0x5dc0
[  427.364204][T12695]  alloc_pages_current+0x672/0x990
[  427.364216][T12695]  push_pipe+0x605/0xb70
[  427.364229][T12695]  iov_iter_get_pages_alloc+0x18a9/0x21c0
[  427.364243][T12695]  do_splice_to+0x4fc/0x14f0
[  427.364258][T12695]  splice_direct_to_actor+0x45c/0xf50
[  427.364271][T12695]  do_splice_direct+0x342/0x580
[  427.364283][T12695]  do_sendfile+0x101b/0x1d40
[  427.364296][T12695]  __se_sys_sendfile64+0x2bb/0x360
[  427.364308][T12695]  __x64_sys_sendfile64+0x56/0x70
[  427.364323][T12695]  do_syscall_64+0xb0/0x150
[  427.364340][T12695]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  427.473470][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  427.970744][    C1] sd 0:0:1:0: [sg0] tag#2736 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  427.970962][    C1] sd 0:0:1:0: [sg0] tag#2736 CDB: Test Unit Ready
[  427.971077][    C1] sd 0:0:1:0: [sg0] tag#2736 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  427.971199][    C1] sd 0:0:1:0: [sg0] tag#2736 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  427.971315][    C1] sd 0:0:1:0: [sg0] tag#2736 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  427.971430][    C1] sd 0:0:1:0: [sg0] tag#2736 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  427.971548][    C1] sd 0:0:1:0: [sg0] tag#2736 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  427.971658][    C1] sd 0:0:1:0: [sg0] tag#2736 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  427.971769][    C1] sd 0:0:1:0: [sg0] tag#2736 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  427.971878][    C1] sd 0:0:1:0: [sg0] tag#2736 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  427.971991][    C1] sd 0:0:1:0: [sg0] tag#2736 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  427.972103][    C1] sd 0:0:1:0: [sg0] tag#2736 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  427.972218][    C1] sd 0:0:1:0: [sg0] tag#2736 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  427.972327][    C1] sd 0:0:1:0: [sg0] tag#2736 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  427.972429][    C1] sd 0:0:1:0: [sg0] tag#2736 CDB[c0]: 00 00 00 00 00 00 00 00
[  428.046053][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  430.136097][    T1] systemd[1]: systemd-journald.service: Start operation timed out. Terminating.
20:08:43 executing program 4:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
perf_event_open(&(0x7f0000001240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r2, &(0x7f00000014c0)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26710000000049d2e181baf9459c5c953148c6801d2c0945c08ba88552fc99b742200765020000000000000080812d274014ae40b8af4f2a88d2fbea75e16a61fd063f026bd7360627ec60cb274e00da971f7ee096d74c92fad707e2d5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092c0100b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93981b20e03b86d4e999bba83a7b0ee0ce30e80600cff8ca2996e518e3e6"], 0x14f)
getgroups(0x2, &(0x7f0000000140)=[0xffffffffffffffff, 0x0])
gettid()
r3 = fcntl$dupfd(0xffffffffffffffff, 0x2, 0xffffffffffffffff)
timerfd_settime(r3, 0x0, &(0x7f00000001c0)={{0x77359400}, {0x0, 0x989680}}, 0x0)
setsockopt$EBT_SO_SET_COUNTERS(0xffffffffffffffff, 0x0, 0x81, &(0x7f0000001100)={'nat\x00', 0x0, 0x0, 0x0, [], 0x2, &(0x7f0000001080)=[{}, {}, {}, {}], 0x0, [{}, {}]}, 0x98)
ioctl$sock_inet_tcp_SIOCINQ(r1, 0x541b, &(0x7f0000001040))
socket$inet_udplite(0x2, 0x2, 0x88)
keyctl$get_persistent(0x3, 0x0, 0x0)
gettid()
write$UHID_INPUT(r1, &(0x7f0000000000)={0x8, {"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", 0x1000}}, 0x1006)

20:08:43 executing program 5:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = dup2(r1, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)={0x4c, 0x2, 0x6, 0x185, 0x0, 0x0, {}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}]}, 0x4c}}, 0x0)

20:08:43 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, 0x0}], 0x1, 0x1c, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000000)={r3})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

20:08:43 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, 0x0}], 0x1, 0x1c, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000000)={r3})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

20:08:43 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = gettid()
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000200)='IPVS\x00')
sendmsg$IPVS_CMD_NEW_SERVICE(r3, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)={0x14, r4, 0x101}, 0x14}}, 0x0)
sendmsg$IPVS_CMD_DEL_SERVICE(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x24, r4, 0x8, 0x70bd2c, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x101}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x2400000}]}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x10)
sendmsg$IPVS_CMD_DEL_DAEMON(r1, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x44, r4, 0x100, 0x70bd2d, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_DEST={0x30, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@mcast1}, @IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x4}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x3f}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x80000001}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x20000840}, 0x20000000)
ptrace$setopts(0x4206, r2, 0x0, 0x0)
tkill(r2, 0x40)
ptrace$setregs(0xd, r2, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r2, 0x0, 0x0)
syz_open_procfs(r2, &(0x7f0000000000)='loginuid\x00')
r5 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt(r5, 0x800000010d, 0x2, &(0x7f0000000240)='\x00\x00\x00\x00\x00', 0x5)
getsockopt$inet_int(r5, 0x10d, 0x2, 0x0, &(0x7f0000000180)=0x2b)
sendfile(r1, r5, 0x0, 0x10001)

20:08:43 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

[  431.635917][    C1] sd 0:0:1:0: [sg0] tag#2737 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  431.646591][    C1] sd 0:0:1:0: [sg0] tag#2737 CDB: Test Unit Ready
[  431.647327][    C0] sd 0:0:1:0: [sg0] tag#2738 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  431.653307][    C1] sd 0:0:1:0: [sg0] tag#2737 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  431.663847][    C0] sd 0:0:1:0: [sg0] tag#2738 CDB: Test Unit Ready
[  431.673534][    C1] sd 0:0:1:0: [sg0] tag#2737 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  431.680137][    C0] sd 0:0:1:0: [sg0] tag#2738 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  431.689866][    C1] sd 0:0:1:0: [sg0] tag#2737 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  431.699685][    C0] sd 0:0:1:0: [sg0] tag#2738 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  431.709218][    C1] sd 0:0:1:0: [sg0] tag#2737 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  431.718910][    C0] sd 0:0:1:0: [sg0] tag#2738 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  431.728506][    C1] sd 0:0:1:0: [sg0] tag#2737 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  431.738188][    C0] sd 0:0:1:0: [sg0] tag#2738 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  431.747876][    C1] sd 0:0:1:0: [sg0] tag#2737 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  431.757557][    C0] sd 0:0:1:0: [sg0] tag#2738 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  431.767240][    C1] sd 0:0:1:0: [sg0] tag#2737 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  431.776921][    C0] sd 0:0:1:0: [sg0] tag#2738 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  431.786612][    C1] sd 0:0:1:0: [sg0] tag#2737 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  431.796295][    C0] sd 0:0:1:0: [sg0] tag#2738 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  431.805980][    C1] sd 0:0:1:0: [sg0] tag#2737 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  431.815667][    C0] sd 0:0:1:0: [sg0] tag#2738 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  431.825351][    C1] sd 0:0:1:0: [sg0] tag#2737 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  431.835032][    C0] sd 0:0:1:0: [sg0] tag#2738 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  431.844721][    C1] sd 0:0:1:0: [sg0] tag#2737 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  431.854399][    C0] sd 0:0:1:0: [sg0] tag#2738 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  431.864095][    C1] sd 0:0:1:0: [sg0] tag#2737 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  431.873785][    C0] sd 0:0:1:0: [sg0] tag#2738 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  431.883463][    C1] sd 0:0:1:0: [sg0] tag#2737 CDB[c0]: 00 00 00 00 00 00 00 00
[  431.893149][    C0] sd 0:0:1:0: [sg0] tag#2738 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  431.910487][    C0] sd 0:0:1:0: [sg0] tag#2738 CDB[c0]: 00 00 00 00 00 00 00 00
20:08:44 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, 0x0}], 0x1, 0x1c, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000000)={r3})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

20:08:44 executing program 5:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = dup2(r1, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)={0x4c, 0x2, 0x6, 0x185, 0x0, 0x0, {}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}]}, 0x4c}}, 0x0)

20:08:44 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, 0x0}], 0x1, 0x1c, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000000)={r3})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

20:08:44 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r1, r2, 0x0, 0x1000007ffff000)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
prctl$PR_TASK_PERF_EVENTS_ENABLE(0x20)
ioctl$sock_inet_tcp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000180))
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000008c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="000426bd7000fedbdf250d000000080034", @ANYRES32=0x0, @ANYBLOB="e0f0fdcb69a067053b14d7a44ca9ff6dedc9d15f7745c5298ff283c1edd156d0beaa2059b57c0366b4ef51f4f58652ef0dbdde68cd9d7f6a7ddbcbe278a8"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2400c004)
r5 = openat$cgroup_ro(r3, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r5, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x24, r4, 0x712, 0x70bd26, 0x25dfdbff}, 0x24}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000240)={0x1, &(0x7f0000000200)=[{0x1f, 0x9, 0x7, 0x8001}]}, 0x10)
ioctl$sock_SIOCSIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r5, 0x8983, &(0x7f00000000c0)={0x8, 'erspan0\x00', {'nr0\x00'}, 0x7})

20:08:44 executing program 2:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000380)=@mpls_getnetconf={0x14, 0x52, 0x1}, 0x14}}, 0x0)

20:08:44 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

[  432.669395][T12791] not chained 670000 origins
[  432.674021][T12791] CPU: 0 PID: 12791 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0
[  432.679264][T12791] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  432.679264][T12791] Call Trace:
[  432.679264][T12791]  dump_stack+0x1df/0x240
[  432.679264][T12791]  kmsan_internal_chain_origin+0x6f/0x130
[  432.679264][T12791]  ? is_module_text_address+0x4d/0x2a0
[  432.679264][T12791]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  432.679264][T12791]  ? __kernel_text_address+0x171/0x2d0
[  432.721500][T12791]  ? unwind_get_return_address+0x8c/0x130
[  432.721500][T12791]  ? entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  432.721500][T12791]  ? arch_stack_walk+0x2a2/0x3e0
[  432.721500][T12791]  ? stack_trace_save+0x1a0/0x1a0
[  432.721500][T12791]  ? kmsan_get_metadata+0x4f/0x180
[  432.721500][T12791]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  432.721500][T12791]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  432.721500][T12791]  ? stack_trace_save+0x123/0x1a0
[  432.721500][T12791]  ? kmsan_get_metadata+0x11d/0x180
[  432.721500][T12791]  __msan_chain_origin+0x50/0x90
[  432.721500][T12791]  rmd256_transform+0x4328/0x4440
[  432.721500][T12791]  rmd256_update+0x343/0x4f0
[  432.721500][T12791]  ? rmd256_init+0x260/0x260
[  432.721500][T12791]  crypto_shash_update+0x4e9/0x550
[  432.721500][T12791]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  432.721500][T12791]  ? crypto_hash_walk_first+0x1fd/0x360
[  432.721500][T12791]  ? kmsan_get_metadata+0x4f/0x180
[  432.721500][T12791]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  432.721500][T12791]  shash_async_update+0x113/0x1d0
[  432.721500][T12791]  ? shash_async_init+0x1e0/0x1e0
[  432.721500][T12791]  hash_sendpage+0x8ef/0xdf0
[  432.721500][T12791]  ? hash_recvmsg+0xd30/0xd30
[  432.721500][T12791]  sock_sendpage+0x1e1/0x2c0
[  432.721500][T12791]  pipe_to_sendpage+0x38c/0x4c0
[  432.721500][T12791]  ? sock_fasync+0x250/0x250
[  432.721500][T12791]  __splice_from_pipe+0x565/0xf00
[  432.721500][T12791]  ? generic_splice_sendpage+0x2d0/0x2d0
[  432.721500][T12791]  generic_splice_sendpage+0x1d5/0x2d0
[  432.721500][T12791]  ? iter_file_splice_write+0x1800/0x1800
[  432.721500][T12791]  direct_splice_actor+0x1fd/0x580
[  432.721500][T12791]  ? kmsan_get_metadata+0x4f/0x180
[  432.721500][T12791]  splice_direct_to_actor+0x6b2/0xf50
[  432.721500][T12791]  ? do_splice_direct+0x580/0x580
[  432.721500][T12791]  do_splice_direct+0x342/0x580
[  432.721500][T12791]  do_sendfile+0x101b/0x1d40
[  432.721500][T12791]  __se_sys_sendfile64+0x2bb/0x360
[  432.721500][T12791]  ? kmsan_get_metadata+0x4f/0x180
[  432.721500][T12791]  __x64_sys_sendfile64+0x56/0x70
[  432.721500][T12791]  do_syscall_64+0xb0/0x150
[  432.721500][T12791]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  432.721500][T12791] RIP: 0033:0x45c1d9
[  432.721500][T12791] Code: Bad RIP value.
[  432.721500][T12791] RSP: 002b:00007f3a4d702c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  432.721500][T12791] RAX: ffffffffffffffda RBX: 0000000000025a00 RCX: 000000000045c1d9
[  432.721500][T12791] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004
[  432.721500][T12791] RBP: 000000000078bf48 R08: 0000000000000000 R09: 0000000000000000
[  432.721500][T12791] R10: 001000007ffff000 R11: 0000000000000246 R12: 000000000078bf0c
[  432.721500][T12791] R13: 0000000000c9fb6f R14: 00007f3a4d7039c0 R15: 000000000078bf0c
[  432.721500][T12791] Uninit was stored to memory at:
[  432.721500][T12791]  kmsan_internal_chain_origin+0xad/0x130
[  432.721500][T12791]  __msan_chain_origin+0x50/0x90
[  432.721500][T12791]  rmd256_transform+0x4328/0x4440
[  432.721500][T12791]  rmd256_update+0x343/0x4f0
[  432.721500][T12791]  crypto_shash_update+0x4e9/0x550
[  432.721500][T12791]  shash_async_update+0x113/0x1d0
[  432.721500][T12791]  hash_sendpage+0x8ef/0xdf0
[  432.721500][T12791]  sock_sendpage+0x1e1/0x2c0
[  432.721500][T12791]  pipe_to_sendpage+0x38c/0x4c0
[  432.721500][T12791]  __splice_from_pipe+0x565/0xf00
[  432.721500][T12791]  generic_splice_sendpage+0x1d5/0x2d0
[  432.721500][T12791]  direct_splice_actor+0x1fd/0x580
[  432.721500][T12791]  splice_direct_to_actor+0x6b2/0xf50
[  432.721500][T12791]  do_splice_direct+0x342/0x580
[  432.721500][T12791]  do_sendfile+0x101b/0x1d40
[  432.721500][T12791]  __se_sys_sendfile64+0x2bb/0x360
[  432.721500][T12791]  __x64_sys_sendfile64+0x56/0x70
[  432.721500][T12791]  do_syscall_64+0xb0/0x150
[  432.721500][T12791]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  432.721500][T12791] 
[  432.721500][T12791] Uninit was stored to memory at:
[  432.721500][T12791]  kmsan_internal_chain_origin+0xad/0x130
[  432.721500][T12791]  __msan_chain_origin+0x50/0x90
[  432.721500][T12791]  rmd256_transform+0x4328/0x4440
[  432.721500][T12791]  rmd256_update+0x343/0x4f0
[  432.721500][T12791]  crypto_shash_update+0x4e9/0x550
[  432.721500][T12791]  shash_async_update+0x113/0x1d0
[  432.721500][T12791]  hash_sendpage+0x8ef/0xdf0
[  432.721500][T12791]  sock_sendpage+0x1e1/0x2c0
[  432.721500][T12791]  pipe_to_sendpage+0x38c/0x4c0
[  432.721500][T12791]  __splice_from_pipe+0x565/0xf00
[  432.721500][T12791]  generic_splice_sendpage+0x1d5/0x2d0
[  432.721500][T12791]  direct_splice_actor+0x1fd/0x580
[  432.721500][T12791]  splice_direct_to_actor+0x6b2/0xf50
[  432.721500][T12791]  do_splice_direct+0x342/0x580
[  432.721500][T12791]  do_sendfile+0x101b/0x1d40
[  432.721500][T12791]  __se_sys_sendfile64+0x2bb/0x360
[  432.721500][T12791]  __x64_sys_sendfile64+0x56/0x70
[  432.721500][T12791]  do_syscall_64+0xb0/0x150
[  432.721500][T12791]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  432.721500][T12791] 
[  432.721500][T12791] Uninit was stored to memory at:
[  432.721500][T12791]  kmsan_internal_chain_origin+0xad/0x130
[  432.721500][T12791]  __msan_chain_origin+0x50/0x90
[  432.721500][T12791]  rmd256_transform+0x4328/0x4440
[  432.721500][T12791]  rmd256_update+0x343/0x4f0
[  432.721500][T12791]  crypto_shash_update+0x4e9/0x550
[  432.721500][T12791]  shash_async_update+0x113/0x1d0
[  432.721500][T12791]  hash_sendpage+0x8ef/0xdf0
[  432.721500][T12791]  sock_sendpage+0x1e1/0x2c0
[  432.721500][T12791]  pipe_to_sendpage+0x38c/0x4c0
[  432.721500][T12791]  __splice_from_pipe+0x565/0xf00
[  432.721500][T12791]  generic_splice_sendpage+0x1d5/0x2d0
[  432.721500][T12791]  direct_splice_actor+0x1fd/0x580
[  432.721500][T12791]  splice_direct_to_actor+0x6b2/0xf50
[  432.721500][T12791]  do_splice_direct+0x342/0x580
[  432.721500][T12791]  do_sendfile+0x101b/0x1d40
[  432.721500][T12791]  __se_sys_sendfile64+0x2bb/0x360
[  432.721500][T12791]  __x64_sys_sendfile64+0x56/0x70
[  432.721500][T12791]  do_syscall_64+0xb0/0x150
[  432.721500][T12791]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  432.721500][T12791] 
[  432.721500][T12791] Uninit was stored to memory at:
[  432.721500][T12791]  kmsan_internal_chain_origin+0xad/0x130
[  432.721500][T12791]  __msan_chain_origin+0x50/0x90
[  432.721500][T12791]  rmd256_transform+0x4328/0x4440
[  432.721500][T12791]  rmd256_update+0x343/0x4f0
[  432.721500][T12791]  crypto_shash_update+0x4e9/0x550
[  432.721500][T12791]  shash_async_update+0x113/0x1d0
[  432.721500][T12791]  hash_sendpage+0x8ef/0xdf0
[  432.721500][T12791]  sock_sendpage+0x1e1/0x2c0
[  432.721500][T12791]  pipe_to_sendpage+0x38c/0x4c0
[  432.721500][T12791]  __splice_from_pipe+0x565/0xf00
[  432.721500][T12791]  generic_splice_sendpage+0x1d5/0x2d0
[  432.721500][T12791]  direct_splice_actor+0x1fd/0x580
[  432.721500][T12791]  splice_direct_to_actor+0x6b2/0xf50
[  432.721500][T12791]  do_splice_direct+0x342/0x580
[  432.721500][T12791]  do_sendfile+0x101b/0x1d40
[  432.721500][T12791]  __se_sys_sendfile64+0x2bb/0x360
[  432.721500][T12791]  __x64_sys_sendfile64+0x56/0x70
[  432.721500][T12791]  do_syscall_64+0xb0/0x150
[  432.721500][T12791]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  432.721500][T12791] 
[  432.721500][T12791] Uninit was stored to memory at:
[  432.721500][T12791]  kmsan_internal_chain_origin+0xad/0x130
[  432.721500][T12791]  __msan_chain_origin+0x50/0x90
[  432.721500][T12791]  rmd256_transform+0x4328/0x4440
[  432.721500][T12791]  rmd256_update+0x343/0x4f0
[  432.721500][T12791]  crypto_shash_update+0x4e9/0x550
[  432.721500][T12791]  shash_async_update+0x113/0x1d0
[  432.721500][T12791]  hash_sendpage+0x8ef/0xdf0
[  432.721500][T12791]  sock_sendpage+0x1e1/0x2c0
[  432.721500][T12791]  pipe_to_sendpage+0x38c/0x4c0
[  432.721500][T12791]  __splice_from_pipe+0x565/0xf00
[  432.721500][T12791]  generic_splice_sendpage+0x1d5/0x2d0
[  432.721500][T12791]  direct_splice_actor+0x1fd/0x580
[  432.721500][T12791]  splice_direct_to_actor+0x6b2/0xf50
[  432.721500][T12791]  do_splice_direct+0x342/0x580
[  432.721500][T12791]  do_sendfile+0x101b/0x1d40
[  432.721500][T12791]  __se_sys_sendfile64+0x2bb/0x360
[  432.721500][T12791]  __x64_sys_sendfile64+0x56/0x70
[  432.721500][T12791]  do_syscall_64+0xb0/0x150
[  432.721500][T12791]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  432.721500][T12791] 
[  432.721500][T12791] Uninit was stored to memory at:
[  432.721500][T12791]  kmsan_internal_chain_origin+0xad/0x130
[  432.721500][T12791]  __msan_chain_origin+0x50/0x90
[  432.721500][T12791]  rmd256_transform+0x4328/0x4440
[  432.721500][T12791]  rmd256_update+0x227/0x4f0
[  432.721500][T12791]  crypto_shash_update+0x4e9/0x550
[  432.721500][T12791]  shash_async_update+0x113/0x1d0
[  432.721500][T12791]  hash_sendpage+0x8ef/0xdf0
[  432.721500][T12791]  sock_sendpage+0x1e1/0x2c0
[  432.721500][T12791]  pipe_to_sendpage+0x38c/0x4c0
[  432.721500][T12791]  __splice_from_pipe+0x565/0xf00
[  432.721500][T12791]  generic_splice_sendpage+0x1d5/0x2d0
[  432.721500][T12791]  direct_splice_actor+0x1fd/0x580
[  432.721500][T12791]  splice_direct_to_actor+0x6b2/0xf50
[  432.721500][T12791]  do_splice_direct+0x342/0x580
[  432.721500][T12791]  do_sendfile+0x101b/0x1d40
[  432.721500][T12791]  __se_sys_sendfile64+0x2bb/0x360
[  432.721500][T12791]  __x64_sys_sendfile64+0x56/0x70
[  432.721500][T12791]  do_syscall_64+0xb0/0x150
[  432.721500][T12791]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  432.721500][T12791] 
[  432.721500][T12791] Uninit was stored to memory at:
[  432.721500][T12791]  kmsan_internal_chain_origin+0xad/0x130
[  432.721500][T12791]  kmsan_memcpy_memmove_metadata+0x272/0x2e0
[  432.721500][T12791]  kmsan_memcpy_metadata+0xb/0x10
[  432.721500][T12791]  __msan_memcpy+0x43/0x50
[  432.721500][T12791]  rmd256_update+0x1fc/0x4f0
[  432.721500][T12791]  crypto_shash_update+0x4e9/0x550
[  432.721500][T12791]  shash_async_update+0x113/0x1d0
[  432.721500][T12791]  hash_sendpage+0x8ef/0xdf0
[  432.721500][T12791]  sock_sendpage+0x1e1/0x2c0
[  432.721500][T12791]  pipe_to_sendpage+0x38c/0x4c0
[  432.721500][T12791]  __splice_from_pipe+0x565/0xf00
[  432.721500][T12791]  generic_splice_sendpage+0x1d5/0x2d0
[  432.721500][T12791]  direct_splice_actor+0x1fd/0x580
[  432.721500][T12791]  splice_direct_to_actor+0x6b2/0xf50
[  432.721500][T12791]  do_splice_direct+0x342/0x580
[  432.721500][T12791]  do_sendfile+0x101b/0x1d40
[  432.721500][T12791]  __se_sys_sendfile64+0x2bb/0x360
[  432.721500][T12791]  __x64_sys_sendfile64+0x56/0x70
[  432.721500][T12791]  do_syscall_64+0xb0/0x150
[  432.721500][T12791]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  432.721500][T12791] 
[  432.721500][T12791] Uninit was created at:
[  432.721500][T12791]  kmsan_save_stack_with_flags+0x3c/0x90
[  432.721500][T12791]  kmsan_alloc_page+0xb9/0x180
[  432.721500][T12791]  __alloc_pages_nodemask+0x56a2/0x5dc0
[  432.721500][T12791]  alloc_pages_current+0x672/0x990
[  432.721500][T12791]  push_pipe+0x605/0xb70
[  432.721500][T12791]  iov_iter_get_pages_alloc+0x18a9/0x21c0
[  432.721500][T12791]  do_splice_to+0x4fc/0x14f0
[  432.721500][T12791]  splice_direct_to_actor+0x45c/0xf50
[  432.721500][T12791]  do_splice_direct+0x342/0x580
[  432.721500][T12791]  do_sendfile+0x101b/0x1d40
[  432.721500][T12791]  __se_sys_sendfile64+0x2bb/0x360
20:08:45 executing program 4:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
perf_event_open(&(0x7f0000001240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r2, &(0x7f00000014c0)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26710000000049d2e181baf9459c5c953148c6801d2c0945c08ba88552fc99b742200765020000000000000080812d274014ae40b8af4f2a88d2fbea75e16a61fd063f026bd7360627ec60cb274e00da971f7ee096d74c92fad707e2d5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092c0100b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93981b20e03b86d4e999bba83a7b0ee0ce30e80600cff8ca2996e518e3e6"], 0x14f)
getgroups(0x2, &(0x7f0000000140)=[0xffffffffffffffff, 0x0])
gettid()
r3 = fcntl$dupfd(0xffffffffffffffff, 0x2, 0xffffffffffffffff)
timerfd_settime(r3, 0x0, &(0x7f00000001c0)={{0x77359400}, {0x0, 0x989680}}, 0x0)
setsockopt$EBT_SO_SET_COUNTERS(0xffffffffffffffff, 0x0, 0x81, &(0x7f0000001100)={'nat\x00', 0x0, 0x0, 0x0, [], 0x2, &(0x7f0000001080)=[{}, {}, {}, {}], 0x0, [{}, {}]}, 0x98)
ioctl$sock_inet_tcp_SIOCINQ(r1, 0x541b, &(0x7f0000001040))
socket$inet_udplite(0x2, 0x2, 0x88)
keyctl$get_persistent(0x3, 0x0, 0x0)
gettid()
write$UHID_INPUT(r1, &(0x7f0000000000)={0x8, {"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", 0x1000}}, 0x1006)

[  432.721500][T12791]  __x64_sys_sendfile64+0x56/0x70
[  432.721500][T12791]  do_syscall_64+0xb0/0x150
[  432.721500][T12791]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  433.948225][    C1] sd 0:0:1:0: [sg0] tag#2739 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  433.958943][    C1] sd 0:0:1:0: [sg0] tag#2739 CDB: Test Unit Ready
[  433.965862][    C1] sd 0:0:1:0: [sg0] tag#2739 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  433.968991][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  433.975850][    C1] sd 0:0:1:0: [sg0] tag#2739 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  433.994084][    C1] sd 0:0:1:0: [sg0] tag#2739 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  433.996809][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  434.004039][    C1] sd 0:0:1:0: [sg0] tag#2739 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  434.022306][    C1] sd 0:0:1:0: [sg0] tag#2739 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  434.032927][    C1] sd 0:0:1:0: [sg0] tag#2739 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  434.041663][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  434.043520][    C1] sd 0:0:1:0: [sg0] tag#2739 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  434.061717][    C1] sd 0:0:1:0: [sg0] tag#2739 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  434.071682][    C1] sd 0:0:1:0: [sg0] tag#2739 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  434.080610][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
20:08:46 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x420000015001})
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @empty}})
write$tun(r0, &(0x7f0000000480)={@void, @val={0x2d, 0x0, 0x0, 0x0, 0x46}, @ipv6=@gre_packet={0x0, 0x6, "bc7d94", 0x4c, 0x2c, 0x0, @remote, @mcast2, {[@dstopts={0x2f}], {{0x0, 0x0, 0x1, 0x0, 0x3, 0x0, 0x0, 0x1, 0x6558}}}}}, 0xfdef)

20:08:46 executing program 2:
syz_emit_ethernet(0x76, &(0x7f0000000080)={@broadcast=[0xff, 0xff, 0xff, 0x0], @random="f674049167a6", @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "a4f008", 0x40, 0x3a, 0x0, @empty={[0x3, 0x3c]}, @mcast2, {[], @pkt_toobig={0x3, 0x0, 0x0, 0x0, {0x0, 0x6, "0004e6", 0x0, 0x0, 0x0, @remote, @remote={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, [@routing={0x2f}], "000022ebffff04f5"}}}}}}}, 0x0)

[  434.081625][    C1] sd 0:0:1:0: [sg0] tag#2739 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  434.099739][    C1] sd 0:0:1:0: [sg0] tag#2739 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  434.109689][    C1] sd 0:0:1:0: [sg0] tag#2739 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  434.119629][    C1] sd 0:0:1:0: [sg0] tag#2739 CDB[c0]: 00 00 00 00 00 00 00 00
20:08:46 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

20:08:46 executing program 3:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x40)
write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x1a2, &(0x7f0000000240)="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"}}], 0x1c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

20:08:47 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x420000015001})
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @empty}})
write$tun(r0, &(0x7f0000000480)={@void, @val={0x2d, 0x0, 0x0, 0x0, 0x46}, @ipv6=@gre_packet={0x0, 0x6, "bc7d94", 0x4c, 0x2c, 0x0, @remote, @mcast2, {[@dstopts={0x2f}], {{0x0, 0x0, 0x1, 0x0, 0x3, 0x0, 0x0, 0x1, 0x6558}}}}}, 0xfdef)

20:08:48 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r1, r2, 0x0, 0x1000007ffff000)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
clock_gettime(0x0, &(0x7f00000000c0)={<r3=>0x0, <r4=>0x0})
getitimer(0x2, &(0x7f0000000180))
ioctl$VIDIOC_DQBUF(0xffffffffffffffff, 0xc0585611, &(0x7f0000000100)={0x54, 0x9, 0x4, 0x100000, 0x6, {r3, r4/1000+60000}, {0x3, 0x1, 0x0, 0x0, 0x1, 0x2, "80d646ee"}, 0x5, 0x1, @offset=0xabd, 0x3, 0x0, <r5=>0xffffffffffffffff})
dup3(r5, r0, 0x80000)

[  436.280504][    C0] sd 0:0:1:0: [sg0] tag#2740 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  436.291197][    C0] sd 0:0:1:0: [sg0] tag#2740 CDB: Test Unit Ready
[  436.293679][    C1] sd 0:0:1:0: [sg0] tag#2741 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  436.297804][    C0] sd 0:0:1:0: [sg0] tag#2740 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  436.297945][    C0] sd 0:0:1:0: [sg0] tag#2740 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  436.308393][    C1] sd 0:0:1:0: [sg0] tag#2741 CDB: Test Unit Ready
[  436.308507][    C1] sd 0:0:1:0: [sg0] tag#2741 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  436.318202][    C0] sd 0:0:1:0: [sg0] tag#2740 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  436.327952][    C1] sd 0:0:1:0: [sg0] tag#2741 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  436.334535][    C0] sd 0:0:1:0: [sg0] tag#2740 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  436.344300][    C1] sd 0:0:1:0: [sg0] tag#2741 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  436.353988][    C0] sd 0:0:1:0: [sg0] tag#2740 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  436.363643][    C1] sd 0:0:1:0: [sg0] tag#2741 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  436.363780][    C1] sd 0:0:1:0: [sg0] tag#2741 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  436.373465][    C0] sd 0:0:1:0: [sg0] tag#2740 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  436.383154][    C1] sd 0:0:1:0: [sg0] tag#2741 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  436.392886][    C0] sd 0:0:1:0: [sg0] tag#2740 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  436.402506][    C1] sd 0:0:1:0: [sg0] tag#2741 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  436.412187][    C0] sd 0:0:1:0: [sg0] tag#2740 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  436.421879][    C1] sd 0:0:1:0: [sg0] tag#2741 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  436.431573][    C0] sd 0:0:1:0: [sg0] tag#2740 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  436.441265][    C1] sd 0:0:1:0: [sg0] tag#2741 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  436.451032][    C0] sd 0:0:1:0: [sg0] tag#2740 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  436.460740][    C1] sd 0:0:1:0: [sg0] tag#2741 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  436.470437][    C0] sd 0:0:1:0: [sg0] tag#2740 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  436.480102][    C1] sd 0:0:1:0: [sg0] tag#2741 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  436.489790][    C0] sd 0:0:1:0: [sg0] tag#2740 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  436.499475][    C1] sd 0:0:1:0: [sg0] tag#2741 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  436.509064][    C0] sd 0:0:1:0: [sg0] tag#2740 CDB[c0]: 00 00 00 00 00 00 00 00
[  436.518765][    C1] sd 0:0:1:0: [sg0] tag#2741 CDB[c0]: 00 00 00 00 00 00 00 00
20:08:48 executing program 2:
syz_emit_ethernet(0x76, &(0x7f0000000080)={@broadcast=[0xff, 0xff, 0xff, 0x0], @random="f674049167a6", @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "a4f008", 0x40, 0x3a, 0x0, @empty={[0x3, 0x3c]}, @mcast2, {[], @pkt_toobig={0x3, 0x0, 0x0, 0x0, {0x0, 0x6, "0004e6", 0x0, 0x0, 0x0, @remote, @remote={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, [@routing={0x2f}], "000022ebffff04f5"}}}}}}}, 0x0)

[  436.785826][T12850] not chained 680000 origins
[  436.785847][T12850] CPU: 1 PID: 12850 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0
[  436.785856][T12850] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  436.785862][T12850] Call Trace:
[  436.785890][T12850]  dump_stack+0x1df/0x240
[  436.785916][T12850]  kmsan_internal_chain_origin+0x6f/0x130
[  436.785937][T12850]  ? is_module_text_address+0x4d/0x2a0
[  436.785955][T12850]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  436.785979][T12850]  ? __kernel_text_address+0x171/0x2d0
[  436.785998][T12850]  ? unwind_get_return_address+0x8c/0x130
20:08:49 executing program 2:
syz_emit_ethernet(0x76, &(0x7f0000000080)={@broadcast=[0xff, 0xff, 0xff, 0x0], @random="f674049167a6", @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "a4f008", 0x40, 0x3a, 0x0, @empty={[0x3, 0x3c]}, @mcast2, {[], @pkt_toobig={0x3, 0x0, 0x0, 0x0, {0x0, 0x6, "0004e6", 0x0, 0x0, 0x0, @remote, @remote={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, [@routing={0x2f}], "000022ebffff04f5"}}}}}}}, 0x0)

20:08:49 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vcsu\x00', 0x4400, 0x0)
ioctl$VIDIOC_TRY_EXT_CTRLS(r1, 0xc0205649, &(0x7f0000000140)={0x9e0000, 0x6, 0x2, <r2=>r0, 0x0, &(0x7f00000001c0)={0xa10001, 0x6, [], @value64=0x5}})
r3 = accept4(r2, 0x0, 0x0, 0x80800)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)

[  436.786020][T12850]  ? entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  436.786037][T12850]  ? arch_stack_walk+0x2a2/0x3e0
[  436.786060][T12850]  ? stack_trace_save+0x1a0/0x1a0
20:08:49 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

[  436.786081][T12850]  ? kmsan_get_metadata+0x4f/0x180
[  436.786100][T12850]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  436.786118][T12850]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  436.786135][T12850]  ? stack_trace_save+0x123/0x1a0
[  436.786153][T12850]  ? kmsan_get_metadata+0x11d/0x180
[  436.786171][T12850]  __msan_chain_origin+0x50/0x90
[  436.786194][T12850]  rmd256_transform+0x4328/0x4440
[  436.786265][T12850]  rmd256_update+0x343/0x4f0
[  436.786293][T12850]  ? rmd256_init+0x260/0x260
20:08:49 executing program 2:
syz_emit_ethernet(0x76, &(0x7f0000000080)={@broadcast=[0xff, 0xff, 0xff, 0x0], @random="f674049167a6", @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "a4f008", 0x40, 0x3a, 0x0, @empty={[0x3, 0x3c]}, @mcast2, {[], @pkt_toobig={0x3, 0x0, 0x0, 0x0, {0x0, 0x6, "0004e6", 0x0, 0x0, 0x0, @remote, @remote={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, [@routing={0x2f}], "000022ebffff04f5"}}}}}}}, 0x0)

[  436.786310][T12850]  crypto_shash_update+0x4e9/0x550
[  436.786327][T12850]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  436.786360][T12850]  ? crypto_hash_walk_first+0x1fd/0x360
[  436.786376][T12850]  ? kmsan_get_metadata+0x4f/0x180
[  436.786395][T12850]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  436.786412][T12850]  shash_async_update+0x113/0x1d0
[  436.786434][T12850]  ? shash_async_init+0x1e0/0x1e0
[  436.786448][T12850]  hash_sendpage+0x8ef/0xdf0
[  436.786470][T12850]  ? hash_recvmsg+0xd30/0xd30
[  436.786491][T12850]  sock_sendpage+0x1e1/0x2c0
[  436.786518][T12850]  pipe_to_sendpage+0x38c/0x4c0
[  436.786536][T12850]  ? sock_fasync+0x250/0x250
[  436.786563][T12850]  __splice_from_pipe+0x565/0xf00
[  436.786582][T12850]  ? generic_splice_sendpage+0x2d0/0x2d0
[  436.786617][T12850]  generic_splice_sendpage+0x1d5/0x2d0
[  436.786645][T12850]  ? iter_file_splice_write+0x1800/0x1800
[  436.786663][T12850]  direct_splice_actor+0x1fd/0x580
[  436.786686][T12850]  ? kmsan_get_metadata+0x4f/0x180
[  436.786706][T12850]  splice_direct_to_actor+0x6b2/0xf50
[  436.786721][T12850]  ? do_splice_direct+0x580/0x580
[  436.786757][T12850]  do_splice_direct+0x342/0x580
[  436.786786][T12850]  do_sendfile+0x101b/0x1d40
[  436.786825][T12850]  __se_sys_sendfile64+0x2bb/0x360
[  436.786842][T12850]  ? kmsan_get_metadata+0x4f/0x180
[  436.786864][T12850]  __x64_sys_sendfile64+0x56/0x70
[  436.786884][T12850]  do_syscall_64+0xb0/0x150
[  436.786906][T12850]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  436.786918][T12850] RIP: 0033:0x45c1d9
[  436.786923][T12850] Code: Bad RIP value.
[  436.786932][T12850] RSP: 002b:00007f3a4d702c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  436.786947][T12850] RAX: ffffffffffffffda RBX: 0000000000025a00 RCX: 000000000045c1d9
[  436.786956][T12850] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004
[  436.786965][T12850] RBP: 000000000078bf48 R08: 0000000000000000 R09: 0000000000000000
[  436.786975][T12850] R10: 001000007ffff000 R11: 0000000000000246 R12: 000000000078bf0c
[  436.786985][T12850] R13: 0000000000c9fb6f R14: 00007f3a4d7039c0 R15: 000000000078bf0c
[  436.787002][T12850] Uninit was stored to memory at:
[  436.787019][T12850]  kmsan_internal_chain_origin+0xad/0x130
[  436.787033][T12850]  __msan_chain_origin+0x50/0x90
[  436.787048][T12850]  rmd256_transform+0x4328/0x4440
[  436.787072][T12850]  rmd256_update+0x343/0x4f0
[  436.787086][T12850]  crypto_shash_update+0x4e9/0x550
[  436.787098][T12850]  shash_async_update+0x113/0x1d0
[  436.787111][T12850]  hash_sendpage+0x8ef/0xdf0
[  436.787126][T12850]  sock_sendpage+0x1e1/0x2c0
[  436.787140][T12850]  pipe_to_sendpage+0x38c/0x4c0
[  436.787155][T12850]  __splice_from_pipe+0x565/0xf00
[  436.787170][T12850]  generic_splice_sendpage+0x1d5/0x2d0
[  436.787184][T12850]  direct_splice_actor+0x1fd/0x580
[  436.787198][T12850]  splice_direct_to_actor+0x6b2/0xf50
[  436.787213][T12850]  do_splice_direct+0x342/0x580
[  436.787225][T12850]  do_sendfile+0x101b/0x1d40
[  436.787237][T12850]  __se_sys_sendfile64+0x2bb/0x360
[  436.787250][T12850]  __x64_sys_sendfile64+0x56/0x70
[  436.787266][T12850]  do_syscall_64+0xb0/0x150
[  436.787283][T12850]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  436.787286][T12850] 
[  436.787291][T12850] Uninit was stored to memory at:
[  436.787305][T12850]  kmsan_internal_chain_origin+0xad/0x130
[  436.787319][T12850]  __msan_chain_origin+0x50/0x90
[  436.787334][T12850]  rmd256_transform+0x4328/0x4440
[  436.787349][T12850]  rmd256_update+0x343/0x4f0
[  436.787361][T12850]  crypto_shash_update+0x4e9/0x550
[  436.787374][T12850]  shash_async_update+0x113/0x1d0
[  436.787386][T12850]  hash_sendpage+0x8ef/0xdf0
[  436.787399][T12850]  sock_sendpage+0x1e1/0x2c0
[  436.787413][T12850]  pipe_to_sendpage+0x38c/0x4c0
[  436.787431][T12850]  __splice_from_pipe+0x565/0xf00
[  436.787446][T12850]  generic_splice_sendpage+0x1d5/0x2d0
[  436.787460][T12850]  direct_splice_actor+0x1fd/0x580
[  436.787474][T12850]  splice_direct_to_actor+0x6b2/0xf50
[  436.787489][T12850]  do_splice_direct+0x342/0x580
[  436.787502][T12850]  do_sendfile+0x101b/0x1d40
[  436.787515][T12850]  __se_sys_sendfile64+0x2bb/0x360
[  436.787528][T12850]  __x64_sys_sendfile64+0x56/0x70
[  436.787543][T12850]  do_syscall_64+0xb0/0x150
[  436.787560][T12850]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  436.787563][T12850] 
[  436.787568][T12850] Uninit was stored to memory at:
[  436.787583][T12850]  kmsan_internal_chain_origin+0xad/0x130
[  436.787597][T12850]  __msan_chain_origin+0x50/0x90
[  436.787613][T12850]  rmd256_transform+0x4328/0x4440
[  436.787627][T12850]  rmd256_update+0x343/0x4f0
[  436.787638][T12850]  crypto_shash_update+0x4e9/0x550
[  436.787650][T12850]  shash_async_update+0x113/0x1d0
[  436.787661][T12850]  hash_sendpage+0x8ef/0xdf0
[  436.787685][T12850]  sock_sendpage+0x1e1/0x2c0
[  436.787701][T12850]  pipe_to_sendpage+0x38c/0x4c0
[  436.787716][T12850]  __splice_from_pipe+0x565/0xf00
[  436.787731][T12850]  generic_splice_sendpage+0x1d5/0x2d0
[  436.787747][T12850]  direct_splice_actor+0x1fd/0x580
[  436.787766][T12850]  splice_direct_to_actor+0x6b2/0xf50
[  436.787782][T12850]  do_splice_direct+0x342/0x580
[  436.787795][T12850]  do_sendfile+0x101b/0x1d40
[  436.787808][T12850]  __se_sys_sendfile64+0x2bb/0x360
[  436.787822][T12850]  __x64_sys_sendfile64+0x56/0x70
[  436.787838][T12850]  do_syscall_64+0xb0/0x150
[  436.787856][T12850]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  436.787860][T12850] 
[  436.787864][T12850] Uninit was stored to memory at:
[  436.787879][T12850]  kmsan_internal_chain_origin+0xad/0x130
[  436.787893][T12850]  __msan_chain_origin+0x50/0x90
[  436.787910][T12850]  rmd256_transform+0x4328/0x4440
[  436.787925][T12850]  rmd256_update+0x343/0x4f0
[  436.787937][T12850]  crypto_shash_update+0x4e9/0x550
[  436.787950][T12850]  shash_async_update+0x113/0x1d0
[  436.787964][T12850]  hash_sendpage+0x8ef/0xdf0
[  436.787980][T12850]  sock_sendpage+0x1e1/0x2c0
[  436.787995][T12850]  pipe_to_sendpage+0x38c/0x4c0
[  436.788010][T12850]  __splice_from_pipe+0x565/0xf00
[  436.788026][T12850]  generic_splice_sendpage+0x1d5/0x2d0
[  436.788042][T12850]  direct_splice_actor+0x1fd/0x580
[  436.788062][T12850]  splice_direct_to_actor+0x6b2/0xf50
[  436.788076][T12850]  do_splice_direct+0x342/0x580
[  436.788094][T12850]  do_sendfile+0x101b/0x1d40
[  436.788108][T12850]  __se_sys_sendfile64+0x2bb/0x360
[  436.788121][T12850]  __x64_sys_sendfile64+0x56/0x70
[  436.788141][T12850]  do_syscall_64+0xb0/0x150
[  436.788159][T12850]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  436.788167][T12850] 
[  436.788172][T12850] Uninit was stored to memory at:
[  436.788186][T12850]  kmsan_internal_chain_origin+0xad/0x130
[  436.788200][T12850]  __msan_chain_origin+0x50/0x90
[  436.788216][T12850]  rmd256_transform+0x4328/0x4440
[  436.788231][T12850]  rmd256_update+0x343/0x4f0
[  436.788244][T12850]  crypto_shash_update+0x4e9/0x550
[  436.788256][T12850]  shash_async_update+0x113/0x1d0
[  436.788268][T12850]  hash_sendpage+0x8ef/0xdf0
[  436.788284][T12850]  sock_sendpage+0x1e1/0x2c0
[  436.788298][T12850]  pipe_to_sendpage+0x38c/0x4c0
[  436.788312][T12850]  __splice_from_pipe+0x565/0xf00
[  436.788326][T12850]  generic_splice_sendpage+0x1d5/0x2d0
[  436.788346][T12850]  direct_splice_actor+0x1fd/0x580
[  436.788361][T12850]  splice_direct_to_actor+0x6b2/0xf50
[  436.788375][T12850]  do_splice_direct+0x342/0x580
[  436.788388][T12850]  do_sendfile+0x101b/0x1d40
[  436.788400][T12850]  __se_sys_sendfile64+0x2bb/0x360
[  436.788413][T12850]  __x64_sys_sendfile64+0x56/0x70
[  436.788428][T12850]  do_syscall_64+0xb0/0x150
[  436.788445][T12850]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  436.788449][T12850] 
[  436.788453][T12850] Uninit was stored to memory at:
[  436.788468][T12850]  kmsan_internal_chain_origin+0xad/0x130
[  436.788482][T12850]  __msan_chain_origin+0x50/0x90
[  436.788498][T12850]  rmd256_transform+0x4328/0x4440
[  436.788513][T12850]  rmd256_update+0x227/0x4f0
[  436.788524][T12850]  crypto_shash_update+0x4e9/0x550
[  436.788535][T12850]  shash_async_update+0x113/0x1d0
[  436.788547][T12850]  hash_sendpage+0x8ef/0xdf0
[  436.788562][T12850]  sock_sendpage+0x1e1/0x2c0
[  436.788576][T12850]  pipe_to_sendpage+0x38c/0x4c0
[  436.788591][T12850]  __splice_from_pipe+0x565/0xf00
[  436.788604][T12850]  generic_splice_sendpage+0x1d5/0x2d0
[  436.788619][T12850]  direct_splice_actor+0x1fd/0x580
[  436.788633][T12850]  splice_direct_to_actor+0x6b2/0xf50
[  436.788647][T12850]  do_splice_direct+0x342/0x580
[  436.788659][T12850]  do_sendfile+0x101b/0x1d40
[  436.788672][T12850]  __se_sys_sendfile64+0x2bb/0x360
[  436.788685][T12850]  __x64_sys_sendfile64+0x56/0x70
[  436.788700][T12850]  do_syscall_64+0xb0/0x150
[  436.788715][T12850]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  436.788719][T12850] 
[  436.788724][T12850] Uninit was stored to memory at:
[  436.788739][T12850]  kmsan_internal_chain_origin+0xad/0x130
[  436.788753][T12850]  kmsan_memcpy_memmove_metadata+0x272/0x2e0
[  436.788767][T12850]  kmsan_memcpy_metadata+0xb/0x10
[  436.788780][T12850]  __msan_memcpy+0x43/0x50
[  436.788795][T12850]  rmd256_update+0x1fc/0x4f0
[  436.788807][T12850]  crypto_shash_update+0x4e9/0x550
[  436.788819][T12850]  shash_async_update+0x113/0x1d0
[  436.788830][T12850]  hash_sendpage+0x8ef/0xdf0
[  436.788846][T12850]  sock_sendpage+0x1e1/0x2c0
[  436.788860][T12850]  pipe_to_sendpage+0x38c/0x4c0
[  436.788874][T12850]  __splice_from_pipe+0x565/0xf00
[  436.788888][T12850]  generic_splice_sendpage+0x1d5/0x2d0
[  436.788903][T12850]  direct_splice_actor+0x1fd/0x580
[  436.788918][T12850]  splice_direct_to_actor+0x6b2/0xf50
[  436.788932][T12850]  do_splice_direct+0x342/0x580
[  436.788945][T12850]  do_sendfile+0x101b/0x1d40
[  436.788958][T12850]  __se_sys_sendfile64+0x2bb/0x360
[  436.788971][T12850]  __x64_sys_sendfile64+0x56/0x70
[  436.788986][T12850]  do_syscall_64+0xb0/0x150
[  436.789003][T12850]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  436.789006][T12850] 
[  436.789011][T12850] Uninit was created at:
[  436.789025][T12850]  kmsan_save_stack_with_flags+0x3c/0x90
[  436.789039][T12850]  kmsan_alloc_page+0xb9/0x180
[  436.789059][T12850]  __alloc_pages_nodemask+0x56a2/0x5dc0
[  436.789074][T12850]  alloc_pages_current+0x672/0x990
[  436.789087][T12850]  push_pipe+0x605/0xb70
[  436.789101][T12850]  iov_iter_get_pages_alloc+0x18a9/0x21c0
[  436.789116][T12850]  do_splice_to+0x4fc/0x14f0
[  436.789131][T12850]  splice_direct_to_actor+0x45c/0xf50
[  436.789147][T12850]  do_splice_direct+0x342/0x580
[  436.789159][T12850]  do_sendfile+0x101b/0x1d40
[  436.789173][T12850]  __se_sys_sendfile64+0x2bb/0x360
[  436.789187][T12850]  __x64_sys_sendfile64+0x56/0x70
[  436.789208][T12850]  do_syscall_64+0xb0/0x150
[  436.789223][T12850]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  437.889508][    C1] sd 0:0:1:0: [sg0] tag#2742 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  437.889618][    C1] sd 0:0:1:0: [sg0] tag#2742 CDB: Test Unit Ready
[  437.889736][    C1] sd 0:0:1:0: [sg0] tag#2742 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  437.889852][    C1] sd 0:0:1:0: [sg0] tag#2742 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  437.889959][    C1] sd 0:0:1:0: [sg0] tag#2742 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  437.890065][    C1] sd 0:0:1:0: [sg0] tag#2742 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  437.890173][    C1] sd 0:0:1:0: [sg0] tag#2742 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  437.890282][    C1] sd 0:0:1:0: [sg0] tag#2742 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  437.890394][    C1] sd 0:0:1:0: [sg0] tag#2742 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  437.890506][    C1] sd 0:0:1:0: [sg0] tag#2742 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  437.890619][    C1] sd 0:0:1:0: [sg0] tag#2742 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  437.890766][    C1] sd 0:0:1:0: [sg0] tag#2742 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  437.890878][    C1] sd 0:0:1:0: [sg0] tag#2742 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  437.890988][    C1] sd 0:0:1:0: [sg0] tag#2742 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  437.891090][    C1] sd 0:0:1:0: [sg0] tag#2742 CDB[c0]: 00 00 00 00 00 00 00 00
20:08:52 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x420000015001})
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @empty}})
write$tun(r0, &(0x7f0000000480)={@void, @val={0x2d, 0x0, 0x0, 0x0, 0x46}, @ipv6=@gre_packet={0x0, 0x6, "bc7d94", 0x4c, 0x2c, 0x0, @remote, @mcast2, {[@dstopts={0x2f}], {{0x0, 0x0, 0x1, 0x0, 0x3, 0x0, 0x0, 0x1, 0x6558}}}}}, 0xfdef)

20:08:52 executing program 2:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f000000c000)='ramfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000180)='./file0\x00')
r2 = creat(&(0x7f0000000380)='./bus\x00', 0x0)
r3 = open(&(0x7f00000003c0)='./bus\x00', 0x0, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x2, 0x12, r3, 0x0)
truncate(&(0x7f0000000080)='./bus\x00', 0x8b3e)
write$FUSE_ENTRY(r2, &(0x7f00000000c0)={0x90}, 0x90)
readv(r3, &(0x7f00000007c0)=[{&(0x7f0000002300)=""/4096, 0x1000}], 0x3b6)
mbind(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

20:08:52 executing program 3:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x40)
write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x1a2, &(0x7f0000000240)="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"}}], 0x1c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

20:08:52 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

20:08:52 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r1, r2, 0x0, 0x1000007ffff000)
r3 = epoll_create1(0x0)
ftruncate(r3, 0x200)

[  440.186195][   T33] audit: type=1804 audit(1595016532.369:6): pid=12884 uid=0 auid=0 ses=4 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/newroot/183/file0/bus" dev="ramfs" ino=43859 res=1
[  440.215484][T12887] not chained 690000 origins
[  440.219321][T12887] CPU: 0 PID: 12887 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0
[  440.219321][T12887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  440.219321][T12887] Call Trace:
[  440.219321][T12887]  dump_stack+0x1df/0x240
[  440.219321][T12887]  kmsan_internal_chain_origin+0x6f/0x130
[  440.219321][T12887]  ? is_module_text_address+0x4d/0x2a0
[  440.219321][T12887]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  440.219321][T12887]  ? __kernel_text_address+0x171/0x2d0
[  440.219321][T12887]  ? unwind_get_return_address+0x8c/0x130
[  440.219321][T12887]  ? entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  440.219321][T12887]  ? arch_stack_walk+0x2a2/0x3e0
[  440.219321][T12887]  ? stack_trace_save+0x1a0/0x1a0
[  440.219321][T12887]  ? kmsan_get_metadata+0x4f/0x180
[  440.219321][T12887]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  440.219321][T12887]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  440.219321][T12887]  ? stack_trace_save+0x123/0x1a0
[  440.219321][T12887]  ? kmsan_get_metadata+0x11d/0x180
[  440.219321][T12887]  __msan_chain_origin+0x50/0x90
[  440.219321][T12887]  rmd256_transform+0x4328/0x4440
[  440.219321][T12887]  ? vxlan_fill_info+0x1fff/0x2010
[  440.219321][T12887]  rmd256_update+0x343/0x4f0
[  440.219321][T12887]  ? rmd256_init+0x260/0x260
[  440.219321][T12887]  crypto_shash_update+0x4e9/0x550
[  440.219321][T12887]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  440.219321][T12887]  ? crypto_hash_walk_first+0x1fd/0x360
[  440.219321][T12887]  ? kmsan_get_metadata+0x4f/0x180
[  440.219321][T12887]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  440.369781][T12887]  shash_async_update+0x113/0x1d0
[  440.369781][T12887]  ? shash_async_init+0x1e0/0x1e0
[  440.369781][T12887]  hash_sendpage+0x8ef/0xdf0
[  440.369781][T12887]  ? hash_recvmsg+0xd30/0xd30
[  440.369781][T12887]  sock_sendpage+0x1e1/0x2c0
[  440.369781][T12887]  pipe_to_sendpage+0x38c/0x4c0
[  440.369781][T12887]  ? sock_fasync+0x250/0x250
[  440.369781][T12887]  __splice_from_pipe+0x565/0xf00
[  440.369781][T12887]  ? generic_splice_sendpage+0x2d0/0x2d0
[  440.369781][T12887]  generic_splice_sendpage+0x1d5/0x2d0
[  440.369781][T12887]  ? iter_file_splice_write+0x1800/0x1800
[  440.369781][T12887]  direct_splice_actor+0x1fd/0x580
[  440.369781][T12887]  ? kmsan_get_metadata+0x4f/0x180
[  440.369781][T12887]  splice_direct_to_actor+0x6b2/0xf50
[  440.369781][T12887]  ? do_splice_direct+0x580/0x580
[  440.369781][T12887]  do_splice_direct+0x342/0x580
[  440.369781][T12887]  do_sendfile+0x101b/0x1d40
[  440.369781][T12887]  __se_sys_sendfile64+0x2bb/0x360
[  440.369781][T12887]  ? kmsan_get_metadata+0x4f/0x180
[  440.369781][T12887]  __x64_sys_sendfile64+0x56/0x70
[  440.369781][T12887]  do_syscall_64+0xb0/0x150
[  440.369781][T12887]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  440.369781][T12887] RIP: 0033:0x45c1d9
[  440.369781][T12887] Code: Bad RIP value.
[  440.369781][T12887] RSP: 002b:00007f3a4d702c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  440.369781][T12887] RAX: ffffffffffffffda RBX: 0000000000025a00 RCX: 000000000045c1d9
[  440.369781][T12887] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004
[  440.369781][T12887] RBP: 000000000078bf48 R08: 0000000000000000 R09: 0000000000000000
[  440.369781][T12887] R10: 001000007ffff000 R11: 0000000000000246 R12: 000000000078bf0c
[  440.369781][T12887] R13: 0000000000c9fb6f R14: 00007f3a4d7039c0 R15: 000000000078bf0c
[  440.369781][T12887] Uninit was stored to memory at:
[  440.369781][T12887]  kmsan_internal_chain_origin+0xad/0x130
[  440.369781][T12887]  __msan_chain_origin+0x50/0x90
[  440.369781][T12887]  rmd256_transform+0x4328/0x4440
[  440.369781][T12887]  rmd256_update+0x343/0x4f0
[  440.369781][T12887]  crypto_shash_update+0x4e9/0x550
[  440.369781][T12887]  shash_async_update+0x113/0x1d0
[  440.369781][T12887]  hash_sendpage+0x8ef/0xdf0
[  440.369781][T12887]  sock_sendpage+0x1e1/0x2c0
[  440.369781][T12887]  pipe_to_sendpage+0x38c/0x4c0
[  440.369781][T12887]  __splice_from_pipe+0x565/0xf00
[  440.369781][T12887]  generic_splice_sendpage+0x1d5/0x2d0
[  440.369781][T12887]  direct_splice_actor+0x1fd/0x580
[  440.369781][T12887]  splice_direct_to_actor+0x6b2/0xf50
[  440.369781][T12887]  do_splice_direct+0x342/0x580
[  440.369781][T12887]  do_sendfile+0x101b/0x1d40
[  440.369781][T12887]  __se_sys_sendfile64+0x2bb/0x360
[  440.369781][T12887]  __x64_sys_sendfile64+0x56/0x70
[  440.369781][T12887]  do_syscall_64+0xb0/0x150
[  440.369781][T12887]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  440.369781][T12887] 
[  440.369781][T12887] Uninit was stored to memory at:
[  440.369781][T12887]  kmsan_internal_chain_origin+0xad/0x130
[  440.369781][T12887]  __msan_chain_origin+0x50/0x90
[  440.369781][T12887]  rmd256_transform+0x4328/0x4440
[  440.369781][T12887]  rmd256_update+0x343/0x4f0
[  440.369781][T12887]  crypto_shash_update+0x4e9/0x550
[  440.369781][T12887]  shash_async_update+0x113/0x1d0
[  440.369781][T12887]  hash_sendpage+0x8ef/0xdf0
[  440.369781][T12887]  sock_sendpage+0x1e1/0x2c0
[  440.369781][T12887]  pipe_to_sendpage+0x38c/0x4c0
[  440.369781][T12887]  __splice_from_pipe+0x565/0xf00
[  440.369781][T12887]  generic_splice_sendpage+0x1d5/0x2d0
[  440.369781][T12887]  direct_splice_actor+0x1fd/0x580
[  440.369781][T12887]  splice_direct_to_actor+0x6b2/0xf50
[  440.369781][T12887]  do_splice_direct+0x342/0x580
[  440.369781][T12887]  do_sendfile+0x101b/0x1d40
[  440.369781][T12887]  __se_sys_sendfile64+0x2bb/0x360
[  440.369781][T12887]  __x64_sys_sendfile64+0x56/0x70
[  440.369781][T12887]  do_syscall_64+0xb0/0x150
[  440.369781][T12887]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  440.369781][T12887] 
[  440.369781][T12887] Uninit was stored to memory at:
[  440.369781][T12887]  kmsan_internal_chain_origin+0xad/0x130
[  440.369781][T12887]  __msan_chain_origin+0x50/0x90
[  440.369781][T12887]  rmd256_transform+0x4328/0x4440
[  440.369781][T12887]  rmd256_update+0x343/0x4f0
[  440.369781][T12887]  crypto_shash_update+0x4e9/0x550
[  440.369781][T12887]  shash_async_update+0x113/0x1d0
[  440.369781][T12887]  hash_sendpage+0x8ef/0xdf0
[  440.369781][T12887]  sock_sendpage+0x1e1/0x2c0
[  440.369781][T12887]  pipe_to_sendpage+0x38c/0x4c0
[  440.369781][T12887]  __splice_from_pipe+0x565/0xf00
[  440.369781][T12887]  generic_splice_sendpage+0x1d5/0x2d0
[  440.369781][T12887]  direct_splice_actor+0x1fd/0x580
[  440.369781][T12887]  splice_direct_to_actor+0x6b2/0xf50
[  440.369781][T12887]  do_splice_direct+0x342/0x580
[  440.369781][T12887]  do_sendfile+0x101b/0x1d40
[  440.369781][T12887]  __se_sys_sendfile64+0x2bb/0x360
[  440.369781][T12887]  __x64_sys_sendfile64+0x56/0x70
[  440.369781][T12887]  do_syscall_64+0xb0/0x150
[  440.369781][T12887]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  440.369781][T12887] 
[  440.369781][T12887] Uninit was stored to memory at:
[  440.369781][T12887]  kmsan_internal_chain_origin+0xad/0x130
[  440.369781][T12887]  __msan_chain_origin+0x50/0x90
[  440.369781][T12887]  rmd256_transform+0x4328/0x4440
[  440.369781][T12887]  rmd256_update+0x343/0x4f0
[  440.369781][T12887]  crypto_shash_update+0x4e9/0x550
[  440.369781][T12887]  shash_async_update+0x113/0x1d0
[  440.369781][T12887]  hash_sendpage+0x8ef/0xdf0
[  440.369781][T12887]  sock_sendpage+0x1e1/0x2c0
[  440.369781][T12887]  pipe_to_sendpage+0x38c/0x4c0
[  440.369781][T12887]  __splice_from_pipe+0x565/0xf00
[  440.369781][T12887]  generic_splice_sendpage+0x1d5/0x2d0
[  440.369781][T12887]  direct_splice_actor+0x1fd/0x580
[  440.369781][T12887]  splice_direct_to_actor+0x6b2/0xf50
[  440.369781][T12887]  do_splice_direct+0x342/0x580
[  440.369781][T12887]  do_sendfile+0x101b/0x1d40
[  440.369781][T12887]  __se_sys_sendfile64+0x2bb/0x360
[  440.369781][T12887]  __x64_sys_sendfile64+0x56/0x70
[  440.369781][T12887]  do_syscall_64+0xb0/0x150
[  440.369781][T12887]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  440.369781][T12887] 
[  440.369781][T12887] Uninit was stored to memory at:
[  440.369781][T12887]  kmsan_internal_chain_origin+0xad/0x130
[  440.369781][T12887]  __msan_chain_origin+0x50/0x90
[  440.369781][T12887]  rmd256_transform+0x4328/0x4440
[  440.369781][T12887]  rmd256_update+0x343/0x4f0
[  440.369781][T12887]  crypto_shash_update+0x4e9/0x550
[  440.369781][T12887]  shash_async_update+0x113/0x1d0
[  440.369781][T12887]  hash_sendpage+0x8ef/0xdf0
[  440.369781][T12887]  sock_sendpage+0x1e1/0x2c0
[  440.369781][T12887]  pipe_to_sendpage+0x38c/0x4c0
[  440.369781][T12887]  __splice_from_pipe+0x565/0xf00
[  440.369781][T12887]  generic_splice_sendpage+0x1d5/0x2d0
[  440.369781][T12887]  direct_splice_actor+0x1fd/0x580
[  440.369781][T12887]  splice_direct_to_actor+0x6b2/0xf50
[  440.369781][T12887]  do_splice_direct+0x342/0x580
[  440.369781][T12887]  do_sendfile+0x101b/0x1d40
[  440.369781][T12887]  __se_sys_sendfile64+0x2bb/0x360
[  440.369781][T12887]  __x64_sys_sendfile64+0x56/0x70
[  440.369781][T12887]  do_syscall_64+0xb0/0x150
[  440.369781][T12887]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  440.369781][T12887] 
[  440.369781][T12887] Uninit was stored to memory at:
[  440.369781][T12887]  kmsan_internal_chain_origin+0xad/0x130
[  440.369781][T12887]  __msan_chain_origin+0x50/0x90
[  440.369781][T12887]  rmd256_transform+0x4328/0x4440
[  440.369781][T12887]  rmd256_update+0x227/0x4f0
[  440.369781][T12887]  crypto_shash_update+0x4e9/0x550
[  440.369781][T12887]  shash_async_update+0x113/0x1d0
[  440.369781][T12887]  hash_sendpage+0x8ef/0xdf0
[  440.369781][T12887]  sock_sendpage+0x1e1/0x2c0
[  440.369781][T12887]  pipe_to_sendpage+0x38c/0x4c0
[  440.369781][T12887]  __splice_from_pipe+0x565/0xf00
[  440.369781][T12887]  generic_splice_sendpage+0x1d5/0x2d0
[  440.369781][T12887]  direct_splice_actor+0x1fd/0x580
[  440.369781][T12887]  splice_direct_to_actor+0x6b2/0xf50
[  440.369781][T12887]  do_splice_direct+0x342/0x580
[  440.369781][T12887]  do_sendfile+0x101b/0x1d40
[  440.369781][T12887]  __se_sys_sendfile64+0x2bb/0x360
[  440.369781][T12887]  __x64_sys_sendfile64+0x56/0x70
[  440.369781][T12887]  do_syscall_64+0xb0/0x150
[  440.369781][T12887]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  440.369781][T12887] 
[  440.369781][T12887] Uninit was stored to memory at:
[  440.369781][T12887]  kmsan_internal_chain_origin+0xad/0x130
[  440.369781][T12887]  kmsan_memcpy_memmove_metadata+0x272/0x2e0
[  440.369781][T12887]  kmsan_memcpy_metadata+0xb/0x10
[  440.369781][T12887]  __msan_memcpy+0x43/0x50
[  440.369781][T12887]  rmd256_update+0x1fc/0x4f0
[  440.369781][T12887]  crypto_shash_update+0x4e9/0x550
[  440.369781][T12887]  shash_async_update+0x113/0x1d0
[  440.369781][T12887]  hash_sendpage+0x8ef/0xdf0
[  440.369781][T12887]  sock_sendpage+0x1e1/0x2c0
[  440.369781][T12887]  pipe_to_sendpage+0x38c/0x4c0
[  440.369781][T12887]  __splice_from_pipe+0x565/0xf00
[  440.369781][T12887]  generic_splice_sendpage+0x1d5/0x2d0
[  440.369781][T12887]  direct_splice_actor+0x1fd/0x580
[  440.369781][T12887]  splice_direct_to_actor+0x6b2/0xf50
[  440.369781][T12887]  do_splice_direct+0x342/0x580
[  440.369781][T12887]  do_sendfile+0x101b/0x1d40
[  440.369781][T12887]  __se_sys_sendfile64+0x2bb/0x360
[  440.369781][T12887]  __x64_sys_sendfile64+0x56/0x70
[  440.369781][T12887]  do_syscall_64+0xb0/0x150
[  440.369781][T12887]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  440.369781][T12887] 
[  440.369781][T12887] Uninit was created at:
[  440.369781][T12887]  kmsan_save_stack_with_flags+0x3c/0x90
[  440.369781][T12887]  kmsan_alloc_page+0xb9/0x180
[  440.369781][T12887]  __alloc_pages_nodemask+0x56a2/0x5dc0
[  440.369781][T12887]  alloc_pages_current+0x672/0x990
[  440.369781][T12887]  push_pipe+0x605/0xb70
[  440.369781][T12887]  iov_iter_get_pages_alloc+0x18a9/0x21c0
[  440.369781][T12887]  do_splice_to+0x4fc/0x14f0
[  440.369781][T12887]  splice_direct_to_actor+0x45c/0xf50
[  440.369781][T12887]  do_splice_direct+0x342/0x580
[  440.369781][T12887]  do_sendfile+0x101b/0x1d40
[  440.369781][T12887]  __se_sys_sendfile64+0x2bb/0x360
[  440.369781][T12887]  __x64_sys_sendfile64+0x56/0x70
[  440.369781][T12887]  do_syscall_64+0xb0/0x150
20:08:53 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000100)=0x283, 0x4)
bind$inet(r0, &(0x7f0000000300)={0x2, 0x200000000004e23, @multicast1}, 0x10)
sendto$inet(r0, 0x0, 0xffffff23, 0x200007fd, &(0x7f00000008c0)={0x2, 0x4e23, @local}, 0x10)
recvmsg(r0, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)
write$binfmt_elf64(r0, &(0x7f00000000c0)=ANY=[], 0x100000530)

[  440.369781][T12887]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  441.406981][    C0] sd 0:0:1:0: [sg0] tag#2743 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  441.417701][    C0] sd 0:0:1:0: [sg0] tag#2743 CDB: Test Unit Ready
[  441.424509][    C0] sd 0:0:1:0: [sg0] tag#2743 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  441.434397][    C0] sd 0:0:1:0: [sg0] tag#2743 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  441.444298][    C0] sd 0:0:1:0: [sg0] tag#2743 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  441.451630][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  441.454206][    C0] sd 0:0:1:0: [sg0] tag#2743 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  441.472300][    C0] sd 0:0:1:0: [sg0] tag#2743 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  441.482231][    C0] sd 0:0:1:0: [sg0] tag#2743 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  441.492277][    C0] sd 0:0:1:0: [sg0] tag#2743 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  441.502221][    C0] sd 0:0:1:0: [sg0] tag#2743 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  441.512150][    C0] sd 0:0:1:0: [sg0] tag#2743 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  441.522046][    C0] sd 0:0:1:0: [sg0] tag#2743 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  441.531988][    C0] sd 0:0:1:0: [sg0] tag#2743 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  441.541928][    C0] sd 0:0:1:0: [sg0] tag#2743 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  441.551841][    C0] sd 0:0:1:0: [sg0] tag#2743 CDB[c0]: 00 00 00 00 00 00 00 00
[  441.556610][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  441.612429][   T33] audit: type=1804 audit(1595016533.769:7): pid=12884 uid=0 auid=0 ses=4 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/newroot/183/file0/file0/bus" dev="ramfs" ino=44843 res=1
20:08:54 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

20:08:54 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r1, r2, 0x0, 0x1000007fffefff)
ioctl$GIO_FONTX(r2, 0x4b6b, &(0x7f00000004c0)={0x60, 0x1b, &(0x7f00000000c0)})

[  441.951027][    C1] sd 0:0:1:0: [sg0] tag#2749 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  441.961937][    C1] sd 0:0:1:0: [sg0] tag#2749 CDB: Test Unit Ready
[  441.968565][    C1] sd 0:0:1:0: [sg0] tag#2749 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  441.978472][    C1] sd 0:0:1:0: [sg0] tag#2749 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  441.988297][    C1] sd 0:0:1:0: [sg0] tag#2749 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  441.998124][    C1] sd 0:0:1:0: [sg0] tag#2749 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  442.008001][    C1] sd 0:0:1:0: [sg0] tag#2749 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  442.017856][    C1] sd 0:0:1:0: [sg0] tag#2749 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  442.027874][    C1] sd 0:0:1:0: [sg0] tag#2749 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  442.029211][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  442.037701][    C1] sd 0:0:1:0: [sg0] tag#2749 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  442.055895][    C1] sd 0:0:1:0: [sg0] tag#2749 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  442.065725][    C1] sd 0:0:1:0: [sg0] tag#2749 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  442.075554][    C1] sd 0:0:1:0: [sg0] tag#2749 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  442.085398][    C1] sd 0:0:1:0: [sg0] tag#2749 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  442.095242][    C1] sd 0:0:1:0: [sg0] tag#2749 CDB[c0]: 00 00 00 00 00 00 00 00
[  442.374232][T12911] not chained 700000 origins
[  442.378855][T12911] CPU: 0 PID: 12911 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0
[  442.379273][T12911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  442.379273][T12911] Call Trace:
[  442.379273][T12911]  dump_stack+0x1df/0x240
[  442.379273][T12911]  kmsan_internal_chain_origin+0x6f/0x130
[  442.411748][T12911]  ? is_module_text_address+0x4d/0x2a0
[  442.411748][T12911]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  442.411748][T12911]  ? __kernel_text_address+0x171/0x2d0
[  442.411748][T12911]  ? unwind_get_return_address+0x8c/0x130
[  442.411748][T12911]  ? entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  442.411748][T12911]  ? arch_stack_walk+0x2a2/0x3e0
[  442.411748][T12911]  ? stack_trace_save+0x1a0/0x1a0
[  442.411748][T12911]  ? kmsan_get_metadata+0x4f/0x180
[  442.411748][T12911]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  442.411748][T12911]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  442.471033][T12911]  ? stack_trace_save+0x123/0x1a0
[  442.471033][T12911]  ? kmsan_get_metadata+0x11d/0x180
[  442.471033][T12911]  __msan_chain_origin+0x50/0x90
[  442.471033][T12911]  rmd256_transform+0x4328/0x4440
[  442.471033][T12911]  rmd256_update+0x343/0x4f0
[  442.471033][T12911]  ? rmd256_init+0x260/0x260
[  442.471033][T12911]  crypto_shash_update+0x4e9/0x550
[  442.471033][T12911]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  442.509510][T12911]  ? crypto_hash_walk_first+0x1fd/0x360
[  442.509510][T12911]  ? kmsan_get_metadata+0x4f/0x180
[  442.509510][T12911]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  442.509510][T12911]  shash_async_update+0x113/0x1d0
[  442.509510][T12911]  ? shash_async_init+0x1e0/0x1e0
[  442.509510][T12911]  hash_sendpage+0x8ef/0xdf0
[  442.509510][T12911]  ? hash_recvmsg+0xd30/0xd30
[  442.509510][T12911]  sock_sendpage+0x1e1/0x2c0
[  442.509510][T12911]  pipe_to_sendpage+0x38c/0x4c0
[  442.509510][T12911]  ? sock_fasync+0x250/0x250
[  442.509510][T12911]  __splice_from_pipe+0x565/0xf00
[  442.509510][T12911]  ? generic_splice_sendpage+0x2d0/0x2d0
[  442.509510][T12911]  generic_splice_sendpage+0x1d5/0x2d0
[  442.509510][T12911]  ? iter_file_splice_write+0x1800/0x1800
[  442.509510][T12911]  direct_splice_actor+0x1fd/0x580
[  442.509510][T12911]  ? kmsan_get_metadata+0x4f/0x180
[  442.509510][T12911]  splice_direct_to_actor+0x6b2/0xf50
[  442.509510][T12911]  ? do_splice_direct+0x580/0x580
[  442.509510][T12911]  do_splice_direct+0x342/0x580
[  442.509510][T12911]  do_sendfile+0x101b/0x1d40
[  442.509510][T12911]  __se_sys_sendfile64+0x2bb/0x360
[  442.509510][T12911]  ? kmsan_get_metadata+0x4f/0x180
[  442.509510][T12911]  __x64_sys_sendfile64+0x56/0x70
[  442.509510][T12911]  do_syscall_64+0xb0/0x150
[  442.509510][T12911]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  442.509510][T12911] RIP: 0033:0x45c1d9
[  442.509510][T12911] Code: Bad RIP value.
[  442.509510][T12911] RSP: 002b:00007f42d54efc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  442.509510][T12911] RAX: ffffffffffffffda RBX: 0000000000025a00 RCX: 000000000045c1d9
[  442.509510][T12911] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006
[  442.509510][T12911] RBP: 000000000078bf48 R08: 0000000000000000 R09: 0000000000000000
[  442.509510][T12911] R10: 001000007ffff000 R11: 0000000000000246 R12: 000000000078bf0c
[  442.509510][T12911] R13: 0000000000c9fb6f R14: 00007f42d54f09c0 R15: 000000000078bf0c
[  442.509510][T12911] Uninit was stored to memory at:
[  442.509510][T12911]  kmsan_internal_chain_origin+0xad/0x130
[  442.509510][T12911]  __msan_chain_origin+0x50/0x90
[  442.509510][T12911]  rmd256_transform+0x4328/0x4440
[  442.509510][T12911]  rmd256_update+0x343/0x4f0
[  442.509510][T12911]  crypto_shash_update+0x4e9/0x550
[  442.509510][T12911]  shash_async_update+0x113/0x1d0
[  442.509510][T12911]  hash_sendpage+0x8ef/0xdf0
[  442.509510][T12911]  sock_sendpage+0x1e1/0x2c0
[  442.509510][T12911]  pipe_to_sendpage+0x38c/0x4c0
[  442.509510][T12911]  __splice_from_pipe+0x565/0xf00
[  442.509510][T12911]  generic_splice_sendpage+0x1d5/0x2d0
[  442.509510][T12911]  direct_splice_actor+0x1fd/0x580
[  442.509510][T12911]  splice_direct_to_actor+0x6b2/0xf50
[  442.509510][T12911]  do_splice_direct+0x342/0x580
[  442.509510][T12911]  do_sendfile+0x101b/0x1d40
[  442.509510][T12911]  __se_sys_sendfile64+0x2bb/0x360
[  442.509510][T12911]  __x64_sys_sendfile64+0x56/0x70
[  442.509510][T12911]  do_syscall_64+0xb0/0x150
[  442.509510][T12911]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  442.509510][T12911] 
[  442.509510][T12911] Uninit was stored to memory at:
[  442.509510][T12911]  kmsan_internal_chain_origin+0xad/0x130
[  442.509510][T12911]  __msan_chain_origin+0x50/0x90
[  442.509510][T12911]  rmd256_transform+0x4328/0x4440
[  442.509510][T12911]  rmd256_update+0x343/0x4f0
[  442.509510][T12911]  crypto_shash_update+0x4e9/0x550
[  442.509510][T12911]  shash_async_update+0x113/0x1d0
[  442.509510][T12911]  hash_sendpage+0x8ef/0xdf0
[  442.509510][T12911]  sock_sendpage+0x1e1/0x2c0
[  442.509510][T12911]  pipe_to_sendpage+0x38c/0x4c0
[  442.509510][T12911]  __splice_from_pipe+0x565/0xf00
[  442.509510][T12911]  generic_splice_sendpage+0x1d5/0x2d0
[  442.509510][T12911]  direct_splice_actor+0x1fd/0x580
[  442.509510][T12911]  splice_direct_to_actor+0x6b2/0xf50
[  442.509510][T12911]  do_splice_direct+0x342/0x580
[  442.509510][T12911]  do_sendfile+0x101b/0x1d40
[  442.509510][T12911]  __se_sys_sendfile64+0x2bb/0x360
[  442.509510][T12911]  __x64_sys_sendfile64+0x56/0x70
[  442.509510][T12911]  do_syscall_64+0xb0/0x150
[  442.509510][T12911]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  442.509510][T12911] 
[  442.509510][T12911] Uninit was stored to memory at:
[  442.509510][T12911]  kmsan_internal_chain_origin+0xad/0x130
[  442.509510][T12911]  __msan_chain_origin+0x50/0x90
[  442.509510][T12911]  rmd256_transform+0x4328/0x4440
[  442.509510][T12911]  rmd256_update+0x343/0x4f0
[  442.509510][T12911]  crypto_shash_update+0x4e9/0x550
[  442.509510][T12911]  shash_async_update+0x113/0x1d0
[  442.509510][T12911]  hash_sendpage+0x8ef/0xdf0
[  442.509510][T12911]  sock_sendpage+0x1e1/0x2c0
[  442.509510][T12911]  pipe_to_sendpage+0x38c/0x4c0
[  442.509510][T12911]  __splice_from_pipe+0x565/0xf00
[  442.509510][T12911]  generic_splice_sendpage+0x1d5/0x2d0
[  442.509510][T12911]  direct_splice_actor+0x1fd/0x580
[  442.509510][T12911]  splice_direct_to_actor+0x6b2/0xf50
[  442.509510][T12911]  do_splice_direct+0x342/0x580
[  442.509510][T12911]  do_sendfile+0x101b/0x1d40
[  442.509510][T12911]  __se_sys_sendfile64+0x2bb/0x360
[  442.509510][T12911]  __x64_sys_sendfile64+0x56/0x70
[  442.509510][T12911]  do_syscall_64+0xb0/0x150
[  442.509510][T12911]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  442.509510][T12911] 
[  442.509510][T12911] Uninit was stored to memory at:
[  442.509510][T12911]  kmsan_internal_chain_origin+0xad/0x130
[  442.509510][T12911]  __msan_chain_origin+0x50/0x90
[  442.509510][T12911]  rmd256_transform+0x4328/0x4440
[  442.509510][T12911]  rmd256_update+0x343/0x4f0
[  442.509510][T12911]  crypto_shash_update+0x4e9/0x550
[  442.509510][T12911]  shash_async_update+0x113/0x1d0
[  442.509510][T12911]  hash_sendpage+0x8ef/0xdf0
[  442.509510][T12911]  sock_sendpage+0x1e1/0x2c0
[  442.509510][T12911]  pipe_to_sendpage+0x38c/0x4c0
[  442.509510][T12911]  __splice_from_pipe+0x565/0xf00
[  442.509510][T12911]  generic_splice_sendpage+0x1d5/0x2d0
[  442.509510][T12911]  direct_splice_actor+0x1fd/0x580
[  442.509510][T12911]  splice_direct_to_actor+0x6b2/0xf50
[  442.509510][T12911]  do_splice_direct+0x342/0x580
[  442.509510][T12911]  do_sendfile+0x101b/0x1d40
[  442.509510][T12911]  __se_sys_sendfile64+0x2bb/0x360
[  442.509510][T12911]  __x64_sys_sendfile64+0x56/0x70
[  442.509510][T12911]  do_syscall_64+0xb0/0x150
[  442.509510][T12911]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  442.509510][T12911] 
[  442.509510][T12911] Uninit was stored to memory at:
[  442.509510][T12911]  kmsan_internal_chain_origin+0xad/0x130
[  442.509510][T12911]  __msan_chain_origin+0x50/0x90
[  442.509510][T12911]  rmd256_transform+0x4328/0x4440
[  442.509510][T12911]  rmd256_update+0x343/0x4f0
[  442.509510][T12911]  crypto_shash_update+0x4e9/0x550
[  442.509510][T12911]  shash_async_update+0x113/0x1d0
[  442.509510][T12911]  hash_sendpage+0x8ef/0xdf0
[  442.509510][T12911]  sock_sendpage+0x1e1/0x2c0
[  442.509510][T12911]  pipe_to_sendpage+0x38c/0x4c0
[  442.509510][T12911]  __splice_from_pipe+0x565/0xf00
[  442.509510][T12911]  generic_splice_sendpage+0x1d5/0x2d0
[  442.509510][T12911]  direct_splice_actor+0x1fd/0x580
[  442.509510][T12911]  splice_direct_to_actor+0x6b2/0xf50
[  442.509510][T12911]  do_splice_direct+0x342/0x580
[  442.509510][T12911]  do_sendfile+0x101b/0x1d40
[  442.509510][T12911]  __se_sys_sendfile64+0x2bb/0x360
[  442.509510][T12911]  __x64_sys_sendfile64+0x56/0x70
[  442.509510][T12911]  do_syscall_64+0xb0/0x150
[  442.509510][T12911]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  442.509510][T12911] 
[  442.509510][T12911] Uninit was stored to memory at:
[  442.509510][T12911]  kmsan_internal_chain_origin+0xad/0x130
[  442.509510][T12911]  __msan_chain_origin+0x50/0x90
[  442.509510][T12911]  rmd256_transform+0x4328/0x4440
[  442.509510][T12911]  rmd256_update+0x227/0x4f0
[  442.509510][T12911]  crypto_shash_update+0x4e9/0x550
[  442.509510][T12911]  shash_async_update+0x113/0x1d0
[  442.509510][T12911]  hash_sendpage+0x8ef/0xdf0
[  442.509510][T12911]  sock_sendpage+0x1e1/0x2c0
[  442.509510][T12911]  pipe_to_sendpage+0x38c/0x4c0
[  442.509510][T12911]  __splice_from_pipe+0x565/0xf00
[  442.509510][T12911]  generic_splice_sendpage+0x1d5/0x2d0
[  442.509510][T12911]  direct_splice_actor+0x1fd/0x580
[  442.509510][T12911]  splice_direct_to_actor+0x6b2/0xf50
[  442.509510][T12911]  do_splice_direct+0x342/0x580
[  442.509510][T12911]  do_sendfile+0x101b/0x1d40
[  442.509510][T12911]  __se_sys_sendfile64+0x2bb/0x360
[  442.509510][T12911]  __x64_sys_sendfile64+0x56/0x70
[  442.509510][T12911]  do_syscall_64+0xb0/0x150
[  442.509510][T12911]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  442.509510][T12911] 
[  442.509510][T12911] Uninit was stored to memory at:
[  442.509510][T12911]  kmsan_internal_chain_origin+0xad/0x130
[  442.509510][T12911]  kmsan_memcpy_memmove_metadata+0x272/0x2e0
[  442.509510][T12911]  kmsan_memcpy_metadata+0xb/0x10
[  442.509510][T12911]  __msan_memcpy+0x43/0x50
[  442.509510][T12911]  rmd256_update+0x1fc/0x4f0
[  442.509510][T12911]  crypto_shash_update+0x4e9/0x550
[  442.509510][T12911]  shash_async_update+0x113/0x1d0
[  442.509510][T12911]  hash_sendpage+0x8ef/0xdf0
[  442.509510][T12911]  sock_sendpage+0x1e1/0x2c0
[  442.509510][T12911]  pipe_to_sendpage+0x38c/0x4c0
[  442.509510][T12911]  __splice_from_pipe+0x565/0xf00
[  442.509510][T12911]  generic_splice_sendpage+0x1d5/0x2d0
[  442.509510][T12911]  direct_splice_actor+0x1fd/0x580
[  442.509510][T12911]  splice_direct_to_actor+0x6b2/0xf50
[  442.509510][T12911]  do_splice_direct+0x342/0x580
[  442.509510][T12911]  do_sendfile+0x101b/0x1d40
[  442.509510][T12911]  __se_sys_sendfile64+0x2bb/0x360
[  442.509510][T12911]  __x64_sys_sendfile64+0x56/0x70
[  442.509510][T12911]  do_syscall_64+0xb0/0x150
[  442.509510][T12911]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  442.509510][T12911] 
[  442.509510][T12911] Uninit was created at:
[  442.509510][T12911]  kmsan_save_stack_with_flags+0x3c/0x90
[  442.509510][T12911]  kmsan_alloc_page+0xb9/0x180
[  442.509510][T12911]  __alloc_pages_nodemask+0x56a2/0x5dc0
[  442.509510][T12911]  alloc_pages_current+0x672/0x990
[  442.509510][T12911]  push_pipe+0x605/0xb70
[  442.509510][T12911]  iov_iter_get_pages_alloc+0x18a9/0x21c0
[  442.509510][T12911]  do_splice_to+0x4fc/0x14f0
[  442.509510][T12911]  splice_direct_to_actor+0x45c/0xf50
[  442.509510][T12911]  do_splice_direct+0x342/0x580
[  442.509510][T12911]  do_sendfile+0x101b/0x1d40
[  442.509510][T12911]  __se_sys_sendfile64+0x2bb/0x360
[  442.509510][T12911]  __x64_sys_sendfile64+0x56/0x70
[  442.509510][T12911]  do_syscall_64+0xb0/0x150
[  442.509510][T12911]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
20:08:55 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r1, r2, 0x0, 0x1000007ffff000)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000008c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="000426bd7000fedbdf250d000000080034", @ANYRES32=0x0, @ANYBLOB="e0f0fdcb69a067053b14d7a44ca9ff6dedc9d15f7745c5298ff283c1edd156d0beaa2059b57c0366b4ef51f4f58652ef0dbdde68cd9d7f6a7ddbcbe278a8"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2400c004)
r5 = openat$cgroup_ro(r3, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r5, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x24, r4, 0x712, 0x70bd26, 0x25dfdbff}, 0x24}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
r6 = socket$inet6_sctp(0xa, 0x5, 0x84)
r7 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r7, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r8=>0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r6, 0x84, 0x75, &(0x7f00000000c0)={r8}, &(0x7f0000000100)=0x8)
getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r5, 0x84, 0x75, &(0x7f00000000c0)={r8, 0xffffffc1}, &(0x7f0000000100)=0x8)

20:08:55 executing program 2:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f000000c000)='ramfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000180)='./file0\x00')
r2 = creat(&(0x7f0000000380)='./bus\x00', 0x0)
r3 = open(&(0x7f00000003c0)='./bus\x00', 0x0, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x2, 0x12, r3, 0x0)
truncate(&(0x7f0000000080)='./bus\x00', 0x8b3e)
write$FUSE_ENTRY(r2, &(0x7f00000000c0)={0x90}, 0x90)
readv(r3, &(0x7f00000007c0)=[{&(0x7f0000002300)=""/4096, 0x1000}], 0x3b6)
mbind(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

[  443.624154][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
20:08:55 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x420000015001})
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @empty}})
write$tun(r0, &(0x7f0000000480)={@void, @val={0x2d, 0x0, 0x0, 0x0, 0x46}, @ipv6=@gre_packet={0x0, 0x6, "bc7d94", 0x4c, 0x2c, 0x0, @remote, @mcast2, {[@dstopts={0x2f}], {{0x0, 0x0, 0x1, 0x0, 0x3, 0x0, 0x0, 0x1, 0x6558}}}}}, 0xfdef)

20:08:55 executing program 3:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x40)
write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x1a2, &(0x7f0000000240)="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"}}], 0x1c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

[  443.829538][   T33] audit: type=1804 audit(1595016536.009:8): pid=12927 uid=0 auid=0 ses=4 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/newroot/184/file0/bus" dev="ramfs" ino=43920 res=1
[  443.855680][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
20:08:56 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
openat$cgroup_ro(r1, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
r2 = creat(&(0x7f0000000100)='./file0\x00', 0x2)
ioctl$VIDIOC_S_AUDOUT(r2, 0x40345632, &(0x7f0000000180)={0x2, "ffcffcd30000000000000000000000000023be00000000000000d1a300", 0x1})
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/meminfo\x00', 0x0, 0x0)
r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000008c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="000426bd7000fedbdf250d000000080034", @ANYRES32=0x0, @ANYBLOB="e0f0fdcb69a067053bc1edd156d003002059b57c0366b4ef51f4f58652ef0dbdde68cd9d7f6a7ddbcbe278a800"/62], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2400c004)
r6 = openat$cgroup_ro(r4, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r6, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x24, r5, 0x712, 0x70bd26, 0x25dfdbff}, 0x24}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
epoll_ctl$EPOLL_CTL_DEL(r3, 0x2, r6)
r7 = accept4(r0, 0x0, 0x0, 0x0)
r8 = gettid()
ptrace$setopts(0x4206, r8, 0x0, 0x0)
tkill(r8, 0x40)
ptrace$setregs(0xd, r8, 0x0, &(0x7f0000000080))
r9 = syz_open_procfs(0x0, &(0x7f0000000200)='fdinfo/4\x00')
sendfile(r7, r9, 0x0, 0x1000007ffff000)

20:08:56 executing program 2:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f000000c000)='ramfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000180)='./file0\x00')
r2 = creat(&(0x7f0000000380)='./bus\x00', 0x0)
r3 = open(&(0x7f00000003c0)='./bus\x00', 0x0, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x2, 0x12, r3, 0x0)
truncate(&(0x7f0000000080)='./bus\x00', 0x8b3e)
write$FUSE_ENTRY(r2, &(0x7f00000000c0)={0x90}, 0x90)
readv(r3, &(0x7f00000007c0)=[{&(0x7f0000002300)=""/4096, 0x1000}], 0x3b6)
mbind(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

20:08:56 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = gettid()
ptrace$setopts(0x4206, r2, 0x0, 0x0)
tkill(r2, 0x40)
ptrace$setregs(0xd, r2, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r2, 0x0, 0x0)
r3 = syz_open_procfs(r2, &(0x7f00000000c0)='children\x00')
sendfile(r1, r3, 0x0, 0x1000007ffff000)

[  444.374176][   T33] audit: type=1804 audit(1595016536.559:9): pid=12941 uid=0 auid=0 ses=4 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/newroot/185/file0/bus" dev="ramfs" ino=43949 res=1
20:08:56 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000008c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="000426bd7000fedbdf250d000000080034", @ANYRES32=0x0, @ANYBLOB="e0f0fdcb69a067053b14d7a44ca9ff6dedc9d15f7745c5298ff283c1edd156d0beaa2059b57c0366b4ef51f4f58652ef0dbdde68cd9d7f6a7ddbcbe278a8"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2400c004)
r5 = openat$cgroup_ro(r3, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r5, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x24, r4, 0x712, 0x70bd26, 0x25dfdbff}, 0x24}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
bind$vsock_stream(r5, &(0x7f00000000c0)={0x28, 0x0, 0x2711}, 0x10)
sendfile(r1, r2, 0x0, 0x1000007ffff000)

[  445.140964][T12946] not chained 710000 origins
[  445.145592][T12946] CPU: 1 PID: 12946 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0
[  445.149249][T12946] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  445.149249][T12946] Call Trace:
[  445.149249][T12946]  dump_stack+0x1df/0x240
[  445.149249][T12946]  kmsan_internal_chain_origin+0x6f/0x130
[  445.149249][T12946]  ? is_module_text_address+0x4d/0x2a0
[  445.149249][T12946]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  445.149249][T12946]  ? __kernel_text_address+0x171/0x2d0
[  445.149249][T12946]  ? unwind_get_return_address+0x8c/0x130
[  445.149249][T12946]  ? entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  445.149249][T12946]  ? arch_stack_walk+0x2a2/0x3e0
[  445.149249][T12946]  ? stack_trace_save+0x1a0/0x1a0
[  445.149249][T12946]  ? kmsan_get_metadata+0x4f/0x180
[  445.149249][T12946]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  445.149249][T12946]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  445.229481][T12946]  ? stack_trace_save+0x123/0x1a0
[  445.229481][T12946]  ? kmsan_get_metadata+0x11d/0x180
[  445.229481][T12946]  __msan_chain_origin+0x50/0x90
[  445.229481][T12946]  rmd256_transform+0x4328/0x4440
[  445.229481][T12946]  rmd256_update+0x343/0x4f0
[  445.229481][T12946]  ? rmd256_init+0x260/0x260
[  445.229481][T12946]  crypto_shash_update+0x4e9/0x550
[  445.229481][T12946]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  445.229481][T12946]  ? crypto_hash_walk_first+0x1fd/0x360
[  445.229481][T12946]  ? kmsan_get_metadata+0x4f/0x180
[  445.284491][T12946]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  445.284491][T12946]  shash_async_update+0x113/0x1d0
[  445.284491][T12946]  ? shash_async_init+0x1e0/0x1e0
[  445.284491][T12946]  hash_sendpage+0x8ef/0xdf0
[  445.284491][T12946]  ? hash_recvmsg+0xd30/0xd30
[  445.284491][T12946]  sock_sendpage+0x1e1/0x2c0
[  445.284491][T12946]  pipe_to_sendpage+0x38c/0x4c0
[  445.284491][T12946]  ? sock_fasync+0x250/0x250
[  445.284491][T12946]  __splice_from_pipe+0x565/0xf00
[  445.326884][T12946]  ? generic_splice_sendpage+0x2d0/0x2d0
[  445.326884][T12946]  generic_splice_sendpage+0x1d5/0x2d0
[  445.326884][T12946]  ? iter_file_splice_write+0x1800/0x1800
[  445.326884][T12946]  direct_splice_actor+0x1fd/0x580
[  445.326884][T12946]  ? kmsan_get_metadata+0x4f/0x180
[  445.326884][T12946]  splice_direct_to_actor+0x6b2/0xf50
[  445.326884][T12946]  ? do_splice_direct+0x580/0x580
[  445.326884][T12946]  do_splice_direct+0x342/0x580
[  445.326884][T12946]  do_sendfile+0x101b/0x1d40
[  445.326884][T12946]  __se_sys_sendfile64+0x2bb/0x360
[  445.326884][T12946]  ? kmsan_get_metadata+0x4f/0x180
[  445.326884][T12946]  __x64_sys_sendfile64+0x56/0x70
[  445.326884][T12946]  do_syscall_64+0xb0/0x150
[  445.326884][T12946]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  445.399357][T12946] RIP: 0033:0x45c1d9
[  445.399357][T12946] Code: Bad RIP value.
[  445.399357][T12946] RSP: 002b:00007f3a4d702c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  445.399357][T12946] RAX: ffffffffffffffda RBX: 0000000000025a00 RCX: 000000000045c1d9
[  445.399357][T12946] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004
[  445.399357][T12946] RBP: 000000000078bf48 R08: 0000000000000000 R09: 0000000000000000
[  445.399357][T12946] R10: 001000007ffff000 R11: 0000000000000246 R12: 000000000078bf0c
[  445.399357][T12946] R13: 0000000000c9fb6f R14: 00007f3a4d7039c0 R15: 000000000078bf0c
[  445.399357][T12946] Uninit was stored to memory at:
[  445.399357][T12946]  kmsan_internal_chain_origin+0xad/0x130
[  445.399357][T12946]  __msan_chain_origin+0x50/0x90
[  445.469437][T12946]  rmd256_transform+0x4328/0x4440
[  445.469437][T12946]  rmd256_update+0x343/0x4f0
[  445.479561][T12946]  crypto_shash_update+0x4e9/0x550
[  445.479561][T12946]  shash_async_update+0x113/0x1d0
[  445.479561][T12946]  hash_sendpage+0x8ef/0xdf0
[  445.493987][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  445.479561][T12946]  sock_sendpage+0x1e1/0x2c0
[  445.479561][T12946]  pipe_to_sendpage+0x38c/0x4c0
[  445.479561][T12946]  __splice_from_pipe+0x565/0xf00
[  445.479561][T12946]  generic_splice_sendpage+0x1d5/0x2d0
[  445.479561][T12946]  direct_splice_actor+0x1fd/0x580
[  445.479561][T12946]  splice_direct_to_actor+0x6b2/0xf50
[  445.479561][T12946]  do_splice_direct+0x342/0x580
[  445.541473][T12946]  do_sendfile+0x101b/0x1d40
[  445.546110][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  445.541473][T12946]  __se_sys_sendfile64+0x2bb/0x360
[  445.541473][T12946]  __x64_sys_sendfile64+0x56/0x70
[  445.541473][T12946]  do_syscall_64+0xb0/0x150
[  445.541473][T12946]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  445.541473][T12946] 
[  445.541473][T12946] Uninit was stored to memory at:
[  445.541473][T12946]  kmsan_internal_chain_origin+0xad/0x130
[  445.565736][T12946]  __msan_chain_origin+0x50/0x90
[  445.565736][T12946]  rmd256_transform+0x4328/0x4440
[  445.565736][T12946]  rmd256_update+0x343/0x4f0
[  445.565736][T12946]  crypto_shash_update+0x4e9/0x550
[  445.565736][T12946]  shash_async_update+0x113/0x1d0
[  445.565736][T12946]  hash_sendpage+0x8ef/0xdf0
[  445.565736][T12946]  sock_sendpage+0x1e1/0x2c0
[  445.565736][T12946]  pipe_to_sendpage+0x38c/0x4c0
[  445.565736][T12946]  __splice_from_pipe+0x565/0xf00
[  445.565736][T12946]  generic_splice_sendpage+0x1d5/0x2d0
[  445.565736][T12946]  direct_splice_actor+0x1fd/0x580
[  445.565736][T12946]  splice_direct_to_actor+0x6b2/0xf50
[  445.565736][T12946]  do_splice_direct+0x342/0x580
[  445.649332][T12946]  do_sendfile+0x101b/0x1d40
[  445.649332][T12946]  __se_sys_sendfile64+0x2bb/0x360
[  445.659450][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  445.649332][T12946]  __x64_sys_sendfile64+0x56/0x70
[  445.649332][T12946]  do_syscall_64+0xb0/0x150
[  445.649332][T12946]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  445.649332][T12946] 
[  445.649332][T12946] Uninit was stored to memory at:
[  445.649332][T12946]  kmsan_internal_chain_origin+0xad/0x130
[  445.649332][T12946]  __msan_chain_origin+0x50/0x90
[  445.649332][T12946]  rmd256_transform+0x4328/0x4440
[  445.704749][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  445.649332][T12946]  rmd256_update+0x343/0x4f0
[  445.649332][T12946]  crypto_shash_update+0x4e9/0x550
[  445.649332][T12946]  shash_async_update+0x113/0x1d0
[  445.649332][T12946]  hash_sendpage+0x8ef/0xdf0
[  445.649332][T12946]  sock_sendpage+0x1e1/0x2c0
[  445.739480][T12946]  pipe_to_sendpage+0x38c/0x4c0
[  445.739480][T12946]  __splice_from_pipe+0x565/0xf00
[  445.739480][T12946]  generic_splice_sendpage+0x1d5/0x2d0
[  445.739480][T12946]  direct_splice_actor+0x1fd/0x580
[  445.739480][T12946]  splice_direct_to_actor+0x6b2/0xf50
[  445.739480][T12946]  do_splice_direct+0x342/0x580
[  445.739480][T12946]  do_sendfile+0x101b/0x1d40
[  445.739480][T12946]  __se_sys_sendfile64+0x2bb/0x360
[  445.739480][T12946]  __x64_sys_sendfile64+0x56/0x70
[  445.739480][T12946]  do_syscall_64+0xb0/0x150
[  445.739480][T12946]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  445.739480][T12946] 
[  445.739480][T12946] Uninit was stored to memory at:
[  445.739480][T12946]  kmsan_internal_chain_origin+0xad/0x130
[  445.739480][T12946]  __msan_chain_origin+0x50/0x90
[  445.739480][T12946]  rmd256_transform+0x4328/0x4440
[  445.739480][T12946]  rmd256_update+0x343/0x4f0
[  445.739480][T12946]  crypto_shash_update+0x4e9/0x550
[  445.739480][T12946]  shash_async_update+0x113/0x1d0
[  445.739480][T12946]  hash_sendpage+0x8ef/0xdf0
[  445.739480][T12946]  sock_sendpage+0x1e1/0x2c0
[  445.739480][T12946]  pipe_to_sendpage+0x38c/0x4c0
[  445.739480][T12946]  __splice_from_pipe+0x565/0xf00
[  445.739480][T12946]  generic_splice_sendpage+0x1d5/0x2d0
[  445.739480][T12946]  direct_splice_actor+0x1fd/0x580
[  445.739480][T12946]  splice_direct_to_actor+0x6b2/0xf50
[  445.739480][T12946]  do_splice_direct+0x342/0x580
[  445.739480][T12946]  do_sendfile+0x101b/0x1d40
[  445.739480][T12946]  __se_sys_sendfile64+0x2bb/0x360
[  445.739480][T12946]  __x64_sys_sendfile64+0x56/0x70
[  445.739480][T12946]  do_syscall_64+0xb0/0x150
[  445.739480][T12946]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  445.739480][T12946] 
[  445.739480][T12946] Uninit was stored to memory at:
[  445.739480][T12946]  kmsan_internal_chain_origin+0xad/0x130
[  445.739480][T12946]  __msan_chain_origin+0x50/0x90
[  445.739480][T12946]  rmd256_transform+0x4328/0x4440
[  445.739480][T12946]  rmd256_update+0x343/0x4f0
[  445.739480][T12946]  crypto_shash_update+0x4e9/0x550
[  445.739480][T12946]  shash_async_update+0x113/0x1d0
[  445.739480][T12946]  hash_sendpage+0x8ef/0xdf0
[  445.739480][T12946]  sock_sendpage+0x1e1/0x2c0
[  445.739480][T12946]  pipe_to_sendpage+0x38c/0x4c0
[  445.739480][T12946]  __splice_from_pipe+0x565/0xf00
[  445.739480][T12946]  generic_splice_sendpage+0x1d5/0x2d0
[  445.739480][T12946]  direct_splice_actor+0x1fd/0x580
[  445.739480][T12946]  splice_direct_to_actor+0x6b2/0xf50
[  445.739480][T12946]  do_splice_direct+0x342/0x580
[  445.739480][T12946]  do_sendfile+0x101b/0x1d40
[  445.739480][T12946]  __se_sys_sendfile64+0x2bb/0x360
[  445.739480][T12946]  __x64_sys_sendfile64+0x56/0x70
[  445.739480][T12946]  do_syscall_64+0xb0/0x150
[  445.739480][T12946]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  445.739480][T12946] 
[  445.739480][T12946] Uninit was stored to memory at:
[  445.739480][T12946]  kmsan_internal_chain_origin+0xad/0x130
[  445.739480][T12946]  __msan_chain_origin+0x50/0x90
[  445.739480][T12946]  rmd256_transform+0x4328/0x4440
[  445.739480][T12946]  rmd256_update+0x227/0x4f0
[  445.739480][T12946]  crypto_shash_update+0x4e9/0x550
[  445.739480][T12946]  shash_async_update+0x113/0x1d0
[  445.739480][T12946]  hash_sendpage+0x8ef/0xdf0
[  445.739480][T12946]  sock_sendpage+0x1e1/0x2c0
[  445.739480][T12946]  pipe_to_sendpage+0x38c/0x4c0
[  445.739480][T12946]  __splice_from_pipe+0x565/0xf00
[  445.739480][T12946]  generic_splice_sendpage+0x1d5/0x2d0
[  445.739480][T12946]  direct_splice_actor+0x1fd/0x580
[  445.739480][T12946]  splice_direct_to_actor+0x6b2/0xf50
[  445.739480][T12946]  do_splice_direct+0x342/0x580
[  445.739480][T12946]  do_sendfile+0x101b/0x1d40
[  445.739480][T12946]  __se_sys_sendfile64+0x2bb/0x360
[  445.739480][T12946]  __x64_sys_sendfile64+0x56/0x70
[  445.739480][T12946]  do_syscall_64+0xb0/0x150
[  445.739480][T12946]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  445.739480][T12946] 
[  445.739480][T12946] Uninit was stored to memory at:
[  445.739480][T12946]  kmsan_internal_chain_origin+0xad/0x130
[  445.739480][T12946]  kmsan_memcpy_memmove_metadata+0x272/0x2e0
[  445.739480][T12946]  kmsan_memcpy_metadata+0xb/0x10
[  445.739480][T12946]  __msan_memcpy+0x43/0x50
[  445.739480][T12946]  rmd256_update+0x1fc/0x4f0
[  445.739480][T12946]  crypto_shash_update+0x4e9/0x550
[  445.739480][T12946]  shash_async_update+0x113/0x1d0
[  445.739480][T12946]  hash_sendpage+0x8ef/0xdf0
[  445.739480][T12946]  sock_sendpage+0x1e1/0x2c0
[  445.739480][T12946]  pipe_to_sendpage+0x38c/0x4c0
[  445.739480][T12946]  __splice_from_pipe+0x565/0xf00
[  445.739480][T12946]  generic_splice_sendpage+0x1d5/0x2d0
[  445.739480][T12946]  direct_splice_actor+0x1fd/0x580
[  445.739480][T12946]  splice_direct_to_actor+0x6b2/0xf50
[  445.739480][T12946]  do_splice_direct+0x342/0x580
[  445.739480][T12946]  do_sendfile+0x101b/0x1d40
[  445.739480][T12946]  __se_sys_sendfile64+0x2bb/0x360
[  445.739480][T12946]  __x64_sys_sendfile64+0x56/0x70
[  445.739480][T12946]  do_syscall_64+0xb0/0x150
[  445.739480][T12946]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  445.739480][T12946] 
[  445.739480][T12946] Uninit was created at:
[  445.739480][T12946]  kmsan_save_stack_with_flags+0x3c/0x90
[  445.739480][T12946]  kmsan_alloc_page+0xb9/0x180
[  445.739480][T12946]  __alloc_pages_nodemask+0x56a2/0x5dc0
[  445.739480][T12946]  alloc_pages_current+0x672/0x990
[  445.739480][T12946]  push_pipe+0x605/0xb70
20:08:58 executing program 2:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f000000c000)='ramfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000180)='./file0\x00')
r2 = creat(&(0x7f0000000380)='./bus\x00', 0x0)
r3 = open(&(0x7f00000003c0)='./bus\x00', 0x0, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x2, 0x12, r3, 0x0)
truncate(&(0x7f0000000080)='./bus\x00', 0x8b3e)
write$FUSE_ENTRY(r2, &(0x7f00000000c0)={0x90}, 0x90)
readv(r3, &(0x7f00000007c0)=[{&(0x7f0000002300)=""/4096, 0x1000}], 0x3b6)
mbind(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

[  445.739480][T12946]  iov_iter_get_pages_alloc+0x18a9/0x21c0
[  445.739480][T12946]  do_splice_to+0x4fc/0x14f0
[  445.739480][T12946]  splice_direct_to_actor+0x45c/0xf50
[  445.739480][T12946]  do_splice_direct+0x342/0x580
[  445.739480][T12946]  do_sendfile+0x101b/0x1d40
[  445.739480][T12946]  __se_sys_sendfile64+0x2bb/0x360
[  445.739480][T12946]  __x64_sys_sendfile64+0x56/0x70
[  445.739480][T12946]  do_syscall_64+0xb0/0x150
[  445.739480][T12946]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  446.477414][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  446.495975][   T33] audit: type=1804 audit(1595016538.679:10): pid=12958 uid=0 auid=0 ses=4 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/newroot/186/file0/bus" dev="ramfs" ino=43994 res=1
20:08:58 executing program 5:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f000000c000)='ramfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000180)='./file0\x00')
r2 = creat(&(0x7f0000000380)='./bus\x00', 0x0)
r3 = open(&(0x7f00000003c0)='./bus\x00', 0x0, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x2, 0x12, r3, 0x0)
truncate(&(0x7f0000000080)='./bus\x00', 0x8b3e)
write$FUSE_ENTRY(r2, &(0x7f00000000c0)={0x90}, 0x90)
readv(r3, &(0x7f00000007c0)=[{&(0x7f0000002300)=""/4096, 0x1000}], 0x3b6)
mbind(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

20:08:59 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

20:08:59 executing program 4:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000005c0)=@updsa={0xfc, 0x1a, 0x1, 0x0, 0x0, {{@in6=@empty, @in6=@empty}, {@in6=@local, 0x0, 0x2b}, @in6=@loopback, {}, {}, {}, 0x0, 0x0, 0x2}, [@sec_ctx={0xc, 0x8, {0x8}}]}, 0xfc}}, 0x0)

20:08:59 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000008c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="000426bd7000fedbdf250d000000080034", @ANYRES32=0x0, @ANYBLOB="e0f0fdcb69a067053b14d7a44ca9ff6dedc9d15f7745c5298ff283c1edd156d0beaa2059b57c0366b4ef51f4f58652ef0dbdde68cd9d7f6a7ddbcbe278a8"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2400c004)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
r6 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r6, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r7=>0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r5, 0x84, 0x75, &(0x7f00000000c0)={r7}, &(0x7f0000000100)=0x8)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(r3, 0x84, 0x73, &(0x7f0000000180)={r7, 0x7, 0x0, 0x0, 0x9}, &(0x7f0000000200)=0x18)
r8 = openat$cgroup_ro(r3, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r8, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x24, r4, 0x712, 0x70bd26, 0x25dfdbff}, 0x24}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
setsockopt$ALG_SET_KEY(r8, 0x117, 0x1, &(0x7f00000000c0)="d3e6414089", 0x5)
sendfile(r1, r2, 0x0, 0x1000007ffff000)

20:08:59 executing program 2:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000cf6fe4)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f00000000c0)={0x0, 0x0, 0x30}, 0xc)
ftruncate(r2, 0x200004)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

[  446.881809][   T33] audit: type=1804 audit(1595016539.069:11): pid=12961 uid=0 auid=0 ses=4 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.5" name="/newroot/101/file0/bus" dev="ramfs" ino=44006 res=1
20:08:59 executing program 5:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f000000c000)='ramfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000180)='./file0\x00')
r2 = creat(&(0x7f0000000380)='./bus\x00', 0x0)
r3 = open(&(0x7f00000003c0)='./bus\x00', 0x0, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x2, 0x12, r3, 0x0)
truncate(&(0x7f0000000080)='./bus\x00', 0x8b3e)
write$FUSE_ENTRY(r2, &(0x7f00000000c0)={0x90}, 0x90)
readv(r3, &(0x7f00000007c0)=[{&(0x7f0000002300)=""/4096, 0x1000}], 0x3b6)
mbind(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

20:08:59 executing program 3:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x40)
write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x1a2, &(0x7f0000000240)="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"}}], 0x1c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

[  447.241094][    C1] sd 0:0:1:0: [sg0] tag#2698 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  447.251761][    C1] sd 0:0:1:0: [sg0] tag#2698 CDB: Test Unit Ready
[  447.258446][    C1] sd 0:0:1:0: [sg0] tag#2698 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  447.268399][    C1] sd 0:0:1:0: [sg0] tag#2698 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  447.278352][    C1] sd 0:0:1:0: [sg0] tag#2698 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  447.288366][    C1] sd 0:0:1:0: [sg0] tag#2698 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  447.298307][    C1] sd 0:0:1:0: [sg0] tag#2698 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  447.308270][    C1] sd 0:0:1:0: [sg0] tag#2698 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  447.318342][    C1] sd 0:0:1:0: [sg0] tag#2698 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  447.328309][    C1] sd 0:0:1:0: [sg0] tag#2698 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  447.335091][   T33] audit: type=1804 audit(1595016539.519:12): pid=12973 uid=0 auid=0 ses=4 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.5" name="/newroot/102/file0/bus" dev="ramfs" ino=44955 res=1
[  447.338233][    C1] sd 0:0:1:0: [sg0] tag#2698 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  447.368043][    C1] sd 0:0:1:0: [sg0] tag#2698 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  447.378054][    C1] sd 0:0:1:0: [sg0] tag#2698 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  447.387942][    C1] sd 0:0:1:0: [sg0] tag#2698 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  447.388791][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  447.397951][    C1] sd 0:0:1:0: [sg0] tag#2698 CDB[c0]: 00 00 00 00 00 00 00 00
20:08:59 executing program 2:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000cf6fe4)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f00000000c0)={0x0, 0x0, 0x30}, 0xc)
ftruncate(r2, 0x200004)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:59 executing program 4:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000005c0)=@updsa={0xfc, 0x1a, 0x1, 0x0, 0x0, {{@in6=@empty, @in6=@empty}, {@in6=@local, 0x0, 0x2b}, @in6=@loopback, {}, {}, {}, 0x0, 0x0, 0x2}, [@sec_ctx={0xc, 0x8, {0x8}}]}, 0xfc}}, 0x0)

20:08:59 executing program 2:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000cf6fe4)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f00000000c0)={0x0, 0x0, 0x30}, 0xc)
ftruncate(r2, 0x200004)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:59 executing program 5:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f000000c000)='ramfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000180)='./file0\x00')
r2 = creat(&(0x7f0000000380)='./bus\x00', 0x0)
r3 = open(&(0x7f00000003c0)='./bus\x00', 0x0, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x2, 0x12, r3, 0x0)
truncate(&(0x7f0000000080)='./bus\x00', 0x8b3e)
write$FUSE_ENTRY(r2, &(0x7f00000000c0)={0x90}, 0x90)
readv(r3, &(0x7f00000007c0)=[{&(0x7f0000002300)=""/4096, 0x1000}], 0x3b6)
mbind(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

20:08:59 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
getpid()
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000008c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="000426bd7000fedbdf250d000000080034", @ANYRES32=0x0, @ANYBLOB="e0f0fdcb69a067053b14d7a44ca9ff6dedc9d15f7745c5298ff283c1edd156d0beaa2059b57c0366b4ef51f4f58652ef0dbdde68cd9d7f6a7ddbcbe278a8"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2400c004)
r4 = openat$cgroup_ro(r2, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r4, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x24, r3, 0x712, 0x70bd26, 0x25dfdbff}, 0x24}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
r5 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt(r5, 0x800000010d, 0x2, &(0x7f0000000240)='\x00\x00\x00\x00\x00', 0x5)
getsockopt$inet_int(r5, 0x10d, 0x2, 0x0, &(0x7f0000000180)=0x2b)
connect$pppl2tp(r4, &(0x7f0000000100)=@pppol2tpv3in6={0x18, 0x1, {0x0, r5, 0x3, 0x1, 0x0, 0x3, {0xa, 0x4e22, 0xb9, @ipv4={[], [], @dev={0xac, 0x14, 0x14, 0x30}}, 0x4}}}, 0x3a)
setsockopt(r1, 0x800000010d, 0x2, &(0x7f0000000240)='\x00\x00\x00\x00\x00', 0x5)
getsockopt$inet_int(r1, 0x10d, 0x2, 0x0, &(0x7f0000000180)=0x2b)
write$FUSE_NOTIFY_RETRIEVE(0xffffffffffffffff, &(0x7f0000000200)={0x30, 0x5, 0x0, {0x0, 0x6, 0x401, 0xfffff2c6}}, 0x30)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_NAME_TYPE_CMD(r1, 0x8983, &(0x7f00000000c0)={0x6, 'veth1_to_hsr\x00', {0x7}, 0x7ff})
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r6 = accept4(r0, 0x0, 0x0, 0x0)
r7 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r6, r7, 0x0, 0x1000007ffff000)

[  447.859754][T12971] not chained 720000 origins
[  447.864376][T12971] CPU: 1 PID: 12971 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0
[  447.869251][T12971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  447.869251][T12971] Call Trace:
[  447.869251][T12971]  dump_stack+0x1df/0x240
[  447.869251][T12971]  kmsan_internal_chain_origin+0x6f/0x130
[  447.869251][T12971]  ? is_module_text_address+0x4d/0x2a0
[  447.869251][T12971]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  447.869251][T12971]  ? __kernel_text_address+0x171/0x2d0
[  447.869251][T12971]  ? unwind_get_return_address+0x8c/0x130
[  447.869251][T12971]  ? entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  447.869251][T12971]  ? arch_stack_walk+0x2a2/0x3e0
[  447.869251][T12971]  ? stack_trace_save+0x1a0/0x1a0
[  447.869251][T12971]  ? kmsan_get_metadata+0x4f/0x180
[  447.869251][T12971]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  447.869251][T12971]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  447.869251][T12971]  ? stack_trace_save+0x123/0x1a0
[  447.869251][T12971]  ? kmsan_get_metadata+0x11d/0x180
[  447.869251][T12971]  __msan_chain_origin+0x50/0x90
[  447.869251][T12971]  rmd256_transform+0x4328/0x4440
[  447.869251][T12971]  rmd256_update+0x343/0x4f0
[  447.869251][T12971]  ? rmd256_init+0x260/0x260
[  447.869251][T12971]  crypto_shash_update+0x4e9/0x550
[  447.869251][T12971]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  447.869251][T12971]  ? crypto_hash_walk_first+0x1fd/0x360
[  447.869251][T12971]  ? kmsan_get_metadata+0x4f/0x180
[  447.869251][T12971]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  447.869251][T12971]  shash_async_update+0x113/0x1d0
[  447.869251][T12971]  ? shash_async_init+0x1e0/0x1e0
[  447.869251][T12971]  hash_sendpage+0x8ef/0xdf0
[  447.869251][T12971]  ? hash_recvmsg+0xd30/0xd30
[  447.869251][T12971]  sock_sendpage+0x1e1/0x2c0
[  447.869251][T12971]  pipe_to_sendpage+0x38c/0x4c0
[  447.869251][T12971]  ? sock_fasync+0x250/0x250
[  447.869251][T12971]  __splice_from_pipe+0x565/0xf00
[  447.869251][T12971]  ? generic_splice_sendpage+0x2d0/0x2d0
[  447.869251][T12971]  generic_splice_sendpage+0x1d5/0x2d0
[  447.869251][T12971]  ? iter_file_splice_write+0x1800/0x1800
[  447.869251][T12971]  direct_splice_actor+0x1fd/0x580
[  447.869251][T12971]  ? kmsan_get_metadata+0x4f/0x180
[  447.869251][T12971]  splice_direct_to_actor+0x6b2/0xf50
[  447.869251][T12971]  ? do_splice_direct+0x580/0x580
[  447.869251][T12971]  do_splice_direct+0x342/0x580
[  447.869251][T12971]  do_sendfile+0x101b/0x1d40
[  447.869251][T12971]  __se_sys_sendfile64+0x2bb/0x360
[  447.869251][T12971]  ? kmsan_get_metadata+0x4f/0x180
[  447.869251][T12971]  __x64_sys_sendfile64+0x56/0x70
[  447.869251][T12971]  do_syscall_64+0xb0/0x150
[  447.869251][T12971]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  447.869251][T12971] RIP: 0033:0x45c1d9
[  447.869251][T12971] Code: Bad RIP value.
[  447.869251][T12971] RSP: 002b:00007f42d54efc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  447.869251][T12971] RAX: ffffffffffffffda RBX: 0000000000025a00 RCX: 000000000045c1d9
[  447.869251][T12971] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000007
[  447.869251][T12971] RBP: 000000000078bf48 R08: 0000000000000000 R09: 0000000000000000
[  447.869251][T12971] R10: 001000007ffff000 R11: 0000000000000246 R12: 000000000078bf0c
[  447.869251][T12971] R13: 0000000000c9fb6f R14: 00007f42d54f09c0 R15: 000000000078bf0c
[  447.869251][T12971] Uninit was stored to memory at:
[  447.869251][T12971]  kmsan_internal_chain_origin+0xad/0x130
[  447.869251][T12971]  __msan_chain_origin+0x50/0x90
[  447.869251][T12971]  rmd256_transform+0x4328/0x4440
[  447.869251][T12971]  rmd256_update+0x343/0x4f0
[  447.869251][T12971]  crypto_shash_update+0x4e9/0x550
[  447.869251][T12971]  shash_async_update+0x113/0x1d0
[  447.869251][T12971]  hash_sendpage+0x8ef/0xdf0
[  447.869251][T12971]  sock_sendpage+0x1e1/0x2c0
[  447.869251][T12971]  pipe_to_sendpage+0x38c/0x4c0
[  447.869251][T12971]  __splice_from_pipe+0x565/0xf00
[  447.869251][T12971]  generic_splice_sendpage+0x1d5/0x2d0
[  447.869251][T12971]  direct_splice_actor+0x1fd/0x580
[  447.869251][T12971]  splice_direct_to_actor+0x6b2/0xf50
[  447.869251][T12971]  do_splice_direct+0x342/0x580
[  447.869251][T12971]  do_sendfile+0x101b/0x1d40
[  447.869251][T12971]  __se_sys_sendfile64+0x2bb/0x360
[  447.869251][T12971]  __x64_sys_sendfile64+0x56/0x70
[  447.869251][T12971]  do_syscall_64+0xb0/0x150
[  447.869251][T12971]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  447.869251][T12971] 
[  447.869251][T12971] Uninit was stored to memory at:
[  447.869251][T12971]  kmsan_internal_chain_origin+0xad/0x130
[  447.869251][T12971]  __msan_chain_origin+0x50/0x90
[  447.869251][T12971]  rmd256_transform+0x4328/0x4440
[  447.869251][T12971]  rmd256_update+0x343/0x4f0
[  447.869251][T12971]  crypto_shash_update+0x4e9/0x550
[  447.869251][T12971]  shash_async_update+0x113/0x1d0
[  447.869251][T12971]  hash_sendpage+0x8ef/0xdf0
[  447.869251][T12971]  sock_sendpage+0x1e1/0x2c0
[  447.869251][T12971]  pipe_to_sendpage+0x38c/0x4c0
[  447.869251][T12971]  __splice_from_pipe+0x565/0xf00
[  447.869251][T12971]  generic_splice_sendpage+0x1d5/0x2d0
[  447.869251][T12971]  direct_splice_actor+0x1fd/0x580
[  447.869251][T12971]  splice_direct_to_actor+0x6b2/0xf50
[  447.869251][T12971]  do_splice_direct+0x342/0x580
[  447.869251][T12971]  do_sendfile+0x101b/0x1d40
[  447.869251][T12971]  __se_sys_sendfile64+0x2bb/0x360
[  447.869251][T12971]  __x64_sys_sendfile64+0x56/0x70
[  447.869251][T12971]  do_syscall_64+0xb0/0x150
[  447.869251][T12971]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  447.869251][T12971] 
[  447.869251][T12971] Uninit was stored to memory at:
[  447.869251][T12971]  kmsan_internal_chain_origin+0xad/0x130
[  447.869251][T12971]  __msan_chain_origin+0x50/0x90
[  447.869251][T12971]  rmd256_transform+0x4328/0x4440
[  447.869251][T12971]  rmd256_update+0x343/0x4f0
[  447.869251][T12971]  crypto_shash_update+0x4e9/0x550
[  447.869251][T12971]  shash_async_update+0x113/0x1d0
[  447.869251][T12971]  hash_sendpage+0x8ef/0xdf0
[  447.869251][T12971]  sock_sendpage+0x1e1/0x2c0
[  447.869251][T12971]  pipe_to_sendpage+0x38c/0x4c0
[  447.869251][T12971]  __splice_from_pipe+0x565/0xf00
[  447.869251][T12971]  generic_splice_sendpage+0x1d5/0x2d0
[  447.869251][T12971]  direct_splice_actor+0x1fd/0x580
[  447.869251][T12971]  splice_direct_to_actor+0x6b2/0xf50
[  447.869251][T12971]  do_splice_direct+0x342/0x580
[  447.869251][T12971]  do_sendfile+0x101b/0x1d40
[  447.869251][T12971]  __se_sys_sendfile64+0x2bb/0x360
[  447.869251][T12971]  __x64_sys_sendfile64+0x56/0x70
[  447.869251][T12971]  do_syscall_64+0xb0/0x150
[  447.869251][T12971]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  447.869251][T12971] 
[  447.869251][T12971] Uninit was stored to memory at:
[  447.869251][T12971]  kmsan_internal_chain_origin+0xad/0x130
[  447.869251][T12971]  __msan_chain_origin+0x50/0x90
[  447.869251][T12971]  rmd256_transform+0x4328/0x4440
[  447.869251][T12971]  rmd256_update+0x343/0x4f0
[  447.869251][T12971]  crypto_shash_update+0x4e9/0x550
[  447.869251][T12971]  shash_async_update+0x113/0x1d0
[  447.869251][T12971]  hash_sendpage+0x8ef/0xdf0
[  447.869251][T12971]  sock_sendpage+0x1e1/0x2c0
[  447.869251][T12971]  pipe_to_sendpage+0x38c/0x4c0
[  447.869251][T12971]  __splice_from_pipe+0x565/0xf00
[  447.869251][T12971]  generic_splice_sendpage+0x1d5/0x2d0
[  447.869251][T12971]  direct_splice_actor+0x1fd/0x580
[  447.869251][T12971]  splice_direct_to_actor+0x6b2/0xf50
[  447.869251][T12971]  do_splice_direct+0x342/0x580
[  447.869251][T12971]  do_sendfile+0x101b/0x1d40
[  447.869251][T12971]  __se_sys_sendfile64+0x2bb/0x360
[  447.869251][T12971]  __x64_sys_sendfile64+0x56/0x70
[  447.869251][T12971]  do_syscall_64+0xb0/0x150
[  447.869251][T12971]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  447.869251][T12971] 
[  447.869251][T12971] Uninit was stored to memory at:
[  447.869251][T12971]  kmsan_internal_chain_origin+0xad/0x130
[  447.869251][T12971]  __msan_chain_origin+0x50/0x90
[  447.869251][T12971]  rmd256_transform+0x4328/0x4440
[  447.869251][T12971]  rmd256_update+0x343/0x4f0
[  447.869251][T12971]  crypto_shash_update+0x4e9/0x550
[  447.869251][T12971]  shash_async_update+0x113/0x1d0
[  447.869251][T12971]  hash_sendpage+0x8ef/0xdf0
[  447.869251][T12971]  sock_sendpage+0x1e1/0x2c0
[  447.869251][T12971]  pipe_to_sendpage+0x38c/0x4c0
[  447.869251][T12971]  __splice_from_pipe+0x565/0xf00
[  447.869251][T12971]  generic_splice_sendpage+0x1d5/0x2d0
[  447.869251][T12971]  direct_splice_actor+0x1fd/0x580
[  447.869251][T12971]  splice_direct_to_actor+0x6b2/0xf50
[  447.869251][T12971]  do_splice_direct+0x342/0x580
[  447.869251][T12971]  do_sendfile+0x101b/0x1d40
[  447.869251][T12971]  __se_sys_sendfile64+0x2bb/0x360
[  447.869251][T12971]  __x64_sys_sendfile64+0x56/0x70
[  447.869251][T12971]  do_syscall_64+0xb0/0x150
[  447.869251][T12971]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  447.869251][T12971] 
[  447.869251][T12971] Uninit was stored to memory at:
[  447.869251][T12971]  kmsan_internal_chain_origin+0xad/0x130
[  447.869251][T12971]  __msan_chain_origin+0x50/0x90
[  447.869251][T12971]  rmd256_transform+0x4328/0x4440
[  447.869251][T12971]  rmd256_update+0x227/0x4f0
[  447.869251][T12971]  crypto_shash_update+0x4e9/0x550
[  447.869251][T12971]  shash_async_update+0x113/0x1d0
[  447.869251][T12971]  hash_sendpage+0x8ef/0xdf0
[  447.869251][T12971]  sock_sendpage+0x1e1/0x2c0
[  447.869251][T12971]  pipe_to_sendpage+0x38c/0x4c0
[  447.869251][T12971]  __splice_from_pipe+0x565/0xf00
[  447.869251][T12971]  generic_splice_sendpage+0x1d5/0x2d0
[  447.869251][T12971]  direct_splice_actor+0x1fd/0x580
[  447.869251][T12971]  splice_direct_to_actor+0x6b2/0xf50
[  447.869251][T12971]  do_splice_direct+0x342/0x580
[  447.869251][T12971]  do_sendfile+0x101b/0x1d40
[  447.869251][T12971]  __se_sys_sendfile64+0x2bb/0x360
[  447.869251][T12971]  __x64_sys_sendfile64+0x56/0x70
[  447.869251][T12971]  do_syscall_64+0xb0/0x150
[  447.869251][T12971]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  447.869251][T12971] 
[  447.869251][T12971] Uninit was stored to memory at:
[  447.869251][T12971]  kmsan_internal_chain_origin+0xad/0x130
[  447.869251][T12971]  kmsan_memcpy_memmove_metadata+0x272/0x2e0
[  447.869251][T12971]  kmsan_memcpy_metadata+0xb/0x10
[  447.869251][T12971]  __msan_memcpy+0x43/0x50
[  447.869251][T12971]  rmd256_update+0x1fc/0x4f0
[  447.869251][T12971]  crypto_shash_update+0x4e9/0x550
[  447.869251][T12971]  shash_async_update+0x113/0x1d0
[  447.869251][T12971]  hash_sendpage+0x8ef/0xdf0
[  447.869251][T12971]  sock_sendpage+0x1e1/0x2c0
[  447.869251][T12971]  pipe_to_sendpage+0x38c/0x4c0
[  447.869251][T12971]  __splice_from_pipe+0x565/0xf00
[  447.869251][T12971]  generic_splice_sendpage+0x1d5/0x2d0
[  447.869251][T12971]  direct_splice_actor+0x1fd/0x580
[  447.869251][T12971]  splice_direct_to_actor+0x6b2/0xf50
[  447.869251][T12971]  do_splice_direct+0x342/0x580
[  447.869251][T12971]  do_sendfile+0x101b/0x1d40
[  447.869251][T12971]  __se_sys_sendfile64+0x2bb/0x360
[  447.869251][T12971]  __x64_sys_sendfile64+0x56/0x70
[  447.869251][T12971]  do_syscall_64+0xb0/0x150
[  447.869251][T12971]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  447.869251][T12971] 
[  447.869251][T12971] Uninit was created at:
[  447.869251][T12971]  kmsan_save_stack_with_flags+0x3c/0x90
[  447.869251][T12971]  kmsan_alloc_page+0xb9/0x180
[  447.869251][T12971]  __alloc_pages_nodemask+0x56a2/0x5dc0
[  447.869251][T12971]  alloc_pages_current+0x672/0x990
[  447.869251][T12971]  push_pipe+0x605/0xb70
[  447.869251][T12971]  iov_iter_get_pages_alloc+0x18a9/0x21c0
[  447.869251][T12971]  do_splice_to+0x4fc/0x14f0
[  447.869251][T12971]  splice_direct_to_actor+0x45c/0xf50
[  447.869251][T12971]  do_splice_direct+0x342/0x580
[  447.869251][T12971]  do_sendfile+0x101b/0x1d40
[  447.869251][T12971]  __se_sys_sendfile64+0x2bb/0x360
[  447.869251][T12971]  __x64_sys_sendfile64+0x56/0x70
[  447.869251][T12971]  do_syscall_64+0xb0/0x150
[  447.869251][T12971]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  449.024768][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  449.095659][   T33] audit: type=1804 audit(1595016541.279:13): pid=12990 uid=0 auid=0 ses=4 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.5" name="/newroot/103/file0/bus" dev="ramfs" ino=45130 res=1
20:09:01 executing program 4:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000005c0)=@updsa={0xfc, 0x1a, 0x1, 0x0, 0x0, {{@in6=@empty, @in6=@empty}, {@in6=@local, 0x0, 0x2b}, @in6=@loopback, {}, {}, {}, 0x0, 0x0, 0x2}, [@sec_ctx={0xc, 0x8, {0x8}}]}, 0xfc}}, 0x0)

[  449.138116][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
20:09:01 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

20:09:01 executing program 2:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000cf6fe4)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f00000000c0)={0x0, 0x0, 0x30}, 0xc)
ftruncate(r2, 0x200004)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:09:01 executing program 5:
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
semget(0x0, 0x0, 0x0)
write$binfmt_misc(r0, 0x0, 0xab)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
getdents(0xffffffffffffffff, 0x0, 0x0)
dup(0xffffffffffffffff)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r2 = dup(r1)
write$UHID_INPUT(r2, &(0x7f0000001440)={0x8, {"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", 0x1000}}, 0xf52)

20:09:01 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x19)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r4, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)=@newqdisc={0x34, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb, 0x1, 'taprio\x00'}, {0x4}}]}, 0x34}}, 0x0)
r5 = socket(0x10, 0x3, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
r7 = socket(0x10, 0x803, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x19)
sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r8, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f00000007c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)=@newqdisc={0x34, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb, 0x1, 'taprio\x00'}, {0x4}}]}, 0x34}}, 0x0)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000240)={&(0x7f0000000140)={0xcc, 0x0, 0x100, 0x70bd26, 0x25dfdbfc, {}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @rand_addr=0x64010100}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x6}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x1}, @MPTCP_PM_ATTR_ADDR={0x54, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @loopback}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e22}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e23}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @initdev={0xac, 0x1e, 0x1, 0x0}}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @initdev={0xac, 0x1e, 0x0, 0x0}}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @local}]}, @MPTCP_PM_ATTR_ADDR={0x40, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @mcast1}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r4}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x32}}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r8}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @empty}]}]}, 0xcc}, 0x1, 0x0, 0x0, 0x40880}, 0x40)
r9 = accept4(r0, 0x0, 0x0, 0x0)
r10 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r9, r10, 0x0, 0x1000007ffff000)

[  449.539084][T12996] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'.
[  449.541112][    C1] sd 0:0:1:0: [sg0] tag#2699 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  449.559013][    C1] sd 0:0:1:0: [sg0] tag#2699 CDB: Test Unit Ready
[  449.565724][    C1] sd 0:0:1:0: [sg0] tag#2699 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  449.575550][    C1] sd 0:0:1:0: [sg0] tag#2699 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  449.585504][    C1] sd 0:0:1:0: [sg0] tag#2699 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  449.595347][    C1] sd 0:0:1:0: [sg0] tag#2699 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  449.605194][    C1] sd 0:0:1:0: [sg0] tag#2699 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  449.615138][    C1] sd 0:0:1:0: [sg0] tag#2699 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  449.616681][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  449.624970][    C1] sd 0:0:1:0: [sg0] tag#2699 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  449.625077][    C1] sd 0:0:1:0: [sg0] tag#2699 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  449.653081][    C1] sd 0:0:1:0: [sg0] tag#2699 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  449.661488][T13005] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'.
[  449.662936][    C1] sd 0:0:1:0: [sg0] tag#2699 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  449.682196][    C1] sd 0:0:1:0: [sg0] tag#2699 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  449.692034][    C1] sd 0:0:1:0: [sg0] tag#2699 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  449.701873][    C1] sd 0:0:1:0: [sg0] tag#2699 CDB[c0]: 00 00 00 00 00 00 00 00
[  449.893216][T13009] not chained 730000 origins
20:09:02 executing program 4:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000005c0)=@updsa={0xfc, 0x1a, 0x1, 0x0, 0x0, {{@in6=@empty, @in6=@empty}, {@in6=@local, 0x0, 0x2b}, @in6=@loopback, {}, {}, {}, 0x0, 0x0, 0x2}, [@sec_ctx={0xc, 0x8, {0x8}}]}, 0xfc}}, 0x0)

[  449.893237][T13009] CPU: 1 PID: 13009 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0
[  449.893245][T13009] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  449.893251][T13009] Call Trace:
[  449.893278][T13009]  dump_stack+0x1df/0x240
[  449.893302][T13009]  kmsan_internal_chain_origin+0x6f/0x130
[  449.893325][T13009]  ? is_module_text_address+0x4d/0x2a0
[  449.893344][T13009]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  449.893368][T13009]  ? __kernel_text_address+0x171/0x2d0
[  449.893388][T13009]  ? unwind_get_return_address+0x8c/0x130
[  449.893410][T13009]  ? entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  449.893430][T13009]  ? arch_stack_walk+0x2a2/0x3e0
[  449.893448][T13009]  ? stack_trace_save+0x1a0/0x1a0
[  449.893470][T13009]  ? kmsan_get_metadata+0x4f/0x180
[  449.893488][T13009]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  449.893507][T13009]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  449.893524][T13009]  ? stack_trace_save+0x123/0x1a0
[  449.893542][T13009]  ? kmsan_get_metadata+0x11d/0x180
[  449.893560][T13009]  __msan_chain_origin+0x50/0x90
[  449.893582][T13009]  rmd256_transform+0x4328/0x4440
[  449.893649][T13009]  rmd256_update+0x343/0x4f0
[  449.893676][T13009]  ? rmd256_init+0x260/0x260
[  449.893693][T13009]  crypto_shash_update+0x4e9/0x550
[  449.893710][T13009]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  449.893742][T13009]  ? crypto_hash_walk_first+0x1fd/0x360
[  449.893758][T13009]  ? kmsan_get_metadata+0x4f/0x180
20:09:02 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='setgroups\x00')
r2 = dup2(r0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
clone(0x3a3dd4008400af01, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = socket$inet(0x2, 0x80001, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x4000000000000, 0x40, &(0x7f00000003c0)=@raw={'raw\x00', 0x8, 0x3, 0x2b8, 0x140, 0x140, 0x140, 0x140, 0x0, 0x220, 0x1d8, 0x1d8, 0x220, 0x1d8, 0x3, 0x0, {[{{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @rand_addr, 0x0, 0x0, 'erspan0\x00', 'veth0_to_team\x00'}, 0x0, 0xd8, 0x140, 0x0, {}, [@common=@ttl={{0x28, 'ttl\x00'}}, @common=@set={{0x40, 'set\x00'}, {{0x0, [0x4, 0x6, 0x4]}}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'syz1\x00', 'syz1\x00'}}}, {{@uncond, 0x0, 0xc0, 0xe0, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@icmp={{0x28, 'icmp\x00'}, {0x0, "94a5"}}]}, @unspec=@NOTRACK={0x20, 'NOTRACK\x00'}}], {{[], 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x318)

20:09:02 executing program 3:
r0 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_SW_PARAMS(r0, 0xc0884113, &(0x7f0000000180))

20:09:02 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
r4 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r5=>0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r3, 0x84, 0x75, &(0x7f00000000c0)={r5}, &(0x7f0000000100)=0x8)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, &(0x7f0000000100)={<r6=>r5, 0x0, 0x65d7}, &(0x7f0000000140)=0x8)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000180)={r6, 0x90, "f7601c6271046303a9548734c7a11f24890245660bf35ce5725046a73a100a47a5fb631b92560c3440f64a1dfd3ccc636721946b6e072d84316c8df469f6449c6f37063c965c86304be1366485f60711c7904b7569c5b13d7cd89a0ff6f6e0c80a5127b78a92f13fe998f529b3543be92941e332102268fe7a53016d4cd4b2ba7c5f6b4b39c8541012fe7ffd70e7df97"}, &(0x7f0000000240)=0x98)
setsockopt$inet_sctp6_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f00000000c0)={0x200, 0x2, 0x20, 0x1ff}, 0x8)
sendfile(r1, r2, 0x0, 0x1000007ffff000)

20:09:02 executing program 2:
r0 = add_key$user(&(0x7f00000001c0)='user\x00', &(0x7f0000000180)={'syz', 0x0}, &(0x7f00000002c0)="b7", 0x22e, 0xffffffffffffffff)
r1 = add_key$user(&(0x7f0000000000)='user\x00', &(0x7f0000000440)={'syz'}, &(0x7f00000000c0), 0x218, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r0, r1, r0}, 0x0, 0x0, 0x0)

20:09:02 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

[  449.893774][T13009]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  449.893789][T13009]  shash_async_update+0x113/0x1d0
[  449.893810][T13009]  ? shash_async_init+0x1e0/0x1e0
[  449.893826][T13009]  hash_sendpage+0x8ef/0xdf0
[  449.893850][T13009]  ? hash_recvmsg+0xd30/0xd30
[  449.893870][T13009]  sock_sendpage+0x1e1/0x2c0
[  449.893897][T13009]  pipe_to_sendpage+0x38c/0x4c0
[  449.893915][T13009]  ? sock_fasync+0x250/0x250
[  449.893943][T13009]  __splice_from_pipe+0x565/0xf00
[  449.893962][T13009]  ? generic_splice_sendpage+0x2d0/0x2d0
[  449.893997][T13009]  generic_splice_sendpage+0x1d5/0x2d0
20:09:03 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='setgroups\x00')
r2 = dup2(r0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
clone(0x3a3dd4008400af01, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = socket$inet(0x2, 0x80001, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x4000000000000, 0x40, &(0x7f00000003c0)=@raw={'raw\x00', 0x8, 0x3, 0x2b8, 0x140, 0x140, 0x140, 0x140, 0x0, 0x220, 0x1d8, 0x1d8, 0x220, 0x1d8, 0x3, 0x0, {[{{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @rand_addr, 0x0, 0x0, 'erspan0\x00', 'veth0_to_team\x00'}, 0x0, 0xd8, 0x140, 0x0, {}, [@common=@ttl={{0x28, 'ttl\x00'}}, @common=@set={{0x40, 'set\x00'}, {{0x0, [0x4, 0x6, 0x4]}}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'syz1\x00', 'syz1\x00'}}}, {{@uncond, 0x0, 0xc0, 0xe0, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@icmp={{0x28, 'icmp\x00'}, {0x0, "94a5"}}]}, @unspec=@NOTRACK={0x20, 'NOTRACK\x00'}}], {{[], 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x318)

[  449.894024][T13009]  ? iter_file_splice_write+0x1800/0x1800
[  449.894042][T13009]  direct_splice_actor+0x1fd/0x580
20:09:03 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
getrusage(0xffffffffffffffff, &(0x7f0000000400))

[  449.894065][T13009]  ? kmsan_get_metadata+0x4f/0x180
[  449.894087][T13009]  splice_direct_to_actor+0x6b2/0xf50
20:09:03 executing program 3:
r0 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_SW_PARAMS(r0, 0xc0884113, &(0x7f0000000180))

20:09:03 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
openat$cgroup_ro(r1, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
r2 = socket(0x10, 0x3, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x803, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x19)
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r5, @ANYBLOB='\x00\x00eth'], 0x48}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)=@newqdisc={0x34, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb, 0x1, 'taprio\x00'}, {0x4}}]}, 0x34}}, 0x0)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r1, 0x89f2, &(0x7f00000001c0)={'gre0\x00', &(0x7f00000006c0)={'gretap0\x00', r5, 0x8000, 0x700, 0x7, 0x1, {{0x1c, 0x4, 0x0, 0x8, 0x70, 0x68, 0x0, 0x80, 0x2f, 0x0, @broadcast, @multicast1, {[@cipso={0x86, 0x18, 0x3, [{0x1, 0x12, "02b19822930015031ea21a587fd93243"}]}, @end, @lsrr={0x83, 0x1f, 0x2e, [@rand_addr=0x64010102, @local, @private=0xa010101, @multicast1, @remote, @empty, @rand_addr=0x64010100]}, @generic={0x82, 0x6, "239d4b88"}, @cipso={0x86, 0x10, 0x3, [{0x0, 0x2}, {0x2, 0x8, "b7296c666ed5"}]}, @noop, @noop, @ssrr={0x89, 0xb, 0x49, [@loopback, @private=0xa010100]}]}}}}})
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r6 = accept4(r0, 0x0, 0x0, 0x0)
sendmsg$unix(r6, &(0x7f0000000680)={&(0x7f00000000c0)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000005c0)=[{&(0x7f0000000140)="8a187bfe2c640b9f4b691247affff7a1ef7ae1c916af283ec919270447eda0a1440edfaedcd93c1d42ac1d81d3680af3d4c861506f7ce4d255605f4a61330c080b4e3be289c5902e6b658991069070", 0x4f}, {&(0x7f00000001c0)}, {&(0x7f0000000200)="e5feabad244ce580ac6cdd93251fbd9d817aac1189b990af1f3362eaa952a2dc9cbd0a11fd1c782e61f5a031f1571d84abac649380104646bbfba643737a636f7a552ac7c25d42b325083b5271cfe861f58736b75a717c0eed9b9443163d2fb8f9f10d921656b96573e4a918ccb9ff5a0b83a02f7c079b470cf0a9fd49e3de39d0139813f045f2f57389950d22dc89b4822d96da99a89cc106b30909f15cb9eb1af44d3f0856931f4f2546183a7f2723b19f4d44f72ca330d92a8bf2bf1e", 0xbe}, {&(0x7f00000002c0)="79c31b6ee527a23ff9aff711c3ba5badf7ae6cd9caf579d3c29d4484139abface82911b790ae85cd9a6922291b22bb1d71fac474527c", 0x36}, {&(0x7f0000000300)="7251f95ae6d8fe5c1e2a02fa169277756bf28bd5200f08875858d23bc6b6e463a80c9bbd1fedcdabd7f52aabb794278430efe3ea8ac256558db868d26494e16400068e1eab72df388796ebaac42613c7193057fe61", 0x55}, {&(0x7f0000000380)="c17b4e98f448f93972dc89fa1202f2ede8521acb76df1296f01c78dddf4edc82f353f82249164ae534efbf07ca09a2b07e034a0f5ea87c4ce7f41a4720aa9d38342d7f5e4d207aa4f523018bd3ce50f1659d172f0423f151953f6d7653c1fde18598b5721c445dccfee128", 0x6b}, {&(0x7f0000000400)="ebbbf075fb81be", 0x7}, {&(0x7f0000000440)="c2801c727310da5fbaa74e7f0790a1b94cb1655e976d162a561ab813924989e5c11c42f4fa7956b180fb0572fbccabc9a43d66191a020c2a14c55d87350317e4df8bccf7874be49da7883c4aa9168a1964e5d454ecd03846517280d682b45685a8b6eb4a9af829ebed8412ab7f209e1b59f851345907a729abed18b23398a1e96f4f4270a771020da4ec207db055977adb4313d8bc47d39518e6c73419a1b4d7cc97fc4698937d9ffe710cab7b96137480996e1ab97b0ce794f16f7051aa0beb172547", 0xc3}, {&(0x7f0000000540)="b60644ff1491561aa322905a6e7eb69affc700f68ac2117228b5f667f3eaedc95686a9bf0e933ef2bf8595ab7d9c2e4cb20b749bee6fd88f2806e4ca9a288b828a8ceb6c7c97c9cb8619c00c64faac44247373abec40747b1937c66e8eef12199aac05efc355d499fc93eeb279fbe0156ea3f1895299", 0x76}], 0x9, 0x0, 0x0, 0x40040}, 0x8000)
r7 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r6, r7, 0x0, 0x1000007ffff000)

[  449.894104][T13009]  ? do_splice_direct+0x580/0x580
[  449.894140][T13009]  do_splice_direct+0x342/0x580
[  449.894171][T13009]  do_sendfile+0x101b/0x1d40
[  449.894216][T13009]  __se_sys_sendfile64+0x2bb/0x360
[  449.894235][T13009]  ? kmsan_get_metadata+0x4f/0x180
[  449.894256][T13009]  __x64_sys_sendfile64+0x56/0x70
[  449.894277][T13009]  do_syscall_64+0xb0/0x150
[  449.894301][T13009]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  449.894313][T13009] RIP: 0033:0x45c1d9
[  449.894318][T13009] Code: Bad RIP value.
[  449.894327][T13009] RSP: 002b:00007f3a4d6c0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  449.894343][T13009] RAX: ffffffffffffffda RBX: 0000000000025a00 RCX: 000000000045c1d9
[  449.894353][T13009] RDX: 0000000000000000 RSI: 000000000000000b RDI: 000000000000000a
[  449.894361][T13009] RBP: 000000000078c088 R08: 0000000000000000 R09: 0000000000000000
[  449.894372][T13009] R10: 001000007ffff000 R11: 0000000000000246 R12: 000000000078c04c
[  449.894382][T13009] R13: 0000000000c9fb6f R14: 00007f3a4d6c19c0 R15: 000000000078c04c
[  449.894399][T13009] Uninit was stored to memory at:
[  449.894416][T13009]  kmsan_internal_chain_origin+0xad/0x130
[  449.894430][T13009]  __msan_chain_origin+0x50/0x90
[  449.894445][T13009]  rmd256_transform+0x4328/0x4440
[  449.894461][T13009]  rmd256_update+0x343/0x4f0
[  449.894473][T13009]  crypto_shash_update+0x4e9/0x550
[  449.894486][T13009]  shash_async_update+0x113/0x1d0
[  449.894498][T13009]  hash_sendpage+0x8ef/0xdf0
[  449.894513][T13009]  sock_sendpage+0x1e1/0x2c0
[  449.894528][T13009]  pipe_to_sendpage+0x38c/0x4c0
[  449.894543][T13009]  __splice_from_pipe+0x565/0xf00
[  449.894559][T13009]  generic_splice_sendpage+0x1d5/0x2d0
[  449.894574][T13009]  direct_splice_actor+0x1fd/0x580
[  449.894589][T13009]  splice_direct_to_actor+0x6b2/0xf50
[  449.894604][T13009]  do_splice_direct+0x342/0x580
[  449.894618][T13009]  do_sendfile+0x101b/0x1d40
[  449.894631][T13009]  __se_sys_sendfile64+0x2bb/0x360
[  449.894644][T13009]  __x64_sys_sendfile64+0x56/0x70
[  449.894660][T13009]  do_syscall_64+0xb0/0x150
[  449.894676][T13009]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  449.894680][T13009] 
[  449.894685][T13009] Uninit was stored to memory at:
[  449.894699][T13009]  kmsan_internal_chain_origin+0xad/0x130
[  449.894712][T13009]  __msan_chain_origin+0x50/0x90
[  449.894727][T13009]  rmd256_transform+0x4328/0x4440
[  449.894742][T13009]  rmd256_update+0x343/0x4f0
[  449.894758][T13009]  crypto_shash_update+0x4e9/0x550
[  449.894771][T13009]  shash_async_update+0x113/0x1d0
[  449.894784][T13009]  hash_sendpage+0x8ef/0xdf0
[  449.894798][T13009]  sock_sendpage+0x1e1/0x2c0
[  449.894811][T13009]  pipe_to_sendpage+0x38c/0x4c0
[  449.894826][T13009]  __splice_from_pipe+0x565/0xf00
[  449.894841][T13009]  generic_splice_sendpage+0x1d5/0x2d0
[  449.894855][T13009]  direct_splice_actor+0x1fd/0x580
[  449.894870][T13009]  splice_direct_to_actor+0x6b2/0xf50
[  449.894884][T13009]  do_splice_direct+0x342/0x580
[  449.894896][T13009]  do_sendfile+0x101b/0x1d40
[  449.894909][T13009]  __se_sys_sendfile64+0x2bb/0x360
[  449.894922][T13009]  __x64_sys_sendfile64+0x56/0x70
[  449.894937][T13009]  do_syscall_64+0xb0/0x150
[  449.894954][T13009]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  449.894958][T13009] 
[  449.894962][T13009] Uninit was stored to memory at:
[  449.894976][T13009]  kmsan_internal_chain_origin+0xad/0x130
[  449.894990][T13009]  __msan_chain_origin+0x50/0x90
[  449.895006][T13009]  rmd256_transform+0x4328/0x4440
[  449.895021][T13009]  rmd256_update+0x343/0x4f0
[  449.895033][T13009]  crypto_shash_update+0x4e9/0x550
[  449.895046][T13009]  shash_async_update+0x113/0x1d0
[  449.895057][T13009]  hash_sendpage+0x8ef/0xdf0
[  449.895071][T13009]  sock_sendpage+0x1e1/0x2c0
[  449.895086][T13009]  pipe_to_sendpage+0x38c/0x4c0
[  449.895100][T13009]  __splice_from_pipe+0x565/0xf00
[  449.895115][T13009]  generic_splice_sendpage+0x1d5/0x2d0
[  449.895128][T13009]  direct_splice_actor+0x1fd/0x580
[  449.895143][T13009]  splice_direct_to_actor+0x6b2/0xf50
[  449.895157][T13009]  do_splice_direct+0x342/0x580
[  449.895170][T13009]  do_sendfile+0x101b/0x1d40
[  449.895189][T13009]  __se_sys_sendfile64+0x2bb/0x360
[  449.895204][T13009]  __x64_sys_sendfile64+0x56/0x70
[  449.895220][T13009]  do_syscall_64+0xb0/0x150
[  449.895237][T13009]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  449.895241][T13009] 
[  449.895246][T13009] Uninit was stored to memory at:
[  449.895266][T13009]  kmsan_internal_chain_origin+0xad/0x130
[  449.895278][T13009]  __msan_chain_origin+0x50/0x90
[  449.895293][T13009]  rmd256_transform+0x4328/0x4440
[  449.895308][T13009]  rmd256_update+0x343/0x4f0
[  449.895320][T13009]  crypto_shash_update+0x4e9/0x550
[  449.895332][T13009]  shash_async_update+0x113/0x1d0
[  449.895344][T13009]  hash_sendpage+0x8ef/0xdf0
[  449.895360][T13009]  sock_sendpage+0x1e1/0x2c0
[  449.895374][T13009]  pipe_to_sendpage+0x38c/0x4c0
[  449.895389][T13009]  __splice_from_pipe+0x565/0xf00
[  449.895404][T13009]  generic_splice_sendpage+0x1d5/0x2d0
[  449.895420][T13009]  direct_splice_actor+0x1fd/0x580
[  449.895434][T13009]  splice_direct_to_actor+0x6b2/0xf50
[  449.895449][T13009]  do_splice_direct+0x342/0x580
[  449.895462][T13009]  do_sendfile+0x101b/0x1d40
[  449.895475][T13009]  __se_sys_sendfile64+0x2bb/0x360
[  449.895488][T13009]  __x64_sys_sendfile64+0x56/0x70
[  449.895503][T13009]  do_syscall_64+0xb0/0x150
[  449.895520][T13009]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  449.895524][T13009] 
[  449.895529][T13009] Uninit was stored to memory at:
[  449.895543][T13009]  kmsan_internal_chain_origin+0xad/0x130
[  449.895558][T13009]  __msan_chain_origin+0x50/0x90
[  449.895573][T13009]  rmd256_transform+0x4328/0x4440
[  449.895589][T13009]  rmd256_update+0x343/0x4f0
[  449.895601][T13009]  crypto_shash_update+0x4e9/0x550
[  449.895614][T13009]  shash_async_update+0x113/0x1d0
[  449.895626][T13009]  hash_sendpage+0x8ef/0xdf0
[  449.895642][T13009]  sock_sendpage+0x1e1/0x2c0
[  449.895656][T13009]  pipe_to_sendpage+0x38c/0x4c0
[  449.895671][T13009]  __splice_from_pipe+0x565/0xf00
[  449.895685][T13009]  generic_splice_sendpage+0x1d5/0x2d0
[  449.895700][T13009]  direct_splice_actor+0x1fd/0x580
[  449.895716][T13009]  splice_direct_to_actor+0x6b2/0xf50
[  449.895730][T13009]  do_splice_direct+0x342/0x580
[  449.895743][T13009]  do_sendfile+0x101b/0x1d40
[  449.895756][T13009]  __se_sys_sendfile64+0x2bb/0x360
[  449.895769][T13009]  __x64_sys_sendfile64+0x56/0x70
[  449.895784][T13009]  do_syscall_64+0xb0/0x150
[  449.895801][T13009]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  449.895805][T13009] 
[  449.895810][T13009] Uninit was stored to memory at:
[  449.895825][T13009]  kmsan_internal_chain_origin+0xad/0x130
[  449.895839][T13009]  __msan_chain_origin+0x50/0x90
[  449.895855][T13009]  rmd256_transform+0x4328/0x4440
[  449.895869][T13009]  rmd256_update+0x227/0x4f0
[  449.895881][T13009]  crypto_shash_update+0x4e9/0x550
[  449.895893][T13009]  shash_async_update+0x113/0x1d0
[  449.895906][T13009]  hash_sendpage+0x8ef/0xdf0
[  449.895920][T13009]  sock_sendpage+0x1e1/0x2c0
[  449.895933][T13009]  pipe_to_sendpage+0x38c/0x4c0
[  449.895948][T13009]  __splice_from_pipe+0x565/0xf00
[  449.895963][T13009]  generic_splice_sendpage+0x1d5/0x2d0
[  449.895977][T13009]  direct_splice_actor+0x1fd/0x580
[  449.895992][T13009]  splice_direct_to_actor+0x6b2/0xf50
[  449.896007][T13009]  do_splice_direct+0x342/0x580
[  449.896019][T13009]  do_sendfile+0x101b/0x1d40
[  449.896031][T13009]  __se_sys_sendfile64+0x2bb/0x360
[  449.896043][T13009]  __x64_sys_sendfile64+0x56/0x70
[  449.896058][T13009]  do_syscall_64+0xb0/0x150
[  449.896075][T13009]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  449.896079][T13009] 
[  449.896084][T13009] Uninit was stored to memory at:
[  449.896099][T13009]  kmsan_internal_chain_origin+0xad/0x130
[  449.896112][T13009]  kmsan_memcpy_memmove_metadata+0x272/0x2e0
[  449.896125][T13009]  kmsan_memcpy_metadata+0xb/0x10
[  449.896138][T13009]  __msan_memcpy+0x43/0x50
[  449.896153][T13009]  rmd256_update+0x1fc/0x4f0
[  449.896166][T13009]  crypto_shash_update+0x4e9/0x550
[  449.896178][T13009]  shash_async_update+0x113/0x1d0
[  449.896196][T13009]  hash_sendpage+0x8ef/0xdf0
[  449.896211][T13009]  sock_sendpage+0x1e1/0x2c0
[  449.896226][T13009]  pipe_to_sendpage+0x38c/0x4c0
[  449.896241][T13009]  __splice_from_pipe+0x565/0xf00
[  449.896256][T13009]  generic_splice_sendpage+0x1d5/0x2d0
[  449.896271][T13009]  direct_splice_actor+0x1fd/0x580
[  449.896286][T13009]  splice_direct_to_actor+0x6b2/0xf50
[  449.896302][T13009]  do_splice_direct+0x342/0x580
[  449.896316][T13009]  do_sendfile+0x101b/0x1d40
[  449.896328][T13009]  __se_sys_sendfile64+0x2bb/0x360
[  449.896342][T13009]  __x64_sys_sendfile64+0x56/0x70
[  449.896358][T13009]  do_syscall_64+0xb0/0x150
[  449.896375][T13009]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  449.896379][T13009] 
[  449.896384][T13009] Uninit was created at:
[  449.896397][T13009]  kmsan_save_stack_with_flags+0x3c/0x90
[  449.896412][T13009]  kmsan_alloc_page+0xb9/0x180
[  449.896425][T13009]  __alloc_pages_nodemask+0x56a2/0x5dc0
[  449.896440][T13009]  alloc_pages_current+0x672/0x990
[  449.896451][T13009]  push_pipe+0x605/0xb70
[  449.896464][T13009]  iov_iter_get_pages_alloc+0x18a9/0x21c0
[  449.896478][T13009]  do_splice_to+0x4fc/0x14f0
[  449.896493][T13009]  splice_direct_to_actor+0x45c/0xf50
[  449.896507][T13009]  do_splice_direct+0x342/0x580
[  449.896522][T13009]  do_sendfile+0x101b/0x1d40
[  449.896534][T13009]  __se_sys_sendfile64+0x2bb/0x360
[  449.896545][T13009]  __x64_sys_sendfile64+0x56/0x70
[  449.896560][T13009]  do_syscall_64+0xb0/0x150
[  449.896576][T13009]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  449.997272][T12996] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'.
[  450.001586][T13005] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'.
[  450.074424][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  450.728483][T13028] Cannot find set identified by id 0 to match
[  450.744488][T13034] Cannot find set identified by id 0 to match
[  450.871507][    C1] sd 0:0:1:0: [sg0] tag#2700 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  450.871606][    C1] sd 0:0:1:0: [sg0] tag#2700 CDB: Test Unit Ready
[  450.871714][    C1] sd 0:0:1:0: [sg0] tag#2700 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  450.871828][    C1] sd 0:0:1:0: [sg0] tag#2700 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  450.871942][    C1] sd 0:0:1:0: [sg0] tag#2700 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  450.872056][    C1] sd 0:0:1:0: [sg0] tag#2700 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  450.872175][    C1] sd 0:0:1:0: [sg0] tag#2700 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  450.872372][    C1] sd 0:0:1:0: [sg0] tag#2700 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  450.872555][    C1] sd 0:0:1:0: [sg0] tag#2700 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  450.872667][    C1] sd 0:0:1:0: [sg0] tag#2700 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  450.872776][    C1] sd 0:0:1:0: [sg0] tag#2700 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  450.872888][    C1] sd 0:0:1:0: [sg0] tag#2700 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  450.873002][    C1] sd 0:0:1:0: [sg0] tag#2700 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  450.873116][    C1] sd 0:0:1:0: [sg0] tag#2700 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  450.873228][    C1] sd 0:0:1:0: [sg0] tag#2700 CDB[c0]: 00 00 00 00 00 00 00 00
[  451.121255][T13040] not chained 740000 origins
[  451.121276][T13040] CPU: 1 PID: 13040 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0
[  451.121284][T13040] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  451.121289][T13040] Call Trace:
[  451.121316][T13040]  dump_stack+0x1df/0x240
[  451.121346][T13040]  kmsan_internal_chain_origin+0x6f/0x130
[  451.121370][T13040]  ? is_module_text_address+0x4d/0x2a0
[  451.121388][T13040]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  451.121413][T13040]  ? __kernel_text_address+0x171/0x2d0
[  451.121433][T13040]  ? unwind_get_return_address+0x8c/0x130
[  451.121457][T13040]  ? entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  451.121475][T13040]  ? arch_stack_walk+0x2a2/0x3e0
[  451.121493][T13040]  ? stack_trace_save+0x1a0/0x1a0
[  451.121515][T13040]  ? kmsan_get_metadata+0x4f/0x180
[  451.121534][T13040]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  451.121553][T13040]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  451.121570][T13040]  ? stack_trace_save+0x123/0x1a0
[  451.121589][T13040]  ? kmsan_get_metadata+0x11d/0x180
[  451.121607][T13040]  __msan_chain_origin+0x50/0x90
[  451.121629][T13040]  rmd256_transform+0x4328/0x4440
[  451.121696][T13040]  rmd256_update+0x343/0x4f0
[  451.121722][T13040]  ? rmd256_init+0x260/0x260
[  451.121739][T13040]  crypto_shash_update+0x4e9/0x550
[  451.121757][T13040]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  451.121788][T13040]  ? crypto_hash_walk_first+0x1fd/0x360
[  451.121804][T13040]  ? kmsan_get_metadata+0x4f/0x180
[  451.121823][T13040]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  451.121841][T13040]  shash_async_update+0x113/0x1d0
[  451.121863][T13040]  ? shash_async_init+0x1e0/0x1e0
[  451.121878][T13040]  hash_sendpage+0x8ef/0xdf0
[  451.121903][T13040]  ? hash_recvmsg+0xd30/0xd30
[  451.121923][T13040]  sock_sendpage+0x1e1/0x2c0
[  451.121950][T13040]  pipe_to_sendpage+0x38c/0x4c0
[  451.121968][T13040]  ? sock_fasync+0x250/0x250
[  451.121996][T13040]  __splice_from_pipe+0x565/0xf00
[  451.122015][T13040]  ? generic_splice_sendpage+0x2d0/0x2d0
[  451.122050][T13040]  generic_splice_sendpage+0x1d5/0x2d0
[  451.122078][T13040]  ? iter_file_splice_write+0x1800/0x1800
[  451.122097][T13040]  direct_splice_actor+0x1fd/0x580
[  451.122120][T13040]  ? kmsan_get_metadata+0x4f/0x180
[  451.122149][T13040]  splice_direct_to_actor+0x6b2/0xf50
[  451.122166][T13040]  ? do_splice_direct+0x580/0x580
[  451.122203][T13040]  do_splice_direct+0x342/0x580
[  451.122234][T13040]  do_sendfile+0x101b/0x1d40
[  451.122272][T13040]  __se_sys_sendfile64+0x2bb/0x360
[  451.122290][T13040]  ? kmsan_get_metadata+0x4f/0x180
[  451.122312][T13040]  __x64_sys_sendfile64+0x56/0x70
[  451.122332][T13040]  do_syscall_64+0xb0/0x150
[  451.122353][T13040]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  451.122366][T13040] RIP: 0033:0x45c1d9
[  451.122372][T13040] Code: Bad RIP value.
[  451.122381][T13040] RSP: 002b:00007f42d54cec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  451.122397][T13040] RAX: ffffffffffffffda RBX: 0000000000025a00 RCX: 000000000045c1d9
[  451.122406][T13040] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 0000000000000008
[  451.122415][T13040] RBP: 000000000078bfe8 R08: 0000000000000000 R09: 0000000000000000
[  451.122425][T13040] R10: 001000007ffff000 R11: 0000000000000246 R12: 000000000078bfac
[  451.122435][T13040] R13: 0000000000c9fb6f R14: 00007f42d54cf9c0 R15: 000000000078bfac
[  451.122452][T13040] Uninit was stored to memory at:
[  451.122469][T13040]  kmsan_internal_chain_origin+0xad/0x130
[  451.122483][T13040]  __msan_chain_origin+0x50/0x90
[  451.122499][T13040]  rmd256_transform+0x4328/0x4440
[  451.122514][T13040]  rmd256_update+0x343/0x4f0
[  451.122527][T13040]  crypto_shash_update+0x4e9/0x550
[  451.122539][T13040]  shash_async_update+0x113/0x1d0
[  451.122552][T13040]  hash_sendpage+0x8ef/0xdf0
[  451.122568][T13040]  sock_sendpage+0x1e1/0x2c0
[  451.122583][T13040]  pipe_to_sendpage+0x38c/0x4c0
[  451.122597][T13040]  __splice_from_pipe+0x565/0xf00
[  451.122612][T13040]  generic_splice_sendpage+0x1d5/0x2d0
[  451.122627][T13040]  direct_splice_actor+0x1fd/0x580
[  451.122641][T13040]  splice_direct_to_actor+0x6b2/0xf50
[  451.122656][T13040]  do_splice_direct+0x342/0x580
[  451.122669][T13040]  do_sendfile+0x101b/0x1d40
[  451.122682][T13040]  __se_sys_sendfile64+0x2bb/0x360
[  451.122694][T13040]  __x64_sys_sendfile64+0x56/0x70
[  451.122710][T13040]  do_syscall_64+0xb0/0x150
[  451.122727][T13040]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  451.122731][T13040] 
[  451.122736][T13040] Uninit was stored to memory at:
[  451.122750][T13040]  kmsan_internal_chain_origin+0xad/0x130
[  451.122764][T13040]  __msan_chain_origin+0x50/0x90
[  451.122780][T13040]  rmd256_transform+0x4328/0x4440
[  451.122796][T13040]  rmd256_update+0x343/0x4f0
[  451.122808][T13040]  crypto_shash_update+0x4e9/0x550
[  451.122821][T13040]  shash_async_update+0x113/0x1d0
[  451.122833][T13040]  hash_sendpage+0x8ef/0xdf0
[  451.122848][T13040]  sock_sendpage+0x1e1/0x2c0
[  451.122862][T13040]  pipe_to_sendpage+0x38c/0x4c0
[  451.122876][T13040]  __splice_from_pipe+0x565/0xf00
[  451.122890][T13040]  generic_splice_sendpage+0x1d5/0x2d0
[  451.122905][T13040]  direct_splice_actor+0x1fd/0x580
[  451.122919][T13040]  splice_direct_to_actor+0x6b2/0xf50
[  451.122933][T13040]  do_splice_direct+0x342/0x580
[  451.122945][T13040]  do_sendfile+0x101b/0x1d40
[  451.122957][T13040]  __se_sys_sendfile64+0x2bb/0x360
[  451.122970][T13040]  __x64_sys_sendfile64+0x56/0x70
[  451.122985][T13040]  do_syscall_64+0xb0/0x150
[  451.123003][T13040]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  451.123007][T13040] 
[  451.123012][T13040] Uninit was stored to memory at:
[  451.123026][T13040]  kmsan_internal_chain_origin+0xad/0x130
[  451.123041][T13040]  __msan_chain_origin+0x50/0x90
[  451.123056][T13040]  rmd256_transform+0x4328/0x4440
[  451.123072][T13040]  rmd256_update+0x343/0x4f0
[  451.123084][T13040]  crypto_shash_update+0x4e9/0x550
[  451.123095][T13040]  shash_async_update+0x113/0x1d0
[  451.123106][T13040]  hash_sendpage+0x8ef/0xdf0
[  451.123121][T13040]  sock_sendpage+0x1e1/0x2c0
[  451.123139][T13040]  pipe_to_sendpage+0x38c/0x4c0
[  451.123154][T13040]  __splice_from_pipe+0x565/0xf00
[  451.123169][T13040]  generic_splice_sendpage+0x1d5/0x2d0
[  451.123183][T13040]  direct_splice_actor+0x1fd/0x580
[  451.123198][T13040]  splice_direct_to_actor+0x6b2/0xf50
[  451.123212][T13040]  do_splice_direct+0x342/0x580
[  451.123225][T13040]  do_sendfile+0x101b/0x1d40
[  451.123239][T13040]  __se_sys_sendfile64+0x2bb/0x360
[  451.123251][T13040]  __x64_sys_sendfile64+0x56/0x70
[  451.123266][T13040]  do_syscall_64+0xb0/0x150
[  451.123282][T13040]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  451.123285][T13040] 
[  451.123289][T13040] Uninit was stored to memory at:
[  451.123304][T13040]  kmsan_internal_chain_origin+0xad/0x130
[  451.123316][T13040]  __msan_chain_origin+0x50/0x90
[  451.123331][T13040]  rmd256_transform+0x4328/0x4440
[  451.123346][T13040]  rmd256_update+0x343/0x4f0
[  451.123358][T13040]  crypto_shash_update+0x4e9/0x550
[  451.123371][T13040]  shash_async_update+0x113/0x1d0
[  451.123382][T13040]  hash_sendpage+0x8ef/0xdf0
[  451.123395][T13040]  sock_sendpage+0x1e1/0x2c0
[  451.123407][T13040]  pipe_to_sendpage+0x38c/0x4c0
[  451.123419][T13040]  __splice_from_pipe+0x565/0xf00
[  451.123433][T13040]  generic_splice_sendpage+0x1d5/0x2d0
[  451.123446][T13040]  direct_splice_actor+0x1fd/0x580
[  451.123460][T13040]  splice_direct_to_actor+0x6b2/0xf50
[  451.123472][T13040]  do_splice_direct+0x342/0x580
[  451.123483][T13040]  do_sendfile+0x101b/0x1d40
[  451.123493][T13040]  __se_sys_sendfile64+0x2bb/0x360
[  451.123504][T13040]  __x64_sys_sendfile64+0x56/0x70
[  451.123516][T13040]  do_syscall_64+0xb0/0x150
[  451.123532][T13040]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  451.123536][T13040] 
[  451.123540][T13040] Uninit was stored to memory at:
[  451.123554][T13040]  kmsan_internal_chain_origin+0xad/0x130
[  451.123568][T13040]  __msan_chain_origin+0x50/0x90
[  451.123582][T13040]  rmd256_transform+0x4328/0x4440
[  451.123593][T13040]  rmd256_update+0x343/0x4f0
[  451.123604][T13040]  crypto_shash_update+0x4e9/0x550
[  451.123614][T13040]  shash_async_update+0x113/0x1d0
[  451.123623][T13040]  hash_sendpage+0x8ef/0xdf0
[  451.123636][T13040]  sock_sendpage+0x1e1/0x2c0
[  451.123648][T13040]  pipe_to_sendpage+0x38c/0x4c0
[  451.123659][T13040]  __splice_from_pipe+0x565/0xf00
[  451.123671][T13040]  generic_splice_sendpage+0x1d5/0x2d0
[  451.123682][T13040]  direct_splice_actor+0x1fd/0x580
[  451.123694][T13040]  splice_direct_to_actor+0x6b2/0xf50
[  451.123706][T13040]  do_splice_direct+0x342/0x580
[  451.123716][T13040]  do_sendfile+0x101b/0x1d40
[  451.123726][T13040]  __se_sys_sendfile64+0x2bb/0x360
[  451.123736][T13040]  __x64_sys_sendfile64+0x56/0x70
[  451.123748][T13040]  do_syscall_64+0xb0/0x150
[  451.123761][T13040]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  451.123764][T13040] 
[  451.123768][T13040] Uninit was stored to memory at:
[  451.123780][T13040]  kmsan_internal_chain_origin+0xad/0x130
[  451.123791][T13040]  __msan_chain_origin+0x50/0x90
[  451.123803][T13040]  rmd256_transform+0x4328/0x4440
[  451.123815][T13040]  rmd256_update+0x227/0x4f0
[  451.123824][T13040]  crypto_shash_update+0x4e9/0x550
[  451.123834][T13040]  shash_async_update+0x113/0x1d0
[  451.123844][T13040]  hash_sendpage+0x8ef/0xdf0
[  451.123856][T13040]  sock_sendpage+0x1e1/0x2c0
[  451.123867][T13040]  pipe_to_sendpage+0x38c/0x4c0
[  451.123879][T13040]  __splice_from_pipe+0x565/0xf00
[  451.123890][T13040]  generic_splice_sendpage+0x1d5/0x2d0
[  451.123902][T13040]  direct_splice_actor+0x1fd/0x580
[  451.123914][T13040]  splice_direct_to_actor+0x6b2/0xf50
[  451.123925][T13040]  do_splice_direct+0x342/0x580
[  451.123935][T13040]  do_sendfile+0x101b/0x1d40
[  451.123945][T13040]  __se_sys_sendfile64+0x2bb/0x360
[  451.123955][T13040]  __x64_sys_sendfile64+0x56/0x70
[  451.123967][T13040]  do_syscall_64+0xb0/0x150
[  451.123980][T13040]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  451.123983][T13040] 
[  451.123987][T13040] Uninit was stored to memory at:
[  451.123998][T13040]  kmsan_internal_chain_origin+0xad/0x130
[  451.124010][T13040]  kmsan_memcpy_memmove_metadata+0x272/0x2e0
[  451.124020][T13040]  kmsan_memcpy_metadata+0xb/0x10
[  451.124031][T13040]  __msan_memcpy+0x43/0x50
[  451.124043][T13040]  rmd256_update+0x1fc/0x4f0
[  451.124053][T13040]  crypto_shash_update+0x4e9/0x550
[  451.124062][T13040]  shash_async_update+0x113/0x1d0
[  451.124072][T13040]  hash_sendpage+0x8ef/0xdf0
[  451.124084][T13040]  sock_sendpage+0x1e1/0x2c0
[  451.124095][T13040]  pipe_to_sendpage+0x38c/0x4c0
[  451.124106][T13040]  __splice_from_pipe+0x565/0xf00
[  451.124118][T13040]  generic_splice_sendpage+0x1d5/0x2d0
[  451.124136][T13040]  direct_splice_actor+0x1fd/0x580
[  451.124149][T13040]  splice_direct_to_actor+0x6b2/0xf50
[  451.124160][T13040]  do_splice_direct+0x342/0x580
[  451.124170][T13040]  do_sendfile+0x101b/0x1d40
[  451.124180][T13040]  __se_sys_sendfile64+0x2bb/0x360
[  451.124190][T13040]  __x64_sys_sendfile64+0x56/0x70
[  451.124202][T13040]  do_syscall_64+0xb0/0x150
[  451.124215][T13040]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  451.124218][T13040] 
[  451.124221][T13040] Uninit was created at:
[  451.124233][T13040]  kmsan_save_stack_with_flags+0x3c/0x90
[  451.124245][T13040]  kmsan_alloc_page+0xb9/0x180
[  451.124257][T13040]  __alloc_pages_nodemask+0x56a2/0x5dc0
[  451.124270][T13040]  alloc_pages_current+0x672/0x990
[  451.124280][T13040]  push_pipe+0x605/0xb70
[  451.124292][T13040]  iov_iter_get_pages_alloc+0x18a9/0x21c0
[  451.124303][T13040]  do_splice_to+0x4fc/0x14f0
[  451.124316][T13040]  splice_direct_to_actor+0x45c/0xf50
[  451.124327][T13040]  do_splice_direct+0x342/0x580
[  451.124338][T13040]  do_sendfile+0x101b/0x1d40
[  451.124349][T13040]  __se_sys_sendfile64+0x2bb/0x360
[  451.124359][T13040]  __x64_sys_sendfile64+0x56/0x70
[  451.124374][T13040]  do_syscall_64+0xb0/0x150
[  451.124390][T13040]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  451.153655][T13045] Cannot find set identified by id 0 to match
[  451.298467][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  451.398375][T13052] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.0'.
[  451.452780][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  451.572820][T13056] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.0'.
20:09:05 executing program 5:
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
semget(0x0, 0x0, 0x0)
write$binfmt_misc(r0, 0x0, 0xab)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
getdents(0xffffffffffffffff, 0x0, 0x0)
dup(0xffffffffffffffff)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r2 = dup(r1)
write$UHID_INPUT(r2, &(0x7f0000001440)={0x8, {"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", 0x1000}}, 0xf52)

20:09:05 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='setgroups\x00')
r2 = dup2(r0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
clone(0x3a3dd4008400af01, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = socket$inet(0x2, 0x80001, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x4000000000000, 0x40, &(0x7f00000003c0)=@raw={'raw\x00', 0x8, 0x3, 0x2b8, 0x140, 0x140, 0x140, 0x140, 0x0, 0x220, 0x1d8, 0x1d8, 0x220, 0x1d8, 0x3, 0x0, {[{{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @rand_addr, 0x0, 0x0, 'erspan0\x00', 'veth0_to_team\x00'}, 0x0, 0xd8, 0x140, 0x0, {}, [@common=@ttl={{0x28, 'ttl\x00'}}, @common=@set={{0x40, 'set\x00'}, {{0x0, [0x4, 0x6, 0x4]}}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'syz1\x00', 'syz1\x00'}}}, {{@uncond, 0x0, 0xc0, 0xe0, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@icmp={{0x28, 'icmp\x00'}, {0x0, "94a5"}}]}, @unspec=@NOTRACK={0x20, 'NOTRACK\x00'}}], {{[], 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x318)

20:09:05 executing program 2:
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x4ca31, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_sctp(0xa, 0x80000000000001, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f0000000040), 0x10)

20:09:05 executing program 3:
r0 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_SW_PARAMS(r0, 0xc0884113, &(0x7f0000000180))

20:09:05 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

20:09:06 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
accept4(r0, 0x0, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000008c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="000426bd7000fedbdf250d000000080034", @ANYRES32=0x0, @ANYBLOB="e0f0fdcb69a067053b14d7a44ca9ff6dedc9d15f7745c5298ff283c1edd156d0beaa2059b57c0366b4ef51f4f58652ef0dbdde68cd9d7f6a7ddbcbe278a8"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2400c004)
r3 = openat$cgroup_ro(r1, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r3, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x24, r2, 0x712, 0x70bd26, 0x25dfdbff}, 0x24}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
sendto$rxrpc(r3, &(0x7f00000000c0)="670fb596b0c56aacded7a3b69907fd9eaf8c9d13f0389225b967d93b3a4cf7da0ec9d5ff4f60f7951b492ce21cf737e580f3ef61fff373d04496bdbdf7b1cad070f828ab3d7e7e45699f6de61d3f9938260a70b558f7bcb47797cd7737d7713a03503e184eab5a6daf5fa79a9725fe311c0d048573f3c03c0c3a8240c8d34283588129219addd1bda95f6df956d711d68b31eb95b1e0a67fab4e343787d12d2168683ea1ddac2e38dd13f1df", 0xac, 0x0, &(0x7f0000000180)=@in6={0x21, 0x4, 0x2, 0x1c, {0xa, 0x4e23, 0x9, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0xd4}}, 0x24)

20:09:06 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='setgroups\x00')
r2 = dup2(r0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
clone(0x3a3dd4008400af01, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = socket$inet(0x2, 0x80001, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x4000000000000, 0x40, &(0x7f00000003c0)=@raw={'raw\x00', 0x8, 0x3, 0x2b8, 0x140, 0x140, 0x140, 0x140, 0x0, 0x220, 0x1d8, 0x1d8, 0x220, 0x1d8, 0x3, 0x0, {[{{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @rand_addr, 0x0, 0x0, 'erspan0\x00', 'veth0_to_team\x00'}, 0x0, 0xd8, 0x140, 0x0, {}, [@common=@ttl={{0x28, 'ttl\x00'}}, @common=@set={{0x40, 'set\x00'}, {{0x0, [0x4, 0x6, 0x4]}}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'syz1\x00', 'syz1\x00'}}}, {{@uncond, 0x0, 0xc0, 0xe0, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@icmp={{0x28, 'icmp\x00'}, {0x0, "94a5"}}]}, @unspec=@NOTRACK={0x20, 'NOTRACK\x00'}}], {{[], 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x318)

[  453.911591][T13071] Cannot find set identified by id 0 to match
[  454.008765][    C0] sd 0:0:1:0: [sg0] tag#2702 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  454.019429][    C0] sd 0:0:1:0: [sg0] tag#2702 CDB: Test Unit Ready
[  454.026049][    C0] sd 0:0:1:0: [sg0] tag#2702 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  454.035980][    C0] sd 0:0:1:0: [sg0] tag#2702 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  454.045864][    C0] sd 0:0:1:0: [sg0] tag#2702 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  454.055815][    C0] sd 0:0:1:0: [sg0] tag#2702 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  454.065692][    C0] sd 0:0:1:0: [sg0] tag#2702 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  454.075561][    C0] sd 0:0:1:0: [sg0] tag#2702 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  454.085449][    C0] sd 0:0:1:0: [sg0] tag#2702 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  454.095338][    C0] sd 0:0:1:0: [sg0] tag#2702 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
20:09:06 executing program 2:
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x4ca31, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_sctp(0xa, 0x80000000000001, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f0000000040), 0x10)

[  454.105200][    C0] sd 0:0:1:0: [sg0] tag#2702 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  454.115069][    C0] sd 0:0:1:0: [sg0] tag#2702 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  454.124950][    C0] sd 0:0:1:0: [sg0] tag#2702 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  454.134850][    C0] sd 0:0:1:0: [sg0] tag#2702 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  454.144791][    C0] sd 0:0:1:0: [sg0] tag#2702 CDB[c0]: 00 00 00 00 00 00 00 00
20:09:06 executing program 3:
r0 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_SW_PARAMS(r0, 0xc0884113, &(0x7f0000000180))

[  454.244466][T13082] Cannot find set identified by id 0 to match
20:09:06 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r1, r2, 0x0, 0x1000007ffff000)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
openat$cgroup_ro(r3, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
ioctl$vim2m_VIDIOC_STREAMOFF(r3, 0x40045612, &(0x7f00000000c0))

20:09:06 executing program 2:
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x4ca31, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_sctp(0xa, 0x80000000000001, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f0000000040), 0x10)

20:09:06 executing program 5:
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
semget(0x0, 0x0, 0x0)
write$binfmt_misc(r0, 0x0, 0xab)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
getdents(0xffffffffffffffff, 0x0, 0x0)
dup(0xffffffffffffffff)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r2 = dup(r1)
write$UHID_INPUT(r2, &(0x7f0000001440)={0x8, {"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", 0x1000}}, 0xf52)

[  454.666040][T13092] not chained 750000 origins
[  454.669268][T13092] CPU: 0 PID: 13092 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0
[  454.669268][T13092] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  454.669268][T13092] Call Trace:
[  454.669268][T13092]  dump_stack+0x1df/0x240
[  454.669268][T13092]  kmsan_internal_chain_origin+0x6f/0x130
[  454.669268][T13092]  ? is_module_text_address+0x4d/0x2a0
[  454.708069][T13092]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  454.708069][T13092]  ? __kernel_text_address+0x171/0x2d0
[  454.708069][T13092]  ? unwind_get_return_address+0x8c/0x130
[  454.708069][T13092]  ? entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  454.708069][T13092]  ? arch_stack_walk+0x2a2/0x3e0
[  454.735307][T13092]  ? stack_trace_save+0x1a0/0x1a0
[  454.735307][T13092]  ? kmsan_get_metadata+0x4f/0x180
[  454.735307][T13092]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  454.735307][T13092]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  454.735307][T13092]  ? stack_trace_save+0x123/0x1a0
[  454.735307][T13092]  ? kmsan_get_metadata+0x11d/0x180
[  454.735307][T13092]  __msan_chain_origin+0x50/0x90
[  454.735307][T13092]  rmd256_transform+0x4328/0x4440
[  454.735307][T13092]  rmd256_update+0x227/0x4f0
[  454.735307][T13092]  ? rmd256_init+0x260/0x260
[  454.735307][T13092]  crypto_shash_update+0x4e9/0x550
[  454.735307][T13092]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  454.735307][T13092]  ? crypto_hash_walk_first+0x1fd/0x360
[  454.735307][T13092]  ? kmsan_get_metadata+0x4f/0x180
[  454.735307][T13092]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  454.735307][T13092]  shash_async_update+0x113/0x1d0
[  454.735307][T13092]  ? shash_async_init+0x1e0/0x1e0
[  454.735307][T13092]  hash_sendpage+0x8ef/0xdf0
[  454.735307][T13092]  ? hash_recvmsg+0xd30/0xd30
[  454.735307][T13092]  sock_sendpage+0x1e1/0x2c0
[  454.735307][T13092]  pipe_to_sendpage+0x38c/0x4c0
[  454.735307][T13092]  ? sock_fasync+0x250/0x250
[  454.735307][T13092]  __splice_from_pipe+0x565/0xf00
[  454.735307][T13092]  ? generic_splice_sendpage+0x2d0/0x2d0
[  454.735307][T13092]  generic_splice_sendpage+0x1d5/0x2d0
[  454.735307][T13092]  ? iter_file_splice_write+0x1800/0x1800
[  454.735307][T13092]  direct_splice_actor+0x1fd/0x580
[  454.735307][T13092]  ? kmsan_get_metadata+0x4f/0x180
[  454.735307][T13092]  splice_direct_to_actor+0x6b2/0xf50
[  454.735307][T13092]  ? do_splice_direct+0x580/0x580
[  454.735307][T13092]  do_splice_direct+0x342/0x580
[  454.735307][T13092]  do_sendfile+0x101b/0x1d40
[  454.735307][T13092]  __se_sys_sendfile64+0x2bb/0x360
[  454.735307][T13092]  ? kmsan_get_metadata+0x4f/0x180
[  454.735307][T13092]  __x64_sys_sendfile64+0x56/0x70
[  454.735307][T13092]  do_syscall_64+0xb0/0x150
[  454.735307][T13092]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  454.735307][T13092] RIP: 0033:0x45c1d9
[  454.735307][T13092] Code: Bad RIP value.
[  454.735307][T13092] RSP: 002b:00007f3a4d702c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  454.735307][T13092] RAX: ffffffffffffffda RBX: 0000000000025a00 RCX: 000000000045c1d9
[  454.735307][T13092] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004
[  454.735307][T13092] RBP: 000000000078bf48 R08: 0000000000000000 R09: 0000000000000000
[  454.735307][T13092] R10: 001000007ffff000 R11: 0000000000000246 R12: 000000000078bf0c
[  454.735307][T13092] R13: 0000000000c9fb6f R14: 00007f3a4d7039c0 R15: 000000000078bf0c
[  454.735307][T13092] Uninit was stored to memory at:
[  454.735307][T13092]  kmsan_internal_chain_origin+0xad/0x130
[  454.735307][T13092]  __msan_chain_origin+0x50/0x90
[  454.735307][T13092]  rmd256_transform+0x4328/0x4440
[  454.735307][T13092]  rmd256_update+0x343/0x4f0
[  454.735307][T13092]  crypto_shash_update+0x4e9/0x550
[  454.735307][T13092]  shash_async_update+0x113/0x1d0
[  454.735307][T13092]  hash_sendpage+0x8ef/0xdf0
[  454.735307][T13092]  sock_sendpage+0x1e1/0x2c0
[  454.735307][T13092]  pipe_to_sendpage+0x38c/0x4c0
[  454.735307][T13092]  __splice_from_pipe+0x565/0xf00
[  454.735307][T13092]  generic_splice_sendpage+0x1d5/0x2d0
[  454.735307][T13092]  direct_splice_actor+0x1fd/0x580
[  454.735307][T13092]  splice_direct_to_actor+0x6b2/0xf50
[  454.735307][T13092]  do_splice_direct+0x342/0x580
[  454.735307][T13092]  do_sendfile+0x101b/0x1d40
[  454.735307][T13092]  __se_sys_sendfile64+0x2bb/0x360
[  454.735307][T13092]  __x64_sys_sendfile64+0x56/0x70
[  454.735307][T13092]  do_syscall_64+0xb0/0x150
[  454.735307][T13092]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  454.735307][T13092] 
[  454.735307][T13092] Uninit was stored to memory at:
[  454.735307][T13092]  kmsan_internal_chain_origin+0xad/0x130
[  454.735307][T13092]  __msan_chain_origin+0x50/0x90
[  454.735307][T13092]  rmd256_transform+0x4328/0x4440
[  454.735307][T13092]  rmd256_update+0x343/0x4f0
[  454.735307][T13092]  crypto_shash_update+0x4e9/0x550
[  454.735307][T13092]  shash_async_update+0x113/0x1d0
[  454.735307][T13092]  hash_sendpage+0x8ef/0xdf0
[  454.735307][T13092]  sock_sendpage+0x1e1/0x2c0
[  454.735307][T13092]  pipe_to_sendpage+0x38c/0x4c0
[  454.735307][T13092]  __splice_from_pipe+0x565/0xf00
[  454.735307][T13092]  generic_splice_sendpage+0x1d5/0x2d0
[  454.735307][T13092]  direct_splice_actor+0x1fd/0x580
[  454.735307][T13092]  splice_direct_to_actor+0x6b2/0xf50
[  454.735307][T13092]  do_splice_direct+0x342/0x580
[  454.735307][T13092]  do_sendfile+0x101b/0x1d40
[  454.735307][T13092]  __se_sys_sendfile64+0x2bb/0x360
[  454.735307][T13092]  __x64_sys_sendfile64+0x56/0x70
[  454.735307][T13092]  do_syscall_64+0xb0/0x150
[  454.735307][T13092]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  454.735307][T13092] 
[  454.735307][T13092] Uninit was stored to memory at:
[  454.735307][T13092]  kmsan_internal_chain_origin+0xad/0x130
[  454.735307][T13092]  __msan_chain_origin+0x50/0x90
[  454.735307][T13092]  rmd256_transform+0x4328/0x4440
[  454.735307][T13092]  rmd256_update+0x343/0x4f0
[  454.735307][T13092]  crypto_shash_update+0x4e9/0x550
[  454.735307][T13092]  shash_async_update+0x113/0x1d0
[  454.735307][T13092]  hash_sendpage+0x8ef/0xdf0
[  454.735307][T13092]  sock_sendpage+0x1e1/0x2c0
[  454.735307][T13092]  pipe_to_sendpage+0x38c/0x4c0
[  454.735307][T13092]  __splice_from_pipe+0x565/0xf00
[  454.735307][T13092]  generic_splice_sendpage+0x1d5/0x2d0
[  454.735307][T13092]  direct_splice_actor+0x1fd/0x580
[  454.735307][T13092]  splice_direct_to_actor+0x6b2/0xf50
[  454.735307][T13092]  do_splice_direct+0x342/0x580
[  454.735307][T13092]  do_sendfile+0x101b/0x1d40
[  454.735307][T13092]  __se_sys_sendfile64+0x2bb/0x360
[  454.735307][T13092]  __x64_sys_sendfile64+0x56/0x70
[  454.735307][T13092]  do_syscall_64+0xb0/0x150
[  454.735307][T13092]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  454.735307][T13092] 
[  454.735307][T13092] Uninit was stored to memory at:
[  454.735307][T13092]  kmsan_internal_chain_origin+0xad/0x130
[  454.735307][T13092]  __msan_chain_origin+0x50/0x90
[  454.735307][T13092]  rmd256_transform+0x4328/0x4440
[  454.735307][T13092]  rmd256_update+0x343/0x4f0
[  454.735307][T13092]  crypto_shash_update+0x4e9/0x550
[  454.735307][T13092]  shash_async_update+0x113/0x1d0
[  454.735307][T13092]  hash_sendpage+0x8ef/0xdf0
[  454.735307][T13092]  sock_sendpage+0x1e1/0x2c0
[  454.735307][T13092]  pipe_to_sendpage+0x38c/0x4c0
[  454.735307][T13092]  __splice_from_pipe+0x565/0xf00
[  454.735307][T13092]  generic_splice_sendpage+0x1d5/0x2d0
[  454.735307][T13092]  direct_splice_actor+0x1fd/0x580
[  454.735307][T13092]  splice_direct_to_actor+0x6b2/0xf50
[  454.735307][T13092]  do_splice_direct+0x342/0x580
[  454.735307][T13092]  do_sendfile+0x101b/0x1d40
[  454.735307][T13092]  __se_sys_sendfile64+0x2bb/0x360
[  454.735307][T13092]  __x64_sys_sendfile64+0x56/0x70
[  454.735307][T13092]  do_syscall_64+0xb0/0x150
[  454.735307][T13092]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  454.735307][T13092] 
[  454.735307][T13092] Uninit was stored to memory at:
[  454.735307][T13092]  kmsan_internal_chain_origin+0xad/0x130
[  454.735307][T13092]  __msan_chain_origin+0x50/0x90
[  454.735307][T13092]  rmd256_transform+0x4328/0x4440
[  454.735307][T13092]  rmd256_update+0x343/0x4f0
[  454.735307][T13092]  crypto_shash_update+0x4e9/0x550
[  454.735307][T13092]  shash_async_update+0x113/0x1d0
[  454.735307][T13092]  hash_sendpage+0x8ef/0xdf0
[  454.735307][T13092]  sock_sendpage+0x1e1/0x2c0
[  454.735307][T13092]  pipe_to_sendpage+0x38c/0x4c0
[  454.735307][T13092]  __splice_from_pipe+0x565/0xf00
[  454.735307][T13092]  generic_splice_sendpage+0x1d5/0x2d0
[  454.735307][T13092]  direct_splice_actor+0x1fd/0x580
[  454.735307][T13092]  splice_direct_to_actor+0x6b2/0xf50
[  454.735307][T13092]  do_splice_direct+0x342/0x580
[  454.735307][T13092]  do_sendfile+0x101b/0x1d40
[  454.735307][T13092]  __se_sys_sendfile64+0x2bb/0x360
[  454.735307][T13092]  __x64_sys_sendfile64+0x56/0x70
[  454.735307][T13092]  do_syscall_64+0xb0/0x150
[  454.735307][T13092]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  454.735307][T13092] 
[  454.735307][T13092] Uninit was stored to memory at:
[  454.735307][T13092]  kmsan_internal_chain_origin+0xad/0x130
[  454.735307][T13092]  __msan_chain_origin+0x50/0x90
[  454.735307][T13092]  rmd256_transform+0x4328/0x4440
[  454.735307][T13092]  rmd256_update+0x227/0x4f0
[  454.735307][T13092]  crypto_shash_update+0x4e9/0x550
[  454.735307][T13092]  shash_async_update+0x113/0x1d0
[  454.735307][T13092]  hash_sendpage+0x8ef/0xdf0
[  454.735307][T13092]  sock_sendpage+0x1e1/0x2c0
[  454.735307][T13092]  pipe_to_sendpage+0x38c/0x4c0
[  454.735307][T13092]  __splice_from_pipe+0x565/0xf00
[  454.735307][T13092]  generic_splice_sendpage+0x1d5/0x2d0
[  454.735307][T13092]  direct_splice_actor+0x1fd/0x580
[  454.735307][T13092]  splice_direct_to_actor+0x6b2/0xf50
[  454.735307][T13092]  do_splice_direct+0x342/0x580
[  454.735307][T13092]  do_sendfile+0x101b/0x1d40
[  454.735307][T13092]  __se_sys_sendfile64+0x2bb/0x360
[  454.735307][T13092]  __x64_sys_sendfile64+0x56/0x70
[  454.735307][T13092]  do_syscall_64+0xb0/0x150
[  454.735307][T13092]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  454.735307][T13092] 
[  454.735307][T13092] Uninit was stored to memory at:
[  454.735307][T13092]  kmsan_internal_chain_origin+0xad/0x130
[  454.735307][T13092]  kmsan_memcpy_memmove_metadata+0x272/0x2e0
[  454.735307][T13092]  kmsan_memcpy_metadata+0xb/0x10
[  454.735307][T13092]  __msan_memcpy+0x43/0x50
[  454.735307][T13092]  rmd256_update+0x1fc/0x4f0
[  454.735307][T13092]  crypto_shash_update+0x4e9/0x550
[  454.735307][T13092]  shash_async_update+0x113/0x1d0
[  454.735307][T13092]  hash_sendpage+0x8ef/0xdf0
[  454.735307][T13092]  sock_sendpage+0x1e1/0x2c0
[  454.735307][T13092]  pipe_to_sendpage+0x38c/0x4c0
[  454.735307][T13092]  __splice_from_pipe+0x565/0xf00
[  454.735307][T13092]  generic_splice_sendpage+0x1d5/0x2d0
[  454.735307][T13092]  direct_splice_actor+0x1fd/0x580
[  454.735307][T13092]  splice_direct_to_actor+0x6b2/0xf50
[  454.735307][T13092]  do_splice_direct+0x342/0x580
[  454.735307][T13092]  do_sendfile+0x101b/0x1d40
[  454.735307][T13092]  __se_sys_sendfile64+0x2bb/0x360
[  454.735307][T13092]  __x64_sys_sendfile64+0x56/0x70
[  454.735307][T13092]  do_syscall_64+0xb0/0x150
[  454.735307][T13092]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  454.735307][T13092] 
[  454.735307][T13092] Uninit was created at:
[  454.735307][T13092]  kmsan_save_stack_with_flags+0x3c/0x90
[  454.735307][T13092]  kmsan_alloc_page+0xb9/0x180
[  454.735307][T13092]  __alloc_pages_nodemask+0x56a2/0x5dc0
[  454.735307][T13092]  alloc_pages_current+0x672/0x990
[  454.735307][T13092]  push_pipe+0x605/0xb70
[  454.735307][T13092]  iov_iter_get_pages_alloc+0x18a9/0x21c0
[  454.735307][T13092]  do_splice_to+0x4fc/0x14f0
[  454.735307][T13092]  splice_direct_to_actor+0x45c/0xf50
[  454.735307][T13092]  do_splice_direct+0x342/0x580
[  454.735307][T13092]  do_sendfile+0x101b/0x1d40
[  454.735307][T13092]  __se_sys_sendfile64+0x2bb/0x360
[  454.735307][T13092]  __x64_sys_sendfile64+0x56/0x70
[  454.735307][T13092]  do_syscall_64+0xb0/0x150
[  454.735307][T13092]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
20:09:08 executing program 4:
perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
exit_group(0x0)
eventfd(0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='fdinfo/4\x00')
preadv(r0, &(0x7f00000004c0)=[{&(0x7f0000000140)=""/212, 0xd4}], 0x1, 0x0)

[  455.823058][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
20:09:08 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
mmap(&(0x7f0000abb000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
setsockopt$sock_timeval(r0, 0x1, 0xd, &(0x7f0000abaff9)={0x0, 0x7530}, 0x10)

20:09:08 executing program 2:
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x4ca31, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_sctp(0xa, 0x80000000000001, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f0000000040), 0x10)

20:09:08 executing program 4:
perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
exit_group(0x0)
eventfd(0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='fdinfo/4\x00')
preadv(r0, &(0x7f00000004c0)=[{&(0x7f0000000140)=""/212, 0xd4}], 0x1, 0x0)

20:09:09 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

20:09:09 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
mmap(&(0x7f0000abb000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
setsockopt$sock_timeval(r0, 0x1, 0xd, &(0x7f0000abaff9)={0x0, 0x7530}, 0x10)

20:09:09 executing program 5:
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
semget(0x0, 0x0, 0x0)
write$binfmt_misc(r0, 0x0, 0xab)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
getdents(0xffffffffffffffff, 0x0, 0x0)
dup(0xffffffffffffffff)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r2 = dup(r1)
write$UHID_INPUT(r2, &(0x7f0000001440)={0x8, {"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", 0x1000}}, 0xf52)

20:09:09 executing program 2:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f00000000c0)="24000000200099f0003be90000ed190e020008160000100000ba1080080002007f", 0x21)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f00000002c0)=""/2, 0x2}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x40)
write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @ext={0x91, &(0x7f0000000200)="f7f249b987e7326bc88b9baf0500000032a5b60a00008024c30e478947d190ac004c45bec9c683f53b506b8c5893d35500c52c65ec345a8b75c1c317c3da822e15355c2ae26ba533fad72a1d53a9ff5b4ac51e08dcaeeb01eeb2dd9b56de54fcea571b152f7d37491e04451c47d280ce8f3e884f9fd6a9cd4b078ee6986d183dc593981799b436702a74c456ed31e7ea7d"}}], 0x1c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

20:09:09 executing program 4:
perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
exit_group(0x0)
eventfd(0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='fdinfo/4\x00')
preadv(r0, &(0x7f00000004c0)=[{&(0x7f0000000140)=""/212, 0xd4}], 0x1, 0x0)

20:09:09 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
socket$alg(0x26, 0x5, 0x0)
r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
openat$cgroup_ro(r1, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000008c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="000426bd7000fedbdf250d000000080034", @ANYRES32=0x0, @ANYBLOB="e0f0fdcb69a067053b14d7a44ca9ff6dedc9d15f7745c5298ff283c1edd156d0beaa2059b57c0366b4ef51f4f58652ef0dbdde68cd9d7f6a7ddbcbe278a8"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2400c004)
r4 = openat$cgroup_ro(r2, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r4, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x24, r3, 0x712, 0x70bd26, 0x25dfdbff}, 0x24}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
r5 = socket$pppl2tp(0x18, 0x1, 0x1)
r6 = accept4(r5, 0x0, 0x0, 0x0)
r7 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r6, r7, 0x0, 0x1000007ffff000)

[  457.687644][    C1] sd 0:0:1:0: [sg0] tag#2703 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  457.698567][    C1] sd 0:0:1:0: [sg0] tag#2703 CDB: Test Unit Ready
[  457.705330][    C1] sd 0:0:1:0: [sg0] tag#2703 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  457.715317][    C1] sd 0:0:1:0: [sg0] tag#2703 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  457.725235][    C1] sd 0:0:1:0: [sg0] tag#2703 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  457.735139][    C1] sd 0:0:1:0: [sg0] tag#2703 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  457.745052][    C1] sd 0:0:1:0: [sg0] tag#2703 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  457.754991][    C1] sd 0:0:1:0: [sg0] tag#2703 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  457.765008][    C1] sd 0:0:1:0: [sg0] tag#2703 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  457.778455][    C1] sd 0:0:1:0: [sg0] tag#2703 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  457.788404][    C1] sd 0:0:1:0: [sg0] tag#2703 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  457.798495][    C1] sd 0:0:1:0: [sg0] tag#2703 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  457.808393][    C1] sd 0:0:1:0: [sg0] tag#2703 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  457.818384][    C1] sd 0:0:1:0: [sg0] tag#2703 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  457.828400][    C1] sd 0:0:1:0: [sg0] tag#2703 CDB[c0]: 00 00 00 00 00 00 00 00
20:09:10 executing program 4:
perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
exit_group(0x0)
eventfd(0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='fdinfo/4\x00')
preadv(r0, &(0x7f00000004c0)=[{&(0x7f0000000140)=""/212, 0xd4}], 0x1, 0x0)

20:09:10 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
mmap(&(0x7f0000abb000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
setsockopt$sock_timeval(r0, 0x1, 0xd, &(0x7f0000abaff9)={0x0, 0x7530}, 0x10)

20:09:10 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r1, r2, 0x0, 0x1000007ffff000)
r3 = gettid()
ptrace$setopts(0x4206, r3, 0x0, 0x0)
tkill(r3, 0x40)
ptrace$setregs(0xd, r3, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r3, 0x0, 0x0)
r4 = socket$inet_icmp(0x2, 0x2, 0x1)
r5 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
openat$cgroup_ro(r5, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
r6 = accept$phonet_pipe(0xffffffffffffffff, 0x0, &(0x7f0000000100)=0xfffffffffffffcb6)
dup2(r5, r6)
sendmsg$BATADV_CMD_GET_ORIGINATORS(0xffffffffffffffff, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x24, 0x0, 0x712, 0x70bd26, 0x25dfdbff}, 0x24}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
ioctl$UI_SET_EVBIT(0xffffffffffffffff, 0x40045564, 0x10)
r7 = dup3(r5, 0xffffffffffffffff, 0x0)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000000c0)=<r8=>0x0)
kcmp(r8, 0xffffffffffffffff, 0x2, r4, r7)

20:09:10 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
mmap(&(0x7f0000abb000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
setsockopt$sock_timeval(r0, 0x1, 0xd, &(0x7f0000abaff9)={0x0, 0x7530}, 0x10)

20:09:10 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

20:09:10 executing program 5:
r0 = socket(0x10, 0x3, 0x0)
sendto(r0, &(0x7f00000001c0)="120000001a00e7ef077b1a3fbdf58185539c", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f0000000140)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x42d}, {&(0x7f00000000c0)=""/85, 0x4e4}, {&(0x7f00000024c0)=""/4096, 0x1048}, {&(0x7f0000000400)=""/120, 0x78}, {&(0x7f0000000480)=""/60, 0xc6}, {&(0x7f0000000280)=""/77, 0x7}, {&(0x7f0000000540)=""/154, 0x9a}, {&(0x7f0000000340)=""/22, 0x21}], 0x8, &(0x7f0000002400)=""/191, 0x1f9}}], 0x4000000000001de, 0x6, &(0x7f0000003700)={0x77359400})
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$kcm(0x29, 0x5, 0x0)
r3 = fcntl$dupfd(r1, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)

20:09:10 executing program 4:
r0 = socket$inet6(0xa, 0x3, 0x20)
connect$inet6(r0, &(0x7f0000000300)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendmsg(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0xc100)
setsockopt$inet6_int(r0, 0x29, 0x7, &(0x7f0000000000), 0x4)
sendmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x14)

20:09:10 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = gettid()
ptrace$setopts(0x4206, r2, 0x0, 0x0)
tkill(r2, 0x18)
ptrace$setregs(0xd, r2, 0x0, &(0x7f0000000080))
r3 = gettid()
ptrace$setopts(0x4206, r3, 0x0, 0x0)
tkill(r3, 0x40)
ptrace$setregs(0xd, r3, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r3, 0x0, 0x0)
r4 = gettid()
ptrace$setopts(0x4206, r4, 0x0, 0x0)
tkill(r4, 0x40)
ptrace$setregs(0xd, r4, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, 0x0, 0x5, 0x5)
ptrace$cont(0x4, 0x0, 0xffffffffffffffff, 0x3)
r5 = syz_open_procfs(r2, &(0x7f0000000000)='net/route\x00')
sendfile(r1, r5, 0x0, 0x1000007ffff000)

20:09:11 executing program 5:
r0 = socket(0x10, 0x3, 0x0)
sendto(r0, &(0x7f00000001c0)="120000001a00e7ef077b1a3fbdf58185539c", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f0000000140)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x42d}, {&(0x7f00000000c0)=""/85, 0x4e4}, {&(0x7f00000024c0)=""/4096, 0x1048}, {&(0x7f0000000400)=""/120, 0x78}, {&(0x7f0000000480)=""/60, 0xc6}, {&(0x7f0000000280)=""/77, 0x7}, {&(0x7f0000000540)=""/154, 0x9a}, {&(0x7f0000000340)=""/22, 0x21}], 0x8, &(0x7f0000002400)=""/191, 0x1f9}}], 0x4000000000001de, 0x6, &(0x7f0000003700)={0x77359400})
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$kcm(0x29, 0x5, 0x0)
r3 = fcntl$dupfd(r1, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)

[  459.197732][    C0] sd 0:0:1:0: [sg0] tag#2704 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  459.208676][    C0] sd 0:0:1:0: [sg0] tag#2704 CDB: Test Unit Ready
[  459.215494][    C0] sd 0:0:1:0: [sg0] tag#2704 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  459.233601][    C0] sd 0:0:1:0: [sg0] tag#2704 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  459.243628][    C0] sd 0:0:1:0: [sg0] tag#2704 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  459.254888][    C0] sd 0:0:1:0: [sg0] tag#2704 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  459.264761][    C0] sd 0:0:1:0: [sg0] tag#2704 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  459.274724][    C0] sd 0:0:1:0: [sg0] tag#2704 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  459.284593][    C0] sd 0:0:1:0: [sg0] tag#2704 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  459.294473][    C0] sd 0:0:1:0: [sg0] tag#2704 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  459.304549][    C0] sd 0:0:1:0: [sg0] tag#2704 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  459.314433][    C0] sd 0:0:1:0: [sg0] tag#2704 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  459.324327][    C0] sd 0:0:1:0: [sg0] tag#2704 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  459.335262][    C0] sd 0:0:1:0: [sg0] tag#2704 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  459.345239][    C0] sd 0:0:1:0: [sg0] tag#2704 CDB[c0]: 00 00 00 00 00 00 00 00
[  459.411733][T13165] not chained 760000 origins
[  459.416540][T13165] CPU: 0 PID: 13165 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0
[  459.419263][T13165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  459.419263][T13165] Call Trace:
[  459.419263][T13165]  dump_stack+0x1df/0x240
[  459.419263][T13165]  kmsan_internal_chain_origin+0x6f/0x130
[  459.419263][T13165]  ? is_module_text_address+0x4d/0x2a0
[  459.419263][T13165]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  459.419263][T13165]  ? __kernel_text_address+0x171/0x2d0
[  459.419263][T13165]  ? unwind_get_return_address+0x8c/0x130
[  459.419263][T13165]  ? entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  459.419263][T13165]  ? arch_stack_walk+0x2a2/0x3e0
[  459.419263][T13165]  ? stack_trace_save+0x1a0/0x1a0
[  459.419263][T13165]  ? kmsan_get_metadata+0x4f/0x180
[  459.419263][T13165]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  459.419263][T13165]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  459.419263][T13165]  ? stack_trace_save+0x123/0x1a0
[  459.419263][T13165]  ? kmsan_get_metadata+0x11d/0x180
[  459.419263][T13165]  __msan_chain_origin+0x50/0x90
[  459.419263][T13165]  rmd256_transform+0x43e9/0x4440
[  459.419263][T13165]  rmd256_update+0x343/0x4f0
[  459.419263][T13165]  ? rmd256_init+0x260/0x260
[  459.419263][T13165]  crypto_shash_update+0x4e9/0x550
[  459.419263][T13165]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  459.419263][T13165]  ? crypto_hash_walk_first+0x1fd/0x360
[  459.419263][T13165]  ? kmsan_get_metadata+0x4f/0x180
[  459.419263][T13165]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  459.419263][T13165]  shash_async_update+0x113/0x1d0
[  459.419263][T13165]  ? shash_async_init+0x1e0/0x1e0
[  459.419263][T13165]  hash_sendpage+0x8ef/0xdf0
[  459.419263][T13165]  ? hash_recvmsg+0xd30/0xd30
[  459.419263][T13165]  sock_sendpage+0x1e1/0x2c0
[  459.419263][T13165]  pipe_to_sendpage+0x38c/0x4c0
[  459.419263][T13165]  ? sock_fasync+0x250/0x250
[  459.419263][T13165]  __splice_from_pipe+0x565/0xf00
[  459.419263][T13165]  ? generic_splice_sendpage+0x2d0/0x2d0
[  459.419263][T13165]  generic_splice_sendpage+0x1d5/0x2d0
[  459.419263][T13165]  ? iter_file_splice_write+0x1800/0x1800
[  459.419263][T13165]  direct_splice_actor+0x1fd/0x580
[  459.419263][T13165]  ? kmsan_get_metadata+0x4f/0x180
[  459.419263][T13165]  splice_direct_to_actor+0x6b2/0xf50
[  459.419263][T13165]  ? do_splice_direct+0x580/0x580
[  459.419263][T13165]  do_splice_direct+0x342/0x580
[  459.419263][T13165]  do_sendfile+0x101b/0x1d40
[  459.419263][T13165]  __se_sys_sendfile64+0x2bb/0x360
[  459.419263][T13165]  ? kmsan_get_metadata+0x4f/0x180
[  459.419263][T13165]  __x64_sys_sendfile64+0x56/0x70
[  459.419263][T13165]  do_syscall_64+0xb0/0x150
[  459.419263][T13165]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  459.419263][T13165] RIP: 0033:0x45c1d9
[  459.419263][T13165] Code: Bad RIP value.
[  459.419263][T13165] RSP: 002b:00007f42d54efc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  459.419263][T13165] RAX: ffffffffffffffda RBX: 0000000000025a00 RCX: 000000000045c1d9
[  459.419263][T13165] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000007
[  459.419263][T13165] RBP: 000000000078bf48 R08: 0000000000000000 R09: 0000000000000000
[  459.419263][T13165] R10: 001000007ffff000 R11: 0000000000000246 R12: 000000000078bf0c
[  459.419263][T13165] R13: 0000000000c9fb6f R14: 00007f42d54f09c0 R15: 000000000078bf0c
[  459.419263][T13165] Uninit was stored to memory at:
[  459.419263][T13165]  kmsan_internal_chain_origin+0xad/0x130
[  459.419263][T13165]  __msan_chain_origin+0x50/0x90
[  459.419263][T13165]  rmd256_transform+0x43e9/0x4440
[  459.419263][T13165]  rmd256_update+0x343/0x4f0
[  459.419263][T13165]  crypto_shash_update+0x4e9/0x550
[  459.419263][T13165]  shash_async_update+0x113/0x1d0
[  459.419263][T13165]  hash_sendpage+0x8ef/0xdf0
[  459.419263][T13165]  sock_sendpage+0x1e1/0x2c0
[  459.419263][T13165]  pipe_to_sendpage+0x38c/0x4c0
[  459.419263][T13165]  __splice_from_pipe+0x565/0xf00
[  459.419263][T13165]  generic_splice_sendpage+0x1d5/0x2d0
[  459.419263][T13165]  direct_splice_actor+0x1fd/0x580
[  459.419263][T13165]  splice_direct_to_actor+0x6b2/0xf50
[  459.419263][T13165]  do_splice_direct+0x342/0x580
[  459.419263][T13165]  do_sendfile+0x101b/0x1d40
[  459.419263][T13165]  __se_sys_sendfile64+0x2bb/0x360
[  459.419263][T13165]  __x64_sys_sendfile64+0x56/0x70
[  459.419263][T13165]  do_syscall_64+0xb0/0x150
[  459.419263][T13165]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  459.419263][T13165] 
[  459.419263][T13165] Uninit was stored to memory at:
[  459.419263][T13165]  kmsan_internal_chain_origin+0xad/0x130
[  459.419263][T13165]  __msan_chain_origin+0x50/0x90
[  459.419263][T13165]  rmd256_transform+0x43e9/0x4440
[  459.419263][T13165]  rmd256_update+0x343/0x4f0
[  459.419263][T13165]  crypto_shash_update+0x4e9/0x550
[  459.419263][T13165]  shash_async_update+0x113/0x1d0
[  459.419263][T13165]  hash_sendpage+0x8ef/0xdf0
[  459.419263][T13165]  sock_sendpage+0x1e1/0x2c0
[  459.419263][T13165]  pipe_to_sendpage+0x38c/0x4c0
[  459.419263][T13165]  __splice_from_pipe+0x565/0xf00
[  459.419263][T13165]  generic_splice_sendpage+0x1d5/0x2d0
[  459.419263][T13165]  direct_splice_actor+0x1fd/0x580
[  459.419263][T13165]  splice_direct_to_actor+0x6b2/0xf50
[  459.419263][T13165]  do_splice_direct+0x342/0x580
[  459.419263][T13165]  do_sendfile+0x101b/0x1d40
[  459.419263][T13165]  __se_sys_sendfile64+0x2bb/0x360
[  459.419263][T13165]  __x64_sys_sendfile64+0x56/0x70
[  459.419263][T13165]  do_syscall_64+0xb0/0x150
[  459.419263][T13165]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  459.419263][T13165] 
[  459.419263][T13165] Uninit was stored to memory at:
[  459.419263][T13165]  kmsan_internal_chain_origin+0xad/0x130
[  459.419263][T13165]  __msan_chain_origin+0x50/0x90
[  459.419263][T13165]  rmd256_transform+0x43e9/0x4440
[  459.419263][T13165]  rmd256_update+0x343/0x4f0
[  459.419263][T13165]  crypto_shash_update+0x4e9/0x550
[  459.419263][T13165]  shash_async_update+0x113/0x1d0
[  459.419263][T13165]  hash_sendpage+0x8ef/0xdf0
[  459.419263][T13165]  sock_sendpage+0x1e1/0x2c0
[  459.419263][T13165]  pipe_to_sendpage+0x38c/0x4c0
[  459.419263][T13165]  __splice_from_pipe+0x565/0xf00
[  459.419263][T13165]  generic_splice_sendpage+0x1d5/0x2d0
[  459.419263][T13165]  direct_splice_actor+0x1fd/0x580
[  459.419263][T13165]  splice_direct_to_actor+0x6b2/0xf50
[  459.419263][T13165]  do_splice_direct+0x342/0x580
[  459.419263][T13165]  do_sendfile+0x101b/0x1d40
[  459.419263][T13165]  __se_sys_sendfile64+0x2bb/0x360
[  459.419263][T13165]  __x64_sys_sendfile64+0x56/0x70
[  459.419263][T13165]  do_syscall_64+0xb0/0x150
[  459.419263][T13165]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  459.419263][T13165] 
[  459.419263][T13165] Uninit was stored to memory at:
[  459.419263][T13165]  kmsan_internal_chain_origin+0xad/0x130
[  459.419263][T13165]  __msan_chain_origin+0x50/0x90
[  459.419263][T13165]  rmd256_transform+0x43e9/0x4440
[  459.419263][T13165]  rmd256_update+0x343/0x4f0
[  459.419263][T13165]  crypto_shash_update+0x4e9/0x550
[  459.419263][T13165]  shash_async_update+0x113/0x1d0
[  459.419263][T13165]  hash_sendpage+0x8ef/0xdf0
[  459.419263][T13165]  sock_sendpage+0x1e1/0x2c0
[  459.419263][T13165]  pipe_to_sendpage+0x38c/0x4c0
[  459.419263][T13165]  __splice_from_pipe+0x565/0xf00
[  459.419263][T13165]  generic_splice_sendpage+0x1d5/0x2d0
[  459.419263][T13165]  direct_splice_actor+0x1fd/0x580
[  459.419263][T13165]  splice_direct_to_actor+0x6b2/0xf50
[  459.419263][T13165]  do_splice_direct+0x342/0x580
[  459.419263][T13165]  do_sendfile+0x101b/0x1d40
[  459.419263][T13165]  __se_sys_sendfile64+0x2bb/0x360
[  459.419263][T13165]  __x64_sys_sendfile64+0x56/0x70
[  459.419263][T13165]  do_syscall_64+0xb0/0x150
[  459.419263][T13165]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  459.419263][T13165] 
[  459.419263][T13165] Uninit was stored to memory at:
[  459.419263][T13165]  kmsan_internal_chain_origin+0xad/0x130
[  459.419263][T13165]  __msan_chain_origin+0x50/0x90
[  459.419263][T13165]  rmd256_transform+0x43e9/0x4440
[  459.419263][T13165]  rmd256_update+0x343/0x4f0
[  459.419263][T13165]  crypto_shash_update+0x4e9/0x550
[  459.419263][T13165]  shash_async_update+0x113/0x1d0
[  459.419263][T13165]  hash_sendpage+0x8ef/0xdf0
[  459.419263][T13165]  sock_sendpage+0x1e1/0x2c0
[  459.419263][T13165]  pipe_to_sendpage+0x38c/0x4c0
[  459.419263][T13165]  __splice_from_pipe+0x565/0xf00
[  459.419263][T13165]  generic_splice_sendpage+0x1d5/0x2d0
[  459.419263][T13165]  direct_splice_actor+0x1fd/0x580
[  459.419263][T13165]  splice_direct_to_actor+0x6b2/0xf50
[  459.419263][T13165]  do_splice_direct+0x342/0x580
[  459.419263][T13165]  do_sendfile+0x101b/0x1d40
[  459.419263][T13165]  __se_sys_sendfile64+0x2bb/0x360
[  459.419263][T13165]  __x64_sys_sendfile64+0x56/0x70
[  459.419263][T13165]  do_syscall_64+0xb0/0x150
[  459.419263][T13165]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  459.419263][T13165] 
[  459.419263][T13165] Uninit was stored to memory at:
[  459.419263][T13165]  kmsan_internal_chain_origin+0xad/0x130
[  459.419263][T13165]  __msan_chain_origin+0x50/0x90
[  459.419263][T13165]  rmd256_transform+0x43e9/0x4440
[  459.419263][T13165]  rmd256_update+0x227/0x4f0
[  459.419263][T13165]  crypto_shash_update+0x4e9/0x550
[  459.419263][T13165]  shash_async_update+0x113/0x1d0
[  459.419263][T13165]  hash_sendpage+0x8ef/0xdf0
[  459.419263][T13165]  sock_sendpage+0x1e1/0x2c0
[  459.419263][T13165]  pipe_to_sendpage+0x38c/0x4c0
[  459.419263][T13165]  __splice_from_pipe+0x565/0xf00
[  459.419263][T13165]  generic_splice_sendpage+0x1d5/0x2d0
[  459.419263][T13165]  direct_splice_actor+0x1fd/0x580
[  459.419263][T13165]  splice_direct_to_actor+0x6b2/0xf50
[  459.419263][T13165]  do_splice_direct+0x342/0x580
[  459.419263][T13165]  do_sendfile+0x101b/0x1d40
[  459.419263][T13165]  __se_sys_sendfile64+0x2bb/0x360
[  459.419263][T13165]  __x64_sys_sendfile64+0x56/0x70
[  459.419263][T13165]  do_syscall_64+0xb0/0x150
[  459.419263][T13165]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  459.419263][T13165] 
[  459.419263][T13165] Uninit was stored to memory at:
[  459.419263][T13165]  kmsan_internal_chain_origin+0xad/0x130
[  459.419263][T13165]  kmsan_memcpy_memmove_metadata+0x272/0x2e0
[  459.419263][T13165]  kmsan_memcpy_metadata+0xb/0x10
[  459.419263][T13165]  __msan_memcpy+0x43/0x50
[  459.419263][T13165]  rmd256_update+0x1fc/0x4f0
[  459.419263][T13165]  crypto_shash_update+0x4e9/0x550
[  459.419263][T13165]  shash_async_update+0x113/0x1d0
[  459.419263][T13165]  hash_sendpage+0x8ef/0xdf0
[  459.419263][T13165]  sock_sendpage+0x1e1/0x2c0
[  459.419263][T13165]  pipe_to_sendpage+0x38c/0x4c0
[  459.419263][T13165]  __splice_from_pipe+0x565/0xf00
[  459.419263][T13165]  generic_splice_sendpage+0x1d5/0x2d0
[  459.419263][T13165]  direct_splice_actor+0x1fd/0x580
[  459.419263][T13165]  splice_direct_to_actor+0x6b2/0xf50
[  459.419263][T13165]  do_splice_direct+0x342/0x580
[  459.419263][T13165]  do_sendfile+0x101b/0x1d40
[  459.419263][T13165]  __se_sys_sendfile64+0x2bb/0x360
[  459.419263][T13165]  __x64_sys_sendfile64+0x56/0x70
[  459.419263][T13165]  do_syscall_64+0xb0/0x150
[  459.419263][T13165]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  459.419263][T13165] 
[  459.419263][T13165] Uninit was created at:
[  459.419263][T13165]  kmsan_save_stack_with_flags+0x3c/0x90
[  459.419263][T13165]  kmsan_alloc_page+0xb9/0x180
[  459.419263][T13165]  __alloc_pages_nodemask+0x56a2/0x5dc0
[  459.419263][T13165]  alloc_pages_current+0x672/0x990
[  459.419263][T13165]  push_pipe+0x605/0xb70
[  459.419263][T13165]  iov_iter_get_pages_alloc+0x18a9/0x21c0
[  459.419263][T13165]  do_splice_to+0x4fc/0x14f0
[  459.419263][T13165]  splice_direct_to_actor+0x45c/0xf50
[  459.419263][T13165]  do_splice_direct+0x342/0x580
[  459.419263][T13165]  do_sendfile+0x101b/0x1d40
[  459.419263][T13165]  __se_sys_sendfile64+0x2bb/0x360
[  459.419263][T13165]  __x64_sys_sendfile64+0x56/0x70
[  459.419263][T13165]  do_syscall_64+0xb0/0x150
[  459.419263][T13165]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  460.623818][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
20:09:12 executing program 2:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f00000000c0)="24000000200099f0003be90000ed190e020008160000100000ba1080080002007f", 0x21)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f00000002c0)=""/2, 0x2}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x40)
write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @ext={0x91, &(0x7f0000000200)="f7f249b987e7326bc88b9baf0500000032a5b60a00008024c30e478947d190ac004c45bec9c683f53b506b8c5893d35500c52c65ec345a8b75c1c317c3da822e15355c2ae26ba533fad72a1d53a9ff5b4ac51e08dcaeeb01eeb2dd9b56de54fcea571b152f7d37491e04451c47d280ce8f3e884f9fd6a9cd4b078ee6986d183dc593981799b436702a74c456ed31e7ea7d"}}], 0x1c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

20:09:12 executing program 4:
unshare(0x6040600)
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rtc0\x00', 0x0, 0x0)
ioctl$RTC_WKALM_SET(r0, 0x4028700f, 0x0)

20:09:12 executing program 0:
r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd)
r1 = add_key$user(&(0x7f0000000080)='user\x00', &(0x7f0000000400)={'syz', 0x2}, &(0x7f0000000180)="88", 0x1, r0)
r2 = add_key$user(&(0x7f00000003c0)='user\x00', &(0x7f0000000440)={'syz'}, &(0x7f00000000c0), 0x5ba8, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000280)={r1, r2, r1}, 0x0, 0x0, 0x0)
keyctl$KEYCTL_PKEY_SIGN(0x1b, &(0x7f0000001180)={r2, 0x23, 0xcb}, &(0x7f00000011c0)={'enc=', 'pkcs1', ' hash=', {'blake2s-224\x00'}}, &(0x7f0000001240)="6a3d5fe66ff9810b149e932274a649b06a377f32055edb977642896dfb4dfefce0cd4b", &(0x7f0000001280)=""/203)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r4 = accept4(r3, 0x0, 0x0, 0x0)
r5 = openat$null(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/null\x00', 0x4042, 0x0)
accept4$alg(r5, 0x0, 0x0, 0x80000)
r6 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r4, r6, 0x0, 0x1000007ffff000)
r7 = socket$inet6_sctp(0xa, 0x5, 0x84)
r8 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r8, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r9=>0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r7, 0x84, 0x75, &(0x7f00000000c0)={r9}, &(0x7f0000000100)=0x8)
getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(r5, 0x84, 0x1b, &(0x7f0000000100)={r9, 0x1000, "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"}, &(0x7f0000001140)=0x1008)

20:09:12 executing program 3:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000380)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x2)
r3 = dup(r2)
write$UHID_INPUT(r3, &(0x7f0000001440)={0x2400, {"a2e3ad21ed6b52f99cfbf4c087f719b4d026e7ff7fc6e553f836500e8b546a1b485594370890e0878fdb1ac6e704e366b4956c409b4b2a5b67f3988f7ef31952a981ffe8d178708c523c921b1b5a4b0a169b5b9b366d3b78130daa61d8e809ea882f5802b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179cef309f4cff7738596ecae8707ce065cd5b91cd0ae193973735b36d5b1b63e91c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c30900000000000000a85e89c46329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecd03aded6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801119242ca5b6bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9f6ff14ac488ec130fb3850a27afc953854a642c57519544ae15a7e454dea05918b4124351601611c8f11baa500a3621c56cea8d20ff911a0c41db6ebe8cac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6a62fa678ca14ffd9f9db2a7869d85864056526f889af43a60560a22f1fca567e65d5e880572286522449df466c632b3570243f989cce3803f465e41e610c20d80421d653a5120000008213b704c7fb082ff27590678ef9f190bae979babc7041d860420c5664ba7921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710acf2e31caa04b2e286bea37ce0d0d4aa202fef5952a5391fd5615d429a04a689b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2f05dd3318271a1f5f8528f227e79c1388dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eefc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44060bebc2420aed92fa9b6578b4779415d97b9a6d6d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2aed9e53803ed0ca4ae3a9737d214060005ea6f1783e287b3bee96e3a7288afe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f48fe4eae9ca1207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e67d1d7232f17696294378ce716dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf02b98a269b891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efedfd71af9444e197f47e866101496f42355bc7872c827467cfa5c4e72730d56bd068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f7927f889b813076038e79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee615f7084a607a7eceb6243378e0610060f02cca4051c2f001edb3d78fb4b55668dda93aec92a5de203717aa49c2d284acfabe262fccfcbb2b75a2183c4e15a7b6eb65ca8104e1b4da1fbb7dc7ab2fc043aead87c32ab875ee7c2e7b7019c902cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad948741b2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd73643de50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c1023bf70cc77737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd75c2f998d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73c497579773767075428067e7f16f4dde374f8211fef42cb468e623daf60b3569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40426db6fe29068c0ca3d3414442e863a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd9432971215d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae44369ddb4581c55925d0f6f1ba471eba281f259152f85a654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a39973132f02768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaee5ee6cf1d0ab378dd4dd891e937c2ea5410e05130935e00785ec27e923911fab964c271556527697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9ddbfb96d6861aca47da73d6f3144345f48843dd014e5c5ad8fe995754bd9cf32fce1e7027132f2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afae5336651b1b9bd522d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a3766d5439020484f4113c4c859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee29165895ac4b008e595f437491d87abed02cefcd9db53d94d02dae17b118e5d6787463181f4b87c10772d2b13f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76d57227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f84fad6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b3110b932a4d02da711b757fe43c06d21e35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc238a081f758cefcce3fbf4625a7e7de40e42e07b34449e15eb0305626afb1dd179b8a065cc7348663a52190202c7af288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4908b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cb0b3e35cb80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c60edddab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb1575912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0db42c0456ec014508e5247d33ae6c962d35603ff8454c16f8342856935125102bb784ed714887071f3d998efdd9923c954ab6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee658e4cb5e930ed624806c43a006dc9336d07c2b8081c128ad2706f48261f7897084c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da3932ba5c04c24a560ad80a3ce654578376e599aff3565b1d531f30912b99e6619ebe93cc0b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea40686e730861e83d89d0fe662a46b7f71cd47744db86c50b704c971d90195c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e6491953264d2700c838fa2c7b34252600c9654e502dcea39cb6bc3eb69992e234b4ca7db2f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe36d7d3e5db21b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b010a3ad0a5dbed2881a9700af561ac8c7e36bb2fc4c40e9cf96f06817fb903729a7d528ed15b97c9ede7885d94ff1aa70826ad01a9b03c37b0969be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c148cd2f9c55f4901203a9a8a2c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0fc5a752f90", 0x1000}}, 0x1006)

20:09:12 executing program 5:
r0 = socket(0x10, 0x3, 0x0)
sendto(r0, &(0x7f00000001c0)="120000001a00e7ef077b1a3fbdf58185539c", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f0000000140)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x42d}, {&(0x7f00000000c0)=""/85, 0x4e4}, {&(0x7f00000024c0)=""/4096, 0x1048}, {&(0x7f0000000400)=""/120, 0x78}, {&(0x7f0000000480)=""/60, 0xc6}, {&(0x7f0000000280)=""/77, 0x7}, {&(0x7f0000000540)=""/154, 0x9a}, {&(0x7f0000000340)=""/22, 0x21}], 0x8, &(0x7f0000002400)=""/191, 0x1f9}}], 0x4000000000001de, 0x6, &(0x7f0000003700)={0x77359400})
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$kcm(0x29, 0x5, 0x0)
r3 = fcntl$dupfd(r1, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)

[  460.906774][T13185] MPI: mpi too large (186176 bits)
20:09:13 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

[  461.237933][    C1] sd 0:0:1:0: [sg0] tag#2705 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  461.248739][    C1] sd 0:0:1:0: [sg0] tag#2705 CDB: Test Unit Ready
[  461.255509][    C1] sd 0:0:1:0: [sg0] tag#2705 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  461.265703][    C1] sd 0:0:1:0: [sg0] tag#2705 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  461.275771][    C1] sd 0:0:1:0: [sg0] tag#2705 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  461.285800][    C1] sd 0:0:1:0: [sg0] tag#2705 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  461.295951][    C1] sd 0:0:1:0: [sg0] tag#2705 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  461.305971][    C1] sd 0:0:1:0: [sg0] tag#2705 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  461.315898][    C1] sd 0:0:1:0: [sg0] tag#2705 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  461.326328][    C1] sd 0:0:1:0: [sg0] tag#2705 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
20:09:13 executing program 3:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000380)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x2)
r3 = dup(r2)
write$UHID_INPUT(r3, &(0x7f0000001440)={0x2400, {"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", 0x1000}}, 0x1006)

20:09:13 executing program 4:
unshare(0x6040600)
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rtc0\x00', 0x0, 0x0)
ioctl$RTC_WKALM_SET(r0, 0x4028700f, 0x0)

[  461.336232][    C1] sd 0:0:1:0: [sg0] tag#2705 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  461.346121][    C1] sd 0:0:1:0: [sg0] tag#2705 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  461.356041][    C1] sd 0:0:1:0: [sg0] tag#2705 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  461.366077][    C1] sd 0:0:1:0: [sg0] tag#2705 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  461.375926][    C1] sd 0:0:1:0: [sg0] tag#2705 CDB[c0]: 00 00 00 00 00 00 00 00
20:09:13 executing program 5:
r0 = socket(0x10, 0x3, 0x0)
sendto(r0, &(0x7f00000001c0)="120000001a00e7ef077b1a3fbdf58185539c", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f0000000140)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x42d}, {&(0x7f00000000c0)=""/85, 0x4e4}, {&(0x7f00000024c0)=""/4096, 0x1048}, {&(0x7f0000000400)=""/120, 0x78}, {&(0x7f0000000480)=""/60, 0xc6}, {&(0x7f0000000280)=""/77, 0x7}, {&(0x7f0000000540)=""/154, 0x9a}, {&(0x7f0000000340)=""/22, 0x21}], 0x8, &(0x7f0000002400)=""/191, 0x1f9}}], 0x4000000000001de, 0x6, &(0x7f0000003700)={0x77359400})
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$kcm(0x29, 0x5, 0x0)
r3 = fcntl$dupfd(r1, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)

[  461.424813][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  461.508245][T13195] not chained 770000 origins
[  461.509264][T13195] CPU: 0 PID: 13195 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0
[  461.509264][T13195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  461.509264][T13195] Call Trace:
[  461.509264][T13195]  dump_stack+0x1df/0x240
[  461.509264][T13195]  kmsan_internal_chain_origin+0x6f/0x130
[  461.509264][T13195]  ? is_module_text_address+0x4d/0x2a0
[  461.509264][T13195]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  461.509264][T13195]  ? __kernel_text_address+0x171/0x2d0
[  461.559835][T13195]  ? unwind_get_return_address+0x8c/0x130
[  461.559835][T13195]  ? entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  461.570857][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  461.559835][T13195]  ? arch_stack_walk+0x2a2/0x3e0
[  461.559835][T13195]  ? stack_trace_save+0x1a0/0x1a0
[  461.559835][T13195]  ? kmsan_get_metadata+0x4f/0x180
[  461.559835][T13195]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  461.559835][T13195]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  461.559835][T13195]  ? stack_trace_save+0x123/0x1a0
[  461.559835][T13195]  ? kmsan_get_metadata+0x11d/0x180
[  461.559835][T13195]  __msan_chain_origin+0x50/0x90
[  461.559835][T13195]  rmd256_transform+0x442f/0x4440
[  461.559835][T13195]  rmd256_update+0x343/0x4f0
[  461.559835][T13195]  ? rmd256_init+0x260/0x260
[  461.559835][T13195]  crypto_shash_update+0x4e9/0x550
[  461.559835][T13195]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  461.559835][T13195]  ? crypto_hash_walk_first+0x1fd/0x360
[  461.559835][T13195]  ? kmsan_get_metadata+0x4f/0x180
[  461.559835][T13195]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  461.559835][T13195]  shash_async_update+0x113/0x1d0
[  461.559835][T13195]  ? shash_async_init+0x1e0/0x1e0
[  461.559835][T13195]  hash_sendpage+0x8ef/0xdf0
[  461.559835][T13195]  ? hash_recvmsg+0xd30/0xd30
[  461.559835][T13195]  sock_sendpage+0x1e1/0x2c0
[  461.559835][T13195]  pipe_to_sendpage+0x38c/0x4c0
[  461.559835][T13195]  ? sock_fasync+0x250/0x250
[  461.559835][T13195]  __splice_from_pipe+0x565/0xf00
[  461.559835][T13195]  ? generic_splice_sendpage+0x2d0/0x2d0
[  461.559835][T13195]  generic_splice_sendpage+0x1d5/0x2d0
[  461.559835][T13195]  ? iter_file_splice_write+0x1800/0x1800
[  461.559835][T13195]  direct_splice_actor+0x1fd/0x580
[  461.559835][T13195]  ? kmsan_get_metadata+0x4f/0x180
[  461.559835][T13195]  splice_direct_to_actor+0x6b2/0xf50
[  461.559835][T13195]  ? do_splice_direct+0x580/0x580
[  461.559835][T13195]  do_splice_direct+0x342/0x580
[  461.559835][T13195]  do_sendfile+0x101b/0x1d40
[  461.559835][T13195]  __se_sys_sendfile64+0x2bb/0x360
[  461.559835][T13195]  ? kmsan_get_metadata+0x4f/0x180
[  461.559835][T13195]  __x64_sys_sendfile64+0x56/0x70
[  461.559835][T13195]  do_syscall_64+0xb0/0x150
[  461.559835][T13195]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  461.559835][T13195] RIP: 0033:0x45c1d9
[  461.559835][T13195] Code: Bad RIP value.
[  461.559835][T13195] RSP: 002b:00007f42d54cec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  461.559835][T13195] RAX: ffffffffffffffda RBX: 0000000000025a00 RCX: 000000000045c1d9
[  461.559835][T13195] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000007
[  461.559835][T13195] RBP: 000000000078bfe8 R08: 0000000000000000 R09: 0000000000000000
[  461.559835][T13195] R10: 001000007ffff000 R11: 0000000000000246 R12: 000000000078bfac
[  461.559835][T13195] R13: 0000000000c9fb6f R14: 00007f42d54cf9c0 R15: 000000000078bfac
[  461.559835][T13195] Uninit was stored to memory at:
[  461.559835][T13195]  kmsan_internal_chain_origin+0xad/0x130
[  461.559835][T13195]  __msan_chain_origin+0x50/0x90
[  461.559835][T13195]  rmd256_transform+0x442f/0x4440
[  461.559835][T13195]  rmd256_update+0x343/0x4f0
[  461.559835][T13195]  crypto_shash_update+0x4e9/0x550
[  461.559835][T13195]  shash_async_update+0x113/0x1d0
[  461.559835][T13195]  hash_sendpage+0x8ef/0xdf0
[  461.559835][T13195]  sock_sendpage+0x1e1/0x2c0
[  461.559835][T13195]  pipe_to_sendpage+0x38c/0x4c0
[  461.559835][T13195]  __splice_from_pipe+0x565/0xf00
[  461.559835][T13195]  generic_splice_sendpage+0x1d5/0x2d0
[  461.559835][T13195]  direct_splice_actor+0x1fd/0x580
[  461.559835][T13195]  splice_direct_to_actor+0x6b2/0xf50
[  461.559835][T13195]  do_splice_direct+0x342/0x580
[  461.559835][T13195]  do_sendfile+0x101b/0x1d40
[  461.559835][T13195]  __se_sys_sendfile64+0x2bb/0x360
[  461.559835][T13195]  __x64_sys_sendfile64+0x56/0x70
[  461.559835][T13195]  do_syscall_64+0xb0/0x150
[  461.559835][T13195]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  461.559835][T13195] 
[  461.559835][T13195] Uninit was stored to memory at:
[  461.559835][T13195]  kmsan_internal_chain_origin+0xad/0x130
[  461.559835][T13195]  __msan_chain_origin+0x50/0x90
[  461.559835][T13195]  rmd256_transform+0x442f/0x4440
[  461.559835][T13195]  rmd256_update+0x343/0x4f0
[  461.559835][T13195]  crypto_shash_update+0x4e9/0x550
[  461.559835][T13195]  shash_async_update+0x113/0x1d0
[  461.559835][T13195]  hash_sendpage+0x8ef/0xdf0
[  461.559835][T13195]  sock_sendpage+0x1e1/0x2c0
[  461.559835][T13195]  pipe_to_sendpage+0x38c/0x4c0
[  461.559835][T13195]  __splice_from_pipe+0x565/0xf00
[  461.559835][T13195]  generic_splice_sendpage+0x1d5/0x2d0
[  461.559835][T13195]  direct_splice_actor+0x1fd/0x580
[  461.559835][T13195]  splice_direct_to_actor+0x6b2/0xf50
[  461.559835][T13195]  do_splice_direct+0x342/0x580
[  461.559835][T13195]  do_sendfile+0x101b/0x1d40
[  461.559835][T13195]  __se_sys_sendfile64+0x2bb/0x360
[  461.559835][T13195]  __x64_sys_sendfile64+0x56/0x70
[  461.559835][T13195]  do_syscall_64+0xb0/0x150
[  461.559835][T13195]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  461.559835][T13195] 
[  461.559835][T13195] Uninit was stored to memory at:
[  461.559835][T13195]  kmsan_internal_chain_origin+0xad/0x130
[  461.559835][T13195]  __msan_chain_origin+0x50/0x90
[  461.559835][T13195]  rmd256_transform+0x442f/0x4440
[  461.559835][T13195]  rmd256_update+0x343/0x4f0
[  461.559835][T13195]  crypto_shash_update+0x4e9/0x550
[  461.559835][T13195]  shash_async_update+0x113/0x1d0
[  461.559835][T13195]  hash_sendpage+0x8ef/0xdf0
[  461.559835][T13195]  sock_sendpage+0x1e1/0x2c0
[  461.559835][T13195]  pipe_to_sendpage+0x38c/0x4c0
[  461.559835][T13195]  __splice_from_pipe+0x565/0xf00
[  461.559835][T13195]  generic_splice_sendpage+0x1d5/0x2d0
[  461.559835][T13195]  direct_splice_actor+0x1fd/0x580
[  461.559835][T13195]  splice_direct_to_actor+0x6b2/0xf50
[  461.559835][T13195]  do_splice_direct+0x342/0x580
[  461.559835][T13195]  do_sendfile+0x101b/0x1d40
[  461.559835][T13195]  __se_sys_sendfile64+0x2bb/0x360
[  461.559835][T13195]  __x64_sys_sendfile64+0x56/0x70
[  461.559835][T13195]  do_syscall_64+0xb0/0x150
[  461.559835][T13195]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  461.559835][T13195] 
[  461.559835][T13195] Uninit was stored to memory at:
[  461.559835][T13195]  kmsan_internal_chain_origin+0xad/0x130
[  461.559835][T13195]  __msan_chain_origin+0x50/0x90
[  461.559835][T13195]  rmd256_transform+0x442f/0x4440
[  461.559835][T13195]  rmd256_update+0x343/0x4f0
[  461.559835][T13195]  crypto_shash_update+0x4e9/0x550
[  461.559835][T13195]  shash_async_update+0x113/0x1d0
[  461.559835][T13195]  hash_sendpage+0x8ef/0xdf0
[  461.559835][T13195]  sock_sendpage+0x1e1/0x2c0
[  461.559835][T13195]  pipe_to_sendpage+0x38c/0x4c0
[  461.559835][T13195]  __splice_from_pipe+0x565/0xf00
[  461.559835][T13195]  generic_splice_sendpage+0x1d5/0x2d0
[  461.559835][T13195]  direct_splice_actor+0x1fd/0x580
[  461.559835][T13195]  splice_direct_to_actor+0x6b2/0xf50
[  461.559835][T13195]  do_splice_direct+0x342/0x580
[  461.559835][T13195]  do_sendfile+0x101b/0x1d40
[  461.559835][T13195]  __se_sys_sendfile64+0x2bb/0x360
[  461.559835][T13195]  __x64_sys_sendfile64+0x56/0x70
[  461.559835][T13195]  do_syscall_64+0xb0/0x150
[  461.559835][T13195]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  461.559835][T13195] 
[  461.559835][T13195] Uninit was stored to memory at:
[  461.559835][T13195]  kmsan_internal_chain_origin+0xad/0x130
[  461.559835][T13195]  __msan_chain_origin+0x50/0x90
[  461.559835][T13195]  rmd256_transform+0x442f/0x4440
[  461.559835][T13195]  rmd256_update+0x343/0x4f0
[  461.559835][T13195]  crypto_shash_update+0x4e9/0x550
[  461.559835][T13195]  shash_async_update+0x113/0x1d0
[  461.559835][T13195]  hash_sendpage+0x8ef/0xdf0
[  461.559835][T13195]  sock_sendpage+0x1e1/0x2c0
[  461.559835][T13195]  pipe_to_sendpage+0x38c/0x4c0
[  461.559835][T13195]  __splice_from_pipe+0x565/0xf00
[  461.559835][T13195]  generic_splice_sendpage+0x1d5/0x2d0
[  461.559835][T13195]  direct_splice_actor+0x1fd/0x580
[  461.559835][T13195]  splice_direct_to_actor+0x6b2/0xf50
[  461.559835][T13195]  do_splice_direct+0x342/0x580
[  461.559835][T13195]  do_sendfile+0x101b/0x1d40
[  461.559835][T13195]  __se_sys_sendfile64+0x2bb/0x360
[  461.559835][T13195]  __x64_sys_sendfile64+0x56/0x70
[  461.559835][T13195]  do_syscall_64+0xb0/0x150
[  461.559835][T13195]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  461.559835][T13195] 
[  461.559835][T13195] Uninit was stored to memory at:
[  461.559835][T13195]  kmsan_internal_chain_origin+0xad/0x130
[  461.559835][T13195]  __msan_chain_origin+0x50/0x90
[  461.559835][T13195]  rmd256_transform+0x442f/0x4440
[  461.559835][T13195]  rmd256_update+0x227/0x4f0
[  461.559835][T13195]  crypto_shash_update+0x4e9/0x550
[  461.559835][T13195]  shash_async_update+0x113/0x1d0
[  461.559835][T13195]  hash_sendpage+0x8ef/0xdf0
[  461.559835][T13195]  sock_sendpage+0x1e1/0x2c0
[  461.559835][T13195]  pipe_to_sendpage+0x38c/0x4c0
[  461.559835][T13195]  __splice_from_pipe+0x565/0xf00
[  461.559835][T13195]  generic_splice_sendpage+0x1d5/0x2d0
[  461.559835][T13195]  direct_splice_actor+0x1fd/0x580
[  461.559835][T13195]  splice_direct_to_actor+0x6b2/0xf50
[  461.559835][T13195]  do_splice_direct+0x342/0x580
[  461.559835][T13195]  do_sendfile+0x101b/0x1d40
[  461.559835][T13195]  __se_sys_sendfile64+0x2bb/0x360
[  461.559835][T13195]  __x64_sys_sendfile64+0x56/0x70
[  461.559835][T13195]  do_syscall_64+0xb0/0x150
[  461.559835][T13195]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  461.559835][T13195] 
[  461.559835][T13195] Uninit was stored to memory at:
[  461.559835][T13195]  kmsan_internal_chain_origin+0xad/0x130
[  461.559835][T13195]  kmsan_memcpy_memmove_metadata+0x272/0x2e0
[  461.559835][T13195]  kmsan_memcpy_metadata+0xb/0x10
[  461.559835][T13195]  __msan_memcpy+0x43/0x50
[  461.559835][T13195]  rmd256_update+0x1fc/0x4f0
[  461.559835][T13195]  crypto_shash_update+0x4e9/0x550
[  461.559835][T13195]  shash_async_update+0x113/0x1d0
[  461.559835][T13195]  hash_sendpage+0x8ef/0xdf0
[  461.559835][T13195]  sock_sendpage+0x1e1/0x2c0
[  461.559835][T13195]  pipe_to_sendpage+0x38c/0x4c0
[  461.559835][T13195]  __splice_from_pipe+0x565/0xf00
[  461.559835][T13195]  generic_splice_sendpage+0x1d5/0x2d0
[  461.559835][T13195]  direct_splice_actor+0x1fd/0x580
[  461.559835][T13195]  splice_direct_to_actor+0x6b2/0xf50
[  461.559835][T13195]  do_splice_direct+0x342/0x580
[  461.559835][T13195]  do_sendfile+0x101b/0x1d40
[  461.559835][T13195]  __se_sys_sendfile64+0x2bb/0x360
[  461.559835][T13195]  __x64_sys_sendfile64+0x56/0x70
[  461.559835][T13195]  do_syscall_64+0xb0/0x150
[  461.559835][T13195]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  461.559835][T13195] 
[  461.559835][T13195] Uninit was created at:
[  461.559835][T13195]  kmsan_save_stack_with_flags+0x3c/0x90
[  461.559835][T13195]  kmsan_alloc_page+0xb9/0x180
[  461.559835][T13195]  __alloc_pages_nodemask+0x56a2/0x5dc0
[  461.559835][T13195]  alloc_pages_current+0x672/0x990
[  461.559835][T13195]  push_pipe+0x605/0xb70
[  461.559835][T13195]  iov_iter_get_pages_alloc+0x18a9/0x21c0
[  461.559835][T13195]  do_splice_to+0x4fc/0x14f0
[  461.559835][T13195]  splice_direct_to_actor+0x45c/0xf50
[  461.559835][T13195]  do_splice_direct+0x342/0x580
[  461.559835][T13195]  do_sendfile+0x101b/0x1d40
[  461.559835][T13195]  __se_sys_sendfile64+0x2bb/0x360
[  461.559835][T13195]  __x64_sys_sendfile64+0x56/0x70
[  461.559835][T13195]  do_syscall_64+0xb0/0x150
[  461.559835][T13195]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  463.015115][T13208] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'.
20:09:15 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)=@newqdisc={0x34, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb, 0x1, 'taprio\x00'}, {0x4}}]}, 0x34}}, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000008c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="000426bd7000fedbdf250d000000080034", @ANYRES32=0x0, @ANYBLOB="e0f0fdcb69a067053b14d7a44ca9ff6dedc9d15f7745c5298ff283c1edd156d0beaa2059b57c0366b4ef51f4f58652ef0dbdde68cd9d7f6a7ddbcbe278a8"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2400c004)
r5 = openat$cgroup_ro(r3, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r5, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x24, r4, 0x712, 0x70bd26, 0x25dfdbff}, 0x24}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
ioctl$sock_ipv6_tunnel_SIOCADD6RD(r5, 0x89f9, &(0x7f0000000340)={'ip6gre0\x00', &(0x7f00000002c0)={'ip6tnl0\x00', <r6=>0x0, 0x4, 0xff, 0x1, 0x1f, 0x25, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @private2={0xfc, 0x2, [], 0x1}, 0x1, 0x7800, 0x2, 0xe0}})
r7 = socket(0x10, 0x3, 0x0)
r8 = socket$netlink(0x10, 0x3, 0x0)
r9 = socket(0x10, 0x803, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r9, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
getsockname$packet(r9, &(0x7f0000000100)={0x11, 0x0, <r10=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x19)
sendmsg$nl_route(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r10, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f00000007c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)=@newqdisc={0x34, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r10, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb, 0x1, 'taprio\x00'}, {0x4}}]}, 0x34}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000006300)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000062c0)={&(0x7f0000000380)=@newchain={0x5f18, 0x64, 0x100, 0x70bd2d, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0xa, 0x7}, {0xc, 0x6}, {0x0, 0xfff1}}, [@TCA_CHAIN={0x8, 0xb, 0x3ff}, @TCA_RATE={0x6, 0x5, {0x3, 0x6}}, @filter_kind_options=@f_basic={{0xa, 0x1, 'basic\x00'}, {0x928, 0x2, [@TCA_BASIC_ACT={0x924, 0x3, [@m_tunnel_key={0x11c, 0xe, 0x0, 0x0, {{0xf, 0x1, 'tunnel_key\x00'}, {0x1c, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_ENC_KEY_ID={0x8, 0x7, 0x4}, @TCA_TUNNEL_KEY_ENC_IPV4_SRC={0x8, 0x3, @private=0xa010102}, @TCA_TUNNEL_KEY_ENC_IPV4_DST={0x8, 0x4, @dev={0xac, 0x14, 0x14, 0x32}}]}, {0xd2, 0x6, "f1cdd212ade50bac9b61c5125b294a56bc2673e9f81071ef99395def8b13e76ace22260bc04966053d6001aaf7bf17f82bb6e0df1317beb916a4ab2f5f171602c2b9192b652a420529690729d6b7b8f4e827ee0a4fe6309514fcf00ec28627bdd6306ffc143489b4e4271a3edc0257fa2a51b92f913691907b4940af782bfc750dc6bfc4d018526c2c1922130b021dbac4f123884b628aa993bce0a356c68e25d3d83b5d7830ba71c0b0ca1003aebb545e91b9783553cfe1adf1aa24b23c0eafdbed3b0cf6ea07903275c4f5d365"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x3}}}}, @m_xt={0x140, 0xe, 0x0, 0x0, {{0x7, 0x1, 'xt\x00'}, {0x30, 0x2, 0x0, 0x1, [@TCA_IPT_TABLE={0x24, 0x1, 'raw\x00'}, @TCA_IPT_HOOK={0x8, 0x2, 0x1}]}, {0xec, 0x6, "1ad3a9c1db08a714364d3e88bba63e49ee2233975224df2e580dbf688787664e66c71d84163427c7934aebb87f17255838c445e0a4df92e1de5e27d46456014b5c3d8357eeb1330874e9fd15b5fb02852b13ee39776e36c573be0b756fcfc086d13745dc8831b7d35a8d15f333316d6ec6053f9fc9937364e67b64fd5b4c6a453dc1e3c02c0920c36ea7b58db35fc23c38f73b7234cb940f3635d9f96d912b92cc92806cf56ba836b7700d7c25d3320e3c999d1eb5836c5fd4b529a2363f10a7d9e37daac5ab4d321f324f6fcb7e6ad1f80ecae0d4217bfd5a052345b560fc62043ad7b574a5eb8d"}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}, @m_mirred={0x170, 0x17, 0x0, 0x0, {{0xb, 0x1, 'mirred\x00'}, {0x124, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x9, 0x40, 0x0, 0x1, 0x100}, 0x2}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0xfffffffc, 0x81, 0x1, 0x4, 0x9}, 0x3}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x8001, 0xc0300000, 0x7, 0x36, 0x9}, 0x4}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x7, 0x3, 0x601a9ae6620890c5, 0x7}, 0x4}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x1, 0x9, 0x8, 0x6, 0x2}, 0x1}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x8, 0x9, 0x10000000, 0x0, 0x80000000}, 0x3}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x0, 0x1, 0xfff}, 0x1}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0xfffffff8, 0x7, 0x1, 0x5, 0x7}, 0x2, r6}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x6, 0x5, 0x1, 0x3, 0x10000000}, 0x3, r10}}]}, {0x24, 0x6, "41881170de64993ac7454499b7c55f527364bd6340fea7ff5ef8bd12627db8fc"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1}}}}, @m_skbedit={0x16c, 0x15, 0x0, 0x0, {{0xc, 0x1, 'skbedit\x00'}, {0x4c, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PRIORITY={0x8, 0x3, {0xd, 0xe}}, @TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0x800}, @TCA_SKBEDIT_PRIORITY={0x8, 0x3, {0x7, 0xffe0}}, @TCA_SKBEDIT_MARK={0x8, 0x5, 0x40}, @TCA_SKBEDIT_PARMS={0x18, 0x2, {0x5, 0x9, 0x1, 0xffffffff, 0x4}}, @TCA_SKBEDIT_PRIORITY={0x8, 0x3, {0x8, 0x7}}, @TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0x200}]}, {0xf8, 0x6, "0ae79c1bc51ab8b10707c55dccb1a1c7fea30ccc84657926d0e46a4d951d4ea4575c139eeb71e0560954ec52a863f4d1c10a9a3504058f4b1faee94500dc417e58700cfd2225d97fede22133bffa50e9126a5d1e886a7b2536880ae9a4ee94c69c3fa7e31513b49fb6ed524e11a8b3406d738285b0381d4182b7bcffe47a15931b0e37d3389ea7d238c20634f8f99fceb698a28bfc9ee52c88ec320f4e5e2c0f580fe2c7db1d3964f2815ae3b1dd4d2167b0ad94809fb3f74421183a1b09f09e54a7269e6a3d856398ca41fce343a88aa59be27a2376c938bd2ea1dfc5d67478aa67ddb1637061881c0ab06da09853971f4140a2"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1, 0x1}}}}, @m_vlan={0x64, 0xa, 0x0, 0x0, {{0x9, 0x1, 'vlan\x00'}, {0x14, 0x2, 0x0, 0x1, [@TCA_VLAN_PUSH_VLAN_PROTOCOL={0x6, 0x4, 0x88a8}, @TCA_VLAN_PUSH_VLAN_PROTOCOL={0x6, 0x4, 0x88a8}]}, {0x28, 0x6, "6231473493a5cc7d5edbabaa25c80337db0eb57d7998f3f4386d34548cfb1ed37459427b"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ipt={0x188, 0x1a, 0x0, 0x0, {{0x8, 0x1, 'ipt\x00'}, {0x104, 0x2, 0x0, 0x1, [@TCA_IPT_INDEX={0x8, 0x3, 0x453b}, @TCA_IPT_HOOK={0x8, 0x2, 0x3}, @TCA_IPT_TARG={0xb2, 0x6, {0x8000, 'nat\x00', 0x1f, 0x5, "1b223a16459cfdb87a4edbf3bc9457ce9785985795015f9ca72c2f496c7fbbc960cc545630d16a1218ca24692035005e2682c683b1604cfd9cb43bbde63778b11bc36045e969cf9343eebd422ee067580448f2d68e8d1af821c965f83f7132620ea0fddd889e5ab59e6b2ef18cb3fe574e826dbbacefd4665de9b8d02cc926b7f64fc6b475bb164a"}}, @TCA_IPT_INDEX={0x8, 0x3, 0x100}, @TCA_IPT_TABLE={0x24, 0x1, 'security\x00'}, @TCA_IPT_HOOK={0x8}, @TCA_IPT_INDEX={0x8, 0x3, 0x3}]}, {0x5e, 0x6, "964acd20ed436f068ce8647542c74c6267e460c4213a3b192cb2053d14b80475a8a8e7c80c68e4e61164e75379621463d0d6699f07e9e83a86af024656f8b17e34d0b85ff468405303e1fb8c8587e931fa9c772074de190169d3"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2}}}}, @m_ctinfo={0xb4, 0x1e, 0x0, 0x0, {{0xb, 0x1, 'ctinfo\x00'}, {0x24, 0x2, 0x0, 0x1, [@TCA_CTINFO_PARMS_CPMARK_MASK={0x8, 0x7, 0x1}, @TCA_CTINFO_ACT={0x18, 0x3, {0x7, 0x6, 0x6, 0x497, 0x7fff}}]}, {0x67, 0x6, "dd105b8acece80af042f6ddfce95420f5f1d2296d26f2919e8390cfb4df1024e32cc55ef2bba4d7bfcf732955b96b88f7f0e50248333bb2df7d232ede40e4bf7e7dd325cc2f102fac229fe428c0b6ef6cce31a4480ce63f6827fd9aa43c8bbef280a7e"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2}}}}, @m_simple={0x148, 0xf, 0x0, 0x0, {{0xb, 0x1, 'simple\x00'}, {0x30, 0x2, 0x0, 0x1, [@TCA_DEF_DATA={0x13, 0x3, 'rmd256-generic\x00'}, @TCA_DEF_PARMS={0x18, 0x2, {0x5, 0x8001, 0x20000000, 0x7a, 0x2}}]}, {0xef, 0x6, "c801739e0473490aefc6288f964f9ce351f43b4549b8262bb5685f1811d3d7d4ca0dcd3ede8f7225897f2eb48c4522780c4c5626151f4bcac4fd67087a523763322361f002d70e2922d32b0fdbe9a31f95f10528b66b950de3e001b2df34f834def310672616b064cc140bfedfae8e1be7836226c65aea524b25c6725b2384332b7c71f23efedc49f4cf4a97549ec6f7bf6ce7e379a597c76676dca25079d84e3537a5b4c89088dc221f0cf103ad67ff4529e47daceb95dc34781572b948a32761cdb0834e276207982c739fbcf777c6751f404e71aefe5ce79b7489e538732c3ad685aefa8093d9ecb4f2"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x3}}}}]}]}}, @filter_kind_options=@f_tcindex={{0xc, 0x1, 'tcindex\x00'}, {0x44, 0x2, [@TCA_TCINDEX_POLICE={0x40, 0x6, [@TCA_POLICE_TBF={0x3c, 0x1, {0x1eac, 0x20000000, 0x8001, 0x8000, 0x10000, {0x3f, 0x0, 0x3, 0x6, 0x3da}, {0x20, 0x1, 0x8, 0x401, 0x7, 0x81}, 0x7, 0x68c1, 0x1}}]}]}}, @filter_kind_options=@f_cgroup={{0xb, 0x1, 'cgroup\x00'}, {0x10a0, 0x2, [@TCA_CGROUP_POLICE={0x109c, 0x2, [@TCA_POLICE_RATE={0x404, 0x2, [0x80000000, 0x2, 0x4, 0x5, 0xcb, 0x10001, 0x8000, 0xbe21, 0x6, 0x8000, 0x7fffffff, 0x0, 0x0, 0x2, 0xcd2, 0xffffffef, 0x7, 0xfffffff8, 0x0, 0x10001, 0x7f, 0x9, 0x3f3a, 0x100, 0x7ff, 0x73, 0x4, 0x7, 0x3ce6, 0x0, 0x0, 0x7f, 0x3, 0x80000000, 0x54d01726, 0x7, 0x0, 0x7, 0x6, 0x3, 0x7, 0x0, 0x6, 0x8, 0x7f, 0x1000, 0x7fffffff, 0x3b33, 0xfffffff9, 0xe24, 0x4, 0x80000001, 0x4, 0x8, 0x78, 0x8000, 0x3, 0x4, 0x3, 0x2, 0x8, 0x7, 0x3, 0x6b, 0x7, 0xfffffff9, 0x3f, 0x4, 0x3, 0xfffff63a, 0x1, 0x4, 0xff, 0xe54, 0x2, 0xffffffe1, 0x80000000, 0x80000000, 0xac, 0x401, 0x10000, 0x10000000, 0x1, 0x80000000, 0x4, 0xffffff80, 0x0, 0xfffffeff, 0x1, 0x9, 0x2, 0x7, 0x2, 0x48000, 0x1, 0x6, 0x400, 0xfffffffe, 0x3, 0x20, 0x2, 0x20, 0x859, 0x7000, 0x8, 0x3, 0x6, 0x7, 0x6, 0x10000, 0x7fffffff, 0x4, 0xdac, 0xe37, 0x7, 0x3ff, 0x7, 0x8000, 0xd99e, 0x3, 0x800, 0x80000000, 0x3, 0x1f45f359, 0x0, 0x1000, 0x200, 0x1, 0x0, 0x0, 0x8, 0x8, 0x7fffffff, 0x3, 0x3, 0x1, 0x7fff, 0x4, 0x7f, 0x1ff, 0x9e, 0x3f, 0x80000000, 0x3, 0x1ff, 0x8a7d, 0x3f5, 0x7, 0x0, 0xccb, 0x255fd4bc, 0x9, 0x8, 0x3, 0x101, 0x1, 0x7fff, 0x80000000, 0x1389, 0xc22, 0x0, 0x3, 0x3, 0x437, 0xfffffffd, 0x3, 0x7, 0x6, 0x0, 0x8001, 0x1, 0x8000, 0x1, 0x8, 0x4, 0x7, 0x3, 0xf26, 0x5, 0x1, 0x80, 0x80000001, 0x6, 0x0, 0x800, 0x100, 0x8, 0x8, 0x6c, 0x5, 0x3, 0x3bb1, 0x93, 0x800, 0x1, 0x4, 0x1, 0x3, 0x4, 0x81, 0x0, 0x9, 0x131, 0x10001, 0x1, 0x3, 0x8, 0xa39, 0x0, 0x80000001, 0x2, 0x4, 0xf6, 0x5, 0x7, 0x1a, 0x222, 0x400, 0x2, 0x400, 0x27800, 0x200, 0xfffffffb, 0x8, 0x22, 0x8, 0x0, 0x1230, 0x6, 0x1, 0x33, 0x3ff, 0x2, 0x8, 0x4, 0x6, 0xffff, 0x2, 0xcd7, 0x3, 0x2, 0x80, 0x40, 0x8, 0x9, 0x2, 0x8, 0x101, 0x9, 0x4, 0x10001, 0x0, 0x5, 0x2, 0x9]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x7ff, 0x0, 0x3, 0x0, 0x5, {0x3, 0x0, 0x72, 0x2, 0x100, 0x5}, {0x0, 0x2, 0x7, 0xaa, 0xffff, 0x1}, 0x83, 0x3, 0x5}}, @TCA_POLICE_RATE={0x404, 0x2, [0x80, 0xffff, 0x9f, 0x8, 0xe90, 0xfff, 0xed04, 0x0, 0x702, 0xb85, 0x3ff, 0x80000001, 0x3, 0x401, 0x2, 0x190e, 0xef, 0xffffff46, 0x4, 0x7, 0x0, 0x5, 0x8, 0x7ff, 0xfffffff8, 0x1000, 0x3, 0x9, 0xff, 0x1, 0x4, 0xfffffff2, 0x3, 0x2, 0x0, 0x10001, 0x37ea, 0x1f, 0x20000000, 0x6, 0x0, 0x3f, 0x1, 0x4, 0x4, 0x4, 0x401, 0x3f, 0x2, 0xeb1b, 0x5, 0x6, 0x9, 0x9, 0x4404, 0x3, 0x4, 0x3, 0x1, 0xffffff80, 0x1f, 0x3, 0x7, 0xfffffffc, 0x9, 0x279, 0x0, 0x5, 0x0, 0x1, 0x8, 0x80, 0x3, 0x7, 0x3, 0x1, 0x2, 0x9, 0x2c, 0x7f, 0x0, 0xffffffff, 0x6, 0xffffffff, 0x30, 0xff, 0x1ff, 0x7fff, 0x54, 0x2c16, 0x73866d89, 0x7, 0x3, 0x5, 0x8, 0x4, 0x3, 0x7, 0x3, 0x7f, 0x8001, 0x8, 0xa4, 0x8001, 0x1, 0x5, 0x9d, 0x9, 0xf0, 0x213, 0x9, 0x8, 0x7ff, 0x88ed, 0x6, 0x1, 0x8001, 0x80000000, 0x2, 0x2, 0x8f4, 0x100, 0x1, 0x8000, 0x0, 0xff, 0x400, 0x5, 0x9, 0x400, 0x6, 0x2, 0x596b18bb, 0x4, 0xfffffc00, 0x1000, 0x9, 0x4, 0x4, 0x2, 0x401, 0x9, 0x2, 0x5, 0xc3, 0x20, 0x6, 0x0, 0x47, 0x4, 0x1, 0x1, 0x5, 0x1, 0x7, 0xa2, 0x1, 0x7fff, 0xfffffff8, 0x4, 0x5, 0x2, 0x6f, 0x7fff, 0x3, 0x1ff, 0x7, 0x2d, 0x6, 0x9af, 0x6, 0xfffffffd, 0x10001, 0x2, 0x20, 0x1000, 0xffff5189, 0x1f, 0x6, 0xfffffffb, 0x1, 0x6, 0x0, 0xffff, 0x1, 0xe77, 0x9, 0x20, 0xffffffff, 0x6a, 0x5, 0x4, 0x1198, 0x5, 0x9, 0x8, 0x985e, 0x3f, 0x5, 0x70, 0x3, 0x6, 0x9, 0xdce, 0x800, 0x8, 0x8, 0x7fffffff, 0x1, 0x0, 0x0, 0x40, 0x8, 0x2, 0x3f, 0x3, 0x9, 0x81, 0xfa, 0x37b, 0x4, 0x5, 0x0, 0x0, 0x1000, 0x7, 0x7ff, 0x9, 0x81b, 0x8000, 0x8001, 0x0, 0x92a, 0x1, 0x5, 0xfa, 0xfe0000, 0xb0000000, 0x1f, 0xda, 0x0, 0x200, 0xff, 0x3, 0x8, 0x2, 0x8000, 0x3ff, 0x7f, 0x7, 0x2, 0x8, 0x3, 0x400, 0xeb23, 0x80000000]}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x1000}, @TCA_POLICE_RESULT={0x8, 0x5, 0x400}, @TCA_POLICE_TBF={0x3c, 0x1, {0x4, 0x4, 0x7ff8ca6f, 0x0, 0x1f, {0x8, 0x1, 0x4, 0xd1, 0xfffb, 0x3}, {0xfa, 0x1, 0x4, 0x400, 0x0, 0x8001}, 0x7, 0x7f, 0x5}}, @TCA_POLICE_RATE={0x404, 0x2, [0x2, 0x0, 0x7fffffff, 0x6, 0x80000001, 0x2, 0x7, 0xff, 0x20, 0x5, 0x101, 0x6, 0x9, 0x1, 0xb6ee, 0x122, 0x8, 0x7, 0x50, 0x3, 0x3, 0x9, 0x5, 0x1ff, 0x1eec, 0xfff, 0x6, 0x7ff, 0x7, 0x7fffffff, 0x6, 0x101, 0x8, 0xfffff8df, 0x0, 0x401, 0xfffffff7, 0x4, 0x83dd, 0x5, 0x312, 0x9, 0xd08, 0x7ee, 0x81, 0x20, 0x7fffffff, 0x0, 0xe0000000, 0x0, 0x10001, 0x9, 0x80000000, 0xfffffffe, 0x8001, 0x3f, 0x5cf, 0x0, 0x1, 0x3, 0x81, 0x3, 0x1, 0x5, 0x0, 0x81, 0x6, 0x1ff, 0x6, 0x10001, 0x20, 0x2, 0x9, 0x8001, 0x2, 0x80000000, 0x3f, 0xd23, 0xf26, 0x7, 0x1000, 0x100, 0x1, 0x3ff, 0x9, 0x8, 0x7, 0x1, 0x5263, 0x0, 0x3, 0x1000, 0x32db, 0x7f, 0x0, 0x8, 0x615, 0x1, 0x7ff, 0xa3, 0x6b55, 0xfd, 0x81, 0x2, 0x1, 0x800, 0x94, 0x6, 0x6, 0x3, 0x247d, 0x4, 0x4, 0x80000001, 0x1, 0x6, 0x8000, 0x6, 0xfffffffc, 0x1000, 0x0, 0x53e, 0x791, 0xfffffe01, 0x0, 0x3ff, 0x7ff, 0x100, 0xffffffff, 0x7924b208, 0x82, 0x7fffffff, 0x8, 0x401, 0x81, 0x7, 0xfffffff9, 0x2b343352, 0xffff7fff, 0x1f, 0xfffffffa, 0x4, 0x100, 0x5, 0xfff, 0x1, 0x9, 0x7, 0x7, 0x6, 0x0, 0x80, 0x3c4, 0x8, 0xe6, 0x80000001, 0x3, 0x709, 0xd224, 0x20, 0x8, 0x10000, 0x7, 0x9, 0x2, 0x1, 0x8106, 0xffff, 0x9, 0x0, 0x80, 0xfffffff8, 0x80000001, 0x1ff, 0x8, 0x3f, 0x807, 0x80000001, 0xfffffc01, 0x3, 0xfff, 0x3, 0x7, 0x2, 0x1, 0x5, 0xfff, 0x1, 0xffffffff, 0x1, 0x6, 0xfffffff8, 0x6, 0x200, 0x503bf324, 0x101, 0x5, 0x5, 0x80000001, 0x0, 0x3, 0x1, 0x8, 0xfc, 0x0, 0x0, 0x1, 0x80000000, 0x5, 0xffffffc0, 0x86, 0xfffff23c, 0x3, 0x4, 0x5, 0x400, 0x80000000, 0x3f, 0x9, 0x8b5, 0x7, 0x9, 0x7, 0xfffffab0, 0x8, 0x20, 0x1, 0x4, 0x9, 0x2, 0x10001, 0x2, 0xffffffff, 0x8, 0x5, 0x5, 0xac83, 0x3, 0xae52, 0xdac, 0xbae, 0xff, 0x81, 0xffffffdb, 0x80000001, 0x9, 0x40, 0x4, 0x3f, 0x9, 0x97, 0x7fff, 0x9, 0xbb99, 0x4, 0x7]}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0xbe83, 0x8, 0xffffff01, 0x4, 0x7fffffff, 0x6, 0x9, 0x200, 0x9, 0x8, 0x1, 0x400, 0x3, 0x9, 0x1, 0xad9, 0x401, 0x3, 0xb3c, 0x3, 0x8000, 0x9, 0x0, 0x9c0b, 0xffffffff, 0x10001, 0x90, 0x1f, 0x3ff, 0x80, 0x81, 0x4, 0x5, 0x7fff, 0x1, 0x5, 0x7, 0xa5ea, 0x1000, 0x4c, 0x4, 0x76e, 0x0, 0x6b, 0x2, 0x20, 0x7, 0x1, 0x9, 0x7fff, 0x10, 0x593, 0x5, 0x3f, 0xff, 0x6, 0x80000000, 0x0, 0x81, 0xf730, 0x5, 0x81, 0x0, 0x7, 0x8, 0xffffffe1, 0xfffffffc, 0x7, 0x7f, 0x1f, 0xffffff80, 0x3, 0x8000, 0x1, 0x100000, 0x7ff, 0x6, 0x0, 0x3, 0x4, 0x3, 0x5, 0x4, 0x6, 0x2, 0xffff, 0x8, 0x6, 0xe59e, 0x6, 0x8001, 0x7fffffff, 0xffff, 0x0, 0x36, 0x2, 0x4, 0x3, 0x100, 0xf7, 0x4, 0x1, 0x6, 0x9, 0x9, 0x3, 0x5, 0x7, 0x80, 0x5b6b, 0x14, 0x6, 0x3f, 0x1f, 0x0, 0x4, 0x7, 0x0, 0x3, 0x9, 0xfffffff8, 0x5, 0x0, 0x3, 0x5, 0x7fc0, 0x5, 0x4, 0xd8b, 0x8, 0x6, 0x7ff, 0x320, 0x0, 0x73f6, 0x0, 0x10001, 0x10001, 0x5, 0xffff, 0x4, 0x3, 0x3, 0xa97, 0xffff2e31, 0x8, 0x8, 0x0, 0x8, 0x8, 0x7, 0x8001, 0x8, 0xec, 0x931, 0x4, 0xbbf7, 0x0, 0x4, 0x20, 0xfff, 0xcd0, 0x7fffffff, 0x8, 0x102, 0x7, 0x130d89a8, 0x0, 0x560, 0x9, 0x3, 0x3aba, 0x0, 0x3, 0x9, 0x5, 0x7d0000, 0xfe, 0x2493, 0xfffffffa, 0x2, 0x2, 0xff, 0xffffffff, 0x8, 0x1, 0x5, 0x100, 0x7f, 0x10001, 0x4, 0x20, 0x8001, 0x1f, 0x6, 0x10001, 0x401, 0x6, 0xff, 0xd082, 0x0, 0x7, 0x101, 0x4, 0x1, 0x7fff, 0x0, 0xfff, 0x7, 0x7fffffff, 0x6, 0x7, 0x8, 0x41, 0x0, 0x4, 0x9e, 0xffffffff, 0x7, 0x5, 0x80, 0xffffffe1, 0x8, 0x9c, 0x3, 0x2, 0x20, 0x2, 0x86, 0x4, 0x8, 0x0, 0x3, 0x3, 0x1000, 0x5, 0xd0eb, 0x9, 0x6, 0x4, 0x4, 0x0, 0x101, 0x0, 0x80, 0xdb, 0x8, 0x2, 0x3, 0x6, 0x1f, 0x9, 0x59e, 0x0, 0x8, 0x1]}]}]}}, @filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x44a4, 0x2, [@TCA_U32_LINK={0x8, 0x3, 0x80000001}, @TCA_U32_ACT={0x4498, 0x7, [@m_xt={0x458, 0x7, 0x0, 0x0, {{0x7, 0x1, 'xt\x00'}, {0x370, 0x2, 0x0, 0x1, [@TCA_IPT_INDEX={0x8, 0x3, 0x1ff}, @TCA_IPT_TARG={0xd5, 0x6, {0x7, 'filter\x00', 0x1b, 0x2, "600b3b87a4071918adb9259b62294cdeeb05f0d025016c6c5638f55ddf6adff0dbc34ebbb795d893ac252f02bea107bab06bdec7feeecd88448d2ce3cb6f9903abd3cb700277bf9a9fae868993213229e1d4c7d590a1a3cf18444cfcd8cf22116e4c598dfbe21b48946daf923a5cfebb17c6aa846479cea0adc4e7cc6de9d4233e7da6477957f9dd0b99d093f3a66a3cde0d0f32a8930562f153b982a766ebd3f1ea8cf8e5a87624522e2b"}}, @TCA_IPT_HOOK={0x8, 0x2, 0x7}, @TCA_IPT_TABLE={0x24, 0x1, 'nat\x00'}, @TCA_IPT_TARG={0x117, 0x6, {0x4, 'security\x00', 0x7f, 0x3f0e, "b807704ecc5551406a3d63815bdd3131920a4b5d375ce7d8d67a808666039a103ebea646d35a05ebec0b0331409d7f30f00bca8f82e5cff1e06728baa7dcf4bda77bb7100d79527eb313c0c7a37526011103d5e20725fedcadbfea5a26e054af2e26c43955e8d57bc01bd4d0bbe998f9e5f3899f1b115b90ee3050d8efe978aec681be0e4a67ef34682474218b6d33458d97f98468af88b029d06df4109f7abc193649060f68d50717ef89bb434a76cb868c4e42f1eac02e2c1db993a81fa155d7c520d40da449d970ba1535e0cadb813ae420cbca652abab9ab47a095edf86e0a805e5f53649736af912f572d"}}, @TCA_IPT_TABLE={0x24, 0x1, 'mangle\x00'}, @TCA_IPT_TABLE={0x24, 0x1, 'raw\x00'}, @TCA_IPT_TARG={0xff, 0x6, {0x8, 'nat\x00', 0x4, 0x7, "18226948ac590c6b1f4cf999c44f2f1df39597353d55583992e514a91d33142dfae3d87681ebeffcadfce19874297b11c28787efd7ffb52f713ffb6ae1c6dc92258724b2ca03815c7283a2bce96a0ca10bfe5c8052d59f466c6833af84ba4ed76f9c040e6bd65982018fa5dc028307780f4f72e77cd31019263400264ce335f64a6985a80f1310efcd9dfa5057bf5a6990e077c3629124f776ea602bfd4468bea900a135ce7c7bba3d03b77a469d0606bd12ffd0775a97f62551eec5b53031a3dc543256a62ae9f9f749b5e16b1f69115de54d2517"}}]}, {0xc2, 0x6, "b8b69bc78f34029d8aa8677e1a76190f1b9b295fcf05f1819f84d6f957290e8ff60e305b3858965039b075df002b8e1fbba3ffda7a14bd022f007357f33de425bd35d79317e8c5603cf35f6e8661964df6f35158c8e3849031a73f7b8a0d12b5aff5ce963ccd19ef0ce8526df193a7e171351376eef10b9f830af1aa3ed9f4fc54a7702267dc8eb2e5e0eba3a4c41b875b35ce5dd69f9e1ea995ffc9d5e9abc7ee8e0ba94fedf1186ddfdaa8a81acf182d4b5db1f1457a66b78fc800da17"}, {0xc, 0x7, {0x1}}, {0xc}}}, @m_ife={0xcc, 0x13, 0x0, 0x0, {{0x8, 0x1, 'ife\x00'}, {0x70, 0x2, 0x0, 0x1, [@TCA_IFE_TYPE={0x6, 0x5, 0x2}, @TCA_IFE_DMAC={0xa, 0x3, @local}, @TCA_IFE_PARMS={0x1c, 0x1, {{0x10001, 0x5, 0x4, 0x2e0000, 0x7}, 0x1}}, @TCA_IFE_DMAC={0xa, 0x3, @random="8d824c21260b"}, @TCA_IFE_DMAC={0xa, 0x3, @broadcast}, @TCA_IFE_PARMS={0x1c, 0x1, {{0x3, 0x0, 0x8, 0x8}}}, @TCA_IFE_TYPE={0x6, 0x5, 0x5}]}, {0x37, 0x6, "6bbc51bec1ebf8cdfd8723a88662b69c7c56db290b73bba68e10511b93bc73d7bf81ac9fef011ca24d464d36df369e64acee2a"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x2}}}}, @m_pedit={0x3e40, 0xf, 0x0, 0x0, {{0xa, 0x1, 'pedit\x00'}, {0x2e14, 0x2, 0x0, 0x1, [@TCA_PEDIT_KEYS_EX={0x90, 0x5, 0x0, 0x1, [{0x14, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}]}, {0x1c, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x5}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x5}]}, {0x24, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x4}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x3}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_HTYPE={0x6}]}, {0x1c, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}]}, {0x1c, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}]}]}, @TCA_PEDIT_PARMS={0xe98, 0x2, {{{0x1ff, 0x1, 0x1, 0x0, 0x7fffffff}, 0x7f, 0x2, [{0x6, 0x0, 0x8, 0x4, 0xffffffff, 0x8000}, {0x7, 0x4, 0x9, 0x1, 0x80000000, 0xff}, {0x100, 0x80, 0x101, 0x1, 0xf42, 0xfffffffd}, {0x9, 0x8, 0xf800000, 0x16, 0x100, 0x90}, {0x9, 0x7, 0x8001, 0x2978, 0xffffffff, 0x6c9}]}, [{0x7, 0x9, 0x401, 0x0, 0x1, 0x9}, {0x6, 0x0, 0x7, 0xdf, 0x20, 0x9}, {0x9, 0x7, 0x400, 0x5d9ae11f, 0xffe00, 0x1ff}, {0x7, 0x2, 0x7ba6ca00, 0x6, 0x20, 0xe3}, {0xb984, 0x1f, 0x4, 0x9, 0xfffffff7, 0x4}, {0x1, 0x20, 0x6, 0x0, 0x9, 0x4}, {0x620, 0x4, 0x84a4, 0xffffffff, 0x6, 0x8b3}, {0x8, 0x6, 0xe6eb, 0x0, 0x1, 0x10000}, {0x6, 0x1ff, 0x5a, 0x10000, 0x7ff, 0x38b2}, {0x9, 0x5, 0x1, 0x10001, 0x6, 0x5c5e7abb}, {0x5, 0x659f, 0x1, 0x3bc, 0x7fff, 0x8}, {0x1000, 0x829, 0x8, 0x1, 0x6, 0x7}, {0x8, 0x10000, 0xde0, 0x9, 0x9ac, 0x1}, {0x1, 0x9, 0x200, 0x0, 0x6, 0x1000}, {0xffff, 0x9, 0x81, 0x0, 0x5, 0x9}, {0x8, 0x200, 0x1, 0xac5, 0x77d6eab0}, {0xd90b, 0x3, 0x4, 0x2, 0x80000001, 0x4}, {0x81, 0x5, 0x9, 0x6, 0x6, 0x20000000}, {0x3, 0x10001, 0x0, 0x2, 0x8, 0x81}, {0x9, 0x600000, 0x9, 0x4, 0x0, 0x61e8bc76}, {0x1, 0x1, 0xb4, 0x7ff, 0x3ff, 0x6da0}, {0x5, 0xffffffff, 0x0, 0x4, 0x101, 0x40}, {0x400, 0x8, 0xfffffe00, 0x9, 0x0, 0x1}, {0x0, 0x9, 0x4, 0x200, 0x3, 0x5}, {0xffffffff, 0x401, 0x7, 0x101, 0x7fffffff, 0x9}, {0x1b, 0x0, 0x10001, 0x9, 0xba2, 0x7}, {0x5, 0x401, 0x3f97b45f, 0x4, 0x4, 0x7f}, {0x80000001, 0xf452, 0xfff, 0x6, 0x5, 0x8}, {0x0, 0x996a, 0x5, 0x2, 0x6, 0x15}, {0x7ff, 0x6, 0xd08, 0x200, 0x10000, 0x9}, {0x4, 0x8000, 0x0, 0x4, 0x81, 0x80000000}, {0x0, 0x60, 0x3, 0x8000, 0x7, 0x7}, {0x8, 0x8, 0x1, 0x4, 0x80000001, 0x6}, {0x6, 0x8, 0x6, 0x5, 0x7f, 0x80000000}, {0x1, 0xffffffe1, 0x7, 0x6c25, 0x7f, 0x9}, {0xfffffff7, 0x3ff, 0x88f, 0x295, 0x8, 0x8}, {0x8, 0x7f, 0x400, 0x7, 0xfff, 0xfffffe4e}, {0x40, 0x10001, 0x2, 0x3, 0x400, 0x64}, {0x800, 0x5, 0x3, 0x55beb7d7, 0x7fff, 0x1}, {0x0, 0x80000000, 0x1f, 0x20, 0x6, 0x2}, {0x26, 0x1, 0x9, 0x200, 0xfff, 0x8}, {0x5, 0x81, 0x0, 0x9, 0xc5, 0x8}, {0x10000, 0x7, 0x6, 0x2, 0x9e, 0x3}, {0x7, 0x1, 0x3, 0x4, 0x5, 0x8}, {0x5, 0x0, 0xe943, 0xfffffffb, 0x101, 0x6}, {0x40, 0x1, 0x7, 0x2, 0x8, 0x1f}, {0x0, 0x10001, 0x47, 0xffff, 0x6, 0x8001}, {0xe649, 0x3, 0x80000000, 0xfffffffb, 0x1}, {0xffffffff, 0x6, 0xfffffffd, 0xfff, 0x8, 0xffffffff}, {0x6, 0x1, 0x5, 0x6, 0x80000001, 0x80}, {0x7, 0x40, 0x8, 0x1ff, 0xfffff801}, {0xcb6, 0xffff, 0x7ff, 0x7fffffff, 0x2abd, 0x6}, {0x4, 0xff, 0x9, 0x1, 0x6, 0x4}, {0x4, 0x3, 0x4, 0x4616, 0x2, 0x3}, {0x4, 0x27b, 0x8, 0x1f, 0x80, 0x9}, {0x1000, 0x81, 0x1, 0xe67, 0x9}, {0x1f, 0x1d23, 0x2, 0x0, 0x0, 0x101}, {0x40, 0x80000001, 0x6, 0x6, 0x5, 0x1}, {0x53, 0xfffff000, 0x7fff, 0x2, 0x0, 0x800}, {0x1, 0x1, 0xee4b, 0x2, 0x1ff, 0x81}, {0x800, 0x4, 0x200, 0x4, 0x3, 0x1f}, {0x20, 0x6, 0x844, 0x3, 0x2, 0x764d65d1}, {0x5, 0x7f, 0x4, 0x4, 0x100, 0x20e}, {0x4, 0x80000000, 0x40, 0x1000, 0xffffffff, 0x7ff}, {0x6, 0x2, 0x20, 0x8, 0x6, 0x6}, {0xfff, 0x3bf3, 0x800, 0x7, 0xff, 0x9}, {0x14, 0x7, 0x1ff, 0x2, 0x35}, {0x1000, 0x7, 0x7, 0xa72, 0x1ff, 0x4e14}, {0xcd5, 0x3ff, 0x3, 0x80, 0x0, 0x6}, {0x9, 0x3f, 0xfffffffe, 0xffffda23, 0x1, 0x8}, {0x6, 0x2, 0x4, 0x8000, 0x8, 0x2}, {0x80000000, 0x7ff, 0x7, 0x724c, 0x0, 0x2}, {0x4, 0x7f, 0x3f, 0x1f, 0x80, 0x1}, {0x8, 0x1d6, 0xffffff44, 0x0, 0x7, 0x1}, {0x401, 0xe8b3, 0x1f, 0x7, 0x6, 0x1}, {0x9, 0xc7, 0x7, 0x6, 0xf330, 0x4}, {0x0, 0x9, 0x25, 0x4, 0x3, 0x27d}, {0x8d8e, 0x9, 0x23ed4aeb, 0x10001, 0x1f, 0xfffffffc}, {0x5, 0x7, 0x7ff, 0xab6, 0x5, 0x1000}, {0x6, 0x0, 0x9, 0xc0e2, 0x6, 0x8}, {0x0, 0x7, 0xbf, 0x1fb, 0x200, 0x8}, {0x2, 0x0, 0x9, 0x8, 0x8}, {0x8, 0x0, 0x80, 0xffffc9ee, 0x80000000, 0x80000000}, {0x3, 0x18ee, 0xfff, 0x5, 0x46d52039, 0x4aab}, {0x80, 0x4, 0x200, 0xffffff81, 0x69fe, 0xb1e}, {0x7fffffff, 0x3, 0x0, 0x4, 0x7, 0x6}, {0xcde00000, 0x200, 0x9, 0x4, 0x4, 0x3ff}, {0x8, 0x40, 0xfffffffd, 0x0, 0x1000}, {0xd2, 0x10001, 0x7ff, 0x3f, 0x5, 0x1}, {0x5, 0x3, 0x8, 0xffff, 0xfffffffb, 0x3}, {0x1000, 0x1, 0x6, 0x100, 0x4, 0xff}, {0xf5, 0x1, 0x3, 0x3, 0xffffff01, 0x1f}, {0x8, 0x8, 0x100, 0x2, 0x2, 0x800}, {0x5, 0x1ff, 0x4, 0x4, 0x5, 0x3}, {0x1ff, 0x81, 0x40, 0x200, 0x2, 0x81}, {0x7, 0xba7a480d, 0xff, 0x1, 0x10001, 0x4}, {0x0, 0x8, 0x6, 0x1000, 0x6, 0x8}, {0x3ff, 0x5, 0xffffff35, 0x5, 0x1, 0x7fffffff}, {0x2, 0x6, 0x3, 0xffff, 0x7, 0x9}, {0x3ff, 0x401, 0x100, 0x101, 0xcc11, 0x7}, {0x2405, 0x2, 0xffffed31, 0x5a3, 0x7, 0x6fcba1a5}, {0x0, 0x3, 0x40, 0x9, 0xffffffff, 0x7}, {0x8d1d, 0x80, 0x400, 0x101, 0x7, 0xfffff800}, {0x5, 0xfffffff9, 0x1, 0x1f, 0x400, 0x7}, {0x1849d00b, 0x0, 0x6af2, 0x7fffffff, 0x101, 0x7f}, {0x7f, 0xfffffeff, 0x6, 0x2, 0x9, 0x401}, {0x883, 0x5, 0x4, 0x6, 0x200, 0x2b12fc4b}, {0x401, 0xfff, 0x9, 0xcb, 0x9, 0xfffffffc}, {0x1000, 0x80000001, 0x6, 0x3, 0x4, 0xfffffffd}, {0x4, 0x6, 0x0, 0xe88, 0x8, 0x2}, {0x2a3, 0x101, 0x2, 0x63, 0x9, 0x1}, {0x5, 0x7, 0x81, 0x5, 0x40, 0x7}, {0x1ff, 0x1, 0x100, 0x4, 0x10000, 0x1000}, {0xa0000000, 0x1ff, 0x2, 0x66a, 0x7}, {0x1000, 0x800, 0x1882, 0x32b, 0x8000, 0x5}, {0xc0, 0x8, 0x20, 0x7, 0xeef6, 0x1ff}, {0x8, 0x100, 0x9, 0x2}, {0x1, 0x2, 0x5, 0x757, 0x5, 0x7fff}, {0x4, 0x0, 0x2, 0x200, 0xffffffff, 0xffffff01}, {0x8001, 0x9, 0x60f, 0x8, 0x6, 0x6}, {0x1000, 0xfff, 0x7, 0x4, 0x80000000}, {0xe982, 0x8, 0x5, 0x8, 0xff, 0xfffffffb}, {0x0, 0x0, 0x8001, 0x52f, 0x40}, {0x4, 0x800, 0x9, 0x8001, 0x100, 0x8000}, {0x7, 0xfffffff8, 0x1800, 0x2, 0xf9, 0x7}, {0x9, 0x3, 0x3, 0x1, 0xcaf6, 0x8}, {0x0, 0xc7a, 0x5, 0x3, 0x6, 0x101}, {0x3, 0x800, 0xb579, 0x9, 0xff, 0x80000000}], [{0x0, 0x1}, {}, {0x2, 0x1}, {0x2}, {0x1, 0x1}, {0x2, 0x1}, {0x1}, {0x5, 0x1}, {0x4, 0x1}, {0x2, 0x1}, {0x3, 0x1}, {0x1, 0x1}, {0x5}, {0x4, 0x1}, {}, {0x5}, {0x1}, {0x2}, {0x0, 0x1}, {0x1}, {0x4, 0x1}, {0x1}, {0x3}, {0x2}, {0x1}, {0x5}, {0x5}, {0x3, 0x1ad1a0c0b0b7b1f4}, {}, {0x2e65755665d7e64f, 0x1}, {0x2}, {0x4}, {}, {0x1}, {0x4, 0x1}, {0x4, 0x1}, {0x1, 0x1}, {0x1}, {0x1, 0x1}, {0x3, 0x1}, {0x4, 0x1}, {0x5, 0x1}, {0x3}, {0x5}, {0x3, 0x1}, {0x5}, {0x2}, {0x5}, {0x2, 0x1}, {0x4, 0x1}, {0x2}, {0x5}, {0x0, 0x1}, {0x2}, {0x3}, {}, {0x7, 0x1}, {0x3, 0x1}, {}, {0x5, 0x1}, {0x1, 0x1}, {0x1, 0x1}, {0x3}, {0x2, 0x1}, {0x3, 0x1}, {0x3}, {0x3}, {0x3, 0x1}, {0x4, 0x1}, {0x3, 0x1}, {0x5, 0x1}, {0x1, 0x1}, {0x3}, {0x3}, {0x1}, {0x0, 0x1}, {0x3}, {0x4, 0x1}, {0x4, 0x1}, {0x3}, {0x1, 0x1}, {0x5}, {0x5}, {0x5}, {0x3}, {0x0, 0x1}, {0x3}, {0x1}, {0x5, 0x1}, {0x5, 0x1}, {}, {}, {0x4, 0x1}, {0x1, 0x1}, {0x1}, {0x1, 0x1}, {0x5, 0x1}, {0x1}, {0x1}, {0x3}, {0x4, 0x1}, {}, {0x1}, {0x3, 0x1}, {0x5}, {0x2, 0x1}, {0x0, 0x1}, {0x5}, {0x5, 0x1}, {0x2}, {0x4, 0x1}, {0x4}, {0x3}, {0x2}, {0x2}, {0x4}, {0x4, 0x1}, {0x0, 0x1}, {0x2, 0x1}, {0x4, 0x1}, {}, {0x4}, {0x5, 0x1}, {0x5, 0x1}, {0x0, 0x1}, {0x2, 0x1}, {0x4, 0x1}, {0x5, 0x1}], 0x1}}, @TCA_PEDIT_PARMS_EX={0xf10, 0x4, {{{0x8, 0x7, 0x6, 0x800}, 0x3, 0xae, [{0x55, 0x6c61, 0x2, 0x5, 0xff, 0x800}, {0x1, 0x3f, 0x80000000, 0xfff, 0x5, 0xe86}, {0x8000, 0x40, 0x3, 0x80, 0x1, 0xffffb6bf}, {0x7, 0x1, 0x0, 0x35e8, 0x80000001, 0x9}, {0x1, 0x5, 0x6, 0x6, 0x8c, 0xffffffff}, {0xc0a, 0x7, 0x80, 0xffffffff, 0x2, 0x1}, {0x7, 0x3, 0x200, 0x7, 0x8, 0x5}, {0x1, 0x6, 0xffffffff, 0x668, 0xfffffffa}, {0x80, 0x80000000, 0x3, 0x1, 0x3, 0x7}, {0x0, 0x7, 0xee56, 0xa4c7, 0x0, 0x188}]}, [{0x7, 0xf22, 0x1000, 0x8, 0x7, 0x6}, {0x100, 0x4e, 0x0, 0x8, 0x9, 0x101}, {0x4f13, 0x2, 0x3ff, 0x3, 0x4, 0x1}, {0x4, 0x0, 0x1, 0x6, 0x8, 0x1000}, {0x0, 0x6, 0x401, 0x8, 0x775, 0xff}, {0x7, 0x7, 0xfffffffa, 0x0, 0x3f, 0xffffe135}, {0x3, 0xe60, 0x10001, 0x2, 0x5, 0x200}, {0xfffffffc, 0xff, 0x8, 0x10000, 0x1, 0x3}, {0x6, 0x6, 0x2, 0x6, 0x4, 0x4fc6}, {0x75, 0x29b175c4, 0x80000001, 0x6ef, 0xfffffffd, 0x8}, {0x3, 0x7fff, 0x7, 0x2000, 0x6, 0x20}, {0x2, 0x1, 0x200, 0xbb4, 0x1, 0x61}, {0x40, 0x2, 0x5, 0x1f, 0x3090d10e, 0x10001}, {0x7fffffff, 0x81, 0x4, 0x2, 0x40, 0x401}, {0x7, 0x80, 0x10001, 0xfffffffd, 0x1, 0x5}, {0x0, 0xfffffffa, 0x10000, 0xbc9, 0x3, 0x3f}, {0x2, 0x1, 0x8, 0x0, 0x1, 0x3f}, {0x9, 0xef5, 0x80000000, 0x6, 0x1, 0x6}, {0x8001, 0x3, 0x2, 0x8, 0x4, 0x80}, {0x0, 0x178, 0xffff7fff, 0x1, 0x4, 0x401}, {0x2, 0x4, 0x2, 0x6, 0x5, 0x2}, {0xfff, 0xec64, 0x2, 0x0, 0x4bf, 0x1}, {0x7, 0x7, 0x9, 0xae, 0x800, 0x5719}, {0x7, 0x6, 0x8001, 0x6400611c, 0xfffffffc, 0x7d0799e8}, {0x6, 0x6, 0x7ff, 0x8, 0x8001, 0xfff}, {0xffffffff, 0x0, 0xff, 0xbcb, 0x9, 0xf9}, {0x7, 0x80, 0x1000, 0x7f, 0x3, 0x10001}, {0x7, 0x3d, 0xd5, 0x7, 0x6ac68716, 0x2}, {0x3, 0x1, 0x5, 0x7, 0x62, 0xb4}, {0x34abf3fa, 0xff, 0x5, 0x6, 0x401, 0x7}, {0x7f, 0x2, 0x800, 0x8, 0x7, 0x1f}, {0x8, 0xffffff6a, 0x0, 0x8, 0x101, 0x3d}, {0x1, 0x8001, 0x10001, 0xfffffffd, 0xfff, 0x9}, {0x1f, 0x1, 0x0, 0xffff, 0x6b, 0xcf37}, {0xeb4, 0x3ff, 0x5, 0x1, 0xfff}, {0x3, 0x0, 0x4, 0x2, 0x9, 0x4}, {0x5, 0x5, 0xfffffffa, 0x3ae0, 0xfffffffb, 0x7c554dfd}, {0x1, 0x5, 0x9, 0x80000000, 0x3, 0x80000000}, {0x5, 0x1, 0x101, 0x7, 0x3, 0x100}, {0x80, 0x5e28, 0x72a, 0x592, 0x10001, 0x93}, {0x1f, 0x1, 0x3, 0xe00, 0x8, 0x1}, {0x6, 0x0, 0xe4, 0x8000, 0x6, 0x2e16}, {0x8, 0x489, 0x6fa7, 0x7f, 0xb198, 0x9}, {0x3, 0x0, 0x200, 0x0, 0x9, 0x6ba}, {0x9, 0x1, 0x7a0, 0x0, 0x6, 0x8}, {0x3226503e, 0x5, 0x7, 0x5, 0x974d, 0x7ff}, {0x100, 0x1000, 0x9, 0x10000, 0x8, 0x2}, {0x401, 0x7d3, 0x3, 0x80000000, 0x0, 0x7fffffff}, {0x8, 0x7, 0x7fff, 0x80, 0x7, 0x20}, {0x12, 0x80000000, 0x0, 0x6, 0x40, 0xf18}, {0xffffffff, 0x3ff, 0x4, 0xa8b, 0x5c5}, {0xff, 0xc24c, 0x2, 0x6, 0x5, 0x20}, {0x2, 0x7f, 0x1, 0x3d44, 0x20}, {0x6, 0x3, 0x9, 0x0, 0x80000000, 0x10001}, {0x2, 0xd6d7, 0xf1, 0xffff, 0x2e27e577, 0x1}, {0x7fff, 0x80000000, 0x7fffffff, 0x81, 0x7, 0x8}, {0x8, 0x6, 0x100, 0x20, 0x6, 0x10000}, {0x80000001, 0x5, 0x5, 0x100, 0x1, 0x1}, {0x9, 0x39c, 0xc016, 0xffffff81, 0x101, 0xfffffffd}, {0x2, 0x1ff, 0x7f05d745, 0x6, 0x4}, {0x4, 0x8, 0xd111, 0x2, 0x9, 0x1ff}, {0x7ff, 0x4d1, 0x5, 0xe93, 0x0, 0x1}, {0x8001, 0x1, 0x4f52, 0x0, 0x2, 0x7fffffff}, {0x8, 0x7fffffff, 0x9, 0x7, 0xffff, 0x5}, {0x7, 0xfffffffa, 0x7, 0x3, 0x3c, 0xf5}, {0x9, 0x5, 0x6, 0x1, 0x1, 0x19}, {0x6, 0x5, 0x7fff, 0xfffff801, 0x40, 0x80000001}, {0x6, 0x0, 0x1000, 0x9, 0x1ff, 0x6}, {0x7, 0x6, 0x69, 0x0, 0x3ff, 0x9}, {0x6, 0x35, 0xfffff000, 0x7, 0x355, 0x8}, {0x40000, 0x1, 0x5, 0x0, 0xe2f4, 0x8001}, {0xeb, 0x7f, 0xdd18, 0x2, 0xc1, 0x2}, {0x8, 0x1586, 0x10001, 0xfff, 0x1, 0x101}, {0x6, 0x73f0, 0x2, 0x4c, 0x9, 0x80a5}, {0x80, 0x80000000, 0x3, 0x6, 0x8, 0x1}, {0x0, 0x2, 0x80000000, 0x1f, 0x1, 0x7}, {0x7fffffff, 0xd8280e7, 0x80000001, 0x0, 0x9a79, 0x8}, {0x5, 0x6, 0x7, 0x3f, 0x7, 0x7ff}, {0x7f, 0x20000, 0x8001, 0x8, 0x2d6b, 0x1}, {0x4, 0x6, 0x7f, 0x4, 0x7fffffff, 0x6}, {0x80000001, 0x0, 0x420a, 0x9, 0x400, 0x9b3}, {0x20, 0x3, 0x7, 0x8, 0x4, 0xbf}, {0x0, 0x8, 0x749, 0x7, 0xffffffc0, 0x80}, {0x4, 0x4, 0x100, 0x0, 0x8, 0x6}, {0x4046, 0xffff, 0x8000, 0x8001, 0x200, 0x9}, {0xd930, 0x400, 0x7fff, 0x91e, 0x40, 0x9}, {0x5, 0x9, 0x89d3, 0x40, 0x401, 0xed6}, {0x4, 0xffff, 0x1, 0x1f, 0xfffffbff, 0x8}, {0x7, 0x305, 0x5, 0x9, 0xffff, 0x609}, {0x7, 0xffffffe0, 0xfffffff8, 0x195d, 0x4, 0x6}, {0x7fffffff, 0x5, 0x800, 0x7, 0x80000001, 0x94}, {0x9, 0x40, 0x1, 0x3, 0x3c7a64c3, 0x58f10b9b}, {0x200, 0xfffffffb, 0x1ff, 0x0, 0xb8, 0xa270}, {0xce, 0x7, 0xca5f, 0x79b3, 0x1}, {0x1f, 0x3, 0xec, 0x0, 0x8, 0x7fffffff}, {0x0, 0x1000, 0x99c, 0x7fffffff, 0x5, 0x7}, {0x1, 0x81, 0x7f, 0x83, 0x0, 0x1}, {0x401, 0x0, 0x0, 0x800, 0x10000, 0x3}, {0x6e, 0x4000000, 0x3ff, 0x1, 0x5fc, 0x1}, {0x4, 0x8, 0x10000, 0x6, 0x1ff, 0xfff}, {0x6, 0xffff, 0xb775, 0x1e0, 0x2, 0x3f}, {0x9, 0x60, 0x3, 0xfffffff8, 0x8000, 0x1}, {0x6, 0x4, 0x7, 0x3, 0x5, 0x6}, {0x8, 0x3ff, 0xe1, 0x9a96, 0x4, 0x1}, {0x8, 0x92, 0x0, 0x0, 0x9e}, {0x0, 0x7, 0x1, 0x0, 0x1, 0x4}, {0x1, 0x401, 0x9f5f19f, 0x2, 0x7843, 0x2}, {0x5f21, 0xf2a9, 0x7, 0x20, 0xca, 0x8001}, {0x8001, 0xffffffff, 0xe504, 0x1, 0x3f, 0x400}, {0x9, 0x9, 0x20, 0x5, 0xe15f, 0x5}, {0x731c, 0x69b, 0x8, 0x4, 0x1, 0x7}, {0x6, 0x8, 0x7f, 0x0, 0x3, 0xfffffc00}, {0x80000000, 0x9, 0x6, 0xd25, 0xf7, 0xc1}, {0x2, 0x2, 0xd5, 0x2, 0x8001, 0xffffffff}, {0x5, 0x400, 0x8, 0x3, 0x401, 0x7fff}, {0x4, 0xfff, 0x5, 0x86, 0x7f, 0x1000}, {0x400, 0x4, 0x7fff, 0x7, 0x7, 0x401}, {0x3, 0xa3, 0xffffffff, 0x664, 0xf7}, {0x8, 0x10000, 0x5, 0x852, 0x9, 0x5}, {0x5, 0x3, 0xffffffff, 0xff, 0x400, 0x2}, {0x9, 0x1, 0x1e, 0x20, 0x5f}, {0x8, 0x8000, 0x2, 0xfffffeff, 0x50, 0x49}, {0x1f, 0x7, 0x2, 0x2, 0xd75, 0x5}, {0xe3b, 0x9, 0x4, 0x80000001, 0x3ff, 0x1}, {0x1ff, 0x80000000, 0xefde, 0x80000000, 0x0, 0x800}, {0x3, 0x5d, 0x8001, 0x80, 0x2, 0x4}, {0x8798, 0x2, 0x7, 0xaaca, 0x6aeb, 0x8}, {0x7, 0x0, 0x7, 0x1794d176, 0x5, 0x1}], [{0x2}, {0x4}, {0x4, 0x1}, {0x2}, {0x3, 0x1}, {}, {0x6, 0x1}, {0x1, 0x1}, {0x1, 0x1}, {0x5}, {0x5, 0x1}, {0x4, 0x1}, {0x5}, {}, {0x4}, {0x7, 0x1}, {}, {0x2, 0x1}, {0x2}, {0x1, 0x1}, {0x4, 0x1}, {0x0, 0x1}, {0x2, 0xcd555f2a8ca81596}, {0x5, 0x1}, {0x3, 0x1}, {0x3, 0x1}, {0x5, 0x1}, {0x3, 0x1}, {0x1, 0x1}, {0x2}, {0x4}, {0x4, 0x1}, {0x3}, {0x4, 0x1}, {0x1}, {0x4, 0x1}, {0x3}, {0x3}, {0x1, 0x1}, {0x5, 0x1}, {0x2, 0x1}, {0x4, 0x1}, {0x4, 0x1}, {}, {0x3}, {0x5, 0x1}, {0x3}, {0x5, 0x1}, {0x5, 0x1}, {0x4, 0x1}, {0x2, 0x1}, {0x2}, {0x2}, {0x1}, {}, {0x4}, {0x5}, {0x4}, {0x5, 0x1}, {0x2}, {0x2, 0x1}, {0x3, 0x1}, {0x4, 0x1}, {0x5, 0x1}, {0x4, 0x1}, {0x0, 0x1}, {0x0, 0x1}, {0x5, 0x1}, {0x2, 0x1}, {0x4}, {0x5}, {0x2}, {0x4}, {0x3, 0x1}, {0x4, 0x2}, {0x2, 0x1}, {0x5, 0x1}, {}, {0x0, 0x1}, {0x5}, {0x5, 0x1}, {0x0, 0x1}, {0x2}, {0x0, 0x5e5ee657e1a420bd}, {0x1, 0x1}, {0x1, 0x1}, {0x5, 0x1}, {0x1, 0x1}, {0x2, 0x1}, {0x0, 0x1}, {0x1}, {0x2}, {0x3}, {0x4, 0x1}, {0x1, 0x1}, {}, {0x2}, {0x5}, {0x1, 0x1}, {0x3, 0x1}, {0x5}, {0x2}, {0x5}, {0x2}, {0x5}, {0x5}, {0x9, 0x1}, {0x1, 0x1}, {0x5, 0x1}, {0xa}, {0x0, 0x1}, {0x2}, {0x1, 0x1}, {0x2, 0x1}, {0x1}, {0x2, 0x1}, {0x3, 0x1}, {0x1, 0x1}, {0x1, 0x1}, {0x3}, {0x3, 0x1}, {0x5}, {0x0, 0x1}, {0x3, 0x1}, {0x6}, {0x4}, {0x5}, {0x3}], 0x1}}, @TCA_PEDIT_KEYS_EX={0x158, 0x5, 0x0, 0x1, [{0x2c, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x1}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x3}, @TCA_PEDIT_KEY_EX_CMD={0x6}]}, {0x34, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_HTYPE={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x3}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x3}]}, {0x1c, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x3}]}, {0x4c, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x4}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_HTYPE={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x5}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x5}]}, {0x34, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x3}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x4}, @TCA_PEDIT_KEY_EX_HTYPE={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x4}]}, {0x1c, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x4}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x4}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x4}]}, {0x3c, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x4}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x3}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x4}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x3}]}]}, @TCA_PEDIT_PARMS_EX={0xe80, 0x4, {{{0xfff, 0x24000000, 0x1, 0x0, 0x9}, 0x3f, 0x8, [{0xffff, 0x0, 0x1f, 0x400, 0xffffffff, 0x2}, {0x7, 0x6, 0x9, 0x1, 0x3ff, 0x80000001}, {0xafc8, 0x47, 0x3, 0x100, 0x1000, 0xff}, {0x8, 0x3ff, 0x0, 0x3ff, 0xffffffff, 0x9}]}, [{0x7fff, 0x1, 0x1, 0x7, 0x5, 0x8}, {0x8, 0xfffffffc, 0x4, 0x800, 0x9, 0x100}, {0x467, 0x38, 0x8, 0x4, 0x8, 0x80000000}, {0x2048, 0x400, 0x7, 0x6, 0x6, 0xe000000}, {0x0, 0x7fff, 0x8, 0x6d85, 0x2}, {0x3, 0x8, 0x8000, 0x6, 0x0, 0x34}, {0x10000, 0x10001, 0x7ff, 0x81, 0x1, 0x5afd9bff}, {0x7fff, 0x9, 0x81, 0xffff2db7, 0x20, 0x1}, {0x80000000, 0x6, 0x6, 0x12, 0x4, 0x8}, {0xc02, 0x1, 0x9, 0x5, 0x9, 0x66}, {0x3, 0x0, 0x2, 0x9, 0x2f, 0x6}, {0x5, 0x10001, 0x7, 0x7, 0x8, 0xffff8000}, {0x4, 0x1, 0x0, 0x8, 0x9, 0x1000}, {0x5, 0xfe0f, 0x90, 0x3, 0x3ff, 0x7fff}, {0xc00000, 0x394, 0x81, 0x8, 0x4, 0x8}, {0x1, 0x4d, 0x1ff, 0x5f19, 0xfffff001, 0x4}, {0x0, 0x8, 0xbf, 0x3, 0x5, 0x3}, {0x345, 0x101, 0x8, 0x80, 0x7, 0x20}, {0x1000, 0x83, 0x8, 0x5, 0x3, 0x5}, {0x7, 0x3f, 0x7, 0x3, 0x1f, 0x20}, {0x3, 0x8001, 0x5, 0x6, 0x5, 0x1ff}, {0x7, 0xfffffffe, 0x56e32225, 0x200, 0x3, 0x20}, {0x80000001, 0x1000, 0x0, 0x8, 0x6, 0x2}, {0xe9b, 0x3073, 0x9, 0xa0, 0x5, 0xb9}, {0xfffffff9, 0x81, 0x3, 0x0, 0x629, 0x101}, {0xb6b, 0x5, 0x7, 0xb, 0x0, 0xd68}, {0x1, 0xffffffff, 0x800, 0x3, 0x2, 0x5d}, {0x7, 0x364, 0x6, 0x3, 0x10001, 0x3}, {0x2, 0x1, 0x8, 0x2, 0xfff, 0x2}, {0x200, 0x3, 0x0, 0xff, 0x69730e00, 0x9}, {0x1, 0x7fffffff, 0xffffffff, 0x9, 0x6, 0x80}, {0x7f, 0x5, 0x748c, 0x800, 0x0, 0x713}, {0x1, 0x1ff, 0xffffffff, 0x81, 0x3, 0x8001}, {0x101, 0x0, 0x9, 0x8de5, 0x3, 0x101}, {0x3, 0x557, 0x0, 0x3ff, 0x800, 0x2}, {0xddb, 0x2, 0x10001, 0x40, 0x9, 0x7e}, {0x6, 0x9f5, 0x0, 0x8, 0x0, 0x80000000}, {0x1000, 0x0, 0x6, 0xfffff000, 0x2, 0x3f}, {0x3, 0x80000000, 0x8, 0x0, 0x0, 0x3}, {0x8001, 0xfc6, 0x59, 0xff, 0x200, 0x6}, {0x6, 0x3ff, 0xdf8a, 0x3000, 0x5, 0x5}, {0x40, 0x7, 0xfffffc90, 0x5, 0x6, 0x9}, {0x828b, 0xffffffff, 0x1000, 0x400, 0x6, 0x2fd}, {0x4, 0x8000, 0xeb2, 0xffff, 0x8, 0x7ff}, {0x1000, 0x0, 0x101, 0x8, 0x4}, {0x9, 0x80000001, 0x4, 0x7, 0x8001, 0x1f}, {0x5, 0x0, 0x510, 0x3f, 0x6, 0x5beb}, {0x9, 0x4, 0x8, 0x1, 0x7ff, 0x5}, {0x9, 0x8, 0x59, 0x100, 0x3, 0x6}, {0x2, 0x5be2, 0x4, 0x400, 0x5}, {0x37a, 0x0, 0x7, 0x100, 0x3f, 0x5}, {0x2, 0x32, 0x974e, 0x7, 0x7b9e5298, 0x5}, {0x81, 0x80, 0xdd, 0x10001, 0x9, 0x4}, {0x4, 0x6, 0xd4, 0x8, 0xc0, 0x5fd69d3a}, {0x5, 0x398b, 0x3, 0x9, 0x80, 0x72}, {0x800, 0xfffffff8, 0x6, 0x1ff, 0x1e, 0x6}, {0x9, 0x1c, 0x4, 0x1, 0x1, 0x4}, {0x3, 0x800, 0x5, 0xfff, 0x1, 0x1}, {0x80000001, 0x401, 0x1, 0x7ff, 0x1f, 0x9}, {0x2, 0x7f, 0xa, 0x40000, 0x3, 0x5853b0d}, {0x8, 0x81, 0x8, 0x1, 0x7, 0xff}, {0x7, 0x1, 0x8000, 0x6, 0x7, 0x2}, {0xff, 0x401, 0x72, 0x40, 0x800, 0x6}, {0x2, 0x81, 0x0, 0x10000, 0xd3e, 0x8}, {0x9, 0x8000, 0x7ff, 0x3, 0x0, 0x64}, {0x10001, 0x1, 0x516697a8, 0xa8a9, 0x0, 0x6}, {0x9, 0x6, 0x1, 0x3, 0xd1, 0x1}, {0x3, 0x10000, 0x80000000, 0x9, 0x4, 0x7}, {0xffffffff, 0x401, 0x4, 0x4, 0x9, 0x679f}, {0x0, 0x2, 0xfffffffc, 0x9, 0x9, 0x3}, {0x200, 0x3, 0x4, 0x0, 0x3, 0x401}, {0x8d66, 0x2, 0x80, 0x9, 0x40, 0x1f}, {0x8, 0x1, 0xea, 0xc59e, 0x40, 0x80000001}, {0x0, 0x4, 0x8, 0x9f04efd2, 0x5, 0x1e3}, {0x3, 0x1, 0x2, 0x7, 0x3, 0xa0}, {0x81, 0xe08, 0x5b1e6954, 0x10000, 0x5, 0x5}, {0x7, 0x0, 0x1, 0xffff, 0x0, 0xdcba}, {0x6, 0x72, 0x1, 0x80000000, 0x3, 0x5}, {0x8001, 0x29, 0x7fff, 0x7ff, 0x1, 0x7}, {0xfffffe00, 0x40, 0x400, 0x7ff, 0xff, 0x800}, {0x7fffffff, 0xff, 0x1, 0xf0e, 0x6, 0x2}, {0x7fff, 0x8001, 0x7be6, 0x39a, 0x7, 0x9}, {0x9, 0x6, 0x10001, 0x98a, 0x0, 0x4e}, {0x80, 0x7ce, 0x8b6, 0x7, 0x1, 0x413c}, {0x3, 0x400, 0x81, 0x3f24, 0x9, 0x15}, {0x6, 0x7, 0x4, 0x5, 0x4, 0x400}, {0x5, 0x182, 0x0, 0x7fffffff, 0x6, 0x7fff}, {0x1, 0x8001, 0x0, 0x9, 0x1, 0x6}, {0x624db5c1, 0x8, 0x1000, 0x40, 0x8000, 0xfffffffd}, {0x7f, 0x7fff, 0x2, 0x400, 0x3, 0x9}, {0x5, 0xef7, 0x6, 0x6, 0x8, 0x5}, {0xfffffffc, 0xb2, 0x7fffffff, 0x26, 0x2, 0x3}, {0x40, 0x0, 0x7, 0x3, 0x7, 0x101}, {0x99ff, 0x19, 0x80, 0x5, 0x10001, 0x7ff}, {0xb4, 0x46, 0x100, 0x1, 0x9, 0x6}, {0x100, 0x1, 0x9, 0x7, 0x1, 0x5}, {0x101, 0x751354ba, 0x400, 0x2, 0x5, 0xb}, {0xd0, 0x7, 0x8c, 0xffff275f, 0x5ed3, 0x7fffffff}, {0x80, 0x100, 0x1, 0x0, 0xfffffff9, 0x80000001}, {0x3f, 0xe3d, 0x6, 0x80, 0x4, 0x80000001}, {0x79b4, 0xd2, 0x80000000, 0x3, 0x0, 0x34}, {0x1, 0x0, 0x7, 0x9, 0xfffff801, 0x2}, {0xfffffff7, 0x10000, 0x9, 0x5, 0x3d94508f, 0x72}, {0x20, 0x7, 0x3f, 0x2, 0x20, 0x1ff}, {0x62, 0x18, 0x8, 0x2da, 0x3, 0x3}, {0x7fff, 0x7, 0x5, 0x3f, 0xffff, 0x400}, {0x4, 0x5, 0x2, 0x9, 0x8, 0x7ff}, {0xd79, 0x2, 0x950, 0x3ff5, 0x7, 0xf8}, {0x401, 0x8, 0x0, 0x200, 0x3ff, 0xff}, {0x8, 0x2e, 0x800, 0x2c9c, 0x9, 0xff}, {0x0, 0x9d0d, 0x48, 0x400, 0x2, 0x2}, {0x81, 0xd2, 0xffffff75, 0x8001, 0x8, 0xed23}, {0x62fa, 0x40000000, 0x46a, 0x3, 0x241, 0x8}, {0x5, 0x4, 0x2, 0x4, 0x6, 0x360c}, {0x101, 0x1b8e, 0x4, 0x8001, 0x9}, {0x8, 0xffff0000, 0x17fa, 0x400, 0xb2f8, 0x8}, {0x4, 0xffffff81, 0x4, 0x4, 0xd9ca, 0x8000}, {0xf0e1, 0x6, 0x8, 0x9, 0x42, 0x7}, {0xc8, 0x7e90, 0x5, 0x6, 0x8, 0xbc4}, {0xa3, 0x4, 0x4, 0x9, 0x3}, {0x7, 0x1, 0x0, 0x9, 0x0, 0x3}, {0x100, 0x5, 0x4, 0x1, 0x8000, 0x8001}, {0x7, 0x1, 0x7, 0x4, 0x112, 0x2}, {0xa07, 0x28, 0x3, 0x1, 0x3ff, 0x8}, {0xa6, 0x9, 0x2, 0x9, 0x6ff8, 0x9}, {0x3, 0xfff, 0x800, 0x80, 0x8, 0xab}, {0x8, 0x6, 0x0, 0x9d, 0x2, 0x8}, {0x9, 0x8, 0xb77, 0x6, 0x35, 0x44}], [{0x5, 0x1}, {0x4, 0x1}, {0x1, 0x1}, {0x3}, {0x5}, {0x0, 0x1}, {0x1, 0x1}, {0x5}, {0x5, 0x1}, {0x5c97f9713d4d15b, 0x1}, {0x5}, {0x5, 0x1}, {0x4, 0x1}, {0x4, 0x1}, {0x2}, {0x3, 0x1}, {0x5, 0x1}, {0x0, 0x1}, {}, {0x3, 0x1}, {0x2}, {0x4, 0x1}, {0x1, 0x1}, {}, {0x1}, {}, {0x5, 0x1}, {}, {0x5bad525f7d486f31, 0x1}, {0x0, 0x1}, {0x2}, {0x5, 0x1}, {0x3, 0x1}, {0x4, 0x1}, {}, {0x5}, {0x3}, {0x0, 0x1}, {0x3, 0x1}, {}, {}, {0x1, 0x1}, {0x2}, {0x3, 0x1}, {0x5, 0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x1}, {0x1}, {0x2, 0x1}, {0x1, 0x1}, {}, {0x4}, {0x4, 0x1}, {0x2}, {0x2}, {}, {0x5, 0x1}, {0x4}, {0x5, 0x1}, {0x2}, {}, {0x5, 0x1}, {0x2}, {0x4}, {}, {0x5, 0x1}, {0x2, 0xdce011572d268415}, {0x5}, {0x2}, {}, {0x0, 0x1}, {0x3}, {0x1, 0x1}, {0x5}, {0x2}, {0x1, 0x1}, {0x1, 0x1}, {0x2}, {0x6}, {0x0, 0x1}, {0x3, 0x1}, {0x3}, {}, {0x1, 0x1}, {0x5, 0x1}, {0x1}, {}, {}, {0x5}, {0x8}, {0x2}, {0x4, 0x1}, {0x5, 0x1}, {0x5, 0x1}, {0x5, 0x1}, {0x4, 0x1}, {0x3, 0x1}, {0x4}, {0x4}, {0x1}, {0x4, 0x1}, {0x5}, {}, {0x5, 0x1}, {0x5}, {}, {0x2, 0x1}, {0x3}, {0x1, 0x1}, {0x2, 0x1}, {0x1, 0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x4, 0x1}, {0x2, 0x1}, {0x5}, {0x5}, {0x3, 0x1}, {}, {0x4}, {0x5, 0x1}, {0x5}, {0x4, 0x1}, {0x0, 0x1}, {0x2}, {0x2}, {0x2}], 0x1}}]}, {0x1004, 0x6, "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"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2}}}}, @m_skbedit={0x130, 0x17, 0x0, 0x0, {{0xc, 0x1, 'skbedit\x00'}, {0x14, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PTYPE={0x6, 0x7, 0x2}, @TCA_SKBEDIT_PTYPE={0x6, 0x7, 0x3}]}, {0xf1, 0x6, "1193f565890450e40026d953015b5f7db8629fc828b16b03304607157696f862d0cd83c2032831e2139c28ed04da37d00761fbef0c9dbd6bce90658eea24d53a8df033485575adc6903a6545f4280dd928aa16a269d67235d00a1e5d5ee5dc7c6898659246851698e9955d7db4f3e4b2747eb0e1f36e7a1b1152c027c06715cab919fb68c508800ae10e9da61ae8b2987f8f4e0a105a23b127d9303f1eb800fb22603603ba8a155c6d81423a425206b08ddd2b5a39ae3df69e5a43defb5a926acc34e163915db8002aeb4e20820805135047beeb0b7b7988434ac65891c5c4ccfa08902188f6224888b98c6e88"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x1}}}}]}]}}, @TCA_CHAIN={0x8, 0xb, 0x3ff}]}, 0x5f18}, 0x1, 0x0, 0x0, 0x8041}, 0x4)
sendfile(r1, r2, 0x0, 0x1000007ffff000)

20:09:15 executing program 4:
unshare(0x6040600)
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rtc0\x00', 0x0, 0x0)
ioctl$RTC_WKALM_SET(r0, 0x4028700f, 0x0)

20:09:15 executing program 3:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000380)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x2)
r3 = dup(r2)
write$UHID_INPUT(r3, &(0x7f0000001440)={0x2400, {"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", 0x1000}}, 0x1006)

[  463.206824][T13213] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'.
20:09:16 executing program 2:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f00000000c0)="24000000200099f0003be90000ed190e020008160000100000ba1080080002007f", 0x21)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f00000002c0)=""/2, 0x2}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x40)
write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @ext={0x91, &(0x7f0000000200)="f7f249b987e7326bc88b9baf0500000032a5b60a00008024c30e478947d190ac004c45bec9c683f53b506b8c5893d35500c52c65ec345a8b75c1c317c3da822e15355c2ae26ba533fad72a1d53a9ff5b4ac51e08dcaeeb01eeb2dd9b56de54fcea571b152f7d37491e04451c47d280ce8f3e884f9fd6a9cd4b078ee6986d183dc593981799b436702a74c456ed31e7ea7d"}}], 0x1c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

20:09:16 executing program 4:
unshare(0x6040600)
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rtc0\x00', 0x0, 0x0)
ioctl$RTC_WKALM_SET(r0, 0x4028700f, 0x0)

20:09:16 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r2 = openat$cgroup_ro(r1, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r1, 0x4010ae74, &(0x7f00000000c0)={0x6, 0x7ff, 0xa5})
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r0, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
getdents(r2, &(0x7f0000000180)=""/232, 0xe8)
sendfile(r3, r4, 0x0, 0x1000007ffff000)
open(&(0x7f0000000100)='./file0\x00', 0x101001, 0x88)

20:09:16 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

20:09:16 executing program 5:
r0 = socket(0x11, 0x800000003, 0x0)
bind(r0, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80)
getsockname$packet(r0, &(0x7f0000000340)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000380)=@newqdisc={0x24, 0x11, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1}}, 0x24}}, 0x0)

20:09:16 executing program 3:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000380)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x2)
r3 = dup(r2)
write$UHID_INPUT(r3, &(0x7f0000001440)={0x2400, {"a2e3ad21ed6b52f99cfbf4c087f719b4d026e7ff7fc6e553f836500e8b546a1b485594370890e0878fdb1ac6e704e366b4956c409b4b2a5b67f3988f7ef31952a981ffe8d178708c523c921b1b5a4b0a169b5b9b366d3b78130daa61d8e809ea882f5802b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179cef309f4cff7738596ecae8707ce065cd5b91cd0ae193973735b36d5b1b63e91c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c30900000000000000a85e89c46329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecd03aded6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801119242ca5b6bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9f6ff14ac488ec130fb3850a27afc953854a642c57519544ae15a7e454dea05918b4124351601611c8f11baa500a3621c56cea8d20ff911a0c41db6ebe8cac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6a62fa678ca14ffd9f9db2a7869d85864056526f889af43a60560a22f1fca567e65d5e880572286522449df466c632b3570243f989cce3803f465e41e610c20d80421d653a5120000008213b704c7fb082ff27590678ef9f190bae979babc7041d860420c5664ba7921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710acf2e31caa04b2e286bea37ce0d0d4aa202fef5952a5391fd5615d429a04a689b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2f05dd3318271a1f5f8528f227e79c1388dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eefc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44060bebc2420aed92fa9b6578b4779415d97b9a6d6d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2aed9e53803ed0ca4ae3a9737d214060005ea6f1783e287b3bee96e3a7288afe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f48fe4eae9ca1207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e67d1d7232f17696294378ce716dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf02b98a269b891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efedfd71af9444e197f47e866101496f42355bc7872c827467cfa5c4e72730d56bd068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f7927f889b813076038e79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee615f7084a607a7eceb6243378e0610060f02cca4051c2f001edb3d78fb4b55668dda93aec92a5de203717aa49c2d284acfabe262fccfcbb2b75a2183c4e15a7b6eb65ca8104e1b4da1fbb7dc7ab2fc043aead87c32ab875ee7c2e7b7019c902cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad948741b2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd73643de50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c1023bf70cc77737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd75c2f998d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73c497579773767075428067e7f16f4dde374f8211fef42cb468e623daf60b3569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40426db6fe29068c0ca3d3414442e863a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd9432971215d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae44369ddb4581c55925d0f6f1ba471eba281f259152f85a654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a39973132f02768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaee5ee6cf1d0ab378dd4dd891e937c2ea5410e05130935e00785ec27e923911fab964c271556527697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9ddbfb96d6861aca47da73d6f3144345f48843dd014e5c5ad8fe995754bd9cf32fce1e7027132f2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afae5336651b1b9bd522d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a3766d5439020484f4113c4c859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee29165895ac4b008e595f437491d87abed02cefcd9db53d94d02dae17b118e5d6787463181f4b87c10772d2b13f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76d57227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f84fad6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b3110b932a4d02da711b757fe43c06d21e35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc238a081f758cefcce3fbf4625a7e7de40e42e07b34449e15eb0305626afb1dd179b8a065cc7348663a52190202c7af288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4908b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cb0b3e35cb80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c60edddab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb1575912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0db42c0456ec014508e5247d33ae6c962d35603ff8454c16f8342856935125102bb784ed714887071f3d998efdd9923c954ab6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee658e4cb5e930ed624806c43a006dc9336d07c2b8081c128ad2706f48261f7897084c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da3932ba5c04c24a560ad80a3ce654578376e599aff3565b1d531f30912b99e6619ebe93cc0b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea40686e730861e83d89d0fe662a46b7f71cd47744db86c50b704c971d90195c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e6491953264d2700c838fa2c7b34252600c9654e502dcea39cb6bc3eb69992e234b4ca7db2f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe36d7d3e5db21b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b010a3ad0a5dbed2881a9700af561ac8c7e36bb2fc4c40e9cf96f06817fb903729a7d528ed15b97c9ede7885d94ff1aa70826ad01a9b03c37b0969be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c148cd2f9c55f4901203a9a8a2c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0fc5a752f90", 0x1000}}, 0x1006)

[  464.091114][T13231] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'.
[  464.119008][    C0] sd 0:0:1:0: [sg0] tag#2706 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
20:09:16 executing program 4:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xdd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000003, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
syz_open_procfs(0x0, &(0x7f0000272000))
sendmsg$RDMA_NLDEV_CMD_RES_CQ_GET(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000140)={0x0}}, 0x0)

[  464.119118][    C0] sd 0:0:1:0: [sg0] tag#2706 CDB: Test Unit Ready
[  464.119382][    C0] sd 0:0:1:0: [sg0] tag#2706 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
20:09:16 executing program 5:
r0 = socket(0x11, 0x800000003, 0x0)
bind(r0, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80)
getsockname$packet(r0, &(0x7f0000000340)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000380)=@newqdisc={0x24, 0x11, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1}}, 0x24}}, 0x0)

[  464.119498][    C0] sd 0:0:1:0: [sg0] tag#2706 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  464.119610][    C0] sd 0:0:1:0: [sg0] tag#2706 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  464.119722][    C0] sd 0:0:1:0: [sg0] tag#2706 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  464.119837][    C0] sd 0:0:1:0: [sg0] tag#2706 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
20:09:16 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000180)={'gre0\x00', &(0x7f0000000340)={'erspan0\x00', <r1=>0x0, 0x10, 0x700, 0x800, 0xfffffffa, {{0x29, 0x4, 0x1, 0x20, 0xa4, 0x69, 0x0, 0x0, 0x4, 0x0, @loopback, @multicast2, {[@timestamp_addr={0x44, 0x3c, 0x56, 0x1, 0x6, [{@loopback, 0x649}, {@remote, 0x79ff}, {@rand_addr=0x64010101, 0xfff}, {@dev={0xac, 0x14, 0x14, 0x3e}, 0x2e61de1f}, {@private=0xa010100, 0x1}, {@remote, 0x101}, {@dev={0xac, 0x14, 0x14, 0x2a}, 0x4}]}, @generic={0x94, 0x8, "cd68bc28a9f8"}, @rr={0x7, 0xb, 0xd0, [@private=0xa010100, @local]}, @cipso={0x86, 0x1e, 0x2, [{0x5, 0xa, "33904c3c37a0780b"}, {0x5, 0x9, "70cc9f380f2a73"}, {0x0, 0x5, "ad190f"}]}, @rr={0x7, 0x23, 0x3e, [@loopback, @loopback, @rand_addr=0x64010100, @rand_addr=0x64010102, @multicast1, @broadcast, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2]}]}}}}})
setsockopt$packet_drop_memb(0xffffffffffffffff, 0x107, 0x2, &(0x7f0000000240)={r1, 0x1, 0x6, @local}, 0x10)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r2 = accept4(r0, 0x0, 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000008c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="000426bd7000fedbdf25ff010000080034", @ANYRES16=r5, @ANYBLOB="e0f0fdcb69a067053b14d7a44ca9ff6dedc9d15f7745c5298ff283c1edd156d0beaa2059b57c0366b4ef51f4f58652ef0dbdde68cd9d7f6a7ddbcbe278a8"], 0x2c}, 0x1, 0x0, 0x0, 0x2000}, 0x2400c004)
r6 = openat$cgroup_ro(r4, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r6, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x24, r5, 0x712, 0x70bd26, 0x25dfdbff}, 0x24}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
fremovexattr(r6, &(0x7f0000000200)=ANY=[@ANYBLOB="736563f123be9b00002100"])
sendfile(r2, r3, 0x0, 0x1000007ffff000)
r7 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0)
r8 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
openat$cgroup_ro(r8, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000001c0)='cgroup.controllers\x00', 0x0, 0x0)
r9 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/qat_adf_ctl\x00', 0x4600, 0x0)
ioctl$LOOP_CHANGE_FD(r7, 0x4c06, r9)

[  464.119943][    C0] sd 0:0:1:0: [sg0] tag#2706 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
20:09:16 executing program 4:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xdd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000003, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
syz_open_procfs(0x0, &(0x7f0000272000))
sendmsg$RDMA_NLDEV_CMD_RES_CQ_GET(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000140)={0x0}}, 0x0)

[  464.120048][    C0] sd 0:0:1:0: [sg0] tag#2706 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  464.120153][    C0] sd 0:0:1:0: [sg0] tag#2706 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  464.120263][    C0] sd 0:0:1:0: [sg0] tag#2706 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  464.120375][    C0] sd 0:0:1:0: [sg0] tag#2706 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  464.120488][    C0] sd 0:0:1:0: [sg0] tag#2706 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
20:09:17 executing program 5:
r0 = socket(0x11, 0x800000003, 0x0)
bind(r0, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80)
getsockname$packet(r0, &(0x7f0000000340)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000380)=@newqdisc={0x24, 0x11, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1}}, 0x24}}, 0x0)

20:09:17 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

[  464.120694][    C0] sd 0:0:1:0: [sg0] tag#2706 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  464.120805][    C0] sd 0:0:1:0: [sg0] tag#2706 CDB[c0]: 00 00 00 00 00 00 00 00
[  464.153143][T13235] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'.
[  464.298685][T13232] not chained 780000 origins
[  464.298704][T13232] CPU: 1 PID: 13232 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0
[  464.298713][T13232] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  464.298720][T13232] Call Trace:
[  464.298746][T13232]  dump_stack+0x1df/0x240
[  464.298776][T13232]  kmsan_internal_chain_origin+0x6f/0x130
[  464.298797][T13232]  ? is_module_text_address+0x4d/0x2a0
[  464.298816][T13232]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  464.298841][T13232]  ? __kernel_text_address+0x171/0x2d0
[  464.298861][T13232]  ? unwind_get_return_address+0x8c/0x130
[  464.298881][T13232]  ? entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  464.298898][T13232]  ? arch_stack_walk+0x2a2/0x3e0
[  464.298916][T13232]  ? stack_trace_save+0x1a0/0x1a0
[  464.298938][T13232]  ? kmsan_get_metadata+0x4f/0x180
[  464.298957][T13232]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  464.298976][T13232]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  464.298993][T13232]  ? stack_trace_save+0x123/0x1a0
[  464.299012][T13232]  ? kmsan_get_metadata+0x11d/0x180
[  464.299029][T13232]  __msan_chain_origin+0x50/0x90
[  464.299048][T13232]  rmd256_transform+0x4328/0x4440
[  464.299114][T13232]  rmd256_update+0x343/0x4f0
[  464.299139][T13232]  ? rmd256_init+0x260/0x260
[  464.299156][T13232]  crypto_shash_update+0x4e9/0x550
[  464.299173][T13232]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  464.299205][T13232]  ? crypto_hash_walk_first+0x1fd/0x360
[  464.299219][T13232]  ? kmsan_get_metadata+0x4f/0x180
[  464.299236][T13232]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  464.299242][T13232]  shash_async_update+0x113/0x1d0
[  464.299242][T13232]  ? shash_async_init+0x1e0/0x1e0
[  464.299242][T13232]  hash_sendpage+0x8ef/0xdf0
[  464.299242][T13232]  ? hash_recvmsg+0xd30/0xd30
[  464.299242][T13232]  sock_sendpage+0x1e1/0x2c0
[  464.299242][T13232]  pipe_to_sendpage+0x38c/0x4c0
[  464.299242][T13232]  ? sock_fasync+0x250/0x250
[  464.299242][T13232]  __splice_from_pipe+0x565/0xf00
[  464.299242][T13232]  ? generic_splice_sendpage+0x2d0/0x2d0
[  464.299242][T13232]  generic_splice_sendpage+0x1d5/0x2d0
[  464.299242][T13232]  ? iter_file_splice_write+0x1800/0x1800
[  464.299242][T13232]  direct_splice_actor+0x1fd/0x580
[  464.299242][T13232]  ? kmsan_get_metadata+0x4f/0x180
[  464.299242][T13232]  splice_direct_to_actor+0x6b2/0xf50
[  464.299242][T13232]  ? do_splice_direct+0x580/0x580
[  464.299242][T13232]  do_splice_direct+0x342/0x580
[  464.299242][T13232]  do_sendfile+0x101b/0x1d40
[  464.299242][T13232]  __se_sys_sendfile64+0x2bb/0x360
[  464.299242][T13232]  ? kmsan_get_metadata+0x4f/0x180
[  464.299242][T13232]  __x64_sys_sendfile64+0x56/0x70
[  464.299242][T13232]  do_syscall_64+0xb0/0x150
[  464.299242][T13232]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  464.299242][T13232] RIP: 0033:0x45c1d9
[  464.299242][T13232] Code: Bad RIP value.
[  464.299242][T13232] RSP: 002b:00007f3a4d702c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  464.299242][T13232] RAX: ffffffffffffffda RBX: 0000000000025a00 RCX: 000000000045c1d9
[  464.299242][T13232] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004
[  464.299242][T13232] RBP: 000000000078bf48 R08: 0000000000000000 R09: 0000000000000000
[  464.299242][T13232] R10: 001000007ffff000 R11: 0000000000000246 R12: 000000000078bf0c
[  464.299242][T13232] R13: 0000000000c9fb6f R14: 00007f3a4d7039c0 R15: 000000000078bf0c
[  464.299242][T13232] Uninit was stored to memory at:
[  464.299242][T13232]  kmsan_internal_chain_origin+0xad/0x130
[  464.299242][T13232]  __msan_chain_origin+0x50/0x90
[  464.299242][T13232]  rmd256_transform+0x4328/0x4440
[  464.299242][T13232]  rmd256_update+0x343/0x4f0
[  464.299242][T13232]  crypto_shash_update+0x4e9/0x550
[  464.299242][T13232]  shash_async_update+0x113/0x1d0
[  464.299242][T13232]  hash_sendpage+0x8ef/0xdf0
[  464.299242][T13232]  sock_sendpage+0x1e1/0x2c0
[  464.299242][T13232]  pipe_to_sendpage+0x38c/0x4c0
[  464.299242][T13232]  __splice_from_pipe+0x565/0xf00
[  464.299242][T13232]  generic_splice_sendpage+0x1d5/0x2d0
[  464.299242][T13232]  direct_splice_actor+0x1fd/0x580
[  464.299242][T13232]  splice_direct_to_actor+0x6b2/0xf50
[  464.299242][T13232]  do_splice_direct+0x342/0x580
[  464.299242][T13232]  do_sendfile+0x101b/0x1d40
[  464.299242][T13232]  __se_sys_sendfile64+0x2bb/0x360
[  464.299242][T13232]  __x64_sys_sendfile64+0x56/0x70
[  464.299242][T13232]  do_syscall_64+0xb0/0x150
[  464.299242][T13232]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  464.299242][T13232] 
[  464.299242][T13232] Uninit was stored to memory at:
[  464.299242][T13232]  kmsan_internal_chain_origin+0xad/0x130
[  464.299242][T13232]  __msan_chain_origin+0x50/0x90
[  464.299242][T13232]  rmd256_transform+0x4328/0x4440
[  464.299242][T13232]  rmd256_update+0x343/0x4f0
[  464.299242][T13232]  crypto_shash_update+0x4e9/0x550
[  464.299242][T13232]  shash_async_update+0x113/0x1d0
[  464.299242][T13232]  hash_sendpage+0x8ef/0xdf0
[  464.299242][T13232]  sock_sendpage+0x1e1/0x2c0
[  464.299242][T13232]  pipe_to_sendpage+0x38c/0x4c0
[  464.299242][T13232]  __splice_from_pipe+0x565/0xf00
[  464.299242][T13232]  generic_splice_sendpage+0x1d5/0x2d0
[  464.299242][T13232]  direct_splice_actor+0x1fd/0x580
[  464.299242][T13232]  splice_direct_to_actor+0x6b2/0xf50
[  464.299242][T13232]  do_splice_direct+0x342/0x580
[  464.299242][T13232]  do_sendfile+0x101b/0x1d40
[  464.299242][T13232]  __se_sys_sendfile64+0x2bb/0x360
[  464.299242][T13232]  __x64_sys_sendfile64+0x56/0x70
[  464.299242][T13232]  do_syscall_64+0xb0/0x150
[  464.299242][T13232]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  464.299242][T13232] 
[  464.299242][T13232] Uninit was stored to memory at:
[  464.299242][T13232]  kmsan_internal_chain_origin+0xad/0x130
[  464.299242][T13232]  __msan_chain_origin+0x50/0x90
[  464.299242][T13232]  rmd256_transform+0x4328/0x4440
[  464.299242][T13232]  rmd256_update+0x343/0x4f0
[  464.299242][T13232]  crypto_shash_update+0x4e9/0x550
[  464.299242][T13232]  shash_async_update+0x113/0x1d0
[  464.299242][T13232]  hash_sendpage+0x8ef/0xdf0
[  464.299242][T13232]  sock_sendpage+0x1e1/0x2c0
[  464.299242][T13232]  pipe_to_sendpage+0x38c/0x4c0
[  464.299242][T13232]  __splice_from_pipe+0x565/0xf00
[  464.299242][T13232]  generic_splice_sendpage+0x1d5/0x2d0
[  464.299242][T13232]  direct_splice_actor+0x1fd/0x580
[  464.299242][T13232]  splice_direct_to_actor+0x6b2/0xf50
[  464.299242][T13232]  do_splice_direct+0x342/0x580
[  464.299242][T13232]  do_sendfile+0x101b/0x1d40
[  464.299242][T13232]  __se_sys_sendfile64+0x2bb/0x360
[  464.299242][T13232]  __x64_sys_sendfile64+0x56/0x70
[  464.299242][T13232]  do_syscall_64+0xb0/0x150
[  464.299242][T13232]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  464.299242][T13232] 
[  464.299242][T13232] Uninit was stored to memory at:
[  464.299242][T13232]  kmsan_internal_chain_origin+0xad/0x130
[  464.299242][T13232]  __msan_chain_origin+0x50/0x90
[  464.299242][T13232]  rmd256_transform+0x4328/0x4440
[  464.299242][T13232]  rmd256_update+0x343/0x4f0
[  464.299242][T13232]  crypto_shash_update+0x4e9/0x550
[  464.299242][T13232]  shash_async_update+0x113/0x1d0
[  464.299242][T13232]  hash_sendpage+0x8ef/0xdf0
[  464.299242][T13232]  sock_sendpage+0x1e1/0x2c0
[  464.299242][T13232]  pipe_to_sendpage+0x38c/0x4c0
[  464.299242][T13232]  __splice_from_pipe+0x565/0xf00
[  464.299242][T13232]  generic_splice_sendpage+0x1d5/0x2d0
[  464.299242][T13232]  direct_splice_actor+0x1fd/0x580
[  464.299242][T13232]  splice_direct_to_actor+0x6b2/0xf50
[  464.299242][T13232]  do_splice_direct+0x342/0x580
[  464.299242][T13232]  do_sendfile+0x101b/0x1d40
[  464.299242][T13232]  __se_sys_sendfile64+0x2bb/0x360
[  464.299242][T13232]  __x64_sys_sendfile64+0x56/0x70
[  464.299242][T13232]  do_syscall_64+0xb0/0x150
[  464.299242][T13232]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  464.299242][T13232] 
[  464.299242][T13232] Uninit was stored to memory at:
[  464.299242][T13232]  kmsan_internal_chain_origin+0xad/0x130
[  464.299242][T13232]  __msan_chain_origin+0x50/0x90
[  464.299242][T13232]  rmd256_transform+0x4328/0x4440
[  464.299242][T13232]  rmd256_update+0x343/0x4f0
[  464.299242][T13232]  crypto_shash_update+0x4e9/0x550
[  464.299242][T13232]  shash_async_update+0x113/0x1d0
[  464.299242][T13232]  hash_sendpage+0x8ef/0xdf0
[  464.299242][T13232]  sock_sendpage+0x1e1/0x2c0
[  464.299242][T13232]  pipe_to_sendpage+0x38c/0x4c0
[  464.299242][T13232]  __splice_from_pipe+0x565/0xf00
[  464.299242][T13232]  generic_splice_sendpage+0x1d5/0x2d0
[  464.299242][T13232]  direct_splice_actor+0x1fd/0x580
[  464.299242][T13232]  splice_direct_to_actor+0x6b2/0xf50
[  464.299242][T13232]  do_splice_direct+0x342/0x580
[  464.299242][T13232]  do_sendfile+0x101b/0x1d40
[  464.299242][T13232]  __se_sys_sendfile64+0x2bb/0x360
[  464.299242][T13232]  __x64_sys_sendfile64+0x56/0x70
[  464.299242][T13232]  do_syscall_64+0xb0/0x150
[  464.299242][T13232]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  464.299242][T13232] 
[  464.299242][T13232] Uninit was stored to memory at:
[  464.299242][T13232]  kmsan_internal_chain_origin+0xad/0x130
[  464.299242][T13232]  __msan_chain_origin+0x50/0x90
[  464.299242][T13232]  rmd256_transform+0x4328/0x4440
[  464.299242][T13232]  rmd256_update+0x227/0x4f0
[  464.299242][T13232]  crypto_shash_update+0x4e9/0x550
[  464.299242][T13232]  shash_async_update+0x113/0x1d0
[  464.299242][T13232]  hash_sendpage+0x8ef/0xdf0
[  464.299242][T13232]  sock_sendpage+0x1e1/0x2c0
[  464.299242][T13232]  pipe_to_sendpage+0x38c/0x4c0
[  464.299242][T13232]  __splice_from_pipe+0x565/0xf00
[  464.299242][T13232]  generic_splice_sendpage+0x1d5/0x2d0
[  464.299242][T13232]  direct_splice_actor+0x1fd/0x580
[  464.299242][T13232]  splice_direct_to_actor+0x6b2/0xf50
[  464.299242][T13232]  do_splice_direct+0x342/0x580
[  464.299242][T13232]  do_sendfile+0x101b/0x1d40
[  464.299242][T13232]  __se_sys_sendfile64+0x2bb/0x360
[  464.299242][T13232]  __x64_sys_sendfile64+0x56/0x70
[  464.299242][T13232]  do_syscall_64+0xb0/0x150
[  464.299242][T13232]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  464.299242][T13232] 
[  464.299242][T13232] Uninit was stored to memory at:
[  464.299242][T13232]  kmsan_internal_chain_origin+0xad/0x130
[  464.299242][T13232]  kmsan_memcpy_memmove_metadata+0x272/0x2e0
[  464.299242][T13232]  kmsan_memcpy_metadata+0xb/0x10
[  464.299242][T13232]  __msan_memcpy+0x43/0x50
[  464.299242][T13232]  rmd256_update+0x1fc/0x4f0
[  464.299242][T13232]  crypto_shash_update+0x4e9/0x550
[  464.299242][T13232]  shash_async_update+0x113/0x1d0
[  464.299242][T13232]  hash_sendpage+0x8ef/0xdf0
[  464.299242][T13232]  sock_sendpage+0x1e1/0x2c0
[  464.299242][T13232]  pipe_to_sendpage+0x38c/0x4c0
[  464.299242][T13232]  __splice_from_pipe+0x565/0xf00
[  464.299242][T13232]  generic_splice_sendpage+0x1d5/0x2d0
[  464.299242][T13232]  direct_splice_actor+0x1fd/0x580
[  464.299242][T13232]  splice_direct_to_actor+0x6b2/0xf50
[  464.299242][T13232]  do_splice_direct+0x342/0x580
[  464.299242][T13232]  do_sendfile+0x101b/0x1d40
[  464.299242][T13232]  __se_sys_sendfile64+0x2bb/0x360
[  464.299242][T13232]  __x64_sys_sendfile64+0x56/0x70
[  464.299242][T13232]  do_syscall_64+0xb0/0x150
[  464.299242][T13232]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  464.299242][T13232] 
[  464.299242][T13232] Uninit was created at:
[  464.299242][T13232]  kmsan_save_stack_with_flags+0x3c/0x90
[  464.299242][T13232]  kmsan_alloc_page+0xb9/0x180
[  464.299242][T13232]  __alloc_pages_nodemask+0x56a2/0x5dc0
[  464.299242][T13232]  alloc_pages_current+0x672/0x990
[  464.299242][T13232]  push_pipe+0x605/0xb70
[  464.299242][T13232]  iov_iter_get_pages_alloc+0x18a9/0x21c0
[  464.299242][T13232]  do_splice_to+0x4fc/0x14f0
[  464.299242][T13232]  splice_direct_to_actor+0x45c/0xf50
[  464.299242][T13232]  do_splice_direct+0x342/0x580
[  464.299242][T13232]  do_sendfile+0x101b/0x1d40
[  464.299242][T13232]  __se_sys_sendfile64+0x2bb/0x360
[  464.299242][T13232]  __x64_sys_sendfile64+0x56/0x70
[  464.299242][T13232]  do_syscall_64+0xb0/0x150
[  464.299242][T13232]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  464.352488][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  464.800403][T13247] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'.
[  465.108080][T13249] not chained 790000 origins
[  465.108101][T13249] CPU: 1 PID: 13249 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0
[  465.108110][T13249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  465.108116][T13249] Call Trace:
[  465.108143][T13249]  dump_stack+0x1df/0x240
[  465.108168][T13249]  kmsan_internal_chain_origin+0x6f/0x130
[  465.108191][T13249]  ? is_module_text_address+0x4d/0x2a0
[  465.108210][T13249]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  465.108236][T13249]  ? __kernel_text_address+0x171/0x2d0
[  465.108257][T13249]  ? unwind_get_return_address+0x8c/0x130
[  465.108281][T13249]  ? entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  465.108299][T13249]  ? arch_stack_walk+0x2a2/0x3e0
[  465.108318][T13249]  ? stack_trace_save+0x1a0/0x1a0
[  465.108341][T13249]  ? kmsan_get_metadata+0x4f/0x180
[  465.108359][T13249]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  465.108377][T13249]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  465.108394][T13249]  ? stack_trace_save+0x123/0x1a0
[  465.108413][T13249]  ? kmsan_get_metadata+0x11d/0x180
[  465.108429][T13249]  __msan_chain_origin+0x50/0x90
[  465.108448][T13249]  rmd256_transform+0x4328/0x4440
[  465.108514][T13249]  rmd256_update+0x343/0x4f0
[  465.108541][T13249]  ? rmd256_init+0x260/0x260
[  465.108557][T13249]  crypto_shash_update+0x4e9/0x550
[  465.108574][T13249]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  465.108612][T13249]  ? crypto_hash_walk_first+0x1fd/0x360
[  465.108629][T13249]  ? kmsan_get_metadata+0x4f/0x180
[  465.108648][T13249]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  465.108665][T13249]  shash_async_update+0x113/0x1d0
[  465.108687][T13249]  ? shash_async_init+0x1e0/0x1e0
[  465.108703][T13249]  hash_sendpage+0x8ef/0xdf0
[  465.108728][T13249]  ? hash_recvmsg+0xd30/0xd30
[  465.108751][T13249]  sock_sendpage+0x1e1/0x2c0
[  465.108778][T13249]  pipe_to_sendpage+0x38c/0x4c0
[  465.108796][T13249]  ? sock_fasync+0x250/0x250
[  465.108824][T13249]  __splice_from_pipe+0x565/0xf00
[  465.108844][T13249]  ? generic_splice_sendpage+0x2d0/0x2d0
[  465.108878][T13249]  generic_splice_sendpage+0x1d5/0x2d0
[  465.108906][T13249]  ? iter_file_splice_write+0x1800/0x1800
[  465.108925][T13249]  direct_splice_actor+0x1fd/0x580
[  465.108949][T13249]  ? kmsan_get_metadata+0x4f/0x180
[  465.108971][T13249]  splice_direct_to_actor+0x6b2/0xf50
[  465.108988][T13249]  ? do_splice_direct+0x580/0x580
[  465.109025][T13249]  do_splice_direct+0x342/0x580
[  465.109056][T13249]  do_sendfile+0x101b/0x1d40
[  465.109094][T13249]  __se_sys_sendfile64+0x2bb/0x360
[  465.109112][T13249]  ? kmsan_get_metadata+0x4f/0x180
[  465.109133][T13249]  __x64_sys_sendfile64+0x56/0x70
[  465.109153][T13249]  do_syscall_64+0xb0/0x150
[  465.109175][T13249]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  465.109187][T13249] RIP: 0033:0x45c1d9
[  465.109197][T13249] Code: Bad RIP value.
[  465.109205][T13249] RSP: 002b:00007f3a4d702c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  465.109220][T13249] RAX: ffffffffffffffda RBX: 0000000000025a00 RCX: 000000000045c1d9
[  465.109228][T13249] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004
[  465.109237][T13249] RBP: 000000000078bf48 R08: 0000000000000000 R09: 0000000000000000
[  465.109245][T13249] R10: 001000007ffff000 R11: 0000000000000246 R12: 000000000078bf0c
[  465.109251][T13249] R13: 0000000000c9fb6f R14: 00007f3a4d7039c0 R15: 000000000078bf0c
[  465.109251][T13249] Uninit was stored to memory at:
[  465.109251][T13249]  kmsan_internal_chain_origin+0xad/0x130
[  465.109251][T13249]  __msan_chain_origin+0x50/0x90
[  465.109251][T13249]  rmd256_transform+0x4328/0x4440
[  465.109326][T13249]  rmd256_update+0x343/0x4f0
[  465.109326][T13249]  crypto_shash_update+0x4e9/0x550
[  465.109326][T13249]  shash_async_update+0x113/0x1d0
[  465.109326][T13249]  hash_sendpage+0x8ef/0xdf0
[  465.109326][T13249]  sock_sendpage+0x1e1/0x2c0
[  465.109326][T13249]  pipe_to_sendpage+0x38c/0x4c0
[  465.109326][T13249]  __splice_from_pipe+0x565/0xf00
[  465.109326][T13249]  generic_splice_sendpage+0x1d5/0x2d0
[  465.109326][T13249]  direct_splice_actor+0x1fd/0x580
[  465.109326][T13249]  splice_direct_to_actor+0x6b2/0xf50
[  465.109326][T13249]  do_splice_direct+0x342/0x580
[  465.109326][T13249]  do_sendfile+0x101b/0x1d40
[  465.109326][T13249]  __se_sys_sendfile64+0x2bb/0x360
[  465.109326][T13249]  __x64_sys_sendfile64+0x56/0x70
[  465.109326][T13249]  do_syscall_64+0xb0/0x150
[  465.109326][T13249]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  465.109326][T13249] 
[  465.109326][T13249] Uninit was stored to memory at:
[  465.109326][T13249]  kmsan_internal_chain_origin+0xad/0x130
[  465.109326][T13249]  __msan_chain_origin+0x50/0x90
[  465.109326][T13249]  rmd256_transform+0x4328/0x4440
[  465.109326][T13249]  rmd256_update+0x343/0x4f0
[  465.109326][T13249]  crypto_shash_update+0x4e9/0x550
[  465.109326][T13249]  shash_async_update+0x113/0x1d0
[  465.109326][T13249]  hash_sendpage+0x8ef/0xdf0
[  465.109326][T13249]  sock_sendpage+0x1e1/0x2c0
[  465.109326][T13249]  pipe_to_sendpage+0x38c/0x4c0
[  465.109326][T13249]  __splice_from_pipe+0x565/0xf00
[  465.109326][T13249]  generic_splice_sendpage+0x1d5/0x2d0
[  465.109326][T13249]  direct_splice_actor+0x1fd/0x580
[  465.109326][T13249]  splice_direct_to_actor+0x6b2/0xf50
[  465.109326][T13249]  do_splice_direct+0x342/0x580
[  465.109326][T13249]  do_sendfile+0x101b/0x1d40
[  465.109326][T13249]  __se_sys_sendfile64+0x2bb/0x360
[  465.109326][T13249]  __x64_sys_sendfile64+0x56/0x70
[  465.109326][T13249]  do_syscall_64+0xb0/0x150
[  465.109326][T13249]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  465.109326][T13249] 
[  465.109326][T13249] Uninit was stored to memory at:
[  465.109326][T13249]  kmsan_internal_chain_origin+0xad/0x130
[  465.109326][T13249]  __msan_chain_origin+0x50/0x90
[  465.109326][T13249]  rmd256_transform+0x4328/0x4440
[  465.109326][T13249]  rmd256_update+0x343/0x4f0
[  465.109326][T13249]  crypto_shash_update+0x4e9/0x550
[  465.109326][T13249]  shash_async_update+0x113/0x1d0
[  465.109326][T13249]  hash_sendpage+0x8ef/0xdf0
[  465.109326][T13249]  sock_sendpage+0x1e1/0x2c0
[  465.109326][T13249]  pipe_to_sendpage+0x38c/0x4c0
[  465.109326][T13249]  __splice_from_pipe+0x565/0xf00
[  465.109326][T13249]  generic_splice_sendpage+0x1d5/0x2d0
[  465.109326][T13249]  direct_splice_actor+0x1fd/0x580
[  465.109326][T13249]  splice_direct_to_actor+0x6b2/0xf50
[  465.109326][T13249]  do_splice_direct+0x342/0x580
[  465.109326][T13249]  do_sendfile+0x101b/0x1d40
[  465.109326][T13249]  __se_sys_sendfile64+0x2bb/0x360
[  465.109326][T13249]  __x64_sys_sendfile64+0x56/0x70
[  465.109326][T13249]  do_syscall_64+0xb0/0x150
[  465.109326][T13249]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  465.109326][T13249] 
[  465.109326][T13249] Uninit was stored to memory at:
[  465.109326][T13249]  kmsan_internal_chain_origin+0xad/0x130
[  465.109326][T13249]  __msan_chain_origin+0x50/0x90
[  465.109326][T13249]  rmd256_transform+0x4328/0x4440
[  465.109326][T13249]  rmd256_update+0x343/0x4f0
[  465.109326][T13249]  crypto_shash_update+0x4e9/0x550
[  465.109326][T13249]  shash_async_update+0x113/0x1d0
[  465.109326][T13249]  hash_sendpage+0x8ef/0xdf0
[  465.109326][T13249]  sock_sendpage+0x1e1/0x2c0
[  465.109326][T13249]  pipe_to_sendpage+0x38c/0x4c0
[  465.109326][T13249]  __splice_from_pipe+0x565/0xf00
[  465.109326][T13249]  generic_splice_sendpage+0x1d5/0x2d0
[  465.109326][T13249]  direct_splice_actor+0x1fd/0x580
[  465.109326][T13249]  splice_direct_to_actor+0x6b2/0xf50
[  465.109326][T13249]  do_splice_direct+0x342/0x580
[  465.109326][T13249]  do_sendfile+0x101b/0x1d40
[  465.109326][T13249]  __se_sys_sendfile64+0x2bb/0x360
[  465.109326][T13249]  __x64_sys_sendfile64+0x56/0x70
[  465.109326][T13249]  do_syscall_64+0xb0/0x150
[  465.109326][T13249]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  465.109326][T13249] 
[  465.109326][T13249] Uninit was stored to memory at:
[  465.109326][T13249]  kmsan_internal_chain_origin+0xad/0x130
[  465.109326][T13249]  __msan_chain_origin+0x50/0x90
[  465.109326][T13249]  rmd256_transform+0x4328/0x4440
[  465.109326][T13249]  rmd256_update+0x343/0x4f0
[  465.109326][T13249]  crypto_shash_update+0x4e9/0x550
[  465.109326][T13249]  shash_async_update+0x113/0x1d0
[  465.109326][T13249]  hash_sendpage+0x8ef/0xdf0
[  465.109326][T13249]  sock_sendpage+0x1e1/0x2c0
[  465.109326][T13249]  pipe_to_sendpage+0x38c/0x4c0
[  465.109326][T13249]  __splice_from_pipe+0x565/0xf00
[  465.109326][T13249]  generic_splice_sendpage+0x1d5/0x2d0
[  465.109326][T13249]  direct_splice_actor+0x1fd/0x580
[  465.109326][T13249]  splice_direct_to_actor+0x6b2/0xf50
[  465.109326][T13249]  do_splice_direct+0x342/0x580
[  465.109326][T13249]  do_sendfile+0x101b/0x1d40
[  465.109326][T13249]  __se_sys_sendfile64+0x2bb/0x360
[  465.109326][T13249]  __x64_sys_sendfile64+0x56/0x70
[  465.109326][T13249]  do_syscall_64+0xb0/0x150
[  465.109326][T13249]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  465.109326][T13249] 
[  465.109326][T13249] Uninit was stored to memory at:
[  465.109326][T13249]  kmsan_internal_chain_origin+0xad/0x130
[  465.109326][T13249]  __msan_chain_origin+0x50/0x90
[  465.109326][T13249]  rmd256_transform+0x4328/0x4440
[  465.109326][T13249]  rmd256_update+0x227/0x4f0
[  465.109326][T13249]  crypto_shash_update+0x4e9/0x550
[  465.109326][T13249]  shash_async_update+0x113/0x1d0
[  465.109326][T13249]  hash_sendpage+0x8ef/0xdf0
[  465.109326][T13249]  sock_sendpage+0x1e1/0x2c0
[  465.109326][T13249]  pipe_to_sendpage+0x38c/0x4c0
[  465.109326][T13249]  __splice_from_pipe+0x565/0xf00
[  465.109326][T13249]  generic_splice_sendpage+0x1d5/0x2d0
[  465.109326][T13249]  direct_splice_actor+0x1fd/0x580
[  465.109326][T13249]  splice_direct_to_actor+0x6b2/0xf50
[  465.109326][T13249]  do_splice_direct+0x342/0x580
[  465.109326][T13249]  do_sendfile+0x101b/0x1d40
[  465.109326][T13249]  __se_sys_sendfile64+0x2bb/0x360
[  465.109326][T13249]  __x64_sys_sendfile64+0x56/0x70
[  465.109326][T13249]  do_syscall_64+0xb0/0x150
[  465.109326][T13249]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  465.109326][T13249] 
[  465.109326][T13249] Uninit was stored to memory at:
[  465.109326][T13249]  kmsan_internal_chain_origin+0xad/0x130
[  465.109326][T13249]  kmsan_memcpy_memmove_metadata+0x272/0x2e0
[  465.109326][T13249]  kmsan_memcpy_metadata+0xb/0x10
[  465.109326][T13249]  __msan_memcpy+0x43/0x50
[  465.109326][T13249]  rmd256_update+0x1fc/0x4f0
[  465.109326][T13249]  crypto_shash_update+0x4e9/0x550
[  465.109326][T13249]  shash_async_update+0x113/0x1d0
[  465.109326][T13249]  hash_sendpage+0x8ef/0xdf0
[  465.109326][T13249]  sock_sendpage+0x1e1/0x2c0
[  465.109326][T13249]  pipe_to_sendpage+0x38c/0x4c0
[  465.109326][T13249]  __splice_from_pipe+0x565/0xf00
[  465.109326][T13249]  generic_splice_sendpage+0x1d5/0x2d0
[  465.109326][T13249]  direct_splice_actor+0x1fd/0x580
[  465.109326][T13249]  splice_direct_to_actor+0x6b2/0xf50
[  465.109326][T13249]  do_splice_direct+0x342/0x580
[  465.109326][T13249]  do_sendfile+0x101b/0x1d40
[  465.109326][T13249]  __se_sys_sendfile64+0x2bb/0x360
[  465.109326][T13249]  __x64_sys_sendfile64+0x56/0x70
[  465.109326][T13249]  do_syscall_64+0xb0/0x150
[  465.109326][T13249]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  465.109326][T13249] 
[  465.109326][T13249] Uninit was created at:
[  465.109326][T13249]  kmsan_save_stack_with_flags+0x3c/0x90
[  465.109326][T13249]  kmsan_alloc_page+0xb9/0x180
[  465.109326][T13249]  __alloc_pages_nodemask+0x56a2/0x5dc0
[  465.109326][T13249]  alloc_pages_current+0x672/0x990
[  465.109326][T13249]  push_pipe+0x605/0xb70
[  465.109326][T13249]  iov_iter_get_pages_alloc+0x18a9/0x21c0
[  465.109326][T13249]  do_splice_to+0x4fc/0x14f0
[  465.109326][T13249]  splice_direct_to_actor+0x45c/0xf50
[  465.109326][T13249]  do_splice_direct+0x342/0x580
[  465.109326][T13249]  do_sendfile+0x101b/0x1d40
[  465.109326][T13249]  __se_sys_sendfile64+0x2bb/0x360
[  465.109326][T13249]  __x64_sys_sendfile64+0x56/0x70
[  465.109326][T13249]  do_syscall_64+0xb0/0x150
[  465.109326][T13249]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  465.343722][T13256] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'.
[  465.373433][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
20:09:19 executing program 2:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f00000000c0)="24000000200099f0003be90000ed190e020008160000100000ba1080080002007f", 0x21)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f00000002c0)=""/2, 0x2}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x40)
write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @ext={0x91, &(0x7f0000000200)="f7f249b987e7326bc88b9baf0500000032a5b60a00008024c30e478947d190ac004c45bec9c683f53b506b8c5893d35500c52c65ec345a8b75c1c317c3da822e15355c2ae26ba533fad72a1d53a9ff5b4ac51e08dcaeeb01eeb2dd9b56de54fcea571b152f7d37491e04451c47d280ce8f3e884f9fd6a9cd4b078ee6986d183dc593981799b436702a74c456ed31e7ea7d"}}], 0x1c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

20:09:19 executing program 4:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xdd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000003, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
syz_open_procfs(0x0, &(0x7f0000272000))
sendmsg$RDMA_NLDEV_CMD_RES_CQ_GET(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000140)={0x0}}, 0x0)

20:09:19 executing program 5:
r0 = socket(0x11, 0x800000003, 0x0)
bind(r0, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80)
getsockname$packet(r0, &(0x7f0000000340)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000380)=@newqdisc={0x24, 0x11, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1}}, 0x24}}, 0x0)

20:09:19 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r1, r2, 0x0, 0x1000007ffff000)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000008c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="000426bd7000fedbdf250d000000080034", @ANYRES32=0x0, @ANYBLOB="e0f0fdcb69a067053b14d7a44ca9ff6dedc9d15f7745c5298ff283c1edd156d0beaa2059b57c0366b4ef51f4f58652ef0dbdde68cd9d7f6a7ddbcbe278a8"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2400c004)
r5 = openat$cgroup_ro(r3, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r5, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x24, r4, 0x712, 0x70bd26, 0x25dfdbff}, 0x24}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
r6 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
openat$cgroup_ro(r6, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
r7 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r7, 0x1, 0x11, &(0x7f0000000180)={0x0, 0x0, <r8=>0x0}, &(0x7f00000001c0)=0x9)
r9 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r9, 0x1, 0x11, &(0x7f0000000180)={0x0, 0x0, <r10=>0x0}, &(0x7f00000001c0)=0x9)
setresgid(0x0, r8, r10)
r11 = getegid()
setxattr$system_posix_acl(&(0x7f0000000180)='./file0\x00', &(0x7f0000000200)='system.posix_acl_default\x00', &(0x7f0000000440)={{}, {0x1, 0x5}, [{0x2, 0x1}, {0x2, 0x0, 0xee01}, {0x2, 0x4}, {0x2, 0x6}, {0x2, 0x6}, {}, {0x2, 0x3}], {0x4, 0x1}, [{0x8, 0x6, r8}, {0x8, 0x4, r11}], {0x10, 0x4}, {0x20, 0x1}}, 0x6c, 0x0)
ioctl$VIDIOC_QBUF(r5, 0xc058560f, &(0x7f00000000c0)={0x9, 0xc, 0x4, 0x40, 0xfff, {0x0, 0xea60}, {0x2, 0x1, 0x1, 0x1, 0x44, 0x0, "9f5ae837"}, 0x8, 0x1, @userptr=0x8, 0x367758cb, 0x0, r6})

[  465.386875][    C1] sd 0:0:1:0: [sg0] tag#2707 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  467.549019][T13269] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'.
[  467.549612][    C1] sd 0:0:1:0: [sg0] tag#2707 CDB: Test Unit Ready
[  467.549715][    C1] sd 0:0:1:0: [sg0] tag#2707 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  467.682073][    C1] sd 0:0:1:0: [sg0] tag#2707 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  467.682189][    C1] sd 0:0:1:0: [sg0] tag#2707 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  467.682299][    C1] sd 0:0:1:0: [sg0] tag#2707 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  467.682410][    C1] sd 0:0:1:0: [sg0] tag#2707 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  467.682519][    C1] sd 0:0:1:0: [sg0] tag#2707 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  467.682626][    C1] sd 0:0:1:0: [sg0] tag#2707 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  467.682737][    C1] sd 0:0:1:0: [sg0] tag#2707 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  467.682851][    C1] sd 0:0:1:0: [sg0] tag#2707 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  467.682964][    C1] sd 0:0:1:0: [sg0] tag#2707 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  467.683077][    C1] sd 0:0:1:0: [sg0] tag#2707 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  467.683195][    C1] sd 0:0:1:0: [sg0] tag#2707 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  467.683300][    C1] sd 0:0:1:0: [sg0] tag#2707 CDB[c0]: 00 00 00 00 00 00 00 00
[  467.791147][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
20:09:20 executing program 4:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xdd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000003, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
syz_open_procfs(0x0, &(0x7f0000272000))
sendmsg$RDMA_NLDEV_CMD_RES_CQ_GET(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000140)={0x0}}, 0x0)

20:09:20 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

20:09:20 executing program 4:
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
r0 = epoll_create1(0x0)
close(r0)
syz_open_procfs(0x0, &(0x7f0000000100)='mounts\x00')
poll(&(0x7f00000000c0)=[{r0}, {r0}], 0x2, 0x81)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000013c0)='ramfs\x00', 0x0, 0x0)

20:09:20 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000280)={0x2, {{0x2, 0x0, @multicast2}}}, 0x356)
setsockopt$inet_group_source_req(r0, 0x0, 0x2f, &(0x7f0000000640)={0x2, {{0x2, 0x0, @multicast2}}, {{0x2, 0x0, @local}}}, 0x108)
setsockopt$inet_group_source_req(r0, 0x0, 0x2d, &(0x7f0000000340)={0x2, {{0x2, 0xffff, @multicast2}}, {{0x2, 0x0, @multicast1}}}, 0x108)

20:09:20 executing program 0:
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt(r0, 0x800000010d, 0x2, &(0x7f0000000240)='\x00\x00\x00\x00\x00', 0x5)
getsockopt$inet_int(r0, 0x10d, 0x2, 0x0, &(0x7f0000000180)=0x2b)
ioctl$sock_SIOCINQ(r0, 0x541b, &(0x7f00000000c0))
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r2 = accept4(r1, 0x0, 0x0, 0x0)
r3 = gettid()
ptrace$setopts(0x4200, r3, 0x0, 0x0)
tkill(0x0, 0x3b)
ptrace$setregs(0xd, r3, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r3, 0x0, 0x0)
getpgrp(r3)
r4 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt(r4, 0x800000010d, 0x2, &(0x7f0000000240)='\x00\x00\x00\x00\x00', 0x5)
getsockopt$inet_int(r4, 0x10d, 0x2, 0x0, &(0x7f0000000180)=0x2b)
r5 = syz_open_procfs(r3, &(0x7f0000000100)='net/vlan/vlan0\x00')
sendfile(r2, r5, 0x0, 0x1000007ffff000)
socket$nl_generic(0x10, 0x3, 0x10)
accept$alg(r2, 0x0, 0x0)

20:09:20 executing program 5:
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x0, 0x0, 0x1b, 0x20}, 0x0)
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x1, 0x0)
io_submit(0x0, 0x2, &(0x7f0000000080)=[0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}])
sendto$inet(0xffffffffffffffff, 0x0, 0xff1b, 0x0, &(0x7f0000000080)={0x2, 0x4e20}, 0x10)
ioctl(r0, 0xffffffffffffffb9, &(0x7f0000000080))

[  468.425577][    C0] sd 0:0:1:0: [sg0] tag#2708 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  468.436314][    C0] sd 0:0:1:0: [sg0] tag#2708 CDB: Test Unit Ready
[  468.443137][    C0] sd 0:0:1:0: [sg0] tag#2708 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  468.454008][    C0] sd 0:0:1:0: [sg0] tag#2708 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  468.463910][    C0] sd 0:0:1:0: [sg0] tag#2708 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  468.473873][    C0] sd 0:0:1:0: [sg0] tag#2708 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  468.483802][    C0] sd 0:0:1:0: [sg0] tag#2708 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  468.493735][    C0] sd 0:0:1:0: [sg0] tag#2708 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  468.503665][    C0] sd 0:0:1:0: [sg0] tag#2708 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  468.513581][    C0] sd 0:0:1:0: [sg0] tag#2708 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  468.523496][    C0] sd 0:0:1:0: [sg0] tag#2708 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  468.533451][    C0] sd 0:0:1:0: [sg0] tag#2708 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  468.543365][    C0] sd 0:0:1:0: [sg0] tag#2708 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  468.553275][    C0] sd 0:0:1:0: [sg0] tag#2708 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  468.563185][    C0] sd 0:0:1:0: [sg0] tag#2708 CDB[c0]: 00 00 00 00 00 00 00 00
[  468.576089][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
20:09:20 executing program 4:
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
r0 = epoll_create1(0x0)
close(r0)
syz_open_procfs(0x0, &(0x7f0000000100)='mounts\x00')
poll(&(0x7f00000000c0)=[{r0}, {r0}], 0x2, 0x81)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000013c0)='ramfs\x00', 0x0, 0x0)

20:09:20 executing program 5:
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x0, 0x0, 0x1b, 0x20}, 0x0)
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x1, 0x0)
io_submit(0x0, 0x2, &(0x7f0000000080)=[0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}])
sendto$inet(0xffffffffffffffff, 0x0, 0xff1b, 0x0, &(0x7f0000000080)={0x2, 0x4e20}, 0x10)
ioctl(r0, 0xffffffffffffffb9, &(0x7f0000000080))

[  469.109702][T13287] not chained 800000 origins
[  469.114328][T13287] CPU: 0 PID: 13287 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0
[  469.119332][T13287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  469.119332][T13287] Call Trace:
[  469.119332][T13287]  dump_stack+0x1df/0x240
[  469.119332][T13287]  kmsan_internal_chain_origin+0x6f/0x130
[  469.119332][T13287]  ? is_module_text_address+0x4d/0x2a0
[  469.119332][T13287]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  469.152862][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  469.119332][T13287]  ? __kernel_text_address+0x171/0x2d0
[  469.119332][T13287]  ? unwind_get_return_address+0x8c/0x130
[  469.119332][T13287]  ? entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  469.119332][T13287]  ? arch_stack_walk+0x2a2/0x3e0
[  469.119332][T13287]  ? stack_trace_save+0x1a0/0x1a0
[  469.177133][T13287]  ? kmsan_get_metadata+0x4f/0x180
[  469.177133][T13287]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  469.177133][T13287]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  469.177133][T13287]  ? stack_trace_save+0x123/0x1a0
[  469.177133][T13287]  ? kmsan_get_metadata+0x11d/0x180
[  469.177133][T13287]  __msan_chain_origin+0x50/0x90
[  469.223384][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  469.177133][T13287]  rmd256_transform+0x4328/0x4440
[  469.177133][T13287]  ? sysfs_remove_battery+0x234/0x4f0
[  469.177133][T13287]  rmd256_update+0x343/0x4f0
[  469.177133][T13287]  ? rmd256_init+0x260/0x260
[  469.177133][T13287]  crypto_shash_update+0x4e9/0x550
[  469.177133][T13287]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  469.177133][T13287]  ? crypto_hash_walk_first+0x1fd/0x360
[  469.177133][T13287]  ? kmsan_get_metadata+0x4f/0x180
[  469.177133][T13287]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  469.177133][T13287]  shash_async_update+0x113/0x1d0
[  469.177133][T13287]  ? shash_async_init+0x1e0/0x1e0
[  469.177133][T13287]  hash_sendpage+0x8ef/0xdf0
[  469.177133][T13287]  ? hash_recvmsg+0xd30/0xd30
[  469.177133][T13287]  sock_sendpage+0x1e1/0x2c0
[  469.177133][T13287]  pipe_to_sendpage+0x38c/0x4c0
[  469.177133][T13287]  ? sock_fasync+0x250/0x250
[  469.177133][T13287]  __splice_from_pipe+0x565/0xf00
[  469.316903][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  469.177133][T13287]  ? generic_splice_sendpage+0x2d0/0x2d0
[  469.177133][T13287]  generic_splice_sendpage+0x1d5/0x2d0
[  469.177133][T13287]  ? iter_file_splice_write+0x1800/0x1800
[  469.177133][T13287]  direct_splice_actor+0x1fd/0x580
[  469.177133][T13287]  ? kmsan_get_metadata+0x4f/0x180
[  469.177133][T13287]  splice_direct_to_actor+0x6b2/0xf50
[  469.357609][T13287]  ? do_splice_direct+0x580/0x580
[  469.357609][T13287]  do_splice_direct+0x342/0x580
[  469.357609][T13287]  do_sendfile+0x101b/0x1d40
[  469.373322][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  469.357609][T13287]  __se_sys_sendfile64+0x2bb/0x360
[  469.357609][T13287]  ? kmsan_get_metadata+0x4f/0x180
[  469.357609][T13287]  __x64_sys_sendfile64+0x56/0x70
[  469.357609][T13287]  do_syscall_64+0xb0/0x150
[  469.357609][T13287]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  469.357609][T13287] RIP: 0033:0x45c1d9
[  469.357609][T13287] Code: Bad RIP value.
[  469.357609][T13287] RSP: 002b:00007f42d54efc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  469.357609][T13287] RAX: ffffffffffffffda RBX: 0000000000025a00 RCX: 000000000045c1d9
[  469.357609][T13287] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000007
[  469.357609][T13287] RBP: 000000000078bf48 R08: 0000000000000000 R09: 0000000000000000
[  469.357609][T13287] R10: 001000007ffff000 R11: 0000000000000246 R12: 000000000078bf0c
[  469.357609][T13287] R13: 0000000000c9fb6f R14: 00007f42d54f09c0 R15: 000000000078bf0c
[  469.357609][T13287] Uninit was stored to memory at:
[  469.357609][T13287]  kmsan_internal_chain_origin+0xad/0x130
[  469.357609][T13287]  __msan_chain_origin+0x50/0x90
[  469.480095][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  469.357609][T13287]  rmd256_transform+0x4328/0x4440
[  469.357609][T13287]  rmd256_update+0x343/0x4f0
[  469.357609][T13287]  crypto_shash_update+0x4e9/0x550
[  469.357609][T13287]  shash_async_update+0x113/0x1d0
[  469.357609][T13287]  hash_sendpage+0x8ef/0xdf0
[  469.357609][T13287]  sock_sendpage+0x1e1/0x2c0
[  469.357609][T13287]  pipe_to_sendpage+0x38c/0x4c0
[  469.357609][T13287]  __splice_from_pipe+0x565/0xf00
[  469.357609][T13287]  generic_splice_sendpage+0x1d5/0x2d0
[  469.532184][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  469.357609][T13287]  direct_splice_actor+0x1fd/0x580
[  469.357609][T13287]  splice_direct_to_actor+0x6b2/0xf50
[  469.357609][T13287]  do_splice_direct+0x342/0x580
[  469.357609][T13287]  do_sendfile+0x101b/0x1d40
[  469.357609][T13287]  __se_sys_sendfile64+0x2bb/0x360
[  469.357609][T13287]  __x64_sys_sendfile64+0x56/0x70
[  469.572571][T13287]  do_syscall_64+0xb0/0x150
[  469.577183][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  469.572571][T13287]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  469.572571][T13287] 
[  469.572571][T13287] Uninit was stored to memory at:
[  469.572571][T13287]  kmsan_internal_chain_origin+0xad/0x130
[  469.572571][T13287]  __msan_chain_origin+0x50/0x90
[  469.572571][T13287]  rmd256_transform+0x4328/0x4440
[  469.572571][T13287]  rmd256_update+0x343/0x4f0
[  469.572571][T13287]  crypto_shash_update+0x4e9/0x550
[  469.572571][T13287]  shash_async_update+0x113/0x1d0
[  469.572571][T13287]  hash_sendpage+0x8ef/0xdf0
[  469.572571][T13287]  sock_sendpage+0x1e1/0x2c0
[  469.572571][T13287]  pipe_to_sendpage+0x38c/0x4c0
[  469.572571][T13287]  __splice_from_pipe+0x565/0xf00
[  469.572571][T13287]  generic_splice_sendpage+0x1d5/0x2d0
[  469.655774][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  469.572571][T13287]  direct_splice_actor+0x1fd/0x580
[  469.572571][T13287]  splice_direct_to_actor+0x6b2/0xf50
[  469.572571][T13287]  do_splice_direct+0x342/0x580
[  469.572571][T13287]  do_sendfile+0x101b/0x1d40
[  469.572571][T13287]  __se_sys_sendfile64+0x2bb/0x360
[  469.572571][T13287]  __x64_sys_sendfile64+0x56/0x70
[  469.572571][T13287]  do_syscall_64+0xb0/0x150
[  469.572571][T13287]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  469.572571][T13287] 
[  469.572571][T13287] Uninit was stored to memory at:
[  469.572571][T13287]  kmsan_internal_chain_origin+0xad/0x130
[  469.572571][T13287]  __msan_chain_origin+0x50/0x90
[  469.572571][T13287]  rmd256_transform+0x4328/0x4440
[  469.572571][T13287]  rmd256_update+0x343/0x4f0
[  469.572571][T13287]  crypto_shash_update+0x4e9/0x550
[  469.572571][T13287]  shash_async_update+0x113/0x1d0
[  469.572571][T13287]  hash_sendpage+0x8ef/0xdf0
[  469.572571][T13287]  sock_sendpage+0x1e1/0x2c0
[  469.572571][T13287]  pipe_to_sendpage+0x38c/0x4c0
[  469.572571][T13287]  __splice_from_pipe+0x565/0xf00
[  469.572571][T13287]  generic_splice_sendpage+0x1d5/0x2d0
[  469.572571][T13287]  direct_splice_actor+0x1fd/0x580
[  469.572571][T13287]  splice_direct_to_actor+0x6b2/0xf50
[  469.572571][T13287]  do_splice_direct+0x342/0x580
[  469.572571][T13287]  do_sendfile+0x101b/0x1d40
[  469.572571][T13287]  __se_sys_sendfile64+0x2bb/0x360
[  469.572571][T13287]  __x64_sys_sendfile64+0x56/0x70
[  469.572571][T13287]  do_syscall_64+0xb0/0x150
[  469.572571][T13287]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  469.572571][T13287] 
[  469.572571][T13287] Uninit was stored to memory at:
[  469.572571][T13287]  kmsan_internal_chain_origin+0xad/0x130
[  469.572571][T13287]  __msan_chain_origin+0x50/0x90
[  469.572571][T13287]  rmd256_transform+0x4328/0x4440
[  469.572571][T13287]  rmd256_update+0x343/0x4f0
[  469.572571][T13287]  crypto_shash_update+0x4e9/0x550
[  469.572571][T13287]  shash_async_update+0x113/0x1d0
[  469.572571][T13287]  hash_sendpage+0x8ef/0xdf0
[  469.572571][T13287]  sock_sendpage+0x1e1/0x2c0
[  469.572571][T13287]  pipe_to_sendpage+0x38c/0x4c0
[  469.572571][T13287]  __splice_from_pipe+0x565/0xf00
[  469.572571][T13287]  generic_splice_sendpage+0x1d5/0x2d0
[  469.572571][T13287]  direct_splice_actor+0x1fd/0x580
[  469.572571][T13287]  splice_direct_to_actor+0x6b2/0xf50
[  469.572571][T13287]  do_splice_direct+0x342/0x580
[  469.572571][T13287]  do_sendfile+0x101b/0x1d40
[  469.572571][T13287]  __se_sys_sendfile64+0x2bb/0x360
[  469.572571][T13287]  __x64_sys_sendfile64+0x56/0x70
[  469.572571][T13287]  do_syscall_64+0xb0/0x150
[  469.572571][T13287]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  469.572571][T13287] 
[  469.572571][T13287] Uninit was stored to memory at:
[  469.572571][T13287]  kmsan_internal_chain_origin+0xad/0x130
[  469.572571][T13287]  __msan_chain_origin+0x50/0x90
[  469.572571][T13287]  rmd256_transform+0x4328/0x4440
[  469.572571][T13287]  rmd256_update+0x343/0x4f0
[  469.572571][T13287]  crypto_shash_update+0x4e9/0x550
[  469.572571][T13287]  shash_async_update+0x113/0x1d0
[  469.572571][T13287]  hash_sendpage+0x8ef/0xdf0
[  469.572571][T13287]  sock_sendpage+0x1e1/0x2c0
[  469.572571][T13287]  pipe_to_sendpage+0x38c/0x4c0
[  469.572571][T13287]  __splice_from_pipe+0x565/0xf00
[  469.572571][T13287]  generic_splice_sendpage+0x1d5/0x2d0
[  469.572571][T13287]  direct_splice_actor+0x1fd/0x580
[  469.572571][T13287]  splice_direct_to_actor+0x6b2/0xf50
[  469.572571][T13287]  do_splice_direct+0x342/0x580
[  469.572571][T13287]  do_sendfile+0x101b/0x1d40
[  469.572571][T13287]  __se_sys_sendfile64+0x2bb/0x360
[  469.572571][T13287]  __x64_sys_sendfile64+0x56/0x70
[  469.572571][T13287]  do_syscall_64+0xb0/0x150
[  469.572571][T13287]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  469.572571][T13287] 
[  469.572571][T13287] Uninit was stored to memory at:
[  469.572571][T13287]  kmsan_internal_chain_origin+0xad/0x130
[  469.572571][T13287]  __msan_chain_origin+0x50/0x90
[  469.572571][T13287]  rmd256_transform+0x4328/0x4440
[  469.572571][T13287]  rmd256_update+0x227/0x4f0
[  469.572571][T13287]  crypto_shash_update+0x4e9/0x550
[  469.572571][T13287]  shash_async_update+0x113/0x1d0
[  469.572571][T13287]  hash_sendpage+0x8ef/0xdf0
[  469.572571][T13287]  sock_sendpage+0x1e1/0x2c0
[  469.572571][T13287]  pipe_to_sendpage+0x38c/0x4c0
[  469.572571][T13287]  __splice_from_pipe+0x565/0xf00
[  469.572571][T13287]  generic_splice_sendpage+0x1d5/0x2d0
[  469.572571][T13287]  direct_splice_actor+0x1fd/0x580
[  469.572571][T13287]  splice_direct_to_actor+0x6b2/0xf50
[  469.572571][T13287]  do_splice_direct+0x342/0x580
[  469.572571][T13287]  do_sendfile+0x101b/0x1d40
[  469.572571][T13287]  __se_sys_sendfile64+0x2bb/0x360
[  469.572571][T13287]  __x64_sys_sendfile64+0x56/0x70
[  469.572571][T13287]  do_syscall_64+0xb0/0x150
[  469.572571][T13287]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  469.572571][T13287] 
[  469.572571][T13287] Uninit was stored to memory at:
[  469.572571][T13287]  kmsan_internal_chain_origin+0xad/0x130
[  469.572571][T13287]  kmsan_memcpy_memmove_metadata+0x272/0x2e0
[  469.572571][T13287]  kmsan_memcpy_metadata+0xb/0x10
[  469.572571][T13287]  __msan_memcpy+0x43/0x50
[  469.572571][T13287]  rmd256_update+0x1fc/0x4f0
[  469.572571][T13287]  crypto_shash_update+0x4e9/0x550
[  469.572571][T13287]  shash_async_update+0x113/0x1d0
[  469.572571][T13287]  hash_sendpage+0x8ef/0xdf0
[  469.572571][T13287]  sock_sendpage+0x1e1/0x2c0
[  469.572571][T13287]  pipe_to_sendpage+0x38c/0x4c0
[  469.572571][T13287]  __splice_from_pipe+0x565/0xf00
[  469.572571][T13287]  generic_splice_sendpage+0x1d5/0x2d0
[  469.572571][T13287]  direct_splice_actor+0x1fd/0x580
[  469.572571][T13287]  splice_direct_to_actor+0x6b2/0xf50
[  469.572571][T13287]  do_splice_direct+0x342/0x580
[  469.572571][T13287]  do_sendfile+0x101b/0x1d40
[  469.572571][T13287]  __se_sys_sendfile64+0x2bb/0x360
[  469.572571][T13287]  __x64_sys_sendfile64+0x56/0x70
[  469.572571][T13287]  do_syscall_64+0xb0/0x150
[  469.572571][T13287]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  469.572571][T13287] 
[  469.572571][T13287] Uninit was created at:
[  469.572571][T13287]  kmsan_save_stack_with_flags+0x3c/0x90
[  469.572571][T13287]  kmsan_alloc_page+0xb9/0x180
[  469.572571][T13287]  __alloc_pages_nodemask+0x56a2/0x5dc0
[  469.572571][T13287]  alloc_pages_current+0x672/0x990
[  469.572571][T13287]  push_pipe+0x605/0xb70
[  469.572571][T13287]  iov_iter_get_pages_alloc+0x18a9/0x21c0
[  469.572571][T13287]  do_splice_to+0x4fc/0x14f0
[  469.572571][T13287]  splice_direct_to_actor+0x45c/0xf50
[  469.572571][T13287]  do_splice_direct+0x342/0x580
[  469.572571][T13287]  do_sendfile+0x101b/0x1d40
[  469.572571][T13287]  __se_sys_sendfile64+0x2bb/0x360
[  469.572571][T13287]  __x64_sys_sendfile64+0x56/0x70
[  469.572571][T13287]  do_syscall_64+0xb0/0x150
[  469.572571][T13287]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
20:09:23 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

20:09:23 executing program 2:
r0 = syz_open_dev$video(&(0x7f0000000200)='/dev/video#\x00', 0xb75, 0x0)
ioctl$VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000000)={0x2f, 0x1, 0x0, "dcc3be6175bdf7718f56a6e2217c8d244cfe1172b20100009f4000"})

20:09:23 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r1, 0xffffffffffffffff, 0x0, 0x1000007ffff003)

20:09:23 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000280)={0x2, {{0x2, 0x0, @multicast2}}}, 0x356)
setsockopt$inet_group_source_req(r0, 0x0, 0x2f, &(0x7f0000000640)={0x2, {{0x2, 0x0, @multicast2}}, {{0x2, 0x0, @local}}}, 0x108)
setsockopt$inet_group_source_req(r0, 0x0, 0x2d, &(0x7f0000000340)={0x2, {{0x2, 0xffff, @multicast2}}, {{0x2, 0x0, @multicast1}}}, 0x108)

20:09:23 executing program 4:
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
r0 = epoll_create1(0x0)
close(r0)
syz_open_procfs(0x0, &(0x7f0000000100)='mounts\x00')
poll(&(0x7f00000000c0)=[{r0}, {r0}], 0x2, 0x81)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000013c0)='ramfs\x00', 0x0, 0x0)

20:09:23 executing program 5:
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x0, 0x0, 0x1b, 0x20}, 0x0)
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x1, 0x0)
io_submit(0x0, 0x2, &(0x7f0000000080)=[0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}])
sendto$inet(0xffffffffffffffff, 0x0, 0xff1b, 0x0, &(0x7f0000000080)={0x2, 0x4e20}, 0x10)
ioctl(r0, 0xffffffffffffffb9, &(0x7f0000000080))

[  471.286529][    C1] sd 0:0:1:0: [sg0] tag#2709 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  471.297419][    C1] sd 0:0:1:0: [sg0] tag#2709 CDB: Test Unit Ready
[  471.304161][    C1] sd 0:0:1:0: [sg0] tag#2709 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  471.314000][    C1] sd 0:0:1:0: [sg0] tag#2709 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  471.323889][    C1] sd 0:0:1:0: [sg0] tag#2709 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  471.333781][    C1] sd 0:0:1:0: [sg0] tag#2709 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  471.343622][    C1] sd 0:0:1:0: [sg0] tag#2709 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  471.353487][    C1] sd 0:0:1:0: [sg0] tag#2709 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  471.363418][    C1] sd 0:0:1:0: [sg0] tag#2709 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  471.373260][    C1] sd 0:0:1:0: [sg0] tag#2709 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  471.383115][    C1] sd 0:0:1:0: [sg0] tag#2709 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  471.392953][    C1] sd 0:0:1:0: [sg0] tag#2709 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  471.402789][    C1] sd 0:0:1:0: [sg0] tag#2709 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  471.412689][    C1] sd 0:0:1:0: [sg0] tag#2709 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  471.422518][    C1] sd 0:0:1:0: [sg0] tag#2709 CDB[c0]: 00 00 00 00 00 00 00 00
20:09:23 executing program 4:
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
r0 = epoll_create1(0x0)
close(r0)
syz_open_procfs(0x0, &(0x7f0000000100)='mounts\x00')
poll(&(0x7f00000000c0)=[{r0}, {r0}], 0x2, 0x81)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000013c0)='ramfs\x00', 0x0, 0x0)

20:09:23 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000280)={0x2, {{0x2, 0x0, @multicast2}}}, 0x356)
setsockopt$inet_group_source_req(r0, 0x0, 0x2f, &(0x7f0000000640)={0x2, {{0x2, 0x0, @multicast2}}, {{0x2, 0x0, @local}}}, 0x108)
setsockopt$inet_group_source_req(r0, 0x0, 0x2d, &(0x7f0000000340)={0x2, {{0x2, 0xffff, @multicast2}}, {{0x2, 0x0, @multicast1}}}, 0x108)

20:09:23 executing program 5:
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x0, 0x0, 0x1b, 0x20}, 0x0)
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x1, 0x0)
io_submit(0x0, 0x2, &(0x7f0000000080)=[0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}])
sendto$inet(0xffffffffffffffff, 0x0, 0xff1b, 0x0, &(0x7f0000000080)={0x2, 0x4e20}, 0x10)
ioctl(r0, 0xffffffffffffffb9, &(0x7f0000000080))

20:09:23 executing program 2:
r0 = syz_open_dev$video(&(0x7f0000000200)='/dev/video#\x00', 0xb75, 0x0)
ioctl$VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000000)={0x2f, 0x1, 0x0, "dcc3be6175bdf7718f56a6e2217c8d244cfe1172b20100009f4000"})

20:09:23 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000008c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="000426bd7000fedbdf84f6ec1e78fcb52e", @ANYRES32=0x0, @ANYBLOB="e0f0fdcb69a067053b14d7a44ca9ff6dedc9d15f7745c5298ff283c1edd156d0beaa2059b57c0366b4ef51f4f58652ef0dbdde68cd9d7f6a7ddbcbe278a8"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2400c004)
r4 = openat$cgroup_ro(r2, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r4, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x24, r3, 0x712, 0x70bd26, 0x25dfdbff}, 0x24}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
r5 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt(r5, 0x800000010d, 0x2, &(0x7f0000000240)='\x00\x00\x00\x00\x00', 0x5)
getsockopt$inet_int(r5, 0x10d, 0x2, 0x0, &(0x7f0000000180)=0x2b)
ioctl$FICLONERANGE(r4, 0x4020940d, &(0x7f00000000c0)={{r5}, 0x7, 0x8, 0x6})
r6 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r1, r6, 0x0, 0x1000007ffff000)

20:09:24 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6(0xa, 0x80003, 0x3)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=@newlink={0x34, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r4}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x4}}}]}, 0x34}}, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket(0x1, 0x803, 0x0)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14)
sendmsg$nl_route(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newlink={0x58, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @vlan={{0x9, 0x1, 'vlan\x00'}, {0x18, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x1a, 0x18}}]}}}, @IFLA_LINK={0x8, 0x5, r7}, @IFLA_MASTER={0x8, 0xa, r7}]}, 0x58}}, 0x0)

[  472.267229][T13343] bridge1: port 1(vlan2) entered blocking state
[  472.274219][T13343] bridge1: port 1(vlan2) entered disabled state
20:09:24 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

20:09:24 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000280)={0x2, {{0x2, 0x0, @multicast2}}}, 0x356)
setsockopt$inet_group_source_req(r0, 0x0, 0x2f, &(0x7f0000000640)={0x2, {{0x2, 0x0, @multicast2}}, {{0x2, 0x0, @local}}}, 0x108)
setsockopt$inet_group_source_req(r0, 0x0, 0x2d, &(0x7f0000000340)={0x2, {{0x2, 0xffff, @multicast2}}, {{0x2, 0x0, @multicast1}}}, 0x108)

20:09:24 executing program 5:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=@ipv4_delrule={0x30, 0x21, 0x3, 0x0, 0x0, {}, [@FRA_DST={0x8, 0x1, @dev}, @FRA_TUN_ID={0xc, 0xc, 0x1, 0x0, 0x5}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000}, 0x0)

20:09:24 executing program 2:
r0 = syz_open_dev$video(&(0x7f0000000200)='/dev/video#\x00', 0xb75, 0x0)
ioctl$VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000000)={0x2f, 0x1, 0x0, "dcc3be6175bdf7718f56a6e2217c8d244cfe1172b20100009f4000"})

20:09:24 executing program 0:
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000240)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="000426bd7000fedbdf250d000000080034", @ANYRES32=0x0, @ANYBLOB="e0de5deff0fdcb69a067053b14d7a44ca9ff6dedc9d15f7745c5298ff283c1edd156d0be4e72cbb4aa2059b57c0366b4ef51f4f58652010ebdde68cd9d7f6a7d0400e278a8fc93b45e6e222b96a3"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2400c004)
r2 = openat$cgroup_ro(r0, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r2, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000400)=ANY=[@ANYBLOB="0e44bbcfafba28eb65b17f0900", @ANYRES16=r1, @ANYBLOB="120726bd7000ffdbdf2508000000"], 0x24}, 0x1, 0x0, 0x0, 0x4003}, 0x8000)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
socket$inet(0x2, 0x80001, 0x84)
r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000008c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="000426bd7000fedbdf250d000000080034", @ANYRES32=0x0, @ANYBLOB="e0f0fdcb69a067053b14d7a44ca9ff6dedc9d15f7745c5298ff283c1edd156d0beaa2059b57c0366b4ef51f4f58652ef0dbdde68cd9d7f6a7ddbcbe278a8"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2400c004)
openat$cgroup_ro(r4, &(0x7f0000000140)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(0xffffffffffffffff, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000080)={&(0x7f0000000340)={0x4c, r5, 0x712, 0x70bd26, 0x25dfdbff, {}, [@BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x3}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x96f8}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x4}, @BATADV_ATTR_HARD_IFINDEX={0x8}, @BATADV_ATTR_HARD_IFINDEX={0x8}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x8}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40}, 0xc000)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000200)=@assoc_value={<r6=>0x0}, &(0x7f0000000180)=0x8)
getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r3, 0x84, 0x75, &(0x7f00000000c0)={r6}, &(0x7f0000000100)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f00000000c0)={0x0, @in6={{0xa, 0x4e23, 0xfd4c, @dev={0xfe, 0x80, [], 0x41}, 0x1}}, 0x7fc3, 0x0, 0x4, 0x3f, 0x2, 0xa, 0x7f}, 0x9c)
r7 = socket$alg(0x26, 0x5, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-avx\x00'}, 0x58)
r8 = accept4(r7, 0x0, 0x0, 0x0)
r9 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r8, r9, 0x0, 0x1000007ffff000)

[  472.674194][    C1] sd 0:0:1:0: [sg0] tag#2710 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  472.684885][    C1] sd 0:0:1:0: [sg0] tag#2710 CDB: Test Unit Ready
[  472.691636][    C1] sd 0:0:1:0: [sg0] tag#2710 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  472.701466][    C1] sd 0:0:1:0: [sg0] tag#2710 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  472.711285][    C1] sd 0:0:1:0: [sg0] tag#2710 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  472.721170][    C1] sd 0:0:1:0: [sg0] tag#2710 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  472.731082][    C1] sd 0:0:1:0: [sg0] tag#2710 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  472.740909][    C1] sd 0:0:1:0: [sg0] tag#2710 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  472.750735][    C1] sd 0:0:1:0: [sg0] tag#2710 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  472.760579][    C1] sd 0:0:1:0: [sg0] tag#2710 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
20:09:24 executing program 2:
r0 = syz_open_dev$video(&(0x7f0000000200)='/dev/video#\x00', 0xb75, 0x0)
ioctl$VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000000)={0x2f, 0x1, 0x0, "dcc3be6175bdf7718f56a6e2217c8d244cfe1172b20100009f4000"})

20:09:24 executing program 5:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=@ipv4_delrule={0x30, 0x21, 0x3, 0x0, 0x0, {}, [@FRA_DST={0x8, 0x1, @dev}, @FRA_TUN_ID={0xc, 0xc, 0x1, 0x0, 0x5}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000}, 0x0)

20:09:25 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6(0xa, 0x80003, 0x3)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=@newlink={0x34, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r4}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x4}}}]}, 0x34}}, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket(0x1, 0x803, 0x0)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14)
sendmsg$nl_route(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newlink={0x58, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @vlan={{0x9, 0x1, 'vlan\x00'}, {0x18, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x1a, 0x18}}]}}}, @IFLA_LINK={0x8, 0x5, r7}, @IFLA_MASTER={0x8, 0xa, r7}]}, 0x58}}, 0x0)

[  472.770398][    C1] sd 0:0:1:0: [sg0] tag#2710 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  472.780221][    C1] sd 0:0:1:0: [sg0] tag#2710 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  472.790076][    C1] sd 0:0:1:0: [sg0] tag#2710 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  472.799996][    C1] sd 0:0:1:0: [sg0] tag#2710 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  472.809834][    C1] sd 0:0:1:0: [sg0] tag#2710 CDB[c0]: 00 00 00 00 00 00 00 00
[  472.989509][T13369] bridge2: port 1(vlan2) entered blocking state
[  472.995937][T13369] bridge2: port 1(vlan2) entered disabled state
20:09:25 executing program 3:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000000)="0f34", 0x2}], 0x1, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000200)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x8c, 0x8c, 0x4, [@enum={0x0, 0x1, 0x0, 0x6, 0x4, [{}]}, @volatile, @const, @union={0x0, 0x1, 0x0, 0x5, 0x0, 0x0, [{}]}, @func_proto={0x0, 0x6, 0x0, 0xd, 0x0, [{}, {}, {}, {}, {}, {}]}, @fwd]}, {0x0, [0x0, 0x0]}}, 0x0, 0xa8}, 0x20)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f00000003c0)=""/102400, 0xffffffffffffff3a}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x40)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

20:09:25 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r1, r2, 0x0, 0x1000007ffff000)
ioctl$USBDEVFS_REAPURBNDELAY(0xffffffffffffffff, 0x4008550d, &(0x7f0000000140))
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040)='nl80211\x00')
sendmsg$NL80211_CMD_SET_BEACON(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)={0x1c, r4, 0x90fc047e054328f9, 0x0, 0x0, {}, [@NL80211_ATTR_FTM_RESPONDER={0x8, 0x117, 0x0, 0x1, [@NL80211_FTM_RESP_ATTR_CIVICLOC={0x4}]}]}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(r2, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x3c, r4, 0x10, 0x70bd29, 0x25dfdbfb, {}, [@NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x5}, @NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x1000}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x1, 0x2}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4002}, 0x5)
r5 = dup(r0)
accept$packet(r5, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f00000001c0)=0x14)
r6 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/hwrng\x00', 0x10440, 0x0)
ioctl$SG_SET_TIMEOUT(r6, 0x2201, &(0x7f0000000100)=0x9)

[  473.145260][T13361] not chained 810000 origins
[  473.149381][T13361] CPU: 0 PID: 13361 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0
[  473.149381][T13361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  473.149381][T13361] Call Trace:
[  473.149381][T13361]  dump_stack+0x1df/0x240
[  473.149381][T13361]  kmsan_internal_chain_origin+0x6f/0x130
[  473.181266][T13361]  ? is_module_text_address+0x4d/0x2a0
[  473.181266][T13361]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  473.181266][T13361]  ? __kernel_text_address+0x171/0x2d0
[  473.181266][T13361]  ? unwind_get_return_address+0x8c/0x130
[  473.204572][T13361]  ? entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  473.204572][T13361]  ? arch_stack_walk+0x2a2/0x3e0
[  473.212919][T13361]  ? stack_trace_save+0x1a0/0x1a0
[  473.212919][T13361]  ? kmsan_get_metadata+0x4f/0x180
[  473.212919][T13361]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  473.212919][T13361]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  473.212919][T13361]  ? stack_trace_save+0x123/0x1a0
[  473.212919][T13361]  ? kmsan_get_metadata+0x11d/0x180
[  473.212919][T13361]  __msan_chain_origin+0x50/0x90
[  473.212919][T13361]  rmd256_transform+0x4328/0x4440
[  473.254962][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  473.212919][T13361]  rmd256_update+0x343/0x4f0
[  473.212919][T13361]  ? rmd256_init+0x260/0x260
[  473.212919][T13361]  crypto_shash_update+0x4e9/0x550
[  473.212919][T13361]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  473.212919][T13361]  ? crypto_hash_walk_first+0x1fd/0x360
[  473.212919][T13361]  ? kmsan_get_metadata+0x4f/0x180
[  473.212919][T13361]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  473.212919][T13361]  shash_async_update+0x113/0x1d0
[  473.212919][T13361]  ? shash_async_init+0x1e0/0x1e0
[  473.212919][T13361]  hash_sendpage+0x8ef/0xdf0
[  473.212919][T13361]  ? hash_recvmsg+0xd30/0xd30
[  473.212919][T13361]  sock_sendpage+0x1e1/0x2c0
[  473.212919][T13361]  pipe_to_sendpage+0x38c/0x4c0
[  473.212919][T13361]  ? sock_fasync+0x250/0x250
[  473.269242][T13361]  __splice_from_pipe+0x565/0xf00
[  473.269242][T13361]  ? generic_splice_sendpage+0x2d0/0x2d0
[  473.269242][T13361]  generic_splice_sendpage+0x1d5/0x2d0
[  473.269242][T13361]  ? iter_file_splice_write+0x1800/0x1800
[  473.269242][T13361]  direct_splice_actor+0x1fd/0x580
[  473.269242][T13361]  ? kmsan_get_metadata+0x4f/0x180
[  473.269242][T13361]  splice_direct_to_actor+0x6b2/0xf50
[  473.269242][T13361]  ? do_splice_direct+0x580/0x580
[  473.269242][T13361]  do_splice_direct+0x342/0x580
[  473.269242][T13361]  do_sendfile+0x101b/0x1d40
[  473.269242][T13361]  __se_sys_sendfile64+0x2bb/0x360
[  473.269242][T13361]  ? kmsan_get_metadata+0x4f/0x180
[  473.269242][T13361]  __x64_sys_sendfile64+0x56/0x70
[  473.269242][T13361]  do_syscall_64+0xb0/0x150
[  473.269242][T13361]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  473.269242][T13361] RIP: 0033:0x45c1d9
[  473.269242][T13361] Code: Bad RIP value.
[  473.269242][T13361] RSP: 002b:00007f42d54efc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  473.269242][T13361] RAX: ffffffffffffffda RBX: 0000000000025a00 RCX: 000000000045c1d9
[  473.269242][T13361] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000007
[  473.269242][T13361] RBP: 000000000078bf48 R08: 0000000000000000 R09: 0000000000000000
[  473.269242][T13361] R10: 001000007ffff000 R11: 0000000000000246 R12: 000000000078bf0c
[  473.269242][T13361] R13: 0000000000c9fb6f R14: 00007f42d54f09c0 R15: 000000000078bf0c
[  473.269242][T13361] Uninit was stored to memory at:
[  473.269242][T13361]  kmsan_internal_chain_origin+0xad/0x130
[  473.269242][T13361]  __msan_chain_origin+0x50/0x90
[  473.269242][T13361]  rmd256_transform+0x4328/0x4440
[  473.269242][T13361]  rmd256_update+0x343/0x4f0
[  473.269242][T13361]  crypto_shash_update+0x4e9/0x550
[  473.269242][T13361]  shash_async_update+0x113/0x1d0
[  473.269242][T13361]  hash_sendpage+0x8ef/0xdf0
[  473.269242][T13361]  sock_sendpage+0x1e1/0x2c0
[  473.269242][T13361]  pipe_to_sendpage+0x38c/0x4c0
[  473.269242][T13361]  __splice_from_pipe+0x565/0xf00
[  473.269242][T13361]  generic_splice_sendpage+0x1d5/0x2d0
[  473.269242][T13361]  direct_splice_actor+0x1fd/0x580
[  473.269242][T13361]  splice_direct_to_actor+0x6b2/0xf50
[  473.269242][T13361]  do_splice_direct+0x342/0x580
[  473.269242][T13361]  do_sendfile+0x101b/0x1d40
[  473.269242][T13361]  __se_sys_sendfile64+0x2bb/0x360
[  473.269242][T13361]  __x64_sys_sendfile64+0x56/0x70
[  473.269242][T13361]  do_syscall_64+0xb0/0x150
[  473.269242][T13361]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  473.269242][T13361] 
[  473.269242][T13361] Uninit was stored to memory at:
[  473.269242][T13361]  kmsan_internal_chain_origin+0xad/0x130
[  473.269242][T13361]  __msan_chain_origin+0x50/0x90
[  473.269242][T13361]  rmd256_transform+0x4328/0x4440
[  473.269242][T13361]  rmd256_update+0x343/0x4f0
[  473.269242][T13361]  crypto_shash_update+0x4e9/0x550
[  473.269242][T13361]  shash_async_update+0x113/0x1d0
[  473.269242][T13361]  hash_sendpage+0x8ef/0xdf0
[  473.269242][T13361]  sock_sendpage+0x1e1/0x2c0
[  473.269242][T13361]  pipe_to_sendpage+0x38c/0x4c0
[  473.269242][T13361]  __splice_from_pipe+0x565/0xf00
[  473.269242][T13361]  generic_splice_sendpage+0x1d5/0x2d0
[  473.269242][T13361]  direct_splice_actor+0x1fd/0x580
[  473.269242][T13361]  splice_direct_to_actor+0x6b2/0xf50
[  473.269242][T13361]  do_splice_direct+0x342/0x580
[  473.269242][T13361]  do_sendfile+0x101b/0x1d40
[  473.269242][T13361]  __se_sys_sendfile64+0x2bb/0x360
[  473.269242][T13361]  __x64_sys_sendfile64+0x56/0x70
[  473.269242][T13361]  do_syscall_64+0xb0/0x150
[  473.269242][T13361]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  473.269242][T13361] 
[  473.269242][T13361] Uninit was stored to memory at:
[  473.269242][T13361]  kmsan_internal_chain_origin+0xad/0x130
[  473.269242][T13361]  __msan_chain_origin+0x50/0x90
[  473.269242][T13361]  rmd256_transform+0x4328/0x4440
[  473.269242][T13361]  rmd256_update+0x343/0x4f0
[  473.269242][T13361]  crypto_shash_update+0x4e9/0x550
[  473.269242][T13361]  shash_async_update+0x113/0x1d0
[  473.269242][T13361]  hash_sendpage+0x8ef/0xdf0
[  473.269242][T13361]  sock_sendpage+0x1e1/0x2c0
[  473.269242][T13361]  pipe_to_sendpage+0x38c/0x4c0
[  473.269242][T13361]  __splice_from_pipe+0x565/0xf00
[  473.269242][T13361]  generic_splice_sendpage+0x1d5/0x2d0
[  473.269242][T13361]  direct_splice_actor+0x1fd/0x580
[  473.269242][T13361]  splice_direct_to_actor+0x6b2/0xf50
[  473.269242][T13361]  do_splice_direct+0x342/0x580
[  473.269242][T13361]  do_sendfile+0x101b/0x1d40
[  473.269242][T13361]  __se_sys_sendfile64+0x2bb/0x360
[  473.269242][T13361]  __x64_sys_sendfile64+0x56/0x70
[  473.269242][T13361]  do_syscall_64+0xb0/0x150
[  473.269242][T13361]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  473.269242][T13361] 
[  473.269242][T13361] Uninit was stored to memory at:
[  473.269242][T13361]  kmsan_internal_chain_origin+0xad/0x130
[  473.269242][T13361]  __msan_chain_origin+0x50/0x90
[  473.269242][T13361]  rmd256_transform+0x4328/0x4440
[  473.269242][T13361]  rmd256_update+0x343/0x4f0
[  473.269242][T13361]  crypto_shash_update+0x4e9/0x550
[  473.269242][T13361]  shash_async_update+0x113/0x1d0
[  473.269242][T13361]  hash_sendpage+0x8ef/0xdf0
[  473.269242][T13361]  sock_sendpage+0x1e1/0x2c0
[  473.269242][T13361]  pipe_to_sendpage+0x38c/0x4c0
[  473.269242][T13361]  __splice_from_pipe+0x565/0xf00
[  473.269242][T13361]  generic_splice_sendpage+0x1d5/0x2d0
[  473.269242][T13361]  direct_splice_actor+0x1fd/0x580
[  473.269242][T13361]  splice_direct_to_actor+0x6b2/0xf50
[  473.269242][T13361]  do_splice_direct+0x342/0x580
[  473.269242][T13361]  do_sendfile+0x101b/0x1d40
[  473.269242][T13361]  __se_sys_sendfile64+0x2bb/0x360
[  473.269242][T13361]  __x64_sys_sendfile64+0x56/0x70
[  473.269242][T13361]  do_syscall_64+0xb0/0x150
[  473.269242][T13361]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  473.269242][T13361] 
[  473.269242][T13361] Uninit was stored to memory at:
[  473.269242][T13361]  kmsan_internal_chain_origin+0xad/0x130
[  473.269242][T13361]  __msan_chain_origin+0x50/0x90
[  473.269242][T13361]  rmd256_transform+0x4328/0x4440
[  473.269242][T13361]  rmd256_update+0x343/0x4f0
[  473.269242][T13361]  crypto_shash_update+0x4e9/0x550
[  473.269242][T13361]  shash_async_update+0x113/0x1d0
[  473.269242][T13361]  hash_sendpage+0x8ef/0xdf0
[  473.269242][T13361]  sock_sendpage+0x1e1/0x2c0
[  473.269242][T13361]  pipe_to_sendpage+0x38c/0x4c0
[  473.269242][T13361]  __splice_from_pipe+0x565/0xf00
[  473.269242][T13361]  generic_splice_sendpage+0x1d5/0x2d0
[  473.269242][T13361]  direct_splice_actor+0x1fd/0x580
[  473.269242][T13361]  splice_direct_to_actor+0x6b2/0xf50
[  473.269242][T13361]  do_splice_direct+0x342/0x580
[  473.269242][T13361]  do_sendfile+0x101b/0x1d40
[  473.269242][T13361]  __se_sys_sendfile64+0x2bb/0x360
[  473.269242][T13361]  __x64_sys_sendfile64+0x56/0x70
[  473.269242][T13361]  do_syscall_64+0xb0/0x150
[  473.269242][T13361]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  473.269242][T13361] 
[  473.269242][T13361] Uninit was stored to memory at:
[  473.269242][T13361]  kmsan_internal_chain_origin+0xad/0x130
[  473.269242][T13361]  __msan_chain_origin+0x50/0x90
[  473.269242][T13361]  rmd256_transform+0x4328/0x4440
[  473.269242][T13361]  rmd256_update+0x227/0x4f0
[  473.269242][T13361]  crypto_shash_update+0x4e9/0x550
[  473.269242][T13361]  shash_async_update+0x113/0x1d0
[  473.269242][T13361]  hash_sendpage+0x8ef/0xdf0
[  473.269242][T13361]  sock_sendpage+0x1e1/0x2c0
[  473.269242][T13361]  pipe_to_sendpage+0x38c/0x4c0
[  473.269242][T13361]  __splice_from_pipe+0x565/0xf00
[  473.269242][T13361]  generic_splice_sendpage+0x1d5/0x2d0
[  473.269242][T13361]  direct_splice_actor+0x1fd/0x580
[  473.269242][T13361]  splice_direct_to_actor+0x6b2/0xf50
[  473.269242][T13361]  do_splice_direct+0x342/0x580
[  473.269242][T13361]  do_sendfile+0x101b/0x1d40
[  473.269242][T13361]  __se_sys_sendfile64+0x2bb/0x360
[  473.269242][T13361]  __x64_sys_sendfile64+0x56/0x70
[  473.269242][T13361]  do_syscall_64+0xb0/0x150
[  473.269242][T13361]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  473.269242][T13361] 
[  473.269242][T13361] Uninit was stored to memory at:
[  473.269242][T13361]  kmsan_internal_chain_origin+0xad/0x130
[  473.269242][T13361]  kmsan_memcpy_memmove_metadata+0x272/0x2e0
[  473.269242][T13361]  kmsan_memcpy_metadata+0xb/0x10
[  473.269242][T13361]  __msan_memcpy+0x43/0x50
[  473.269242][T13361]  rmd256_update+0x1fc/0x4f0
[  473.269242][T13361]  crypto_shash_update+0x4e9/0x550
[  473.269242][T13361]  shash_async_update+0x113/0x1d0
[  473.269242][T13361]  hash_sendpage+0x8ef/0xdf0
[  473.269242][T13361]  sock_sendpage+0x1e1/0x2c0
[  473.269242][T13361]  pipe_to_sendpage+0x38c/0x4c0
[  473.269242][T13361]  __splice_from_pipe+0x565/0xf00
[  473.269242][T13361]  generic_splice_sendpage+0x1d5/0x2d0
[  473.269242][T13361]  direct_splice_actor+0x1fd/0x580
[  473.269242][T13361]  splice_direct_to_actor+0x6b2/0xf50
[  473.269242][T13361]  do_splice_direct+0x342/0x580
[  473.269242][T13361]  do_sendfile+0x101b/0x1d40
[  473.269242][T13361]  __se_sys_sendfile64+0x2bb/0x360
[  473.269242][T13361]  __x64_sys_sendfile64+0x56/0x70
[  473.269242][T13361]  do_syscall_64+0xb0/0x150
[  473.269242][T13361]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  473.269242][T13361] 
[  473.269242][T13361] Uninit was created at:
[  473.269242][T13361]  kmsan_save_stack_with_flags+0x3c/0x90
[  473.269242][T13361]  kmsan_alloc_page+0xb9/0x180
[  473.269242][T13361]  __alloc_pages_nodemask+0x56a2/0x5dc0
[  473.269242][T13361]  alloc_pages_current+0x672/0x990
[  473.269242][T13361]  push_pipe+0x605/0xb70
[  473.269242][T13361]  iov_iter_get_pages_alloc+0x18a9/0x21c0
[  473.269242][T13361]  do_splice_to+0x4fc/0x14f0
[  473.269242][T13361]  splice_direct_to_actor+0x45c/0xf50
[  473.269242][T13361]  do_splice_direct+0x342/0x580
[  473.269242][T13361]  do_sendfile+0x101b/0x1d40
[  473.269242][T13361]  __se_sys_sendfile64+0x2bb/0x360
[  473.269242][T13361]  __x64_sys_sendfile64+0x56/0x70
[  473.269242][T13361]  do_syscall_64+0xb0/0x150
[  473.269242][T13361]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
20:09:26 executing program 2:
preadv(0xffffffffffffffff, &(0x7f00000027c0)=[{&(0x7f0000000400)=""/4108, 0x100c}], 0x1, 0x0)
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='wchan\x00')
preadv(r2, &(0x7f0000000480), 0x1000000000000243, 0x0)

20:09:26 executing program 5:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=@ipv4_delrule={0x30, 0x21, 0x3, 0x0, 0x0, {}, [@FRA_DST={0x8, 0x1, @dev}, @FRA_TUN_ID={0xc, 0xc, 0x1, 0x0, 0x5}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000}, 0x0)

20:09:28 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e35bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93981b20e03b86d4e999bbb53a7b0ee0ce30e80600cff8ca2996e518e3e69051f6d24317f9ebfeb82ee2469fb31bdbb2768d25f196ab6f2dc045421b94d878d0d9c2a5c74633a687a135308e49ce118c81517ac7bb2994cc008dd3deaafaab51144c1ef00f00001f5e73ff040000000000000000000000000000009a583b79ab00f70d85463c57c5bb1f1084e683b591fc2c8b8a38b7ee57afa01aea88fb413e1ee8ebbdf1fa9155bf6409b065a980528827de08737cf643db6de62f253b1304780753de6634bf57fbe09a7eb84cae7f000000886871080d1588bb30abcbfecb4e10d4067a02736f08914faa037346191241c88e57569256cd58ec82518bc8bac2ef0f6e8bfd9ad94599c3230328ddf749f6c754f2781bccc42e6ef592a1fc36a03c9a0328b63ed42db18137f243d01a67ea9fe8e34b25676f9816cdae263897bbb3aaa1148cb80e7aa12869a052b3ea1dfa17ce754e76f57ed0868864d66429bc1d9e8c430deeb6331c152d637740b4efbe95880a2f28902b3358519f08f638235a295a63eb1c8f9460ced7b22ceb4c2c5504a2012c2c8f47fd9152910bc908e41e38ba60cbdffefadbe92a7ed8ce577bdb383c2f625067eec438180f282d638ac72b92ec020d66863813f5ab6189075ebf22d92ecafe4eb1fb9c6b2b88eb965af65c3d0b179a43bcf1840dc8466796c04a4baa9f82bbd989477b56cda9e60dd7da5c5b437be2f2fcdd62a20b6ba534ed9dc198fc041c003bc1340d124062352ad8e3ce63546ded69d5fcaafcffed51ab1b1f4ff88615446fe96983cabf08c3e7ccc1d4e8bdf884347f6156d91f42060477bdf30abcb5e9b6705c5adc1cedd2e7d38fbdef12d569db367978805652eb6f5ccaa6b377839d2b7525417fe4a97300017f2410fc9448ab6c3b9fea9f2287e2a0b83beee2c77a6bb5c3cafea3a7a42f9b5324b98680e6ecf240abdeee92ecd6c972701c39c3e7a77d8dcd1ed368eaf557ad34b0c1cb8eec9c963001f3905cba6c67b6eab0fae90504e30dc799fe07128d711b61834f3d4cb2cb47745c15fae1a2b694fe5983471b336a0829abfd46e6b5f420d723608591b372"], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

20:09:28 executing program 5:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=@ipv4_delrule={0x30, 0x21, 0x3, 0x0, 0x0, {}, [@FRA_DST={0x8, 0x1, @dev}, @FRA_TUN_ID={0xc, 0xc, 0x1, 0x0, 0x5}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000}, 0x0)

20:09:28 executing program 2:
preadv(0xffffffffffffffff, &(0x7f00000027c0)=[{&(0x7f0000000400)=""/4108, 0x100c}], 0x1, 0x0)
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='wchan\x00')
preadv(r2, &(0x7f0000000480), 0x1000000000000243, 0x0)

20:09:28 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6(0xa, 0x80003, 0x3)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=@newlink={0x34, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r4}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x4}}}]}, 0x34}}, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket(0x1, 0x803, 0x0)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14)
sendmsg$nl_route(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newlink={0x58, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @vlan={{0x9, 0x1, 'vlan\x00'}, {0x18, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x1a, 0x18}}]}}}, @IFLA_LINK={0x8, 0x5, r7}, @IFLA_MASTER={0x8, 0xa, r7}]}, 0x58}}, 0x0)

20:09:28 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
prctl$PR_SVE_SET_VL(0x32, 0x28930)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r1, r2, 0x0, 0x1000007ffff000)

[  476.043678][T13408] bridge3: port 1(vlan2) entered blocking state
[  476.050215][T13408] bridge3: port 1(vlan2) entered disabled state
20:09:28 executing program 3:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000380)=@raw={'raw\x00', 0x4001, 0x3, 0x4d8, 0x0, 0x0, 0x148, 0x5, 0x148, 0x440, 0x240, 0x240, 0x440, 0x240, 0x3, 0x0, {[{{@ip={@local, @empty, 0x0, 0x0, 'ip6gretap0\x00', 'team_slave_0\x00'}, 0x0, 0x2f8, 0x360, 0x0, {}, [@common=@inet=@hashlimit1={{0x58, 'hashlimit\x00'}, {'lo\x00', {0x0, 0x0, 0x0, 0x0, 0x0, 0x40000ec, 0x7, 0x0, 0x25}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x3, 0x0, 0x0, './bus\x00'}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, '\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0xc0, 0xe0, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @unspec=@TRACE={0x20, 'TRACE\x00'}}], {{[], 0x0, 0x70, 0x98}, {0x28}}}}, 0x538)

[  476.245042][    C1] sd 0:0:1:0: [sg0] tag#2717 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  476.255668][    C1] sd 0:0:1:0: [sg0] tag#2717 CDB: Test Unit Ready
[  476.262411][    C1] sd 0:0:1:0: [sg0] tag#2717 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  476.272318][    C1] sd 0:0:1:0: [sg0] tag#2717 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  476.282165][    C1] sd 0:0:1:0: [sg0] tag#2717 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  476.291969][    C1] sd 0:0:1:0: [sg0] tag#2717 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  476.301779][    C1] sd 0:0:1:0: [sg0] tag#2717 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  476.311611][    C1] sd 0:0:1:0: [sg0] tag#2717 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  476.321439][    C1] sd 0:0:1:0: [sg0] tag#2717 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  476.330591][T13423] not chained 820000 origins
[  476.331240][    C1] sd 0:0:1:0: [sg0] tag#2717 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  476.335695][T13423] CPU: 0 PID: 13423 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0
[  476.345390][    C1] sd 0:0:1:0: [sg0] tag#2717 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  476.339255][T13423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  476.339255][T13423] Call Trace:
[  476.339255][T13423]  dump_stack+0x1df/0x240
[  476.339255][T13423]  kmsan_internal_chain_origin+0x6f/0x130
[  476.339255][T13423]  ? is_module_text_address+0x4d/0x2a0
[  476.339255][T13423]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  476.363723][    C1] sd 0:0:1:0: [sg0] tag#2717 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  476.339255][T13423]  ? __kernel_text_address+0x171/0x2d0
[  476.339255][T13423]  ? unwind_get_return_address+0x8c/0x130
[  476.339255][T13423]  ? entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  476.339255][T13423]  ? arch_stack_walk+0x2a2/0x3e0
[  476.339255][T13423]  ? stack_trace_save+0x1a0/0x1a0
[  476.339255][T13423]  ? kmsan_get_metadata+0x4f/0x180
[  476.377073][    C1] sd 0:0:1:0: [sg0] tag#2717 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  476.339255][T13423]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  476.339255][T13423]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  476.339255][T13423]  ? stack_trace_save+0x123/0x1a0
[  476.339255][T13423]  ? kmsan_get_metadata+0x11d/0x180
[  476.339255][T13423]  __msan_chain_origin+0x50/0x90
[  476.339255][T13423]  rmd256_transform+0x4328/0x4440
[  476.387172][    C1] sd 0:0:1:0: [sg0] tag#2717 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  476.339255][T13423]  rmd256_update+0x343/0x4f0
[  476.339255][T13423]  ? rmd256_init+0x260/0x260
[  476.339255][T13423]  crypto_shash_update+0x4e9/0x550
[  476.398485][    C1] sd 0:0:1:0: [sg0] tag#2717 CDB[c0]: 00 00 00 00 00 00 00 00
[  476.339255][T13423]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  476.339255][T13423]  ? crypto_hash_walk_first+0x1fd/0x360
[  476.339255][T13423]  ? kmsan_get_metadata+0x4f/0x180
[  476.339255][T13423]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  476.339255][T13423]  shash_async_update+0x113/0x1d0
[  476.434247][T13423]  ? shash_async_init+0x1e0/0x1e0
[  476.434247][T13423]  hash_sendpage+0x8ef/0xdf0
[  476.434247][T13423]  ? hash_recvmsg+0xd30/0xd30
[  476.434247][T13423]  sock_sendpage+0x1e1/0x2c0
[  476.434247][T13423]  pipe_to_sendpage+0x38c/0x4c0
[  476.434247][T13423]  ? sock_fasync+0x250/0x250
[  476.434247][T13423]  __splice_from_pipe+0x565/0xf00
[  476.434247][T13423]  ? generic_splice_sendpage+0x2d0/0x2d0
[  476.434247][T13423]  generic_splice_sendpage+0x1d5/0x2d0
[  476.434247][T13423]  ? iter_file_splice_write+0x1800/0x1800
[  476.434247][T13423]  direct_splice_actor+0x1fd/0x580
[  476.434247][T13423]  ? kmsan_get_metadata+0x4f/0x180
[  476.434247][T13423]  splice_direct_to_actor+0x6b2/0xf50
[  476.434247][T13423]  ? do_splice_direct+0x580/0x580
[  476.434247][T13423]  do_splice_direct+0x342/0x580
[  476.434247][T13423]  do_sendfile+0x101b/0x1d40
[  476.434247][T13423]  __se_sys_sendfile64+0x2bb/0x360
[  476.434247][T13423]  ? kmsan_get_metadata+0x4f/0x180
[  476.434247][T13423]  __x64_sys_sendfile64+0x56/0x70
[  476.434247][T13423]  do_syscall_64+0xb0/0x150
[  476.434247][T13423]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  476.434247][T13423] RIP: 0033:0x45c1d9
[  476.434247][T13423] Code: Bad RIP value.
[  476.434247][T13423] RSP: 002b:00007f42d54cec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  476.434247][T13423] RAX: ffffffffffffffda RBX: 0000000000025a00 RCX: 000000000045c1d9
[  476.434247][T13423] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000007
[  476.434247][T13423] RBP: 000000000078bfe8 R08: 0000000000000000 R09: 0000000000000000
[  476.434247][T13423] R10: 001000007ffff000 R11: 0000000000000246 R12: 000000000078bfac
[  476.434247][T13423] R13: 0000000000c9fb6f R14: 00007f42d54cf9c0 R15: 000000000078bfac
[  476.434247][T13423] Uninit was stored to memory at:
[  476.434247][T13423]  kmsan_internal_chain_origin+0xad/0x130
[  476.434247][T13423]  __msan_chain_origin+0x50/0x90
[  476.434247][T13423]  rmd256_transform+0x4328/0x4440
[  476.434247][T13423]  rmd256_update+0x343/0x4f0
[  476.434247][T13423]  crypto_shash_update+0x4e9/0x550
[  476.434247][T13423]  shash_async_update+0x113/0x1d0
[  476.434247][T13423]  hash_sendpage+0x8ef/0xdf0
[  476.434247][T13423]  sock_sendpage+0x1e1/0x2c0
[  476.434247][T13423]  pipe_to_sendpage+0x38c/0x4c0
[  476.434247][T13423]  __splice_from_pipe+0x565/0xf00
[  476.434247][T13423]  generic_splice_sendpage+0x1d5/0x2d0
[  476.434247][T13423]  direct_splice_actor+0x1fd/0x580
[  476.434247][T13423]  splice_direct_to_actor+0x6b2/0xf50
[  476.434247][T13423]  do_splice_direct+0x342/0x580
[  476.434247][T13423]  do_sendfile+0x101b/0x1d40
[  476.434247][T13423]  __se_sys_sendfile64+0x2bb/0x360
[  476.434247][T13423]  __x64_sys_sendfile64+0x56/0x70
[  476.434247][T13423]  do_syscall_64+0xb0/0x150
[  476.434247][T13423]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  476.434247][T13423] 
[  476.434247][T13423] Uninit was stored to memory at:
[  476.434247][T13423]  kmsan_internal_chain_origin+0xad/0x130
[  476.434247][T13423]  __msan_chain_origin+0x50/0x90
[  476.434247][T13423]  rmd256_transform+0x4328/0x4440
[  476.434247][T13423]  rmd256_update+0x343/0x4f0
[  476.434247][T13423]  crypto_shash_update+0x4e9/0x550
[  476.434247][T13423]  shash_async_update+0x113/0x1d0
[  476.434247][T13423]  hash_sendpage+0x8ef/0xdf0
[  476.434247][T13423]  sock_sendpage+0x1e1/0x2c0
[  476.434247][T13423]  pipe_to_sendpage+0x38c/0x4c0
[  476.434247][T13423]  __splice_from_pipe+0x565/0xf00
[  476.434247][T13423]  generic_splice_sendpage+0x1d5/0x2d0
[  476.434247][T13423]  direct_splice_actor+0x1fd/0x580
[  476.434247][T13423]  splice_direct_to_actor+0x6b2/0xf50
[  476.434247][T13423]  do_splice_direct+0x342/0x580
[  476.434247][T13423]  do_sendfile+0x101b/0x1d40
[  476.434247][T13423]  __se_sys_sendfile64+0x2bb/0x360
[  476.434247][T13423]  __x64_sys_sendfile64+0x56/0x70
[  476.434247][T13423]  do_syscall_64+0xb0/0x150
[  476.434247][T13423]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  476.434247][T13423] 
[  476.434247][T13423] Uninit was stored to memory at:
[  476.434247][T13423]  kmsan_internal_chain_origin+0xad/0x130
[  476.434247][T13423]  __msan_chain_origin+0x50/0x90
[  476.434247][T13423]  rmd256_transform+0x4328/0x4440
[  476.434247][T13423]  rmd256_update+0x343/0x4f0
[  476.434247][T13423]  crypto_shash_update+0x4e9/0x550
[  476.434247][T13423]  shash_async_update+0x113/0x1d0
[  476.434247][T13423]  hash_sendpage+0x8ef/0xdf0
[  476.434247][T13423]  sock_sendpage+0x1e1/0x2c0
[  476.434247][T13423]  pipe_to_sendpage+0x38c/0x4c0
[  476.434247][T13423]  __splice_from_pipe+0x565/0xf00
[  476.434247][T13423]  generic_splice_sendpage+0x1d5/0x2d0
[  476.434247][T13423]  direct_splice_actor+0x1fd/0x580
[  476.434247][T13423]  splice_direct_to_actor+0x6b2/0xf50
[  476.434247][T13423]  do_splice_direct+0x342/0x580
[  476.434247][T13423]  do_sendfile+0x101b/0x1d40
[  476.434247][T13423]  __se_sys_sendfile64+0x2bb/0x360
[  476.434247][T13423]  __x64_sys_sendfile64+0x56/0x70
[  476.434247][T13423]  do_syscall_64+0xb0/0x150
[  476.434247][T13423]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  476.434247][T13423] 
[  476.434247][T13423] Uninit was stored to memory at:
[  476.434247][T13423]  kmsan_internal_chain_origin+0xad/0x130
[  476.434247][T13423]  __msan_chain_origin+0x50/0x90
[  476.434247][T13423]  rmd256_transform+0x4328/0x4440
[  476.434247][T13423]  rmd256_update+0x343/0x4f0
[  476.434247][T13423]  crypto_shash_update+0x4e9/0x550
[  476.434247][T13423]  shash_async_update+0x113/0x1d0
[  476.434247][T13423]  hash_sendpage+0x8ef/0xdf0
[  476.434247][T13423]  sock_sendpage+0x1e1/0x2c0
[  476.434247][T13423]  pipe_to_sendpage+0x38c/0x4c0
[  476.434247][T13423]  __splice_from_pipe+0x565/0xf00
[  476.434247][T13423]  generic_splice_sendpage+0x1d5/0x2d0
[  476.434247][T13423]  direct_splice_actor+0x1fd/0x580
[  476.434247][T13423]  splice_direct_to_actor+0x6b2/0xf50
[  476.434247][T13423]  do_splice_direct+0x342/0x580
[  476.434247][T13423]  do_sendfile+0x101b/0x1d40
[  476.434247][T13423]  __se_sys_sendfile64+0x2bb/0x360
[  476.434247][T13423]  __x64_sys_sendfile64+0x56/0x70
[  476.434247][T13423]  do_syscall_64+0xb0/0x150
[  476.434247][T13423]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  476.434247][T13423] 
[  476.434247][T13423] Uninit was stored to memory at:
[  476.434247][T13423]  kmsan_internal_chain_origin+0xad/0x130
[  476.434247][T13423]  __msan_chain_origin+0x50/0x90
[  476.434247][T13423]  rmd256_transform+0x4328/0x4440
[  476.434247][T13423]  rmd256_update+0x343/0x4f0
[  476.434247][T13423]  crypto_shash_update+0x4e9/0x550
[  476.434247][T13423]  shash_async_update+0x113/0x1d0
[  476.434247][T13423]  hash_sendpage+0x8ef/0xdf0
[  476.434247][T13423]  sock_sendpage+0x1e1/0x2c0
[  476.434247][T13423]  pipe_to_sendpage+0x38c/0x4c0
[  476.434247][T13423]  __splice_from_pipe+0x565/0xf00
[  476.434247][T13423]  generic_splice_sendpage+0x1d5/0x2d0
[  476.434247][T13423]  direct_splice_actor+0x1fd/0x580
[  476.434247][T13423]  splice_direct_to_actor+0x6b2/0xf50
[  476.434247][T13423]  do_splice_direct+0x342/0x580
[  476.434247][T13423]  do_sendfile+0x101b/0x1d40
[  476.434247][T13423]  __se_sys_sendfile64+0x2bb/0x360
[  476.434247][T13423]  __x64_sys_sendfile64+0x56/0x70
[  476.434247][T13423]  do_syscall_64+0xb0/0x150
[  476.434247][T13423]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  476.434247][T13423] 
[  476.434247][T13423] Uninit was stored to memory at:
[  476.434247][T13423]  kmsan_internal_chain_origin+0xad/0x130
[  476.434247][T13423]  __msan_chain_origin+0x50/0x90
[  476.434247][T13423]  rmd256_transform+0x4328/0x4440
[  476.434247][T13423]  rmd256_update+0x227/0x4f0
[  476.434247][T13423]  crypto_shash_update+0x4e9/0x550
[  476.434247][T13423]  shash_async_update+0x113/0x1d0
[  476.434247][T13423]  hash_sendpage+0x8ef/0xdf0
[  476.434247][T13423]  sock_sendpage+0x1e1/0x2c0
[  476.434247][T13423]  pipe_to_sendpage+0x38c/0x4c0
[  476.434247][T13423]  __splice_from_pipe+0x565/0xf00
[  476.434247][T13423]  generic_splice_sendpage+0x1d5/0x2d0
[  476.434247][T13423]  direct_splice_actor+0x1fd/0x580
[  476.434247][T13423]  splice_direct_to_actor+0x6b2/0xf50
[  476.434247][T13423]  do_splice_direct+0x342/0x580
[  476.434247][T13423]  do_sendfile+0x101b/0x1d40
[  476.434247][T13423]  __se_sys_sendfile64+0x2bb/0x360
[  476.434247][T13423]  __x64_sys_sendfile64+0x56/0x70
[  476.434247][T13423]  do_syscall_64+0xb0/0x150
[  476.434247][T13423]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  476.434247][T13423] 
[  476.434247][T13423] Uninit was stored to memory at:
[  476.434247][T13423]  kmsan_internal_chain_origin+0xad/0x130
[  476.434247][T13423]  kmsan_memcpy_memmove_metadata+0x272/0x2e0
[  476.434247][T13423]  kmsan_memcpy_metadata+0xb/0x10
[  476.434247][T13423]  __msan_memcpy+0x43/0x50
[  476.434247][T13423]  rmd256_update+0x1fc/0x4f0
[  476.434247][T13423]  crypto_shash_update+0x4e9/0x550
[  476.434247][T13423]  shash_async_update+0x113/0x1d0
[  476.434247][T13423]  hash_sendpage+0x8ef/0xdf0
[  476.434247][T13423]  sock_sendpage+0x1e1/0x2c0
[  476.434247][T13423]  pipe_to_sendpage+0x38c/0x4c0
[  476.434247][T13423]  __splice_from_pipe+0x565/0xf00
[  476.434247][T13423]  generic_splice_sendpage+0x1d5/0x2d0
[  476.434247][T13423]  direct_splice_actor+0x1fd/0x580
[  476.434247][T13423]  splice_direct_to_actor+0x6b2/0xf50
[  476.434247][T13423]  do_splice_direct+0x342/0x580
[  476.434247][T13423]  do_sendfile+0x101b/0x1d40
[  476.434247][T13423]  __se_sys_sendfile64+0x2bb/0x360
[  476.434247][T13423]  __x64_sys_sendfile64+0x56/0x70
[  476.434247][T13423]  do_syscall_64+0xb0/0x150
[  476.434247][T13423]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  476.434247][T13423] 
[  476.434247][T13423] Uninit was created at:
[  476.434247][T13423]  kmsan_save_stack_with_flags+0x3c/0x90
[  476.434247][T13423]  kmsan_alloc_page+0xb9/0x180
[  476.434247][T13423]  __alloc_pages_nodemask+0x56a2/0x5dc0
[  476.434247][T13423]  alloc_pages_current+0x672/0x990
[  476.434247][T13423]  push_pipe+0x605/0xb70
[  476.434247][T13423]  iov_iter_get_pages_alloc+0x18a9/0x21c0
[  476.434247][T13423]  do_splice_to+0x4fc/0x14f0
[  476.434247][T13423]  splice_direct_to_actor+0x45c/0xf50
[  476.434247][T13423]  do_splice_direct+0x342/0x580
[  476.434247][T13423]  do_sendfile+0x101b/0x1d40
[  476.434247][T13423]  __se_sys_sendfile64+0x2bb/0x360
[  476.434247][T13423]  __x64_sys_sendfile64+0x56/0x70
[  476.434247][T13423]  do_syscall_64+0xb0/0x150
[  476.434247][T13423]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
20:09:29 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/vlan/vlan1\x00')
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x841, 0x0)
ioctl$SNDCTL_DSP_SPEED(r1, 0xc0045002, &(0x7f0000000080))
ioctl$SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, &(0x7f0000000100))
ioctl$SNDCTL_DSP_SETFMT(r1, 0xc0045005, &(0x7f00000002c0)=0x6)
perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x3}}, 0x0, 0xfbbfffffffffffff, 0xffffffffffffffff, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000600)='./file0\x00', 0x0, 0x0)
syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0xaa17, 0x0)
sendfile(r1, r0, 0x0, 0x1c01)
ioctl$KVM_KVMCLOCK_CTRL(0xffffffffffffffff, 0xaead)

20:09:29 executing program 0:
r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/cachefiles\x00', 0x1a1200, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x4, &(0x7f0000000100)=0x3, 0x4)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
accept4(r1, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r2, r2, 0x0, 0x8001)

20:09:29 executing program 2:
preadv(0xffffffffffffffff, &(0x7f00000027c0)=[{&(0x7f0000000400)=""/4108, 0x100c}], 0x1, 0x0)
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='wchan\x00')
preadv(r2, &(0x7f0000000480), 0x1000000000000243, 0x0)

20:09:30 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6(0xa, 0x80003, 0x3)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=@newlink={0x34, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r4}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x4}}}]}, 0x34}}, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket(0x1, 0x803, 0x0)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14)
sendmsg$nl_route(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newlink={0x58, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @vlan={{0x9, 0x1, 'vlan\x00'}, {0x18, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x1a, 0x18}}]}}}, @IFLA_LINK={0x8, 0x5, r7}, @IFLA_MASTER={0x8, 0xa, r7}]}, 0x58}}, 0x0)

20:09:31 executing program 3:
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
mount$fuse(0x20000000, 0x0, 0x0, 0x7a04, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r0, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x14f)
ioctl$DRM_IOCTL_ADD_MAP(0xffffffffffffffff, 0xc0286415, &(0x7f0000000180)={&(0x7f0000ffc000/0x1000)=nil, 0x1, 0x2, 0x83, &(0x7f0000ffd000/0x1000)=nil, 0x6})
r1 = socket$netlink(0x10, 0x3, 0x4)
r2 = open$dir(&(0x7f0000000100)='./file1\x00', 0x204002, 0xaa)
r3 = open(&(0x7f0000000080)='./bus\x00', 0x54a00, 0x0)
splice(r2, 0x0, r0, 0x0, 0x9, 0x0)
read$eventfd(r3, &(0x7f0000000140), 0x8)
dup2(0xffffffffffffffff, r3)
openat(r3, &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, 0x0)
writev(r1, &(0x7f0000000200)=[{&(0x7f0000000440)="580000001400192340834b80040d8c560a067fbc45ff810500000000000058000b480400945f64009400050028925a01000000000000008000f0fffeffe809000000fff5dd000000100001000c081000414900000004fcff", 0x58}], 0x1)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000000c0)='NLBL_CIPSOv4\x00')

[  478.853032][T13442] bridge4: port 1(vlan2) entered blocking state
[  478.860405][T13442] bridge4: port 1(vlan2) entered disabled state
20:09:31 executing program 2:
preadv(0xffffffffffffffff, &(0x7f00000027c0)=[{&(0x7f0000000400)=""/4108, 0x100c}], 0x1, 0x0)
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='wchan\x00')
preadv(r2, &(0x7f0000000480), 0x1000000000000243, 0x0)

[  479.015963][    C0] sd 0:0:1:0: [sg0] tag#2718 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  479.026606][    C0] sd 0:0:1:0: [sg0] tag#2718 CDB: Test Unit Ready
[  479.033385][    C0] sd 0:0:1:0: [sg0] tag#2718 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  479.043221][    C0] sd 0:0:1:0: [sg0] tag#2718 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  479.053054][    C0] sd 0:0:1:0: [sg0] tag#2718 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  479.062949][    C0] sd 0:0:1:0: [sg0] tag#2718 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  479.072772][    C0] sd 0:0:1:0: [sg0] tag#2718 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  479.082600][    C0] sd 0:0:1:0: [sg0] tag#2718 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  479.092423][    C0] sd 0:0:1:0: [sg0] tag#2718 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  479.102248][    C0] sd 0:0:1:0: [sg0] tag#2718 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  479.112334][    C0] sd 0:0:1:0: [sg0] tag#2718 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  479.122159][    C0] sd 0:0:1:0: [sg0] tag#2718 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  479.131979][    C0] sd 0:0:1:0: [sg0] tag#2718 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  479.141797][    C0] sd 0:0:1:0: [sg0] tag#2718 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  479.151606][    C0] sd 0:0:1:0: [sg0] tag#2718 CDB[c0]: 00 00 00 00 00 00 00 00
[  479.551302][    C0] sd 0:0:1:0: [sg0] tag#2731 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  479.561954][    C0] sd 0:0:1:0: [sg0] tag#2731 CDB: Test Unit Ready
[  479.568572][    C0] sd 0:0:1:0: [sg0] tag#2731 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  479.578477][    C0] sd 0:0:1:0: [sg0] tag#2731 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  479.588368][    C0] sd 0:0:1:0: [sg0] tag#2731 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  479.598215][    C0] sd 0:0:1:0: [sg0] tag#2731 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  479.608055][    C0] sd 0:0:1:0: [sg0] tag#2731 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  479.617904][    C0] sd 0:0:1:0: [sg0] tag#2731 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  479.627757][    C0] sd 0:0:1:0: [sg0] tag#2731 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  479.637621][    C0] sd 0:0:1:0: [sg0] tag#2731 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  479.647487][    C0] sd 0:0:1:0: [sg0] tag#2731 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  479.657361][    C0] sd 0:0:1:0: [sg0] tag#2731 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  479.667202][    C0] sd 0:0:1:0: [sg0] tag#2731 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  479.677317][    C0] sd 0:0:1:0: [sg0] tag#2731 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  479.687168][    C0] sd 0:0:1:0: [sg0] tag#2731 CDB[c0]: 00 00 00 00 00 00 00 00
20:09:32 executing program 0:
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000240)='./file0\x00', 0x0, 0x100000, 0x0)
pivot_root(&(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)='./file0\x00')

20:09:32 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e35bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93981b20e03b86d4e999bbb53a7b0ee0ce30e80600cff8ca2996e518e3e69051f6d24317f9ebfeb82ee2469fb31bdbb2768d25f196ab6f2dc045421b94d878d0d9c2a5c74633a687a135308e49ce118c81517ac7bb2994cc008dd3deaafaab51144c1ef00f00001f5e73ff040000000000000000000000000000009a583b79ab00f70d85463c57c5bb1f1084e683b591fc2c8b8a38b7ee57afa01aea88fb413e1ee8ebbdf1fa9155bf6409b065a980528827de08737cf643db6de62f253b1304780753de6634bf57fbe09a7eb84cae7f000000886871080d1588bb30abcbfecb4e10d4067a02736f08914faa037346191241c88e57569256cd58ec82518bc8bac2ef0f6e8bfd9ad94599c3230328ddf749f6c754f2781bccc42e6ef592a1fc36a03c9a0328b63ed42db18137f243d01a67ea9fe8e34b25676f9816cdae263897bbb3aaa1148cb80e7aa12869a052b3ea1dfa17ce754e76f57ed0868864d66429bc1d9e8c430deeb6331c152d637740b4efbe95880a2f28902b3358519f08f638235a295a63eb1c8f9460ced7b22ceb4c2c5504a2012c2c8f47fd9152910bc908e41e38ba60cbdffefadbe92a7ed8ce577bdb383c2f625067eec438180f282d638ac72b92ec020d66863813f5ab6189075ebf22d92ecafe4eb1fb9c6b2b88eb965af65c3d0b179a43bcf1840dc8466796c04a4baa9f82bbd989477b56cda9e60dd7da5c5b437be2f2fcdd62a20b6ba534ed9dc198fc041c003bc1340d124062352ad8e3ce63546ded69d5fcaafcffed51ab1b1f4ff88615446fe96983cabf08c3e7ccc1d4e8bdf884347f6156d91f42060477bdf30abcb5e9b6705c5adc1cedd2e7d38fbdef12d569db367978805652eb6f5ccaa6b377839d2b7525417fe4a97300017f2410fc9448ab6c3b9fea9f2287e2a0b83beee2c77a6bb5c3cafea3a7a42f9b5324b98680e6ecf240abdeee92ecd6c972701c39c3e7a77d8dcd1ed368eaf557ad34b0c1cb8eec9c963001f3905cba6c67b6eab0fae90504e30dc799fe07128d711b61834f3d4cb2cb47745c15fae1a2b694fe5983471b336a0829abfd46e6b5f420d723608591b372"], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

20:09:32 executing program 5:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000140)='l2tp\x00')
sendmsg$L2TP_CMD_TUNNEL_CREATE(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)={0x1c, r3, 0x923, 0x0, 0x0, {0x5}, [@L2TP_ATTR_CONN_ID={0x8}]}, 0x1c}}, 0x0)

20:09:32 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4)
connect$inet(r0, &(0x7f0000002600)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, &(0x7f0000002600)={0x2, 0x0, @local}, 0x10)

20:09:32 executing program 3:
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
mount$fuse(0x20000000, 0x0, 0x0, 0x7a04, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r0, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x14f)
ioctl$DRM_IOCTL_ADD_MAP(0xffffffffffffffff, 0xc0286415, &(0x7f0000000180)={&(0x7f0000ffc000/0x1000)=nil, 0x1, 0x2, 0x83, &(0x7f0000ffd000/0x1000)=nil, 0x6})
r1 = socket$netlink(0x10, 0x3, 0x4)
r2 = open$dir(&(0x7f0000000100)='./file1\x00', 0x204002, 0xaa)
r3 = open(&(0x7f0000000080)='./bus\x00', 0x54a00, 0x0)
splice(r2, 0x0, r0, 0x0, 0x9, 0x0)
read$eventfd(r3, &(0x7f0000000140), 0x8)
dup2(0xffffffffffffffff, r3)
openat(r3, &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, 0x0)
writev(r1, &(0x7f0000000200)=[{&(0x7f0000000440)="580000001400192340834b80040d8c560a067fbc45ff810500000000000058000b480400945f64009400050028925a01000000000000008000f0fffeffe809000000fff5dd000000100001000c081000414900000004fcff", 0x58}], 0x1)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000000c0)='NLBL_CIPSOv4\x00')

20:09:32 executing program 4:
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
mount$fuse(0x20000000, 0x0, 0x0, 0x7a04, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r0, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x14f)
ioctl$DRM_IOCTL_ADD_MAP(0xffffffffffffffff, 0xc0286415, &(0x7f0000000180)={&(0x7f0000ffc000/0x1000)=nil, 0x1, 0x2, 0x83, &(0x7f0000ffd000/0x1000)=nil, 0x6})
r1 = socket$netlink(0x10, 0x3, 0x4)
r2 = open$dir(&(0x7f0000000100)='./file1\x00', 0x204002, 0xaa)
r3 = open(&(0x7f0000000080)='./bus\x00', 0x54a00, 0x0)
splice(r2, 0x0, r0, 0x0, 0x9, 0x0)
read$eventfd(r3, &(0x7f0000000140), 0x8)
dup2(0xffffffffffffffff, r3)
openat(r3, &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, 0x0)
writev(r1, &(0x7f0000000200)=[{&(0x7f0000000440)="580000001400192340834b80040d8c560a067fbc45ff810500000000000058000b480400945f64009400050028925a01000000000000008000f0fffeffe809000000fff5dd000000100001000c081000414900000004fcff", 0x58}], 0x1)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000000c0)='NLBL_CIPSOv4\x00')

[  480.087388][    C0] sd 0:0:1:0: [sg0] tag#2732 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  480.098050][    C0] sd 0:0:1:0: [sg0] tag#2732 CDB: Test Unit Ready
[  480.104826][    C0] sd 0:0:1:0: [sg0] tag#2732 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  480.114704][    C0] sd 0:0:1:0: [sg0] tag#2732 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  480.124568][    C0] sd 0:0:1:0: [sg0] tag#2732 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  480.134437][    C0] sd 0:0:1:0: [sg0] tag#2732 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  480.144283][    C0] sd 0:0:1:0: [sg0] tag#2732 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  480.153713][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  480.154124][    C0] sd 0:0:1:0: [sg0] tag#2732 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  480.172319][    C0] sd 0:0:1:0: [sg0] tag#2732 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  480.182182][    C0] sd 0:0:1:0: [sg0] tag#2732 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  480.192176][    C0] sd 0:0:1:0: [sg0] tag#2732 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  480.202152][    C0] sd 0:0:1:0: [sg0] tag#2732 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  480.202262][    C1] sd 0:0:1:0: [sg0] tag#2733 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  480.212002][    C0] sd 0:0:1:0: [sg0] tag#2732 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
20:09:32 executing program 0:
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000240)='./file0\x00', 0x0, 0x100000, 0x0)
pivot_root(&(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)='./file0\x00')

[  480.222474][    C1] sd 0:0:1:0: [sg0] tag#2733 CDB: Test Unit Ready
[  480.232166][    C0] sd 0:0:1:0: [sg0] tag#2732 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  480.238624][    C1] sd 0:0:1:0: [sg0] tag#2733 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  480.248308][    C0] sd 0:0:1:0: [sg0] tag#2732 CDB[c0]: 00 00 00 00 00 00 00 00
[  480.265747][    C1] sd 0:0:1:0: [sg0] tag#2733 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  480.275629][    C1] sd 0:0:1:0: [sg0] tag#2733 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  480.285600][    C1] sd 0:0:1:0: [sg0] tag#2733 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  480.295487][    C1] sd 0:0:1:0: [sg0] tag#2733 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  480.305389][    C1] sd 0:0:1:0: [sg0] tag#2733 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  480.315280][    C1] sd 0:0:1:0: [sg0] tag#2733 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  480.325169][    C1] sd 0:0:1:0: [sg0] tag#2733 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  480.335047][    C1] sd 0:0:1:0: [sg0] tag#2733 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  480.344976][    C1] sd 0:0:1:0: [sg0] tag#2733 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  480.354880][    C1] sd 0:0:1:0: [sg0] tag#2733 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  480.364785][    C1] sd 0:0:1:0: [sg0] tag#2733 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  480.374643][    C1] sd 0:0:1:0: [sg0] tag#2733 CDB[c0]: 00 00 00 00 00 00 00 00
20:09:32 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4)
connect$inet(r0, &(0x7f0000002600)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, &(0x7f0000002600)={0x2, 0x0, @local}, 0x10)

20:09:32 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000008000)={0x4, {{0x2, 0x0, @multicast1}}}, 0x88)
mprotect(&(0x7f0000008000/0x1000)=nil, 0x1000, 0x2)
getsockopt$inet_buf(r0, 0x0, 0x30, &(0x7f0000008000), &(0x7f0000000080)=0x2e5)
socket$inet6_tcp(0xa, 0x1, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

[  480.490004][    C0] sd 0:0:1:0: [sg0] tag#2734 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  480.500740][    C0] sd 0:0:1:0: [sg0] tag#2734 CDB: Test Unit Ready
[  480.507436][    C0] sd 0:0:1:0: [sg0] tag#2734 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  480.517394][    C0] sd 0:0:1:0: [sg0] tag#2734 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  480.527320][    C0] sd 0:0:1:0: [sg0] tag#2734 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  480.537265][    C0] sd 0:0:1:0: [sg0] tag#2734 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  480.547205][    C0] sd 0:0:1:0: [sg0] tag#2734 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  480.557154][    C0] sd 0:0:1:0: [sg0] tag#2734 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  480.567086][    C0] sd 0:0:1:0: [sg0] tag#2734 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  480.577006][    C0] sd 0:0:1:0: [sg0] tag#2734 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  480.586886][    C0] sd 0:0:1:0: [sg0] tag#2734 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  480.596801][    C0] sd 0:0:1:0: [sg0] tag#2734 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  480.606739][    C0] sd 0:0:1:0: [sg0] tag#2734 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  480.616695][    C0] sd 0:0:1:0: [sg0] tag#2734 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  480.626630][    C0] sd 0:0:1:0: [sg0] tag#2734 CDB[c0]: 00 00 00 00 00 00 00 00
[  480.651928][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  481.254275][    C0] sd 0:0:1:0: [sg0] tag#2735 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  481.264941][    C0] sd 0:0:1:0: [sg0] tag#2735 CDB: Test Unit Ready
[  481.271725][    C0] sd 0:0:1:0: [sg0] tag#2735 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  481.281593][    C0] sd 0:0:1:0: [sg0] tag#2735 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  481.291438][    C0] sd 0:0:1:0: [sg0] tag#2735 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  481.301267][    C0] sd 0:0:1:0: [sg0] tag#2735 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  481.311087][    C0] sd 0:0:1:0: [sg0] tag#2735 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  481.321281][    C0] sd 0:0:1:0: [sg0] tag#2735 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  481.331138][    C0] sd 0:0:1:0: [sg0] tag#2735 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  481.340985][    C0] sd 0:0:1:0: [sg0] tag#2735 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  481.350832][    C0] sd 0:0:1:0: [sg0] tag#2735 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  481.354759][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  481.360687][    C0] sd 0:0:1:0: [sg0] tag#2735 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  481.378856][    C0] sd 0:0:1:0: [sg0] tag#2735 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  481.388832][    C0] sd 0:0:1:0: [sg0] tag#2735 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  481.398684][    C0] sd 0:0:1:0: [sg0] tag#2735 CDB[c0]: 00 00 00 00 00 00 00 00
20:09:32 executing program 0:
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000240)='./file0\x00', 0x0, 0x100000, 0x0)
pivot_root(&(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)='./file0\x00')

20:09:32 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

20:09:33 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000008000)={0x4, {{0x2, 0x0, @multicast1}}}, 0x88)
mprotect(&(0x7f0000008000/0x1000)=nil, 0x1000, 0x2)
getsockopt$inet_buf(r0, 0x0, 0x30, &(0x7f0000008000), &(0x7f0000000080)=0x2e5)
socket$inet6_tcp(0xa, 0x1, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

20:09:33 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4)
connect$inet(r0, &(0x7f0000002600)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, &(0x7f0000002600)={0x2, 0x0, @local}, 0x10)

20:09:33 executing program 0:
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000240)='./file0\x00', 0x0, 0x100000, 0x0)
pivot_root(&(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)='./file0\x00')

20:09:33 executing program 4:
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
mount$fuse(0x20000000, 0x0, 0x0, 0x7a04, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r0, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x14f)
ioctl$DRM_IOCTL_ADD_MAP(0xffffffffffffffff, 0xc0286415, &(0x7f0000000180)={&(0x7f0000ffc000/0x1000)=nil, 0x1, 0x2, 0x83, &(0x7f0000ffd000/0x1000)=nil, 0x6})
r1 = socket$netlink(0x10, 0x3, 0x4)
r2 = open$dir(&(0x7f0000000100)='./file1\x00', 0x204002, 0xaa)
r3 = open(&(0x7f0000000080)='./bus\x00', 0x54a00, 0x0)
splice(r2, 0x0, r0, 0x0, 0x9, 0x0)
read$eventfd(r3, &(0x7f0000000140), 0x8)
dup2(0xffffffffffffffff, r3)
openat(r3, &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, 0x0)
writev(r1, &(0x7f0000000200)=[{&(0x7f0000000440)="580000001400192340834b80040d8c560a067fbc45ff810500000000000058000b480400945f64009400050028925a01000000000000008000f0fffeffe809000000fff5dd000000100001000c081000414900000004fcff", 0x58}], 0x1)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000000c0)='NLBL_CIPSOv4\x00')

20:09:33 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000008000)={0x4, {{0x2, 0x0, @multicast1}}}, 0x88)
mprotect(&(0x7f0000008000/0x1000)=nil, 0x1000, 0x2)
getsockopt$inet_buf(r0, 0x0, 0x30, &(0x7f0000008000), &(0x7f0000000080)=0x2e5)
socket$inet6_tcp(0xa, 0x1, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

20:09:33 executing program 3:
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
mount$fuse(0x20000000, 0x0, 0x0, 0x7a04, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r0, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x14f)
ioctl$DRM_IOCTL_ADD_MAP(0xffffffffffffffff, 0xc0286415, &(0x7f0000000180)={&(0x7f0000ffc000/0x1000)=nil, 0x1, 0x2, 0x83, &(0x7f0000ffd000/0x1000)=nil, 0x6})
r1 = socket$netlink(0x10, 0x3, 0x4)
r2 = open$dir(&(0x7f0000000100)='./file1\x00', 0x204002, 0xaa)
r3 = open(&(0x7f0000000080)='./bus\x00', 0x54a00, 0x0)
splice(r2, 0x0, r0, 0x0, 0x9, 0x0)
read$eventfd(r3, &(0x7f0000000140), 0x8)
dup2(0xffffffffffffffff, r3)
openat(r3, &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, 0x0)
writev(r1, &(0x7f0000000200)=[{&(0x7f0000000440)="580000001400192340834b80040d8c560a067fbc45ff810500000000000058000b480400945f64009400050028925a01000000000000008000f0fffeffe809000000fff5dd000000100001000c081000414900000004fcff", 0x58}], 0x1)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000000c0)='NLBL_CIPSOv4\x00')

[  481.587776][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
20:09:33 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4)
connect$inet(r0, &(0x7f0000002600)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, &(0x7f0000002600)={0x2, 0x0, @local}, 0x10)

[  481.691334][    C1] sd 0:0:1:0: [sg0] tag#2737 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  481.701951][    C1] sd 0:0:1:0: [sg0] tag#2737 CDB: Test Unit Ready
[  481.708563][    C1] sd 0:0:1:0: [sg0] tag#2737 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  481.718501][    C1] sd 0:0:1:0: [sg0] tag#2737 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  481.728380][    C1] sd 0:0:1:0: [sg0] tag#2737 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  481.738184][    C1] sd 0:0:1:0: [sg0] tag#2737 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  481.747984][    C1] sd 0:0:1:0: [sg0] tag#2737 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  481.757781][    C1] sd 0:0:1:0: [sg0] tag#2737 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  481.767569][    C1] sd 0:0:1:0: [sg0] tag#2737 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  481.777366][    C1] sd 0:0:1:0: [sg0] tag#2737 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  481.787158][    C1] sd 0:0:1:0: [sg0] tag#2737 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  481.797037][    C1] sd 0:0:1:0: [sg0] tag#2737 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  481.806891][    C1] sd 0:0:1:0: [sg0] tag#2737 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  481.816778][    C1] sd 0:0:1:0: [sg0] tag#2737 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  481.826658][    C1] sd 0:0:1:0: [sg0] tag#2737 CDB[c0]: 00 00 00 00 00 00 00 00
20:09:34 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000008000)={0x4, {{0x2, 0x0, @multicast1}}}, 0x88)
mprotect(&(0x7f0000008000/0x1000)=nil, 0x1000, 0x2)
getsockopt$inet_buf(r0, 0x0, 0x30, &(0x7f0000008000), &(0x7f0000000080)=0x2e5)
socket$inet6_tcp(0xa, 0x1, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

[  481.956795][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
20:09:34 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e35bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93981b20e03b86d4e999bbb53a7b0ee0ce30e80600cff8ca2996e518e3e69051f6d24317f9ebfeb82ee2469fb31bdbb2768d25f196ab6f2dc045421b94d878d0d9c2a5c74633a687a135308e49ce118c81517ac7bb2994cc008dd3deaafaab51144c1ef00f00001f5e73ff040000000000000000000000000000009a583b79ab00f70d85463c57c5bb1f1084e683b591fc2c8b8a38b7ee57afa01aea88fb413e1ee8ebbdf1fa9155bf6409b065a980528827de08737cf643db6de62f253b1304780753de6634bf57fbe09a7eb84cae7f000000886871080d1588bb30abcbfecb4e10d4067a02736f08914faa037346191241c88e57569256cd58ec82518bc8bac2ef0f6e8bfd9ad94599c3230328ddf749f6c754f2781bccc42e6ef592a1fc36a03c9a0328b63ed42db18137f243d01a67ea9fe8e34b25676f9816cdae263897bbb3aaa1148cb80e7aa12869a052b3ea1dfa17ce754e76f57ed0868864d66429bc1d9e8c430deeb6331c152d637740b4efbe95880a2f28902b3358519f08f638235a295a63eb1c8f9460ced7b22ceb4c2c5504a2012c2c8f47fd9152910bc908e41e38ba60cbdffefadbe92a7ed8ce577bdb383c2f625067eec438180f282d638ac72b92ec020d66863813f5ab6189075ebf22d92ecafe4eb1fb9c6b2b88eb965af65c3d0b179a43bcf1840dc8466796c04a4baa9f82bbd989477b56cda9e60dd7da5c5b437be2f2fcdd62a20b6ba534ed9dc198fc041c003bc1340d124062352ad8e3ce63546ded69d5fcaafcffed51ab1b1f4ff88615446fe96983cabf08c3e7ccc1d4e8bdf884347f6156d91f42060477bdf30abcb5e9b6705c5adc1cedd2e7d38fbdef12d569db367978805652eb6f5ccaa6b377839d2b7525417fe4a97300017f2410fc9448ab6c3b9fea9f2287e2a0b83beee2c77a6bb5c3cafea3a7a42f9b5324b98680e6ecf240abdeee92ecd6c972701c39c3e7a77d8dcd1ed368eaf557ad34b0c1cb8eec9c963001f3905cba6c67b6eab0fae90504e30dc799fe07128d711b61834f3d4cb2cb47745c15fae1a2b694fe5983471b336a0829abfd46e6b5f420d723608591b372bb"], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

[  482.309549][    C0] sd 0:0:1:0: [sg0] tag#2736 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  482.320228][    C0] sd 0:0:1:0: [sg0] tag#2736 CDB: Test Unit Ready
[  482.326844][    C0] sd 0:0:1:0: [sg0] tag#2736 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  482.336760][    C0] sd 0:0:1:0: [sg0] tag#2736 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  482.345846][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  482.346597][    C0] sd 0:0:1:0: [sg0] tag#2736 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  482.364778][    C0] sd 0:0:1:0: [sg0] tag#2736 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  482.374643][    C0] sd 0:0:1:0: [sg0] tag#2736 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  482.384511][    C0] sd 0:0:1:0: [sg0] tag#2736 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  482.394364][    C0] sd 0:0:1:0: [sg0] tag#2736 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  482.404213][    C0] sd 0:0:1:0: [sg0] tag#2736 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  482.414067][    C0] sd 0:0:1:0: [sg0] tag#2736 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  482.423902][    C0] sd 0:0:1:0: [sg0] tag#2736 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  482.433732][    C0] sd 0:0:1:0: [sg0] tag#2736 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  482.443542][    C0] sd 0:0:1:0: [sg0] tag#2736 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  482.453395][    C0] sd 0:0:1:0: [sg0] tag#2736 CDB[c0]: 00 00 00 00 00 00 00 00
[  482.479145][    C1] sd 0:0:1:0: [sg0] tag#2738 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  482.489856][    C1] sd 0:0:1:0: [sg0] tag#2738 CDB: Test Unit Ready
[  482.496549][    C1] sd 0:0:1:0: [sg0] tag#2738 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  482.506536][    C1] sd 0:0:1:0: [sg0] tag#2738 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  482.516552][    C1] sd 0:0:1:0: [sg0] tag#2738 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  482.526530][    C1] sd 0:0:1:0: [sg0] tag#2738 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  482.536499][    C1] sd 0:0:1:0: [sg0] tag#2738 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  482.546474][    C1] sd 0:0:1:0: [sg0] tag#2738 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  482.556480][    C1] sd 0:0:1:0: [sg0] tag#2738 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  482.566460][    C1] sd 0:0:1:0: [sg0] tag#2738 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  482.576486][    C1] sd 0:0:1:0: [sg0] tag#2738 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  482.576632][    C1] sd 0:0:1:0: [sg0] tag#2738 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  482.596168][    C1] sd 0:0:1:0: [sg0] tag#2738 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
20:09:34 executing program 4:
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
mount$fuse(0x20000000, 0x0, 0x0, 0x7a04, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r0, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x14f)
ioctl$DRM_IOCTL_ADD_MAP(0xffffffffffffffff, 0xc0286415, &(0x7f0000000180)={&(0x7f0000ffc000/0x1000)=nil, 0x1, 0x2, 0x83, &(0x7f0000ffd000/0x1000)=nil, 0x6})
r1 = socket$netlink(0x10, 0x3, 0x4)
r2 = open$dir(&(0x7f0000000100)='./file1\x00', 0x204002, 0xaa)
r3 = open(&(0x7f0000000080)='./bus\x00', 0x54a00, 0x0)
splice(r2, 0x0, r0, 0x0, 0x9, 0x0)
read$eventfd(r3, &(0x7f0000000140), 0x8)
dup2(0xffffffffffffffff, r3)
openat(r3, &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, 0x0)
writev(r1, &(0x7f0000000200)=[{&(0x7f0000000440)="580000001400192340834b80040d8c560a067fbc45ff810500000000000058000b480400945f64009400050028925a01000000000000008000f0fffeffe809000000fff5dd000000100001000c081000414900000004fcff", 0x58}], 0x1)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000000c0)='NLBL_CIPSOv4\x00')

20:09:34 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

[  482.606113][    C1] sd 0:0:1:0: [sg0] tag#2738 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  482.616065][    C1] sd 0:0:1:0: [sg0] tag#2738 CDB[c0]: 00 00 00 00 00 00 00 00
20:09:34 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4040ae79, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x8, &(0x7f0000000000/0x2000)=nil})

20:09:34 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x30, &(0x7f0000000000)={0x0, {{0x2, 0x0, @multicast2}}, 0x0, 0x4, [{{0x2, 0x0, @local}}]}, 0x5000)

[  482.684763][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  482.722054][    C1] sd 0:0:1:0: [sg0] tag#2740 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  482.732670][    C1] sd 0:0:1:0: [sg0] tag#2740 CDB: Test Unit Ready
[  482.739442][    C1] sd 0:0:1:0: [sg0] tag#2740 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  482.749395][    C1] sd 0:0:1:0: [sg0] tag#2740 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  482.759136][    C1] sd 0:0:1:0: [sg0] tag#2740 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  482.769108][    C1] sd 0:0:1:0: [sg0] tag#2740 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  482.778964][    C1] sd 0:0:1:0: [sg0] tag#2740 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  482.788797][    C1] sd 0:0:1:0: [sg0] tag#2740 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  482.798628][    C1] sd 0:0:1:0: [sg0] tag#2740 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  482.808462][    C1] sd 0:0:1:0: [sg0] tag#2740 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  482.818312][    C1] sd 0:0:1:0: [sg0] tag#2740 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
20:09:35 executing program 3:
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
mount$fuse(0x20000000, 0x0, 0x0, 0x7a04, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r0, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x14f)
ioctl$DRM_IOCTL_ADD_MAP(0xffffffffffffffff, 0xc0286415, &(0x7f0000000180)={&(0x7f0000ffc000/0x1000)=nil, 0x1, 0x2, 0x83, &(0x7f0000ffd000/0x1000)=nil, 0x6})
r1 = socket$netlink(0x10, 0x3, 0x4)
r2 = open$dir(&(0x7f0000000100)='./file1\x00', 0x204002, 0xaa)
r3 = open(&(0x7f0000000080)='./bus\x00', 0x54a00, 0x0)
splice(r2, 0x0, r0, 0x0, 0x9, 0x0)
read$eventfd(r3, &(0x7f0000000140), 0x8)
dup2(0xffffffffffffffff, r3)
openat(r3, &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, 0x0)
writev(r1, &(0x7f0000000200)=[{&(0x7f0000000440)="580000001400192340834b80040d8c560a067fbc45ff810500000000000058000b480400945f64009400050028925a01000000000000008000f0fffeffe809000000fff5dd000000100001000c081000414900000004fcff", 0x58}], 0x1)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000000c0)='NLBL_CIPSOv4\x00')

[  482.828141][    C1] sd 0:0:1:0: [sg0] tag#2740 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  482.837983][    C1] sd 0:0:1:0: [sg0] tag#2740 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  482.847819][    C1] sd 0:0:1:0: [sg0] tag#2740 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  482.857747][    C1] sd 0:0:1:0: [sg0] tag#2740 CDB[c0]: 00 00 00 00 00 00 00 00
[  483.079985][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
20:09:35 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'rmd256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

20:09:35 executing program 2:
sendmsg$NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='$'], 0x24}}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$VIDIOC_SUBDEV_S_FMT(0xffffffffffffffff, 0xc0585605, &(0x7f0000000240)={0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x132a81})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

20:09:35 executing program 0:
io_setup(0x222, &(0x7f0000000140)=<r0=>0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000240)='/dev/nullb0\x00', 0x4000000004002, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040)='/dev/uinput\x00', 0x0, 0x0)
io_submit(r0, 0x2, &(0x7f00000003c0)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, r1, &(0x7f0000000100)="e3", 0x1}, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x5, 0x0, r2, 0x0}])

20:09:35 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = dup2(r0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/if_inet6\x00')
r3 = socket$nl_audit(0x10, 0x3, 0x9)
sendfile(r3, r2, 0x0, 0x4000000000df)

20:09:35 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu\x00', 0x4000, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x9}, 0x2800, 0x100, 0x401, 0x3, 0x0, 0x5a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5)
write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1c2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, 0x0, 0x0)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00')
sendfile(r3, r4, 0x0, 0x1000007ffff000)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000040)={0x8778, 0x200, 0x6, 0x400, 0x10, "a1970c9f984858c8"})

[  483.537365][T13547] =====================================================
[  483.539231][T13547] BUG: KMSAN: uninit-value in audit_receive+0x186f/0x6d30
[  483.539231][T13547] CPU: 1 PID: 13547 Comm: syz-executor.5 Not tainted 5.8.0-rc5-syzkaller #0
[  483.539231][T13547] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  483.564552][T13547] Call Trace:
[  483.564552][T13547]  dump_stack+0x1df/0x240
[  483.564552][T13547]  kmsan_report+0xf7/0x1e0
[  483.564552][T13547]  __msan_warning+0x58/0xa0
[  483.564552][T13547]  audit_receive+0x186f/0x6d30
[  483.564552][T13547]  ? __msan_metadata_ptr_for_load_2+0x10/0x20
[  483.564552][T13547]  ? netlink_deliver_tap+0xdb5/0xe90
[  483.564552][T13547]  ? kmsan_set_origin_checked+0x95/0xf0
[  483.564552][T13547]  ? kmsan_get_metadata+0x11d/0x180
[  483.612586][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  483.564552][T13547]  netlink_unicast+0xf9e/0x1100
[  483.564552][T13547]  ? audit_net_exit+0xd0/0xd0
[  483.564552][T13547]  netlink_sendmsg+0x1246/0x14d0
[  483.564552][T13547]  ? netlink_getsockopt+0x1440/0x1440
[  483.629275][T13547]  kernel_sendmsg+0x433/0x440
[  483.629275][T13547]  sock_no_sendpage+0x235/0x300
[  483.629275][T13547]  ? sock_no_mmap+0x30/0x30
[  483.629275][T13547]  sock_sendpage+0x1e1/0x2c0
[  483.629275][T13547]  pipe_to_sendpage+0x38c/0x4c0
[  483.663277][T11174] systemd-journald[11174]: /dev/kmsg buffer overrun, some messages lost.
[  483.629275][T13547]  ? sock_fasync+0x250/0x250
[  483.629275][T13547]  __splice_from_pipe+0x565/0xf00
[  483.629275][T13547]  ? generic_splice_sendpage+0x2d0/0x2d0
[  483.629275][T13547]  generic_splice_sendpage+0x1d5/0x2d0
[  483.629275][T13547]  ? iter_file_splice_write+0x1800/0x1800
[  483.629275][T13547]  direct_splice_actor+0x1fd/0x580
[  483.629275][T13547]  ? kmsan_get_metadata+0x4f/0x180
[  483.629275][T13547]  splice_direct_to_actor+0x6b2/0xf50
[  483.629275][T13547]  ? do_splice_direct+0x580/0x580
[  483.629275][T13547]  do_splice_direct+0x342/0x580
[  483.629275][T13547]  do_sendfile+0x101b/0x1d40
[  483.629275][T13547]  __se_sys_sendfile64+0x2bb/0x360
[  483.629275][T13547]  ? kmsan_get_metadata+0x4f/0x180
[  483.629275][T13547]  __x64_sys_sendfile64+0x56/0x70
[  483.629275][T13547]  do_syscall_64+0xb0/0x150
[  483.629275][T13547]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  483.629275][T13547] RIP: 0033:0x45c1d9
[  483.629275][T13547] Code: Bad RIP value.
[  483.629275][T13547] RSP: 002b:00007f59a8ce5c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  483.629275][T13547] RAX: ffffffffffffffda RBX: 0000000000025a00 RCX: 000000000045c1d9
[  483.629275][T13547] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[  483.789383][T13547] RBP: 000000000078bf48 R08: 0000000000000000 R09: 0000000000000000
[  483.789383][T13547] R10: 00004000000000df R11: 0000000000000246 R12: 000000000078bf0c
[  483.789383][T13547] R13: 0000000000c9fb6f R14: 00007f59a8ce69c0 R15: 000000000078bf0c
[  483.789383][T13547] 
[  483.789383][T13547] Uninit was stored to memory at:
[  483.789383][T13547]  kmsan_internal_chain_origin+0xad/0x130
[  483.789383][T13547]  kmsan_memcpy_memmove_metadata+0x272/0x2e0
[  483.831190][T13547]  kmsan_memcpy_metadata+0xb/0x10
[  483.831190][T13547]  __msan_memcpy+0x43/0x50
[  483.831190][T13547]  _copy_from_iter_full+0xbfe/0x13b0
[  483.831190][T13547]  netlink_sendmsg+0xfaa/0x14d0
[  483.831190][T13547]  kernel_sendmsg+0x433/0x440
[  483.859541][T13547]  sock_no_sendpage+0x235/0x300
[  483.859541][T13547]  sock_sendpage+0x1e1/0x2c0
[  483.859541][T13547]  pipe_to_sendpage+0x38c/0x4c0
[  483.859541][T13547]  __splice_from_pipe+0x565/0xf00
[  483.859541][T13547]  generic_splice_sendpage+0x1d5/0x2d0
[  483.859541][T13547]  direct_splice_actor+0x1fd/0x580
[  483.859541][T13547]  splice_direct_to_actor+0x6b2/0xf50
[  483.859541][T13547]  do_splice_direct+0x342/0x580
[  483.859541][T13547]  do_sendfile+0x101b/0x1d40
[  483.859541][T13547]  __se_sys_sendfile64+0x2bb/0x360
[  483.859541][T13547]  __x64_sys_sendfile64+0x56/0x70
[  483.859541][T13547]  do_syscall_64+0xb0/0x150
[  483.859541][T13547]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  483.859541][T13547] 
[  483.859541][T13547] Uninit was created at:
[  483.859541][T13547]  kmsan_save_stack_with_flags+0x3c/0x90
[  483.859541][T13547]  kmsan_alloc_page+0xb9/0x180
[  483.859541][T13547]  __alloc_pages_nodemask+0x56a2/0x5dc0
[  483.859541][T13547]  alloc_pages_current+0x672/0x990
[  483.859541][T13547]  push_pipe+0x605/0xb70
[  483.859541][T13547]  iov_iter_get_pages_alloc+0x18a9/0x21c0
[  483.859541][T13547]  do_splice_to+0x4fc/0x14f0
[  483.859541][T13547]  splice_direct_to_actor+0x45c/0xf50
[  483.859541][T13547]  do_splice_direct+0x342/0x580
[  483.859541][T13547]  do_sendfile+0x101b/0x1d40
[  483.859541][T13547]  __se_sys_sendfile64+0x2bb/0x360
[  483.859541][T13547]  __x64_sys_sendfile64+0x56/0x70
[  483.859541][T13547]  do_syscall_64+0xb0/0x150
[  483.859541][T13547]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  483.859541][T13547] =====================================================
[  483.859541][T13547] Disabling lock debugging due to kernel taint
[  483.859541][T13547] Kernel panic - not syncing: panic_on_warn set ...
[  483.859541][T13547] CPU: 1 PID: 13547 Comm: syz-executor.5 Tainted: G    B             5.8.0-rc5-syzkaller #0
[  483.859541][T13547] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  483.859541][T13547] Call Trace:
[  483.859541][T13547]  dump_stack+0x1df/0x240
[  484.049988][T13547]  panic+0x3d5/0xc3e
[  484.049988][T13547]  kmsan_report+0x1df/0x1e0
[  484.049988][T13547]  __msan_warning+0x58/0xa0
[  484.049988][T13547]  audit_receive+0x186f/0x6d30
[  484.049988][T13547]  ? __msan_metadata_ptr_for_load_2+0x10/0x20
[  484.049988][T13547]  ? netlink_deliver_tap+0xdb5/0xe90
[  484.049988][T13547]  ? kmsan_set_origin_checked+0x95/0xf0
[  484.049988][T13547]  ? kmsan_get_metadata+0x11d/0x180
[  484.049988][T13547]  netlink_unicast+0xf9e/0x1100
[  484.049988][T13547]  ? audit_net_exit+0xd0/0xd0
[  484.049988][T13547]  netlink_sendmsg+0x1246/0x14d0
[  484.049988][T13547]  ? netlink_getsockopt+0x1440/0x1440
[  484.049988][T13547]  kernel_sendmsg+0x433/0x440
[  484.049988][T13547]  sock_no_sendpage+0x235/0x300
[  484.049988][T13547]  ? sock_no_mmap+0x30/0x30
[  484.049988][T13547]  sock_sendpage+0x1e1/0x2c0
[  484.049988][T13547]  pipe_to_sendpage+0x38c/0x4c0
[  484.049988][T13547]  ? sock_fasync+0x250/0x250
[  484.049988][T13547]  __splice_from_pipe+0x565/0xf00
[  484.049988][T13547]  ? generic_splice_sendpage+0x2d0/0x2d0
[  484.049988][T13547]  generic_splice_sendpage+0x1d5/0x2d0
[  484.049988][T13547]  ? iter_file_splice_write+0x1800/0x1800
[  484.049988][T13547]  direct_splice_actor+0x1fd/0x580
[  484.049988][T13547]  ? kmsan_get_metadata+0x4f/0x180
[  484.049988][T13547]  splice_direct_to_actor+0x6b2/0xf50
[  484.049988][T13547]  ? do_splice_direct+0x580/0x580
[  484.049988][T13547]  do_splice_direct+0x342/0x580
[  484.049988][T13547]  do_sendfile+0x101b/0x1d40
[  484.049988][T13547]  __se_sys_sendfile64+0x2bb/0x360
[  484.049988][T13547]  ? kmsan_get_metadata+0x4f/0x180
[  484.049988][T13547]  __x64_sys_sendfile64+0x56/0x70
[  484.049988][T13547]  do_syscall_64+0xb0/0x150
[  484.049988][T13547]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  484.049988][T13547] RIP: 0033:0x45c1d9
[  484.049988][T13547] Code: Bad RIP value.
[  484.049988][T13547] RSP: 002b:00007f59a8ce5c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  484.049988][T13547] RAX: ffffffffffffffda RBX: 0000000000025a00 RCX: 000000000045c1d9
[  484.049988][T13547] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[  484.049988][T13547] RBP: 000000000078bf48 R08: 0000000000000000 R09: 0000000000000000
[  484.049988][T13547] R10: 00004000000000df R11: 0000000000000246 R12: 000000000078bf0c
[  484.049988][T13547] R13: 0000000000c9fb6f R14: 00007f59a8ce69c0 R15: 000000000078bf0c
[  484.049988][T13547] Kernel Offset: 0x18e00000 from 0xffffffff81000000 (relocation range: 0xffffffff80000000-0xffffffffbfffffff)
[  484.049988][T13547] Rebooting in 86400 seconds..