1.681849][T14571] 
[  591.684174][T14571] Local variable ----msg_sys@do_recvmmsg created at:
[  591.690853][T14571]  do_recvmmsg+0xc5/0x1ee0
[  591.695273][T14571]  do_recvmmsg+0xc5/0x1ee0
[  591.897836][T14571] not chained 180000 origins
[  591.902476][T14571] CPU: 1 PID: 14571 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0
[  591.911232][T14571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  591.921286][T14571] Call Trace:
[  591.924601][T14571]  dump_stack+0x1df/0x240
[  591.928956][T14571]  kmsan_internal_chain_origin+0x6f/0x130
[  591.934685][T14571]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  591.940503][T14571]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  591.946581][T14571]  ? udp_recvmsg+0x1b8c/0x2100
[  591.951393][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  591.956515][T14571]  ? kmsan_set_origin_checked+0x95/0xf0
[  591.962074][T14571]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  591.968160][T14571]  ? _copy_from_user+0x15b/0x260
[  591.973108][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  591.978234][T14571]  __msan_chain_origin+0x50/0x90
[  591.983189][T14571]  __get_compat_msghdr+0x5be/0x890
[  591.988348][T14571]  get_compat_msghdr+0x108/0x270
[  591.993323][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  591.997860][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  592.003532][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  592.008654][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  592.014307][T14571]  ? __msan_poison_alloca+0xf0/0x120
[  592.019607][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  592.024377][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  592.029169][T14571]  ? kmsan_get_metadata+0x11d/0x180
[  592.034382][T14571]  __sys_recvmmsg+0x4ca/0x510
[  592.039090][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  592.045201][T14571]  ? __x32_compat_sys_recvmmsg_time64+0x80/0x80
[  592.051452][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  592.057617][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  592.062863][T14571]  do_fast_syscall_32+0x6b/0xd0
[  592.067729][T14571]  do_SYSENTER_32+0x73/0x90
[  592.072240][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  592.078570][T14571] RIP: 0023:0xf7f8d549
[  592.082651][T14571] Code: Bad RIP value.
[  592.086715][T14571] RSP: 002b:00000000f5d880cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  592.095134][T14571] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200004c0
[  592.103122][T14571] RDX: 00000000006fdaec RSI: 0000000000000022 RDI: 0000000000000000
[  592.111094][T14571] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  592.119065][T14571] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  592.127038][T14571] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  592.135029][T14571] Uninit was stored to memory at:
[  592.140091][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  592.145815][T14571]  __msan_chain_origin+0x50/0x90
[  592.150757][T14571]  __get_compat_msghdr+0x5be/0x890
[  592.155878][T14571]  get_compat_msghdr+0x108/0x270
[  592.160831][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  592.165339][T14571]  __sys_recvmmsg+0x4ca/0x510
[  592.170021][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  592.176116][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  592.182279][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  592.187489][T14571]  do_fast_syscall_32+0x6b/0xd0
[  592.192345][T14571]  do_SYSENTER_32+0x73/0x90
[  592.196855][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  592.203178][T14571] 
[  592.205508][T14571] Uninit was stored to memory at:
[  592.210541][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  592.216265][T14571]  __msan_chain_origin+0x50/0x90
[  592.221227][T14571]  __get_compat_msghdr+0x5be/0x890
[  592.226434][T14571]  get_compat_msghdr+0x108/0x270
[  592.231378][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  592.235885][T14571]  __sys_recvmmsg+0x4ca/0x510
[  592.240568][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  592.246637][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  592.252797][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  592.258004][T14571]  do_fast_syscall_32+0x6b/0xd0
[  592.262860][T14571]  do_SYSENTER_32+0x73/0x90
[  592.267405][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  592.273721][T14571] 
[  592.276046][T14571] Uninit was stored to memory at:
[  592.281078][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  592.286800][T14571]  __msan_chain_origin+0x50/0x90
[  592.291744][T14571]  __get_compat_msghdr+0x5be/0x890
[  592.296861][T14571]  get_compat_msghdr+0x108/0x270
[  592.301807][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  592.306319][T14571]  __sys_recvmmsg+0x4ca/0x510
[  592.311004][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  592.317094][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  592.323249][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  592.328454][T14571]  do_fast_syscall_32+0x6b/0xd0
[  592.333316][T14571]  do_SYSENTER_32+0x73/0x90
[  592.337828][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  592.344146][T14571] 
[  592.346472][T14571] Uninit was stored to memory at:
[  592.351507][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  592.357232][T14571]  __msan_chain_origin+0x50/0x90
[  592.362175][T14571]  __get_compat_msghdr+0x5be/0x890
[  592.367328][T14571]  get_compat_msghdr+0x108/0x270
[  592.372270][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  592.376780][T14571]  __sys_recvmmsg+0x4ca/0x510
[  592.381464][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  592.387535][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  592.393690][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  592.398898][T14571]  do_fast_syscall_32+0x6b/0xd0
[  592.403760][T14571]  do_SYSENTER_32+0x73/0x90
[  592.408269][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  592.414606][T14571] 
[  592.416928][T14571] Uninit was stored to memory at:
[  592.421959][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  592.427685][T14571]  __msan_chain_origin+0x50/0x90
[  592.432630][T14571]  __get_compat_msghdr+0x5be/0x890
[  592.437746][T14571]  get_compat_msghdr+0x108/0x270
[  592.442688][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  592.447198][T14571]  __sys_recvmmsg+0x4ca/0x510
[  592.451881][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  592.457951][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  592.464107][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  592.469317][T14571]  do_fast_syscall_32+0x6b/0xd0
[  592.474174][T14571]  do_SYSENTER_32+0x73/0x90
[  592.478679][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  592.484996][T14571] 
[  592.487321][T14571] Uninit was stored to memory at:
[  592.492351][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  592.498077][T14571]  __msan_chain_origin+0x50/0x90
[  592.503032][T14571]  __get_compat_msghdr+0x5be/0x890
[  592.508151][T14571]  get_compat_msghdr+0x108/0x270
[  592.513099][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  592.517609][T14571]  __sys_recvmmsg+0x4ca/0x510
[  592.522291][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  592.528368][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  592.534527][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  592.539732][T14571]  do_fast_syscall_32+0x6b/0xd0
[  592.544591][T14571]  do_SYSENTER_32+0x73/0x90
[  592.549099][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  592.555419][T14571] 
[  592.557742][T14571] Uninit was stored to memory at:
[  592.562770][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  592.568493][T14571]  __msan_chain_origin+0x50/0x90
[  592.573435][T14571]  __get_compat_msghdr+0x5be/0x890
[  592.578552][T14571]  get_compat_msghdr+0x108/0x270
[  592.583496][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  592.588006][T14571]  __sys_recvmmsg+0x4ca/0x510
[  592.592689][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  592.598761][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  592.604918][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  592.610138][T14571]  do_fast_syscall_32+0x6b/0xd0
[  592.614994][T14571]  do_SYSENTER_32+0x73/0x90
[  592.619506][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  592.625823][T14571] 
[  592.628152][T14571] Local variable ----msg_sys@do_recvmmsg created at:
[  592.634858][T14571]  do_recvmmsg+0xc5/0x1ee0
[  592.639310][T14571]  do_recvmmsg+0xc5/0x1ee0
[  592.892159][T14571] not chained 190000 origins
[  592.896799][T14571] CPU: 0 PID: 14571 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0
[  592.905469][T14571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  592.915525][T14571] Call Trace:
[  592.918829][T14571]  dump_stack+0x1df/0x240
[  592.923183][T14571]  kmsan_internal_chain_origin+0x6f/0x130
[  592.928907][T14571]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  592.934724][T14571]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  592.940800][T14571]  ? udp_recvmsg+0x1b8c/0x2100
[  592.945610][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  592.950732][T14571]  ? kmsan_set_origin_checked+0x95/0xf0
[  592.956291][T14571]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  592.962381][T14571]  ? _copy_from_user+0x15b/0x260
[  592.967335][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  592.972460][T14571]  __msan_chain_origin+0x50/0x90
[  592.977416][T14571]  __get_compat_msghdr+0x5be/0x890
[  592.982570][T14571]  get_compat_msghdr+0x108/0x270
[  592.987539][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  592.992072][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  592.997738][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  593.002863][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  593.008507][T14571]  ? __msan_poison_alloca+0xf0/0x120
[  593.013807][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  593.018580][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  593.023373][T14571]  ? kmsan_get_metadata+0x11d/0x180
[  593.028586][T14571]  __sys_recvmmsg+0x4ca/0x510
[  593.033296][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  593.039390][T14571]  ? __x32_compat_sys_recvmmsg_time64+0x80/0x80
[  593.045679][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  593.051845][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  593.057073][T14571]  do_fast_syscall_32+0x6b/0xd0
[  593.061939][T14571]  do_SYSENTER_32+0x73/0x90
[  593.066456][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  593.072784][T14571] RIP: 0023:0xf7f8d549
[  593.076848][T14571] Code: Bad RIP value.
[  593.080912][T14571] RSP: 002b:00000000f5d880cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  593.089330][T14571] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200004c0
[  593.097304][T14571] RDX: 00000000006fdaec RSI: 0000000000000022 RDI: 0000000000000000
[  593.105282][T14571] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  593.113260][T14571] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  593.121231][T14571] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  593.129224][T14571] Uninit was stored to memory at:
[  593.134286][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  593.140013][T14571]  __msan_chain_origin+0x50/0x90
[  593.144960][T14571]  __get_compat_msghdr+0x5be/0x890
[  593.150083][T14571]  get_compat_msghdr+0x108/0x270
[  593.155028][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  593.159537][T14571]  __sys_recvmmsg+0x4ca/0x510
[  593.164219][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  593.170298][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  593.176462][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  593.181671][T14571]  do_fast_syscall_32+0x6b/0xd0
[  593.186540][T14571]  do_SYSENTER_32+0x73/0x90
[  593.191054][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  593.197373][T14571] 
[  593.199705][T14571] Uninit was stored to memory at:
[  593.204741][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  593.210469][T14571]  __msan_chain_origin+0x50/0x90
[  593.215422][T14571]  __get_compat_msghdr+0x5be/0x890
[  593.220543][T14571]  get_compat_msghdr+0x108/0x270
[  593.225660][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  593.230169][T14571]  __sys_recvmmsg+0x4ca/0x510
[  593.234858][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  593.240927][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  593.247087][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  593.252293][T14571]  do_fast_syscall_32+0x6b/0xd0
[  593.257150][T14571]  do_SYSENTER_32+0x73/0x90
[  593.261655][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  593.267980][T14571] 
[  593.270307][T14571] Uninit was stored to memory at:
[  593.275338][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  593.281063][T14571]  __msan_chain_origin+0x50/0x90
[  593.286006][T14571]  __get_compat_msghdr+0x5be/0x890
[  593.291125][T14571]  get_compat_msghdr+0x108/0x270
[  593.296066][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  593.300574][T14571]  __sys_recvmmsg+0x4ca/0x510
[  593.305256][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  593.311324][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  593.317485][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  593.322694][T14571]  do_fast_syscall_32+0x6b/0xd0
[  593.327556][T14571]  do_SYSENTER_32+0x73/0x90
[  593.332062][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  593.338380][T14571] 
[  593.340713][T14571] Uninit was stored to memory at:
[  593.345744][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  593.351483][T14571]  __msan_chain_origin+0x50/0x90
[  593.356434][T14571]  __get_compat_msghdr+0x5be/0x890
[  593.361554][T14571]  get_compat_msghdr+0x108/0x270
[  593.366499][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  593.371007][T14571]  __sys_recvmmsg+0x4ca/0x510
[  593.375687][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  593.381758][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  593.387917][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  593.393123][T14571]  do_fast_syscall_32+0x6b/0xd0
[  593.398004][T14571]  do_SYSENTER_32+0x73/0x90
[  593.402513][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  593.408829][T14571] 
[  593.411153][T14571] Uninit was stored to memory at:
[  593.416186][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  593.421929][T14571]  __msan_chain_origin+0x50/0x90
[  593.426876][T14571]  __get_compat_msghdr+0x5be/0x890
[  593.431993][T14571]  get_compat_msghdr+0x108/0x270
[  593.436937][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  593.441447][T14571]  __sys_recvmmsg+0x4ca/0x510
[  593.446131][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  593.452202][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  593.458362][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  593.463573][T14571]  do_fast_syscall_32+0x6b/0xd0
[  593.468432][T14571]  do_SYSENTER_32+0x73/0x90
[  593.472940][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  593.479258][T14571] 
[  593.481582][T14571] Uninit was stored to memory at:
[  593.486632][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  593.492355][T14571]  __msan_chain_origin+0x50/0x90
[  593.497299][T14571]  __get_compat_msghdr+0x5be/0x890
[  593.502457][T14571]  get_compat_msghdr+0x108/0x270
[  593.507404][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  593.511917][T14571]  __sys_recvmmsg+0x4ca/0x510
[  593.516598][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  593.522672][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  593.528830][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  593.534035][T14571]  do_fast_syscall_32+0x6b/0xd0
[  593.538892][T14571]  do_SYSENTER_32+0x73/0x90
[  593.543436][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  593.549773][T14571] 
[  593.552096][T14571] Uninit was stored to memory at:
[  593.557132][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  593.562858][T14571]  __msan_chain_origin+0x50/0x90
[  593.567854][T14571]  __get_compat_msghdr+0x5be/0x890
[  593.572970][T14571]  get_compat_msghdr+0x108/0x270
[  593.577916][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  593.582429][T14571]  __sys_recvmmsg+0x4ca/0x510
[  593.587116][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  593.593191][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  593.599353][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  593.604570][T14571]  do_fast_syscall_32+0x6b/0xd0
[  593.609437][T14571]  do_SYSENTER_32+0x73/0x90
[  593.613951][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  593.620269][T14571] 
[  593.622599][T14571] Local variable ----msg_sys@do_recvmmsg created at:
[  593.629286][T14571]  do_recvmmsg+0xc5/0x1ee0
[  593.633712][T14571]  do_recvmmsg+0xc5/0x1ee0
[  593.795190][T14571] not chained 200000 origins
[  593.799835][T14571] CPU: 0 PID: 14571 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0
[  593.808505][T14571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  593.818562][T14571] Call Trace:
[  593.821872][T14571]  dump_stack+0x1df/0x240
[  593.826225][T14571]  kmsan_internal_chain_origin+0x6f/0x130
[  593.831954][T14571]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  593.837772][T14571]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  593.843847][T14571]  ? udp_recvmsg+0x1b8c/0x2100
[  593.848663][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  593.853785][T14571]  ? kmsan_set_origin_checked+0x95/0xf0
[  593.859343][T14571]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  593.865430][T14571]  ? _copy_from_user+0x15b/0x260
[  593.870376][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  593.875500][T14571]  __msan_chain_origin+0x50/0x90
[  593.880456][T14571]  __get_compat_msghdr+0x5be/0x890
[  593.885611][T14571]  get_compat_msghdr+0x108/0x270
[  593.890581][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  593.895117][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  593.900795][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  593.905921][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  593.911566][T14571]  ? __msan_poison_alloca+0xf0/0x120
[  593.916874][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  593.921647][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  593.926418][T14571]  ? kmsan_get_metadata+0x11d/0x180
[  593.931631][T14571]  __sys_recvmmsg+0x4ca/0x510
[  593.936349][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  593.942435][T14571]  ? __x32_compat_sys_recvmmsg_time64+0x80/0x80
[  593.948717][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  593.954889][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  593.960112][T14571]  do_fast_syscall_32+0x6b/0xd0
[  593.964974][T14571]  do_SYSENTER_32+0x73/0x90
[  593.969491][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  593.975817][T14571] RIP: 0023:0xf7f8d549
[  593.979884][T14571] Code: Bad RIP value.
[  593.983950][T14571] RSP: 002b:00000000f5d880cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  593.992392][T14571] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200004c0
[  594.000368][T14571] RDX: 00000000006fdaec RSI: 0000000000000022 RDI: 0000000000000000
[  594.008345][T14571] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  594.016318][T14571] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  594.024291][T14571] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  594.032283][T14571] Uninit was stored to memory at:
[  594.037319][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  594.043135][T14571]  __msan_chain_origin+0x50/0x90
[  594.048079][T14571]  __get_compat_msghdr+0x5be/0x890
[  594.053194][T14571]  get_compat_msghdr+0x108/0x270
[  594.058141][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  594.062647][T14571]  __sys_recvmmsg+0x4ca/0x510
[  594.067329][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  594.073398][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  594.079555][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  594.084760][T14571]  do_fast_syscall_32+0x6b/0xd0
[  594.089615][T14571]  do_SYSENTER_32+0x73/0x90
[  594.094123][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  594.100440][T14571] 
[  594.102766][T14571] Uninit was stored to memory at:
[  594.107804][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  594.113528][T14571]  __msan_chain_origin+0x50/0x90
[  594.118472][T14571]  __get_compat_msghdr+0x5be/0x890
[  594.123626][T14571]  get_compat_msghdr+0x108/0x270
[  594.128573][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  594.133080][T14571]  __sys_recvmmsg+0x4ca/0x510
[  594.137760][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  594.143829][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  594.150011][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  594.155215][T14571]  do_fast_syscall_32+0x6b/0xd0
[  594.160071][T14571]  do_SYSENTER_32+0x73/0x90
[  594.164578][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  594.170893][T14571] 
[  594.173215][T14571] Uninit was stored to memory at:
[  594.178254][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  594.183997][T14571]  __msan_chain_origin+0x50/0x90
[  594.188941][T14571]  __get_compat_msghdr+0x5be/0x890
[  594.194062][T14571]  get_compat_msghdr+0x108/0x270
[  594.199004][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  594.203511][T14571]  __sys_recvmmsg+0x4ca/0x510
[  594.208234][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  594.214305][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  594.220462][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  594.225667][T14571]  do_fast_syscall_32+0x6b/0xd0
[  594.230521][T14571]  do_SYSENTER_32+0x73/0x90
[  594.235030][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  594.241347][T14571] 
[  594.243674][T14571] Uninit was stored to memory at:
[  594.248703][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  594.254441][T14571]  __msan_chain_origin+0x50/0x90
[  594.259385][T14571]  __get_compat_msghdr+0x5be/0x890
[  594.264501][T14571]  get_compat_msghdr+0x108/0x270
[  594.269446][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  594.273954][T14571]  __sys_recvmmsg+0x4ca/0x510
[  594.278635][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  594.284705][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  594.290866][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  594.296074][T14571]  do_fast_syscall_32+0x6b/0xd0
[  594.300988][T14571]  do_SYSENTER_32+0x73/0x90
[  594.305506][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  594.311822][T14571] 
[  594.314148][T14571] Uninit was stored to memory at:
[  594.319178][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  594.324902][T14571]  __msan_chain_origin+0x50/0x90
[  594.329849][T14571]  __get_compat_msghdr+0x5be/0x890
[  594.334992][T14571]  get_compat_msghdr+0x108/0x270
[  594.339934][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  594.344442][T14571]  __sys_recvmmsg+0x4ca/0x510
[  594.349128][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  594.355199][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  594.361356][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  594.366564][T14571]  do_fast_syscall_32+0x6b/0xd0
[  594.371418][T14571]  do_SYSENTER_32+0x73/0x90
[  594.375924][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  594.382243][T14571] 
[  594.384565][T14571] Uninit was stored to memory at:
[  594.389597][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  594.395318][T14571]  __msan_chain_origin+0x50/0x90
[  594.400261][T14571]  __get_compat_msghdr+0x5be/0x890
[  594.405382][T14571]  get_compat_msghdr+0x108/0x270
[  594.410343][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  594.414851][T14571]  __sys_recvmmsg+0x4ca/0x510
[  594.419536][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  594.425604][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  594.431759][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  594.436963][T14571]  do_fast_syscall_32+0x6b/0xd0
[  594.441817][T14571]  do_SYSENTER_32+0x73/0x90
[  594.446329][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  594.452644][T14571] 
[  594.454970][T14571] Uninit was stored to memory at:
[  594.459999][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  594.465723][T14571]  __msan_chain_origin+0x50/0x90
[  594.470667][T14571]  __get_compat_msghdr+0x5be/0x890
[  594.475783][T14571]  get_compat_msghdr+0x108/0x270
[  594.480726][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  594.485234][T14571]  __sys_recvmmsg+0x4ca/0x510
[  594.489919][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  594.495987][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  594.502144][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  594.507351][T14571]  do_fast_syscall_32+0x6b/0xd0
[  594.512213][T14571]  do_SYSENTER_32+0x73/0x90
[  594.516720][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  594.523036][T14571] 
[  594.525362][T14571] Local variable ----msg_sys@do_recvmmsg created at:
[  594.532045][T14571]  do_recvmmsg+0xc5/0x1ee0
[  594.536468][T14571]  do_recvmmsg+0xc5/0x1ee0
[  594.695322][T14571] not chained 210000 origins
[  594.699964][T14571] CPU: 0 PID: 14571 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0
[  594.708633][T14571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  594.718689][T14571] Call Trace:
[  594.722000][T14571]  dump_stack+0x1df/0x240
[  594.726351][T14571]  kmsan_internal_chain_origin+0x6f/0x130
[  594.732084][T14571]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  594.737905][T14571]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  594.743985][T14571]  ? udp_recvmsg+0x1b8c/0x2100
[  594.748800][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  594.753924][T14571]  ? kmsan_set_origin_checked+0x95/0xf0
[  594.759486][T14571]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  594.765576][T14571]  ? _copy_from_user+0x15b/0x260
[  594.770611][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  594.775736][T14571]  __msan_chain_origin+0x50/0x90
[  594.780703][T14571]  __get_compat_msghdr+0x5be/0x890
[  594.785937][T14571]  get_compat_msghdr+0x108/0x270
[  594.790908][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  594.795441][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  594.801117][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  594.806245][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  594.811895][T14571]  ? __msan_poison_alloca+0xf0/0x120
[  594.817203][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  594.821977][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  594.826754][T14571]  ? kmsan_get_metadata+0x11d/0x180
[  594.831968][T14571]  __sys_recvmmsg+0x4ca/0x510
[  594.836683][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  594.842779][T14571]  ? __x32_compat_sys_recvmmsg_time64+0x80/0x80
[  594.849032][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  594.855202][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  594.860432][T14571]  do_fast_syscall_32+0x6b/0xd0
[  594.865408][T14571]  do_SYSENTER_32+0x73/0x90
[  594.869931][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  594.876262][T14571] RIP: 0023:0xf7f8d549
[  594.880322][T14571] Code: Bad RIP value.
[  594.884387][T14571] RSP: 002b:00000000f5d880cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  594.892802][T14571] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200004c0
[  594.900781][T14571] RDX: 00000000006fdaec RSI: 0000000000000022 RDI: 0000000000000000
[  594.908757][T14571] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  594.916833][T14571] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  594.924895][T14571] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  594.932899][T14571] Uninit was stored to memory at:
[  594.937935][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  594.943660][T14571]  __msan_chain_origin+0x50/0x90
[  594.948603][T14571]  __get_compat_msghdr+0x5be/0x890
[  594.953722][T14571]  get_compat_msghdr+0x108/0x270
[  594.958665][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  594.963173][T14571]  __sys_recvmmsg+0x4ca/0x510
[  594.967856][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  594.973931][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  594.980092][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  594.985296][T14571]  do_fast_syscall_32+0x6b/0xd0
[  594.990155][T14571]  do_SYSENTER_32+0x73/0x90
[  594.994662][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  595.000979][T14571] 
[  595.003306][T14571] Uninit was stored to memory at:
[  595.008337][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  595.014063][T14571]  __msan_chain_origin+0x50/0x90
[  595.019007][T14571]  __get_compat_msghdr+0x5be/0x890
[  595.024124][T14571]  get_compat_msghdr+0x108/0x270
[  595.029072][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  595.033582][T14571]  __sys_recvmmsg+0x4ca/0x510
[  595.038260][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  595.044332][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  595.050489][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  595.055697][T14571]  do_fast_syscall_32+0x6b/0xd0
[  595.060558][T14571]  do_SYSENTER_32+0x73/0x90
[  595.065064][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  595.071391][T14571] 
[  595.073713][T14571] Uninit was stored to memory at:
[  595.078742][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  595.084464][T14571]  __msan_chain_origin+0x50/0x90
[  595.089408][T14571]  __get_compat_msghdr+0x5be/0x890
[  595.094528][T14571]  get_compat_msghdr+0x108/0x270
[  595.099471][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  595.103979][T14571]  __sys_recvmmsg+0x4ca/0x510
[  595.108659][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  595.114730][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  595.120886][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  595.126089][T14571]  do_fast_syscall_32+0x6b/0xd0
[  595.130946][T14571]  do_SYSENTER_32+0x73/0x90
[  595.135455][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  595.141774][T14571] 
[  595.144097][T14571] Uninit was stored to memory at:
[  595.149134][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  595.154860][T14571]  __msan_chain_origin+0x50/0x90
[  595.159806][T14571]  __get_compat_msghdr+0x5be/0x890
[  595.164928][T14571]  get_compat_msghdr+0x108/0x270
[  595.169874][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  595.174385][T14571]  __sys_recvmmsg+0x4ca/0x510
[  595.179065][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  595.185134][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  595.191290][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  595.196499][T14571]  do_fast_syscall_32+0x6b/0xd0
[  595.201353][T14571]  do_SYSENTER_32+0x73/0x90
[  595.205860][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  595.212175][T14571] 
[  595.214497][T14571] Uninit was stored to memory at:
[  595.219525][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  595.225249][T14571]  __msan_chain_origin+0x50/0x90
[  595.230193][T14571]  __get_compat_msghdr+0x5be/0x890
[  595.235306][T14571]  get_compat_msghdr+0x108/0x270
[  595.240248][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  595.244767][T14571]  __sys_recvmmsg+0x4ca/0x510
[  595.249470][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  595.255538][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  595.261698][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  595.266900][T14571]  do_fast_syscall_32+0x6b/0xd0
[  595.271756][T14571]  do_SYSENTER_32+0x73/0x90
[  595.276269][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  595.282584][T14571] 
[  595.284908][T14571] Uninit was stored to memory at:
[  595.289966][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  595.295691][T14571]  __msan_chain_origin+0x50/0x90
[  595.300635][T14571]  __get_compat_msghdr+0x5be/0x890
[  595.305751][T14571]  get_compat_msghdr+0x108/0x270
[  595.310693][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  595.315199][T14571]  __sys_recvmmsg+0x4ca/0x510
[  595.319877][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  595.325948][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  595.332104][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  595.337312][T14571]  do_fast_syscall_32+0x6b/0xd0
[  595.342170][T14571]  do_SYSENTER_32+0x73/0x90
[  595.346676][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  595.352993][T14571] 
[  595.355317][T14571] Uninit was stored to memory at:
[  595.360346][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  595.366068][T14571]  __msan_chain_origin+0x50/0x90
[  595.371013][T14571]  __get_compat_msghdr+0x5be/0x890
[  595.376156][T14571]  get_compat_msghdr+0x108/0x270
[  595.381098][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  595.385610][T14571]  __sys_recvmmsg+0x4ca/0x510
[  595.390291][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  595.396372][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  595.402531][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  595.407736][T14571]  do_fast_syscall_32+0x6b/0xd0
[  595.412595][T14571]  do_SYSENTER_32+0x73/0x90
[  595.417102][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  595.423422][T14571] 
[  595.425752][T14571] Local variable ----msg_sys@do_recvmmsg created at:
[  595.432434][T14571]  do_recvmmsg+0xc5/0x1ee0
[  595.436855][T14571]  do_recvmmsg+0xc5/0x1ee0
[  595.988439][T14571] not chained 220000 origins
[  595.993087][T14571] CPU: 1 PID: 14571 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0
[  596.001756][T14571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  596.011827][T14571] Call Trace:
[  596.015136][T14571]  dump_stack+0x1df/0x240
[  596.019490][T14571]  kmsan_internal_chain_origin+0x6f/0x130
[  596.025228][T14571]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  596.031060][T14571]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  596.037136][T14571]  ? udp_recvmsg+0x1b8c/0x2100
[  596.041937][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  596.047061][T14571]  ? kmsan_set_origin_checked+0x95/0xf0
[  596.052633][T14571]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  596.058722][T14571]  ? _copy_from_user+0x15b/0x260
[  596.063692][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  596.068816][T14571]  __msan_chain_origin+0x50/0x90
[  596.073779][T14571]  __get_compat_msghdr+0x5be/0x890
[  596.078945][T14571]  get_compat_msghdr+0x108/0x270
[  596.083909][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  596.088443][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  596.094121][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  596.099246][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  596.104891][T14571]  ? __msan_poison_alloca+0xf0/0x120
[  596.110189][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  596.114963][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  596.119741][T14571]  ? kmsan_get_metadata+0x11d/0x180
[  596.124960][T14571]  __sys_recvmmsg+0x4ca/0x510
[  596.129673][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  596.135762][T14571]  ? __x32_compat_sys_recvmmsg_time64+0x80/0x80
[  596.142022][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  596.148190][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  596.153422][T14571]  do_fast_syscall_32+0x6b/0xd0
[  596.158290][T14571]  do_SYSENTER_32+0x73/0x90
[  596.162810][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  596.169136][T14571] RIP: 0023:0xf7f8d549
[  596.173199][T14571] Code: Bad RIP value.
[  596.177267][T14571] RSP: 002b:00000000f5d880cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  596.185703][T14571] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200004c0
[  596.193676][T14571] RDX: 00000000006fdaec RSI: 0000000000000022 RDI: 0000000000000000
[  596.201648][T14571] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  596.209621][T14571] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  596.217597][T14571] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  596.225593][T14571] Uninit was stored to memory at:
[  596.230631][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  596.236356][T14571]  __msan_chain_origin+0x50/0x90
[  596.241337][T14571]  __get_compat_msghdr+0x5be/0x890
[  596.246459][T14571]  get_compat_msghdr+0x108/0x270
[  596.251402][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  596.255910][T14571]  __sys_recvmmsg+0x4ca/0x510
[  596.260589][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  596.266683][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  596.272843][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  596.278049][T14571]  do_fast_syscall_32+0x6b/0xd0
[  596.282905][T14571]  do_SYSENTER_32+0x73/0x90
[  596.287412][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  596.293730][T14571] 
[  596.296055][T14571] Uninit was stored to memory at:
[  596.301086][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  596.306811][T14571]  __msan_chain_origin+0x50/0x90
[  596.311755][T14571]  __get_compat_msghdr+0x5be/0x890
[  596.316876][T14571]  get_compat_msghdr+0x108/0x270
[  596.321822][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  596.326332][T14571]  __sys_recvmmsg+0x4ca/0x510
[  596.331033][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  596.337103][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  596.343261][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  596.348463][T14571]  do_fast_syscall_32+0x6b/0xd0
[  596.353320][T14571]  do_SYSENTER_32+0x73/0x90
[  596.357829][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  596.364144][T14571] 
[  596.366462][T14571] Uninit was stored to memory at:
[  596.371491][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  596.377218][T14571]  __msan_chain_origin+0x50/0x90
[  596.382167][T14571]  __get_compat_msghdr+0x5be/0x890
[  596.387284][T14571]  get_compat_msghdr+0x108/0x270
[  596.392232][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  596.396758][T14571]  __sys_recvmmsg+0x4ca/0x510
[  596.401447][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  596.407518][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  596.413680][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  596.418887][T14571]  do_fast_syscall_32+0x6b/0xd0
[  596.423744][T14571]  do_SYSENTER_32+0x73/0x90
[  596.428257][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  596.434575][T14571] 
[  596.436903][T14571] Uninit was stored to memory at:
[  596.441932][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  596.447655][T14571]  __msan_chain_origin+0x50/0x90
[  596.452599][T14571]  __get_compat_msghdr+0x5be/0x890
[  596.457720][T14571]  get_compat_msghdr+0x108/0x270
[  596.462663][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  596.467171][T14571]  __sys_recvmmsg+0x4ca/0x510
[  596.471858][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  596.477935][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  596.484094][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  596.489299][T14571]  do_fast_syscall_32+0x6b/0xd0
[  596.494163][T14571]  do_SYSENTER_32+0x73/0x90
[  596.498672][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  596.504990][T14571] 
[  596.507313][T14571] Uninit was stored to memory at:
[  596.512345][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  596.518069][T14571]  __msan_chain_origin+0x50/0x90
[  596.523030][T14571]  __get_compat_msghdr+0x5be/0x890
[  596.528148][T14571]  get_compat_msghdr+0x108/0x270
[  596.533095][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  596.537604][T14571]  __sys_recvmmsg+0x4ca/0x510
[  596.542288][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  596.548380][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  596.554541][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  596.559747][T14571]  do_fast_syscall_32+0x6b/0xd0
[  596.564610][T14571]  do_SYSENTER_32+0x73/0x90
[  596.569120][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  596.575436][T14571] 
[  596.577760][T14571] Uninit was stored to memory at:
[  596.582803][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  596.588529][T14571]  __msan_chain_origin+0x50/0x90
[  596.593474][T14571]  __get_compat_msghdr+0x5be/0x890
[  596.598593][T14571]  get_compat_msghdr+0x108/0x270
[  596.603537][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  596.608048][T14571]  __sys_recvmmsg+0x4ca/0x510
[  596.612729][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  596.618802][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  596.624960][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  596.630168][T14571]  do_fast_syscall_32+0x6b/0xd0
[  596.635028][T14571]  do_SYSENTER_32+0x73/0x90
[  596.639545][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  596.645863][T14571] 
[  596.648191][T14571] Uninit was stored to memory at:
[  596.653233][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  596.658963][T14571]  __msan_chain_origin+0x50/0x90
[  596.663913][T14571]  __get_compat_msghdr+0x5be/0x890
[  596.669041][T14571]  get_compat_msghdr+0x108/0x270
[  596.673987][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  596.678498][T14571]  __sys_recvmmsg+0x4ca/0x510
[  596.683180][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  596.689253][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  596.695414][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  596.700620][T14571]  do_fast_syscall_32+0x6b/0xd0
[  596.705477][T14571]  do_SYSENTER_32+0x73/0x90
[  596.709987][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  596.716305][T14571] 
[  596.718631][T14571] Local variable ----msg_sys@do_recvmmsg created at:
[  596.725316][T14571]  do_recvmmsg+0xc5/0x1ee0
[  596.729739][T14571]  do_recvmmsg+0xc5/0x1ee0
[  596.913217][T14571] not chained 230000 origins
[  596.917859][T14571] CPU: 1 PID: 14571 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0
[  596.926616][T14571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  596.936674][T14571] Call Trace:
[  596.939982][T14571]  dump_stack+0x1df/0x240
[  596.944339][T14571]  kmsan_internal_chain_origin+0x6f/0x130
[  596.950068][T14571]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  596.955888][T14571]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  596.961969][T14571]  ? udp_recvmsg+0x1b8c/0x2100
[  596.966792][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  596.971910][T14571]  ? kmsan_set_origin_checked+0x95/0xf0
[  596.977473][T14571]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  596.983560][T14571]  ? _copy_from_user+0x15b/0x260
[  596.988509][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  596.993630][T14571]  __msan_chain_origin+0x50/0x90
[  596.998585][T14571]  __get_compat_msghdr+0x5be/0x890
[  597.003742][T14571]  get_compat_msghdr+0x108/0x270
[  597.008720][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  597.013256][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  597.018930][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  597.024057][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  597.029704][T14571]  ? __msan_poison_alloca+0xf0/0x120
[  597.035005][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  597.039781][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  597.044557][T14571]  ? kmsan_get_metadata+0x11d/0x180
[  597.049775][T14571]  __sys_recvmmsg+0x4ca/0x510
[  597.054508][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  597.060595][T14571]  ? __x32_compat_sys_recvmmsg_time64+0x80/0x80
[  597.066850][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  597.073016][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  597.078249][T14571]  do_fast_syscall_32+0x6b/0xd0
[  597.083116][T14571]  do_SYSENTER_32+0x73/0x90
[  597.087636][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  597.093963][T14571] RIP: 0023:0xf7f8d549
[  597.098028][T14571] Code: Bad RIP value.
[  597.102097][T14571] RSP: 002b:00000000f5d880cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  597.110514][T14571] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200004c0
[  597.118490][T14571] RDX: 00000000006fdaec RSI: 0000000000000022 RDI: 0000000000000000
[  597.126464][T14571] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  597.134439][T14571] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  597.142415][T14571] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  597.150411][T14571] Uninit was stored to memory at:
[  597.155452][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  597.161177][T14571]  __msan_chain_origin+0x50/0x90
[  597.166124][T14571]  __get_compat_msghdr+0x5be/0x890
[  597.171248][T14571]  get_compat_msghdr+0x108/0x270
[  597.176193][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  597.180703][T14571]  __sys_recvmmsg+0x4ca/0x510
[  597.185397][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  597.191471][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  597.197634][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  597.202842][T14571]  do_fast_syscall_32+0x6b/0xd0
[  597.207698][T14571]  do_SYSENTER_32+0x73/0x90
[  597.212215][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  597.218532][T14571] 
[  597.220859][T14571] Uninit was stored to memory at:
[  597.225897][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  597.231622][T14571]  __msan_chain_origin+0x50/0x90
[  597.236568][T14571]  __get_compat_msghdr+0x5be/0x890
[  597.241687][T14571]  get_compat_msghdr+0x108/0x270
[  597.246637][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  597.251147][T14571]  __sys_recvmmsg+0x4ca/0x510
[  597.255831][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  597.261905][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  597.268069][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  597.273280][T14571]  do_fast_syscall_32+0x6b/0xd0
[  597.278139][T14571]  do_SYSENTER_32+0x73/0x90
[  597.282652][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  597.288971][T14571] 
[  597.291294][T14571] Uninit was stored to memory at:
[  597.296330][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  597.302061][T14571]  __msan_chain_origin+0x50/0x90
[  597.307007][T14571]  __get_compat_msghdr+0x5be/0x890
[  597.312130][T14571]  get_compat_msghdr+0x108/0x270
[  597.317079][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  597.321677][T14571]  __sys_recvmmsg+0x4ca/0x510
[  597.326358][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  597.332442][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  597.338601][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  597.343815][T14571]  do_fast_syscall_32+0x6b/0xd0
[  597.348673][T14571]  do_SYSENTER_32+0x73/0x90
[  597.353182][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  597.359497][T14571] 
[  597.361821][T14571] Uninit was stored to memory at:
[  597.366855][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  597.372617][T14571]  __msan_chain_origin+0x50/0x90
[  597.377563][T14571]  __get_compat_msghdr+0x5be/0x890
[  597.382683][T14571]  get_compat_msghdr+0x108/0x270
[  597.387629][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  597.392142][T14571]  __sys_recvmmsg+0x4ca/0x510
[  597.396826][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  597.402901][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  597.409062][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  597.414269][T14571]  do_fast_syscall_32+0x6b/0xd0
[  597.419129][T14571]  do_SYSENTER_32+0x73/0x90
[  597.423643][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  597.429962][T14571] 
[  597.432288][T14571] Uninit was stored to memory at:
[  597.437322][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  597.443046][T14571]  __msan_chain_origin+0x50/0x90
[  597.447993][T14571]  __get_compat_msghdr+0x5be/0x890
[  597.453115][T14571]  get_compat_msghdr+0x108/0x270
[  597.458060][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  597.462569][T14571]  __sys_recvmmsg+0x4ca/0x510
[  597.467248][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  597.473320][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  597.479479][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  597.484689][T14571]  do_fast_syscall_32+0x6b/0xd0
[  597.489548][T14571]  do_SYSENTER_32+0x73/0x90
[  597.494059][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  597.500385][T14571] 
[  597.502710][T14571] Uninit was stored to memory at:
[  597.507739][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  597.513467][T14571]  __msan_chain_origin+0x50/0x90
[  597.518414][T14571]  __get_compat_msghdr+0x5be/0x890
[  597.523534][T14571]  get_compat_msghdr+0x108/0x270
[  597.528481][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  597.532992][T14571]  __sys_recvmmsg+0x4ca/0x510
[  597.537675][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  597.543748][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  597.549913][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  597.555125][T14571]  do_fast_syscall_32+0x6b/0xd0
[  597.559983][T14571]  do_SYSENTER_32+0x73/0x90
[  597.564511][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  597.570830][T14571] 
[  597.573250][T14571] Uninit was stored to memory at:
[  597.578281][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  597.584008][T14571]  __msan_chain_origin+0x50/0x90
[  597.588953][T14571]  __get_compat_msghdr+0x5be/0x890
[  597.594076][T14571]  get_compat_msghdr+0x108/0x270
[  597.599019][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  597.603524][T14571]  __sys_recvmmsg+0x4ca/0x510
[  597.608214][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  597.614286][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  597.620449][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  597.625657][T14571]  do_fast_syscall_32+0x6b/0xd0
[  597.630513][T14571]  do_SYSENTER_32+0x73/0x90
[  597.635022][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  597.641342][T14571] 
[  597.643677][T14571] Local variable ----msg_sys@do_recvmmsg created at:
[  597.650360][T14571]  do_recvmmsg+0xc5/0x1ee0
[  597.654791][T14571]  do_recvmmsg+0xc5/0x1ee0
[  597.806408][T14571] not chained 240000 origins
[  597.811054][T14571] CPU: 1 PID: 14571 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0
[  597.819723][T14571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  597.829778][T14571] Call Trace:
[  597.833083][T14571]  dump_stack+0x1df/0x240
[  597.837440][T14571]  kmsan_internal_chain_origin+0x6f/0x130
[  597.843172][T14571]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  597.848990][T14571]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  597.855064][T14571]  ? udp_recvmsg+0x1b8c/0x2100
[  597.859909][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  597.865038][T14571]  ? kmsan_set_origin_checked+0x95/0xf0
[  597.870604][T14571]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  597.876713][T14571]  ? _copy_from_user+0x15b/0x260
[  597.881663][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  597.886808][T14571]  __msan_chain_origin+0x50/0x90
[  597.891765][T14571]  __get_compat_msghdr+0x5be/0x890
[  597.896918][T14571]  get_compat_msghdr+0x108/0x270
[  597.901885][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  597.906427][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  597.912099][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  597.917227][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  597.922873][T14571]  ? __msan_poison_alloca+0xf0/0x120
[  597.928176][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  597.932975][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  597.937747][T14571]  ? kmsan_get_metadata+0x11d/0x180
[  597.942960][T14571]  __sys_recvmmsg+0x4ca/0x510
[  597.947683][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  597.953768][T14571]  ? __x32_compat_sys_recvmmsg_time64+0x80/0x80
[  597.960017][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  597.966188][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  597.971419][T14571]  do_fast_syscall_32+0x6b/0xd0
[  597.976287][T14571]  do_SYSENTER_32+0x73/0x90
[  597.980802][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  597.987135][T14571] RIP: 0023:0xf7f8d549
[  597.991208][T14571] Code: Bad RIP value.
[  597.995272][T14571] RSP: 002b:00000000f5d880cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  598.003687][T14571] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200004c0
[  598.011661][T14571] RDX: 00000000006fdaec RSI: 0000000000000022 RDI: 0000000000000000
[  598.019634][T14571] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  598.027611][T14571] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  598.035586][T14571] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  598.043584][T14571] Uninit was stored to memory at:
[  598.048621][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  598.054346][T14571]  __msan_chain_origin+0x50/0x90
[  598.059292][T14571]  __get_compat_msghdr+0x5be/0x890
[  598.064408][T14571]  get_compat_msghdr+0x108/0x270
[  598.069370][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  598.073877][T14571]  __sys_recvmmsg+0x4ca/0x510
[  598.078560][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  598.084651][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  598.090809][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  598.096024][T14571]  do_fast_syscall_32+0x6b/0xd0
[  598.100881][T14571]  do_SYSENTER_32+0x73/0x90
[  598.105391][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  598.111716][T14571] 
[  598.114039][T14571] Uninit was stored to memory at:
[  598.119069][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  598.124791][T14571]  __msan_chain_origin+0x50/0x90
[  598.129744][T14571]  __get_compat_msghdr+0x5be/0x890
[  598.134866][T14571]  get_compat_msghdr+0x108/0x270
[  598.139834][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  598.144348][T14571]  __sys_recvmmsg+0x4ca/0x510
[  598.149032][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  598.155104][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  598.161270][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  598.166508][T14571]  do_fast_syscall_32+0x6b/0xd0
[  598.171365][T14571]  do_SYSENTER_32+0x73/0x90
[  598.175876][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  598.182202][T14571] 
[  598.184529][T14571] Uninit was stored to memory at:
[  598.189562][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  598.195287][T14571]  __msan_chain_origin+0x50/0x90
[  598.200235][T14571]  __get_compat_msghdr+0x5be/0x890
[  598.205354][T14571]  get_compat_msghdr+0x108/0x270
[  598.210302][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  598.214810][T14571]  __sys_recvmmsg+0x4ca/0x510
[  598.219494][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  598.225575][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  598.231737][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  598.236942][T14571]  do_fast_syscall_32+0x6b/0xd0
[  598.241802][T14571]  do_SYSENTER_32+0x73/0x90
[  598.246311][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  598.252630][T14571] 
[  598.254954][T14571] Uninit was stored to memory at:
[  598.259982][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  598.265709][T14571]  __msan_chain_origin+0x50/0x90
[  598.270658][T14571]  __get_compat_msghdr+0x5be/0x890
[  598.275804][T14571]  get_compat_msghdr+0x108/0x270
[  598.280749][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  598.285259][T14571]  __sys_recvmmsg+0x4ca/0x510
[  598.289942][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  598.296019][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  598.302199][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  598.307405][T14571]  do_fast_syscall_32+0x6b/0xd0
[  598.312319][T14571]  do_SYSENTER_32+0x73/0x90
[  598.316824][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  598.323145][T14571] 
[  598.325470][T14571] Uninit was stored to memory at:
[  598.330504][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  598.336234][T14571]  __msan_chain_origin+0x50/0x90
[  598.341180][T14571]  __get_compat_msghdr+0x5be/0x890
[  598.346297][T14571]  get_compat_msghdr+0x108/0x270
[  598.351241][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  598.355757][T14571]  __sys_recvmmsg+0x4ca/0x510
[  598.360447][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  598.366519][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  598.372677][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  598.377882][T14571]  do_fast_syscall_32+0x6b/0xd0
[  598.382739][T14571]  do_SYSENTER_32+0x73/0x90
[  598.387250][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  598.393567][T14571] 
[  598.395890][T14571] Uninit was stored to memory at:
[  598.400921][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  598.406645][T14571]  __msan_chain_origin+0x50/0x90
[  598.411599][T14571]  __get_compat_msghdr+0x5be/0x890
[  598.416720][T14571]  get_compat_msghdr+0x108/0x270
[  598.421674][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  598.426181][T14571]  __sys_recvmmsg+0x4ca/0x510
[  598.430865][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  598.436937][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  598.443098][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  598.448309][T14571]  do_fast_syscall_32+0x6b/0xd0
[  598.453170][T14571]  do_SYSENTER_32+0x73/0x90
[  598.457677][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  598.463995][T14571] 
[  598.466320][T14571] Uninit was stored to memory at:
[  598.471353][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  598.477082][T14571]  __msan_chain_origin+0x50/0x90
[  598.482028][T14571]  __get_compat_msghdr+0x5be/0x890
[  598.487146][T14571]  get_compat_msghdr+0x108/0x270
[  598.492093][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  598.496607][T14571]  __sys_recvmmsg+0x4ca/0x510
[  598.501293][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  598.507365][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  598.513528][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  598.518733][T14571]  do_fast_syscall_32+0x6b/0xd0
[  598.523590][T14571]  do_SYSENTER_32+0x73/0x90
[  598.528100][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  598.534424][T14571] 
[  598.536748][T14571] Local variable ----msg_sys@do_recvmmsg created at:
[  598.543435][T14571]  do_recvmmsg+0xc5/0x1ee0
[  598.547861][T14571]  do_recvmmsg+0xc5/0x1ee0
[  598.712518][T14571] not chained 250000 origins
[  598.717165][T14571] CPU: 1 PID: 14571 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0
[  598.725834][T14571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  598.735916][T14571] Call Trace:
[  598.739224][T14571]  dump_stack+0x1df/0x240
[  598.743579][T14571]  kmsan_internal_chain_origin+0x6f/0x130
[  598.749315][T14571]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  598.755135][T14571]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  598.761222][T14571]  ? udp_recvmsg+0x1b8c/0x2100
[  598.766032][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  598.771154][T14571]  ? kmsan_set_origin_checked+0x95/0xf0
[  598.776714][T14571]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  598.782805][T14571]  ? _copy_from_user+0x15b/0x260
[  598.787761][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  598.792892][T14571]  __msan_chain_origin+0x50/0x90
[  598.797848][T14571]  __get_compat_msghdr+0x5be/0x890
[  598.803045][T14571]  get_compat_msghdr+0x108/0x270
[  598.808016][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  598.812551][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  598.818234][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  598.823362][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  598.829014][T14571]  ? __msan_poison_alloca+0xf0/0x120
[  598.834316][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  598.839090][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  598.843862][T14571]  ? kmsan_get_metadata+0x11d/0x180
[  598.849078][T14571]  __sys_recvmmsg+0x4ca/0x510
[  598.853790][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  598.859878][T14571]  ? __x32_compat_sys_recvmmsg_time64+0x80/0x80
[  598.866140][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  598.872306][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  598.877529][T14571]  do_fast_syscall_32+0x6b/0xd0
[  598.882399][T14571]  do_SYSENTER_32+0x73/0x90
[  598.886920][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  598.893250][T14571] RIP: 0023:0xf7f8d549
[  598.897314][T14571] Code: Bad RIP value.
[  598.901379][T14571] RSP: 002b:00000000f5d880cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  598.909793][T14571] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200004c0
[  598.917769][T14571] RDX: 00000000006fdaec RSI: 0000000000000022 RDI: 0000000000000000
[  598.925745][T14571] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  598.933723][T14571] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  598.941697][T14571] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  598.949693][T14571] Uninit was stored to memory at:
[  598.954729][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  598.960457][T14571]  __msan_chain_origin+0x50/0x90
[  598.965406][T14571]  __get_compat_msghdr+0x5be/0x890
[  598.970526][T14571]  get_compat_msghdr+0x108/0x270
[  598.975473][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  598.979985][T14571]  __sys_recvmmsg+0x4ca/0x510
[  598.984667][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  598.990757][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  598.996919][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  599.002126][T14571]  do_fast_syscall_32+0x6b/0xd0
[  599.006982][T14571]  do_SYSENTER_32+0x73/0x90
[  599.011490][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  599.017806][T14571] 
[  599.020130][T14571] Uninit was stored to memory at:
[  599.025160][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  599.030884][T14571]  __msan_chain_origin+0x50/0x90
[  599.035841][T14571]  __get_compat_msghdr+0x5be/0x890
[  599.040958][T14571]  get_compat_msghdr+0x108/0x270
[  599.045914][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  599.050425][T14571]  __sys_recvmmsg+0x4ca/0x510
[  599.055110][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  599.061181][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  599.067343][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  599.072550][T14571]  do_fast_syscall_32+0x6b/0xd0
[  599.077411][T14571]  do_SYSENTER_32+0x73/0x90
[  599.081923][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  599.088240][T14571] 
[  599.090565][T14571] Uninit was stored to memory at:
[  599.095601][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  599.101328][T14571]  __msan_chain_origin+0x50/0x90
[  599.106273][T14571]  __get_compat_msghdr+0x5be/0x890
[  599.111391][T14571]  get_compat_msghdr+0x108/0x270
[  599.116339][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  599.120903][T14571]  __sys_recvmmsg+0x4ca/0x510
[  599.125595][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  599.131673][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  599.137835][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  599.143044][T14571]  do_fast_syscall_32+0x6b/0xd0
[  599.147904][T14571]  do_SYSENTER_32+0x73/0x90
[  599.152414][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  599.158733][T14571] 
[  599.161059][T14571] Uninit was stored to memory at:
[  599.166099][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  599.171826][T14571]  __msan_chain_origin+0x50/0x90
[  599.176773][T14571]  __get_compat_msghdr+0x5be/0x890
[  599.181894][T14571]  get_compat_msghdr+0x108/0x270
[  599.186839][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  599.191351][T14571]  __sys_recvmmsg+0x4ca/0x510
[  599.196039][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  599.202113][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  599.208278][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  599.213490][T14571]  do_fast_syscall_32+0x6b/0xd0
[  599.218350][T14571]  do_SYSENTER_32+0x73/0x90
[  599.222859][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  599.229176][T14571] 
[  599.231526][T14571] Uninit was stored to memory at:
[  599.236562][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  599.242290][T14571]  __msan_chain_origin+0x50/0x90
[  599.247235][T14571]  __get_compat_msghdr+0x5be/0x890
[  599.252359][T14571]  get_compat_msghdr+0x108/0x270
[  599.257320][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  599.261828][T14571]  __sys_recvmmsg+0x4ca/0x510
[  599.266511][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  599.272588][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  599.278747][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  599.283954][T14571]  do_fast_syscall_32+0x6b/0xd0
[  599.288808][T14571]  do_SYSENTER_32+0x73/0x90
[  599.293321][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  599.299642][T14571] 
[  599.301969][T14571] Uninit was stored to memory at:
[  599.307002][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  599.312725][T14571]  __msan_chain_origin+0x50/0x90
[  599.317670][T14571]  __get_compat_msghdr+0x5be/0x890
[  599.322792][T14571]  get_compat_msghdr+0x108/0x270
[  599.327736][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  599.332247][T14571]  __sys_recvmmsg+0x4ca/0x510
[  599.336931][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  599.343015][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  599.349173][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  599.354382][T14571]  do_fast_syscall_32+0x6b/0xd0
[  599.359237][T14571]  do_SYSENTER_32+0x73/0x90
[  599.363753][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  599.370067][T14571] 
[  599.372395][T14571] Uninit was stored to memory at:
[  599.377427][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  599.383154][T14571]  __msan_chain_origin+0x50/0x90
[  599.388095][T14571]  __get_compat_msghdr+0x5be/0x890
[  599.393215][T14571]  get_compat_msghdr+0x108/0x270
[  599.398157][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  599.402664][T14571]  __sys_recvmmsg+0x4ca/0x510
[  599.407345][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  599.413414][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  599.419572][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  599.424777][T14571]  do_fast_syscall_32+0x6b/0xd0
[  599.429631][T14571]  do_SYSENTER_32+0x73/0x90
[  599.434140][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  599.440458][T14571] 
[  599.442785][T14571] Local variable ----msg_sys@do_recvmmsg created at:
[  599.449487][T14571]  do_recvmmsg+0xc5/0x1ee0
[  599.453908][T14571]  do_recvmmsg+0xc5/0x1ee0
[  599.618149][T14571] not chained 260000 origins
[  599.622794][T14571] CPU: 1 PID: 14571 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0
[  599.631464][T14571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  599.641528][T14571] Call Trace:
[  599.644838][T14571]  dump_stack+0x1df/0x240
[  599.649190][T14571]  kmsan_internal_chain_origin+0x6f/0x130
[  599.654922][T14571]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  599.660743][T14571]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  599.666832][T14571]  ? udp_recvmsg+0x1b8c/0x2100
[  599.671646][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  599.676771][T14571]  ? kmsan_set_origin_checked+0x95/0xf0
[  599.682372][T14571]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  599.688456][T14571]  ? _copy_from_user+0x15b/0x260
[  599.693401][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  599.698525][T14571]  __msan_chain_origin+0x50/0x90
[  599.703480][T14571]  __get_compat_msghdr+0x5be/0x890
[  599.708646][T14571]  get_compat_msghdr+0x108/0x270
[  599.713614][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  599.718149][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  599.723818][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  599.728941][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  599.734587][T14571]  ? __msan_poison_alloca+0xf0/0x120
[  599.739889][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  599.744659][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  599.749432][T14571]  ? kmsan_get_metadata+0x11d/0x180
[  599.754643][T14571]  __sys_recvmmsg+0x4ca/0x510
[  599.759353][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  599.765439][T14571]  ? __x32_compat_sys_recvmmsg_time64+0x80/0x80
[  599.771765][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  599.777948][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  599.783176][T14571]  do_fast_syscall_32+0x6b/0xd0
[  599.788045][T14571]  do_SYSENTER_32+0x73/0x90
[  599.792561][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  599.798889][T14571] RIP: 0023:0xf7f8d549
[  599.802958][T14571] Code: Bad RIP value.
[  599.807034][T14571] RSP: 002b:00000000f5d880cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  599.815453][T14571] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200004c0
[  599.823430][T14571] RDX: 00000000006fdaec RSI: 0000000000000022 RDI: 0000000000000000
[  599.831406][T14571] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  599.839384][T14571] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  599.847362][T14571] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  599.855356][T14571] Uninit was stored to memory at:
[  599.860399][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  599.866122][T14571]  __msan_chain_origin+0x50/0x90
[  599.871067][T14571]  __get_compat_msghdr+0x5be/0x890
[  599.876189][T14571]  get_compat_msghdr+0x108/0x270
[  599.881135][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  599.885645][T14571]  __sys_recvmmsg+0x4ca/0x510
[  599.890326][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  599.896399][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  599.902556][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  599.907762][T14571]  do_fast_syscall_32+0x6b/0xd0
[  599.912618][T14571]  do_SYSENTER_32+0x73/0x90
[  599.917126][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  599.923446][T14571] 
[  599.925771][T14571] Uninit was stored to memory at:
[  599.930806][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  599.936539][T14571]  __msan_chain_origin+0x50/0x90
[  599.941483][T14571]  __get_compat_msghdr+0x5be/0x890
[  599.946606][T14571]  get_compat_msghdr+0x108/0x270
[  599.951548][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  599.956058][T14571]  __sys_recvmmsg+0x4ca/0x510
[  599.960745][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  599.966817][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  599.972984][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  599.978192][T14571]  do_fast_syscall_32+0x6b/0xd0
[  599.983054][T14571]  do_SYSENTER_32+0x73/0x90
[  599.987565][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  599.993881][T14571] 
[  599.996206][T14571] Uninit was stored to memory at:
[  600.001245][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  600.006974][T14571]  __msan_chain_origin+0x50/0x90
[  600.012008][T14571]  __get_compat_msghdr+0x5be/0x890
[  600.017127][T14571]  get_compat_msghdr+0x108/0x270
[  600.022075][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  600.026590][T14571]  __sys_recvmmsg+0x4ca/0x510
[  600.031278][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  600.037358][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  600.043518][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  600.048725][T14571]  do_fast_syscall_32+0x6b/0xd0
[  600.053581][T14571]  do_SYSENTER_32+0x73/0x90
[  600.058095][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  600.064416][T14571] 
[  600.066743][T14571] Uninit was stored to memory at:
[  600.071776][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  600.077501][T14571]  __msan_chain_origin+0x50/0x90
[  600.082448][T14571]  __get_compat_msghdr+0x5be/0x890
[  600.087568][T14571]  get_compat_msghdr+0x108/0x270
[  600.092518][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  600.097038][T14571]  __sys_recvmmsg+0x4ca/0x510
[  600.101721][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  600.107798][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  600.113966][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  600.119173][T14571]  do_fast_syscall_32+0x6b/0xd0
[  600.124029][T14571]  do_SYSENTER_32+0x73/0x90
[  600.128541][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  600.134862][T14571] 
[  600.137185][T14571] Uninit was stored to memory at:
[  600.142218][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  600.147945][T14571]  __msan_chain_origin+0x50/0x90
[  600.152893][T14571]  __get_compat_msghdr+0x5be/0x890
[  600.158010][T14571]  get_compat_msghdr+0x108/0x270
[  600.162955][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  600.167477][T14571]  __sys_recvmmsg+0x4ca/0x510
[  600.172163][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  600.178243][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  600.184405][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  600.189611][T14571]  do_fast_syscall_32+0x6b/0xd0
[  600.194470][T14571]  do_SYSENTER_32+0x73/0x90
[  600.198980][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  600.205301][T14571] 
[  600.207626][T14571] Uninit was stored to memory at:
[  600.212659][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  600.218384][T14571]  __msan_chain_origin+0x50/0x90
[  600.223329][T14571]  __get_compat_msghdr+0x5be/0x890
[  600.228448][T14571]  get_compat_msghdr+0x108/0x270
[  600.233394][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  600.237902][T14571]  __sys_recvmmsg+0x4ca/0x510
[  600.242586][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  600.248659][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  600.254818][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  600.260063][T14571]  do_fast_syscall_32+0x6b/0xd0
[  600.264921][T14571]  do_SYSENTER_32+0x73/0x90
[  600.269432][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  600.275776][T14571] 
[  600.278103][T14571] Uninit was stored to memory at:
[  600.283136][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  600.289038][T14571]  __msan_chain_origin+0x50/0x90
[  600.293984][T14571]  __get_compat_msghdr+0x5be/0x890
[  600.299109][T14571]  get_compat_msghdr+0x108/0x270
[  600.304057][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  600.308566][T14571]  __sys_recvmmsg+0x4ca/0x510
[  600.313249][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  600.319326][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  600.325500][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  600.330708][T14571]  do_fast_syscall_32+0x6b/0xd0
[  600.335564][T14571]  do_SYSENTER_32+0x73/0x90
[  600.340077][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  600.346399][T14571] 
[  600.348726][T14571] Local variable ----msg_sys@do_recvmmsg created at:
[  600.355407][T14571]  do_recvmmsg+0xc5/0x1ee0
[  600.359827][T14571]  do_recvmmsg+0xc5/0x1ee0
[  600.522638][T14571] not chained 270000 origins
[  600.527355][T14571] CPU: 1 PID: 14571 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0
[  600.536027][T14571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  600.546083][T14571] Call Trace:
[  600.549390][T14571]  dump_stack+0x1df/0x240
[  600.553743][T14571]  kmsan_internal_chain_origin+0x6f/0x130
[  600.559489][T14571]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  600.565308][T14571]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  600.571468][T14571]  ? udp_recvmsg+0x1b8c/0x2100
[  600.576283][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  600.581408][T14571]  ? kmsan_set_origin_checked+0x95/0xf0
[  600.586998][T14571]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  600.593118][T14571]  ? _copy_from_user+0x15b/0x260
[  600.598068][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  600.603193][T14571]  __msan_chain_origin+0x50/0x90
[  600.608156][T14571]  __get_compat_msghdr+0x5be/0x890
[  600.613307][T14571]  get_compat_msghdr+0x108/0x270
[  600.618271][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  600.622805][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  600.628477][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  600.633601][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  600.639274][T14571]  ? __msan_poison_alloca+0xf0/0x120
[  600.644587][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  600.649361][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  600.654160][T14571]  ? kmsan_get_metadata+0x11d/0x180
[  600.659372][T14571]  __sys_recvmmsg+0x4ca/0x510
[  600.664089][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  600.670180][T14571]  ? __x32_compat_sys_recvmmsg_time64+0x80/0x80
[  600.676439][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  600.682608][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  600.687837][T14571]  do_fast_syscall_32+0x6b/0xd0
[  600.692703][T14571]  do_SYSENTER_32+0x73/0x90
[  600.697222][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  600.703553][T14571] RIP: 0023:0xf7f8d549
[  600.707616][T14571] Code: Bad RIP value.
[  600.711681][T14571] RSP: 002b:00000000f5d880cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  600.720108][T14571] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200004c0
[  600.728086][T14571] RDX: 00000000006fdaec RSI: 0000000000000022 RDI: 0000000000000000
[  600.736062][T14571] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  600.744037][T14571] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  600.752039][T14571] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  600.760039][T14571] Uninit was stored to memory at:
[  600.765080][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  600.770805][T14571]  __msan_chain_origin+0x50/0x90
[  600.775758][T14571]  __get_compat_msghdr+0x5be/0x890
[  600.780899][T14571]  get_compat_msghdr+0x108/0x270
[  600.785846][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  600.790358][T14571]  __sys_recvmmsg+0x4ca/0x510
[  600.795046][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  600.801121][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  600.807280][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  600.812489][T14571]  do_fast_syscall_32+0x6b/0xd0
[  600.817346][T14571]  do_SYSENTER_32+0x73/0x90
[  600.821858][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  600.828183][T14571] 
[  600.830516][T14571] Uninit was stored to memory at:
[  600.835551][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  600.841277][T14571]  __msan_chain_origin+0x50/0x90
[  600.846227][T14571]  __get_compat_msghdr+0x5be/0x890
[  600.851348][T14571]  get_compat_msghdr+0x108/0x270
[  600.856295][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  600.860811][T14571]  __sys_recvmmsg+0x4ca/0x510
[  600.865497][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  600.871570][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  600.877732][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  600.882945][T14571]  do_fast_syscall_32+0x6b/0xd0
[  600.887808][T14571]  do_SYSENTER_32+0x73/0x90
[  600.892353][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  600.898673][T14571] 
[  600.900998][T14571] Uninit was stored to memory at:
[  600.906033][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  600.911759][T14571]  __msan_chain_origin+0x50/0x90
[  600.916706][T14571]  __get_compat_msghdr+0x5be/0x890
[  600.921826][T14571]  get_compat_msghdr+0x108/0x270
[  600.926775][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  600.931285][T14571]  __sys_recvmmsg+0x4ca/0x510
[  600.935970][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  600.942044][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  600.948211][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  600.953424][T14571]  do_fast_syscall_32+0x6b/0xd0
[  600.958282][T14571]  do_SYSENTER_32+0x73/0x90
[  600.962792][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  600.969111][T14571] 
[  600.971440][T14571] Uninit was stored to memory at:
[  600.976474][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  600.982202][T14571]  __msan_chain_origin+0x50/0x90
[  600.987151][T14571]  __get_compat_msghdr+0x5be/0x890
[  600.992296][T14571]  get_compat_msghdr+0x108/0x270
[  600.997244][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  601.001755][T14571]  __sys_recvmmsg+0x4ca/0x510
[  601.006438][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  601.012516][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  601.018764][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  601.023975][T14571]  do_fast_syscall_32+0x6b/0xd0
[  601.028835][T14571]  do_SYSENTER_32+0x73/0x90
[  601.033373][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  601.039692][T14571] 
[  601.042022][T14571] Uninit was stored to memory at:
[  601.047056][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  601.052785][T14571]  __msan_chain_origin+0x50/0x90
[  601.057730][T14571]  __get_compat_msghdr+0x5be/0x890
[  601.062857][T14571]  get_compat_msghdr+0x108/0x270
[  601.067798][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  601.072307][T14571]  __sys_recvmmsg+0x4ca/0x510
[  601.076988][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  601.083061][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  601.089219][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  601.094424][T14571]  do_fast_syscall_32+0x6b/0xd0
[  601.099281][T14571]  do_SYSENTER_32+0x73/0x90
[  601.103789][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  601.110106][T14571] 
[  601.112431][T14571] Uninit was stored to memory at:
[  601.117464][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  601.123189][T14571]  __msan_chain_origin+0x50/0x90
[  601.128134][T14571]  __get_compat_msghdr+0x5be/0x890
[  601.133287][T14571]  get_compat_msghdr+0x108/0x270
[  601.138256][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  601.142766][T14571]  __sys_recvmmsg+0x4ca/0x510
[  601.147448][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  601.153521][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  601.159678][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  601.164883][T14571]  do_fast_syscall_32+0x6b/0xd0
[  601.169747][T14571]  do_SYSENTER_32+0x73/0x90
[  601.174256][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  601.180576][T14571] 
[  601.183003][T14571] Uninit was stored to memory at:
[  601.188042][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  601.193771][T14571]  __msan_chain_origin+0x50/0x90
[  601.198721][T14571]  __get_compat_msghdr+0x5be/0x890
[  601.203845][T14571]  get_compat_msghdr+0x108/0x270
[  601.208825][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  601.213334][T14571]  __sys_recvmmsg+0x4ca/0x510
[  601.218042][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  601.224141][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  601.230301][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  601.235508][T14571]  do_fast_syscall_32+0x6b/0xd0
[  601.240368][T14571]  do_SYSENTER_32+0x73/0x90
[  601.244879][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  601.251196][T14571] 
[  601.253525][T14571] Local variable ----msg_sys@do_recvmmsg created at:
[  601.260204][T14571]  do_recvmmsg+0xc5/0x1ee0
[  601.264629][T14571]  do_recvmmsg+0xc5/0x1ee0
[  601.434409][T14571] not chained 280000 origins
[  601.439049][T14571] CPU: 1 PID: 14571 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0
[  601.447721][T14571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  601.457776][T14571] Call Trace:
[  601.461085][T14571]  dump_stack+0x1df/0x240
[  601.465441][T14571]  kmsan_internal_chain_origin+0x6f/0x130
[  601.471175][T14571]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  601.477020][T14571]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  601.483099][T14571]  ? udp_recvmsg+0x1b8c/0x2100
[  601.487910][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  601.493064][T14571]  ? kmsan_set_origin_checked+0x95/0xf0
[  601.498622][T14571]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  601.504712][T14571]  ? _copy_from_user+0x15b/0x260
[  601.509661][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  601.514786][T14571]  __msan_chain_origin+0x50/0x90
[  601.519741][T14571]  __get_compat_msghdr+0x5be/0x890
[  601.524899][T14571]  get_compat_msghdr+0x108/0x270
[  601.529872][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  601.534411][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  601.540088][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  601.545213][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  601.550859][T14571]  ? __msan_poison_alloca+0xf0/0x120
[  601.556188][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  601.560972][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  601.565748][T14571]  ? kmsan_get_metadata+0x11d/0x180
[  601.570970][T14571]  __sys_recvmmsg+0x4ca/0x510
[  601.575682][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  601.581768][T14571]  ? __x32_compat_sys_recvmmsg_time64+0x80/0x80
[  601.588027][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  601.594201][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  601.599431][T14571]  do_fast_syscall_32+0x6b/0xd0
[  601.606041][T14571]  do_SYSENTER_32+0x73/0x90
[  601.610568][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  601.616906][T14571] RIP: 0023:0xf7f8d549
[  601.620992][T14571] Code: Bad RIP value.
[  601.625059][T14571] RSP: 002b:00000000f5d880cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  601.633483][T14571] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200004c0
[  601.641459][T14571] RDX: 00000000006fdaec RSI: 0000000000000022 RDI: 0000000000000000
[  601.649439][T14571] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  601.657418][T14571] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  601.665394][T14571] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  601.673515][T14571] Uninit was stored to memory at:
[  601.678558][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  601.684284][T14571]  __msan_chain_origin+0x50/0x90
[  601.689230][T14571]  __get_compat_msghdr+0x5be/0x890
[  601.694348][T14571]  get_compat_msghdr+0x108/0x270
[  601.699294][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  601.703892][T14571]  __sys_recvmmsg+0x4ca/0x510
[  601.708579][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  601.714655][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  601.720817][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  601.726031][T14571]  do_fast_syscall_32+0x6b/0xd0
[  601.730890][T14571]  do_SYSENTER_32+0x73/0x90
[  601.735402][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  601.741726][T14571] 
[  601.744056][T14571] Uninit was stored to memory at:
[  601.749090][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  601.754815][T14571]  __msan_chain_origin+0x50/0x90
[  601.759797][T14571]  __get_compat_msghdr+0x5be/0x890
[  601.764923][T14571]  get_compat_msghdr+0x108/0x270
[  601.769868][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  601.774381][T14571]  __sys_recvmmsg+0x4ca/0x510
[  601.779066][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  601.785143][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  601.791304][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  601.796518][T14571]  do_fast_syscall_32+0x6b/0xd0
[  601.801380][T14571]  do_SYSENTER_32+0x73/0x90
[  601.805892][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  601.812215][T14571] 
[  601.816729][T14571] Uninit was stored to memory at:
[  601.821796][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  601.827525][T14571]  __msan_chain_origin+0x50/0x90
[  601.832476][T14571]  __get_compat_msghdr+0x5be/0x890
[  601.837601][T14571]  get_compat_msghdr+0x108/0x270
[  601.842547][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  601.847058][T14571]  __sys_recvmmsg+0x4ca/0x510
[  601.851749][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  601.857824][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  601.864102][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  601.869314][T14571]  do_fast_syscall_32+0x6b/0xd0
[  601.874171][T14571]  do_SYSENTER_32+0x73/0x90
[  601.878681][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  601.884999][T14571] 
[  601.887324][T14571] Uninit was stored to memory at:
[  601.892381][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  601.898105][T14571]  __msan_chain_origin+0x50/0x90
[  601.903050][T14571]  __get_compat_msghdr+0x5be/0x890
[  601.908170][T14571]  get_compat_msghdr+0x108/0x270
[  601.913119][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  601.917628][T14571]  __sys_recvmmsg+0x4ca/0x510
[  601.922310][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  601.928383][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  601.934548][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  601.939755][T14571]  do_fast_syscall_32+0x6b/0xd0
[  601.944612][T14571]  do_SYSENTER_32+0x73/0x90
[  601.949124][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  601.955443][T14571] 
[  601.957767][T14571] Uninit was stored to memory at:
[  601.962802][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  601.968529][T14571]  __msan_chain_origin+0x50/0x90
[  601.973477][T14571]  __get_compat_msghdr+0x5be/0x890
[  601.978596][T14571]  get_compat_msghdr+0x108/0x270
[  601.983542][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  601.988054][T14571]  __sys_recvmmsg+0x4ca/0x510
[  601.992737][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  601.998807][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  602.004984][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  602.010190][T14571]  do_fast_syscall_32+0x6b/0xd0
[  602.015049][T14571]  do_SYSENTER_32+0x73/0x90
[  602.019558][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  602.025877][T14571] 
[  602.028210][T14571] Uninit was stored to memory at:
[  602.033244][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  602.038968][T14571]  __msan_chain_origin+0x50/0x90
[  602.043926][T14571]  __get_compat_msghdr+0x5be/0x890
[  602.049046][T14571]  get_compat_msghdr+0x108/0x270
[  602.053990][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  602.058591][T14571]  __sys_recvmmsg+0x4ca/0x510
[  602.063274][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  602.069347][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  602.075510][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  602.080720][T14571]  do_fast_syscall_32+0x6b/0xd0
[  602.085580][T14571]  do_SYSENTER_32+0x73/0x90
[  602.090094][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  602.096432][T14571] 
[  602.098758][T14571] Uninit was stored to memory at:
[  602.103812][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  602.109557][T14571]  __msan_chain_origin+0x50/0x90
[  602.114505][T14571]  __get_compat_msghdr+0x5be/0x890
[  602.119645][T14571]  get_compat_msghdr+0x108/0x270
[  602.124590][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  602.129118][T14571]  __sys_recvmmsg+0x4ca/0x510
[  602.133800][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  602.139870][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  602.146039][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  602.151248][T14571]  do_fast_syscall_32+0x6b/0xd0
[  602.156106][T14571]  do_SYSENTER_32+0x73/0x90
[  602.160615][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  602.166940][T14571] 
[  602.169268][T14571] Local variable ----msg_sys@do_recvmmsg created at:
[  602.175948][T14571]  do_recvmmsg+0xc5/0x1ee0
[  602.180369][T14571]  do_recvmmsg+0xc5/0x1ee0
[  602.344140][T14571] not chained 290000 origins
[  602.348776][T14571] CPU: 1 PID: 14571 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0
[  602.357458][T14571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  602.367632][T14571] Call Trace:
[  602.370943][T14571]  dump_stack+0x1df/0x240
[  602.375303][T14571]  kmsan_internal_chain_origin+0x6f/0x130
[  602.381039][T14571]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  602.386867][T14571]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  602.392948][T14571]  ? udp_recvmsg+0x1b8c/0x2100
[  602.397751][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  602.402873][T14571]  ? kmsan_set_origin_checked+0x95/0xf0
[  602.409400][T14571]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  602.415489][T14571]  ? _copy_from_user+0x15b/0x260
[  602.420438][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  602.425564][T14571]  __msan_chain_origin+0x50/0x90
[  602.430521][T14571]  __get_compat_msghdr+0x5be/0x890
[  602.435679][T14571]  get_compat_msghdr+0x108/0x270
[  602.440650][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  602.445182][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  602.450860][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  602.455990][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  602.461641][T14571]  ? __msan_poison_alloca+0xf0/0x120
[  602.466944][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  602.471715][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  602.476493][T14571]  ? kmsan_get_metadata+0x11d/0x180
[  602.481707][T14571]  __sys_recvmmsg+0x4ca/0x510
[  602.486413][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  602.492502][T14571]  ? __x32_compat_sys_recvmmsg_time64+0x80/0x80
[  602.498755][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  602.504926][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  602.510155][T14571]  do_fast_syscall_32+0x6b/0xd0
[  602.515021][T14571]  do_SYSENTER_32+0x73/0x90
[  602.519538][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  602.525873][T14571] RIP: 0023:0xf7f8d549
[  602.529939][T14571] Code: Bad RIP value.
[  602.534006][T14571] RSP: 002b:00000000f5d880cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  602.542418][T14571] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200004c0
[  602.550391][T14571] RDX: 00000000006fdaec RSI: 0000000000000022 RDI: 0000000000000000
[  602.558367][T14571] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  602.566346][T14571] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  602.574320][T14571] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  602.582313][T14571] Uninit was stored to memory at:
[  602.587350][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  602.593078][T14571]  __msan_chain_origin+0x50/0x90
[  602.598024][T14571]  __get_compat_msghdr+0x5be/0x890
[  602.603149][T14571]  get_compat_msghdr+0x108/0x270
[  602.608096][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  602.612609][T14571]  __sys_recvmmsg+0x4ca/0x510
[  602.617291][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  602.623362][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  602.629523][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  602.634732][T14571]  do_fast_syscall_32+0x6b/0xd0
[  602.639589][T14571]  do_SYSENTER_32+0x73/0x90
[  602.644098][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  602.650417][T14571] 
[  602.652739][T14571] Uninit was stored to memory at:
[  602.657772][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  602.663493][T14571]  __msan_chain_origin+0x50/0x90
[  602.668438][T14571]  __get_compat_msghdr+0x5be/0x890
[  602.673556][T14571]  get_compat_msghdr+0x108/0x270
[  602.678499][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  602.683026][T14571]  __sys_recvmmsg+0x4ca/0x510
[  602.687709][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  602.693784][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  602.699942][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  602.705149][T14571]  do_fast_syscall_32+0x6b/0xd0
[  602.710007][T14571]  do_SYSENTER_32+0x73/0x90
[  602.714515][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  602.720832][T14571] 
[  602.723161][T14571] Uninit was stored to memory at:
[  602.728194][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  602.733927][T14571]  __msan_chain_origin+0x50/0x90
[  602.738881][T14571]  __get_compat_msghdr+0x5be/0x890
[  602.744112][T14571]  get_compat_msghdr+0x108/0x270
[  602.749065][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  602.753579][T14571]  __sys_recvmmsg+0x4ca/0x510
[  602.758265][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  602.764343][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  602.770510][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  602.775718][T14571]  do_fast_syscall_32+0x6b/0xd0
[  602.780583][T14571]  do_SYSENTER_32+0x73/0x90
[  602.785095][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  602.791418][T14571] 
[  602.793746][T14571] Uninit was stored to memory at:
[  602.798788][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  602.804515][T14571]  __msan_chain_origin+0x50/0x90
[  602.809465][T14571]  __get_compat_msghdr+0x5be/0x890
[  602.814585][T14571]  get_compat_msghdr+0x108/0x270
[  602.819530][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  602.824045][T14571]  __sys_recvmmsg+0x4ca/0x510
[  602.828726][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  602.834803][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  602.840963][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  602.846171][T14571]  do_fast_syscall_32+0x6b/0xd0
[  602.851033][T14571]  do_SYSENTER_32+0x73/0x90
[  602.855544][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  602.861864][T14571] 
[  602.864191][T14571] Uninit was stored to memory at:
[  602.869224][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  602.874946][T14571]  __msan_chain_origin+0x50/0x90
[  602.879893][T14571]  __get_compat_msghdr+0x5be/0x890
[  602.885016][T14571]  get_compat_msghdr+0x108/0x270
[  602.889959][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  602.894469][T14571]  __sys_recvmmsg+0x4ca/0x510
[  602.899150][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  602.905224][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  602.911381][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  602.916587][T14571]  do_fast_syscall_32+0x6b/0xd0
[  602.921446][T14571]  do_SYSENTER_32+0x73/0x90
[  602.925956][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  602.932273][T14571] 
[  602.934599][T14571] Uninit was stored to memory at:
[  602.939631][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  602.945356][T14571]  __msan_chain_origin+0x50/0x90
[  602.950302][T14571]  __get_compat_msghdr+0x5be/0x890
[  602.955424][T14571]  get_compat_msghdr+0x108/0x270
[  602.960372][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  602.964885][T14571]  __sys_recvmmsg+0x4ca/0x510
[  602.969569][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  602.975639][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  602.981800][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  602.987031][T14571]  do_fast_syscall_32+0x6b/0xd0
[  602.991891][T14571]  do_SYSENTER_32+0x73/0x90
[  602.996403][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  603.002725][T14571] 
[  603.005053][T14571] Uninit was stored to memory at:
[  603.010088][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  603.015813][T14571]  __msan_chain_origin+0x50/0x90
[  603.020758][T14571]  __get_compat_msghdr+0x5be/0x890
[  603.025887][T14571]  get_compat_msghdr+0x108/0x270
[  603.030833][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  603.035346][T14571]  __sys_recvmmsg+0x4ca/0x510
[  603.040032][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  603.046107][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  603.052266][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  603.057475][T14571]  do_fast_syscall_32+0x6b/0xd0
[  603.062333][T14571]  do_SYSENTER_32+0x73/0x90
[  603.066842][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  603.073162][T14571] 
[  603.075491][T14571] Local variable ----msg_sys@do_recvmmsg created at:
[  603.082176][T14571]  do_recvmmsg+0xc5/0x1ee0
[  603.086599][T14571]  do_recvmmsg+0xc5/0x1ee0
[  603.247471][T14571] not chained 300000 origins
[  603.252106][T14571] CPU: 1 PID: 14571 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0
[  603.260777][T14571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  603.270841][T14571] Call Trace:
[  603.274152][T14571]  dump_stack+0x1df/0x240
[  603.278503][T14571]  kmsan_internal_chain_origin+0x6f/0x130
[  603.284235][T14571]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  603.290058][T14571]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  603.296135][T14571]  ? udp_recvmsg+0x1b8c/0x2100
[  603.300949][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  603.306073][T14571]  ? kmsan_set_origin_checked+0x95/0xf0
[  603.311635][T14571]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  603.317719][T14571]  ? _copy_from_user+0x15b/0x260
[  603.322674][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  603.327805][T14571]  __msan_chain_origin+0x50/0x90
[  603.332761][T14571]  __get_compat_msghdr+0x5be/0x890
[  603.337923][T14571]  get_compat_msghdr+0x108/0x270
[  603.342910][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  603.347445][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  603.353112][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  603.358243][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  603.363889][T14571]  ? __msan_poison_alloca+0xf0/0x120
[  603.369192][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  603.373965][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  603.378735][T14571]  ? kmsan_get_metadata+0x11d/0x180
[  603.383948][T14571]  __sys_recvmmsg+0x4ca/0x510
[  603.388660][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  603.394746][T14571]  ? __x32_compat_sys_recvmmsg_time64+0x80/0x80
[  603.400996][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  603.407162][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  603.412390][T14571]  do_fast_syscall_32+0x6b/0xd0
[  603.417256][T14571]  do_SYSENTER_32+0x73/0x90
[  603.421775][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  603.428111][T14571] RIP: 0023:0xf7f8d549
[  603.432174][T14571] Code: Bad RIP value.
[  603.436242][T14571] RSP: 002b:00000000f5d880cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  603.444659][T14571] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200004c0
[  603.452635][T14571] RDX: 00000000006fdaec RSI: 0000000000000022 RDI: 0000000000000000
[  603.460608][T14571] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  603.468583][T14571] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  603.476559][T14571] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  603.484555][T14571] Uninit was stored to memory at:
[  603.489592][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  603.495319][T14571]  __msan_chain_origin+0x50/0x90
[  603.500267][T14571]  __get_compat_msghdr+0x5be/0x890
[  603.505407][T14571]  get_compat_msghdr+0x108/0x270
[  603.510354][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  603.514880][T14571]  __sys_recvmmsg+0x4ca/0x510
[  603.519561][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  603.525635][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  603.531884][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  603.537090][T14571]  do_fast_syscall_32+0x6b/0xd0
[  603.541944][T14571]  do_SYSENTER_32+0x73/0x90
[  603.546451][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  603.552764][T14571] 
[  603.555091][T14571] Uninit was stored to memory at:
[  603.560120][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  603.565845][T14571]  __msan_chain_origin+0x50/0x90
[  603.570793][T14571]  __get_compat_msghdr+0x5be/0x890
[  603.575920][T14571]  get_compat_msghdr+0x108/0x270
[  603.580865][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  603.585375][T14571]  __sys_recvmmsg+0x4ca/0x510
[  603.590058][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  603.596130][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  603.602291][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  603.607495][T14571]  do_fast_syscall_32+0x6b/0xd0
[  603.612349][T14571]  do_SYSENTER_32+0x73/0x90
[  603.616855][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  603.623170][T14571] 
[  603.625497][T14571] Uninit was stored to memory at:
[  603.630529][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  603.636255][T14571]  __msan_chain_origin+0x50/0x90
[  603.641207][T14571]  __get_compat_msghdr+0x5be/0x890
[  603.646329][T14571]  get_compat_msghdr+0x108/0x270
[  603.651275][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  603.655785][T14571]  __sys_recvmmsg+0x4ca/0x510
[  603.660472][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  603.666546][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  603.672709][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  603.677915][T14571]  do_fast_syscall_32+0x6b/0xd0
[  603.682771][T14571]  do_SYSENTER_32+0x73/0x90
[  603.687285][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  603.693603][T14571] 
[  603.695929][T14571] Uninit was stored to memory at:
[  603.700958][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  603.706683][T14571]  __msan_chain_origin+0x50/0x90
[  603.711628][T14571]  __get_compat_msghdr+0x5be/0x890
[  603.716746][T14571]  get_compat_msghdr+0x108/0x270
[  603.721690][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  603.726199][T14571]  __sys_recvmmsg+0x4ca/0x510
[  603.730881][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  603.736955][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  603.743115][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  603.748323][T14571]  do_fast_syscall_32+0x6b/0xd0
[  603.753181][T14571]  do_SYSENTER_32+0x73/0x90
[  603.757688][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  603.764007][T14571] 
[  603.766330][T14571] Uninit was stored to memory at:
[  603.771366][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  603.777095][T14571]  __msan_chain_origin+0x50/0x90
[  603.782043][T14571]  __get_compat_msghdr+0x5be/0x890
[  603.787162][T14571]  get_compat_msghdr+0x108/0x270
[  603.792106][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  603.796616][T14571]  __sys_recvmmsg+0x4ca/0x510
[  603.801298][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  603.807369][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  603.813526][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  603.818734][T14571]  do_fast_syscall_32+0x6b/0xd0
[  603.823592][T14571]  do_SYSENTER_32+0x73/0x90
[  603.828104][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  603.834420][T14571] 
[  603.836742][T14571] Uninit was stored to memory at:
[  603.841774][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  603.847503][T14571]  __msan_chain_origin+0x50/0x90
[  603.852450][T14571]  __get_compat_msghdr+0x5be/0x890
[  603.857572][T14571]  get_compat_msghdr+0x108/0x270
[  603.862518][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  603.867030][T14571]  __sys_recvmmsg+0x4ca/0x510
[  603.871710][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  603.877790][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  603.883949][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  603.889156][T14571]  do_fast_syscall_32+0x6b/0xd0
[  603.894016][T14571]  do_SYSENTER_32+0x73/0x90
[  603.898525][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  603.904840][T14571] 
[  603.907170][T14571] Uninit was stored to memory at:
[  603.912204][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  603.917928][T14571]  __msan_chain_origin+0x50/0x90
[  603.922873][T14571]  __get_compat_msghdr+0x5be/0x890
[  603.927989][T14571]  get_compat_msghdr+0x108/0x270
[  603.932934][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  603.937439][T14571]  __sys_recvmmsg+0x4ca/0x510
[  603.942121][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  603.948194][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  603.954360][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  603.959565][T14571]  do_fast_syscall_32+0x6b/0xd0
[  603.964446][T14571]  do_SYSENTER_32+0x73/0x90
[  603.968954][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  603.975274][T14571] 
[  603.977600][T14571] Local variable ----msg_sys@do_recvmmsg created at:
[  603.984285][T14571]  do_recvmmsg+0xc5/0x1ee0
[  603.988707][T14571]  do_recvmmsg+0xc5/0x1ee0
[  604.156567][T14571] not chained 310000 origins
[  604.161207][T14571] CPU: 1 PID: 14571 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0
[  604.169878][T14571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  604.179933][T14571] Call Trace:
[  604.183240][T14571]  dump_stack+0x1df/0x240
[  604.187591][T14571]  kmsan_internal_chain_origin+0x6f/0x130
[  604.193317][T14571]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  604.199134][T14571]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  604.205212][T14571]  ? udp_recvmsg+0x1b8c/0x2100
[  604.210058][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  604.215181][T14571]  ? kmsan_set_origin_checked+0x95/0xf0
[  604.220741][T14571]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  604.226832][T14571]  ? _copy_from_user+0x15b/0x260
[  604.231781][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  604.236906][T14571]  __msan_chain_origin+0x50/0x90
[  604.241860][T14571]  __get_compat_msghdr+0x5be/0x890
[  604.247013][T14571]  get_compat_msghdr+0x108/0x270
[  604.251981][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  604.256543][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  604.262219][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  604.267344][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  604.272987][T14571]  ? __msan_poison_alloca+0xf0/0x120
[  604.278294][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  604.283066][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  604.287838][T14571]  ? kmsan_get_metadata+0x11d/0x180
[  604.293050][T14571]  __sys_recvmmsg+0x4ca/0x510
[  604.297759][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  604.303849][T14571]  ? __x32_compat_sys_recvmmsg_time64+0x80/0x80
[  604.310102][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  604.316267][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  604.321495][T14571]  do_fast_syscall_32+0x6b/0xd0
[  604.326364][T14571]  do_SYSENTER_32+0x73/0x90
[  604.330884][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  604.337215][T14571] RIP: 0023:0xf7f8d549
[  604.341276][T14571] Code: Bad RIP value.
[  604.345341][T14571] RSP: 002b:00000000f5d880cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  604.353754][T14571] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200004c0
[  604.361751][T14571] RDX: 00000000006fdaec RSI: 0000000000000022 RDI: 0000000000000000
[  604.369728][T14571] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  604.377701][T14571] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  604.385677][T14571] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  604.393688][T14571] Uninit was stored to memory at:
[  604.398723][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  604.404446][T14571]  __msan_chain_origin+0x50/0x90
[  604.409390][T14571]  __get_compat_msghdr+0x5be/0x890
[  604.414503][T14571]  get_compat_msghdr+0x108/0x270
[  604.419444][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  604.423952][T14571]  __sys_recvmmsg+0x4ca/0x510
[  604.428633][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  604.434702][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  604.440860][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  604.446067][T14571]  do_fast_syscall_32+0x6b/0xd0
[  604.450920][T14571]  do_SYSENTER_32+0x73/0x90
[  604.455429][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  604.461746][T14571] 
[  604.464076][T14571] Uninit was stored to memory at:
[  604.469107][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  604.474833][T14571]  __msan_chain_origin+0x50/0x90
[  604.479777][T14571]  __get_compat_msghdr+0x5be/0x890
[  604.484900][T14571]  get_compat_msghdr+0x108/0x270
[  604.489840][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  604.494351][T14571]  __sys_recvmmsg+0x4ca/0x510
[  604.499035][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  604.505108][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  604.511266][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  604.516478][T14571]  do_fast_syscall_32+0x6b/0xd0
[  604.521353][T14571]  do_SYSENTER_32+0x73/0x90
[  604.525859][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  604.532177][T14571] 
[  604.534495][T14571] Uninit was stored to memory at:
[  604.539522][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  604.545247][T14571]  __msan_chain_origin+0x50/0x90
[  604.550234][T14571]  __get_compat_msghdr+0x5be/0x890
[  604.555351][T14571]  get_compat_msghdr+0x108/0x270
[  604.560293][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  604.564804][T14571]  __sys_recvmmsg+0x4ca/0x510
[  604.569489][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  604.575559][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  604.581719][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  604.586923][T14571]  do_fast_syscall_32+0x6b/0xd0
[  604.591778][T14571]  do_SYSENTER_32+0x73/0x90
[  604.596294][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  604.602610][T14571] 
[  604.604932][T14571] Uninit was stored to memory at:
[  604.609960][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  604.615683][T14571]  __msan_chain_origin+0x50/0x90
[  604.620625][T14571]  __get_compat_msghdr+0x5be/0x890
[  604.625743][T14571]  get_compat_msghdr+0x108/0x270
[  604.630682][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  604.635188][T14571]  __sys_recvmmsg+0x4ca/0x510
[  604.639869][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  604.645939][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  604.652098][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  604.657305][T14571]  do_fast_syscall_32+0x6b/0xd0
[  604.662162][T14571]  do_SYSENTER_32+0x73/0x90
[  604.666679][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  604.672995][T14571] 
[  604.675316][T14571] Uninit was stored to memory at:
[  604.680346][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  604.686083][T14571]  __msan_chain_origin+0x50/0x90
[  604.691033][T14571]  __get_compat_msghdr+0x5be/0x890
[  604.696154][T14571]  get_compat_msghdr+0x108/0x270
[  604.701097][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  604.705605][T14571]  __sys_recvmmsg+0x4ca/0x510
[  604.710285][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  604.716357][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  604.722514][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  604.727720][T14571]  do_fast_syscall_32+0x6b/0xd0
[  604.732577][T14571]  do_SYSENTER_32+0x73/0x90
[  604.737082][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  604.743401][T14571] 
[  604.745724][T14571] Uninit was stored to memory at:
[  604.750756][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  604.756486][T14571]  __msan_chain_origin+0x50/0x90
[  604.761433][T14571]  __get_compat_msghdr+0x5be/0x890
[  604.766636][T14571]  get_compat_msghdr+0x108/0x270
[  604.771579][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  604.776093][T14571]  __sys_recvmmsg+0x4ca/0x510
[  604.780785][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  604.786864][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  604.793025][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  604.798240][T14571]  do_fast_syscall_32+0x6b/0xd0
[  604.803101][T14571]  do_SYSENTER_32+0x73/0x90
[  604.807610][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  604.813926][T14571] 
[  604.816250][T14571] Uninit was stored to memory at:
[  604.821280][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  604.827071][T14571]  __msan_chain_origin+0x50/0x90
[  604.832018][T14571]  __get_compat_msghdr+0x5be/0x890
[  604.837135][T14571]  get_compat_msghdr+0x108/0x270
[  604.842079][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  604.846597][T14571]  __sys_recvmmsg+0x4ca/0x510
[  604.851280][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  604.857355][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  604.863536][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  604.868741][T14571]  do_fast_syscall_32+0x6b/0xd0
[  604.873604][T14571]  do_SYSENTER_32+0x73/0x90
[  604.878114][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  604.884446][T14571] 
[  604.886767][T14571] Local variable ----msg_sys@do_recvmmsg created at:
[  604.893451][T14571]  do_recvmmsg+0xc5/0x1ee0
[  604.897871][T14571]  do_recvmmsg+0xc5/0x1ee0
[  605.056885][T14571] not chained 320000 origins
[  605.061523][T14571] CPU: 1 PID: 14571 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0
[  605.070223][T14571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  605.080280][T14571] Call Trace:
[  605.083590][T14571]  dump_stack+0x1df/0x240
[  605.087942][T14571]  kmsan_internal_chain_origin+0x6f/0x130
[  605.093671][T14571]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  605.099490][T14571]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  605.105568][T14571]  ? udp_recvmsg+0x1b8c/0x2100
[  605.110383][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  605.115533][T14571]  ? kmsan_set_origin_checked+0x95/0xf0
[  605.121095][T14571]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  605.127183][T14571]  ? _copy_from_user+0x15b/0x260
[  605.132132][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  605.137256][T14571]  __msan_chain_origin+0x50/0x90
[  605.142215][T14571]  __get_compat_msghdr+0x5be/0x890
[  605.147708][T14571]  get_compat_msghdr+0x108/0x270
[  605.152676][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  605.157210][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  605.162880][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  605.168003][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  605.173653][T14571]  ? __msan_poison_alloca+0xf0/0x120
[  605.178951][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  605.183723][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  605.188495][T14571]  ? kmsan_get_metadata+0x11d/0x180
[  605.193710][T14571]  __sys_recvmmsg+0x4ca/0x510
[  605.198422][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  605.204512][T14571]  ? __x32_compat_sys_recvmmsg_time64+0x80/0x80
[  605.210790][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  605.216959][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  605.222182][T14571]  do_fast_syscall_32+0x6b/0xd0
[  605.227073][T14571]  do_SYSENTER_32+0x73/0x90
[  605.231594][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  605.237922][T14571] RIP: 0023:0xf7f8d549
[  605.241983][T14571] Code: Bad RIP value.
[  605.246050][T14571] RSP: 002b:00000000f5d880cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  605.254466][T14571] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200004c0
[  605.262439][T14571] RDX: 00000000006fdaec RSI: 0000000000000022 RDI: 0000000000000000
[  605.270413][T14571] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  605.278390][T14571] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  605.286367][T14571] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  605.294359][T14571] Uninit was stored to memory at:
[  605.299394][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  605.305118][T14571]  __msan_chain_origin+0x50/0x90
[  605.310064][T14571]  __get_compat_msghdr+0x5be/0x890
[  605.315181][T14571]  get_compat_msghdr+0x108/0x270
[  605.320125][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  605.324632][T14571]  __sys_recvmmsg+0x4ca/0x510
[  605.329313][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  605.335383][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  605.341543][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  605.346749][T14571]  do_fast_syscall_32+0x6b/0xd0
[  605.351611][T14571]  do_SYSENTER_32+0x73/0x90
[  605.356121][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  605.362436][T14571] 
[  605.364757][T14571] Uninit was stored to memory at:
[  605.369798][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  605.375527][T14571]  __msan_chain_origin+0x50/0x90
[  605.380478][T14571]  __get_compat_msghdr+0x5be/0x890
[  605.385595][T14571]  get_compat_msghdr+0x108/0x270
[  605.390542][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  605.395050][T14571]  __sys_recvmmsg+0x4ca/0x510
[  605.399730][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  605.405804][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  605.411961][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  605.417167][T14571]  do_fast_syscall_32+0x6b/0xd0
[  605.422024][T14571]  do_SYSENTER_32+0x73/0x90
[  605.426533][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  605.432850][T14571] 
[  605.435171][T14571] Uninit was stored to memory at:
[  605.440209][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  605.445932][T14571]  __msan_chain_origin+0x50/0x90
[  605.450878][T14571]  __get_compat_msghdr+0x5be/0x890
[  605.455997][T14571]  get_compat_msghdr+0x108/0x270
[  605.460940][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  605.465447][T14571]  __sys_recvmmsg+0x4ca/0x510
[  605.470128][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  605.476198][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  605.482356][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  605.487561][T14571]  do_fast_syscall_32+0x6b/0xd0
[  605.492449][T14571]  do_SYSENTER_32+0x73/0x90
[  605.496952][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  605.503270][T14571] 
[  605.505595][T14571] Uninit was stored to memory at:
[  605.510626][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  605.516351][T14571]  __msan_chain_origin+0x50/0x90
[  605.521294][T14571]  __get_compat_msghdr+0x5be/0x890
[  605.526413][T14571]  get_compat_msghdr+0x108/0x270
[  605.531797][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  605.536308][T14571]  __sys_recvmmsg+0x4ca/0x510
[  605.540994][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  605.547069][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  605.553229][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  605.558436][T14571]  do_fast_syscall_32+0x6b/0xd0
[  605.563294][T14571]  do_SYSENTER_32+0x73/0x90
[  605.567807][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  605.574121][T14571] 
[  605.576443][T14571] Uninit was stored to memory at:
[  605.581476][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  605.587201][T14571]  __msan_chain_origin+0x50/0x90
[  605.592148][T14571]  __get_compat_msghdr+0x5be/0x890
[  605.597268][T14571]  get_compat_msghdr+0x108/0x270
[  605.602215][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  605.606722][T14571]  __sys_recvmmsg+0x4ca/0x510
[  605.611404][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  605.617478][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  605.623638][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  605.628844][T14571]  do_fast_syscall_32+0x6b/0xd0
[  605.633699][T14571]  do_SYSENTER_32+0x73/0x90
[  605.638212][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  605.644533][T14571] 
[  605.646864][T14571] Uninit was stored to memory at:
[  605.651896][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  605.657622][T14571]  __msan_chain_origin+0x50/0x90
[  605.662578][T14571]  __get_compat_msghdr+0x5be/0x890
[  605.667698][T14571]  get_compat_msghdr+0x108/0x270
[  605.672640][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  605.677149][T14571]  __sys_recvmmsg+0x4ca/0x510
[  605.681833][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  605.687912][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  605.694073][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  605.699292][T14571]  do_fast_syscall_32+0x6b/0xd0
[  605.704149][T14571]  do_SYSENTER_32+0x73/0x90
[  605.708659][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  605.714979][T14571] 
[  605.717302][T14571] Uninit was stored to memory at:
[  605.722336][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  605.728060][T14571]  __msan_chain_origin+0x50/0x90
[  605.733004][T14571]  __get_compat_msghdr+0x5be/0x890
[  605.738122][T14571]  get_compat_msghdr+0x108/0x270
[  605.743085][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  605.747594][T14571]  __sys_recvmmsg+0x4ca/0x510
[  605.752374][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  605.758456][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  605.764617][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  605.769839][T14571]  do_fast_syscall_32+0x6b/0xd0
[  605.774705][T14571]  do_SYSENTER_32+0x73/0x90
[  605.779221][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  605.785540][T14571] 
[  605.787868][T14571] Local variable ----msg_sys@do_recvmmsg created at:
[  605.794547][T14571]  do_recvmmsg+0xc5/0x1ee0
[  605.798967][T14571]  do_recvmmsg+0xc5/0x1ee0
[  605.996014][T14571] not chained 330000 origins
[  606.008569][T14571] CPU: 1 PID: 14571 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0
[  606.017239][T14571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  606.027293][T14571] Call Trace:
[  606.030597][T14571]  dump_stack+0x1df/0x240
[  606.034952][T14571]  kmsan_internal_chain_origin+0x6f/0x130
[  606.040680][T14571]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  606.046497][T14571]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  606.052575][T14571]  ? udp_recvmsg+0x1b8c/0x2100
[  606.057386][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  606.062510][T14571]  ? kmsan_set_origin_checked+0x95/0xf0
[  606.068072][T14571]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  606.074160][T14571]  ? _copy_from_user+0x15b/0x260
[  606.079107][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  606.084229][T14571]  __msan_chain_origin+0x50/0x90
[  606.089188][T14571]  __get_compat_msghdr+0x5be/0x890
[  606.094341][T14571]  get_compat_msghdr+0x108/0x270
[  606.099308][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  606.103844][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  606.109514][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  606.114633][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  606.120276][T14571]  ? __msan_poison_alloca+0xf0/0x120
[  606.125578][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  606.130349][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  606.135125][T14571]  ? kmsan_get_metadata+0x11d/0x180
[  606.140336][T14571]  __sys_recvmmsg+0x4ca/0x510
[  606.145048][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  606.151143][T14571]  ? __x32_compat_sys_recvmmsg_time64+0x80/0x80
[  606.157398][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  606.163561][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  606.168783][T14571]  do_fast_syscall_32+0x6b/0xd0
[  606.173653][T14571]  do_SYSENTER_32+0x73/0x90
[  606.178169][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  606.184499][T14571] RIP: 0023:0xf7f8d549
[  606.188559][T14571] Code: Bad RIP value.
[  606.192624][T14571] RSP: 002b:00000000f5d880cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  606.201059][T14571] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200004c0
[  606.209033][T14571] RDX: 00000000006fdaec RSI: 0000000000000022 RDI: 0000000000000000
[  606.217006][T14571] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  606.224990][T14571] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  606.232967][T14571] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  606.240965][T14571] Uninit was stored to memory at:
[  606.246002][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  606.251727][T14571]  __msan_chain_origin+0x50/0x90
[  606.256675][T14571]  __get_compat_msghdr+0x5be/0x890
[  606.261792][T14571]  get_compat_msghdr+0x108/0x270
[  606.266744][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  606.271252][T14571]  __sys_recvmmsg+0x4ca/0x510
[  606.275938][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  606.282012][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  606.288177][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  606.293393][T14571]  do_fast_syscall_32+0x6b/0xd0
[  606.298252][T14571]  do_SYSENTER_32+0x73/0x90
[  606.302764][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  606.309104][T14571] 
[  606.311431][T14571] Uninit was stored to memory at:
[  606.316463][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  606.322190][T14571]  __msan_chain_origin+0x50/0x90
[  606.327138][T14571]  __get_compat_msghdr+0x5be/0x890
[  606.332254][T14571]  get_compat_msghdr+0x108/0x270
[  606.337201][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  606.341714][T14571]  __sys_recvmmsg+0x4ca/0x510
[  606.346396][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  606.352467][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  606.358627][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  606.363834][T14571]  do_fast_syscall_32+0x6b/0xd0
[  606.368689][T14571]  do_SYSENTER_32+0x73/0x90
[  606.373198][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  606.379516][T14571] 
[  606.381840][T14571] Uninit was stored to memory at:
[  606.386871][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  606.392593][T14571]  __msan_chain_origin+0x50/0x90
[  606.397538][T14571]  __get_compat_msghdr+0x5be/0x890
[  606.402655][T14571]  get_compat_msghdr+0x108/0x270
[  606.407598][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  606.412109][T14571]  __sys_recvmmsg+0x4ca/0x510
[  606.416790][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  606.422866][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  606.429021][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  606.434228][T14571]  do_fast_syscall_32+0x6b/0xd0
[  606.439085][T14571]  do_SYSENTER_32+0x73/0x90
[  606.443590][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  606.449904][T14571] 
[  606.452227][T14571] Uninit was stored to memory at:
[  606.457263][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  606.462986][T14571]  __msan_chain_origin+0x50/0x90
[  606.467945][T14571]  __get_compat_msghdr+0x5be/0x890
[  606.473065][T14571]  get_compat_msghdr+0x108/0x270
[  606.478011][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  606.482521][T14571]  __sys_recvmmsg+0x4ca/0x510
[  606.487200][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  606.493272][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  606.499430][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  606.504634][T14571]  do_fast_syscall_32+0x6b/0xd0
[  606.509515][T14571]  do_SYSENTER_32+0x73/0x90
[  606.514028][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  606.520373][T14571] 
[  606.522697][T14571] Uninit was stored to memory at:
[  606.527729][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  606.533456][T14571]  __msan_chain_origin+0x50/0x90
[  606.538404][T14571]  __get_compat_msghdr+0x5be/0x890
[  606.543520][T14571]  get_compat_msghdr+0x108/0x270
[  606.548459][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  606.552967][T14571]  __sys_recvmmsg+0x4ca/0x510
[  606.557649][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  606.563719][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  606.569877][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  606.575087][T14571]  do_fast_syscall_32+0x6b/0xd0
[  606.579949][T14571]  do_SYSENTER_32+0x73/0x90
[  606.584460][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  606.590777][T14571] 
[  606.593109][T14571] Uninit was stored to memory at:
[  606.598141][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  606.603864][T14571]  __msan_chain_origin+0x50/0x90
[  606.608816][T14571]  __get_compat_msghdr+0x5be/0x890
[  606.613945][T14571]  get_compat_msghdr+0x108/0x270
[  606.618891][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  606.623400][T14571]  __sys_recvmmsg+0x4ca/0x510
[  606.628083][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  606.634154][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  606.640313][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  606.645530][T14571]  do_fast_syscall_32+0x6b/0xd0
[  606.650392][T14571]  do_SYSENTER_32+0x73/0x90
[  606.654904][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  606.661223][T14571] 
[  606.663552][T14571] Uninit was stored to memory at:
[  606.668583][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  606.674307][T14571]  __msan_chain_origin+0x50/0x90
[  606.679253][T14571]  __get_compat_msghdr+0x5be/0x890
[  606.684380][T14571]  get_compat_msghdr+0x108/0x270
[  606.689325][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  606.693835][T14571]  __sys_recvmmsg+0x4ca/0x510
[  606.698521][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  606.704594][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  606.710754][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  606.715960][T14571]  do_fast_syscall_32+0x6b/0xd0
[  606.720862][T14571]  do_SYSENTER_32+0x73/0x90
[  606.725372][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  606.731688][T14571] 
[  606.734041][T14571] Local variable ----msg_sys@do_recvmmsg created at:
[  606.740722][T14571]  do_recvmmsg+0xc5/0x1ee0
[  606.745145][T14571]  do_recvmmsg+0xc5/0x1ee0
[  606.910216][T14571] not chained 340000 origins
[  606.914854][T14571] CPU: 1 PID: 14571 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0
[  606.923529][T14571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  606.933587][T14571] Call Trace:
[  606.936897][T14571]  dump_stack+0x1df/0x240
[  606.941250][T14571]  kmsan_internal_chain_origin+0x6f/0x130
[  606.946999][T14571]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  606.952828][T14571]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  606.958910][T14571]  ? udp_recvmsg+0x1b8c/0x2100
[  606.963726][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  606.968851][T14571]  ? kmsan_set_origin_checked+0x95/0xf0
[  606.974412][T14571]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  606.980502][T14571]  ? _copy_from_user+0x15b/0x260
[  606.985454][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  606.990579][T14571]  __msan_chain_origin+0x50/0x90
[  606.995537][T14571]  __get_compat_msghdr+0x5be/0x890
[  607.000725][T14571]  get_compat_msghdr+0x108/0x270
[  607.005693][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  607.010232][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  607.015908][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  607.021034][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  607.026676][T14571]  ? __msan_poison_alloca+0xf0/0x120
[  607.031976][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  607.036750][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  607.041525][T14571]  ? kmsan_get_metadata+0x11d/0x180
[  607.046737][T14571]  __sys_recvmmsg+0x4ca/0x510
[  607.051447][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  607.057535][T14571]  ? __x32_compat_sys_recvmmsg_time64+0x80/0x80
[  607.063813][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  607.069981][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  607.075208][T14571]  do_fast_syscall_32+0x6b/0xd0
[  607.080076][T14571]  do_SYSENTER_32+0x73/0x90
[  607.084593][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  607.090921][T14571] RIP: 0023:0xf7f8d549
[  607.094993][T14571] Code: Bad RIP value.
[  607.099058][T14571] RSP: 002b:00000000f5d880cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  607.107474][T14571] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200004c0
[  607.115473][T14571] RDX: 00000000006fdaec RSI: 0000000000000022 RDI: 0000000000000000
[  607.123450][T14571] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  607.131424][T14571] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  607.139404][T14571] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  607.147402][T14571] Uninit was stored to memory at:
[  607.152442][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  607.158167][T14571]  __msan_chain_origin+0x50/0x90
[  607.163121][T14571]  __get_compat_msghdr+0x5be/0x890
[  607.168244][T14571]  get_compat_msghdr+0x108/0x270
[  607.173192][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  607.177701][T14571]  __sys_recvmmsg+0x4ca/0x510
[  607.182381][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  607.188453][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  607.194613][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  607.199825][T14571]  do_fast_syscall_32+0x6b/0xd0
[  607.204683][T14571]  do_SYSENTER_32+0x73/0x90
[  607.209192][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  607.215509][T14571] 
[  607.217831][T14571] Uninit was stored to memory at:
[  607.222864][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  607.228591][T14571]  __msan_chain_origin+0x50/0x90
[  607.233535][T14571]  __get_compat_msghdr+0x5be/0x890
[  607.238652][T14571]  get_compat_msghdr+0x108/0x270
[  607.243596][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  607.248107][T14571]  __sys_recvmmsg+0x4ca/0x510
[  607.252788][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  607.258862][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  607.265021][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  607.270228][T14571]  do_fast_syscall_32+0x6b/0xd0
[  607.275085][T14571]  do_SYSENTER_32+0x73/0x90
[  607.279593][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  607.285910][T14571] 
[  607.288241][T14571] Uninit was stored to memory at:
[  607.293272][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  607.298993][T14571]  __msan_chain_origin+0x50/0x90
[  607.303969][T14571]  __get_compat_msghdr+0x5be/0x890
[  607.309087][T14571]  get_compat_msghdr+0x108/0x270
[  607.314036][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  607.318550][T14571]  __sys_recvmmsg+0x4ca/0x510
[  607.323231][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  607.329300][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  607.335458][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  607.340663][T14571]  do_fast_syscall_32+0x6b/0xd0
[  607.345520][T14571]  do_SYSENTER_32+0x73/0x90
[  607.350029][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  607.356350][T14571] 
[  607.358673][T14571] Uninit was stored to memory at:
[  607.363705][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  607.369428][T14571]  __msan_chain_origin+0x50/0x90
[  607.374374][T14571]  __get_compat_msghdr+0x5be/0x890
[  607.379493][T14571]  get_compat_msghdr+0x108/0x270
[  607.384439][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  607.388950][T14571]  __sys_recvmmsg+0x4ca/0x510
[  607.393629][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  607.399697][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  607.405854][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  607.411058][T14571]  do_fast_syscall_32+0x6b/0xd0
[  607.415915][T14571]  do_SYSENTER_32+0x73/0x90
[  607.420425][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  607.426743][T14571] 
[  607.429068][T14571] Uninit was stored to memory at:
[  607.434101][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  607.439827][T14571]  __msan_chain_origin+0x50/0x90
[  607.444776][T14571]  __get_compat_msghdr+0x5be/0x890
[  607.449897][T14571]  get_compat_msghdr+0x108/0x270
[  607.454845][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  607.459353][T14571]  __sys_recvmmsg+0x4ca/0x510
[  607.464040][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  607.470111][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  607.476273][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  607.481478][T14571]  do_fast_syscall_32+0x6b/0xd0
[  607.486332][T14571]  do_SYSENTER_32+0x73/0x90
[  607.490845][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  607.497201][T14571] 
[  607.499524][T14571] Uninit was stored to memory at:
[  607.504559][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  607.510454][T14571]  __msan_chain_origin+0x50/0x90
[  607.515399][T14571]  __get_compat_msghdr+0x5be/0x890
[  607.520523][T14571]  get_compat_msghdr+0x108/0x270
[  607.525467][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  607.529977][T14571]  __sys_recvmmsg+0x4ca/0x510
[  607.534657][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  607.540727][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  607.546927][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  607.552138][T14571]  do_fast_syscall_32+0x6b/0xd0
[  607.556994][T14571]  do_SYSENTER_32+0x73/0x90
[  607.561503][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  607.567821][T14571] 
[  607.570145][T14571] Uninit was stored to memory at:
[  607.575178][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  607.580903][T14571]  __msan_chain_origin+0x50/0x90
[  607.585850][T14571]  __get_compat_msghdr+0x5be/0x890
[  607.590971][T14571]  get_compat_msghdr+0x108/0x270
[  607.595916][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  607.600425][T14571]  __sys_recvmmsg+0x4ca/0x510
[  607.605108][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  607.611185][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  607.617345][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  607.622554][T14571]  do_fast_syscall_32+0x6b/0xd0
[  607.627408][T14571]  do_SYSENTER_32+0x73/0x90
[  607.631915][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  607.638232][T14571] 
[  607.640561][T14571] Local variable ----msg_sys@do_recvmmsg created at:
[  607.647244][T14571]  do_recvmmsg+0xc5/0x1ee0
[  607.651669][T14571]  do_recvmmsg+0xc5/0x1ee0
[  607.826349][T14571] not chained 350000 origins
[  607.830986][T14571] CPU: 1 PID: 14571 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0
[  607.839655][T14571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  607.849716][T14571] Call Trace:
[  607.853024][T14571]  dump_stack+0x1df/0x240
[  607.857400][T14571]  kmsan_internal_chain_origin+0x6f/0x130
[  607.863148][T14571]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  607.868976][T14571]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  607.875057][T14571]  ? udp_recvmsg+0x1b8c/0x2100
[  607.879875][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  607.885006][T14571]  ? kmsan_set_origin_checked+0x95/0xf0
[  607.890564][T14571]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  607.896656][T14571]  ? _copy_from_user+0x15b/0x260
[  607.901603][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  607.906733][T14571]  __msan_chain_origin+0x50/0x90
[  607.911693][T14571]  __get_compat_msghdr+0x5be/0x890
[  607.916861][T14571]  get_compat_msghdr+0x108/0x270
[  607.921839][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  607.926377][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  607.932043][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  607.937171][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  607.942824][T14571]  ? __msan_poison_alloca+0xf0/0x120
[  607.948128][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  607.952900][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  607.957675][T14571]  ? kmsan_get_metadata+0x11d/0x180
[  607.962890][T14571]  __sys_recvmmsg+0x4ca/0x510
[  607.967601][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  607.973686][T14571]  ? __x32_compat_sys_recvmmsg_time64+0x80/0x80
[  607.979938][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  607.986120][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  607.991344][T14571]  do_fast_syscall_32+0x6b/0xd0
[  607.996215][T14571]  do_SYSENTER_32+0x73/0x90
[  608.000731][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  608.007061][T14571] RIP: 0023:0xf7f8d549
[  608.011125][T14571] Code: Bad RIP value.
[  608.015194][T14571] RSP: 002b:00000000f5d880cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  608.023611][T14571] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200004c0
[  608.031607][T14571] RDX: 00000000006fdaec RSI: 0000000000000022 RDI: 0000000000000000
[  608.039582][T14571] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  608.047558][T14571] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  608.055540][T14571] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  608.063538][T14571] Uninit was stored to memory at:
[  608.068573][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  608.074299][T14571]  __msan_chain_origin+0x50/0x90
[  608.079244][T14571]  __get_compat_msghdr+0x5be/0x890
[  608.084361][T14571]  get_compat_msghdr+0x108/0x270
[  608.089305][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  608.093859][T14571]  __sys_recvmmsg+0x4ca/0x510
[  608.098540][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  608.104613][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  608.110776][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  608.115988][T14571]  do_fast_syscall_32+0x6b/0xd0
[  608.120854][T14571]  do_SYSENTER_32+0x73/0x90
[  608.125364][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  608.131681][T14571] 
[  608.134006][T14571] Uninit was stored to memory at:
[  608.139041][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  608.144765][T14571]  __msan_chain_origin+0x50/0x90
[  608.149711][T14571]  __get_compat_msghdr+0x5be/0x890
[  608.154832][T14571]  get_compat_msghdr+0x108/0x270
[  608.159776][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  608.164292][T14571]  __sys_recvmmsg+0x4ca/0x510
[  608.168974][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  608.175048][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  608.181210][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  608.186417][T14571]  do_fast_syscall_32+0x6b/0xd0
[  608.191275][T14571]  do_SYSENTER_32+0x73/0x90
[  608.195782][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  608.202104][T14571] 
[  608.204432][T14571] Uninit was stored to memory at:
[  608.209467][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  608.215191][T14571]  __msan_chain_origin+0x50/0x90
[  608.220141][T14571]  __get_compat_msghdr+0x5be/0x890
[  608.225261][T14571]  get_compat_msghdr+0x108/0x270
[  608.230206][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  608.234720][T14571]  __sys_recvmmsg+0x4ca/0x510
[  608.239402][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  608.245476][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  608.251636][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  608.256850][T14571]  do_fast_syscall_32+0x6b/0xd0
[  608.261709][T14571]  do_SYSENTER_32+0x73/0x90
[  608.266217][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  608.272532][T14571] 
[  608.274856][T14571] Uninit was stored to memory at:
[  608.279891][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  608.285616][T14571]  __msan_chain_origin+0x50/0x90
[  608.290564][T14571]  __get_compat_msghdr+0x5be/0x890
[  608.295691][T14571]  get_compat_msghdr+0x108/0x270
[  608.300636][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  608.305155][T14571]  __sys_recvmmsg+0x4ca/0x510
[  608.309894][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  608.315965][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  608.322129][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  608.327338][T14571]  do_fast_syscall_32+0x6b/0xd0
[  608.332196][T14571]  do_SYSENTER_32+0x73/0x90
[  608.336707][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  608.343026][T14571] 
[  608.345353][T14571] Uninit was stored to memory at:
[  608.350384][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  608.356106][T14571]  __msan_chain_origin+0x50/0x90
[  608.361054][T14571]  __get_compat_msghdr+0x5be/0x890
[  608.366171][T14571]  get_compat_msghdr+0x108/0x270
[  608.371117][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  608.375627][T14571]  __sys_recvmmsg+0x4ca/0x510
[  608.380309][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  608.386384][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  608.392544][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  608.397748][T14571]  do_fast_syscall_32+0x6b/0xd0
[  608.402605][T14571]  do_SYSENTER_32+0x73/0x90
[  608.407113][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  608.413431][T14571] 
[  608.415755][T14571] Uninit was stored to memory at:
[  608.420786][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  608.426537][T14571]  __msan_chain_origin+0x50/0x90
[  608.431485][T14571]  __get_compat_msghdr+0x5be/0x890
[  608.436605][T14571]  get_compat_msghdr+0x108/0x270
[  608.441550][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  608.446061][T14571]  __sys_recvmmsg+0x4ca/0x510
[  608.450744][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  608.456823][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  608.463003][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  608.468217][T14571]  do_fast_syscall_32+0x6b/0xd0
[  608.473078][T14571]  do_SYSENTER_32+0x73/0x90
[  608.477583][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  608.483908][T14571] 
[  608.486236][T14571] Uninit was stored to memory at:
[  608.491268][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  608.496996][T14571]  __msan_chain_origin+0x50/0x90
[  608.501942][T14571]  __get_compat_msghdr+0x5be/0x890
[  608.507059][T14571]  get_compat_msghdr+0x108/0x270
[  608.512003][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  608.516511][T14571]  __sys_recvmmsg+0x4ca/0x510
[  608.521194][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  608.527269][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  608.533429][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  608.538636][T14571]  do_fast_syscall_32+0x6b/0xd0
[  608.543500][T14571]  do_SYSENTER_32+0x73/0x90
[  608.548008][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  608.554325][T14571] 
[  608.556651][T14571] Local variable ----msg_sys@do_recvmmsg created at:
[  608.563334][T14571]  do_recvmmsg+0xc5/0x1ee0
[  608.567756][T14571]  do_recvmmsg+0xc5/0x1ee0
[  608.855879][T14571] not chained 360000 origins
[  608.860517][T14571] CPU: 0 PID: 14571 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0
[  608.869186][T14571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  608.879242][T14571] Call Trace:
[  608.882550][T14571]  dump_stack+0x1df/0x240
[  608.886904][T14571]  kmsan_internal_chain_origin+0x6f/0x130
[  608.892632][T14571]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  608.898449][T14571]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  608.904527][T14571]  ? udp_recvmsg+0x1b8c/0x2100
[  608.909337][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  608.914457][T14571]  ? kmsan_set_origin_checked+0x95/0xf0
[  608.920013][T14571]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  608.926096][T14571]  ? _copy_from_user+0x15b/0x260
[  608.931042][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  608.936165][T14571]  __msan_chain_origin+0x50/0x90
[  608.941123][T14571]  __get_compat_msghdr+0x5be/0x890
[  608.946276][T14571]  get_compat_msghdr+0x108/0x270
[  608.951279][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  608.955820][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  608.961490][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  608.966614][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  608.972261][T14571]  ? __msan_poison_alloca+0xf0/0x120
[  608.977559][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  608.982329][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  608.987100][T14571]  ? kmsan_get_metadata+0x11d/0x180
[  608.992314][T14571]  __sys_recvmmsg+0x4ca/0x510
[  608.997023][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  609.003125][T14571]  ? __x32_compat_sys_recvmmsg_time64+0x80/0x80
[  609.009375][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  609.015542][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  609.020766][T14571]  do_fast_syscall_32+0x6b/0xd0
[  609.025632][T14571]  do_SYSENTER_32+0x73/0x90
[  609.030147][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  609.036477][T14571] RIP: 0023:0xf7f8d549
[  609.040540][T14571] Code: Bad RIP value.
[  609.044608][T14571] RSP: 002b:00000000f5d880cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  609.053027][T14571] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200004c0
[  609.061002][T14571] RDX: 00000000006fdaec RSI: 0000000000000022 RDI: 0000000000000000
[  609.068973][T14571] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  609.076949][T14571] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  609.084923][T14571] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  609.092920][T14571] Uninit was stored to memory at:
[  609.097969][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  609.103694][T14571]  __msan_chain_origin+0x50/0x90
[  609.108640][T14571]  __get_compat_msghdr+0x5be/0x890
[  609.113756][T14571]  get_compat_msghdr+0x108/0x270
[  609.118701][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  609.123210][T14571]  __sys_recvmmsg+0x4ca/0x510
[  609.127889][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  609.133977][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  609.140135][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  609.145340][T14571]  do_fast_syscall_32+0x6b/0xd0
[  609.150196][T14571]  do_SYSENTER_32+0x73/0x90
[  609.154703][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  609.161020][T14571] 
[  609.163344][T14571] Uninit was stored to memory at:
[  609.168377][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  609.174101][T14571]  __msan_chain_origin+0x50/0x90
[  609.179074][T14571]  __get_compat_msghdr+0x5be/0x890
[  609.184190][T14571]  get_compat_msghdr+0x108/0x270
[  609.189151][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  609.193660][T14571]  __sys_recvmmsg+0x4ca/0x510
[  609.198340][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  609.204409][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  609.210566][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  609.215771][T14571]  do_fast_syscall_32+0x6b/0xd0
[  609.220641][T14571]  do_SYSENTER_32+0x73/0x90
[  609.225151][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  609.231466][T14571] 
[  609.233794][T14571] Uninit was stored to memory at:
[  609.238825][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  609.244550][T14571]  __msan_chain_origin+0x50/0x90
[  609.249498][T14571]  __get_compat_msghdr+0x5be/0x890
[  609.254613][T14571]  get_compat_msghdr+0x108/0x270
[  609.259559][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  609.264067][T14571]  __sys_recvmmsg+0x4ca/0x510
[  609.268745][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  609.274816][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  609.280975][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  609.286182][T14571]  do_fast_syscall_32+0x6b/0xd0
[  609.291066][T14571]  do_SYSENTER_32+0x73/0x90
[  609.295574][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  609.301893][T14571] 
[  609.304222][T14571] Uninit was stored to memory at:
[  609.309254][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  609.314977][T14571]  __msan_chain_origin+0x50/0x90
[  609.319919][T14571]  __get_compat_msghdr+0x5be/0x890
[  609.325041][T14571]  get_compat_msghdr+0x108/0x270
[  609.329986][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  609.334493][T14571]  __sys_recvmmsg+0x4ca/0x510
[  609.339172][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  609.345245][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  609.351417][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  609.356624][T14571]  do_fast_syscall_32+0x6b/0xd0
[  609.361480][T14571]  do_SYSENTER_32+0x73/0x90
[  609.365990][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  609.372309][T14571] 
[  609.374632][T14571] Uninit was stored to memory at:
[  609.379665][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  609.385388][T14571]  __msan_chain_origin+0x50/0x90
[  609.390331][T14571]  __get_compat_msghdr+0x5be/0x890
[  609.395447][T14571]  get_compat_msghdr+0x108/0x270
[  609.400391][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  609.404901][T14571]  __sys_recvmmsg+0x4ca/0x510
[  609.409584][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  609.415654][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  609.421812][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  609.427016][T14571]  do_fast_syscall_32+0x6b/0xd0
[  609.431871][T14571]  do_SYSENTER_32+0x73/0x90
[  609.436380][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  609.442697][T14571] 
[  609.445022][T14571] Uninit was stored to memory at:
[  609.450050][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  609.455770][T14571]  __msan_chain_origin+0x50/0x90
[  609.460718][T14571]  __get_compat_msghdr+0x5be/0x890
[  609.465835][T14571]  get_compat_msghdr+0x108/0x270
[  609.470778][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  609.475289][T14571]  __sys_recvmmsg+0x4ca/0x510
[  609.479974][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  609.486041][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  609.492201][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  609.497406][T14571]  do_fast_syscall_32+0x6b/0xd0
[  609.502262][T14571]  do_SYSENTER_32+0x73/0x90
[  609.506771][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  609.513087][T14571] 
[  609.515410][T14571] Uninit was stored to memory at:
[  609.520441][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  609.526166][T14571]  __msan_chain_origin+0x50/0x90
[  609.531132][T14571]  __get_compat_msghdr+0x5be/0x890
[  609.536247][T14571]  get_compat_msghdr+0x108/0x270
[  609.541190][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  609.545698][T14571]  __sys_recvmmsg+0x4ca/0x510
[  609.550383][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  609.556450][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  609.562607][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  609.567809][T14571]  do_fast_syscall_32+0x6b/0xd0
[  609.572664][T14571]  do_SYSENTER_32+0x73/0x90
[  609.577169][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  609.583488][T14571] 
[  609.585812][T14571] Local variable ----msg_sys@do_recvmmsg created at:
[  609.592490][T14571]  do_recvmmsg+0xc5/0x1ee0
[  609.596915][T14571]  do_recvmmsg+0xc5/0x1ee0
[  609.828992][T14571] not chained 370000 origins
[  609.833670][T14571] CPU: 0 PID: 14571 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0
[  609.842358][T14571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  609.852414][T14571] Call Trace:
[  609.855723][T14571]  dump_stack+0x1df/0x240
[  609.860078][T14571]  kmsan_internal_chain_origin+0x6f/0x130
[  609.865810][T14571]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  609.871634][T14571]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  609.877709][T14571]  ? udp_recvmsg+0x1b8c/0x2100
[  609.882514][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  609.887642][T14571]  ? kmsan_set_origin_checked+0x95/0xf0
[  609.893205][T14571]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  609.899312][T14571]  ? _copy_from_user+0x15b/0x260
[  609.904262][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  609.909386][T14571]  __msan_chain_origin+0x50/0x90
[  609.914340][T14571]  __get_compat_msghdr+0x5be/0x890
[  609.919490][T14571]  get_compat_msghdr+0x108/0x270
[  609.924459][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  609.929001][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  609.934677][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  609.939803][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  609.945450][T14571]  ? __msan_poison_alloca+0xf0/0x120
[  609.950748][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  609.955521][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  609.960297][T14571]  ? kmsan_get_metadata+0x11d/0x180
[  609.965511][T14571]  __sys_recvmmsg+0x4ca/0x510
[  609.970224][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  609.976309][T14571]  ? __x32_compat_sys_recvmmsg_time64+0x80/0x80
[  609.982560][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  609.988725][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  609.993952][T14571]  do_fast_syscall_32+0x6b/0xd0
[  609.998824][T14571]  do_SYSENTER_32+0x73/0x90
[  610.003342][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  610.009671][T14571] RIP: 0023:0xf7f8d549
[  610.013737][T14571] Code: Bad RIP value.
[  610.017804][T14571] RSP: 002b:00000000f5d880cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  610.026218][T14571] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200004c0
[  610.034193][T14571] RDX: 00000000006fdaec RSI: 0000000000000022 RDI: 0000000000000000
[  610.042168][T14571] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  610.050144][T14571] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  610.058120][T14571] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  610.066116][T14571] Uninit was stored to memory at:
[  610.071159][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  610.076883][T14571]  __msan_chain_origin+0x50/0x90
[  610.081827][T14571]  __get_compat_msghdr+0x5be/0x890
[  610.086962][T14571]  get_compat_msghdr+0x108/0x270
[  610.092088][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  610.096599][T14571]  __sys_recvmmsg+0x4ca/0x510
[  610.101282][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  610.107355][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  610.113513][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  610.118721][T14571]  do_fast_syscall_32+0x6b/0xd0
[  610.123580][T14571]  do_SYSENTER_32+0x73/0x90
[  610.128092][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  610.134408][T14571] 
[  610.136731][T14571] Uninit was stored to memory at:
[  610.141762][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  610.147488][T14571]  __msan_chain_origin+0x50/0x90
[  610.152434][T14571]  __get_compat_msghdr+0x5be/0x890
[  610.157550][T14571]  get_compat_msghdr+0x108/0x270
[  610.162492][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  610.167008][T14571]  __sys_recvmmsg+0x4ca/0x510
[  610.171690][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  610.177787][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  610.183948][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  610.189161][T14571]  do_fast_syscall_32+0x6b/0xd0
[  610.194017][T14571]  do_SYSENTER_32+0x73/0x90
[  610.198522][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  610.204841][T14571] 
[  610.207163][T14571] Uninit was stored to memory at:
[  610.212199][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  610.217923][T14571]  __msan_chain_origin+0x50/0x90
[  610.222877][T14571]  __get_compat_msghdr+0x5be/0x890
[  610.227998][T14571]  get_compat_msghdr+0x108/0x270
[  610.232943][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  610.237455][T14571]  __sys_recvmmsg+0x4ca/0x510
[  610.242141][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  610.248214][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  610.254373][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  610.259579][T14571]  do_fast_syscall_32+0x6b/0xd0
[  610.264435][T14571]  do_SYSENTER_32+0x73/0x90
[  610.268942][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  610.275264][T14571] 
[  610.277587][T14571] Uninit was stored to memory at:
[  610.282618][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  610.288342][T14571]  __msan_chain_origin+0x50/0x90
[  610.293288][T14571]  __get_compat_msghdr+0x5be/0x890
[  610.298406][T14571]  get_compat_msghdr+0x108/0x270
[  610.303354][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  610.307862][T14571]  __sys_recvmmsg+0x4ca/0x510
[  610.312564][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  610.318633][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  610.324794][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  610.330003][T14571]  do_fast_syscall_32+0x6b/0xd0
[  610.334861][T14571]  do_SYSENTER_32+0x73/0x90
[  610.339369][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  610.345684][T14571] 
[  610.348007][T14571] Uninit was stored to memory at:
[  610.353041][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  610.358767][T14571]  __msan_chain_origin+0x50/0x90
[  610.363711][T14571]  __get_compat_msghdr+0x5be/0x890
[  610.368825][T14571]  get_compat_msghdr+0x108/0x270
[  610.373770][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  610.378279][T14571]  __sys_recvmmsg+0x4ca/0x510
[  610.382960][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  610.389049][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  610.395211][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  610.400422][T14571]  do_fast_syscall_32+0x6b/0xd0
[  610.405277][T14571]  do_SYSENTER_32+0x73/0x90
[  610.409806][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  610.416123][T14571] 
[  610.418445][T14571] Uninit was stored to memory at:
[  610.423482][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  610.429208][T14571]  __msan_chain_origin+0x50/0x90
[  610.434152][T14571]  __get_compat_msghdr+0x5be/0x890
[  610.439267][T14571]  get_compat_msghdr+0x108/0x270
[  610.444213][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  610.448719][T14571]  __sys_recvmmsg+0x4ca/0x510
[  610.453401][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  610.459470][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  610.465629][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  610.470862][T14571]  do_fast_syscall_32+0x6b/0xd0
[  610.475715][T14571]  do_SYSENTER_32+0x73/0x90
[  610.480224][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  610.486561][T14571] 
[  610.488885][T14571] Uninit was stored to memory at:
[  610.493919][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  610.499731][T14571]  __msan_chain_origin+0x50/0x90
[  610.504673][T14571]  __get_compat_msghdr+0x5be/0x890
[  610.509791][T14571]  get_compat_msghdr+0x108/0x270
[  610.514734][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  610.519243][T14571]  __sys_recvmmsg+0x4ca/0x510
[  610.523922][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  610.529997][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  610.536156][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  610.541359][T14571]  do_fast_syscall_32+0x6b/0xd0
[  610.546217][T14571]  do_SYSENTER_32+0x73/0x90
[  610.550724][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  610.557043][T14571] 
[  610.559367][T14571] Local variable ----msg_sys@do_recvmmsg created at:
[  610.566052][T14571]  do_recvmmsg+0xc5/0x1ee0
[  610.570471][T14571]  do_recvmmsg+0xc5/0x1ee0
[  610.818403][T14571] not chained 380000 origins
[  610.823043][T14571] CPU: 0 PID: 14571 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0
[  610.831713][T14571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  610.841772][T14571] Call Trace:
[  610.845086][T14571]  dump_stack+0x1df/0x240
[  610.849444][T14571]  kmsan_internal_chain_origin+0x6f/0x130
[  610.855178][T14571]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  610.860997][T14571]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  610.867074][T14571]  ? udp_recvmsg+0x1b8c/0x2100
[  610.871894][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  610.877017][T14571]  ? kmsan_set_origin_checked+0x95/0xf0
[  610.882577][T14571]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  610.888661][T14571]  ? _copy_from_user+0x15b/0x260
[  610.893613][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  610.898738][T14571]  __msan_chain_origin+0x50/0x90
[  610.903697][T14571]  __get_compat_msghdr+0x5be/0x890
[  610.908857][T14571]  get_compat_msghdr+0x108/0x270
[  610.913833][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  610.918372][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  610.924049][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  610.929177][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  610.934833][T14571]  ? __msan_poison_alloca+0xf0/0x120
[  610.940163][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  610.944941][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  610.949712][T14571]  ? kmsan_get_metadata+0x11d/0x180
[  610.954928][T14571]  __sys_recvmmsg+0x4ca/0x510
[  610.959644][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  610.965731][T14571]  ? __x32_compat_sys_recvmmsg_time64+0x80/0x80
[  610.971983][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  610.978151][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  610.983386][T14571]  do_fast_syscall_32+0x6b/0xd0
[  610.988252][T14571]  do_SYSENTER_32+0x73/0x90
[  610.992770][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  610.999102][T14571] RIP: 0023:0xf7f8d549
[  611.003165][T14571] Code: Bad RIP value.
[  611.007235][T14571] RSP: 002b:00000000f5d880cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  611.015651][T14571] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200004c0
[  611.023640][T14571] RDX: 00000000006fdaec RSI: 0000000000000022 RDI: 0000000000000000
[  611.031613][T14571] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  611.039590][T14571] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  611.047563][T14571] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  611.055558][T14571] Uninit was stored to memory at:
[  611.060598][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  611.066322][T14571]  __msan_chain_origin+0x50/0x90
[  611.071268][T14571]  __get_compat_msghdr+0x5be/0x890
[  611.076404][T14571]  get_compat_msghdr+0x108/0x270
[  611.081349][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  611.085860][T14571]  __sys_recvmmsg+0x4ca/0x510
[  611.090545][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  611.096619][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  611.102777][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  611.107987][T14571]  do_fast_syscall_32+0x6b/0xd0
[  611.112853][T14571]  do_SYSENTER_32+0x73/0x90
[  611.117362][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  611.123680][T14571] 
[  611.126004][T14571] Uninit was stored to memory at:
[  611.131036][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  611.136758][T14571]  __msan_chain_origin+0x50/0x90
[  611.141703][T14571]  __get_compat_msghdr+0x5be/0x890
[  611.146827][T14571]  get_compat_msghdr+0x108/0x270
[  611.151779][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  611.156293][T14571]  __sys_recvmmsg+0x4ca/0x510
[  611.160976][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  611.167056][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  611.173236][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  611.178440][T14571]  do_fast_syscall_32+0x6b/0xd0
[  611.183296][T14571]  do_SYSENTER_32+0x73/0x90
[  611.187805][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  611.194131][T14571] 
[  611.196453][T14571] Uninit was stored to memory at:
[  611.201483][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  611.207208][T14571]  __msan_chain_origin+0x50/0x90
[  611.212163][T14571]  __get_compat_msghdr+0x5be/0x890
[  611.217302][T14571]  get_compat_msghdr+0x108/0x270
[  611.222245][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  611.226758][T14571]  __sys_recvmmsg+0x4ca/0x510
[  611.231439][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  611.237512][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  611.243673][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  611.248880][T14571]  do_fast_syscall_32+0x6b/0xd0
[  611.253737][T14571]  do_SYSENTER_32+0x73/0x90
[  611.258244][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  611.264651][T14571] 
[  611.266978][T14571] Uninit was stored to memory at:
[  611.272011][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  611.277734][T14571]  __msan_chain_origin+0x50/0x90
[  611.282681][T14571]  __get_compat_msghdr+0x5be/0x890
[  611.287799][T14571]  get_compat_msghdr+0x108/0x270
[  611.292840][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  611.297349][T14571]  __sys_recvmmsg+0x4ca/0x510
[  611.302030][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  611.308102][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  611.314262][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  611.319468][T14571]  do_fast_syscall_32+0x6b/0xd0
[  611.324326][T14571]  do_SYSENTER_32+0x73/0x90
[  611.328840][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  611.335157][T14571] 
[  611.337479][T14571] Uninit was stored to memory at:
[  611.342533][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  611.348259][T14571]  __msan_chain_origin+0x50/0x90
[  611.353206][T14571]  __get_compat_msghdr+0x5be/0x890
[  611.358320][T14571]  get_compat_msghdr+0x108/0x270
[  611.363263][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  611.367770][T14571]  __sys_recvmmsg+0x4ca/0x510
[  611.372473][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  611.378550][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  611.384710][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  611.389916][T14571]  do_fast_syscall_32+0x6b/0xd0
[  611.394773][T14571]  do_SYSENTER_32+0x73/0x90
[  611.399284][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  611.405603][T14571] 
[  611.407928][T14571] Uninit was stored to memory at:
[  611.412961][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  611.418687][T14571]  __msan_chain_origin+0x50/0x90
[  611.423631][T14571]  __get_compat_msghdr+0x5be/0x890
[  611.428752][T14571]  get_compat_msghdr+0x108/0x270
[  611.433699][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  611.438212][T14571]  __sys_recvmmsg+0x4ca/0x510
[  611.442894][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  611.448974][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  611.455134][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  611.460340][T14571]  do_fast_syscall_32+0x6b/0xd0
[  611.465201][T14571]  do_SYSENTER_32+0x73/0x90
[  611.469707][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  611.476028][T14571] 
[  611.478351][T14571] Uninit was stored to memory at:
[  611.483381][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  611.489107][T14571]  __msan_chain_origin+0x50/0x90
[  611.494053][T14571]  __get_compat_msghdr+0x5be/0x890
[  611.499172][T14571]  get_compat_msghdr+0x108/0x270
[  611.504114][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  611.508624][T14571]  __sys_recvmmsg+0x4ca/0x510
[  611.513311][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  611.519381][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  611.525628][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  611.530855][T14571]  do_fast_syscall_32+0x6b/0xd0
[  611.535710][T14571]  do_SYSENTER_32+0x73/0x90
[  611.540218][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  611.546551][T14571] 
[  611.548890][T14571] Local variable ----msg_sys@do_recvmmsg created at:
[  611.555570][T14571]  do_recvmmsg+0xc5/0x1ee0
[  611.559994][T14571]  do_recvmmsg+0xc5/0x1ee0
[  611.896270][T14571] not chained 390000 origins
[  611.900910][T14571] CPU: 0 PID: 14571 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0
[  611.909578][T14571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  611.919636][T14571] Call Trace:
[  611.922942][T14571]  dump_stack+0x1df/0x240
[  611.927297][T14571]  kmsan_internal_chain_origin+0x6f/0x130
[  611.933027][T14571]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  611.938852][T14571]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  611.944930][T14571]  ? udp_recvmsg+0x1b8c/0x2100
[  611.949743][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  611.954870][T14571]  ? kmsan_set_origin_checked+0x95/0xf0
[  611.960427][T14571]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  611.966515][T14571]  ? _copy_from_user+0x15b/0x260
[  611.971461][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  611.976582][T14571]  __msan_chain_origin+0x50/0x90
[  611.981607][T14571]  __get_compat_msghdr+0x5be/0x890
[  611.986761][T14571]  get_compat_msghdr+0x108/0x270
[  611.991735][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  611.996270][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  612.001936][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  612.007247][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  612.012891][T14571]  ? __msan_poison_alloca+0xf0/0x120
[  612.018197][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  612.022969][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  612.027757][T14571]  ? kmsan_get_metadata+0x11d/0x180
[  612.032977][T14571]  __sys_recvmmsg+0x4ca/0x510
[  612.037687][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  612.043770][T14571]  ? __x32_compat_sys_recvmmsg_time64+0x80/0x80
[  612.050028][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  612.056197][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  612.061422][T14571]  do_fast_syscall_32+0x6b/0xd0
[  612.066288][T14571]  do_SYSENTER_32+0x73/0x90
[  612.070809][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  612.077138][T14571] RIP: 0023:0xf7f8d549
[  612.081198][T14571] Code: Bad RIP value.
[  612.085264][T14571] RSP: 002b:00000000f5d880cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  612.093681][T14571] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200004c0
[  612.101653][T14571] RDX: 00000000006fdaec RSI: 0000000000000022 RDI: 0000000000000000
[  612.109625][T14571] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  612.117599][T14571] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  612.125572][T14571] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  612.133564][T14571] Uninit was stored to memory at:
[  612.138604][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  612.144340][T14571]  __msan_chain_origin+0x50/0x90
[  612.149285][T14571]  __get_compat_msghdr+0x5be/0x890
[  612.154400][T14571]  get_compat_msghdr+0x108/0x270
[  612.159342][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  612.163850][T14571]  __sys_recvmmsg+0x4ca/0x510
[  612.168529][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  612.174601][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  612.180757][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  612.185965][T14571]  do_fast_syscall_32+0x6b/0xd0
[  612.190826][T14571]  do_SYSENTER_32+0x73/0x90
[  612.195336][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  612.201656][T14571] 
[  612.203983][T14571] Uninit was stored to memory at:
[  612.209017][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  612.214737][T14571]  __msan_chain_origin+0x50/0x90
[  612.219681][T14571]  __get_compat_msghdr+0x5be/0x890
[  612.224805][T14571]  get_compat_msghdr+0x108/0x270
[  612.229748][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  612.234254][T14571]  __sys_recvmmsg+0x4ca/0x510
[  612.238934][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  612.245004][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  612.251164][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  612.256366][T14571]  do_fast_syscall_32+0x6b/0xd0
[  612.261224][T14571]  do_SYSENTER_32+0x73/0x90
[  612.265730][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  612.272064][T14571] 
[  612.274386][T14571] Uninit was stored to memory at:
[  612.279417][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  612.285139][T14571]  __msan_chain_origin+0x50/0x90
[  612.290084][T14571]  __get_compat_msghdr+0x5be/0x890
[  612.295202][T14571]  get_compat_msghdr+0x108/0x270
[  612.300142][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  612.304645][T14571]  __sys_recvmmsg+0x4ca/0x510
[  612.309324][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  612.315394][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  612.321552][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  612.326759][T14571]  do_fast_syscall_32+0x6b/0xd0
[  612.331620][T14571]  do_SYSENTER_32+0x73/0x90
[  612.336128][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  612.342445][T14571] 
[  612.344767][T14571] Uninit was stored to memory at:
[  612.349816][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  612.355538][T14571]  __msan_chain_origin+0x50/0x90
[  612.360481][T14571]  __get_compat_msghdr+0x5be/0x890
[  612.365619][T14571]  get_compat_msghdr+0x108/0x270
[  612.370560][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  612.375067][T14571]  __sys_recvmmsg+0x4ca/0x510
[  612.379747][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  612.385819][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  612.391976][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  612.397180][T14571]  do_fast_syscall_32+0x6b/0xd0
[  612.402035][T14571]  do_SYSENTER_32+0x73/0x90
[  612.406543][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  612.412859][T14571] 
[  612.415182][T14571] Uninit was stored to memory at:
[  612.420213][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  612.425935][T14571]  __msan_chain_origin+0x50/0x90
[  612.430964][T14571]  __get_compat_msghdr+0x5be/0x890
[  612.436078][T14571]  get_compat_msghdr+0x108/0x270
[  612.441020][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  612.445528][T14571]  __sys_recvmmsg+0x4ca/0x510
[  612.450226][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  612.456295][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  612.462458][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  612.467662][T14571]  do_fast_syscall_32+0x6b/0xd0
[  612.472515][T14571]  do_SYSENTER_32+0x73/0x90
[  612.477051][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  612.483370][T14571] 
[  612.485691][T14571] Uninit was stored to memory at:
[  612.490738][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  612.496462][T14571]  __msan_chain_origin+0x50/0x90
[  612.501405][T14571]  __get_compat_msghdr+0x5be/0x890
[  612.506520][T14571]  get_compat_msghdr+0x108/0x270
[  612.511461][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  612.515968][T14571]  __sys_recvmmsg+0x4ca/0x510
[  612.520649][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  612.526718][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  612.532874][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  612.538079][T14571]  do_fast_syscall_32+0x6b/0xd0
[  612.542933][T14571]  do_SYSENTER_32+0x73/0x90
[  612.547440][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  612.553757][T14571] 
[  612.556086][T14571] Uninit was stored to memory at:
[  612.561115][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  612.566837][T14571]  __msan_chain_origin+0x50/0x90
[  612.571779][T14571]  __get_compat_msghdr+0x5be/0x890
[  612.576922][T14571]  get_compat_msghdr+0x108/0x270
[  612.581864][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  612.586370][T14571]  __sys_recvmmsg+0x4ca/0x510
[  612.591066][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  612.597134][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  612.603293][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  612.608496][T14571]  do_fast_syscall_32+0x6b/0xd0
[  612.613354][T14571]  do_SYSENTER_32+0x73/0x90
[  612.617861][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  612.624180][T14571] 
[  612.626516][T14571] Local variable ----msg_sys@do_recvmmsg created at:
[  612.633208][T14571]  do_recvmmsg+0xc5/0x1ee0
[  612.637633][T14571]  do_recvmmsg+0xc5/0x1ee0
[  612.861862][T14571] not chained 400000 origins
[  612.866500][T14571] CPU: 0 PID: 14571 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0
[  612.875166][T14571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  612.885222][T14571] Call Trace:
[  612.888534][T14571]  dump_stack+0x1df/0x240
[  612.892886][T14571]  kmsan_internal_chain_origin+0x6f/0x130
[  612.898614][T14571]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  612.904430][T14571]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  612.910513][T14571]  ? udp_recvmsg+0x1b8c/0x2100
[  612.915327][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  612.920452][T14571]  ? kmsan_set_origin_checked+0x95/0xf0
[  612.926013][T14571]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  612.932100][T14571]  ? _copy_from_user+0x15b/0x260
[  612.937047][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  612.942169][T14571]  __msan_chain_origin+0x50/0x90
[  612.947123][T14571]  __get_compat_msghdr+0x5be/0x890
[  612.952279][T14571]  get_compat_msghdr+0x108/0x270
[  612.957247][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  612.961785][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  612.967458][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  612.972579][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  612.978246][T14571]  ? __msan_poison_alloca+0xf0/0x120
[  612.983553][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  612.988328][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  612.993097][T14571]  ? kmsan_get_metadata+0x11d/0x180
[  612.998313][T14571]  __sys_recvmmsg+0x4ca/0x510
[  613.003033][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  613.009119][T14571]  ? __x32_compat_sys_recvmmsg_time64+0x80/0x80
[  613.015391][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  613.021559][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  613.026798][T14571]  do_fast_syscall_32+0x6b/0xd0
[  613.031663][T14571]  do_SYSENTER_32+0x73/0x90
[  613.036182][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  613.042509][T14571] RIP: 0023:0xf7f8d549
[  613.046569][T14571] Code: Bad RIP value.
[  613.050632][T14571] RSP: 002b:00000000f5d880cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  613.059049][T14571] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200004c0
[  613.067032][T14571] RDX: 00000000006fdaec RSI: 0000000000000022 RDI: 0000000000000000
[  613.075012][T14571] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  613.083000][T14571] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  613.090988][T14571] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  613.098992][T14571] Uninit was stored to memory at:
[  613.104026][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  613.109779][T14571]  __msan_chain_origin+0x50/0x90
[  613.114726][T14571]  __get_compat_msghdr+0x5be/0x890
[  613.119843][T14571]  get_compat_msghdr+0x108/0x270
[  613.124790][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  613.129301][T14571]  __sys_recvmmsg+0x4ca/0x510
[  613.133985][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  613.140059][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  613.146222][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  613.151451][T14571]  do_fast_syscall_32+0x6b/0xd0
[  613.156306][T14571]  do_SYSENTER_32+0x73/0x90
[  613.160812][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  613.167132][T14571] 
[  613.169459][T14571] Uninit was stored to memory at:
[  613.174489][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  613.180208][T14571]  __msan_chain_origin+0x50/0x90
[  613.185153][T14571]  __get_compat_msghdr+0x5be/0x890
[  613.190268][T14571]  get_compat_msghdr+0x108/0x270
[  613.195211][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  613.199720][T14571]  __sys_recvmmsg+0x4ca/0x510
[  613.204400][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  613.210472][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  613.216631][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  613.221833][T14571]  do_fast_syscall_32+0x6b/0xd0
[  613.226689][T14571]  do_SYSENTER_32+0x73/0x90
[  613.231194][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  613.237508][T14571] 
[  613.239833][T14571] Uninit was stored to memory at:
[  613.244863][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  613.250583][T14571]  __msan_chain_origin+0x50/0x90
[  613.255527][T14571]  __get_compat_msghdr+0x5be/0x890
[  613.260642][T14571]  get_compat_msghdr+0x108/0x270
[  613.265586][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  613.270093][T14571]  __sys_recvmmsg+0x4ca/0x510
[  613.274775][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  613.280843][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  613.287008][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  613.292212][T14571]  do_fast_syscall_32+0x6b/0xd0
[  613.297068][T14571]  do_SYSENTER_32+0x73/0x90
[  613.301574][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  613.307889][T14571] 
[  613.310214][T14571] Uninit was stored to memory at:
[  613.315244][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  613.320963][T14571]  __msan_chain_origin+0x50/0x90
[  613.325907][T14571]  __get_compat_msghdr+0x5be/0x890
[  613.331024][T14571]  get_compat_msghdr+0x108/0x270
[  613.335967][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  613.340478][T14571]  __sys_recvmmsg+0x4ca/0x510
[  613.345163][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  613.351233][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  613.357390][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  613.362596][T14571]  do_fast_syscall_32+0x6b/0xd0
[  613.367455][T14571]  do_SYSENTER_32+0x73/0x90
[  613.371964][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  613.378301][T14571] 
[  613.380643][T14571] Uninit was stored to memory at:
[  613.385672][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  613.391394][T14571]  __msan_chain_origin+0x50/0x90
[  613.396338][T14571]  __get_compat_msghdr+0x5be/0x890
[  613.401461][T14571]  get_compat_msghdr+0x108/0x270
[  613.406403][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  613.410914][T14571]  __sys_recvmmsg+0x4ca/0x510
[  613.415597][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  613.421670][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  613.427828][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  613.433036][T14571]  do_fast_syscall_32+0x6b/0xd0
[  613.437890][T14571]  do_SYSENTER_32+0x73/0x90
[  613.442399][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  613.448714][T14571] 
[  613.451040][T14571] Uninit was stored to memory at:
[  613.456070][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  613.461792][T14571]  __msan_chain_origin+0x50/0x90
[  613.466735][T14571]  __get_compat_msghdr+0x5be/0x890
[  613.471866][T14571]  get_compat_msghdr+0x108/0x270
[  613.476805][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  613.481333][T14571]  __sys_recvmmsg+0x4ca/0x510
[  613.486016][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  613.492084][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  613.498239][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  613.503449][T14571]  do_fast_syscall_32+0x6b/0xd0
[  613.508304][T14571]  do_SYSENTER_32+0x73/0x90
[  613.512831][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  613.519164][T14571] 
[  613.521499][T14571] Uninit was stored to memory at:
[  613.526529][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  613.532252][T14571]  __msan_chain_origin+0x50/0x90
[  613.537199][T14571]  __get_compat_msghdr+0x5be/0x890
[  613.542313][T14571]  get_compat_msghdr+0x108/0x270
[  613.547257][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  613.551764][T14571]  __sys_recvmmsg+0x4ca/0x510
[  613.556450][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  613.562517][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  613.568674][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  613.573877][T14571]  do_fast_syscall_32+0x6b/0xd0
[  613.578731][T14571]  do_SYSENTER_32+0x73/0x90
[  613.583239][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  613.589573][T14571] 
[  613.591901][T14571] Local variable ----msg_sys@do_recvmmsg created at:
[  613.598588][T14571]  do_recvmmsg+0xc5/0x1ee0
[  613.603025][T14571]  do_recvmmsg+0xc5/0x1ee0
[  613.872041][T14571] not chained 410000 origins
[  613.876680][T14571] CPU: 0 PID: 14571 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0
[  613.885375][T14571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  613.895445][T14571] Call Trace:
[  613.898752][T14571]  dump_stack+0x1df/0x240
[  613.903109][T14571]  kmsan_internal_chain_origin+0x6f/0x130
[  613.908840][T14571]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  613.914658][T14571]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  613.920736][T14571]  ? udp_recvmsg+0x1b8c/0x2100
[  613.925539][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  613.930660][T14571]  ? kmsan_set_origin_checked+0x95/0xf0
[  613.936222][T14571]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  613.942314][T14571]  ? _copy_from_user+0x15b/0x260
[  613.947265][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  613.952392][T14571]  __msan_chain_origin+0x50/0x90
[  613.957354][T14571]  __get_compat_msghdr+0x5be/0x890
[  613.962497][T14571]  get_compat_msghdr+0x108/0x270
[  613.967465][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  613.971998][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  613.977671][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  613.982792][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  613.988438][T14571]  ? __msan_poison_alloca+0xf0/0x120
[  613.993741][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  613.998511][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  614.003290][T14571]  ? kmsan_get_metadata+0x11d/0x180
[  614.008505][T14571]  __sys_recvmmsg+0x4ca/0x510
[  614.013220][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  614.019314][T14571]  ? __x32_compat_sys_recvmmsg_time64+0x80/0x80
[  614.025569][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  614.031735][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  614.036960][T14571]  do_fast_syscall_32+0x6b/0xd0
[  614.041846][T14571]  do_SYSENTER_32+0x73/0x90
[  614.046376][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  614.052704][T14571] RIP: 0023:0xf7f8d549
[  614.056764][T14571] Code: Bad RIP value.
[  614.060832][T14571] RSP: 002b:00000000f5d880cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  614.069265][T14571] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200004c0
[  614.077246][T14571] RDX: 00000000006fdaec RSI: 0000000000000022 RDI: 0000000000000000
[  614.085225][T14571] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  614.093202][T14571] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  614.101175][T14571] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  614.109170][T14571] Uninit was stored to memory at:
[  614.114207][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  614.119936][T14571]  __msan_chain_origin+0x50/0x90
[  614.124883][T14571]  __get_compat_msghdr+0x5be/0x890
[  614.130003][T14571]  get_compat_msghdr+0x108/0x270
[  614.134945][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  614.139453][T14571]  __sys_recvmmsg+0x4ca/0x510
[  614.144135][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  614.150209][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  614.156376][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  614.161584][T14571]  do_fast_syscall_32+0x6b/0xd0
[  614.166440][T14571]  do_SYSENTER_32+0x73/0x90
[  614.170948][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  614.177268][T14571] 
[  614.179597][T14571] Uninit was stored to memory at:
[  614.184631][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  614.190356][T14571]  __msan_chain_origin+0x50/0x90
[  614.195305][T14571]  __get_compat_msghdr+0x5be/0x890
[  614.200422][T14571]  get_compat_msghdr+0x108/0x270
[  614.205368][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  614.209886][T14571]  __sys_recvmmsg+0x4ca/0x510
[  614.214567][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  614.220635][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  614.226798][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  614.232004][T14571]  do_fast_syscall_32+0x6b/0xd0
[  614.236860][T14571]  do_SYSENTER_32+0x73/0x90
[  614.241370][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  614.247690][T14571] 
[  614.250016][T14571] Uninit was stored to memory at:
[  614.255053][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  614.260780][T14571]  __msan_chain_origin+0x50/0x90
[  614.265726][T14571]  __get_compat_msghdr+0x5be/0x890
[  614.270840][T14571]  get_compat_msghdr+0x108/0x270
[  614.275783][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  614.280300][T14571]  __sys_recvmmsg+0x4ca/0x510
[  614.284984][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  614.291056][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  614.297238][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  614.302452][T14571]  do_fast_syscall_32+0x6b/0xd0
[  614.307312][T14571]  do_SYSENTER_32+0x73/0x90
[  614.311824][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  614.318143][T14571] 
[  614.320478][T14571] Uninit was stored to memory at:
[  614.325524][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  614.331260][T14571]  __msan_chain_origin+0x50/0x90
[  614.336210][T14571]  __get_compat_msghdr+0x5be/0x890
[  614.341326][T14571]  get_compat_msghdr+0x108/0x270
[  614.346278][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  614.350786][T14571]  __sys_recvmmsg+0x4ca/0x510
[  614.355470][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  614.361541][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  614.367699][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  614.372905][T14571]  do_fast_syscall_32+0x6b/0xd0
[  614.377760][T14571]  do_SYSENTER_32+0x73/0x90
[  614.382279][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  614.388594][T14571] 
[  614.390916][T14571] Uninit was stored to memory at:
[  614.395949][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  614.401673][T14571]  __msan_chain_origin+0x50/0x90
[  614.406620][T14571]  __get_compat_msghdr+0x5be/0x890
[  614.411761][T14571]  get_compat_msghdr+0x108/0x270
[  614.416701][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  614.421207][T14571]  __sys_recvmmsg+0x4ca/0x510
[  614.425908][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  614.432000][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  614.438185][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  614.443391][T14571]  do_fast_syscall_32+0x6b/0xd0
[  614.448252][T14571]  do_SYSENTER_32+0x73/0x90
[  614.452765][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  614.459085][T14571] 
[  614.461409][T14571] Uninit was stored to memory at:
[  614.466440][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  614.472165][T14571]  __msan_chain_origin+0x50/0x90
[  614.477111][T14571]  __get_compat_msghdr+0x5be/0x890
[  614.482229][T14571]  get_compat_msghdr+0x108/0x270
[  614.487176][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  614.491684][T14571]  __sys_recvmmsg+0x4ca/0x510
[  614.496367][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  614.502462][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  614.508623][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  614.513829][T14571]  do_fast_syscall_32+0x6b/0xd0
[  614.518685][T14571]  do_SYSENTER_32+0x73/0x90
[  614.523204][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  614.529518][T14571] 
[  614.531863][T14571] Uninit was stored to memory at:
[  614.536898][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  614.542622][T14571]  __msan_chain_origin+0x50/0x90
[  614.547566][T14571]  __get_compat_msghdr+0x5be/0x890
[  614.552684][T14571]  get_compat_msghdr+0x108/0x270
[  614.557625][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  614.562134][T14571]  __sys_recvmmsg+0x4ca/0x510
[  614.566818][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  614.572887][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  614.579045][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  614.584249][T14571]  do_fast_syscall_32+0x6b/0xd0
[  614.589113][T14571]  do_SYSENTER_32+0x73/0x90
[  614.593621][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  614.599939][T14571] 
[  614.602267][T14571] Local variable ----msg_sys@do_recvmmsg created at:
[  614.608976][T14571]  do_recvmmsg+0xc5/0x1ee0
[  614.613401][T14571]  do_recvmmsg+0xc5/0x1ee0
[  614.788702][T14571] not chained 420000 origins
[  614.793346][T14571] CPU: 0 PID: 14571 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0
[  614.802020][T14571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  614.812077][T14571] Call Trace:
[  614.815384][T14571]  dump_stack+0x1df/0x240
[  614.819748][T14571]  kmsan_internal_chain_origin+0x6f/0x130
[  614.825480][T14571]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  614.831301][T14571]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  614.837377][T14571]  ? udp_recvmsg+0x1b8c/0x2100
[  614.842194][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  614.847403][T14571]  ? kmsan_set_origin_checked+0x95/0xf0
[  614.852964][T14571]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  614.859062][T14571]  ? _copy_from_user+0x15b/0x260
[  614.864017][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  614.869140][T14571]  __msan_chain_origin+0x50/0x90
[  614.874100][T14571]  __get_compat_msghdr+0x5be/0x890
[  614.879258][T14571]  get_compat_msghdr+0x108/0x270
[  614.884229][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  614.888767][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  614.894444][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  614.899568][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  614.905220][T14571]  ? __msan_poison_alloca+0xf0/0x120
[  614.910524][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  614.915297][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  614.920071][T14571]  ? kmsan_get_metadata+0x11d/0x180
[  614.925303][T14571]  __sys_recvmmsg+0x4ca/0x510
[  614.930020][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  614.936108][T14571]  ? __x32_compat_sys_recvmmsg_time64+0x80/0x80
[  614.942362][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  614.948537][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  614.953764][T14571]  do_fast_syscall_32+0x6b/0xd0
[  614.958630][T14571]  do_SYSENTER_32+0x73/0x90
[  614.963151][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  614.969480][T14571] RIP: 0023:0xf7f8d549
[  614.973538][T14571] Code: Bad RIP value.
[  614.977600][T14571] RSP: 002b:00000000f5d880cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  614.986036][T14571] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200004c0
[  614.994032][T14571] RDX: 00000000006fdaec RSI: 0000000000000022 RDI: 0000000000000000
[  615.002007][T14571] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  615.009979][T14571] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  615.018039][T14571] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  615.026037][T14571] Uninit was stored to memory at:
[  615.031076][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  615.036799][T14571]  __msan_chain_origin+0x50/0x90
[  615.041743][T14571]  __get_compat_msghdr+0x5be/0x890
[  615.046859][T14571]  get_compat_msghdr+0x108/0x270
[  615.051801][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  615.056322][T14571]  __sys_recvmmsg+0x4ca/0x510
[  615.061006][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  615.067078][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  615.073236][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  615.078467][T14571]  do_fast_syscall_32+0x6b/0xd0
[  615.083330][T14571]  do_SYSENTER_32+0x73/0x90
[  615.087835][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  615.094154][T14571] 
[  615.096478][T14571] Uninit was stored to memory at:
[  615.101511][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  615.107237][T14571]  __msan_chain_origin+0x50/0x90
[  615.112184][T14571]  __get_compat_msghdr+0x5be/0x890
[  615.117322][T14571]  get_compat_msghdr+0x108/0x270
[  615.122266][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  615.126775][T14571]  __sys_recvmmsg+0x4ca/0x510
[  615.131454][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  615.137520][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  615.143679][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  615.148885][T14571]  do_fast_syscall_32+0x6b/0xd0
[  615.153740][T14571]  do_SYSENTER_32+0x73/0x90
[  615.158248][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  615.164565][T14571] 
[  615.166887][T14571] Uninit was stored to memory at:
[  615.171920][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  615.177645][T14571]  __msan_chain_origin+0x50/0x90
[  615.182592][T14571]  __get_compat_msghdr+0x5be/0x890
[  615.187710][T14571]  get_compat_msghdr+0x108/0x270
[  615.192654][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  615.197161][T14571]  __sys_recvmmsg+0x4ca/0x510
[  615.201842][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  615.207910][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  615.214067][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  615.219292][T14571]  do_fast_syscall_32+0x6b/0xd0
[  615.224159][T14571]  do_SYSENTER_32+0x73/0x90
[  615.228667][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  615.234985][T14571] 
[  615.237313][T14571] Uninit was stored to memory at:
[  615.242348][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  615.248068][T14571]  __msan_chain_origin+0x50/0x90
[  615.253013][T14571]  __get_compat_msghdr+0x5be/0x890
[  615.258128][T14571]  get_compat_msghdr+0x108/0x270
[  615.263071][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  615.267581][T14571]  __sys_recvmmsg+0x4ca/0x510
[  615.272259][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  615.278331][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  615.284489][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  615.289694][T14571]  do_fast_syscall_32+0x6b/0xd0
[  615.294550][T14571]  do_SYSENTER_32+0x73/0x90
[  615.299055][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  615.305372][T14571] 
[  615.307694][T14571] Uninit was stored to memory at:
[  615.312726][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  615.318446][T14571]  __msan_chain_origin+0x50/0x90
[  615.323394][T14571]  __get_compat_msghdr+0x5be/0x890
[  615.328511][T14571]  get_compat_msghdr+0x108/0x270
[  615.333451][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  615.337955][T14571]  __sys_recvmmsg+0x4ca/0x510
[  615.342632][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  615.348702][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  615.354860][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  615.360065][T14571]  do_fast_syscall_32+0x6b/0xd0
[  615.364939][T14571]  do_SYSENTER_32+0x73/0x90
[  615.369445][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  615.375760][T14571] 
[  615.378082][T14571] Uninit was stored to memory at:
[  615.383114][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  615.388835][T14571]  __msan_chain_origin+0x50/0x90
[  615.393778][T14571]  __get_compat_msghdr+0x5be/0x890
[  615.398892][T14571]  get_compat_msghdr+0x108/0x270
[  615.403833][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  615.408345][T14571]  __sys_recvmmsg+0x4ca/0x510
[  615.413025][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  615.419092][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  615.425253][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  615.430462][T14571]  do_fast_syscall_32+0x6b/0xd0
[  615.435323][T14571]  do_SYSENTER_32+0x73/0x90
[  615.439830][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  615.446148][T14571] 
[  615.448473][T14571] Uninit was stored to memory at:
[  615.453503][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  615.459225][T14571]  __msan_chain_origin+0x50/0x90
[  615.464171][T14571]  __get_compat_msghdr+0x5be/0x890
[  615.469288][T14571]  get_compat_msghdr+0x108/0x270
[  615.474237][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  615.478743][T14571]  __sys_recvmmsg+0x4ca/0x510
[  615.483428][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  615.489514][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  615.495675][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  615.500881][T14571]  do_fast_syscall_32+0x6b/0xd0
[  615.505741][T14571]  do_SYSENTER_32+0x73/0x90
[  615.510251][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  615.516567][T14571] 
[  615.518892][T14571] Local variable ----msg_sys@do_recvmmsg created at:
[  615.525570][T14571]  do_recvmmsg+0xc5/0x1ee0
[  615.529989][T14571]  do_recvmmsg+0xc5/0x1ee0
[  615.763242][T14571] not chained 430000 origins
[  615.767887][T14571] CPU: 1 PID: 14571 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0
[  615.776554][T14571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  615.786630][T14571] Call Trace:
[  615.789954][T14571]  dump_stack+0x1df/0x240
[  615.794312][T14571]  kmsan_internal_chain_origin+0x6f/0x130
[  615.800047][T14571]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  615.805867][T14571]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  615.811939][T14571]  ? udp_recvmsg+0x1b8c/0x2100
[  615.816752][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  615.821874][T14571]  ? kmsan_set_origin_checked+0x95/0xf0
[  615.827435][T14571]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  615.833525][T14571]  ? _copy_from_user+0x15b/0x260
[  615.838471][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  615.843598][T14571]  __msan_chain_origin+0x50/0x90
[  615.848561][T14571]  __get_compat_msghdr+0x5be/0x890
[  615.853729][T14571]  get_compat_msghdr+0x108/0x270
[  615.858705][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  615.863241][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  615.868914][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  615.874038][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  615.879692][T14571]  ? __msan_poison_alloca+0xf0/0x120
[  615.884994][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  615.889772][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  615.894557][T14571]  ? kmsan_get_metadata+0x11d/0x180
[  615.899772][T14571]  __sys_recvmmsg+0x4ca/0x510
[  615.904484][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  615.910582][T14571]  ? __x32_compat_sys_recvmmsg_time64+0x80/0x80
[  615.916842][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  615.923022][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  615.928263][T14571]  do_fast_syscall_32+0x6b/0xd0
[  615.933137][T14571]  do_SYSENTER_32+0x73/0x90
[  615.937656][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  615.943990][T14571] RIP: 0023:0xf7f8d549
[  615.948051][T14571] Code: Bad RIP value.
[  615.952119][T14571] RSP: 002b:00000000f5d880cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  615.960534][T14571] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200004c0
[  615.968509][T14571] RDX: 00000000006fdaec RSI: 0000000000000022 RDI: 0000000000000000
[  615.976483][T14571] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  615.984457][T14571] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  615.992432][T14571] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  616.000458][T14571] Uninit was stored to memory at:
[  616.005499][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  616.011220][T14571]  __msan_chain_origin+0x50/0x90
[  616.016167][T14571]  __get_compat_msghdr+0x5be/0x890
[  616.021283][T14571]  get_compat_msghdr+0x108/0x270
[  616.026229][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  616.030739][T14571]  __sys_recvmmsg+0x4ca/0x510
[  616.035419][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  616.041491][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  616.047664][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  616.052879][T14571]  do_fast_syscall_32+0x6b/0xd0
[  616.057741][T14571]  do_SYSENTER_32+0x73/0x90
[  616.062247][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  616.068564][T14571] 
[  616.070887][T14571] Uninit was stored to memory at:
[  616.075919][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  616.081669][T14571]  __msan_chain_origin+0x50/0x90
[  616.086612][T14571]  __get_compat_msghdr+0x5be/0x890
[  616.091732][T14571]  get_compat_msghdr+0x108/0x270
[  616.096696][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  616.101203][T14571]  __sys_recvmmsg+0x4ca/0x510
[  616.105883][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  616.111957][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  616.118118][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  616.123324][T14571]  do_fast_syscall_32+0x6b/0xd0
[  616.128186][T14571]  do_SYSENTER_32+0x73/0x90
[  616.132695][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  616.139011][T14571] 
[  616.141337][T14571] Uninit was stored to memory at:
[  616.146370][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  616.152091][T14571]  __msan_chain_origin+0x50/0x90
[  616.157038][T14571]  __get_compat_msghdr+0x5be/0x890
[  616.162156][T14571]  get_compat_msghdr+0x108/0x270
[  616.167101][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  616.171610][T14571]  __sys_recvmmsg+0x4ca/0x510
[  616.176294][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  616.182373][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  616.188531][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  616.193757][T14571]  do_fast_syscall_32+0x6b/0xd0
[  616.198613][T14571]  do_SYSENTER_32+0x73/0x90
[  616.203120][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  616.209437][T14571] 
[  616.211760][T14571] Uninit was stored to memory at:
[  616.216789][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  616.222518][T14571]  __msan_chain_origin+0x50/0x90
[  616.227462][T14571]  __get_compat_msghdr+0x5be/0x890
[  616.232579][T14571]  get_compat_msghdr+0x108/0x270
[  616.237522][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  616.242029][T14571]  __sys_recvmmsg+0x4ca/0x510
[  616.246710][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  616.252802][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  616.258968][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  616.264173][T14571]  do_fast_syscall_32+0x6b/0xd0
[  616.269033][T14571]  do_SYSENTER_32+0x73/0x90
[  616.273541][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  616.279859][T14571] 
[  616.282186][T14571] Uninit was stored to memory at:
[  616.287223][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  616.292948][T14571]  __msan_chain_origin+0x50/0x90
[  616.297895][T14571]  __get_compat_msghdr+0x5be/0x890
[  616.303025][T14571]  get_compat_msghdr+0x108/0x270
[  616.308055][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  616.312565][T14571]  __sys_recvmmsg+0x4ca/0x510
[  616.317248][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  616.323324][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  616.329485][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  616.334691][T14571]  do_fast_syscall_32+0x6b/0xd0
[  616.339550][T14571]  do_SYSENTER_32+0x73/0x90
[  616.344059][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  616.350376][T14571] 
[  616.352702][T14571] Uninit was stored to memory at:
[  616.357735][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  616.363464][T14571]  __msan_chain_origin+0x50/0x90
[  616.368431][T14571]  __get_compat_msghdr+0x5be/0x890
[  616.373545][T14571]  get_compat_msghdr+0x108/0x270
[  616.378490][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  616.383011][T14571]  __sys_recvmmsg+0x4ca/0x510
[  616.387693][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  616.393765][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  616.399940][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  616.405151][T14571]  do_fast_syscall_32+0x6b/0xd0
[  616.410006][T14571]  do_SYSENTER_32+0x73/0x90
[  616.414514][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  616.420834][T14571] 
[  616.423161][T14571] Uninit was stored to memory at:
[  616.428199][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  616.433925][T14571]  __msan_chain_origin+0x50/0x90
[  616.438870][T14571]  __get_compat_msghdr+0x5be/0x890
[  616.443988][T14571]  get_compat_msghdr+0x108/0x270
[  616.448930][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  616.453439][T14571]  __sys_recvmmsg+0x4ca/0x510
[  616.458119][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  616.464189][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  616.470346][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  616.475552][T14571]  do_fast_syscall_32+0x6b/0xd0
[  616.480408][T14571]  do_SYSENTER_32+0x73/0x90
[  616.484935][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  616.491253][T14571] 
[  616.493577][T14571] Local variable ----msg_sys@do_recvmmsg created at:
[  616.500257][T14571]  do_recvmmsg+0xc5/0x1ee0
[  616.504707][T14571]  do_recvmmsg+0xc5/0x1ee0
[  616.751628][T14571] not chained 440000 origins
[  616.756274][T14571] CPU: 1 PID: 14571 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0
[  616.764959][T14571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  616.775020][T14571] Call Trace:
[  616.778330][T14571]  dump_stack+0x1df/0x240
[  616.782684][T14571]  kmsan_internal_chain_origin+0x6f/0x130
[  616.788411][T14571]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  616.794229][T14571]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  616.800303][T14571]  ? udp_recvmsg+0x1b8c/0x2100
[  616.805113][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  616.810241][T14571]  ? kmsan_set_origin_checked+0x95/0xf0
[  616.815799][T14571]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  616.821889][T14571]  ? _copy_from_user+0x15b/0x260
[  616.826852][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  616.831978][T14571]  __msan_chain_origin+0x50/0x90
[  616.836934][T14571]  __get_compat_msghdr+0x5be/0x890
[  616.842092][T14571]  get_compat_msghdr+0x108/0x270
[  616.847063][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  616.851596][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  616.857267][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  616.862393][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  616.868040][T14571]  ? __msan_poison_alloca+0xf0/0x120
[  616.873340][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  616.878114][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  616.882884][T14571]  ? kmsan_get_metadata+0x11d/0x180
[  616.888097][T14571]  __sys_recvmmsg+0x4ca/0x510
[  616.892801][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  616.898895][T14571]  ? __x32_compat_sys_recvmmsg_time64+0x80/0x80
[  616.905144][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  616.911308][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  616.916530][T14571]  do_fast_syscall_32+0x6b/0xd0
[  616.921392][T14571]  do_SYSENTER_32+0x73/0x90
[  616.925908][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  616.932236][T14571] RIP: 0023:0xf7f8d549
[  616.936299][T14571] Code: Bad RIP value.
[  616.940365][T14571] RSP: 002b:00000000f5d880cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  616.948777][T14571] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200004c0
[  616.956754][T14571] RDX: 00000000006fdaec RSI: 0000000000000022 RDI: 0000000000000000
[  616.964728][T14571] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  616.972701][T14571] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  616.980675][T14571] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  616.988666][T14571] Uninit was stored to memory at:
[  616.993704][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  616.999429][T14571]  __msan_chain_origin+0x50/0x90
[  617.004376][T14571]  __get_compat_msghdr+0x5be/0x890
[  617.009496][T14571]  get_compat_msghdr+0x108/0x270
[  617.014441][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  617.018947][T14571]  __sys_recvmmsg+0x4ca/0x510
[  617.023638][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  617.029707][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  617.035866][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  617.041070][T14571]  do_fast_syscall_32+0x6b/0xd0
[  617.045925][T14571]  do_SYSENTER_32+0x73/0x90
[  617.050433][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  617.056782][T14571] 
[  617.059111][T14571] Uninit was stored to memory at:
[  617.064156][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  617.069879][T14571]  __msan_chain_origin+0x50/0x90
[  617.074828][T14571]  __get_compat_msghdr+0x5be/0x890
[  617.079946][T14571]  get_compat_msghdr+0x108/0x270
[  617.084894][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  617.089401][T14571]  __sys_recvmmsg+0x4ca/0x510
[  617.094082][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  617.100154][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  617.106312][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  617.111521][T14571]  do_fast_syscall_32+0x6b/0xd0
[  617.116376][T14571]  do_SYSENTER_32+0x73/0x90
[  617.120882][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  617.127194][T14571] 
[  617.129514][T14571] Uninit was stored to memory at:
[  617.134542][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  617.140264][T14571]  __msan_chain_origin+0x50/0x90
[  617.145209][T14571]  __get_compat_msghdr+0x5be/0x890
[  617.150325][T14571]  get_compat_msghdr+0x108/0x270
[  617.155270][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  617.159779][T14571]  __sys_recvmmsg+0x4ca/0x510
[  617.164495][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  617.170564][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  617.176724][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  617.181926][T14571]  do_fast_syscall_32+0x6b/0xd0
[  617.186784][T14571]  do_SYSENTER_32+0x73/0x90
[  617.191297][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  617.197615][T14571] 
[  617.199939][T14571] Uninit was stored to memory at:
[  617.204968][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  617.210689][T14571]  __msan_chain_origin+0x50/0x90
[  617.215631][T14571]  __get_compat_msghdr+0x5be/0x890
[  617.220747][T14571]  get_compat_msghdr+0x108/0x270
[  617.225687][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  617.230195][T14571]  __sys_recvmmsg+0x4ca/0x510
[  617.234873][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  617.240944][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  617.247105][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  617.252315][T14571]  do_fast_syscall_32+0x6b/0xd0
[  617.257173][T14571]  do_SYSENTER_32+0x73/0x90
[  617.261679][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  617.267994][T14571] 
[  617.270317][T14571] Uninit was stored to memory at:
[  617.275348][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  617.281074][T14571]  __msan_chain_origin+0x50/0x90
[  617.286037][T14571]  __get_compat_msghdr+0x5be/0x890
[  617.291154][T14571]  get_compat_msghdr+0x108/0x270
[  617.296096][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  617.300604][T14571]  __sys_recvmmsg+0x4ca/0x510
[  617.305283][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  617.311353][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  617.317513][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  617.322720][T14571]  do_fast_syscall_32+0x6b/0xd0
[  617.327577][T14571]  do_SYSENTER_32+0x73/0x90
[  617.332083][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  617.338399][T14571] 
[  617.340726][T14571] Uninit was stored to memory at:
[  617.345756][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  617.351478][T14571]  __msan_chain_origin+0x50/0x90
[  617.356420][T14571]  __get_compat_msghdr+0x5be/0x890
[  617.361536][T14571]  get_compat_msghdr+0x108/0x270
[  617.366480][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  617.370987][T14571]  __sys_recvmmsg+0x4ca/0x510
[  617.375685][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  617.381754][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  617.387913][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  617.393119][T14571]  do_fast_syscall_32+0x6b/0xd0
[  617.397973][T14571]  do_SYSENTER_32+0x73/0x90
[  617.402482][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  617.408798][T14571] 
[  617.411126][T14571] Uninit was stored to memory at:
[  617.416157][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  617.421879][T14571]  __msan_chain_origin+0x50/0x90
[  617.426829][T14571]  __get_compat_msghdr+0x5be/0x890
[  617.431947][T14571]  get_compat_msghdr+0x108/0x270
[  617.436891][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  617.441400][T14571]  __sys_recvmmsg+0x4ca/0x510
[  617.446084][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  617.452154][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  617.458311][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  617.463518][T14571]  do_fast_syscall_32+0x6b/0xd0
[  617.468373][T14571]  do_SYSENTER_32+0x73/0x90
[  617.472882][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  617.479199][T14571] 
[  617.481524][T14571] Local variable ----msg_sys@do_recvmmsg created at:
[  617.488211][T14571]  do_recvmmsg+0xc5/0x1ee0
[  617.492630][T14571]  do_recvmmsg+0xc5/0x1ee0
[  617.715596][T14571] not chained 450000 origins
[  617.720240][T14571] CPU: 1 PID: 14571 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0
[  617.728909][T14571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  617.738963][T14571] Call Trace:
[  617.742270][T14571]  dump_stack+0x1df/0x240
[  617.746660][T14571]  kmsan_internal_chain_origin+0x6f/0x130
[  617.752386][T14571]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  617.758211][T14571]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  617.764296][T14571]  ? udp_recvmsg+0x1b8c/0x2100
[  617.769108][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  617.774233][T14571]  ? kmsan_set_origin_checked+0x95/0xf0
[  617.779792][T14571]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  617.785886][T14571]  ? _copy_from_user+0x15b/0x260
[  617.790838][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  617.795960][T14571]  __msan_chain_origin+0x50/0x90
[  617.800919][T14571]  __get_compat_msghdr+0x5be/0x890
[  617.806070][T14571]  get_compat_msghdr+0x108/0x270
[  617.811035][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  617.815591][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  617.821268][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  617.826393][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  617.832038][T14571]  ? __msan_poison_alloca+0xf0/0x120
[  617.837338][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  617.842119][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  617.846892][T14571]  ? kmsan_get_metadata+0x11d/0x180
[  617.852104][T14571]  __sys_recvmmsg+0x4ca/0x510
[  617.856825][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  617.862932][T14571]  ? __x32_compat_sys_recvmmsg_time64+0x80/0x80
[  617.869184][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  617.875402][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  617.880638][T14571]  do_fast_syscall_32+0x6b/0xd0
[  617.885506][T14571]  do_SYSENTER_32+0x73/0x90
[  617.890029][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  617.896360][T14571] RIP: 0023:0xf7f8d549
[  617.900421][T14571] Code: Bad RIP value.
[  617.904484][T14571] RSP: 002b:00000000f5d880cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  617.912907][T14571] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200004c0
[  617.920880][T14571] RDX: 00000000006fdaec RSI: 0000000000000022 RDI: 0000000000000000
[  617.928850][T14571] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  617.936833][T14571] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  617.944807][T14571] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  617.952807][T14571] Uninit was stored to memory at:
[  617.957852][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  617.963576][T14571]  __msan_chain_origin+0x50/0x90
[  617.968518][T14571]  __get_compat_msghdr+0x5be/0x890
[  617.973637][T14571]  get_compat_msghdr+0x108/0x270
[  617.978581][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  617.983089][T14571]  __sys_recvmmsg+0x4ca/0x510
[  617.987771][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  617.993847][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  618.000006][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  618.005219][T14571]  do_fast_syscall_32+0x6b/0xd0
[  618.010103][T14571]  do_SYSENTER_32+0x73/0x90
[  618.014614][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  618.020950][T14571] 
[  618.023277][T14571] Uninit was stored to memory at:
[  618.028397][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  618.034118][T14571]  __msan_chain_origin+0x50/0x90
[  618.039081][T14571]  __get_compat_msghdr+0x5be/0x890
[  618.044199][T14571]  get_compat_msghdr+0x108/0x270
[  618.049144][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  618.053652][T14571]  __sys_recvmmsg+0x4ca/0x510
[  618.058332][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  618.064450][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  618.070608][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  618.075813][T14571]  do_fast_syscall_32+0x6b/0xd0
[  618.080673][T14571]  do_SYSENTER_32+0x73/0x90
[  618.085189][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  618.091504][T14571] 
[  618.093832][T14571] Uninit was stored to memory at:
[  618.098862][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  618.104587][T14571]  __msan_chain_origin+0x50/0x90
[  618.109553][T14571]  __get_compat_msghdr+0x5be/0x890
[  618.114668][T14571]  get_compat_msghdr+0x108/0x270
[  618.119614][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  618.124122][T14571]  __sys_recvmmsg+0x4ca/0x510
[  618.128800][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  618.134962][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  618.141128][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  618.146331][T14571]  do_fast_syscall_32+0x6b/0xd0
[  618.151186][T14571]  do_SYSENTER_32+0x73/0x90
[  618.155694][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  618.162010][T14571] 
[  618.164335][T14571] Uninit was stored to memory at:
[  618.169369][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  618.175093][T14571]  __msan_chain_origin+0x50/0x90
[  618.180041][T14571]  __get_compat_msghdr+0x5be/0x890
[  618.185160][T14571]  get_compat_msghdr+0x108/0x270
[  618.190120][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  618.194629][T14571]  __sys_recvmmsg+0x4ca/0x510
[  618.199310][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  618.205379][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  618.211545][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  618.216754][T14571]  do_fast_syscall_32+0x6b/0xd0
[  618.221611][T14571]  do_SYSENTER_32+0x73/0x90
[  618.226121][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  618.232436][T14571] 
[  618.234766][T14571] Uninit was stored to memory at:
[  618.239794][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  618.245518][T14571]  __msan_chain_origin+0x50/0x90
[  618.250468][T14571]  __get_compat_msghdr+0x5be/0x890
[  618.255588][T14571]  get_compat_msghdr+0x108/0x270
[  618.260531][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  618.265076][T14571]  __sys_recvmmsg+0x4ca/0x510
[  618.269754][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  618.275824][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  618.281983][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  618.287190][T14571]  do_fast_syscall_32+0x6b/0xd0
[  618.292073][T14571]  do_SYSENTER_32+0x73/0x90
[  618.296583][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  618.302903][T14571] 
[  618.305227][T14571] Uninit was stored to memory at:
[  618.310258][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  618.315988][T14571]  __msan_chain_origin+0x50/0x90
[  618.320936][T14571]  __get_compat_msghdr+0x5be/0x890
[  618.326057][T14571]  get_compat_msghdr+0x108/0x270
[  618.330999][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  618.335506][T14571]  __sys_recvmmsg+0x4ca/0x510
[  618.340187][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  618.346258][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  618.352416][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  618.357624][T14571]  do_fast_syscall_32+0x6b/0xd0
[  618.362480][T14571]  do_SYSENTER_32+0x73/0x90
[  618.366986][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  618.373301][T14571] 
[  618.375623][T14571] Uninit was stored to memory at:
[  618.380656][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  618.386379][T14571]  __msan_chain_origin+0x50/0x90
[  618.391332][T14571]  __get_compat_msghdr+0x5be/0x890
[  618.396453][T14571]  get_compat_msghdr+0x108/0x270
[  618.401400][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  618.405907][T14571]  __sys_recvmmsg+0x4ca/0x510
[  618.410585][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  618.416655][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  618.422813][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  618.428020][T14571]  do_fast_syscall_32+0x6b/0xd0
[  618.432875][T14571]  do_SYSENTER_32+0x73/0x90
[  618.437380][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  618.443698][T14571] 
[  618.446025][T14571] Local variable ----msg_sys@do_recvmmsg created at:
[  618.452703][T14571]  do_recvmmsg+0xc5/0x1ee0
[  618.457125][T14571]  do_recvmmsg+0xc5/0x1ee0
[  618.657148][T14571] not chained 460000 origins
[  618.661786][T14571] CPU: 1 PID: 14571 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0
[  618.670457][T14571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  618.680527][T14571] Call Trace:
[  618.683859][T14571]  dump_stack+0x1df/0x240
[  618.688221][T14571]  kmsan_internal_chain_origin+0x6f/0x130
[  618.693947][T14571]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  618.699763][T14571]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  618.705869][T14571]  ? udp_recvmsg+0x1b8c/0x2100
[  618.710679][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  618.715799][T14571]  ? kmsan_set_origin_checked+0x95/0xf0
[  618.721358][T14571]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  618.727453][T14571]  ? _copy_from_user+0x15b/0x260
[  618.732408][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  618.737536][T14571]  __msan_chain_origin+0x50/0x90
[  618.742493][T14571]  __get_compat_msghdr+0x5be/0x890
[  618.747653][T14571]  get_compat_msghdr+0x108/0x270
[  618.752626][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  618.757248][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  618.762922][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  618.768049][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  618.773698][T14571]  ? __msan_poison_alloca+0xf0/0x120
[  618.778998][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  618.783771][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  618.788541][T14571]  ? kmsan_get_metadata+0x11d/0x180
[  618.793755][T14571]  __sys_recvmmsg+0x4ca/0x510
[  618.798464][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  618.804549][T14571]  ? __x32_compat_sys_recvmmsg_time64+0x80/0x80
[  618.810798][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  618.816962][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  618.822188][T14571]  do_fast_syscall_32+0x6b/0xd0
[  618.827052][T14571]  do_SYSENTER_32+0x73/0x90
[  618.831583][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  618.837912][T14571] RIP: 0023:0xf7f8d549
[  618.841973][T14571] Code: Bad RIP value.
[  618.846041][T14571] RSP: 002b:00000000f5d880cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  618.854454][T14571] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200004c0
[  618.862428][T14571] RDX: 00000000006fdaec RSI: 0000000000000022 RDI: 0000000000000000
[  618.870399][T14571] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  618.878375][T14571] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  618.886348][T14571] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  618.894348][T14571] Uninit was stored to memory at:
[  618.899381][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  618.905119][T14571]  __msan_chain_origin+0x50/0x90
[  618.910067][T14571]  __get_compat_msghdr+0x5be/0x890
[  618.915184][T14571]  get_compat_msghdr+0x108/0x270
[  618.920127][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  618.924634][T14571]  __sys_recvmmsg+0x4ca/0x510
[  618.929319][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  618.935388][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  618.941548][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  618.946754][T14571]  do_fast_syscall_32+0x6b/0xd0
[  618.951608][T14571]  do_SYSENTER_32+0x73/0x90
[  618.956114][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  618.962429][T14571] 
[  618.964751][T14571] Uninit was stored to memory at:
[  618.969786][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  618.975513][T14571]  __msan_chain_origin+0x50/0x90
[  618.980458][T14571]  __get_compat_msghdr+0x5be/0x890
[  618.985579][T14571]  get_compat_msghdr+0x108/0x270
[  618.990522][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  618.995031][T14571]  __sys_recvmmsg+0x4ca/0x510
[  618.999713][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  619.005781][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  619.011939][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  619.017146][T14571]  do_fast_syscall_32+0x6b/0xd0
[  619.022002][T14571]  do_SYSENTER_32+0x73/0x90
[  619.026510][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  619.032826][T14571] 
[  619.035150][T14571] Uninit was stored to memory at:
[  619.040180][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  619.045906][T14571]  __msan_chain_origin+0x50/0x90
[  619.050849][T14571]  __get_compat_msghdr+0x5be/0x890
[  619.055964][T14571]  get_compat_msghdr+0x108/0x270
[  619.060908][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  619.065414][T14571]  __sys_recvmmsg+0x4ca/0x510
[  619.070094][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  619.076166][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  619.082350][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  619.087555][T14571]  do_fast_syscall_32+0x6b/0xd0
[  619.092418][T14571]  do_SYSENTER_32+0x73/0x90
[  619.096924][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  619.103241][T14571] 
[  619.105583][T14571] Uninit was stored to memory at:
[  619.110612][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  619.116440][T14571]  __msan_chain_origin+0x50/0x90
[  619.121383][T14571]  __get_compat_msghdr+0x5be/0x890
[  619.126498][T14571]  get_compat_msghdr+0x108/0x270
[  619.131438][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  619.135948][T14571]  __sys_recvmmsg+0x4ca/0x510
[  619.140626][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  619.146695][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  619.152855][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  619.158073][T14571]  do_fast_syscall_32+0x6b/0xd0
[  619.162932][T14571]  do_SYSENTER_32+0x73/0x90
[  619.167442][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  619.173758][T14571] 
[  619.176085][T14571] Uninit was stored to memory at:
[  619.181119][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  619.186842][T14571]  __msan_chain_origin+0x50/0x90
[  619.191791][T14571]  __get_compat_msghdr+0x5be/0x890
[  619.196907][T14571]  get_compat_msghdr+0x108/0x270
[  619.201848][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  619.206360][T14571]  __sys_recvmmsg+0x4ca/0x510
[  619.211040][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  619.217130][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  619.223290][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  619.228501][T14571]  do_fast_syscall_32+0x6b/0xd0
[  619.233375][T14571]  do_SYSENTER_32+0x73/0x90
[  619.237880][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  619.244193][T14571] 
[  619.246516][T14571] Uninit was stored to memory at:
[  619.251544][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  619.257265][T14571]  __msan_chain_origin+0x50/0x90
[  619.262237][T14571]  __get_compat_msghdr+0x5be/0x890
[  619.267355][T14571]  get_compat_msghdr+0x108/0x270
[  619.272302][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  619.276810][T14571]  __sys_recvmmsg+0x4ca/0x510
[  619.281491][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  619.287558][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  619.293716][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  619.298921][T14571]  do_fast_syscall_32+0x6b/0xd0
[  619.303778][T14571]  do_SYSENTER_32+0x73/0x90
[  619.308289][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  619.314612][T14571] 
[  619.316937][T14571] Uninit was stored to memory at:
[  619.321969][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  619.327690][T14571]  __msan_chain_origin+0x50/0x90
[  619.332633][T14571]  __get_compat_msghdr+0x5be/0x890
[  619.337746][T14571]  get_compat_msghdr+0x108/0x270
[  619.342685][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  619.347227][T14571]  __sys_recvmmsg+0x4ca/0x510
[  619.351909][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  619.357980][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  619.364136][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  619.369343][T14571]  do_fast_syscall_32+0x6b/0xd0
[  619.374196][T14571]  do_SYSENTER_32+0x73/0x90
[  619.378703][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  619.385019][T14571] 
[  619.387341][T14571] Local variable ----msg_sys@do_recvmmsg created at:
[  619.394020][T14571]  do_recvmmsg+0xc5/0x1ee0
[  619.398442][T14571]  do_recvmmsg+0xc5/0x1ee0
[  619.606483][T14571] not chained 470000 origins
[  619.611122][T14571] CPU: 1 PID: 14571 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0
[  619.619789][T14571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  619.629846][T14571] Call Trace:
[  619.633153][T14571]  dump_stack+0x1df/0x240
[  619.637508][T14571]  kmsan_internal_chain_origin+0x6f/0x130
[  619.643238][T14571]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  619.649058][T14571]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  619.655132][T14571]  ? udp_recvmsg+0x1b8c/0x2100
[  619.659940][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  619.665064][T14571]  ? kmsan_set_origin_checked+0x95/0xf0
[  619.670621][T14571]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  619.676708][T14571]  ? _copy_from_user+0x15b/0x260
[  619.681654][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  619.686793][T14571]  __msan_chain_origin+0x50/0x90
[  619.691750][T14571]  __get_compat_msghdr+0x5be/0x890
[  619.696899][T14571]  get_compat_msghdr+0x108/0x270
[  619.701867][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  619.706401][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  619.712075][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  619.717199][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  619.722848][T14571]  ? __msan_poison_alloca+0xf0/0x120
[  619.728150][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  619.732927][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  619.737718][T14571]  ? kmsan_get_metadata+0x11d/0x180
[  619.742929][T14571]  __sys_recvmmsg+0x4ca/0x510
[  619.747636][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  619.753720][T14571]  ? __x32_compat_sys_recvmmsg_time64+0x80/0x80
[  619.759969][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  619.766143][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  619.771371][T14571]  do_fast_syscall_32+0x6b/0xd0
[  619.776238][T14571]  do_SYSENTER_32+0x73/0x90
[  619.780756][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  619.787087][T14571] RIP: 0023:0xf7f8d549
[  619.791147][T14571] Code: Bad RIP value.
[  619.795209][T14571] RSP: 002b:00000000f5d880cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  619.803625][T14571] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200004c0
[  619.811597][T14571] RDX: 00000000006fdaec RSI: 0000000000000022 RDI: 0000000000000000
[  619.819571][T14571] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  619.827545][T14571] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  619.835519][T14571] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  619.843514][T14571] Uninit was stored to memory at:
[  619.848549][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  619.854274][T14571]  __msan_chain_origin+0x50/0x90
[  619.859224][T14571]  __get_compat_msghdr+0x5be/0x890
[  619.864345][T14571]  get_compat_msghdr+0x108/0x270
[  619.869288][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  619.873805][T14571]  __sys_recvmmsg+0x4ca/0x510
[  619.878486][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  619.884556][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  619.890713][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  619.895917][T14571]  do_fast_syscall_32+0x6b/0xd0
[  619.900775][T14571]  do_SYSENTER_32+0x73/0x90
[  619.905281][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  619.911599][T14571] 
[  619.913922][T14571] Uninit was stored to memory at:
[  619.918950][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  619.924670][T14571]  __msan_chain_origin+0x50/0x90
[  619.929613][T14571]  __get_compat_msghdr+0x5be/0x890
[  619.934730][T14571]  get_compat_msghdr+0x108/0x270
[  619.939669][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  619.944177][T14571]  __sys_recvmmsg+0x4ca/0x510
[  619.948855][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  619.954928][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  619.961172][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  619.966378][T14571]  do_fast_syscall_32+0x6b/0xd0
[  619.971235][T14571]  do_SYSENTER_32+0x73/0x90
[  619.975739][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  619.982056][T14571] 
[  619.984378][T14571] Uninit was stored to memory at:
[  619.989411][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  619.995150][T14571]  __msan_chain_origin+0x50/0x90
[  620.000097][T14571]  __get_compat_msghdr+0x5be/0x890
[  620.005213][T14571]  get_compat_msghdr+0x108/0x270
[  620.010155][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  620.014665][T14571]  __sys_recvmmsg+0x4ca/0x510
[  620.019347][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  620.025421][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  620.031577][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  620.036780][T14571]  do_fast_syscall_32+0x6b/0xd0
[  620.041633][T14571]  do_SYSENTER_32+0x73/0x90
[  620.046139][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  620.052458][T14571] 
[  620.054781][T14571] Uninit was stored to memory at:
[  620.059810][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  620.065532][T14571]  __msan_chain_origin+0x50/0x90
[  620.070476][T14571]  __get_compat_msghdr+0x5be/0x890
[  620.075592][T14571]  get_compat_msghdr+0x108/0x270
[  620.080536][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  620.085044][T14571]  __sys_recvmmsg+0x4ca/0x510
[  620.089728][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  620.095799][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  620.101956][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  620.107166][T14571]  do_fast_syscall_32+0x6b/0xd0
[  620.112021][T14571]  do_SYSENTER_32+0x73/0x90
[  620.116532][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  620.122850][T14571] 
[  620.125177][T14571] Uninit was stored to memory at:
[  620.130206][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  620.135930][T14571]  __msan_chain_origin+0x50/0x90
[  620.140874][T14571]  __get_compat_msghdr+0x5be/0x890
[  620.145990][T14571]  get_compat_msghdr+0x108/0x270
[  620.150930][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  620.155438][T14571]  __sys_recvmmsg+0x4ca/0x510
[  620.160119][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  620.166191][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  620.172367][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  620.177568][T14571]  do_fast_syscall_32+0x6b/0xd0
[  620.182426][T14571]  do_SYSENTER_32+0x73/0x90
[  620.186933][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  620.193272][T14571] 
[  620.195598][T14571] Uninit was stored to memory at:
[  620.200627][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  620.206348][T14571]  __msan_chain_origin+0x50/0x90
[  620.211293][T14571]  __get_compat_msghdr+0x5be/0x890
[  620.216414][T14571]  get_compat_msghdr+0x108/0x270
[  620.221355][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  620.225864][T14571]  __sys_recvmmsg+0x4ca/0x510
[  620.230580][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  620.236652][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  620.242807][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  620.248031][T14571]  do_fast_syscall_32+0x6b/0xd0
[  620.252888][T14571]  do_SYSENTER_32+0x73/0x90
[  620.257396][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  620.263713][T14571] 
[  620.266037][T14571] Uninit was stored to memory at:
[  620.271066][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  620.276788][T14571]  __msan_chain_origin+0x50/0x90
[  620.281731][T14571]  __get_compat_msghdr+0x5be/0x890
[  620.286845][T14571]  get_compat_msghdr+0x108/0x270
[  620.291787][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  620.296298][T14571]  __sys_recvmmsg+0x4ca/0x510
[  620.300992][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  620.307062][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  620.313224][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  620.318428][T14571]  do_fast_syscall_32+0x6b/0xd0
[  620.323281][T14571]  do_SYSENTER_32+0x73/0x90
[  620.327791][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  620.334110][T14571] 
[  620.336434][T14571] Local variable ----msg_sys@do_recvmmsg created at:
[  620.343115][T14571]  do_recvmmsg+0xc5/0x1ee0
[  620.347536][T14571]  do_recvmmsg+0xc5/0x1ee0
[  620.607368][T14571] not chained 480000 origins
[  620.612004][T14571] CPU: 1 PID: 14571 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0
[  620.620671][T14571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  620.630744][T14571] Call Trace:
[  620.634056][T14571]  dump_stack+0x1df/0x240
[  620.638412][T14571]  kmsan_internal_chain_origin+0x6f/0x130
[  620.644143][T14571]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  620.649964][T14571]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  620.656045][T14571]  ? udp_recvmsg+0x1b8c/0x2100
[  620.660857][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  620.665986][T14571]  ? kmsan_set_origin_checked+0x95/0xf0
[  620.671545][T14571]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  620.677631][T14571]  ? _copy_from_user+0x15b/0x260
[  620.682577][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  620.687696][T14571]  __msan_chain_origin+0x50/0x90
[  620.692656][T14571]  __get_compat_msghdr+0x5be/0x890
[  620.697809][T14571]  get_compat_msghdr+0x108/0x270
[  620.702773][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  620.707304][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  620.712984][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  620.718110][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  620.723755][T14571]  ? __msan_poison_alloca+0xf0/0x120
[  620.729083][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  620.733859][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  620.738639][T14571]  ? kmsan_get_metadata+0x11d/0x180
[  620.743856][T14571]  __sys_recvmmsg+0x4ca/0x510
[  620.748571][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  620.754659][T14571]  ? __x32_compat_sys_recvmmsg_time64+0x80/0x80
[  620.760910][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  620.767081][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  620.772313][T14571]  do_fast_syscall_32+0x6b/0xd0
[  620.777180][T14571]  do_SYSENTER_32+0x73/0x90
[  620.781696][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  620.788026][T14571] RIP: 0023:0xf7f8d549
[  620.792088][T14571] Code: Bad RIP value.
[  620.796151][T14571] RSP: 002b:00000000f5d880cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  620.804586][T14571] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200004c0
[  620.812563][T14571] RDX: 00000000006fdaec RSI: 0000000000000022 RDI: 0000000000000000
[  620.820533][T14571] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  620.828507][T14571] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  620.836479][T14571] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  620.844472][T14571] Uninit was stored to memory at:
[  620.849507][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  620.855251][T14571]  __msan_chain_origin+0x50/0x90
[  620.860195][T14571]  __get_compat_msghdr+0x5be/0x890
[  620.865333][T14571]  get_compat_msghdr+0x108/0x270
[  620.870278][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  620.874788][T14571]  __sys_recvmmsg+0x4ca/0x510
[  620.879470][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  620.885541][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  620.891700][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  620.896907][T14571]  do_fast_syscall_32+0x6b/0xd0
[  620.901762][T14571]  do_SYSENTER_32+0x73/0x90
[  620.906267][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  620.912584][T14571] 
[  620.914906][T14571] Uninit was stored to memory at:
[  620.919939][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  620.925662][T14571]  __msan_chain_origin+0x50/0x90
[  620.930607][T14571]  __get_compat_msghdr+0x5be/0x890
[  620.935722][T14571]  get_compat_msghdr+0x108/0x270
[  620.940663][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  620.945171][T14571]  __sys_recvmmsg+0x4ca/0x510
[  620.949854][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  620.955930][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  620.962085][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  620.967290][T14571]  do_fast_syscall_32+0x6b/0xd0
[  620.972147][T14571]  do_SYSENTER_32+0x73/0x90
[  620.976651][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  620.982970][T14571] 
[  620.985306][T14571] Uninit was stored to memory at:
[  620.990335][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  620.996056][T14571]  __msan_chain_origin+0x50/0x90
[  621.001002][T14571]  __get_compat_msghdr+0x5be/0x890
[  621.006120][T14571]  get_compat_msghdr+0x108/0x270
[  621.011063][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  621.015569][T14571]  __sys_recvmmsg+0x4ca/0x510
[  621.020250][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  621.026325][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  621.032485][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  621.037690][T14571]  do_fast_syscall_32+0x6b/0xd0
[  621.042548][T14571]  do_SYSENTER_32+0x73/0x90
[  621.047057][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  621.053396][T14571] 
[  621.055738][T14571] Uninit was stored to memory at:
[  621.060770][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  621.066493][T14571]  __msan_chain_origin+0x50/0x90
[  621.071439][T14571]  __get_compat_msghdr+0x5be/0x890
[  621.076552][T14571]  get_compat_msghdr+0x108/0x270
[  621.081495][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  621.086002][T14571]  __sys_recvmmsg+0x4ca/0x510
[  621.090683][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  621.096751][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  621.103025][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  621.108229][T14571]  do_fast_syscall_32+0x6b/0xd0
[  621.113102][T14571]  do_SYSENTER_32+0x73/0x90
[  621.117609][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  621.123932][T14571] 
[  621.126255][T14571] Uninit was stored to memory at:
[  621.131303][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  621.137027][T14571]  __msan_chain_origin+0x50/0x90
[  621.141993][T14571]  __get_compat_msghdr+0x5be/0x890
[  621.147112][T14571]  get_compat_msghdr+0x108/0x270
[  621.152052][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  621.156558][T14571]  __sys_recvmmsg+0x4ca/0x510
[  621.161239][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  621.167306][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  621.173467][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  621.178698][T14571]  do_fast_syscall_32+0x6b/0xd0
[  621.183556][T14571]  do_SYSENTER_32+0x73/0x90
[  621.188067][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  621.194380][T14571] 
[  621.196703][T14571] Uninit was stored to memory at:
[  621.201732][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  621.207452][T14571]  __msan_chain_origin+0x50/0x90
[  621.212494][T14571]  __get_compat_msghdr+0x5be/0x890
[  621.217611][T14571]  get_compat_msghdr+0x108/0x270
[  621.222571][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  621.227078][T14571]  __sys_recvmmsg+0x4ca/0x510
[  621.231757][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  621.237826][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  621.243992][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  621.249213][T14571]  do_fast_syscall_32+0x6b/0xd0
[  621.254070][T14571]  do_SYSENTER_32+0x73/0x90
[  621.258577][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  621.264894][T14571] 
[  621.267217][T14571] Uninit was stored to memory at:
[  621.272245][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  621.277968][T14571]  __msan_chain_origin+0x50/0x90
[  621.282916][T14571]  __get_compat_msghdr+0x5be/0x890
[  621.288035][T14571]  get_compat_msghdr+0x108/0x270
[  621.292975][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  621.297480][T14571]  __sys_recvmmsg+0x4ca/0x510
[  621.302159][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  621.308229][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  621.314393][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  621.319598][T14571]  do_fast_syscall_32+0x6b/0xd0
[  621.324518][T14571]  do_SYSENTER_32+0x73/0x90
[  621.329031][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  621.335348][T14571] 
[  621.337675][T14571] Local variable ----msg_sys@do_recvmmsg created at:
[  621.344353][T14571]  do_recvmmsg+0xc5/0x1ee0
[  621.348772][T14571]  do_recvmmsg+0xc5/0x1ee0
[  621.573998][T14571] not chained 490000 origins
[  621.578641][T14571] CPU: 1 PID: 14571 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0
[  621.587316][T14571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  621.597378][T14571] Call Trace:
[  621.600685][T14571]  dump_stack+0x1df/0x240
[  621.605041][T14571]  kmsan_internal_chain_origin+0x6f/0x130
[  621.610775][T14571]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  621.616615][T14571]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  621.622698][T14571]  ? udp_recvmsg+0x1b8c/0x2100
[  621.627518][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  621.632645][T14571]  ? kmsan_set_origin_checked+0x95/0xf0
[  621.638207][T14571]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  621.644301][T14571]  ? _copy_from_user+0x15b/0x260
[  621.649248][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  621.654373][T14571]  __msan_chain_origin+0x50/0x90
[  621.659332][T14571]  __get_compat_msghdr+0x5be/0x890
[  621.664488][T14571]  get_compat_msghdr+0x108/0x270
[  621.669458][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  621.673994][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  621.679670][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  621.684793][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  621.690439][T14571]  ? __msan_poison_alloca+0xf0/0x120
[  621.695737][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  621.700513][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  621.705285][T14571]  ? kmsan_get_metadata+0x11d/0x180
[  621.710503][T14571]  __sys_recvmmsg+0x4ca/0x510
[  621.715214][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  621.721301][T14571]  ? __x32_compat_sys_recvmmsg_time64+0x80/0x80
[  621.727555][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  621.733725][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  621.738954][T14571]  do_fast_syscall_32+0x6b/0xd0
[  621.743823][T14571]  do_SYSENTER_32+0x73/0x90
[  621.748342][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  621.754672][T14571] RIP: 0023:0xf7f8d549
[  621.758737][T14571] Code: Bad RIP value.
[  621.762810][T14571] RSP: 002b:00000000f5d880cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  621.771227][T14571] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200004c0
[  621.779204][T14571] RDX: 00000000006fdaec RSI: 0000000000000022 RDI: 0000000000000000
[  621.787179][T14571] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  621.795180][T14571] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  621.803157][T14571] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  621.811153][T14571] Uninit was stored to memory at:
[  621.816200][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  621.821924][T14571]  __msan_chain_origin+0x50/0x90
[  621.826871][T14571]  __get_compat_msghdr+0x5be/0x890
[  621.831987][T14571]  get_compat_msghdr+0x108/0x270
[  621.836930][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  621.841438][T14571]  __sys_recvmmsg+0x4ca/0x510
[  621.846121][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  621.852195][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  621.858355][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  621.863563][T14571]  do_fast_syscall_32+0x6b/0xd0
[  621.868422][T14571]  do_SYSENTER_32+0x73/0x90
[  621.872929][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  621.879249][T14571] 
[  621.881571][T14571] Uninit was stored to memory at:
[  621.886603][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  621.892328][T14571]  __msan_chain_origin+0x50/0x90
[  621.897276][T14571]  __get_compat_msghdr+0x5be/0x890
[  621.902391][T14571]  get_compat_msghdr+0x108/0x270
[  621.907335][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  621.911842][T14571]  __sys_recvmmsg+0x4ca/0x510
[  621.916525][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  621.922596][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  621.928756][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  621.933966][T14571]  do_fast_syscall_32+0x6b/0xd0
[  621.938831][T14571]  do_SYSENTER_32+0x73/0x90
[  621.943338][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  621.949749][T14571] 
[  621.952078][T14571] Uninit was stored to memory at:
[  621.957115][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  621.962839][T14571]  __msan_chain_origin+0x50/0x90
[  621.967790][T14571]  __get_compat_msghdr+0x5be/0x890
[  621.972915][T14571]  get_compat_msghdr+0x108/0x270
[  621.977860][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  621.982369][T14571]  __sys_recvmmsg+0x4ca/0x510
[  621.987052][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  621.993208][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  621.999365][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  622.004572][T14571]  do_fast_syscall_32+0x6b/0xd0
[  622.009429][T14571]  do_SYSENTER_32+0x73/0x90
[  622.013939][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  622.020261][T14571] 
[  622.022590][T14571] Uninit was stored to memory at:
[  622.027623][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  622.033350][T14571]  __msan_chain_origin+0x50/0x90
[  622.038297][T14571]  __get_compat_msghdr+0x5be/0x890
[  622.043415][T14571]  get_compat_msghdr+0x108/0x270
[  622.048360][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  622.052876][T14571]  __sys_recvmmsg+0x4ca/0x510
[  622.057557][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  622.063626][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  622.069785][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  622.074998][T14571]  do_fast_syscall_32+0x6b/0xd0
[  622.079857][T14571]  do_SYSENTER_32+0x73/0x90
[  622.084366][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  622.090683][T14571] 
[  622.093009][T14571] Uninit was stored to memory at:
[  622.098044][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  622.103767][T14571]  __msan_chain_origin+0x50/0x90
[  622.108717][T14571]  __get_compat_msghdr+0x5be/0x890
[  622.113837][T14571]  get_compat_msghdr+0x108/0x270
[  622.118783][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  622.123300][T14571]  __sys_recvmmsg+0x4ca/0x510
[  622.127984][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  622.134074][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  622.140233][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  622.145437][T14571]  do_fast_syscall_32+0x6b/0xd0
[  622.150299][T14571]  do_SYSENTER_32+0x73/0x90
[  622.154820][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  622.161139][T14571] 
[  622.163473][T14571] Uninit was stored to memory at:
[  622.168504][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  622.174229][T14571]  __msan_chain_origin+0x50/0x90
[  622.179172][T14571]  __get_compat_msghdr+0x5be/0x890
[  622.184290][T14571]  get_compat_msghdr+0x108/0x270
[  622.189235][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  622.193743][T14571]  __sys_recvmmsg+0x4ca/0x510
[  622.198424][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  622.204496][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  622.210674][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  622.215878][T14571]  do_fast_syscall_32+0x6b/0xd0
[  622.220755][T14571]  do_SYSENTER_32+0x73/0x90
[  622.225265][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  622.231584][T14571] 
[  622.233907][T14571] Uninit was stored to memory at:
[  622.238939][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  622.244667][T14571]  __msan_chain_origin+0x50/0x90
[  622.249617][T14571]  __get_compat_msghdr+0x5be/0x890
[  622.254738][T14571]  get_compat_msghdr+0x108/0x270
[  622.259684][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  622.264193][T14571]  __sys_recvmmsg+0x4ca/0x510
[  622.268874][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  622.274944][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  622.281102][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  622.286308][T14571]  do_fast_syscall_32+0x6b/0xd0
[  622.291168][T14571]  do_SYSENTER_32+0x73/0x90
[  622.295673][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  622.302009][T14571] 
[  622.304343][T14571] Local variable ----msg_sys@do_recvmmsg created at:
[  622.311024][T14571]  do_recvmmsg+0xc5/0x1ee0
[  622.315467][T14571]  do_recvmmsg+0xc5/0x1ee0
[  622.474278][T14571] not chained 500000 origins
[  622.478923][T14571] CPU: 1 PID: 14571 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0
[  622.487600][T14571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  622.497653][T14571] Call Trace:
[  622.500961][T14571]  dump_stack+0x1df/0x240
[  622.505319][T14571]  kmsan_internal_chain_origin+0x6f/0x130
[  622.511061][T14571]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  622.516884][T14571]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  622.522959][T14571]  ? udp_recvmsg+0x1b8c/0x2100
[  622.527782][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  622.532947][T14571]  ? kmsan_set_origin_checked+0x95/0xf0
[  622.538522][T14571]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  622.544616][T14571]  ? _copy_from_user+0x15b/0x260
[  622.549565][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  622.554688][T14571]  __msan_chain_origin+0x50/0x90
[  622.559648][T14571]  __get_compat_msghdr+0x5be/0x890
[  622.570437][T14571]  get_compat_msghdr+0x108/0x270
[  622.575406][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  622.579940][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  622.585612][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  622.590740][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  622.596386][T14571]  ? __msan_poison_alloca+0xf0/0x120
[  622.601687][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  622.606459][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  622.611233][T14571]  ? kmsan_get_metadata+0x11d/0x180
[  622.616447][T14571]  __sys_recvmmsg+0x4ca/0x510
[  622.621157][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  622.627250][T14571]  ? __x32_compat_sys_recvmmsg_time64+0x80/0x80
[  622.633528][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  622.639710][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  622.644936][T14571]  do_fast_syscall_32+0x6b/0xd0
[  622.649802][T14571]  do_SYSENTER_32+0x73/0x90
[  622.654325][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  622.660655][T14571] RIP: 0023:0xf7f8d549
[  622.664721][T14571] Code: Bad RIP value.
[  622.668785][T14571] RSP: 002b:00000000f5d880cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  622.677206][T14571] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200004c0
[  622.685182][T14571] RDX: 00000000006fdaec RSI: 0000000000000022 RDI: 0000000000000000
[  622.693155][T14571] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  622.701133][T14571] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  622.709112][T14571] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  622.717109][T14571] Uninit was stored to memory at:
[  622.722145][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  622.727874][T14571]  __msan_chain_origin+0x50/0x90
[  622.732821][T14571]  __get_compat_msghdr+0x5be/0x890
[  622.737943][T14571]  get_compat_msghdr+0x108/0x270
[  622.742888][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  622.747399][T14571]  __sys_recvmmsg+0x4ca/0x510
[  622.752086][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  622.758154][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  622.764337][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  622.769566][T14571]  do_fast_syscall_32+0x6b/0xd0
[  622.774425][T14571]  do_SYSENTER_32+0x73/0x90
[  622.778936][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  622.785255][T14571] 
[  622.787582][T14571] Uninit was stored to memory at:
[  622.792617][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  622.798349][T14571]  __msan_chain_origin+0x50/0x90
[  622.803296][T14571]  __get_compat_msghdr+0x5be/0x890
[  622.808417][T14571]  get_compat_msghdr+0x108/0x270
[  622.813362][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  622.817877][T14571]  __sys_recvmmsg+0x4ca/0x510
[  622.822668][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  622.828742][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  622.834901][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  622.840113][T14571]  do_fast_syscall_32+0x6b/0xd0
[  622.844972][T14571]  do_SYSENTER_32+0x73/0x90
[  622.849482][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  622.855800][T14571] 
[  622.858125][T14571] Uninit was stored to memory at:
[  622.863162][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  622.868888][T14571]  __msan_chain_origin+0x50/0x90
[  622.873833][T14571]  __get_compat_msghdr+0x5be/0x890
[  622.878950][T14571]  get_compat_msghdr+0x108/0x270
[  622.883898][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  622.888407][T14571]  __sys_recvmmsg+0x4ca/0x510
[  622.893091][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  622.899169][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  622.905338][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  622.910545][T14571]  do_fast_syscall_32+0x6b/0xd0
[  622.915404][T14571]  do_SYSENTER_32+0x73/0x90
[  622.919917][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  622.926235][T14571] 
[  622.928562][T14571] Uninit was stored to memory at:
[  622.933605][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  622.939334][T14571]  __msan_chain_origin+0x50/0x90
[  622.944281][T14571]  __get_compat_msghdr+0x5be/0x890
[  622.949407][T14571]  get_compat_msghdr+0x108/0x270
[  622.954373][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  622.958881][T14571]  __sys_recvmmsg+0x4ca/0x510
[  622.963565][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  622.969638][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  622.975800][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  622.981006][T14571]  do_fast_syscall_32+0x6b/0xd0
[  622.985867][T14571]  do_SYSENTER_32+0x73/0x90
[  622.990377][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  622.996694][T14571] 
[  622.999024][T14571] Uninit was stored to memory at:
[  623.004056][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  623.009781][T14571]  __msan_chain_origin+0x50/0x90
[  623.014732][T14571]  __get_compat_msghdr+0x5be/0x890
[  623.019855][T14571]  get_compat_msghdr+0x108/0x270
[  623.024800][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  623.029308][T14571]  __sys_recvmmsg+0x4ca/0x510
[  623.034000][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  623.040076][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  623.046237][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  623.051441][T14571]  do_fast_syscall_32+0x6b/0xd0
[  623.056299][T14571]  do_SYSENTER_32+0x73/0x90
[  623.060813][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  623.067131][T14571] 
[  623.069455][T14571] Uninit was stored to memory at:
[  623.074486][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  623.080211][T14571]  __msan_chain_origin+0x50/0x90
[  623.085161][T14571]  __get_compat_msghdr+0x5be/0x890
[  623.090282][T14571]  get_compat_msghdr+0x108/0x270
[  623.095233][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  623.099744][T14571]  __sys_recvmmsg+0x4ca/0x510
[  623.104514][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  623.110604][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  623.116767][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  623.121992][T14571]  do_fast_syscall_32+0x6b/0xd0
[  623.126850][T14571]  do_SYSENTER_32+0x73/0x90
[  623.131367][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  623.137683][T14571] 
[  623.140010][T14571] Uninit was stored to memory at:
[  623.145047][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  623.150772][T14571]  __msan_chain_origin+0x50/0x90
[  623.155719][T14571]  __get_compat_msghdr+0x5be/0x890
[  623.160839][T14571]  get_compat_msghdr+0x108/0x270
[  623.165787][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  623.170298][T14571]  __sys_recvmmsg+0x4ca/0x510
[  623.174986][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  623.181061][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  623.187218][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  623.192426][T14571]  do_fast_syscall_32+0x6b/0xd0
[  623.197280][T14571]  do_SYSENTER_32+0x73/0x90
[  623.201786][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  623.208108][T14571] 
[  623.210434][T14571] Local variable ----msg_sys@do_recvmmsg created at:
[  623.217117][T14571]  do_recvmmsg+0xc5/0x1ee0
[  623.221550][T14571]  do_recvmmsg+0xc5/0x1ee0
[  623.384627][T14571] not chained 510000 origins
[  623.389270][T14571] CPU: 1 PID: 14571 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0
[  623.397944][T14571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  623.408002][T14571] Call Trace:
[  623.411313][T14571]  dump_stack+0x1df/0x240
[  623.415672][T14571]  kmsan_internal_chain_origin+0x6f/0x130
[  623.421399][T14571]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  623.427220][T14571]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  623.433322][T14571]  ? udp_recvmsg+0x1b8c/0x2100
[  623.438151][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  623.443280][T14571]  ? kmsan_set_origin_checked+0x95/0xf0
[  623.448840][T14571]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  623.454932][T14571]  ? _copy_from_user+0x15b/0x260
[  623.459888][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  623.465016][T14571]  __msan_chain_origin+0x50/0x90
[  623.469972][T14571]  __get_compat_msghdr+0x5be/0x890
[  623.475154][T14571]  get_compat_msghdr+0x108/0x270
[  623.480145][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  623.484680][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  623.490355][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  623.495479][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  623.501125][T14571]  ? __msan_poison_alloca+0xf0/0x120
[  623.506432][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  623.511207][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  623.515981][T14571]  ? kmsan_get_metadata+0x11d/0x180
[  623.521197][T14571]  __sys_recvmmsg+0x4ca/0x510
[  623.525907][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  623.531992][T14571]  ? __x32_compat_sys_recvmmsg_time64+0x80/0x80
[  623.538301][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  623.544472][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  623.549698][T14571]  do_fast_syscall_32+0x6b/0xd0
[  623.554564][T14571]  do_SYSENTER_32+0x73/0x90
[  623.559082][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  623.565414][T14571] RIP: 0023:0xf7f8d549
[  623.569475][T14571] Code: Bad RIP value.
[  623.573541][T14571] RSP: 002b:00000000f5d880cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  623.581963][T14571] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200004c0
[  623.589940][T14571] RDX: 00000000006fdaec RSI: 0000000000000022 RDI: 0000000000000000
[  623.597914][T14571] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  623.605892][T14571] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  623.613871][T14571] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  623.621866][T14571] Uninit was stored to memory at:
[  623.626921][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  623.632654][T14571]  __msan_chain_origin+0x50/0x90
[  623.637603][T14571]  __get_compat_msghdr+0x5be/0x890
[  623.642724][T14571]  get_compat_msghdr+0x108/0x270
[  623.647669][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  623.652184][T14571]  __sys_recvmmsg+0x4ca/0x510
[  623.656874][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  623.662954][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  623.669141][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  623.674352][T14571]  do_fast_syscall_32+0x6b/0xd0
[  623.679214][T14571]  do_SYSENTER_32+0x73/0x90
[  623.683729][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  623.690051][T14571] 
[  623.692378][T14571] Uninit was stored to memory at:
[  623.697412][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  623.703145][T14571]  __msan_chain_origin+0x50/0x90
[  623.708089][T14571]  __get_compat_msghdr+0x5be/0x890
[  623.713208][T14571]  get_compat_msghdr+0x108/0x270
[  623.718152][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  623.722672][T14571]  __sys_recvmmsg+0x4ca/0x510
[  623.727353][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  623.733424][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  623.739703][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  623.744914][T14571]  do_fast_syscall_32+0x6b/0xd0
[  623.749797][T14571]  do_SYSENTER_32+0x73/0x90
[  623.754315][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  623.760635][T14571] 
[  623.762971][T14571] Uninit was stored to memory at:
[  623.768027][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  623.773757][T14571]  __msan_chain_origin+0x50/0x90
[  623.778710][T14571]  __get_compat_msghdr+0x5be/0x890
[  623.783853][T14571]  get_compat_msghdr+0x108/0x270
[  623.788805][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  623.793315][T14571]  __sys_recvmmsg+0x4ca/0x510
[  623.798109][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  623.804185][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  623.810346][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  623.815554][T14571]  do_fast_syscall_32+0x6b/0xd0
[  623.820414][T14571]  do_SYSENTER_32+0x73/0x90
[  623.824926][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  623.831243][T14571] 
[  623.833570][T14571] Uninit was stored to memory at:
[  623.838603][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  623.844352][T14571]  __msan_chain_origin+0x50/0x90
[  623.849299][T14571]  __get_compat_msghdr+0x5be/0x890
[  623.854427][T14571]  get_compat_msghdr+0x108/0x270
[  623.859376][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  623.863888][T14571]  __sys_recvmmsg+0x4ca/0x510
[  623.868566][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  623.874643][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  623.880802][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  623.886012][T14571]  do_fast_syscall_32+0x6b/0xd0
[  623.890867][T14571]  do_SYSENTER_32+0x73/0x90
[  623.895385][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  623.901702][T14571] 
[  623.904029][T14571] Uninit was stored to memory at:
[  623.909064][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  623.914788][T14571]  __msan_chain_origin+0x50/0x90
[  623.919736][T14571]  __get_compat_msghdr+0x5be/0x890
[  623.924855][T14571]  get_compat_msghdr+0x108/0x270
[  623.929800][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  623.934331][T14571]  __sys_recvmmsg+0x4ca/0x510
[  623.939012][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  623.945088][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  623.951249][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  623.956457][T14571]  do_fast_syscall_32+0x6b/0xd0
[  623.961338][T14571]  do_SYSENTER_32+0x73/0x90
[  623.965847][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  623.972169][T14571] 
[  623.974506][T14571] Uninit was stored to memory at:
[  623.979537][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  623.985262][T14571]  __msan_chain_origin+0x50/0x90
[  623.990206][T14571]  __get_compat_msghdr+0x5be/0x890
[  623.995328][T14571]  get_compat_msghdr+0x108/0x270
[  624.000282][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  624.004816][T14571]  __sys_recvmmsg+0x4ca/0x510
[  624.009496][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  624.015568][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  624.021730][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  624.026935][T14571]  do_fast_syscall_32+0x6b/0xd0
[  624.031796][T14571]  do_SYSENTER_32+0x73/0x90
[  624.036336][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  624.042655][T14571] 
[  624.044978][T14571] Uninit was stored to memory at:
[  624.050010][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  624.055755][T14571]  __msan_chain_origin+0x50/0x90
[  624.060702][T14571]  __get_compat_msghdr+0x5be/0x890
[  624.065821][T14571]  get_compat_msghdr+0x108/0x270
[  624.070765][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  624.075275][T14571]  __sys_recvmmsg+0x4ca/0x510
[  624.079961][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  624.087248][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  624.093406][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  624.098614][T14571]  do_fast_syscall_32+0x6b/0xd0
[  624.103473][T14571]  do_SYSENTER_32+0x73/0x90
[  624.107984][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  624.114308][T14571] 
[  624.116635][T14571] Local variable ----msg_sys@do_recvmmsg created at:
[  624.123326][T14571]  do_recvmmsg+0xc5/0x1ee0
[  624.127772][T14571]  do_recvmmsg+0xc5/0x1ee0
[  624.280321][T14571] not chained 520000 origins
[  624.284953][T14571] CPU: 1 PID: 14571 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0
[  624.293622][T14571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  624.303681][T14571] Call Trace:
[  624.306996][T14571]  dump_stack+0x1df/0x240
[  624.311350][T14571]  kmsan_internal_chain_origin+0x6f/0x130
[  624.317092][T14571]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  624.322911][T14571]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  624.328991][T14571]  ? udp_recvmsg+0x1b8c/0x2100
[  624.333810][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  624.338934][T14571]  ? kmsan_set_origin_checked+0x95/0xf0
[  624.344504][T14571]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  624.350597][T14571]  ? _copy_from_user+0x15b/0x260
[  624.355544][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  624.360671][T14571]  __msan_chain_origin+0x50/0x90
[  624.365628][T14571]  __get_compat_msghdr+0x5be/0x890
[  624.370816][T14571]  get_compat_msghdr+0x108/0x270
[  624.375780][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  624.380321][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  624.386012][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  624.391133][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  624.396782][T14571]  ? __msan_poison_alloca+0xf0/0x120
[  624.402089][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  624.406859][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  624.411635][T14571]  ? kmsan_get_metadata+0x11d/0x180
[  624.416851][T14571]  __sys_recvmmsg+0x4ca/0x510
[  624.421562][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  624.427650][T14571]  ? __x32_compat_sys_recvmmsg_time64+0x80/0x80
[  624.433901][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  624.440078][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  624.445301][T14571]  do_fast_syscall_32+0x6b/0xd0
[  624.450171][T14571]  do_SYSENTER_32+0x73/0x90
[  624.454688][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  624.461019][T14571] RIP: 0023:0xf7f8d549
[  624.465085][T14571] Code: Bad RIP value.
[  624.469151][T14571] RSP: 002b:00000000f5d880cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  624.477567][T14571] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200004c0
[  624.485541][T14571] RDX: 00000000006fdaec RSI: 0000000000000022 RDI: 0000000000000000
[  624.493517][T14571] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  624.501491][T14571] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  624.509463][T14571] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  624.517460][T14571] Uninit was stored to memory at:
[  624.522500][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  624.528231][T14571]  __msan_chain_origin+0x50/0x90
[  624.533179][T14571]  __get_compat_msghdr+0x5be/0x890
[  624.538294][T14571]  get_compat_msghdr+0x108/0x270
[  624.543241][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  624.547750][T14571]  __sys_recvmmsg+0x4ca/0x510
[  624.552435][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  624.558506][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  624.564667][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  624.569877][T14571]  do_fast_syscall_32+0x6b/0xd0
[  624.574732][T14571]  do_SYSENTER_32+0x73/0x90
[  624.579241][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  624.585559][T14571] 
[  624.587882][T14571] Uninit was stored to memory at:
[  624.592917][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  624.598638][T14571]  __msan_chain_origin+0x50/0x90
[  624.603588][T14571]  __get_compat_msghdr+0x5be/0x890
[  624.608706][T14571]  get_compat_msghdr+0x108/0x270
[  624.613651][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  624.618161][T14571]  __sys_recvmmsg+0x4ca/0x510
[  624.622850][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  624.628920][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  624.635083][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  624.640292][T14571]  do_fast_syscall_32+0x6b/0xd0
[  624.645154][T14571]  do_SYSENTER_32+0x73/0x90
[  624.649673][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  624.655993][T14571] 
[  624.658322][T14571] Uninit was stored to memory at:
[  624.663354][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  624.669082][T14571]  __msan_chain_origin+0x50/0x90
[  624.674030][T14571]  __get_compat_msghdr+0x5be/0x890
[  624.679156][T14571]  get_compat_msghdr+0x108/0x270
[  624.684102][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  624.688613][T14571]  __sys_recvmmsg+0x4ca/0x510
[  624.693296][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  624.699384][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  624.705551][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  624.710765][T14571]  do_fast_syscall_32+0x6b/0xd0
[  624.715623][T14571]  do_SYSENTER_32+0x73/0x90
[  624.720133][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  624.726452][T14571] 
[  624.728785][T14571] Uninit was stored to memory at:
[  624.733825][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  624.739550][T14571]  __msan_chain_origin+0x50/0x90
[  624.744497][T14571]  __get_compat_msghdr+0x5be/0x890
[  624.749614][T14571]  get_compat_msghdr+0x108/0x270
[  624.754558][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  624.759084][T14571]  __sys_recvmmsg+0x4ca/0x510
[  624.763768][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  624.769841][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  624.776007][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  624.781217][T14571]  do_fast_syscall_32+0x6b/0xd0
[  624.786074][T14571]  do_SYSENTER_32+0x73/0x90
[  624.790586][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  624.796905][T14571] 
[  624.799233][T14571] Uninit was stored to memory at:
[  624.804266][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  624.809989][T14571]  __msan_chain_origin+0x50/0x90
[  624.814934][T14571]  __get_compat_msghdr+0x5be/0x890
[  624.820057][T14571]  get_compat_msghdr+0x108/0x270
[  624.825009][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  624.829519][T14571]  __sys_recvmmsg+0x4ca/0x510
[  624.834201][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  624.840331][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  624.846511][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  624.851718][T14571]  do_fast_syscall_32+0x6b/0xd0
[  624.856580][T14571]  do_SYSENTER_32+0x73/0x90
[  624.861095][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  624.867415][T14571] 
[  624.869744][T14571] Uninit was stored to memory at:
[  624.874780][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  624.880530][T14571]  __msan_chain_origin+0x50/0x90
[  624.885475][T14571]  __get_compat_msghdr+0x5be/0x890
[  624.890598][T14571]  get_compat_msghdr+0x108/0x270
[  624.895543][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  624.900054][T14571]  __sys_recvmmsg+0x4ca/0x510
[  624.904736][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  624.910807][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  624.916969][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  624.922183][T14571]  do_fast_syscall_32+0x6b/0xd0
[  624.927049][T14571]  do_SYSENTER_32+0x73/0x90
[  624.931555][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  624.937880][T14571] 
[  624.940212][T14571] Uninit was stored to memory at:
[  624.945245][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  624.950970][T14571]  __msan_chain_origin+0x50/0x90
[  624.955919][T14571]  __get_compat_msghdr+0x5be/0x890
[  624.961037][T14571]  get_compat_msghdr+0x108/0x270
[  624.965978][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  624.970491][T14571]  __sys_recvmmsg+0x4ca/0x510
[  624.975174][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  624.981247][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  624.987406][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  624.992637][T14571]  do_fast_syscall_32+0x6b/0xd0
[  624.997493][T14571]  do_SYSENTER_32+0x73/0x90
[  625.002019][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  625.008339][T14571] 
[  625.010664][T14571] Local variable ----msg_sys@do_recvmmsg created at:
[  625.017347][T14571]  do_recvmmsg+0xc5/0x1ee0
[  625.021769][T14571]  do_recvmmsg+0xc5/0x1ee0
[  625.189813][T14571] not chained 530000 origins
[  625.194455][T14571] CPU: 1 PID: 14571 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0
[  625.203144][T14571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  625.213203][T14571] Call Trace:
[  625.216507][T14571]  dump_stack+0x1df/0x240
[  625.220861][T14571]  kmsan_internal_chain_origin+0x6f/0x130
[  625.226603][T14571]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  625.232444][T14571]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  625.238526][T14571]  ? udp_recvmsg+0x1b8c/0x2100
[  625.243340][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  625.248466][T14571]  ? kmsan_set_origin_checked+0x95/0xf0
[  625.254034][T14571]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  625.260122][T14571]  ? _copy_from_user+0x15b/0x260
[  625.265071][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  625.270194][T14571]  __msan_chain_origin+0x50/0x90
[  625.275149][T14571]  __get_compat_msghdr+0x5be/0x890
[  625.280302][T14571]  get_compat_msghdr+0x108/0x270
[  625.285291][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  625.289826][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  625.295519][T14571]  ? kmsan_get_metadata+0x4f/0x180
[  625.300644][T14571]  ? kmsan_internal_set_origin+0x75/0xb0
[  625.306291][T14571]  ? __msan_poison_alloca+0xf0/0x120
[  625.311596][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  625.316370][T14571]  ? __sys_recvmmsg+0xb4/0x510
[  625.321141][T14571]  ? kmsan_get_metadata+0x11d/0x180
[  625.326354][T14571]  __sys_recvmmsg+0x4ca/0x510
[  625.331065][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  625.337155][T14571]  ? __x32_compat_sys_recvmmsg_time64+0x80/0x80
[  625.343423][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  625.349590][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  625.354815][T14571]  do_fast_syscall_32+0x6b/0xd0
[  625.359685][T14571]  do_SYSENTER_32+0x73/0x90
[  625.364203][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  625.370536][T14571] RIP: 0023:0xf7f8d549
[  625.374598][T14571] Code: Bad RIP value.
[  625.378661][T14571] RSP: 002b:00000000f5d880cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  625.387081][T14571] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200004c0
[  625.395060][T14571] RDX: 00000000006fdaec RSI: 0000000000000022 RDI: 0000000000000000
[  625.403040][T14571] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  625.411035][T14571] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  625.419029][T14571] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  625.427025][T14571] Uninit was stored to memory at:
[  625.432064][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  625.437791][T14571]  __msan_chain_origin+0x50/0x90
[  625.442733][T14571]  __get_compat_msghdr+0x5be/0x890
[  625.447853][T14571]  get_compat_msghdr+0x108/0x270
[  625.452805][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  625.457314][T14571]  __sys_recvmmsg+0x4ca/0x510
[  625.461994][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  625.468067][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  625.474229][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  625.479432][T14571]  do_fast_syscall_32+0x6b/0xd0
[  625.484292][T14571]  do_SYSENTER_32+0x73/0x90
[  625.488801][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  625.495118][T14571] 
[  625.497443][T14571] Uninit was stored to memory at:
[  625.502481][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  625.508209][T14571]  __msan_chain_origin+0x50/0x90
[  625.513158][T14571]  __get_compat_msghdr+0x5be/0x890
[  625.518276][T14571]  get_compat_msghdr+0x108/0x270
[  625.523224][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  625.527732][T14571]  __sys_recvmmsg+0x4ca/0x510
[  625.532417][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  625.538488][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  625.544647][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  625.549879][T14571]  do_fast_syscall_32+0x6b/0xd0
[  625.554739][T14571]  do_SYSENTER_32+0x73/0x90
[  625.559248][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  625.565566][T14571] 
[  625.567895][T14571] Uninit was stored to memory at:
[  625.572928][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  625.578649][T14571]  __msan_chain_origin+0x50/0x90
[  625.583593][T14571]  __get_compat_msghdr+0x5be/0x890
[  625.588711][T14571]  get_compat_msghdr+0x108/0x270
[  625.593654][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  625.598160][T14571]  __sys_recvmmsg+0x4ca/0x510
[  625.602853][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  625.608928][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  625.615092][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  625.620299][T14571]  do_fast_syscall_32+0x6b/0xd0
[  625.625159][T14571]  do_SYSENTER_32+0x73/0x90
[  625.629671][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  625.635991][T14571] 
[  625.638319][T14571] Uninit was stored to memory at:
[  625.643358][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  625.649113][T14571]  __msan_chain_origin+0x50/0x90
[  625.654058][T14571]  __get_compat_msghdr+0x5be/0x890
[  625.659173][T14571]  get_compat_msghdr+0x108/0x270
[  625.664119][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  625.668628][T14571]  __sys_recvmmsg+0x4ca/0x510
[  625.673309][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  625.679377][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  625.685535][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  625.690740][T14571]  do_fast_syscall_32+0x6b/0xd0
[  625.695603][T14571]  do_SYSENTER_32+0x73/0x90
[  625.700112][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  625.706427][T14571] 
[  625.708749][T14571] Uninit was stored to memory at:
[  625.713782][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  625.719505][T14571]  __msan_chain_origin+0x50/0x90
[  625.724453][T14571]  __get_compat_msghdr+0x5be/0x890
[  625.729573][T14571]  get_compat_msghdr+0x108/0x270
[  625.734516][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  625.739024][T14571]  __sys_recvmmsg+0x4ca/0x510
[  625.743704][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  625.749787][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  625.755949][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  625.761157][T14571]  do_fast_syscall_32+0x6b/0xd0
[  625.766019][T14571]  do_SYSENTER_32+0x73/0x90
[  625.770533][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  625.776853][T14571] 
[  625.779182][T14571] Uninit was stored to memory at:
[  625.784222][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  625.789951][T14571]  __msan_chain_origin+0x50/0x90
[  625.794900][T14571]  __get_compat_msghdr+0x5be/0x890
[  625.800018][T14571]  get_compat_msghdr+0x108/0x270
[  625.804970][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  625.809481][T14571]  __sys_recvmmsg+0x4ca/0x510
[  625.814183][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  625.820252][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  625.826415][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  625.831621][T14571]  do_fast_syscall_32+0x6b/0xd0
[  625.836481][T14571]  do_SYSENTER_32+0x73/0x90
[  625.840990][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  625.847309][T14571] 
[  625.849636][T14571] Uninit was stored to memory at:
[  625.854668][T14571]  kmsan_internal_chain_origin+0xad/0x130
[  625.860392][T14571]  __msan_chain_origin+0x50/0x90
[  625.865337][T14571]  __get_compat_msghdr+0x5be/0x890
[  625.870455][T14571]  get_compat_msghdr+0x108/0x270
[  625.875398][T14571]  do_recvmmsg+0xa6a/0x1ee0
[  625.879917][T14571]  __sys_recvmmsg+0x4ca/0x510
[  625.884600][T14571]  __se_compat_sys_recvmmsg_time32+0xfb/0x120
[  625.890672][T14571]  __ia32_compat_sys_recvmmsg_time32+0x62/0x80
[  625.896833][T14571]  __do_fast_syscall_32+0x2aa/0x400
[  625.902041][T14571]  do_fast_syscall_32+0x6b/0xd0
[  625.906898][T14571]  do_SYSENTER_32+0x73/0x90
[  625.911409][T14571]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  625.917728][T14571] 
[  625.920055][T14571] Local variable ----msg_sys@do_recvmmsg created at:
[  625.926742][T14571]  do_recvmmsg+0xc5/0x1ee0
[  625.931166][T14571]  do_recvmmsg+0xc5/0x1ee0
12:15:43 executing program 4:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb01531f"], &(0x7f0000000300)=""/265, 0x26, 0x109, 0x8}, 0x20)

12:15:43 executing program 0:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00'})
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @empty}})
write$tun(r0, &(0x7f0000000240)={@void, @val={0x3}, @mpls={[], @ipv4=@udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0x18, 0x0, @wg=@data}}}}, 0x36)

12:15:43 executing program 1:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast2, @local}, 0xc)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000280)={0x8, {{0x2, 0x0, @multicast1}}}, 0x88)
getsockopt$inet_buf(r0, 0x0, 0x0, &(0x7f0000000000)=""/145, &(0x7f0000695ffc)=0x91)

12:15:43 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x420000015001})
ioctl$TUNGETDEVNETNS(r0, 0x400454dc, 0x722000)

12:15:43 executing program 2:
r0 = socket(0x0, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:15:43 executing program 3:
r0 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video0\x00', 0x2, 0x0)
ioctl$VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f00000000c0)={0x0, 0x3, 0x0, "443e07667efbdbd565b8fe30076c14b79007752fee4f443763dff6665fbda95c"})

12:15:43 executing program 1:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast2, @local}, 0xc)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000280)={0x8, {{0x2, 0x0, @multicast1}}}, 0x88)
getsockopt$inet_buf(r0, 0x0, 0x29, 0x0, &(0x7f0000695ffc))

12:15:43 executing program 3:
r0 = socket$unix(0x1, 0x2, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mmap$IORING_OFF_SQ_RING(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x44032, 0xffffffffffffffff, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)

12:15:43 executing program 0:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00'})
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @empty}})
write$tun(r0, &(0x7f0000000240)={@void, @val={0x3}, @mpls={[], @ipv4=@udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0x18, 0x0, @wg=@data}}}}, 0x36)

12:15:43 executing program 2:
r0 = socket(0x0, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:15:43 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, 0x0)
close(r0)

12:15:44 executing program 1:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast2, @local}, 0xc)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000280)={0x8, {{0x2, 0x0, @multicast1}}}, 0x88)
getsockopt$inet_buf(r0, 0x0, 0x29, 0x0, &(0x7f0000695ffc))

[  628.542052][T14637] BPF:Unsupported flags
[  628.549952][T14637] BPF:Unsupported flags
12:15:45 executing program 4:
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(r1, &(0x7f0000000380)=[{&(0x7f0000000100)=""/93, 0x5d}], 0x1, 0x5b)

12:15:45 executing program 2:
r0 = socket(0x0, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:15:45 executing program 3:
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
syz_mount_image$gfs2(&(0x7f00000001c0)='gfs2\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000001640)={[{@acl='acl'}, {@localcaching='localcaching'}]})

12:15:45 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = socket(0x28, 0x1, 0x0)
accept4$netrom(r2, 0x0, 0x0, 0x0)

12:15:45 executing program 0:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00'})
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @empty}})
write$tun(r0, &(0x7f0000000240)={@void, @val={0x3}, @mpls={[], @ipv4=@udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0x18, 0x0, @wg=@data}}}}, 0x36)

12:15:45 executing program 1:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast2, @local}, 0xc)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000280)={0x8, {{0x2, 0x0, @multicast1}}}, 0x88)
getsockopt$inet_buf(r0, 0x0, 0x29, 0x0, &(0x7f0000695ffc))

[  628.831489][T14646] gfs2: not a GFS2 filesystem
12:15:46 executing program 5:
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=<r0=>0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
r3 = openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vhost-net\x00', 0x2, 0x0)
ioctl$VHOST_SET_FEATURES(r3, 0x4008af00, &(0x7f0000000100)=0x300000000)
readv(r3, &(0x7f0000000200)=[{&(0x7f0000003840)=""/157, 0x48}], 0x1)
sendmsg$NL80211_CMD_START_AP(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0)

12:15:46 executing program 1:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast2, @local}, 0xc)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000280)={0x8, {{0x2, 0x0, @multicast1}}}, 0x88)
getsockopt$inet_buf(r0, 0x0, 0x29, &(0x7f0000000000)=""/145, 0x0)

12:15:46 executing program 0:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x420000015001})
socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_inet_SIOCSIFADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @empty}})
write$tun(r0, &(0x7f0000000240)={@void, @val={0x3}, @mpls={[], @ipv4=@udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0x18, 0x0, @wg=@data}}}}, 0x36)

12:15:46 executing program 2:
r0 = socket(0x1e, 0x0, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:15:46 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r0, 0x800448f0, &(0x7f0000000040)={0x0, 0x0, "2c1698"})

12:15:46 executing program 1:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast2, @local}, 0xc)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000280)={0x8, {{0x2, 0x0, @multicast1}}}, 0x88)
getsockopt$inet_buf(r0, 0x0, 0x29, &(0x7f0000000000)=""/145, 0x0)

12:15:47 executing program 4:
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(r1, &(0x7f0000000380)=[{&(0x7f0000000100)=""/93, 0x5d}], 0x1, 0x5b)

12:15:47 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)
close(r0)

12:15:47 executing program 2:
r0 = socket(0x1e, 0x0, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:15:47 executing program 0:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x420000015001})
socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_inet_SIOCSIFADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @empty}})
write$tun(r0, &(0x7f0000000240)={@void, @val={0x3}, @mpls={[], @ipv4=@udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0x18, 0x0, @wg=@data}}}}, 0x36)

12:15:47 executing program 1:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast2, @local}, 0xc)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000280)={0x8, {{0x2, 0x0, @multicast1}}}, 0x88)
getsockopt$inet_buf(r0, 0x0, 0x29, &(0x7f0000000000)=""/145, 0x0)

12:15:48 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = getpid()
fcntl$setownex(r0, 0xf, &(0x7f0000000040)={0x0, r1})
close(r0)

12:15:49 executing program 5:
r0 = creat(&(0x7f0000000280)='./file0\x00', 0xf1)
close(r0)
execve(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r1 = socket$inet6(0xa, 0x802, 0x0)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c)
socket(0x0, 0x0, 0x0)
r2 = socket$inet6(0xa, 0x802, 0x0)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2, 0xa}, 0x1c)

12:15:49 executing program 2:
r0 = socket(0x1e, 0x0, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:15:49 executing program 3:
r0 = creat(&(0x7f0000000280)='./file0\x00', 0xf1)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
close(r0)
clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
execve(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000840)=[&(0x7f0000000a80)='\xa11\xc2\x1fQ\x88\xebH\xe7\xcf/\x83\xb3+\xc5\xa0\xa6\xbf\x85\xf0;\xea\x8a\xd5b\xb0\xe7=\xf41\xf5\xb4\xb9\aPk\x94csn\x8bu\bHD\x06\f\xccU\x19\xaa\xe0\xed\x85\xb1%\xd8\x82\xaeW\x8764\x93\xb6`\x90\xb1\x1d\xd6\x91\x9a\xf5I:=\xd9\x98\t\x03\x13\xa4f\x13\xeb\x11\xd5\x17J]\x8b\xc18v\xfc\xa9\xcb|\xd4\x1a\x91\x81c\xeb\r|\xdbo\xa8?\xa8\x192\t\x10\x1bhGZ\xc0\xe7\xc3{b\xc0Z\xe5&\r\n\x858\x94V\x9f\xbah\x8f\x91\xa4\x8a\x90\xa7\x10\x85kYh\xb6\x0f\t0-\x9f@\xc2\xbbR.>\xc5;\xceJ\x14QJ0CrCP\x1e\xea\x8b\xc3z\xb8\x7f+\x94LV&\x8e\xce\xecA\xd6\x12#\xdb\x90\xf9\x9d\x03T\x89[G\xa8\xa4\xa9\xa7r\xd8x(\x9dv9\x16\x1dH=\x82?>-\x84R\x11\x94\x17\x01\x03\xc4\xa3\xb3?\xecyq\x86Y', 0x0], &(0x7f0000000140)=[&(0x7f0000000480)='\xa11\xc2\x1fQ\x88\xebH\xe7\xcf/\x83\xb3+\xc5\xa0\xa6\xbf\x85\xf0;\xea\x8a\xd5b\xb0\xe7=\xf41\xf5\xb4\xb9\aPk\x94csn\x8bu\bHD\x06\f\xccU\x19\xaa\xe0\xed\x85\xb1%\xd8\x82\xaeW\x8764\x93\xb6`\x90\xb1\x1d\xd6\x91\x9a\xf5I:=\xd9\x98\t\x03\x13\xa4f\x13\xeb\x11\xd5\x17J]\x8b\xc18v\xfc\xa9\xcb|\xd4\x1a\x91\x81c\xeb\r|\xdbo\xa8?\xa8\x192\t\x10\x1bhGZ\xc0\xe7\xc3{b\xc0Z\xe5&\r\n\x858\x94V\x9f\xbah\x8f\x91\xa4\x8a\x90\xa7\x10\x85kYh\xb6\x0f\t0-\x9f@\xc2\xbbR.>\xc5;\xceJ\x14QJ0CrCP\x1e\xea\x8b\xc3z\xb8\x7f+\x94LV&\x8e\xce\xecA\xd6\x12#\xdb\x90\xf9\x9d\x03T\x89[G\xa8\xa4\xa9\xa7r\xd8x(\x9dv9\x16\x1dH=\x82?>-\x84R\x11\x94\x17\x01\x03\xc4\xa3\xb3?\xecyq\x86Y', &(0x7f00000003c0)='[\xa3\xb60\xf8cmd5su\x00'])

12:15:49 executing program 0:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x420000015001})
socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_inet_SIOCSIFADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @empty}})
write$tun(r0, &(0x7f0000000240)={@void, @val={0x3}, @mpls={[], @ipv4=@udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0x18, 0x0, @wg=@data}}}}, 0x36)

12:15:49 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = getpid()
fcntl$setownex(r0, 0xf, &(0x7f0000000040)={0x0, r1})
close(r0)

12:15:49 executing program 4:
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(r1, &(0x7f0000000380)=[{&(0x7f0000000100)=""/93, 0x5d}], 0x1, 0x5b)

12:15:49 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = getpid()
fcntl$setownex(r0, 0xf, &(0x7f0000000040)={0x0, r1})
close(r0)

12:15:49 executing program 3:
mkdir(&(0x7f0000000140)='./bus\x00', 0x0)
mount$bpf(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000200)='bpf\x00', 0x1, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mount$overlay(0x0, &(0x7f0000000040)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f00000002c0)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}]})

12:15:49 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x0, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:15:50 executing program 0:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x420000015001})
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, 0x0)
write$tun(r0, &(0x7f0000000240)={@void, @val={0x3}, @mpls={[], @ipv4=@udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0x18, 0x0, @wg=@data}}}}, 0x36)

[  633.297112][T14740] overlayfs: upper fs is r/o, try multi-lower layers mount
12:15:50 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = getpid()
fcntl$setownex(r0, 0xf, &(0x7f0000000040)={0x0, r1})
close(r0)

12:15:50 executing program 5:
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000002180)=0xfc, 0x3c3)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r2=>0x0})
bind$packet(r0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @local}, 0x14)
sendto$inet6(r0, &(0x7f0000000080)="03042a01d31160004003002cfff57b016d2763bd56373780398d537500e50602591f031ee616d5c0184374a7ffe4ec55e0654786a70100935ba514d40808efa000801600002fd08d49a47eff71bc4131fe4c1f99bf00a900000008d1843e770afd6e9ef5837dbd0000000053", 0x3287, 0x4000002, 0x0, 0x2ff)

12:15:50 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x0, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:15:50 executing program 0:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x420000015001})
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, 0x0)
write$tun(r0, &(0x7f0000000240)={@void, @val={0x3}, @mpls={[], @ipv4=@udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0x18, 0x0, @wg=@data}}}}, 0x36)

12:15:50 executing program 3:
r0 = syz_open_dev$usbfs(&(0x7f0000000840)='/dev/bus/usb/00#/00#\x00', 0x908, 0x1)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000040)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000000)={0xa1, 0x0, 0x0, 0x2}, 0xe5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

12:15:50 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x0, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:15:50 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
getpid()
close(r0)

12:15:52 executing program 4:
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(r1, &(0x7f0000000380)=[{&(0x7f0000000100)=""/93, 0x5d}], 0x1, 0x5b)

12:15:52 executing program 3:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f000080e000)={0x2, 0xe, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x2, 0x0, @in6}, @sadb_x_policy={0x8, 0x12, 0x0, 0x2, 0x0, 0x0, 0x0, {0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @in=@remote={0xac, 0x14, 0xffffffffffffffff}, @in=@dev}}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x2, 0x0, @local={0xfe, 0x80, [], 0xffffffffffffffff}}}]}, 0xa0}}, 0x0)

12:15:52 executing program 5:
r0 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f0000000000)=0x1, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000340)=0x1, 0x4)
connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x380000, @empty={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}}, 0x1c)

12:15:52 executing program 0:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x420000015001})
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, 0x0)
write$tun(r0, &(0x7f0000000240)={@void, @val={0x3}, @mpls={[], @ipv4=@udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0x18, 0x0, @wg=@data}}}}, 0x36)

12:15:52 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
getpid()
close(r0)

12:15:52 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x0, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:15:52 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
getpid()
close(r0)

12:15:52 executing program 0:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x420000015001})
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @empty}})
write$tun(0xffffffffffffffff, &(0x7f0000000240)={@void, @val={0x3}, @mpls={[], @ipv4=@udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0x18, 0x0, @wg=@data}}}}, 0x36)

12:15:52 executing program 3:
r0 = syz_open_dev$usbfs(&(0x7f0000000840)='/dev/bus/usb/00#/00#\x00', 0x908, 0x1)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000040)=@urb_type_control={0x2, {0x10}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

12:15:52 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x0, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:15:52 executing program 5:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/tty/ldiscs\x00', 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendfile(r1, r0, 0x0, 0x81)
preadv(r0, &(0x7f0000002500)=[{&(0x7f00000000c0)=""/57, 0x39}], 0x1, 0x1)

12:15:53 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setownex(r0, 0xf, &(0x7f0000000040))
close(r0)

12:15:55 executing program 4:
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
preadv(0xffffffffffffffff, &(0x7f0000000380)=[{&(0x7f0000000100)=""/93, 0x5d}], 0x1, 0x5b)

12:15:55 executing program 3:
syz_open_procfs(0x0, &(0x7f0000000140)='net/psched\x00')
clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
exit_group(0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='fd\x00')
fchdir(r0)
r1 = memfd_create(&(0x7f0000000280)='\x19[\x83s{\x96\x02y\xd0\x96\x8dS_\x86\xeb\x02Y\x1c\xc9\x05\xe7 \xa9TG\xdd\xf7\xd4\xee\xbful\x14\xdaI\xca\xc4-G \xda\\\xea4\xcd\xcc\xd39HZ\xed-\x84D\x97y\xf8l9([VM3\xdb\x10\xe4\xcb\x10Q\xfe9\xccZ\a\x9b\x80\xee3\xa39\x1e!\xa6W\xf6\xf3\xaf\xefO&\xb6\x8e\xfd\x1e\xa8\xe28\xae\x9c\xeb\xbd&\xe5/\x99*\xe6K:\'/\xa2\xe8J\\\xfb\xd3fl\xff\xf4\xb0\xcf\x1e#\x00i+\xdb\xc9\x90\xe9\xf8?\xd7\xafF\x03\xbaQ\xe0\xad>\xa9H+V\x15\xb5\xa8j<X\xf2d\xf9\x1fY\xfca}\x06p\x15Qx.\xd6\x03\xf5\x95\xa3\x97X\xb4F\xaf\x87\xef!S\x94\xe6a\xebG2\xb9\xf8\xc0\x12fB\x83n;\xd7_\rn\xf6\x94\xf2\xa5\xb8\xa8`\xe0{\"\x95Xw\x84\x1d\xdac[d\xbb\x06g(Q\xd5\v_Ho\xa1\xcf\xb8\fm\xa0Q\x9b\x86*\x06w\xc8\xe4\xd3\xd7\xfdV\xdb\x81\bL\x9a\xa0\xce\xb6F\xde@\xd1\xa8\xb3\x00\xfea\xdf\xa9\xd6\x01*\\\x96\xccPa\xdb\xb3\xe9\xb9}\xdbkc\xc8E\x145{w\xbf\x8d\x9aj\xeaO?\x13\xc6\xa7\f\xbe\x18Q2\xf2\xa3\x91\xf8=O\x84\xda>\xa6uq\xf8\x8b\x19kx\xa7@\x84\xdf\xaeZoneo\x8f\x972\xaf\xca]\x829(\v<\xc1}\xe71\x8de&\xaa\xca\x1c6\xe1m\xbcl\x94hE\xb6\xaa\x1a\xa0E\bS\xb5\x85\x9c\xec\xbe\xd3n/\xc2\xce\x97\x89\xe2h\x80ur\xfe\n\xf0X\xef\x88\xf5\xe4G\x0e#\xe4\xc0(\xdb\x15\xea\x8fe\xcdT5\xd3\xca\xc6(:\x16\x02C\x8aN:\xa8\xcc\xcb\xe6>[ \x7f\x9c\x1d\xb2B\xcd#\x9b \xc8\xcb\xa3[\xc3r', 0x0)
write(r1, &(0x7f00000000c0)="6963e64243ea486da3a74e3deec6fc5bb9650b5de56946c568f95d22467190ba406d59a5958d6f156c9c8a2ac4677b00000000000000000000200000f8bf54da33", 0x41)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1000001, 0x11, r1, 0x0)
r2 = inotify_init1(0x0)
inotify_add_watch(r2, &(0x7f0000000040)='./control\x00', 0xa4000972)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)

12:15:55 executing program 5:
r0 = syz_open_dev$usbfs(&(0x7f0000000840)='/dev/bus/usb/00#/00#\x00', 0x908, 0x1)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000040)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000000)={0xa1, 0x0, 0x0, 0x48}, 0xe5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

12:15:55 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x0, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:15:55 executing program 0:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x420000015001})
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @empty}})
write$tun(0xffffffffffffffff, &(0x7f0000000240)={@void, @val={0x3}, @mpls={[], @ipv4=@udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0x18, 0x0, @wg=@data}}}}, 0x36)

12:15:55 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setownex(r0, 0xf, &(0x7f0000000040))
close(r0)

12:15:55 executing program 3:
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
clone(0x10008100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
mount$overlay(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000000)='overlay\x00', 0x0, &(0x7f0000000180)={[{@metacopy_off='metacopy=off'}], [], 0x5c})

12:15:55 executing program 5:
perf_event_open(&(0x7f0000000280)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f00000000c0)=0x4, 0x4)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x983a}, 0x1c)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)

12:15:55 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:15:55 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setownex(r0, 0xf, &(0x7f0000000040))
close(r0)

12:15:55 executing program 3:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r1=>0x0}, &(0x7f0000000000)=0xc)
syz_mount_image$tmpfs(&(0x7f0000000140)='tmpfs\x00', &(0x7f0000000180)='./file1\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)={[{@gid={'gid', 0x3d, r1}}]})

[  638.779457][T14847] overlayfs: unrecognized mount option "\" or missing value
[  639.216196][T14859] tmpfs: Bad value for 'gid'
12:15:56 executing program 1:
r0 = getpid()
fcntl$setownex(0xffffffffffffffff, 0xf, &(0x7f0000000040)={0x0, r0})
close(0xffffffffffffffff)

[  639.401572][T14866] tmpfs: Bad value for 'gid'
12:15:58 executing program 4:
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
preadv(0xffffffffffffffff, &(0x7f0000000380)=[{&(0x7f0000000100)=""/93, 0x5d}], 0x1, 0x5b)

12:15:58 executing program 0:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x420000015001})
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @empty}})
write$tun(0xffffffffffffffff, &(0x7f0000000240)={@void, @val={0x3}, @mpls={[], @ipv4=@udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0x18, 0x0, @wg=@data}}}}, 0x36)

12:15:58 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000000023d800"})
r1 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r1, 0x540b, 0x1)

12:15:58 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:15:58 executing program 1:
r0 = getpid()
fcntl$setownex(0xffffffffffffffff, 0xf, &(0x7f0000000040)={0x0, r0})
close(0xffffffffffffffff)

12:15:58 executing program 5:

12:15:58 executing program 5:

12:15:58 executing program 1:
r0 = getpid()
fcntl$setownex(0xffffffffffffffff, 0xf, &(0x7f0000000040)={0x0, r0})
close(0xffffffffffffffff)

12:15:59 executing program 3:

12:15:59 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = getpid()
fcntl$setownex(0xffffffffffffffff, 0xf, &(0x7f0000000040)={0x0, r1})
close(r0)

12:15:59 executing program 5:

12:15:59 executing program 0:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x420000015001})
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @empty}})
write$tun(r0, 0x0, 0x0)

12:16:01 executing program 4:
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
preadv(0xffffffffffffffff, &(0x7f0000000380)=[{&(0x7f0000000100)=""/93, 0x5d}], 0x1, 0x5b)

12:16:01 executing program 3:

12:16:01 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:16:01 executing program 5:

12:16:01 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = getpid()
fcntl$setownex(0xffffffffffffffff, 0xf, &(0x7f0000000040)={0x0, r1})
close(r0)

12:16:01 executing program 0:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x420000015001})
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @empty}})
write$tun(r0, 0x0, 0x0)

12:16:01 executing program 3:

12:16:01 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = getpid()
fcntl$setownex(0xffffffffffffffff, 0xf, &(0x7f0000000040)={0x0, r1})
close(r0)

12:16:01 executing program 5:

12:16:01 executing program 3:

12:16:01 executing program 5:

12:16:01 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
getpid()
fcntl$setownex(r0, 0xf, 0x0)
close(r0)

12:16:03 executing program 4:
socket(0x80000000000000a, 0x2, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(r0, &(0x7f0000000380)=[{&(0x7f0000000100)=""/93, 0x5d}], 0x1, 0x5b)

12:16:03 executing program 0:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x420000015001})
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @empty}})
write$tun(r0, 0x0, 0x0)

12:16:03 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, 0x0, 0x0)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:16:03 executing program 5:

12:16:03 executing program 3:

12:16:03 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
getpid()
fcntl$setownex(r0, 0xf, 0x0)
close(r0)

12:16:03 executing program 5:

12:16:03 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
getpid()
fcntl$setownex(r0, 0xf, 0x0)
close(r0)

12:16:03 executing program 3:

12:16:04 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
getpid()
fcntl$setownex(r0, 0xf, &(0x7f0000000040))
close(r0)

12:16:04 executing program 5:

12:16:04 executing program 3:

12:16:06 executing program 4:
socket(0x80000000000000a, 0x2, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(r0, &(0x7f0000000380)=[{&(0x7f0000000100)=""/93, 0x5d}], 0x1, 0x5b)

12:16:06 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, 0x0, 0x0)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:16:06 executing program 5:

12:16:06 executing program 0:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x420000015001})
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @empty}})
write$tun(r0, &(0x7f0000000240)={@void, @val, @mpls={[], @ipv4=@udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0x18, 0x0, @wg=@data}}}}, 0x36)

12:16:06 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
getpid()
fcntl$setownex(r0, 0xf, &(0x7f0000000040))
close(r0)

12:16:06 executing program 3:

12:16:06 executing program 3:

12:16:06 executing program 5:

12:16:06 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
getpid()
fcntl$setownex(r0, 0xf, &(0x7f0000000040))
close(r0)

12:16:07 executing program 3:

12:16:07 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = getpid()
fcntl$setownex(r0, 0xf, &(0x7f0000000040)={0x0, r1})
close(0xffffffffffffffff)

12:16:07 executing program 5:

12:16:08 executing program 4:
socket(0x80000000000000a, 0x2, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(r0, &(0x7f0000000380)=[{&(0x7f0000000100)=""/93, 0x5d}], 0x1, 0x5b)

12:16:08 executing program 0:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x420000015001})
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @empty}})
write$tun(r0, &(0x7f0000000240)={@void, @val, @mpls={[], @ipv4=@udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0x18, 0x0, @wg=@data}}}}, 0x36)

12:16:08 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, 0x0, 0x0)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:16:08 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = getpid()
fcntl$setownex(r0, 0xf, &(0x7f0000000040)={0x0, r1})
close(0xffffffffffffffff)

12:16:08 executing program 5:

12:16:08 executing program 3:

12:16:08 executing program 5:

12:16:08 executing program 3:

12:16:08 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = getpid()
fcntl$setownex(r0, 0xf, &(0x7f0000000040)={0x0, r1})
close(0xffffffffffffffff)

12:16:08 executing program 5:

12:16:08 executing program 3:

12:16:09 executing program 1:

12:16:10 executing program 4:
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2e, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(r0, &(0x7f0000000380)=[{&(0x7f0000000100)=""/93, 0x5d}], 0x1, 0x5b)

12:16:10 executing program 0:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x420000015001})
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @empty}})
write$tun(r0, &(0x7f0000000240)={@void, @val, @mpls={[], @ipv4=@udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0x18, 0x0, @wg=@data}}}}, 0x36)

12:16:10 executing program 5:

12:16:10 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440), 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:16:10 executing program 3:

12:16:10 executing program 1:

12:16:10 executing program 5:

12:16:10 executing program 1:

12:16:10 executing program 3:

12:16:11 executing program 0:

12:16:11 executing program 5:

12:16:11 executing program 1:

12:16:12 executing program 4:
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2e, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(r0, &(0x7f0000000380)=[{&(0x7f0000000100)=""/93, 0x5d}], 0x1, 0x5b)

12:16:12 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440), 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:16:12 executing program 3:

12:16:12 executing program 5:

12:16:12 executing program 1:

12:16:12 executing program 0:

12:16:12 executing program 3:
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xa3, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f00000001c0)={'batadv0\x00', <r3=>0x0})
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000002c0)={0x1c, r1, 0x301, 0x0, 0x0, {0xb}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r3}]}, 0x1c}}, 0x0)

12:16:12 executing program 5:
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xa4, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)

12:16:12 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000280)={0x79})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@union={0x0, 0x0, 0x0, 0x5, 0x0, 0xffffffff}]}}, 0x0, 0x26}, 0x20)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0))

12:16:12 executing program 1:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0)
r0 = gettid()
syz_open_dev$loop(&(0x7f0000000340)='/dev/loop#\x00', 0x8, 0x2)
r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x1)
write$binfmt_script(r1, 0x0, 0x191)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x9}, 0x0, 0x2, 0x0, 0x3, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
lsetxattr$trusted_overlay_nlink(&(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)='trusted.overlay.nlink\x00', &(0x7f0000000240)={'L+', 0x3f}, 0x16, 0x0)
close(r1)
write$FUSE_NOTIFY_RETRIEVE(0xffffffffffffffff, &(0x7f00000000c0)={0x14c}, 0x137)
ioctl$KVM_DEASSIGN_DEV_IRQ(0xffffffffffffffff, 0x4040ae75, 0x0)
setxattr$security_capability(&(0x7f0000000140)='./file0\x00', &(0x7f0000000200)='security.capability\x00', 0x0, 0x0, 0x0)
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
fsetxattr$trusted_overlay_redirect(r2, &(0x7f0000000280)='trusted.overlay.redirect\x00', &(0x7f0000000300)='./file0\x00', 0x8, 0x2)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0xff, 0x0)
ioctl$VHOST_GET_VRING_ENDIAN(0xffffffffffffffff, 0x4008af14, &(0x7f00000002c0)={0x3, 0x10000})
ioctl$BLKSECDISCARD(r1, 0x127d, &(0x7f0000000000)=0x7f)

12:16:13 executing program 0:

12:16:13 executing program 3:

12:16:15 executing program 4:
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2e, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(r0, &(0x7f0000000380)=[{&(0x7f0000000100)=""/93, 0x5d}], 0x1, 0x5b)

12:16:15 executing program 5:
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xa4, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000001300)=[{{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f00000001c0)='M', 0x1}], 0x1}}], 0x1, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

12:16:15 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440), 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:16:15 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x3, 0x4, 0x4, 0xffff, 0x0, 0xffffffffffffffff, 0x0, [0x305f, 0x2e, 0x2e, 0x5f, 0x600005f, 0x2, 0x5f, 0x5f, 0x52, 0x5f, 0x5f, 0x5f]}, 0x40)
ptrace(0xffffffffffffffff, 0x0)
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe)

12:16:15 executing program 3:
r0 = syz_open_dev$loop(&(0x7f0000000380)='/dev/loop#\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0xc0401273, &(0x7f0000000000)={0x72, {0x3f0}, 0x4000, {}, 0x0, 0x0, 0x0, 0x0, "cd0703fb05000000a929fe31ccf9a45beb8e684db9a93183fb4480e3280276fc6a1b762ec31f21646dad4ccd225e55b5a19cbc4595890001000000000000bff8", "02dc95930c5f2d15dda4526e532f6f06920d37e72cc65a2920c27dd77c4d1492"})

12:16:15 executing program 0:
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xa3, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffff, 0xffffffffffffffff, 0x0)
pipe(0x0)
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r1)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r0, 0x0, r2, 0x0, 0x7fffffef, 0x0)

12:16:16 executing program 1:
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xa3, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_GET_STATS_CPU(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0)
dup2(r0, r1)

12:16:16 executing program 3:
pipe(&(0x7f0000000080))
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xa3, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffff, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x3)

12:16:16 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)

12:16:16 executing program 5:
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0xe, &(0x7f0000000140)=ANY=[@ANYBLOB="b702000000000000bfa30000000000000703000000feffff7a0af0ff1100000079a4f0ff00000000b706000000000081ad64020000000000450404000100ff0f1704000001130a00b7040000050000006a0af2fe00000000850000001a000000b700000000000000950000000000000000e154cd844a954b26c933f7ffffffffff"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x74)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0))
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000fc0))

12:16:17 executing program 1:
perf_event_open(&(0x7f00000002c0)={0x2, 0x70, 0xa4, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x2a, &(0x7f00000001c0)={@link_local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @remote={0xac, 0x1c}, @remote}, {0x0, 0x0, 0x8}}}}}, 0x0)

12:16:17 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:16:19 executing program 4:
r0 = socket(0x0, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(r1, &(0x7f0000000380)=[{&(0x7f0000000100)=""/93, 0x5d}], 0x1, 0x5b)

12:16:19 executing program 0:
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xa3, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffff, 0xffffffffffffffff, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f0000000000)='keyring\x00')

12:16:19 executing program 3:
perf_event_open(&(0x7f00000001c0)={0x2, 0x70, 0xa3, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000280)='./file0\x00', 0x0)
lchown(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)

12:16:19 executing program 5:
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xa3, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_DYING(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x6, 0x1, 0x101}, 0x14}}, 0x0)

12:16:19 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x2, 0x0, 0x0, 0x0, 0x0, 0x3f]})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000002c0)={{}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}})

12:16:19 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:16:19 executing program 3:
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
exit_group(0x0)
syz_emit_ethernet(0x66, 0x0, 0x0)
r0 = socket(0x10, 0x80002, 0x0)
close(r0)
r1 = socket(0x10, 0x0, 0x0)
getsockname$packet(r1, 0x0, 0x0)
getsockname$packet(r1, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x0)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580)='batadv\x00')
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f0000000400)={'batadv0\x00', <r4=>0x0})
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000440)={0x24, r2, 0x1, 0x0, 0x0, {0xf}, [@BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r4}]}, 0x24}}, 0x0)

12:16:19 executing program 0:
getdents(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000300)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$iso9660(0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0)
clone(0x20002100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f0000000000)='uid_map\x00')
sendmsg$NFNL_MSG_CTHELPER_DEL(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x28, 0x2, 0x9, 0x0, 0x0, 0x0, {0xc}, [@NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0x7ff}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x28}}, 0x4000000)
r0 = openat$md(0xffffffffffffff9c, &(0x7f0000000080)='/dev/md0\x00', 0x0, 0x0)
ioctl$BLKPG(r0, 0xc03012f3, &(0x7f0000001200)={0x0, 0x1, 0x60, 0x0})

12:16:19 executing program 1:
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
exit_group(0x0)
syz_emit_ethernet(0x66, 0x0, 0x0)
r0 = socket(0x10, 0x80002, 0x0)
close(r0)
r1 = socket(0x10, 0x0, 0x0)
getsockname$packet(r1, 0x0, 0x0)
getsockname$packet(r1, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x0)
sendmsg$NFULNL_MSG_CONFIG(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x4c, 0x1, 0x4, 0x201, 0x0, 0x0, {0x3, 0x0, 0x5}, [@NFULA_CFG_TIMEOUT={0x8}, @NFULA_CFG_FLAGS={0x6, 0x6, 0x1, 0x0, 0x2}, @NFULA_CFG_NLBUFSIZ={0x8, 0x3, 0x1, 0x0, 0x202}, @NFULA_CFG_NLBUFSIZ={0x8, 0x3, 0x1, 0x0, 0x20}, @NFULA_CFG_TIMEOUT={0x8, 0x4, 0x1, 0x0, 0x7}, @NFULA_CFG_CMD={0x5, 0x1, 0x1}, @NFULA_CFG_QTHRESH={0x8, 0x5, 0x1, 0x0, 0x9}]}, 0x4c}}, 0x20000080)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580)='batadv\x00')
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f0000000400)={'batadv0\x00', <r4=>0x0})
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000440)={0x24, r2, 0x1, 0x0, 0x0, {0xf}, [@BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r4}]}, 0x24}, 0x1, 0x0, 0x0, 0x6000}, 0x0)

12:16:19 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x3, 0x4, 0x4, 0xffff, 0x0, 0xffffffffffffffff, 0x0, [0x305f, 0x2e, 0x2e, 0x5f, 0x600005f, 0x2, 0x5f, 0x5f, 0x52, 0x5f, 0x5f, 0x5f]}, 0x40)

12:16:20 executing program 3:
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
exit_group(0x0)
syz_emit_ethernet(0x66, 0x0, 0x0)
r0 = socket(0x10, 0x80002, 0x0)
prctl$PR_SET_UNALIGN(0x6, 0x1)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x0)
sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="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"], 0x4c}, 0x1, 0x0, 0x0, 0x800}, 0x20000080)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580)='batadv\x00')
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000400)={'batadv0\x00', <r3=>0x0})
r4 = add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000000)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
r5 = add_key$user(&(0x7f0000000100)='user\x00', &(0x7f0000000140)={'syz', 0x2}, &(0x7f00000004c0)="a9", 0x1, 0xffffffffffffffff)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r4, &(0x7f0000000480)='asymmetric\x00', &(0x7f0000000380)=@keyring={'key_or_keyring:', r5})
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r4, &(0x7f0000000300)='asymmetric\x00', &(0x7f0000000400)=@chain={'key_or_keyring:', 0x0, ':chain\x00'})
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000440)={0x24, r1, 0x1, 0x0, 0x0, {0xf}, [@BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r3}]}, 0x24}, 0x1, 0x0, 0x0, 0x6000}, 0x0)

12:16:20 executing program 0:
keyctl$chown(0x4, 0x0, 0x0, 0x0)
syz_mount_image$vfat(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x4, 0x0)
clone(0x20002100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$md(0xffffffffffffff9c, &(0x7f0000000080)='/dev/md0\x00', 0x0, 0x0)
ioctl$BLKPG(r0, 0xc03012f3, &(0x7f0000001200)={0x0, 0x1, 0x60, 0x0})

[  663.511167][T15252] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=47 sclass=netlink_route_socket pid=15252 comm=syz-executor.3
12:16:22 executing program 4:
r0 = socket(0x0, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(r1, &(0x7f0000000380)=[{&(0x7f0000000100)=""/93, 0x5d}], 0x1, 0x5b)

12:16:22 executing program 5:
perf_event_open(&(0x7f0000000300)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000240), &(0x7f0000000280)=0x5)
syz_mount_image$vfat(0x0, &(0x7f0000000080)='./file0\x00', 0x7fffffff, 0x0, 0x0, 0x0, 0x0)
clone(0x20002100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$md(0xffffffffffffff9c, &(0x7f0000000080)='/dev/md0\x00', 0x0, 0x0)
ioctl$BLKPG(r0, 0xc03012f3, &(0x7f0000001200)={0x0, 0x1, 0x60, 0x0})

12:16:22 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:16:22 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)={0x1c, 0x7, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}}, 0x0)

12:16:22 executing program 3:
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xa4, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_GET_MSRS(r2, 0xc008ae88, &(0x7f0000000200)={0x1, 0x0, [{}]})

12:16:22 executing program 1:
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
exit_group(0x0)
syz_emit_ethernet(0x66, 0x0, 0x0)
r0 = socket(0x10, 0x80002, 0x0)
close(r0)
r1 = socket(0x10, 0x0, 0x0)
getsockname$packet(r1, 0x0, 0x0)
getsockname$packet(r1, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x0)
sendmsg$NFULNL_MSG_CONFIG(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x4c, 0x1, 0x4, 0x201, 0x0, 0x0, {0x3, 0x0, 0x5}, [@NFULA_CFG_TIMEOUT={0x8}, @NFULA_CFG_FLAGS={0x6, 0x6, 0x1, 0x0, 0x2}, @NFULA_CFG_NLBUFSIZ={0x8, 0x3, 0x1, 0x0, 0x202}, @NFULA_CFG_NLBUFSIZ={0x8, 0x3, 0x1, 0x0, 0x20}, @NFULA_CFG_TIMEOUT={0x8, 0x4, 0x1, 0x0, 0x7}, @NFULA_CFG_CMD={0x5, 0x1, 0x1}, @NFULA_CFG_QTHRESH={0x8, 0x5, 0x1, 0x0, 0x9}]}, 0x4c}}, 0x20000080)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580)='batadv\x00')
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f0000000400)={'batadv0\x00', <r4=>0x0})
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000440)={0x24, r2, 0x1, 0x0, 0x0, {0xf}, [@BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r4}]}, 0x24}, 0x1, 0x0, 0x0, 0x6000}, 0x0)

12:16:23 executing program 1:
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xa3, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x1c, 0x2, 0x6, 0x3, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}}, 0x0)

12:16:23 executing program 5:
r0 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe)
perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$FUSE_DIRENTPLUS(r0, &(0x7f0000000040)=ANY=[], 0x5)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0)
mmap(&(0x7f0000002000/0x4000)=nil, 0x4000, 0x0, 0x2812, r1, 0x0)
r2 = socket(0x11, 0x800000003, 0x0)
mmap(&(0x7f0000003000/0x2000)=nil, 0x2000, 0x0, 0x11, r2, 0x69444000)

12:16:23 executing program 0:
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xa4, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x1, 0x0, 0x1000, &(0x7f0000ffc000/0x1000)=nil})

12:16:23 executing program 3:
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xa3, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffff, 0xffffffffffffffff, 0x0)
getpid()
timer_create(0x0, &(0x7f0000000000)={0x0, 0x25}, &(0x7f0000000040))

[  666.696769][   T33] audit: type=1804 audit(1595160983.729:48): pid=15307 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.5" name="/root/syzkaller-testdir286623616/syzkaller.snTLk1/191/bus" dev="sda1" ino=16373 res=1
12:16:23 executing program 1:
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xa4, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000)='ethtool\x00')
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x3, &(0x7f00000001c0)={&(0x7f0000000080)={0x2c, r1, 0x1, 0x0, 0x0, {0xb}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}]}]}, 0x2c}}, 0x0)

[  666.825334][   T33] audit: type=1804 audit(1595160983.829:49): pid=15304 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=ToMToU comm="syz-executor.5" name="/root/syzkaller-testdir286623616/syzkaller.snTLk1/191/bus" dev="sda1" ino=16373 res=1
12:16:23 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, 0x0, 0x0)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

[  666.941498][   T33] audit: type=1804 audit(1595160983.889:50): pid=15316 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.5" name="/root/syzkaller-testdir286623616/syzkaller.snTLk1/191/bus" dev="sda1" ino=16373 res=1
[  667.392814][    T1] systemd[1]: systemd-journald.service: Main process exited, code=killed, status=6/ABRT
[  667.476767][    T1] systemd[1]: systemd-journald.service: Unit entered failed state.
[  667.487479][    T1] systemd[1]: systemd-journald.service: Failed with result 'watchdog'.
[  667.500603][    T1] systemd[1]: systemd-journald.service: Service has no hold-off time, scheduling restart.
[  667.581181][    T1] systemd[1]: Stopped Flush Journal to Persistent Storage.
[  667.599288][    T1] systemd[1]: Stopping Flush Journal to Persistent Storage...
[  667.620998][    T1] systemd[1]: Stopped Journal Service.
[  667.718541][    T1] systemd[1]: Starting Journal Service...
[  668.658755][T15327] systemd-journald[15327]: File /run/log/journal/64dd78f1a75445a997c532444ad0f085/system.journal corrupted or uncleanly shut down, renaming and replacing.
12:16:26 executing program 4:
r0 = socket(0x0, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(r1, &(0x7f0000000380)=[{&(0x7f0000000100)=""/93, 0x5d}], 0x1, 0x5b)

12:16:26 executing program 1:
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
exit_group(0x0)
syz_emit_ethernet(0x66, 0x0, 0x0)
r0 = socket(0x10, 0x80002, 0x0)
prctl$PR_SET_UNALIGN(0x6, 0x1)
close(0xffffffffffffffff)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x0)
sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="4c0000000104010200000000000000000300eb04000001000200000006652671b8020000080003400000020208000340000000204b0004400000000705000100000000000800054000000009f65afd8e5748af68ececb45a544b4eb34f907d9ed61d66206f96d6147669acaf5e4d3e30836d259bc11e731fc630432b65be78583427d6e51e6e4dabec15e5b873bb06f428a435514e240ac753b27880ac95245f930266b3da12b3e7c7689a3eddab081964a549b8f53a694eb78414414da38dab262c8a0eb2ab6c9f6b9fd357b4cb335e2e203f1e85c8b53eeb3634ec8665fd12c2f9f7d8e9f360a0e7c2ae4d776d1d0dab4293f09d"], 0x4c}, 0x1, 0x0, 0x0, 0x800}, 0x20000080)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580)='batadv\x00')
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000400)={'batadv0\x00', <r3=>0x0})
r4 = add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000000)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
r5 = add_key$user(&(0x7f0000000100)='user\x00', &(0x7f0000000140)={'syz', 0x2}, &(0x7f00000004c0)="a9", 0x1, 0xffffffffffffffff)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r4, &(0x7f0000000480)='asymmetric\x00', &(0x7f0000000380)=@keyring={'key_or_keyring:', r5})
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r4, &(0x7f0000000300)='asymmetric\x00', &(0x7f0000000400)=@chain={'key_or_keyring:', 0x0, ':chain\x00'})
keyctl$KEYCTL_MOVE(0x1e, 0x0, 0x0, r4, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000440)={0x24, r1, 0x1, 0x0, 0x0, {0xf}, [@BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r3}]}, 0x24}, 0x1, 0x0, 0x0, 0x6000}, 0x0)

12:16:26 executing program 0:
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xa3, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = inotify_init1(0x0)
r1 = inotify_add_watch(r0, &(0x7f00000000c0)='.\x00', 0x20000051)
readv(r0, &(0x7f0000000140)=[{&(0x7f00000038c0)=""/180, 0xb4}], 0x1)
inotify_rm_watch(r0, r1)

12:16:26 executing program 3:
setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0)
r0 = gettid()
syz_open_dev$loop(0x0, 0x0, 0x2)
r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x1)
write$binfmt_script(r1, 0x0, 0x191)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x0, 0x3, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
lsetxattr$trusted_overlay_nlink(0x0, 0x0, &(0x7f0000000240)={'L+', 0x3f}, 0x16, 0x0)
close(r1)
write$FUSE_NOTIFY_RETRIEVE(0xffffffffffffffff, &(0x7f00000000c0)={0x14c}, 0x137)
setxattr$security_capability(&(0x7f0000000140)='./file0\x00', &(0x7f0000000200)='security.capability\x00', 0x0, 0x0, 0x0)
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0xff, 0x0)
ioctl$BLKSECDISCARD(r1, 0x127d, &(0x7f0000000000)=0x7f)

12:16:26 executing program 5:
timer_create(0x0, &(0x7f0000000780)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000000c0))
r0 = eventfd(0xfffffff8)
r1 = inotify_init1(0x0)
r2 = fcntl$dupfd(r0, 0x0, r1)
write$eventfd(r2, &(0x7f0000000000)=0xaf6, 0x8)
close(r2)
openat$full(0xffffffffffffff9c, &(0x7f0000000100)='/dev/full\x00', 0x424342, 0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0)
r3 = gettid()
tkill(r3, 0x13)

12:16:26 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, 0x0, 0x0)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

[  669.381864][T15345] ptrace attach of "/root/syz-executor.3"[15343] was attempted by "/root/syz-executor.3"[15345]
[  669.409145][T15344] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=47 sclass=netlink_route_socket pid=15344 comm=syz-executor.1
12:16:26 executing program 1:
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000540)}, {&(0x7f00000001c0)="b2a5c439e66bd1c55574e3610161a329c77d92718312038c73d4cd270ee21054571e708c68362b0c195e8afd4b462fe3671120fb090dff2a6155f0035be9b16b32fc1a654a44953f01db301655f028c133c5c40fd2ff72", 0x57}, {&(0x7f0000000600)="9ea493f4c49720f5627930e05463aca0f4a3b653201318f2f984a7587bb55af0fec43d420ca55ef3da9acb51eb64ce0e1b4b3eace76daf61ada150fb09fcca7ac484659998e483858f01e767aa1fca8015e17653ac9d832c6face97585ea56975024f999e1e32cf7a8d2f455d76f0a19c5eee71c510fda5951153918475eee4cb027272d167c3e6ef0c8b91a0a0a8c603a9a461294767843462191b0fde108c81b78ba75df118136591160eac3b45a42b75bc454a544ea0d8c258dc4d5e6be31d24bef949e2f966bf0", 0xc9}, {&(0x7f0000000700)="7ae983124e172ee4344f880a67c4aae9f05ae8179138ab05439db4a4f579af6555479a23425509546cbffc138146885e2ed9b6f065139e39e9ffb2e60f494bc5b734a7c8c0bcd2ea325666595cb46ed3ab85262a61a78790af9198d197ece12b09c6722ce676a95c9ff4c5ae6e200969718d998b23da42ac4969a63eca0caa670d", 0x81}, {&(0x7f00000007c0)="06835c305107432444839ba3066028d0fa4a57c330a99e90f7d78e2650a19a9cfbed659af04d86c7d21ab0242e1be26d45c51b91890de83299d1160a57ab8cd0b693681a7a292d57b2c7b4bc67a48037c1a9adfcad1144783300a62e400397fbcb7d8cd27742a7a98aa22ca9ec774e633b0edbfc2856fbc97308f80e76fca7ff59fe9bfca4fa86da7da44ccbe63ad02a9d8380f18a56cc042cd33df49e93d0701eed9efb4ec6c56e8b4e5ba73e26bd561b30c668ab1e64c14d68b25a23844e995267744162b07c4457935c4e522b0975efce9fe23e8a75", 0xd7}], 0x5, 0x0, 0x0, 0x10}, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0xa, 0x922000000003, 0x11)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x29, 0x24, 0x0, 0xfffffffffffffda5)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000440)}, {&(0x7f00000004c0)="c02fd2b3110ae7b8f3b473bbf1f12f47db6f27a3f61f110b6e91c825281e6002b2fa9d30f39f7c3ca2e5552434f015dcd5ce668ce74221d26e6ea7d3451a306e9cb15a6c7754e1d5d30676fca4a18f4ac0e7c1a42d521e4838cf07de41f9699839caa935403ebeaeef399a9853e9ec95af5ab4915ea8f62e44759d6d2f8dfd4eac4b3f7f07f4b210f1f4", 0x8a}, {&(0x7f0000000580)}, {&(0x7f00000002c0)="3692e6140f50b2024418", 0xa}, {&(0x7f0000000240)="4bc59bfd40ea1c3b8acc65df9d659f89648aba43bba93599fdd90310120ada58d3f5ec", 0x23}, {&(0x7f0000000280)="5e8580a626c96101b6", 0x9}], 0x6}, 0x4008880)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_REFRESH(0xffffffffffffffff, 0x2402, 0x0)
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(0xffffffffffffffff, 0x40042409, 0x0)
r1 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x8914, &(0x7f0000000340)='wlan1\x00\x1b\x1a\xec\xd8n\xff\xc3\x87\xe2\xa3\x80\x8a\xb2\xd9\xa8L\x10\xb5\x12\x03F\xd9\x1f\xb9\xf2-\xda,C\xfdj\xe3\x8d\xe3\xd6\xe0|6l\xe9\xd9;\xea\x84\x13\xdf\xf7\xber\'\x8a\xd5W\xbb\xac%j\x9d\xeb\xba\xe6\xc4\xc4\xa9\xf5\xd5\xa1\xf5\\\x9b\xb2\a\xde\xbb\xc18\x84\xb5:f\xcb\xe8oOArYZ\xe1\xc9\x86\xfe')
r2 = socket$kcm(0x29, 0x5, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x8914, &(0x7f0000000040)='wlan1\x00\x1b\x1a\xec\xb5\x12\x03F\xd9U\x1c\xc9%\x9b\xa0\xf5\xee\x16\x1f\xb9\xf2-\xda,C\xfdj\xe3\x8d\xe3\xd6\xe0|6l\xe9\xd9;\x13\xdf\xf7\xber\'\x8a\xd5\xd5\xe1\xf5^\x9b\xb2\a\xde\xbb\xc18\x84\xb5:f\xcb\xe8oOArYZ\xe1\xc9\x86\xfe\x88\x9d\xfa\xacJ\x1f\xebp\xf5\xfb\xaad\x1a\xa0\xb1\x9c\xac\xe8\xff^9P\xee\x8aG\xdd2')
ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0x400454d0, 0x0)
r3 = socket$kcm(0xa, 0x0, 0x0)
perf_event_open(&(0x7f0000000000)={0x0, 0x70, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x8800}, 0x0, 0x2, 0xffffffffffffffff, 0x8)
socket$kcm(0x21, 0x2, 0x2)
ioctl$sock_kcm_SIOCKCMCLONE(r3, 0x890c, &(0x7f0000000180)={r0})

12:16:26 executing program 3:
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = gettid()
perf_event_open(&(0x7f00000005c0)={0x0, 0x70, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffff3093, 0x0, @perf_bp={0x0, 0x6}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7b}, r0, 0x0, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000000280)={0x0, 0x70, 0x0, 0x4, 0x0, 0x0, 0x0, 0x203, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7ffd, 0x7}, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0xc)
ioctl$PERF_EVENT_IOC_REFRESH(r1, 0x2402, 0xe43)
r2 = socket$kcm(0xa, 0x2, 0x73)
sendmsg(r2, &(0x7f0000000800)={&(0x7f00000000c0)=@nl=@unspec, 0x80, 0x0, 0x0, &(0x7f0000000000)=[{0x18, 0x29, 0x3b, 'v'}], 0x18}, 0x0)

12:16:26 executing program 5:
socket$kcm(0x2, 0x1000000000000002, 0x0)
socket$kcm(0x2, 0x1000000000000002, 0x0)
socket$kcm(0xa, 0x922000000003, 0x11)
socket$kcm(0x29, 0x5, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x8c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000ac0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
r0 = socket$kcm(0x11, 0x3, 0x300)
r1 = socket$kcm(0x2, 0x1000000000000002, 0x0)
setsockopt$sock_attach_bpf(r1, 0x1, 0x3e, &(0x7f00000002c0)=r0, 0x4)
sendmsg$kcm(r1, &(0x7f0000003d00)={&(0x7f0000000380)=@in={0x2, 0x4e23, @local}, 0x80, 0x0}, 0xfd00)
write$cgroup_subtree(r1, &(0x7f0000000280)={[{0x0, 'memory', 0xea}]}, 0xfa38)

12:16:26 executing program 0:
r0 = socket$kcm(0x29, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00'}, 0x48)
r2 = socket$kcm(0x2, 0x200000000000001, 0x0)
sendmsg$inet(r2, &(0x7f0000000fc0)={&(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10, 0x0}, 0x20000811)
sendmsg$inet(r0, &(0x7f000001d1c0)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000180)="fa", 0x1}], 0x1}, 0x20008800)
sendmsg$kcm(r2, &(0x7f0000024640)={0x0, 0x0, &(0x7f00000244c0)=[{&(0x7f0000023380)='C', 0x1}], 0x1}, 0x4008000)
ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x89e0, &(0x7f0000000040)={r2, r1})
sendmsg$inet(r0, &(0x7f0000000a80)={0x0, 0x0, 0x0}, 0x0)

12:16:27 executing program 3:
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = gettid()
perf_event_open(&(0x7f00000005c0)={0x0, 0x70, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffff3093, 0x0, @perf_bp={0x0, 0x6}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7b}, r0, 0x0, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000000280)={0x0, 0x70, 0x0, 0x4, 0x0, 0x0, 0x0, 0x203, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7ffd, 0x7}, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0xc)
ioctl$PERF_EVENT_IOC_REFRESH(r1, 0x2402, 0xe43)
r2 = socket$kcm(0xa, 0x2, 0x73)
sendmsg(r2, &(0x7f0000000800)={&(0x7f00000000c0)=@nl=@unspec, 0x80, 0x0, 0x0, &(0x7f0000000000)=[{0x18, 0x29, 0x3b, 'v'}], 0x18}, 0x0)

12:16:27 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, 0x0, 0x0)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:16:29 executing program 4:
r0 = socket(0x80000000000000a, 0x0, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(r1, &(0x7f0000000380)=[{&(0x7f0000000100)=""/93, 0x5d}], 0x1, 0x5b)

12:16:29 executing program 0:
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x203, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xc, 0x400, 0xc}, 0x40)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000780)={0x0, 0x0, &(0x7f00000001c0), &(0x7f00000000c0), 0x1081, r0}, 0x38)
close(r0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f00000007c0)="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", 0xe00}], 0x1, &(0x7f00000002c0)}, 0x0)

12:16:29 executing program 1:
r0 = open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x0, 0x11, r0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x7f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
creat(&(0x7f0000000280)='./bus\x00', 0x0)

12:16:29 executing program 3:
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = gettid()
perf_event_open(&(0x7f00000005c0)={0x0, 0x70, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffff3093, 0x0, @perf_bp={0x0, 0x6}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7b}, r0, 0x0, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000000280)={0x0, 0x70, 0x0, 0x4, 0x0, 0x0, 0x0, 0x203, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7ffd, 0x7}, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0xc)
ioctl$PERF_EVENT_IOC_REFRESH(r1, 0x2402, 0xe43)
r2 = socket$kcm(0xa, 0x2, 0x73)
sendmsg(r2, &(0x7f0000000800)={&(0x7f00000000c0)=@nl=@unspec, 0x80, 0x0, 0x0, &(0x7f0000000000)=[{0x18, 0x29, 0x3b, 'v'}], 0x18}, 0x0)

12:16:29 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000180)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x102})
ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000200)={0x1, &(0x7f0000000100)=[{}]})

12:16:29 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x0, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:16:29 executing program 3:
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = gettid()
perf_event_open(&(0x7f00000005c0)={0x0, 0x70, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffff3093, 0x0, @perf_bp={0x0, 0x6}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7b}, r0, 0x0, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000000280)={0x0, 0x70, 0x0, 0x4, 0x0, 0x0, 0x0, 0x203, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7ffd, 0x7}, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0xc)
ioctl$PERF_EVENT_IOC_REFRESH(r1, 0x2402, 0xe43)
r2 = socket$kcm(0xa, 0x2, 0x73)
sendmsg(r2, &(0x7f0000000800)={&(0x7f00000000c0)=@nl=@unspec, 0x80, 0x0, 0x0, &(0x7f0000000000)=[{0x18, 0x29, 0x3b, 'v'}], 0x18}, 0x0)

12:16:29 executing program 0:
r0 = socket(0x10, 0x2, 0x0)
write(r0, &(0x7f0000000280)="1c0000001a009b8a14e5f4070000000500"/28, 0x1c)
recvmmsg(r0, &(0x7f0000002ec0), 0x29e, 0x1a, &(0x7f00000001c0)={0x77359400})

12:16:29 executing program 1:
perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x7ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000140)='net/nf_conntrack\x00')
read$FUSE(r0, 0x0, 0x0)

12:16:29 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100)='/dev/net/tun\x00', 0x0, 0x0)
flistxattr(r0, &(0x7f0000000140)=""/156, 0x9c)

12:16:30 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x0, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:16:30 executing program 3:
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = gettid()
perf_event_open(&(0x7f00000005c0)={0x0, 0x70, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffff3093, 0x0, @perf_bp={0x0, 0x6}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7b}, r0, 0x0, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000000280)={0x0, 0x70, 0x0, 0x4, 0x0, 0x0, 0x0, 0x203, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7ffd, 0x7}, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0xc)
ioctl$PERF_EVENT_IOC_REFRESH(r1, 0x2402, 0xe43)
sendmsg(0xffffffffffffffff, &(0x7f0000000800)={&(0x7f00000000c0)=@nl=@unspec, 0x80, 0x0, 0x0, &(0x7f0000000000)=[{0x18, 0x29, 0x3b, 'v'}], 0x18}, 0x0)

12:16:32 executing program 4:
r0 = socket(0x80000000000000a, 0x0, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(r1, &(0x7f0000000380)=[{&(0x7f0000000100)=""/93, 0x5d}], 0x1, 0x5b)

12:16:32 executing program 5:
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @local, 0x4}, 0x1c)
sendmmsg(r0, &(0x7f0000006d00)=[{{0x0, 0x1002000, 0x0, 0x0, 0x0, 0x0, 0xb605}}], 0xc6, 0x0)
setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x3b, &(0x7f0000000840)=ANY=[], 0x1a8)

12:16:32 executing program 1:
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x7f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x2, 0x0, 0x1299})
io_submit(r1, 0x1, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x1a000000}])

12:16:32 executing program 0:
r0 = open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x1800007, 0x11, r0, 0x0)
r1 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x7f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r1, 0x4, 0x6000)
io_setup(0x202, &(0x7f0000000200)=<r2=>0x0)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x2, 0x0, 0x1299})
io_submit(r2, 0x1, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f0000000000), 0x1a000000}])

12:16:32 executing program 3:
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = gettid()
perf_event_open(&(0x7f00000005c0)={0x0, 0x70, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffff3093, 0x0, @perf_bp={0x0, 0x6}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7b}, r0, 0x0, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000000280)={0x0, 0x70, 0x0, 0x4, 0x0, 0x0, 0x0, 0x203, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7ffd, 0x7}, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0xc)
ioctl$PERF_EVENT_IOC_REFRESH(r1, 0x2402, 0xe43)
sendmsg(0xffffffffffffffff, &(0x7f0000000800)={&(0x7f00000000c0)=@nl=@unspec, 0x80, 0x0, 0x0, &(0x7f0000000000)=[{0x18, 0x29, 0x3b, 'v'}], 0x18}, 0x0)

12:16:32 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x0, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

[  675.260721][T15470] not chained 540000 origins
[  675.265366][T15470] CPU: 1 PID: 15470 Comm: syz-executor.5 Not tainted 5.8.0-rc5-syzkaller #0
[  675.274043][T15470] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  675.284104][T15470] Call Trace:
[  675.287419][T15470]  dump_stack+0x1df/0x240
[  675.291781][T15470]  kmsan_internal_chain_origin+0x6f/0x130
[  675.297525][T15470]  ? kmsan_get_metadata+0x11d/0x180
[  675.302753][T15470]  ? __msan_poison_alloca+0xf0/0x120
[  675.308056][T15470]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  675.313874][T15470]  ? ctx_sched_in+0x8a8/0x8c0
[  675.318567][T15470]  ? kmsan_get_metadata+0x4f/0x180
[  675.323701][T15470]  ? kmsan_set_origin_checked+0x95/0xf0
[  675.329268][T15470]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  675.335388][T15470]  ? _copy_from_user+0x15b/0x260
[  675.340340][T15470]  ? kmsan_get_metadata+0x4f/0x180
[  675.345469][T15470]  __msan_chain_origin+0x50/0x90
[  675.350430][T15470]  __get_compat_msghdr+0x5be/0x890
[  675.355582][T15470]  get_compat_msghdr+0x108/0x270
[  675.360545][T15470]  __sys_sendmmsg+0x7d5/0xd80
[  675.365258][T15470]  ? kmsan_get_metadata+0x4f/0x180
[  675.370382][T15470]  ? kmsan_get_metadata+0x4f/0x180
[  675.375501][T15470]  ? kmsan_internal_check_memory+0xb1/0x3d0
[  675.381419][T15470]  ? kmsan_check_memory+0xd/0x10
[  675.386365][T15470]  ? kmsan_get_metadata+0x11d/0x180
[  675.391572][T15470]  ? kmsan_get_metadata+0x11d/0x180
[  675.396831][T15470]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  675.402647][T15470]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  675.408821][T15470]  ? kmsan_get_metadata+0x4f/0x180
[  675.413941][T15470]  ? kmsan_get_metadata+0x4f/0x180
[  675.419076][T15470]  __se_compat_sys_sendmmsg+0xcd/0xf0
[  675.424465][T15470]  ? __x32_compat_sys_sendmsg+0x70/0x70
[  675.430017][T15470]  __ia32_compat_sys_sendmmsg+0x56/0x70
[  675.435570][T15470]  __do_fast_syscall_32+0x2aa/0x400
[  675.440794][T15470]  do_fast_syscall_32+0x6b/0xd0
[  675.445656][T15470]  do_SYSENTER_32+0x73/0x90
[  675.450168][T15470]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  675.456494][T15470] RIP: 0023:0xf7fe0549
[  675.460551][T15470] Code: Bad RIP value.
[  675.464614][T15470] RSP: 002b:00000000f5ddb0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  675.473026][T15470] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020006d00
[  675.480994][T15470] RDX: 00000000000000c6 RSI: 0000000000000000 RDI: 0000000000000000
[  675.488960][T15470] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  675.496928][T15470] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  675.504898][T15470] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  675.512887][T15470] Uninit was stored to memory at:
[  675.517916][T15470]  kmsan_internal_chain_origin+0xad/0x130
[  675.523638][T15470]  __msan_chain_origin+0x50/0x90
[  675.528576][T15470]  __get_compat_msghdr+0x5be/0x890
[  675.533686][T15470]  get_compat_msghdr+0x108/0x270
[  675.538624][T15470]  __sys_sendmmsg+0x7d5/0xd80
[  675.543305][T15470]  __se_compat_sys_sendmmsg+0xcd/0xf0
[  675.548670][T15470]  __ia32_compat_sys_sendmmsg+0x56/0x70
[  675.554217][T15470]  __do_fast_syscall_32+0x2aa/0x400
[  675.559417][T15470]  do_fast_syscall_32+0x6b/0xd0
[  675.564268][T15470]  do_SYSENTER_32+0x73/0x90
[  675.568776][T15470]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  675.575090][T15470] 
[  675.577410][T15470] Uninit was stored to memory at:
[  675.582441][T15470]  kmsan_internal_chain_origin+0xad/0x130
[  675.588159][T15470]  __msan_chain_origin+0x50/0x90
[  675.593100][T15470]  __get_compat_msghdr+0x5be/0x890
[  675.598212][T15470]  get_compat_msghdr+0x108/0x270
[  675.603152][T15470]  __sys_sendmmsg+0x7d5/0xd80
[  675.607827][T15470]  __se_compat_sys_sendmmsg+0xcd/0xf0
[  675.613202][T15470]  __ia32_compat_sys_sendmmsg+0x56/0x70
[  675.618747][T15470]  __do_fast_syscall_32+0x2aa/0x400
[  675.623948][T15470]  do_fast_syscall_32+0x6b/0xd0
[  675.628801][T15470]  do_SYSENTER_32+0x73/0x90
[  675.633314][T15470]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  675.639632][T15470] 
[  675.641957][T15470] Uninit was stored to memory at:
[  675.646985][T15470]  kmsan_internal_chain_origin+0xad/0x130
[  675.652717][T15470]  __msan_chain_origin+0x50/0x90
[  675.657667][T15470]  __get_compat_msghdr+0x5be/0x890
[  675.662780][T15470]  get_compat_msghdr+0x108/0x270
[  675.667717][T15470]  __sys_sendmmsg+0x7d5/0xd80
[  675.672392][T15470]  __se_compat_sys_sendmmsg+0xcd/0xf0
[  675.677763][T15470]  __ia32_compat_sys_sendmmsg+0x56/0x70
[  675.683310][T15470]  __do_fast_syscall_32+0x2aa/0x400
[  675.688522][T15470]  do_fast_syscall_32+0x6b/0xd0
[  675.693374][T15470]  do_SYSENTER_32+0x73/0x90
[  675.697876][T15470]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  675.704186][T15470] 
[  675.706508][T15470] Uninit was stored to memory at:
[  675.711534][T15470]  kmsan_internal_chain_origin+0xad/0x130
[  675.717251][T15470]  __msan_chain_origin+0x50/0x90
[  675.722190][T15470]  __get_compat_msghdr+0x5be/0x890
[  675.727312][T15470]  get_compat_msghdr+0x108/0x270
[  675.732258][T15470]  __sys_sendmmsg+0x7d5/0xd80
[  675.736935][T15470]  __se_compat_sys_sendmmsg+0xcd/0xf0
[  675.742348][T15470]  __ia32_compat_sys_sendmmsg+0x56/0x70
[  675.747969][T15470]  __do_fast_syscall_32+0x2aa/0x400
[  675.753262][T15470]  do_fast_syscall_32+0x6b/0xd0
[  675.758124][T15470]  do_SYSENTER_32+0x73/0x90
[  675.762633][T15470]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  675.768951][T15470] 
[  675.771275][T15470] Uninit was stored to memory at:
[  675.776301][T15470]  kmsan_internal_chain_origin+0xad/0x130
[  675.782030][T15470]  __msan_chain_origin+0x50/0x90
[  675.786974][T15470]  __get_compat_msghdr+0x5be/0x890
[  675.792119][T15470]  get_compat_msghdr+0x108/0x270
[  675.797055][T15470]  __sys_sendmmsg+0x7d5/0xd80
[  675.801728][T15470]  __se_compat_sys_sendmmsg+0xcd/0xf0
[  675.807102][T15470]  __ia32_compat_sys_sendmmsg+0x56/0x70
[  675.812647][T15470]  __do_fast_syscall_32+0x2aa/0x400
[  675.817856][T15470]  do_fast_syscall_32+0x6b/0xd0
[  675.822714][T15470]  do_SYSENTER_32+0x73/0x90
[  675.827218][T15470]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  675.833559][T15470] 
[  675.835877][T15470] Uninit was stored to memory at:
[  675.840918][T15470]  kmsan_internal_chain_origin+0xad/0x130
[  675.846637][T15470]  __msan_chain_origin+0x50/0x90
[  675.851579][T15470]  __get_compat_msghdr+0x5be/0x890
[  675.856693][T15470]  get_compat_msghdr+0x108/0x270
[  675.861630][T15470]  __sys_sendmmsg+0x7d5/0xd80
[  675.866306][T15470]  __se_compat_sys_sendmmsg+0xcd/0xf0
[  675.871674][T15470]  __ia32_compat_sys_sendmmsg+0x56/0x70
[  675.877221][T15470]  __do_fast_syscall_32+0x2aa/0x400
[  675.882422][T15470]  do_fast_syscall_32+0x6b/0xd0
[  675.887277][T15470]  do_SYSENTER_32+0x73/0x90
[  675.891778][T15470]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  675.898092][T15470] 
[  675.900415][T15470] Uninit was stored to memory at:
[  675.905442][T15470]  kmsan_internal_chain_origin+0xad/0x130
[  675.911161][T15470]  __msan_chain_origin+0x50/0x90
[  675.916101][T15470]  __get_compat_msghdr+0x5be/0x890
[  675.921211][T15470]  get_compat_msghdr+0x108/0x270
[  675.926149][T15470]  __sys_sendmmsg+0x7d5/0xd80
[  675.930821][T15470]  __se_compat_sys_sendmmsg+0xcd/0xf0
[  675.936188][T15470]  __ia32_compat_sys_sendmmsg+0x56/0x70
[  675.941730][T15470]  __do_fast_syscall_32+0x2aa/0x400
[  675.946934][T15470]  do_fast_syscall_32+0x6b/0xd0
[  675.951786][T15470]  do_SYSENTER_32+0x73/0x90
[  675.956306][T15470]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
12:16:33 executing program 3:
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = gettid()
perf_event_open(&(0x7f00000005c0)={0x0, 0x70, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffff3093, 0x0, @perf_bp={0x0, 0x6}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7b}, r0, 0x0, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000000280)={0x0, 0x70, 0x0, 0x4, 0x0, 0x0, 0x0, 0x203, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7ffd, 0x7}, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0xc)
ioctl$PERF_EVENT_IOC_REFRESH(r1, 0x2402, 0xe43)
sendmsg(0xffffffffffffffff, &(0x7f0000000800)={&(0x7f00000000c0)=@nl=@unspec, 0x80, 0x0, 0x0, &(0x7f0000000000)=[{0x18, 0x29, 0x3b, 'v'}], 0x18}, 0x0)

[  675.962619][T15470] 
[  675.964939][T15470] Local variable ----msg_sys@__sys_sendmmsg created at:
[  675.971876][T15470]  __sys_sendmmsg+0xb7/0xd80
[  675.976476][T15470]  __sys_sendmmsg+0xb7/0xd80
12:16:33 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:16:33 executing program 0:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000002c0)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = socket(0x11, 0x2, 0x0)
bind(r2, &(0x7f0000000080)=@generic={0x11, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80)
sendmmsg$inet6(r2, &(0x7f0000002700)=[{{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000000)="995ac0f1b23d22e1f2e2f335560a0831d25f264b", 0x14}], 0x1}}], 0x1, 0x0)

12:16:33 executing program 1:
r0 = gettid()
rt_sigqueueinfo(r0, 0x10007, &(0x7f0000000080))

12:16:33 executing program 0:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000080)={0x30000004})
r2 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000100)='/dev/bsg\x00', 0x280800, 0x0)
bpf$OBJ_PIN_MAP(0x6, &(0x7f00000001c0)={&(0x7f0000000040)='./file0\x00', r2}, 0x10)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f0000000340), 0x41395527)
vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_gettime(0x0, &(0x7f0000000180)={0x0, <r5=>0x0})
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200)={0x0, r5+30000000}, 0x0)

12:16:33 executing program 3:
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = gettid()
perf_event_open(&(0x7f00000005c0)={0x0, 0x70, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffff3093, 0x0, @perf_bp={0x0, 0x6}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7b}, r0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x0, 0x70, 0x0, 0x4, 0x0, 0x0, 0x0, 0x203, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7ffd, 0x7}, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0xc)
r1 = socket$kcm(0xa, 0x2, 0x73)
sendmsg(r1, &(0x7f0000000800)={&(0x7f00000000c0)=@nl=@unspec, 0x80, 0x0, 0x0, &(0x7f0000000000)=[{0x18, 0x29, 0x3b, 'v'}], 0x18}, 0x0)

[  677.058524][   T33] audit: type=1400 audit(1595160994.089:51): avc:  denied  { block_suspend } for  pid=15491 comm="syz-executor.0" capability=36  scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1
12:16:35 executing program 4:
r0 = socket(0x80000000000000a, 0x0, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(r1, &(0x7f0000000380)=[{&(0x7f0000000100)=""/93, 0x5d}], 0x1, 0x5b)

12:16:35 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000002c0)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, 0x0, 0x0)
setsockopt$sock_int(r2, 0x1, 0x6, &(0x7f0000000140)=0x32, 0x4)
connect$inet(r2, &(0x7f0000000280)={0x2, 0x0, @broadcast}, 0x10)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x25, &(0x7f0000000000)=0x98a, 0x4)

12:16:35 executing program 5:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = gettid()
rt_sigqueueinfo(r2, 0x7, &(0x7f0000000000)={0x0, 0x0, 0x3})

12:16:35 executing program 3:
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = gettid()
perf_event_open(&(0x7f00000005c0)={0x0, 0x70, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffff3093, 0x0, @perf_bp={0x0, 0x6}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7b}, r0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0xa, 0x2, 0x73)
sendmsg(r1, &(0x7f0000000800)={&(0x7f00000000c0)=@nl=@unspec, 0x80, 0x0, 0x0, &(0x7f0000000000)=[{0x18, 0x29, 0x3b, 'v'}], 0x18}, 0x0)

12:16:35 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:16:35 executing program 0:
r0 = open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x1800007, 0x11, r0, 0x0)
r1 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x7f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r1, 0x4, 0x6000)
io_setup(0x202, &(0x7f0000000200)=<r2=>0x0)
r3 = creat(&(0x7f0000000280)='./bus\x00', 0x0)
ftruncate(r3, 0x8200)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x2, 0x0, 0x1299})
sendmmsg$inet6(0xffffffffffffffff, &(0x7f00000027c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
io_submit(r2, 0x1, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f0000000000), 0x1a000000}])

12:16:36 executing program 1:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = socket$inet6(0xa, 0x800000000000002, 0x0)
connect$inet6(r2, &(0x7f0000000040)={0xa, 0x0, 0x0, @local, 0x4}, 0x1c)
sendmmsg(r2, &(0x7f0000006d00)=[{{0x0, 0x1002000, 0x0, 0x0, 0x0, 0x0, 0xb605}}], 0xc6, 0x0)

12:16:36 executing program 3:
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
gettid()
r0 = socket$kcm(0xa, 0x2, 0x73)
sendmsg(r0, &(0x7f0000000800)={&(0x7f00000000c0)=@nl=@unspec, 0x80, 0x0, 0x0, &(0x7f0000000000)=[{0x18, 0x29, 0x3b, 'v'}], 0x18}, 0x0)

12:16:36 executing program 5:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x1800007, 0x11, r1, 0x0)
r2 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
fcntl$setstatus(r2, 0x4, 0x6000)
io_setup(0x202, &(0x7f0000000200)=<r3=>0x0)
r4 = creat(&(0x7f0000000280)='./bus\x00', 0x0)
ftruncate(r4, 0x8200)
recvmmsg(0xffffffffffffffff, &(0x7f0000005b40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f00000027c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
io_submit(r3, 0x1, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r2, &(0x7f0000000000), 0x1a000000}])
r5 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)

12:16:36 executing program 0:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0)
connect$inet(r2, &(0x7f0000000140)={0x2, 0x0, @remote}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x30005, 0x0)

12:16:36 executing program 3:
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0xa, 0x2, 0x73)
sendmsg(r0, &(0x7f0000000800)={&(0x7f00000000c0)=@nl=@unspec, 0x80, 0x0, 0x0, &(0x7f0000000000)=[{0x18, 0x29, 0x3b, 'v'}], 0x18}, 0x0)

12:16:36 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
r3 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000080), 0x4)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:16:38 executing program 4:
socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2e, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(r0, &(0x7f0000000380)=[{&(0x7f0000000100)=""/93, 0x5d}], 0x1, 0x5b)

12:16:38 executing program 5:
r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
write$cgroup_type(r0, &(0x7f0000000180)='threaded\x00', 0x2d1ee37)
clone(0x20001000104, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r3)
lsetxattr$system_posix_acl(&(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='system.posix_acl_default\x00', &(0x7f0000000240)=ANY=[@ANYBLOB="02"], 0x24, 0x0)
ptrace$setopts(0x4206, r3, 0x0, 0x0)
tkill(r3, 0x1d)
creat(&(0x7f0000000080)='./file0\x00', 0x0)

12:16:38 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:16:38 executing program 3:
r0 = socket$kcm(0xa, 0x2, 0x73)
sendmsg(r0, &(0x7f0000000800)={&(0x7f00000000c0)=@nl=@unspec, 0x80, 0x0, 0x0, &(0x7f0000000000)=[{0x18, 0x29, 0x3b, 'v'}], 0x18}, 0x0)

12:16:38 executing program 0:
r0 = inotify_init1(0x0)
fcntl$setown(r0, 0x8, 0xffffffffffffffff)
fcntl$getownex(r0, 0x10, &(0x7f0000000100)={0x0, <r1=>0x0})
clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
r3 = dup(r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
ioctl$NS_GET_USERNS(0xffffffffffffffff, 0xb701, 0x0)
process_vm_readv(r1, &(0x7f0000000380)=[{&(0x7f0000000340)=""/61, 0x3d}], 0x1, &(0x7f0000002540)=[{&(0x7f00000003c0)=""/63, 0x7ffff002}], 0x2, 0x0)

12:16:38 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
r3 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000080), 0x4)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

[  681.809328][T15571] ptrace attach of "/root/syz-executor.0"[8450] was attempted by "/root/syz-executor.0"[15571]
[  681.846736][T15575] ptrace attach of "/root/syz-executor.0"[8450] was attempted by "/root/syz-executor.0"[15575]
12:16:38 executing program 0:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
clock_getres(0x5, 0x0)

12:16:39 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = socket(0x11, 0x800000003, 0x0)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x1000}, 0x4)

12:16:39 executing program 3:
r0 = socket$kcm(0xa, 0x0, 0x73)
sendmsg(r0, &(0x7f0000000800)={&(0x7f00000000c0)=@nl=@unspec, 0x80, 0x0, 0x0, &(0x7f0000000000)=[{0x18, 0x29, 0x3b, 'v'}], 0x18}, 0x0)

12:16:39 executing program 0:
socket$inet6(0xa, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
pipe(&(0x7f0000000080))
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @local, 0x4}, 0x1c)
setsockopt$inet6_opts(r0, 0x29, 0x36, &(0x7f00000001c0)=@fragment, 0x8)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000240), 0x0)
sendmmsg(r0, &(0x7f0000006d00)=[{{0x0, 0x1002000, 0x0, 0x0, 0x0, 0x0, 0xb605}}], 0xc6, 0x0)

12:16:39 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(0xffffffffffffffff, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:16:39 executing program 5:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d)
bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x220007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
recvmmsg(r0, &(0x7f0000005540)=[{{0x0, 0x28000000, &(0x7f0000000240)=[{&(0x7f0000001340)=""/4067, 0x20002323}], 0x1, 0x0, 0x983a0000, 0x103}}], 0x1, 0x0, 0x0)
sendto$inet(r0, &(0x7f00000012c0)="0c268a927f1f6588b967480a41ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95c25a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x11, 0x0, 0x170)

12:16:41 executing program 4:
socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2e, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(r0, &(0x7f0000000380)=[{&(0x7f0000000100)=""/93, 0x5d}], 0x1, 0x5b)

12:16:41 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
r3 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000080), 0x4)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:16:41 executing program 3:
r0 = socket$kcm(0xa, 0x0, 0x73)
sendmsg(r0, &(0x7f0000000800)={&(0x7f00000000c0)=@nl=@unspec, 0x80, 0x0, 0x0, &(0x7f0000000000)=[{0x18, 0x29, 0x3b, 'v'}], 0x18}, 0x0)

12:16:41 executing program 0:

12:16:41 executing program 5:

12:16:41 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(0xffffffffffffffff, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:16:41 executing program 0:

12:16:41 executing program 5:

12:16:41 executing program 3:
r0 = socket$kcm(0xa, 0x0, 0x73)
sendmsg(r0, &(0x7f0000000800)={&(0x7f00000000c0)=@nl=@unspec, 0x80, 0x0, 0x0, &(0x7f0000000000)=[{0x18, 0x29, 0x3b, 'v'}], 0x18}, 0x0)

12:16:41 executing program 0:

12:16:41 executing program 5:

12:16:42 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(0xffffffffffffffff, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:16:44 executing program 4:
socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2e, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(r0, &(0x7f0000000380)=[{&(0x7f0000000100)=""/93, 0x5d}], 0x1, 0x5b)

12:16:44 executing program 3:
socket$kcm(0xa, 0x2, 0x73)
sendmsg(0xffffffffffffffff, &(0x7f0000000800)={&(0x7f00000000c0)=@nl=@unspec, 0x80, 0x0, 0x0, &(0x7f0000000000)=[{0x18, 0x29, 0x3b, 'v'}], 0x18}, 0x0)

12:16:44 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
r3 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000080), 0x4)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:16:44 executing program 0:

12:16:44 executing program 5:

12:16:44 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, 0x0, 0x0, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:16:44 executing program 5:

12:16:44 executing program 3:
socket$kcm(0xa, 0x2, 0x73)
sendmsg(0xffffffffffffffff, &(0x7f0000000800)={&(0x7f00000000c0)=@nl=@unspec, 0x80, 0x0, 0x0, &(0x7f0000000000)=[{0x18, 0x29, 0x3b, 'v'}], 0x18}, 0x0)

12:16:44 executing program 0:

12:16:44 executing program 5:

12:16:44 executing program 3:
socket$kcm(0xa, 0x2, 0x73)
sendmsg(0xffffffffffffffff, &(0x7f0000000800)={&(0x7f00000000c0)=@nl=@unspec, 0x80, 0x0, 0x0, &(0x7f0000000000)=[{0x18, 0x29, 0x3b, 'v'}], 0x18}, 0x0)

12:16:45 executing program 0:

12:16:46 executing program 4:
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x0, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(r1, &(0x7f0000000380)=[{&(0x7f0000000100)=""/93, 0x5d}], 0x1, 0x5b)

12:16:46 executing program 5:

12:16:46 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, 0x0, 0x0, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:16:46 executing program 3:
r0 = socket$kcm(0xa, 0x2, 0x73)
sendmsg(r0, 0x0, 0x0)

12:16:46 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
r3 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000080), 0x4)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:16:46 executing program 0:

12:16:46 executing program 0:

12:16:46 executing program 3:
r0 = socket$kcm(0xa, 0x2, 0x73)
sendmsg(r0, 0x0, 0x0)

12:16:46 executing program 5:

12:16:46 executing program 0:

12:16:46 executing program 3:
r0 = socket$kcm(0xa, 0x2, 0x73)
sendmsg(r0, 0x0, 0x0)

12:16:47 executing program 5:

12:16:47 executing program 4:
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x0, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(r1, &(0x7f0000000380)=[{&(0x7f0000000100)=""/93, 0x5d}], 0x1, 0x5b)

12:16:47 executing program 0:

12:16:47 executing program 3:
r0 = socket$kcm(0xa, 0x2, 0x73)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=[{0x10, 0x29, 0x3b, 'v'}], 0x10}, 0x0)

12:16:47 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
r3 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000080), 0x4)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:16:47 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, 0x0, 0x0, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:16:47 executing program 5:

12:16:48 executing program 0:

12:16:48 executing program 3:
r0 = socket$kcm(0xa, 0x2, 0x73)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=[{0x10, 0x29, 0x3b, 'v'}], 0x10}, 0x0)

12:16:48 executing program 5:

12:16:48 executing program 0:

12:16:48 executing program 3:
r0 = socket$kcm(0xa, 0x2, 0x73)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=[{0x10, 0x29, 0x3b, 'v'}], 0x10}, 0x0)

12:16:48 executing program 5:

12:16:50 executing program 4:
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x0, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(r1, &(0x7f0000000380)=[{&(0x7f0000000100)=""/93, 0x5d}], 0x1, 0x5b)

12:16:50 executing program 0:

12:16:50 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
r3 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000080), 0x4)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:16:50 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0), 0x0, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:16:50 executing program 3:
r0 = socket$kcm(0xa, 0x2, 0x73)
sendmsg(r0, &(0x7f0000000800)={&(0x7f00000000c0)=@nl=@unspec, 0x80, 0x0}, 0x0)

12:16:50 executing program 5:

12:16:50 executing program 5:

12:16:50 executing program 0:

12:16:50 executing program 3:

12:16:50 executing program 0:

12:16:51 executing program 5:

12:16:51 executing program 3:

12:16:51 executing program 4:
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(r1, &(0x7f0000000380)=[{&(0x7f0000000100)=""/93, 0x5d}], 0x1, 0x5b)

12:16:51 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0), 0x0, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:16:51 executing program 0:

12:16:51 executing program 5:

12:16:51 executing program 3:

12:16:51 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
r3 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000080), 0x4)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:16:52 executing program 5:

12:16:52 executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
socket$kcm(0x29, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r0, 0x40086602, 0x400007)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0x32600)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='freezer.self_freezing\x00', 0x7a05, 0x1700)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000200), 0x43400)
perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x8)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0xda00)
write$cgroup_subtree(r0, &(0x7f0000000380)=ANY=[@ANYBLOB], 0x1)
write$cgroup_int(r2, &(0x7f0000000200)=0x43, 0x40001)

12:16:52 executing program 3:

12:16:52 executing program 5:

12:16:52 executing program 3:

12:16:52 executing program 0:

12:16:54 executing program 4:
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(r1, &(0x7f0000000380)=[{&(0x7f0000000100)=""/93, 0x5d}], 0x1, 0x5b)

12:16:54 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
r3 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000080), 0x4)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:16:54 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0), 0x0, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:16:54 executing program 5:

12:16:54 executing program 3:

12:16:54 executing program 0:

12:16:54 executing program 3:

12:16:54 executing program 5:

12:16:54 executing program 0:

12:16:55 executing program 3:

12:16:55 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(0xffffffffffffffff, 0x0)
socket$netlink(0x10, 0x3, 0x0)
writev(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_inet6_tcp_SIOCINQ(r0, 0x541b, &(0x7f0000000000))

12:16:55 executing program 0:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = open(&(0x7f00000000c0)='./bus\x00', 0x151042, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/cgroups\x00', 0x0, 0x0)
sendfile(r2, r3, 0x0, 0x4000000000010044)

12:16:56 executing program 4:
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(r1, &(0x7f0000000380)=[{&(0x7f0000000100)=""/93, 0x5d}], 0x1, 0x5b)

12:16:56 executing program 3:
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x103442, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800006, 0x11, r0, 0x403000)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff})
r2 = fcntl$dupfd(r1, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$EXT4_IOC_SETFLAGS(r3, 0x40086602, &(0x7f0000000040))
r4 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
ftruncate(r4, 0x2008001)
write$input_event(r0, &(0x7f0000000140), 0x18)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000a, 0x9)

12:16:56 executing program 5:
prctl$PR_SET_SECUREBITS(0x1c, 0x9)
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x1)
close(r0)
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)

12:16:56 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200)='nl80211\x00')
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_MRT6_DEL_MFC_PROXY(0xffffffffffffffff, 0x29, 0xd3, 0x0, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup3(r2, r3, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="c18f00000000000000006b"], 0x2c}}, 0x0)

12:16:56 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, 0x0}, 0x1000000}], 0x1, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:16:56 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
r3 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000080), 0x4)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

[  699.841096][T15836] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'.
12:16:57 executing program 5:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
select(0x0, 0x0, 0x0, 0x0, &(0x7f0000000100))

12:16:57 executing program 0:
socketpair$unix(0x1, 0x2, 0x0, 0x0)
ioctl$sock_SIOCINQ(0xffffffffffffffff, 0x541b, 0x0)
pipe(0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000340)='-vboxnet0\x00]\xea\xb0\xe2N\xc6c\x05\x8d\xb5\xc0\n\xad\x0f#+\x17\xd6A\xf4\xdf\x1b\xf9~\x8e\"\r\xff\xbb\xb0\xc3\x86\x97\xaf\xf8\x7f*\xfc\xfd\xe7\xcc\xbc\xddI.\xc3\x9aQ\xc8\x8e8U\xdaX\x06\x92\x1d\xbd\x10\xf9\xe8q\x00\xddr>\xd7\x9f\xf8r\xeeE\xa83K\xf60 \x7f\xcd\xac\x86\x9eT*\xf7\a^L,\x98\xa2(2,\x8c*\xff\x8aA\xa1\x15<g8\xddGdF(\xeaN\xbcSoz\xe5.c\xdf\x8b\xd2m}\xc7D\x98\xd4p.e\x050,c9:\x95z\xe2\xa9\xcf\xd2\x90*\xaa\xc0W.\xcb|.F_\xf8(\xa4\x91\xc8\v\x9b>3\x15\b\xcb\xf7\xefw\xa6\xc7c@\xb5\x9b\xdc$`3]\xf9.\xcf\x00', 0x0)
ftruncate(r0, 0x1000000)
r1 = memfd_create(&(0x7f0000000000)='-vboxnet0\x00]\xea\xb0\xe2N\xc6c\x05\x8d\xb5\xc0\n\xad\x0f#+\x17\xd6A\xf4\xdf\x1b\xf9~\x8e\"\r\xff\xbb\xb0\xc3\x86\x97\xaf\xf8\x7f*\xfc\xfd\xe7\xcc\xbc\xddI.\xc3\x9aQ\xc8\x8e8U\xdaX\x06\x92\x1d\xbd\x10\xf9\xe8q\x00\xddr>\xd7\x9f\xf8r\xeeE\xa83K\xf60 \x7f\xcd\xac\x86\x9eT*\xf7\a^L,\x98\xa2(2,\x8c*\xff\x8aA\xa1\x15<g8\xddGdF(\xeaN\xbcSoz\xe5.c\xdf\x8b\xd2m}\xc7D\x98\xd4p.e\x050,c9:\x95z\xe2\xa9\xcf\xd2\x90*\xaa\xc0W.\xcb|.F_\xf8(\xa4\x91\xc8\v\x9b>3\x15\b\xcb\xf7\xefw\xa6\xc7c@\xb5\x9b\xdc$`3]\xf9.\xcf\x00', 0x0)
ftruncate(r1, 0x1000000)
r2 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x101202, 0x0)
sendfile(r2, r1, 0x0, 0xeefffdef)
sendfile(r1, r0, 0x0, 0xeefffdef)
getpid()
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_SETCRTC(0xffffffffffffffff, 0xc06864a2, &(0x7f0000000200)={&(0x7f0000000140)=[0x2], 0x1, 0x0, 0x0, 0x1adfa00, 0xffffff80, 0x2, 0xfffffffb, {0x5, 0xffff, 0x1ff, 0x7, 0x8000, 0x20, 0x0, 0xed, 0x0, 0xc, 0x5, 0x1, 0x6, 0x5, "bd268dc1f21a0ddf7190ed82f108bb66c08c0caefc52621220c3239e50ae324e"}})
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)

12:16:57 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f00000004c0)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff00004e220000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100080c1000000000000ffffe00", 0x58}], 0x1)

12:16:57 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, 0x0}, 0x1000000}], 0x1, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:16:57 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
r3 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000080), 0x4)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:16:58 executing program 5:
r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
chown(0x0, 0x0, 0x0)
getegid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, &(0x7f0000000080)=[{&(0x7f00000003c0)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x270}], 0x1, &(0x7f0000000ac0)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x48, 0x4000801}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r1, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty, 0x8}, 0x1c)
setsockopt$inet6_int(r1, 0x29, 0x31, &(0x7f0000000040)=0x5, 0x4)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xfdffffffffffffff, 0xffffffffffffffff, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x0, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
write$tun(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB], 0x8d)
recvmmsg(r1, &(0x7f0000008880), 0x45b, 0x44000102, 0x0)

[  701.618323][T15867] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based  firewall rule not found. Use the iptables CT target to attach helpers instead.
12:17:00 executing program 4:
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
r1 = syz_open_procfs(0x0, 0x0)
preadv(r1, &(0x7f0000000380)=[{&(0x7f0000000100)=""/93, 0x5d}], 0x1, 0x5b)

12:17:00 executing program 0:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_nanosleep(0x2, 0x1, &(0x7f0000000000)={0x77359400}, 0x0)

12:17:00 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, 0x0}, 0x1000000}], 0x1, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:17:00 executing program 5:
socketpair$unix(0x1, 0x2, 0x0, 0x0)
ioctl$sock_SIOCINQ(0xffffffffffffffff, 0x541b, 0x0)
pipe(0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000340)='-vboxnet0\x00]\xea\xb0\xe2N\xc6c\x05\x8d\xb5\xc0\n\xad\x0f#+\x17\xd6A\xf4\xdf\x1b\xf9~\x8e\"\r\xff\xbb\xb0\xc3\x86\x97\xaf\xf8\x7f*\xfc\xfd\xe7\xcc\xbc\xddI.\xc3\x9aQ\xc8\x8e8U\xdaX\x06\x92\x1d\xbd\x10\xf9\xe8q\x00\xddr>\xd7\x9f\xf8r\xeeE\xa83K\xf60 \x7f\xcd\xac\x86\x9eT*\xf7\a^L,\x98\xa2(2,\x8c*\xff\x8aA\xa1\x15<g8\xddGdF(\xeaN\xbcSoz\xe5.c\xdf\x8b\xd2m}\xc7D\x98\xd4p.e\x050,c9:\x95z\xe2\xa9\xcf\xd2\x90*\xaa\xc0W.\xcb|.F_\xf8(\xa4\x91\xc8\v\x9b>3\x15\b\xcb\xf7\xefw\xa6\xc7c@\xb5\x9b\xdc$`3]\xf9.\xcf\x00', 0x0)
ftruncate(r0, 0x1000000)
r1 = memfd_create(&(0x7f0000000000)='-vboxnet0\x00]\xea\xb0\xe2N\xc6c\x05\x8d\xb5\xc0\n\xad\x0f#+\x17\xd6A\xf4\xdf\x1b\xf9~\x8e\"\r\xff\xbb\xb0\xc3\x86\x97\xaf\xf8\x7f*\xfc\xfd\xe7\xcc\xbc\xddI.\xc3\x9aQ\xc8\x8e8U\xdaX\x06\x92\x1d\xbd\x10\xf9\xe8q\x00\xddr>\xd7\x9f\xf8r\xeeE\xa83K\xf60 \x7f\xcd\xac\x86\x9eT*\xf7\a^L,\x98\xa2(2,\x8c*\xff\x8aA\xa1\x15<g8\xddGdF(\xeaN\xbcSoz\xe5.c\xdf\x8b\xd2m}\xc7D\x98\xd4p.e\x050,c9:\x95z\xe2\xa9\xcf\xd2\x90*\xaa\xc0W.\xcb|.F_\xf8(\xa4\x91\xc8\v\x9b>3\x15\b\xcb\xf7\xefw\xa6\xc7c@\xb5\x9b\xdc$`3]\xf9.\xcf\x00', 0x0)
ftruncate(r1, 0x1000000)
r2 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x101202, 0x0)
sendfile(r2, r1, 0x0, 0xeefffdef)
sendfile(r1, r0, 0x0, 0xeefffdef)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_SETCRTC(0xffffffffffffffff, 0xc06864a2, &(0x7f0000000200)={&(0x7f0000000140)=[0x2], 0x1, 0x0, 0x0, 0x1adfa00, 0x0, 0x2, 0x0, {0x5, 0xffff, 0x1ff, 0x7, 0x8000, 0x20, 0x0, 0xed, 0x0, 0xc, 0x5, 0x1, 0x6, 0x0, "bd268dc1f21a0ddf7190ed82f108bb66c08c0caefc52621220c3239e50ae324e"}})
sched_setattr(0x0, 0x0, 0x0)

12:17:00 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
r3 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000080), 0x4)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:17:00 executing program 3:
r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
chown(0x0, 0x0, 0x0)
getegid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, 0x0, 0x0, &(0x7f0000000ac0)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x28, 0x4000801}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r1, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty, 0x8}, 0x1c)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, &(0x7f0000000040), 0x4)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xfdffffffffffffff, 0xffffffffffffffff, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x0, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
recvmmsg(r1, &(0x7f0000008880), 0x45b, 0x44000102, 0x0)

12:17:01 executing program 3:
r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
chown(0x0, 0x0, 0x0)
getegid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, 0x0, 0x0, &(0x7f0000000ac0)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x28, 0x4000801}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r1, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty, 0x8}, 0x1c)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, &(0x7f0000000040), 0x4)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xfdffffffffffffff, 0xffffffffffffffff, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x0, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
recvmmsg(r1, &(0x7f0000008880), 0x45b, 0x44000102, 0x0)

12:17:01 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)}, 0x1000000}], 0x1, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:17:01 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
r3 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000080), 0x4)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:17:01 executing program 0:
r0 = gettid()
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e)
fcntl$setsig(r1, 0xa, 0x12)
r3 = signalfd4(0xffffffffffffffff, &(0x7f0000006000), 0x8, 0x0)
r4 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f00000000c0))
pipe(0x0)
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0)
epoll_pwait(r4, &(0x7f0000000080)=[{}], 0x1, 0x7fffffff, 0x0, 0x0)
poll(&(0x7f0000000180)=[{r2}], 0x1, 0xfffffffffffffff8)
dup2(r1, r2)
fcntl$setown(r2, 0x8, r0)
tkill(r0, 0x14)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

12:17:02 executing program 5:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000))
r0 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$netlink(0x10, 0x3, 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000080)=0x7, 0x4)
writev(r1, &(0x7f0000003280)=[{&(0x7f0000000d80)="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", 0x128}], 0x1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff})
r3 = dup(r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
write$P9_RLCREATE(0xffffffffffffffff, 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x955)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, 0x0)
r4 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_TCP_MD5SIG(r4, 0x6, 0xe, &(0x7f0000000280)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x2, 0x7, 0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\b\x00'}, 0xd8)
bind$inet(r4, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$sock_linger(r4, 0x1, 0xd, &(0x7f0000000040)={0x1, 0x6}, 0x8)
sendto$inet(r4, 0x0, 0xffffffffffffff7c, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @loopback}, 0x10)
sendto$inet(r4, &(0x7f0000000240)="1b", 0x1, 0x8000, 0x0, 0x0)
close(r4)

12:17:02 executing program 5:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000))
r0 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$netlink(0x10, 0x3, 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000080)=0x7, 0x4)
writev(r1, &(0x7f0000003280)=[{&(0x7f0000000d80)="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", 0x128}], 0x1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff})
r3 = dup(r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
write$P9_RLCREATE(0xffffffffffffffff, 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x955)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, 0x0)
r4 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_TCP_MD5SIG(r4, 0x6, 0xe, &(0x7f0000000280)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x2, 0x7, 0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\b\x00'}, 0xd8)
bind$inet(r4, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$sock_linger(r4, 0x1, 0xd, &(0x7f0000000040)={0x1, 0x6}, 0x8)
sendto$inet(r4, 0x0, 0xffffffffffffff7c, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @loopback}, 0x10)
sendto$inet(r4, &(0x7f0000000240)="1b", 0x1, 0x8000, 0x0, 0x0)
close(r4)

12:17:03 executing program 4:
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
r1 = syz_open_procfs(0x0, 0x0)
preadv(r1, &(0x7f0000000380)=[{&(0x7f0000000100)=""/93, 0x5d}], 0x1, 0x5b)

12:17:03 executing program 3:
r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
chown(0x0, 0x0, 0x0)
getegid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, 0x0, 0x0, &(0x7f0000000ac0)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x28, 0x4000801}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r1, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty, 0x8}, 0x1c)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, &(0x7f0000000040), 0x4)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xfdffffffffffffff, 0xffffffffffffffff, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x0, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
recvmmsg(r1, &(0x7f0000008880), 0x45b, 0x44000102, 0x0)

12:17:03 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)}, 0x1000000}], 0x1, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:17:03 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x3d, 0x0)
ioctl$TCSETSW(0xffffffffffffffff, 0x5403, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
write$binfmt_aout(r0, &(0x7f0000000080)=ANY=[@ANYRES64], 0xffffff78)
mprotect(&(0x7f000001c000/0x2000)=nil, 0x2000, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, "3abc50afd968c13400"})
r3 = syz_open_pts(r0, 0x0)
dup3(r3, r0, 0x0)
read(r0, &(0x7f00000000c0)=""/19, 0xfffffd28)

12:17:03 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
socket$packet(0x11, 0x2, 0x300)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:17:04 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)}, 0x1000000}], 0x1, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:17:04 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:17:04 executing program 3:
r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
chown(0x0, 0x0, 0x0)
getegid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, 0x0, 0x0, &(0x7f0000000ac0)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x28, 0x4000801}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r1, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty, 0x8}, 0x1c)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, &(0x7f0000000040), 0x4)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xfdffffffffffffff, 0xffffffffffffffff, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x0, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
recvmmsg(r1, &(0x7f0000008880), 0x45b, 0x44000102, 0x0)

12:17:04 executing program 5:
socketpair$unix(0x1, 0x2, 0x0, 0x0)
ioctl$sock_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000080))
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffffffdffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000340)='-vboxnet0\x00]\xea\xb0\xe2N\xc6c\x05\x8d\xb5\xc0\n\xad\x0f#+\x17\xd6A\xf4\xdf\x1b\xf9~\x8e\"\r\xff\xbb\xb0\xc3\x86\x97\xaf\xf8\x7f*\xfc\xfd\xe7\xcc\xbc\xddI.\xc3\x9aQ\xc8\x8e8U\xdaX\x06\x92\x1d\xbd\x10\xf9\xe8q\x00\xddr>\xd7\x9f\xf8r\xeeE\xa83K\xf60 \x7f\xcd\xac\x86\x9eT*\xf7\a^L,\x98\xa2(2,\x8c*\xff\x8aA\xa1\x15<g8\xddGdF(\xeaN\xbcSoz\xe5.c\xdf\x8b\xd2m}\xc7D\x98\xd4p.e\x050,c9:\x95z\xe2\xa9\xcf\xd2\x90*\xaa\xc0W.\xcb|.F_\xf8(\xa4\x91\xc8\v\x9b>3\x15\b\xcb\xf7\xefw\xa6\xc7c@\xb5\x9b\xdc$`3]\xf9.\xcf\x00', 0x0)
ftruncate(r0, 0x1000000)
r1 = memfd_create(&(0x7f0000000000)='-vboxnet0\x00]\xea\xb0\xe2N\xc6c\x05\x8d\xb5\xc0\n\xad\x0f#+\x17\xd6A\xf4\xdf\x1b\xf9~\x8e\"\r\xff\xbb\xb0\xc3\x86\x97\xaf\xf8\x7f*\xfc\xfd\xe7\xcc\xbc\xddI.\xc3\x9aQ\xc8\x8e8U\xdaX\x06\x92\x1d\xbd\x10\xf9\xe8q\x00\xddr>\xd7\x9f\xf8r\xeeE\xa83K\xf60 \x7f\xcd\xac\x86\x9eT*\xf7\a^L,\x98\xa2(2,\x8c*\xff\x8aA\xa1\x15<g8\xddGdF(\xeaN\xbcSoz\xe5.c\xdf\x8b\xd2m}\xc7D\x98\xd4p.e\x050,c9:\x95z\xe2\xa9\xcf\xd2\x90*\xaa\xc0W.\xcb|.F_\xf8(\xa4\x91\xc8\v\x9b>3\x15\b\xcb\xf7\xefw\xa6\xc7c@\xb5\x9b\xdc$`3]\xf9.\xcf\x00', 0x0)
ftruncate(r1, 0x1000000)
r2 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x101202, 0x0)
sendfile(r2, r1, 0x0, 0xeefffdef)
sendfile(r1, r0, 0x0, 0xeefffdef)
getpid()

12:17:05 executing program 0:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x42, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x2)
r0 = socket$alg(0x26, 0x5, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000004e00)={&(0x7f0000ff4000/0x4000)=nil, &(0x7f0000ff4000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ff6000/0x2000)=nil, &(0x7f0000ff4000/0x2000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ff6000/0x2000)=nil, &(0x7f0000ff9000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0, r0}, 0x68)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='coredump_filter\x00')
preadv(r1, &(0x7f00000017c0), 0x375, 0x0)

12:17:05 executing program 3:
r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
chown(0x0, 0x0, 0x0)
getegid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, 0x0, 0x0, &(0x7f0000000ac0)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x28, 0x4000801}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r1, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty, 0x8}, 0x1c)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, &(0x7f0000000040), 0x4)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xfdffffffffffffff, 0xffffffffffffffff, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x0, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @empty}, 0x1c)

12:17:06 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{0x0}], 0x1}, 0x1000000}], 0x1, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:17:07 executing program 4:
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
r1 = syz_open_procfs(0x0, 0x0)
preadv(r1, &(0x7f0000000380)=[{&(0x7f0000000100)=""/93, 0x5d}], 0x1, 0x5b)

12:17:07 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:17:07 executing program 3:
r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
chown(0x0, 0x0, 0x0)
getegid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, 0x0, 0x0, &(0x7f0000000ac0)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x28, 0x4000801}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r1, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty, 0x8}, 0x1c)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, &(0x7f0000000040), 0x4)
sendto$inet6(r1, 0x0, 0x0, 0x0, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @empty}, 0x1c)

12:17:07 executing program 0:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f000099e000)={0x2, 0x4e20, @dev}, 0x10)
sendto$inet(r0, &(0x7f0000000140), 0xffffffffffffff58, 0x20008005, &(0x7f0000000100)={0x2, 0x4e20}, 0x10)
recvfrom(r0, 0x0, 0xfffffffffffffe35, 0x123, 0x0, 0x0)

12:17:07 executing program 5:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair(0x11, 0xa, 0xd5, 0x0)

12:17:07 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{0x0}], 0x1}, 0x1000000}], 0x1, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

[  710.929166][T15987] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based  firewall rule not found. Use the iptables CT target to attach helpers instead.
12:17:08 executing program 3:
r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
chown(0x0, 0x0, 0x0)
getegid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, 0x0, 0x0, &(0x7f0000000ac0)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x28, 0x4000801}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r1, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty, 0x8}, 0x1c)
sendto$inet6(r1, 0x0, 0x0, 0x0, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @empty}, 0x1c)

12:17:08 executing program 5:
socket$packet(0x11, 0x2, 0x300)
r0 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @mcast2, 0x2}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x4008080, &(0x7f00000000c0)={0xa, 0x4e23, 0x0, @ipv4={[], [], @loopback}}, 0x1c)
sendmmsg(r0, &(0x7f0000000540)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)

12:17:08 executing program 3:
r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
chown(0x0, 0x0, 0x0)
getegid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, 0x0, 0x0, &(0x7f0000000ac0)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x28, 0x4000801}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x0, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @empty}, 0x1c)

12:17:08 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
recvmmsg(0xffffffffffffffff, &(0x7f000000b180)=[{{0x0, 0x0, &(0x7f0000002e00)=[{&(0x7f00000002c0)=""/163, 0xa3}], 0x1}}], 0x1, 0x0, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x1b, &(0x7f0000000040)={@dev}, 0x20)
r3 = syz_open_procfs(0x0, &(0x7f0000000080)='net/anycast6\x00')
preadv(r3, &(0x7f00000017c0), 0x1d0, 0x48)

12:17:08 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:17:08 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{0x0}], 0x1}, 0x1000000}], 0x1, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:17:10 executing program 4:
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(0xffffffffffffffff, &(0x7f0000000380)=[{&(0x7f0000000100)=""/93, 0x5d}], 0x1, 0x5b)

12:17:10 executing program 0:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
eventfd2(0x0, 0xe2a8a438776532bb)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

12:17:10 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000340)='-vboxnet0\x00]\xea\xb0\xe2N\xc6c\x05\x8d\xb5\xc0\n\xad\x0f#+\x17\xd6A\xf4\xdf\x1b\xf9~\x8e\"\r\xff\xbb\xb0\xc3\x86\x97\xaf\xf8\x7f*\xfc\xfd\xe7\xcc\xbc\xddI.\xc3\x9aQ\xc8\x8e8U\xdaX\x06\x92\x1d\xbd\x10\xf9\xe8q\x00\xddr>\xd7\x9f\xf8r\xeeE\xa83K\xf60 \x7f\xcd\xac\x86\x9eT*\xf7\a^L,\x98\xa2(2,\x8c*\xff\x8aA\xa1\x15<g8\xddGdF(\xeaN\xbcSoz\xe5.c\xdf\x8b\xd2m}\xc7D\x98\xd4p.e\x050,c9:\x95z\xe2\xa9\xcf\xd2\x90*\xaa\xc0W.\xcb|.F_\xf8(\xa4\x91\xc8\v\x9b>3\x15\b\xcb\xf7\xefw\xa6\xc7c@\xb5\x9b\xdc$`3]\xf9.\xcf\x00', 0x0)
ftruncate(r0, 0x1000000)
r1 = memfd_create(&(0x7f0000000000)='-vboxnet0\x00]\xea\xb0\xe2N\xc6c\x05\x8d\xb5\xc0\n\xad\x0f#+\x17\xd6A\xf4\xdf\x1b\xf9~\x8e\"\r\xff\xbb\xb0\xc3\x86\x97\xaf\xf8\x7f*\xfc\xfd\xe7\xcc\xbc\xddI.\xc3\x9aQ\xc8\x8e8U\xdaX\x06\x92\x1d\xbd\x10\xf9\xe8q\x00\xddr>\xd7\x9f\xf8r\xeeE\xa83K\xf60 \x7f\xcd\xac\x86\x9eT*\xf7\a^L,\x98\xa2(2,\x8c*\xff\x8aA\xa1\x15<g8\xddGdF(\xeaN\xbcSoz\xe5.c\xdf\x8b\xd2m}\xc7D\x98\xd4p.e\x050,c9:\x95z\xe2\xa9\xcf\xd2\x90*\xaa\xc0W.\xcb|.F_\xf8(\xa4\x91\xc8\v\x9b>3\x15\b\xcb\xf7\xefw\xa6\xc7c@\xb5\x9b\xdc$`3]\xf9.\xcf\x00', 0x0)
ftruncate(r1, 0x1000000)
r2 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x101202, 0x0)
sendfile(r2, r1, 0x0, 0xeefffdef)
sendfile(r1, r0, 0x0, 0x0)

12:17:10 executing program 3:
r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
chown(0x0, 0x0, 0x0)
getegid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, 0x0, 0x0, &(0x7f0000000ac0)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x28, 0x4000801}, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @empty}, 0x1c)

12:17:10 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:17:10 executing program 3:
r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
chown(0x0, 0x0, 0x0)
getegid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, 0x0, 0x0, &(0x7f0000000ac0)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x28, 0x4000801}, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @empty}, 0x1c)

12:17:10 executing program 0:
r0 = perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0xa27, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x7ff, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setresuid(0x0, 0x0, 0x0)
getresuid(&(0x7f0000000780), &(0x7f00000007c0), &(0x7f0000000800)=<r1=>0x0)
sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000000d80)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000d40)={&(0x7f0000000840)={0x4a0, 0x0, 0xb, 0x301, 0x70bd2d, 0x25dfdbff, {0x2, 0x0, 0x6}, [@nested={0x41, 0x43, 0x0, 0x1, [@generic="19d72d3f57876fce4363d9775159ccfb895ca32de86ebbd398e3bb95244310dc33a44ac9d5885a1eec010a37ee1271f885fa206d265144593df3c0ae34"]}, @generic="d1de3cc6feebb3f1c36cf09c284269d268b7f953d3b6f13cd9a3297c8ac2bc1b600b49d21a580741d5850eda337f8bfc3d65f77e20348954411c675b46c6979d8c8f2223a42e819cb8c2ee7b971e5f0b10dd0310e3ca992bbeb30a437d19d9b7b81132388aa09d1795720cdb82dca22e7d0c5572417efa8ae91af9b3afbb2c48594b79d2b7b78fe66bde52a9fd3a1698e32425c6c4a883391d0cbedf2322973e632f0ba257ebd774c99ab4e25d86ab29978fba5967a6b36594e2a73f9bc43c080a00e9fd3a61b334a680bc018d51de43e3ba740f1e9f88a7659461c7b74571e0a0", @nested={0xe0, 0x94, 0x0, 0x1, [@typed={0x8, 0x40, 0x0, 0x0, @ipv4=@rand_addr=0x64010101}, @typed={0x8, 0x0, 0x0, 0x0, @pid}, @typed={0x4, 0x41}, @typed={0x8, 0x1d, 0x0, 0x0, @fd=r0}, @typed={0x8, 0x37, 0x0, 0x0, @u32}, @generic="ee66082c3d59fa0e6de0856972115e87b2ce8325594e7f111a339c8e6c4c8d1f90c656358a719365bcda08a6a913f8bb019e0396af3bcab1941dbcdf40d32d7d64f4d17d434081fe7ad8082bac42208224b3a3f8fa85875f77e3f3d8b25fef58b577f2b7ee4a84b75954", @generic="4049d2f11745c3f9560642a4d6302d8b2588ab0461c068360b7f98ec135f9dd37cf01012b1e577b15a31504fe48ad22e79c29be4d86b9870af88eb0a861044bb953522241bc312f915cfaaca53ef"]}, @nested={0x28, 0x22, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@initdev={0xfe, 0x88, [], 0x1, 0x0}}, @typed={0x8, 0x86, 0x0, 0x0, @fd}, @typed={0x8, 0x8c, 0x0, 0x0, @uid}]}, @generic="910270033bbee944fd680a76aa9dfb0c2d7ecf38aebd2dcf081d45ab1118e2d9fa9df0a8bf072226a7b48baee028f29330e0aa90b32add3a61c6bf032342ff2ac0d37f18bf099b3b86ff1023e736005582b76bc6468dc9cb68875a78e606bc9632261ffe329d2a6f13e6d54d449456a31fb676f5f15acc34a79cc8a18f144b2b1ada70e1fa9b2c1840b7d2fb1674", @typed={0xc7, 0x8e, 0x0, 0x0, @binary="80a3c818fc6f0786a59a457d2f00783de54d453a016664c282c74a0c991fb7821ab0bf1129a794ee0a4a81604e33a3efff9807be878dd5eaad4750fcfc1011d9a038e72d75e9124297653adcc596d4d8f1fe1c4f91c521a74048c6ad370a9e674ab7ad1fdbed774c115a4b7a5fc4055ebd2d18ce0b8f9b714eb878e9be32caaa802a9601e0a72f0e2140c40f2cc795493b63b1d66eb6afcdd8397b40e354bf715208fcb457a3ef99af35f25af31437df173831b4b87ee5f29359be871ae4fee6390015"}, @typed={0x8, 0x82, 0x0, 0x0, @uid=r1}, @generic="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"]}, 0x4a0}, 0x1, 0x0, 0x0, 0x30000801}, 0x4)
socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r2, 0x0, 0x0, 0x84003ff)
r3 = syz_genetlink_get_family_id$tipc(0x0)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000240), 0xc, &(0x7f0000000440)={&(0x7f00000003c0)={0x68, r3, 0x400, 0x70bd2b, 0x25dfdbfd, {{}, {}, {0x4c, 0x18, {0x0, @link='syz0\x00'}}}, ["", "", "", ""]}, 0x68}, 0x1, 0x0, 0x0, 0x20000044}, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000700)=[{&(0x7f00000004c0)="380484b80c9dedf59b237139aa6c5e5162b403f0f66551cb8c037896c4000dae171be2e0d6646db857f7e910b7575f7635227e71d5b1f0890e047c326a57b0d0202e0d086fe821c9c0b80766b679fded82d70538dc08fe60515f76efd14455c3d7f7dbacd2af1f21218fecadeddde271f26ea3f324fc56b8eb07de11ff1ca2019e41e787fd250b3ba889", 0x8a}, {&(0x7f0000000580)="12cadcaeb2524b8568d6922ac6ab81154b18b8401d18e3157cc1ccb455d046505b6c4c6fca8e08223346cec6fb0db761f109bdb4161c7dc6b80c81cda795ab77459952418119db2e6035127cf93efd7e1296cb3457957ff221bb25b09796de9a942529ed6a0d3323f1e12e96c831543e8e268f1edccf06fbca2c18da895eed879c2346b34e868744f8303644c7c9bd42454b326bd24dee33b3e0ed65a2c90496c7c07458307b6e56950fc11ad4a0081f7b89cb6c113a2c8b5ffc7eec4709e8c8177526d4a6fac185d9fb7b0338f48ef1de50a0d2499752", 0xd7}, {&(0x7f00000001c0)}, {&(0x7f0000000300)="853a8e9263739fd8ed42d287fda9340990ef38675a1133ba", 0x18}, {&(0x7f0000000680)="544c719ddc2a39fd5c988d71e3d6c99001f8cc10cb6ba48eb18265c953891cd29f92b61a5467bf74a599fda18879c84991a60700b2d44d2afc9bb4ebff35e759e142fad0abe25d94516ddb0d1b3006d0fc28e75b7e0eba13045a59599cd9c2a170a8780e8ef9b3709dbaa9394d84a3a51ced620826ee781a2555bd5b4a8c96", 0x7f}], 0x5)
pipe(&(0x7f0000000100)={<r4=>0xffffffffffffffff})
vmsplice(r4, &(0x7f0000000040)=[{&(0x7f0000000280)="fe", 0x1}], 0x1, 0x0)
r5 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bsg\x00', 0x18000, 0x0)
r6 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r6, 0x0, 0x0, 0x84003ff)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r6, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x200, 0x70bd2c, 0x25dfdbff, {}, ["", "", "", "", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x14}, 0x20000804)
sendmsg$TIPC_CMD_SHOW_STATS(r5, &(0x7f0000000340)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000180)={0x1c, 0x0, 0x0, 0x70bd2b, 0x25dfdbfd}, 0x1c}, 0x1, 0x0, 0x0, 0x20000811}, 0x20000841)

12:17:11 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{}], 0x1}, 0x1000000}], 0x1, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:17:11 executing program 3:
r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
chown(0x0, 0x0, 0x0)
getegid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, 0x0, 0x0, &(0x7f0000000ac0)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x28, 0x4000801}, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @empty}, 0x1c)

12:17:11 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet_udp(0x2, 0x2, 0x0)
close(r1)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r1, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r1, 0x0, 0x19404, 0x0)

12:17:11 executing program 5:
write$char_usb(0xffffffffffffffff, 0x0, 0x0)
r0 = open(&(0x7f0000000280)='./bus\x00', 0x141042, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800002, 0x11, r0, 0x0)
r1 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
fcntl$setstatus(r1, 0x4, 0x6100)
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x42, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ftruncate(r1, 0x8200)
sendmsg$TEAM_CMD_OPTIONS_GET(0xffffffffffffffff, &(0x7f0000003e40)={0x0, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000000300)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendmsg$NL80211_CMD_STOP_SCHED_SCAN(0xffffffffffffffff, 0x0, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)={0x24, 0x0, 0x1, 0x0, 0x0, 0x0, {}, [@CTA_TUPLE_ORIG={0x4}, @CTA_SEQ_ADJ_REPLY={0xc, 0x10, 0x0, 0x1, [@CTA_SEQADJ_CORRECTION_POS={0x8}]}]}, 0x24}}, 0x0)
fchmod(r1, 0x10)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, &(0x7f0000001000))
write$cgroup_type(r1, &(0x7f0000000200)='threaded\x00', 0x175d900f)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0xabb, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000101308006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0)

12:17:11 executing program 3:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
chown(0x0, 0x0, 0x0)
getegid()
r0 = socket$inet6(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @empty}, 0x1c)

12:17:13 executing program 4:
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(0xffffffffffffffff, &(0x7f0000000380)=[{&(0x7f0000000100)=""/93, 0x5d}], 0x1, 0x5b)

12:17:13 executing program 3:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
chown(0x0, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @empty}, 0x1c)

12:17:13 executing program 0:
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/timer\x00', 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, 0x0)

12:17:13 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{}], 0x1}, 0x1000000}], 0x1, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:17:13 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet_udp(0x2, 0x2, 0x0)
close(r1)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r1, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r1, 0x0, 0x19404, 0x0)

[  715.948087][T16054] Page cache invalidation failure on direct I/O.  Possible data corruption due to collision with buffered I/O!
[  715.960061][T16054] File: /root/syzkaller-testdir286623616/syzkaller.snTLk1/236/bus PID: 16054 Comm: syz-executor.5
12:17:13 executing program 0:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x42, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$IPT_SO_SET_ADD_COUNTERS(0xffffffffffffffff, 0x0, 0x41, 0x0, 0x78)
r0 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x40)
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0)
mkdirat(r0, &(0x7f0000000040)='./file0\x00', 0x0)
r1 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$PPPIOCSPASS(r1, 0x40107447, &(0x7f0000000180)={0x4, &(0x7f0000000080)=[{0x40, 0x3, 0x4, 0x200}, {0x7, 0x2, 0x3f, 0x2}, {0x1, 0x1, 0x0, 0x10001}, {0x5, 0xff, 0x9}]})
perf_event_open(&(0x7f00000012c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone(0x180000105, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f000000a000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000001c0), 0x2}, 0x8000000200004d1e, 0x800007c}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000fb5ffc)='nfs\x00', 0x0, &(0x7f000000a000))
syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6", 0x92, 0x1}], 0x100488, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
preadv(r2, &(0x7f00000017c0), 0x3da, 0x500)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100))

12:17:13 executing program 5:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040))
r0 = socket$unix(0x1, 0x2, 0x0)
ioctl$sock_SIOCINQ(r0, 0x541b, &(0x7f0000000080))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0xed8)
pipe(&(0x7f0000000180))
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffffffdffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000340)='-vboxnet0\x00]\xea\xb0\xe2N\xc6c\x05\x8d\xb5\xc0\n\xad\x0f#+\x17\xd6A\xf4\xdf\x1b\xf9~\x8e\"\r\xff\xbb\xb0\xc3\x86\x97\xaf\xf8\x7f*\xfc\xfd\xe7\xcc\xbc\xddI.\xc3\x9aQ\xc8\x8e8U\xdaX\x06\x92\x1d\xbd\x10\xf9\xe8q\x00\xddr>\xd7\x9f\xf8r\xeeE\xa83K\xf60 \x7f\xcd\xac\x86\x9eT*\xf7\a^L,\x98\xa2(2,\x8c*\xff\x8aA\xa1\x15<g8\xddGdF(\xeaN\xbcSoz\xe5.c\xdf\x8b\xd2m}\xc7D\x98\xd4p.e\x050,c9:\x95z\xe2\xa9\xcf\xd2\x90*\xaa\xc0W.\xcb|.F_\xf8(\xa4\x91\xc8\v\x9b>3\x15\b\xcb\xf7\xefw\xa6\xc7c@\xb5\x9b\xdc$`3]\xf9.\xcf\x00', 0x0)
ftruncate(r1, 0x1000000)
r2 = memfd_create(&(0x7f0000000000)='-vboxnet0\x00]\xea\xb0\xe2N\xc6c\x05\x8d\xb5\xc0\n\xad\x0f#+\x17\xd6A\xf4\xdf\x1b\xf9~\x8e\"\r\xff\xbb\xb0\xc3\x86\x97\xaf\xf8\x7f*\xfc\xfd\xe7\xcc\xbc\xddI.\xc3\x9aQ\xc8\x8e8U\xdaX\x06\x92\x1d\xbd\x10\xf9\xe8q\x00\xddr>\xd7\x9f\xf8r\xeeE\xa83K\xf60 \x7f\xcd\xac\x86\x9eT*\xf7\a^L,\x98\xa2(2,\x8c*\xff\x8aA\xa1\x15<g8\xddGdF(\xeaN\xbcSoz\xe5.c\xdf\x8b\xd2m}\xc7D\x98\xd4p.e\x050,c9:\x95z\xe2\xa9\xcf\xd2\x90*\xaa\xc0W.\xcb|.F_\xf8(\xa4\x91\xc8\v\x9b>3\x15\b\xcb\xf7\xefw\xa6\xc7c@\xb5\x9b\xdc$`3]\xf9.\xcf\x00', 0x0)
ftruncate(r2, 0x1000000)
r3 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x101202, 0x0)
sendfile(r3, r2, 0x0, 0xeefffdef)
sendfile(r2, r1, 0x0, 0xeefffdef)
getpid()
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_SETCRTC(0xffffffffffffffff, 0xc06864a2, &(0x7f0000000200)={&(0x7f0000000140)=[0x2], 0x1, 0x0, 0x0, 0x0, 0xffffff80, 0x0, 0xfffffffb, {0x5, 0xffff, 0x1ff, 0x7, 0x0, 0x20, 0x0, 0xed, 0xef3e, 0xc, 0x5, 0x1, 0x6, 0x5, "bd268dc1f21a0ddf7190ed82f108bb66c08c0caefc52621220c3239e50ae324e"}})
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2}, 0x0)

12:17:13 executing program 3:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @empty}, 0x1c)

[  716.861543][T16078] NFS: Device name not specified
12:17:13 executing program 3:
r0 = socket$inet6(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @empty}, 0x1c)

[  716.945883][T16080] NFS: Device name not specified
12:17:14 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet_udp(0x2, 0x2, 0x0)
close(r1)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r1, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r1, 0x0, 0x19404, 0x0)

12:17:14 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{}], 0x1}, 0x1000000}], 0x1, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:17:14 executing program 0:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x42, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x40)
mkdirat(r0, &(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f000000a000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000000200004d1e, 0x800007c}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000fb5ffc)='nfs\x00', 0x0, &(0x7f000000a000))

[  717.855906][T16098] NFS: Device name not specified
[  717.935227][T16102] NFS: Device name not specified
12:17:16 executing program 4:
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(0xffffffffffffffff, &(0x7f0000000380)=[{&(0x7f0000000100)=""/93, 0x5d}], 0x1, 0x5b)

12:17:16 executing program 5:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x42, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x2)
r0 = socket$alg(0x26, 0x5, 0x0)
ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000240)={@private0={0xfc, 0x0, [], 0x1}, @ipv4={[0x0, 0x0, 0x8]}, @local, 0x0, 0x0, 0x0, 0x0, 0x1, 0x24c20082})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000))
getpeername$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0xa)
ioctl$sock_inet6_SIOCADDRT(r1, 0x890b, 0x0)
sendmsg$NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x40, 0x0, 0x100, 0x70bd2b, 0x25dfdbfc, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x1}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_REG_RULES={0x14, 0x22, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x80000000}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x5}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x2000001}, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000004e00)={&(0x7f0000ff4000/0x4000)=nil, &(0x7f0000ff4000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ff6000/0x2000)=nil, &(0x7f0000ff4000/0x2000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ff6000/0x2000)=nil, &(0x7f0000ff9000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0, r0}, 0x68)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='coredump_filter\x00')
preadv(r2, &(0x7f00000017c0), 0x375, 0x0)
open(0x0, 0x2c200, 0x0)
syz_genetlink_get_family_id$devlink(0x0)
sendmsg$GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240), 0xc, &(0x7f0000000300)={0x0}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

12:17:16 executing program 3:
r0 = socket$inet6(0xa, 0x0, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @empty}, 0x1c)

12:17:16 executing program 0:

12:17:16 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(0xffffffffffffffff, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:17:16 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:17:16 executing program 0:

12:17:16 executing program 3:
r0 = socket$inet6(0xa, 0x0, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @empty}, 0x1c)

12:17:16 executing program 5:

12:17:16 executing program 0:

12:17:17 executing program 3:
r0 = socket$inet6(0xa, 0x0, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @empty}, 0x1c)

12:17:17 executing program 0:

12:17:17 executing program 4:
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(r1, 0x0, 0x0, 0x5b)

12:17:17 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(0xffffffffffffffff, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:17:17 executing program 5:

12:17:17 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:17:17 executing program 0:

12:17:17 executing program 3:
socket$inet6(0xa, 0x2, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @empty}, 0x1c)

12:17:18 executing program 5:

12:17:18 executing program 0:

12:17:18 executing program 3:
socket$inet6(0xa, 0x2, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @empty}, 0x1c)

12:17:18 executing program 0:

12:17:18 executing program 5:

12:17:18 executing program 3:
socket$inet6(0xa, 0x2, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @empty}, 0x1c)

12:17:20 executing program 4:
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(r1, 0x0, 0x0, 0x5b)

12:17:20 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:17:20 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(0xffffffffffffffff, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:17:20 executing program 0:

12:17:20 executing program 5:

12:17:20 executing program 3:
r0 = socket$inet6(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

12:17:20 executing program 3:
r0 = socket$inet6(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

12:17:20 executing program 5:

12:17:20 executing program 0:

12:17:21 executing program 0:

12:17:21 executing program 3:
r0 = socket$inet6(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

12:17:21 executing program 5:

12:17:22 executing program 4:
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(r1, 0x0, 0x0, 0x5b)

12:17:22 executing program 3:
r0 = socket$inet6(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @empty}, 0x1c)

12:17:22 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, 0xffffffffffffffff, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:17:22 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(0xffffffffffffffff)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(0xffffffffffffffff, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x19404, 0x0)

12:17:22 executing program 0:

12:17:22 executing program 5:

12:17:22 executing program 0:

12:17:23 executing program 5:

12:17:23 executing program 3:
r0 = socket$inet6(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @empty}, 0x1c)

12:17:23 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, 0xffffffffffffffff, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:17:23 executing program 5:

12:17:23 executing program 0:

12:17:25 executing program 4:
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(r1, &(0x7f0000000380), 0x0, 0x5b)

12:17:25 executing program 3:
r0 = socket$inet6(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @empty}, 0x1c)

12:17:25 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(0xffffffffffffffff)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(0xffffffffffffffff, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x19404, 0x0)

12:17:25 executing program 0:

12:17:25 executing program 5:

12:17:25 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, 0xffffffffffffffff, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:17:25 executing program 5:

12:17:25 executing program 0:

12:17:25 executing program 3:

12:17:25 executing program 5:

12:17:25 executing program 3:

12:17:25 executing program 0:

[  728.859393][    T1] systemd[1]: Started Journal Service.
12:17:27 executing program 4:
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(r1, &(0x7f0000000380), 0x0, 0x5b)

12:17:27 executing program 5:

12:17:27 executing program 3:

12:17:27 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:17:27 executing program 0:

12:17:27 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(0xffffffffffffffff)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(0xffffffffffffffff, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x19404, 0x0)

12:17:27 executing program 0:

12:17:27 executing program 3:

12:17:27 executing program 5:

12:17:27 executing program 0:
perf_event_open(&(0x7f0000000500)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f00000004c0)=ANY=[])

12:17:27 executing program 5:
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000027000)='./file0\x00', &(0x7f00000000c0)='sysfs\x00', 0x0, 0x0)
chroot(&(0x7f0000000040)='./file0/bus\x00')
umount2(&(0x7f0000000080)='./file0\x00', 0x0)
lchown(&(0x7f0000000000)='./file0/bus\x00', 0x0, 0x0)

12:17:27 executing program 3:
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
syz_mount_image$jfs(&(0x7f0000000000)='jfs\x00', &(0x7f0000000040)='./file0/bus\x00', 0x0, 0x1, &(0x7f00000004c0)=[{0x0, 0x0, 0x7fffffff}], 0x0, &(0x7f0000000540)={[{@resize='resize'}]})

12:17:27 executing program 4:
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(r1, &(0x7f0000000380), 0x0, 0x5b)

12:17:28 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
close(r0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r0, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r0, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(0xffffffffffffffff, 0x0, r0, 0x0, 0x19404, 0x0)

12:17:28 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup(r0)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r1, 0x89f0, &(0x7f0000000080)={'ip6gre0\x00', &(0x7f0000000000)={'syztnl2\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00', 0x0, 0x7800}})

[  731.245165][T16290] resize option for remount only
12:17:28 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:17:28 executing program 0:
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x67)
mmap(&(0x7f0000000000/0x2000)=nil, 0x30000, 0x0, 0x11, r0, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)

12:17:28 executing program 3:
perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x406, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = open(0x0, 0x151042, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x0)
ioctl$USBDEVFS_GETDRIVER(0xffffffffffffffff, 0x41045508, 0x0)
getsockopt$inet_dccp_buf(0xffffffffffffffff, 0x21, 0x0, 0x0, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f00000001c0)={0x20a927, 0x0, 0x0, 0xffffffffffffff9c})
r2 = dup(0xffffffffffffffff)
mmap(&(0x7f0000133000/0x2000)=nil, 0x2000, 0x0, 0x30051, r2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0x0, 0x0, &(0x7f00000000c0)='syzkaller\x00', 0x7, 0x0, 0x0, 0x40f00, 0x1, [], 0x0, 0xd, 0xffffffffffffffff, 0x8, &(0x7f0000000140)={0x9, 0x2}, 0x8, 0x10, &(0x7f0000000180)={0x1, 0x5, 0x6e, 0x2}, 0x10}, 0x78)
r3 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r3, 0xc0184900, &(0x7f00000001c0)={0x20a927, 0xd, 0x0, <r4=>0xffffffffffffff9c})
r5 = dup(r4)
mmap(&(0x7f0000133000/0x2000)=nil, 0x2000, 0x0, 0x30051, r5, 0x0)
pkey_alloc(0x0, 0x0)

12:17:28 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
close(r0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r0, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r0, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(0xffffffffffffffff, 0x0, r0, 0x0, 0x19404, 0x0)

12:17:28 executing program 5:
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r2=>0x0}, &(0x7f0000cab000)=0xc)
setuid(r2)
sendmsg$inet6(r0, &(0x7f0000000140)={&(0x7f0000000000)={0xa, 0x4e23, 0x0, @initdev={0xfe, 0x88, [], 0x0, 0x0}}, 0x1c, 0x0, 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000002900000036"], 0x30}, 0x0)

[  731.799111][T16307] x86/PAT: syz-executor.3:16307 map pfn RAM range req write-combining for [mem 0x12300000-0x12301fff], got write-back
12:17:29 executing program 3:
ioctl$BLKREPORTZONE(0xffffffffffffffff, 0xc0101282, &(0x7f0000000240)={0x0, 0x1, 0x0, [{0x0, 0xb5f9}]})
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$inet(0x2, 0xa, 0x0)
r2 = fcntl$dupfd(r0, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_read_part_table(0x0, 0x1d4, &(0x7f0000000200)=[{&(0x7f0000000080)="03f605020314af00031400000000000000000f0000000000000000000500000000004200000000000000000000000000000000000000000000000000200055aa", 0x40, 0x1c0}])

12:17:29 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
close(r0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r0, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r0, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(0xffffffffffffffff, 0x0, r0, 0x0, 0x19404, 0x0)

12:17:29 executing program 0:
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f00000001c0)={0x20a927, 0xd, 0x0, <r1=>0xffffffffffffff9c})
r2 = dup(r1)
mmap(&(0x7f0000133000/0x2000)=nil, 0x2000, 0xa, 0x30051, r2, 0x0)

12:17:29 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bind$llc(r0, &(0x7f0000000040), 0x10)

[  732.254178][T16319] ldm_validate_privheads(): Disk read failed.
[  732.261033][T16319]  loop3: p2 < > p4
[  732.265319][T16319] loop3: partition table partially beyond EOD, truncated
[  732.273177][T16319] loop3: p2 size 2 extends beyond EOD, truncated
[  732.369516][T16319] loop3: p4 size 2097152 extends beyond EOD, truncated
[  732.410854][T16326] x86/PAT: syz-executor.0:16326 map pfn RAM range req write-combining for [mem 0x0f100000-0x0f101fff], got write-back
12:17:30 executing program 4:
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(r1, &(0x7f0000000380)=[{0x0}], 0x1, 0x5b)

12:17:30 executing program 1:
pipe(0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
close(r0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r0, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r0, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(0xffffffffffffffff, 0x0, r0, 0x0, 0x19404, 0x0)

12:17:30 executing program 0:
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000027000)='./file0\x00', &(0x7f00000000c0)='sysfs\x00', 0x0, 0x0)
lsetxattr$security_selinux(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000040)='security.selinux\x00', &(0x7f0000000000)='system_u:object_r:dhcp_etc_t:s0\x00', 0x6908, 0x0)

12:17:30 executing program 5:
r0 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @remote, 0x4}, 0x1c)
getsockopt$IP_VS_SO_GET_DAEMON(r0, 0x0, 0xe, 0x0, &(0x7f00000002c0))

12:17:30 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:17:30 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

[  733.083824][   T33] audit: type=1400 audit(1595161050.119:52): avc:  denied  { associate } for  pid=16345 comm="syz-executor.0" name="/" dev="sysfs" ino=1 scontext=system_u:object_r:dhcp_etc_t:s0 tcontext=system_u:object_r:sysfs_t:s0 tclass=filesystem permissive=1
12:17:30 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ip_tables_targets\x00')
readv(r0, &(0x7f0000002340)=[{&(0x7f00000001c0)=""/4096, 0x141b}], 0x1)
readv(r0, &(0x7f0000000580), 0x3c1)
pipe(0x0)
write(0xffffffffffffffff, 0x0, 0x0)

[  733.227605][   T33] audit: type=1800 audit(1595161050.209:53): pid=16352 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16371 res=0
12:17:30 executing program 0:
r0 = socket$inet6(0xa, 0x3, 0x6)
r1 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_mr_vif\x00')
sendfile(r0, r1, &(0x7f00000001c0)=0x202, 0x4000000000dc)

12:17:30 executing program 1:
pipe(0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
close(r0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r0, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r0, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(0xffffffffffffffff, 0x0, r0, 0x0, 0x19404, 0x0)

12:17:30 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:17:30 executing program 0:
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
close(r0)
r1 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r1, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @dev}], 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="01000088", @ANYRES32=<r2=>0x0], &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000100)={r2}, &(0x7f0000000140)=0xc)

[  733.834925][   T33] audit: type=1800 audit(1595161050.869:54): pid=16367 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16375 res=0
12:17:31 executing program 1:
pipe(0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
close(r0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r0, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r0, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(0xffffffffffffffff, 0x0, r0, 0x0, 0x19404, 0x0)

12:17:31 executing program 4:
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(r1, &(0x7f0000000380)=[{0x0}], 0x1, 0x5b)

12:17:31 executing program 5:
clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
exit_group(0x0)
syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0)
memfd_create(&(0x7f0000000240)='\x00\x00\x06\x00\x00\x00\x00\x00\x00\x00\x7f=\xfe\xc1&\x98\xdf\"\x1b\xc2\xe0,\x10)N\xe8\x89\xd7\x0ffcj\xd1\xdc&\xb9\xc4\xb9\xc1\xad\xe5r\xd9\xef\xbdz.A\v\x94\xbd\xd8\x1c\x03+\xd4\x9a\xa7\xe3\x15\x1f\xe9r&\xb2\xa8\x89\xd5\r)z\xf8\x9eU\x1c\xd8d:\xbei\v5f\xd9Lm\xd1\xea\x8f\xcc\xef\xaf\"\xee\x80\xaa\xbf\xefG\x7f\xd8\xe1\xdf\x85\x11\x18\xb7\x1f\x14\xa0qU9\xcc}\x8b\xdd\xb8\xe1e\xb6\x8bm\x81 \xa8\xa4\x19\xff\xd2\b\xd4\xae\xdc\x04[\xfa=N\x9a\xe3\x1e\x19\xf5\xe2E\xad\xbcd\x9c\xff\r\x1cr\x90\xb0 :\xe0\x1f\x02\xc9\xe9\xab\xea\xed', 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mdstat\x00', 0x0, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
fcntl$dupfd(r0, 0x0, r0)
socket$inet_udplite(0x2, 0x2, 0x88)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200)={0x0, 0x1c9c380}, 0x0)

12:17:31 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:17:31 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, 0x0, 0x0, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:17:31 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(0xffffffffffffffff)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

[  734.601211][   T33] audit: type=1800 audit(1595161051.629:55): pid=16389 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16384 res=0
12:17:31 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:17:32 executing program 5:
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendmsg$ETHTOOL_MSG_STRSET_GET(0xffffffffffffffff, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={0x0}}, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/netstat\x00')
preadv(r0, &(0x7f0000000500), 0x37d, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

12:17:32 executing program 0:
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x67)
mmap(&(0x7f0000000000/0x2000)=nil, 0x30000, 0x2, 0x11, r0, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r1, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x67)
mmap(&(0x7f0000000000/0x2000)=nil, 0x30000, 0x0, 0x11, r1, 0x0)

[  735.169798][   T33] audit: type=1800 audit(1595161052.199:56): pid=16401 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=15792 res=0
12:17:32 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(0xffffffffffffffff)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:17:33 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:17:33 executing program 0:
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=@newlink={0x48, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @gtp={{0x8, 0x1, 'gtp\x00'}, {0x1c, 0x2, 0x0, 0x1, {{0x8}, {0x8}, [@IFLA_GTP_PDP_HASHSIZE={0x8, 0x3, 0xffff}]}}}}]}, 0x48}}, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmmsg$alg(r0, &(0x7f00000000c0), 0x492492492492627, 0x0)

[  736.419295][   T33] audit: type=1800 audit(1595161053.449:57): pid=16418 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=15800 res=0
12:17:33 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, 0x0, 0x0, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

[  736.489841][T16421] fuse: Bad value for 'fd'
12:17:33 executing program 4:
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(r1, &(0x7f0000000380)=[{0x0}], 0x1, 0x5b)

12:17:33 executing program 5:
mount$9p_rdma(0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$ext4(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat$md(0xffffffffffffff9c, &(0x7f0000000000)='/dev/md0\x00', 0x0, 0x0)
ioctl$BLKPG(r0, 0x40140921, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0})

12:17:33 executing program 0:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/seq\x00', 0x0)
ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r0, 0x40505331, &(0x7f0000000240)={{0x0, 0x5}})

12:17:34 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

[  737.024197][T16436] md: could not open device unknown-block(0,0).
[  737.030777][T16436] md: md_import_device returned -6
12:17:34 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(0xffffffffffffffff)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:17:34 executing program 0:
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f00000001c0)={0x20a927, 0xd, 0x0, <r1=>0xffffffffffffff9c})
r2 = dup(r1)
ioctl$DMA_BUF_IOCTL_SYNC(r2, 0x40086200, &(0x7f0000000000))

12:17:34 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
recvfrom$llc(r0, 0x0, 0x0, 0x0, &(0x7f00000000c0)={0x1a, 0x206, 0x7, 0x0, 0x4d, 0x0, @multicast}, 0x10)

[  737.374104][   T33] audit: type=1800 audit(1595161054.409:58): pid=16446 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=15800 res=0
[  737.455609][T16446] fuse: Bad value for 'fd'
12:17:34 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x348, 0x140, 0x0, 0x0, 0x140, 0x128, 0x278, 0x210, 0x210, 0x278, 0x210, 0x3, 0x0, {[{{@uncond, 0x0, 0xf8, 0x140, 0x0, {}, [@common=@inet=@ecn={{0x28, 'ecn\x00'}, {0x10}}, @inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x0, 'syz0\x00'}}}, {{@ipv6={@ipv4={[], [], @empty}, @mcast2, [], [], 'veth1_to_bond\x00', 'veth0_to_bridge\x00'}, 0x0, 0xf0, 0x138, 0x0, {}, [@common=@dst={{0x48, 'dst\x00'}}]}, @unspec=@CT0={0x48, 'CT\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3a8)

12:17:34 executing program 5:
r0 = socket$inet6(0xa, 0x3, 0xff)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000040)={'gretap0\x00', &(0x7f0000000000)=@ethtool_cmd={0x4f}})

12:17:35 executing program 0:
r0 = socket$inet6(0xa, 0x3, 0xff)
sendto$l2tp6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}, 0xfffffe00}, 0x20)

12:17:35 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:17:35 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, 0x0, 0x0, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

[  738.317572][   T33] audit: type=1800 audit(1595161055.349:59): pid=16469 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16369 res=0
[  738.430803][T16469] fuse: Bad value for 'fd'
12:17:35 executing program 4:
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(r1, &(0x7f0000000380)=[{&(0x7f0000000100)=""/93, 0x5d}], 0x1, 0x0)

12:17:35 executing program 5:
r0 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @dev, 0x9}, 0x1c)
sendmsg(r0, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0xc180)
sendmsg(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000c40)=[{&(0x7f0000000440)="b10b", 0x2}], 0x1}, 0x8000)
sendmsg(r0, &(0x7f0000000a40)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000001480)="d09a0e63c9476288b671afdbd53a5994e137381f62021d1951b627b8dda57a5d17d744648c81c5703ed8146ab1b0171f89091b1dd3238d03dbb686df460963245dedf2973ee555af99499e44ad420dbf65fd46fbc99a1274429e2d578375", 0x5e}], 0x1}, 0x0)

12:17:35 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet_udp(0x2, 0x2, 0x0)
close(r1)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r1, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r1, 0x0, 0x19404, 0x0)

12:17:35 executing program 0:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, 0x0, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x2a, &(0x7f0000000140)={0x0, {{0x2, 0x0, @remote}}}, 0x88)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d)
prctl$PR_GET_UNALIGN(0x5, &(0x7f0000000200))
bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast2}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x220007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080)='nl80211\x00')
sendmsg$NL80211_CMD_REQ_SET_REG(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c0000", @ANYRES16=r1, @ANYBLOB="010000000000080000001b0000000600210061000000"], 0x1c}}, 0x0)
sendmsg$NL80211_CMD_STOP_AP(0xffffffffffffffff, 0x0, 0x0)
recvmmsg(r0, &(0x7f0000005540)=[{{0x0, 0x28000000, &(0x7f0000000240)=[{&(0x7f0000001340)=""/4067, 0x20002323}], 0x1, 0x0, 0x983a0000, 0x103}}], 0x1, 0x100, 0x0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600), 0x4)
add_key$fscrypt_provisioning(&(0x7f0000000100)='fscrypt-provisioning\x00', &(0x7f0000000440)={'syz', 0x2}, &(0x7f0000000840)=ANY=[], 0x53, 0x0)
sendto$inet(r0, &(0x7f00000012c0)="0c268a927f1f6588b967480a41ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95c25a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x11, 0x0, 0x170)

12:17:36 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240))
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:17:36 executing program 5:
mknod(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
mount$9p_rdma(0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$ext4(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fadvise64(0xffffffffffffffff, 0x0, 0x0, 0x0)
r0 = openat$md(0xffffffffffffff9c, &(0x7f0000000000)='/dev/md0\x00', 0x0, 0x0)
ioctl$BLKPG(r0, 0x40140921, 0x0)

[  739.561680][   T33] audit: type=1800 audit(1595161056.589:60): pid=16486 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16369 res=0
12:17:36 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet_udp(0x2, 0x2, 0x0)
close(r1)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r1, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r1, 0x0, 0x19404, 0x0)

12:17:37 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80), 0x0, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:17:37 executing program 5:
syz_mount_image$tmpfs(&(0x7f00000000c0)='tmpfs\x00', &(0x7f0000000100)='./bus\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000840)={[{@mpol={'mpol', 0x3d, {'prefer', '=static', @void}}}]})

12:17:37 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240))
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

[  740.540416][T16512] tmpfs: Bad value for 'mpol'
[  740.608284][   T33] audit: type=1800 audit(1595161057.639:61): pid=16516 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16367 res=0
12:17:37 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = socket$inet6(0xa, 0x3, 0x6)
r3 = syz_open_procfs(0x0, &(0x7f0000000240)='net/ip_vs_stats_percpu\x00')
sendfile(r2, r3, &(0x7f00000001c0)=0x202, 0x4000000000dc)

12:17:37 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240))
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

[  740.868982][T16512] tmpfs: Bad value for 'mpol'
[  741.097208][   T33] audit: type=1800 audit(1595161058.129:62): pid=16526 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=15805 res=0
12:17:38 executing program 4:
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(r1, &(0x7f0000000380)=[{&(0x7f0000000100)=""/93, 0x5d}], 0x1, 0x0)

12:17:38 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet_udp(0x2, 0x2, 0x0)
close(r1)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r1, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r1, 0x0, 0x19404, 0x0)

12:17:38 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = dup2(r4, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000940)=ANY=[@ANYBLOB="4800000010000507010000010000c15c55670000", @ANYRES32=r3, @ANYBLOB="0300000000001000280012000c00010076657468"], 0x48}}, 0x0)
ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000080)={@initdev={0xfe, 0x88, [], 0x0, 0x0}, @dev, @private1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100100, r3})
r6 = socket$inet6(0xa, 0x80003, 0x3)
ioctl$sock_inet6_SIOCADDRT(r6, 0x890b, &(0x7f0000000140)={@empty, @rand_addr=' \x01\x00', @ipv4={[], [], @remote}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400003, r3})

12:17:38 executing program 0:
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000027000)='./file0\x00', &(0x7f00000000c0)='sysfs\x00', 0x0, 0x0)
lsetxattr$security_selinux(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='security.selinux\x00', &(0x7f0000000140)='system_u:object_r:audit_spool_t:s0\x00', 0x23, 0x0)

12:17:38 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:17:38 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80), 0x0, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

[  741.650711][T16536] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'.
[  741.658148][   T33] audit: type=1800 audit(1595161058.679:63): pid=16538 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16374 res=0
[  741.794003][   T33] audit: type=1400 audit(1595161058.729:64): avc:  denied  { associate } for  pid=16532 comm="syz-executor.0" name="/" dev="sysfs" ino=1 scontext=system_u:object_r:audit_spool_t:s0 tcontext=system_u:object_r:sysfs_t:s0 tclass=filesystem permissive=1
12:17:38 executing program 0:
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000027000)='./file0\x00', &(0x7f00000000c0)='sysfs\x00', 0x0, 0x0)
lsetxattr$security_selinux(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='security.selinux\x00', &(0x7f0000000140)='system_u:object_r:audit_spool_t:s0\x00', 0x23, 0x0)

[  741.853473][T16544] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'.
12:17:39 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:17:39 executing program 5:
io_setup(0x202, &(0x7f0000000200)=<r0=>0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
dup(r3)
io_submit(r0, 0x2, &(0x7f00000004c0)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r2, 0x0}, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x8, 0x0, r1, &(0x7f00000003c0)="414b43d422d5", 0x6}])

12:17:39 executing program 0:
preadv(0xffffffffffffffff, &(0x7f0000001b00)=[{&(0x7f0000000000)=""/2, 0x2}], 0x1, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/snmp6\x00')
preadv(r0, &(0x7f00000017c0), 0x375, 0x0)
r1 = socket$unix(0x1, 0x5, 0x0)
r2 = dup2(r1, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)

[  742.410920][   T33] audit: type=1800 audit(1595161059.439:65): pid=16556 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16373 res=0
12:17:39 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, 0x0, 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:17:39 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

[  743.081173][   T33] audit: type=1800 audit(1595161060.109:66): pid=16568 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16371 res=0
12:17:40 executing program 4:
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(r1, &(0x7f0000000380)=[{&(0x7f0000000100)=""/93, 0x5d}], 0x1, 0x0)

12:17:40 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
sendmmsg$inet(r2, &(0x7f0000000000)=[{{&(0x7f0000000140)={0x2, 0x4e64, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000800)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @ip_tos_int={{0x14}}], 0x38}}], 0x1, 0x0)

12:17:40 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, 0x0, 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:17:40 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80), 0x0, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:17:40 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:17:40 executing program 0:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, 0x0, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d)
bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast2}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x220007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080)='nl80211\x00')
sendmsg$NL80211_CMD_STOP_AP(0xffffffffffffffff, 0x0, 0x0)
recvmmsg(r0, &(0x7f0000005540)=[{{0x0, 0x28000000, &(0x7f0000000240)=[{&(0x7f0000001340)=""/4067, 0x20002323}], 0x1, 0x0, 0x983a0000, 0x103}}], 0x1, 0x100, 0x0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600), 0x4)
sendto$inet(r0, &(0x7f00000012c0)="0c268a927f1f6588b967480a41ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95c25a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x11, 0x0, 0x170)

12:17:40 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, 0x0, 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

[  743.680760][   T33] audit: type=1800 audit(1595161060.709:67): pid=16583 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16374 res=0
12:17:40 executing program 5:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
perf_event_open(&(0x7f0000000280)={0x2, 0x70, 0xaf, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={0x0, 0xffffffffffffffff, 0x0, 0x34f, &(0x7f0000000440)='nr0\x01\x00`\xa1\x9e\xf9\xd2\xc6s\xd9\xa1W\x1c\xb9\xe16\x9b\xcda\xef~Iy:\xe1\x87\x12\xee\xeb\x1d\xaav\x94\x97\x80\v\x7f\xbb\xd3[\x17\f\x10u\x1d9\xae\xb6`\xd8c\xe4\x9b\x8cO;=\xadH\x90+[-l\xfd\n\xbd7,c\xbc\xf5\xd7\a\xf3\xfdM.\x8dD<\x88\xbc\x0eV7\xdd\x82\xfc45\xbe\xd4\xde]i<\x9ax\x1c\x86>\x05\xd8\xa6\xf8h\x9a[\xe2\x92\x16\x06\x1f?\xf5?\x8bk9fx\xe7\xba\x15^\xf9\x15-~C\xb1\xec\xcb#1\xeb\x8e\xb1\xedU\x86\xdc\xf8\xb3\xb0\xb9\x996\x1aD\xff,\"\xc2\xab\xbe\xf4-\xd2N\xab\xe6r3F\xa6\xe4l\x04\x99\xa2\x14B\xd8\xd0\r\xcbW\xf0\x13\xffu\x95\xed\xd0\xff\ai0\xde6u\xd3A\x17\xa4N\xb0\xe4\xf82\x93m\xa4NW\xe4:>6\xbdH\xd2\xa8[\xf4\xfdJ\x80N\x83CZ\xf5\xe2\x87\xd4\xe2s7\xb4\xad\xa1\x1b&!\x98\x86\"R\x06\x00\x00\x00\x00\x00\x00\x00\x95\xfe7q\xe9\xf4,\xa3\x0f\xb2\x1e\x12\xf0\xa3\xd8\xbc-\x85EJ\xf9\xfc\xc0#-\x8f\xd9\tD\x8b\x01\xf4lY=1\xea\x1c\x92de\xe3ZA\x99\a\x9c<\xa4\x11(\xb1|\xb0\x1f\xbf[R+\xe0\xfd\x02\x02*\xda7\xfe\xcc\x0e\xb6\xc8\xc8\x83\x18\x83\xb8Z\x11\x06\xf2\xf8g\x02\rR\x9f\x17\xa3P\xf2\r\xd3\xbfQ\xa9\x8c\xfd\xa7\f.68\xa4\x83\xfd?\x87\x94\v\xb4x\xb0|L\x11\x03\x94\xc0\t=\x17\x95P\x89\xf2\xca\x97\xbb\xfeu\x12L\x9b\x85\x96\xe0\b\xbf\n\x02\x8bS\x9c\xecyl\xec\x9b\xf5\x85\xeb\x80\xfe>\r&\x014\x01\xf4\xb7\x83\x9a\xfa*\xa6\x06\xb7Pk7N\xc2\xd9\xee\xd0\xb0M\x00\xab\xc3\t\fc\xd8dx\xd5\x1dU*s)\x12[\x14\xb1\xc0\xd7\x1a\xa0\x16\xa2z\x9e\x93 \xddeF>29\v\x02\xa2b\x13R\xef\xffA,\xb9.$\xfa\x9f\xde[\x80\xd1=\xce\x1b\xeb\xf6\xf4\xe3z\x1f\x9dz\xa3\xc0\xe2\xa2\xb1\xeeq\xf5\xec0\x8e\xf4\xfb\xd9\x87\xf03\xdb\xae|\x10&V5c\xa6\xce\xcd\x8a\xdf\xe1\x89\"\xea\xde\xe7\xa3\xbe\xe7\xff\xf9 \x11\xfdY\xc6\xa1\xe8\xda\v\\?\xcb\x87\bn\x9b\x01\x1f\xf8\xe8\x1eV\xfaC\xdf\xc3Vv\x9b\x1a\xfc\x14.c\x94\xc9=\xb0\x0f!d\b\x18*@m\x7f\xaal\x17G\xd6?\x81\x16P\x03\x10e\xc3\xcd\xb1B\xeb\x01B\\\x91A\xa1\x8an\xb4#\xadr\x1e\x81v\xa2\x0e6x\xca\x8b\xa6\xd8\x81\x10:\x0e(\xdd\xfc\xc9\xc6\xb4\xf0\'f:\xbd\xfe\x11\xf8\xc8W\x81s^\xd9W\xf1\x94\xaf\xc5\x8a\xb4f\x1b\x17E\xb23\x12\xb0\xeb\xef\x8c\xb24h\xd7}\x7f\x92Hgej\x957\xe2A'}, 0xffffffffffffffc0)
mq_unlink(&(0x7f0000000000)='\x00')
perf_event_open(&(0x7f00000004c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x4030582a, &(0x7f0000000040))
r1 = socket$unix(0x1, 0x1, 0x0)
socket$inet(0x2, 0xa, 0x0)
fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)

12:17:41 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:17:41 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x0, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

[  744.658724][   T33] audit: type=1800 audit(1595161061.669:68): pid=16598 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16362 res=0
12:17:42 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
sendmmsg$inet(r2, &(0x7f0000001540)=[{{&(0x7f0000000140)={0x2, 0x4e24, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000800)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @ip_ttl={{0x14, 0x0, 0x2, 0xff}}], 0x38}}], 0x1, 0x0)

12:17:42 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

[  745.288361][   T33] audit: type=1800 audit(1595161062.319:69): pid=16613 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16369 res=0
12:17:42 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x0, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:17:42 executing program 4:
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000027000)='./file0\x00', &(0x7f00000000c0)='sysfs\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
lstat(&(0x7f0000000000)='./file0\x00', &(0x7f0000000140))

12:17:42 executing program 0:
r0 = socket$inet6(0xa, 0x3, 0xff)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000040)={'gretap0\x00', &(0x7f0000000000)=@ethtool_cmd={0xb}})

12:17:42 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:17:42 executing program 5:
unshare(0x20020600)
r0 = socket$unix(0x1, 0x2, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
syncfs(0xffffffffffffffff)

12:17:42 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200), 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

[  745.943381][   T33] audit: type=1800 audit(1595161062.979:70): pid=16633 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16380 res=0
12:17:43 executing program 5:
mknod(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x182040105, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
mount$9p_rdma(&(0x7f0000000000)='127.0.0.1\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='9p\x00', 0x0, 0x0)
syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0xfffffffffffffe3a, 0x1}], 0x100488, 0x0)
openat$md(0xffffffffffffff9c, &(0x7f0000000000)='/dev/md0\x00', 0x0, 0x0)

12:17:43 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080)='fuse\x00', 0x0, &(0x7f0000000300)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@allow_other='allow_other'}]}})

12:17:43 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200), 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

[  746.363740][T16644] 9pnet_virtio: no channels available for device 127.0.0.1
12:17:43 executing program 5:
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x0, 0x36, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x1, 0x803, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = dup(r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="440000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="bb0e000000000000140012800b0001006970766c616e00000400028008000500", @ANYRES32=r4, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0x44}}, 0x0)

[  746.406331][T16644] 9pnet_virtio: no channels available for device 127.0.0.1
[  746.473955][   T33] audit: type=1800 audit(1595161063.509:71): pid=16650 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.0" name="file0" dev="sda1" ino=15822 res=0
[  746.595896][   T33] audit: type=1800 audit(1595161063.569:72): pid=16651 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16371 res=0
12:17:43 executing program 0:
syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f00000004c0)=ANY=[])
chdir(&(0x7f0000000000)='./file1\x00')
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x1031fe, 0x0)
writev(r0, &(0x7f0000000180)=[{&(0x7f0000000100)="12c0ef4eda4be7758c4f17", 0xb}], 0x1)
r1 = socket$unix(0x1, 0x2, 0x0)
fcntl$dupfd(r1, 0x0, r1)
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fallocate(r2, 0x0, 0x0, 0x2000002)
sendfile(r0, r0, &(0x7f00000001c0), 0x8080fffffffe)

12:17:43 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x0, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:17:43 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200), 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

[  747.195949][   T33] audit: type=1800 audit(1595161064.229:73): pid=16669 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16361 res=0
12:17:45 executing program 4:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
write$cgroup_int(r1, &(0x7f0000000200), 0xf000)
r2 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r2, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x4}, 0x1c)
connect$inet6(r2, &(0x7f0000000080)={0xa, 0x0, 0x0, @mcast2}, 0x1c)
sendmmsg(r2, &(0x7f00000092c0), 0x4ff, 0x0)
sendfile(r2, r0, 0x0, 0x8000000000004)

12:17:45 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:17:45 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:17:45 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:17:45 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "8000"})
ioctl$TCSETA(r0, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x7f, 0x0, "078cf0251c0e00"})
r1 = syz_open_pts(r0, 0x0)
ioctl$TCSETSF(r1, 0x5412, &(0x7f0000000100)={0xfffffff0, 0x0, 0x0, 0x0, 0x0, "000000000000000000000010000000001000"})

12:17:45 executing program 5:
pipe(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000000)=ANY=[@ANYBLOB="14000000000a01"], 0x1}}, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x4ffe2, 0x0)

[  748.495692][   T33] audit: type=1800 audit(1595161065.519:74): pid=16695 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=15905 res=0
12:17:45 executing program 0:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000027000)='./file0\x00', &(0x7f00000000c0)='sysfs\x00', 0x0, 0x0)
lsetxattr$security_selinux(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='security.selinux\x00', &(0x7f0000000140)='system_u:object_r:audit_spool_t:s0\x00', 0x23, 0x0)

12:17:45 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

[  748.920551][   T33] audit: type=1800 audit(1595161065.949:75): pid=16718 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=15986 res=0
12:17:46 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:17:46 executing program 0:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080)='fuse\x00', 0x0, &(0x7f0000000300)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@max_read={'max_read'}}]}})

[  749.279458][   T33] audit: type=1800 audit(1595161066.309:76): pid=16723 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=15819 res=0
12:17:46 executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={0x0, 0xffffffffffffffff, 0x0, 0x34f, &(0x7f0000000440)='nr0\x01\x00`\xa1\x9e\xf9\xd2\xc6s\xd9\xa1W\x1c\xb9\xe16\x9b\xcda\xef~Iy:\xe1\x87\x12\xee\xeb\x1d\xaav\x94\x97\x80\v\x7f\xbb\xd3[\x17\f\x10u\x1d9\xae\xb6`\xd8c\xe4\x9b\x8cO;=\xadH\x90+[-l\xfd\n\xbd7,c\xbc\xf5\xd7\a\xf3\xfdM.\x8dD<\x88\xbc\x0eV7\xdd\x82\xfc45\xbe\xd4\xde]i<\x9ax\x1c\x86>\x05\xd8\xa6\xf8h\x9a[\xe2\x92\x16\x06\x1f?\xf5?\x8bk9fx\xe7\xba\x15^\xf9\x15-~C\xb1\xec\xcb#1\xeb\x8e\xb1\xedU\x86\xdc\xf8\xb3\xb0\xb9\x996\x1aD\xff,\"\xc2\xab\xbe\xf4-\xd2N\xab\xe6r3F\xa6\xe4l\x04\x99\xa2\x14B\xd8\xd0\r\xcbW\xf0\x13\xffu\x95\xed\xd0\xff\ai0\xde6u\xd3A\x17\xa4N\xb0\xe4\xf82\x93m\xa4NW\xe4:>6\xbdH\xd2\xa8[\xf4\xfdJ\x80N\x83CZ\xf5\xe2\x87\xd4\xe2s7\xb4\xad\xa1\x1b&!\x98\x86\"R\x06\x00\x00\x00\x00\x00\x00\x00\x95\xfe7q\xe9\xf4,\xa3\x0f\xb2\x1e\x12\xf0\xa3\xd8\xbc-\x85EJ\xf9\xfc\xc0#-\x8f\xd9\tD\x8b\x01\xf4lY=1\xea\x1c\x92de\xe3ZA\x99\a\x9c<\xa4\x11(\xb1|\xb0\x1f\xbf[R+\xe0\xfd\x02\x02*\xda7\xfe\xcc\x0e\xb6\xc8\xc8\x83\x18\x83\xb8Z\x11\x06\xf2\xf8g\x02\rR\x9f\x17\xa3P\xf2\r\xd3\xbfQ\xa9\x8c\xfd\xa7\f.68\xa4\x83\xfd?\x87\x94\v\xb4x\xb0|L\x11\x03\x94\xc0\t=\x17\x95P\x89\xf2\xca\x97\xbb\xfeu\x12L\x9b\x85\x96\xe0\b\xbf\n\x02\x8bS\x9c\xecyl\xec\x9b\xf5\x85\xeb\x80\xfe>\r&\x014\x01\xf4\xb7\x83\x9a\xfa*\xa6\x06\xb7Pk7N\xc2\xd9\xee\xd0\xb0M\x00\xab\xc3\t\fc\xd8dx\xd5\x1dU*s)\x12[\x14\xb1\xc0\xd7\x1a\xa0\x16\xa2z\x9e\x93 \xddeF>29\v\x02\xa2b\x13R\xef\xffA,\xb9.$\xfa\x9f\xde[\x80\xd1=\xce\x1b\xeb\xf6\xf4\xe3z\x1f\x9dz\xa3\xc0\xe2\xa2\xb1\xeeq\xf5\xec0\x8e\xf4\xfb\xd9\x87\xf03\xdb\xae|\x10&V5c\xa6\xce\xcd\x8a\xdf\xe1\x89\"\xea\xde\xe7\xa3\xbe\xe7\xff\xf9 \x11\xfdY\xc6\xa1\xe8\xda\v\\?\xcb\x87\bn\x9b\x01\x1f\xf8\xe8\x1eV\xfaC\xdf\xc3Vv\x9b\x1a\xfc\x14.c\x94\xc9=\xb0\x0f!d\b\x18*@m\x7f\xaal\x17G\xd6?\x81\x16P\x03\x10e\xc3\xcd\xb1B\xeb\x01B\\\x91A\xa1\x8an\xb4#\xadr\x1e\x81v\xa2\x0e6x\xca\x8b\xa6\xd8\x81\x10:\x0e(\xdd\xfc\xc9\xc6\xb4\xf0\'f:\xbd\xfe\x11\xf8\xc8W\x81s^\xd9W\xf1\x94\xaf\xc5\x8a\xb4f\x1b\x17E\xb23\x12\xb0\xeb\xef\x8c\xb24h\xd7}\x7f\x92Hgej\x957\xe2A'}, 0xffffffffffffffc0)
perf_event_open(&(0x7f00000004c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x4030582a, &(0x7f0000000040))
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = socket$inet(0x2, 0xa, 0x0)
r3 = fcntl$dupfd(r1, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000080))

[  749.489578][   T33] audit: type=1800 audit(1595161066.329:77): pid=16725 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.0" name="file0" dev="sda1" ino=15986 res=0
12:17:46 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

[  752.728804][T16742] not chained 550000 origins
[  752.733448][T16742] CPU: 0 PID: 16742 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0
[  752.742120][T16742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  752.752185][T16742] Call Trace:
[  752.755499][T16742]  dump_stack+0x1df/0x240
[  752.759857][T16742]  kmsan_internal_chain_origin+0x6f/0x130
[  752.765628][T16742]  ? kmsan_get_metadata+0x4f/0x180
[  752.770760][T16742]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  752.776588][T16742]  ? kmsan_get_metadata+0x4f/0x180
[  752.781725][T16742]  ? kmsan_set_origin_checked+0x95/0xf0
[  752.787310][T16742]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  752.793399][T16742]  ? _copy_from_user+0x15b/0x260
[  752.798354][T16742]  ? kmsan_get_metadata+0x4f/0x180
[  752.803475][T16742]  __msan_chain_origin+0x50/0x90
[  752.808438][T16742]  __get_compat_msghdr+0x5be/0x890
[  752.813595][T16742]  get_compat_msghdr+0x108/0x270
[  752.818570][T16742]  __sys_sendmmsg+0x7d5/0xd80
[  752.823292][T16742]  ? kmsan_get_metadata+0x4f/0x180
[  752.828421][T16742]  ? kmsan_get_metadata+0x4f/0x180
[  752.833544][T16742]  ? kmsan_internal_check_memory+0xb1/0x3d0
[  752.839469][T16742]  ? kmsan_check_memory+0xd/0x10
[  752.844416][T16742]  ? kmsan_get_metadata+0x11d/0x180
[  752.849729][T16742]  ? kmsan_get_metadata+0x11d/0x180
[  752.854952][T16742]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  752.860783][T16742]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  752.866949][T16742]  ? kmsan_get_metadata+0x4f/0x180
[  752.872099][T16742]  ? kmsan_get_metadata+0x4f/0x180
[  752.877227][T16742]  __se_compat_sys_sendmmsg+0xcd/0xf0
[  752.882624][T16742]  ? __x32_compat_sys_sendmsg+0x70/0x70
[  752.888181][T16742]  __ia32_compat_sys_sendmmsg+0x56/0x70
[  752.893745][T16742]  __do_fast_syscall_32+0x2aa/0x400
[  752.898968][T16742]  do_fast_syscall_32+0x6b/0xd0
[  752.903857][T16742]  do_SYSENTER_32+0x73/0x90
[  752.908373][T16742]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  752.914709][T16742] RIP: 0023:0xf7f8d549
[  752.918802][T16742] Code: Bad RIP value.
[  752.922869][T16742] RSP: 002b:00000000f5d880cc EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  752.931288][T16742] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000200092c0
[  752.939264][T16742] RDX: 00000000000004ff RSI: 0000000000000000 RDI: 0000000000000000
[  752.947240][T16742] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  752.955222][T16742] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  752.963198][T16742] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  752.971195][T16742] Uninit was stored to memory at:
[  752.976258][T16742]  kmsan_internal_chain_origin+0xad/0x130
[  752.981984][T16742]  __msan_chain_origin+0x50/0x90
[  752.986954][T16742]  __get_compat_msghdr+0x5be/0x890
[  752.992075][T16742]  get_compat_msghdr+0x108/0x270
[  752.997019][T16742]  __sys_sendmmsg+0x7d5/0xd80
[  753.001703][T16742]  __se_compat_sys_sendmmsg+0xcd/0xf0
[  753.007084][T16742]  __ia32_compat_sys_sendmmsg+0x56/0x70
[  753.012635][T16742]  __do_fast_syscall_32+0x2aa/0x400
[  753.017843][T16742]  do_fast_syscall_32+0x6b/0xd0
[  753.022701][T16742]  do_SYSENTER_32+0x73/0x90
[  753.027216][T16742]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  753.033537][T16742] 
[  753.035861][T16742] Uninit was stored to memory at:
[  753.040894][T16742]  kmsan_internal_chain_origin+0xad/0x130
[  753.046618][T16742]  __msan_chain_origin+0x50/0x90
[  753.051567][T16742]  __get_compat_msghdr+0x5be/0x890
[  753.056686][T16742]  get_compat_msghdr+0x108/0x270
[  753.061630][T16742]  __sys_sendmmsg+0x7d5/0xd80
[  753.066311][T16742]  __se_compat_sys_sendmmsg+0xcd/0xf0
[  753.071689][T16742]  __ia32_compat_sys_sendmmsg+0x56/0x70
[  753.077239][T16742]  __do_fast_syscall_32+0x2aa/0x400
[  753.082445][T16742]  do_fast_syscall_32+0x6b/0xd0
[  753.087303][T16742]  do_SYSENTER_32+0x73/0x90
[  753.091829][T16742]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  753.098148][T16742] 
[  753.100474][T16742] Uninit was stored to memory at:
[  753.105510][T16742]  kmsan_internal_chain_origin+0xad/0x130
[  753.111233][T16742]  __msan_chain_origin+0x50/0x90
[  753.116182][T16742]  __get_compat_msghdr+0x5be/0x890
[  753.121313][T16742]  get_compat_msghdr+0x108/0x270
[  753.126258][T16742]  __sys_sendmmsg+0x7d5/0xd80
[  753.130943][T16742]  __se_compat_sys_sendmmsg+0xcd/0xf0
[  753.136320][T16742]  __ia32_compat_sys_sendmmsg+0x56/0x70
[  753.141893][T16742]  __do_fast_syscall_32+0x2aa/0x400
[  753.147098][T16742]  do_fast_syscall_32+0x6b/0xd0
[  753.151951][T16742]  do_SYSENTER_32+0x73/0x90
[  753.156460][T16742]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  753.162812][T16742] 
[  753.165141][T16742] Uninit was stored to memory at:
[  753.170176][T16742]  kmsan_internal_chain_origin+0xad/0x130
[  753.175898][T16742]  __msan_chain_origin+0x50/0x90
[  753.180844][T16742]  __get_compat_msghdr+0x5be/0x890
[  753.185963][T16742]  get_compat_msghdr+0x108/0x270
[  753.190907][T16742]  __sys_sendmmsg+0x7d5/0xd80
[  753.195618][T16742]  __se_compat_sys_sendmmsg+0xcd/0xf0
[  753.200998][T16742]  __ia32_compat_sys_sendmmsg+0x56/0x70
[  753.206558][T16742]  __do_fast_syscall_32+0x2aa/0x400
[  753.211772][T16742]  do_fast_syscall_32+0x6b/0xd0
[  753.216636][T16742]  do_SYSENTER_32+0x73/0x90
[  753.221161][T16742]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  753.227488][T16742] 
[  753.229827][T16742] Uninit was stored to memory at:
[  753.234870][T16742]  kmsan_internal_chain_origin+0xad/0x130
[  753.240603][T16742]  __msan_chain_origin+0x50/0x90
[  753.245557][T16742]  __get_compat_msghdr+0x5be/0x890
[  753.250680][T16742]  get_compat_msghdr+0x108/0x270
[  753.255638][T16742]  __sys_sendmmsg+0x7d5/0xd80
[  753.260325][T16742]  __se_compat_sys_sendmmsg+0xcd/0xf0
[  753.265706][T16742]  __ia32_compat_sys_sendmmsg+0x56/0x70
[  753.271312][T16742]  __do_fast_syscall_32+0x2aa/0x400
[  753.276528][T16742]  do_fast_syscall_32+0x6b/0xd0
[  753.281388][T16742]  do_SYSENTER_32+0x73/0x90
[  753.285900][T16742]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  753.292240][T16742] 
[  753.294574][T16742] Uninit was stored to memory at:
[  753.299615][T16742]  kmsan_internal_chain_origin+0xad/0x130
[  753.305348][T16742]  __msan_chain_origin+0x50/0x90
[  753.310304][T16742]  __get_compat_msghdr+0x5be/0x890
[  753.315433][T16742]  get_compat_msghdr+0x108/0x270
[  753.320387][T16742]  __sys_sendmmsg+0x7d5/0xd80
[  753.325076][T16742]  __se_compat_sys_sendmmsg+0xcd/0xf0
[  753.330462][T16742]  __ia32_compat_sys_sendmmsg+0x56/0x70
[  753.336028][T16742]  __do_fast_syscall_32+0x2aa/0x400
[  753.341291][T16742]  do_fast_syscall_32+0x6b/0xd0
[  753.346201][T16742]  do_SYSENTER_32+0x73/0x90
[  753.350721][T16742]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  753.357052][T16742] 
[  753.359384][T16742] Uninit was stored to memory at:
[  753.364435][T16742]  kmsan_internal_chain_origin+0xad/0x130
[  753.370182][T16742]  __msan_chain_origin+0x50/0x90
[  753.375142][T16742]  __get_compat_msghdr+0x5be/0x890
[  753.380275][T16742]  get_compat_msghdr+0x108/0x270
[  753.385230][T16742]  __sys_sendmmsg+0x7d5/0xd80
[  753.389974][T16742]  __se_compat_sys_sendmmsg+0xcd/0xf0
[  753.395361][T16742]  __ia32_compat_sys_sendmmsg+0x56/0x70
[  753.400922][T16742]  __do_fast_syscall_32+0x2aa/0x400
[  753.406143][T16742]  do_fast_syscall_32+0x6b/0xd0
[  753.411014][T16742]  do_SYSENTER_32+0x73/0x90
[  753.415534][T16742]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  753.421872][T16742] 
[  753.424212][T16742] Local variable ----msg_sys@__sys_sendmmsg created at:
[  753.431171][T16742]  __sys_sendmmsg+0xb7/0xd80
[  753.435789][T16742]  __sys_sendmmsg+0xb7/0xd80
12:17:51 executing program 4:
r0 = syz_open_dev$usbfs(&(0x7f0000000840)='/dev/bus/usb/00#/00#\x00', 0x908, 0x1)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000040)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000000)={0xa0, 0xb0cfed3798f24e19}, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

12:17:51 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r0, &(0x7f0000000000)={0x10, 0x0, 0x0, 0x24df7ffff}, 0xc)

12:17:51 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:17:51 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:17:51 executing program 0:
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=@newlink={0x40, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @gtp={{0x8, 0x1, 'gtp\x00'}, {0x14, 0x2, 0x0, 0x1, {{0x8}, {0x8}}}}}]}, 0x40}}, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmmsg$alg(r0, &(0x7f00000000c0), 0x492492492492627, 0x0)

12:17:51 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

[  754.201877][   T33] audit: type=1800 audit(1595161071.229:78): pid=16766 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16017 res=0
12:17:51 executing program 5:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
perf_event_open(&(0x7f0000000280)={0x2, 0x70, 0xaf, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={0x0, 0xffffffffffffffff, 0x0, 0x34f, &(0x7f0000000440)='nr0\x01\x00`\xa1\x9e\xf9\xd2\xc6s\xd9\xa1W\x1c\xb9\xe16\x9b\xcda\xef~Iy:\xe1\x87\x12\xee\xeb\x1d\xaav\x94\x97\x80\v\x7f\xbb\xd3[\x17\f\x10u\x1d9\xae\xb6`\xd8c\xe4\x9b\x8cO;=\xadH\x90+[-l\xfd\n\xbd7,c\xbc\xf5\xd7\a\xf3\xfdM.\x8dD<\x88\xbc\x0eV7\xdd\x82\xfc45\xbe\xd4\xde]i<\x9ax\x1c\x86>\x05\xd8\xa6\xf8h\x9a[\xe2\x92\x16\x06\x1f?\xf5?\x8bk9fx\xe7\xba\x15^\xf9\x15-~C\xb1\xec\xcb#1\xeb\x8e\xb1\xedU\x86\xdc\xf8\xb3\xb0\xb9\x996\x1aD\xff,\"\xc2\xab\xbe\xf4-\xd2N\xab\xe6r3F\xa6\xe4l\x04\x99\xa2\x14B\xd8\xd0\r\xcbW\xf0\x13\xffu\x95\xed\xd0\xff\ai0\xde6u\xd3A\x17\xa4N\xb0\xe4\xf82\x93m\xa4NW\xe4:>6\xbdH\xd2\xa8[\xf4\xfdJ\x80N\x83CZ\xf5\xe2\x87\xd4\xe2s7\xb4\xad\xa1\x1b&!\x98\x86\"R\x06\x00\x00\x00\x00\x00\x00\x00\x95\xfe7q\xe9\xf4,\xa3\x0f\xb2\x1e\x12\xf0\xa3\xd8\xbc-\x85EJ\xf9\xfc\xc0#-\x8f\xd9\tD\x8b\x01\xf4lY=1\xea\x1c\x92de\xe3ZA\x99\a\x9c<\xa4\x11(\xb1|\xb0\x1f\xbf[R+\xe0\xfd\x02\x02*\xda7\xfe\xcc\x0e\xb6\xc8\xc8\x83\x18\x83\xb8Z\x11\x06\xf2\xf8g\x02\rR\x9f\x17\xa3P\xf2\r\xd3\xbfQ\xa9\x8c\xfd\xa7\f.68\xa4\x83\xfd?\x87\x94\v\xb4x\xb0|L\x11\x03\x94\xc0\t=\x17\x95P\x89\xf2\xca\x97\xbb\xfeu\x12L\x9b\x85\x96\xe0\b\xbf\n\x02\x8bS\x9c\xecyl\xec\x9b\xf5\x85\xeb\x80\xfe>\r&\x014\x01\xf4\xb7\x83\x9a\xfa*\xa6\x06\xb7Pk7N\xc2\xd9\xee\xd0\xb0M\x00\xab\xc3\t\fc\xd8dx\xd5\x1dU*s)\x12[\x14\xb1\xc0\xd7\x1a\xa0\x16\xa2z\x9e\x93 \xddeF>29\v\x02\xa2b\x13R\xef\xffA,\xb9.$\xfa\x9f\xde[\x80\xd1=\xce\x1b\xeb\xf6\xf4\xe3z\x1f\x9dz\xa3\xc0\xe2\xa2\xb1\xeeq\xf5\xec0\x8e\xf4\xfb\xd9\x87\xf03\xdb\xae|\x10&V5c\xa6\xce\xcd\x8a\xdf\xe1\x89\"\xea\xde\xe7\xa3\xbe\xe7\xff\xf9 \x11\xfdY\xc6\xa1\xe8\xda\v\\?\xcb\x87\bn\x9b\x01\x1f\xf8\xe8\x1eV\xfaC\xdf\xc3Vv\x9b\x1a\xfc\x14.c\x94\xc9=\xb0\x0f!d\b\x18*@m\x7f\xaal\x17G\xd6?\x81\x16P\x03\x10e\xc3\xcd\xb1B\xeb\x01B\\\x91A\xa1\x8an\xb4#\xadr\x1e\x81v\xa2\x0e6x\xca\x8b\xa6\xd8\x81\x10:\x0e(\xdd\xfc\xc9\xc6\xb4\xf0\'f:\xbd\xfe\x11\xf8\xc8W\x81s^\xd9W\xf1\x94\xaf\xc5\x8a\xb4f\x1b\x17E\xb23\x12\xb0\xeb\xef\x8c\xb24h\xd7}\x7f\x92Hgej\x957\xe2A'}, 0xffffffffffffffc0)
mq_unlink(0x0)
perf_event_open(&(0x7f00000004c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x4030582a, &(0x7f0000000040))
r1 = socket$unix(0x1, 0x1, 0x0)
socket$inet(0x2, 0xa, 0x0)
fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)

12:17:51 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getdents64(0xffffffffffffffff, &(0x7f00000001c0)=""/4088, 0xff8)
sendmsg$ETHTOOL_MSG_STRSET_GET(0xffffffffffffffff, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={0x0}}, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/netstat\x00')
preadv(r0, &(0x7f0000000500), 0x37d, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_procfs(0x0, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_VLAN(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xffffffffffffffa2, &(0x7f00000001c0)={0x0, 0xfffffffffffffe38}}, 0x0)

12:17:51 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

[  754.835077][   T33] audit: type=1800 audit(1595161071.869:79): pid=16789 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16033 res=0
12:17:52 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:17:52 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:17:53 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

[  756.395202][   T33] audit: type=1800 audit(1595161073.429:80): pid=16804 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=15850 res=0
12:17:54 executing program 4:
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000027000)='./file0\x00', &(0x7f00000000c0)='sysfs\x00', 0x0, 0x0)
chroot(&(0x7f0000000040)='./file0/bus\x00')
umount2(&(0x7f0000000080)='./file0\x00', 0x0)
mkdir(&(0x7f0000000000)='./file0/bus\x00', 0x0)

12:17:54 executing program 0:
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f00000000c0)='securityfs\x00', 0x0, 0x0)

12:17:54 executing program 5:
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f00000001c0)={0x20a927, 0xd, 0x0, <r1=>0xffffffffffffff9c})
r2 = dup(r1)
poll(&(0x7f00000000c0)=[{r2, 0x10021}], 0x1, 0x1)

12:17:54 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:17:54 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:17:54 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

[  757.896723][   T33] audit: type=1800 audit(1595161074.859:81): pid=16830 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16145 res=0
12:17:55 executing program 5:
r0 = socket$packet(0x11, 0x3, 0x300)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000002180)=0x8, 0x4)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r2=>0x0})
bind$packet(r0, &(0x7f0000000100)={0x11, 0x0, r2}, 0x14)
sendto$inet6(r0, &(0x7f0000000080)="03042a01140060024003002cfff57b016d2763bd56373780398d537500e50602591f031ee616d5c0184374a7ffe4ec55e0654786a70100935ba514d40808efa000801610002fd08d49a47eff71bc4131fe4c1f99bf00a900000008d1843e770afd6e9ef5837dbd0000000053", 0x3287, 0x4021, 0x0, 0x23f)

12:17:55 executing program 0:
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
lsetxattr$security_selinux(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000040)='security.selinux\x00', &(0x7f0000000000)='system_u:object_r:dhcp_etc_t:s0\x00', 0x6908, 0x0)

12:17:55 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

[  758.443073][   T33] audit: type=1800 audit(1595161075.469:82): pid=16844 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16193 res=0
12:17:55 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000000840)='/dev/bus/usb/00#/00#\x00', 0x908, 0x1)
ioctl$USBDEVFS_RESETEP(r0, 0x80045503, 0x0)

12:17:55 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:17:56 executing program 0:
r0 = socket$inet6(0xa, 0x3, 0xff)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000001c0)={'gretap0\x00', &(0x7f0000000140)=@ethtool_eee={0x44}})

12:17:57 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = socket$inet6(0xa, 0x3, 0x6)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000000)={@initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x0, 0x0, 0x3, 0x1, 0x0, 0xfffc, 0x400000000}, 0x20)

12:17:57 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:17:57 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000040)={0x0, 0x0, <r1=>0x0}, &(0x7f0000000080)=0xc)
syz_mount_image$ntfs(&(0x7f0000000000)='ntfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={[{@errors_remount='errors=remount-ro'}, {@gid={'gid', 0x3d, r1}}]})

12:17:57 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

[  760.083759][T16865] ntfs: (device loop0): parse_options(): Invalid gid option argument: 0x00000000ffffffff
[  760.123771][   T33] audit: type=1800 audit(1595161077.159:83): pid=16869 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16337 res=0
12:17:57 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

[  760.300534][T16873] ntfs: (device loop0): parse_options(): Invalid gid option argument: 0x00000000ffffffff
12:17:57 executing program 5:
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="4800000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000002800128008000100677470001c000280080001"], 0x48}}, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmmsg$alg(r0, &(0x7f00000000c0), 0x492492492492627, 0x0)

12:17:57 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:17:57 executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={0x0, 0xffffffffffffffff, 0x0, 0x34f, &(0x7f0000000440)='nr0\x01\x00`\xa1\x9e\xf9\xd2\xc6s\xd9\xa1W\x1c\xb9\xe16\x9b\xcda\xef~Iy:\xe1\x87\x12\xee\xeb\x1d\xaav\x94\x97\x80\v\x7f\xbb\xd3[\x17\f\x10u\x1d9\xae\xb6`\xd8c\xe4\x9b\x8cO;=\xadH\x90+[-l\xfd\n\xbd7,c\xbc\xf5\xd7\a\xf3\xfdM.\x8dD<\x88\xbc\x0eV7\xdd\x82\xfc45\xbe\xd4\xde]i<\x9ax\x1c\x86>\x05\xd8\xa6\xf8h\x9a[\xe2\x92\x16\x06\x1f?\xf5?\x8bk9fx\xe7\xba\x15^\xf9\x15-~C\xb1\xec\xcb#1\xeb\x8e\xb1\xedU\x86\xdc\xf8\xb3\xb0\xb9\x996\x1aD\xff,\"\xc2\xab\xbe\xf4-\xd2N\xab\xe6r3F\xa6\xe4l\x04\x99\xa2\x14B\xd8\xd0\r\xcbW\xf0\x13\xffu\x95\xed\xd0\xff\ai0\xde6u\xd3A\x17\xa4N\xb0\xe4\xf82\x93m\xa4NW\xe4:>6\xbdH\xd2\xa8[\xf4\xfdJ\x80N\x83CZ\xf5\xe2\x87\xd4\xe2s7\xb4\xad\xa1\x1b&!\x98\x86\"R\x06\x00\x00\x00\x00\x00\x00\x00\x95\xfe7q\xe9\xf4,\xa3\x0f\xb2\x1e\x12\xf0\xa3\xd8\xbc-\x85EJ\xf9\xfc\xc0#-\x8f\xd9\tD\x8b\x01\xf4lY=1\xea\x1c\x92de\xe3ZA\x99\a\x9c<\xa4\x11(\xb1|\xb0\x1f\xbf[R+\xe0\xfd\x02\x02*\xda7\xfe\xcc\x0e\xb6\xc8\xc8\x83\x18\x83\xb8Z\x11\x06\xf2\xf8g\x02\rR\x9f\x17\xa3P\xf2\r\xd3\xbfQ\xa9\x8c\xfd\xa7\f.68\xa4\x83\xfd?\x87\x94\v\xb4x\xb0|L\x11\x03\x94\xc0\t=\x17\x95P\x89\xf2\xca\x97\xbb\xfeu\x12L\x9b\x85\x96\xe0\b\xbf\n\x02\x8bS\x9c\xecyl\xec\x9b\xf5\x85\xeb\x80\xfe>\r&\x014\x01\xf4\xb7\x83\x9a\xfa*\xa6\x06\xb7Pk7N\xc2\xd9\xee\xd0\xb0M\x00\xab\xc3\t\fc\xd8dx\xd5\x1dU*s)\x12[\x14\xb1\xc0\xd7\x1a\xa0\x16\xa2z\x9e\x93 \xddeF>29\v\x02\xa2b\x13R\xef\xffA,\xb9.$\xfa\x9f\xde[\x80\xd1=\xce\x1b\xeb\xf6\xf4\xe3z\x1f\x9dz\xa3\xc0\xe2\xa2\xb1\xeeq\xf5\xec0\x8e\xf4\xfb\xd9\x87\xf03\xdb\xae|\x10&V5c\xa6\xce\xcd\x8a\xdf\xe1\x89\"\xea\xde\xe7\xa3\xbe\xe7\xff\xf9 \x11\xfdY\xc6\xa1\xe8\xda\v\\?\xcb\x87\bn\x9b\x01\x1f\xf8\xe8\x1eV\xfaC\xdf\xc3Vv\x9b\x1a\xfc\x14.c\x94\xc9=\xb0\x0f!d\b\x18*@m\x7f\xaal\x17G\xd6?\x81\x16P\x03\x10e\xc3\xcd\xb1B\xeb\x01B\\\x91A\xa1\x8an\xb4#\xadr\x1e\x81v\xa2\x0e6x\xca\x8b\xa6\xd8\x81\x10:\x0e(\xdd\xfc\xc9\xc6\xb4\xf0\'f:\xbd\xfe\x11\xf8\xc8W\x81s^\xd9W\xf1\x94\xaf\xc5\x8a\xb4f\x1b\x17E\xb23\x12\xb0\xeb\xef\x8c\xb24h\xd7}\x7f\x92Hgej\x957\xe2A'}, 0xffffffffffffffc0)
perf_event_open(&(0x7f00000004c0)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x4030582a, &(0x7f0000000040))

[  760.591097][   T33] audit: type=1800 audit(1595161077.619:84): pid=16879 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16130 res=0
[  760.834754][T16888] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.5'.
12:17:57 executing program 3:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:17:58 executing program 0:
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00'}, 0x48)

[  761.002716][T16893] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.5'.
12:17:58 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{0x0}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:17:58 executing program 5:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = dup2(r0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/timer\x00', 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r2, 0x40485404, &(0x7f0000000180))

12:17:58 executing program 4:
r0 = socket$packet(0x11, 0x3, 0x300)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000002180)=0x8, 0x4)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r2=>0x0})
ptrace$cont(0x7, 0x0, 0x0, 0x0)
bind$packet(r0, &(0x7f0000000100)={0x11, 0x0, r2}, 0x14)
ioctl$RTC_IRQP_SET(0xffffffffffffffff, 0x4008700c, 0x0)
sendto$inet6(r0, &(0x7f0000000080)="03042a01140060024003002cfff57b016d2763bd56373780398d537500e50602591f031ee616d5c0184374a7ffe4ec55e0654786a70100935ba514d40808efa000801610002fd08d49a47eff71bc4131fe4c1f99bf00a900000008d1843e770afd6e9ef5837dbd0000000053", 0x3287, 0x4021, 0x0, 0x23f)

12:17:58 executing program 0:
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000027000)='./file0\x00', &(0x7f00000000c0)='sysfs\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x820020, &(0x7f0000000240)={{'fd'}, 0x2c, {'rootmode'}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[], [{@fscontext={'fscontext', 0x3d, 'system_u'}}]}})

12:17:58 executing program 3:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:17:58 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:17:58 executing program 5:
perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(0xffffffffffffffff, r0, 0x0, 0x0)
getsockopt$inet_dccp_buf(0xffffffffffffffff, 0x21, 0x80, 0x0, &(0x7f00000001c0))
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f00000001c0)={0x20a927, 0xd, 0x0, <r2=>0xffffffffffffff9c})
r3 = dup(r2)
mmap(&(0x7f0000133000/0x2000)=nil, 0x2000, 0x0, 0x30051, r3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r4, 0xc0184900, 0x0)
r5 = dup(0xffffffffffffffff)
mmap(&(0x7f0000133000/0x2000)=nil, 0x2000, 0x0, 0x30051, r5, 0x0)
pkey_alloc(0x0, 0x0)

[  761.865214][T16916] sysfs: Unknown parameter 'fd'
[  761.942053][T16917] x86/PAT: syz-executor.5:16917 map pfn RAM range req write-combining for [mem 0x12200000-0x12201fff], got write-back
[  762.027499][T16917] x86/PAT: syz-executor.5:16917 map pfn RAM range req write-combining for [mem 0x0f100000-0x0f101fff], got write-back
12:17:59 executing program 3:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:17:59 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ip_tables_targets\x00')
readv(r0, &(0x7f0000002340)=[{&(0x7f00000001c0)=""/4096, 0x141b}], 0x1)
readv(r0, &(0x7f0000000580), 0x3c1)
setsockopt$inet6_tcp_TCP_QUEUE_SEQ(r0, 0x6, 0x15, &(0x7f0000000000), 0x4)

12:17:59 executing program 5:
r0 = socket$inet6(0xa, 0x3, 0xff)
sendto$l2tp6(r0, 0x0, 0x0, 0x0, &(0x7f0000000140)={0xa, 0x0, 0x0, @mcast1, 0xfffffe00}, 0x20)

12:17:59 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x4, 0x4)
r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000100)='/dev/null\x00', 0x0, 0x0)
r2 = socket$nl_generic(0xa, 0x5, 0x84)
ioctl$sock_SIOCETHTOOL(r2, 0x89f1, &(0x7f0000000000)={'ip6gre0\x00', 0x0})
r3 = syz_genetlink_get_family_id$ipvs(0x0)
sendmsg$IPVS_CMD_NEW_DAEMON(r2, &(0x7f0000000100)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0xd490010}, 0xc, &(0x7f0000000600)={&(0x7f0000000780)=ANY=[@ANYBLOB, @ANYRESOCT=r3, @ANYRESHEX], 0x3}, 0x1, 0x0, 0x0, 0x4c051}, 0x1)
sendmsg$IPVS_CMD_SET_SERVICE(r1, &(0x7f00000002c0)={&(0x7f0000000140), 0xc, &(0x7f0000000180)={&(0x7f00000007c0)=ANY=[@ANYBLOB, @ANYRES16=r3, @ANYBLOB="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"], 0x90}}, 0x0)
sendmsg$IPVS_CMD_GET_SERVICE(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000640)={0xc8, r3, 0x1, 0x70bd27, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_DAEMON={0x44, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e23}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x1f}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x3}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @local}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x8}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x865f}, @IPVS_CMD_ATTR_SERVICE={0x3c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@private1}, @IPVS_SVC_ATTR_ADDR={0x14}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x9}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x393}, @IPVS_CMD_ATTR_DEST={0x14, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_FLAGS={0x6}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0xffffffff}]}]}, 0xc8}, 0x1, 0x0, 0x0, 0x40844}, 0x0)
sendmsg$IPVS_CMD_GET_CONFIG(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x400}, 0xc, 0x0}, 0x880)
io_setup(0x0, &(0x7f0000000100))
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='lp\x00', 0x3)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x6}, 0x1c)

12:17:59 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{0x0}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:17:59 executing program 3:
open(0x0, 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:17:59 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:18:02 executing program 4:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={0x0, 0xffffffffffffffff, 0x0, 0x34f, &(0x7f0000000440)='nr0\x01\x00`\xa1\x9e\xf9\xd2\xc6s\xd9\xa1W\x1c\xb9\xe16\x9b\xcda\xef~Iy:\xe1\x87\x12\xee\xeb\x1d\xaav\x94\x97\x80\v\x7f\xbb\xd3[\x17\f\x10u\x1d9\xae\xb6`\xd8c\xe4\x9b\x8cO;=\xadH\x90+[-l\xfd\n\xbd7,c\xbc\xf5\xd7\a\xf3\xfdM.\x8dD<\x88\xbc\x0eV7\xdd\x82\xfc45\xbe\xd4\xde]i<\x9ax\x1c\x86>\x05\xd8\xa6\xf8h\x9a[\xe2\x92\x16\x06\x1f?\xf5?\x8bk9fx\xe7\xba\x15^\xf9\x15-~C\xb1\xec\xcb#1\xeb\x8e\xb1\xedU\x86\xdc\xf8\xb3\xb0\xb9\x996\x1aD\xff,\"\xc2\xab\xbe\xf4-\xd2N\xab\xe6r3F\xa6\xe4l\x04\x99\xa2\x14B\xd8\xd0\r\xcbW\xf0\x13\xffu\x95\xed\xd0\xff\ai0\xde6u\xd3A\x17\xa4N\xb0\xe4\xf82\x93m\xa4NW\xe4:>6\xbdH\xd2\xa8[\xf4\xfdJ\x80N\x83CZ\xf5\xe2\x87\xd4\xe2s7\xb4\xad\xa1\x1b&!\x98\x86\"R\x06\x00\x00\x00\x00\x00\x00\x00\x95\xfe7q\xe9\xf4,\xa3\x0f\xb2\x1e\x12\xf0\xa3\xd8\xbc-\x85EJ\xf9\xfc\xc0#-\x8f\xd9\tD\x8b\x01\xf4lY=1\xea\x1c\x92de\xe3ZA\x99\a\x9c<\xa4\x11(\xb1|\xb0\x1f\xbf[R+\xe0\xfd\x02\x02*\xda7\xfe\xcc\x0e\xb6\xc8\xc8\x83\x18\x83\xb8Z\x11\x06\xf2\xf8g\x02\rR\x9f\x17\xa3P\xf2\r\xd3\xbfQ\xa9\x8c\xfd\xa7\f.68\xa4\x83\xfd?\x87\x94\v\xb4x\xb0|L\x11\x03\x94\xc0\t=\x17\x95P\x89\xf2\xca\x97\xbb\xfeu\x12L\x9b\x85\x96\xe0\b\xbf\n\x02\x8bS\x9c\xecyl\xec\x9b\xf5\x85\xeb\x80\xfe>\r&\x014\x01\xf4\xb7\x83\x9a\xfa*\xa6\x06\xb7Pk7N\xc2\xd9\xee\xd0\xb0M\x00\xab\xc3\t\fc\xd8dx\xd5\x1dU*s)\x12[\x14\xb1\xc0\xd7\x1a\xa0\x16\xa2z\x9e\x93 \xddeF>29\v\x02\xa2b\x13R\xef\xffA,\xb9.$\xfa\x9f\xde[\x80\xd1=\xce\x1b\xeb\xf6\xf4\xe3z\x1f\x9dz\xa3\xc0\xe2\xa2\xb1\xeeq\xf5\xec0\x8e\xf4\xfb\xd9\x87\xf03\xdb\xae|\x10&V5c\xa6\xce\xcd\x8a\xdf\xe1\x89\"\xea\xde\xe7\xa3\xbe\xe7\xff\xf9 \x11\xfdY\xc6\xa1\xe8\xda\v\\?\xcb\x87\bn\x9b\x01\x1f\xf8\xe8\x1eV\xfaC\xdf\xc3Vv\x9b\x1a\xfc\x14.c\x94\xc9=\xb0\x0f!d\b\x18*@m\x7f\xaal\x17G\xd6?\x81\x16P\x03\x10e\xc3\xcd\xb1B\xeb\x01B\\\x91A\xa1\x8an\xb4#\xadr\x1e\x81v\xa2\x0e6x\xca\x8b\xa6\xd8\x81\x10:\x0e(\xdd\xfc\xc9\xc6\xb4\xf0\'f:\xbd\xfe\x11\xf8\xc8W\x81s^\xd9W\xf1\x94\xaf\xc5\x8a\xb4f\x1b\x17E\xb23\x12\xb0\xeb\xef\x8c\xb24h\xd7}\x7f\x92Hgej\x957\xe2A'}, 0xffffffffffffffc0)
mq_unlink(&(0x7f0000000000)='\x00')
perf_event_open(&(0x7f00000004c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x4030582a, &(0x7f0000000040))
r1 = socket$unix(0x1, 0x1, 0x0)
socket$inet(0x2, 0x0, 0x0)
fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)

12:18:02 executing program 0:
pipe(&(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)={0x28, 0x1, 0x4, 0x401, 0x0, 0x0, {}, [@NFULA_CFG_MODE={0xa, 0x2, {0x0, 0x2}}, @NFULA_CFG_CMD={0x5, 0x1, 0x1}]}, 0x28}}, 0x0)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0)
splice(r0, 0x0, r2, 0x0, 0x4ffe0, 0x0)

12:18:02 executing program 3:
open(0x0, 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:18:02 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{0x0}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)

12:18:02 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:18:02 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x4, 0x4)
r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000100)='/dev/null\x00', 0x0, 0x0)
r2 = socket$nl_generic(0xa, 0x5, 0x84)
ioctl$sock_SIOCETHTOOL(r2, 0x89f1, &(0x7f0000000000)={'ip6gre0\x00', 0x0})
r3 = syz_genetlink_get_family_id$ipvs(0x0)
sendmsg$IPVS_CMD_NEW_DAEMON(r2, &(0x7f0000000100)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0xd490010}, 0xc, &(0x7f0000000600)={&(0x7f0000000780)=ANY=[@ANYBLOB, @ANYRESOCT=r3, @ANYRESHEX], 0x3}, 0x1, 0x0, 0x0, 0x4c051}, 0x1)
sendmsg$IPVS_CMD_SET_SERVICE(r1, &(0x7f00000002c0)={&(0x7f0000000140), 0xc, &(0x7f0000000180)={&(0x7f00000007c0)=ANY=[@ANYBLOB, @ANYRES16=r3, @ANYBLOB="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"], 0x90}}, 0x0)
sendmsg$IPVS_CMD_GET_SERVICE(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000640)={0xc8, r3, 0x1, 0x70bd27, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_DAEMON={0x44, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e23}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x1f}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x3}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @local}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x8}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x865f}, @IPVS_CMD_ATTR_SERVICE={0x3c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@private1}, @IPVS_SVC_ATTR_ADDR={0x14}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x9}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x393}, @IPVS_CMD_ATTR_DEST={0x14, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_FLAGS={0x6}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0xffffffff}]}]}, 0xc8}, 0x1, 0x0, 0x0, 0x40844}, 0x0)
sendmsg$IPVS_CMD_GET_CONFIG(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x400}, 0xc, 0x0}, 0x880)
io_setup(0x0, &(0x7f0000000100))
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='lp\x00', 0x3)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x6}, 0x1c)

12:18:03 executing program 3:
open(0x0, 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:18:03 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$setstatus(r0, 0x4, 0x2800)
readv(r0, &(0x7f0000000100)=[{&(0x7f00000000c0)=""/60, 0x3c}], 0x1)

12:18:03 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:18:03 executing program 0:
pipe(&(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)={0x28, 0x1, 0x4, 0x401, 0x0, 0x0, {}, [@NFULA_CFG_MODE={0xa, 0x2, {0x0, 0x2}}, @NFULA_CFG_CMD={0x5, 0x1, 0x1}]}, 0x28}}, 0x0)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0)
splice(r0, 0x0, r2, 0x0, 0x4ffe0, 0x0)

12:18:03 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

12:18:03 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:18:05 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_buf(r0, 0x29, 0x30, &(0x7f0000000000), 0x0)

12:18:05 executing program 5:
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='memory.events\x00', 0x26e1, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x0, 0x2, 0x400}, 0x40)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x203, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$cgroup_int(r0, &(0x7f0000000200), 0x400c00)
r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, r1, 0x0)

12:18:05 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:18:05 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

12:18:05 executing program 0:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
syz_mount_image$xfs(&(0x7f00000000c0)='xfs\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000980)={[{@largeio='largeio'}]})

12:18:05 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

[  768.621864][T17003] XFS (loop0): Invalid superblock magic number
12:18:05 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:18:06 executing program 0:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
syz_mount_image$xfs(&(0x7f00000000c0)='xfs\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000980)={[{@largeio='largeio'}]})

12:18:06 executing program 5:
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mount(0x0, &(0x7f0000027000)='./file0\x00', &(0x7f00000000c0)='sysfs\x00', 0x0, 0x0)
chroot(&(0x7f0000000040)='./file0\x00')

[  769.378099][T17029] XFS (loop0): Invalid superblock magic number
12:18:06 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:18:06 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:18:06 executing program 2:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)="ee", 0x101d0}], 0x1}, 0x1000000}], 0x92, 0x0)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000001a80)=[{{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000004100)=""/4092, 0xffc}], 0x1}}], 0x1, 0x0, 0x0)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

[  769.742295][   T33] audit: type=1800 audit(1595161086.769:85): pid=17042 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=15903 res=0
12:18:07 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ip_tables_targets\x00')
readv(0xffffffffffffffff, &(0x7f0000002340)=[{&(0x7f00000001c0)=""/4096, 0x141b}], 0x1)
readv(r0, &(0x7f0000000580), 0x3c1)
setsockopt$inet6_tcp_TCP_QUEUE_SEQ(0xffffffffffffffff, 0x6, 0x15, 0x0, 0x0)
write(0xffffffffffffffff, 0x0, 0x0)

12:18:07 executing program 0:
syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f00000004c0)=ANY=[])
chdir(&(0x7f0000000000)='./file1\x00')
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x1031fe, 0x0)
writev(r0, &(0x7f0000000180)=[{&(0x7f0000000100)="12c0ef4e", 0x4}], 0x1)
r1 = open(&(0x7f0000000400)='./bus\x00', 0x14103e, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, r1, 0x0)
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fallocate(r2, 0x0, 0x0, 0x2000002)
sendfile(r0, r0, &(0x7f00000001c0), 0x8080fffffffe)

12:18:07 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:18:07 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040)='batadv\x00')
r2 = socket(0x10, 0x803, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$BATADV_CMD_GET_DAT_CACHE(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)={0x1c, r1, 0x31905e13403123b7, 0x0, 0x0, {0x6}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r3}]}, 0x1c}}, 0x0)

12:18:07 executing program 2:
perf_event_open(&(0x7f00000002c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x6}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$RDMA_USER_CM_CMD_LEAVE_MCAST(0xffffffffffffffff, &(0x7f0000000440)={0x11, 0x10, 0xfa00, {0x0}}, 0x18)
preadv(0xffffffffffffffff, &(0x7f0000001b00)=[{&(0x7f0000000000)=""/2, 0x2}], 0x1, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='loginuid\x00')
preadv(r0, &(0x7f00000017c0), 0x375, 0x0)

12:18:07 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

[  770.726752][   T33] audit: type=1800 audit(1595161087.759:86): pid=17063 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=15909 res=0
12:18:08 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x9, 0x20011, r0, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(r0, 0x227e, &(0x7f0000000080))

12:18:08 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000400)={'tunl0\x00', &(0x7f0000000380)=@ethtool_link_settings={0x4d}})

12:18:08 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

[  771.501793][   T33] audit: type=1800 audit(1595161088.529:87): pid=17085 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=15909 res=0
12:18:08 executing program 2:
r0 = socket$inet6(0xa, 0x3, 0x6)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000000)={@initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x0, 0x0, 0x3, 0x1, 0xfffb, 0xfffc, 0x400000000}, 0x20)

12:18:08 executing program 0:
perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r0, &(0x7f000047b000)={0xa, 0x404e20, 0x0, @empty}, 0x1c)
listen(r0, 0x400000001ffffffd)
r1 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
r2 = accept4(r0, 0x0, 0x0, 0x0)
write$P9_RSTATFS(0xffffffffffffffff, 0x0, 0x0)
sendmmsg(r2, &(0x7f0000003d40)=[{{0x0, 0xffffffbf, 0x0, 0x0, 0x0, 0x0, 0xe}, 0x54}], 0x4000000000000d0, 0x0)

12:18:08 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x9, 0x20011, r0, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(r0, 0x227e, &(0x7f0000000080))

12:18:09 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="4800000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000002800128008000100677470001c00028008000100", @ANYRES32, @ANYBLOB], 0x48}}, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmmsg$alg(r2, &(0x7f00000000c0), 0x492492492492627, 0x0)

12:18:09 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:18:09 executing program 2:
syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f00000004c0)=ANY=[])
chdir(&(0x7f0000000000)='./file1\x00')
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x1031fe, 0x0)
writev(r0, &(0x7f0000000180)=[{&(0x7f0000000100)="12c0ef4eda4be7758c4f17", 0xb}], 0x1)
r1 = socket$unix(0x1, 0x2, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fallocate(r3, 0x0, 0x0, 0x2000002)
sendfile(r0, r0, &(0x7f00000001c0), 0x8080fffffffe)

12:18:09 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:18:09 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x9, 0x20011, r0, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(r0, 0x227e, &(0x7f0000000080))

[  772.704339][   T33] audit: type=1800 audit(1595161089.739:88): pid=17109 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=15947 res=0
12:18:10 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:18:10 executing program 5:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={0x0, 0xffffffffffffffff, 0x0, 0x34f, &(0x7f0000000440)='nr0\x01\x00`\xa1\x9e\xf9\xd2\xc6s\xd9\xa1W\x1c\xb9\xe16\x9b\xcda\xef~Iy:\xe1\x87\x12\xee\xeb\x1d\xaav\x94\x97\x80\v\x7f\xbb\xd3[\x17\f\x10u\x1d9\xae\xb6`\xd8c\xe4\x9b\x8cO;=\xadH\x90+[-l\xfd\n\xbd7,c\xbc\xf5\xd7\a\xf3\xfdM.\x8dD<\x88\xbc\x0eV7\xdd\x82\xfc45\xbe\xd4\xde]i<\x9ax\x1c\x86>\x05\xd8\xa6\xf8h\x9a[\xe2\x92\x16\x06\x1f?\xf5?\x8bk9fx\xe7\xba\x15^\xf9\x15-~C\xb1\xec\xcb#1\xeb\x8e\xb1\xedU\x86\xdc\xf8\xb3\xb0\xb9\x996\x1aD\xff,\"\xc2\xab\xbe\xf4-\xd2N\xab\xe6r3F\xa6\xe4l\x04\x99\xa2\x14B\xd8\xd0\r\xcbW\xf0\x13\xffu\x95\xed\xd0\xff\ai0\xde6u\xd3A\x17\xa4N\xb0\xe4\xf82\x93m\xa4NW\xe4:>6\xbdH\xd2\xa8[\xf4\xfdJ\x80N\x83CZ\xf5\xe2\x87\xd4\xe2s7\xb4\xad\xa1\x1b&!\x98\x86\"R\x06\x00\x00\x00\x00\x00\x00\x00\x95\xfe7q\xe9\xf4,\xa3\x0f\xb2\x1e\x12\xf0\xa3\xd8\xbc-\x85EJ\xf9\xfc\xc0#-\x8f\xd9\tD\x8b\x01\xf4lY=1\xea\x1c\x92de\xe3ZA\x99\a\x9c<\xa4\x11(\xb1|\xb0\x1f\xbf[R+\xe0\xfd\x02\x02*\xda7\xfe\xcc\x0e\xb6\xc8\xc8\x83\x18\x83\xb8Z\x11\x06\xf2\xf8g\x02\rR\x9f\x17\xa3P\xf2\r\xd3\xbfQ\xa9\x8c\xfd\xa7\f.68\xa4\x83\xfd?\x87\x94\v\xb4x\xb0|L\x11\x03\x94\xc0\t=\x17\x95P\x89\xf2\xca\x97\xbb\xfeu\x12L\x9b\x85\x96\xe0\b\xbf\n\x02\x8bS\x9c\xecyl\xec\x9b\xf5\x85\xeb\x80\xfe>\r&\x014\x01\xf4\xb7\x83\x9a\xfa*\xa6\x06\xb7Pk7N\xc2\xd9\xee\xd0\xb0M\x00\xab\xc3\t\fc\xd8dx\xd5\x1dU*s)\x12[\x14\xb1\xc0\xd7\x1a\xa0\x16\xa2z\x9e\x93 \xddeF>29\v\x02\xa2b\x13R\xef\xffA,\xb9.$\xfa\x9f\xde[\x80\xd1=\xce\x1b\xeb\xf6\xf4\xe3z\x1f\x9dz\xa3\xc0\xe2\xa2\xb1\xeeq\xf5\xec0\x8e\xf4\xfb\xd9\x87\xf03\xdb\xae|\x10&V5c\xa6\xce\xcd\x8a\xdf\xe1\x89\"\xea\xde\xe7\xa3\xbe\xe7\xff\xf9 \x11\xfdY\xc6\xa1\xe8\xda\v\\?\xcb\x87\bn\x9b\x01\x1f\xf8\xe8\x1eV\xfaC\xdf\xc3Vv\x9b\x1a\xfc\x14.c\x94\xc9=\xb0\x0f!d\b\x18*@m\x7f\xaal\x17G\xd6?\x81\x16P\x03\x10e\xc3\xcd\xb1B\xeb\x01B\\\x91A\xa1\x8an\xb4#\xadr\x1e\x81v\xa2\x0e6x\xca\x8b\xa6\xd8\x81\x10:\x0e(\xdd\xfc\xc9\xc6\xb4\xf0\'f:\xbd\xfe\x11\xf8\xc8W\x81s^\xd9W\xf1\x94\xaf\xc5\x8a\xb4f\x1b\x17E\xb23\x12\xb0\xeb\xef\x8c\xb24h\xd7}\x7f\x92Hgej\x957\xe2A'}, 0xffffffffffffffc0)
mq_unlink(&(0x7f0000000000)='\x00')
perf_event_open(&(0x7f00000004c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x4030582a, &(0x7f0000000040))

12:18:10 executing program 0:
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000002800128008000100677470"], 0x48}}, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmmsg$alg(r0, &(0x7f00000000c0), 0x492492492492627, 0x0)

12:18:10 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:18:10 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r0, &(0x7f000047b000)={0xa, 0x404e20, 0x0, @empty}, 0x1c)
listen(r0, 0x400000001ffffffd)
r1 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
r2 = accept4(r0, 0x0, 0x0, 0x0)
write$P9_RSTATFS(0xffffffffffffffff, 0x0, 0x0)
write$P9_RSTATFS(0xffffffffffffffff, 0x0, 0x0)
sendmmsg(r2, &(0x7f0000003d40)=[{{0x0, 0xffffffbf, 0x0, 0x0, 0x0, 0x0, 0xe}, 0x54}], 0x4000000000000d0, 0x0)

[  773.861291][   T33] audit: type=1800 audit(1595161090.889:89): pid=17129 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=15935 res=0
12:18:11 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:18:11 executing program 5:
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x67)
mmap(&(0x7f0000000000/0x2000)=nil, 0x30000, 0x0, 0x11, r0, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
mmap(&(0x7f0000000000/0x2000)=nil, 0x30000, 0x0, 0x11, r1, 0x0)

[  774.831265][T17144] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.0'.
[  774.883732][   T33] audit: type=1800 audit(1595161091.919:90): pid=17147 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16373 res=0
[  774.994319][T17151] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.0'.
[  775.370889][T17156] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.4'.
12:18:12 executing program 4:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080)='fuse\x00', 0x0, &(0x7f0000000300)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@max_read={'max_read'}}]}})

12:18:12 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x9, 0x20011, r0, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(r0, 0x2287, &(0x7f0000000080))

12:18:12 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:18:12 executing program 5:
syz_mount_image$msdos(0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x1031fe, 0x0)
writev(r0, &(0x7f0000000180)=[{&(0x7f0000000100)="12", 0x1}], 0x1)
open(0x0, 0x0, 0x0)
r1 = socket$unix(0x1, 0x2, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
sendfile(r0, r0, &(0x7f00000001c0), 0x8080fffffffe)

12:18:12 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bind$inet(r2, 0x0, 0x0)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:18:12 executing program 2:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$ETHTOOL_MSG_STRSET_GET(0xffffffffffffffff, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={0x0}}, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/netstat\x00')
preadv(r0, &(0x7f0000000500), 0x37d, 0x0)
sendmsg$NFNL_MSG_ACCT_GET(r0, &(0x7f0000001240)={0x0, 0x0, 0x0}, 0x0)
syz_open_procfs(0x0, 0x0)

[  775.918760][   T33] audit: type=1800 audit(1595161092.949:91): pid=17175 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="sda1" ino=16384 res=0
[  775.939980][   T33] audit: type=1800 audit(1595161092.949:92): pid=17173 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16372 res=0
12:18:13 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:18:13 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x9, 0x20011, r0, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(r0, 0x2287, &(0x7f0000000080))

12:18:13 executing program 2:
r0 = socket$inet6(0xa, 0x3, 0xff)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000001c0)={'gretap0\x00', &(0x7f0000000000)=@ethtool_gstrings={0x1b, 0x6}})

12:18:13 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bind$inet(r2, 0x0, 0x0)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

[  776.830802][   T33] audit: type=1800 audit(1595161093.859:93): pid=17196 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16373 res=0
12:18:13 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ip_tables_targets\x00')
readv(0xffffffffffffffff, &(0x7f0000002340)=[{&(0x7f00000001c0)=""/4096, 0x141b}], 0x1)
readv(r0, &(0x7f0000000580), 0x3c1)

12:18:14 executing program 5:
mknod(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bind$llc(r0, &(0x7f0000000040)={0x1a, 0x0, 0x1f}, 0x10)
sendmmsg(0xffffffffffffffff, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
recvfrom$llc(0xffffffffffffffff, &(0x7f0000000080)=""/25, 0x19, 0x40002102, 0x0, 0x0)

12:18:14 executing program 4:
perf_event_open(&(0x7f0000000500)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f00000004c0)=ANY=[])
open$dir(&(0x7f0000000380)='./file0\x00', 0x0, 0x0)

12:18:14 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:18:14 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x9, 0x20011, r0, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(r0, 0x2287, &(0x7f0000000080))

12:18:14 executing program 2:
r0 = socket$inet6(0xa, 0x3, 0xff)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000001c0)={'gretap0\x00', &(0x7f0000000000)=@ethtool_gstrings={0x1b, 0x8}})

12:18:14 executing program 5:
r0 = socket$inet6(0xa, 0x802, 0x0)
setsockopt$inet6_opts(r0, 0x29, 0x3b, 0x0, 0x18)

[  777.642129][   T33] audit: type=1800 audit(1595161094.669:94): pid=17218 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=15964 res=0
12:18:14 executing program 5:
mknod(0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bind$llc(r0, &(0x7f0000000040)={0x1a, 0x1, 0x1f}, 0x10)
connect$llc(r0, &(0x7f0000000180)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, 0x10)
sendmmsg(r0, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
recvfrom$llc(r0, &(0x7f0000000080)=""/25, 0x19, 0x40002102, &(0x7f00000000c0)={0x1a, 0x206, 0x7, 0x38, 0x4d, 0x79, @multicast}, 0x10)

12:18:14 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ip_tables_targets\x00')
readv(0xffffffffffffffff, &(0x7f0000002340)=[{&(0x7f00000001c0)=""/4096, 0x141b}], 0x1)
readv(r0, &(0x7f0000000580), 0x3c1)
setsockopt$inet6_tcp_TCP_QUEUE_SEQ(r0, 0x6, 0x15, &(0x7f0000000000), 0x4)

12:18:14 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200), 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:18:14 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x9, 0x20011, r0, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(r0, 0x2287, &(0x7f0000000080))

[  778.332342][   T33] audit: type=1800 audit(1595161095.359:95): pid=17237 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16367 res=0
12:18:15 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bind$inet(r2, 0x0, 0x0)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:18:15 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(r0, 0x2287, &(0x7f0000000080))

12:18:15 executing program 2:
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$int_in(r0, 0x5452, &(0x7f0000000040)=0x881)

12:18:16 executing program 4:
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f00000001c0)={0x20000021ad24, 0x2})

12:18:16 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200), 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:18:16 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(r0, 0x2287, &(0x7f0000000080))

12:18:16 executing program 2:
syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f00000004c0)=ANY=[])
chdir(&(0x7f0000000000)='./file1\x00')
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x1031fe, 0x0)
writev(r0, &(0x7f0000000180)=[{&(0x7f0000000100)="12c0ef4eda4be7758c4f", 0xa}], 0x1)
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fallocate(r1, 0x0, 0x0, 0x2000002)
sendfile(r0, r0, &(0x7f00000001c0), 0x8080fffffffe)

12:18:16 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000940)=ANY=[@ANYBLOB="4800000010000507010000010000000000000000", @ANYRES32=r3, @ANYBLOB="0300000000001000280012000c00010076657468"], 0x48}}, 0x0)
ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000080)={@initdev={0xfe, 0x88, [], 0x0, 0x0}, @dev, @private1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3})
r4 = socket$inet6(0xa, 0x80003, 0x3)
ioctl$sock_inet6_SIOCADDRT(r4, 0x890b, &(0x7f0000000140)={@empty, @rand_addr=' \x01\x00', @ipv4={[], [], @remote}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400003, r3})

[  779.492774][   T33] audit: type=1800 audit(1595161096.519:96): pid=17261 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=15779 res=0
[  779.566700][T17265] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'.
12:18:16 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

[  779.721814][T17265] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'.
12:18:16 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200), 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:18:16 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(r0, 0x2287, &(0x7f0000000080))

12:18:17 executing program 5:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={0x0, 0xffffffffffffffff, 0x0, 0x34f, &(0x7f0000000440)='nr0\x01\x00`\xa1\x9e\xf9\xd2\xc6s\xd9\xa1W\x1c\xb9\xe16\x9b\xcda\xef~Iy:\xe1\x87\x12\xee\xeb\x1d\xaav\x94\x97\x80\v\x7f\xbb\xd3[\x17\f\x10u\x1d9\xae\xb6`\xd8c\xe4\x9b\x8cO;=\xadH\x90+[-l\xfd\n\xbd7,c\xbc\xf5\xd7\a\xf3\xfdM.\x8dD<\x88\xbc\x0eV7\xdd\x82\xfc45\xbe\xd4\xde]i<\x9ax\x1c\x86>\x05\xd8\xa6\xf8h\x9a[\xe2\x92\x16\x06\x1f?\xf5?\x8bk9fx\xe7\xba\x15^\xf9\x15-~C\xb1\xec\xcb#1\xeb\x8e\xb1\xedU\x86\xdc\xf8\xb3\xb0\xb9\x996\x1aD\xff,\"\xc2\xab\xbe\xf4-\xd2N\xab\xe6r3F\xa6\xe4l\x04\x99\xa2\x14B\xd8\xd0\r\xcbW\xf0\x13\xffu\x95\xed\xd0\xff\ai0\xde6u\xd3A\x17\xa4N\xb0\xe4\xf82\x93m\xa4NW\xe4:>6\xbdH\xd2\xa8[\xf4\xfdJ\x80N\x83CZ\xf5\xe2\x87\xd4\xe2s7\xb4\xad\xa1\x1b&!\x98\x86\"R\x06\x00\x00\x00\x00\x00\x00\x00\x95\xfe7q\xe9\xf4,\xa3\x0f\xb2\x1e\x12\xf0\xa3\xd8\xbc-\x85EJ\xf9\xfc\xc0#-\x8f\xd9\tD\x8b\x01\xf4lY=1\xea\x1c\x92de\xe3ZA\x99\a\x9c<\xa4\x11(\xb1|\xb0\x1f\xbf[R+\xe0\xfd\x02\x02*\xda7\xfe\xcc\x0e\xb6\xc8\xc8\x83\x18\x83\xb8Z\x11\x06\xf2\xf8g\x02\rR\x9f\x17\xa3P\xf2\r\xd3\xbfQ\xa9\x8c\xfd\xa7\f.68\xa4\x83\xfd?\x87\x94\v\xb4x\xb0|L\x11\x03\x94\xc0\t=\x17\x95P\x89\xf2\xca\x97\xbb\xfeu\x12L\x9b\x85\x96\xe0\b\xbf\n\x02\x8bS\x9c\xecyl\xec\x9b\xf5\x85\xeb\x80\xfe>\r&\x014\x01\xf4\xb7\x83\x9a\xfa*\xa6\x06\xb7Pk7N\xc2\xd9\xee\xd0\xb0M\x00\xab\xc3\t\fc\xd8dx\xd5\x1dU*s)\x12[\x14\xb1\xc0\xd7\x1a\xa0\x16\xa2z\x9e\x93 \xddeF>29\v\x02\xa2b\x13R\xef\xffA,\xb9.$\xfa\x9f\xde[\x80\xd1=\xce\x1b\xeb\xf6\xf4\xe3z\x1f\x9dz\xa3\xc0\xe2\xa2\xb1\xeeq\xf5\xec0\x8e\xf4\xfb\xd9\x87\xf03\xdb\xae|\x10&V5c\xa6\xce\xcd\x8a\xdf\xe1\x89\"\xea\xde\xe7\xa3\xbe\xe7\xff\xf9 \x11\xfdY\xc6\xa1\xe8\xda\v\\?\xcb\x87\bn\x9b\x01\x1f\xf8\xe8\x1eV\xfaC\xdf\xc3Vv\x9b\x1a\xfc\x14.c\x94\xc9=\xb0\x0f!d\b\x18*@m\x7f\xaal\x17G\xd6?\x81\x16P\x03\x10e\xc3\xcd\xb1B\xeb\x01B\\\x91A\xa1\x8an\xb4#\xadr\x1e\x81v\xa2\x0e6x\xca\x8b\xa6\xd8\x81\x10:\x0e(\xdd\xfc\xc9\xc6\xb4\xf0\'f:\xbd\xfe\x11\xf8\xc8W\x81s^\xd9W\xf1\x94\xaf\xc5\x8a\xb4f\x1b\x17E\xb23\x12\xb0\xeb\xef\x8c\xb24h\xd7}\x7f\x92Hgej\x957\xe2A'}, 0xffffffffffffffc0)
perf_event_open(&(0x7f00000004c0)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x4030582a, &(0x7f0000000040))
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = socket$inet(0x2, 0xa, 0x0)
r3 = fcntl$dupfd(r1, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)

12:18:17 executing program 0:
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x9, 0x20011, 0xffffffffffffffff, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(0xffffffffffffffff, 0x2287, &(0x7f0000000080))

[  780.555105][   T33] audit: type=1800 audit(1595161097.589:97): pid=17293 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=15974 res=0
12:18:17 executing program 2:
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f00000001c0)={0x20a927, 0xd, 0x0, <r1=>0xffffffffffffff9c})
r2 = dup(r1)
poll(&(0x7f00000000c0)=[{r2}], 0x1, 0x1)

12:18:17 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

[  781.009424][   T33] audit: type=1800 audit(1595161098.039:98): pid=17305 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16018 res=0
12:18:18 executing program 4:
mknod(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
r0 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r1=>0x0}, &(0x7f0000cab000)=0xc)
lchown(&(0x7f0000000000)='./file0\x00', 0x0, r1)
chmod(&(0x7f0000000000)='./file0\x00', 0x0)

12:18:18 executing program 5:
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000000)={0x20a924, 0x12, 0x0, <r1=>0xffffffffffffffff})
dup3(r0, r1, 0x0)

12:18:18 executing program 0:
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x9, 0x20011, 0xffffffffffffffff, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(0xffffffffffffffff, 0x2287, &(0x7f0000000080))

12:18:18 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r0, &(0x7f000047b000)={0xa, 0x404e20, 0x0, @empty}, 0x1c)
listen(r0, 0x400000001ffffffd)
r1 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
r2 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg(r2, &(0x7f0000003d40)=[{{0x0, 0xffffffbf, 0x0, 0x0, 0x0, 0x0, 0xe}, 0x54}], 0x4000000000000d0, 0x0)

12:18:18 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:18:18 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

[  781.451053][   T33] audit: type=1800 audit(1595161098.479:99): pid=17319 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16067 res=0
12:18:18 executing program 0:
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x9, 0x20011, 0xffffffffffffffff, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(0xffffffffffffffff, 0x2287, &(0x7f0000000080))

12:18:18 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bind$llc(r0, &(0x7f0000000040)={0x1a, 0x1}, 0x10)

12:18:19 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:18:19 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r0, &(0x7f000047b000)={0xa, 0x404e20, 0x0, @empty}, 0x1c)
listen(r0, 0x400000001ffffffd)
r1 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
r2 = accept4(r0, 0x0, 0x0, 0x0)
getsockopt$netrom_NETROM_T1(0xffffffffffffffff, 0x103, 0x1, &(0x7f0000000080), &(0x7f00000001c0)=0x4)
sendmmsg(r2, &(0x7f0000003d40)=[{{0x0, 0xffffffbf, 0x0, 0x0, 0x0, 0x0, 0xe}, 0x54}], 0x4000000000000d0, 0x0)

12:18:19 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r0, &(0x7f000047b000)={0xa, 0x404e20, 0x0, @empty}, 0x1c)
listen(r0, 0x400000001ffffffd)
r1 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
r2 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg(r2, &(0x7f0000003d40)=[{{0x0, 0xffffffbf, 0x0, 0x0, 0x0, 0x0, 0xe}, 0x54}], 0x4000000000000d0, 0x0)

12:18:19 executing program 0:
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x9, 0x20011, r0, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(r0, 0x2287, &(0x7f0000000080))

[  782.366390][   T33] audit: type=1800 audit(1595161099.399:100): pid=17332 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16081 res=0
12:18:19 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r3 = dup(r2)
write$UHID_INPUT(r3, &(0x7f0000001440)={0x2400, {"a2e3ad21ed6b52f99cfbf4c087f719b4d026e7ff7fc6e553f836500e8b546a1b374b94370890e0878fdb1ac6e704e366b4956c409b3c2a5b67f3988f7ef31952a981ffe8d178708c523c921b1b5a4b0a169b5b9b36cd3b78130daa61d8e809ea882f5802b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179cef309f4cff7738596ecae8707ce065cd5b91cd0ae193973735b36d5b1b63e91c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c30900000000000000a85e89c46329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecd03aded6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801119242ca5b6bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9f6ff14ac488ec130fb3850a27afc953854a642c57519544ae15a7e454dea05918b4124351601611c8f11baa500a3621c56cea8d20ff911a0c41db6ebe8cac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6a62fa678ca14ffd9f9db2a7869d85864056526f889af43a60560a22f1fca567e65d5e880572286522449df466c632b3570243f989cce3803f465e41e610c20d80421d653a5120000008213b704c7fb082ff27590678ef9f19001800000bc7041d860420c5664ba7921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710acf2e31caa04b2e286bea37ce0d0d4aa202fef5952a5391fd5615d429a04a689b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2f05dd3318271a1f5f8528f227e79c1388dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eefc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44060bebc2420aed92fa9b6578b4779415d97b9a6d6d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2aed9e53803ed0ca4ae3a9737d214060005ea6f1783e287b3bee96e3a7288afe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f48fe4eae9ca1207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e67d1d7232f17696294378ce716dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf02b98a269b891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efedfd71af9444e197f47e866101496f42355bc7872c827467cfa5c4e72730d56bd068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f7927f889b813076038e79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee615f7084a607a7eceb6243378e0610060f02cca4051c2f001edb3d78fb4b55668dda93aec92a5de203717aa49c2d284acfabe262fccfcbb2b75a2183c4e15a7b6eb65ca8104e1b4da1fbb7dc7ab2fc043aead87c32ab875ee7c2e7b7019c902cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad948741b2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd73643de50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6f00cb11db4a5fade2a57c1023bf70cc77737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd75c2f998d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73c497579773767075428067e7f16f4dde374f8211fef42cb468e623daf60b3569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40426db6fe29068c0ca3d3414442e863a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd9432971215d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae44369ddb4581c55925d0f6f1ba471eba281f259152f85a654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a39973132f02768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaee5ee6cf1d0ab378dd4dd891e937c2ea5410e05130935e00785ec27e923911fab964c271556527697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9ddbfb96d6861aca47da73d6f3144345f48843dd014e5c5ad8fe995754bd9cf32fce1e7027132f2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afae5336651b1b9bd522d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a3766d5439020484f4113c4c859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee29165895ac4b008e595f437491d87abed02cefcd9db53d94d02dae17b118e5d6787463181f4b87c10772d2b13f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76d57227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f84fad6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b3110b932a4d02da711b757fe43c06d21e35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc238a081f758cefcce3fbf4625a7e7de40e42e07b34449e15eb0305626afb1dd179b8a065cc7348663a52190202c7af288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4908b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cb0b3e35cb80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c60edddab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb1575912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0db42c0456ec014508e5247d33ae6c962d35603ff8454c16f8342856935125102bb784ed714887071f3d998efdd9923c954ab6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40595af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee658e4cb5e930ed624806c43a006dc9336d07c2b8081c128ad2706f48261f7897084c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da3932ba5c04c24a560ad80a3ce654578376e599aff3565b1d531f30912b99e6619ebe93cc0b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea40686e730861e83d89d0fe662a46b7f71cd47744db86c50b704c971d90195c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e6491953264d2700c838fa2c7b34252600c9654e502dcea39cb6bc3eb69992e234b4ca7db2f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe36d7d3e5db21b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b010a3ad0a5dbed2881a9700af561ac8c7e36bb2fc4c40e9cf96f06817fb903729a7d528ed15b97c9ede7885d94ff1aa70826ad01a9b03c37b0969be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c148cd2f9c55f4901203a9a8a283e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0fc5a752f90", 0x597}}, 0x1006)

12:18:19 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:18:19 executing program 0:
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x9, 0x20011, r0, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(r0, 0x2287, &(0x7f0000000080))

12:18:19 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, 0x0)
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

[  783.097770][   T33] audit: type=1800 audit(1595161100.129:101): pid=17352 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16146 res=0
12:18:20 executing program 0:
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x9, 0x20011, r0, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(r0, 0x2287, &(0x7f0000000080))

12:18:20 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, 0x0)
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:18:20 executing program 5:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
perf_event_open(&(0x7f0000000280)={0x2, 0x70, 0xaf, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={0x0, 0xffffffffffffffff, 0x0, 0x34f, &(0x7f0000000440)='nr0\x01\x00`\xa1\x9e\xf9\xd2\xc6s\xd9\xa1W\x1c\xb9\xe16\x9b\xcda\xef~Iy:\xe1\x87\x12\xee\xeb\x1d\xaav\x94\x97\x80\v\x7f\xbb\xd3[\x17\f\x10u\x1d9\xae\xb6`\xd8c\xe4\x9b\x8cO;=\xadH\x90+[-l\xfd\n\xbd7,c\xbc\xf5\xd7\a\xf3\xfdM.\x8dD<\x88\xbc\x0eV7\xdd\x82\xfc45\xbe\xd4\xde]i<\x9ax\x1c\x86>\x05\xd8\xa6\xf8h\x9a[\xe2\x92\x16\x06\x1f?\xf5?\x8bk9fx\xe7\xba\x15^\xf9\x15-~C\xb1\xec\xcb#1\xeb\x8e\xb1\xedU\x86\xdc\xf8\xb3\xb0\xb9\x996\x1aD\xff,\"\xc2\xab\xbe\xf4-\xd2N\xab\xe6r3F\xa6\xe4l\x04\x99\xa2\x14B\xd8\xd0\r\xcbW\xf0\x13\xffu\x95\xed\xd0\xff\ai0\xde6u\xd3A\x17\xa4N\xb0\xe4\xf82\x93m\xa4NW\xe4:>6\xbdH\xd2\xa8[\xf4\xfdJ\x80N\x83CZ\xf5\xe2\x87\xd4\xe2s7\xb4\xad\xa1\x1b&!\x98\x86\"R\x06\x00\x00\x00\x00\x00\x00\x00\x95\xfe7q\xe9\xf4,\xa3\x0f\xb2\x1e\x12\xf0\xa3\xd8\xbc-\x85EJ\xf9\xfc\xc0#-\x8f\xd9\tD\x8b\x01\xf4lY=1\xea\x1c\x92de\xe3ZA\x99\a\x9c<\xa4\x11(\xb1|\xb0\x1f\xbf[R+\xe0\xfd\x02\x02*\xda7\xfe\xcc\x0e\xb6\xc8\xc8\x83\x18\x83\xb8Z\x11\x06\xf2\xf8g\x02\rR\x9f\x17\xa3P\xf2\r\xd3\xbfQ\xa9\x8c\xfd\xa7\f.68\xa4\x83\xfd?\x87\x94\v\xb4x\xb0|L\x11\x03\x94\xc0\t=\x17\x95P\x89\xf2\xca\x97\xbb\xfeu\x12L\x9b\x85\x96\xe0\b\xbf\n\x02\x8bS\x9c\xecyl\xec\x9b\xf5\x85\xeb\x80\xfe>\r&\x014\x01\xf4\xb7\x83\x9a\xfa*\xa6\x06\xb7Pk7N\xc2\xd9\xee\xd0\xb0M\x00\xab\xc3\t\fc\xd8dx\xd5\x1dU*s)\x12[\x14\xb1\xc0\xd7\x1a\xa0\x16\xa2z\x9e\x93 \xddeF>29\v\x02\xa2b\x13R\xef\xffA,\xb9.$\xfa\x9f\xde[\x80\xd1=\xce\x1b\xeb\xf6\xf4\xe3z\x1f\x9dz\xa3\xc0\xe2\xa2\xb1\xeeq\xf5\xec0\x8e\xf4\xfb\xd9\x87\xf03\xdb\xae|\x10&V5c\xa6\xce\xcd\x8a\xdf\xe1\x89\"\xea\xde\xe7\xa3\xbe\xe7\xff\xf9 \x11\xfdY\xc6\xa1\xe8\xda\v\\?\xcb\x87\bn\x9b\x01\x1f\xf8\xe8\x1eV\xfaC\xdf\xc3Vv\x9b\x1a\xfc\x14.c\x94\xc9=\xb0\x0f!d\b\x18*@m\x7f\xaal\x17G\xd6?\x81\x16P\x03\x10e\xc3\xcd\xb1B\xeb\x01B\\\x91A\xa1\x8an\xb4#\xadr\x1e\x81v\xa2\x0e6x\xca\x8b\xa6\xd8\x81\x10:\x0e(\xdd\xfc\xc9\xc6\xb4\xf0\'f:\xbd\xfe\x11\xf8\xc8W\x81s^\xd9W\xf1\x94\xaf\xc5\x8a\xb4f\x1b\x17E\xb23\x12\xb0\xeb\xef\x8c\xb24h\xd7}\x7f\x92Hgej\x957\xe2A'}, 0xffffffffffffffc0)
mq_unlink(&(0x7f0000000000)='\x00')
perf_event_open(&(0x7f00000004c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x4030582a, &(0x7f0000000040))

12:18:20 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040)='batadv\x00')
r2 = socket(0x10, 0x803, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
getsockname$packet(r2, &(0x7f0000000000)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x5)
sendmsg$BATADV_CMD_GET_DAT_CACHE(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)={0x1c, r1, 0x31905e13403123b7, 0x0, 0x0, {0x6}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r3}]}, 0x1c}}, 0x0)

12:18:20 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x20011, r0, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(r0, 0x2287, &(0x7f0000000080))

[  783.924487][   T33] audit: type=1800 audit(1595161100.959:102): pid=17365 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=15997 res=0
12:18:21 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(0xffffffffffffffff, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:18:21 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, 0x0)
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:18:21 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
sendmmsg$inet(r2, &(0x7f0000001540)=[{{&(0x7f0000000140)={0x2, 0x4e24, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000800)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @ip_tos_u8={{0x11}}], 0x38}}], 0x1, 0x0)

[  784.565013][   T33] audit: type=1800 audit(1595161101.599:103): pid=17382 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=15994 res=0
12:18:21 executing program 4:
mknod(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bind$llc(r0, &(0x7f0000000040)={0x1a, 0x1, 0x1f}, 0x10)
sendmmsg(r0, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
recvfrom$llc(r0, &(0x7f0000000080)=""/25, 0x19, 0x40002102, &(0x7f00000000c0)={0x1a, 0x206, 0x7, 0x38, 0x4d, 0x79, @multicast}, 0x10)

12:18:21 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x20011, r0, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(r0, 0x2287, &(0x7f0000000080))

12:18:21 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r0, &(0x7f000047b000)={0xa, 0x404e20, 0x0, @empty}, 0x1c)
listen(r0, 0x400000001ffffffd)
r1 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
r2 = accept4(r0, 0x0, 0x0, 0x0)
write$P9_RSTATFS(0xffffffffffffffff, 0x0, 0x0)
sendmmsg(r2, &(0x7f0000003d40)=[{{0x0, 0xffffffbf, 0x0, 0x0, 0x0, 0x0, 0xe}, 0x54}], 0x4000000000000d0, 0x0)

12:18:21 executing program 2:
r0 = socket$inet6(0xa, 0x3, 0x20000000021)
setsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000001000)={0x10000, 0x4, 0x100, 0x400}, 0x6)
r1 = socket(0x11, 0x80002, 0x0)
bind$packet(r1, &(0x7f0000000480)={0x11, 0x3, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
setsockopt(r1, 0x107, 0x5, &(0x7f0000001000), 0xc5)
connect$inet6(r0, &(0x7f00000003c0)={0xa, 0x0, 0x0, @local, 0x9}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000), 0xff77, 0x0, 0x0, 0x4d97)

12:18:21 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x0, 0x0, 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

[  784.975605][   T33] audit: type=1800 audit(1595161102.009:104): pid=17394 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16000 res=0
12:18:22 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(0xffffffffffffffff, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:18:22 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x0, 0x0, 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:18:22 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x20011, r0, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(r0, 0x2287, &(0x7f0000000080))

[  785.827583][   T33] audit: type=1800 audit(1595161102.859:105): pid=17409 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=15998 res=0
12:18:23 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ip_tables_targets\x00')
readv(0xffffffffffffffff, &(0x7f0000002340)=[{&(0x7f00000001c0)=""/4096, 0x141b}], 0x1)
readv(r0, &(0x7f0000000580), 0x3c1)
write(0xffffffffffffffff, 0x0, 0x0)

12:18:23 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x9, 0x10, r0, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(r0, 0x2287, &(0x7f0000000080))

12:18:23 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r0, &(0x7f000047b000)={0xa, 0x404e20, 0x0, @empty}, 0x1c)
listen(r0, 0x400000001ffffffd)
r1 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
r2 = accept4(r0, 0x0, 0x0, 0x0)
write$P9_RSTATFS(0xffffffffffffffff, 0x0, 0x0)
sendmmsg(r2, &(0x7f0000003d40)=[{{0x0, 0xffffffbf, 0x0, 0x0, 0x0, 0x0, 0xe}, 0x54}], 0x4000000000000d0, 0x0)

12:18:23 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x9, 0x10, r0, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(r0, 0x2287, &(0x7f0000000080))

12:18:25 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = socket$inet6(0xa, 0x3, 0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00')
sendfile(r2, r3, &(0x7f00000001c0)=0x202, 0x4000000000dc)

12:18:25 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(0xffffffffffffffff, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:18:25 executing program 2:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/seq\x00', 0x0)
ioctl$SNDRV_SEQ_IOCTL_CLIENT_ID(r0, 0x80045301, &(0x7f0000000200))

12:18:25 executing program 5:
syz_mount_image$xfs(&(0x7f00000000c0)='xfs\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x90, &(0x7f0000000000))

12:18:25 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x9, 0x10, r0, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(r0, 0x2287, &(0x7f0000000080))

12:18:25 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x0, 0x0, 0x0, &(0x7f0000002200)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

[  788.367530][T17447] XFS (loop5): Invalid superblock magic number
[  788.415466][   T33] audit: type=1800 audit(1595161105.449:106): pid=17453 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16028 res=0
12:18:25 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x9, 0x20011, 0xffffffffffffffff, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(r0, 0x2287, &(0x7f0000000080))

12:18:25 executing program 2:
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
syz_mount_image$tmpfs(&(0x7f00000001c0)='tmpfs\x00', &(0x7f0000000200)='./file0/file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)={[{@nr_inodes={'nr_inodes', 0x3d, [0x6b]}}]})

12:18:25 executing program 5:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f00000001c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x1000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@allow_other='allow_other'}]}})

12:18:25 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x9, 0x20011, 0xffffffffffffffff, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(r0, 0x2287, &(0x7f0000000080))

[  789.093676][   T33] audit: type=1800 audit(1595161106.129:107): pid=17479 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.5" name="file0" dev="sda1" ino=16258 res=0
12:18:26 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x9, 0x20011, 0xffffffffffffffff, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(r0, 0x2287, &(0x7f0000000080))

12:18:26 executing program 2:
syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f00000004c0)=ANY=[])
chdir(&(0x7f0000000000)='./file1\x00')
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x1031fe, 0x0)
writev(r0, &(0x7f0000000180)=[{&(0x7f0000000100)="12c0ef4eda4be7758c4f17", 0xb}], 0x1)
r1 = socket$unix(0x1, 0x2, 0x0)
r2 = fcntl$dupfd(0xffffffffffffffff, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x0)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fallocate(r3, 0x0, 0x0, 0x2000002)
sendfile(r0, r0, &(0x7f00000001c0), 0x8080fffffffe)

12:18:27 executing program 4:
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000027000)='./file0\x00', &(0x7f00000000c0)='sysfs\x00', 0x0, 0x0)
mkdir(&(0x7f0000000000)='./file0/file0\x00', 0x0)

12:18:27 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, 0x0, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:18:27 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, 0x0, 0x0)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:18:27 executing program 5:
r0 = socket(0x1000000010, 0x80002, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32=r2, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {}, {0xfff2}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x18, 0x2, [@TCA_U32_SEL={0x14}]}}]}, 0x44}}, 0x0)
sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

12:18:27 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x9, 0x20011, r0, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(0xffffffffffffffff, 0x2287, &(0x7f0000000080))

[  790.098112][   T33] audit: type=1800 audit(1595161107.129:108): pid=17499 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16290 res=0
12:18:27 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x9, 0x20011, r0, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(0xffffffffffffffff, 0x2287, &(0x7f0000000080))

12:18:27 executing program 2:
syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f00000004c0)=ANY=[])
chdir(&(0x7f0000000000)='./file1\x00')
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x1031fe, 0x0)
writev(r0, &(0x7f0000000180)=[{&(0x7f0000000100)="12c0ef4eda4be7758c4f17", 0xb}], 0x1)
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fallocate(r1, 0x0, 0x0, 0x2000002)
sendfile(r0, r0, &(0x7f00000001c0), 0x8080fffffffe)

12:18:27 executing program 5:
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r2=>0x0}, &(0x7f0000cab000)=0xc)
setuid(r2)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
r3 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r3, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b4560a117fffffff81004e220e227f000001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee00000000000000000200000000", 0x58}], 0x1)

12:18:27 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, 0x0, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:18:27 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x9, 0x20011, r0, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(0xffffffffffffffff, 0x2287, &(0x7f0000000080))

12:18:28 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000200)={0x0, <r1=>0x0}, &(0x7f00000000c0)=0xc)
semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f0000000140)={{0x2, r1, 0x0, 0xee00}})

12:18:28 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, 0x0, 0x0)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

[  791.190811][   T33] audit: type=1800 audit(1595161108.219:109): pid=17531 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16039 res=0
12:18:28 executing program 4:
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000140)='cpuset\x00', 0x0, 0x0)
utime(&(0x7f0000000080)='./file0\x00', 0x0)

12:18:28 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000980)={[], [{@defcontext={'defcontext', 0x3d, 'root'}}, {@defcontext={'defcontext', 0x3d, 'system_u'}}]})

12:18:28 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x9, 0x20011, r0, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(r0, 0x2287, 0x0)

12:18:28 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040)='batadv\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)={0x1c, r1, 0x31905e13403123b7, 0x0, 0x0, {0x6}, [@BATADV_ATTR_MESH_IFINDEX={0x5}]}, 0x1c}}, 0x0)

12:18:28 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, 0x0, &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:18:28 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x9, 0x20011, r0, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(r0, 0x2287, 0x0)

[  791.857659][T17550] SELinux:  duplicate or incompatible mount options
12:18:29 executing program 5:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
syz_mount_image$xfs(&(0x7f00000000c0)='xfs\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x90, &(0x7f0000000000))

12:18:29 executing program 2:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
pipe(&(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket$inet_udp(0x2, 0x2, 0x0)
close(r3)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)={0x14, 0x1, 0x4, 0x401}, 0x14}}, 0x0)
write$binfmt_misc(r2, &(0x7f0000000140)=ANY=[], 0x4240a2a0)
splice(r1, 0x0, r3, 0x0, 0x4ffe0, 0x0)

[  792.228562][   T33] audit: type=1800 audit(1595161109.259:110): pid=17563 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16057 res=0
[  792.274431][T17559] XFS (loop5): Invalid superblock magic number
12:18:29 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x9, 0x20011, r0, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(r0, 0x2287, 0x0)

12:18:29 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
getdents64(0xffffffffffffffff, &(0x7f00000001c0)=""/4088, 0xff8)
sendmsg$ETHTOOL_MSG_STRSET_GET(0xffffffffffffffff, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={0x0}}, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/netstat\x00')
preadv(r0, &(0x7f0000000500), 0x37d, 0x0)
remap_file_pages(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x8000, 0x0)
sendmsg$NFNL_MSG_ACCT_GET(0xffffffffffffffff, &(0x7f0000001240)={0x0, 0x0, 0x0}, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

12:18:29 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, 0x0, 0x0)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:18:29 executing program 0:
fadvise64(0xffffffffffffffff, 0x0, 0x0, 0x0)
r0 = openat$md(0xffffffffffffff9c, &(0x7f0000000000)='/dev/md0\x00', 0x0, 0x0)
ioctl$BLKPG(r0, 0x40140921, 0x0)

[  793.844402][T17595] new mount options do not match the existing superblock, will be ignored
[  793.928528][T17595] new mount options do not match the existing superblock, will be ignored
12:18:31 executing program 4:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$inet(0x2, 0xa, 0x0)
r2 = fcntl$dupfd(r0, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = add_key$user(&(0x7f0000000200)='user\x00', &(0x7f0000000440)={'syz'}, &(0x7f00000000c0), 0x14b, 0xfffffffffffffffd)
r4 = add_key(&(0x7f0000000200)='user\x00', &(0x7f0000000240)={'syz', 0x0}, &(0x7f0000000480)="00edc3bd6df1a54c333dcbd63391e75981f20e0cfb09a38a0f0dfb532a5ff488eae0be18ef0026d1bb", 0x29, 0xfffffffffffffffe)
keyctl$dh_compute(0x17, &(0x7f0000000100)={r4, r3, r4}, 0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)={'cbcmac(serpent)\x00'}})

12:18:31 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200), &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:18:31 executing program 0:
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000027000)='./file0\x00', &(0x7f00000000c0)='sysfs\x00', 0x0, 0x0)
open(&(0x7f0000000080)='./file0\x00', 0x1410c1, 0x0)

12:18:31 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000400)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = creat(&(0x7f0000000300)='./bus\x00', 0x0)
ioctl$FS_IOC_FIEMAP(r2, 0xc020660b, &(0x7f0000000040)={0x0, 0xfffffffffffffffa})

12:18:31 executing program 1:
pipe(&(0x7f00000002c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$inet_udp(0x2, 0x2, 0x0)
close(r1)
write$binfmt_misc(r0, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r1, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x19404, 0x0)

12:18:31 executing program 5:
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000002800128008000100677470001c0002"], 0x48}}, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmmsg$alg(r0, &(0x7f00000000c0), 0x492492492492627, 0x0)

[  794.128495][T17604] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'.
[  794.173761][   T33] audit: type=1800 audit(1595161111.209:111): pid=17607 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16376 res=0
[  794.247718][T17612] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'.
12:18:31 executing program 0:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d)
prctl$PR_GET_UNALIGN(0x5, &(0x7f0000000200))
bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast2}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x220007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
recvmmsg(r0, &(0x7f0000005540)=[{{0x0, 0x28000000, &(0x7f0000000240)=[{&(0x7f0000001340)=""/4067, 0x20002323}], 0x1, 0x0, 0x983a0000, 0x103}}], 0x1, 0x100, 0x0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600), 0x4)
sendto$inet(r0, &(0x7f00000012c0)="0c268a927f1f6588b967480a41ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95c25a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x11, 0x0, 0x170)

12:18:31 executing program 2:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
write(0xffffffffffffffff, &(0x7f0000000040)="0f", 0x1)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x3, 0x3, 0xf000, 0x2000, &(0x7f0000000000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfb]})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_SET_PIT2(0xffffffffffffffff, 0x4070aea0, &(0x7f00000004c0)={[{}, {0x0, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}]})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000380))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

12:18:31 executing program 5:
perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x406, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(0xffffffffffffffff, r0, 0x0, 0x4000000000010046)
getsockopt$inet_dccp_buf(0xffffffffffffffff, 0x21, 0x80, 0x0, &(0x7f00000001c0))
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f00000001c0)={0x20a927, 0xd, 0x0, <r2=>0xffffffffffffff9c})
r3 = dup(r2)
mmap(&(0x7f0000133000/0x2000)=nil, 0x2000, 0x0, 0x30051, r3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r4, 0xc0184900, 0x0)
r5 = dup(0xffffffffffffffff)
mmap(&(0x7f0000133000/0x2000)=nil, 0x2000, 0x0, 0x30051, r5, 0x0)
pkey_alloc(0x0, 0x0)

12:18:31 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200), &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

[  794.751806][T17621] x86/PAT: syz-executor.5:17621 map pfn RAM range req write-combining for [mem 0x0f100000-0x0f101fff], got write-back
12:18:32 executing program 2:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/seq\x00', 0x0)
ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r0, 0x40505331, &(0x7f0000000240)={{0x4b}})

12:18:32 executing program 5:
r0 = socket$inet6(0xa, 0x80003, 0x3)
ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000140)={@empty, @rand_addr=' \x01\x00', @ipv4={[], [], @remote}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400003})

[  795.014816][   T33] audit: type=1800 audit(1595161112.049:112): pid=17632 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=15953 res=0
12:18:32 executing program 4:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)={0x2, 0x3, 0x0, 0x0, 0xf, 0x0, 0x0, 0x0, [@sadb_key={0x1, 0x9}, @sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @remote}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0xb}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @loopback}}]}, 0x78}}, 0x0)

12:18:32 executing program 1:
pipe(&(0x7f00000002c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$inet_udp(0x2, 0x2, 0x0)
close(r1)
write$binfmt_misc(r0, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r1, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x19404, 0x0)

12:18:32 executing program 2:
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000027000)='./file0\x00', &(0x7f00000000c0)='sysfs\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240)={0x0, <r1=>0x0}, &(0x7f0000000280)=0x5)
setresuid(0x0, r1, 0x0)
chroot(&(0x7f0000000040)='./file0/bus\x00')

12:18:32 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r0=>0x0})
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200), &(0x7f0000000200)={0x0, r0+30000000}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:18:32 executing program 5:
socket$inet_udplite(0x2, 0x2, 0x88)
r0 = openat$md(0xffffffffffffff9c, &(0x7f0000000000)='/dev/md0\x00', 0x0, 0x0)
ioctl$BLKPG(r0, 0x40140921, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0})

12:18:32 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ip_tables_targets\x00')
readv(r0, &(0x7f0000002340)=[{&(0x7f00000001c0)=""/4096, 0x141b}], 0x1)
readv(r0, &(0x7f0000000580), 0x3c1)
write(0xffffffffffffffff, 0x0, 0x0)

[  795.975899][   T33] audit: type=1800 audit(1595161113.009:113): pid=17661 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16071 res=0
12:18:33 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080)='batadv\x00')
r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r3 = dup(r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f00000000c0)={'batadv0\x00', <r5=>0x0})
sendmsg$BATADV_CMD_TP_METER(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)={0x30, r1, 0x7, 0x0, 0x0, {0x2, 0x3}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r5}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @dev}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8}]}, 0x30}}, 0x0)

12:18:33 executing program 0:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
syz_mount_image$xfs(&(0x7f0000000000)='xfs\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)={[{@attr2='attr2'}, {@sunit={'sunit'}}, {@noquota='noquota'}]})

12:18:33 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240))
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, 0x0, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:18:33 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
clock_gettime(0xfffffffffffffff0, &(0x7f00002ed000))

[  796.766814][T17675] XFS (loop0): Invalid superblock magic number
12:18:33 executing program 1:
pipe(&(0x7f00000002c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$inet_udp(0x2, 0x2, 0x0)
close(r1)
write$binfmt_misc(r0, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r1, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x19404, 0x0)

12:18:33 executing program 2:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000000)="0f34", 0x2}], 0x1, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f00000193c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x10c, 0x10c, 0x2, [@enum={0x0, 0x8, 0x0, 0x6, 0x4, [{}, {}, {}, {}, {}, {}, {}, {}]}, @struct={0x0, 0x9, 0x0, 0x4, 0x0, 0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}]}, @union, @enum={0x0, 0x6, 0x0, 0x6, 0x4, [{}, {}, {}, {}, {}, {}]}]}}, 0x0, 0x126}, 0x20)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f00000003c0)=""/102400, 0xffffffffffffff3a}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x40)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

[  796.987826][   T33] audit: type=1800 audit(1595161114.019:114): pid=17694 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16079 res=0
12:18:34 executing program 4:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080)='fuse\x00', 0x0, &(0x7f0000000300)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@allow_other='allow_other'}]}})
lstat(&(0x7f00000000c0)='./file0\x00', 0x0)

12:18:34 executing program 0:
perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x406, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(0xffffffffffffffff, r0, 0x0, 0x4000000000010046)
getsockopt$inet_dccp_buf(0xffffffffffffffff, 0x21, 0x80, 0x0, &(0x7f00000001c0))
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f00000001c0)={0x20a927, 0xd, 0x0, <r2=>0xffffffffffffff9c})
r3 = dup(r2)
mmap(&(0x7f0000133000/0x2000)=nil, 0x2000, 0x0, 0x30051, r3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r4, 0xc0184900, &(0x7f00000001c0)={0x20a927, 0xd, 0x0, <r5=>0xffffffffffffff9c})
r6 = dup(r5)
mmap(&(0x7f0000133000/0x2000)=nil, 0x2000, 0x0, 0x30051, r6, 0x0)
pkey_alloc(0x0, 0x0)

12:18:34 executing program 5:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_buf(r0, 0x29, 0x30, &(0x7f0000000000)="a381077bc4792ecce563a898b7ee84b739d87c71ac739186b24507844eff6e4a5a048ccb76e2d59e711a511db74190df63259ce131eb4fd7168e9d20f604ae7cd717312c95b1f4ec2e5aa93366641cc49f2abdd7556301170b53d793a0bca4b563196a49453ce27dfcb22c535b0e8974709cb6b2647ed3c7b158b86c036f054c30717b683ed50cbbdd772e23c3de8b9f", 0x90)

12:18:34 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240))
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, 0x0, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

[  797.490818][   T33] audit: type=1800 audit(1595161114.519:115): pid=17711 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16088 res=0
[  797.507882][T17712] x86/PAT: syz-executor.0:17712 map pfn RAM range req write-combining for [mem 0x12200000-0x12201fff], got write-back
[  797.541196][T17712] x86/PAT: syz-executor.0:17712 map pfn RAM range req write-combining for [mem 0x12300000-0x12301fff], got write-back
[  797.580857][T17712] x86/PAT: syz-executor.0:17712 map pfn RAM range req write-combining for [mem 0x0f100000-0x0f101fff], got write-back
[  797.595782][T17714] fuse: Bad value for 'fd'
[  797.607785][T17717] x86/PAT: syz-executor.0:17717 map pfn RAM range req write-combining for [mem 0x12200000-0x12201fff], got write-back
12:18:34 executing program 5:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000001400)={0x14, 0xa, 0xa, 0x101}, 0x14}}, 0x0)

12:18:34 executing program 0:
mkdir(&(0x7f0000000080)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000027000)='./file0\x00', &(0x7f0000018ffa)='ramfs\x00', 0x2000050, 0x0)
r0 = creat(&(0x7f0000000180)='./file0/file0\x00', 0xbc9dc8fbd81cb4b1)
fcntl$lock(r0, 0x7, &(0x7f00000003c0)={0x1})
unshare(0x40600)
creat(&(0x7f0000000100)='./file0/file0\x00', 0x0)

12:18:34 executing program 5:
pipe(&(0x7f0000000280)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
r3 = socket$inet(0x2, 0x3, 0x33)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = dup(r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @empty}, 0x10)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x0, 0x40, &(0x7f00000005c0)=@filter={'filter\x00', 0xe, 0x4, 0x2c0, 0x98, 0xc8, 0xc8, 0x160, 0x1f0, 0x2b8, 0x228, 0x228, 0x228, 0x2b8, 0x4, 0x0, {[{{@uncond, 0x0, 0xa0, 0xc8, 0x0, {}, [@common=@addrtype={{0x30, 'addrtype\x00'}}]}, @common=@unspec=@STANDARD={0x28}}, {{@uncond, 0x0, 0x70, 0x98}, @REJECT={0x28, 'REJECT\x00'}}, {{@uncond, 0x0, 0xa0, 0xc8, 0x0, {}, [@common=@addrtype={{0x30, 'addrtype\x00'}, {0x1100}}]}, @REJECT={0x28, 'REJECT\x00'}}], {{[], 0x0, 0x70, 0x98}, {0x28}}}}, 0x320)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

12:18:35 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x19404, 0x0)

12:18:35 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240))
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, 0x0, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:18:35 executing program 0:
mkdir(&(0x7f0000000080)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000027000)='./file0\x00', &(0x7f0000018ffa)='ramfs\x00', 0x2000050, 0x0)
r0 = creat(&(0x7f0000000180)='./file0/file0\x00', 0xbc9dc8fbd81cb4b1)
fcntl$lock(r0, 0x7, &(0x7f00000003c0)={0x1})
unshare(0x40600)
creat(&(0x7f0000000100)='./file0/file0\x00', 0x0)

[  798.329171][   T33] audit: type=1800 audit(1595161115.359:116): pid=17732 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16089 res=0
[  798.448956][T17734] fuse: Bad value for 'fd'
12:18:35 executing program 0:
setfsgid(0x0)
timer_create(0x0, 0x0, 0x0)
clone(0x13102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x4)
socket$netlink(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

[  798.635925][   T33] audit: type=1800 audit(1595161115.659:117): pid=17738 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="sda1" ino=16080 res=0
12:18:37 executing program 2:
bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
ioctl$FS_IOC_GETFSLABEL(r0, 0x800452d2, &(0x7f0000000000))

12:18:37 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240))
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, 0x0, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:18:37 executing program 0:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
statx(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000480))

12:18:37 executing program 5:
r0 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast1, 0x3}, 0x1c)
sendmmsg(r0, &(0x7f0000000240)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="8b0241e76fba2d950b57198a1eb1b0d84f734b9153612245b1701cf37cc04425a3a69da6f4ea9290", 0x28}], 0x1}}], 0x1, 0x0)

12:18:37 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x19404, 0x0)

12:18:37 executing program 4:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080)='fuse\x00', 0x0, &(0x7f0000000300)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@allow_other='allow_other'}]}})
lstat(&(0x7f00000000c0)='./file0\x00', 0x0)

[  800.456459][   T33] audit: type=1800 audit(1595161117.489:118): pid=17761 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16103 res=0
[  800.538351][T17761] fuse: Bad value for 'fd'
[  800.591634][   T33] audit: type=1800 audit(1595161117.529:119): pid=17764 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.0" name="file0" dev="sda1" ino=16105 res=0
12:18:37 executing program 2:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r0, 0xfeffffff, 0xe, 0x0, &(0x7f0000000300)="24f9e9a6bae9516cc92c4a17c9a9", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)

12:18:37 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

12:18:37 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=@newlink={0x48, 0x10, 0x705, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x18, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_QUERY_INTVL={0xc}, @IFLA_BR_MCAST_STATS_ENABLED={0x5}]}}}]}, 0x48}}, 0x0)

[  800.784523][   T33] audit: type=1800 audit(1595161117.819:120): pid=17774 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="sda1" ino=16092 res=0
12:18:38 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240))
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, 0x0, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, 0x0, &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:18:38 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000340)=@newlink={0x3c, 0x10, 0x705, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @gretap={{0xb, 0x1, 'gretap\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GRE_REMOTE={0x8, 0x7, @empty}]}}}]}, 0x3c}}, 0x0)

12:18:38 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = gettid()
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=@newlink={0x4c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2007}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @geneve={{0xb, 0x1, 'geneve\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GENEVE_UDP_ZERO_CSUM6_TX={0x5}]}}}, @IFLA_NET_NS_PID={0x8, 0x13, r1}, @IFLA_TXQLEN={0x8, 0xd, 0x8}]}, 0x4c}}, 0x0)

[  801.267817][   T33] audit: type=1800 audit(1595161118.299:121): pid=17789 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16094 res=0
12:18:38 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x19404, 0x0)

12:18:38 executing program 0:
socket(0x40000000015, 0x805, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
pipe(&(0x7f0000000380))
socket$pppoe(0x18, 0x1, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000040)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f00000000c0)='batadv\x00')
socket(0x10, 0x3, 0x0)
socket$kcm(0x10, 0x2, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f0000000400)={'batadv0\x00', <r6=>0x0})
sendmsg$BATADV_CMD_GET_MESH(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000000000000000000000f10000008000300", @ANYRES32=r6], 0x1c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r3, @ANYBLOB="ff830a000000930e0a00", @ANYRES32=r4], 0x4}}, 0x0)
sendfile(r2, r1, 0x0, 0x100000002)

12:18:38 executing program 2:
write$binfmt_script(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[], 0x208e24b)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000140)='cgroup.controllers\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x10010, 0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
socket$pppoe(0x18, 0x1, 0x0)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000000)=0x200, 0x4)
bind$inet(r0, &(0x7f00000003c0)={0x2, 0x200000000004e23}, 0x10)
r1 = socket$inet(0x10, 0x0, 0x0)
sendmsg(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000340)="26a330aaabd2f9db510b774aaeb9cd66f034177b2f00a997f9b2d693940680f0a40c3cd2d19be2000cb8b5090b5f14e6757a3d7fbb19d5c0ac6906dd9d1be51aca441545c605b9a616879a819095e6ba5df5745c8926", 0x56}, {&(0x7f0000000400)="9afeb248655daa99214a4183ec90bf13cb4fdd616a01d23c80c96b9e5a4160e6856152f3a1a4ce020c31a400a211df8bb3f982ea367894a6741e7f33b2a0eb0c1752139ea9d7e048c444d9e0d26c230c39746292a706cc688edc6dc7f54af14f6b8603b5b13f9060c9826418204c438182cd7605df5b04ce6d3c91ab882850271cb10fa5a1965a4e13907d135756671b12c11dfc1697103ca7ce", 0x9a}], 0x2}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_inet6_udp_SIOCOUTQ(0xffffffffffffffff, 0x5411, 0x0)
setsockopt$inet_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, 0x0, 0x0)
bind$inet(r1, &(0x7f00000000c0)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x2a}}, 0x10)
socket$bt_cmtp(0x1f, 0x3, 0x5)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000300)='cdg\x00', 0x4)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f00000008c0)={0x2, 0x4e23, @local}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x0, 0x0, 0x0)
recvmsg(r0, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)
write$binfmt_elf64(r0, &(0x7f0000000280)=ANY=[@ANYRES32=r0], 0x100000530)

[  801.859441][   T33] audit: type=1804 audit(1595161118.889:122): pid=17808 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir684652002/syzkaller.VpSpW1/469/cgroup.controllers" dev="sda1" ino=16103 res=1
12:18:39 executing program 0:
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
r0 = socket$kcm(0x11, 0x3, 0x300)
r1 = socket$kcm(0x2, 0x1000000000000002, 0x0)
setsockopt$sock_attach_bpf(r1, 0x1, 0x3e, &(0x7f00000002c0)=r0, 0x4)
sendmsg$kcm(r1, &(0x7f0000003d00)={&(0x7f0000000380)=@in={0x2, 0x4e23, @multicast1}, 0x80, 0x0}, 0xfd00)
sendmsg$sock(r1, &(0x7f00000004c0)={0x0, 0x0, 0x0}, 0x0)

12:18:39 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

12:18:39 executing program 4:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080)='fuse\x00', 0x0, &(0x7f0000000300)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@allow_other='allow_other'}]}})
lstat(&(0x7f00000000c0)='./file0\x00', 0x0)

12:18:39 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240))
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, 0x0, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, 0x0, &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:18:39 executing program 2:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r0, 0x0, r2, 0x0, 0x7fd, 0x0)
ioctl$int_in(r2, 0x5760, 0x0)
close(r1)

12:18:39 executing program 0:
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x67)
mmap(&(0x7f0000000000/0x2000)=nil, 0x30000, 0x2, 0x11, r0, 0x0)
clock_gettime(0x0, &(0x7f0000003280))
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x28011, r1, 0x0)

12:18:39 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x0, 0x0)

[  803.015176][   T33] audit: type=1800 audit(1595161120.049:123): pid=17836 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16121 res=0
12:18:40 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

12:18:40 executing program 2:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000440)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r0, &(0x7f00000012c0)='\f', 0x1, 0x11, 0x0, 0x0)
ioctl$sock_inet_sctp_SIOCINQ(r0, 0x541b, &(0x7f0000000080))

12:18:40 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240))
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, 0x0, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, 0x0, &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:18:40 executing program 0:
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
ioctl$sock_inet_SIOCGIFDSTADDR(r0, 0x8917, 0x0)

[  803.553078][   T33] audit: type=1800 audit(1595161120.579:124): pid=17855 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16119 res=0
12:18:40 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, [], 0x1c}, 0xd}, 0x1c)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000040)=0xf, 0x4)
setsockopt$packet_tx_ring(r1, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
write$binfmt_script(r0, &(0x7f0000000040)=ANY=[], 0x6db6e559)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x28011, r2, 0x0)

12:18:40 executing program 0:
socket$packet(0x11, 0xa, 0x300)
r0 = socket(0x0, 0x8000000000000003, 0x0)
r1 = socket(0x10, 0x80002, 0x0)
sendmmsg$alg(r1, &(0x7f0000000140)=[{0x3, 0x0, &(0x7f0000000100), 0x2, &(0x7f0000000100)}], 0x4924924924926e4, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c)
gettid()
syz_genetlink_get_family_id$net_dm(&(0x7f0000000100)='NET_DM\x00')
syz_emit_ethernet(0x56, &(0x7f0000000000)={@local, @link_local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "4e96e1", 0x20, 0x2b, 0x0, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @local, {[@srh={0x0, 0x2, 0x2, 0x1, 0x0, 0x0, 0x0, [@mcast1]}], @echo_reply}}}}}, 0x0)

12:18:41 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x0, 0x0)

[  804.265639][   T33] audit: type=1800 audit(1595161121.299:125): pid=17868 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="sda1" ino=16122 res=0
12:18:42 executing program 4:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080)='fuse\x00', 0x0, &(0x7f0000000300)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@allow_other='allow_other'}]}})
lstat(&(0x7f00000000c0)='./file0\x00', 0x0)

12:18:42 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

12:18:42 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240))
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, 0x0, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:18:42 executing program 2:
syz_emit_ethernet(0x46, &(0x7f0000000080)={@local, @link_local, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, '\x00', 0x10, 0x2b, 0x0, @local, @local, {[@dstopts={0x87}], {0x0, 0x0, 0x8}}}}}}, 0x0)

12:18:42 executing program 1:
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133)
socket$inet(0x2, 0x3, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x0, 0x0)

12:18:42 executing program 0:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @loopback}})
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0)
write$tun(r0, &(0x7f0000000240)={@void, @val={0x3}, @mpls={[], @ipv4=@icmp={{0x5, 0x4, 0x0, 0x0, 0x1002, 0x0, 0x0, 0x0, 0x88, 0x0, @dev, @remote}, @timestamp={0xd, 0x0, 0x0, 0x0, 0x2}}}}, 0x100c)

[  805.812167][   T33] audit: type=1800 audit(1595161122.839:126): pid=17893 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16138 res=0
12:18:42 executing program 2:
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x67)
mmap(&(0x7f0000000000/0x2000)=nil, 0x30000, 0x2, 0x11, r0, 0x0)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, &(0x7f0000000000)=0x20)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000340)=@newlink={0x20}, 0x20}}, 0x0)

[  806.063748][   T33] audit: type=1800 audit(1595161123.089:127): pid=17903 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="sda1" ino=16142 res=0
12:18:43 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240))
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, 0x0, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

[  806.366780][   T33] audit: type=1800 audit(1595161123.399:128): pid=17910 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16148 res=0
12:18:43 executing program 2:
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0x68002100, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000000))
exit(0x0)

[  806.865000][T17922] IPVS: ftp: loaded support on port[0] = 21
12:18:44 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x4400, 0x0)
preadv(r2, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x1000}], 0x1, 0x0)

12:18:44 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240))
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, 0x0, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:18:44 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

[  807.348403][T17949] IPVS: ftp: loaded support on port[0] = 21
[  807.578339][   T33] audit: type=1800 audit(1595161124.609:129): pid=17970 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16094 res=0
[  807.690472][ T8498] tipc: TX() has been purged, node left!
12:18:44 executing program 1:
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x4400, 0x0)
preadv(r0, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x1000}], 0x1, 0x0)

12:18:44 executing program 0:
timer_create(0x0, &(0x7f0000000080)={0x0, 0x12}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000040)={0x0, 0x14}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
r1 = open(&(0x7f0000000280)='./file0\x00', 0x3fc, 0x0)
flock(r1, 0x1)
r2 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
flock(r2, 0x2)

12:18:44 executing program 4:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
lstat(&(0x7f00000000c0)='./file0\x00', 0x0)

12:18:44 executing program 2:
bpf$MAP_CREATE(0x0, &(0x7f0000000340)={0x1, 0x8, 0x209e20, 0x8000000001}, 0x2c)
perf_event_open(&(0x7f0000000200)={0x1, 0x70, 0x2, 0x0, 0x0, 0x0, 0x0, 0xce7c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffbfffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x2, &(0x7f0000003000)={0x3, 0x0, 0x790000, 0x0, 0x743000, 0x0, 0x0, [0x0, 0xeca7020000000000, 0x0, 0x0, 0x4000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600]}, 0x2c)

12:18:44 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

12:18:45 executing program 1:
chdir(0x0)
mkdir(&(0x7f0000000240)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mknod$loop(&(0x7f0000000180)='./bus/file1\x00', 0x0, 0x1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000400)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0'])
chown(&(0x7f0000000600)='./bus/file1\x00', 0x0, 0x0)

12:18:45 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

12:18:45 executing program 1:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
sendto(r0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=@in={0x10, 0x2}, 0x10)
r1 = dup(r0)
bind(r1, &(0x7f0000000080)=@in={0x10, 0x2}, 0x10)

12:18:45 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240))
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, 0x0, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, 0x0)

12:18:45 executing program 2:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
sendmsg$inet_sctp(r0, &(0x7f00000003c0)={&(0x7f0000000080)=@in6={0x1c, 0x1c, 0x2}, 0x1c, 0x0, 0x0, &(0x7f0000000140)=[@sndinfo={0x1c, 0x84, 0x4, {0x0, 0x20}}], 0x1c}, 0x0)

[  808.815238][   T33] audit: type=1800 audit(1595161125.849:130): pid=18011 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16143 res=0
12:18:45 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_NESTED_STATE(r2, 0x4080aebf, &(0x7f0000001300)={{0x0, 0x0, 0x20001380, {0xffffffffffffffff, 0x0, 0x8}}, "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", "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"})

12:18:46 executing program 1:
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/vhost-net\x00', 0x2, 0x0)
preadv(r0, &(0x7f0000001940)=[{&(0x7f0000000700)=""/4096, 0x1000}], 0x1, 0x0)

12:18:46 executing program 2:
r0 = syz_open_dev$evdev(&(0x7f0000000040)='/dev/input/event#\x00', 0x0, 0x0)
r1 = eventfd2(0x0, 0x0)
dup2(r1, r0)

[  809.803979][   T33] audit: type=1800 audit(1595161126.839:131): pid=18036 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="sda1" ino=15829 res=0
12:18:46 executing program 4:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
lstat(&(0x7f00000000c0)='./file0\x00', 0x0)

12:18:46 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
ioctl$sock_inet_SIOCSIFADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

12:18:46 executing program 0:
timer_create(0x0, &(0x7f0000000080)={0x0, 0x12}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000040)={0x0, 0x14}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
r1 = open(&(0x7f0000000280)='./file0\x00', 0x3fc, 0x0)
flock(r1, 0x1)
perf_event_open(&(0x7f0000001340)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
flock(r2, 0x2)

12:18:46 executing program 1:
timer_create(0x0, &(0x7f0000000080)={0x0, 0x12}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000040)={0x0, 0x14}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
r1 = open(&(0x7f0000000280)='./file0\x00', 0x3fc, 0x0)
flock(r1, 0x1)
perf_event_open(&(0x7f0000001340)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
flock(r2, 0x2)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
dup2(r3, r2)

12:18:46 executing program 2:
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
preadv(r1, &(0x7f0000000380)=[{&(0x7f0000000100)=""/93, 0x5d}], 0x1, 0x0)

12:18:46 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240))
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, 0x0, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, 0x0)

[  810.007529][   T33] audit: type=1800 audit(1595161127.039:132): pid=18043 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=15970 res=0
12:18:47 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
ioctl$sock_inet_SIOCSIFADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

12:18:47 executing program 2:
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/timer\x00', 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0xc0f85403, &(0x7f0000000180))

12:18:47 executing program 2:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
bind$inet(r0, &(0x7f00000001c0)={0x10, 0x2}, 0x10)

12:18:47 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
ioctl$sock_inet_SIOCSIFADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

[  810.783325][ T8498] tipc: TX() has been purged, node left!
12:18:47 executing program 1:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
sendto(r0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=@in={0x10, 0x2}, 0x10)
getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x23, &(0x7f0000000180), &(0x7f0000000240)=0x94)

12:18:48 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240))
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, 0x0, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, 0x0)

[  811.235231][   T33] audit: type=1800 audit(1595161128.269:133): pid=18078 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=15842 res=0
[  811.434507][   T33] audit: type=1800 audit(1595161128.469:134): pid=18082 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="sda1" ino=15970 res=0
12:18:48 executing program 4:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
lstat(&(0x7f00000000c0)='./file0\x00', 0x0)

12:18:48 executing program 0:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
r1 = dup(r0)
bind$unix(r1, &(0x7f0000000000)=@abs={0x8}, 0x8)

12:18:48 executing program 2:
syz_open_dev$vcsa(&(0x7f0000000080)='/dev/vcsa#\x00', 0x2, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00')
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000005240)=[{{0x0, 0x0, &(0x7f0000002440)=[{0x0}], 0x1}}], 0x1, 0x0, 0x0)
preadv(r0, &(0x7f00000017c0), 0x3da, 0x0)

12:18:48 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

12:18:48 executing program 1:
socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0))
pipe(&(0x7f0000000100))
socket(0x10, 0x803, 0x0)
socket$inet(0x2, 0x80001, 0x0)
socket(0x11, 0xa, 0x0)
socket(0x10, 0x2, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$ax25(0x3, 0x5, 0x0)
pipe(&(0x7f0000000100))
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x1, 0x803, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=@newlink={0x50, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x203}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @vlan={{0x9, 0x1, 'vlan\x00'}, {0x18, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6, 0x1, 0x4}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0xe, 0xa}}]}}}, @IFLA_LINK={0x8, 0x5, r2}]}, 0x50}}, 0x0)

12:18:48 executing program 1:
perf_event_open(&(0x7f00000005c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
setsockopt$inet6_tcp_int(r0, 0x6, 0x0, 0x0, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r1, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x67)
mmap(&(0x7f0000000000/0x2000)=nil, 0x30000, 0x2, 0x11, r1, 0x0)
ioctl$EXT4_IOC_SETFLAGS(r1, 0x40046602, &(0x7f0000000000)=0x20)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='dctcp\x00', 0x6)
sendmsg$NFT_MSG_GETOBJ(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)={0x14, 0x13, 0xa, 0x3}, 0x14}, 0x1, 0x0, 0x0, 0x4000008}, 0x24040001)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @rand_addr, 0x218}, 0x1c)

12:18:48 executing program 2:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="300000001000010800000000000000", @ANYRES32=0x0], 0x30}}, 0x0)
close(r0)

12:18:48 executing program 0:
perf_event_open(&(0x7f0000000280)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f00000000c0)=0x4, 0x4)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000300)='yeah\x00', 0x5)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x983a}, 0x1c)

12:18:49 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

[  812.158738][T18105] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.2'.
12:18:49 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240))
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, 0x0, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:18:49 executing program 2:
r0 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f0000000700)={'macsec0\x00', @dev})
r1 = socket$kcm(0x2b, 0x1, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
socket$kcm(0x2, 0x3, 0x2)
ioctl$TUNSETLINK(0xffffffffffffffff, 0x400454cd, 0x0)

[  812.415859][   T33] audit: type=1800 audit(1595161129.439:135): pid=18115 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16170 res=0
[  812.473490][T18117] fuse: Bad value for 'fd'
12:18:49 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

[  812.835436][T18121] device veth1_macvtap left promiscuous mode
[  813.591428][   T33] audit: type=1800 audit(1595161130.619:136): pid=18132 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="sda1" ino=15842 res=0
12:18:50 executing program 4:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080)='fuse\x00', 0x0, &(0x7f0000000300)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@allow_other='allow_other'}]}})
lstat(&(0x7f00000000c0)='./file0\x00', 0x0)

12:18:50 executing program 1:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x9, 0x1, 0x80, 0x400}, 0x3c)
r1 = socket$kcm(0x2b, 0x1, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000c80)={0x0, 0x0, &(0x7f0000001d00)=[{&(0x7f00000009c0)="5c4a27f9ee7728bf99080a79628027c67155e96159465ecff1fb6026f852cfe7901ee5130e67a443758fec5ada7c65e88afd1e01c09a0590077b6d15551ba36933ac0ba609ca3b13e18c1d09bc4da75fd95528ecbf7170dffd9e57553fc6cbaa91e16161711b3a98a05ce941dbb3b5b5b611aa05835b982e431585012c1162f0767bd4efe69744ce6f8c82278fbdfcc42c2c11e74ac1a006a91f8e", 0x9b}, {&(0x7f0000000a80)="5561354c34f62d5ea14ba46f6dd651dab40a06ba91372dbb14ae693d11cc4e2b3487b6d41a00496dc070027bb23718fb50136b01eafb008333fd68d625bc98dbd021c5ebaf358b7f77a26dbea9f2d4d4fa55a73ce0c1c662a47f9b368120f922d8286dbc8796f1ab5e2e3801dd94eedf8dbb1635dd2b18260b79f92919e392dc08d2c5e9fa55fbe5aaf17c385dae41a13c3e61371c93b174d87788cd6ef0f25e06d491b40f5cdb11a3a791b0aa765fb3b832537f5eb72f3983fb5f5ae17b0ebcf1ce690122fa9aa6412d", 0xca}, {&(0x7f0000000bc0)="5fc9b6158680d12eb88c12a8cce8ee6608797d0aaaf29e83b161d3737d98d7c664a73ca88f4933e4709c32e4aa988746d77f0c265ab3f1f81e2f5c120cdbbf0d3da589c2c0aae8219a79d2bb8f415cb41c3ef07ac1917c667ff516024ef7bae5dca42a79fcae6718f65ad3fd85e1ebd0", 0x70}], 0x3}, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000a40), &(0x7f0000000280), 0x400, r0}, 0x38)

12:18:50 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x4, 0x4)
socket$inet_udplite(0x2, 0x2, 0x88)
r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000100)='/dev/null\x00', 0x8801, 0x0)
r2 = socket$nl_generic(0xa, 0x5, 0x84)
ioctl$sock_SIOCETHTOOL(r2, 0x89f1, 0x0)
syz_genetlink_get_family_id$ipvs(0x0)
sendmsg$IPVS_CMD_NEW_DAEMON(r2, 0x0, 0x1)
sendmsg$IPVS_CMD_SET_SERVICE(r1, 0x0, 0x0)
sendmsg$IPVS_CMD_GET_SERVICE(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="a16e02", @ANYRES16], 0x3c}, 0x1, 0x0, 0x0, 0x4004001}, 0x24000000)
sendmsg$IPVS_CMD_GET_SERVICE(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000), 0xc, &(0x7f00000000c0)={&(0x7f0000000640)={0x38, 0x0, 0x1, 0x70bd27, 0x0, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8}, @IPVS_CMD_ATTR_DEST={0xc, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_FLAGS={0x6}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x40844}, 0x0)
sendmsg$IPVS_CMD_GET_CONFIG(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, 0x0}, 0x0)
io_setup(0x0, &(0x7f0000000100)=<r3=>0x0)
io_submit(r3, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='lp\x00', 0x3)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x6}, 0x1c)

12:18:50 executing program 5:
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(0xffffffffffffffff, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

12:18:50 executing program 2:
syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f00000004c0)=ANY=[])
chdir(&(0x7f0000000000)='./file1\x00')
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x1031fe, 0x0)
writev(r0, &(0x7f0000000180)=[{&(0x7f0000000100)="12", 0x1}], 0x1)
r1 = open(&(0x7f0000000400)='./bus\x00', 0x14103e, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
r3 = fcntl$dupfd(r2, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, r1, 0x0)
r4 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fallocate(r4, 0x0, 0x0, 0x2000002)
sendfile(r0, r0, &(0x7f00000001c0), 0x8080fffffffe)

12:18:50 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240))
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, 0x0, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

[  813.780797][   T33] audit: type=1800 audit(1595161130.809:137): pid=18136 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16172 res=0
[  813.890761][T18145] fuse: Bad value for 'fd'
12:18:51 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240))
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, 0x0, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:18:51 executing program 1:
r0 = getpgid(0x0)
perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000600)}}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$loop(&(0x7f0000000280)='/dev/loop#\x00', 0xfff, 0x6182)
r2 = memfd_create(&(0x7f0000000180)='\x14\xccmPn\x9be\x13\x1d\xe5\x1c\x95\x14tc\x93\xe6\xd1\xa47\xf9\vc8tU\x90\x13\xf3\xfc9\x9bP\xe5\x12\x85\x9c\x86\x87\xe3\x88\xdb\xb5\xd5\xe0q\xfb\r?\x1c\xf5$Q\xdbKo\xe0\x0f\xf1W\xc9w\x10\xa9\xdeW^\x9e\x8eV\xcf8\x00\x02\xb6a\f\xe1\x8a\xeaw\xfe\x8b\xc2\nh}\xc3|p\'\xf0\x8eM-?\xccG_\x16\xa4\x1bQn\xd0\x06\xc7FIR\xd3\x88\f/@*\xe6\x8a\x13)H\xd5\xe7\xa4\xaf\xc5\xe6\xb2p$\xb9\xce\x98\xedY\x8a\xb2t\xaan|\x8a\xa9\x9dC*\xc5\r\x8e\xbb\x1e\xf6:i\xa5r`\xa4ij\x1b\x9a\xfe\x94\x95\xec26!\xe82', 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805)
ioctl$LOOP_CHANGE_FD(r1, 0x4c00, r2)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write$binfmt_misc(r3, &(0x7f0000000140)=ANY=[], 0x1000000c8)
sendfile(r1, r1, 0x0, 0x24000000)

12:18:51 executing program 5:
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(0xffffffffffffffff, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

[  814.794228][   T33] audit: type=1800 audit(1595161131.829:138): pid=18159 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=16172 res=0
12:18:51 executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000040)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="6400000030000100000000000000000000000000500001004c000100200001"], 0x64}}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = dup3(r3, r4, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
sendfile(r2, r1, 0x0, 0x100000001)

[  814.866542][T18160] fuse: Bad value for 'fd'
12:18:51 executing program 2:
syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f00000004c0)=ANY=[])
chdir(&(0x7f0000000000)='./file1\x00')
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x1031fe, 0x0)
writev(r0, &(0x7f0000000180)=[{&(0x7f0000000100)="12", 0x1}], 0x1)
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
fallocate(r1, 0x0, 0x0, 0x2000002)
sendfile(r0, r0, &(0x7f00000001c0), 0x8080fffffffe)

12:18:52 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240))
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, 0x0, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode'}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

[  815.190516][   T33] audit: type=1804 audit(1595161132.219:139): pid=18174 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir684652002/syzkaller.VpSpW1/481/cgroup.controllers" dev="sda1" ino=16185 res=1
[  815.549796][   T33] audit: type=1800 audit(1595161132.579:140): pid=18183 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=15793 res=0
[  815.659223][T18187] fuse: Invalid rootmode
[  815.749492][   T33] audit: type=1800 audit(1595161132.779:141): pid=18188 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="sda1" ino=15831 res=0
[  815.777006][T18188] fuse: Bad value for 'fd'
12:18:52 executing program 4:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080)='fuse\x00', 0x0, &(0x7f0000000300)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@allow_other='allow_other'}]}})
lstat(&(0x7f00000000c0)='./file0\x00', 0x0)

12:18:52 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x3)

12:18:52 executing program 0:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000140)='/dev/urandom\x00', 0x0, 0x0)
ioctl$RNDADDENTROPY(r2, 0x40085203, &(0x7f0000000340)={0x1000000})

12:18:52 executing program 5:
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(0xffffffffffffffff, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

12:18:53 executing program 0:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x5, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3ff80000000000}, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(0xffffffffffffffff, r0, 0x0, 0x8)
r2 = socket$inet6(0xa, 0x802, 0x0)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmmsg(r2, &(0x7f0000002cc0), 0x1a3, 0x0)
perf_event_open(&(0x7f0000000700)={0x0, 0x70, 0xa2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x1, @perf_bp={0x0}, 0x1, 0xfffffffffffffffe, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0x0, r1, 0x0)
perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_read_part_table(0x0, 0x0, 0x0)

12:18:53 executing program 2:
r0 = memfd_create(&(0x7f0000000140)='\x00\x00\x00\x9d', 0x0)
write$binfmt_elf32(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="7f454c466000002ed8e4f96765ce27b90300060000000000000000b738000000570035f4c38422a3bc8220"], 0xd8)
execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100)

12:18:53 executing program 1:
syz_open_dev$vcsa(&(0x7f0000000080)='/dev/vcsa#\x00', 0x2, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00')
recvmmsg(0xffffffffffffffff, &(0x7f0000005240)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000002480)=""/32, 0x20}, 0x101}], 0x1, 0x0, 0x0)
preadv(r0, &(0x7f00000017c0), 0x3da, 0x0)

[  816.388462][   T33] audit: type=1800 audit(1595161133.419:142): pid=18194 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="sda1" ino=15890 res=0
12:18:53 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240))
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, 0x0, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode'}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:18:53 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

[  816.501845][T18198] fuse: Bad value for 'fd'
12:18:53 executing program 0:
socket$nl_rdma(0x10, 0x3, 0x14)
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/route\x00')
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000005240)=[{{0x0, 0x0, &(0x7f0000002440)=[{0x0}], 0x1}}], 0x1, 0x0, 0x0)
preadv(r0, &(0x7f00000017c0), 0x3da, 0x0)

[  816.740909][   T33] audit: type=1800 audit(1595161133.769:143): pid=18214 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=15831 res=0
[  816.842398][T18219] fuse: Invalid rootmode
12:18:54 executing program 2:
r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x42, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x42, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
dup2(r0, r1)

12:18:54 executing program 1:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
fcntl$lock(r1, 0x26, &(0x7f0000000180)={0x1})
dup2(r0, r1)

12:18:54 executing program 4:
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080)='fuse\x00', 0x0, &(0x7f0000000300)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@allow_other='allow_other'}]}})
lstat(&(0x7f00000000c0)='./file0\x00', 0x0)

12:18:54 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

12:18:54 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x3d, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000140))
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
mprotect(&(0x7f000001c000/0x2000)=nil, 0x2000, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, "3abc50afd968c13400"})
ioctl$TCSETA(r0, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0xe84b})
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000002c0))
ioctl$TIOCSSOFTCAR(r0, 0x541a, 0x0)
r1 = syz_open_pts(r0, 0x0)
dup3(r1, r0, 0x0)
read(r0, &(0x7f00000000c0)=""/19, 0xfffffd28)

12:18:54 executing program 1:
perf_event_open(&(0x7f00000003c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c)
setsockopt$sock_int(r0, 0x1, 0x28, &(0x7f0000000040)=0x1, 0x4)
recvmmsg(r0, &(0x7f0000008880), 0x45b, 0x44000102, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
fcntl$dupfd(r1, 0x0, r1)

12:18:54 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

12:18:54 executing program 3:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000240))
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000002200)={0x1ff}, 0x0, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode'}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})

12:18:54 executing program 0:
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
setsockopt$packet_int(r0, 0x107, 0x11, &(0x7f0000000040), 0x4)

12:18:54 executing program 2:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x0, 0x0)
ioctl$RTC_WKALM_RD(r0, 0x80287010, &(0x7f0000000040))

[  817.936091][   T33] audit: type=1800 audit(1595161134.969:144): pid=18253 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=15831 res=0
[  818.004172][T18257] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based  firewall rule not found. Use the iptables CT target to attach helpers instead.
[  818.043431][T18259] fuse: Invalid rootmode
12:18:55 executing program 2:
r0 = syz_open_dev$dri(&(0x7f00000001c0)='/dev/dri/card#\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_RES_CTX(r0, 0xc0106426, &(0x7f0000000080)={0x1, &(0x7f0000000000)=[{}]})

12:18:55 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

12:18:55 executing program 0:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x42, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r0, 0x208200)
r1 = open(&(0x7f0000000400)='./bus\x00', 0x14103e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, r1, 0x0)
read(r1, &(0x7f0000000180)=""/19, 0xfffffe47)

12:18:55 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
dup(r0)
syz_open_procfs(0x0, &(0x7f00000004c0)='net/raw\x00')
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
dup(r1)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000))
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x8946, &(0x7f00000025c0)='lo\x00\x96o\xd6Q\xb1Y\xa9\xc8J,`\xd2\x98\x00\x00\x00 ')

12:18:57 executing program 4:
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080)='fuse\x00', 0x0, &(0x7f0000000300)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@allow_other='allow_other'}]}})
lstat(&(0x7f00000000c0)='./file0\x00', 0x0)

12:18:57 executing program 2:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x3, 0x6)
r3 = dup(r2)
ioctl$sock_bt_hidp_HIDPCONNADD(r3, 0x400448c8, 0x0)

12:18:57 executing program 3:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x8)
r0 = socket$inet6(0xa, 0x0, 0x0)
connect$inet6(r0, 0x0, 0x0)
sendmmsg(r0, &(0x7f0000002cc0), 0x1a3, 0x0)
perf_event_open(0x0, 0x0, 0x2, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a6ffffff0a000000ff45ac00000000006300e931190000000000000680ffffffa5000000e100e2ff877700720030070081ffffff00000000008000da55aa", 0x40, 0x1c0}])

12:18:57 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

12:18:57 executing program 1:
r0 = socket$inet(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x1004e20, @local}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x4008800, &(0x7f0000000200)={0x2, 0x4e20}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

12:18:57 executing program 0:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000100)='ramfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000280)='./file0\x00')
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x42, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ftruncate(r0, 0x208200)
r1 = open(&(0x7f0000000400)='./bus\x00', 0x14103e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, r1, 0x0)
read(r1, &(0x7f0000000180)=""/19, 0xfffffe47)

12:18:57 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
fcntl$lock(r1, 0x26, &(0x7f0000000180)={0x1})
r2 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
fcntl$lock(r2, 0x26, &(0x7f0000000180)={0x1})
dup2(r0, r1)

12:18:57 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x3d, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000140))
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, "3abc50afd968c13400"})
r1 = syz_open_pts(r0, 0x0)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
r3 = dup(r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
dup3(r1, r0, 0x0)
read(r0, &(0x7f00000000c0)=""/19, 0xfffffd28)

12:18:58 executing program 2:
socket$inet6(0xa, 0x2, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x0, 0x31, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x3)
socket$inet6(0xa, 0x0, 0x0)

12:18:58 executing program 3:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
pipe(&(0x7f0000000240)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
close(r4)
socket(0x10, 0x803, 0x0)
sendmsg(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000140)="5500000018007f5f00fe01b2a4a280930206000100000001", 0x18}], 0x1}, 0x0)
write$binfmt_misc(r3, &(0x7f0000000140)=ANY=[], 0x4240a2a0)
splice(r2, 0x0, r4, 0x0, 0x4ffe2, 0x0)

12:18:58 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

[  821.748763][T18329] netlink: 57 bytes leftover after parsing attributes in process `syz-executor.3'.
12:18:59 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x3, 0x6)
r1 = dup(r0)
ioctl$sock_bt_hidp_HIDPCONNADD(r1, 0x400448c8, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'syz0\x00'})

[  823.906143][   T33] audit: type=1800 audit(1595161140.939:145): pid=18346 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.0" name="bus" dev="ramfs" ino=58638 res=0
12:19:01 executing program 4:
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080)='fuse\x00', 0x0, &(0x7f0000000300)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@allow_other='allow_other'}]}})
lstat(&(0x7f00000000c0)='./file0\x00', 0x0)

12:19:01 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

12:19:01 executing program 1:

12:19:01 executing program 2:

12:19:01 executing program 3:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x5, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3ff80000000000}, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(0xffffffffffffffff, r0, 0x0, 0x8)
r2 = socket$inet6(0xa, 0x802, 0x0)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmmsg(r2, &(0x7f0000002cc0), 0x1a3, 0x0)
perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0xa2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x1, @perf_bp={0x0}, 0x1, 0xfffffffffffffffe, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0x2, r1, 0x0)
connect$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x40, 0x6, @broadcast}, 0x14)
perf_event_open(&(0x7f0000000700)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = gettid()
syz_open_procfs(r3, &(0x7f0000000080)='status\x00')
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a6ffffff0a000000ff45ac00000000006300e9311900000000000006", 0x1e, 0x1c0}])

12:19:01 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f00000001c0)="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", 0x127}], 0x4, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
tkill(r0, 0x8)
ptrace$cont(0x18, r0, 0x0, 0x0)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x9, r0, 0x0, 0x0)

12:19:01 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)

12:19:01 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

[  824.603789][T18365] Dev loop3: unable to read RDB block 1
[  824.610253][T18365]  loop3: unable to read partition table
[  824.616497][T18365] loop3: partition table beyond EOD, truncated
[  824.622810][T18365] loop_reread_partitions: partition scan of loop3 () failed (rc=-5)
12:19:01 executing program 2:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x2a7)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @dev, 0x4}, 0x1c)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000440), 0x12f7e5)
clone(0x200000000204a100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r1 = gettid()
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000040)={@empty, 0x0, 0x2, 0x2}, 0x20)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = fcntl$dupfd(r2, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
ptrace$setopts(0x4206, r1, 0x0, 0x0)
tkill(r1, 0x2c)
wait4(0x0, 0x0, 0x0, 0x0)

12:19:02 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

12:19:02 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)

12:19:02 executing program 1:

12:19:03 executing program 4:
open(0x0, 0x40c2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080)='fuse\x00', 0x0, &(0x7f0000000300)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@allow_other='allow_other'}]}})
lstat(&(0x7f00000000c0)='./file0\x00', 0x0)

12:19:03 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

12:19:03 executing program 1:

12:19:03 executing program 3:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x5, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3ff80000000000}, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(0xffffffffffffffff, r0, 0x0, 0x8)
r2 = socket$inet6(0xa, 0x802, 0x0)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmmsg(r2, &(0x7f0000002cc0), 0x1a3, 0x0)
perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0xa2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x1, @perf_bp={0x0}, 0x1, 0xfffffffffffffffe, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0x2, r1, 0x0)
connect$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x40, 0x6, @broadcast}, 0x14)
perf_event_open(&(0x7f0000000700)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = gettid()
syz_open_procfs(r3, &(0x7f0000000080)='status\x00')
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a6ffffff0a000000ff45ac00000000006300e9311900000000000006", 0x1e, 0x1c0}])

12:19:03 executing program 1:

[  826.614262][T18402] Dev loop3: unable to read RDB block 1
[  826.620014][T18402]  loop3: unable to read partition table
[  826.626190][T18402] loop3: partition table beyond EOD, truncated
[  826.632620][T18402] loop_reread_partitions: partition scan of loop3 () failed (rc=-5)
12:19:04 executing program 0:

12:19:04 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

12:19:04 executing program 1:

12:19:05 executing program 2:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x2a7)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @dev, 0x4}, 0x1c)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000440), 0x12f7e5)
clone(0x200000000204a100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r1 = gettid()
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000040)={@empty, 0x0, 0x2, 0x2}, 0x20)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = fcntl$dupfd(r2, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
ptrace$setopts(0x4206, r1, 0x0, 0x0)
tkill(r1, 0x2c)
wait4(0x0, 0x0, 0x0, 0x0)

12:19:05 executing program 1:

12:19:05 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

12:19:05 executing program 3:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x5, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3ff80000000000}, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(0xffffffffffffffff, r0, 0x0, 0x8)
r2 = socket$inet6(0xa, 0x802, 0x0)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmmsg(r2, &(0x7f0000002cc0), 0x1a3, 0x0)
perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0xa2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x1, @perf_bp={0x0}, 0x1, 0xfffffffffffffffe, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0x2, r1, 0x0)
connect$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x40, 0x6, @broadcast}, 0x14)
perf_event_open(&(0x7f0000000700)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = gettid()
syz_open_procfs(r3, &(0x7f0000000080)='status\x00')
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a6ffffff0a000000ff45ac00000000006300e9311900000000000006", 0x1e, 0x1c0}])

[  828.728163][T18431] Dev loop3: unable to read RDB block 1
[  828.734051][T18431]  loop3: unable to read partition table
[  828.739864][T18431] loop3: partition table beyond EOD, truncated
[  828.746257][T18431] loop_reread_partitions: partition scan of loop3 () failed (rc=-5)
12:19:06 executing program 4:
open(0x0, 0x40c2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080)='fuse\x00', 0x0, &(0x7f0000000300)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@allow_other='allow_other'}]}})
lstat(&(0x7f00000000c0)='./file0\x00', 0x0)

12:19:06 executing program 0:

12:19:06 executing program 1:

12:19:06 executing program 2:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x2a7)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @dev, 0x4}, 0x1c)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000440), 0x12f7e5)
clone(0x200000000204a100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r1 = gettid()
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000040)={@empty, 0x0, 0x2, 0x2}, 0x20)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = fcntl$dupfd(r2, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
ptrace$setopts(0x4206, r1, 0x0, 0x0)
tkill(r1, 0x2c)
wait4(0x0, 0x0, 0x0, 0x0)

12:19:06 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00'})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

12:19:06 executing program 0:

12:19:06 executing program 1:

12:19:06 executing program 2:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x2a7)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @dev, 0x4}, 0x1c)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000440), 0x12f7e5)
clone(0x200000000204a100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r1 = gettid()
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000040)={@empty, 0x0, 0x2, 0x2}, 0x20)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = fcntl$dupfd(r2, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
ptrace$setopts(0x4206, r1, 0x0, 0x0)
tkill(r1, 0x2c)
wait4(0x0, 0x0, 0x0, 0x0)

12:19:06 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00'})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

12:19:06 executing program 0:

12:19:07 executing program 1:

12:19:07 executing program 3:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x5, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3ff80000000000}, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(0xffffffffffffffff, r0, 0x0, 0x8)
r2 = socket$inet6(0xa, 0x802, 0x0)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmmsg(r2, &(0x7f0000002cc0), 0x1a3, 0x0)
perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0xa2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x1, @perf_bp={0x0}, 0x1, 0xfffffffffffffffe, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0x2, r1, 0x0)
connect$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x40, 0x6, @broadcast}, 0x14)
perf_event_open(&(0x7f0000000700)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = gettid()
syz_open_procfs(r3, &(0x7f0000000080)='status\x00')
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a6ffffff0a000000ff45ac00000000006300e9311900000000000006", 0x1e, 0x1c0}])

[  830.716782][ T4881] Dev loop3: unable to read RDB block 1
[  830.722624][ T4881]  loop3: unable to read partition table
[  830.728427][ T4881] loop3: partition table beyond EOD, truncated
[  830.748121][T18470] Dev loop3: unable to read RDB block 1
[  830.754544][T18470]  loop3: unable to read partition table
[  830.760363][T18470] loop3: partition table beyond EOD, truncated
[  830.766696][T18470] loop_reread_partitions: partition scan of loop3 () failed (rc=-5)
12:19:08 executing program 4:
open(0x0, 0x40c2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080)='fuse\x00', 0x0, &(0x7f0000000300)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@allow_other='allow_other'}]}})
lstat(&(0x7f00000000c0)='./file0\x00', 0x0)

12:19:08 executing program 0:

12:19:08 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00'})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

12:19:08 executing program 2:

12:19:08 executing program 1:

12:19:08 executing program 1:

12:19:08 executing program 2:

12:19:08 executing program 0:

[  831.487343][T18468] not chained 560000 origins
[  831.491996][T18468] CPU: 0 PID: 18468 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0
[  831.500682][T18468] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  831.510735][T18468] Call Trace:
[  831.514043][T18468]  dump_stack+0x1df/0x240
[  831.518387][T18468]  kmsan_internal_chain_origin+0x6f/0x130
[  831.524149][T18468]  ? kmsan_get_metadata+0x4f/0x180
[  831.529267][T18468]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  831.535080][T18468]  ? kmsan_get_metadata+0x4f/0x180
[  831.540198][T18468]  ? kmsan_set_origin_checked+0x95/0xf0
[  831.545752][T18468]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  831.551834][T18468]  ? _copy_from_user+0x15b/0x260
[  831.556794][T18468]  ? kmsan_get_metadata+0x4f/0x180
[  831.561912][T18468]  __msan_chain_origin+0x50/0x90
[  831.566884][T18468]  __get_compat_msghdr+0x5be/0x890
[  831.572029][T18468]  get_compat_msghdr+0x108/0x270
[  831.576988][T18468]  __sys_sendmmsg+0x7d5/0xd80
[  831.581695][T18468]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  831.587522][T18468]  ? kmsan_get_metadata+0x4f/0x180
[  831.592641][T18468]  ? kmsan_get_metadata+0x4f/0x180
[  831.597758][T18468]  ? kmsan_internal_check_memory+0xb1/0x3d0
[  831.603679][T18468]  ? kmsan_check_memory+0xd/0x10
[  831.608622][T18468]  ? kmsan_get_metadata+0x11d/0x180
[  831.613832][T18468]  ? kmsan_get_metadata+0x11d/0x180
[  831.619039][T18468]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  831.624850][T18468]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  831.631008][T18468]  ? kmsan_get_metadata+0x4f/0x180
[  831.636125][T18468]  ? kmsan_get_metadata+0x4f/0x180
[  831.641242][T18468]  __se_compat_sys_sendmmsg+0xcd/0xf0
[  831.646624][T18468]  ? __x32_compat_sys_sendmsg+0x70/0x70
[  831.652197][T18468]  __ia32_compat_sys_sendmmsg+0x56/0x70
[  831.657751][T18468]  __do_fast_syscall_32+0x2aa/0x400
[  831.662980][T18468]  do_fast_syscall_32+0x6b/0xd0
[  831.667839][T18468]  do_SYSENTER_32+0x73/0x90
[  831.672351][T18468]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  831.678677][T18468] RIP: 0023:0xf7f24549
[  831.682736][T18468] Code: Bad RIP value.
[  831.686796][T18468] RSP: 002b:00000000f5d1f0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  831.695204][T18468] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002cc0
[  831.703177][T18468] RDX: 00000000000001a3 RSI: 0000000000000000 RDI: 0000000000000000
[  831.711161][T18468] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  831.719137][T18468] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  831.727109][T18468] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  831.735097][T18468] Uninit was stored to memory at:
[  831.740126][T18468]  kmsan_internal_chain_origin+0xad/0x130
[  831.745860][T18468]  __msan_chain_origin+0x50/0x90
[  831.750798][T18468]  __get_compat_msghdr+0x5be/0x890
[  831.755917][T18468]  get_compat_msghdr+0x108/0x270
[  831.760855][T18468]  __sys_sendmmsg+0x7d5/0xd80
[  831.765530][T18468]  __se_compat_sys_sendmmsg+0xcd/0xf0
[  831.770899][T18468]  __ia32_compat_sys_sendmmsg+0x56/0x70
[  831.776459][T18468]  __do_fast_syscall_32+0x2aa/0x400
[  831.781662][T18468]  do_fast_syscall_32+0x6b/0xd0
[  831.786518][T18468]  do_SYSENTER_32+0x73/0x90
[  831.791021][T18468]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  831.797336][T18468] 
[  831.799654][T18468] Uninit was stored to memory at:
[  831.804703][T18468]  kmsan_internal_chain_origin+0xad/0x130
[  831.810423][T18468]  __msan_chain_origin+0x50/0x90
[  831.815364][T18468]  __get_compat_msghdr+0x5be/0x890
[  831.820489][T18468]  get_compat_msghdr+0x108/0x270
[  831.825430][T18468]  __sys_sendmmsg+0x7d5/0xd80
[  831.830107][T18468]  __se_compat_sys_sendmmsg+0xcd/0xf0
[  831.835479][T18468]  __ia32_compat_sys_sendmmsg+0x56/0x70
[  831.841021][T18468]  __do_fast_syscall_32+0x2aa/0x400
[  831.846217][T18468]  do_fast_syscall_32+0x6b/0xd0
[  831.851070][T18468]  do_SYSENTER_32+0x73/0x90
[  831.855571][T18468]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  831.861902][T18468] 
[  831.864225][T18468] Uninit was stored to memory at:
[  831.869345][T18468]  kmsan_internal_chain_origin+0xad/0x130
[  831.875064][T18468]  __msan_chain_origin+0x50/0x90
[  831.880005][T18468]  __get_compat_msghdr+0x5be/0x890
[  831.885119][T18468]  get_compat_msghdr+0x108/0x270
[  831.890058][T18468]  __sys_sendmmsg+0x7d5/0xd80
[  831.894736][T18468]  __se_compat_sys_sendmmsg+0xcd/0xf0
[  831.900105][T18468]  __ia32_compat_sys_sendmmsg+0x56/0x70
[  831.905650][T18468]  __do_fast_syscall_32+0x2aa/0x400
[  831.910846][T18468]  do_fast_syscall_32+0x6b/0xd0
[  831.915695][T18468]  do_SYSENTER_32+0x73/0x90
[  831.920197][T18468]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  831.926511][T18468] 
[  831.928829][T18468] Uninit was stored to memory at:
[  831.933852][T18468]  kmsan_internal_chain_origin+0xad/0x130
[  831.939568][T18468]  __msan_chain_origin+0x50/0x90
[  831.944507][T18468]  __get_compat_msghdr+0x5be/0x890
[  831.949619][T18468]  get_compat_msghdr+0x108/0x270
[  831.954557][T18468]  __sys_sendmmsg+0x7d5/0xd80
[  831.959228][T18468]  __se_compat_sys_sendmmsg+0xcd/0xf0
[  831.964594][T18468]  __ia32_compat_sys_sendmmsg+0x56/0x70
[  831.970136][T18468]  __do_fast_syscall_32+0x2aa/0x400
[  831.975336][T18468]  do_fast_syscall_32+0x6b/0xd0
[  831.980185][T18468]  do_SYSENTER_32+0x73/0x90
[  831.984687][T18468]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  831.990999][T18468] 
[  831.993318][T18468] Uninit was stored to memory at:
[  831.998350][T18468]  kmsan_internal_chain_origin+0xad/0x130
[  832.004070][T18468]  __msan_chain_origin+0x50/0x90
[  832.009013][T18468]  __get_compat_msghdr+0x5be/0x890
[  832.014127][T18468]  get_compat_msghdr+0x108/0x270
[  832.019064][T18468]  __sys_sendmmsg+0x7d5/0xd80
[  832.023737][T18468]  __se_compat_sys_sendmmsg+0xcd/0xf0
[  832.029109][T18468]  __ia32_compat_sys_sendmmsg+0x56/0x70
[  832.034655][T18468]  __do_fast_syscall_32+0x2aa/0x400
[  832.039874][T18468]  do_fast_syscall_32+0x6b/0xd0
[  832.044729][T18468]  do_SYSENTER_32+0x73/0x90
[  832.049232][T18468]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  832.055556][T18468] 
[  832.057874][T18468] Uninit was stored to memory at:
[  832.062903][T18468]  kmsan_internal_chain_origin+0xad/0x130
[  832.068618][T18468]  __msan_chain_origin+0x50/0x90
[  832.073557][T18468]  __get_compat_msghdr+0x5be/0x890
[  832.078669][T18468]  get_compat_msghdr+0x108/0x270
[  832.083607][T18468]  __sys_sendmmsg+0x7d5/0xd80
[  832.088280][T18468]  __se_compat_sys_sendmmsg+0xcd/0xf0
[  832.093648][T18468]  __ia32_compat_sys_sendmmsg+0x56/0x70
[  832.099196][T18468]  __do_fast_syscall_32+0x2aa/0x400
[  832.104393][T18468]  do_fast_syscall_32+0x6b/0xd0
[  832.109241][T18468]  do_SYSENTER_32+0x73/0x90
[  832.113743][T18468]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  832.120056][T18468] 
[  832.122374][T18468] Uninit was stored to memory at:
[  832.127398][T18468]  kmsan_internal_chain_origin+0xad/0x130
[  832.133117][T18468]  __msan_chain_origin+0x50/0x90
[  832.138064][T18468]  __get_compat_msghdr+0x5be/0x890
[  832.143182][T18468]  get_compat_msghdr+0x108/0x270
[  832.148115][T18468]  __sys_sendmmsg+0x7d5/0xd80
[  832.152785][T18468]  __se_compat_sys_sendmmsg+0xcd/0xf0
[  832.158151][T18468]  __ia32_compat_sys_sendmmsg+0x56/0x70
[  832.163695][T18468]  __do_fast_syscall_32+0x2aa/0x400
[  832.168891][T18468]  do_fast_syscall_32+0x6b/0xd0
[  832.173739][T18468]  do_SYSENTER_32+0x73/0x90
[  832.178240][T18468]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  832.184551][T18468] 
[  832.186870][T18468] Local variable ----msg_sys@__sys_sendmmsg created at:
[  832.193801][T18468]  __sys_sendmmsg+0xb7/0xd80
[  832.198479][T18468]  __sys_sendmmsg+0xb7/0xd80
12:19:09 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

12:19:11 executing program 2:

12:19:11 executing program 0:

12:19:12 executing program 3:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x5, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3ff80000000000}, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(0xffffffffffffffff, r0, 0x0, 0x8)
r2 = socket$inet6(0xa, 0x802, 0x0)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmmsg(r2, &(0x7f0000002cc0), 0x1a3, 0x0)
perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0xa2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x1, @perf_bp={0x0}, 0x1, 0xfffffffffffffffe, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0x2, r1, 0x0)
connect$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x40, 0x6, @broadcast}, 0x14)
perf_event_open(&(0x7f0000000700)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = gettid()
syz_open_procfs(r3, &(0x7f0000000080)='status\x00')
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)

12:19:12 executing program 4:
open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080)='fuse\x00', 0x0, &(0x7f0000000300)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@allow_other='allow_other'}]}})
lstat(&(0x7f00000000c0)='./file0\x00', 0x0)

12:19:12 executing program 1:

12:19:12 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

12:19:12 executing program 2:

12:19:12 executing program 0:

12:19:13 executing program 1:

12:19:13 executing program 0:

12:19:13 executing program 2:

12:19:13 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

12:19:13 executing program 1:

12:19:13 executing program 0:

12:19:13 executing program 3:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x5, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3ff80000000000}, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(0xffffffffffffffff, r0, 0x0, 0x8)
r2 = socket$inet6(0xa, 0x802, 0x0)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmmsg(r2, &(0x7f0000002cc0), 0x1a3, 0x0)
perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0xa2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x1, @perf_bp={0x0}, 0x1, 0xfffffffffffffffe, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0x2, r1, 0x0)
connect$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x40, 0x6, @broadcast}, 0x14)
perf_event_open(&(0x7f0000000700)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = gettid()
syz_open_procfs(r3, &(0x7f0000000080)='status\x00')

12:19:15 executing program 4:
open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080)='fuse\x00', 0x0, &(0x7f0000000300)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@allow_other='allow_other'}]}})
lstat(&(0x7f00000000c0)='./file0\x00', 0x0)

12:19:15 executing program 2:

12:19:15 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, 0x0)
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

12:19:15 executing program 1:

12:19:15 executing program 0:

12:19:15 executing program 3:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x5, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3ff80000000000}, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(0xffffffffffffffff, r0, 0x0, 0x8)
r2 = socket$inet6(0xa, 0x802, 0x0)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmmsg(r2, &(0x7f0000002cc0), 0x1a3, 0x0)
perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0xa2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x1, @perf_bp={0x0}, 0x1, 0xfffffffffffffffe, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0x2, r1, 0x0)
connect$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x40, 0x6, @broadcast}, 0x14)
perf_event_open(&(0x7f0000000700)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
gettid()

12:19:15 executing program 2:

12:19:16 executing program 1:

12:19:16 executing program 0:

12:19:16 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, 0x0)
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

12:19:16 executing program 1:

12:19:16 executing program 2:

12:19:17 executing program 4:
open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080)='fuse\x00', 0x0, &(0x7f0000000300)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@allow_other='allow_other'}]}})
lstat(&(0x7f00000000c0)='./file0\x00', 0x0)

12:19:17 executing program 0:

12:19:17 executing program 1:

12:19:17 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, 0x0)
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

12:19:17 executing program 2:

12:19:17 executing program 3:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x5, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3ff80000000000}, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(0xffffffffffffffff, r0, 0x0, 0x8)
r2 = socket$inet6(0xa, 0x802, 0x0)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmmsg(r2, &(0x7f0000002cc0), 0x1a3, 0x0)
perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0xa2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x1, @perf_bp={0x0}, 0x1, 0xfffffffffffffffe, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0x2, r1, 0x0)
connect$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x40, 0x6, @broadcast}, 0x14)
perf_event_open(&(0x7f0000000700)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)

12:19:17 executing program 1:

12:19:17 executing program 0:

12:19:17 executing program 2:

12:19:17 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(0xffffffffffffffff, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

12:19:18 executing program 3:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x5, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3ff80000000000}, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(0xffffffffffffffff, r0, 0x0, 0x8)
r2 = socket$inet6(0xa, 0x802, 0x0)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmmsg(r2, &(0x7f0000002cc0), 0x1a3, 0x0)
perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0xa2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x1, @perf_bp={0x0}, 0x1, 0xfffffffffffffffe, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0x2, r1, 0x0)
connect$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x40, 0x6, @broadcast}, 0x14)

12:19:19 executing program 2:

12:19:19 executing program 4:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
mount$fuse(0x0, 0x0, &(0x7f0000000080)='fuse\x00', 0x0, &(0x7f0000000300)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@allow_other='allow_other'}]}})
lstat(&(0x7f00000000c0)='./file0\x00', 0x0)

12:19:19 executing program 0:

12:19:19 executing program 1:

12:19:19 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(0xffffffffffffffff, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

12:19:19 executing program 2:

12:19:20 executing program 1:

12:19:20 executing program 2:

12:19:20 executing program 0:
syz_mount_image$ntfs(&(0x7f0000000140)='ntfs\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)={[{@utf8='utf8'}, {@nls={'nls', 0x3d, 'macgaelic'}}]})

[  843.361215][T18619] ntfs: (device loop0): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  843.382302][T18619] ntfs: (device loop0): parse_options(): Unrecognized mount option .
12:19:20 executing program 1:

12:19:20 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(0xffffffffffffffff, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

12:19:20 executing program 3:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x5, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3ff80000000000}, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(0xffffffffffffffff, r0, 0x0, 0x8)
r2 = socket$inet6(0xa, 0x802, 0x0)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmmsg(r2, &(0x7f0000002cc0), 0x1a3, 0x0)
perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0xa2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x1, @perf_bp={0x0}, 0x1, 0xfffffffffffffffe, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0x2, r1, 0x0)

12:19:20 executing program 1:

[  843.722752][T18619] ntfs: (device loop0): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  843.743463][T18619] ntfs: (device loop0): parse_options(): Unrecognized mount option .
[  845.015333][   T33] audit: type=1800 audit(1595161162.049:146): pid=18643 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="sda1" ino=16343 res=0
12:19:22 executing program 4:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
mount$fuse(0x0, 0x0, &(0x7f0000000080)='fuse\x00', 0x0, &(0x7f0000000300)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@allow_other='allow_other'}]}})
lstat(&(0x7f00000000c0)='./file0\x00', 0x0)

12:19:22 executing program 2:

12:19:22 executing program 1:

12:19:22 executing program 0:

12:19:22 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, 0x0, 0x0)

12:19:22 executing program 3:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x5, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3ff80000000000}, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(0xffffffffffffffff, r0, 0x0, 0x8)
r1 = socket$inet6(0xa, 0x802, 0x0)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
sendmmsg(r1, &(0x7f0000002cc0), 0x1a3, 0x0)

12:19:22 executing program 1:

12:19:22 executing program 2:

12:19:22 executing program 0:

12:19:23 executing program 1:

12:19:23 executing program 2:

12:19:23 executing program 0:

[  846.913984][   T33] audit: type=1800 audit(1595161163.949:147): pid=18668 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="sda1" ino=16343 res=0
12:19:24 executing program 4:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
mount$fuse(0x0, 0x0, &(0x7f0000000080)='fuse\x00', 0x0, &(0x7f0000000300)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@allow_other='allow_other'}]}})
lstat(&(0x7f00000000c0)='./file0\x00', 0x0)

12:19:24 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, 0x0, 0x0)

12:19:24 executing program 1:

12:19:24 executing program 2:

12:19:24 executing program 0:

12:19:24 executing program 3:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x5, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3ff80000000000}, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(0xffffffffffffffff, r0, 0x0, 0x8)
r1 = socket$inet6(0xa, 0x802, 0x0)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)

12:19:24 executing program 1:

12:19:24 executing program 0:

12:19:24 executing program 2:

12:19:24 executing program 3:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x5, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3ff80000000000}, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(0xffffffffffffffff, r0, 0x0, 0x8)
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)

12:19:24 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, 0x0, 0x0)

12:19:24 executing program 1:

[  848.330770][   T33] audit: type=1800 audit(1595161165.359:148): pid=18698 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="sda1" ino=16340 res=0
12:19:25 executing program 4:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000300)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@allow_other='allow_other'}]}})
lstat(&(0x7f00000000c0)='./file0\x00', 0x0)

12:19:25 executing program 0:

12:19:25 executing program 3:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x5, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3ff80000000000}, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(0xffffffffffffffff, r0, 0x0, 0x8)
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)

12:19:25 executing program 2:

12:19:25 executing program 1:

12:19:25 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x0, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

12:19:25 executing program 2:

12:19:25 executing program 1:

12:19:25 executing program 0:

12:19:25 executing program 3:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x5, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3ff80000000000}, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(0xffffffffffffffff, r0, 0x0, 0x8)
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)

12:19:26 executing program 2:

12:19:26 executing program 0:

[  849.558978][   T33] audit: type=1800 audit(1595161166.589:149): pid=18721 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="sda1" ino=15812 res=0
12:19:26 executing program 4:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000300)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@allow_other='allow_other'}]}})
lstat(&(0x7f00000000c0)='./file0\x00', 0x0)

12:19:26 executing program 1:

12:19:26 executing program 3:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x5, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3ff80000000000}, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x802, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)

12:19:26 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x0, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

12:19:26 executing program 2:

12:19:26 executing program 0:

12:19:26 executing program 0:

12:19:27 executing program 3:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x5, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3ff80000000000}, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x802, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)

12:19:27 executing program 2:

12:19:27 executing program 1:

12:19:27 executing program 0:

12:19:27 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x0, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

[  850.791498][   T33] audit: type=1800 audit(1595161167.819:150): pid=18750 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="sda1" ino=16290 res=0
12:19:27 executing program 4:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000300)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@allow_other='allow_other'}]}})
lstat(&(0x7f00000000c0)='./file0\x00', 0x0)

12:19:27 executing program 3:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x802, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)

12:19:27 executing program 1:

12:19:27 executing program 2:

12:19:27 executing program 0:

12:19:27 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

12:19:28 executing program 2:

12:19:28 executing program 3:
r0 = socket$inet6(0xa, 0x802, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)

12:19:28 executing program 0:

12:19:28 executing program 1:

12:19:28 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

12:19:28 executing program 1:

[  851.861458][   T33] audit: type=1800 audit(1595161168.889:151): pid=18775 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="sda1" ino=16375 res=0
12:19:29 executing program 4:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080)='fuse\x00', 0x0, 0x0)
lstat(&(0x7f00000000c0)='./file0\x00', 0x0)

12:19:29 executing program 0:

12:19:29 executing program 3:
r0 = socket$inet6(0xa, 0x0, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)

12:19:29 executing program 2:

12:19:29 executing program 1:

12:19:29 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a6b"}}}}, 0x32)

12:19:29 executing program 2:

12:19:29 executing program 1:

12:19:29 executing program 0:

12:19:29 executing program 3:
r0 = socket$inet6(0xa, 0x0, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)

12:19:29 executing program 2:

12:19:29 executing program 1:

[  853.338370][   T33] audit: type=1800 audit(1595161170.369:152): pid=18808 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="sda1" ino=15770 res=0
12:19:30 executing program 2:

12:19:30 executing program 4:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080)='fuse\x00', 0x0, 0x0)
lstat(&(0x7f00000000c0)='./file0\x00', 0x0)

12:19:30 executing program 0:

12:19:30 executing program 1:

12:19:30 executing program 3:
r0 = socket$inet6(0xa, 0x0, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)

12:19:30 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x0, "b90005"}, "24391a6b"}}}}, 0x32)

12:19:30 executing program 2:

12:19:30 executing program 0:

12:19:30 executing program 1:

12:19:30 executing program 3:
socket$inet6(0xa, 0x802, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)

12:19:31 executing program 2:

12:19:31 executing program 1:

12:19:31 executing program 0:

[  854.616678][   T33] audit: type=1800 audit(1595161171.649:153): pid=18837 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="sda1" ino=15768 res=0
12:19:31 executing program 4:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080)='fuse\x00', 0x0, 0x0)
lstat(&(0x7f00000000c0)='./file0\x00', 0x0)

12:19:31 executing program 3:
socket$inet6(0xa, 0x802, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)

12:19:31 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x0, "b90005"}, "24391a6b"}}}}, 0x32)

12:19:31 executing program 2:

12:19:31 executing program 0:

12:19:31 executing program 1:

12:19:31 executing program 1:

12:19:32 executing program 0:

12:19:32 executing program 3:
socket$inet6(0xa, 0x802, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)

12:19:32 executing program 2:

12:19:32 executing program 1:

12:19:32 executing program 2:

[  855.723262][   T33] audit: type=1800 audit(1595161172.749:154): pid=18860 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="sda1" ino=15768 res=0
12:19:32 executing program 4:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080)='fuse\x00', 0x0, &(0x7f0000000300)={{'fd'}, 0x2c, {'rootmode'}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@allow_other='allow_other'}]}})
lstat(&(0x7f00000000c0)='./file0\x00', 0x0)

12:19:32 executing program 3:
r0 = socket$inet6(0xa, 0x802, 0x0)
connect$inet6(r0, 0x0, 0x0)

12:19:32 executing program 0:

12:19:32 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x0, "b90005"}, "24391a6b"}}}}, 0x32)

12:19:32 executing program 1:

12:19:32 executing program 2:

12:19:33 executing program 3:
r0 = socket$inet6(0xa, 0x802, 0x0)
connect$inet6(r0, 0x0, 0x0)

12:19:33 executing program 1:

12:19:33 executing program 2:

12:19:33 executing program 0:

12:19:33 executing program 1:

12:19:33 executing program 3:
r0 = socket$inet6(0xa, 0x802, 0x0)
connect$inet6(r0, 0x0, 0x0)

[  857.376289][   T33] audit: type=1800 audit(1595161174.409:155): pid=18889 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="sda1" ino=16379 res=0
[  857.420667][T18891] fuse: Bad value for 'fd'
12:19:34 executing program 4:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080)='fuse\x00', 0x0, &(0x7f0000000300)={{'fd'}, 0x2c, {'rootmode'}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@allow_other='allow_other'}]}})
lstat(&(0x7f00000000c0)='./file0\x00', 0x0)

12:19:34 executing program 2:

12:19:34 executing program 0:

12:19:34 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}}}}}, 0x2e)

12:19:34 executing program 1:

12:19:34 executing program 3:
r0 = socket$inet6(0xa, 0x802, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1}, 0x1c)

12:19:34 executing program 1:

12:19:34 executing program 0:

12:19:34 executing program 2:

12:19:34 executing program 3:
r0 = socket$inet6(0xa, 0x802, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1}, 0x1c)

12:19:35 executing program 0:

12:19:35 executing program 1:

[  858.650888][   T33] audit: type=1800 audit(1595161175.679:156): pid=18913 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="sda1" ino=16366 res=0
[  858.712967][T18915] fuse: Bad value for 'fd'
12:19:35 executing program 4:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080)='fuse\x00', 0x0, &(0x7f0000000300)={{'fd'}, 0x2c, {'rootmode'}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@allow_other='allow_other'}]}})
lstat(&(0x7f00000000c0)='./file0\x00', 0x0)

12:19:35 executing program 2:

12:19:35 executing program 3:
r0 = socket$inet6(0xa, 0x802, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1}, 0x1c)

12:19:35 executing program 0:

12:19:35 executing program 1:

12:19:35 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}}}}}, 0x2e)

12:19:36 executing program 0:

12:19:36 executing program 1:

12:19:36 executing program 2:

12:19:36 executing program 3:

12:19:36 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}}}}}, 0x2e)

12:19:36 executing program 0:

[  860.359495][   T33] audit: type=1800 audit(1595161177.389:157): pid=18946 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="sda1" ino=16373 res=0
[  860.360664][T18946] fuse: Bad value for 'fd'
12:19:37 executing program 4:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080)='fuse\x00', 0x0, &(0x7f0000000300)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})
lstat(&(0x7f00000000c0)='./file0\x00', 0x0)

12:19:37 executing program 2:

12:19:37 executing program 0:

12:19:37 executing program 1:

12:19:37 executing program 3:

12:19:37 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x26, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, '$9'}}}}, 0x30)

12:19:37 executing program 0:

12:19:37 executing program 2:

12:19:37 executing program 1:

12:19:37 executing program 3:

12:19:38 executing program 0:

12:19:38 executing program 2:

[  861.555569][   T33] audit: type=1800 audit(1595161178.589:158): pid=18967 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="sda1" ino=16369 res=0
12:19:38 executing program 4:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080)='fuse\x00', 0x0, &(0x7f0000000300)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})
lstat(&(0x7f00000000c0)='./file0\x00', 0x0)

12:19:38 executing program 1:

12:19:38 executing program 3:

12:19:38 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x26, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, '$9'}}}}, 0x30)

12:19:38 executing program 0:

12:19:38 executing program 2:

12:19:39 executing program 3:

12:19:39 executing program 1:

12:19:39 executing program 0:

12:19:39 executing program 2:

12:19:39 executing program 1:

12:19:39 executing program 0:

[  862.760866][   T33] audit: type=1800 audit(1595161179.789:159): pid=18989 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="sda1" ino=16368 res=0
[  862.858439][T18991] fuse: Bad value for 'fd'
12:19:39 executing program 4:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080)='fuse\x00', 0x0, &(0x7f0000000300)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})
lstat(&(0x7f00000000c0)='./file0\x00', 0x0)

12:19:39 executing program 2:

12:19:39 executing program 3:

12:19:39 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x26, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, '$9'}}}}, 0x30)

12:19:39 executing program 1:

12:19:39 executing program 0:

12:19:40 executing program 1:

12:19:40 executing program 3:

12:19:40 executing program 2:

12:19:40 executing program 0:

12:19:40 executing program 1:

12:19:40 executing program 2:

[  864.003042][   T33] audit: type=1800 audit(1595161181.029:160): pid=19012 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="sda1" ino=16379 res=0
[  864.065320][T19013] fuse: Bad value for 'fd'
12:19:41 executing program 4:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080)='fuse\x00', 0x0, &(0x7f0000000300)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@allow_other='allow_other'}]}})
lstat(0x0, 0x0)

12:19:41 executing program 0:

12:19:41 executing program 3:

12:19:41 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x27, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a"}}}}, 0x31)

12:19:41 executing program 2:

12:19:41 executing program 1:

12:19:41 executing program 1:

12:19:41 executing program 3:

12:19:41 executing program 2:

12:19:41 executing program 0:

12:19:41 executing program 2:

12:19:41 executing program 3:

[  865.310184][   T33] audit: type=1800 audit(1595161182.339:161): pid=19035 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="sda1" ino=15843 res=0
[  865.311211][T19035] fuse: Bad value for 'fd'
12:19:42 executing program 4:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080)='fuse\x00', 0x0, &(0x7f0000000300)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@allow_other='allow_other'}]}})
lstat(0x0, 0x0)

12:19:42 executing program 1:

12:19:42 executing program 0:

12:19:42 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x27, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a"}}}}, 0x31)

12:19:42 executing program 3:

12:19:42 executing program 2:

12:19:42 executing program 3:

12:19:42 executing program 1:

12:19:42 executing program 0:

12:19:42 executing program 2:

12:19:43 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @local}})
write$tun(r0, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x0, 0x0, 0x19}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x27, 0x0, 0x0, 0x0, 0x84, 0x0, @dev, @local}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f426e6", 0x8, "b90005"}, "24391a"}}}}, 0x31)

12:19:43 executing program 0:

[  866.521279][   T33] audit: type=1800 audit(1595161183.549:162): pid=19062 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="sda1" ino=16081 res=0
[  866.522874][T19062] fuse: Bad value for 'fd'
12:19:43 executing program 3:

12:19:43 executing program 2:

12:19:43 executing program 4:
open(&(0x7f0000000180)='./file0\x00', 0x40c2, 0x0)
mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080)='fuse\x00', 0x0, &(0x7f0000000300)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@allow_other='allow_other'}]}})
lstat(0x0, 0x0)

12:19:43 executing program 5:

12:19:43 executing program 1:

12:19:43 executing program 0:

12:19:44 executing program 2:

12:19:44 executing program 1:

12:19:44 executing program 5:

12:19:44 executing program 0:

12:19:44 executing program 3:

12:19:44 executing program 5:

12:19:44 executing program 1:

[  867.786941][   T33] audit: type=1800 audit(1595161184.819:163): pid=19080 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="sda1" ino=15891 res=0
[  867.839509][T19081] fuse: Bad value for 'fd'
12:19:44 executing program 2:

12:19:44 executing program 0:

12:19:44 executing program 3:

12:19:44 executing program 5:

12:19:44 executing program 1:

12:19:44 executing program 4:

12:19:45 executing program 5:

12:19:45 executing program 3:

12:19:45 executing program 1:

12:19:45 executing program 2:

12:19:45 executing program 0:

12:19:45 executing program 5:

12:19:45 executing program 2:

12:19:45 executing program 3:

12:19:45 executing program 1:

12:19:45 executing program 0:

12:19:45 executing program 2:

12:19:46 executing program 4:

12:19:46 executing program 5:

12:19:46 executing program 1:

12:19:46 executing program 3:

12:19:46 executing program 0:

12:19:46 executing program 2:

12:19:46 executing program 5:

12:19:46 executing program 2:

12:19:46 executing program 1:

12:19:46 executing program 0:

12:19:46 executing program 3:

12:19:46 executing program 2:

12:19:47 executing program 4:

12:19:47 executing program 5:

12:19:47 executing program 1:

12:19:47 executing program 0:

12:19:47 executing program 3:

12:19:47 executing program 2:

12:19:47 executing program 0:

12:19:47 executing program 3:

12:19:47 executing program 5:

12:19:47 executing program 2:

12:19:47 executing program 1:

12:19:47 executing program 0:

12:19:48 executing program 4:

12:19:48 executing program 5:

12:19:48 executing program 1:

12:19:48 executing program 3:

12:19:48 executing program 2:

12:19:48 executing program 0:

12:19:48 executing program 3:

12:19:48 executing program 0:
r0 = socket$inet6_sctp(0x1c, 0x5, 0x84)
r1 = socket$inet6_sctp(0x1c, 0x5, 0x84)
connect$inet6(r1, &(0x7f0000000000)={0x1c, 0x1c, 0x3}, 0x1c)
r2 = dup2(r1, r0)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0xa, &(0x7f0000000100), 0x98)

12:19:48 executing program 1:

12:19:48 executing program 5:

12:19:48 executing program 2:

12:19:48 executing program 1:

12:19:49 executing program 4:

12:19:49 executing program 5:

12:19:49 executing program 3:

12:19:49 executing program 2:

12:19:49 executing program 0:

12:19:49 executing program 1:

12:19:49 executing program 1:

12:19:49 executing program 3:

12:19:49 executing program 0:

12:19:49 executing program 2:

12:19:49 executing program 5:

12:19:49 executing program 5:

12:19:50 executing program 4:

12:19:50 executing program 1:

12:19:50 executing program 2:

12:19:50 executing program 3:

12:19:50 executing program 0:

12:19:50 executing program 5:

12:19:50 executing program 2:

12:19:50 executing program 0:

12:19:50 executing program 1:

12:19:50 executing program 5:

12:19:50 executing program 3:

12:19:50 executing program 2:

12:19:51 executing program 4:

12:19:51 executing program 3:

12:19:51 executing program 1:

12:19:51 executing program 0:

12:19:51 executing program 5:

12:19:51 executing program 2:

12:19:51 executing program 5:

12:19:51 executing program 0:

12:19:51 executing program 3:

12:19:51 executing program 1:

12:19:51 executing program 2:

12:19:52 executing program 0:

12:19:52 executing program 4:

12:19:52 executing program 2:

12:19:52 executing program 1:

12:19:52 executing program 5:

12:19:52 executing program 3:

12:19:52 executing program 0:

12:19:52 executing program 3:

12:19:52 executing program 1:

12:19:52 executing program 2:

12:19:52 executing program 5:

12:19:52 executing program 0:

12:19:53 executing program 5:

12:19:54 executing program 4:

12:19:54 executing program 1:

12:19:54 executing program 5:

12:19:54 executing program 0:

12:19:54 executing program 3:

12:19:54 executing program 2:

12:19:54 executing program 3:

12:19:54 executing program 2:

12:19:54 executing program 5:

12:19:54 executing program 0:

12:19:54 executing program 1:

12:19:54 executing program 0:

12:19:55 executing program 4:

12:19:55 executing program 3:

12:19:55 executing program 2:

12:19:55 executing program 1:

12:19:55 executing program 5:

12:19:55 executing program 0:

12:19:55 executing program 2:

12:19:55 executing program 0:

12:19:55 executing program 5:

12:19:55 executing program 3:

12:19:55 executing program 1:

12:19:55 executing program 5:

12:19:56 executing program 4:

12:19:56 executing program 2:

12:19:56 executing program 3:

12:19:56 executing program 0:
perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.cpu/syz0\x00', 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f0000000040)='cpuset.cpus\x00', 0x2, 0x0)
r2 = openat$cgroup_ro(r0, &(0x7f0000000080)='cpuset.memory_pressure\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x6)

12:19:56 executing program 1:
prctl$PR_SET_NAME(0xf, &(0x7f0000000000)='//selinux\x00\x00\x01\x10=\x8f\xa2\xc7\x8b\x96|?\x16\xbf\xa1$\xe2\xf4\xa6t#M\xe0l\x0e<\x89\x8df\xa0m\x00\a\xbb\x84\xc2V\xff\xb0j\x06\x00\xba\x1a\xe7@\xab\xe2v\x8a\x97\x88\xd3\xa5\xeePb\x10\xf5\'\xc1\x01\xfew\xdfgCM>\xba\xc6\xe5\xa6\xac\xfa\xed\xdf;')
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00')
r1 = openat(r0, &(0x7f0000000bc0)='./file0\x00', 0xc0242, 0x0)
pwritev(r1, &(0x7f0000000600)=[{&(0x7f0000000440)=')', 0x1}], 0x1, 0x200006)
fallocate(r1, 0x3, 0x0, 0xd3fd)
r2 = syz_open_procfs(0x0, &(0x7f0000000080)='fd/3\x00')
r3 = openat(r2, &(0x7f00000000c0)='./file0\x00', 0x145042, 0x0)
r4 = memfd_create(&(0x7f0000000380)='iC;`\xb6p+\x10', 0x0)
pwritev(r4, &(0x7f0000000180)=[{&(0x7f00000001c0)="b3", 0x1}], 0x1, 0x81808)
sendfile(r3, r4, 0x0, 0x200000f)

12:19:56 executing program 5:

12:19:56 executing program 5:

12:19:56 executing program 3:
r0 = socket$inet6(0xa, 0x3, 0x6)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff})
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000040)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x800, 0x0, 0x2000000000903, 0x1}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000000)={@private1, 0x0, 0x0, 0x3, 0x1}, 0x20)
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f00000005c0)=0x7fff, 0x4)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x380000, @loopback}, 0x1c)

12:19:56 executing program 2:
r0 = socket$packet(0x11, 0x3, 0x300)
recvmmsg(r0, &(0x7f0000000300), 0x64, 0x0, 0x0)
setsockopt$packet_int(r0, 0x107, 0x8, &(0x7f0000000000)=0x800043fb, 0x4)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
r3 = dup(r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000040)="4c0000001000fff1fefefd956f76d5b724a6008000000000000000683440150024001b0000000000000000593ab700000000043d51d7e88dc62b2ca654a6613b6a080000001cbc882b079881", 0x4c}], 0x1}, 0x0)

12:19:56 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000540)=@filter={'filter\x00', 0xe, 0x4, 0x388, 0xd0, 0x1c0, 0xd0, 0xd0, 0xd0, 0x2c0, 0x2b8, 0x2b8, 0x2b8, 0x2c0, 0x4, 0x0, {[{{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00', 0x2, {0x0, 0xfffa}}}, {{@ipv6={@initdev={0xfe, 0x88, [], 0x0, 0x0}, @ipv4={[], [], @local}}, 0x0, 0xa8, 0xf0}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@private0, 'wg1\x00'}}}, {{@ipv6={@local, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'bridge_slave_1\x00', 'ipvlan0\x00'}, 0x0, 0xd0, 0xf8, 0x0, {}, [@common=@inet=@ecn={{0x28, 'ecn\x00'}, {0x1}}]}, @REJECT={0x28, 'REJECT\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3e8)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = fcntl$dupfd(r2, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = dup(r4)
getsockname$packet(r5, &(0x7f00000000c0)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000140)=0x52)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=@newlink={0x3c, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, r6}, [@IFLA_AF_SPEC={0x1c, 0x1a, 0x0, 0x1, [@AF_INET6={0x18, 0xa, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x14, 0x7, @initdev={0xfe, 0x88, [], 0x0, 0x0}}]}]}]}, 0x3c}}, 0x0)

12:19:56 executing program 0:
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000200)="ea082bb504cf374d0a39829886a5cf71314e85999185a18bca3cfa195b0b6a66ad16b1e6edbaa97ef63fe4d1988b6fc3cf80a17b1d0f74744bd15d7fd1c0924a537253d4ad414fd1c2192fc76cb040d01c424e9d24442eb530e5d1da9ce8f1816012988bf8", 0x8}], 0x1000000000000222, 0x9)
ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f0000000280)=""/246)
clone(0x2102001ff9, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = dup3(r2, r1, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174)

12:19:56 executing program 5:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = dup3(r2, r1, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x58, 0x2, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,mark\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0x10000}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x58}}, 0x0)

[  879.819658][T19270] netlink: 'syz-executor.2': attribute type 27 has an invalid length.
[  879.828168][T19270] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'.
[  879.855063][T19270] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  879.871319][T19270] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  879.892554][T19270] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
12:19:57 executing program 4:
syz_emit_ethernet(0x42, &(0x7f0000000080)={@random="3b1ec5b68c4d", @broadcast=[0x0], @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "6e8627", 0xc, 0x11, 0x0, @remote, @local, {[], {0x0, 0x0, 0xc, 0x0, @gue={{0x1, 0x0, 0x0, 0x0, 0x0, @void}}}}}}}}, 0x0)

12:19:57 executing program 3:
r0 = socket$inet6(0xa, 0x3, 0x6)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff})
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000040)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x800, 0x0, 0x2000000000903, 0x1}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000000)={@private1, 0x0, 0x0, 0x3, 0x1}, 0x20)
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f00000005c0)=0x7fff, 0x4)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x380000, @loopback}, 0x1c)

12:19:57 executing program 1:
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$IPSET_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="c4000000040601010000000000000000006a00100500010006"], 0x1}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xff99)
perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
splice(r0, 0x0, r2, 0x0, 0x8007fc0, 0x0)

12:19:57 executing program 0:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x1)
r1 = socket$inet6(0xa, 0x3, 0x1)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @local, 0x2}, 0x1c)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={<r2=>0xffffffffffffffff})
r3 = dup(r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
r4 = syz_open_procfs(0x0, &(0x7f0000000040)='pagemap\x00')
sendfile(r1, r4, 0x0, 0xa808)

12:19:57 executing program 2:
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
perf_event_open(&(0x7f00000001c0)={0x2, 0x70, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB="b8000000190001000000000000000000ac1e0011000001000000000000000000ffffffff00000000000000000000000000000000000000000a"], 0x1}}, 0x0)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xffc1)
splice(r0, 0x0, r2, 0x0, 0x4ffe0, 0x0)

12:19:57 executing program 5:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
pipe(&(0x7f0000000500)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendto$inet6(0xffffffffffffffff, &(0x7f0000000000)="9000000018001f15b9409b0d1b029ac00200a57802000606", 0x18, 0x0, 0x0, 0x0)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
close(r4)
socket$netlink(0x10, 0x3, 0x0)
write$binfmt_misc(r3, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r2, 0x0, r4, 0x0, 0x4ff5d, 0x0)

[  880.790955][T19300] netlink: 168 bytes leftover after parsing attributes in process `syz-executor.1'.
[  880.849172][T19304] netlink: 116 bytes leftover after parsing attributes in process `syz-executor.5'.
12:19:58 executing program 3:
r0 = socket$inet6(0xa, 0x3, 0x6)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff})
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000040)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x800, 0x0, 0x2000000000903, 0x1}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000000)={@private1, 0x0, 0x0, 0x3, 0x1}, 0x20)
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f00000005c0)=0x7fff, 0x4)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x380000, @loopback}, 0x1c)

12:19:58 executing program 0:
perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone(0x2000000000200500, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f00000001c0))
timer_settime(0x0, 0x0, &(0x7f0000000100)={{0x0, 0x1c9c380}, {0x0, 0x989680}}, 0x0)
futex(&(0x7f000000cffc)=0x1, 0x0, 0x1, 0x0, 0x0, 0x0)
io_setup(0x0, 0x0)
tkill(r0, 0x1000000000015)

12:19:58 executing program 2:
pipe(&(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet(0x10, 0x2, 0x0)
r3 = socket(0x11, 0x800000003, 0x0)
bind(r3, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80)
getsockname$packet(r3, &(0x7f00000001c0)={0x11, 0x0, <r4=>0x0}, &(0x7f0000000200)=0x5d)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="240000002e00190346431df019f29079bf787428", @ANYRES32=r4], 0x2}}, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x84ffde, 0x0)

12:19:58 executing program 1:
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000001fd8)=ANY=[@ANYBLOB="b7000000000000003c00000000f20000dca00000000000009500000000000400"], &(0x7f0000003ff6)='GPL\x00', 0x1, 0xff06, &(0x7f000000cf3d)=""/195, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffffc}, 0x48)

12:19:58 executing program 3:
r0 = socket$inet6(0xa, 0x3, 0x6)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff})
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000040)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x800, 0x0, 0x2000000000903, 0x1}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000000)={@private1, 0x0, 0x0, 0x3, 0x1}, 0x20)
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f00000005c0)=0x7fff, 0x4)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x380000, @loopback}, 0x1c)

12:19:58 executing program 0:
r0 = socket$inet6(0xa, 0x3, 0x6)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000040)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x800, 0x0, 0x2000000000903, 0x1}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000000)={@private1, 0x0, 0x0, 0x3, 0x1}, 0x20)
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f00000005c0)=0x7fff, 0x4)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x380000, @loopback}, 0x1c)

12:19:59 executing program 4:
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.cpu/syz0\x00', 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f0000000040)='cpuset.cpus\x00', 0x2, 0x0)
r2 = openat$cgroup_ro(r0, &(0x7f0000000080)='cpuset.memory_pressure\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x6)

12:19:59 executing program 5:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
pipe(&(0x7f0000000500)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendto$inet6(0xffffffffffffffff, &(0x7f0000000000)="9000000018001f15b9409b0d1b029ac00200a57802000606", 0x18, 0x0, 0x0, 0x0)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
close(r4)
socket$netlink(0x10, 0x3, 0x0)
write$binfmt_misc(r3, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r2, 0x0, r4, 0x0, 0x4ff5d, 0x0)

12:19:59 executing program 1:
perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$unix(0x1, 0x5, 0x0)
bind$unix(r0, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc)
listen(r0, 0x0)
r1 = socket$unix(0x1, 0x5, 0x0)
connect(r1, &(0x7f0000931ff4)=@un=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc)
gettid()
r2 = gettid()
sendmmsg$unix(r1, &(0x7f0000003f40)=[{&(0x7f0000000040)=@abs, 0x6e, 0x0, 0x0, &(0x7f0000001bc0)=[@cred={{0x1c, 0x1, 0x2, {r2}}}], 0x20}], 0x1, 0x0)

12:19:59 executing program 3:
r0 = socket$inet6(0xa, 0x3, 0x6)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff})
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000040)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x800, 0x0, 0x2000000000903, 0x1}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000000)={@private1, 0x0, 0x0, 0x3, 0x1}, 0x20)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x380000, @loopback}, 0x1c)

12:19:59 executing program 0:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f00000001c0)=ANY=[@ANYBLOB="726177000000000000000000000000000000000000000000000000000000000009000000030000005002000000000000e0000000e0000000e0000000e0000000b8010000b8010000b8010000b8010000b8010000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000160000000000000000000000000000009800e00000000000000000000000000000000000000000002800727066696c746572000000000000ffff000000000000000000000000000007ff00000000000048004354000000000000000000000000000000000000000000000000000000000100000000000000000000006e657462696f732d6e73000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007000d80000000000000000000000000000000000000000006800435400000000000000000000000000000000000000000000000000000002010000000000000000000000736e6d7000000000000000000000000073797a30000000000000000000000000000000000000001e0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007000980000000000000000000000000000000000000000002800000000000000000000000000000000000000000000000000000000000000feffffff"], 0x1)
syz_emit_ethernet(0x3a, &(0x7f0000000080)={@multicast, @remote, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @multicast1}, {0x0, 0x0, 0x18, 0x0, @wg=@data}}}}}, 0x0)

12:19:59 executing program 0:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x280000000000002, &(0x7f0000000100)=0x78, 0x4)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000b86000)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000001040)={0x2, 0x4e23, @loopback}, 0x10)
recvmsg(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000001080)=""/4112, 0x1010}], 0x1}, 0x40000104)
sendmmsg$inet(r0, &(0x7f0000000b80)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000640)="beb963162a56840d2179e9588da73b863aa87057c044c80853911c5f2ffad9c51d64e80b67a63cfaa3db0afda8cc5563f9e5cba65f9dd52630fe334698b5b7da9baba87fe23f87d3365bef9bd50fa0ad4a53f29b6c2b869dc24b2f9770aaa13a93f1a9a4f427f76ee80d59b19f9297fb6ad1c9f2f58c3400e36fbf696ea652776f31afaf9bd43fe076ab082aa70dec85a7b444de7d83d366fc78244217797b795674d3083d3f2493f0b888ab3c0ba422a9b1bfa6fb94bed991b5bd9b8085a1d6ce5d63cab422964f644af0e0effc6618076bce4f58d6e7751a2e5086f1c4e9864b6bf766b6c59af9b40632aa73dba3e0758b39974e08c0fefecf1f746a26424b1ec3fc86b1e11068f7d0e1f8559a068247e96c386fa01af6a65a2df2f0ef8a1349", 0x121}, {&(0x7f0000002300)="ba74be51cc0aa540dac93533916b90c51842308b0e2422f2985b260cdff5ef21648ae0ff2acb5e103a2e0a4e0eef52900217d4504f3f31089664f5dab65ba6d0bdb1097c1b275b02998c64fb834f5c7fc60403b217ceed02c505410db364377f1fb648cbc651917cb7707f7818335c2c4f6f76f041f23077f8479eb53a0d88a92e2c807878f26431e20d460186d92f001ee0a92dd8d2e7c46b57d91cf1e5b70d1ad917ebbd208ed69a37f90e5150544fcaf80602c2e68a5a78fd68af39dab85e1881b7d1fbd0aa471500c2f7ae5528829936ae3e7d94c7a2e43685eea71898b92db1e77f048d2e781588dfec656dcd94187338387db17a16ec13d9c5c4bd8e7577c2e1af5ff4e14416563f35a87a5265769cff2750d6e8b23f635399d06ca1ab86838d6ecd5cc901087807c21addbf38861805cd9f03f65d18578ebd19fd8ef0ca4af52a1f51117456b0980f85b2214374ca3f11af6373dc189ba8b0b207657b5def5bece17defbd94b11951fbff7f64cb884ddd9c89d8726e1855046af5c6346584c418948afddfb1a2add89f64bbe0e86261c5603f0d4562e7ada793a3057d70f3fbee6787a495595ac2f2d33f03ce8983095e8dcbb49a9746c4b2c57e7f6cd6ccc7dc56a65cd973f472ad292c6a2d55ef8abe1f5af2079974c2d6156fbc379970c0c21d6ccdbed8edc7747c23ba941dd27f9438168f97368c229763990d7a08dc9c14b9fb117d439fa8119d7866cb1dcccdc494b52f3573c208a68a737f92a8bfc3a761162fd4f91e8d76087eb813e5667ce3130bbcf54896b18844c245e450bb59c34f3534032b6b5625c05822a974d1fe18c56ae894026af01d5dec0bdbb7331c0c1b54a34da54ecf3a1b43cc7ebe8d7a6a11046f8718babdf846ea20e3efac8878a8fa9913a0786664f3bc85c84b39d51458c6929343a67d643446347991f1de7cedbb42a6d2c7e231f6ef22cb8273a512bc548a699a9b6776560bbe2385d24ecfaf1e486c0a17bfdce622abcedb4cbc08ce871d552011aaadbbb2d59859d66802b0838bd515e07649b04470da18439d999405313816b10ab9593330d56e35be3cb4c6ed29ce2f9a74e7b8e9d8720edf5efa43558a7bab4fe1eb56d67e4dd49dc9943efc453536b9b6fcb2f519c957fd413b29b9140b7f0c348ea137e6c5cde680714184d27e288216f511575e5788f4d674ca4c201704311be24fce9a6c56805d0da6aeffea42a09898af518277b75a6de30307e3b1f9e7a0a6bdee52014cfc47c7da067800207dd8d50523a7fbf479287c9f57b26a2f36806182ad50134164f565693be944dcb602165589a944d1028ee060985b427a7795385c6b7fbade5f878fac111f1bb3ec6275d66f8aabd2afea588791b684601b29d2ac561053a0655193cc67cff8ceea49117792bdfaba9cc842bdc8eebcc2870aecb5c2e0cd13310421389a8b92d9a3def95d02b95877934b086860846f92e260f26624bfa439ea3605571cc97fed59790d55832c6ed793bc23874596baf80dcf26b8ea8f898a191bad08e89102d3f38957493655b844611e9600d8bb5ea0bfe5b0038c5f3af39cadd186478fbfbf15ce94481aeb663a1a14133ddb22c1f2e92b0c1842fa413b5ebc8413d800013e6ff01e5fd1d4b97e300f5284d04f0eb2a8c19a1be9736354b7c95db0a3831dc154f6d9842b2221115a2a5f4dfd3e5435fa13ee213041dc61de1ee384ae3ea911b593d805db2a0d3548718cff332ad9d9ac324d95b95e36334a57e5f29b322feac40ee65875a24a29b4bd182560aa7575321e8f46f024afd9378a8485649ab59ff47ef90f8144537326ee59aba23526f94ffae9b880888ca647426a51d46b9b2e6fc8839e35000c6142b9bd23ac3dda299b142be3eedc03d6da4340af5c5b763141bd14969302d32624ae20df40fe430c8c4dbd871fa48a768116e5832aa6eaf914a79d9adbff6d1a5297f02611c23b0ea000246bc768c00403af53108211597ba8e5de02310b523f7c99e53d27e3800e72fe92564596a19ffea251d7564e7790c99dd3f17941fc572b2c93aad0ba874fdd3746a71e9879a26f68d00e4de780f4ce92c240a3a8f837cec122ea67603791b15c50c758dc76097c0f4b9277344a57b18138703db553b05bc6f63da40661656b269094a888e4af1e1927530ea4872c77487418ef35f5b16817ea1ce0a6152c342ddb658f3c22b2fbb69a6acabde9135cc4d059422b5b3b91a0cafb0758cbb7584175d9ae89a071b3d58624f2a50bc572ad8cbda0e9979f9f1d01089d181dfe3b2e73d6766116042b45e7bb6bd3d7e7eb86aac041781c1ec28a7e46089939cd5a070ec25a7f39585057ee0def90b09488ae56a798353f53c1273699a73d09664acf9ec992ba966b5a2aa2cdcf29b67398c948c8acfedb02be95a32992b5ee36767aa06051b4349905fcb2db3990799d1e7180619384d293b683a5ac310fda6a20daaa053ae5e456f352d4faeb699ea781d0bc219b115ba719cf941ce185e6f2194c9d22e4a0090b79b97799c0c2c7b65b44aabcb6ca9a3fd97e67259162d98140656aa459cc96d3d04b9c995a89b8cbbf0d32b68f9c716b2487b5ce94a4969546a95a89b8785fa6927692662d364390c53e99ea7cf9b2542fcbfae6cf681a3ee401f37de250c3ce2923a265a353b8127c343df51bcad53cf385f089f192cc26e1d43e2a48cd1e64602cdb53b2a4c8a896dda543c266e17b120e7a9b4acab94ca9b39145849b0c1a9701d692f41e6e4b245e6631cc65e1ba1a7b0ae3cc133643c15551686d37755c18a419cdd07dae03de14147c5fbfce8630f523c39e759f199e42dc47c95388d643099428be8a8a8250fedcdb108c2461efd990fcdd6b7710a6132601b83cb159496aa6ea6a5916af8fec3d1663e0f835370d6447534812a5eda2ebc955306c0aa7aa8db40c1257a81302a60e4c52036495f23503f9921a692710d48b9206a6ee7b6f1a2c03defb48177e19973e0b29bb6c89b4376c8f9baeb656d2417361a8d16e561f098b56949286581ae3b2d7022be61440820bb97fed3f589acc323e7dd0f28eefbb46daa529eab22e8056a308b0042b28e3ac7d5b20ea0bb654cc62d8945098336d4055902cf93571322e1b3aab37980a74ab121ca9799835dd93e26a0dff013776b6a3fa22c96b1593e08a5537e797ea22670a4a080becd66efc98171fde1f0213544e0927c8f4ea747d09a749fd79a23b65c7f1d552eec86e96a7f87f8c92a7602694df10daeedcd300933f6fefec9438a059908c29304c8ecb987afd31eae99ed8cde530166e037f4d27c3228d4c57bec3e77d7882be08e0f331a8f6b76aed206d98399c3ae3316f9dedaebfbd0f8cfcb1e9d11594b4a0fe374816a375e42374fa3446f7f36113890b0ea0824fd57bb16c65d8d4f8f1fd74af48abd27683ae9a0cc3843ffa720e2969a4a9a158a75d8460dd70ebd2453be6f9b6499b279791551af00e215f83f6334d7fb7075f4b7f02d55a93742eecb25382f1ea64cfdafdadc7632499deb78d50a7681e5d92f08a280882cadbf607955e60ffeeb663c2eb9cc62fb2e1e5b02f98d4dd132a2d59ba4dde0d9ab2da59396f108a233e4bd30c9759d4121534b82094d3776112fa977573735cd7a0652b56490a75f0581309ba65b64f5d6ea03eadac4e9a1eabf255ad871377e78372f3b6ccd3d6fd062c217415494e69cd765f9a186d189298d04866cb8be5a8dfaf60e5e9ac4e47f72964faf655c7996001d2cb04df2f7d4eb1d92b77bc0cd9339ade2a68b97818472cdd8988c4c40debd79e004ac6b2ad41c5ab87a82c262dab4fcefda1300f92251172d460635c26876aecdc7af22272b625dbcffde5b69fc47731c56994f650255e7e550a5969ec1acd48cf642b841cd1780f5d0967475063f17983c08f243811eb82acd103aeacb58d2488ec0269aff2e18ba6981a21509cec9c05fcfbad7164c260c6faa36e3994e84c8b688a4b355bd75547b7a9767e8cad6996b4763e846113310d2b176d7ea00b7bbe36d35facd7f0fe2b216f0058685a76aca94465b9fdcaf56802d61c9faf785d6833d57a20fa80cf5ddadd3a23bcbc3fce30c065971e2a78a88c5f6bf583ce8b34e57decbd37e4be9c9a4fe554c3914e61979c592caf389a780444a23cefa29d5d78907d9ba694849b4d6f413c8faadf7ef47b6ea965abb2ccf44066c3678f813e9a8fdecf4f349d6f864a3471ba3c0bea14c308c5e79a484fc9312bae92258bbbd1773478a0fad930c16f313ee40ccabc7eadd657935427aa69cdeb864bd600a3ed6439c590b949070cae739a7efac90b81a24b05d68a72e1c1882842af20e2d0527bb2b4d1af42629b5537e268809a9f0e5975af0536d4030f1bcd105d433bba3d1c959b17529e5a16aee24975a8a1da1f36c115109adb9bf15121e23e188a0f8186588fe6568542470f71cf7a08b2cc78bdf9b96bce8c66b6aef0505775dcd3a2a8217891b59fec1ce9370c5baf25d53e5b6d45d1409f2353e9ac53f4013efbaf31bb051f04e6228b7b2b26afe3586a314f8d83c8c80899e59cd90fb3ef44f8ec0c0d0779ad117e58d9e94672c8746bebe9d6d6f9b32e93c44de395728d080fc944415776c1c6c00cd60a5f487150f47549907ca57d8462f4867d1d15820d1483315a171c3edbcfd790fb97d61ad3a1d3fdf65ed6038da96a68d5fa046bd744fda414022ab15970c77727edbae1e54c6449ccd71250044cbc054251afb050ffca937646281493de6a566c3102d6c7fb496155a68799fe6f5dc45a98d79a308edc89e5b4f79c4174b513a2beceda1d860a2ef7bc52461d80e6b54905b8c6941a57c3f35591c116430f2d2d7cfec10b9149e02d838bc3c3cb048a68d718d76d5ca89e084435cf6bc092544115ae6baee73f15ebb8cf156de8f8a81ada9e0d4b8b40ab6f88049725e37720c096cbf2bd75b851a42c31f1569eddc3ce6c15fefd5ae8d8a70ebbb750c9e3aaa2a727c1ee9fab2371f08f1139ca04af13fa01e6cec884f2e437102a19d1d235c30cc8f501018ff1dabfc2cf0acf103d53632758596e30b2cc4692737213f39fd98f370f55eb080669fc9d730123a2f226ba13469db7c499c26cd1ec80c6bcee43275e7a6dcfaca1ea099b4fbefcac56ddb7070279b45f8226e660d0a00b1ed05ed992a1a5b130288ebc3f697e02fcde5552dfb1aa7002bce3c96c95a9b8d51d98b1865266a374cd72f88b65c4255fdd3d8abf397b48addf7b44d5291dd979e6d4dd7fbab18d926ab418df116a5d12b4367f2d387a2f6e98a5d20f5558b5f86a7795e351dac3493965db5790fedc926770180ba8c65f1ddac936e2d1dd738715cf291b3bd33bb5561d784e5adba3b290fe96a866bc9ed167", 0xeef}], 0x2}}], 0x1, 0x0)

[  882.196557][T19339] netlink: 116 bytes leftover after parsing attributes in process `syz-executor.5'.
12:19:59 executing program 3:
r0 = socket$inet6(0xa, 0x3, 0x6)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff})
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000040)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x800, 0x0, 0x2000000000903, 0x1}, 0x20)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x380000, @loopback}, 0x1c)

12:19:59 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_open_procfs(0x0, &(0x7f0000000080)='net/igmp\x00')
read$FUSE(r2, &(0x7f0000000140), 0xfffffefa)

12:19:59 executing program 2:
perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0x10, 0x3, 0x0)
sendto$inet6(r0, &(0x7f0000000040)="23000000220009bb00b9409b849ac00a00e3b8a98623ff2a09a6c5b01109e3ecabbe82", 0x23, 0x0, 0x0, 0x0)

12:19:59 executing program 3:
r0 = socket$inet6(0xa, 0x3, 0x6)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff})
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x380000, @loopback}, 0x1c)

12:19:59 executing program 1:
mq_open(&(0x7f0000000100)='.]!\x00', 0x0, 0x0, 0x0)

12:20:00 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
sendmsg$TIPC_NL_PEER_REMOVE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYRES16, @ANYBLOB="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"], 0x2}}, 0x0)
write(r0, &(0x7f0000000240)="241400001a0025f00485bc04fef7001d020b49ff70880000800328000802010001010000bc71176a36ede498534108e58342fa94a235a2a441f9", 0xfcae)

[  883.218293][T19360] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  883.227101][T19360] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  883.235373][T19360] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  883.243553][T19360] netlink: 4548 bytes leftover after parsing attributes in process `syz-executor.2'.
[  883.361884][T19362] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  883.370440][T19362] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  883.378784][T19362] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  883.386970][T19362] netlink: 4548 bytes leftover after parsing attributes in process `syz-executor.2'.
12:20:00 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="2400000010000100e2b769ac000000000300000007000200000000000800010010"], 0x24}}, 0x0)

12:20:00 executing program 5:
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
close(r2)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DEL(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="600000000906038100deffec87d64ae8fe00060105000100060000fd100008800c0007800800094077ca99830900020073797a3000000000080009"], 0x1}}, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x47fe2, 0x0)

12:20:00 executing program 3:
r0 = socket$inet6(0xa, 0x3, 0x6)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff})
dup(r1)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x380000, @loopback}, 0x1c)

12:20:00 executing program 1:
r0 = creat(&(0x7f0000000280)='./file0\x00', 0x3)
write$binfmt_script(r0, &(0x7f0000000700)=ANY=[@ANYBLOB="2321202e2f66696c653020f014d336b04b030400000000000092293e41df4f0e9da4f6e4014f1e9a6445a10a6a45559a57c15ceda085cc3f4f884c4af90a0e74467713328b5e4577124d1a2e21da765cd1ce2356a8f87e56f0bf8893cc7149595314f0771b65d3067f706eb14c1d3d1a7516847479f02b2e5f136728c8d620"], 0x131)
close(r0)
execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)

12:20:00 executing program 0:
perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DEL(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000380)={0x2c, 0x9, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_DATA={0x4}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}]}, 0x2c}}, 0x0)

12:20:00 executing program 2:
perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff})
ioctl$sock_inet_tcp_SIOCINQ(r0, 0x541b, &(0x7f0000000340))

[  884.046717][T19382] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.5'.
[  884.057097][T19382] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.5'.
12:20:01 executing program 3:
r0 = socket$inet6(0xa, 0x3, 0x6)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0))
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x380000, @loopback}, 0x1c)

12:20:01 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r2=>0xffffffffffffffff})
close(r2)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x13, &(0x7f0000000100)=0x100000001, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r3, 0x6, 0x14, &(0x7f0000000080)=0x2, 0x4)
connect$inet6(r3, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback, 0x1}, 0x1c)
recvmmsg(r3, &(0x7f0000000080), 0x21e, 0x40010002, 0x0)
io_setup(0x2, &(0x7f0000000140)=<r4=>0x0)
io_submit(r4, 0x1e09328e, &(0x7f0000000040)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x1000800000000001, 0x0, r2, 0x0, 0x12f}])

12:20:01 executing program 1:
r0 = socket(0x11, 0x2, 0x0)
bind(r0, &(0x7f0000000080)=@generic={0x11, "000001000000000008fc9d71fc00000000000000f8ffff002e0b3836005404b0d6301a4ce875f2e3ff5f163ee340b76795008000f8000000000104003c5811039e15775027ecce66fd792bbf0e5bf5ff9b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ff42c65400"}, 0x80)
r1 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000180)=0x5e)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000300)=@newlink={0x24, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_VFINFO_LIST={0x4}]}, 0x24}}, 0x0)

12:20:01 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_vs\x00')
read$FUSE(r0, &(0x7f0000000140), 0xfffffefa)

12:20:01 executing program 2:
write(0xffffffffffffffff, &(0x7f0000000000)="fc0000001a000700ab092500090007000aab0700a90110001d09369321000200ff", 0x21)
r0 = socket$inet6(0x10, 0x3, 0x0)
sendto$inet6(r0, &(0x7f0000000000)='p', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b)

12:20:01 executing program 3:
r0 = socket$inet6(0xa, 0x3, 0x6)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x380000, @loopback}, 0x1c)

[  884.743982][T19396] netlink: 48 bytes leftover after parsing attributes in process `syz-executor.2'.
[  884.839127][T19397] netlink: 48 bytes leftover after parsing attributes in process `syz-executor.2'.
[  885.076001][T19402] netlink: 'syz-executor.4': attribute type 1 has an invalid length.
12:20:02 executing program 4:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x200, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = memfd_create(&(0x7f00000000c0)='\x97&\x89\\\xd0\xe7\xca\x16ZO\x94:\xe1\x01\xe5`iq@Nse;\xa8Fpj\x0e\x04!\xd5\xc5YBz\x94\xaf\x13\xe9\xd2\x0f\xc2G\x86\x06\x00\xf1/V\x8cvS\xa6K&u\x9dX\xcc\r\x12\x11\x99\xe7\xce\xaeA\xb8-E\xa1\xf8\xe4~IS\xc1\x04\xf78\xf1\'\xdfv\x90\xbc\xd1\xda\x88j\x16\xeb>\x8c\xa1\x03\xf3\xaf\xfd\xf4&a?\xcaG\n\x02j\x9b}\xc6G\x86\xb2\xdeY\x17yX $\xfcU\x9d\x02\x00\x00\x00\x00\x00\x00\x00_\x7f\xf4tW.\x81\n\xf3\v\x8d\x12pa\x91\x9b\x8cxd\x06\xa7k\n\x86\xc3\xb6\x910\xf2\x03\x00\xaf\xe1jd\xda\x1f\x8bVrd\xa4\xb34\xfcUj\x1ad:#\x96\xf9\xd3\x1c]ImZlU=.\')\xcf\x1am\xd5\xe0\xdb\xdc\xd7\x8e\xe0\xa3\x82\xec\x9b\xfb\xc9\x81\x9c\xdc\xb7\x0f\xdd\xd3\xd7\xbe\x89\x7f3\x1d\x1c@\x8eu\x85\xces\x89\x95&3FX\xb1\xaf\xa6\x96\xa2\x13\x1f-\b\xcf1J\xd9\x13Q\x94R/\xdf\x1e\x9e\xe57\xda{\xe1D\x00\x00\x00\x00H\xe6\x0f\xe0]\xef\x8b\xcdk\xfe\xf6\xcc+rp\xd5\b~\xf6\xa2\x87\xed<\xc2bO\x88\x03n%\xaa;\x1egs\xacg\xd1k\xfe\xcaW ', 0x0)
fcntl$setlease(r0, 0x400, 0x1)
fcntl$setown(r0, 0x8, 0xffffffffffffffff)
execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x12}, &(0x7f0000000300))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r1 = gettid()
syz_open_procfs(0x0, &(0x7f0000000100)='environ\x00')
ptrace$setopts(0x4206, r1, 0x0, 0x0)
r2 = gettid()
tkill(r2, 0x1000000000016)

12:20:02 executing program 0:
perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000480)='ns/mnt\x00')

12:20:02 executing program 1:
perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$unix(0x1, 0x5, 0x0)
bind$unix(r0, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc)
listen(0xffffffffffffffff, 0x0)
socket$unix(0x1, 0x0, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
unlink(&(0x7f0000000100)='\xe9\x1fq\x89Y\x1e\x923aK\x00')

12:20:02 executing program 5:
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
close(r2)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DEL(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="600000000906038100deffec87d64ae8fe00060105000100060000fd100008800c0007800800094077ca99830900020073797a3000000000080009"], 0x1}}, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x47fe2, 0x0)

12:20:02 executing program 3:
connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x0, 0x380000, @loopback}, 0x1c)

12:20:02 executing program 2:
lsetxattr(&(0x7f0000fc0000)='./file1\x00', &(0x7f0000000000)=@random={'user.', 'user.\xfb\xde\xa3\xd1\x14]\x87\xe2U\xbd\xba\xe6B*\x81\x86Q)G\xda\v~\x1dD(3U$\xe1\x9f\x91\x92\xb9\xdeh\x8e\f\xe8\xc5\x15\x98\xba\x0fu\xa1\xb0$\xf6\xfe\xb4\xe8\x95\xdb\x11'}, &(0x7f0000fc0000)='//selinux\x00\x00\x01\x10', 0x0, 0x0)

12:20:02 executing program 2:
pipe(&(0x7f0000000500)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendto$inet6(0xffffffffffffffff, &(0x7f0000000000)="9000000018001f15b9409b0d1b029ac00200a57802000606", 0x18, 0x0, 0x0, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
socket$netlink(0x10, 0x3, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x4ff5d, 0x0)

[  885.430466][T19415] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.5'.
[  885.440161][T19415] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.5'.
12:20:02 executing program 3:
connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x0, 0x380000, @loopback}, 0x1c)

12:20:02 executing program 0:
sched_setscheduler(0x0, 0x5, &(0x7f00000001c0))
socketpair(0x1, 0x80803, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, 0x0, 0x0)

12:20:02 executing program 1:
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r0, &(0x7f0000000300)=@file={0x1, './file0\x00'}, 0x6e)
listen(r0, 0x0)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0x201)
close(r0)
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r1, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
r2 = socket$inet6(0xa, 0x1, 0x0)
sendto$inet6(r2, 0x0, 0x58, 0xfffffefffbfbbfbe, &(0x7f000006ffe4)={0xa, 0x0, 0x0, @empty}, 0x1c)

12:20:02 executing program 3:
connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x0, 0x380000, @loopback}, 0x1c)

[  885.810801][T19424] netlink: 116 bytes leftover after parsing attributes in process `syz-executor.2'.
12:20:03 executing program 3:
r0 = socket$inet6(0xa, 0x0, 0x6)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x380000, @loopback}, 0x1c)

12:20:06 executing program 3:
r0 = socket$inet6(0xa, 0x0, 0x6)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x380000, @loopback}, 0x1c)

12:20:06 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f00000000c0)='batadv\x00')
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000000)={'batadv0\x00', <r3=>0x0})
sendmsg$BATADV_CMD_GET_GATEWAYS(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000580)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="110700000000000000000c00000008000300", @ANYRES32=r3], 0x1c}}, 0x0)

12:20:06 executing program 5:
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
close(r2)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DEL(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="600000000906038100deffec87d64ae8fe00060105000100060000fd100008800c0007800800094077ca99830900020073797a3000000000080009"], 0x1}}, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x47fe2, 0x0)

12:20:06 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet(0x2, 0x3, 0x14)
setsockopt$inet_msfilter(r1, 0x0, 0x8, &(0x7f0000000140)=ANY=[@ANYBLOB='>'], 0x1)
getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000040)={<r2=>0x0, @local, @local}, &(0x7f0000000080)=0xc)
sendmsg$nl_route_sched(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000500)=@newtfilter={0x70, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0x4}, {}, {0x2}}, [@filter_kind_options=@f_fw={{0x7, 0x1, 'fw\x00'}, {0x44, 0x2, [@TCA_FW_POLICE={0x40, 0x2, [@TCA_POLICE_TBF={0x3c}]}]}}]}, 0x70}}, 0x0)

12:20:06 executing program 0:
r0 = socket$inet6(0xa, 0x3, 0x3c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendmsg(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000200)="2c0271ca8b080aae3300bfa4def38003c21c104094", 0xfd5c}], 0x1}, 0xc100)
sendmsg(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002e00)="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", 0x27d}], 0x1, 0x0, 0x0, 0x7}, 0x0)

12:20:06 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet(0x2, 0x3, 0x5)
setsockopt$inet_msfilter(r1, 0x0, 0x8, &(0x7f0000000600)=ANY=[@ANYBLOB="dc"], 0x1)
getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000040)={<r2=>0x0, @local, @local}, &(0x7f0000000080)=0xc)
sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000001540)=ANY=[@ANYBLOB='D\x00\x00\x00.\x00\'\r\x00'/20, @ANYRES32=r2], 0x44}}, 0x0)

[  889.379951][T19459] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.1'.
[  889.433283][T19464] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.5'.
[  889.443269][T19464] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.5'.
[  889.484714][T19468] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.1'.
12:20:06 executing program 2:
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000040))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x3})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
clone3(&(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

12:20:06 executing program 1:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000440)='ethtool\x00')
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000340)={0x18, r1, 0x301, 0x0, 0x0, {0x6}, [@ETHTOOL_A_LINKMODES_HEADER={0x4}]}, 0x18}}, 0x0)

12:20:06 executing program 3:
r0 = socket$inet6(0xa, 0x0, 0x6)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x380000, @loopback}, 0x1c)

12:20:06 executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x26e1, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
dup2(r1, r0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ttyS3\x00', 0x0, 0x0)
getsockopt$IP6T_SO_GET_INFO(r0, 0x29, 0x33, 0x0, &(0x7f0000000000))

12:20:07 executing program 2:
r0 = syz_open_dev$vcsa(&(0x7f0000000080)='/dev/vcsa#\x00', 0x0, 0x0)
close(r0)
close(0xffffffffffffffff)
r1 = socket$packet(0x11, 0x2, 0x300)
r2 = socket(0xa, 0x2, 0x0)
setsockopt$inet_int(r2, 0x0, 0x8, &(0x7f0000000040)=0xd3, 0x4)
getsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f0000000140)={<r3=>0x0, @rand_addr, @initdev}, &(0x7f0000000180)=0xc)
bind$packet(r1, &(0x7f0000000000)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @local}, 0x14)
sendmsg$NET_DM_CMD_START(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)

12:20:07 executing program 1:
open$dir(&(0x7f0000000280)='./file0\x00', 0x80441, 0x0)
sched_setscheduler(0x0, 0x5, &(0x7f0000000040))
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
setxattr$trusted_overlay_opaque(&(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='trusted.overlay.opaque\x00', 0x0, 0x0, 0x0)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f00000000c0)=0x4, 0x4)

12:20:07 executing program 0:
capset(&(0x7f00002d0ff8)={0x19980330}, &(0x7f0000cc0000))
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyS3\x00', 0x2, 0x0)
open(&(0x7f0000000000)='./file0/bus\x00', 0x0, 0x0)

[  890.492556][T19497] capability: warning: `syz-executor.0' uses 32-bit capabilities (legacy support in use)
12:20:07 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcs\x00', 0x0, 0x0)
syz_open_procfs(0x0, 0x0)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x464, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x40000000000002f, 0x0)

12:20:07 executing program 5:
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
close(r2)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DEL(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="600000000906038100deffec87d64ae8fe00060105000100060000fd100008800c0007800800094077ca99830900020073797a3000000000080009"], 0x1}}, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x47fe2, 0x0)

12:20:07 executing program 3:
r0 = socket$inet6(0xa, 0x3, 0x0)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x380000, @loopback}, 0x1c)

12:20:07 executing program 1:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$phonet_pipe(0x23, 0x5, 0x2)
r0 = socket$netlink(0x10, 0x3, 0x12)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[], 0x48}}, 0x0)

12:20:07 executing program 0:
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="5001000010000307ebff", @ANYBLOB], 0x200}}, 0x0)
r0 = socket(0x10, 0x800000000080002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000140)=[{0x6815, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492a3e, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0)

12:20:07 executing program 2:
r0 = socket$kcm(0x11, 0x200000000000002, 0x300)
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x203, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff})
r2 = dup(r1)
dup2(r2, r0)

[  891.043041][T19514] netlink: 304 bytes leftover after parsing attributes in process `syz-executor.0'.
[  891.093501][T19520] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.5'.
[  891.103213][T19520] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.5'.
12:20:08 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_vs_stats_percpu\x00')
r1 = open(&(0x7f0000000040)='./bus\x00', 0x141142, 0x0)
sendfile(r1, r0, 0x0, 0x200000000209)

12:20:08 executing program 2:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000cf6fe4)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0x83, &(0x7f0000000140)=@assoc_value, 0x8)

12:20:08 executing program 3:
r0 = socket$inet6(0xa, 0x3, 0x0)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x380000, @loopback}, 0x1c)

12:20:08 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240)={0x0, <r1=>0x0}, &(0x7f0000000280)=0x5)
setuid(r1)
r2 = socket$inet6(0xa, 0x800000000000002, 0x0)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x9}, 0x1c)
setsockopt$sock_linger(r2, 0x1, 0x3c, &(0x7f0000000180)={0x200000000000001}, 0x8)
sendmmsg(r2, &(0x7f0000004d80)=[{{0x0, 0x2000000, &(0x7f0000001500)=[{&(0x7f0000000040)="d3622fe131479cee20fb607a9585dc0b411519fd3b65066522d73df58b9257b566c6fc626776defc3a2e249c9120cab00220bc31d41e44f96f67971b8ed8a3dc9eb4123a903d58da02dd1eca653150422bc91e9585fb38", 0x57}, {&(0x7f00000011c0)="7cc3be44ec866303c11f9ec49c2fe80d4ccef580f3bf717b5e129f1dc7766fdf864b7bc35924f34bb5fd1dd89172a4b0db90eea51bdfec78bb53e8d41773cba7f1305a8a40b7368445a71ef7870273f1544930baf73a8bfa6ece09d54376b821b65fdf1e0704f1f3c5a823fa67f635159af010053f5b909f8e944c43d6fb1c4fca639b470d3e6ad140d0838958ecf0fc98a780205474fdeb93a97d27b4f3314a9585129aaec893d7fe36d87fd746841ac5c60b31e1732a1a3ca0afcc4068cdde63b142700c563c1ab59dc0b7200723bf21c694583ed8fed1b2bc5c204df3812c223ce0de2f40b69e7f4e8ba1c3ebc31de2f4190e3f1ceb", 0xf7}, {&(0x7f00000012c0), 0x80fe}, {&(0x7f0000000280)="0c22fcc306e8a4d628dc3f33cd1758b784d34ef62ecd943b96c5573b05e34886b55503a08eeac42aafc204e9fec654b4b0853f4c32d8d6f8968a96b81710a9ed49ae96ea22eb07accdc99ed31fb48b921b4c9af7278829eb32247169da3593e5e73371e82e3558cd87b9c876b91e091e933496ae3a6b5a00a79f50110980c83af2fd44e0f08908f806be4146080def894a3ac87c3d214e32b0e031c8873b6ed3cdb9c160ee236576cb5a749ee356d4f5df961b35ec3667bcfa641e2c812a5eefbd78546783b6bd280dc4ec1cd015bee7d07f0993d6", 0xd5}, {&(0x7f0000001440)="7b18908bcd34b2f4eef2193c5f89bb79551b5d7000ccc31628374b03e7f0b8bbfe45", 0x22}], 0x5, 0x0, 0x0, 0xffffffe0}}], 0x400000000000132, 0x4000000)
socket(0x0, 0x0, 0x0)

[  891.476621][T19527] =====================================================
[  891.483609][T19527] BUG: KMSAN: uninit-value in kmsan_handle_dma+0x9f/0xb0
[  891.490634][T19527] CPU: 1 PID: 19527 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0
[  891.499310][T19527] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  891.509365][T19527] Call Trace:
[  891.512676][T19527]  dump_stack+0x1df/0x240
[  891.517020][T19527]  kmsan_report+0xf7/0x1e0
[  891.521477][T19527]  kmsan_internal_check_memory+0x238/0x3d0
[  891.527312][T19527]  kmsan_handle_dma+0x9f/0xb0
[  891.531999][T19527]  virtqueue_add+0x46db/0x70f0
[  891.536777][T19527]  ? kmsan_task_context_state+0x47/0x90
[  891.542331][T19527]  ? kmsan_task_context_state+0x47/0x90
[  891.547903][T19527]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  891.553755][T19527]  virtqueue_add_sgs+0x319/0x330
[  891.558743][T19527]  virtscsi_add_cmd+0x888/0xb20
[  891.563645][T19527]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  891.569458][T19527]  virtscsi_queuecommand+0xe72/0x1080
[  891.574846][T19527]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  891.580657][T19527]  ? kmsan_get_metadata+0x11d/0x180
[  891.585866][T19527]  ? virtscsi_init+0x1220/0x1220
[  891.590841][T19527]  scsi_queue_rq+0x3eb7/0x4b00
[  891.595642][T19527]  ? scsi_vpd_tpg_id+0x3e0/0x3e0
[  891.600582][T19527]  blk_mq_dispatch_rq_list+0x931/0x3430
[  891.606140][T19527]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  891.611951][T19527]  ? kmsan_get_metadata+0x11d/0x180
[  891.617162][T19527]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  891.622993][T19527]  ? __msan_metadata_ptr_for_load_4+0x20/0x20
[  891.629082][T19527]  blk_mq_do_dispatch_sched+0x609/0x880
[  891.634660][T19527]  __blk_mq_sched_dispatch_requests+0x60e/0x8f0
[  891.640922][T19527]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  891.647086][T19527]  ? rb_insert_color+0xbbe/0x1180
[  891.652128][T19527]  ? kmsan_get_metadata+0x11d/0x180
[  891.657351][T19527]  blk_mq_sched_dispatch_requests+0x15d/0x2d0
[  891.663441][T19527]  __blk_mq_run_hw_queue+0x171/0x3a0
[  891.668739][T19527]  __blk_mq_delay_run_hw_queue+0x15d/0x6a0
[  891.674555][T19527]  ? kmsan_get_metadata+0x11d/0x180
[  891.679766][T19527]  blk_mq_run_hw_queue+0x4ac/0x670
[  891.684898][T19527]  blk_mq_sched_insert_requests+0x496/0x640
[  891.690821][T19527]  blk_mq_flush_plug_list+0xb21/0xca0
[  891.696225][T19527]  blk_flush_plug_list+0x72f/0x7b0
[  891.701341][T19527]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  891.707432][T19527]  blk_finish_plug+0xa0/0xd0
[  891.712063][T19527]  ext4_writepages+0x59d0/0x64c0
[  891.717121][T19527]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  891.723189][T19527]  ? __list_add_valid+0xb8/0x420
[  891.728134][T19527]  ? kmsan_get_metadata+0x11d/0x180
[  891.733344][T19527]  ? ext4_readpage+0x3e0/0x3e0
[  891.738129][T19527]  do_writepages+0x143/0x400
[  891.742735][T19527]  ? kmsan_get_metadata+0x11d/0x180
[  891.747947][T19527]  __filemap_fdatawrite_range+0x53b/0x5b0
[  891.753694][T19527]  file_write_and_wait_range+0x1b8/0x3d0
[  891.759368][T19527]  ext4_sync_file+0x464/0x1220
[  891.764155][T19527]  ? ext4_getfsmap_compare+0x100/0x100
[  891.769629][T19527]  vfs_fsync_range+0x2af/0x310
[  891.774420][T19527]  ext4_buffered_write_iter+0x9fb/0xac0
[  891.779998][T19527]  ext4_file_write_iter+0x1034/0x2dd0
[  891.785378][T19527]  ? kmsan_internal_poison_shadow+0x9f/0xd0
[  891.791276][T19527]  ? kmsan_internal_poison_shadow+0x66/0xd0
[  891.797169][T19527]  ? kmsan_slab_free+0x6e/0xb0
[  891.801935][T19527]  ? kmsan_get_metadata+0x11d/0x180
[  891.807140][T19527]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  891.812952][T19527]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  891.819031][T19527]  ? kmsan_get_metadata+0x4f/0x180
[  891.824181][T19527]  ? ext4_file_read_iter+0xa90/0xa90
[  891.829468][T19527]  do_iter_readv_writev+0x94a/0xb10
[  891.834703][T19527]  do_iter_write+0x303/0xdc0
[  891.839303][T19527]  ? kmalloc_array+0xa1/0x130
[  891.843993][T19527]  ? kmsan_get_metadata+0x11d/0x180
[  891.849207][T19527]  ? ext4_file_read_iter+0xa90/0xa90
[  891.854501][T19527]  vfs_iter_write+0x118/0x180
[  891.859283][T19527]  iter_file_splice_write+0xb5f/0x1800
[  891.864802][T19527]  ? splice_from_pipe+0x2f0/0x2f0
[  891.869830][T19527]  direct_splice_actor+0x1fd/0x580
[  891.874958][T19527]  ? kmsan_get_metadata+0x4f/0x180
[  891.880086][T19527]  splice_direct_to_actor+0x6b2/0xf50
[  891.885460][T19527]  ? do_splice_direct+0x580/0x580
[  891.890522][T19527]  do_splice_direct+0x342/0x580
[  891.895423][T19527]  do_sendfile+0x101b/0x1d40
[  891.900075][T19527]  __se_compat_sys_sendfile+0x301/0x3c0
[  891.905634][T19527]  ? kmsan_get_metadata+0x11d/0x180
[  891.910833][T19527]  ? __ia32_sys_sendfile64+0x70/0x70
[  891.916122][T19527]  __ia32_compat_sys_sendfile+0x56/0x70
[  891.921672][T19527]  __do_fast_syscall_32+0x2aa/0x400
[  891.926900][T19527]  do_fast_syscall_32+0x6b/0xd0
[  891.931763][T19527]  do_SYSENTER_32+0x73/0x90
[  891.936288][T19527]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  891.942614][T19527] RIP: 0023:0xf7f36549
[  891.946674][T19527] Code: Bad RIP value.
[  891.950740][T19527] RSP: 002b:00000000f5d310cc EFLAGS: 00000296 ORIG_RAX: 00000000000000bb
[  891.959149][T19527] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000000003
[  891.967118][T19527] RDX: 0000000000000000 RSI: 0000000000000209 RDI: 0000000000000000
[  891.975087][T19527] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  891.983055][T19527] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  891.991023][T19527] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  891.999009][T19527] 
[  892.001328][T19527] Uninit was stored to memory at:
[  892.006357][T19527]  kmsan_internal_chain_origin+0xad/0x130
[  892.012076][T19527]  kmsan_memcpy_memmove_metadata+0x272/0x2e0
[  892.018055][T19527]  kmsan_memcpy_metadata+0xb/0x10
[  892.023080][T19527]  __msan_memcpy+0x43/0x50
[  892.027498][T19527]  iov_iter_copy_from_user_atomic+0x11b1/0x1780
[  892.033735][T19527]  generic_perform_write+0x499/0x9a0
[  892.039025][T19527]  ext4_buffered_write_iter+0x795/0xac0
[  892.044571][T19527]  ext4_file_write_iter+0x1034/0x2dd0
[  892.049941][T19527]  do_iter_readv_writev+0x94a/0xb10
[  892.055140][T19527]  do_iter_write+0x303/0xdc0
[  892.059727][T19527]  vfs_iter_write+0x118/0x180
[  892.064407][T19527]  iter_file_splice_write+0xb5f/0x1800
[  892.069864][T19527]  direct_splice_actor+0x1fd/0x580
[  892.074975][T19527]  splice_direct_to_actor+0x6b2/0xf50
[  892.080341][T19527]  do_splice_direct+0x342/0x580
[  892.085189][T19527]  do_sendfile+0x101b/0x1d40
[  892.089775][T19527]  __se_compat_sys_sendfile+0x301/0x3c0
[  892.095319][T19527]  __ia32_compat_sys_sendfile+0x56/0x70
[  892.100878][T19527]  __do_fast_syscall_32+0x2aa/0x400
[  892.106076][T19527]  do_fast_syscall_32+0x6b/0xd0
[  892.110935][T19527]  do_SYSENTER_32+0x73/0x90
[  892.115436][T19527]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  892.121749][T19527] 
[  892.124071][T19527] Uninit was created at:
[  892.128312][T19527]  kmsan_save_stack_with_flags+0x3c/0x90
[  892.133962][T19527]  kmsan_alloc_page+0xb9/0x180
[  892.138724][T19527]  __alloc_pages_nodemask+0x56a2/0x5dc0
[  892.144273][T19527]  alloc_pages_current+0x672/0x990
[  892.149397][T19527]  push_pipe+0x605/0xb70
[  892.153638][T19527]  iov_iter_get_pages_alloc+0x18a9/0x21c0
[  892.159354][T19527]  do_splice_to+0x4fc/0x14f0
[  892.163942][T19527]  splice_direct_to_actor+0x45c/0xf50
[  892.169310][T19527]  do_splice_direct+0x342/0x580
[  892.174159][T19527]  do_sendfile+0x101b/0x1d40
[  892.178751][T19527]  __se_compat_sys_sendfile+0x301/0x3c0
[  892.184292][T19527]  __ia32_compat_sys_sendfile+0x56/0x70
[  892.189848][T19527]  __do_fast_syscall_32+0x2aa/0x400
[  892.195059][T19527]  do_fast_syscall_32+0x6b/0xd0
[  892.199910][T19527]  do_SYSENTER_32+0x73/0x90
[  892.204411][T19527]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  892.210720][T19527] 
[  892.213050][T19527] Bytes 0-455 of 4096 are uninitialized
[  892.218582][T19527] Memory access of size 4096 starts at ffff990ad935f000
[  892.225502][T19527] =====================================================
[  892.232421][T19527] Disabling lock debugging due to kernel taint
[  892.238564][T19527] Kernel panic - not syncing: panic_on_warn set ...
[  892.245152][T19527] CPU: 1 PID: 19527 Comm: syz-executor.0 Tainted: G    B             5.8.0-rc5-syzkaller #0
[  892.255209][T19527] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  892.265259][T19527] Call Trace:
[  892.268565][T19527]  dump_stack+0x1df/0x240
[  892.272910][T19527]  panic+0x3d5/0xc3e
[  892.276849][T19527]  kmsan_report+0x1df/0x1e0
[  892.281360][T19527]  kmsan_internal_check_memory+0x238/0x3d0
[  892.287192][T19527]  kmsan_handle_dma+0x9f/0xb0
[  892.291876][T19527]  virtqueue_add+0x46db/0x70f0
[  892.296651][T19527]  ? kmsan_task_context_state+0x47/0x90
[  892.302196][T19527]  ? kmsan_task_context_state+0x47/0x90
[  892.307769][T19527]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  892.313620][T19527]  virtqueue_add_sgs+0x319/0x330
[  892.318588][T19527]  virtscsi_add_cmd+0x888/0xb20
[  892.323483][T19527]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  892.329296][T19527]  virtscsi_queuecommand+0xe72/0x1080
[  892.334680][T19527]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  892.340485][T19527]  ? kmsan_get_metadata+0x11d/0x180
[  892.345691][T19527]  ? virtscsi_init+0x1220/0x1220
[  892.350632][T19527]  scsi_queue_rq+0x3eb7/0x4b00
[  892.355428][T19527]  ? scsi_vpd_tpg_id+0x3e0/0x3e0
[  892.360366][T19527]  blk_mq_dispatch_rq_list+0x931/0x3430
[  892.365920][T19527]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  892.371731][T19527]  ? kmsan_get_metadata+0x11d/0x180
[  892.376936][T19527]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  892.382761][T19527]  ? __msan_metadata_ptr_for_load_4+0x20/0x20
[  892.388847][T19527]  blk_mq_do_dispatch_sched+0x609/0x880
[  892.394422][T19527]  __blk_mq_sched_dispatch_requests+0x60e/0x8f0
[  892.400670][T19527]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  892.406827][T19527]  ? rb_insert_color+0xbbe/0x1180
[  892.411853][T19527]  ? kmsan_get_metadata+0x11d/0x180
[  892.417065][T19527]  blk_mq_sched_dispatch_requests+0x15d/0x2d0
[  892.423146][T19527]  __blk_mq_run_hw_queue+0x171/0x3a0
[  892.428445][T19527]  __blk_mq_delay_run_hw_queue+0x15d/0x6a0
[  892.434265][T19527]  ? kmsan_get_metadata+0x11d/0x180
[  892.439476][T19527]  blk_mq_run_hw_queue+0x4ac/0x670
[  892.444604][T19527]  blk_mq_sched_insert_requests+0x496/0x640
[  892.450519][T19527]  blk_mq_flush_plug_list+0xb21/0xca0
[  892.455919][T19527]  blk_flush_plug_list+0x72f/0x7b0
[  892.461035][T19527]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  892.467119][T19527]  blk_finish_plug+0xa0/0xd0
[  892.471719][T19527]  ext4_writepages+0x59d0/0x64c0
[  892.476778][T19527]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  892.482850][T19527]  ? __list_add_valid+0xb8/0x420
[  892.487789][T19527]  ? kmsan_get_metadata+0x11d/0x180
[  892.493004][T19527]  ? ext4_readpage+0x3e0/0x3e0
[  892.497779][T19527]  do_writepages+0x143/0x400
[  892.502385][T19527]  ? kmsan_get_metadata+0x11d/0x180
[  892.507593][T19527]  __filemap_fdatawrite_range+0x53b/0x5b0
[  892.513343][T19527]  file_write_and_wait_range+0x1b8/0x3d0
[  892.518997][T19527]  ext4_sync_file+0x464/0x1220
[  892.523784][T19527]  ? ext4_getfsmap_compare+0x100/0x100
[  892.529245][T19527]  vfs_fsync_range+0x2af/0x310
[  892.534034][T19527]  ext4_buffered_write_iter+0x9fb/0xac0
[  892.539616][T19527]  ext4_file_write_iter+0x1034/0x2dd0
[  892.544996][T19527]  ? kmsan_internal_poison_shadow+0x9f/0xd0
[  892.550890][T19527]  ? kmsan_internal_poison_shadow+0x66/0xd0
[  892.556805][T19527]  ? kmsan_slab_free+0x6e/0xb0
[  892.561604][T19527]  ? kmsan_get_metadata+0x11d/0x180
[  892.566822][T19527]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  892.572635][T19527]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  892.578701][T19527]  ? kmsan_get_metadata+0x4f/0x180
[  892.583839][T19527]  ? ext4_file_read_iter+0xa90/0xa90
[  892.589134][T19527]  do_iter_readv_writev+0x94a/0xb10
[  892.594369][T19527]  do_iter_write+0x303/0xdc0
[  892.598964][T19527]  ? kmalloc_array+0xa1/0x130
[  892.603649][T19527]  ? kmsan_get_metadata+0x11d/0x180
[  892.608859][T19527]  ? ext4_file_read_iter+0xa90/0xa90
[  892.614148][T19527]  vfs_iter_write+0x118/0x180
[  892.618844][T19527]  iter_file_splice_write+0xb5f/0x1800
[  892.624375][T19527]  ? splice_from_pipe+0x2f0/0x2f0
[  892.629402][T19527]  direct_splice_actor+0x1fd/0x580
[  892.634528][T19527]  ? kmsan_get_metadata+0x4f/0x180
[  892.639663][T19527]  splice_direct_to_actor+0x6b2/0xf50
[  892.645043][T19527]  ? do_splice_direct+0x580/0x580
[  892.650107][T19527]  do_splice_direct+0x342/0x580
[  892.654985][T19527]  do_sendfile+0x101b/0x1d40
[  892.659617][T19527]  __se_compat_sys_sendfile+0x301/0x3c0
[  892.665173][T19527]  ? kmsan_get_metadata+0x11d/0x180
[  892.670368][T19527]  ? __ia32_sys_sendfile64+0x70/0x70
[  892.675653][T19527]  __ia32_compat_sys_sendfile+0x56/0x70
[  892.681201][T19527]  __do_fast_syscall_32+0x2aa/0x400
[  892.686418][T19527]  do_fast_syscall_32+0x6b/0xd0
[  892.691279][T19527]  do_SYSENTER_32+0x73/0x90
[  892.695792][T19527]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  892.702120][T19527] RIP: 0023:0xf7f36549
[  892.706176][T19527] Code: Bad RIP value.
[  892.710233][T19527] RSP: 002b:00000000f5d310cc EFLAGS: 00000296 ORIG_RAX: 00000000000000bb
[  892.718643][T19527] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000000003
[  892.726611][T19527] RDX: 0000000000000000 RSI: 0000000000000209 RDI: 0000000000000000
[  892.734582][T19527] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  892.742553][T19527] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  892.750522][T19527] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  892.759499][T19527] Kernel Offset: 0x23c00000 from 0xffffffff81000000 (relocation range: 0xffffffff80000000-0xffffffffbfffffff)
[  892.771122][T19527] Rebooting in 86400 seconds..