6dcdb6410d5801afa5292894d40b188ef024514c2112ea7e10dd78d79c64ca10b56864f479e9e60f2326c2caf41e491a86609b3960fa367c00aa1609"}]}]}, 0x144}, 0x1, 0x0, 0x0, 0x800}, 0x81) sendmsg$BATADV_CMD_GET_GATEWAYS(r4, &(0x7f0000001440)={&(0x7f0000001340)={0x10, 0x0, 0x0, 0x9113ac9c32c31fb0}, 0xc, &(0x7f0000001400)={&(0x7f0000001380)={0x5c, 0x0, 0x4, 0x70bd27, 0x25dfdbff, {}, [@BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x7ff}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x10000}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0xfffffff7}, @BATADV_ATTR_GW_SEL_CLASS={0x8}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x4}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x6}, @BATADV_ATTR_GW_MODE={0x5}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x800}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}]}, 0x5c}, 0x1, 0x0, 0x0, 0x40000}, 0x4000) sendmsg$ETHTOOL_MSG_LINKINFO_GET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYBLOB="224814000800", @ANYRES16=r2, @ANYBLOB="b7cf29bd0a2061ba56"], 0x84}}, 0x0) 03:37:49 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000100)={0x20, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_PRIVFLAGS_FLAGS={0xc, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x4}]}]}, 0x33fe0}}, 0x0) 03:37:49 executing program 2: bpf$OBJ_GET_PROG(0x9, &(0x7f00000000c0)={&(0x7f0000000180)='./file0/file0\x00', 0x11}, 0x10) 03:37:49 executing program 0: ioctl$sock_ipv6_tunnel_SIOCADDPRL(0xffffffffffffffff, 0x89f5, 0x0) ioctl$sock_ipv6_tunnel_SIOCADDPRL(0xffffffffffffffff, 0x89f5, &(0x7f0000000140)={'syztnl0\x00', 0x0}) openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCADDPRL(0xffffffffffffffff, 0x89f5, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) syz_io_uring_setup(0x1007, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x201}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000680), &(0x7f00000006c0)) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000700)=@IORING_OP_FALLOCATE={0x11, 0xe, 0x0, @fd_index=0xa}, 0x0) 03:37:49 executing program 4: bpf$OBJ_GET_PROG(0x9, &(0x7f00000000c0)={0x0, 0x26}, 0x10) [ 2446.855212][T11338] netlink: 'syz-executor.1': attribute type 2 has an invalid length. 03:37:49 executing program 5: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x2, [@struct={0x0, 0x1, 0x0, 0x4, 0x0, 0x4, [{0x0, 0x2}]}, @enum]}}, &(0x7f0000000a40)=""/4096, 0x3e, 0x1000, 0x1}, 0x20) socket$nl_route(0x10, 0x3, 0x0) r0 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0) getsockname$packet(r0, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r1 = socket$nl_route(0x10, 0x3, 0x0) getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14) sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=@newlink={0x38, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r2}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @sit={{0x8}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPTUN_LINK={0x8, 0x1, r2}]}}}]}, 0x38}}, 0x0) 03:37:50 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$IPT_SO_GET_INFO(r0, 0x0, 0x3, 0x0, &(0x7f0000000100)) 03:37:50 executing program 1: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0x3, &(0x7f0000000180)=@framed, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r0}, 0x10) r1 = open(&(0x7f00000000c0)='./file0\x00', 0xac242, 0x0) ioctl$FS_IOC_SETFLAGS(r1, 0x800412f9, 0x0) 03:37:50 executing program 2: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000700)={0x1, &(0x7f00000006c0)=[{0x6, 0x80}]}) 03:37:50 executing program 0: r0 = open(&(0x7f00000000c0)='./file0\x00', 0xac242, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x401012f7, &(0x7f0000000000)=0x80111) 03:37:50 executing program 5: syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe2$9p(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff"], 0x15) r2 = dup(r1) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000480)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@version_u}]}}) write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137) mount$9p_fd(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000380)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) chmod(&(0x7f0000000300)='./file0\x00', 0x300) 03:37:50 executing program 4: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x12, r0, 0x0) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) madvise(&(0x7f0000123000/0x2000)=nil, 0x2000, 0x8) 03:37:50 executing program 3: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="1f0000001a000900162f1652b63ed20102", @ANYRESOCT=r0], 0x34}}, 0x0) [ 2447.338707][ T24] audit: type=1800 audit(1655350670.383:63): pid=11350 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="file0" dev="sda1" ino=1156 res=0 errno=0 03:37:50 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) r0 = open(0x0, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r2 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r2, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r1, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) [ 2447.449832][ T24] audit: type=1326 audit(1655350670.453:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=11351 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f1f549 code=0x0 03:37:50 executing program 2: r0 = open(&(0x7f00000000c0)='./file0\x00', 0xac242, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0xc02812f8, &(0x7f0000000000)) [ 2447.598065][ T24] audit: type=1800 audit(1655350670.643:65): pid=11356 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="file0" dev="sda1" ino=1167 res=0 errno=0 03:37:50 executing program 0: bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./file0\x00', 0xac242, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x807812f0, 0x0) 03:37:50 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000ec0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) r1 = socket$nl_route(0x10, 0x3, 0x0) mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x13, r1, 0x0) [ 2447.803946][ T24] audit: type=1800 audit(1655350670.853:66): pid=11366 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="file0" dev="sda1" ino=1165 res=0 errno=0 [ 2447.826765][T11365] netlink: 3 bytes leftover after parsing attributes in process `syz-executor.3'. 03:37:50 executing program 5: syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe2$9p(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff"], 0x15) r2 = dup(r1) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000480)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@version_u}]}}) write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137) mount$9p_fd(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000380)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) chmod(&(0x7f0000000300)='./file0\x00', 0x300) 03:37:51 executing program 2: r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000100)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000001180)={0x1c, 0x0, &(0x7f0000000140)=[@dead_binder_done={0x400c630e}, @clear_death], 0x0, 0x0, 0x0}) [ 2448.579724][ T24] audit: type=1800 audit(1655350671.623:67): pid=11369 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="file0" dev="sda1" ino=1183 res=0 errno=0 03:37:51 executing program 3: r0 = open(&(0x7f00000000c0)='./file0\x00', 0xac242, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x400c12f5, &(0x7f0000000000)) 03:37:51 executing program 5: syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe2$9p(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff"], 0x15) r2 = dup(r1) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000480)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@version_u}]}}) write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137) mount$9p_fd(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000380)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) chmod(&(0x7f0000000300)='./file0\x00', 0x300) 03:37:51 executing program 0: bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./file0\x00', 0xac242, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x807812f0, 0x0) 03:37:51 executing program 4: bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00'}, 0x10) r0 = open(&(0x7f00000000c0)='./file0\x00', 0xac242, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x801012f0, 0x0) 03:37:52 executing program 2: syslog(0x4, &(0x7f0000000040)=""/90, 0x63) [ 2449.280795][ T24] audit: type=1800 audit(1655350672.323:68): pid=11383 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="file0" dev="sda1" ino=1173 res=0 errno=0 [ 2449.415137][ T24] audit: type=1800 audit(1655350672.363:69): pid=11384 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="sda1" ino=1177 res=0 errno=0 [ 2449.444587][ T24] audit: type=1800 audit(1655350672.403:70): pid=11385 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=1159 res=0 errno=0 03:37:52 executing program 0: bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./file0\x00', 0xac242, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x807812f0, 0x0) [ 2449.889051][ T24] audit: type=1800 audit(1655350672.933:71): pid=11391 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="file0" dev="sda1" ino=1165 res=0 errno=0 03:37:53 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) r0 = open(0x0, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r2 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r2, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r1, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:37:53 executing program 4: pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) unshare(0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f0000000040)={0xa, 0x8000002, 0x0, @loopback}, 0x1c) sendto$inet6(r1, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c) sendto$inet6(r1, &(0x7f0000000080)="44f9b108b1cdc885c9c533d21f474bec8bfef1df1e2da71e578dc6b91d09f7ab15378571d8e27546090000006e75436914ab717528ee4b7a9beaf908d11137c11903064e83b4951f4d433a5404970c85d92d7083fd38844cbb0c6c5eb508ddc2dc7a590aa7941b1e9eeb5a688138dea09b776cbfa784cbf550bf3074fb0d775da4df5a3f48bbdf452eeb6b923da9d0e25b80f76a873664b5753444fe05f33e5f91045540836c3cd6af10f0cd018f0c6f57f926ac959a5628c45088fbe0c87fbe6cbcda4662d2a12f6d00"/215, 0xd0d0c2ac, 0x1, 0x0, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setreuid(0x0, r3) ioctl$sock_SIOCSPGRP(r1, 0x8902, &(0x7f00000001c0)=0xffffffffffffffff) splice(r1, 0x0, r0, 0x0, 0x406f40a, 0x0) 03:37:53 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e24, 0x0, @mcast2, 0x9}, 0x1c) 03:37:53 executing program 0: bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./file0\x00', 0xac242, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x807812f0, 0x0) 03:37:53 executing program 5: syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe2$9p(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff"], 0x15) r2 = dup(r1) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000480)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@version_u}]}}) write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137) mount$9p_fd(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000380)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) chmod(&(0x7f0000000300)='./file0\x00', 0x300) 03:37:53 executing program 2: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) setsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000200)=0x7a, 0x4) [ 2450.753079][ T24] audit: type=1800 audit(1655350673.773:72): pid=11399 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="file0" dev="sda1" ino=1177 res=0 errno=0 03:37:53 executing program 3: r0 = socket$inet_udp(0x2, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x38000) prlimit64(0x0, 0x0, 0x0, 0x0) 03:37:54 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6) getpid() socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, 0x0, 0x0) sendmmsg$unix(r1, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$nl_route(0x10, 0x3, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000007d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x10) r3 = syz_open_procfs(0x0, &(0x7f0000000040)='mountinfo\x00') r4 = syz_open_procfs(0x0, &(0x7f0000000000)='timerslack_ns\x00') sendfile(r4, r3, &(0x7f0000002140)=0xc035, 0x8) bind$netlink(r3, &(0x7f00000000c0)={0x10, 0x0, 0x25dfdbfb, 0x1000000}, 0xc) 03:37:54 executing program 5: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x5, 0x0, 0x0) 03:37:54 executing program 0: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt(r0, 0x0, 0x6, 0x0, 0x0) 03:37:54 executing program 5: r0 = socket$igmp6(0xa, 0x3, 0x2) getsockopt$IP6T_SO_GET_REVISION_TARGET(r0, 0x29, 0x24, 0x0, &(0x7f0000000600)) 03:37:55 executing program 5: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000001a80)={0x0, 0x0, &(0x7f0000001a40)={&(0x7f0000000600)={0x24, 0x2, 0x1, 0x101, 0x0, 0x0, {0x0, 0x2}, [@nested={0x10, 0x8, 0x0, 0x1, [@typed={0xc, 0x0, 0x0, 0x0, @u64}]}]}, 0x24}}, 0x0) [ 2452.556800][T11426] netlink: 'syz-executor.5': attribute type 8 has an invalid length. [ 2453.373123][T11412] not chained 700000 origins [ 2453.377985][T11412] CPU: 1 PID: 11412 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2453.388273][T11412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2453.398446][T11412] Call Trace: [ 2453.401829][T11412] [ 2453.404785][T11412] dump_stack_lvl+0x200/0x28c [ 2453.409525][T11412] dump_stack+0x29/0x2c [ 2453.413718][T11412] kmsan_internal_chain_origin+0x78/0x120 [ 2453.419581][T11412] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2453.425706][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2453.430875][T11412] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2453.436750][T11412] ? __unix_dgram_recvmsg+0x19b9/0x1b80 [ 2453.442348][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2453.447532][T11412] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2453.453404][T11412] ? should_fail+0x79/0x9c0 [ 2453.457948][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2453.463110][T11412] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2453.469412][T11412] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2453.475537][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2453.480704][T11412] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2453.486569][T11412] __msan_chain_origin+0xbd/0x140 [ 2453.491664][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2453.496856][T11412] get_compat_msghdr+0x10c/0x280 [ 2453.501856][T11412] ? do_recvmmsg+0x7c9/0x1200 [ 2453.506592][T11412] ___sys_recvmsg+0x289/0xb40 [ 2453.511780][T11412] ? __schedule+0x176c/0x21c0 [ 2453.516511][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2453.521678][T11412] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2453.527551][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2453.532718][T11412] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2453.538621][T11412] do_recvmmsg+0x7c9/0x1200 [ 2453.543199][T11412] ? filter_irq_stacks+0xb9/0x230 [ 2453.548297][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2453.553559][T11412] ? __sys_recvmmsg+0xb9/0x6f0 [ 2453.558374][T11412] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2453.564942][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2453.569689][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2453.576090][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2453.581173][T11412] do_fast_syscall_32+0x33/0x70 [ 2453.586070][T11412] do_SYSENTER_32+0x1b/0x20 [ 2453.590731][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2453.597125][T11412] RIP: 0023:0xf7feb549 [ 2453.601224][T11412] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2453.621165][T11412] RSP: 002b:00000000f7fe65cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2453.629631][T11412] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 2453.637731][T11412] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 2453.645730][T11412] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2453.653728][T11412] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2453.661997][T11412] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2453.670022][T11412] [ 2453.678161][T11412] Uninit was stored to memory at: [ 2453.684216][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2453.689397][T11412] get_compat_msghdr+0x10c/0x280 [ 2453.694524][T11412] ___sys_recvmsg+0x289/0xb40 [ 2453.699249][T11412] do_recvmmsg+0x7c9/0x1200 [ 2453.703934][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2453.708666][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2453.715209][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2453.720288][T11412] do_fast_syscall_32+0x33/0x70 [ 2453.725326][T11412] do_SYSENTER_32+0x1b/0x20 [ 2453.730003][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2453.736608][T11412] [ 2453.738948][T11412] Uninit was stored to memory at: [ 2453.744142][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2453.749311][T11412] get_compat_msghdr+0x10c/0x280 [ 2453.754414][T11412] ___sys_recvmsg+0x289/0xb40 [ 2453.759154][T11412] do_recvmmsg+0x7c9/0x1200 [ 2453.763871][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2453.768600][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2453.775138][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2453.780226][T11412] do_fast_syscall_32+0x33/0x70 [ 2453.785266][T11412] do_SYSENTER_32+0x1b/0x20 [ 2453.789819][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2453.796341][T11412] [ 2453.798682][T11412] Uninit was stored to memory at: [ 2453.803880][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2453.809039][T11412] get_compat_msghdr+0x10c/0x280 [ 2453.814158][T11412] ___sys_recvmsg+0x289/0xb40 [ 2453.818883][T11412] do_recvmmsg+0x7c9/0x1200 [ 2453.823541][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2453.828258][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2453.834759][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2453.839843][T11412] do_fast_syscall_32+0x33/0x70 [ 2453.844949][T11412] do_SYSENTER_32+0x1b/0x20 [ 2453.849516][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2453.856010][T11412] [ 2453.858337][T11412] Uninit was stored to memory at: [ 2453.863521][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2453.868684][T11412] get_compat_msghdr+0x10c/0x280 [ 2453.873786][T11412] ___sys_recvmsg+0x289/0xb40 [ 2453.878504][T11412] do_recvmmsg+0x7c9/0x1200 [ 2453.883159][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2453.887902][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2453.894393][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2453.899459][T11412] do_fast_syscall_32+0x33/0x70 [ 2453.904558][T11412] do_SYSENTER_32+0x1b/0x20 [ 2453.909122][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2453.915610][T11412] [ 2453.917934][T11412] Uninit was stored to memory at: [ 2453.923101][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2453.928252][T11412] get_compat_msghdr+0x10c/0x280 [ 2453.934036][T11412] ___sys_recvmsg+0x289/0xb40 [ 2453.938765][T11412] do_recvmmsg+0x7c9/0x1200 [ 2453.944029][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2453.948749][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2453.955248][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2453.960313][T11412] do_fast_syscall_32+0x33/0x70 [ 2453.965314][T11412] do_SYSENTER_32+0x1b/0x20 [ 2453.969851][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2453.976343][T11412] [ 2453.978669][T11412] Uninit was stored to memory at: [ 2453.983847][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2453.988999][T11412] get_compat_msghdr+0x10c/0x280 [ 2453.994096][T11412] ___sys_recvmsg+0x289/0xb40 [ 2453.998818][T11412] do_recvmmsg+0x7c9/0x1200 [ 2454.003473][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2454.008191][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2454.014744][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2454.019831][T11412] do_fast_syscall_32+0x33/0x70 [ 2454.024824][T11412] do_SYSENTER_32+0x1b/0x20 [ 2454.029361][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2454.035863][T11412] [ 2454.038212][T11412] Uninit was stored to memory at: [ 2454.043380][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2454.048543][T11412] get_compat_msghdr+0x10c/0x280 [ 2454.053630][T11412] ___sys_recvmsg+0x289/0xb40 [ 2454.058359][T11412] do_recvmmsg+0x7c9/0x1200 [ 2454.063020][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2454.067737][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2454.074240][T11412] __do_fast_syscall_32+0x95/0xf0 03:37:57 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) r0 = open(0x0, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r2 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r2, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r1, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) [ 2454.079311][T11412] do_fast_syscall_32+0x33/0x70 [ 2454.084323][T11412] do_SYSENTER_32+0x1b/0x20 [ 2454.088889][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2454.095398][T11412] [ 2454.097736][T11412] Local variable msg_sys created at: [ 2454.103237][T11412] do_recvmmsg+0xc9/0x1200 [ 2454.107712][T11412] __sys_recvmmsg+0x520/0x6f0 03:37:57 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x38000) 03:37:57 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) read$FUSE(r1, &(0x7f0000002180)={0x2020}, 0x118c) sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="1f000000120001ce"], 0x34}}, 0x0) 03:37:57 executing program 5: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000001a80)={0x0, 0x0, &(0x7f0000001a40)={&(0x7f0000000600)={0x24, 0x2, 0x1, 0x101, 0x0, 0x0, {0x0, 0x2}, [@nested={0x10, 0x8, 0x0, 0x1, [@typed={0xc, 0x0, 0x0, 0x0, @u64}]}]}, 0x24}}, 0x0) 03:37:57 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) sendmmsg$inet6(r0, &(0x7f0000000380)=[{{&(0x7f0000000040)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0, 0x0, &(0x7f0000000140)=[@dstopts={{0x18}}, @tclass={{0x14}}], 0x30}}], 0x1, 0x0) [ 2454.310832][T11430] netlink: 'syz-executor.5': attribute type 8 has an invalid length. [ 2454.364373][T11435] netlink: 11 bytes leftover after parsing attributes in process `syz-executor.0'. [ 2454.374275][T11435] netlink: 11 bytes leftover after parsing attributes in process `syz-executor.0'. [ 2454.592816][T11433] netlink: 11 bytes leftover after parsing attributes in process `syz-executor.0'. 03:37:57 executing program 5: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000001a80)={0x0, 0x0, &(0x7f0000001a40)={&(0x7f0000000600)={0x24, 0x2, 0x1, 0x101, 0x0, 0x0, {0x0, 0x2}, [@nested={0x10, 0x8, 0x0, 0x1, [@typed={0xc, 0x0, 0x0, 0x0, @u64}]}]}, 0x24}}, 0x0) [ 2455.222885][T11442] netlink: 'syz-executor.5': attribute type 8 has an invalid length. [ 2456.303556][T11412] not chained 710000 origins [ 2456.308207][T11412] CPU: 0 PID: 11412 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2456.318401][T11412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2456.328482][T11412] Call Trace: [ 2456.331781][T11412] [ 2456.334724][T11412] dump_stack_lvl+0x200/0x28c [ 2456.339448][T11412] dump_stack+0x29/0x2c [ 2456.343647][T11412] kmsan_internal_chain_origin+0x78/0x120 [ 2456.349440][T11412] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2456.355571][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2456.360729][T11412] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2456.366592][T11412] ? __unix_dgram_recvmsg+0x19b9/0x1b80 [ 2456.372268][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2456.377608][T11412] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2456.383477][T11412] ? should_fail+0x79/0x9c0 [ 2456.388107][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2456.393282][T11412] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2456.399585][T11412] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2456.405722][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2456.410888][T11412] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2456.416757][T11412] __msan_chain_origin+0xbd/0x140 [ 2456.421835][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2456.427020][T11412] get_compat_msghdr+0x10c/0x280 [ 2456.432020][T11412] ? do_recvmmsg+0x7c9/0x1200 [ 2456.436759][T11412] ___sys_recvmsg+0x289/0xb40 [ 2456.441588][T11412] ? __schedule+0x176c/0x21c0 [ 2456.446418][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2456.451666][T11412] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2456.457529][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2456.462695][T11412] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2456.468573][T11412] do_recvmmsg+0x7c9/0x1200 [ 2456.473121][T11412] ? filter_irq_stacks+0xb9/0x230 [ 2456.478214][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2456.483565][T11412] ? __sys_recvmmsg+0xb9/0x6f0 [ 2456.488363][T11412] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2456.494907][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2456.499736][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2456.506226][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2456.511309][T11412] do_fast_syscall_32+0x33/0x70 [ 2456.516563][T11412] do_SYSENTER_32+0x1b/0x20 [ 2456.521088][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2456.527442][T11412] RIP: 0023:0xf7feb549 [ 2456.531608][T11412] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2456.551402][T11412] RSP: 002b:00000000f7fe65cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2456.559845][T11412] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 2456.567835][T11412] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 2456.575826][T11412] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2456.583825][T11412] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2456.592017][T11412] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2456.600041][T11412] [ 2456.606762][T11412] Uninit was stored to memory at: [ 2456.612440][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2456.617611][T11412] get_compat_msghdr+0x10c/0x280 [ 2456.622709][T11412] ___sys_recvmsg+0x289/0xb40 [ 2456.627451][T11412] do_recvmmsg+0x7c9/0x1200 [ 2456.633069][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2456.637803][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2456.645079][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2456.650155][T11412] do_fast_syscall_32+0x33/0x70 [ 2456.655167][T11412] do_SYSENTER_32+0x1b/0x20 [ 2456.659746][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2456.666279][T11412] [ 2456.668618][T11412] Uninit was stored to memory at: [ 2456.673878][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2456.679041][T11412] get_compat_msghdr+0x10c/0x280 [ 2456.684173][T11412] ___sys_recvmsg+0x289/0xb40 [ 2456.688934][T11412] do_recvmmsg+0x7c9/0x1200 [ 2456.693840][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2456.698691][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2456.705509][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2456.710606][T11412] do_fast_syscall_32+0x33/0x70 [ 2456.715652][T11412] do_SYSENTER_32+0x1b/0x20 [ 2456.720233][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2456.726790][T11412] [ 2456.729139][T11412] Uninit was stored to memory at: [ 2456.734406][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2456.739572][T11412] get_compat_msghdr+0x10c/0x280 [ 2456.744723][T11412] ___sys_recvmsg+0x289/0xb40 [ 2456.749464][T11412] do_recvmmsg+0x7c9/0x1200 [ 2456.754181][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2456.758982][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2456.765537][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2456.770613][T11412] do_fast_syscall_32+0x33/0x70 [ 2456.775698][T11412] do_SYSENTER_32+0x1b/0x20 [ 2456.780257][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2456.786795][T11412] [ 2456.789132][T11412] Uninit was stored to memory at: [ 2456.794387][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2456.799808][T11412] get_compat_msghdr+0x10c/0x280 [ 2456.805062][T11412] ___sys_recvmsg+0x289/0xb40 [ 2456.809974][T11412] do_recvmmsg+0x7c9/0x1200 [ 2456.814704][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2456.819438][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2456.825974][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2456.832193][T11412] do_fast_syscall_32+0x33/0x70 [ 2456.837095][T11412] do_SYSENTER_32+0x1b/0x20 [ 2456.841798][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2456.848257][T11412] [ 2456.850588][T11412] Uninit was stored to memory at: [ 2456.855950][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2456.861138][T11412] get_compat_msghdr+0x10c/0x280 [ 2456.866279][T11412] ___sys_recvmsg+0x289/0xb40 [ 2456.871011][T11412] do_recvmmsg+0x7c9/0x1200 [ 2456.875712][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2456.880441][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2456.886965][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2456.892243][T11412] do_fast_syscall_32+0x33/0x70 [ 2456.897159][T11412] do_SYSENTER_32+0x1b/0x20 [ 2456.901926][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2456.908306][T11412] [ 2456.910645][T11412] Uninit was stored to memory at: [ 2456.915922][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2456.921083][T11412] get_compat_msghdr+0x10c/0x280 [ 2456.926183][T11412] ___sys_recvmsg+0x289/0xb40 [ 2456.931098][T11412] do_recvmmsg+0x7c9/0x1200 [ 2456.935815][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2456.940558][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2456.947292][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2456.952462][T11412] do_fast_syscall_32+0x33/0x70 [ 2456.957379][T11412] do_SYSENTER_32+0x1b/0x20 [ 2456.962064][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2456.968441][T11412] [ 2456.970760][T11412] Uninit was stored to memory at: [ 2456.976020][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2456.981194][T11412] get_compat_msghdr+0x10c/0x280 [ 2456.986292][T11412] ___sys_recvmsg+0x289/0xb40 [ 2456.991111][T11412] do_recvmmsg+0x7c9/0x1200 [ 2456.995830][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2457.000556][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2457.007160][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2457.012432][T11412] do_fast_syscall_32+0x33/0x70 [ 2457.017337][T11412] do_SYSENTER_32+0x1b/0x20 [ 2457.022055][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2457.028432][T11412] [ 2457.030750][T11412] Local variable msg_sys created at: [ 2457.036639][T11412] do_recvmmsg+0xc9/0x1200 [ 2457.041104][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2457.234753][T11412] not chained 720000 origins [ 2457.239395][T11412] CPU: 0 PID: 11412 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2457.249583][T11412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2457.259654][T11412] Call Trace: [ 2457.262958][T11412] [ 2457.265901][T11412] dump_stack_lvl+0x200/0x28c [ 2457.270603][T11412] dump_stack+0x29/0x2c [ 2457.274778][T11412] kmsan_internal_chain_origin+0x78/0x120 [ 2457.280557][T11412] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2457.286673][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2457.291823][T11412] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2457.297684][T11412] ? __unix_dgram_recvmsg+0x19b9/0x1b80 [ 2457.303283][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2457.308454][T11412] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2457.314298][T11412] ? should_fail+0x79/0x9c0 [ 2457.318844][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2457.324014][T11412] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2457.330312][T11412] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2457.336439][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2457.341601][T11412] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2457.347460][T11412] __msan_chain_origin+0xbd/0x140 [ 2457.352518][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2457.357714][T11412] get_compat_msghdr+0x10c/0x280 [ 2457.362692][T11412] ? do_recvmmsg+0x7c9/0x1200 [ 2457.367432][T11412] ___sys_recvmsg+0x289/0xb40 [ 2457.372150][T11412] ? __schedule+0x176c/0x21c0 [ 2457.376875][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2457.382153][T11412] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2457.388014][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2457.393176][T11412] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2457.399051][T11412] do_recvmmsg+0x7c9/0x1200 [ 2457.403690][T11412] ? filter_irq_stacks+0xb9/0x230 [ 2457.408790][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2457.413947][T11412] ? __sys_recvmmsg+0xb9/0x6f0 [ 2457.418802][T11412] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2457.425375][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2457.430119][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2457.436555][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2457.441634][T11412] do_fast_syscall_32+0x33/0x70 [ 2457.446525][T11412] do_SYSENTER_32+0x1b/0x20 [ 2457.451048][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2457.457402][T11412] RIP: 0023:0xf7feb549 [ 2457.461472][T11412] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2457.481201][T11412] RSP: 002b:00000000f7fe65cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2457.489694][T11412] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 2457.497701][T11412] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 2457.505697][T11412] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2457.513679][T11412] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2457.521690][T11412] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2457.529702][T11412] [ 2457.536151][T11412] Uninit was stored to memory at: [ 2457.541275][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2457.547118][T11412] get_compat_msghdr+0x10c/0x280 [ 2457.552211][T11412] ___sys_recvmsg+0x289/0xb40 [ 2457.556949][T11412] do_recvmmsg+0x7c9/0x1200 [ 2457.561512][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2457.566437][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2457.572982][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2457.578055][T11412] do_fast_syscall_32+0x33/0x70 [ 2457.583126][T11412] do_SYSENTER_32+0x1b/0x20 [ 2457.587670][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2457.594201][T11412] [ 2457.596531][T11412] Uninit was stored to memory at: [ 2457.601788][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2457.606948][T11412] get_compat_msghdr+0x10c/0x280 [ 2457.612196][T11412] ___sys_recvmsg+0x289/0xb40 [ 2457.616936][T11412] do_recvmmsg+0x7c9/0x1200 [ 2457.621514][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2457.626387][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2457.632948][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2457.638022][T11412] do_fast_syscall_32+0x33/0x70 [ 2457.643682][T11412] do_SYSENTER_32+0x1b/0x20 [ 2457.648241][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2457.654864][T11412] [ 2457.657198][T11412] Uninit was stored to memory at: [ 2457.662452][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2457.667608][T11412] get_compat_msghdr+0x10c/0x280 [ 2457.672742][T11412] ___sys_recvmsg+0x289/0xb40 [ 2457.677474][T11412] do_recvmmsg+0x7c9/0x1200 [ 2457.682182][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2457.687019][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2457.693554][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2457.698626][T11412] do_fast_syscall_32+0x33/0x70 [ 2457.703662][T11412] do_SYSENTER_32+0x1b/0x20 [ 2457.708216][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2457.714758][T11412] [ 2457.717098][T11412] Uninit was stored to memory at: [ 2457.722353][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2457.727509][T11412] get_compat_msghdr+0x10c/0x280 [ 2457.732679][T11412] ___sys_recvmsg+0x289/0xb40 [ 2457.737416][T11412] do_recvmmsg+0x7c9/0x1200 [ 2457.742124][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2457.746853][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2457.753398][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2457.758508][T11412] do_fast_syscall_32+0x33/0x70 [ 2457.763582][T11412] do_SYSENTER_32+0x1b/0x20 [ 2457.768138][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2457.774682][T11412] [ 2457.777017][T11412] Uninit was stored to memory at: [ 2457.782254][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2457.787418][T11412] get_compat_msghdr+0x10c/0x280 [ 2457.792549][T11412] ___sys_recvmsg+0x289/0xb40 [ 2457.797280][T11412] do_recvmmsg+0x7c9/0x1200 [ 2457.801983][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2457.806928][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2457.813567][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2457.818647][T11412] do_fast_syscall_32+0x33/0x70 [ 2457.823716][T11412] do_SYSENTER_32+0x1b/0x20 [ 2457.828265][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2457.834761][T11412] [ 2457.837096][T11412] Uninit was stored to memory at: [ 2457.842466][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2457.847625][T11412] get_compat_msghdr+0x10c/0x280 [ 2457.852761][T11412] ___sys_recvmsg+0x289/0xb40 [ 2457.857498][T11412] do_recvmmsg+0x7c9/0x1200 [ 2457.862209][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2457.866932][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2457.873464][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2457.878567][T11412] do_fast_syscall_32+0x33/0x70 [ 2457.883602][T11412] do_SYSENTER_32+0x1b/0x20 [ 2457.888171][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2457.894715][T11412] [ 2457.897055][T11412] Uninit was stored to memory at: [ 2457.902325][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2457.907490][T11412] get_compat_msghdr+0x10c/0x280 [ 2457.912653][T11412] ___sys_recvmsg+0x289/0xb40 [ 2457.917406][T11412] do_recvmmsg+0x7c9/0x1200 [ 2457.922117][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2457.926850][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2457.933416][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2457.938502][T11412] do_fast_syscall_32+0x33/0x70 [ 2457.943565][T11412] do_SYSENTER_32+0x1b/0x20 [ 2457.948197][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2457.954722][T11412] [ 2457.957058][T11412] Local variable msg_sys created at: [ 2457.962626][T11412] do_recvmmsg+0xc9/0x1200 [ 2457.967095][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2458.152123][T11412] not chained 730000 origins [ 2458.156761][T11412] CPU: 0 PID: 11412 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2458.166939][T11412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2458.177109][T11412] Call Trace: [ 2458.180423][T11412] [ 2458.183798][T11412] dump_stack_lvl+0x200/0x28c [ 2458.188524][T11412] dump_stack+0x29/0x2c [ 2458.192707][T11412] kmsan_internal_chain_origin+0x78/0x120 [ 2458.198486][T11412] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2458.204763][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2458.209942][T11412] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2458.215782][T11412] ? __unix_dgram_recvmsg+0x19b9/0x1b80 [ 2458.221354][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2458.226525][T11412] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2458.236685][T11412] ? should_fail+0x79/0x9c0 [ 2458.241252][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2458.246405][T11412] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2458.252705][T11412] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2458.258845][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2458.263986][T11412] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2458.269844][T11412] __msan_chain_origin+0xbd/0x140 [ 2458.275114][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2458.280267][T11412] get_compat_msghdr+0x10c/0x280 [ 2458.285242][T11412] ? do_recvmmsg+0x7c9/0x1200 [ 2458.289986][T11412] ___sys_recvmsg+0x289/0xb40 [ 2458.294704][T11412] ? __schedule+0x176c/0x21c0 [ 2458.299421][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2458.304564][T11412] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2458.310423][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2458.315561][T11412] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2458.321400][T11412] do_recvmmsg+0x7c9/0x1200 [ 2458.325934][T11412] ? filter_irq_stacks+0xb9/0x230 [ 2458.331028][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2458.336350][T11412] ? __sys_recvmmsg+0xb9/0x6f0 [ 2458.341143][T11412] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2458.347693][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2458.352440][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2458.358847][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2458.363993][T11412] do_fast_syscall_32+0x33/0x70 [ 2458.368885][T11412] do_SYSENTER_32+0x1b/0x20 [ 2458.373432][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2458.379810][T11412] RIP: 0023:0xf7feb549 [ 2458.383887][T11412] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2458.403544][T11412] RSP: 002b:00000000f7fe65cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2458.412002][T11412] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 2458.420005][T11412] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 2458.427986][T11412] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2458.435993][T11412] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2458.443979][T11412] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2458.451997][T11412] [ 2458.458526][T11412] Uninit was stored to memory at: [ 2458.464258][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2458.469431][T11412] get_compat_msghdr+0x10c/0x280 [ 2458.474520][T11412] ___sys_recvmsg+0x289/0xb40 [ 2458.479250][T11412] do_recvmmsg+0x7c9/0x1200 [ 2458.483899][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2458.488622][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2458.495114][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2458.500192][T11412] do_fast_syscall_32+0x33/0x70 [ 2458.505240][T11412] do_SYSENTER_32+0x1b/0x20 [ 2458.509792][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2458.516377][T11412] [ 2458.518716][T11412] Uninit was stored to memory at: [ 2458.523967][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2458.529125][T11412] get_compat_msghdr+0x10c/0x280 [ 2458.534270][T11412] ___sys_recvmsg+0x289/0xb40 [ 2458.539020][T11412] do_recvmmsg+0x7c9/0x1200 [ 2458.543692][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2458.548420][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2458.554979][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2458.560063][T11412] do_fast_syscall_32+0x33/0x70 [ 2458.565110][T11412] do_SYSENTER_32+0x1b/0x20 [ 2458.569659][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2458.576187][T11412] [ 2458.578517][T11412] Uninit was stored to memory at: [ 2458.583779][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2458.588946][T11412] get_compat_msghdr+0x10c/0x280 [ 2458.594120][T11412] ___sys_recvmsg+0x289/0xb40 [ 2458.598865][T11412] do_recvmmsg+0x7c9/0x1200 [ 2458.603595][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2458.608328][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2458.614870][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2458.619944][T11412] do_fast_syscall_32+0x33/0x70 [ 2458.625005][T11412] do_SYSENTER_32+0x1b/0x20 [ 2458.629554][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2458.636514][T11412] [ 2458.638860][T11412] Uninit was stored to memory at: [ 2458.644136][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2458.649300][T11412] get_compat_msghdr+0x10c/0x280 [ 2458.654456][T11412] ___sys_recvmsg+0x289/0xb40 [ 2458.659197][T11412] do_recvmmsg+0x7c9/0x1200 [ 2458.663899][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2458.668740][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2458.675410][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2458.680493][T11412] do_fast_syscall_32+0x33/0x70 [ 2458.685560][T11412] do_SYSENTER_32+0x1b/0x20 [ 2458.690110][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2458.696665][T11412] [ 2458.699010][T11412] Uninit was stored to memory at: [ 2458.704316][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2458.709548][T11412] get_compat_msghdr+0x10c/0x280 [ 2458.714693][T11412] ___sys_recvmsg+0x289/0xb40 [ 2458.719519][T11412] do_recvmmsg+0x7c9/0x1200 [ 2458.724243][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2458.728984][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2458.735529][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2458.740618][T11412] do_fast_syscall_32+0x33/0x70 [ 2458.745687][T11412] do_SYSENTER_32+0x1b/0x20 [ 2458.750235][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2458.756727][T11412] [ 2458.759059][T11412] Uninit was stored to memory at: [ 2458.764265][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2458.769437][T11412] get_compat_msghdr+0x10c/0x280 [ 2458.774598][T11412] ___sys_recvmsg+0x289/0xb40 [ 2458.779353][T11412] do_recvmmsg+0x7c9/0x1200 [ 2458.784033][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2458.788768][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2458.795310][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2458.800419][T11412] do_fast_syscall_32+0x33/0x70 [ 2458.805468][T11412] do_SYSENTER_32+0x1b/0x20 [ 2458.810019][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2458.816564][T11412] [ 2458.818907][T11412] Uninit was stored to memory at: [ 2458.824158][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2458.829425][T11412] get_compat_msghdr+0x10c/0x280 [ 2458.835000][T11412] ___sys_recvmsg+0x289/0xb40 [ 2458.839828][T11412] do_recvmmsg+0x7c9/0x1200 [ 2458.844553][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2458.849395][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2458.856055][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2458.861161][T11412] do_fast_syscall_32+0x33/0x70 [ 2458.866171][T11412] do_SYSENTER_32+0x1b/0x20 [ 2458.870720][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2458.877209][T11412] [ 2458.879544][T11412] Local variable msg_sys created at: [ 2458.884988][T11412] do_recvmmsg+0xc9/0x1200 [ 2458.889455][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2459.074766][T11412] not chained 740000 origins [ 2459.079409][T11412] CPU: 0 PID: 11412 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2459.089689][T11412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2459.099774][T11412] Call Trace: [ 2459.103066][T11412] [ 2459.106012][T11412] dump_stack_lvl+0x200/0x28c [ 2459.110771][T11412] dump_stack+0x29/0x2c [ 2459.114943][T11412] kmsan_internal_chain_origin+0x78/0x120 [ 2459.120707][T11412] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2459.126817][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2459.131988][T11412] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2459.137847][T11412] ? __unix_dgram_recvmsg+0x19b9/0x1b80 [ 2459.143426][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2459.148591][T11412] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2459.154547][T11412] ? should_fail+0x79/0x9c0 [ 2459.159177][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2459.164343][T11412] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2459.170644][T11412] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2459.176754][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2459.181916][T11412] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2459.187774][T11412] __msan_chain_origin+0xbd/0x140 [ 2459.192833][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2459.198012][T11412] get_compat_msghdr+0x10c/0x280 [ 2459.202983][T11412] ? do_recvmmsg+0x7c9/0x1200 [ 2459.207710][T11412] ___sys_recvmsg+0x289/0xb40 [ 2459.212435][T11412] ? __schedule+0x176c/0x21c0 [ 2459.217155][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2459.222296][T11412] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2459.228152][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2459.233643][T11412] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2459.239514][T11412] do_recvmmsg+0x7c9/0x1200 [ 2459.244051][T11412] ? filter_irq_stacks+0xb9/0x230 [ 2459.249139][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2459.254308][T11412] ? __sys_recvmmsg+0xb9/0x6f0 [ 2459.259118][T11412] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2459.265682][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2459.270441][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2459.276813][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2459.281891][T11412] do_fast_syscall_32+0x33/0x70 [ 2459.286785][T11412] do_SYSENTER_32+0x1b/0x20 [ 2459.291318][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2459.297796][T11412] RIP: 0023:0xf7feb549 [ 2459.301871][T11412] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2459.321516][T11412] RSP: 002b:00000000f7fe65cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2459.329962][T11412] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 2459.337947][T11412] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 2459.345933][T11412] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2459.353931][T11412] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2459.361949][T11412] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2459.369972][T11412] [ 2459.378886][T11412] Uninit was stored to memory at: [ 2459.385428][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2459.390608][T11412] get_compat_msghdr+0x10c/0x280 [ 2459.395712][T11412] ___sys_recvmsg+0x289/0xb40 [ 2459.400446][T11412] do_recvmmsg+0x7c9/0x1200 [ 2459.405173][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2459.409913][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2459.416430][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2459.421503][T11412] do_fast_syscall_32+0x33/0x70 [ 2459.426560][T11412] do_SYSENTER_32+0x1b/0x20 [ 2459.431128][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2459.437613][T11412] [ 2459.439944][T11412] Uninit was stored to memory at: [ 2459.445187][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2459.450345][T11412] get_compat_msghdr+0x10c/0x280 [ 2459.455490][T11412] ___sys_recvmsg+0x289/0xb40 [ 2459.460306][T11412] do_recvmmsg+0x7c9/0x1200 [ 2459.465085][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2459.469814][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2459.476458][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2459.481528][T11412] do_fast_syscall_32+0x33/0x70 [ 2459.486602][T11412] do_SYSENTER_32+0x1b/0x20 [ 2459.491129][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2459.497664][T11412] [ 2459.499997][T11412] Uninit was stored to memory at: [ 2459.505209][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2459.510366][T11412] get_compat_msghdr+0x10c/0x280 [ 2459.515509][T11412] ___sys_recvmsg+0x289/0xb40 [ 2459.520238][T11412] do_recvmmsg+0x7c9/0x1200 [ 2459.524911][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2459.529742][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2459.536281][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2459.541364][T11412] do_fast_syscall_32+0x33/0x70 [ 2459.546426][T11412] do_SYSENTER_32+0x1b/0x20 [ 2459.551074][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2459.557630][T11412] [ 2459.559975][T11412] Uninit was stored to memory at: [ 2459.565238][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2459.570401][T11412] get_compat_msghdr+0x10c/0x280 [ 2459.575504][T11412] ___sys_recvmsg+0x289/0xb40 [ 2459.580238][T11412] do_recvmmsg+0x7c9/0x1200 [ 2459.584951][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2459.589676][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2459.596222][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2459.601308][T11412] do_fast_syscall_32+0x33/0x70 [ 2459.606344][T11412] do_SYSENTER_32+0x1b/0x20 [ 2459.610915][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2459.617461][T11412] [ 2459.619909][T11412] Uninit was stored to memory at: [ 2459.625276][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2459.630444][T11412] get_compat_msghdr+0x10c/0x280 [ 2459.635593][T11412] ___sys_recvmsg+0x289/0xb40 [ 2459.640333][T11412] do_recvmmsg+0x7c9/0x1200 [ 2459.645000][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2459.649919][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2459.656467][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2459.661652][T11412] do_fast_syscall_32+0x33/0x70 [ 2459.666575][T11412] do_SYSENTER_32+0x1b/0x20 [ 2459.671106][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2459.677667][T11412] [ 2459.680004][T11412] Uninit was stored to memory at: [ 2459.685271][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2459.690438][T11412] get_compat_msghdr+0x10c/0x280 [ 2459.695581][T11412] ___sys_recvmsg+0x289/0xb40 [ 2459.700325][T11412] do_recvmmsg+0x7c9/0x1200 [ 2459.705135][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2459.709886][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2459.716456][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2459.721530][T11412] do_fast_syscall_32+0x33/0x70 [ 2459.726608][T11412] do_SYSENTER_32+0x1b/0x20 [ 2459.731195][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2459.738151][T11412] [ 2459.740496][T11412] Uninit was stored to memory at: [ 2459.745765][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2459.750925][T11412] get_compat_msghdr+0x10c/0x280 [ 2459.756075][T11412] ___sys_recvmsg+0x289/0xb40 [ 2459.760815][T11412] do_recvmmsg+0x7c9/0x1200 [ 2459.765561][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2459.770305][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2459.776877][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2459.783106][T11412] do_fast_syscall_32+0x33/0x70 [ 2459.788012][T11412] do_SYSENTER_32+0x1b/0x20 [ 2459.792727][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2459.799119][T11412] [ 2459.801451][T11412] Local variable msg_sys created at: [ 2459.806910][T11412] do_recvmmsg+0xc9/0x1200 [ 2459.811511][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2459.998015][T11412] not chained 750000 origins [ 2460.002991][T11412] CPU: 1 PID: 11412 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2460.013196][T11412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2460.023277][T11412] Call Trace: [ 2460.026568][T11412] [ 2460.029497][T11412] dump_stack_lvl+0x200/0x28c [ 2460.034202][T11412] dump_stack+0x29/0x2c [ 2460.038371][T11412] kmsan_internal_chain_origin+0x78/0x120 [ 2460.044147][T11412] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2460.050241][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2460.055386][T11412] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2460.061255][T11412] ? __unix_dgram_recvmsg+0x19b9/0x1b80 [ 2460.066836][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2460.072003][T11412] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2460.077867][T11412] ? should_fail+0x79/0x9c0 [ 2460.082410][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2460.087575][T11412] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2460.093849][T11412] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2460.099948][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2460.105094][T11412] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2460.110933][T11412] __msan_chain_origin+0xbd/0x140 [ 2460.115993][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2460.121171][T11412] get_compat_msghdr+0x10c/0x280 [ 2460.126136][T11412] ? do_recvmmsg+0x7c9/0x1200 [ 2460.130841][T11412] ___sys_recvmsg+0x289/0xb40 [ 2460.135552][T11412] ? __schedule+0x176c/0x21c0 [ 2460.140254][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2460.145407][T11412] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2460.151255][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2460.156394][T11412] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2460.162358][T11412] do_recvmmsg+0x7c9/0x1200 [ 2460.166937][T11412] ? filter_irq_stacks+0xb9/0x230 [ 2460.172049][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2460.177201][T11412] ? __sys_recvmmsg+0xb9/0x6f0 [ 2460.181995][T11412] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2460.188574][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2460.193304][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2460.199671][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2460.204727][T11412] do_fast_syscall_32+0x33/0x70 [ 2460.209599][T11412] do_SYSENTER_32+0x1b/0x20 [ 2460.214129][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2460.220509][T11412] RIP: 0023:0xf7feb549 [ 2460.224598][T11412] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2460.244247][T11412] RSP: 002b:00000000f7fe65cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2460.252686][T11412] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 2460.260672][T11412] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 2460.268664][T11412] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2460.276667][T11412] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2460.284654][T11412] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2460.292670][T11412] [ 2460.298555][T11412] Uninit was stored to memory at: [ 2460.304115][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2460.309283][T11412] get_compat_msghdr+0x10c/0x280 [ 2460.314421][T11412] ___sys_recvmsg+0x289/0xb40 [ 2460.319154][T11412] do_recvmmsg+0x7c9/0x1200 [ 2460.323843][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2460.328573][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2460.335162][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2460.340233][T11412] do_fast_syscall_32+0x33/0x70 [ 2460.345261][T11412] do_SYSENTER_32+0x1b/0x20 [ 2460.349808][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2460.356384][T11412] [ 2460.358752][T11412] Uninit was stored to memory at: [ 2460.363971][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2460.369127][T11412] get_compat_msghdr+0x10c/0x280 [ 2460.374304][T11412] ___sys_recvmsg+0x289/0xb40 [ 2460.379041][T11412] do_recvmmsg+0x7c9/0x1200 [ 2460.383754][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2460.388516][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2460.395061][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2460.400143][T11412] do_fast_syscall_32+0x33/0x70 [ 2460.405239][T11412] do_SYSENTER_32+0x1b/0x20 [ 2460.409814][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2460.416360][T11412] [ 2460.418697][T11412] Uninit was stored to memory at: [ 2460.423977][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2460.429156][T11412] get_compat_msghdr+0x10c/0x280 [ 2460.434341][T11412] ___sys_recvmsg+0x289/0xb40 [ 2460.439091][T11412] do_recvmmsg+0x7c9/0x1200 [ 2460.443911][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2460.448641][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2460.455307][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2460.460383][T11412] do_fast_syscall_32+0x33/0x70 [ 2460.465480][T11412] do_SYSENTER_32+0x1b/0x20 [ 2460.470031][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2460.476552][T11412] [ 2460.479581][T11412] Uninit was stored to memory at: [ 2460.484859][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2460.490026][T11412] get_compat_msghdr+0x10c/0x280 [ 2460.495232][T11412] ___sys_recvmsg+0x289/0xb40 [ 2460.499969][T11412] do_recvmmsg+0x7c9/0x1200 [ 2460.504657][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2460.509437][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2460.516831][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2460.522012][T11412] do_fast_syscall_32+0x33/0x70 [ 2460.526918][T11412] do_SYSENTER_32+0x1b/0x20 [ 2460.532014][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2460.538394][T11412] [ 2460.540736][T11412] Uninit was stored to memory at: [ 2460.545976][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2460.551134][T11412] get_compat_msghdr+0x10c/0x280 [ 2460.556307][T11412] ___sys_recvmsg+0x289/0xb40 [ 2460.561066][T11412] do_recvmmsg+0x7c9/0x1200 [ 2460.565848][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2460.570590][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2460.577208][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2460.582495][T11412] do_fast_syscall_32+0x33/0x70 [ 2460.587396][T11412] do_SYSENTER_32+0x1b/0x20 [ 2460.592117][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2460.598508][T11412] [ 2460.600849][T11412] Uninit was stored to memory at: [ 2460.606099][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2460.611264][T11412] get_compat_msghdr+0x10c/0x280 [ 2460.616386][T11412] ___sys_recvmsg+0x289/0xb40 [ 2460.621306][T11412] do_recvmmsg+0x7c9/0x1200 [ 2460.626060][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2460.630800][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2460.637359][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2460.642562][T11412] do_fast_syscall_32+0x33/0x70 [ 2460.647472][T11412] do_SYSENTER_32+0x1b/0x20 [ 2460.652201][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2460.658592][T11412] [ 2460.660937][T11412] Uninit was stored to memory at: [ 2460.666302][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2460.671467][T11412] get_compat_msghdr+0x10c/0x280 [ 2460.676652][T11412] ___sys_recvmsg+0x289/0xb40 [ 2460.681399][T11412] do_recvmmsg+0x7c9/0x1200 [ 2460.686170][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2460.690903][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2460.697500][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2460.702688][T11412] do_fast_syscall_32+0x33/0x70 [ 2460.707594][T11412] do_SYSENTER_32+0x1b/0x20 [ 2460.712320][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2460.718696][T11412] [ 2460.721023][T11412] Local variable msg_sys created at: [ 2460.726452][T11412] do_recvmmsg+0xc9/0x1200 [ 2460.730921][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2460.923186][T11412] not chained 760000 origins [ 2460.927835][T11412] CPU: 1 PID: 11412 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2460.938265][T11412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2460.948352][T11412] Call Trace: [ 2460.951647][T11412] [ 2460.954625][T11412] dump_stack_lvl+0x200/0x28c [ 2460.959366][T11412] dump_stack+0x29/0x2c [ 2460.963547][T11412] kmsan_internal_chain_origin+0x78/0x120 [ 2460.969300][T11412] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2460.976795][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2460.981974][T11412] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2460.987826][T11412] ? __unix_dgram_recvmsg+0x19b9/0x1b80 [ 2460.993425][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2460.998577][T11412] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2461.004428][T11412] ? should_fail+0x79/0x9c0 [ 2461.008979][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2461.014147][T11412] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2461.020431][T11412] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2461.026539][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2461.032573][T11412] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2461.038433][T11412] __msan_chain_origin+0xbd/0x140 [ 2461.043509][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2461.048688][T11412] get_compat_msghdr+0x10c/0x280 [ 2461.053657][T11412] ? do_recvmmsg+0x7c9/0x1200 [ 2461.058364][T11412] ___sys_recvmsg+0x289/0xb40 [ 2461.063075][T11412] ? __schedule+0x176c/0x21c0 [ 2461.067780][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2461.072923][T11412] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2461.080028][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2461.085194][T11412] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2461.091037][T11412] do_recvmmsg+0x7c9/0x1200 [ 2461.095574][T11412] ? filter_irq_stacks+0xb9/0x230 [ 2461.100637][T11412] ? kmsan_get_metadata+0x33/0x220 [ 2461.105790][T11412] ? __sys_recvmmsg+0xb9/0x6f0 [ 2461.110696][T11412] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2461.117252][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2461.121981][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2461.128373][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2461.133455][T11412] do_fast_syscall_32+0x33/0x70 [ 2461.138373][T11412] do_SYSENTER_32+0x1b/0x20 [ 2461.142910][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2461.149265][T11412] RIP: 0023:0xf7feb549 [ 2461.153354][T11412] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2461.174464][T11412] RSP: 002b:00000000f7fe65cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2461.183004][T11412] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 2461.191006][T11412] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 2461.199004][T11412] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2461.206988][T11412] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2461.215180][T11412] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2461.223195][T11412] [ 2461.228958][T11412] Uninit was stored to memory at: [ 2461.234665][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2461.239836][T11412] get_compat_msghdr+0x10c/0x280 [ 2461.244967][T11412] ___sys_recvmsg+0x289/0xb40 [ 2461.249704][T11412] do_recvmmsg+0x7c9/0x1200 [ 2461.254491][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2461.259228][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2461.265751][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2461.270825][T11412] do_fast_syscall_32+0x33/0x70 [ 2461.275857][T11412] do_SYSENTER_32+0x1b/0x20 [ 2461.280484][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2461.287089][T11412] [ 2461.289428][T11412] Uninit was stored to memory at: [ 2461.294694][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2461.299872][T11412] get_compat_msghdr+0x10c/0x280 [ 2461.304997][T11412] ___sys_recvmsg+0x289/0xb40 [ 2461.309759][T11412] do_recvmmsg+0x7c9/0x1200 [ 2461.314521][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2461.319259][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2461.325872][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2461.330950][T11412] do_fast_syscall_32+0x33/0x70 [ 2461.336410][T11412] do_SYSENTER_32+0x1b/0x20 [ 2461.340957][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2461.347472][T11412] [ 2461.349818][T11412] Uninit was stored to memory at: [ 2461.355201][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2461.360364][T11412] get_compat_msghdr+0x10c/0x280 [ 2461.365539][T11412] ___sys_recvmsg+0x289/0xb40 [ 2461.370271][T11412] do_recvmmsg+0x7c9/0x1200 [ 2461.374976][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2461.379709][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2461.386236][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2461.391312][T11412] do_fast_syscall_32+0x33/0x70 [ 2461.396587][T11412] do_SYSENTER_32+0x1b/0x20 [ 2461.401142][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2461.407670][T11412] [ 2461.410008][T11412] Uninit was stored to memory at: [ 2461.415297][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2461.420456][T11412] get_compat_msghdr+0x10c/0x280 [ 2461.425569][T11412] ___sys_recvmsg+0x289/0xb40 [ 2461.430302][T11412] do_recvmmsg+0x7c9/0x1200 [ 2461.435065][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2461.439798][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2461.446317][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2461.451403][T11412] do_fast_syscall_32+0x33/0x70 [ 2461.456490][T11412] do_SYSENTER_32+0x1b/0x20 [ 2461.461038][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2461.467552][T11412] [ 2461.469885][T11412] Uninit was stored to memory at: [ 2461.475156][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2461.480320][T11412] get_compat_msghdr+0x10c/0x280 [ 2461.485499][T11412] ___sys_recvmsg+0x289/0xb40 [ 2461.490231][T11412] do_recvmmsg+0x7c9/0x1200 [ 2461.494920][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2461.499652][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2461.506177][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2461.511252][T11412] do_fast_syscall_32+0x33/0x70 [ 2461.516350][T11412] do_SYSENTER_32+0x1b/0x20 [ 2461.520912][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2461.527519][T11412] [ 2461.529856][T11412] Uninit was stored to memory at: [ 2461.535129][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2461.540293][T11412] get_compat_msghdr+0x10c/0x280 [ 2461.545488][T11412] ___sys_recvmsg+0x289/0xb40 [ 2461.550220][T11412] do_recvmmsg+0x7c9/0x1200 [ 2461.554910][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2461.559639][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2461.566157][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2461.571234][T11412] do_fast_syscall_32+0x33/0x70 [ 2461.576341][T11412] do_SYSENTER_32+0x1b/0x20 [ 2461.580892][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2461.587471][T11412] [ 2461.589826][T11412] Uninit was stored to memory at: [ 2461.595235][T11412] __get_compat_msghdr+0x6ea/0x9e0 [ 2461.600441][T11412] get_compat_msghdr+0x10c/0x280 [ 2461.605710][T11412] ___sys_recvmsg+0x289/0xb40 [ 2461.610522][T11412] do_recvmmsg+0x7c9/0x1200 [ 2461.615420][T11412] __sys_recvmmsg+0x520/0x6f0 [ 2461.620191][T11412] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2461.626829][T11412] __do_fast_syscall_32+0x95/0xf0 [ 2461.632423][T11412] do_fast_syscall_32+0x33/0x70 [ 2461.637327][T11412] do_SYSENTER_32+0x1b/0x20 [ 2461.642151][T11412] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2461.648671][T11412] [ 2461.651026][T11412] Local variable msg_sys created at: [ 2461.656546][T11412] do_recvmmsg+0xc9/0x1200 [ 2461.661024][T11412] __sys_recvmmsg+0x520/0x6f0 03:38:04 executing program 3: pselect6(0x49, &(0x7f0000000040), 0x0, &(0x7f0000000080)={0xbbf7}, &(0x7f00000000c0)={0x0, 0x989680}, 0x0) 03:38:04 executing program 0: syz_clone(0x308a3080, 0x0, 0x0, 0x0, 0x0, 0x0) 03:38:04 executing program 2: ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000000)) r0 = syz_clone(0x40100000, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, 0x0) sched_getattr(r0, 0x0, 0x0, 0x0) 03:38:04 executing program 5: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000001a80)={0x0, 0x0, &(0x7f0000001a40)={&(0x7f0000000600)={0x24, 0x2, 0x1, 0x101, 0x0, 0x0, {0x0, 0x2}, [@nested={0x10, 0x8, 0x0, 0x1, [@typed={0xc, 0x0, 0x0, 0x0, @u64}]}]}, 0x24}}, 0x0) 03:38:04 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) setsockopt$sock_int(r0, 0x1, 0x5, &(0x7f0000000000)=0x32b9, 0x4) 03:38:04 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) r0 = open(0x0, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r2 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r2, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r1, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:38:04 executing program 3: r0 = socket(0x28, 0x1, 0x0) setsockopt$MRT_DONE(r0, 0x0, 0xc9, 0x0, 0x0) 03:38:05 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) sendto$inet6(r0, &(0x7f0000000780)='y', 0x1, 0x97ffffff, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @mcast2}, 0x1c) 03:38:05 executing program 5: r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0) openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0) connect$nfc_raw(0xffffffffffffffff, 0x0, 0x0) 03:38:05 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) r0 = open(0x0, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r2 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r2, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r1, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) 03:38:05 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='mounts\x00') r1 = socket$can_raw(0x1d, 0x3, 0x1) dup2(r0, r1) 03:38:05 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='coredump_filter\x00') read$FUSE(r0, &(0x7f0000000080)={0x2020}, 0x2020) 03:38:05 executing program 5: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) getresuid(&(0x7f0000001580), &(0x7f00000016c0), &(0x7f0000001700)) 03:38:05 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(crct10dif-generic)\x00'}, 0x58) r1 = accept4$alg(r0, 0x0, 0x0, 0x0) r2 = accept4(r1, 0x0, 0x0, 0x0) sendmmsg(r2, &(0x7f0000003000)=[{{0x0, 0x0, &(0x7f0000001540)=[{&(0x7f0000000080)='X', 0x1}], 0x1}}], 0x7ffff000, 0x0) 03:38:05 executing program 2: r0 = add_key$keyring(&(0x7f0000001d40), &(0x7f0000001d80)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffb) keyctl$unlink(0x9, r0, 0xfffffffffffffffb) 03:38:05 executing program 4: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) umount2(0x0, 0x0) 03:38:05 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_open_pts(r0, 0x0) 03:38:05 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) r0 = open(0x0, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r2 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r2, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r1, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) 03:38:05 executing program 5: syz_mount_image$tmpfs(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000680)={[{@nr_blocks={'nr_blocks', 0x3d, [0x70, 0x0]}}]}) 03:38:06 executing program 2: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) getgid() 03:38:06 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xff7ffffffffff000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000dcf4655fdcf4655f0100ffff53ef010001000000dbf4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="02000000030000000400000030000f", 0xf, 0x1000}, {&(0x7f0000010500)="ffff000000000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x1002, 0x2000}, {&(0x7f0000012600)="ed41000000100000dbf4655fdcf4655fdcf4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000000300)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') mkdir(&(0x7f00000002c0)='./bus\x00', 0x0) r0 = creat(&(0x7f0000000080)='./bus/file0\x00', 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(r0, 0x40087602, &(0x7f0000000340)) 03:38:06 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d2f4655fd2f4655f0100ffff53ef", 0x3a, 0x400}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d1f4655fd2f4655fd2f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000002600)={[{@journal_dev}]}) 03:38:06 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='uid_map\x00') write$FUSE_LSEEK(r0, 0x0, 0x0) 03:38:06 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/fib_triestat\x00') read$FUSE(r0, &(0x7f0000000080)={0x2020}, 0x2020) 03:38:06 executing program 3: r0 = add_key$keyring(&(0x7f0000001d40), &(0x7f0000001d80)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffb) r1 = add_key$keyring(&(0x7f0000002000), &(0x7f0000002040)={'syz', 0x0}, 0x0, 0x0, r0) add_key$keyring(&(0x7f0000000000), &(0x7f0000000080)={'syz', 0x2}, 0x0, 0x0, r1) 03:38:07 executing program 5: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='mounts\x00') ppoll(&(0x7f0000000000)=[{r0}], 0x1, &(0x7f0000000040)={0x0, 0x989680}, 0x0, 0x0) 03:38:07 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='attr/prev\x00') read$FUSE(r0, 0x0, 0x0) 03:38:07 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='uid_map\x00') readahead(r0, 0x0, 0xfffffffffffffffd) 03:38:07 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xff7ffffffffff000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000dcf4655fdcf4655f0100ffff53ef010001000000dbf4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="02000000030000000400000030000f", 0xf, 0x1000}, {&(0x7f0000010500)="ffff000000000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x1002, 0x2000}, {&(0x7f0000012600)="ed41000000100000dbf4655fdcf4655fdcf4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000000300)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') mkdir(&(0x7f00000002c0)='./bus\x00', 0x0) r0 = creat(&(0x7f0000000080)='./bus/file0\x00', 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(r0, 0x40087602, &(0x7f0000000340)=0x40000006) 03:38:08 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) r0 = open(0x0, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r2 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r2, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r1, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) 03:38:08 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, 0x0) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, &(0x7f00000037c0), 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(crct10dif-generic)\x00'}, 0x58) r1 = accept4$alg(r0, 0x0, 0x0, 0x0) r2 = accept4(r1, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000004c0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x700}}], 0x500, 0x0, 0x0) sendmmsg(r2, &(0x7f0000003000)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000015c0)=[{0x10, 0x0, 0x80}], 0x10}}, {{&(0x7f0000001800)=@l2={0x1f, 0x0, @none, 0x80}, 0x80, &(0x7f00000018c0)=[{&(0x7f0000001880)}], 0x1, &(0x7f0000001900)=[{0x10}], 0x10}}, {{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000002ec0)}], 0x1}}], 0x3, 0x24008004) 03:38:08 executing program 5: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000a, 0x100000002272, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_PRECACHE_EXTENTS(0xffffffffffffffff, 0xf50f, 0x0) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x28011, r0, 0x0) 03:38:08 executing program 0: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4}, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000140)=ANY=[], 0x3af4701e) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28012, r0, 0x0) socket$inet(0x2, 0x0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) r2 = socket$inet6_mptcp(0xa, 0x1, 0x106) connect$inet6(r2, &(0x7f0000000140)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c) connect$vsock_stream(0xffffffffffffffff, &(0x7f0000000040), 0x10) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) setsockopt$inet6_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000040)='westwood\x00', 0x9) sendfile(r2, r1, 0x0, 0x80000000002) 03:38:08 executing program 4: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000140)=ANY=[], 0x3af4701e) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28012, r0, 0x0) socket$inet(0x2, 0x0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) r2 = socket$inet6_mptcp(0xa, 0x1, 0x106) connect$inet6(r2, &(0x7f0000000140)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) setsockopt$inet6_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000040)='westwood\x00', 0x9) sendfile(r2, r1, 0x0, 0x80000000002) 03:38:08 executing program 2: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000140)=ANY=[], 0x3af4701e) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28012, r0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) r2 = socket$inet6_mptcp(0xa, 0x1, 0x106) connect$inet6(r2, &(0x7f0000000140)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c) setsockopt$inet6_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000040)='westwood\x00', 0x9) sendfile(r2, r1, 0x0, 0x80000002800) [ 2465.640301][ T24] audit: type=1804 audit(1655350688.653:73): pid=11522 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir1772608257/syzkaller.4skMhB/2905/cgroup.controllers" dev="sda1" ino=1164 res=1 errno=0 [ 2465.914328][ T24] audit: type=1804 audit(1655350688.963:74): pid=11534 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir1424269145/syzkaller.X6poDu/3103/cgroup.controllers" dev="sda1" ino=1179 res=1 errno=0 03:38:09 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(crct10dif-generic)\x00'}, 0x58) r1 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmsg(r1, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001e00)=ANY=[], 0x208}, 0x20048ce5) accept4(r1, 0x0, 0x0, 0x0) 03:38:09 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x6, &(0x7f0000000080)=0x8, 0x4) 03:38:10 executing program 4: r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan0\x00'}) 03:38:10 executing program 2: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f00000005c0), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000140)={0x60, 0x1e0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x610b, 0x0, 0x0, 0x0, 0x0, 0x1}) 03:38:11 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000180), 0x0, 0x0) r1 = dup2(r0, r0) ioctl$SG_IO(r1, 0x2285, &(0x7f0000000240)={0x53, 0x0, 0x0, 0x0, @buffer={0x0, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 03:38:11 executing program 4: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f00000005c0), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x8}, {}, {}, {}, 0x0, 0x100, 0x0, 0x0, 0x0, 0x6, 0x0, 0x5}) openat$proc_capi20(0xffffffffffffff9c, 0x0, 0x0, 0x0) 03:38:12 executing program 0: bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x5, 0x7, 0x2000, 0x1, 0x0, 0x1}, 0x48) 03:38:12 executing program 2: socket$igmp6(0x2, 0xa, 0x2) 03:38:12 executing program 3: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r1 = getpid() sendmmsg$unix(r0, &(0x7f0000000880)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=[@cred={{0x1c, 0x1, 0x2, {r1}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee01}}}], 0x40}}], 0x2, 0x0) 03:38:12 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000003c0)=@gettclass={0x11, 0x2a, 0xf}, 0x11}}, 0x0) 03:38:12 executing program 5: bpf$PROG_LOAD_XDP(0x5, &(0x7f0000003980)={0x6, 0xd, &(0x7f0000000680)=@framed={{}, [@cb_func, @map_fd, @func, @alu, @map_fd, @alu, @jmp]}, &(0x7f0000003880)='syzkaller\x00', 0x1, 0xff3f, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f00000038c0), 0x8, 0x10, &(0x7f0000003900), 0x10, 0x0, 0x0, 0x0, &(0x7f0000003940)=[0xffffffffffffffff, 0x1]}, 0x80) 03:38:12 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) r0 = open(0x0, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r2 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r2, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r1, 0x40187542, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:38:12 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_LINKINFO_SET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x2c, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_LINKINFO_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}]}]}, 0xd00}}, 0x0) 03:38:12 executing program 4: syz_emit_ethernet(0x96, &(0x7f0000000000)={@broadcast, @broadcast, @void, {@ipv4={0x800, @igmp={{0x20, 0x4, 0x0, 0x0, 0x88, 0x0, 0x0, 0x0, 0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@lsrr={0x83, 0xb, 0x0, [@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1]}, @cipso={0x86, 0x4e, 0x0, [{0x0, 0xe, "62dead9d156abbdc9ad79331"}, {0x0, 0x2}, {0x0, 0x6, "2986551f"}, {0x0, 0xc, "dbc4cc7784c5a27809bd"}, {0x0, 0x2}, {0x0, 0xf, "8ab1de65a8579fca7d063cb6b0"}, {0x0, 0x6, "ebcf0d49"}, {0x0, 0x2}, {0x0, 0xd, "4a0fbbfcdfdf520f266e32"}]}, @timestamp={0x44, 0x10, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0]}]}}, {0x0, 0x0, 0x0, @private}}}}}, 0x0) 03:38:13 executing program 5: bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x0, 0x9}, 0x48) 03:38:13 executing program 3: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@union={0x0, 0x0, 0x0, 0xd, 0x0, 0x1}]}}, &(0x7f00000004c0)=""/4096, 0x26, 0x1000, 0x1}, 0x20) 03:38:13 executing program 0: syz_emit_ethernet(0x38, &(0x7f0000000040)={@broadcast, @broadcast, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "2a7e03", 0x2, 0x0, 0x0, @local, @loopback, {[], "3783"}}}}}, 0x0) 03:38:13 executing program 4: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) sendmmsg$inet6(r0, &(0x7f0000000c40)=[{{&(0x7f0000000000)={0xa, 0x4e20, 0x0, @remote}, 0x1c, &(0x7f00000010c0)=[{&(0x7f0000000040)="a18bc021d48692639fed75671c0aca41ca5c2f01f8cb91f067f021a724bfd8c327ae49300e7e46f0b78b9057ce2e473e199947157135b013e9ddb74fa1c95d422e25bc35c38af4198206699fd1853cbece1fa77e3bbdb853e453c3846c666dc97f4b35f71a1bfb699dfabfcbc2de69bef45963881c53ea24a1e2883ca91211266d9eabcc570cbb9c520dbc8860724b14b7fa8271acceeb6396e4f669d38751576eea3dcc7d108812e7822baff46e2b61227a7d34fcbbdb1ad244c659296ffb435400616cf3d506ee5876f90a1905cecb54a1667ccef785d6fccc23e634147cae5e8e5d9329b643530eb3d1ff331aaae6ea45069b28f1a93ff25a7964339b0a377df0d27c989db16312ea0b95cfe17581b28d77daf1d3bf07d5a897892434ab20b6e4bafe5eaa689a12464617f13246719a1ced85da87842f37bd6fa4dbd68109a1754d14743f1df9be94219fdce272f09311627cae18cc5ae9af7b6caf91517040e7c78f17195d9acbc08579701c73c41198d3c1c5146fa6c45bc19a8ee9d307a2b9917c82ae70eaf902b4beb41e2e3e1e532d3b42c1db8afbd83584ba3d933f039f1daee60ef35b552ff0897c10e1832a17d5a1078f71ce0f20ff6fac00efa7853ea39507798c45b2e625a27726cdc6ecce6893822129eddc3072a24e2408a87bf9ef2f1b5c0c90ca2d377f37d858199fec718263951d830d142963ae1277e7982e5aa94c85f18355f00c4430babcacf965596348816422892164193d2e0cf3a38e471a8858390ca7dfe8bdbca2b2a11ca1d4fe470297c91da34bed024a6c621c4616ac1ade4b3a3fb9545d19d7a8a000529736a3352becba9fe901d63148147b54323702407b6c475e16977779d31bcd70e8c05aa909c48bed67aa3948e09a725bc8e13f0b04273155b390c9d528eca0eacf02b132c159c8b152558811605d64db89f1c536da5d9065770609f6fb625eab1e586b9f62d7af18b45cf0ead960cf5f0fefbd03f90ec9cfebc14e15bfe300e8c6c0e9f29e2e273b22ceb4884c3a65989bc0a03ebe7cfa99b9d2159938bfa3fe6a9cfd06bfa274c1960a068830c703dcb9ee93eca7040539c41ed2da73996216625664289fc3c81c4935b42bfd11ac5bd24c394f6fbc98822b7e1f0cfa6094090a16120d2f36d9cac61dd23951102f7934fdb58b56a57defa27f08ad3056a822e23f9dc41d3d95b81e87f9230f2690d3cf2fd354983dd7c634b8e24cb3fba1f32e230bc2475115dee83bcb229a8900886f476bc2431c0ad10559dc7fba7bb75fe1a369c43b3ce5a1f98f664adec962edff4341cf2b80eeea512e37fa02f46ec75737099290c40d0cd226985b673b49263a3671c83a2e973592257963aeebf8a221d4042da9be6a8a697aab211c629d9264496e59dd9830dbf9d7ede3c76b8e92d3dd817bc9ba542f1d730fa9d93b5fc0ad51aaf06214d2654b121be80c5adfd97ec07e04bbb72504a8701fc281f8d805ac6ad0f06d52a9edbec05c81f2eadf15ef546e623c4ced0a2579a327b5755a833826721f9efa63104afef52b52f0fca0fb9892d30e63baa75251917f94c98503cb2ec48e47732da1fd4e42b5d0088be93618b13777215e3ce072e7ee3f5689e80eb67c45cfef31fe9ca5de7dc3b62bd486b749038c61bf56bf07a349e2d6c1ce0bfb81b4fe7bf539fe12660eeadf1bf924a2786cbbe61fd7eb285f800e7e48a1ff5a7885fed82324a349a06b7734ac32e794df7b8dc51bffdfcb6d59fe2147c18461df0954db131d1a334fd40ebd4c6c94167b30b3a54a833181e94e402b46188498145cd95920cb36276a0b0c38e67d1918f00dc8122d87c13bfdf549dcbaeec93bc47713848611c6f686dea582e19fc5955c6f1f948dcbbc7249a8bc58837bd68f93", 0x545}], 0x1, &(0x7f0000001100)=[@dstopts_2292={{0x78, 0x29, 0x4, {0x0, 0xc, '\x00', [@padn={0x1, 0x3, [0x0, 0x0, 0x0]}, @ra, @pad1, @generic={0x0, 0x40, "decee05674ce09d21414e7d34fe9a19c018bb6db7f4385ced81d5fd059cfd10e542a3946b873647b4057a1dd09f47f06efb7b5afc4ff8bf16d319e6b6c378bf1"}, @hao={0xc9, 0x10, @private1}]}}}], 0x78}}, {{&(0x7f00000005c0)={0xa, 0x4e20, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, 0x1c, &(0x7f0000000940)=[{&(0x7f0000000600)="ccbb0c7bafebd8bd811a05d3a402f9ed4fba540c0f960ac2ee5d942b5c6c5c98e53170d2031d7ec7ca42e2498f6fee18b244c4b47d876ad57e71a405b39875c14d2afd7e7fa6", 0x46}, {&(0x7f0000000680)="99b831d56d3ec818f6728d268de2f869e6dca9b37958b50779961547a4bd4aa1c2353e9b2bff3ac64d527346793a78c6d87eed4f3ba7c0f3d6834db3fc45b3832698321dfec406d2f5da447c24d260cd18", 0x51}, {&(0x7f0000000700)="0275b1cd41edc81bd4bd3e76274b79e1b79adb402013c86090f0029c474e10822f026f64b8c8b6d61528ab0df1b28d199fcaffb69721a0116e065b0f9792eb6b0f5f33509b5f1dbba4d95a7cb96b156145c30f49ec1f0abaa3167ab135339392db8fb9c7364cd3eadeff890337b625ff530a7c9c8118ea31d9e220d18cbc8ded9c16a4caa7c86e9c4d1f8dd3808c5492cd9ceb6e89e24346cb886a7e6ed125c2648ce00d3cfd32651f2fc574d068025a29d5f267519981626225752f", 0xbc}, {&(0x7f00000007c0)="b533c4fb7d145e5ec1c3135b43d813c26c470836788df4a3f5d3622543ff59629c64f7dcfbe30f0e55cbf2ec7023adf2a6353bbd2d1ad9d56c6ad12a15e4c0a5fbca35a769ddbacd6b043c6b6075515c93e8f01d9ede432b450a75ce189c456ebaf29095ef5a9978e9470b4c9ae303eaca20abd7215082c2950d7c04da9c5dcbfced7c5c7c27716ac69a1c581750fcbeba2d5cbd9de53b88cc172213a89028d9a1951df65567d23d7659f172e09127e86b0b2915e833ba04dd372d59d041d73af17f80d2187d288aab56d4f5a1a56f49e40444838b7ba441456d9e382e35c402d0a4a01886b32441", 0xe8}, {&(0x7f00000008c0)="b9041489ac44e261037e97f8091c0c724a14e33ed802c06fa2ad74cc496c3a1fa6903456a1eaaf2014b6d2216df4cc8602b9d7036f2ec8dfed68e960f7c1", 0x3e}, {&(0x7f0000000900)="682549e9d28a7ca921bf978c95c0a0715d1528608a1cf789e72a04000000000000001595123a924d9edc6be0", 0x2c}], 0x6, &(0x7f0000000cc0)=[@hoplimit_2292={{0x14}}, @dontfrag={{0x14}}, @hopopts_2292={{0xb8, 0x29, 0x36, {0x0, 0x13, '\x00', [@enc_lim, @jumbo, @generic={0x0, 0x71, "bd196ccac4459cde51727f9e960abcd7a94dcade5618fa5edba4e5d4150ac93489f24b08b501d57b59726576083171ab1a73ecbb658b0951d7e33438d6707c8217201227b1e9845df5cf481a157565b75905fbbdace055894b500a54f744fc96a296a6488384df665fc0852c594c888f47"}, @generic={0x0, 0x1, "9c"}, @ra, @jumbo, @ra, @hao={0xc9, 0x10, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}]}}}, @pktinfo={{0x7b, 0x29, 0x32, {@private1}}}, @dstopts_2292={{0x140, 0x29, 0x4, {0x0, 0x24, '\x00', [@pad1, @generic={0x0, 0xc0, "f34e52566bed8e98faea711e69b9c12fde29fe8aae575c8956993af4090a903b715e17692f33ce665b8db92ea1aa186d7a8dceb0e9901906e23b4b82cef0dabc7e36693a1e3af8b2b1e48d3390da594337951eea985fe51ec81bf2994b254794b3e905a5bedee5fe9cf0ef37a71c88d49b293acb6ae3e71b957582cb093e2b0d3c0b23c65efe224e5bf0334dc2443e0154ebbb7f40beba145a5982462c963dcbb44d774a2ca6c249de189a3a4b0b4d5f6b8ae61ff2fdacc5851441c617838a60"}, @enc_lim, @ra, @calipso={0x7, 0x18, {0x0, 0x4, 0x0, 0x0, [0x0, 0x0]}}, @calipso={0x7, 0x38, {0x0, 0xc, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, @enc_lim]}}}], 0x250}}], 0x2, 0x0) 03:38:13 executing program 5: r0 = socket$netlink(0x10, 0x3, 0xa) sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000001500)={0x0, 0x0, &(0x7f00000014c0)={&(0x7f0000001540)={0xd04, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}, [@NL80211_ATTR_TID_CONFIG={0xc4, 0x11d, 0x0, 0x1, [{0x20, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5}]}, {0x10, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc}]}, {0x2c, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5}]}, {0x20, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}]}, {0x18, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}]}, {0x10, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc}]}, {0x8, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}]}]}, @NL80211_ATTR_TID_CONFIG={0x88, 0x11d, 0x0, 0x1, [{0x58, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc}]}, {0x2c, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x10, 0xd, 0x0, 0x1, [@NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HE_GI={0x5}]}]}]}]}, @NL80211_ATTR_TID_CONFIG={0x5a8, 0x11d, 0x0, 0x1, [{0x4d8, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x50, 0xd, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x4c, 0x1, 0x0, 0x1, [@NL80211_TXRATE_HE={0x14}, @NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_HT={0x5, 0x2, [{}]}, @NL80211_TXRATE_HT={0xd, 0x2, [{}, {}, {}, {}, {}, {}, {}, {}, {}]}, @NL80211_TXRATE_HE={0x14}]}]}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x228, 0xd, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x7c, 0x2, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x1d, 0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @NL80211_TXRATE_HT={0x25, 0x2, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}]}, @NL80211_TXRATE_VHT={0x14}, @NL80211_TXRATE_HT={0x11, 0x2, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}]}, @NL80211_TXRATE_HE_GI={0x5}]}, @NL80211_BAND_5GHZ={0x54, 0x1, 0x0, 0x1, [@NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_HE_LTF={0x5}, @NL80211_TXRATE_HE={0x14}, @NL80211_TXRATE_HE={0x14}, @NL80211_TXRATE_LEGACY={0xd, 0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @NL80211_TXRATE_HE_LTF={0x5}]}, @NL80211_BAND_5GHZ={0xb0, 0x1, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_HE_LTF={0x5}, @NL80211_TXRATE_VHT={0x14}, @NL80211_TXRATE_HE_LTF={0x5}, @NL80211_TXRATE_VHT={0x14}, @NL80211_TXRATE_HT={0x41, 0x2, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}]}, @NL80211_TXRATE_HE={0x14}, @NL80211_TXRATE_HE={0x14}]}, @NL80211_BAND_60GHZ={0x48, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HE_LTF={0x5}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_LEGACY={0x15, 0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_HE={0x14}]}, @NL80211_BAND_60GHZ={0x5c, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HE_LTF={0x5}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_HE_LTF={0x5}, @NL80211_TXRATE_HE={0x14}, @NL80211_TXRATE_HE_LTF={0x5}, @NL80211_TXRATE_HE={0x14}, @NL80211_TXRATE_GI={0x5}]}]}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x234, 0xd, 0x0, 0x1, [@NL80211_BAND_6GHZ={0x88, 0x3, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_HE={0x14}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_VHT={0x14}, @NL80211_TXRATE_HT={0x41, 0x2, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}]}]}, @NL80211_BAND_60GHZ={0x60, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HT={0x3d, 0x2, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}]}, @NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_VHT={0x14}]}, @NL80211_BAND_2GHZ={0x80, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x21, 0x2, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}]}, @NL80211_TXRATE_HE_LTF={0x5}, @NL80211_TXRATE_LEGACY={0x5, 0x1, [0x0]}, @NL80211_TXRATE_HT={0x45, 0x2, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}]}]}, @NL80211_BAND_2GHZ={0x1c, 0x0, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x15, 0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}]}, @NL80211_BAND_2GHZ={0xc, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HE_GI={0x5}]}, @NL80211_BAND_6GHZ={0x18, 0x3, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14}]}, @NL80211_BAND_6GHZ={0x88, 0x3, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0xd, 0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_LEGACY={0x5, 0x1, [0x0]}, @NL80211_TXRATE_HT={0x21, 0x2, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}]}, @NL80211_TXRATE_LEGACY={0x21, 0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @NL80211_TXRATE_VHT={0x14}, @NL80211_TXRATE_HE_LTF={0x5}]}]}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5}]}, {0x2c, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}]}, {0x24, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6}]}, {0x3c, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}]}, {0x20, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc}]}]}, @NL80211_ATTR_TID_CONFIG={0xc, 0x11d, 0x0, 0x1, [{0x8, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}]}]}, @NL80211_ATTR_TID_CONFIG={0x4a4, 0x11d, 0x0, 0x1, [{0x48, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_NOACK={0x5}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5}]}, {0x18, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc}]}, {0x18, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}]}, {0x40, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}]}, {0x10, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}]}, {0x40, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc}]}, {0x18, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc}]}, {0x36c, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x350, 0xd, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x6c, 0x1, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_HT={0x41, 0x2, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}]}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_VHT={0x14}]}, @NL80211_BAND_6GHZ={0x30, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HE={0x14}, @NL80211_TXRATE_LEGACY={0x15, 0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}]}, @NL80211_BAND_2GHZ={0xb8, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_LEGACY={0xd, 0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @NL80211_TXRATE_HT={0x4d, 0x2, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}]}, @NL80211_TXRATE_LEGACY={0xd, 0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @NL80211_TXRATE_HE_LTF={0x5}, @NL80211_TXRATE_HE_LTF={0x5}, @NL80211_TXRATE_HT={0x29, 0x2, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}]}]}, @NL80211_BAND_5GHZ={0x4c, 0x1, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14}, @NL80211_TXRATE_VHT={0x14}, @NL80211_TXRATE_LEGACY={0x1d, 0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}]}, @NL80211_BAND_2GHZ={0x40, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x5, 0x2, [{}]}, @NL80211_TXRATE_LEGACY={0x5, 0x1, [0x0]}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_VHT={0x14}, @NL80211_TXRATE_HE_GI={0x5}]}, @NL80211_BAND_5GHZ={0x84, 0x1, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_VHT={0x14}, @NL80211_TXRATE_HE_LTF={0x5}, @NL80211_TXRATE_LEGACY={0x15, 0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @NL80211_TXRATE_HE={0x14}, @NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_HE={0x14}, @NL80211_TXRATE_VHT={0x14}]}, @NL80211_BAND_6GHZ={0xdc, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HE_LTF={0x5}, @NL80211_TXRATE_HT={0x41, 0x2, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}]}, @NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_HT={0x25, 0x2, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}]}, @NL80211_TXRATE_HE={0x14}, @NL80211_TXRATE_LEGACY={0x21, 0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @NL80211_TXRATE_LEGACY={0x21, 0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}]}, @NL80211_BAND_6GHZ={0xc, 0x3, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5}]}]}]}]}, @NL80211_ATTR_TID_CONFIG={0x14c, 0x11d, 0x0, 0x1, [{0x148, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x144, 0xd, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x94, 0x2, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14}, @NL80211_TXRATE_HT={0xd, 0x2, [{}, {}, {}, {}, {}, {}, {}, {}, {}]}, @NL80211_TXRATE_HE={0x14}, @NL80211_TXRATE_VHT={0x14}, @NL80211_TXRATE_VHT={0x14}, @NL80211_TXRATE_HE={0x14}, @NL80211_TXRATE_HE_LTF={0x5}, @NL80211_TXRATE_VHT={0x14}]}, @NL80211_BAND_6GHZ={0xac, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HE={0x14}, @NL80211_TXRATE_VHT={0x14}, @NL80211_TXRATE_HT={0x25, 0x2, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}]}, @NL80211_TXRATE_VHT={0x14}, @NL80211_TXRATE_VHT={0x14}, @NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_HE={0x14}, @NL80211_TXRATE_HE={0x14}]}]}]}]}]}, 0xd04}}, 0x0) 03:38:13 executing program 3: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_TYPE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)={0x30, 0xd, 0x6, 0x401, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}]}, 0x30}}, 0x0) 03:38:13 executing program 2: syz_emit_ethernet(0x2e, &(0x7f0000000000)={@broadcast, @broadcast, @void, {@ipv4={0x800, @igmp={{0x6, 0x4, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp={0x44, 0x4}]}}, {0x0, 0x0, 0x0, @private}}}}}, 0x0) 03:38:13 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000200)={'ip6gre0\x00', &(0x7f0000000280)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @private0, @private1, 0x7}}) 03:38:13 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) getsockname$netlink(r0, 0x0, 0xffffffffffffffff) 03:38:14 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) r0 = open(0x0, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r2 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r2, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r1, 0x40187542, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:38:14 executing program 5: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000000)=0x2, 0x4) sendmmsg$inet6(r0, &(0x7f0000000b80)=[{{&(0x7f0000001300)={0xa, 0x4e22, 0x0, @empty}, 0x1c, 0x0}}], 0x1, 0x0) 03:38:14 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) sendmmsg$inet6(r0, &(0x7f00000015c0)=[{{&(0x7f0000000000)={0xa, 0x4e20, 0x0, @remote}, 0x1c, 0x0, 0x0, &(0x7f0000001100)=[@dstopts_2292={{0x18, 0x29, 0x43}}], 0x18}}], 0x1, 0x0) 03:38:14 executing program 2: syz_emit_ethernet(0x31, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff48d6ffffffffffffffffff0806"], 0x0) 03:38:14 executing program 4: syz_emit_ethernet(0xc6, &(0x7f0000000000)={@empty, @multicast, @val={@void}, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "b49150", 0x8c, 0x2f, 0x0, @private1, @private2, {[@srh={0x0, 0x8, 0x4, 0x4, 0x0, 0x0, 0x0, [@local, @mcast2, @private2, @private0]}]}}}}}, 0x0) 03:38:14 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$fou(&(0x7f0000000240), 0xffffffffffffffff) sendmsg$FOU_CMD_DEL(r0, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000040)={0x1c, r1, 0x1, 0x0, 0x0, {}, [@FOU_ATTR_IPPROTO={0x5}]}, 0x1c}}, 0x0) 03:38:15 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_LINKINFO_SET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x2c, r1, 0x1, 0x0, 0x0, {0x12}, [@ETHTOOL_A_LINKINFO_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}]}]}, 0x2c}}, 0x0) 03:38:15 executing program 3: syz_emit_ethernet(0x7e, &(0x7f0000000000)={@empty, @multicast, @val={@void}, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "b49150", 0x44, 0x2f, 0x0, @private1, @private2}}}}, 0x0) 03:38:15 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_udp_int(r0, 0x11, 0x67, &(0x7f0000000040)=0xffffff22, 0x4) 03:38:15 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) sendmmsg$unix(r0, &(0x7f000000a200)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) 03:38:15 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_LINKINFO_SET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000003000000040001801c00018008000100", @ANYRES32, @ANYBLOB="080003000008"], 0x34}}, 0x0) 03:38:15 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) r0 = open(0x0, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r2 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r2, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r1, 0x40187542, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:38:15 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000040)={'ip6tnl0\x00', &(0x7f00000000c0)={'ip6tnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}, @private1}}) 03:38:15 executing program 2: bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x1b}, 0x48) 03:38:15 executing program 5: syz_emit_ethernet(0x2e, &(0x7f0000000000)={@broadcast, @broadcast, @void, {@ipv4={0x800, @igmp={{0x6, 0x4, 0x0, 0x0, 0x13, 0x0, 0x0, 0x0, 0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@lsrr={0x83, 0x3}]}}, {0x0, 0x0, 0x0, @private}}}}}, 0x0) 03:38:15 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000600), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_WOL_GET(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x2c, r1, 0x9, 0x0, 0x0, {0x6}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_team\x00'}]}]}, 0x2c}}, 0x0) 03:38:15 executing program 0: syz_emit_ethernet(0x2e, &(0x7f0000000000)={@broadcast, @broadcast, @void, {@ipv4={0x800, @igmp={{0x6, 0x4, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@lsrr={0x83, 0x2}]}}, {0x0, 0x0, 0x0, @private}}}}}, 0x0) 03:38:15 executing program 2: socketpair(0x2, 0xa, 0x0, &(0x7f0000002500)) 03:38:16 executing program 0: socketpair(0x0, 0x0, 0x0, 0x0) syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/ipc\x00') 03:38:16 executing program 3: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg(r0, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x0) recvmsg$unix(r1, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x0) 03:38:16 executing program 4: bpf$BPF_BTF_LOAD(0x12, &(0x7f00000017c0)={&(0x7f0000000780)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@array={0x0, 0x0, 0x0, 0x3, 0x0, {0x1}}]}}, &(0x7f00000007c0)=""/4096, 0x32, 0x1000, 0x1}, 0x20) 03:38:16 executing program 5: syz_emit_ethernet(0x22, &(0x7f0000000000)={@empty, @random="3085e4c20bf8", @void, {@ipv4={0x800, @generic={{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x29, 0x0, @remote, @broadcast}}}}}, 0x0) 03:38:16 executing program 2: r0 = socket$igmp6(0xa, 0x3, 0x2) sendmmsg$inet6(r0, &(0x7f0000001ac0)=[{{&(0x7f0000000280)={0xa, 0x0, 0x0, @dev}, 0x1c, 0x0}}, {{&(0x7f0000000000)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, 0x1c, 0x0}}], 0x2, 0x0) 03:38:17 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) r0 = open(0x0, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:38:17 executing program 0: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'syzkaller1\x00', 0xb02}) ioctl$TUNGETFILTER(r0, 0x801054db, &(0x7f00000000c0)=""/171) 03:38:17 executing program 3: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x14, 0x14, 0x2, [@func_proto={0x0, 0x1, 0x0, 0xd, 0x0, [{}]}]}}, &(0x7f0000000100)=""/199, 0x2e, 0xc7, 0x1}, 0x20) 03:38:17 executing program 5: openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000003c0)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000003c0)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) 03:38:17 executing program 4: bpf$BPF_BTF_LOAD(0x12, &(0x7f00000041c0)={&(0x7f0000003ec0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@func_proto={0x0, 0x0, 0x4}]}}, &(0x7f00000040c0)=""/220, 0x26, 0xdc, 0x1}, 0x20) 03:38:17 executing program 2: mkdir(&(0x7f00000019c0)='./file0\x00', 0x0) mkdir(&(0x7f0000000000)='./file1\x00', 0x0) 03:38:17 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg(r0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)=""/236, 0xec}, 0x2022) sendmsg$sock(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000740)=[{&(0x7f0000000540)='7', 0x1}], 0x1}, 0x0) 03:38:17 executing program 2: mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0) mlock(&(0x7f0000ffc000/0x2000)=nil, 0x2000) 03:38:17 executing program 5: mprotect(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0) mlock(&(0x7f0000ffc000/0x1000)=nil, 0x1000) 03:38:17 executing program 4: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0) write$cgroup_pid(0xffffffffffffffff, 0x0, 0x0) write$cgroup_pid(r1, &(0x7f0000000080), 0x12) 03:38:17 executing program 0: bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x8, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 03:38:18 executing program 5: bpf$MAP_CREATE(0x0, &(0x7f0000001680)=@base={0x1b, 0x0, 0x0, 0x8, 0x0, 0x1}, 0x48) 03:38:19 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) r0 = open(0x0, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:38:19 executing program 4: socketpair(0x2, 0x1, 0x6, &(0x7f0000000080)) 03:38:19 executing program 0: r0 = openat$zero(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) readv(r0, &(0x7f00000006c0)=[{0x0}, {&(0x7f0000000680)=""/8, 0x8}], 0x2) 03:38:19 executing program 2: setrlimit(0x8, &(0x7f0000000000)) socketpair$unix(0x1, 0x2, 0x0, 0x0) 03:38:19 executing program 5: setrlimit(0x0, &(0x7f0000000180)={0x0, 0x8000000000000000}) 03:38:19 executing program 3: r0 = msgget(0x3, 0x0) msgctl$IPC_SET(r0, 0x1, &(0x7f00000000c0)={{0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}}) 03:38:19 executing program 4: r0 = msgget(0x3, 0x0) msgsnd(r0, 0x0, 0x0, 0x0) msgctl$IPC_STAT(r0, 0x2, &(0x7f0000000380)=""/101) 03:38:19 executing program 2: setrlimit(0x2, &(0x7f0000000180)={0x60000000, 0x8000000000000000}) 03:38:19 executing program 0: r0 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/vm/compact_memory\x00', 0x1, 0x0) ppoll(&(0x7f0000000280)=[{r0}], 0x1, &(0x7f00000002c0), 0x0, 0x0) 03:38:19 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0xb, &(0x7f0000000000)=0x1a, 0x4) syz_genetlink_get_family_id$wireguard(&(0x7f00000003c0), r0) 03:38:19 executing program 5: socket(0x2, 0x3, 0x3f) [ 2476.905792][T11699] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. 03:38:20 executing program 0: syz_clone(0x43a44000, 0x0, 0x0, 0x0, 0x0, 0x0) 03:38:20 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) r0 = open(0x0, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:38:20 executing program 5: r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r0, 0xffffffffffffffff, 0x0, 0x0, 0x0}, 0x62) 03:38:20 executing program 4: r0 = msgget(0x3, 0x0) msgsnd(r0, 0x0, 0x0, 0x0) msgctl$IPC_STAT(r0, 0x2, &(0x7f0000000380)=""/101) 03:38:20 executing program 2: syz_clone(0x9c117000, 0x0, 0xfffffffffffffd6e, 0x0, 0x0, 0x0) 03:38:20 executing program 3: r0 = socket$unix(0x1, 0x1, 0x0) setsockopt$sock_int(r0, 0xffff, 0x1004, 0x0, 0x0) 03:38:21 executing program 4: r0 = msgget(0x3, 0x0) msgsnd(r0, 0x0, 0x0, 0x0) msgctl$IPC_STAT(r0, 0x2, &(0x7f0000000380)=""/101) 03:38:21 executing program 2: pipe2(0x0, 0x30004) 03:38:21 executing program 3: r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) fcntl$lock(r0, 0x9, 0x0) 03:38:21 executing program 5: r0 = socket(0x2, 0x1, 0x0) sendmsg$unix(r0, &(0x7f0000000680)={&(0x7f0000000400)=@abs={0x0, 0x0, 0x2}, 0x8, 0x0, 0x0, &(0x7f0000000640)}, 0x0) 03:38:21 executing program 0: syz_emit_ethernet(0x3e, &(0x7f0000000180)={@local, @random="e5d9793b8d3e", @val, {@ipv6}}, 0x0) 03:38:21 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) r0 = open(0x0, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r2 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000040)) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) io_uring_enter(r2, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r1, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:38:21 executing program 2: socket(0x1, 0x5, 0x1) 03:38:21 executing program 3: r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x101, 0x0) r1 = dup(r0) write$FUSE_WRITE(r1, 0x0, 0xffffff0a) 03:38:21 executing program 4: r0 = msgget(0x3, 0x0) msgsnd(r0, 0x0, 0x0, 0x0) msgctl$IPC_STAT(r0, 0x2, &(0x7f0000000380)=""/101) 03:38:21 executing program 0: openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x418202, 0x0) 03:38:21 executing program 5: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup2(r0, r1) ioctl$sock_TIOCOUTQ(r2, 0x5411, &(0x7f0000000040)) 03:38:22 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = dup(r0) write$cgroup_netprio_ifpriomap(r1, 0x0, 0x0) 03:38:22 executing program 4: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup2(r0, r1) setsockopt$inet_udp_encap(r2, 0x11, 0x64, 0x0, 0x35) 03:38:22 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = dup2(r1, r0) write$cgroup_netprio_ifpriomap(r2, 0x0, 0xfdc4) 03:38:22 executing program 0: r0 = eventfd2(0x9, 0x0) read$eventfd(r0, &(0x7f0000000000), 0x8) 03:38:22 executing program 5: syz_emit_ethernet(0x6a, &(0x7f0000000080)={@random="2795acda6412", @remote, @void, {@ipv4={0x800, @gre={{0x6, 0x4, 0x0, 0x0, 0x5c, 0x0, 0x0, 0x0, 0x2f, 0x0, @private, @broadcast, {[@lsrr={0x83, 0x3}]}}}}}}, 0x0) 03:38:22 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) r0 = open(0x0, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r2 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000040)) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) io_uring_enter(r2, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r1, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:38:22 executing program 2: syz_emit_ethernet(0x6a, &(0x7f0000000080)={@random="2795acda6412", @remote, @void, {@ipv4={0x800, @gre={{0x6, 0x4, 0x0, 0x0, 0x5c, 0x0, 0x0, 0x0, 0x2f, 0x0, @private, @broadcast, {[@generic={0x94, 0x2}]}}}}}}, 0x0) 03:38:22 executing program 0: syz_emit_ethernet(0x6a, &(0x7f0000000080)={@local, @broadcast, @void, {@ipv4={0x800, @igmp={{0x15, 0x4, 0x0, 0x0, 0x5c, 0x0, 0x0, 0x0, 0x2, 0x0, @dev, @rand_addr, {[@cipso={0x86, 0x3d, 0x0, [{0x0, 0x6, "ae906261"}, {0x0, 0x10, "64fce2f23f4e50edd830fd6f2ada"}, {0x0, 0x9, "6ac0e7661532c7"}, {0x0, 0x3, 'h'}, {0x0, 0x8, "f0b31cdd3f42"}, {0x0, 0x9, "f99c6174c28209"}, {0x0, 0x4, "48cf"}]}]}}, {0x0, 0x0, 0x0, @remote}}}}}, 0x0) 03:38:22 executing program 4: r0 = eventfd2(0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000002780)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x8, 0x0, r0, &(0x7f0000000080)="d7681ad88439a7dbc067630168a80e79eea3a97ed2d17464f1fc334c7f89e420d23678e32020627d1dc96677ae47ebfeedaa3b03d83f7269df5cb58e0460100d2675a62126853edb620b216112e68b5e1e8bb12bd4940acb0c5090f9194a725e1c525f723eae41c3a54bc454771bc914e55830f3f9aafb04e77644ffc8050eadbf7d43f7db52db7119efc7bac2d8fa0742fe570e7501c0504e147de3199e397da8e0c4bf655f18a2d1b720b57d0eebb285757772f29beae87e5b91858a69398afc906c503bea9fa59b26397e5cd3ec4b4fef7d676992c6bc85978478079c0d5b6d03429cc2401b21e12956df6be9af1e9d8cbb0e0a2eb34bc8671f0ba35660d023f0dc1ae2bf14ea5217fd02ceb2fb7360f2fa40b4bf9d714ff620f98c02911fb1dc6eabf6b1ab9e8a7c2526ed17b7a57922d37935c8f35b3b8d7154a5e4b67ff890c6ec9a1993adaafa4186dc30429de2bd40b2db645f3b477219cfc5063c2c4e1aa74697b6326ac27e9fd706eefd29ab7b2c3083c8c14b5a173c846cfe48156a345acc96af73bb807337125a7a619bd6fcf799d4311b9ce06c69667f4bcc79740c2b2f7f856db0d0f98c4d289209627f0673f2c0d8c0437bd77be19b6bad5644d4786e407473e6ae732b6b822e70b4aafe6af4991a35fc8d794e3e89880d0fa6c2512547dce99d07b68d21c8116caddddf86e909d2ee6fa9c0eced1275c715452cd11bfd51583f3fb17eec31d8770a3687f065c026e2089f17719156da283cb80966ae6955a912bfca522b50ff8e8cea1712103e205137e3f75802e6f69d5e21495a99d62dae0326d68a92fbdd94a9f44889970a351e88c9edc365cc84cb1a06fc96c5eb833f1fa3aa738178d37f2bd0f79879170b1a2466f5ca1f60ea0ed05f235f4c51e545de15c18eeacb58fd35c0a538320b0918531735023b736b8787107d1d1e1e130c7ea702ce7b4d0baaeb05263700c48951790160f3a5979bf125b4df79b1a1029c658e402bf3fc658093af74c772183b795a5df372f47090dc2f31edf64546758c4eeb553310168490500efdd0c626072c38b18599a7c0018f158ea29eeb482174c027c9756afcfd284d8bbc9ec4b7e739d69bd13709556b62739aa3d72c4f60cc7e2ed895ce644325772c3571d04030122faa434259c75e5bfb902db3d5515a4233613ad6c3ec96143bebdd5764c78a78776a46e12de95badb89ad0626b561e20709fc6ef9218c7f72b0c003d4a8488f48f16c3a4ff8409f231073ea38f2bc3aaa4a18b1cb836179088f2339d95154540816b861634ce81d8f5c68791d34c9fb6c34d58bbde6cb5096a45512ff9827d4e54f0c1d193828938f806ac6dceb6f7f313f8a037f99495c49ca0e010fc79624df77dcbc498f2457beac80a415d218cf7f9ce9505cd6ed22cb22c2986cb7662116dbb55bbb35ce2fd055d", 0x401}]) 03:38:23 executing program 0: syz_emit_ethernet(0x66, &(0x7f0000000100)={@random="2795acda6412", @remote, @void, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x2f, 0x0, @private, @multicast2}}}}}, 0x0) 03:38:23 executing program 3: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r0, 0x0, 0x55, &(0x7f0000000100)={0x0, {{0x10, 0x2}}, {{0x10, 0x2}}}, 0x108) 03:38:23 executing program 5: r0 = socket$inet6_sctp(0x1c, 0x1, 0x84) r1 = fcntl$dupfd(r0, 0x0, r0) connect$inet6(r0, &(0x7f0000000040)={0x1c, 0x1c}, 0x1c) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x108, &(0x7f0000000200)={0x0, 0x0, 0x1}, &(0x7f0000000240)=0x18) 03:38:23 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) fstatfs(r0, &(0x7f00000007c0)) 03:38:23 executing program 2: r0 = socket(0x1c, 0x10000001, 0x84) getsockopt$inet_sctp_SCTP_STATUS(r0, 0x84, 0x100, &(0x7f0000000280), &(0x7f0000000340)=0xb0) 03:38:23 executing program 3: r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) write$P9_RXATTRCREATE(r0, 0xffffffffffffffff, 0x0) 03:38:23 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) r0 = open(0x0, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r2 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000040)) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) io_uring_enter(r2, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r1, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:38:24 executing program 0: pipe2(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$FUSE_DIRENTPLUS(r0, &(0x7f0000000200)={0x10, 0x0, 0x0, [{{}, {0x0, 0x0, 0x0, 0x0, '{\xac+'}}, {{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}}}, {{}, {0x0, 0x0, 0x0, 0x0, 'status\x00'}}, {{}, {0x0, 0x0, 0x0, 0x0, '%%'}}, {{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}}, {0x0, 0x0, 0x0, 0x0, 'status\x00'}}, {{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}}}]}, 0xffffffffffffffe9) 03:38:24 executing program 5: r0 = socket$inet6_sctp(0x1c, 0x1, 0x84) r1 = fcntl$dupfd(r0, 0x0, r0) connect$inet6(r0, &(0x7f0000000040)={0x1c, 0x1c}, 0x1c) sendmsg$inet_sctp(r1, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000400)="80", 0x1}], 0x1, &(0x7f00000006c0)=[@authinfo={0x10}], 0x10}, 0x0) 03:38:24 executing program 4: select(0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)={0x0, 0xfffffffffffffffa}) [ 2481.072062][ T1196] ieee802154 phy0 wpan0: encryption failed: -22 03:38:24 executing program 2: getsockname$inet(0xffffffffffffffff, 0x0, 0x0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x0) 03:38:24 executing program 3: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_int(r0, 0x0, 0x42, &(0x7f00000000c0)=0x1006, 0x4) 03:38:25 executing program 2: r0 = socket$inet6_sctp(0x1c, 0x1, 0x84) r1 = fcntl$dupfd(r0, 0x0, r0) connect$inet6(r0, &(0x7f0000000040)={0x1c, 0x1c}, 0x1c) sendmsg$inet_sctp(r1, &(0x7f0000000700)={&(0x7f00000003c0)=@in6={0x1c, 0x1c, 0x2}, 0x1c, &(0x7f0000000680)=[{&(0x7f0000000400)="80", 0x1}], 0x1, &(0x7f00000006c0)=[@authinfo={0x10}], 0x10}, 0x0) 03:38:25 executing program 4: symlink(&(0x7f0000000140)='..', &(0x7f00000000c0)='./file0\x00') link(&(0x7f0000000380)='./file0\x00', 0x0) 03:38:25 executing program 3: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) getsockname$inet(r0, &(0x7f0000000240), &(0x7f0000000280)=0x10) 03:38:25 executing program 4: r0 = socket$inet_sctp(0x2, 0x5, 0x84) sendto$inet(r0, &(0x7f0000000040)='e', 0x1, 0x80, &(0x7f0000000140)={0x10, 0x2}, 0x10) 03:38:25 executing program 5: r0 = socket$inet(0x2, 0x3, 0x0) setsockopt$inet_int(r0, 0x0, 0x2, 0x0, 0x0) 03:38:25 executing program 2: preadv(0xffffffffffffffff, 0x0, 0x24, 0x0, 0x0) 03:38:25 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) r0 = open(0x0, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r2 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r2, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r1, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:38:25 executing program 0: r0 = socket$inet6_sctp(0x1c, 0x5, 0x84) recvmsg(r0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)=""/134, 0x86}, 0x400c1) 03:38:25 executing program 4: setrlimit(0x0, &(0x7f0000000000)={0x8, 0x100}) 03:38:25 executing program 3: open$dir(&(0x7f0000000380)='.\x00', 0x300, 0x0) 03:38:25 executing program 2: syz_emit_ethernet(0x4a, &(0x7f0000000240)={@broadcast, @local, @val, {@ipv6}}, 0x0) 03:38:26 executing program 4: r0 = socket$unix(0x1, 0x5, 0x0) sendmsg$unix(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000014c0)=[{0x0}, {0x0, 0xc600000000000000}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9}, 0x0) 03:38:26 executing program 0: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000080)=@abs={0x0, 0x0, 0x1}, 0x8) 03:38:26 executing program 2: r0 = open$dir(&(0x7f0000000380)='.\x00', 0x0, 0x0) getdents(r0, 0x0, 0x0) 03:38:26 executing program 3: syz_emit_ethernet(0x1fbf, &(0x7f00000023c0)={@local, @local, @val, {@ipv6}}, 0x0) 03:38:26 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) r0 = open(0x0, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r2 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r2, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r1, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:38:26 executing program 5: bpf$MAP_CREATE(0x0, &(0x7f0000000540)=@base={0xa, 0x2, 0x1, 0x38e38e2}, 0x48) 03:38:26 executing program 4: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000140)={0xffffffffffffffff}, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r0, &(0x7f0000000080)={0x13, 0x10, 0xfa00, {&(0x7f00000003c0), r1}}, 0x18) 03:38:27 executing program 2: bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001380)={0x6, 0x6, &(0x7f0000000000)=@framed={{}, [@initr0, @generic={0x20}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000180)={0x6, 0x6, &(0x7f0000000000)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x1, 0xfeb, &(0x7f0000000380)=""/4075, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 03:38:27 executing program 0: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000240)={'netpci0\x00', 0x2}) ioctl$TUNSETNOCSUM(r0, 0x400454c8, 0x0) 03:38:27 executing program 3: write$cgroup_type(0xffffffffffffffff, 0x0, 0x0) ioctl$IOC_PR_RESERVE(0xffffffffffffffff, 0x401070c9, 0x0) getegid() ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) 03:38:27 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) r0 = open(0x0, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r2 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r2, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r1, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:38:27 executing program 4: r0 = socket$inet_tcp(0x2, 0x1, 0x0) mmap(&(0x7f00001d9000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_tcp_int(r0, 0x6, 0x2, &(0x7f0000000040)=0x2800, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000280)='dctcp\x00', 0x6) setsockopt$sock_int(r0, 0x1, 0x29, &(0x7f0000000380)=0x2, 0x4) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x7654}]}, 0x10) bind$inet(r0, &(0x7f0000000080)={0x2, 0x0, @private=0xa010101}, 0x10) r1 = socket(0x10, 0x2, 0x0) write(r1, &(0x7f00000000c0)="1b0000001e005f0214fffffffffffff80700", 0x12) socket$nl_route(0x10, 0x3, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) bind$alg(0xffffffffffffffff, &(0x7f0000000180)={0x26, 'hash\x00', 0x0, 0x0, 'wp256-generic\x00'}, 0x58) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x78) mmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0x10, 0xffffffffffffffff, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000003c0)='yeah\x00', 0x5) pipe2(0x0, 0x0) connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x1c}}, 0x10) sendmsg$inet(r0, &(0x7f00000015c0)={0x0, 0x14, &(0x7f0000001600)=[{&(0x7f0000000240)=' ', 0xffffff1f}], 0x1}, 0x0) recvmsg(r0, &(0x7f0000000580)={0x0, 0x2, &(0x7f0000000500)=[{&(0x7f0000000740)=""/4096, 0xa15b0}], 0x1, 0x0, 0x2000000000000}, 0x700) 03:38:27 executing program 2: r0 = socket$inet_sctp(0x2, 0x5, 0x84) r1 = socket$inet6_sctp(0x1c, 0x5, 0x84) connect$inet6(r1, &(0x7f0000000400)={0x1c, 0x1c, 0x3}, 0x1c) r2 = dup2(r1, r1) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x105, &(0x7f0000000240)=ANY=[@ANYRES32=0x0], &(0x7f00000001c0)=0x8) setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x15, &(0x7f0000000140)={r3}, 0x8) 03:38:27 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000300), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_PAUSE_SET(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000200)={0x2c, r1, 0x1, 0x0, 0x0, {0x12}, [@ETHTOOL_A_PAUSE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}]}, 0x2c}}, 0x0) 03:38:27 executing program 0: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r1) sendmsg$NLBL_MGMT_C_REMOVEDEF(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="e9e226bd7000fbdbdf2505"], 0x1c}}, 0x0) 03:38:27 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) r0 = open(0x0, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(0xffffffffffffffff, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r1, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:38:27 executing program 4: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000240)={'netpci0\x00', 0x2}) ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{}]}) 03:38:28 executing program 5: r0 = openat$random(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$RNDADDENTROPY(r0, 0x5206, 0x0) 03:38:28 executing program 3: r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCDELPRL(0xffffffffffffffff, 0x89f6, 0x0) 03:38:28 executing program 0: openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system', 0x4f0e82, 0x0) 03:38:28 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000008c0)={'macsec0\x00', 0x8f7c25532e73cf22}) 03:38:28 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) r0 = open(0x0, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(0xffffffffffffffff, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r1, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:38:28 executing program 4: bpf$BPF_PROG_DETACH(0x9, &(0x7f0000002280)={@map, 0xffffffffffffffff, 0x16}, 0x10) 03:38:28 executing program 0: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000008c0), 0x0, 0x0) read$alg(r0, &(0x7f0000000cc0)=""/4096, 0x1000) 03:38:28 executing program 3: bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x5, 0xffd, 0x4, 0xff, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4}, 0x48) 03:38:28 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg(r0, 0x0, 0x0) 03:38:28 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) r0 = open(0x0, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(0xffffffffffffffff, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r1, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:38:28 executing program 2: bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001b40)={0x6, 0x4, &(0x7f0000000040)=@framed={{}, [@ldst={0x3, 0x0, 0x6, 0x0, 0x0, 0x0, 0xfffffffffffffffc}]}, &(0x7f0000000080)='GPL\x00', 0x4, 0xe8, &(0x7f00000016c0)=""/232, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 03:38:29 executing program 5: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000580)={&(0x7f0000000300)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@fwd]}}, &(0x7f0000000340)=""/166, 0x26, 0xa6, 0x1}, 0x20) 03:38:29 executing program 4: socketpair(0x10, 0x0, 0x5, &(0x7f00000000c0)) 03:38:29 executing program 2: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000580)={&(0x7f0000000300)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x7, [@fwd={0x2}]}, {0x0, [0x0, 0x5f, 0x30, 0x5f, 0x2e]}}, &(0x7f0000000340)=""/166, 0x2b, 0xa6, 0x1}, 0x20) 03:38:29 executing program 0: socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg(r0, 0x0, 0x0) 03:38:29 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) r0 = open(0x0, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) r2 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r2, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r1, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:38:29 executing program 5: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg(r0, &(0x7f00000038c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001600)=[{0xf, 0x0, 0x0, "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"}, {0x48, 0x0, 0x0, "5d4aeef0f59ef82a597a3f1775b49e093c61e1ce99482c0677509535ddd7b4dbd8bfb33ec11273d9fdfd6a6c008764fc36"}, {0x110, 0x0, 0x0, "16b7e45c9d33099330f080df5edf16869d6171d71883ab85d7a48b74d716cb40535c95a6a0148fc0c8244768ba73682db3e81a1873d5a52f599c8f7b1cffccb546b8d6b6a99d1c6433559fc9068759e2af98fe40f59eb68c40beecb6dec78d7463ca5938c76faed8b13c73b78446d869c232b6841ac92601650754ff10f77418ce607deac7b41b157ff1483267f6acb5c330620a9092464d2ae46afdcff20a4bcb7fa893a0b489c7389b9b3bf41cbaa93e8501645900498851ddfec08d6e45627e5458871c00ae285e4351beb8a73c99137db42f53eb17c71c3fcb66c3a2008408cae802e4ec2a55a419bfa4fd19a7314250f0bbcec88c4316"}, {0x38, 0x0, 0x0, "8db2799d481c8ae354f36f8d55767755314f357a01d61f59235e739dd6d18cb5c2"}, {0xd8, 0x0, 0x0, "48917cbc724ca9805dccded4303b5196ca110c3c462d314774a6d90de80e063b58f851c5b8ea5fe283263f5470223822d902b1b302075deff37441d48fbe7143f013ea32bea1f59f921ef7a79d74480fd09f6463bdd415f6ae9bc670f82948b1886c2d169d98f59573a45da3ffc82787c477d2ae3976c1e5752cee067d737d2b55a400b92b2408725116b5e6f370257a380e5a4914b833ad52671e9bcc215104130f0fb482d353479837042da09ba658b3c57c67c33a12447e91f16bbdbd566610"}, {0xd90, 0x0, 0x0, "c881d8015b8ef84312d03aaa19fd53c310c48c381229dc7e4de9cc6cec2cf43a8b975cd07068862ad6c4320cae63699d353c1fb502f478510372c024edd5f0cdf82146ec7cf735fcda4651778427c0e8043150ac81f568d97936c4786526b86cc7258cd8b96929dd3b96e5b927b1b42b86ee79763698575417961eb717bcaa8e03269ff7d82e02a6944724f92eae73c49d40fd5689761a0c5af17a2a033b90777f822a60216a6d0c3c4e81d531901381c7569cea8ed10a76a8249a96b19fa58ac34ce6ed885a85d4f54a0ad8586ab5f6ebe53d49988c4511c9d3482c43af5103c3cd06c843711a45141aa0717ca102fc93a5f223326d100878c4da7d1a2d2d60d97700a595ce1acdbec4733830d25ab51e0ee35756b4161443c1f898ed6bbb0c6a4d5d9fb6c6592f6964b0e9acb792b7dc8c1b659a586a6a17001ad6256d0867b6dc6e6205f2b0461a90b6d72b5d0a445744f699a3eb486382568e589d11da3a864d4edb8fd5e9d767cfac3cce9675eee7c9fbac31ddc89d7b1167726fe90e3197fd305b7aae9eccaacf836c43e87ee866c66f317395a04e5015a4f1d803dfaf15330a0e62c6bd483ea266200311239e7dbada23b2e623586c1fd2a715850036baea309f9b42d312d498170fd8862e64fc073cfad7bb1926c995dd29d00008293efbb5ddadfb491926bf81e3f3b4a87a4b745673f55a0fb23aaa8d44cf20a1ca241a6a69f6e1a786ca5e39066b20aaa0dd04cda4a64ffa3ed6311589ee16c6cada9847f2b19fc8ce48f01360b78937dc5d6f616caf6b482c82b0fde7eed9572e5e353fe0e1021ca57d5b7eacc8912bc5be1dec3b187ab02b3001e38a71530dd3c5304651289c2e5a33bc00a856f1d5ebfe138660046b5337c1333c9868c2d1018544996b14b7079e61ae1e16d6d886446eb6b23350f3ffa23f6bf3704234b5770aadb3eb29a8927a95a28d291999ece3e166e08b04ca9f367f031acb46bb7debc40a92948ddbc45eee51d9f959cab0862533606637f396eaa8f24f2ecb8215318b9cfe1528da61ad6eee8f0bd743c4a66a3b513f54c808a30aa1e9841e832b28fd76d477de63674b01bb80bed4e3a26821c005f93a015750aa64f5eba611ab6eedc3f256ff2b23f089e1096ef4a30cb1b018e1df7ef7b091a2901c570f098dfbaa6437a4dec9b05d4622227a88f0d6ead45059724ef20a956957d998d9f5f1053cbec3820932486fefa33a135ccc082ce2a9879c053fb1711b2c55ee1311fd40395bb23c275d9bbd9b711de84ffb7aad8da0a934c47e221e9e7c854384de3f3d20dc18b82600391932f5431fce4c790dbc004756d7710c14d024fa2b3af3d372312f417061eea206062c3fe861bcaa65b4c0b6c4725578407056c348e268fb4883568edb14d5bf41ba2b5f93164a6b7bf8face72abc829b1c312e0680fb7f3d9da754ab3051111474570c2ec954222a8e3d899865e01bcd36ad3639644d41a5c52525fa03b0e132ce8c274cd71d575a87629bdca111852ed85660ad96efdcd4bac65f58fdbc710d7512373100bb884d86f00d72dffed7cea08d367f29a2abbfa043eba4f53f678d4f3a35d44b98496ce0a096369d104711ea0042d292a2297e3c5299b393cce0ef9622f8c0c774bee5aaf9ac862a86f8a1d6e99580bc2a72ad9e3cd818b36e1249f7a1d284dd5b0a3fe5b0d183032d72b6a1b157fb472db203e3d02526ff305cc40d0d1cd501c10dfd285b78f46dbb525633a42c4a8ab32bd2fa94e2bca7b7af3daee8e6d992069ac6afe3689dece1478feacad9ca1c8ccc17528abe6f81b3d43be53503cf902fb9ad440ba014f7ea548904a603c08a8132de6b2766c2662235fab2443cdbc60f55b4090b3b89794d2f8bb1f38f03f5086070145743fe6a472c6c0db1572e21d32a33787fea54a57e46b1b793aa8929336e0814f4378b59166397ea688923cd63c92dcba0937f550ab462339e88e045664f28392fc5f6295f4f4fa00a97322cc36d447fba6091a31ed60b0897f879c15044798bee73fa72c58cdd0409113e1fb9891ff2a3c3fd07d41768ef653b50143c7b5e0bc1e8f22637a461b0e5629dc807b0802e7c59e58afa577e76c25bfe1621950182e38f3b7a37672c1d5572b14a426e04bd05282f0499e99925673d2f27760a7cd4617eeb0df082eaaf4efcc6aee41d97d766f02bd69275214e34e7b77edd66ecb03812a623e21ac4ebc8a489dc55279e2a6693adf7cdb63cf02e88caf245c3ddf961f8ecd6d5413b2e77ecb078abc02fffb13e7ebaecd2489d3bc7d8199100c7dadd2b1ab5b682bb18c3b273ed5b5dfc359e8cad6b64d3aa3510a1ed610f099e52e1aaa730364d72fe5adb600d9cc0c68ad50c6717ae8e27a610a83e11f9a8281acf136e5e241c4b1d4fd8f92559addb69996143e94a843d5a4a883ad0bb693963de48c92c6f616693154986e85da96bfea20886126d499e6203c7f53fe175ecd2c83ffdb26bd9ed917f932372d507300b3f79a9c272d94e05a2d63edbcceffc31852deb8d16d3d13af7fc1a7a21b5e02da5f4821870b7249bf73a43f460f7f1780c9dff5c3366723e5b09e9787cca8f48393c706176485e6908132f4d082822230d233b6596fb5515d6f82ac19d1c63c1520fe5de2e553c060832093d34c322babe20b0228f28c78da0fb5807c34e44c37ae213050a4f97511c844d052029b9239c60f2df916f85ee71ec67ecc6c312a99e7b13e45fc1ff667d6ed0686e0cd51dded376be441a9be8fd3eda013c3d2097f523b8ec94d5d3eeb7d9022c9361b2cfa114ba5a5ce26e95e36e459ea9e934da075d9dd3d0d1a4f52c058eed3785e29bc4a821e561acf9a90935e4c8ad35f5a74359e30c8866d28599e96483c74e932e7f29ec7f4f4fed5716e0f5e864dcd2a0058225bf948fb34676580046e58fc1b216a81ab9ccd2680a0e94f25bb4e1267dc1f218e9a3a1ed449a59101b1d7e5d62c764a6b7d89255a3ebb96d71ab1ce5275b2c27d54f2020cc53062fa0dc09e0d5304d0de65108f47b02dee0ed5adcaa89aad9f75297b0670c65586a256ea00e8ce62106052fcf2b5005a660923cbe542fb74a58c085de5fb4774ceebdb094bc74927b51e9258ae077532dd78c389dfc965c4d8e53808ca7c7a0d5487b020407fdb31fd97f6f5fee97913bb65d8a9f97515c5e702f3df7278f47d0df54a8484c2684ae9dc41153cfffd08c031bbe0e10c7a82bbfd06389530a414747de60c540c4baa1b80728d384126e831ebe21a2a83c8fb31336f38caa27df51b1b1519e40b0e8debe9520fb12d8800d406df0518e63baacba77f36b446bc203c4e3d1a1b3eebdcfa484b391435cd7bddbe5225d798cdc7127199116a8088a1a952a51a75e6a4546b94eb9206b18b86d705156cc2786c9b2658e9d75a4fbb546c341d54c44a727aa362ab919eec2065ed0e6ffede837b956828c4d7e38337334e378ca5ee15142f2afefbbeaf436ac920e7bca14561e847849703e6190f8b95c6b1c4f5b48aab71c701d8c580a58c2f8dd1bb956c782dfc624e3bef6b0fb2bde30e68743c333b25f2e118ec3e5997bafcd9617bae1da919892ed9610ba3d6eb0f47118831bff9b1ed9f3eaff6250492b48841b815d45e8738e4cdcfcb23beb60bfb21fe46249414a1d701962229d9614e06b9a8678481e86a29f66c5f04ede1efa77f3d2ed430bec821c24ed045da1b6dc7229c748f74890dc2cfb9626dd463c419323b57be8b6c8e076697e7dbee97002fa07344763fc6af65dce6c66d160c8b465d1188e4e2ed46c2251058fa380b7a288230bca16993093e9dc965e791b1669fe554d50bfac601e5b2ea31223ecd0a69e85af764c8d7ad7ff1fecb7473cdc32ea85bae9965b925e9a7932dc93c79a49b5e8e9e4f384be6f07cde3546fb13d2e4bbbb7d3adb3d5db44b2ea56b6a18c706da4db637a7e1b1fb3efde786ce66a6d7e3ad43f8455e381c87876980d6b463d3d0f1529783d19626a7092c7032581965a88238f0065c1e2fdacbb944377a1ce4a51b735cea7c1694b7730f16a6e756998b3e6acfce6ac5ac3e326c5d0dae12aa876049a856ebbbcf5a577f75594f9954d376a8c03a8f097f4f07fb8856054fa6335dbf20babd9ffe3f313a64d10ab21548847f53032aaf02758e144e6eea136a4b75f8c38eae95c6f9da57151b745ab7429e6ea87e63dc5477b1ff33636e70b8c4bdeda3d20d389af71c6ab9c4e720b0835d419cb8336c9811f7af56fa4bd2d99a6bd31b348c110fc101e2e81ea9adc1f023d810c9dbad92821aca56ace82141e29a3ff9d04366218b2eb1dc9eb85053abc862ca67d2dfadb9ed40524fee4d6378280e2c3fc9f53c02a097f4159d6528c8847cfe084ad36eec28aeb99fc02ad4fa15fa65ed68aa5a1f45db6c021a888458e14faf81dc5e2e80f5cda6d0a2c1b814395b14e958999e0e49d642491df52433b91f4259448bfa7f507c83070dd7da0de94b07487274d74f1b2bba3f620171a47a8253345b94a195615a14c61f116cbeaf08013b6e53a66fd493022f5d9292a87a49288257d05815c9203130883b7c54b72de2318b25ab0eda1fd3962788a3f41b7b780f61149e32def85951c517c024c7d480636899487fd765c66386912feb224fb6087b4e372019fc1af498d230f2acc441a3d2194a5ce7025c0812880796b7a539bfd129180bbc51efaaa82138aea32c2ba21551d0ab8562b41f131df6be27c174e565b39dcf3069d36db938c4b666d3b449ef3b4f4d216fa9cd72a4e590784fd6a34a1cf588c4b04585ca2063d10e19f79033d89d2c687c9b0c7779a4655831a0732275202677caadf7adf0c6168550a314f06a3303abc0afdc"}], 0x2008}, 0x0) 03:38:29 executing program 3: socketpair(0x11, 0x3, 0x0, &(0x7f0000001b00)) 03:38:29 executing program 2: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000340)={0xffffffffffffffff}) sendmsg$inet(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000180)="d8f4b293bd1ba68f5f4472c930d851b3c7ed185e8f34178a6fb5386d8b9400f2d47d41bf687f3b46a0b1008bfe003f89b8943a58f2359b4cc7db395f62ea82dcc50c70b33fc84d08831985b52d6f0faaeb102717b7d8cc84497a830dc1f556c7703a09cdd77b5f80543ed785ec9143382538c2b924e3ae26d6bd88643579205fb821e485d4beea8ae03708f372744d3fc77e6a9059f2549e6396a153036a7a95ad04561351904fd9416c5e46e9ee3a824f68e65e0386ab7b0b787cc58a489c", 0xbf}, {&(0x7f0000000240)="05e62ec97f3114fb69ab1202ccf266d09f2f67b5a3b33e7fc1c7f58bebb960b2645dbdfee87bc6584c2e67d316e120be9696d784da83717dd9ff9c5536aadf7aeffdb9efb74c3b9a7704dd394203241a2a1823718b855486e8e659eb05a16f6f2aba469411ce26a912311fc1b129d08f426a8f009d59a641c8fe1885dc2dc3778ceffc818ecdef49f25a29cebe34ede3122de2fdb37fb2d77701ad7cb973cc20260754a7a83e398266d6b9ba679ebd89b7", 0xb1}, {&(0x7f0000000300)="77ff554188da64d8b7d4499883b56ae77811acc3becccc5960c00950f9cc1177d02551d0be21348e70b7e29ab1838dd4774f72a3f42b1bbf3da444b676441295a1b6cadae2a105f561be3a6f18213aaa", 0xfffffe16}], 0x3, &(0x7f0000000400)=[@ip_ttl={{0x14}}, @ip_tos_int={{0x14}}, @ip_retopts={{0x0, 0x0, 0x7, {[@generic={0x0, 0x0, "6ad788ec"}, @lsrr={0x83, 0x0, 0x0, [@empty, @remote, @empty, @broadcast, @initdev={0xac, 0x1e, 0x0, 0x0}, @empty, @dev, @private]}, @timestamp={0x44, 0x0, 0x0, 0x0, 0x0, [0x0]}, @timestamp_addr={0x44, 0x0, 0x0, 0x1, 0x0, [{@private}, {@dev}, {@broadcast}, {@multicast1}, {@loopback}, {@private}, {@remote}, {@broadcast}]}, @noop]}}}], 0x30}, 0x0) 03:38:29 executing program 5: r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'pimreg1\x00', 0x2}) ioctl$TUNSETTXFILTER(r0, 0x400454d1, &(0x7f0000000000)={0x0, 0x6, [@local, @broadcast, @multicast, @random="8c63d0eadf00", @random="37f1c01afe10", @remote]}) 03:38:29 executing program 4: socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000100)) 03:38:30 executing program 0: bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000001480)={0xffffffffffffffff, 0x0, 0x18}, 0xc) 03:38:30 executing program 3: bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000200)="af", &(0x7f00000002c0)}, 0x48) 03:38:30 executing program 2: syz_clone(0x23004100, 0x0, 0x0, 0x0, 0x0, 0x0) 03:38:30 executing program 4: bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='afs_io_error\x00'}, 0xfffffffffffffd6e) 03:38:30 executing program 0: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x18, 0x1, &(0x7f0000000600)=@raw=[@kfunc], &(0x7f0000000640)='GPL\x00', 0x336, 0xa8, &(0x7f0000000680)=""/168, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 03:38:30 executing program 5: syz_clone(0x96208000, 0x0, 0x0, 0x0, 0x0, 0x0) 03:38:30 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) r0 = open(0x0, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) r2 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r2, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r1, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:38:30 executing program 3: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000001540), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'ip6erspan0\x00', 0x4a}) ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f00000001c0)={0x3, &(0x7f0000000180)=[{}, {0x20}, {0x6}]}) 03:38:30 executing program 4: syz_clone(0x40000000, 0x0, 0x0, &(0x7f0000000100), 0x0, 0x0) 03:38:30 executing program 2: bpf$BPF_PROG_DETACH(0x9, &(0x7f0000001480)={@map, 0xffffffffffffffff, 0x28}, 0x10) 03:38:30 executing program 0: openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000340)='blkio.bfq.time\x00', 0x0, 0x0) 03:38:30 executing program 5: bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000002100)={0xffffffffffffffff, 0x0}, 0x20) 03:38:31 executing program 2: socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r0, &(0x7f0000000780)={&(0x7f0000000340)=@name={0x1e, 0x2, 0x0, {{}, 0x2}}, 0x10, 0x0}, 0x200400c0) 03:38:31 executing program 0: syz_clone(0xa1002000, 0x0, 0x0, 0x0, 0x0, 0x0) 03:38:31 executing program 5: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001200)={&(0x7f00000010c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x4c, 0x4c, 0x5, [@func_proto={0x0, 0x8, 0x0, 0xd, 0x0, [{0x4}, {0xf}, {0x5}, {0x2}, {}, {}, {}, {0xa}]}]}, {0x0, [0x0, 0x0, 0x0]}}, &(0x7f0000001140)=""/142, 0x69, 0x8e, 0x1}, 0x20) 03:38:31 executing program 3: bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x9, 0x56, 0x5, 0x62}, 0x48) 03:38:31 executing program 4: socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000600)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg(r0, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)=[{&(0x7f0000000680)="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", 0x7ffff000}, {&(0x7f0000001b40)="fb7895f81553f9f6e9ea4eb93b2519009178e1d1ac45c62632bc44aad1176022beb0828398268aeecbb943126fd3d8c6d25cfeb7b2e54f52406ca9edaf77325e2e6b9f5ce14439ff3fc11748abe090ee75fea6cb24cae8e78e6c15d093ddeb27a339c2b45e634a76e6bd1087bb25c8323d1240c88d1859c5247d9181b6dbbfa70f35b4d2131beb0cb8f15ca16d60207440c319e14cf69adb09db97c6275c8016e66bbbc3e72d968e040f2e8604075f521b8d094d8f51956aa4a78fcef763d73b48a19c69e73e2b40823e9a0fee48ca507604711fd4d6d27b4aee60c65270e54e9af9c180e552275e80244466f4e7ce94f0e4507ef2634074d4381f2f03cb1dda4e1e33e9b13f1942e43e1ce0264c1a15a26e8dc9423d398b4e8c7bb44157c348b9375d6b1f94ce616bb7894839dcc1d53edf881d619f4217dde5efe0b3705c1ed567cc27186500a78fe6015c6ef0befec0aea7bedff653ffde0efe3319d11ffff95898057f8ad79212a8c4ac94a53f2d0e938172b0461d52a702e035917ce81c5b26c6496866747d3f03c57f7a1b546c211d54d322f8113ea118ebe4efccf01c73d9176b716298198983817ad9dd047356ae104e7ac6ea5cad63c1a3a3a5a6434e61990d05d6eb1b72d5c7aa43e77be387712b6995907c32e31ebdddeba17801f5add0c4269637f06a11a1f12236d4e28099ea6b5fd6ac0b0bb47958553a109755e8e453c4db60df61b0a0136c7de70af9743d1812310ed59b46cd98848d894a1236a497d4276a1e7cda651e8bc19657c8b24aa70076423f9a92d478d72d879a086026dfea381d5bc616fbe96c160ec6121d8b8ffbd5a713aef323247460dbb97656a7bc12d9ec3de92dc7395832d2b178da2a454a45b00a4e575295c4f5c8fedd901619983b35e80cea144f086a43ba785add782fb7b9b5e9e8f175f6ad7983d8c17936175bf851ffb86097c47fba651b1aa43c365a4926869e531457c405a7ac19636fb2c43cd119beeb7cc96cd8e3558e2a27265e9b0f9803577e86038f8a183c443f85809c35243fc02b3d0c15b8c40f8f1dbac07140cb01d7c84da34cba4d3c5dd299f565b11a393a7e60b58c2c245e3674a459450587f07e977643b82fab96dd25563d7291143556bbe04fdd004e8355796da6a3b50cdca0b78e710f3151893230fa27d4c364def9c960a5c2787e58df19422aacf193e645feb589f05ce546073ccf15178c52cad449708f757e28041fe9fa4b643bc964e108911c7a8be9d6464ad919a71bc2d79f8c7285cb06dd66ad78b9db5212cefbcbc8c0658818214481f5de2f5e489beb455f65b5ab3a327f80592d6b5bd65ffdec7968e47fb4beb31f24c70eec5ccf4a4be8ba96f2133b2e8b13b6cf17e3d3faf37cf9b28834091bd8928d9bdcdb135e83d19ada70b0a86d0f673797be3e4d0f24aff72e298992dc7b007f53dafbc34c7bb1a65216a3695e8ad89884521315dcddde2306f8da8dbe6c3b4a9074b8da4f9bc27ff1263fa1d70072b6d36f56afd213425c5850d3ae1e487b0fa4970dc6adcec3ee635390ca3cf59206a632e077dd374f03713c176163aca3f4a30a0ea233f9b17b9c93ead1225e196edeeab3d31f6258d6f9d988b5cd9bf4106569e1162e836dca2874433e337d46c11c5841ae965076b9f920d467044697b0d6361929cae538dece2c9b36add47dca85430c3cbe0fb9bf416f2290d93c92321aa94403263744ab3a96f78fe9f86a6978183bb321e00fde8294d0a45247234eebb823cee84afce63c6c008ee79407494650c5c304d3797e135e487222a427c330e9bef7ada6e82fb29444a33619b15bc97a609a1661d275abfac2bcccce3d9dd5556cd10058a74afbe94d69b8e5929ae6a00dbb31ce21c50e7c3f7be51685f35208939570fd514e721114e23d3c023c80e4620e9d761b663a1da1cc280e8e886c574d19b25b9704909d617697d751fd3aa892ff21cb70f534cb3f80af48b556e16fffe92ada42a8b4fa270b0a46099bb31a76bdb6e612ded959c5cc7163786e96e0bc20a860b01c7c719f2d461d89c25dc8c9006fc89ac1cf2b11e13de9a392e21296d710087f4835bf9826b0c236de975573a9e52fc96026c67fcdd533d2831193db1252ad5295a989723751ca00ffa1fd861f9ab00a616f558e450fdd7237a88fecb10963392f294d90c8f27bd1921e0648bce3260fcdae6753f8c35ae0c0482549abe5ff1c6968be35f048df840cb4b92966c47c5159d230f369414a732d76c1b36c3f0368fc36be24ad8a4d4e1db29156a3b91ff57f77fca3f15d3ebc56167ca8af894f1c6e7cde87005700a713da7f6c29f7907f9dfc6a2b20e2d322e271f283e19ae34a621b736d168122fe88c6371ed1fc6c379bf887a846548656ae32c1e0248b79d47532692401c1046a1ea176589a57f763215994d302d9ea122ccd6b6afdfa21443655b9fd343f5758817d96e5b53969df7922bd7565c1a4d39b47786ca12d53f9f1d56a05b34b1cf4efdc52427262c9674cb57ef0767de97bd735ba265004d28ed98e0a8b3b198da7f87bb5cbaac0c3237a9e4bdd690484aeeb3c630a6ff328d24a64a6f63cf12dc458d983d86a8bf5dd9efe386287386b2d6fc4d88711b0c1638dc6d3bedbfd4994ba7e3c85b83fb9817b5a7f314651b1107e0671880349a24fa813bc9fda0a0f9985d07616be105cc5c7683f9a53ce949d7c6846506c829edb7b874ad4e305756d08827faeb5afbba958de5bee522c0615519059cd8fce4dbbaaac0d6ae68357c2d79294cf7e9aa7e00f93d4354c10508cd776ef900af5effbf3bebb0a6ada2be74cd45f6a8cc86a167802943aac7cf4ad39f07c7f0f907c1193744ac980accb4087b5be3622883f32d34b9a367717c48a8acf9873ead213e6e4be54ab379406acd89fffbb95199e945d059febc825bd1f8a0a118cdbb2400c593a36728d2c3a624541af0df09fbd89f911e474cb70c3b1d5ecb4952b18de8a8728706fb452396acf6c4bf822c1bb23d2e35419ceb870803c496aed8e1c79e8abc9ea4723c222442e854e2d6b2a5970fd0f66b46234eacfe1aa1921fcbd2dc52d859d2fe23352a0523591ac15e9d3f7adab7bb4152d79a3e4c935ebedb817b7e017030879a07b23c7e3e7fc86afc4cc33a650fec8243fadd8533b4458cdb6155ced1ad48c4db7646756e318879b758cf85eeadbed3dfc0d593f5741047012cc32eb6faabbce7b7d74700f4e7c7cc817091b1c911d060279724896e3c19c5db4643d709cf87b82e32c012733cbe236343f7891568521a6327a430afcb5b65ed5e91602d32b1f7d3f9d20efc7c64591b92e17af9c3432ffd6aabead513a4399ae5e631697bfe865b38d282e26f8f5802a3f0519e7ed9ecd10a08a939cfcf54f94b1dc6e90325b6068fbf11515ae523ff386f7a6544ba7700e809190be2194fda3d4a305a3a590f943a9658384adf19bcbc366e825684e61c1652bbda25dd64c61bd816a56b25fc13421204eee2ba63a93125f484a592bb0f92a396bea4629fe6ce0ef462a09d7bec47d4f69f955b5927e7d9b886da321eb34ccada6509b2676f0144332cde162ab0590d8ee0df0c01a6aab8ddac2d7c2e4cd0ecd3d9f1dc93772c41785031474c9d90c0717157d697c6d473873bcac4908595a1b913228bade2af3fb82fc31b009f307d9ad96c520ccd6d77e50af501fcdb7301aa0ff574356252d78e12f48ff72868c69f4cfd979756cfaf89a8eaf8472f083269c19f80bdb64e994b0507bf34aa5af9f4528b59b89ac9a50c737b6f07bea720d7ef0c7ee5e992dbd693480860ab64f2f9e805dde1df6b4b917d1136941cf2f5dfbae9d8b7b22f434d59c77a1b9302eb023df6418f91f44129a380e22dffe7e8c0edd0aa48fe55cfca66b0c7c6fde7f7866d7159f99fb7b47a4a85ff4a7a06f967065b7827ac0041bcb6ba1f5c13e6a5e5abc3a6f1e249c8ff748fb5a058fcec5c3dcc50877fa81af96546252e6acb0f5cac44ee1966b1914164e285322a22c474b70e2347fd95b620d000a64ad6faf3d3419cd9e46d688ddd66f392dbe62325f1bb206d7ecffc246280c7ecc9c412740681c7c205b60414a09ff364b78e5cf224cb66c372edaaa6a95930931679ef1aa5967fb2f401bdd7aeb35722126c4e9ba9cfadf137073c39d24f257332f180b62d4443659a88cb0dc599d677f5cb574fc80d8c3f78d7b5acb50d7b9781ccef85e84f3a31db5bb270d1bc33b45b259bac24d20d4b3adabfbb3a3cd936e8adbf093a1bc2f499715dd0351f2137d8af06f0f37886b12426e9f81ea493958375105f21b1d57524e3e26ec4033ba02b727692701b89287d0dca506e5a9a7bd8f27b01db3ef83ff9b8a59c9f9f07f124b10e51cdf10ed4c4d775b5f3f1f26e6189ff19641a12575b2fd75e4cfb021f6997a1d568ecf40438e5a1abbaab7d2e5324e3a216c0b722142988c9d08ffce629aaa0f65df85e6b4921f77c74e1e74ff2484ede737ca1fe9a476131d2742dd128ac1ba83dd8221d95933165f761ce67b142e9e9750611aacea47f1144d751225ea6033ac622b888c7fd605910ca19dda06e81e68cc5a5239648874f559ff5b2c689ff494777dff7f829f4fd75d97b685ea62f900eb02bb5e6048fcc3eb59be0f59fde86e8469aa8ee2c5d34638d1781e33d91f0e8f95668909f627b752fdb27a2867ae00a1b8a9d2754272fc89b8d57332e6d78d0765d18ca615ef403ef3cc87bb0db4befbbd9312e5f8860035056ceff0ca894bf4f5b08748c9beff089e14cd87883662fcf823a035b718404f71a6e33403d97812c93e5e672bea1103a512d8750114fefd3114ea1bc44723f16b51b40e4ba0da2a2d677c1fac348e15767296a151cc39571afe9ec200d8211d31a78b8139ffee9daa2068b0e110eccfb04aa5dd478db94a573907abad8e1a20cb42af6712a09cc8de4be3edc0210f9042ec15c0d50b6b1e389281140ef20a886331", 0xdd1}], 0x2}, 0x0) 03:38:31 executing program 2: syz_clone(0x31008100, 0x0, 0x0, 0x0, 0x0, 0x0) 03:38:32 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) r0 = open(0x0, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) r2 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r2, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r1, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:38:32 executing program 5: r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'pimreg1\x00', 0x2}) ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000180)={0x8, &(0x7f0000000100)=[{0x2}, {0x5}, {0x8000}, {}, {}, {}, {}, {}]}) 03:38:32 executing program 3: setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f0000000000), 0x4) openat$cgroup_procs(0xffffffffffffffff, 0x0, 0x2, 0x0) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f0000000040), 0x4) syz_clone(0x40000000, &(0x7f0000000600), 0x0, &(0x7f0000000500), 0x0, 0x0) bpf$ITER_CREATE(0x21, &(0x7f0000000440), 0x8) 03:38:32 executing program 0: bpf$OBJ_PIN_MAP(0x6, &(0x7f00000020c0)={&(0x7f0000002080)='./file0\x00', 0x1}, 0x10) 03:38:32 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x0) 03:38:32 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=@ipv6_newroute={0x1c, 0x18, 0xd01, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}}, 0x1c}}, 0x0) 03:38:32 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000040000000030000002d0000000f0000000000000002000000020000000080000000800000200000002bc4645f2bc4645f0100ffff53ef0100010000002bc4645f000000000000000001000000000000000b0000000001000038000000c20200006b04", 0x66, 0x400}], 0x0, &(0x7f0000000300)=ANY=[]) 03:38:32 executing program 0: open$dir(&(0x7f0000006e00)='./file1\x00', 0x4c0, 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000085c0), 0x2, 0x0) mount$fuse(0x0, &(0x7f00000044c0)='./file1\x00', &(0x7f0000004500), 0x0, &(0x7f0000004600)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x2000}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f0000000000)={0x29, 0x2, 0x0, {0x0, 0x0, 0x1, 0x0, [0x0]}}, 0x29) 03:38:33 executing program 2: bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000540)={&(0x7f00000004c0)='./file0\x00'}, 0x10) 03:38:33 executing program 5: socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$sock(r0, &(0x7f0000000800)={&(0x7f0000000040)=@x25, 0x80, 0x0}, 0x0) 03:38:33 executing program 4: r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000001480)={0x14, 0x0, &(0x7f0000000400)=[@increfs_done], 0x0, 0x0, 0x0}) 03:38:33 executing program 0: open$dir(&(0x7f00000000c0)='./file0\x00', 0xa50, 0x0) 03:38:33 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) r0 = open(0x0, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r2 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r2, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r1, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:38:33 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae89, &(0x7f0000000080)={0x1, 0x0, [{}]}) 03:38:33 executing program 5: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40241, 0x0) io_setup(0x20fe, &(0x7f0000000200)=0x0) io_submit(r1, 0x1, &(0x7f0000001a40)=[&(0x7f00000000c0)={0x0, 0x0, 0x7, 0x1, 0x0, r0, 0x0}]) 03:38:33 executing program 3: r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x40046207, 0x0) r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000240)='./binderfs/binder1\x00', 0x0, 0x0) r3 = dup2(r1, r2) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000000)) 03:38:33 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000200)={'batadv_slave_0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=@ipv6_newroute={0x24, 0x18, 0x1, 0x0, 0x0, {}, [@RTA_OIF={0x8, 0x4, r2}]}, 0x24}}, 0x0) 03:38:33 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000016000/0x18000)=nil, &(0x7f0000000080)=[@textreal={0x8, &(0x7f0000000040)="baa100b000eef36cf30f1ec9ec66b9800000c00f326635001000000f30bad104ecc80080d267d9f8f30f1bb429006635200000000f22c067f3af", 0x3a}], 0xaaaaaaaaaaaabd7, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000140)) open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000001c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000020002000ff], 0x100000}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:38:34 executing program 3: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000240)={'netpci0\x00', 0x2}) ioctl$TUNSETTXFILTER(r0, 0x800454e0, &(0x7f0000000000)) [ 2491.075969][T11993] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 2491.083471][T11993] IPv6: NLM_F_CREATE should be set when creating new route 03:38:34 executing program 2: openat$vsock(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_TLV_WRITE(0xffffffffffffffff, 0xc008551b, &(0x7f00000000c0)={0xfff, 0x10, [0x1ff, 0x4, 0x1, 0x7]}) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) r2 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000), 0x4) close(r2) 03:38:34 executing program 4: r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$smc(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$SMC_PNETID_DEL(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r1, 0x50d, 0x0, 0x0, {0x2, 0x0, 0x2}, [@SMC_PNETID_NAME={0x9, 0x1, 'syz2\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'veth0_to_team\x00'}]}, 0x34}, 0x1, 0x40030000000000}, 0x0) 03:38:34 executing program 5: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$unix(r0, &(0x7f0000001240)={0x0, 0x0, &(0x7f00000011c0)=[{&(0x7f0000000080)="eae73ec82e6d74436c0eb46122b21c05b82cc38413627593b625c1d0421da3a6cf56d6c5b8ce802dc726ee2bd57b25e507ff841814df3f9612309d4c77d87662e2dba9a5e7069a54503a311ac57e5381f9504e285e98330cb66429b8db9d5a86", 0x60}, {&(0x7f0000000100)="fa1521ede01b38d0902f27b2dcb6e505f29cd22c8452e552faa98ded351e3da88d5542e00d70820d6db6972ed686703ac99c00311c164d0827ee620da73109c02367265c66c3a51d", 0x48}, {&(0x7f0000000180)="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", 0x799}], 0x3}, 0x0) 03:38:34 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000240)={0x20003}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) 03:38:34 executing program 3: mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}}) read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r0, &(0x7f0000000000)={0x50, 0x0, r1}, 0x50) openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000006380)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r0, &(0x7f0000001180)={0x50, 0x0, r2}, 0x50) [ 2492.119724][T12015] fuse: Bad value for 'fd' 03:38:35 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) r0 = open(0x0, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r2 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r2, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r1, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:38:35 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000940)={0x26, 'hash\x00', 0x0, 0x0, 'vmac64(aes-generic)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000440)='\x00'/16, 0x10) r1 = accept4(r0, 0x0, 0x0, 0x0) sendmmsg$sock(r1, &(0x7f0000000700)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000080)="3beab97c129303ac14d39d56dfe3cc50905218ee768d26dd9d40e59b2d66759aac0a9df6cbcbd7c4d05b1decea3e489b4760f4671647ab1e1d4a634abbd5399ea7a431c4fce43a85139ce598109d54a8522dde521b42f3", 0x57}, {&(0x7f0000000100)="a6f76c71b65ad67f81631824560fd39e469d31455fd63cf26fe6998d768c788c991098fa3e812639cccf3774f33620a3e0d300d9f47de230004a", 0x3a}], 0x2}}], 0x1, 0x0) 03:38:35 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = dup(r1) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0x7000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000240)=[@text16={0x10, &(0x7f0000000080)="66b8d10000000f23c00f21f8663500000e000f23f866b8010000000f01c1d91ff30f1efb66b9331001c00f323ef30f351f260f38cddbba400066b80000000066ef65f30f2af7", 0x46}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_NMI(r3, 0xae9a) ioctl$KVM_RUN(r3, 0xae80, 0x0) 03:38:35 executing program 5: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000240)={'netpci0\x00', 0x2}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x324) 03:38:35 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0xffffe371}, 0x1c) sendmsg$inet6(r0, &(0x7f0000000a00)={&(0x7f0000000000)={0xa, 0x4e21, 0x0, @private0}, 0x1c, 0x0}, 0x0) 03:38:35 executing program 2: openat$vsock(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_TLV_WRITE(0xffffffffffffffff, 0xc008551b, &(0x7f00000000c0)={0xfff, 0x10, [0x1ff, 0x4, 0x1, 0x7]}) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) r2 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000), 0x4) close(r2) 03:38:35 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000940)={0x26, 'hash\x00', 0x0, 0x0, 'vmac64(aes-generic)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000440)='\x00'/16, 0x10) r1 = accept4(r0, 0x0, 0x0, 0x0) sendmmsg$sock(r1, &(0x7f0000000700)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000080)="3beab97c129303ac14d39d56dfe3cc50905218ee768d26dd9d40e59b2d66759aac0a9df6cbcbd7c4d05b1decea3e489b4760f4671647ab1e1d4a634abbd5399ea7a431c4fce43a85139ce598109d54a8522dde521b42f3", 0x57}, {&(0x7f0000000100)="a6f76c71b65ad67f81631824560fd39e469d31455fd63cf26fe6998d768c788c991098fa3e812639cccf3774f33620a3e0d300d9f47de230004a", 0x3a}], 0x2}}], 0x1, 0x0) 03:38:36 executing program 3: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000090003206d041cc340000000000109022400010000a00009040000010301010009210000000122050009058103792c"], 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000240)={0x24, &(0x7f0000000300)=ANY=[@ANYBLOB="00000c0000000c0001"], 0x0, 0x0, 0x0}, 0x0) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000680)={0x2c, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000001cc0)={0x44, 0x0, 0x0, 0x0, &(0x7f0000001980)={0x20, 0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, &(0x7f00000005c0)={0x2c, 0x0, &(0x7f00000004c0)={0x0, 0xa, 0x1}, 0x0, 0x0, &(0x7f0000000580)={0x20, 0x3, 0x1, 0x3}}) 03:38:36 executing program 5: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_io_uring_setup(0x56c, &(0x7f00000002c0), &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f00000000c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_RECVMSG={0xa, 0x5, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000003580)={0x0, 0x0, 0x0}}, 0x0) syz_open_dev$sndmidi(&(0x7f0000000040), 0x0, 0x141101) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) io_uring_enter(r0, 0x2905, 0x0, 0x0, 0x0, 0x200000000000000) 03:38:36 executing program 4: r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0) write$P9_RSTATu(r0, &(0x7f00000001c0)={0x16b, 0x5, 0x0, {{0x500, 0xfc, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1f, '\x04nodev{evbox%\xff\xff\xff\x81\x02\x00'/31, 0x34, 'p\x02\x00}\xfag>\xff\xeb\t\xb55\x1f[\xde1@\x00\x00\x00\x00\x18{\x82\xd9\xb5\x00\x00+Y_\xcb\x14\x03CT\xb9\xfd\x9e\xf1\x96\xa5\x1c\xd5\x15z\xdc\x81\x05\xb4\x94\xe1', 0x11, '\xb0\x9b\xf4r\x91\xc7cgro\x98ppppP\x97', 0x65, '\xf8\xf6i\xfbqm\xcf1^\xc2\xf3\x85@\x9a\xc6[\x94\b\x039\xc0\x8c,;\x9e\x1dR\xc3l\xde{\xa4\xa4\x00\xb4\xb0\xb4\xf14\xa6f\xa8RH&\xb2\xb4\xa8\x8e\x01zwW\xb2\x06\xf8\xb0\x9aE\x1b4\a\xdb\xda\xb2\x88K\xaf\x05\x00\x00\x00\x00\x00\x00\x00G\xec!\xca\xbf\xf2\x0f\x9c\x1c\r\xbe6\xf4\xfd\x1aL\xc2\x80\xe8\xd4\x89\xdad\x9a7'}, 0x5a, '/dev/n\xb1{#\x00\xf9\xda\xa5\xee#&n\xcf\x85\xfe\xa6^B\xd9y\xa3\xfd\xe5\xf4u\xda\xf0;\x11r\xd9{\xad\xc7\tZ\xfdv\xfeO\x04A\xf7\xf7t\x1e\xb99\x0e\xa8O\x93C\x00\xdb\xa0\xc2\xf7\xf0\x9f\xf5<~M\x1a\xd6n-\a\x01\x981\x9f0\x11\x84G\xaa\x9a\xa5~\xb0\xa0{t'}}, 0x16b) 03:38:36 executing program 0: r0 = creat(&(0x7f0000000240)='./file0\x00', 0x0) r1 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) dup3(r1, r0, 0x0) connect$phonet_pipe(r0, 0x0, 0x0) 03:38:37 executing program 2: r0 = syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f00000003c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000700)=[{&(0x7f0000000000)="eb3c906d8d6673fdd2617400028001000240000004f801", 0x17}, {0x0, 0x0, 0x5fa}], 0x0, &(0x7f0000000d80)) getdents64(r0, 0x0, 0x0) 03:38:38 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) r0 = open(0x0, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r2 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r2, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r1, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:38:38 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000100)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) 03:38:38 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000016000/0x18000)=nil, &(0x7f0000000080)=[@textreal={0x8, &(0x7f0000000040)="baa100b000eef36cf30f1ec9ec66b9800000c00f326635001000000f30bad104ecc80080d267d9f8f30f1bb429006635200000000f22c067f3af", 0x3a}], 0xaaaaaaaaaaaabd7, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000001c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000020002000ff], 0x100000}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:38:38 executing program 0: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000001580)='/sys/power/resume', 0x0, 0x0) pwrite64(r0, 0x0, 0x0, 0x0) 03:38:38 executing program 2: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000a97000205d0500905ff1010203010902120001000000000904"], 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, &(0x7f0000000540)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000500)={0x2c, 0x0, &(0x7f0000000300)={0x0, 0xa, 0x1, 0xff}, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000080)={0x84, &(0x7f0000000300)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 03:38:38 executing program 3: r0 = socket$kcm(0x2, 0x2, 0x73) bind$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @multicast1}, 0x10) 03:38:38 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x0, 0x4d032, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) 03:38:38 executing program 4: bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001b40)={0xf, 0x3, &(0x7f0000001300)=@framed, &(0x7f0000000080)='GPL\x00', 0x5, 0xe8, &(0x7f00000016c0)=""/232, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 03:38:38 executing program 5: syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000140)="02000300fe0001008f77f00100010000004000006000000000400000c007", 0x1e, 0x20000}], 0x0, &(0x7f0000000040)={[{}]}) 03:38:38 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f0000000540)=ANY=[@ANYBLOB="060000000000000001000080cf00800000010000000100ffff090000000000000007000006000000480000000800000000000000000000000100004001000000b70000000900000085002b000000000001"]) ioctl$KVM_SET_NESTED_STATE(r2, 0x4080aebf, &(0x7f0000000640)={{0x0, 0x0, 0x80}, "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", "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"}) 03:38:38 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r2, 0x9000aecf, 0x0) 03:38:39 executing program 5: ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f00000000c0)={0x0, 0x0, "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", "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"}) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3) ioctl$FS_IOC_GETFSLABEL(r0, 0x400452c8, &(0x7f0000000100)) 03:38:39 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) r0 = open(0x0, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(0xffffffffffffffff, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:38:39 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) r1 = openat$rtc(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$RTC_SET_TIME(r1, 0x4024700a, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1b, 0x0, 0x200}) 03:38:39 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0) write$cgroup_int(r0, &(0x7f0000000040), 0xfea0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuset.effective_cpus\x00', 0x275a, 0x0) write$cgroup_int(r1, &(0x7f0000000380), 0x101bf) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000000)={0x2880008, r0}) 03:38:39 executing program 2: syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x5, &(0x7f0000000200)=[{&(0x7f0000010600)="1020f5f201000b0009000000030000000c0000000900000002000000010000000000000000400000000000000b0000001e0000000200000002000000020000000200000016000000000400000004000000080000000c00000010000000140000030000000100000002", 0x69, 0x1400}, {&(0x7f0000010c00)="d73cd47a0000000000020000000000000b00000000000000150000001500000010000000140000001200000010000000ffffffffffffffffffffffffffffffffffffffff030006000000000000000000000000000e0000000200000000000000ffffffffffffffffffffffffffffffffffffffff05000000000000000000000000000000c5010000060000000100000007000000070000000a0000004000000040000000fc0f", 0xa6, 0x400000}, {&(0x7f0000010d00)="00000000000000000000000000000000000000000000000000000000ae8bfed7", 0x20, 0x400fe0}, {&(0x7f0000011900)="0000000000000000000000000000000000000000000000000000000100000000d73cd47a0000000000020000000000000b00000000000000150000001500000010000000140000001200000010000000ffffffffffffffffffffffffffffffffffffffff030006000000000000000000000000000e0000000200000000000000ffffffffffffffffffffffffffffffffffffffff05000000000000000000000000000000c5010000060000000100000007000000070000000a0000004000000040000000fc0f", 0xc6, 0x404fe0}, {&(0x7f0000011a00)="00000000000000000000000000000000000000000000000000000000ae8bfed7", 0x20, 0x405fe0}], 0x0, &(0x7f0000000340)=ANY=[]) 03:38:39 executing program 0: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001240)={&(0x7f0000000200)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x10, 0x10, 0x2, [@int]}}, &(0x7f0000000240)=""/4096, 0x1000000, 0x1000, 0x1}, 0x20) 03:38:39 executing program 5: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10000000140, 0x56a, 0x331, 0x40, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x1, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x1}}}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000240)={0x24, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='\x00\"\b'], 0x0}, 0x0) write$hidraw(0xffffffffffffffff, &(0x7f0000000cc0)="1825060349a16eca6f16cc45d44e1e0b1bd88dcd68fbc707b448894ad2f7022f8ab0ef5c1fd569ca36d29fdb1097ad", 0x2f) 03:38:40 executing program 2: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000040)="eb3c90", 0x3}, {0x0, 0x0, 0x16800}], 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='dos1xfloppy']) 03:38:40 executing program 4: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000240)={'netpci0\x00', 0x2}) ioctl$TUNSETLINK(r0, 0x400454d0, 0x309) [ 2497.091958][ T3561] usb 6-1: new high-speed USB device number 85 using dummy_hcd 03:38:40 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r1) sendmsg$NLBL_MGMT_C_LISTDEF(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x14, r2, 0x1}, 0x14}}, 0x0) [ 2497.452417][ T3561] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 2497.467765][ T3561] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 2497.478675][ T3561] usb 6-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.40 [ 2497.487996][ T3561] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 2497.779621][ T3561] usb 6-1: config 0 descriptor?? 03:38:40 executing program 2: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000090003206d041cc340000000000109022400010000a0000904000001030101000921000000012205000905810379"], 0x0) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000680)={0x2c, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000480)={0x24, 0x0, 0x0, &(0x7f0000000100)={0x0, 0x22, 0x7, {[@local, @global, @global=@item_4={0x3, 0x1, 0x0, "34db1c65"}]}}, 0x0}, 0x0) 03:38:41 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) mmap(&(0x7f00001d9000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_tcp_int(r0, 0x6, 0x2, &(0x7f0000000040)=0x2800, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000280)='dctcp\x00', 0x6) setsockopt$sock_int(r0, 0x1, 0x29, &(0x7f0000000380), 0x4) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x7654}]}, 0x10) bind$inet(0xffffffffffffffff, 0x0, 0x0) socket(0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) bind$alg(0xffffffffffffffff, 0x0, 0x0) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x78) mmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0x10, 0xffffffffffffffff, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, 0x0, 0x0) connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x1c}}, 0x10) sendmsg$inet(r0, &(0x7f00000015c0)={0x0, 0x14, &(0x7f0000001600)=[{&(0x7f0000000240)=' ', 0xffffff1f}], 0x1}, 0x0) recvmsg(r0, &(0x7f0000000580)={0x0, 0x2, &(0x7f0000000500)=[{&(0x7f0000000740)=""/4096, 0x7634}], 0x1, 0x0, 0x2000000000000, 0x241}, 0x700) [ 2498.289647][ T3561] wacom 0003:056A:0331.0097: unknown main item tag 0x0 03:38:41 executing program 4: r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f00000000c0)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000000bc0)=[{{0x0, 0x0, &(0x7f0000000b40)=[{&(0x7f0000000980)=""/245, 0xf5}], 0x1}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0xb1d}, {&(0x7f0000000140)=""/85, 0x639}, {&(0x7f0000000fc0)=""/4096, 0x7c}, {&(0x7f0000000400)=""/106, 0x125}, {&(0x7f0000000740)=""/73, 0x16a}, {&(0x7f0000000200)=""/77, 0x62}, {&(0x7f00000007c0)=""/154, 0x410}, {&(0x7f0000000100)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) [ 2498.406802][ T3561] wacom 0003:056A:0331.0097: hidraw0: USB HID v0.00 Device [HID 056a:0331] on usb-dummy_hcd.5-1/input0 [ 2498.606898][ T3561] usb 6-1: USB disconnect, device number 85 03:38:42 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) r0 = open(0x0, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(0xffffffffffffffff, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:38:42 executing program 0: r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f00000000c0)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0xb1d}, {&(0x7f0000000140)=""/85, 0x790}, {&(0x7f0000000fc0)=""/4096, 0x7c}, {&(0x7f0000000400)=""/106, 0x125}, {&(0x7f0000000740)=""/73, 0x16a}, {&(0x7f0000000200)=""/77, 0x62}, {&(0x7f00000007c0)=""/154, 0x410}, {&(0x7f0000000100)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 03:38:42 executing program 5: r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) waitid(0x1, r0, &(0x7f0000000240), 0x8, 0x0) 03:38:42 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) socket$inet6_sctp(0xa, 0x5, 0x84) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/virtio_vdpa', 0x0, 0x0) getdents(r2, &(0x7f0000000040)=""/231, 0xe7) getdents64(0xffffffffffffffff, 0x0, 0x0) getdents(0xffffffffffffffff, 0x0, 0x0) bpf$MAP_DELETE_ELEM(0x3, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) ioctl$KVM_RUN(r3, 0xae80, 0x0) 03:38:42 executing program 3: bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000011c0)={0xffffffffffffffff, &(0x7f0000000100)="74115727975ca48e8b345f589fde80d1c07dbd2fcba0b3ef8e4c75412cdc2974a2d82de2af93b955f3a14ffd5e8c49b00431", 0x0}, 0x20) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00'}) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) r4 = fcntl$dupfd(r3, 0x0, r1) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f00000001c0)={0x0, 0x1}, &(0x7f0000000280)=0x8) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040)) ioctl$KVM_RUN(r3, 0xae80, 0x0) 03:38:42 executing program 4: r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f00000000c0)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000000bc0)=[{{0x0, 0x0, &(0x7f0000000b40)=[{&(0x7f0000000980)=""/245, 0xf5}], 0x1}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0xb1d}, {&(0x7f0000000140)=""/85, 0x2e9}, {&(0x7f0000000fc0)=""/4096, 0x7c}, {&(0x7f0000000400)=""/106, 0x125}, {&(0x7f0000000740)=""/73, 0x16a}, {&(0x7f0000000200)=""/77, 0x62}, {&(0x7f00000007c0)=""/154, 0x410}, {&(0x7f0000000100)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 03:38:42 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4080aebf, 0x0) 03:38:42 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x0) syz_emit_ethernet(0x4a, &(0x7f00000000c0)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "3323f2", 0x14, 0x6, 0x0, @private2, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) 03:38:42 executing program 0: bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000011c0)={0xffffffffffffffff, &(0x7f0000000100)="74115727975ca48e8b345f589fde80d1c07dbd2fcba0b3ef8e4c75412cdc2974a2d82de2af93b955f3a14ffd5e8c49b00431", 0x0}, 0x20) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00'}) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) getsockopt$inet_sctp_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000080), &(0x7f0000000180)=0xc) ioctl$KVM_SET_GSI_ROUTING(0xffffffffffffffff, 0x4008ae6a, &(0x7f0000000280)={0x2, 0x0, [{0x1, 0x0, 0x0, 0x0, @msi={0x1, 0x0, 0x4}}, {0x0, 0x0, 0x0, 0x0, @msi={0x4}}]}) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) ioctl$KVM_RUN(r3, 0xae80, 0x0) 03:38:42 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'xcbc(aes)\x00'}, 0x58) r1 = accept4(r0, 0x0, 0x0, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18) sendmsg$NFQNL_MSG_VERDICT(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000180)={0x34, 0x1, 0x3, 0x0, 0x0, 0x0, {}, [@NFQA_VERDICT_HDR={0xc}, @NFQA_PAYLOAD={0x11, 0xa, "75fd69e4ae47a384b8ab53cffc"}]}, 0x34}}, 0x0) 03:38:43 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) r0 = open(0x0, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(0xffffffffffffffff, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) [ 2500.080646][T12138] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. 03:38:43 executing program 5: getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000), &(0x7f00000000c0)=0xc) unshare(0x48040200) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x3) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x78) unshare(0x400) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$EVIOCGPROP(r1, 0x40047438, &(0x7f0000000180)=""/246) ioctl$PPPIOCGFLAGS1(r1, 0x40047457, &(0x7f0000000140)) 03:38:43 executing program 4: bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000011c0)={0xffffffffffffffff, &(0x7f0000000100)="74115727975ca48e8b345f589fde80d1c07dbd2fcba0b3ef8e4c75412cdc2974a2d82de2af93b955f3a14ffd5e8c49b00431", 0x0}, 0x20) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00'}) sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x200c0804}, 0x0) r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/virtio_vdpa', 0x0, 0x0) getdents64(r3, &(0x7f0000000140)=""/29, 0x1d) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040)) ioctl$KVM_RUN(r4, 0xae80, 0x0) 03:38:43 executing program 0: bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000011c0)={0xffffffffffffffff, &(0x7f0000000100)="74115727975ca48e8b345f589fde80d1c07dbd2fcba0b3ef8e4c75412cdc2974a2d82de2af93b955f3a14ffd5e8c49b00431", 0x0}, 0x20) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00'}) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_GSI_ROUTING(0xffffffffffffffff, 0x4008ae6a, &(0x7f0000000280)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, @msi={0x0, 0x0, 0x4}}]}) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) ioctl$KVM_RUN(r3, 0xae80, 0x0) 03:38:43 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:38:43 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) open(0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000001c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000020002000ff], 0x100000}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:38:44 executing program 3: r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f00000000c0)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0xb1d}, {&(0x7f0000000140)=""/85, 0xd4}, {&(0x7f0000000fc0)=""/4096, 0x7c}, {&(0x7f0000000400)=""/106, 0x125}, {&(0x7f0000000740)=""/73, 0x16a}, {&(0x7f0000000200)=""/77, 0x62}, {&(0x7f00000007c0)=""/154, 0x410}, {&(0x7f0000000100)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 03:38:44 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000090003206d041cc340000000000109022400010000a00009040000010301010009210000000122050009058103792c"], 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000240)={0x24, &(0x7f0000000300)=ANY=[@ANYBLOB="00000c0000000c0001"], 0x0, 0x0, 0x0}, 0x0) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000680)={0x2c, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000001cc0)={0x44, 0x0, 0x0, 0x0, &(0x7f0000001980)={0x20, 0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) 03:38:44 executing program 5: getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000), &(0x7f00000000c0)=0xc) unshare(0x48040200) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x3) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x78) unshare(0x400) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$EVIOCGPROP(r1, 0x40047438, &(0x7f0000000180)=""/246) ioctl$PPPIOCGFLAGS1(r1, 0x40047457, &(0x7f0000000140)) 03:38:44 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000340)=ANY=[], 0x3c}}, 0x0) 03:38:44 executing program 0: r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f00000000c0)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000000bc0)=[{{0x0, 0x0, &(0x7f0000000b40)=[{&(0x7f0000000980)=""/245, 0xf5}], 0x1}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0xb1d}, {&(0x7f0000000140)=""/85, 0x23d}, {&(0x7f0000000fc0)=""/4096, 0x7c}, {&(0x7f0000000400)=""/106, 0x125}, {&(0x7f0000000740)=""/73, 0x16a}, {&(0x7f0000000200)=""/77, 0x62}, {&(0x7f00000007c0)=""/154, 0x410}, {&(0x7f0000000100)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 03:38:45 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4048ae9b, 0x0) [ 2502.092102][ T3561] usb 5-1: new high-speed USB device number 122 using dummy_hcd [ 2502.342375][ T3561] usb 5-1: Using ep0 maxpacket: 32 [ 2502.462230][ T3561] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 2502.475773][ T3561] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 9337, setting to 1024 [ 2502.487564][ T3561] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 2502.496940][ T3561] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 03:38:45 executing program 2: r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f00000000c0)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000000bc0)=[{{0x0, 0x0, &(0x7f0000000b40)=[{&(0x7f0000000980)=""/245, 0xf5}], 0x1}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0xb1d}, {&(0x7f0000000140)=""/85, 0x71}, {&(0x7f0000000fc0)=""/4096, 0x7c}, {&(0x7f0000000400)=""/106, 0x125}, {&(0x7f0000000740)=""/73, 0x16a}, {&(0x7f0000000200)=""/77, 0x62}, {&(0x7f00000007c0)=""/154, 0x410}, {&(0x7f0000000100)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 03:38:45 executing program 5: r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000680)={0x4c, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40406301, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 2502.766383][ T3561] usb 5-1: config 0 descriptor?? 03:38:45 executing program 3: r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000002a00)={'\x00', 0x1}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x301) [ 2502.796305][T12181] raw-gadget gadget: fail, usb_ep_enable returned -22 [ 2502.874957][ T3561] hub 5-1:0.0: USB hub found 03:38:46 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'xcbc(aes)\x00'}, 0x58) r1 = accept4(r0, 0x0, 0x0, 0x0) sendmsg$kcm(r1, &(0x7f00000004c0)={0x0, 0x0, 0x0}, 0x0) [ 2503.095020][ T3561] hub 5-1:0.0: 1 port detected 03:38:46 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:38:46 executing program 5: r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x368, 0x0) ioctl$EVIOCGKEYCODE_V2(r0, 0x80284504, &(0x7f0000000a80)=""/248) 03:38:46 executing program 3: syz_usb_connect$cdc_ncm(0x0, 0x7a, &(0x7f0000000180)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x68, 0x2, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, {0x6}, [@mbim={0xc, 0x24, 0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x77}]}, {{0x9, 0x5, 0x81, 0x3, 0x0, 0x81}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x0, 0x3}}, {{0x9, 0x5, 0x3, 0x2, 0x20, 0x0, 0x7}}}}}}}]}}, &(0x7f0000000640)={0x0, 0x0, 0x13, &(0x7f0000000280)={0x5, 0xf, 0x13, 0x2, [@wireless={0xb, 0x10, 0x1, 0x0, 0x5a, 0x0, 0x7f, 0x8}, @ptm_cap={0x3}]}, 0x3, [{0x2, &(0x7f0000000380)=@string={0x2}}, {0x0, 0x0}, {0xd, &(0x7f0000000600)=@string={0xd, 0x3, "9966c03ab71599db31440c"}}]}) syz_open_dev$evdev(0x0, 0x6, 0x0) ioctl$EVIOCGEFFECTS(0xffffffffffffffff, 0x80044584, 0x0) [ 2504.484748][ T3554] usb 5-1: USB disconnect, device number 122 [ 2504.485615][ T3561] usb 5-1: Failed to suspend device, error -19 03:38:48 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) bind$unix(r0, &(0x7f00000003c0)=@abs={0x1, 0x0, 0x4e20}, 0x6e) 03:38:48 executing program 0: syz_usb_connect(0x0, 0x1ea, &(0x7f0000000a00)={{0x12, 0x1, 0x200, 0x27, 0xb5, 0x1c, 0x20, 0x2040, 0xd854, 0x6103, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1d8, 0x2, 0xf9, 0xe6, 0xa0, 0x1f, [{{0x9, 0x4, 0xc4, 0x9, 0x1, 0x10, 0xb8, 0x48, 0x3f, [@uac_as={[@format_type_i_continuous={0xb, 0x24, 0x2, 0x1, 0xe6, 0x2, 0x0, 0x7, "", "352edc"}]}], [{{0x9, 0x5, 0x5, 0xc, 0x8, 0x23, 0x5, 0x4, [@uac_iso={0x7, 0x25, 0x1, 0x1, 0x0, 0xf4}]}}]}}, {{0x9, 0x4, 0x64, 0x7f, 0x4, 0xf1, 0x8e, 0x57, 0x7, [@hid_hid={0x9, 0x21, 0x4, 0x9, 0x1, {0x22, 0xb98}}, @uac_as={[@format_type_ii_discrete={0x9, 0x24, 0x2, 0x2, 0x7, 0x40, 0xc0}, @format_type_i_continuous={0xa, 0x24, 0x2, 0x1, 0x2e, 0x3, 0x20, 0x29, "", "9470"}, @format_type_ii_discrete={0xd, 0x24, 0x2, 0x2, 0x9, 0xafd5, 0x9, "b428995f"}]}], [{{0x9, 0x5, 0x3, 0x10, 0x20, 0xff, 0xd7, 0xa2, [@generic={0xe8, 0xc, "be16978ad1314cbc79d6d08bdc82219a9d37e4bd4e9cce9e3614eb971c66594027e9ac8aa284b9ed10ab2e9d6ba1c301add83d9844b5c83318c59105a45f0b883474a9adce78af26c1a915de2460110a11e16c0a1a6a1d2c7978e9862f7d289bdbecb72ec6a4fe3a90f94e1eb60a58ad5f69e10254657a18123c86675824fcbf6d82777b76e1da3a79ba643d37887cb57a68267b52aebe681f92e3c25fda7190657fa2276fb59965b746ea0acdd3b62bfefdf123c63db6bc1f2ce85aafbc3a9dfb0607df52e84eb7d4c87ca6ed8d0d90a591692e9764b6cdacb5cae981d71a212fd7c7438f5e"}]}}, {{0x9, 0x5, 0xa, 0x10, 0x10, 0x36, 0x6, 0xc8, [@uac_iso={0x7, 0x25, 0x1, 0x41, 0x0, 0x4}, @generic={0x49, 0x10, "a1bc02f1ce351557a491c3c5c7d8750ea509f9aae3e20510cae9eef2207ae439c2878dc54757390bcb01bcebfe0cf7eaa4c8773b59c724e659bc3aff8fcb571bbf6f8fbded8bf8"}]}}, {{0x9, 0x5, 0x7, 0x12, 0x8, 0x40, 0xa7, 0x5b, [@uac_iso={0x7, 0x25, 0x1, 0x82, 0xed, 0x7}, @uac_iso={0x7, 0x25, 0x1, 0x81, 0x6, 0x7}]}}, {{0x9, 0x5, 0x1, 0x0, 0x10, 0x0, 0xf6, 0x5, [@generic={0xf, 0x8, "efc01e4d1c00e7208c14a7855a"}]}}]}}]}}]}}, &(0x7f0000000e40)={0xa, &(0x7f0000000c00)={0xa, 0x6, 0x110, 0x80, 0x3, 0x3, 0x8, 0xe6}, 0xf, &(0x7f0000000c40)={0x5, 0xf, 0xf, 0x1, [@ss_cap={0xa, 0x10, 0x3, 0x2, 0x2, 0x9, 0x0, 0x5}]}, 0x4, [{0x2, &(0x7f0000000c80)=@string={0x2}}, {0x4, &(0x7f0000000d80)=@lang_id={0x4, 0x3, 0x43f}}, {0x4, &(0x7f0000000dc0)=@lang_id={0x4, 0x3, 0x140c}}, {0x26, &(0x7f0000000e00)=@string={0x26, 0x3, "93363cad3ea60497aac77af9595f81e6d07f3f1e0710d4d10476fb0de8ccb03f872cf0ff"}}]}) 03:38:48 executing program 5: syz_usb_connect$cdc_ncm(0x0, 0x7a, &(0x7f0000000180)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x68, 0x2, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, {0x6}, [@mbim={0xc, 0x24, 0x1b, 0x0, 0x0, 0x0, 0x0, 0x7, 0x77}]}, {{0x9, 0x5, 0x81, 0x3, 0x0, 0x81}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x0, 0x3}}, {{0x9, 0x5, 0x3, 0x2, 0x20, 0x0, 0x7}}}}}}}]}}, &(0x7f0000000640)={0xa, &(0x7f0000000240)={0xa, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x13, &(0x7f0000000280)={0x5, 0xf, 0x13, 0x2, [@wireless={0xb, 0x10, 0x1, 0x0, 0x5a, 0x0, 0x0, 0x8}, @ptm_cap={0x3}]}, 0x4, [{0x2, &(0x7f0000000380)=@string={0x2}}, {0x0, 0x0}, {0x0, 0x0}, {0x2, &(0x7f0000000600)=@string={0x2}}]}) syz_open_dev$evdev(&(0x7f00000006c0), 0x6, 0x80000) ioctl$EVIOCGEFFECTS(0xffffffffffffffff, 0x80044584, &(0x7f0000000bc0)=""/78) 03:38:48 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x368, 0x0) ioctl$EVIOCSREP(r0, 0x40084503, &(0x7f0000000040)=[0xfffffff8, 0x1000]) syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x400) ioctl$EVIOCGKEYCODE(0xffffffffffffffff, 0x80084504, &(0x7f00000000c0)=""/187) syz_usb_connect$cdc_ncm(0x3, 0xa1, &(0x7f0000000180)={{0x12, 0x1, 0x201, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x8f, 0x2, 0x1, 0x0, 0x50, 0x2, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x7, 0x24, 0x6, 0x0, 0x1, "ae26"}, {0x5, 0x24, 0x0, 0x7}, {0xd, 0x24, 0xf, 0x1, 0xffffff9d, 0xfffe, 0x7, 0x40}, {0x6, 0x24, 0x1a, 0x6}, [@acm={0x4, 0x24, 0x2, 0x2}, @mbim={0xc, 0x24, 0x1b, 0x7, 0x9, 0x3, 0x12, 0x0, 0x1}, @mbim={0xc, 0x24, 0x1b, 0x401, 0x0, 0x3, 0x0, 0x7, 0x77}, @mdlm={0x15, 0x24, 0x12, 0x4}]}, {{0x9, 0x5, 0x81, 0x3, 0x200, 0x81, 0x0, 0x1f}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x3ff, 0x3, 0x6}}, {{0x9, 0x5, 0x3, 0x2, 0x20, 0x81, 0x7, 0xce}}}}}}}]}}, &(0x7f0000000640)={0xa, &(0x7f0000000240)={0xa, 0x6, 0x201, 0x3, 0x1, 0x6, 0x40, 0x2}, 0xa0, &(0x7f0000000280)={0x5, 0xf, 0xa0, 0x4, [@wireless={0xb, 0x10, 0x1, 0xc, 0x5a, 0x80, 0x7f, 0x8, 0xe9}, @ptm_cap={0x3}, @generic={0x4a, 0x10, 0xb, "730e081f9ce865883d6c7f76ac70b39894f487b538ca482d5b3a03be97bf7663237c7405783bddc3728c76c9a2f88a90c0f0697f3075795dd2dfc650297946b980e5760b419e9d"}, @generic={0x43, 0x10, 0x1, "d6c65a99a3613e36c3b606190b4464aacfc4db7394f004bee05fd299e53b0c720c97d218ae4303e688dc6461549047b4a911489add1f3dac97da4893e25e878b"}]}, 0x6, [{0x4, &(0x7f0000000340)=@lang_id={0x4, 0x3, 0x480a}}, {0xa9, &(0x7f0000000380)=@string={0xa9, 0x3, "c72204d0997e90748fa84c86b147b25887a7e768727163e6acfa9985ccce65fa1d033845ede430129c94d9b9453298e40390fdaf9d753fd3c956d9e1e8f0bc13488fff0553e6f96be79634e73ed5e9759bdf7fcbcc69a63c77787bcb9d7564e18afb7f3b5f2b2f4f551f59c2b1200ac75c6c9c61a9f66dd336094f7d911c0f1a594731b8a608eef74fa7dc3f36a784650bf86ca75c2e45e0b2020d024665a3b0db05986d404643"}}, {0x4, &(0x7f0000000480)=@lang_id={0x4}}, {0x4, &(0x7f00000004c0)=@lang_id={0x4, 0x3, 0x42b}}, {0x59, &(0x7f0000000500)=@string={0x59, 0x3, "1b51da947727bda45098d83371083fb1a8d97816d5e7891a4a0fe33c1a9301997d6ba56154787f34adbd1acffbfe06c481f45b4075a408be484efe086a5d5cd7050f716cbe1fb050b167973e6ace398da354a240e7a128"}}, {0x2a, &(0x7f0000000600)=@string={0x2a, 0x3, "9966c03ab71599db31440c31050cec52ca5266af4d57f17a979a3808e4b8efba22aaeaaceee11c5b"}}]}) r1 = syz_open_dev$evdev(&(0x7f00000006c0), 0x6, 0x80000) ioctl$EVIOCGRAB(r1, 0x40044590, &(0x7f0000000700)=0x2) r2 = syz_open_dev$evdev(&(0x7f00000007c0), 0x0, 0x400) ioctl$EVIOCGABS0(r2, 0x80184540, &(0x7f0000000800)=""/196) ioctl$EVIOCGKEYCODE(0xffffffffffffffff, 0x80084504, &(0x7f0000000940)=""/224) ioctl$EVIOCGEFFECTS(0xffffffffffffffff, 0x80044584, &(0x7f0000000bc0)=""/78) ioctl$EVIOCGNAME(0xffffffffffffffff, 0x80404506, &(0x7f0000000c40)=""/163) ioctl$EVIOCSMASK(0xffffffffffffffff, 0x40104593, &(0x7f0000000e00)={0x15, 0x8d, &(0x7f0000000d40)="db700c4235f79ca063953179d74b2b2d2fd923f56451498e1793f00674e3d880493f5ea99d0c1c418e0a6be8a97bf447256e930df59d3e8735e35ce113bdccd0bb7fe5aa1de4eaba9581c5c7e57192d076ca5ff3d341a15c55281850740b322bfb689932ff2ffde4e4e2c645d7e12dbd79cec1cd987ca245c19b0e65f10bfe98f3a06b516d322b2616954624f8"}) 03:38:48 executing program 3: r0 = syz_open_dev$evdev(0x0, 0x368, 0x0) ioctl$EVIOCSREP(r0, 0x40084503, 0x0) ioctl$EVIOCGKEYCODE(0xffffffffffffffff, 0x80084504, 0x0) syz_usb_connect$cdc_ncm(0x3, 0xa1, &(0x7f0000000180)={{0x12, 0x1, 0x201, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x8f, 0x2, 0x1, 0x0, 0x50, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x7, 0x24, 0x6, 0x0, 0x1, "ae26"}, {0x5}, {0xd, 0x24, 0xf, 0x1, 0xffffff9d, 0x0, 0x7, 0x40}, {0x6}, [@acm={0x4}, @mbim={0xc, 0x24, 0x1b, 0x0, 0x9, 0x0, 0x12, 0x0, 0x1}, @mbim={0xc, 0x24, 0x1b, 0x401, 0x0, 0x0, 0x0, 0x0, 0x77}, @mdlm={0x15}]}, {{0x9, 0x5, 0x81, 0x3, 0x200, 0x81, 0x0, 0x1f}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x3ff, 0x3, 0x6}}, {{0x9, 0x5, 0x3, 0x2, 0x20, 0x81, 0x7, 0xce}}}}}}}]}}, &(0x7f0000000640)={0xa, &(0x7f0000000240)={0xa, 0x6, 0x201, 0x3, 0x1, 0x0, 0x40, 0x2}, 0xa0, &(0x7f0000000280)={0x5, 0xf, 0xa0, 0x4, [@wireless={0xb, 0x10, 0x1, 0x0, 0x5a, 0x80, 0x7f, 0x8, 0xe9}, @ptm_cap={0x3}, @generic={0x4a, 0x10, 0xb, "730e081f9ce865883d6c7f76ac70b39894f487b538ca482d5b3a03be97bf7663237c7405783bddc3728c76c9a2f88a90c0f0697f3075795dd2dfc650297946b980e5760b419e9d"}, @generic={0x43, 0x10, 0x1, "d6c65a99a3613e36c3b606190b4464aacfc4db7394f004bee05fd299e53b0c720c97d218ae4303e688dc6461549047b4a911489add1f3dac97da4893e25e878b"}]}, 0x6, [{0x4, &(0x7f0000000340)=@lang_id={0x4, 0x3, 0x480a}}, {0xa9, &(0x7f0000000380)=@string={0xa9, 0x3, "c72204d0997e90748fa84c86b147b25887a7e768727163e6acfa9985ccce65fa1d033845ede430129c94d9b9453298e40390fdaf9d753fd3c956d9e1e8f0bc13488fff0553e6f96be79634e73ed5e9759bdf7fcbcc69a63c77787bcb9d7564e18afb7f3b5f2b2f4f551f59c2b1200ac75c6c9c61a9f66dd336094f7d911c0f1a594731b8a608eef74fa7dc3f36a784650bf86ca75c2e45e0b2020d024665a3b0db05986d404643"}}, {0x4, &(0x7f0000000480)=@lang_id={0x4}}, {0x4, &(0x7f00000004c0)=@lang_id={0x4, 0x3, 0x42b}}, {0xaf, &(0x7f0000000500)=@string={0xaf, 0x3, "1b51da947727bda45098d83371083fb1a8d97816d5e7891a4a0fe33c1a9301997d6ba56154787f34adbd1acffbfe06c481f45b4075a408be484efe086a5d5cd7050f716cbe1fb050b167973e6ace398da354a240e7a128c7cc44f28d02dbee938494361d4f1ad3b3fad68748cdf8f2cb047ba3d34580d42af4890f5c7b1d71c7ce646ab19bcd6a6b2406748396869ddf2cb1bdca8ae1e8680af376d60267d26d39e806f48c79ce3c61bbb03c51"}}, {0x0, 0x0}]}) syz_open_dev$evdev(&(0x7f00000006c0), 0x6, 0x80000) r1 = syz_open_dev$evdev(&(0x7f00000007c0), 0x0, 0x400) ioctl$EVIOCGABS0(r1, 0x80184540, &(0x7f0000000800)=""/196) ioctl$EVIOCGKEYCODE(0xffffffffffffffff, 0x80084504, &(0x7f0000000940)=""/224) ioctl$EVIOCGEFFECTS(0xffffffffffffffff, 0x80044584, 0x0) [ 2505.452186][ T3554] usb 1-1: new high-speed USB device number 52 using dummy_hcd [ 2505.513189][ T7158] usb 6-1: new high-speed USB device number 86 using dummy_hcd 03:38:48 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:38:48 executing program 4: socketpair(0x25, 0x803, 0x0, &(0x7f0000000000)) 03:38:48 executing program 3: syz_clone(0x54260000, 0x0, 0x0, 0x0, 0x0, 0x0) [ 2505.738644][ T3554] usb 1-1: Using ep0 maxpacket: 32 [ 2505.884160][ T3554] usb 1-1: config 249 has an invalid interface number: 196 but max is 1 [ 2505.893118][ T3554] usb 1-1: config 249 has an invalid interface number: 100 but max is 1 [ 2505.902075][ T3554] usb 1-1: config 249 has no interface number 0 [ 2505.908739][ T3554] usb 1-1: config 249 has no interface number 1 [ 2505.915516][ T3554] usb 1-1: config 249 interface 100 altsetting 127 bulk endpoint 0x7 has invalid maxpacket 8 [ 2505.928104][ T3554] usb 1-1: config 249 interface 196 has no altsetting 0 [ 2505.935655][ T3554] usb 1-1: config 249 interface 100 has no altsetting 0 [ 2505.947652][ T7158] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 129, changing to 11 [ 2505.965738][ T7158] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 03:38:49 executing program 2: syz_io_uring_setup(0x7769, &(0x7f0000000300), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x2000)=nil, 0x0, 0x0) syz_io_uring_setup(0x2a7c, &(0x7f00000006c0), &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000740), &(0x7f0000000780)) [ 2505.977009][ T7158] usb 6-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0 [ 2505.987229][ T7158] usb 6-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0 [ 2505.997454][ T7158] usb 6-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 32 [ 2506.049355][ T3554] usb 1-1: language id specifier not provided by device, defaulting to English [ 2506.192512][ T3554] usb 1-1: New USB device found, idVendor=2040, idProduct=d854, bcdDevice=61.03 [ 2506.202189][ T3554] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 2506.210470][ T3554] usb 1-1: Product: ᐌ [ 2506.215186][ T3554] usb 1-1: Manufacturer: п [ 2506.219962][ T3554] usb 1-1: SerialNumber: 㚓괼꘾霄잪梁彙翐ḿဇ퇔瘄෻쳨㾰ⲇ￰ [ 2506.253359][ T7158] usb 6-1: language id specifier not provided by device, defaulting to English 03:38:49 executing program 3: rt_sigaction(0x22, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f0000000180)) 03:38:49 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000040)={0x0, {0x2, 0x0, @multicast2}, {0x2, 0x0, @multicast2}, {0x2, 0x0, @private}, 0x44}) [ 2506.914258][ T7158] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 2506.923880][ T7158] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 2506.939528][ T3554] usb 1-1: USB disconnect, device number 52 03:38:50 executing program 2: r0 = socket$inet(0x2, 0x2, 0x0) setsockopt$IP_VS_SO_SET_ZERO(r0, 0x0, 0x12, 0x0, 0x0) 03:38:50 executing program 3: r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0) ftruncate(r0, 0x800) mkdirat(0xffffffffffffff9c, 0x0, 0x0) mount(0x0, 0x0, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) openat$cgroup_procs(0xffffffffffffffff, 0x0, 0x2, 0x0) write$cgroup_pid(0xffffffffffffffff, 0x0, 0x0) r1 = open(&(0x7f0000000000)='./bus\x00', 0x24000, 0x0) sendfile(r0, r1, 0x0, 0x10000) [ 2507.343243][ T7158] cdc_ncm 6-1:1.0: bind() failure [ 2507.371419][ T7158] cdc_ncm 6-1:1.1: CDC Union missing and no IAD found [ 2507.379000][ T7158] cdc_ncm 6-1:1.1: bind() failure 03:38:50 executing program 0: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) sendmsg$inet6(r0, &(0x7f0000000640)={&(0x7f0000000040)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c, &(0x7f0000000500)=[{&(0x7f0000000080)="e9d90ae1c425a4b6012afe9701402bfb4c8c8cc113f356c15d3dca93963a985f15b9466f45f918ba", 0x28}], 0x1}, 0x0) [ 2507.613797][ T7158] usb 6-1: USB disconnect, device number 86 03:38:50 executing program 5: prctl$PR_SET_THP_DISABLE(0x39, 0x20000000) 03:38:50 executing program 4: r0 = syz_open_procfs$namespace(0x0, 0x0) io_uring_setup(0x348e, &(0x7f0000000440)={0x0, 0xba36, 0x2, 0x0, 0x0, 0x0, r0}) syz_open_dev$vcsu(&(0x7f0000000000), 0x0, 0x0) syz_io_uring_setup(0x1504, &(0x7f00000005c0), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000640), &(0x7f0000000680)) 03:38:50 executing program 2: syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080)='ns/time_for_children\x00') [ 2507.955982][ T24] audit: type=1804 audit(1655350731.003:75): pid=12239 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir571494350/syzkaller.XlgU5n/2432/bus" dev="sda1" ino=1163 res=1 errno=0 [ 2507.982235][ T24] audit: type=1800 audit(1655350731.003:76): pid=12239 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1163 res=0 errno=0 03:38:52 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:38:52 executing program 3: unshare(0x6c060000) socket$nl_route(0x10, 0x3, 0x0) socket(0x0, 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) 03:38:52 executing program 4: bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=@bloom_filter={0x1e, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x4}, 0x48) 03:38:52 executing program 2: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$IP_VS_SO_SET_ZERO(r0, 0x0, 0x19, 0x0, 0x0) 03:38:52 executing program 0: syz_mount_image$tmpfs(0x0, 0x0, 0x0, 0x2, &(0x7f0000001340)=[{&(0x7f0000000140)='%', 0x1}, {&(0x7f0000000240)='B', 0x1, 0x80000000}], 0x0, 0x0) 03:38:52 executing program 5: syz_mount_image$tmpfs(&(0x7f0000000300), &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000840)={[{@huge_never}, {@nr_inodes={'nr_inodes', 0x3d, [0x67]}}]}) 03:38:52 executing program 5: socketpair(0x10, 0x80803, 0x2, &(0x7f0000000000)) 03:38:52 executing program 0: syz_open_procfs$namespace(0x0, &(0x7f0000000940)='ns/ipc\x00') 03:38:52 executing program 2: r0 = socket$unix(0x1, 0x5, 0x0) fcntl$F_GET_FILE_RW_HINT(r0, 0x40d, &(0x7f0000000000)) 03:38:53 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={0xffffffffffffffff}) r1 = epoll_create(0x40) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000180)={0x30002002}) 03:38:53 executing program 5: r0 = socket$inet(0x2, 0x2, 0x0) setsockopt$IP_VS_SO_SET_ZERO(r0, 0x0, 0x17, 0x0, 0x0) 03:38:53 executing program 2: r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000800)='ns/net\x00') ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, 0x0) 03:38:54 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:38:54 executing program 4: syz_open_dev$vcsu(&(0x7f0000000000), 0x100, 0x80000) 03:38:54 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = dup(r0) write$FUSE_LK(r1, &(0x7f0000000080)={0x28, 0xffffffffffffffda}, 0x28) 03:38:54 executing program 3: r0 = socket$inet(0x2, 0x2, 0x0) setsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000000)={0x0, @broadcast, @dev}, 0xc) 03:38:54 executing program 5: r0 = socket$inet(0x2, 0x2, 0x0) setsockopt$IP_VS_SO_SET_ZERO(r0, 0x0, 0x1a, 0x0, 0x0) 03:38:54 executing program 2: r0 = socket$inet(0x2, 0x2, 0x0) setsockopt$IP_VS_SO_SET_ZERO(r0, 0x0, 0x22, 0x0, 0x0) 03:38:55 executing program 4: rt_sigaction(0x18, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000001c0)) 03:38:55 executing program 5: r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f00000000c0)='ns/mnt\x00') ioctl$NS_GET_OWNER_UID(r0, 0xc0045878, 0x0) 03:38:55 executing program 3: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) sendmsg(r0, &(0x7f0000001700)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000640)="e92c00231460212c96c95ba610cff1ad01bf31a69a4884f8bdf1e75cbb677a02004203e2594a555192d019d87dfdb53d53da515cdd9abea670857128c5a407d46b24b85c621ddcd957cbc32b422f142913e4d5bdeb1a40f9924c653809f1003a53e50804551b4d346b5d03d7303a7bf0b2b045fcf0995ef65c2687ad4a173581b03854680d7648543698e5cd2d8a571d05d0aa39ce430ee78328a94977c49d5defea47addc0a5a4cd6504180ef6207f9a15e6fadf4f399fc6b2f57c81322bd2842b05fd3d597ed4fc05e025c1ec95535d25f0ea91fe7bd678d579bdf4b4e2508d0a372756ca3888e3a3aa1771db28975c387e8550b498bbe183bcd47b99f51b8b68fee958aa81884c49973085b8e19b22c91dfcf8c24472f1216c88df4ae7a68d5a69ce49744e036a95815fe08f7fb4291619c79291794b61c6e0ff7cdc002aeeccfa85591805b3b002169f010adfd331c55c1a73dc460720c341a088a04ae9a54b29cf5a38d54bb45582916fa991f114b37f798ecaed680a16445ac14a40aa3ab641f2852a769e21af16e29d17a9875a26a404eb9c355d1b0d85460ed1b03deafcc1f3d1f18bddba7ffc5af7a77490109062ec033039513789923cfa4180c0ad4d1a8b9067c4f2d5b70e5caf60e0b6d7b501ce53b2d94371f01d2f1e9dd10676fb1a2419fb4a9a9ff3f7fa95b9693afb749aa8089f84448e289d153fda67e527f81040c2a1fe92179c82aee1d5e78233f84b896c42e0be2af8cbc739132b764e7d8ff5b071cb66ef6e6e34b02e400b32ff13949774726cf0b5237e095a388bbf2f50f3894879ce915226bbc23a577de02596af2f1b2e99abbe5fd0493f7fbe7601c78d6085ef0f73b67db2ad87cb2af598658373e288611ad2db4e57d749b20534f1950e342006951ba3dc2a9c9e25e7efdc1fcc3114dda678c1a33ced84e049a5bc6a26b969dac9d7403978f024516c2858a0a585f124f270d38cfa07bb19de7110b83dc813801717b7054092009bfba19cd99536573ab53e31e30e12c90bba5cfb92a5b8382cbd004ce007c41fa153819eb7084ae9c2dd1a988f66df9f4839afef7878be3441a982309c0b604a01fb1ee2ff900c41c5451d1913d10da87bad49e578d2eb17ecc41b2e8da3ce76889c4f6811e43c48343c592c52f9927edd056a167a5ecffd5610aacc954931e184c43db4a1a822045b524e26a255c755e2e6df0eef59a0937ad332eed5892adaa277840ec05fa4f8d020d04f5cfd952e48756f66bf07b1f5e2f69c22bbddc78b72d81f0c8436777f91cd861b10b82ac78cf2e2752527d1e4c4efcd17c2ae0cc0c6b5a5b020467cb08a9e1b87c8e9c3d9c9ac95f7b2d98ac1b58a751233268c08dfdd4deaaf732b302d965b62884f914c4b523da422040bc478e9dc10defaa7aa13226e51d72edb15532a32564bc1c7f1faae257570b884289442c9758036eb6fafe89c8bf2b8a20f6bcb3bcf3add9c20f74f059a735764ff178c5369b884c1c48030bf08392bac2e99dcd14a3d2b74d4ed73b663821d3ec6d8383453b21c62cd7a419f921f09d3048b8eadbffc7fb117198cd48e7743a6b41bf7d4fd18883d4989db22587b324a6ebe739efa17f8b49129100789bf322b1bd84e9f04ff7b4da051379903fe337a2ef6982a0a3c0606534aa2291295dca04600e3f431dd5b0fa8a7b289819430566b90833f9d61022dbb36c87d3320a6257c24311bde2540a4fedf6212296b9551ebec8855c36a0a704e0e14ced2e8d3a331d5394a378d24edb7242b2e5d605318d96ae1ab7f5dcc7f97f3b8ded8889088b5ef3a7a7bdf4be6295e22f6c62af6b9b91b1516466f97e2054e10f944c9badc32167382411fdcee281ca8ebdf2fb9ae9fb455ce3667db4dcd8edd2c41adf163c8db9a29b151f13b26387f127d6bdcf6f193f2c0b3ca81abaaf72a31287acd3e24be1dcf39bb5cc9b302286fc42e83857c092900e8ce1630b8f6c3c0ab3b564a2722d9922cade66f3d3d6888197dfb7a5f58216af1fe81fa1aa5cb4e0352ce20c03f9154bf536df79b177856cabac7d10b985f0a968794a0e29f86b178eb44c3d13ed36205269becd032cac74d82c59f05ad048068cbca7efd644ed8c1212d9b44e278bb11913195f3162d215319504334ff5b445aefb7ec6aaa169043853247edc928097e2d5a8d464d99790f1ef54103440ab233559315bfc5f41aa9afa5c86f339027597cfb90b1d28bfba8c7f4faf9c871d60a90a119297a5a4d0dd32b7e17898066ad311f7560ffed3f03608916c6f30df0757319f335c45de48325fff59b346d7850faa5f14b8393b633d12cdca9eff9ecfa17478db10207c2e32b8372acf85c92c96d9feab0e9a5dc09d6e784e403f423df5822bb5cb0f3cc0a26acb252978c752d0e514f746c55cd6d1d35d2bc5edd51513f14750117fbf6de1e618bed036d4c232ec4ee3acdc1ef3cab25a38244dddd89fddb3d05f03a44868fbde167544c097fe4096ac0250d42c6f49b4c81dd0c82e727a794d0953f3fc72fb9a65418f39d21b5ef60941d33a82483ebadd860f8c56a805b15c40ecacc99a5347175445fd8e7840a91f521e81d864ef191a4f799539163ed39aed6a16ee47c6b26c03312b9632f7e684d4498b7ad60fc04e909350fb469b0a77929deb5c793f93f05f16d79cfb169335158cb240f89dfa910a05aa3d7e8dcbb3f6c8cd87feead5ef31d623afcc6f56faa59edd6f29cda2336f2c6930a94bb5d698e15f78a0b4ab0607e2db575d09348e3cbc37137d72dae564568304faeaa0c469ead7e483a4b5a80da1e170cbdf8c7773987c0155193dd851614561a395f8dd50e8e6d1a92e55cc66be6fa7b706d187a7e7843b271fa0d3998cf3e0801ee24108b7310a585256b8c2331cbe6452f42ac48ebf9fa8ef0b53ea3238a14c666d1f01adeac836957bcecabd2fdebf66d2b488ed6085f6f344a2e89d4c894a1f2f80633fab93eb3da36742da2aaf4c309d04fdbf8047844bf90262b776d991b1be91253e4ec4cefa8d9ce0102a33d1ef6f6e50292ddc4bce50c8300b3a0df62d71909457374c3b5424eeca0c7b410d3899e8dcb6825a074d9972764f37ccb9dd02eea0496ebba2e0af1acb75963c41a0a1c5d46cd2968031201b37e7e93288fd3c91d41b056a727dcb8e2c3bdb93ae5aff58fda44d14f6516e54a8ab7083e444ba9c98f0c6aeba8d430d5e1b8ddc3ba1400778ada98440227c950ca8fb6529e2bb9c96e3a827a6f345c94b61dec3c695152906658e02deb67e1ba597492fafaca205aa84fca085c0aedc8abff46b8e9a491afb1fa1b47b91cda01ba796cfbc733732b72d35c980d50abae6a8344bcae1cc32d0386b1adc9f06c1380a089c29c57da758f0bbf2431eb13b919b8a923887ba00645fc1960288d714ac6c67d339824baf5bfdf3c73093e6a40e2d99b34d9f4cc3ae15309c3c556f736760459180e0d38653f3a4c920b9ba9ca3a2e66ac49f61d7372cc444ca632f3fad1c71ddd74b173362bfc84cd514217f310f83e4491c32521d865cfd086c0ed694d6795a21790df621cb2c4bffcc40a02bcb5a3df33b3e603b765ff07c5cc0b23ac74b3627f177d9e9d7254938eb288478e8ff596e5d71f859cef6269a81d9a91fcf65d9ae66597e13de4912a7935f8bbc8707140e3c23169e268551bac399003dcf21980086789903e2f14be3d05e335e8b4f4dd58dfade193c695de921a8a346d989b569ad22d5ea0142c46d3257c8f554c96dee1df04236179063e24f719b6dca3dd6f9a6a7bcae4f27f72b7e56a1d2db4b263a0b37d39dbb83eabb7536ce415ab7e4d37d1fb00359a81bd9e0bcb14e910f92c11ee5d046d33a28151abc1c541a7b781c8330871586f0933e58ff0f50d84f43cc47ba685c8f9c141a25dc518b6c1c7a11baacc6a954d397522c5ad8e30f188693ba62eaaca3253399993eb7f06298141bf52adfa9aa3101d12b778c28d1048cd7c8b64c45bb6da67b58065f6b611b8856aaee45135e3869a3650f05e5fb621433adbf572360f3406315e807362d0aec59c9d9bb0665d540dffed1f71bcaab5c3a408ef047ac66316d60666adc5af07830912a91c2c2640f502eebf404259c4f4a7fd6293b7804207aec4dfd5f3e84781991239bc632b81624902bfc5b6135cc7143c0a2dc4f04a389f91e724968ab079a713eef01d28503bfc52f1c7776a682c6a0aff0e86f7484bae0a1f5bb562e39583fc53dc001c67e46c6554db8deadb400d68395e6d61cf21b166cac7cb7ac88c618f615655057cca701caeb7f251f6a195e7e5adcd9f110ecc1a0c13929a199676641b6dd506d46ec5435e259d6cd5db47ccc610b6eeffc64006b25a89aaedbd8eefb190b0e0743ba9cd8386fef4664a489fc0ccc6f5c40d5b23ca4dc5f55838e41a4e0224facf20ca3b613d2916afd28982914316555519c9fb10bbe6700d24eb21a77c86cf59e1c96e5de52dbb35ed6a189845fb9e8fe9029d80bc46afe4bb6a4fee907848aabb4da770a84675392b53da8c2c14c8473d9bd9168cb7dfa3553e9dcc384cd9ae874e72d7cfe98b680959450572c6a306e25686976f5002c0f2fe87599f22b33e2b712a8964985c31d564881fc555065a8ceb862c318f5b5a65aa79231e40ece487072b83e87c8dee694fdeb94d1e93a1241ddcf0c46360af2e7390e81b384f5caf0a972ee5348bb62b84c36878917798361a8718afcd54ee9e0e404e2e8fb012e54640fbcfdf7dd7b22935758a8a822226997ee63a48b69581e5050a661a007af6c308a1fb3f5e6e93ef02b50844882468b4a5ba7756ba585f35277d3be6367267d132bdadcc2f4d79b04fe6032361271f623f551406e640a09c5e79ce297228c64a02ebe06267e32f876fc2149fbc4eec19ce1ae378f53ac5c8ef9af27978c6371abb4ad3377da3476e1da2470eaff0848da5209d6ee11e712c025131a9079809c105c6e9b9250778e0512b012f64caece050f08d5cefeddaf7ae3482e0d668939f9b4be254dc226e91b496e81e8b158428ee501a733d07858d2eded6756ecfad870fa4682ecb9d0929729f7f12809b0ab929f2e44828113a17e8af7895096c04ab7f62969a9894ebf637aeab905ee1d44c0108c73aa80a49319a8bda80074ca2333826e88c4f683b79dab2c8052b0f4700df2c348548e4d4f80a708a1f28f6f9ac12cb47d42c85902c0b48341ad5fcb26e939d4748b9ecdc6961d0a6e3a79cc0ece5b654186d2099306d2b40c3fd8f83ea0440b1d5caa0c739d571f71f6edd09177b0b43fa28d7c4485a32b147ce9290322b67314334a28e69158a29065881c9e2eb9a5e58a4de8899b4485cc038f0aaa741b20d89ade071c8def1a359da10188450f946f2860b31a573ca595b3804046cb62803b1f83150fc6dece3c1cd0263f6f0be39a5eb3650ca92a195797c4126242e6f047affbe8b908311b23240ac1c25329e9b3089fd85c237adf48eef96479ad7a0e1f1e4fe4f652955ff9884d5f90fcff1a2c3c6015a17fae7aa6e312b6a8f23fc8a593b7debcc51f5eb1751da09ee3fb460c04b7479a860831201b75f0180b4b298acc2ba83e07a29c7e43dcb33036a537cc5206c1601deec6b2915ce364fd32fff1aadff159e3ad335413ee4529c9c0f8000345e9fd9feddb68f33c791bec1e261fe42880cebb58618e7ca3663d2ffc9335090be52ce4f18bd8a3d77f3f9480f913499457ae7038271cef8ff3abd832224756cdd77d18ae3915fa8b629e6af44724c3d4bd411307643d22", 0x1000}, {0x0}, {&(0x7f0000000000)="b4", 0x1}], 0x3}, 0x0) 03:38:55 executing program 0: r0 = io_uring_setup(0x15a5, &(0x7f0000000000)) io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) 03:38:55 executing program 2: request_key(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0) 03:38:55 executing program 4: r0 = getpgid(0x0) process_vm_writev(r0, &(0x7f0000000400)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000180)=""/124, 0x7c}, {&(0x7f0000000200)=""/2, 0x2}, {&(0x7f0000000240)=""/149, 0x95}, {&(0x7f0000000300)=""/248, 0xf8}], 0x5, &(0x7f0000001780)=[{&(0x7f0000000480)=""/246, 0xf6}, {&(0x7f0000000580)=""/6, 0x6}, {&(0x7f00000005c0)=""/9, 0xfffffcd8}, {&(0x7f0000000600)=""/215, 0xd7}, {&(0x7f0000000700)=""/4096, 0x1000}], 0x5, 0x0) 03:38:56 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:38:56 executing program 5: bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x1d, 0x1, &(0x7f0000000000)=@raw=[@exit], &(0x7f0000000080)='syzkaller\x00', 0x4, 0xda, &(0x7f00000000c0)=""/218, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 03:38:56 executing program 0: r0 = socket$inet6_icmp_raw(0x2, 0x3, 0x3a) getsockopt(r0, 0x0, 0x22, 0x0, &(0x7f0000000640)) 03:38:56 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x541b, 0x0) 03:38:56 executing program 4: r0 = socket$inet6_icmp_raw(0x2, 0x3, 0x3a) getsockopt(r0, 0x1, 0x3d, 0x0, &(0x7f0000000640)) 03:38:56 executing program 3: r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) fcntl$setstatus(r0, 0x8, 0xc00) 03:38:56 executing program 3: r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) fcntl$setstatus(r0, 0x409, 0x0) 03:38:56 executing program 5: r0 = socket$inet6_icmp_raw(0x2, 0x3, 0x3a) getsockopt(r0, 0x1, 0x0, 0x0, &(0x7f0000000640)=0xffffffffffffffb8) 03:38:56 executing program 2: request_key(&(0x7f0000000040)='keyring\x00', &(0x7f0000000180)={'syz', 0x0}, &(0x7f0000000240)='.eatt\b\xb9\xb3N', 0x0) 03:38:56 executing program 0: bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x6, 0x4, &(0x7f0000000240)=@framed={{}, [@exit]}, &(0x7f0000000080)='syzkaller\x00', 0x4, 0xda, &(0x7f00000000c0)=""/218, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 03:38:56 executing program 4: r0 = socket$inet6_icmp_raw(0x2, 0x3, 0x3a) getsockopt(r0, 0x0, 0x14, 0x0, &(0x7f0000000640)) 03:38:57 executing program 3: unshare(0x64000080) unshare(0x0) 03:38:58 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:38:58 executing program 5: r0 = socket$inet6_icmp_raw(0x2, 0x3, 0x3a) getsockopt(r0, 0x1, 0xc, 0x0, &(0x7f0000000640)) 03:38:58 executing program 0: r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, r1) 03:38:58 executing program 2: capset(&(0x7f0000000080)={0x20071026}, &(0x7f00000000c0)) capset(&(0x7f0000000000)={0x20071026}, &(0x7f0000000040)) 03:38:58 executing program 4: r0 = socket$inet6_icmp_raw(0x2, 0x3, 0x3a) getsockopt(r0, 0x0, 0x2, 0x0, &(0x7f00000000c0)) 03:38:58 executing program 3: r0 = socket$inet6_icmp_raw(0x2, 0x3, 0x3a) getsockopt(r0, 0x1, 0x24, 0x0, &(0x7f0000000640)) 03:38:58 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$IP_VS_SO_GET_VERSION(r0, 0x0, 0x480, 0x0, &(0x7f0000000380)) 03:38:58 executing program 5: syz_mount_image$romfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f00000001c0), 0xd000, &(0x7f0000000200)) 03:38:59 executing program 2: bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x6, 0x5c00, &(0x7f0000000000)=@raw=[@exit], &(0x7f0000000080)='syzkaller\x00', 0x0, 0xda, &(0x7f00000000c0)=""/218, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 03:38:59 executing program 3: r0 = socket$inet6_icmp_raw(0x2, 0x3, 0x3a) getsockopt(r0, 0x0, 0x1600bd77, 0x0, &(0x7f0000000640)) 03:38:59 executing program 4: bpf$MAP_CREATE(0x0, &(0x7f0000000780)=@base={0x10, 0x0, 0x0, 0xffffbff5}, 0x48) 03:38:59 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:38:59 executing program 0: r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x541b, 0x0) 03:38:59 executing program 5: r0 = socket$inet6_icmp_raw(0x2, 0x3, 0x3a) getsockopt(r0, 0x1, 0x31, 0x0, &(0x7f0000000640)) 03:38:59 executing program 3: r0 = getpgid(0x0) process_vm_writev(r0, &(0x7f0000002640)=[{&(0x7f00000002c0)=""/4096, 0x1000}], 0x1, &(0x7f0000004900)=[{&(0x7f0000002740)=""/4096, 0x1000}], 0x1, 0x0) 03:38:59 executing program 4: execveat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', &(0x7f0000000140), 0x0, 0x0) 03:38:59 executing program 2: r0 = socket$inet6_icmp_raw(0x2, 0x3, 0x3a) getsockopt(r0, 0x0, 0x7, 0x0, &(0x7f0000000640)) 03:39:00 executing program 0: r0 = socket$inet6_icmp_raw(0x2, 0x3, 0x3a) getsockopt(r0, 0x1, 0x48, 0x0, &(0x7f0000000640)) 03:39:00 executing program 3: r0 = socket$inet6_icmp_raw(0x2, 0x3, 0x3a) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8916, 0x0) 03:39:00 executing program 2: bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x6, 0x2, &(0x7f0000000000)=@raw=[@generic={0x63, 0x0, 0xa}, @exit], &(0x7f0000000080)='syzkaller\x00', 0x4, 0xda, &(0x7f00000000c0)=""/218, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 03:39:00 executing program 4: capset(&(0x7f0000000080)={0x20071026}, &(0x7f00000000c0)) socket$packet(0x11, 0x0, 0x300) 03:39:00 executing program 5: r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) fcntl$setstatus(r0, 0x407, 0x0) 03:39:00 executing program 0: r0 = socket$inet6_icmp_raw(0x2, 0x3, 0x3a) getsockopt(r0, 0x1, 0x9, 0x0, &(0x7f0000000640)) 03:39:01 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:39:01 executing program 3: r0 = socket$inet6_icmp_raw(0x2, 0x3, 0x3a) getsockopt(r0, 0x0, 0x42, 0x0, &(0x7f0000000640)) 03:39:01 executing program 2: capset(&(0x7f0000000080)={0x20071026}, &(0x7f00000000c0)) capset(&(0x7f0000000000)={0x20071026}, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x1}) 03:39:01 executing program 5: r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) fcntl$setstatus(r0, 0x803, 0x0) 03:39:01 executing program 0: r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) fcntl$setstatus(r0, 0xa, 0x40000) 03:39:01 executing program 4: prctl$PR_MCE_KILL(0x21, 0x8412d76fd2e176c6, 0x0) 03:39:02 executing program 5: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x28001, 0x0) write$P9_RATTACH(r0, 0x0, 0x0) 03:39:02 executing program 2: r0 = socket$inet_sctp(0x2, 0x5, 0x84) r1 = dup2(r0, r0) sendto$inet(r1, 0x0, 0x0, 0x0, &(0x7f0000000040)={0x10, 0x2}, 0x43) 03:39:02 executing program 0: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f0000000600)={0x0, {{0xa, 0x0, 0x0, @loopback}}}, 0x8c) 03:39:02 executing program 3: r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$inet_int(r0, 0x0, 0x6, &(0x7f0000000580)=0x8, 0x4) 03:39:02 executing program 4: r0 = openat$hwrng(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) read$eventfd(r0, &(0x7f0000000600), 0x8) 03:39:02 executing program 3: socketpair(0x28, 0x0, 0x0, &(0x7f0000002940)) 03:39:03 executing program 1: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:39:03 executing program 2: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000440)={0x2, &(0x7f0000000400)=[{}, {0x5}]}) 03:39:03 executing program 0: r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0xa, &(0x7f00000001c0)={0x0, @in, 0x0, 0x0, 0x219}, 0x98) 03:39:03 executing program 4: r0 = socket$inet_sctp(0x2, 0x5, 0x84) r1 = dup2(r0, r0) sendmsg$inet_sctp(r1, &(0x7f0000002840)={&(0x7f0000000680)=@in={0x10, 0x2}, 0x10, &(0x7f0000002780)=[{&(0x7f0000000700)="a6", 0x1}], 0x1, &(0x7f00000027c0)=[@dstaddrv4={0x10, 0x84, 0x9, @loopback}, @sndrcv={0x2c}, @init={0x14, 0x84, 0x1, {0x80, 0x6, 0x81}}], 0x50}, 0x0) 03:39:03 executing program 5: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) bind$unix(r0, &(0x7f0000000080)=@file={0x10}, 0x10) 03:39:03 executing program 3: r0 = socket$inet_sctp(0x2, 0x5, 0x84) r1 = dup2(r0, r0) sendmsg$inet_sctp(r1, &(0x7f0000002840)={&(0x7f0000000680)=@in={0x10, 0x2}, 0x10, 0x0, 0x0, &(0x7f00000027c0)=[@init={0x14, 0x84, 0x1, {0x0, 0x0, 0x0, 0x9}}], 0x14}, 0x0) 03:39:04 executing program 2: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) symlinkat(&(0x7f0000000100)='./file0/file0\x00', 0xffffffffffffff9c, &(0x7f0000000140)='./file0/file1\x00') 03:39:04 executing program 4: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) open$dir(&(0x7f0000000040)='./file0\x00', 0x40000, 0x0) 03:39:04 executing program 5: r0 = socket$inet_sctp(0x2, 0x1, 0x84) r1 = dup2(r0, r0) setsockopt$inet_sctp_SCTP_DELAYED_SACK(r1, 0x84, 0xf, &(0x7f0000000040), 0xc) 03:39:04 executing program 0: r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x11, &(0x7f00000000c0)=0xfffff002, 0x4) 03:39:04 executing program 3: symlinkat(&(0x7f0000000080)='./file1\x00', 0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00') fchownat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x0, 0xffffffffffffffff, 0x200) 03:39:04 executing program 2: r0 = open$dir(&(0x7f00000000c0)='\x00', 0x2000000, 0x0) readlinkat(r0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) 03:39:06 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:39:06 executing program 5: unlinkat(0xffffffffffffff9c, &(0x7f0000000080)='./file0/file0\x00', 0x800) 03:39:06 executing program 3: r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendto$inet(r0, &(0x7f0000000900)="32ec7a8669db356e918f19276e52241998b3f15c38a958d3a85f02e373e5282bb2f7f7a4ab72716ff27bbdfa28d67122ae97990a11da1f7926", 0x39, 0xa008, &(0x7f0000000a00), 0x6) 03:39:06 executing program 0: syz_mount_image$romfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0xd000, &(0x7f0000000200)) 03:39:06 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_int(r0, 0xffff, 0x2000, &(0x7f0000000000), &(0x7f0000000080)=0x4) 03:39:06 executing program 2: unlinkat(0xffffffffffffff9c, &(0x7f0000000040)='./file0/file0\x00', 0x0) 03:39:06 executing program 5: symlinkat(&(0x7f0000000080)='./file1\x00', 0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00') fchmodat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0) 03:39:06 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendmsg$inet_sctp(r0, &(0x7f0000000200)={&(0x7f0000000000)=@in6={0x1c, 0x1c, 0x3}, 0x1c, &(0x7f0000000140)=[{&(0x7f0000000040)=',', 0x1}], 0x1, &(0x7f0000000180)=[@authinfo={0x10}, @dstaddrv6={0x1c, 0x84, 0xa, @remote={0xfe, 0x80, '\x00', 0x0}}, @dstaddrv6={0x1c, 0x84, 0xa, @remote={0xfe, 0x80, '\x00', 0x0}}, @authinfo={0x10}], 0x58, 0x104}, 0x0) 03:39:06 executing program 3: r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$inet_sctp_SCTP_RECVRCVINFO(r0, 0x84, 0x1f, &(0x7f0000000180), 0x4) 03:39:06 executing program 4: r0 = socket$inet_sctp(0x2, 0x5, 0x84) r1 = dup2(r0, r0) sendmsg$inet_sctp(r1, &(0x7f0000002840)={&(0x7f0000000680)=@in={0x10, 0x2}, 0x10, &(0x7f0000002780)=[{&(0x7f0000000700)="a6", 0x1}], 0x1, &(0x7f00000027c0)=[@init={0x14, 0x84, 0x1, {0x0, 0x6, 0x81}}], 0x14}, 0x0) 03:39:06 executing program 2: r0 = socket$inet6_sctp(0x1c, 0x1, 0x84) r1 = fcntl$dupfd(r0, 0x0, r0) setsockopt$inet_sctp_SCTP_AUTH_CHUNK(r1, 0x84, 0x12, &(0x7f0000000080), 0x1) 03:39:06 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:39:06 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) sendto(r0, 0x0, 0x0, 0x1, &(0x7f0000000100)=@in6={0x1c, 0x1c, 0x2}, 0x1c) 03:39:06 executing program 0: r0 = socket$inet_tcp(0x2, 0x1, 0x0) listen(r0, 0x0) listen(r0, 0x3ff) 03:39:06 executing program 3: r0 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$sock_int(r0, 0xffff, 0x20000, 0x0, &(0x7f0000000100)) 03:39:07 executing program 4: mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0/../file0\x00', 0x0) 03:39:07 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000000)={0x10, 0x2}, 0x10) 03:39:07 executing program 0: syz_clone(0xd7223080, 0x0, 0x0, &(0x7f0000000340), 0x0, 0x0) 03:39:07 executing program 2: bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001080)={0x6, 0x4, &(0x7f0000000280)=@framed={{}, [@ldst={0x3, 0x0, 0x6}]}, &(0x7f0000000000)='syzkaller\x00', 0x7, 0xf5, &(0x7f0000000380)=""/245, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 03:39:07 executing program 4: r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$IOC_PR_RESERVE(r0, 0x401070c9, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100), 0x8000, 0x0) ioctl$SNDRV_PCM_IOCTL_UNLINK(r0, 0x4161, 0x0) openat$full(0xffffffffffffff9c, &(0x7f00000000c0), 0x501041, 0x0) msgget(0x3, 0x200) msgctl$MSG_STAT(0x0, 0xb, &(0x7f0000000300)=""/43) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x1) socket(0x0, 0x6, 0x4) pipe2(&(0x7f00000001c0)={0xffffffffffffffff}, 0x0) write$FUSE_INTERRUPT(r2, &(0x7f0000000240)={0x10}, 0x10) r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$IOC_PR_RESERVE(r3, 0x401070c9, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r3, 0xc0045520, &(0x7f0000000180)=0x8000) msgctl$MSG_INFO(0x0, 0xc, &(0x7f0000000040)=""/95) write$FUSE_NOTIFY_DELETE(0xffffffffffffffff, &(0x7f00000002c0)={0x3e, 0x6, 0x0, {0x4, 0x3, 0x15, 0x0, '/proc/self/net/pfkey\x00'}}, 0x3e) ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x1) 03:39:07 executing program 3: r0 = socket$inet6_sctp(0x1c, 0x5, 0x84) r1 = socket(0x1c, 0x1, 0x0) dup2(r0, r1) sendmsg$inet_sctp(r1, &(0x7f0000001380)={&(0x7f0000001180)=@in6={0x1c, 0x1c, 0x1}, 0x1c, &(0x7f0000001340)=[{&(0x7f0000001580)='g', 0x1}], 0x1}, 0x0) 03:39:07 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) sendto(r0, &(0x7f0000000140)="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", 0x5a1, 0x0, &(0x7f00000000c0)=@in={0x10, 0x2}, 0x10) 03:39:08 executing program 2: bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x12, 0x4, &(0x7f0000000000)=@framed={{}, [@jmp={0x5, 0x0, 0x3, 0x0, 0x1, 0xfffffffffffffffe}]}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x8, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 03:39:09 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:39:09 executing program 0: syz_clone(0xd7223080, 0x0, 0x0, &(0x7f0000000340), 0x0, 0x0) 03:39:09 executing program 5: openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000040), 0x2, 0x0) 03:39:09 executing program 3: syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000001980), 0x0, &(0x7f0000001b00)={[{@session}, {@umask}]}) 03:39:09 executing program 4: prctl$PR_MCE_KILL(0x34, 0x584add81c02e1f24, 0x0) 03:39:09 executing program 2: syz_read_part_table(0x0, 0x1, &(0x7f0000001500)=[{&(0x7f0000000400)="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", 0x1fb, 0x5}]) 03:39:09 executing program 2: r0 = socket$igmp6(0xa, 0x3, 0x2) setsockopt$MRT6_DEL_MFC(r0, 0x29, 0xcd, &(0x7f0000000140)={{0xa, 0x0, 0x0, @loopback}, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}, 0x5c) 03:39:09 executing program 4: open$dir(&(0x7f00000000c0)='./file0\x00', 0x200, 0x0) open$dir(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) 03:39:09 executing program 3: r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$IOC_PR_RESERVE(r0, 0x401070c9, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100), 0x8000, 0x0) ioctl$SNDRV_PCM_IOCTL_UNLINK(r0, 0x4161, 0x0) openat$full(0xffffffffffffff9c, &(0x7f00000000c0), 0x501041, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) socket(0x1d, 0x6, 0x4) pipe2(&(0x7f00000001c0)={0xffffffffffffffff}, 0x0) write$FUSE_INTERRUPT(r2, &(0x7f0000000240)={0x10}, 0x10) r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r3, 0xc0045520, &(0x7f0000000180)=0x8000) msgget$private(0x0, 0x421) ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x1) 03:39:09 executing program 5: prctl$PR_MCE_KILL(0x29, 0x584add81c02e1f24, 0x0) 03:39:10 executing program 5: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='limits\x00') read$FUSE(r0, 0x0, 0x0) read$FUSE(r0, &(0x7f00000000c0)={0x2020}, 0x2020) 03:39:10 executing program 4: syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x5, &(0x7f0000001980)=[{0x0}, {&(0x7f0000000140)}, {0x0}, {&(0x7f0000000700)="0e625d161f8eb332aa2ac4303adc6576603fb9bd16b0956330b65c1062b818088d41c2c9b6459071cc80e71e29496deeac31eed3faccb110a37350d7e536c3a953eb27f460f1c36cfc6d1ee5c76e7627a864468f17c7f00f7e43573aed1857154ab47243da3c509c58464721e848dfac53ffea4e8d33bc2c62e3546f32ec50adc64afc3e822844f7e77cb0443f387232062c9927d8fa", 0x96, 0x74ea}, {&(0x7f00000007c0)}], 0x0, &(0x7f0000001b00)={[{@uid}, {@unhide}, {@shortad}, {@gid_forget}, {@session={'session', 0x3d, 0x9}}, {@umask}, {@nostrict}, {@lastblock}, {@uid={'uid', 0x3d, 0xffffffffffffffff}}], [{@uid_gt}, {@fowner_lt}, {@permit_directio}]}) [ 2527.340191][T12519] can: request_module (can-proto-4) failed. 03:39:11 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:39:11 executing program 2: r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$IOC_PR_RESERVE(r0, 0x401070c9, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100), 0x8000, 0x0) ioctl$SNDRV_PCM_IOCTL_UNLINK(0xffffffffffffffff, 0x4161, 0x0) openat$full(0xffffffffffffff9c, &(0x7f00000000c0), 0x501041, 0x0) msgget(0x3, 0x200) msgctl$MSG_STAT(0x0, 0xb, &(0x7f0000000300)=""/43) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x1) socket(0x1d, 0x0, 0x0) pipe2(&(0x7f00000001c0)={0xffffffffffffffff}, 0x0) write$FUSE_INTERRUPT(r2, &(0x7f0000000240)={0x10}, 0x10) r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r3, 0xc0045520, &(0x7f0000000180)=0x8000) msgget$private(0x0, 0x421) ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x1) 03:39:11 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000280)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(cipher_null)\x00'}, 0x58) r1 = accept4(r0, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f00000003c0)=[{{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000640)=""/163, 0xa3}], 0x1}}], 0x1, 0x0, 0x0) recvmmsg(r1, &(0x7f00000005c0)=[{{0x0, 0xfffffffffffffea3, 0x0}}], 0x3ffffffffffff62, 0x0, 0x0) sendmsg$ETHTOOL_MSG_RINGS_SET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0) 03:39:11 executing program 5: bpf$OBJ_GET_PROG(0x7, &(0x7f00000002c0)={&(0x7f0000000280)='./file0\x00'}, 0x10) bpf$OBJ_GET_PROG(0x7, &(0x7f0000001100)={&(0x7f00000010c0)='./file0\x00'}, 0x10) 03:39:11 executing program 0: syz_clone(0xd7223080, 0x0, 0x0, &(0x7f0000000340), 0x0, 0x0) 03:39:11 executing program 4: r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) read$FUSE(r0, &(0x7f0000000340)={0x2020}, 0xfffffe8b) 03:39:11 executing program 5: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$GIO_FONT(r0, 0x4b60, &(0x7f00000004c0)=""/106) [ 2529.174751][T12533] can: request_module (can-proto-0) failed. 03:39:12 executing program 2: syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000001980), 0x0, &(0x7f0000001b00)) 03:39:12 executing program 5: pipe2(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) read$FUSE(0xffffffffffffffff, &(0x7f0000000340)={0x2020}, 0x2020) write$FUSE_INTERRUPT(r0, &(0x7f0000000080)={0xb8b1a11b3dfc4c0a}, 0x3) 03:39:12 executing program 0: syz_clone(0xd7223080, 0x0, 0x0, &(0x7f0000000340), 0x0, 0x0) 03:39:13 executing program 2: bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x12, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) [ 2530.200159][T12538] not chained 770000 origins [ 2530.205965][T12538] CPU: 0 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2530.216368][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2530.226718][T12538] Call Trace: [ 2530.230016][T12538] [ 2530.232957][T12538] dump_stack_lvl+0x200/0x28c [ 2530.237690][T12538] dump_stack+0x29/0x2c [ 2530.241894][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2530.247672][T12538] ? preempt_count_sub+0xfc/0x340 [ 2530.252746][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2530.257990][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2530.263167][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2530.268339][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2530.274226][T12538] ? should_fail+0x79/0x9c0 [ 2530.278772][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2530.283936][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2530.290238][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2530.296364][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2530.301537][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2530.307398][T12538] __msan_chain_origin+0xbd/0x140 [ 2530.312474][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2530.317656][T12538] get_compat_msghdr+0x10c/0x280 [ 2530.322650][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2530.327387][T12538] ___sys_recvmsg+0x289/0xb40 [ 2530.332123][T12538] ? __schedule+0x176c/0x21c0 [ 2530.336856][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2530.342029][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2530.347895][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2530.353058][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2530.358929][T12538] do_recvmmsg+0x7c9/0x1200 [ 2530.363513][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2530.368606][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2530.373786][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2530.378598][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2530.385161][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2530.389916][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2530.396318][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2530.401413][T12538] do_fast_syscall_32+0x33/0x70 [ 2530.406310][T12538] do_SYSENTER_32+0x1b/0x20 [ 2530.410870][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2530.417249][T12538] RIP: 0023:0xf7feb549 [ 2530.421338][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2530.441015][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2530.449478][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2530.457487][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2530.465490][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2530.473492][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2530.481496][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2530.489511][T12538] [ 2530.496064][T12538] Uninit was stored to memory at: [ 2530.501174][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2530.507130][T12538] get_compat_msghdr+0x10c/0x280 [ 2530.512225][T12538] ___sys_recvmsg+0x289/0xb40 [ 2530.516960][T12538] do_recvmmsg+0x7c9/0x1200 [ 2530.521521][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2530.526363][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2530.532857][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2530.537935][T12538] do_fast_syscall_32+0x33/0x70 [ 2530.542926][T12538] do_SYSENTER_32+0x1b/0x20 [ 2530.547473][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2530.553956][T12538] [ 2530.556284][T12538] Uninit was stored to memory at: [ 2530.561369][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2530.566620][T12538] get_compat_msghdr+0x10c/0x280 [ 2530.571696][T12538] ___sys_recvmsg+0x289/0xb40 [ 2530.576424][T12538] do_recvmmsg+0x7c9/0x1200 [ 2530.580981][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2530.585836][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2530.592349][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2530.597458][T12538] do_fast_syscall_32+0x33/0x70 [ 2530.602466][T12538] do_SYSENTER_32+0x1b/0x20 [ 2530.607017][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2530.613680][T12538] [ 2530.616048][T12538] Uninit was stored to memory at: [ 2530.621147][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2530.626432][T12538] get_compat_msghdr+0x10c/0x280 [ 2530.631426][T12538] ___sys_recvmsg+0x289/0xb40 [ 2530.636261][T12538] do_recvmmsg+0x7c9/0x1200 [ 2530.640816][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2530.645646][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2530.652293][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2530.657371][T12538] do_fast_syscall_32+0x33/0x70 [ 2530.662359][T12538] do_SYSENTER_32+0x1b/0x20 [ 2530.666907][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2530.673380][T12538] [ 2530.675800][T12538] Uninit was stored to memory at: [ 2530.680889][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2530.686147][T12538] get_compat_msghdr+0x10c/0x280 [ 2530.691153][T12538] ___sys_recvmsg+0x289/0xb40 [ 2530.696019][T12538] do_recvmmsg+0x7c9/0x1200 [ 2530.700575][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2530.705407][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2530.711904][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2530.717012][T12538] do_fast_syscall_32+0x33/0x70 [ 2530.722015][T12538] do_SYSENTER_32+0x1b/0x20 [ 2530.726570][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2530.733047][T12538] [ 2530.735381][T12538] Uninit was stored to memory at: [ 2530.740479][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2530.745737][T12538] get_compat_msghdr+0x10c/0x280 [ 2530.750725][T12538] ___sys_recvmsg+0x289/0xb40 [ 2530.755556][T12538] do_recvmmsg+0x7c9/0x1200 [ 2530.760112][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2530.764939][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2530.771331][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2530.776528][T12538] do_fast_syscall_32+0x33/0x70 [ 2530.781437][T12538] do_SYSENTER_32+0x1b/0x20 [ 2530.786088][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2530.792576][T12538] [ 2530.794910][T12538] Uninit was stored to memory at: [ 2530.800004][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2530.805272][T12538] get_compat_msghdr+0x10c/0x280 [ 2530.810273][T12538] ___sys_recvmsg+0x289/0xb40 [ 2530.815163][T12538] do_recvmmsg+0x7c9/0x1200 [ 2530.819721][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2530.824557][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2530.830954][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2530.836393][T12538] do_fast_syscall_32+0x33/0x70 [ 2530.841313][T12538] do_SYSENTER_32+0x1b/0x20 [ 2530.845959][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2530.852528][T12538] [ 2530.854875][T12538] Uninit was stored to memory at: [ 2530.859969][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2530.865232][T12538] get_compat_msghdr+0x10c/0x280 [ 2530.870225][T12538] ___sys_recvmsg+0x289/0xb40 [ 2530.875057][T12538] do_recvmmsg+0x7c9/0x1200 [ 2530.879620][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2530.884446][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2530.890848][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2530.896041][T12538] do_fast_syscall_32+0x33/0x70 03:39:13 executing program 4: openat$full(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) socket(0x1d, 0x6, 0x4) pipe2(&(0x7f00000001c0), 0x0) openat$full(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = msgget$private(0x0, 0x421) msgctl$MSG_INFO(r1, 0xc, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x1) [ 2530.900961][T12538] do_SYSENTER_32+0x1b/0x20 [ 2530.905618][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2530.912105][T12538] [ 2530.914441][T12538] Local variable msg_sys created at: [ 2530.919732][T12538] do_recvmmsg+0xc9/0x1200 [ 2530.924289][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2531.622390][T12558] can: request_module (can-proto-4) failed. 03:39:15 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:39:15 executing program 5: msgget(0x3, 0x0) msgctl$MSG_STAT(0x0, 0xb, &(0x7f0000000300)=""/43) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x1) [ 2532.438966][T12564] udevd[12564]: inotify_add_watch(7, /dev/loop1, 10) failed: No such file or directory [ 2533.048685][T12538] not chained 780000 origins [ 2533.053738][T12538] CPU: 1 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2533.064021][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2533.074112][T12538] Call Trace: [ 2533.077427][T12538] [ 2533.080381][T12538] dump_stack_lvl+0x200/0x28c [ 2533.085115][T12538] dump_stack+0x29/0x2c [ 2533.089314][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2533.095095][T12538] ? preempt_count_sub+0xfc/0x340 [ 2533.100179][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2533.105424][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2533.110602][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2533.115776][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2533.121753][T12538] ? should_fail+0x79/0x9c0 [ 2533.126304][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2533.131470][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2533.137771][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2533.143908][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2533.149077][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2533.156211][T12538] __msan_chain_origin+0xbd/0x140 [ 2533.161288][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2533.166473][T12538] get_compat_msghdr+0x10c/0x280 [ 2533.171467][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2533.176210][T12538] ___sys_recvmsg+0x289/0xb40 [ 2533.180948][T12538] ? __schedule+0x176c/0x21c0 [ 2533.185680][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2533.190850][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2533.196708][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2533.201871][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2533.207741][T12538] do_recvmmsg+0x7c9/0x1200 [ 2533.212306][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2533.217398][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2533.222571][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2533.227385][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2533.233950][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2533.238694][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2533.245087][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2533.250164][T12538] do_fast_syscall_32+0x33/0x70 [ 2533.255065][T12538] do_SYSENTER_32+0x1b/0x20 [ 2533.259610][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2533.266082][T12538] RIP: 0023:0xf7feb549 [ 2533.270173][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2533.289916][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2533.298377][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2533.306382][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2533.314389][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2533.322396][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2533.330403][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2533.338919][T12538] [ 2533.345528][T12538] Uninit was stored to memory at: [ 2533.350641][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2533.356789][T12538] get_compat_msghdr+0x10c/0x280 [ 2533.361895][T12538] ___sys_recvmsg+0x289/0xb40 [ 2533.366627][T12538] do_recvmmsg+0x7c9/0x1200 [ 2533.371185][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2533.376046][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2533.382525][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2533.387600][T12538] do_fast_syscall_32+0x33/0x70 [ 2533.392628][T12538] do_SYSENTER_32+0x1b/0x20 [ 2533.397201][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2533.403731][T12538] [ 2533.406068][T12538] Uninit was stored to memory at: [ 2533.411161][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2533.416461][T12538] get_compat_msghdr+0x10c/0x280 [ 2533.421454][T12538] ___sys_recvmsg+0x289/0xb40 [ 2533.426295][T12538] do_recvmmsg+0x7c9/0x1200 [ 2533.430946][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2533.435803][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2533.442288][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2533.447363][T12538] do_fast_syscall_32+0x33/0x70 [ 2533.452407][T12538] do_SYSENTER_32+0x1b/0x20 [ 2533.456957][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2533.463460][T12538] [ 2533.465790][T12538] Uninit was stored to memory at: [ 2533.470882][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2533.476170][T12538] get_compat_msghdr+0x10c/0x280 [ 2533.481163][T12538] ___sys_recvmsg+0x289/0xb40 [ 2533.486022][T12538] do_recvmmsg+0x7c9/0x1200 [ 2533.490582][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2533.495411][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2533.501919][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2533.506997][T12538] do_fast_syscall_32+0x33/0x70 [ 2533.512018][T12538] do_SYSENTER_32+0x1b/0x20 [ 2533.516567][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2533.523153][T12538] [ 2533.525500][T12538] Uninit was stored to memory at: [ 2533.530766][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2533.536501][T12538] get_compat_msghdr+0x10c/0x280 [ 2533.541491][T12538] ___sys_recvmsg+0x289/0xb40 [ 2533.546324][T12538] do_recvmmsg+0x7c9/0x1200 [ 2533.550875][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2533.555901][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2533.562387][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2533.567477][T12538] do_fast_syscall_32+0x33/0x70 [ 2533.572751][T12538] do_SYSENTER_32+0x1b/0x20 [ 2533.577296][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2533.583812][T12538] [ 2533.586144][T12538] Uninit was stored to memory at: [ 2533.591334][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2533.596828][T12538] get_compat_msghdr+0x10c/0x280 [ 2533.601931][T12538] ___sys_recvmsg+0x289/0xb40 [ 2533.606665][T12538] do_recvmmsg+0x7c9/0x1200 [ 2533.611223][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2533.616158][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2533.622663][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2533.628005][T12538] do_fast_syscall_32+0x33/0x70 [ 2533.633056][T12538] do_SYSENTER_32+0x1b/0x20 [ 2533.637663][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2533.644234][T12538] [ 2533.646571][T12538] Uninit was stored to memory at: [ 2533.651801][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2533.656963][T12538] get_compat_msghdr+0x10c/0x280 [ 2533.662121][T12538] ___sys_recvmsg+0x289/0xb40 [ 2533.666852][T12538] do_recvmmsg+0x7c9/0x1200 [ 2533.671421][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2533.676351][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2533.682844][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2533.687917][T12538] do_fast_syscall_32+0x33/0x70 [ 2533.692993][T12538] do_SYSENTER_32+0x1b/0x20 [ 2533.697569][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2533.704146][T12538] [ 2533.706491][T12538] Uninit was stored to memory at: [ 2533.711714][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2533.717027][T12538] get_compat_msghdr+0x10c/0x280 [ 2533.722231][T12538] ___sys_recvmsg+0x289/0xb40 [ 2533.726962][T12538] do_recvmmsg+0x7c9/0x1200 [ 2533.731518][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2533.736470][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2533.743051][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2533.748124][T12538] do_fast_syscall_32+0x33/0x70 [ 2533.753206][T12538] do_SYSENTER_32+0x1b/0x20 [ 2533.757774][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2533.764334][T12538] [ 2533.766669][T12538] Local variable msg_sys created at: [ 2533.772084][T12538] do_recvmmsg+0xc9/0x1200 [ 2533.776651][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2533.995486][T12538] not chained 790000 origins [ 2534.000218][T12538] CPU: 1 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2534.010418][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2534.020690][T12538] Call Trace: [ 2534.023997][T12538] [ 2534.026943][T12538] dump_stack_lvl+0x200/0x28c [ 2534.031679][T12538] dump_stack+0x29/0x2c [ 2534.035874][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2534.041651][T12538] ? preempt_count_sub+0xfc/0x340 [ 2534.046727][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2534.051966][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2534.057144][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2534.062333][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2534.068229][T12538] ? should_fail+0x79/0x9c0 [ 2534.072854][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2534.078019][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2534.084320][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2534.090444][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2534.095696][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2534.101567][T12538] __msan_chain_origin+0xbd/0x140 [ 2534.106673][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2534.111859][T12538] get_compat_msghdr+0x10c/0x280 [ 2534.116861][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2534.121589][T12538] ___sys_recvmsg+0x289/0xb40 [ 2534.126335][T12538] ? __schedule+0x176c/0x21c0 [ 2534.131184][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2534.136349][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2534.142212][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2534.147378][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2534.153242][T12538] do_recvmmsg+0x7c9/0x1200 [ 2534.157810][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2534.162904][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2534.168199][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2534.173042][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2534.179615][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2534.184375][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2534.190977][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2534.196056][T12538] do_fast_syscall_32+0x33/0x70 [ 2534.200962][T12538] do_SYSENTER_32+0x1b/0x20 [ 2534.205599][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2534.211983][T12538] RIP: 0023:0xf7feb549 [ 2534.216160][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2534.236457][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2534.245096][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2534.253123][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2534.261136][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2534.269409][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2534.277412][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2534.285427][T12538] [ 2534.291869][T12538] Uninit was stored to memory at: [ 2534.296985][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2534.302705][T12538] get_compat_msghdr+0x10c/0x280 [ 2534.307699][T12538] ___sys_recvmsg+0x289/0xb40 [ 2534.312569][T12538] do_recvmmsg+0x7c9/0x1200 [ 2534.317229][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2534.322100][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2534.328493][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2534.333703][T12538] do_fast_syscall_32+0x33/0x70 [ 2534.338603][T12538] do_SYSENTER_32+0x1b/0x20 [ 2534.343300][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2534.349681][T12538] [ 2534.352139][T12538] Uninit was stored to memory at: [ 2534.357282][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2534.362575][T12538] get_compat_msghdr+0x10c/0x280 [ 2534.367584][T12538] ___sys_recvmsg+0x289/0xb40 [ 2534.372481][T12538] do_recvmmsg+0x7c9/0x1200 [ 2534.377039][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2534.381890][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2534.388283][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2534.393550][T12538] do_fast_syscall_32+0x33/0x70 [ 2534.398462][T12538] do_SYSENTER_32+0x1b/0x20 [ 2534.403226][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2534.409611][T12538] [ 2534.412120][T12538] Uninit was stored to memory at: [ 2534.417213][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2534.422557][T12538] get_compat_msghdr+0x10c/0x280 [ 2534.427541][T12538] ___sys_recvmsg+0x289/0xb40 [ 2534.432403][T12538] do_recvmmsg+0x7c9/0x1200 [ 2534.436958][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2534.441853][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2534.448243][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2534.453495][T12538] do_fast_syscall_32+0x33/0x70 [ 2534.458392][T12538] do_SYSENTER_32+0x1b/0x20 [ 2534.463131][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2534.469512][T12538] [ 2534.472033][T12538] Uninit was stored to memory at: [ 2534.477125][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2534.482412][T12538] get_compat_msghdr+0x10c/0x280 [ 2534.487400][T12538] ___sys_recvmsg+0x289/0xb40 [ 2534.492323][T12538] do_recvmmsg+0x7c9/0x1200 [ 2534.496880][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2534.501736][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2534.508147][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2534.513361][T12538] do_fast_syscall_32+0x33/0x70 [ 2534.518264][T12538] do_SYSENTER_32+0x1b/0x20 [ 2534.522983][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2534.529357][T12538] [ 2534.531812][T12538] Uninit was stored to memory at: [ 2534.536904][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2534.542303][T12538] get_compat_msghdr+0x10c/0x280 [ 2534.547296][T12538] ___sys_recvmsg+0x289/0xb40 [ 2534.552229][T12538] do_recvmmsg+0x7c9/0x1200 [ 2534.556792][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2534.561532][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2534.568174][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2534.573500][T12538] do_fast_syscall_32+0x33/0x70 [ 2534.578402][T12538] do_SYSENTER_32+0x1b/0x20 [ 2534.583145][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2534.589537][T12538] [ 2534.592053][T12538] Uninit was stored to memory at: [ 2534.597149][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2534.602438][T12538] get_compat_msghdr+0x10c/0x280 [ 2534.607426][T12538] ___sys_recvmsg+0x289/0xb40 [ 2534.612470][T12538] do_recvmmsg+0x7c9/0x1200 [ 2534.617040][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2534.621904][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2534.628307][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2534.633516][T12538] do_fast_syscall_32+0x33/0x70 [ 2534.638414][T12538] do_SYSENTER_32+0x1b/0x20 [ 2534.643077][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2534.649465][T12538] [ 2534.652120][T12538] Uninit was stored to memory at: [ 2534.657227][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2534.662596][T12538] get_compat_msghdr+0x10c/0x280 [ 2534.667593][T12538] ___sys_recvmsg+0x289/0xb40 [ 2534.672538][T12538] do_recvmmsg+0x7c9/0x1200 [ 2534.677104][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2534.682027][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2534.688429][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2534.693971][T12538] do_fast_syscall_32+0x33/0x70 [ 2534.698866][T12538] do_SYSENTER_32+0x1b/0x20 [ 2534.703521][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2534.710000][T12538] [ 2534.712459][T12538] Local variable msg_sys created at: [ 2534.717745][T12538] do_recvmmsg+0xc9/0x1200 [ 2534.722760][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2534.974579][T12538] not chained 800000 origins [ 2534.979301][T12538] CPU: 0 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2534.989504][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2534.999684][T12538] Call Trace: [ 2535.002984][T12538] [ 2535.005918][T12538] dump_stack_lvl+0x200/0x28c [ 2535.010622][T12538] dump_stack+0x29/0x2c [ 2535.014892][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2535.020759][T12538] ? preempt_count_sub+0xfc/0x340 [ 2535.025862][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2535.031076][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2535.036221][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2535.041391][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2535.047255][T12538] ? should_fail+0x79/0x9c0 [ 2535.051899][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2535.057057][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2535.063356][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2535.069479][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2535.074620][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2535.080480][T12538] __msan_chain_origin+0xbd/0x140 [ 2535.085531][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2535.090683][T12538] get_compat_msghdr+0x10c/0x280 [ 2535.095653][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2535.100381][T12538] ___sys_recvmsg+0x289/0xb40 [ 2535.105194][T12538] ? __schedule+0x176c/0x21c0 [ 2535.109918][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2535.115361][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2535.121223][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2535.126365][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2535.132208][T12538] do_recvmmsg+0x7c9/0x1200 [ 2535.136768][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2535.141879][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2535.147051][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2535.151847][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2535.158421][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2535.163146][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2535.169622][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2535.174693][T12538] do_fast_syscall_32+0x33/0x70 [ 2535.179607][T12538] do_SYSENTER_32+0x1b/0x20 [ 2535.184143][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2535.190514][T12538] RIP: 0023:0xf7feb549 [ 2535.194676][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2535.214940][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2535.223399][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2535.231489][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2535.239480][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2535.247569][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2535.255583][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2535.263599][T12538] [ 2535.271116][T12538] Uninit was stored to memory at: [ 2535.276886][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2535.282172][T12538] get_compat_msghdr+0x10c/0x280 [ 2535.287433][T12538] ___sys_recvmsg+0x289/0xb40 [ 2535.292271][T12538] do_recvmmsg+0x7c9/0x1200 [ 2535.296877][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2535.301705][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2535.309315][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2535.314586][T12538] do_fast_syscall_32+0x33/0x70 [ 2535.319517][T12538] do_SYSENTER_32+0x1b/0x20 [ 2535.324354][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2535.330741][T12538] [ 2535.333249][T12538] Uninit was stored to memory at: [ 2535.338424][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2535.343734][T12538] get_compat_msghdr+0x10c/0x280 [ 2535.348730][T12538] ___sys_recvmsg+0x289/0xb40 [ 2535.353633][T12538] do_recvmmsg+0x7c9/0x1200 [ 2535.358225][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2535.363195][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2535.369792][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2535.375045][T12538] do_fast_syscall_32+0x33/0x70 [ 2535.379948][T12538] do_SYSENTER_32+0x1b/0x20 [ 2535.384652][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2535.391032][T12538] [ 2535.393522][T12538] Uninit was stored to memory at: [ 2535.398604][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2535.404039][T12538] get_compat_msghdr+0x10c/0x280 [ 2535.409027][T12538] ___sys_recvmsg+0x289/0xb40 [ 2535.413937][T12538] do_recvmmsg+0x7c9/0x1200 [ 2535.418489][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2535.423362][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2535.429747][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2535.434976][T12538] do_fast_syscall_32+0x33/0x70 [ 2535.439891][T12538] do_SYSENTER_32+0x1b/0x20 [ 2535.444580][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2535.451213][T12538] [ 2535.453691][T12538] Uninit was stored to memory at: [ 2535.458781][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2535.464084][T12538] get_compat_msghdr+0x10c/0x280 [ 2535.469066][T12538] ___sys_recvmsg+0x289/0xb40 [ 2535.473937][T12538] do_recvmmsg+0x7c9/0x1200 [ 2535.478487][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2535.483350][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2535.489750][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2535.494982][T12538] do_fast_syscall_32+0x33/0x70 [ 2535.499879][T12538] do_SYSENTER_32+0x1b/0x20 [ 2535.504602][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2535.510981][T12538] [ 2535.513464][T12538] Uninit was stored to memory at: [ 2535.518561][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2535.523881][T12538] get_compat_msghdr+0x10c/0x280 [ 2535.528869][T12538] ___sys_recvmsg+0x289/0xb40 [ 2535.533783][T12538] do_recvmmsg+0x7c9/0x1200 [ 2535.538344][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2535.543158][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2535.549548][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2535.554781][T12538] do_fast_syscall_32+0x33/0x70 [ 2535.559684][T12538] do_SYSENTER_32+0x1b/0x20 [ 2535.564377][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2535.570760][T12538] [ 2535.573278][T12538] Uninit was stored to memory at: [ 2535.578469][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2535.583793][T12538] get_compat_msghdr+0x10c/0x280 [ 2535.588874][T12538] ___sys_recvmsg+0x289/0xb40 [ 2535.593775][T12538] do_recvmmsg+0x7c9/0x1200 [ 2535.598339][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2535.603234][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2535.609624][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2535.614866][T12538] do_fast_syscall_32+0x33/0x70 [ 2535.619762][T12538] do_SYSENTER_32+0x1b/0x20 [ 2535.624450][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2535.630825][T12538] [ 2535.633317][T12538] Uninit was stored to memory at: [ 2535.638400][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2535.643697][T12538] get_compat_msghdr+0x10c/0x280 [ 2535.648685][T12538] ___sys_recvmsg+0x289/0xb40 [ 2535.653644][T12538] do_recvmmsg+0x7c9/0x1200 [ 2535.658196][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2535.663197][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2535.669590][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2535.674816][T12538] do_fast_syscall_32+0x33/0x70 [ 2535.679736][T12538] do_SYSENTER_32+0x1b/0x20 [ 2535.684545][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2535.690961][T12538] [ 2535.693453][T12538] Local variable msg_sys created at: [ 2535.698743][T12538] do_recvmmsg+0xc9/0x1200 [ 2535.703354][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2535.841306][T12538] not chained 810000 origins [ 2535.846118][T12538] CPU: 0 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2535.856351][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2535.866436][T12538] Call Trace: [ 2535.869737][T12538] [ 2535.872715][T12538] dump_stack_lvl+0x200/0x28c [ 2535.877449][T12538] dump_stack+0x29/0x2c [ 2535.881625][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2535.887399][T12538] ? preempt_count_sub+0xfc/0x340 [ 2535.892474][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2535.897722][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2535.902884][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2535.908057][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2535.913935][T12538] ? should_fail+0x79/0x9c0 [ 2535.918609][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2535.923763][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2535.930118][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2535.936223][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2535.941365][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2535.947294][T12538] __msan_chain_origin+0xbd/0x140 [ 2535.952374][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2535.957556][T12538] get_compat_msghdr+0x10c/0x280 [ 2535.962550][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2535.967294][T12538] ___sys_recvmsg+0x289/0xb40 [ 2535.972035][T12538] ? __schedule+0x176c/0x21c0 [ 2535.976765][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2535.981904][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2535.987766][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2535.993039][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2535.998914][T12538] do_recvmmsg+0x7c9/0x1200 [ 2536.003463][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2536.008550][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2536.013704][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2536.018506][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2536.025051][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2536.029810][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2536.036233][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2536.041312][T12538] do_fast_syscall_32+0x33/0x70 [ 2536.046197][T12538] do_SYSENTER_32+0x1b/0x20 [ 2536.050724][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2536.057092][T12538] RIP: 0023:0xf7feb549 [ 2536.061286][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2536.080947][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2536.089385][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2536.097384][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2536.105383][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2536.113487][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2536.121496][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2536.129504][T12538] [ 2536.136052][T12538] Uninit was stored to memory at: [ 2536.141156][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2536.147066][T12538] get_compat_msghdr+0x10c/0x280 [ 2536.152177][T12538] ___sys_recvmsg+0x289/0xb40 [ 2536.156910][T12538] do_recvmmsg+0x7c9/0x1200 [ 2536.161490][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2536.166333][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2536.172905][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2536.178003][T12538] do_fast_syscall_32+0x33/0x70 [ 2536.183207][T12538] do_SYSENTER_32+0x1b/0x20 [ 2536.187763][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2536.194362][T12538] [ 2536.196718][T12538] Uninit was stored to memory at: [ 2536.201992][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2536.202052][T12538] get_compat_msghdr+0x10c/0x280 [ 2536.202106][T12538] ___sys_recvmsg+0x289/0xb40 [ 2536.216981][T12538] do_recvmmsg+0x7c9/0x1200 [ 2536.221537][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2536.226415][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2536.232948][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2536.238024][T12538] do_fast_syscall_32+0x33/0x70 [ 2536.243074][T12538] do_SYSENTER_32+0x1b/0x20 [ 2536.247617][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2536.254135][T12538] [ 2536.256476][T12538] Uninit was stored to memory at: [ 2536.261707][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2536.266874][T12538] get_compat_msghdr+0x10c/0x280 [ 2536.272019][T12538] ___sys_recvmsg+0x289/0xb40 [ 2536.276938][T12538] do_recvmmsg+0x7c9/0x1200 [ 2536.281491][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2536.286392][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2536.292923][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2536.298004][T12538] do_fast_syscall_32+0x33/0x70 [ 2536.303059][T12538] do_SYSENTER_32+0x1b/0x20 [ 2536.307638][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2536.314164][T12538] [ 2536.316500][T12538] Uninit was stored to memory at: [ 2536.321752][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2536.326944][T12538] get_compat_msghdr+0x10c/0x280 [ 2536.332090][T12538] ___sys_recvmsg+0x289/0xb40 [ 2536.336819][T12538] do_recvmmsg+0x7c9/0x1200 [ 2536.341376][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2536.346250][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2536.352740][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2536.357817][T12538] do_fast_syscall_32+0x33/0x70 [ 2536.362887][T12538] do_SYSENTER_32+0x1b/0x20 [ 2536.367469][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2536.373998][T12538] [ 2536.376332][T12538] Uninit was stored to memory at: [ 2536.381410][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2536.386713][T12538] get_compat_msghdr+0x10c/0x280 [ 2536.391792][T12538] ___sys_recvmsg+0x289/0xb40 [ 2536.396529][T12538] do_recvmmsg+0x7c9/0x1200 [ 2536.401079][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2536.405958][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2536.412545][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2536.417618][T12538] do_fast_syscall_32+0x33/0x70 [ 2536.422649][T12538] do_SYSENTER_32+0x1b/0x20 [ 2536.427197][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2536.433743][T12538] [ 2536.436079][T12538] Uninit was stored to memory at: [ 2536.441246][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2536.446651][T12538] get_compat_msghdr+0x10c/0x280 [ 2536.451732][T12538] ___sys_recvmsg+0x289/0xb40 [ 2536.456462][T12538] do_recvmmsg+0x7c9/0x1200 [ 2536.460993][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2536.465864][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2536.472359][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2536.477428][T12538] do_fast_syscall_32+0x33/0x70 [ 2536.482454][T12538] do_SYSENTER_32+0x1b/0x20 [ 2536.487008][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2536.493562][T12538] [ 2536.495895][T12538] Uninit was stored to memory at: [ 2536.500971][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2536.506265][T12538] get_compat_msghdr+0x10c/0x280 [ 2536.511362][T12538] ___sys_recvmsg+0x289/0xb40 [ 2536.516200][T12538] do_recvmmsg+0x7c9/0x1200 [ 2536.520755][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2536.525644][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2536.532127][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2536.537375][T12538] do_fast_syscall_32+0x33/0x70 [ 2536.542439][T12538] do_SYSENTER_32+0x1b/0x20 [ 2536.546988][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2536.553543][T12538] [ 2536.555884][T12538] Local variable msg_sys created at: [ 2536.561237][T12538] do_recvmmsg+0xc9/0x1200 [ 2536.565886][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2536.713057][T12538] not chained 820000 origins [ 2536.717693][T12538] CPU: 1 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2536.727931][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2536.738002][T12538] Call Trace: [ 2536.741311][T12538] [ 2536.744243][T12538] dump_stack_lvl+0x200/0x28c [ 2536.748950][T12538] dump_stack+0x29/0x2c [ 2536.753124][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2536.758978][T12538] ? preempt_count_sub+0xfc/0x340 [ 2536.764032][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2536.769280][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2536.774451][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2536.779598][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2536.785470][T12538] ? should_fail+0x79/0x9c0 [ 2536.789999][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2536.795152][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2536.801428][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2536.807545][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2536.812694][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2536.818567][T12538] __msan_chain_origin+0xbd/0x140 [ 2536.823642][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2536.828825][T12538] get_compat_msghdr+0x10c/0x280 [ 2536.833828][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2536.838536][T12538] ___sys_recvmsg+0x289/0xb40 [ 2536.843247][T12538] ? __schedule+0x176c/0x21c0 [ 2536.847950][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2536.853091][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2536.858941][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2536.864094][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2536.869967][T12538] do_recvmmsg+0x7c9/0x1200 [ 2536.874526][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2536.879598][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2536.884768][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2536.889566][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2536.896103][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2536.900821][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2536.907193][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2536.912248][T12538] do_fast_syscall_32+0x33/0x70 [ 2536.917146][T12538] do_SYSENTER_32+0x1b/0x20 [ 2536.921691][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2536.928069][T12538] RIP: 0023:0xf7feb549 [ 2536.932146][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2536.951948][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2536.960379][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2536.968368][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2536.976368][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2536.984368][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2536.992385][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2537.000396][T12538] [ 2537.008050][T12538] Uninit was stored to memory at: [ 2537.014158][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2537.019327][T12538] get_compat_msghdr+0x10c/0x280 [ 2537.024445][T12538] ___sys_recvmsg+0x289/0xb40 [ 2537.029352][T12538] do_recvmmsg+0x7c9/0x1200 [ 2537.034038][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2537.038769][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2537.045297][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2537.050370][T12538] do_fast_syscall_32+0x33/0x70 [ 2537.055419][T12538] do_SYSENTER_32+0x1b/0x20 [ 2537.059984][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2537.066483][T12538] [ 2537.068822][T12538] Uninit was stored to memory at: [ 2537.074076][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2537.079239][T12538] get_compat_msghdr+0x10c/0x280 [ 2537.084416][T12538] ___sys_recvmsg+0x289/0xb40 [ 2537.089143][T12538] do_recvmmsg+0x7c9/0x1200 [ 2537.093913][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2537.098639][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2537.105225][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2537.110298][T12538] do_fast_syscall_32+0x33/0x70 [ 2537.115341][T12538] do_SYSENTER_32+0x1b/0x20 [ 2537.119885][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2537.126386][T12538] [ 2537.128714][T12538] Uninit was stored to memory at: [ 2537.133966][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2537.139125][T12538] get_compat_msghdr+0x10c/0x280 [ 2537.144282][T12538] ___sys_recvmsg+0x289/0xb40 [ 2537.149025][T12538] do_recvmmsg+0x7c9/0x1200 [ 2537.153722][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2537.158465][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2537.165022][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2537.170102][T12538] do_fast_syscall_32+0x33/0x70 [ 2537.175191][T12538] do_SYSENTER_32+0x1b/0x20 [ 2537.179736][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2537.186274][T12538] [ 2537.188618][T12538] Uninit was stored to memory at: [ 2537.193892][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2537.199050][T12538] get_compat_msghdr+0x10c/0x280 [ 2537.204207][T12538] ___sys_recvmsg+0x289/0xb40 [ 2537.208935][T12538] do_recvmmsg+0x7c9/0x1200 [ 2537.213694][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2537.218857][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2537.225413][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2537.230572][T12538] do_fast_syscall_32+0x33/0x70 [ 2537.235648][T12538] do_SYSENTER_32+0x1b/0x20 [ 2537.240200][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2537.246707][T12538] [ 2537.249037][T12538] Uninit was stored to memory at: [ 2537.254284][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2537.259454][T12538] get_compat_msghdr+0x10c/0x280 [ 2537.264628][T12538] ___sys_recvmsg+0x289/0xb40 [ 2537.269352][T12538] do_recvmmsg+0x7c9/0x1200 [ 2537.274024][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2537.278858][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2537.285417][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2537.290488][T12538] do_fast_syscall_32+0x33/0x70 [ 2537.295587][T12538] do_SYSENTER_32+0x1b/0x20 [ 2537.300221][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2537.306735][T12538] [ 2537.309076][T12538] Uninit was stored to memory at: [ 2537.314326][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2537.319485][T12538] get_compat_msghdr+0x10c/0x280 [ 2537.324664][T12538] ___sys_recvmsg+0x289/0xb40 [ 2537.329395][T12538] do_recvmmsg+0x7c9/0x1200 [ 2537.334134][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2537.338862][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2537.345384][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2537.350453][T12538] do_fast_syscall_32+0x33/0x70 [ 2537.355520][T12538] do_SYSENTER_32+0x1b/0x20 [ 2537.360127][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2537.366674][T12538] [ 2537.369004][T12538] Uninit was stored to memory at: [ 2537.374335][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2537.379488][T12538] get_compat_msghdr+0x10c/0x280 [ 2537.384654][T12538] ___sys_recvmsg+0x289/0xb40 [ 2537.389382][T12538] do_recvmmsg+0x7c9/0x1200 [ 2537.394096][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2537.398825][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2537.405407][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2537.410590][T12538] do_fast_syscall_32+0x33/0x70 [ 2537.415617][T12538] do_SYSENTER_32+0x1b/0x20 [ 2537.420161][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2537.426727][T12538] [ 2537.429062][T12538] Local variable msg_sys created at: [ 2537.434598][T12538] do_recvmmsg+0xc9/0x1200 [ 2537.439058][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2537.605857][T12538] not chained 830000 origins [ 2537.610472][T12538] CPU: 0 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2537.620641][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2537.630807][T12538] Call Trace: [ 2537.634096][T12538] [ 2537.637027][T12538] dump_stack_lvl+0x200/0x28c [ 2537.641736][T12538] dump_stack+0x29/0x2c [ 2537.645923][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2537.651940][T12538] ? preempt_count_sub+0xfc/0x340 [ 2537.652001][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2537.652050][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2537.652118][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2537.672522][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2537.678411][T12538] ? should_fail+0x79/0x9c0 [ 2537.682934][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2537.688099][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2537.694373][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2537.700477][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2537.707294][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2537.713165][T12538] __msan_chain_origin+0xbd/0x140 [ 2537.718240][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2537.723403][T12538] get_compat_msghdr+0x10c/0x280 [ 2537.728388][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2537.733096][T12538] ___sys_recvmsg+0x289/0xb40 [ 2537.737840][T12538] ? __schedule+0x176c/0x21c0 [ 2537.742550][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2537.747722][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2537.753561][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2537.758704][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2537.764551][T12538] do_recvmmsg+0x7c9/0x1200 [ 2537.769131][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2537.774226][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2537.779394][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2537.784189][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2537.790748][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2537.795461][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2537.802648][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2537.807739][T12538] do_fast_syscall_32+0x33/0x70 [ 2537.812633][T12538] do_SYSENTER_32+0x1b/0x20 [ 2537.817199][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2537.824610][T12538] RIP: 0023:0xf7feb549 [ 2537.828745][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2537.848490][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2537.856930][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2537.864925][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2537.872942][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2537.880952][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2537.888947][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2537.896965][T12538] [ 2537.906244][T12538] Uninit was stored to memory at: [ 2537.911378][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2537.917762][T12538] get_compat_msghdr+0x10c/0x280 [ 2537.922860][T12538] ___sys_recvmsg+0x289/0xb40 [ 2537.927693][T12538] do_recvmmsg+0x7c9/0x1200 [ 2537.932534][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2537.937281][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2537.943783][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2537.948941][T12538] do_fast_syscall_32+0x33/0x70 [ 2537.953995][T12538] do_SYSENTER_32+0x1b/0x20 [ 2537.958547][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2537.965060][T12538] [ 2537.967396][T12538] Uninit was stored to memory at: [ 2537.972655][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2537.977829][T12538] get_compat_msghdr+0x10c/0x280 [ 2537.982986][T12538] ___sys_recvmsg+0x289/0xb40 [ 2537.987715][T12538] do_recvmmsg+0x7c9/0x1200 [ 2537.992413][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2537.997161][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2538.003652][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2538.008769][T12538] do_fast_syscall_32+0x33/0x70 [ 2538.013930][T12538] do_SYSENTER_32+0x1b/0x20 [ 2538.018483][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2538.025018][T12538] [ 2538.027350][T12538] Uninit was stored to memory at: [ 2538.032652][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2538.037823][T12538] get_compat_msghdr+0x10c/0x280 [ 2538.042952][T12538] ___sys_recvmsg+0x289/0xb40 [ 2538.047737][T12538] do_recvmmsg+0x7c9/0x1200 [ 2538.052452][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2538.057192][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2538.063736][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2538.068807][T12538] do_fast_syscall_32+0x33/0x70 [ 2538.073869][T12538] do_SYSENTER_32+0x1b/0x20 [ 2538.078414][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2538.084959][T12538] [ 2538.087378][T12538] Uninit was stored to memory at: [ 2538.092724][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2538.097886][T12538] get_compat_msghdr+0x10c/0x280 [ 2538.103012][T12538] ___sys_recvmsg+0x289/0xb40 [ 2538.107736][T12538] do_recvmmsg+0x7c9/0x1200 [ 2538.112381][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2538.117112][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2538.123717][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2538.128906][T12538] do_fast_syscall_32+0x33/0x70 [ 2538.133974][T12538] do_SYSENTER_32+0x1b/0x20 [ 2538.138531][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2538.145052][T12538] [ 2538.147405][T12538] Uninit was stored to memory at: [ 2538.152663][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2538.157834][T12538] get_compat_msghdr+0x10c/0x280 [ 2538.162994][T12538] ___sys_recvmsg+0x289/0xb40 [ 2538.167721][T12538] do_recvmmsg+0x7c9/0x1200 [ 2538.172416][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2538.177157][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2538.183733][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2538.188813][T12538] do_fast_syscall_32+0x33/0x70 [ 2538.193881][T12538] do_SYSENTER_32+0x1b/0x20 [ 2538.198433][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2538.204936][T12538] [ 2538.207267][T12538] Uninit was stored to memory at: [ 2538.212496][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2538.217654][T12538] get_compat_msghdr+0x10c/0x280 [ 2538.222738][T12538] ___sys_recvmsg+0x289/0xb40 [ 2538.227466][T12538] do_recvmmsg+0x7c9/0x1200 [ 2538.232114][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2538.236840][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2538.243338][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2538.248406][T12538] do_fast_syscall_32+0x33/0x70 [ 2538.253441][T12538] do_SYSENTER_32+0x1b/0x20 [ 2538.257983][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2538.264499][T12538] [ 2538.266830][T12538] Uninit was stored to memory at: [ 2538.272064][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2538.277223][T12538] get_compat_msghdr+0x10c/0x280 [ 2538.282368][T12538] ___sys_recvmsg+0x289/0xb40 [ 2538.287098][T12538] do_recvmmsg+0x7c9/0x1200 [ 2538.291781][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2538.296511][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2538.303063][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2538.308148][T12538] do_fast_syscall_32+0x33/0x70 [ 2538.313166][T12538] do_SYSENTER_32+0x1b/0x20 [ 2538.317715][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2538.324262][T12538] [ 2538.326600][T12538] Local variable msg_sys created at: [ 2538.332040][T12538] do_recvmmsg+0xc9/0x1200 [ 2538.336506][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2538.468855][T12538] not chained 840000 origins [ 2538.473708][T12538] CPU: 0 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2538.483995][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2538.494076][T12538] Call Trace: [ 2538.497372][T12538] [ 2538.500316][T12538] dump_stack_lvl+0x200/0x28c [ 2538.505073][T12538] dump_stack+0x29/0x2c [ 2538.509289][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2538.515065][T12538] ? preempt_count_sub+0xfc/0x340 [ 2538.520143][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2538.525382][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2538.530555][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2538.535719][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2538.541585][T12538] ? should_fail+0x79/0x9c0 [ 2538.546117][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2538.551254][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2538.557530][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2538.563653][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2538.568819][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2538.574663][T12538] __msan_chain_origin+0xbd/0x140 [ 2538.579805][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2538.584996][T12538] get_compat_msghdr+0x10c/0x280 [ 2538.589994][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2538.594803][T12538] ___sys_recvmsg+0x289/0xb40 [ 2538.599543][T12538] ? __schedule+0x176c/0x21c0 [ 2538.604256][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2538.609439][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2538.615283][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2538.620452][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2538.626324][T12538] do_recvmmsg+0x7c9/0x1200 [ 2538.630886][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2538.635952][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2538.641098][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2538.645891][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2538.652470][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2538.657208][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2538.663587][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2538.668670][T12538] do_fast_syscall_32+0x33/0x70 [ 2538.673568][T12538] do_SYSENTER_32+0x1b/0x20 [ 2538.678108][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2538.684480][T12538] RIP: 0023:0xf7feb549 [ 2538.688566][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2538.708199][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2538.716659][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2538.724674][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2538.732966][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2538.740992][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2538.748983][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2538.757038][T12538] [ 2538.763586][T12538] Uninit was stored to memory at: [ 2538.769178][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2538.774461][T12538] get_compat_msghdr+0x10c/0x280 [ 2538.779460][T12538] ___sys_recvmsg+0x289/0xb40 [ 2538.784309][T12538] do_recvmmsg+0x7c9/0x1200 [ 2538.788868][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2538.793711][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2538.800101][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2538.805358][T12538] do_fast_syscall_32+0x33/0x70 [ 2538.810265][T12538] do_SYSENTER_32+0x1b/0x20 [ 2538.814927][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2538.821303][T12538] [ 2538.823821][T12538] Uninit was stored to memory at: [ 2538.828918][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2538.834248][T12538] get_compat_msghdr+0x10c/0x280 [ 2538.839238][T12538] ___sys_recvmsg+0x289/0xb40 [ 2538.844104][T12538] do_recvmmsg+0x7c9/0x1200 [ 2538.848656][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2538.853530][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2538.859912][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2538.865126][T12538] do_fast_syscall_32+0x33/0x70 [ 2538.870210][T12538] do_SYSENTER_32+0x1b/0x20 [ 2538.875010][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2538.881490][T12538] [ 2538.883971][T12538] Uninit was stored to memory at: [ 2538.889101][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2538.894427][T12538] get_compat_msghdr+0x10c/0x280 [ 2538.899417][T12538] ___sys_recvmsg+0x289/0xb40 [ 2538.904298][T12538] do_recvmmsg+0x7c9/0x1200 [ 2538.908851][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2538.913735][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2538.920140][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2538.925307][T12538] do_fast_syscall_32+0x33/0x70 [ 2538.930554][T12538] do_SYSENTER_32+0x1b/0x20 [ 2538.935267][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2538.941762][T12538] [ 2538.944096][T12538] Uninit was stored to memory at: [ 2538.949172][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2538.954477][T12538] get_compat_msghdr+0x10c/0x280 [ 2538.959465][T12538] ___sys_recvmsg+0x289/0xb40 [ 2538.964359][T12538] do_recvmmsg+0x7c9/0x1200 [ 2538.968914][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2538.973795][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2538.980249][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2538.985441][T12538] do_fast_syscall_32+0x33/0x70 [ 2538.990356][T12538] do_SYSENTER_32+0x1b/0x20 [ 2538.995074][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2539.001465][T12538] [ 2539.003967][T12538] Uninit was stored to memory at: [ 2539.009066][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2539.014422][T12538] get_compat_msghdr+0x10c/0x280 [ 2539.019414][T12538] ___sys_recvmsg+0x289/0xb40 [ 2539.024292][T12538] do_recvmmsg+0x7c9/0x1200 [ 2539.028849][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2539.033766][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2539.040164][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2539.045392][T12538] do_fast_syscall_32+0x33/0x70 [ 2539.050377][T12538] do_SYSENTER_32+0x1b/0x20 [ 2539.055055][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2539.061452][T12538] [ 2539.063938][T12538] Uninit was stored to memory at: [ 2539.069038][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2539.074382][T12538] get_compat_msghdr+0x10c/0x280 [ 2539.079379][T12538] ___sys_recvmsg+0x289/0xb40 [ 2539.084364][T12538] do_recvmmsg+0x7c9/0x1200 [ 2539.088930][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2539.093847][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2539.100329][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2539.105565][T12538] do_fast_syscall_32+0x33/0x70 [ 2539.110464][T12538] do_SYSENTER_32+0x1b/0x20 [ 2539.115188][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2539.121754][T12538] [ 2539.124089][T12538] Uninit was stored to memory at: [ 2539.129164][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2539.134483][T12538] get_compat_msghdr+0x10c/0x280 [ 2539.139647][T12538] ___sys_recvmsg+0x289/0xb40 [ 2539.144555][T12538] do_recvmmsg+0x7c9/0x1200 [ 2539.149375][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2539.154352][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2539.160962][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2539.166192][T12538] do_fast_syscall_32+0x33/0x70 [ 2539.171111][T12538] do_SYSENTER_32+0x1b/0x20 [ 2539.175773][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2539.182256][T12538] [ 2539.184589][T12538] Local variable msg_sys created at: [ 2539.189896][T12538] do_recvmmsg+0xc9/0x1200 [ 2539.194630][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2539.376965][T12538] not chained 850000 origins [ 2539.381961][T12538] CPU: 1 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2539.392248][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2539.402332][T12538] Call Trace: [ 2539.405717][T12538] [ 2539.408660][T12538] dump_stack_lvl+0x200/0x28c [ 2539.413653][T12538] dump_stack+0x29/0x2c [ 2539.417856][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2539.423632][T12538] ? preempt_count_sub+0xfc/0x340 [ 2539.428701][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2539.433936][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2539.439109][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2539.444274][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2539.450142][T12538] ? should_fail+0x79/0x9c0 [ 2539.455293][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2539.468790][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2539.475090][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2539.481215][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2539.486466][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2539.492354][T12538] __msan_chain_origin+0xbd/0x140 [ 2539.497431][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2539.502635][T12538] get_compat_msghdr+0x10c/0x280 [ 2539.507634][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2539.512365][T12538] ___sys_recvmsg+0x289/0xb40 [ 2539.517104][T12538] ? __schedule+0x176c/0x21c0 [ 2539.521832][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2539.526994][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2539.532864][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2539.538023][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2539.543887][T12538] do_recvmmsg+0x7c9/0x1200 [ 2539.548453][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2539.553554][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2539.558729][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2539.563544][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2539.570197][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2539.574969][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2539.581370][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2539.586459][T12538] do_fast_syscall_32+0x33/0x70 [ 2539.591496][T12538] do_SYSENTER_32+0x1b/0x20 [ 2539.596044][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2539.602424][T12538] RIP: 0023:0xf7feb549 [ 2539.606523][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2539.626989][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2539.635459][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2539.643468][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2539.651590][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2539.659597][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2539.667626][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2539.675650][T12538] [ 2539.681950][T12538] Uninit was stored to memory at: [ 2539.687064][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2539.692800][T12538] get_compat_msghdr+0x10c/0x280 [ 2539.697818][T12538] ___sys_recvmsg+0x289/0xb40 [ 2539.702685][T12538] do_recvmmsg+0x7c9/0x1200 [ 2539.707241][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2539.712099][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2539.718491][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2539.723710][T12538] do_fast_syscall_32+0x33/0x70 [ 2539.728602][T12538] do_SYSENTER_32+0x1b/0x20 [ 2539.733281][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2539.739657][T12538] [ 2539.742155][T12538] Uninit was stored to memory at: [ 2539.747269][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2539.752573][T12538] get_compat_msghdr+0x10c/0x280 [ 2539.757565][T12538] ___sys_recvmsg+0x289/0xb40 [ 2539.762416][T12538] do_recvmmsg+0x7c9/0x1200 [ 2539.766963][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2539.771809][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2539.778197][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2539.783396][T12538] do_fast_syscall_32+0x33/0x70 [ 2539.788291][T12538] do_SYSENTER_32+0x1b/0x20 [ 2539.792953][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2539.799336][T12538] [ 2539.801810][T12538] Uninit was stored to memory at: [ 2539.806912][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2539.812206][T12538] get_compat_msghdr+0x10c/0x280 [ 2539.817300][T12538] ___sys_recvmsg+0x289/0xb40 [ 2539.822181][T12538] do_recvmmsg+0x7c9/0x1200 [ 2539.826738][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2539.831486][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2539.838008][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2539.843212][T12538] do_fast_syscall_32+0x33/0x70 [ 2539.848108][T12538] do_SYSENTER_32+0x1b/0x20 [ 2539.852861][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2539.859313][T12538] [ 2539.861909][T12538] Uninit was stored to memory at: [ 2539.867010][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2539.872382][T12538] get_compat_msghdr+0x10c/0x280 [ 2539.877476][T12538] ___sys_recvmsg+0x289/0xb40 [ 2539.882412][T12538] do_recvmmsg+0x7c9/0x1200 [ 2539.886969][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2539.891926][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2539.898318][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2539.903775][T12538] do_fast_syscall_32+0x33/0x70 [ 2539.908764][T12538] do_SYSENTER_32+0x1b/0x20 [ 2539.913447][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2539.919853][T12538] [ 2539.922375][T12538] Uninit was stored to memory at: [ 2539.927486][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2539.932872][T12538] get_compat_msghdr+0x10c/0x280 [ 2539.937859][T12538] ___sys_recvmsg+0x289/0xb40 [ 2539.942726][T12538] do_recvmmsg+0x7c9/0x1200 [ 2539.947283][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2539.952193][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2539.958585][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2539.964049][T12538] do_fast_syscall_32+0x33/0x70 [ 2539.968950][T12538] do_SYSENTER_32+0x1b/0x20 [ 2539.973694][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2539.980085][T12538] [ 2539.982616][T12538] Uninit was stored to memory at: [ 2539.987716][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2539.993085][T12538] get_compat_msghdr+0x10c/0x280 [ 2539.998075][T12538] ___sys_recvmsg+0x289/0xb40 [ 2540.003015][T12538] do_recvmmsg+0x7c9/0x1200 [ 2540.007585][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2540.012595][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2540.018994][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2540.024271][T12538] do_fast_syscall_32+0x33/0x70 [ 2540.029168][T12538] do_SYSENTER_32+0x1b/0x20 [ 2540.033990][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2540.040374][T12538] [ 2540.042904][T12538] Uninit was stored to memory at: [ 2540.047997][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2540.053272][T12538] get_compat_msghdr+0x10c/0x280 [ 2540.058261][T12538] ___sys_recvmsg+0x289/0xb40 [ 2540.063190][T12538] do_recvmmsg+0x7c9/0x1200 [ 2540.067927][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2540.072857][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2540.079241][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2540.084447][T12538] do_fast_syscall_32+0x33/0x70 [ 2540.089344][T12538] do_SYSENTER_32+0x1b/0x20 [ 2540.094073][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2540.100547][T12538] [ 2540.103076][T12538] Local variable msg_sys created at: [ 2540.108366][T12538] do_recvmmsg+0xc9/0x1200 [ 2540.113060][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2540.288620][T12538] not chained 860000 origins [ 2540.293414][T12538] CPU: 1 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2540.303614][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2540.313699][T12538] Call Trace: [ 2540.316997][T12538] [ 2540.319938][T12538] dump_stack_lvl+0x200/0x28c [ 2540.324669][T12538] dump_stack+0x29/0x2c [ 2540.328866][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2540.334642][T12538] ? preempt_count_sub+0xfc/0x340 [ 2540.339725][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2540.344959][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2540.350136][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2540.355305][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2540.361173][T12538] ? should_fail+0x79/0x9c0 [ 2540.365713][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2540.370877][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2540.377174][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2540.383300][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2540.388472][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2540.394332][T12538] __msan_chain_origin+0xbd/0x140 [ 2540.399407][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2540.404588][T12538] get_compat_msghdr+0x10c/0x280 [ 2540.409578][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2540.414318][T12538] ___sys_recvmsg+0x289/0xb40 [ 2540.419060][T12538] ? __schedule+0x176c/0x21c0 [ 2540.423790][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2540.429041][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2540.434900][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2540.440058][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2540.445920][T12538] do_recvmmsg+0x7c9/0x1200 [ 2540.450474][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2540.455564][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2540.460740][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2540.465563][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2540.472137][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2540.476899][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2540.483297][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2540.488374][T12538] do_fast_syscall_32+0x33/0x70 [ 2540.493270][T12538] do_SYSENTER_32+0x1b/0x20 [ 2540.497812][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2540.504213][T12538] RIP: 0023:0xf7feb549 [ 2540.508307][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2540.527971][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2540.536428][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2540.544429][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2540.552513][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2540.560540][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2540.568545][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2540.576660][T12538] [ 2540.582514][T12538] Uninit was stored to memory at: [ 2540.587640][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2540.593460][T12538] get_compat_msghdr+0x10c/0x280 [ 2540.598460][T12538] ___sys_recvmsg+0x289/0xb40 [ 2540.603335][T12538] do_recvmmsg+0x7c9/0x1200 [ 2540.607892][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2540.612750][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2540.619160][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2540.624435][T12538] do_fast_syscall_32+0x33/0x70 [ 2540.629329][T12538] do_SYSENTER_32+0x1b/0x20 [ 2540.634084][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2540.640461][T12538] [ 2540.643240][T12538] Uninit was stored to memory at: [ 2540.648336][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2540.653692][T12538] get_compat_msghdr+0x10c/0x280 [ 2540.658706][T12538] ___sys_recvmsg+0x289/0xb40 [ 2540.663629][T12538] do_recvmmsg+0x7c9/0x1200 [ 2540.668228][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2540.673141][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2540.679535][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2540.684840][T12538] do_fast_syscall_32+0x33/0x70 [ 2540.689739][T12538] do_SYSENTER_32+0x1b/0x20 [ 2540.694491][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2540.700878][T12538] [ 2540.703405][T12538] Uninit was stored to memory at: [ 2540.708501][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2540.713789][T12538] get_compat_msghdr+0x10c/0x280 [ 2540.718780][T12538] ___sys_recvmsg+0x289/0xb40 [ 2540.723688][T12538] do_recvmmsg+0x7c9/0x1200 [ 2540.728244][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2540.733164][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2540.740426][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2540.745695][T12538] do_fast_syscall_32+0x33/0x70 [ 2540.750603][T12538] do_SYSENTER_32+0x1b/0x20 [ 2540.755468][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2540.762009][T12538] [ 2540.764370][T12538] Uninit was stored to memory at: [ 2540.769458][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2540.774834][T12538] get_compat_msghdr+0x10c/0x280 [ 2540.779847][T12538] ___sys_recvmsg+0x289/0xb40 [ 2540.784787][T12538] do_recvmmsg+0x7c9/0x1200 [ 2540.789341][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2540.794275][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2540.800668][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2540.805949][T12538] do_fast_syscall_32+0x33/0x70 [ 2540.810851][T12538] do_SYSENTER_32+0x1b/0x20 [ 2540.815570][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2540.822079][T12538] [ 2540.824448][T12538] Uninit was stored to memory at: [ 2540.829534][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2540.834927][T12538] get_compat_msghdr+0x10c/0x280 [ 2540.840023][T12538] ___sys_recvmsg+0x289/0xb40 [ 2540.844943][T12538] do_recvmmsg+0x7c9/0x1200 [ 2540.849502][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2540.854422][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2540.860804][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2540.866071][T12538] do_fast_syscall_32+0x33/0x70 [ 2540.870969][T12538] do_SYSENTER_32+0x1b/0x20 [ 2540.875694][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2540.882183][T12538] [ 2540.884520][T12538] Uninit was stored to memory at: [ 2540.889620][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2540.895000][T12538] get_compat_msghdr+0x10c/0x280 [ 2540.899996][T12538] ___sys_recvmsg+0x289/0xb40 [ 2540.904928][T12538] do_recvmmsg+0x7c9/0x1200 [ 2540.909482][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2540.914420][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2540.920818][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2540.926106][T12538] do_fast_syscall_32+0x33/0x70 [ 2540.931015][T12538] do_SYSENTER_32+0x1b/0x20 [ 2540.935784][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2540.942386][T12538] [ 2540.944727][T12538] Uninit was stored to memory at: [ 2540.949809][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2540.955148][T12538] get_compat_msghdr+0x10c/0x280 [ 2540.960138][T12538] ___sys_recvmsg+0x289/0xb40 [ 2540.964997][T12538] do_recvmmsg+0x7c9/0x1200 [ 2540.969559][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2540.974461][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2540.980871][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2540.986154][T12538] do_fast_syscall_32+0x33/0x70 [ 2540.991061][T12538] do_SYSENTER_32+0x1b/0x20 [ 2540.995824][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2541.003272][T12538] [ 2541.005616][T12538] Local variable msg_sys created at: [ 2541.010896][T12538] do_recvmmsg+0xc9/0x1200 [ 2541.015550][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2541.267764][T12538] not chained 870000 origins [ 2541.272635][T12538] CPU: 0 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2541.283034][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2541.293164][T12538] Call Trace: [ 2541.296453][T12538] [ 2541.299514][T12538] dump_stack_lvl+0x200/0x28c [ 2541.304322][T12538] dump_stack+0x29/0x2c [ 2541.308508][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2541.314266][T12538] ? preempt_count_sub+0xfc/0x340 [ 2541.319336][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2541.324560][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2541.329709][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2541.334868][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2541.340740][T12538] ? should_fail+0x79/0x9c0 [ 2541.345304][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2541.350447][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2541.356719][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2541.362829][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2541.367972][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2541.373809][T12538] __msan_chain_origin+0xbd/0x140 [ 2541.378863][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2541.384023][T12538] get_compat_msghdr+0x10c/0x280 [ 2541.389016][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2541.393750][T12538] ___sys_recvmsg+0x289/0xb40 [ 2541.398505][T12538] ? __schedule+0x176c/0x21c0 [ 2541.403231][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2541.408379][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2541.414227][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2541.419374][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2541.425225][T12538] do_recvmmsg+0x7c9/0x1200 [ 2541.429759][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2541.434919][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2541.440090][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2541.444899][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2541.451438][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2541.456153][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2541.462535][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2541.467583][T12538] do_fast_syscall_32+0x33/0x70 [ 2541.472455][T12538] do_SYSENTER_32+0x1b/0x20 [ 2541.476975][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2541.483332][T12538] RIP: 0023:0xf7feb549 [ 2541.487421][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2541.507069][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2541.515503][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2541.523485][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2541.531462][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2541.539536][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2541.547544][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2541.555549][T12538] [ 2541.562284][T12538] Uninit was stored to memory at: [ 2541.567398][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2541.573218][T12538] get_compat_msghdr+0x10c/0x280 [ 2541.578218][T12538] ___sys_recvmsg+0x289/0xb40 [ 2541.583085][T12538] do_recvmmsg+0x7c9/0x1200 [ 2541.587649][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2541.592667][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2541.599070][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2541.604288][T12538] do_fast_syscall_32+0x33/0x70 [ 2541.609188][T12538] do_SYSENTER_32+0x1b/0x20 [ 2541.613866][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2541.620258][T12538] [ 2541.622784][T12538] Uninit was stored to memory at: [ 2541.627911][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2541.633166][T12538] get_compat_msghdr+0x10c/0x280 [ 2541.638156][T12538] ___sys_recvmsg+0x289/0xb40 [ 2541.643030][T12538] do_recvmmsg+0x7c9/0x1200 [ 2541.647584][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2541.652496][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2541.658883][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2541.664146][T12538] do_fast_syscall_32+0x33/0x70 [ 2541.669043][T12538] do_SYSENTER_32+0x1b/0x20 [ 2541.673721][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2541.680102][T12538] [ 2541.682646][T12538] Uninit was stored to memory at: [ 2541.687769][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2541.693101][T12538] get_compat_msghdr+0x10c/0x280 [ 2541.698093][T12538] ___sys_recvmsg+0x289/0xb40 [ 2541.703053][T12538] do_recvmmsg+0x7c9/0x1200 [ 2541.707703][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2541.712758][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2541.719355][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2541.724636][T12538] do_fast_syscall_32+0x33/0x70 [ 2541.729548][T12538] do_SYSENTER_32+0x1b/0x20 [ 2541.734234][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2541.740704][T12538] [ 2541.743222][T12538] Uninit was stored to memory at: [ 2541.748406][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2541.753803][T12538] get_compat_msghdr+0x10c/0x280 [ 2541.758811][T12538] ___sys_recvmsg+0x289/0xb40 [ 2541.763761][T12538] do_recvmmsg+0x7c9/0x1200 [ 2541.768324][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2541.773227][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2541.779798][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2541.785601][T12538] do_fast_syscall_32+0x33/0x70 [ 2541.790528][T12538] do_SYSENTER_32+0x1b/0x20 [ 2541.795243][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2541.801753][T12538] [ 2541.804087][T12538] Uninit was stored to memory at: [ 2541.809177][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2541.814624][T12538] get_compat_msghdr+0x10c/0x280 [ 2541.819714][T12538] ___sys_recvmsg+0x289/0xb40 [ 2541.824589][T12538] do_recvmmsg+0x7c9/0x1200 [ 2541.829142][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2541.834142][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2541.840534][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2541.845817][T12538] do_fast_syscall_32+0x33/0x70 [ 2541.850723][T12538] do_SYSENTER_32+0x1b/0x20 [ 2541.855400][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2541.862000][T12538] [ 2541.864356][T12538] Uninit was stored to memory at: [ 2541.869430][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2541.874722][T12538] get_compat_msghdr+0x10c/0x280 [ 2541.879712][T12538] ___sys_recvmsg+0x289/0xb40 [ 2541.884564][T12538] do_recvmmsg+0x7c9/0x1200 [ 2541.889135][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2541.894054][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2541.900444][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2541.905777][T12538] do_fast_syscall_32+0x33/0x70 [ 2541.910683][T12538] do_SYSENTER_32+0x1b/0x20 [ 2541.915382][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2541.921946][T12538] [ 2541.924283][T12538] Uninit was stored to memory at: [ 2541.929369][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2541.934733][T12538] get_compat_msghdr+0x10c/0x280 [ 2541.939721][T12538] ___sys_recvmsg+0x289/0xb40 [ 2541.944600][T12538] do_recvmmsg+0x7c9/0x1200 [ 2541.949157][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2541.954074][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2541.960469][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2541.965693][T12538] do_fast_syscall_32+0x33/0x70 [ 2541.970600][T12538] do_SYSENTER_32+0x1b/0x20 [ 2541.975260][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2541.981823][T12538] [ 2541.984179][T12538] Local variable msg_sys created at: [ 2541.989480][T12538] do_recvmmsg+0xc9/0x1200 [ 2541.994107][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2542.126846][T12538] not chained 880000 origins [ 2542.131793][T12538] CPU: 0 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2542.142182][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2542.152272][T12538] Call Trace: [ 2542.155560][T12538] [ 2542.158505][T12538] dump_stack_lvl+0x200/0x28c [ 2542.163212][T12538] dump_stack+0x29/0x2c [ 2542.167397][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2542.173163][T12538] ? preempt_count_sub+0xfc/0x340 [ 2542.178210][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2542.183426][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2542.188583][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2542.193725][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2542.199596][T12538] ? should_fail+0x79/0x9c0 [ 2542.204167][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2542.209501][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2542.215871][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2542.221995][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2542.227164][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2542.233004][T12538] __msan_chain_origin+0xbd/0x140 [ 2542.238056][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2542.243222][T12538] get_compat_msghdr+0x10c/0x280 [ 2542.248212][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2542.252944][T12538] ___sys_recvmsg+0x289/0xb40 [ 2542.257737][T12538] ? __schedule+0x176c/0x21c0 [ 2542.262451][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2542.267589][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2542.273425][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2542.278568][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2542.284458][T12538] do_recvmmsg+0x7c9/0x1200 [ 2542.288994][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2542.294063][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2542.299236][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2542.304048][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2542.310590][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2542.315310][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2542.321694][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2542.326781][T12538] do_fast_syscall_32+0x33/0x70 [ 2542.331844][T12538] do_SYSENTER_32+0x1b/0x20 [ 2542.336380][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2542.342737][T12538] RIP: 0023:0xf7feb549 [ 2542.346833][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2542.366929][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2542.375383][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2542.383450][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2542.391429][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2542.399414][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2542.407419][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2542.415428][T12538] [ 2542.421947][T12538] Uninit was stored to memory at: [ 2542.427061][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2542.436650][T12538] get_compat_msghdr+0x10c/0x280 [ 2542.441772][T12538] ___sys_recvmsg+0x289/0xb40 [ 2542.446510][T12538] do_recvmmsg+0x7c9/0x1200 [ 2542.451063][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2542.455932][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2542.462479][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2542.467549][T12538] do_fast_syscall_32+0x33/0x70 [ 2542.472604][T12538] do_SYSENTER_32+0x1b/0x20 [ 2542.477152][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2542.483676][T12538] [ 2542.486037][T12538] Uninit was stored to memory at: [ 2542.491118][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2542.496401][T12538] get_compat_msghdr+0x10c/0x280 [ 2542.501386][T12538] ___sys_recvmsg+0x289/0xb40 [ 2542.506293][T12538] do_recvmmsg+0x7c9/0x1200 [ 2542.510934][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2542.515851][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2542.518958][ T1196] ieee802154 phy0 wpan0: encryption failed: -22 [ 2542.522443][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2542.533879][T12538] do_fast_syscall_32+0x33/0x70 [ 2542.538783][T12538] do_SYSENTER_32+0x1b/0x20 [ 2542.543568][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2542.550041][T12538] [ 2542.552651][T12538] Uninit was stored to memory at: [ 2542.557756][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2542.563038][T12538] get_compat_msghdr+0x10c/0x280 [ 2542.568027][T12538] ___sys_recvmsg+0x289/0xb40 [ 2542.572958][T12538] do_recvmmsg+0x7c9/0x1200 [ 2542.577691][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2542.582642][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2542.589350][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2542.594548][T12538] do_fast_syscall_32+0x33/0x70 [ 2542.599458][T12538] do_SYSENTER_32+0x1b/0x20 [ 2542.604190][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2542.610582][T12538] [ 2542.613117][T12538] Uninit was stored to memory at: [ 2542.618232][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2542.623522][T12538] get_compat_msghdr+0x10c/0x280 [ 2542.628530][T12538] ___sys_recvmsg+0x289/0xb40 [ 2542.633453][T12538] do_recvmmsg+0x7c9/0x1200 [ 2542.638023][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2542.642949][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2542.649340][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2542.654580][T12538] do_fast_syscall_32+0x33/0x70 [ 2542.659475][T12538] do_SYSENTER_32+0x1b/0x20 [ 2542.664196][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2542.670577][T12538] [ 2542.673099][T12538] Uninit was stored to memory at: [ 2542.678178][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2542.683481][T12538] get_compat_msghdr+0x10c/0x280 [ 2542.688472][T12538] ___sys_recvmsg+0x289/0xb40 [ 2542.693375][T12538] do_recvmmsg+0x7c9/0x1200 [ 2542.697937][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2542.702892][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2542.709290][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2542.714558][T12538] do_fast_syscall_32+0x33/0x70 [ 2542.719453][T12538] do_SYSENTER_32+0x1b/0x20 [ 2542.724195][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2542.730570][T12538] [ 2542.733079][T12538] Uninit was stored to memory at: [ 2542.738162][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2542.743443][T12538] get_compat_msghdr+0x10c/0x280 [ 2542.748437][T12538] ___sys_recvmsg+0x289/0xb40 [ 2542.753341][T12538] do_recvmmsg+0x7c9/0x1200 [ 2542.757902][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2542.762823][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2542.769211][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2542.774464][T12538] do_fast_syscall_32+0x33/0x70 [ 2542.779370][T12538] do_SYSENTER_32+0x1b/0x20 [ 2542.784092][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2542.790615][T12538] [ 2542.793192][T12538] Uninit was stored to memory at: [ 2542.798291][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2542.803591][T12538] get_compat_msghdr+0x10c/0x280 [ 2542.808591][T12538] ___sys_recvmsg+0x289/0xb40 [ 2542.813521][T12538] do_recvmmsg+0x7c9/0x1200 [ 2542.818080][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2542.823004][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2542.829391][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2542.834590][T12538] do_fast_syscall_32+0x33/0x70 [ 2542.839492][T12538] do_SYSENTER_32+0x1b/0x20 [ 2542.844221][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2542.850606][T12538] [ 2542.853125][T12538] Local variable msg_sys created at: [ 2542.858421][T12538] do_recvmmsg+0xc9/0x1200 [ 2542.863087][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2542.987886][T12538] not chained 890000 origins [ 2542.992812][T12538] CPU: 1 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2543.003247][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2543.013551][T12538] Call Trace: [ 2543.016845][T12538] [ 2543.019913][T12538] dump_stack_lvl+0x200/0x28c [ 2543.024625][T12538] dump_stack+0x29/0x2c [ 2543.028818][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2543.034579][T12538] ? preempt_count_sub+0xfc/0x340 [ 2543.039648][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2543.044865][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2543.050006][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2543.055152][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2543.061012][T12538] ? should_fail+0x79/0x9c0 [ 2543.065529][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2543.070672][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2543.076961][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2543.083066][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2543.088223][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2543.094067][T12538] __msan_chain_origin+0xbd/0x140 [ 2543.099141][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2543.104311][T12538] get_compat_msghdr+0x10c/0x280 [ 2543.109283][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2543.113985][T12538] ___sys_recvmsg+0x289/0xb40 [ 2543.118694][T12538] ? __schedule+0x176c/0x21c0 [ 2543.123402][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2543.128569][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2543.134445][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2543.139643][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2543.145548][T12538] do_recvmmsg+0x7c9/0x1200 [ 2543.150096][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2543.155174][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2543.160339][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2543.165175][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2543.171719][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2543.176469][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2543.182846][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2543.187922][T12538] do_fast_syscall_32+0x33/0x70 [ 2543.192802][T12538] do_SYSENTER_32+0x1b/0x20 [ 2543.197341][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2543.203701][T12538] RIP: 0023:0xf7feb549 [ 2543.207790][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2543.227442][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2543.235914][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2543.243913][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2543.251900][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2543.259904][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2543.267897][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2543.275996][T12538] [ 2543.283805][T12538] Uninit was stored to memory at: [ 2543.288938][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2543.295064][T12538] get_compat_msghdr+0x10c/0x280 [ 2543.300068][T12538] ___sys_recvmsg+0x289/0xb40 [ 2543.304989][T12538] do_recvmmsg+0x7c9/0x1200 [ 2543.309542][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2543.314435][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2543.320943][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2543.326152][T12538] do_fast_syscall_32+0x33/0x70 [ 2543.331068][T12538] do_SYSENTER_32+0x1b/0x20 [ 2543.335873][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2543.342350][T12538] [ 2543.344680][T12538] Uninit was stored to memory at: [ 2543.349769][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2543.355112][T12538] get_compat_msghdr+0x10c/0x280 [ 2543.360203][T12538] ___sys_recvmsg+0x289/0xb40 [ 2543.365096][T12538] do_recvmmsg+0x7c9/0x1200 [ 2543.369650][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2543.374535][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2543.380923][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2543.386141][T12538] do_fast_syscall_32+0x33/0x70 [ 2543.391064][T12538] do_SYSENTER_32+0x1b/0x20 [ 2543.395736][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2543.402229][T12538] [ 2543.404561][T12538] Uninit was stored to memory at: [ 2543.409633][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2543.414946][T12538] get_compat_msghdr+0x10c/0x280 [ 2543.419939][T12538] ___sys_recvmsg+0x289/0xb40 [ 2543.424922][T12538] do_recvmmsg+0x7c9/0x1200 [ 2543.429497][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2543.434325][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2543.440809][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2543.446062][T12538] do_fast_syscall_32+0x33/0x70 [ 2543.450967][T12538] do_SYSENTER_32+0x1b/0x20 [ 2543.455632][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2543.462118][T12538] [ 2543.464454][T12538] Uninit was stored to memory at: [ 2543.469531][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2543.474823][T12538] get_compat_msghdr+0x10c/0x280 [ 2543.479819][T12538] ___sys_recvmsg+0x289/0xb40 [ 2543.484701][T12538] do_recvmmsg+0x7c9/0x1200 [ 2543.489286][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2543.494181][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2543.500573][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2543.505812][T12538] do_fast_syscall_32+0x33/0x70 [ 2543.510725][T12538] do_SYSENTER_32+0x1b/0x20 [ 2543.515392][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2543.521866][T12538] [ 2543.524199][T12538] Uninit was stored to memory at: [ 2543.529289][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2543.534616][T12538] get_compat_msghdr+0x10c/0x280 [ 2543.539605][T12538] ___sys_recvmsg+0x289/0xb40 [ 2543.544501][T12538] do_recvmmsg+0x7c9/0x1200 [ 2543.549055][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2543.553962][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2543.560345][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2543.565573][T12538] do_fast_syscall_32+0x33/0x70 [ 2543.570507][T12538] do_SYSENTER_32+0x1b/0x20 [ 2543.575249][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2543.581777][T12538] [ 2543.584125][T12538] Uninit was stored to memory at: [ 2543.589222][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2543.594539][T12538] get_compat_msghdr+0x10c/0x280 [ 2543.599529][T12538] ___sys_recvmsg+0x289/0xb40 [ 2543.604440][T12538] do_recvmmsg+0x7c9/0x1200 [ 2543.608997][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2543.613891][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2543.620278][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2543.625513][T12538] do_fast_syscall_32+0x33/0x70 [ 2543.630409][T12538] do_SYSENTER_32+0x1b/0x20 [ 2543.635109][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2543.641691][T12538] [ 2543.644045][T12538] Uninit was stored to memory at: [ 2543.649138][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2543.654466][T12538] get_compat_msghdr+0x10c/0x280 [ 2543.659539][T12538] ___sys_recvmsg+0x289/0xb40 [ 2543.664420][T12538] do_recvmmsg+0x7c9/0x1200 [ 2543.669155][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2543.674139][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2543.680661][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2543.685891][T12538] do_fast_syscall_32+0x33/0x70 [ 2543.690874][T12538] do_SYSENTER_32+0x1b/0x20 [ 2543.695581][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2543.702059][T12538] [ 2543.704417][T12538] Local variable msg_sys created at: [ 2543.709702][T12538] do_recvmmsg+0xc9/0x1200 [ 2543.714315][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2543.831034][T12538] not chained 900000 origins [ 2543.835866][T12538] CPU: 1 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2543.846097][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2543.856195][T12538] Call Trace: [ 2543.859504][T12538] [ 2543.862451][T12538] dump_stack_lvl+0x200/0x28c [ 2543.867206][T12538] dump_stack+0x29/0x2c [ 2543.871416][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2543.877183][T12538] ? preempt_count_sub+0xfc/0x340 [ 2543.882260][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2543.887498][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2543.892653][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2543.897821][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2543.903681][T12538] ? should_fail+0x79/0x9c0 [ 2543.908344][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2543.913487][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2543.919783][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2543.925881][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2543.931038][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2543.936911][T12538] __msan_chain_origin+0xbd/0x140 [ 2543.945058][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2543.950262][T12538] get_compat_msghdr+0x10c/0x280 [ 2543.955241][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2543.959997][T12538] ___sys_recvmsg+0x289/0xb40 [ 2543.964805][T12538] ? __schedule+0x176c/0x21c0 [ 2543.969530][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2543.974676][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2543.980545][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2543.985707][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2543.991576][T12538] do_recvmmsg+0x7c9/0x1200 [ 2543.996133][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2544.001221][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2544.006394][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2544.011202][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2544.017845][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2544.022593][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2544.028984][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2544.034039][T12538] do_fast_syscall_32+0x33/0x70 [ 2544.038930][T12538] do_SYSENTER_32+0x1b/0x20 [ 2544.043455][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2544.049836][T12538] RIP: 0023:0xf7feb549 [ 2544.053928][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2544.073605][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2544.082070][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2544.090068][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2544.098053][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2544.106050][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2544.114142][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2544.122387][T12538] [ 2544.128189][T12538] Uninit was stored to memory at: [ 2544.133743][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2544.138913][T12538] get_compat_msghdr+0x10c/0x280 [ 2544.144012][T12538] ___sys_recvmsg+0x289/0xb40 [ 2544.148768][T12538] do_recvmmsg+0x7c9/0x1200 [ 2544.153418][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2544.158142][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2544.164631][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2544.169697][T12538] do_fast_syscall_32+0x33/0x70 [ 2544.174694][T12538] do_SYSENTER_32+0x1b/0x20 [ 2544.179243][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2544.185773][T12538] [ 2544.188110][T12538] Uninit was stored to memory at: [ 2544.193366][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2544.198521][T12538] get_compat_msghdr+0x10c/0x280 [ 2544.203646][T12538] ___sys_recvmsg+0x289/0xb40 [ 2544.208372][T12538] do_recvmmsg+0x7c9/0x1200 [ 2544.213083][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2544.217810][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2544.224365][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2544.229434][T12538] do_fast_syscall_32+0x33/0x70 [ 2544.234484][T12538] do_SYSENTER_32+0x1b/0x20 [ 2544.239027][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2544.245560][T12538] [ 2544.247890][T12538] Uninit was stored to memory at: [ 2544.253108][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2544.258263][T12538] get_compat_msghdr+0x10c/0x280 [ 2544.263427][T12538] ___sys_recvmsg+0x289/0xb40 [ 2544.268182][T12538] do_recvmmsg+0x7c9/0x1200 [ 2544.272878][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2544.277607][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2544.284135][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2544.289226][T12538] do_fast_syscall_32+0x33/0x70 [ 2544.294273][T12538] do_SYSENTER_32+0x1b/0x20 [ 2544.298822][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2544.305369][T12538] [ 2544.307702][T12538] Uninit was stored to memory at: [ 2544.312953][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2544.318113][T12538] get_compat_msghdr+0x10c/0x280 [ 2544.323260][T12538] ___sys_recvmsg+0x289/0xb40 [ 2544.327994][T12538] do_recvmmsg+0x7c9/0x1200 [ 2544.332711][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2544.337449][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2544.343971][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2544.349043][T12538] do_fast_syscall_32+0x33/0x70 [ 2544.354088][T12538] do_SYSENTER_32+0x1b/0x20 [ 2544.358672][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2544.365155][T12538] [ 2544.367487][T12538] Uninit was stored to memory at: [ 2544.372734][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2544.377891][T12538] get_compat_msghdr+0x10c/0x280 [ 2544.383040][T12538] ___sys_recvmsg+0x289/0xb40 [ 2544.387769][T12538] do_recvmmsg+0x7c9/0x1200 [ 2544.392490][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2544.397216][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2544.403734][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2544.408804][T12538] do_fast_syscall_32+0x33/0x70 [ 2544.413861][T12538] do_SYSENTER_32+0x1b/0x20 [ 2544.418409][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2544.424948][T12538] [ 2544.427279][T12538] Uninit was stored to memory at: [ 2544.432535][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2544.437698][T12538] get_compat_msghdr+0x10c/0x280 [ 2544.442884][T12538] ___sys_recvmsg+0x289/0xb40 [ 2544.447616][T12538] do_recvmmsg+0x7c9/0x1200 [ 2544.452289][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2544.457026][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2544.463578][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2544.468656][T12538] do_fast_syscall_32+0x33/0x70 [ 2544.473673][T12538] do_SYSENTER_32+0x1b/0x20 [ 2544.478220][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2544.484750][T12538] [ 2544.487083][T12538] Uninit was stored to memory at: [ 2544.492338][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2544.497497][T12538] get_compat_msghdr+0x10c/0x280 [ 2544.502616][T12538] ___sys_recvmsg+0x289/0xb40 [ 2544.507348][T12538] do_recvmmsg+0x7c9/0x1200 [ 2544.512054][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2544.516781][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2544.523314][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2544.528391][T12538] do_fast_syscall_32+0x33/0x70 [ 2544.533458][T12538] do_SYSENTER_32+0x1b/0x20 [ 2544.538014][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2544.544560][T12538] [ 2544.546905][T12538] Local variable msg_sys created at: [ 2544.552359][T12538] do_recvmmsg+0xc9/0x1200 [ 2544.556827][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2544.685730][T12538] not chained 910000 origins [ 2544.690352][T12538] CPU: 1 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2544.700612][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2544.710681][T12538] Call Trace: [ 2544.713972][T12538] [ 2544.716919][T12538] dump_stack_lvl+0x200/0x28c [ 2544.721650][T12538] dump_stack+0x29/0x2c [ 2544.725848][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2544.731625][T12538] ? preempt_count_sub+0xfc/0x340 [ 2544.736718][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2544.741961][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2544.747130][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2544.752452][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2544.758317][T12538] ? should_fail+0x79/0x9c0 [ 2544.762859][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2544.768024][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2544.774344][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2544.780473][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2544.785634][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2544.791480][T12538] __msan_chain_origin+0xbd/0x140 [ 2544.796716][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2544.802311][T12538] get_compat_msghdr+0x10c/0x280 [ 2544.807304][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2544.812283][T12538] ___sys_recvmsg+0x289/0xb40 [ 2544.817068][T12538] ? __schedule+0x176c/0x21c0 [ 2544.821812][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2544.827085][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2544.832938][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2544.838206][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2544.844070][T12538] do_recvmmsg+0x7c9/0x1200 [ 2544.848630][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2544.853806][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2544.858988][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2544.863814][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2544.870390][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2544.875145][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2544.881552][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2544.886643][T12538] do_fast_syscall_32+0x33/0x70 [ 2544.891601][T12538] do_SYSENTER_32+0x1b/0x20 [ 2544.896159][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2544.902546][T12538] RIP: 0023:0xf7feb549 [ 2544.906719][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2544.927059][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2544.935589][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2544.944116][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2544.952102][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2544.960096][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2544.968093][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2544.976111][T12538] [ 2544.981792][T12538] Uninit was stored to memory at: [ 2544.986896][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2544.992549][T12538] get_compat_msghdr+0x10c/0x280 [ 2544.997544][T12538] ___sys_recvmsg+0x289/0xb40 [ 2545.002381][T12538] do_recvmmsg+0x7c9/0x1200 [ 2545.006938][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2545.011778][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2545.018165][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2545.023667][T12538] do_fast_syscall_32+0x33/0x70 [ 2545.028564][T12538] do_SYSENTER_32+0x1b/0x20 [ 2545.033258][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2545.039638][T12538] [ 2545.042305][T12538] Uninit was stored to memory at: [ 2545.047384][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2545.052689][T12538] get_compat_msghdr+0x10c/0x280 [ 2545.057674][T12538] ___sys_recvmsg+0x289/0xb40 [ 2545.062531][T12538] do_recvmmsg+0x7c9/0x1200 [ 2545.067090][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2545.071953][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2545.078340][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2545.083569][T12538] do_fast_syscall_32+0x33/0x70 [ 2545.088468][T12538] do_SYSENTER_32+0x1b/0x20 [ 2545.093168][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2545.099546][T12538] [ 2545.102003][T12538] Uninit was stored to memory at: [ 2545.107099][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2545.112421][T12538] get_compat_msghdr+0x10c/0x280 [ 2545.117517][T12538] ___sys_recvmsg+0x289/0xb40 [ 2545.122382][T12538] do_recvmmsg+0x7c9/0x1200 [ 2545.126934][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2545.131814][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2545.138198][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2545.143453][T12538] do_fast_syscall_32+0x33/0x70 [ 2545.148352][T12538] do_SYSENTER_32+0x1b/0x20 [ 2545.153003][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2545.159388][T12538] [ 2545.161824][T12538] Uninit was stored to memory at: [ 2545.166921][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2545.172255][T12538] get_compat_msghdr+0x10c/0x280 [ 2545.177246][T12538] ___sys_recvmsg+0x289/0xb40 [ 2545.182139][T12538] do_recvmmsg+0x7c9/0x1200 [ 2545.186705][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2545.191435][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2545.198023][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2545.203196][T12538] do_fast_syscall_32+0x33/0x70 [ 2545.208092][T12538] do_SYSENTER_32+0x1b/0x20 [ 2545.212939][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2545.219331][T12538] [ 2545.221910][T12538] Uninit was stored to memory at: [ 2545.227094][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2545.232430][T12538] get_compat_msghdr+0x10c/0x280 [ 2545.237425][T12538] ___sys_recvmsg+0x289/0xb40 [ 2545.242320][T12538] do_recvmmsg+0x7c9/0x1200 [ 2545.246899][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2545.251766][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2545.258157][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2545.263384][T12538] do_fast_syscall_32+0x33/0x70 [ 2545.268283][T12538] do_SYSENTER_32+0x1b/0x20 [ 2545.273145][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2545.279536][T12538] [ 2545.282044][T12538] Uninit was stored to memory at: [ 2545.287177][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2545.292675][T12538] get_compat_msghdr+0x10c/0x280 [ 2545.297681][T12538] ___sys_recvmsg+0x289/0xb40 [ 2545.302514][T12538] do_recvmmsg+0x7c9/0x1200 [ 2545.307073][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2545.311958][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2545.318357][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2545.323582][T12538] do_fast_syscall_32+0x33/0x70 [ 2545.328565][T12538] do_SYSENTER_32+0x1b/0x20 [ 2545.333455][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2545.339835][T12538] [ 2545.342313][T12538] Uninit was stored to memory at: [ 2545.347409][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2545.352729][T12538] get_compat_msghdr+0x10c/0x280 [ 2545.357830][T12538] ___sys_recvmsg+0x289/0xb40 [ 2545.362697][T12538] do_recvmmsg+0x7c9/0x1200 [ 2545.367272][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2545.372163][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2545.378553][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2545.383787][T12538] do_fast_syscall_32+0x33/0x70 [ 2545.388688][T12538] do_SYSENTER_32+0x1b/0x20 [ 2545.393339][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2545.399715][T12538] [ 2545.402202][T12538] Local variable msg_sys created at: [ 2545.407619][T12538] do_recvmmsg+0xc9/0x1200 [ 2545.412182][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2545.539844][T12538] not chained 920000 origins [ 2545.544857][T12538] CPU: 0 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2545.555054][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2545.565123][T12538] Call Trace: [ 2545.568418][T12538] [ 2545.571350][T12538] dump_stack_lvl+0x200/0x28c [ 2545.576074][T12538] dump_stack+0x29/0x2c [ 2545.580694][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2545.586458][T12538] ? preempt_count_sub+0xfc/0x340 [ 2545.591518][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2545.596758][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2545.601908][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2545.607073][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2545.612939][T12538] ? should_fail+0x79/0x9c0 [ 2545.617462][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2545.622599][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2545.628882][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2545.634978][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2545.640113][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2545.645955][T12538] __msan_chain_origin+0xbd/0x140 [ 2545.651022][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2545.656227][T12538] get_compat_msghdr+0x10c/0x280 [ 2545.661256][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2545.666007][T12538] ___sys_recvmsg+0x289/0xb40 [ 2545.670764][T12538] ? __schedule+0x176c/0x21c0 [ 2545.675483][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2545.680632][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2545.686485][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2545.691654][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2545.697521][T12538] do_recvmmsg+0x7c9/0x1200 [ 2545.702061][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2545.707177][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2545.712372][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2545.717176][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2545.723849][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2545.728578][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2545.735033][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2545.740084][T12538] do_fast_syscall_32+0x33/0x70 [ 2545.744954][T12538] do_SYSENTER_32+0x1b/0x20 [ 2545.749475][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2545.755829][T12538] RIP: 0023:0xf7feb549 [ 2545.759922][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2545.779569][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2545.788021][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2545.796020][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2545.804010][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2545.812010][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2545.820016][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2545.828076][T12538] [ 2545.834564][T12538] Uninit was stored to memory at: [ 2545.839678][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2545.845491][T12538] get_compat_msghdr+0x10c/0x280 [ 2545.850483][T12538] ___sys_recvmsg+0x289/0xb40 [ 2545.855338][T12538] do_recvmmsg+0x7c9/0x1200 [ 2545.859888][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2545.864756][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2545.871145][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2545.876394][T12538] do_fast_syscall_32+0x33/0x70 [ 2545.881285][T12538] do_SYSENTER_32+0x1b/0x20 [ 2545.885972][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2545.892451][T12538] [ 2545.894782][T12538] Uninit was stored to memory at: [ 2545.899867][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2545.905195][T12538] get_compat_msghdr+0x10c/0x280 [ 2545.910175][T12538] ___sys_recvmsg+0x289/0xb40 [ 2545.915024][T12538] do_recvmmsg+0x7c9/0x1200 [ 2545.919574][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2545.924464][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2545.930851][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2545.936111][T12538] do_fast_syscall_32+0x33/0x70 [ 2545.940999][T12538] do_SYSENTER_32+0x1b/0x20 [ 2545.945664][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2545.952138][T12538] [ 2545.954468][T12538] Uninit was stored to memory at: [ 2545.959562][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2545.964841][T12538] get_compat_msghdr+0x10c/0x280 [ 2545.969842][T12538] ___sys_recvmsg+0x289/0xb40 [ 2545.974688][T12538] do_recvmmsg+0x7c9/0x1200 [ 2545.979238][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2545.984146][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2545.990539][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2545.995810][T12538] do_fast_syscall_32+0x33/0x70 [ 2546.000704][T12538] do_SYSENTER_32+0x1b/0x20 [ 2546.005367][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2546.012000][T12538] [ 2546.014333][T12538] Uninit was stored to memory at: [ 2546.019418][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2546.024716][T12538] get_compat_msghdr+0x10c/0x280 [ 2546.029719][T12538] ___sys_recvmsg+0x289/0xb40 [ 2546.034576][T12538] do_recvmmsg+0x7c9/0x1200 [ 2546.039127][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2546.044021][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2546.050409][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2546.055674][T12538] do_fast_syscall_32+0x33/0x70 [ 2546.060588][T12538] do_SYSENTER_32+0x1b/0x20 [ 2546.065258][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2546.071831][T12538] [ 2546.074189][T12538] Uninit was stored to memory at: [ 2546.079290][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2546.084635][T12538] get_compat_msghdr+0x10c/0x280 [ 2546.089663][T12538] ___sys_recvmsg+0x289/0xb40 [ 2546.094561][T12538] do_recvmmsg+0x7c9/0x1200 [ 2546.099116][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2546.104028][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2546.110424][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2546.115641][T12538] do_fast_syscall_32+0x33/0x70 [ 2546.120543][T12538] do_SYSENTER_32+0x1b/0x20 [ 2546.125210][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2546.131757][T12538] [ 2546.134091][T12538] Uninit was stored to memory at: [ 2546.139179][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2546.144476][T12538] get_compat_msghdr+0x10c/0x280 [ 2546.149459][T12538] ___sys_recvmsg+0x289/0xb40 [ 2546.154302][T12538] do_recvmmsg+0x7c9/0x1200 [ 2546.158876][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2546.163770][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2546.170159][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2546.175420][T12538] do_fast_syscall_32+0x33/0x70 [ 2546.180317][T12538] do_SYSENTER_32+0x1b/0x20 [ 2546.184994][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2546.191464][T12538] [ 2546.193977][T12538] Uninit was stored to memory at: [ 2546.199072][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2546.204445][T12538] get_compat_msghdr+0x10c/0x280 [ 2546.209445][T12538] ___sys_recvmsg+0x289/0xb40 [ 2546.214298][T12538] do_recvmmsg+0x7c9/0x1200 [ 2546.218865][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2546.223766][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2546.231218][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2546.236499][T12538] do_fast_syscall_32+0x33/0x70 [ 2546.241393][T12538] do_SYSENTER_32+0x1b/0x20 [ 2546.246150][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2546.252634][T12538] [ 2546.254991][T12538] Local variable msg_sys created at: [ 2546.260291][T12538] do_recvmmsg+0xc9/0x1200 [ 2546.264878][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2546.392650][T12538] not chained 930000 origins [ 2546.397288][T12538] CPU: 1 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2546.407485][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2546.417562][T12538] Call Trace: [ 2546.420876][T12538] [ 2546.423809][T12538] dump_stack_lvl+0x200/0x28c [ 2546.428540][T12538] dump_stack+0x29/0x2c [ 2546.432735][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2546.438523][T12538] ? preempt_count_sub+0xfc/0x340 [ 2546.443598][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2546.448833][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2546.453984][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2546.459148][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2546.465018][T12538] ? should_fail+0x79/0x9c0 [ 2546.469546][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2546.474686][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2546.480987][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2546.487088][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2546.492232][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2546.498097][T12538] __msan_chain_origin+0xbd/0x140 [ 2546.503173][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2546.508354][T12538] get_compat_msghdr+0x10c/0x280 [ 2546.513405][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2546.518136][T12538] ___sys_recvmsg+0x289/0xb40 [ 2546.522876][T12538] ? __schedule+0x176c/0x21c0 [ 2546.527602][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2546.532751][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2546.538621][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2546.543774][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2546.549637][T12538] do_recvmmsg+0x7c9/0x1200 [ 2546.554182][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2546.559286][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2546.564456][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2546.569258][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2546.575908][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2546.580649][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2546.587027][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2546.592094][T12538] do_fast_syscall_32+0x33/0x70 [ 2546.596999][T12538] do_SYSENTER_32+0x1b/0x20 [ 2546.601552][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2546.607934][T12538] RIP: 0023:0xf7feb549 [ 2546.612031][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2546.631778][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2546.640335][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2546.648323][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2546.656311][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2546.664308][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2546.672293][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2546.680306][T12538] [ 2546.686320][T12538] Uninit was stored to memory at: [ 2546.691443][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2546.697079][T12538] get_compat_msghdr+0x10c/0x280 [ 2546.702184][T12538] ___sys_recvmsg+0x289/0xb40 [ 2546.706916][T12538] do_recvmmsg+0x7c9/0x1200 [ 2546.711500][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2546.716336][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2546.722861][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2546.727950][T12538] do_fast_syscall_32+0x33/0x70 [ 2546.733013][T12538] do_SYSENTER_32+0x1b/0x20 [ 2546.737561][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2546.744107][T12538] [ 2546.746452][T12538] Uninit was stored to memory at: [ 2546.751532][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2546.756858][T12538] get_compat_msghdr+0x10c/0x280 [ 2546.761969][T12538] ___sys_recvmsg+0x289/0xb40 [ 2546.766697][T12538] do_recvmmsg+0x7c9/0x1200 [ 2546.771251][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2546.776100][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2546.782612][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2546.787694][T12538] do_fast_syscall_32+0x33/0x70 [ 2546.792761][T12538] do_SYSENTER_32+0x1b/0x20 [ 2546.797311][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2546.803859][T12538] [ 2546.806193][T12538] Uninit was stored to memory at: [ 2546.811299][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2546.816661][T12538] get_compat_msghdr+0x10c/0x280 [ 2546.821745][T12538] ___sys_recvmsg+0x289/0xb40 [ 2546.826501][T12538] do_recvmmsg+0x7c9/0x1200 [ 2546.831053][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2546.835989][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2546.842477][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2546.847552][T12538] do_fast_syscall_32+0x33/0x70 [ 2546.852627][T12538] do_SYSENTER_32+0x1b/0x20 [ 2546.857186][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2546.863747][T12538] [ 2546.866082][T12538] Uninit was stored to memory at: [ 2546.871159][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2546.876485][T12538] get_compat_msghdr+0x10c/0x280 [ 2546.881474][T12538] ___sys_recvmsg+0x289/0xb40 [ 2546.886340][T12538] do_recvmmsg+0x7c9/0x1200 [ 2546.890901][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2546.895783][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2546.902283][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2546.907365][T12538] do_fast_syscall_32+0x33/0x70 [ 2546.912490][T12538] do_SYSENTER_32+0x1b/0x20 [ 2546.917046][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2546.923606][T12538] [ 2546.925942][T12538] Uninit was stored to memory at: [ 2546.931017][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2546.936320][T12538] get_compat_msghdr+0x10c/0x280 [ 2546.941306][T12538] ___sys_recvmsg+0x289/0xb40 [ 2546.946182][T12538] do_recvmmsg+0x7c9/0x1200 [ 2546.950746][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2546.955644][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2546.962133][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2546.967239][T12538] do_fast_syscall_32+0x33/0x70 [ 2546.972285][T12538] do_SYSENTER_32+0x1b/0x20 [ 2546.976868][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2546.983397][T12538] [ 2546.985729][T12538] Uninit was stored to memory at: [ 2546.990802][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2546.996070][T12538] get_compat_msghdr+0x10c/0x280 [ 2547.001166][T12538] ___sys_recvmsg+0x289/0xb40 [ 2547.006050][T12538] do_recvmmsg+0x7c9/0x1200 [ 2547.010728][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2547.015607][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2547.022092][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2547.027254][T12538] do_fast_syscall_32+0x33/0x70 [ 2547.032354][T12538] do_SYSENTER_32+0x1b/0x20 [ 2547.036898][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2547.043512][T12538] [ 2547.045842][T12538] Uninit was stored to memory at: [ 2547.050945][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2547.056279][T12538] get_compat_msghdr+0x10c/0x280 [ 2547.061297][T12538] ___sys_recvmsg+0x289/0xb40 [ 2547.066165][T12538] do_recvmmsg+0x7c9/0x1200 [ 2547.070740][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2547.075616][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2547.082104][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2547.087175][T12538] do_fast_syscall_32+0x33/0x70 [ 2547.092205][T12538] do_SYSENTER_32+0x1b/0x20 [ 2547.096754][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2547.103302][T12538] [ 2547.105635][T12538] Local variable msg_sys created at: [ 2547.110908][T12538] do_recvmmsg+0xc9/0x1200 [ 2547.115516][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2547.235015][T12538] not chained 940000 origins [ 2547.239908][T12538] CPU: 1 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2547.250076][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2547.260140][T12538] Call Trace: [ 2547.263426][T12538] [ 2547.266373][T12538] dump_stack_lvl+0x200/0x28c [ 2547.271112][T12538] dump_stack+0x29/0x2c [ 2547.275294][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2547.281081][T12538] ? preempt_count_sub+0xfc/0x340 [ 2547.286128][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2547.291346][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2547.296513][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2547.301683][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2547.307554][T12538] ? should_fail+0x79/0x9c0 [ 2547.312076][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2547.317237][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2547.323533][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2547.329659][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2547.334836][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2547.340790][T12538] __msan_chain_origin+0xbd/0x140 [ 2547.345874][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2547.351028][T12538] get_compat_msghdr+0x10c/0x280 [ 2547.355999][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2547.360727][T12538] ___sys_recvmsg+0x289/0xb40 [ 2547.365440][T12538] ? __schedule+0x176c/0x21c0 [ 2547.370145][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2547.375285][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2547.381149][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2547.386311][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2547.392185][T12538] do_recvmmsg+0x7c9/0x1200 [ 2547.397534][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2547.402603][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2547.407773][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2547.412591][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2547.419151][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2547.423876][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2547.430543][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2547.435623][T12538] do_fast_syscall_32+0x33/0x70 [ 2547.440518][T12538] do_SYSENTER_32+0x1b/0x20 [ 2547.445045][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2547.451434][T12538] RIP: 0023:0xf7feb549 [ 2547.455507][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2547.475250][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2547.483710][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2547.491716][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2547.499885][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2547.508038][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2547.516109][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2547.524126][T12538] [ 2547.531327][T12538] Uninit was stored to memory at: [ 2547.537251][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2547.542529][T12538] get_compat_msghdr+0x10c/0x280 [ 2547.547529][T12538] ___sys_recvmsg+0x289/0xb40 [ 2547.552366][T12538] do_recvmmsg+0x7c9/0x1200 [ 2547.556937][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2547.561786][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2547.568359][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2547.573603][T12538] do_fast_syscall_32+0x33/0x70 [ 2547.578607][T12538] do_SYSENTER_32+0x1b/0x20 [ 2547.583333][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2547.589719][T12538] [ 2547.592201][T12538] Uninit was stored to memory at: [ 2547.597305][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2547.602566][T12538] get_compat_msghdr+0x10c/0x280 [ 2547.607560][T12538] ___sys_recvmsg+0x289/0xb40 [ 2547.612629][T12538] do_recvmmsg+0x7c9/0x1200 [ 2547.617193][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2547.622055][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2547.628444][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2547.633681][T12538] do_fast_syscall_32+0x33/0x70 [ 2547.638591][T12538] do_SYSENTER_32+0x1b/0x20 [ 2547.643307][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2547.649688][T12538] [ 2547.652170][T12538] Uninit was stored to memory at: [ 2547.657264][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2547.662674][T12538] get_compat_msghdr+0x10c/0x280 [ 2547.667904][T12538] ___sys_recvmsg+0x289/0xb40 [ 2547.672781][T12538] do_recvmmsg+0x7c9/0x1200 [ 2547.677344][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2547.684756][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2547.691146][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2547.696475][T12538] do_fast_syscall_32+0x33/0x70 [ 2547.701369][T12538] do_SYSENTER_32+0x1b/0x20 [ 2547.706067][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2547.712571][T12538] [ 2547.714908][T12538] Uninit was stored to memory at: [ 2547.719999][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2547.725293][T12538] get_compat_msghdr+0x10c/0x280 [ 2547.730288][T12538] ___sys_recvmsg+0x289/0xb40 [ 2547.735165][T12538] do_recvmmsg+0x7c9/0x1200 [ 2547.739811][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2547.744716][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2547.751107][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2547.756291][T12538] do_fast_syscall_32+0x33/0x70 [ 2547.761205][T12538] do_SYSENTER_32+0x1b/0x20 [ 2547.765900][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2547.772382][T12538] [ 2547.774712][T12538] Uninit was stored to memory at: [ 2547.779785][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2547.785098][T12538] get_compat_msghdr+0x10c/0x280 [ 2547.790174][T12538] ___sys_recvmsg+0x289/0xb40 [ 2547.795075][T12538] do_recvmmsg+0x7c9/0x1200 [ 2547.799632][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2547.804527][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2547.810910][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2547.816226][T12538] do_fast_syscall_32+0x33/0x70 [ 2547.821119][T12538] do_SYSENTER_32+0x1b/0x20 [ 2547.825832][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2547.832309][T12538] [ 2547.834641][T12538] Uninit was stored to memory at: [ 2547.839733][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2547.845053][T12538] get_compat_msghdr+0x10c/0x280 [ 2547.850043][T12538] ___sys_recvmsg+0x289/0xb40 [ 2547.854943][T12538] do_recvmmsg+0x7c9/0x1200 [ 2547.859612][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2547.864485][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2547.870871][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2547.876050][T12538] do_fast_syscall_32+0x33/0x70 [ 2547.880958][T12538] do_SYSENTER_32+0x1b/0x20 [ 2547.885685][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2547.892184][T12538] [ 2547.894517][T12538] Uninit was stored to memory at: [ 2547.899616][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2547.904930][T12538] get_compat_msghdr+0x10c/0x280 [ 2547.909922][T12538] ___sys_recvmsg+0x289/0xb40 [ 2547.914827][T12538] do_recvmmsg+0x7c9/0x1200 [ 2547.919378][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2547.924239][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2547.930627][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2547.935862][T12538] do_fast_syscall_32+0x33/0x70 [ 2547.940757][T12538] do_SYSENTER_32+0x1b/0x20 [ 2547.945472][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2547.951947][T12538] [ 2547.954282][T12538] Local variable msg_sys created at: [ 2547.959667][T12538] do_recvmmsg+0xc9/0x1200 [ 2547.964278][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2548.079119][T12538] not chained 950000 origins [ 2548.084102][T12538] CPU: 1 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2548.094303][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2548.104390][T12538] Call Trace: [ 2548.107687][T12538] [ 2548.110620][T12538] dump_stack_lvl+0x200/0x28c [ 2548.115328][T12538] dump_stack+0x29/0x2c [ 2548.119520][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2548.125273][T12538] ? preempt_count_sub+0xfc/0x340 [ 2548.130356][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2548.135596][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2548.140774][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2548.145946][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2548.151812][T12538] ? should_fail+0x79/0x9c0 [ 2548.156351][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2548.161513][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2548.167805][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2548.173916][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2548.179078][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2548.185030][T12538] __msan_chain_origin+0xbd/0x140 [ 2548.190102][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2548.195261][T12538] get_compat_msghdr+0x10c/0x280 [ 2548.200282][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2548.205080][T12538] ___sys_recvmsg+0x289/0xb40 [ 2548.209816][T12538] ? __schedule+0x176c/0x21c0 [ 2548.214533][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2548.219694][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2548.225537][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2548.230695][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2548.236576][T12538] do_recvmmsg+0x7c9/0x1200 [ 2548.241131][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2548.246200][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2548.251373][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2548.256197][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2548.262765][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2548.267522][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2548.273916][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2548.278986][T12538] do_fast_syscall_32+0x33/0x70 [ 2548.283863][T12538] do_SYSENTER_32+0x1b/0x20 [ 2548.288408][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2548.294787][T12538] RIP: 0023:0xf7feb549 [ 2548.298874][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2548.318508][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2548.326952][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2548.334936][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2548.342935][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2548.350930][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2548.358930][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2548.366946][T12538] [ 2548.372738][T12538] Uninit was stored to memory at: [ 2548.377850][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2548.383496][T12538] get_compat_msghdr+0x10c/0x280 [ 2548.388487][T12538] ___sys_recvmsg+0x289/0xb40 [ 2548.393319][T12538] do_recvmmsg+0x7c9/0x1200 [ 2548.397882][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2548.402710][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2548.409100][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2548.414279][T12538] do_fast_syscall_32+0x33/0x70 [ 2548.419347][T12538] do_SYSENTER_32+0x1b/0x20 [ 2548.424040][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2548.430440][T12538] [ 2548.432923][T12538] Uninit was stored to memory at: [ 2548.438015][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2548.443326][T12538] get_compat_msghdr+0x10c/0x280 [ 2548.448308][T12538] ___sys_recvmsg+0x289/0xb40 [ 2548.453172][T12538] do_recvmmsg+0x7c9/0x1200 [ 2548.457733][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2548.462620][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2548.469001][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2548.474214][T12538] do_fast_syscall_32+0x33/0x70 [ 2548.479110][T12538] do_SYSENTER_32+0x1b/0x20 [ 2548.483821][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2548.490195][T12538] [ 2548.492682][T12538] Uninit was stored to memory at: [ 2548.497777][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2548.503085][T12538] get_compat_msghdr+0x10c/0x280 [ 2548.508068][T12538] ___sys_recvmsg+0x289/0xb40 [ 2548.512949][T12538] do_recvmmsg+0x7c9/0x1200 [ 2548.517499][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2548.522396][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2548.528789][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2548.533984][T12538] do_fast_syscall_32+0x33/0x70 [ 2548.538896][T12538] do_SYSENTER_32+0x1b/0x20 [ 2548.543596][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2548.549975][T12538] [ 2548.552463][T12538] Uninit was stored to memory at: [ 2548.557555][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2548.562880][T12538] get_compat_msghdr+0x10c/0x280 [ 2548.567870][T12538] ___sys_recvmsg+0x289/0xb40 [ 2548.572765][T12538] do_recvmmsg+0x7c9/0x1200 [ 2548.577333][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2548.582200][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2548.588603][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2548.593830][T12538] do_fast_syscall_32+0x33/0x70 [ 2548.598736][T12538] do_SYSENTER_32+0x1b/0x20 [ 2548.603381][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2548.609757][T12538] [ 2548.612230][T12538] Uninit was stored to memory at: [ 2548.617323][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2548.622638][T12538] get_compat_msghdr+0x10c/0x280 [ 2548.627625][T12538] ___sys_recvmsg+0x289/0xb40 [ 2548.632511][T12538] do_recvmmsg+0x7c9/0x1200 [ 2548.637062][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2548.641959][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2548.648342][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2548.653589][T12538] do_fast_syscall_32+0x33/0x70 [ 2548.658480][T12538] do_SYSENTER_32+0x1b/0x20 [ 2548.663184][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2548.669561][T12538] [ 2548.672037][T12538] Uninit was stored to memory at: [ 2548.677114][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2548.682409][T12538] get_compat_msghdr+0x10c/0x280 [ 2548.687397][T12538] ___sys_recvmsg+0x289/0xb40 [ 2548.692274][T12538] do_recvmmsg+0x7c9/0x1200 [ 2548.696825][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2548.701705][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2548.708097][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2548.713330][T12538] do_fast_syscall_32+0x33/0x70 [ 2548.718236][T12538] do_SYSENTER_32+0x1b/0x20 [ 2548.722925][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2548.729320][T12538] [ 2548.731788][T12538] Uninit was stored to memory at: [ 2548.736877][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2548.742181][T12538] get_compat_msghdr+0x10c/0x280 [ 2548.747164][T12538] ___sys_recvmsg+0x289/0xb40 [ 2548.752040][T12538] do_recvmmsg+0x7c9/0x1200 [ 2548.756621][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2548.761351][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2548.767874][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2548.773048][T12538] do_fast_syscall_32+0x33/0x70 [ 2548.777966][T12538] do_SYSENTER_32+0x1b/0x20 [ 2548.782670][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2548.789065][T12538] [ 2548.791385][T12538] Local variable msg_sys created at: [ 2548.796804][T12538] do_recvmmsg+0xc9/0x1200 [ 2548.801272][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2548.930630][T12538] not chained 960000 origins [ 2548.935439][T12538] CPU: 1 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2548.945635][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2548.955801][T12538] Call Trace: [ 2548.959088][T12538] [ 2548.962015][T12538] dump_stack_lvl+0x200/0x28c [ 2548.966748][T12538] dump_stack+0x29/0x2c [ 2548.970959][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2548.976713][T12538] ? preempt_count_sub+0xfc/0x340 [ 2548.981775][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2548.987017][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2548.992163][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2548.997408][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2549.003253][T12538] ? should_fail+0x79/0x9c0 [ 2549.007804][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2549.012950][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2549.019242][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2549.025344][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2549.030502][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2549.036343][T12538] __msan_chain_origin+0xbd/0x140 [ 2549.041418][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2549.046868][T12538] get_compat_msghdr+0x10c/0x280 [ 2549.051840][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2549.056572][T12538] ___sys_recvmsg+0x289/0xb40 [ 2549.061301][T12538] ? __schedule+0x176c/0x21c0 [ 2549.066032][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2549.071195][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2549.077056][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2549.082197][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2549.088057][T12538] do_recvmmsg+0x7c9/0x1200 [ 2549.092593][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2549.097676][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2549.102830][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2549.107647][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2549.114204][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2549.118941][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2549.125310][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2549.130382][T12538] do_fast_syscall_32+0x33/0x70 [ 2549.135259][T12538] do_SYSENTER_32+0x1b/0x20 [ 2549.139800][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2549.146155][T12538] RIP: 0023:0xf7feb549 [ 2549.150242][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2549.169891][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2549.178344][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2549.186346][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2549.194330][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2549.202325][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2549.210416][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2549.218502][T12538] [ 2549.224237][T12538] Uninit was stored to memory at: [ 2549.229343][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2549.234945][T12538] get_compat_msghdr+0x10c/0x280 [ 2549.239942][T12538] ___sys_recvmsg+0x289/0xb40 [ 2549.244768][T12538] do_recvmmsg+0x7c9/0x1200 [ 2549.249322][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2549.254205][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2549.260593][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2549.265835][T12538] do_fast_syscall_32+0x33/0x70 [ 2549.270767][T12538] do_SYSENTER_32+0x1b/0x20 [ 2549.275477][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2549.281964][T12538] [ 2549.284299][T12538] Uninit was stored to memory at: [ 2549.289551][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2549.294822][T12538] get_compat_msghdr+0x10c/0x280 [ 2549.299810][T12538] ___sys_recvmsg+0x289/0xb40 [ 2549.304691][T12538] do_recvmmsg+0x7c9/0x1200 [ 2549.309246][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2549.314119][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2549.320511][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2549.325736][T12538] do_fast_syscall_32+0x33/0x70 [ 2549.330627][T12538] do_SYSENTER_32+0x1b/0x20 [ 2549.335274][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2549.341762][T12538] [ 2549.344095][T12538] Uninit was stored to memory at: [ 2549.349207][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2549.354511][T12538] get_compat_msghdr+0x10c/0x280 [ 2549.359569][T12538] ___sys_recvmsg+0x289/0xb40 [ 2549.364444][T12538] do_recvmmsg+0x7c9/0x1200 [ 2549.369018][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2549.374004][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2549.380396][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2549.385653][T12538] do_fast_syscall_32+0x33/0x70 [ 2549.390551][T12538] do_SYSENTER_32+0x1b/0x20 [ 2549.395248][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2549.401722][T12538] [ 2549.404057][T12538] Uninit was stored to memory at: [ 2549.409129][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2549.414427][T12538] get_compat_msghdr+0x10c/0x280 [ 2549.419410][T12538] ___sys_recvmsg+0x289/0xb40 [ 2549.424285][T12538] do_recvmmsg+0x7c9/0x1200 [ 2549.428836][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2549.433701][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2549.440093][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2549.445303][T12538] do_fast_syscall_32+0x33/0x70 [ 2549.450190][T12538] do_SYSENTER_32+0x1b/0x20 [ 2549.454881][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2549.461259][T12538] [ 2549.463760][T12538] Uninit was stored to memory at: [ 2549.468863][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2549.474180][T12538] get_compat_msghdr+0x10c/0x280 [ 2549.479168][T12538] ___sys_recvmsg+0x289/0xb40 [ 2549.483998][T12538] do_recvmmsg+0x7c9/0x1200 [ 2549.488553][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2549.493440][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2549.499824][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2549.505046][T12538] do_fast_syscall_32+0x33/0x70 [ 2549.509939][T12538] do_SYSENTER_32+0x1b/0x20 [ 2549.514581][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2549.521138][T12538] [ 2549.523635][T12538] Uninit was stored to memory at: [ 2549.528740][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2549.534063][T12538] get_compat_msghdr+0x10c/0x280 [ 2549.539065][T12538] ___sys_recvmsg+0x289/0xb40 [ 2549.544044][T12538] do_recvmmsg+0x7c9/0x1200 [ 2549.548603][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2549.553499][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2549.559882][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2549.565148][T12538] do_fast_syscall_32+0x33/0x70 [ 2549.570039][T12538] do_SYSENTER_32+0x1b/0x20 [ 2549.574737][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2549.581139][T12538] [ 2549.583638][T12538] Uninit was stored to memory at: [ 2549.588769][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2549.594112][T12538] get_compat_msghdr+0x10c/0x280 [ 2549.599107][T12538] ___sys_recvmsg+0x289/0xb40 [ 2549.604003][T12538] do_recvmmsg+0x7c9/0x1200 [ 2549.608557][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2549.613452][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2549.619843][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2549.625074][T12538] do_fast_syscall_32+0x33/0x70 [ 2549.630098][T12538] do_SYSENTER_32+0x1b/0x20 [ 2549.634828][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2549.641212][T12538] [ 2549.643729][T12538] Local variable msg_sys created at: [ 2549.649023][T12538] do_recvmmsg+0xc9/0x1200 [ 2549.653759][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2549.776348][T12538] not chained 970000 origins [ 2549.784364][T12538] CPU: 0 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2549.794609][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2549.804693][T12538] Call Trace: [ 2549.807976][T12538] [ 2549.810933][T12538] dump_stack_lvl+0x200/0x28c [ 2549.815643][T12538] dump_stack+0x29/0x2c [ 2549.819848][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2549.825615][T12538] ? preempt_count_sub+0xfc/0x340 [ 2549.830680][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2549.835900][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2549.841047][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2549.846191][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2549.852048][T12538] ? should_fail+0x79/0x9c0 [ 2549.856569][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2549.861707][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2549.868072][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2549.878770][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2549.883910][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2549.889958][T12538] __msan_chain_origin+0xbd/0x140 [ 2549.895027][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2549.900211][T12538] get_compat_msghdr+0x10c/0x280 [ 2549.905207][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2549.909942][T12538] ___sys_recvmsg+0x289/0xb40 [ 2549.914783][T12538] ? __schedule+0x176c/0x21c0 [ 2549.919503][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2549.924639][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2549.930472][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2549.935627][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2549.941474][T12538] do_recvmmsg+0x7c9/0x1200 [ 2549.946009][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2549.951083][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2549.956236][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2549.961022][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2549.967554][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2549.972264][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2549.978646][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2549.983706][T12538] do_fast_syscall_32+0x33/0x70 [ 2549.988765][T12538] do_SYSENTER_32+0x1b/0x20 [ 2549.993310][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2549.999680][T12538] RIP: 0023:0xf7feb549 [ 2550.003752][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2550.023379][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2550.031801][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2550.039777][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2550.047758][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2550.055739][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2550.063718][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2550.071706][T12538] [ 2550.078969][T12538] Uninit was stored to memory at: [ 2550.084582][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2550.089779][T12538] get_compat_msghdr+0x10c/0x280 [ 2550.094898][T12538] ___sys_recvmsg+0x289/0xb40 [ 2550.099628][T12538] do_recvmmsg+0x7c9/0x1200 [ 2550.104306][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2550.109035][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2550.115615][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2550.120692][T12538] do_fast_syscall_32+0x33/0x70 [ 2550.125716][T12538] do_SYSENTER_32+0x1b/0x20 [ 2550.130267][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2550.136832][T12538] [ 2550.139163][T12538] Uninit was stored to memory at: [ 2550.144416][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2550.149577][T12538] get_compat_msghdr+0x10c/0x280 [ 2550.154740][T12538] ___sys_recvmsg+0x289/0xb40 [ 2550.159480][T12538] do_recvmmsg+0x7c9/0x1200 [ 2550.164195][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2550.168920][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2550.175498][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2550.180567][T12538] do_fast_syscall_32+0x33/0x70 [ 2550.185586][T12538] do_SYSENTER_32+0x1b/0x20 [ 2550.190134][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2550.196718][T12538] [ 2550.199139][T12538] Uninit was stored to memory at: [ 2550.204391][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2550.209547][T12538] get_compat_msghdr+0x10c/0x280 [ 2550.214654][T12538] ___sys_recvmsg+0x289/0xb40 [ 2550.219378][T12538] do_recvmmsg+0x7c9/0x1200 [ 2550.224107][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2550.228848][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2550.235401][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2550.240472][T12538] do_fast_syscall_32+0x33/0x70 [ 2550.245486][T12538] do_SYSENTER_32+0x1b/0x20 [ 2550.250030][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2550.256523][T12538] [ 2550.258852][T12538] Uninit was stored to memory at: [ 2550.264096][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2550.269252][T12538] get_compat_msghdr+0x10c/0x280 [ 2550.274409][T12538] ___sys_recvmsg+0x289/0xb40 [ 2550.279131][T12538] do_recvmmsg+0x7c9/0x1200 [ 2550.283854][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2550.288588][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2550.295149][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2550.300227][T12538] do_fast_syscall_32+0x33/0x70 [ 2550.305261][T12538] do_SYSENTER_32+0x1b/0x20 [ 2550.309805][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2550.316296][T12538] [ 2550.318674][T12538] Uninit was stored to memory at: [ 2550.323926][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2550.329090][T12538] get_compat_msghdr+0x10c/0x280 [ 2550.334220][T12538] ___sys_recvmsg+0x289/0xb40 [ 2550.338948][T12538] do_recvmmsg+0x7c9/0x1200 [ 2550.343613][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2550.348356][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2550.354909][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2550.359979][T12538] do_fast_syscall_32+0x33/0x70 [ 2550.365527][T12538] do_SYSENTER_32+0x1b/0x20 [ 2550.370070][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2550.376571][T12538] [ 2550.378905][T12538] Uninit was stored to memory at: [ 2550.384148][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2550.389304][T12538] get_compat_msghdr+0x10c/0x280 [ 2550.394605][T12538] ___sys_recvmsg+0x289/0xb40 [ 2550.399365][T12538] do_recvmmsg+0x7c9/0x1200 [ 2550.404099][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2550.408824][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2550.415480][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2550.420549][T12538] do_fast_syscall_32+0x33/0x70 [ 2550.425559][T12538] do_SYSENTER_32+0x1b/0x20 [ 2550.430102][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2550.436591][T12538] [ 2550.438924][T12538] Uninit was stored to memory at: [ 2550.444164][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2550.449337][T12538] get_compat_msghdr+0x10c/0x280 [ 2550.454496][T12538] ___sys_recvmsg+0x289/0xb40 [ 2550.459224][T12538] do_recvmmsg+0x7c9/0x1200 [ 2550.463901][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2550.468641][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2550.475201][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2550.480303][T12538] do_fast_syscall_32+0x33/0x70 [ 2550.485328][T12538] do_SYSENTER_32+0x1b/0x20 [ 2550.489876][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2550.496378][T12538] [ 2550.498714][T12538] Local variable msg_sys created at: [ 2550.504116][T12538] do_recvmmsg+0xc9/0x1200 [ 2550.508582][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2550.645238][T12538] not chained 980000 origins [ 2550.649982][T12538] CPU: 1 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2550.660152][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2550.670220][T12538] Call Trace: [ 2550.673596][T12538] [ 2550.676537][T12538] dump_stack_lvl+0x200/0x28c [ 2550.681244][T12538] dump_stack+0x29/0x2c [ 2550.685429][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2550.691201][T12538] ? preempt_count_sub+0xfc/0x340 [ 2550.696260][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2550.701486][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2550.706646][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2550.711836][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2550.717693][T12538] ? should_fail+0x79/0x9c0 [ 2550.722210][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2550.727356][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2550.733636][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2550.739780][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2550.744952][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2550.750822][T12538] __msan_chain_origin+0xbd/0x140 [ 2550.755878][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2550.761038][T12538] get_compat_msghdr+0x10c/0x280 [ 2550.766022][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2550.770730][T12538] ___sys_recvmsg+0x289/0xb40 [ 2550.775590][T12538] ? __schedule+0x176c/0x21c0 [ 2550.780309][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2550.785459][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2550.793498][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2550.798727][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2550.804573][T12538] do_recvmmsg+0x7c9/0x1200 [ 2550.809134][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2550.814225][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2550.819384][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2550.824173][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2550.830718][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2550.835436][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2550.841899][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2550.846971][T12538] do_fast_syscall_32+0x33/0x70 [ 2550.851855][T12538] do_SYSENTER_32+0x1b/0x20 [ 2550.856415][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2550.862789][T12538] RIP: 0023:0xf7feb549 [ 2550.866871][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2550.887296][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2550.895752][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2550.903843][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2550.911835][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2550.919851][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2550.927834][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2550.935830][T12538] [ 2550.941711][T12538] Uninit was stored to memory at: [ 2550.946827][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2550.952468][T12538] get_compat_msghdr+0x10c/0x280 [ 2550.957464][T12538] ___sys_recvmsg+0x289/0xb40 [ 2550.962290][T12538] do_recvmmsg+0x7c9/0x1200 [ 2550.966844][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2550.971680][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2550.978063][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2550.983242][T12538] do_fast_syscall_32+0x33/0x70 [ 2550.988147][T12538] do_SYSENTER_32+0x1b/0x20 [ 2550.992805][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2550.999186][T12538] [ 2551.001518][T12538] Uninit was stored to memory at: [ 2551.006711][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2551.012064][T12538] get_compat_msghdr+0x10c/0x280 [ 2551.017055][T12538] ___sys_recvmsg+0x289/0xb40 [ 2551.021952][T12538] do_recvmmsg+0x7c9/0x1200 [ 2551.026531][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2551.031239][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2551.037769][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2551.042937][T12538] do_fast_syscall_32+0x33/0x70 [ 2551.047829][T12538] do_SYSENTER_32+0x1b/0x20 [ 2551.052508][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2551.058886][T12538] [ 2551.061226][T12538] Uninit was stored to memory at: [ 2551.066464][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2551.071717][T12538] get_compat_msghdr+0x10c/0x280 [ 2551.076709][T12538] ___sys_recvmsg+0x289/0xb40 [ 2551.081437][T12538] do_recvmmsg+0x7c9/0x1200 [ 2551.086147][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2551.090873][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2551.097360][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2551.102582][T12538] do_fast_syscall_32+0x33/0x70 [ 2551.107480][T12538] do_SYSENTER_32+0x1b/0x20 [ 2551.112175][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2551.118552][T12538] [ 2551.120880][T12538] Uninit was stored to memory at: [ 2551.126119][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2551.131280][T12538] get_compat_msghdr+0x10c/0x280 [ 2551.136422][T12538] ___sys_recvmsg+0x289/0xb40 [ 2551.141167][T12538] do_recvmmsg+0x7c9/0x1200 [ 2551.145883][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2551.150614][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2551.157166][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2551.162329][T12538] do_fast_syscall_32+0x33/0x70 [ 2551.167221][T12538] do_SYSENTER_32+0x1b/0x20 [ 2551.171911][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2551.178289][T12538] [ 2551.180621][T12538] Uninit was stored to memory at: [ 2551.185871][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2551.191032][T12538] get_compat_msghdr+0x10c/0x280 [ 2551.196176][T12538] ___sys_recvmsg+0x289/0xb40 [ 2551.200940][T12538] do_recvmmsg+0x7c9/0x1200 [ 2551.205612][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2551.210339][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2551.216871][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2551.222049][T12538] do_fast_syscall_32+0x33/0x70 [ 2551.226944][T12538] do_SYSENTER_32+0x1b/0x20 [ 2551.231802][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2551.238518][T12538] [ 2551.240849][T12538] Uninit was stored to memory at: [ 2551.246087][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2551.251243][T12538] get_compat_msghdr+0x10c/0x280 [ 2551.256323][T12538] ___sys_recvmsg+0x289/0xb40 [ 2551.261050][T12538] do_recvmmsg+0x7c9/0x1200 [ 2551.265742][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2551.270494][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2551.276973][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2551.282134][T12538] do_fast_syscall_32+0x33/0x70 [ 2551.287034][T12538] do_SYSENTER_32+0x1b/0x20 [ 2551.291727][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2551.298109][T12538] [ 2551.300435][T12538] Uninit was stored to memory at: [ 2551.305682][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2551.310844][T12538] get_compat_msghdr+0x10c/0x280 [ 2551.315973][T12538] ___sys_recvmsg+0x289/0xb40 [ 2551.320703][T12538] do_recvmmsg+0x7c9/0x1200 [ 2551.325412][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2551.330137][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2551.336584][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2551.341779][T12538] do_fast_syscall_32+0x33/0x70 [ 2551.346681][T12538] do_SYSENTER_32+0x1b/0x20 [ 2551.351315][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2551.357992][T12538] [ 2551.360325][T12538] Local variable msg_sys created at: [ 2551.365764][T12538] do_recvmmsg+0xc9/0x1200 [ 2551.370237][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2551.491092][T12538] not chained 990000 origins [ 2551.495989][T12538] CPU: 0 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2551.506183][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2551.516251][T12538] Call Trace: [ 2551.519530][T12538] [ 2551.522467][T12538] dump_stack_lvl+0x200/0x28c [ 2551.527193][T12538] dump_stack+0x29/0x2c [ 2551.531372][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2551.537132][T12538] ? preempt_count_sub+0xfc/0x340 [ 2551.542176][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2551.547393][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2551.552540][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2551.557709][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2551.563573][T12538] ? should_fail+0x79/0x9c0 [ 2551.568091][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2551.573240][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2551.579545][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2551.585652][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2551.590799][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2551.596641][T12538] __msan_chain_origin+0xbd/0x140 [ 2551.601698][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2551.606889][T12538] get_compat_msghdr+0x10c/0x280 [ 2551.611885][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2551.616615][T12538] ___sys_recvmsg+0x289/0xb40 [ 2551.621340][T12538] ? __schedule+0x176c/0x21c0 [ 2551.626051][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2551.631218][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2551.637062][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2551.642213][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2551.648056][T12538] do_recvmmsg+0x7c9/0x1200 [ 2551.652594][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2551.657721][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2551.662890][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2551.667677][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2551.674217][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2551.678957][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2551.685325][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2551.690379][T12538] do_fast_syscall_32+0x33/0x70 [ 2551.695251][T12538] do_SYSENTER_32+0x1b/0x20 [ 2551.699784][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2551.706160][T12538] RIP: 0023:0xf7feb549 [ 2551.710367][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2551.730124][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2551.738561][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2551.746558][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2551.754634][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2551.762745][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2551.770751][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2551.778803][T12538] [ 2551.785579][T12538] Uninit was stored to memory at: [ 2551.790696][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2551.796563][T12538] get_compat_msghdr+0x10c/0x280 [ 2551.801669][T12538] ___sys_recvmsg+0x289/0xb40 [ 2551.806412][T12538] do_recvmmsg+0x7c9/0x1200 [ 2551.810971][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2551.815940][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2551.822532][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2551.827631][T12538] do_fast_syscall_32+0x33/0x70 [ 2551.832753][T12538] do_SYSENTER_32+0x1b/0x20 [ 2551.837502][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2551.844006][T12538] [ 2551.846510][T12538] Uninit was stored to memory at: [ 2551.851765][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2551.856934][T12538] get_compat_msghdr+0x10c/0x280 [ 2551.862058][T12538] ___sys_recvmsg+0x289/0xb40 [ 2551.866787][T12538] do_recvmmsg+0x7c9/0x1200 [ 2551.871315][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2551.876240][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2551.882728][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2551.887816][T12538] do_fast_syscall_32+0x33/0x70 [ 2551.893028][T12538] do_SYSENTER_32+0x1b/0x20 [ 2551.897589][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2551.904108][T12538] [ 2551.906446][T12538] Uninit was stored to memory at: [ 2551.911514][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2551.916853][T12538] get_compat_msghdr+0x10c/0x280 [ 2551.922075][T12538] ___sys_recvmsg+0x289/0xb40 [ 2551.926802][T12538] do_recvmmsg+0x7c9/0x1200 [ 2551.931331][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2551.936211][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2551.942705][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2551.947780][T12538] do_fast_syscall_32+0x33/0x70 [ 2551.952821][T12538] do_SYSENTER_32+0x1b/0x20 [ 2551.957366][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2551.963873][T12538] [ 2551.966203][T12538] Uninit was stored to memory at: [ 2551.971265][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2551.976604][T12538] get_compat_msghdr+0x10c/0x280 [ 2551.981683][T12538] ___sys_recvmsg+0x289/0xb40 [ 2551.986416][T12538] do_recvmmsg+0x7c9/0x1200 [ 2551.990960][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2551.995821][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2552.002312][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2552.007381][T12538] do_fast_syscall_32+0x33/0x70 [ 2552.012534][T12538] do_SYSENTER_32+0x1b/0x20 [ 2552.017079][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2552.023604][T12538] [ 2552.025935][T12538] Uninit was stored to memory at: [ 2552.030999][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2552.036327][T12538] get_compat_msghdr+0x10c/0x280 [ 2552.041315][T12538] ___sys_recvmsg+0x289/0xb40 [ 2552.046238][T12538] do_recvmmsg+0x7c9/0x1200 [ 2552.050809][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2552.055659][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2552.062144][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2552.067216][T12538] do_fast_syscall_32+0x33/0x70 [ 2552.072291][T12538] do_SYSENTER_32+0x1b/0x20 [ 2552.076836][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2552.083342][T12538] [ 2552.085720][T12538] Uninit was stored to memory at: [ 2552.090800][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2552.096167][T12538] get_compat_msghdr+0x10c/0x280 [ 2552.101162][T12538] ___sys_recvmsg+0x289/0xb40 [ 2552.106082][T12538] do_recvmmsg+0x7c9/0x1200 [ 2552.110644][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2552.115711][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2552.122237][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2552.127315][T12538] do_fast_syscall_32+0x33/0x70 [ 2552.132415][T12538] do_SYSENTER_32+0x1b/0x20 [ 2552.136976][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2552.143558][T12538] [ 2552.145891][T12538] Uninit was stored to memory at: [ 2552.150958][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2552.156250][T12538] get_compat_msghdr+0x10c/0x280 [ 2552.161263][T12538] ___sys_recvmsg+0x289/0xb40 [ 2552.166168][T12538] do_recvmmsg+0x7c9/0x1200 [ 2552.170726][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2552.175607][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2552.182128][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2552.187203][T12538] do_fast_syscall_32+0x33/0x70 [ 2552.192289][T12538] do_SYSENTER_32+0x1b/0x20 [ 2552.196840][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2552.203424][T12538] [ 2552.205757][T12538] Local variable msg_sys created at: [ 2552.211042][T12538] do_recvmmsg+0xc9/0x1200 [ 2552.215686][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2552.336385][T12538] not chained 1000000 origins [ 2552.343360][T12538] CPU: 1 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2552.353559][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2552.363623][T12538] Call Trace: [ 2552.366897][T12538] [ 2552.369828][T12538] dump_stack_lvl+0x200/0x28c [ 2552.374534][T12538] dump_stack+0x29/0x2c [ 2552.378753][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2552.384506][T12538] ? preempt_count_sub+0xfc/0x340 [ 2552.389549][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2552.394764][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2552.399907][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2552.405044][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2552.410880][T12538] ? should_fail+0x79/0x9c0 [ 2552.415397][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2552.420545][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2552.426818][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2552.432941][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2552.438081][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2552.443924][T12538] __msan_chain_origin+0xbd/0x140 [ 2552.448995][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2552.454173][T12538] get_compat_msghdr+0x10c/0x280 [ 2552.459158][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2552.463861][T12538] ___sys_recvmsg+0x289/0xb40 [ 2552.468569][T12538] ? __schedule+0x176c/0x21c0 [ 2552.473270][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2552.478407][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2552.484240][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2552.489374][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2552.495227][T12538] do_recvmmsg+0x7c9/0x1200 [ 2552.499759][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2552.504820][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2552.510092][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2552.514905][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2552.521453][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2552.526175][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2552.532646][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2552.537738][T12538] do_fast_syscall_32+0x33/0x70 [ 2552.542609][T12538] do_SYSENTER_32+0x1b/0x20 [ 2552.547135][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2552.553512][T12538] RIP: 0023:0xf7feb549 [ 2552.557666][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2552.577305][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2552.585743][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2552.593750][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2552.601758][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2552.609771][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2552.617758][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2552.625752][T12538] [ 2552.632113][T12538] Uninit was stored to memory at: [ 2552.637225][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2552.642866][T12538] get_compat_msghdr+0x10c/0x280 [ 2552.647890][T12538] ___sys_recvmsg+0x289/0xb40 [ 2552.652709][T12538] do_recvmmsg+0x7c9/0x1200 [ 2552.657357][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2552.662283][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2552.668672][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2552.673854][T12538] do_fast_syscall_32+0x33/0x70 [ 2552.678757][T12538] do_SYSENTER_32+0x1b/0x20 [ 2552.683444][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2552.689820][T12538] [ 2552.692245][T12538] Uninit was stored to memory at: [ 2552.697321][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2552.702622][T12538] get_compat_msghdr+0x10c/0x280 [ 2552.707613][T12538] ___sys_recvmsg+0x289/0xb40 [ 2552.712511][T12538] do_recvmmsg+0x7c9/0x1200 [ 2552.717066][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2552.721926][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2552.728313][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2552.733520][T12538] do_fast_syscall_32+0x33/0x70 [ 2552.738426][T12538] do_SYSENTER_32+0x1b/0x20 [ 2552.743126][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2552.749519][T12538] [ 2552.752021][T12538] Uninit was stored to memory at: [ 2552.757202][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2552.762537][T12538] get_compat_msghdr+0x10c/0x280 [ 2552.767553][T12538] ___sys_recvmsg+0x289/0xb40 [ 2552.772423][T12538] do_recvmmsg+0x7c9/0x1200 [ 2552.776979][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2552.781860][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2552.788253][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2552.793522][T12538] do_fast_syscall_32+0x33/0x70 [ 2552.798428][T12538] do_SYSENTER_32+0x1b/0x20 [ 2552.803133][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2552.809564][T12538] [ 2552.812056][T12538] Uninit was stored to memory at: [ 2552.817169][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2552.822462][T12538] get_compat_msghdr+0x10c/0x280 [ 2552.827447][T12538] ___sys_recvmsg+0x289/0xb40 [ 2552.832332][T12538] do_recvmmsg+0x7c9/0x1200 [ 2552.836887][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2552.841754][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2552.848140][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2552.853386][T12538] do_fast_syscall_32+0x33/0x70 [ 2552.858376][T12538] do_SYSENTER_32+0x1b/0x20 [ 2552.863100][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2552.869741][T12538] [ 2552.872231][T12538] Uninit was stored to memory at: [ 2552.877323][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2552.882643][T12538] get_compat_msghdr+0x10c/0x280 [ 2552.887643][T12538] ___sys_recvmsg+0x289/0xb40 [ 2552.892541][T12538] do_recvmmsg+0x7c9/0x1200 [ 2552.897093][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2552.901920][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2552.908308][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2552.913595][T12538] do_fast_syscall_32+0x33/0x70 [ 2552.918507][T12538] do_SYSENTER_32+0x1b/0x20 [ 2552.923233][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2552.929617][T12538] [ 2552.932133][T12538] Uninit was stored to memory at: [ 2552.937215][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2552.942523][T12538] get_compat_msghdr+0x10c/0x280 [ 2552.947515][T12538] ___sys_recvmsg+0x289/0xb40 [ 2552.952409][T12538] do_recvmmsg+0x7c9/0x1200 [ 2552.957050][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2552.961927][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2552.968319][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2552.973518][T12538] do_fast_syscall_32+0x33/0x70 [ 2552.978414][T12538] do_SYSENTER_32+0x1b/0x20 [ 2552.983106][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2552.989491][T12538] [ 2552.991976][T12538] Uninit was stored to memory at: [ 2552.997075][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2553.002393][T12538] get_compat_msghdr+0x10c/0x280 [ 2553.007382][T12538] ___sys_recvmsg+0x289/0xb40 [ 2553.012330][T12538] do_recvmmsg+0x7c9/0x1200 [ 2553.016887][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2553.021752][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2553.028142][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2553.033372][T12538] do_fast_syscall_32+0x33/0x70 [ 2553.038279][T12538] do_SYSENTER_32+0x1b/0x20 [ 2553.042960][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2553.049339][T12538] [ 2553.051804][T12538] Local variable msg_sys created at: [ 2553.057093][T12538] do_recvmmsg+0xc9/0x1200 [ 2553.061734][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2553.185208][T12538] not chained 1010000 origins [ 2553.189931][T12538] CPU: 1 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2553.200116][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2553.210208][T12538] Call Trace: [ 2553.213582][T12538] [ 2553.216526][T12538] dump_stack_lvl+0x200/0x28c [ 2553.221249][T12538] dump_stack+0x29/0x2c [ 2553.225425][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2553.231197][T12538] ? preempt_count_sub+0xfc/0x340 [ 2553.236270][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2553.241537][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2553.246838][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2553.252077][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2553.257951][T12538] ? should_fail+0x79/0x9c0 [ 2553.262495][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2553.267666][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2553.273972][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2553.280118][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2553.285264][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2553.291135][T12538] __msan_chain_origin+0xbd/0x140 [ 2553.296191][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2553.301367][T12538] get_compat_msghdr+0x10c/0x280 [ 2553.306338][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2553.311055][T12538] ___sys_recvmsg+0x289/0xb40 [ 2553.315773][T12538] ? __schedule+0x176c/0x21c0 [ 2553.320498][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2553.325740][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2553.331711][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2553.336881][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2553.342837][T12538] do_recvmmsg+0x7c9/0x1200 [ 2553.347397][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2553.352486][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2553.357759][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2553.362555][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2553.369166][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2553.374043][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2553.380451][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2553.385522][T12538] do_fast_syscall_32+0x33/0x70 [ 2553.390437][T12538] do_SYSENTER_32+0x1b/0x20 [ 2553.394969][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2553.401440][T12538] RIP: 0023:0xf7feb549 [ 2553.405518][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2553.425172][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2553.433640][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2553.441649][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2553.449650][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2553.457649][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2553.465653][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2553.473673][T12538] [ 2553.479519][T12538] Uninit was stored to memory at: [ 2553.485152][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2553.490329][T12538] get_compat_msghdr+0x10c/0x280 [ 2553.495433][T12538] ___sys_recvmsg+0x289/0xb40 [ 2553.500164][T12538] do_recvmmsg+0x7c9/0x1200 [ 2553.504827][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2553.509577][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2553.516128][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2553.521208][T12538] do_fast_syscall_32+0x33/0x70 [ 2553.526213][T12538] do_SYSENTER_32+0x1b/0x20 [ 2553.530756][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2553.537287][T12538] [ 2553.539623][T12538] Uninit was stored to memory at: [ 2553.544907][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2553.550080][T12538] get_compat_msghdr+0x10c/0x280 [ 2553.555235][T12538] ___sys_recvmsg+0x289/0xb40 [ 2553.560146][T12538] do_recvmmsg+0x7c9/0x1200 [ 2553.564878][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2553.569635][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2553.576198][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2553.581376][T12538] do_fast_syscall_32+0x33/0x70 [ 2553.586450][T12538] do_SYSENTER_32+0x1b/0x20 [ 2553.590994][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2553.597473][T12538] [ 2553.599810][T12538] Uninit was stored to memory at: [ 2553.605061][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2553.610219][T12538] get_compat_msghdr+0x10c/0x280 [ 2553.615309][T12538] ___sys_recvmsg+0x289/0xb40 [ 2553.620036][T12538] do_recvmmsg+0x7c9/0x1200 [ 2553.624757][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2553.629512][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2553.636002][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2553.641076][T12538] do_fast_syscall_32+0x33/0x70 [ 2553.646122][T12538] do_SYSENTER_32+0x1b/0x20 [ 2553.650681][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2553.657205][T12538] [ 2553.659538][T12538] Uninit was stored to memory at: [ 2553.664886][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2553.670047][T12538] get_compat_msghdr+0x10c/0x280 [ 2553.675226][T12538] ___sys_recvmsg+0x289/0xb40 [ 2553.679958][T12538] do_recvmmsg+0x7c9/0x1200 [ 2553.684677][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2553.689410][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2553.695905][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2553.700993][T12538] do_fast_syscall_32+0x33/0x70 [ 2553.706045][T12538] do_SYSENTER_32+0x1b/0x20 [ 2553.710589][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2553.717072][T12538] [ 2553.719400][T12538] Uninit was stored to memory at: [ 2553.724642][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2553.729801][T12538] get_compat_msghdr+0x10c/0x280 [ 2553.734931][T12538] ___sys_recvmsg+0x289/0xb40 [ 2553.739654][T12538] do_recvmmsg+0x7c9/0x1200 [ 2553.744349][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2553.749078][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2553.755644][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2553.760752][T12538] do_fast_syscall_32+0x33/0x70 [ 2553.765836][T12538] do_SYSENTER_32+0x1b/0x20 [ 2553.770425][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2553.776972][T12538] [ 2553.779306][T12538] Uninit was stored to memory at: [ 2553.784500][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2553.789656][T12538] get_compat_msghdr+0x10c/0x280 [ 2553.794825][T12538] ___sys_recvmsg+0x289/0xb40 [ 2553.799655][T12538] do_recvmmsg+0x7c9/0x1200 [ 2553.804393][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2553.809227][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2553.815795][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2553.820880][T12538] do_fast_syscall_32+0x33/0x70 [ 2553.825933][T12538] do_SYSENTER_32+0x1b/0x20 [ 2553.830487][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2553.836968][T12538] [ 2553.839300][T12538] Uninit was stored to memory at: [ 2553.844551][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2553.849709][T12538] get_compat_msghdr+0x10c/0x280 [ 2553.854858][T12538] ___sys_recvmsg+0x289/0xb40 [ 2553.859583][T12538] do_recvmmsg+0x7c9/0x1200 [ 2553.864281][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2553.869005][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2553.875543][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2553.880621][T12538] do_fast_syscall_32+0x33/0x70 [ 2553.885697][T12538] do_SYSENTER_32+0x1b/0x20 [ 2553.890252][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2553.896831][T12538] [ 2553.899171][T12538] Local variable msg_sys created at: [ 2553.904585][T12538] do_recvmmsg+0xc9/0x1200 [ 2553.909049][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2554.029043][T12538] not chained 1020000 origins [ 2554.033961][T12538] CPU: 0 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2554.044173][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2554.054237][T12538] Call Trace: [ 2554.057514][T12538] [ 2554.060443][T12538] dump_stack_lvl+0x200/0x28c [ 2554.065145][T12538] dump_stack+0x29/0x2c [ 2554.069352][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2554.075113][T12538] ? preempt_count_sub+0xfc/0x340 [ 2554.080281][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2554.085517][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2554.090697][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2554.095847][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2554.101731][T12538] ? should_fail+0x79/0x9c0 [ 2554.106274][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2554.111421][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2554.117696][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2554.123802][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2554.128937][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2554.134783][T12538] __msan_chain_origin+0xbd/0x140 [ 2554.139834][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2554.144999][T12538] get_compat_msghdr+0x10c/0x280 [ 2554.149998][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2554.154735][T12538] ___sys_recvmsg+0x289/0xb40 [ 2554.159471][T12538] ? __schedule+0x176c/0x21c0 [ 2554.164198][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2554.169342][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2554.175172][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2554.180319][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2554.186160][T12538] do_recvmmsg+0x7c9/0x1200 [ 2554.190713][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2554.195785][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2554.200951][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2554.205743][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2554.212280][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2554.216998][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2554.223373][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2554.228532][T12538] do_fast_syscall_32+0x33/0x70 [ 2554.233421][T12538] do_SYSENTER_32+0x1b/0x20 [ 2554.237975][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2554.244340][T12538] RIP: 0023:0xf7feb549 [ 2554.248441][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2554.268078][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2554.276526][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2554.284526][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2554.292517][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2554.300531][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2554.308551][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2554.316550][T12538] [ 2554.323514][T12538] Uninit was stored to memory at: [ 2554.328628][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2554.334590][T12538] get_compat_msghdr+0x10c/0x280 [ 2554.339621][T12538] ___sys_recvmsg+0x289/0xb40 [ 2554.344489][T12538] do_recvmmsg+0x7c9/0x1200 [ 2554.349050][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2554.353926][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2554.360403][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2554.365608][T12538] do_fast_syscall_32+0x33/0x70 [ 2554.370514][T12538] do_SYSENTER_32+0x1b/0x20 [ 2554.375474][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2554.382015][T12538] [ 2554.384350][T12538] Uninit was stored to memory at: [ 2554.389542][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2554.394915][T12538] get_compat_msghdr+0x10c/0x280 [ 2554.400086][T12538] ___sys_recvmsg+0x289/0xb40 [ 2554.404947][T12538] do_recvmmsg+0x7c9/0x1200 [ 2554.409509][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2554.414410][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2554.420800][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2554.426070][T12538] do_fast_syscall_32+0x33/0x70 [ 2554.430969][T12538] do_SYSENTER_32+0x1b/0x20 [ 2554.435654][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2554.442139][T12538] [ 2554.444474][T12538] Uninit was stored to memory at: [ 2554.449545][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2554.454821][T12538] get_compat_msghdr+0x10c/0x280 [ 2554.459821][T12538] ___sys_recvmsg+0x289/0xb40 [ 2554.464671][T12538] do_recvmmsg+0x7c9/0x1200 [ 2554.469239][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2554.474135][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2554.480542][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2554.485839][T12538] do_fast_syscall_32+0x33/0x70 [ 2554.490740][T12538] do_SYSENTER_32+0x1b/0x20 [ 2554.495444][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2554.501954][T12538] [ 2554.504282][T12538] Uninit was stored to memory at: [ 2554.509361][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2554.514649][T12538] get_compat_msghdr+0x10c/0x280 [ 2554.519659][T12538] ___sys_recvmsg+0x289/0xb40 [ 2554.524506][T12538] do_recvmmsg+0x7c9/0x1200 [ 2554.529058][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2554.533944][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2554.540327][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2554.545587][T12538] do_fast_syscall_32+0x33/0x70 [ 2554.550487][T12538] do_SYSENTER_32+0x1b/0x20 [ 2554.555144][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2554.561753][T12538] [ 2554.564084][T12538] Uninit was stored to memory at: [ 2554.569179][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2554.574505][T12538] get_compat_msghdr+0x10c/0x280 [ 2554.579519][T12538] ___sys_recvmsg+0x289/0xb40 [ 2554.584383][T12538] do_recvmmsg+0x7c9/0x1200 [ 2554.588935][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2554.594014][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2554.600400][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2554.605625][T12538] do_fast_syscall_32+0x33/0x70 [ 2554.610527][T12538] do_SYSENTER_32+0x1b/0x20 [ 2554.615193][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2554.621687][T12538] [ 2554.624042][T12538] Uninit was stored to memory at: [ 2554.629134][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2554.634427][T12538] get_compat_msghdr+0x10c/0x280 [ 2554.639413][T12538] ___sys_recvmsg+0x289/0xb40 [ 2554.644262][T12538] do_recvmmsg+0x7c9/0x1200 [ 2554.648811][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2554.653706][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2554.660097][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2554.665367][T12538] do_fast_syscall_32+0x33/0x70 [ 2554.670255][T12538] do_SYSENTER_32+0x1b/0x20 [ 2554.674922][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2554.681296][T12538] [ 2554.683812][T12538] Uninit was stored to memory at: [ 2554.688894][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2554.694228][T12538] get_compat_msghdr+0x10c/0x280 [ 2554.699213][T12538] ___sys_recvmsg+0x289/0xb40 [ 2554.704079][T12538] do_recvmmsg+0x7c9/0x1200 [ 2554.708682][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2554.713618][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2554.720009][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2554.725206][T12538] do_fast_syscall_32+0x33/0x70 [ 2554.730099][T12538] do_SYSENTER_32+0x1b/0x20 [ 2554.734773][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2554.741169][T12538] [ 2554.743681][T12538] Local variable msg_sys created at: [ 2554.748970][T12538] do_recvmmsg+0xc9/0x1200 [ 2554.753644][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2554.894958][T12538] not chained 1030000 origins [ 2554.899789][T12538] CPU: 1 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2554.909963][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2554.920121][T12538] Call Trace: [ 2554.923410][T12538] [ 2554.926349][T12538] dump_stack_lvl+0x200/0x28c [ 2554.931061][T12538] dump_stack+0x29/0x2c [ 2554.935238][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2554.941017][T12538] ? preempt_count_sub+0xfc/0x340 [ 2554.946067][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2554.951284][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2554.956436][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2554.961606][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2554.967560][T12538] ? should_fail+0x79/0x9c0 [ 2554.972081][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2554.977244][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2554.983549][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2554.990191][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2554.995357][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2555.001219][T12538] __msan_chain_origin+0xbd/0x140 [ 2555.006291][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2555.011475][T12538] get_compat_msghdr+0x10c/0x280 [ 2555.016489][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2555.021194][T12538] ___sys_recvmsg+0x289/0xb40 [ 2555.025914][T12538] ? __schedule+0x176c/0x21c0 [ 2555.030636][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2555.035885][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2555.041730][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2555.046978][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2555.052828][T12538] do_recvmmsg+0x7c9/0x1200 [ 2555.057387][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2555.062458][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2555.067644][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2555.072467][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2555.079034][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2555.083863][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2555.090262][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2555.095321][T12538] do_fast_syscall_32+0x33/0x70 [ 2555.100218][T12538] do_SYSENTER_32+0x1b/0x20 [ 2555.104743][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2555.111120][T12538] RIP: 0023:0xf7feb549 [ 2555.115216][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2555.134874][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2555.143350][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2555.151334][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2555.159322][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2555.167303][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2555.175287][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2555.183306][T12538] [ 2555.189256][T12538] Uninit was stored to memory at: [ 2555.194844][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2555.200017][T12538] get_compat_msghdr+0x10c/0x280 [ 2555.205118][T12538] ___sys_recvmsg+0x289/0xb40 [ 2555.209876][T12538] do_recvmmsg+0x7c9/0x1200 [ 2555.214527][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2555.219253][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2555.225731][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2555.230804][T12538] do_fast_syscall_32+0x33/0x70 [ 2555.235813][T12538] do_SYSENTER_32+0x1b/0x20 [ 2555.240365][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2555.246849][T12538] [ 2555.249185][T12538] Uninit was stored to memory at: [ 2555.254441][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2555.259597][T12538] get_compat_msghdr+0x10c/0x280 [ 2555.264686][T12538] ___sys_recvmsg+0x289/0xb40 [ 2555.269410][T12538] do_recvmmsg+0x7c9/0x1200 [ 2555.274113][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2555.278840][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2555.285353][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2555.290436][T12538] do_fast_syscall_32+0x33/0x70 [ 2555.295495][T12538] do_SYSENTER_32+0x1b/0x20 [ 2555.300039][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2555.306663][T12538] [ 2555.308993][T12538] Uninit was stored to memory at: [ 2555.314231][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2555.319393][T12538] get_compat_msghdr+0x10c/0x280 [ 2555.324551][T12538] ___sys_recvmsg+0x289/0xb40 [ 2555.329283][T12538] do_recvmmsg+0x7c9/0x1200 [ 2555.334087][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2555.338814][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2555.345351][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2555.350420][T12538] do_fast_syscall_32+0x33/0x70 [ 2555.355462][T12538] do_SYSENTER_32+0x1b/0x20 [ 2555.360072][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2555.366549][T12538] [ 2555.368887][T12538] Uninit was stored to memory at: [ 2555.374145][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2555.379329][T12538] get_compat_msghdr+0x10c/0x280 [ 2555.384550][T12538] ___sys_recvmsg+0x289/0xb40 [ 2555.389305][T12538] do_recvmmsg+0x7c9/0x1200 [ 2555.394012][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2555.398740][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2555.405268][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2555.410350][T12538] do_fast_syscall_32+0x33/0x70 [ 2555.415381][T12538] do_SYSENTER_32+0x1b/0x20 [ 2555.419931][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2555.426648][T12538] [ 2555.428980][T12538] Uninit was stored to memory at: [ 2555.434229][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2555.439385][T12538] get_compat_msghdr+0x10c/0x280 [ 2555.444542][T12538] ___sys_recvmsg+0x289/0xb40 [ 2555.449271][T12538] do_recvmmsg+0x7c9/0x1200 [ 2555.453974][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2555.458702][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2555.465236][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2555.470303][T12538] do_fast_syscall_32+0x33/0x70 [ 2555.475346][T12538] do_SYSENTER_32+0x1b/0x20 [ 2555.479894][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2555.486600][T12538] [ 2555.488939][T12538] Uninit was stored to memory at: [ 2555.494188][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2555.499344][T12538] get_compat_msghdr+0x10c/0x280 [ 2555.504480][T12538] ___sys_recvmsg+0x289/0xb40 [ 2555.509219][T12538] do_recvmmsg+0x7c9/0x1200 [ 2555.513924][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2555.518656][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2555.525149][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2555.530224][T12538] do_fast_syscall_32+0x33/0x70 [ 2555.535289][T12538] do_SYSENTER_32+0x1b/0x20 [ 2555.539837][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2555.546399][T12538] [ 2555.548744][T12538] Uninit was stored to memory at: [ 2555.554010][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2555.559177][T12538] get_compat_msghdr+0x10c/0x280 [ 2555.564317][T12538] ___sys_recvmsg+0x289/0xb40 [ 2555.569071][T12538] do_recvmmsg+0x7c9/0x1200 [ 2555.573787][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2555.578522][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2555.585040][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2555.590111][T12538] do_fast_syscall_32+0x33/0x70 [ 2555.595155][T12538] do_SYSENTER_32+0x1b/0x20 [ 2555.599700][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2555.606229][T12538] [ 2555.608577][T12538] Local variable msg_sys created at: [ 2555.614039][T12538] do_recvmmsg+0xc9/0x1200 [ 2555.618517][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2555.746362][T12538] not chained 1040000 origins [ 2555.751082][T12538] CPU: 0 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2555.761261][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2555.771337][T12538] Call Trace: [ 2555.774632][T12538] [ 2555.777565][T12538] dump_stack_lvl+0x200/0x28c [ 2555.782381][T12538] dump_stack+0x29/0x2c [ 2555.786552][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2555.792303][T12538] ? preempt_count_sub+0xfc/0x340 [ 2555.797369][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2555.802585][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2555.807729][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2555.812876][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2555.818768][T12538] ? should_fail+0x79/0x9c0 [ 2555.823299][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2555.828488][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2555.834772][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2555.840891][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2555.846042][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2555.851983][T12538] __msan_chain_origin+0xbd/0x140 [ 2555.857051][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2555.862303][T12538] get_compat_msghdr+0x10c/0x280 [ 2555.867302][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2555.872034][T12538] ___sys_recvmsg+0x289/0xb40 [ 2555.876777][T12538] ? __schedule+0x176c/0x21c0 [ 2555.881514][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2555.886679][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2555.892543][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2555.897690][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2555.903552][T12538] do_recvmmsg+0x7c9/0x1200 [ 2555.908105][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2555.913192][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2555.918377][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2555.923179][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2555.929722][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2555.934447][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2555.940904][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2555.945958][T12538] do_fast_syscall_32+0x33/0x70 [ 2555.950855][T12538] do_SYSENTER_32+0x1b/0x20 [ 2555.955383][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2555.961741][T12538] RIP: 0023:0xf7feb549 [ 2555.965832][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2555.985524][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2555.993970][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2556.001953][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2556.009942][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2556.017937][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2556.025940][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2556.034059][T12538] [ 2556.040932][T12538] Uninit was stored to memory at: [ 2556.046649][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2556.052055][T12538] get_compat_msghdr+0x10c/0x280 [ 2556.057047][T12538] ___sys_recvmsg+0x289/0xb40 [ 2556.061918][T12538] do_recvmmsg+0x7c9/0x1200 [ 2556.066485][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2556.071221][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2556.077895][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2556.083097][T12538] do_fast_syscall_32+0x33/0x70 [ 2556.088004][T12538] do_SYSENTER_32+0x1b/0x20 [ 2556.092752][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2556.099150][T12538] [ 2556.101504][T12538] Uninit was stored to memory at: [ 2556.106753][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2556.112258][T12538] get_compat_msghdr+0x10c/0x280 [ 2556.117252][T12538] ___sys_recvmsg+0x289/0xb40 [ 2556.122157][T12538] do_recvmmsg+0x7c9/0x1200 [ 2556.126716][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2556.131473][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2556.138133][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2556.145008][T12538] do_fast_syscall_32+0x33/0x70 [ 2556.149927][T12538] do_SYSENTER_32+0x1b/0x20 [ 2556.154646][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2556.161025][T12538] [ 2556.163539][T12538] Uninit was stored to memory at: [ 2556.168621][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2556.173907][T12538] get_compat_msghdr+0x10c/0x280 [ 2556.178891][T12538] ___sys_recvmsg+0x289/0xb40 [ 2556.183792][T12538] do_recvmmsg+0x7c9/0x1200 [ 2556.188347][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2556.193270][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2556.199685][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2556.204884][T12538] do_fast_syscall_32+0x33/0x70 [ 2556.209779][T12538] do_SYSENTER_32+0x1b/0x20 [ 2556.214501][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2556.220877][T12538] [ 2556.223386][T12538] Uninit was stored to memory at: [ 2556.228467][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2556.233783][T12538] get_compat_msghdr+0x10c/0x280 [ 2556.238773][T12538] ___sys_recvmsg+0x289/0xb40 [ 2556.243686][T12538] do_recvmmsg+0x7c9/0x1200 [ 2556.248240][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2556.253124][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2556.259509][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2556.264752][T12538] do_fast_syscall_32+0x33/0x70 [ 2556.269711][T12538] do_SYSENTER_32+0x1b/0x20 [ 2556.274450][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2556.280833][T12538] [ 2556.283345][T12538] Uninit was stored to memory at: [ 2556.288455][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2556.293799][T12538] get_compat_msghdr+0x10c/0x280 [ 2556.298829][T12538] ___sys_recvmsg+0x289/0xb40 [ 2556.303727][T12538] do_recvmmsg+0x7c9/0x1200 [ 2556.308303][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2556.313203][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2556.319589][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2556.324796][T12538] do_fast_syscall_32+0x33/0x70 [ 2556.329693][T12538] do_SYSENTER_32+0x1b/0x20 [ 2556.334412][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2556.340820][T12538] [ 2556.343334][T12538] Uninit was stored to memory at: [ 2556.348518][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2556.353834][T12538] get_compat_msghdr+0x10c/0x280 [ 2556.358825][T12538] ___sys_recvmsg+0x289/0xb40 [ 2556.363693][T12538] do_recvmmsg+0x7c9/0x1200 [ 2556.368271][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2556.373165][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2556.379551][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2556.384821][T12538] do_fast_syscall_32+0x33/0x70 [ 2556.389713][T12538] do_SYSENTER_32+0x1b/0x20 [ 2556.394384][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2556.400762][T12538] [ 2556.403287][T12538] Uninit was stored to memory at: [ 2556.408384][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2556.413736][T12538] get_compat_msghdr+0x10c/0x280 [ 2556.418728][T12538] ___sys_recvmsg+0x289/0xb40 [ 2556.423582][T12538] do_recvmmsg+0x7c9/0x1200 [ 2556.428139][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2556.433035][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2556.439426][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2556.444695][T12538] do_fast_syscall_32+0x33/0x70 [ 2556.449596][T12538] do_SYSENTER_32+0x1b/0x20 [ 2556.454259][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2556.460725][T12538] [ 2556.463233][T12538] Local variable msg_sys created at: [ 2556.468529][T12538] do_recvmmsg+0xc9/0x1200 [ 2556.473181][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2556.594657][T12538] not chained 1050000 origins [ 2556.599380][T12538] CPU: 1 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2556.609636][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2556.619726][T12538] Call Trace: [ 2556.623027][T12538] [ 2556.625960][T12538] dump_stack_lvl+0x200/0x28c [ 2556.630667][T12538] dump_stack+0x29/0x2c [ 2556.634836][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2556.640676][T12538] ? preempt_count_sub+0xfc/0x340 [ 2556.645818][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2556.651251][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2556.656520][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2556.661677][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2556.667543][T12538] ? should_fail+0x79/0x9c0 [ 2556.672082][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2556.677223][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2556.683499][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2556.689598][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2556.695034][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2556.700885][T12538] __msan_chain_origin+0xbd/0x140 [ 2556.705966][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2556.711155][T12538] get_compat_msghdr+0x10c/0x280 [ 2556.716141][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2556.720891][T12538] ___sys_recvmsg+0x289/0xb40 [ 2556.725608][T12538] ? __schedule+0x176c/0x21c0 [ 2556.731116][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2556.736277][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2556.742119][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2556.747456][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2556.753411][T12538] do_recvmmsg+0x7c9/0x1200 [ 2556.758156][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2556.763371][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2556.768539][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2556.773622][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2556.780268][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2556.784986][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2556.791356][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2556.796422][T12538] do_fast_syscall_32+0x33/0x70 [ 2556.801296][T12538] do_SYSENTER_32+0x1b/0x20 [ 2556.805836][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2556.812202][T12538] RIP: 0023:0xf7feb549 [ 2556.816321][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2556.835977][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2556.844415][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2556.852403][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2556.860391][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2556.868370][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2556.876368][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2556.884475][T12538] [ 2556.890621][T12538] Uninit was stored to memory at: [ 2556.896234][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2556.901415][T12538] get_compat_msghdr+0x10c/0x280 [ 2556.906516][T12538] ___sys_recvmsg+0x289/0xb40 [ 2556.911248][T12538] do_recvmmsg+0x7c9/0x1200 [ 2556.915902][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2556.920630][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2556.927119][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2556.932307][T12538] do_fast_syscall_32+0x33/0x70 [ 2556.937292][T12538] do_SYSENTER_32+0x1b/0x20 [ 2556.941935][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2556.948340][T12538] [ 2556.950673][T12538] Uninit was stored to memory at: [ 2556.955882][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2556.961308][T12538] get_compat_msghdr+0x10c/0x280 [ 2556.966462][T12538] ___sys_recvmsg+0x289/0xb40 [ 2556.971191][T12538] do_recvmmsg+0x7c9/0x1200 [ 2556.975894][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2556.980764][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2556.987397][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2556.992616][T12538] do_fast_syscall_32+0x33/0x70 [ 2556.997532][T12538] do_SYSENTER_32+0x1b/0x20 [ 2557.002220][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2557.008693][T12538] [ 2557.011164][T12538] Uninit was stored to memory at: [ 2557.016409][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2557.021702][T12538] get_compat_msghdr+0x10c/0x280 [ 2557.026695][T12538] ___sys_recvmsg+0x289/0xb40 [ 2557.032808][T12538] do_recvmmsg+0x7c9/0x1200 [ 2557.037362][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2557.044278][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2557.050675][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2557.055904][T12538] do_fast_syscall_32+0x33/0x70 [ 2557.060801][T12538] do_SYSENTER_32+0x1b/0x20 [ 2557.065495][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2557.072077][T12538] [ 2557.074471][T12538] Uninit was stored to memory at: [ 2557.080482][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2557.085816][T12538] get_compat_msghdr+0x10c/0x280 [ 2557.090817][T12538] ___sys_recvmsg+0x289/0xb40 [ 2557.095816][T12538] do_recvmmsg+0x7c9/0x1200 [ 2557.100372][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2557.105264][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2557.111750][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2557.116839][T12538] do_fast_syscall_32+0x33/0x70 [ 2557.121873][T12538] do_SYSENTER_32+0x1b/0x20 [ 2557.126420][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2557.133134][T12538] [ 2557.135473][T12538] Uninit was stored to memory at: [ 2557.140565][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2557.145912][T12538] get_compat_msghdr+0x10c/0x280 [ 2557.150990][T12538] ___sys_recvmsg+0x289/0xb40 [ 2557.155865][T12538] do_recvmmsg+0x7c9/0x1200 [ 2557.160420][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2557.165300][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2557.171823][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2557.177074][T12538] do_fast_syscall_32+0x33/0x70 [ 2557.182096][T12538] do_SYSENTER_32+0x1b/0x20 [ 2557.186644][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2557.193273][T12538] [ 2557.195624][T12538] Uninit was stored to memory at: [ 2557.200692][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2557.205996][T12538] get_compat_msghdr+0x10c/0x280 [ 2557.210980][T12538] ___sys_recvmsg+0x289/0xb40 [ 2557.215993][T12538] do_recvmmsg+0x7c9/0x1200 [ 2557.220546][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2557.225408][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2557.231883][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2557.237975][T12538] do_fast_syscall_32+0x33/0x70 [ 2557.243016][T12538] do_SYSENTER_32+0x1b/0x20 [ 2557.247656][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2557.254197][T12538] [ 2557.256527][T12538] Uninit was stored to memory at: [ 2557.261717][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2557.266969][T12538] get_compat_msghdr+0x10c/0x280 [ 2557.272131][T12538] ___sys_recvmsg+0x289/0xb40 [ 2557.276862][T12538] do_recvmmsg+0x7c9/0x1200 [ 2557.281439][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2557.286274][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2557.292852][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2557.297925][T12538] do_fast_syscall_32+0x33/0x70 [ 2557.302956][T12538] do_SYSENTER_32+0x1b/0x20 [ 2557.307501][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2557.314025][T12538] [ 2557.316362][T12538] Local variable msg_sys created at: [ 2557.321784][T12538] do_recvmmsg+0xc9/0x1200 [ 2557.327811][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2557.453438][T12538] not chained 1060000 origins [ 2557.458180][T12538] CPU: 1 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2557.468354][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2557.478633][T12538] Call Trace: [ 2557.481945][T12538] [ 2557.484890][T12538] dump_stack_lvl+0x200/0x28c [ 2557.489640][T12538] dump_stack+0x29/0x2c [ 2557.493843][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2557.499621][T12538] ? preempt_count_sub+0xfc/0x340 [ 2557.504692][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2557.509918][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2557.515069][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2557.520231][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2557.526071][T12538] ? should_fail+0x79/0x9c0 [ 2557.530589][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2557.535730][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2557.542027][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2557.548162][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2557.553304][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2557.559186][T12538] __msan_chain_origin+0xbd/0x140 [ 2557.564331][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2557.569510][T12538] get_compat_msghdr+0x10c/0x280 [ 2557.574682][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2557.579424][T12538] ___sys_recvmsg+0x289/0xb40 [ 2557.584164][T12538] ? __schedule+0x176c/0x21c0 [ 2557.588902][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2557.594057][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2557.599923][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2557.605094][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2557.610965][T12538] do_recvmmsg+0x7c9/0x1200 [ 2557.615501][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2557.620700][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2557.625872][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2557.630693][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2557.637359][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2557.642099][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2557.648565][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2557.653627][T12538] do_fast_syscall_32+0x33/0x70 [ 2557.658525][T12538] do_SYSENTER_32+0x1b/0x20 [ 2557.663096][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2557.669493][T12538] RIP: 0023:0xf7feb549 [ 2557.673603][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2557.693508][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2557.701980][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2557.709989][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2557.718009][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2557.726019][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2557.734002][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2557.742018][T12538] [ 2557.747777][T12538] Uninit was stored to memory at: [ 2557.753430][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2557.758601][T12538] get_compat_msghdr+0x10c/0x280 [ 2557.763743][T12538] ___sys_recvmsg+0x289/0xb40 [ 2557.768494][T12538] do_recvmmsg+0x7c9/0x1200 [ 2557.773146][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2557.777884][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2557.784465][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2557.789548][T12538] do_fast_syscall_32+0x33/0x70 [ 2557.794597][T12538] do_SYSENTER_32+0x1b/0x20 [ 2557.799150][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2557.805696][T12538] [ 2557.808034][T12538] Uninit was stored to memory at: [ 2557.813277][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2557.818437][T12538] get_compat_msghdr+0x10c/0x280 [ 2557.823701][T12538] ___sys_recvmsg+0x289/0xb40 [ 2557.828459][T12538] do_recvmmsg+0x7c9/0x1200 [ 2557.833194][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2557.838086][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2557.844651][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2557.849749][T12538] do_fast_syscall_32+0x33/0x70 [ 2557.854790][T12538] do_SYSENTER_32+0x1b/0x20 [ 2557.859337][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2557.865859][T12538] [ 2557.868188][T12538] Uninit was stored to memory at: [ 2557.873448][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2557.878636][T12538] get_compat_msghdr+0x10c/0x280 [ 2557.883796][T12538] ___sys_recvmsg+0x289/0xb40 [ 2557.888537][T12538] do_recvmmsg+0x7c9/0x1200 [ 2557.893324][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2557.898066][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2557.904625][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2557.909728][T12538] do_fast_syscall_32+0x33/0x70 [ 2557.914799][T12538] do_SYSENTER_32+0x1b/0x20 [ 2557.919349][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2557.925891][T12538] [ 2557.928228][T12538] Uninit was stored to memory at: [ 2557.933422][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2557.938582][T12538] get_compat_msghdr+0x10c/0x280 [ 2557.943726][T12538] ___sys_recvmsg+0x289/0xb40 [ 2557.948462][T12538] do_recvmmsg+0x7c9/0x1200 [ 2557.953179][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2557.957910][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2557.964458][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2557.969528][T12538] do_fast_syscall_32+0x33/0x70 [ 2557.974559][T12538] do_SYSENTER_32+0x1b/0x20 [ 2557.979117][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2557.985666][T12538] [ 2557.988002][T12538] Uninit was stored to memory at: [ 2557.993384][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2557.998543][T12538] get_compat_msghdr+0x10c/0x280 [ 2558.003806][T12538] ___sys_recvmsg+0x289/0xb40 [ 2558.008536][T12538] do_recvmmsg+0x7c9/0x1200 [ 2558.013515][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2558.018279][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2558.024823][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2558.029891][T12538] do_fast_syscall_32+0x33/0x70 [ 2558.034936][T12538] do_SYSENTER_32+0x1b/0x20 [ 2558.039500][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2558.046132][T12538] [ 2558.048465][T12538] Uninit was stored to memory at: [ 2558.053796][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2558.058957][T12538] get_compat_msghdr+0x10c/0x280 [ 2558.064079][T12538] ___sys_recvmsg+0x289/0xb40 [ 2558.068864][T12538] do_recvmmsg+0x7c9/0x1200 [ 2558.073555][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2558.078280][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2558.084769][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2558.089843][T12538] do_fast_syscall_32+0x33/0x70 [ 2558.094852][T12538] do_SYSENTER_32+0x1b/0x20 [ 2558.099398][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2558.105920][T12538] [ 2558.108253][T12538] Uninit was stored to memory at: [ 2558.113511][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2558.118667][T12538] get_compat_msghdr+0x10c/0x280 [ 2558.123802][T12538] ___sys_recvmsg+0x289/0xb40 [ 2558.128529][T12538] do_recvmmsg+0x7c9/0x1200 [ 2558.133247][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2558.137971][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2558.144493][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2558.149592][T12538] do_fast_syscall_32+0x33/0x70 [ 2558.154651][T12538] do_SYSENTER_32+0x1b/0x20 [ 2558.159249][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2558.165744][T12538] [ 2558.168073][T12538] Local variable msg_sys created at: [ 2558.173508][T12538] do_recvmmsg+0xc9/0x1200 [ 2558.177977][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2558.298312][T12538] not chained 1070000 origins [ 2558.303282][T12538] CPU: 1 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2558.313459][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2558.323535][T12538] Call Trace: [ 2558.326813][T12538] [ 2558.329743][T12538] dump_stack_lvl+0x200/0x28c [ 2558.334453][T12538] dump_stack+0x29/0x2c [ 2558.338650][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2558.344429][T12538] ? preempt_count_sub+0xfc/0x340 [ 2558.349503][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2558.354989][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2558.360157][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2558.365300][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2558.371163][T12538] ? should_fail+0x79/0x9c0 [ 2558.375685][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2558.380852][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2558.387151][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2558.393275][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2558.398438][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2558.404277][T12538] __msan_chain_origin+0xbd/0x140 [ 2558.409347][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2558.414524][T12538] get_compat_msghdr+0x10c/0x280 [ 2558.419508][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2558.424225][T12538] ___sys_recvmsg+0x289/0xb40 [ 2558.428965][T12538] ? __schedule+0x176c/0x21c0 [ 2558.433695][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2558.438868][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2558.444723][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2558.449868][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2558.455712][T12538] do_recvmmsg+0x7c9/0x1200 [ 2558.460276][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2558.465358][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2558.470524][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2558.475314][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2558.481879][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2558.486647][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2558.493407][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2558.498484][T12538] do_fast_syscall_32+0x33/0x70 [ 2558.503451][T12538] do_SYSENTER_32+0x1b/0x20 [ 2558.507997][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2558.514535][T12538] RIP: 0023:0xf7feb549 [ 2558.518626][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2558.538275][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2558.546726][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2558.554806][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2558.562805][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2558.570798][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2558.578780][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2558.586793][T12538] [ 2558.592637][T12538] Uninit was stored to memory at: [ 2558.597750][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2558.603366][T12538] get_compat_msghdr+0x10c/0x280 [ 2558.608351][T12538] ___sys_recvmsg+0x289/0xb40 [ 2558.613191][T12538] do_recvmmsg+0x7c9/0x1200 [ 2558.617758][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2558.622654][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2558.629044][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2558.634269][T12538] do_fast_syscall_32+0x33/0x70 [ 2558.639166][T12538] do_SYSENTER_32+0x1b/0x20 [ 2558.643876][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2558.650252][T12538] [ 2558.652739][T12538] Uninit was stored to memory at: [ 2558.657832][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2558.663153][T12538] get_compat_msghdr+0x10c/0x280 [ 2558.668139][T12538] ___sys_recvmsg+0x289/0xb40 [ 2558.673000][T12538] do_recvmmsg+0x7c9/0x1200 [ 2558.677573][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2558.682461][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2558.688871][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2558.694089][T12538] do_fast_syscall_32+0x33/0x70 [ 2558.698992][T12538] do_SYSENTER_32+0x1b/0x20 [ 2558.703702][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2558.710087][T12538] [ 2558.712575][T12538] Uninit was stored to memory at: [ 2558.717655][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2558.722974][T12538] get_compat_msghdr+0x10c/0x280 [ 2558.727961][T12538] ___sys_recvmsg+0x289/0xb40 [ 2558.732853][T12538] do_recvmmsg+0x7c9/0x1200 [ 2558.737418][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2558.742280][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2558.748669][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2558.753861][T12538] do_fast_syscall_32+0x33/0x70 [ 2558.758756][T12538] do_SYSENTER_32+0x1b/0x20 [ 2558.763442][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2558.769821][T12538] [ 2558.772302][T12538] Uninit was stored to memory at: [ 2558.777381][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2558.782675][T12538] get_compat_msghdr+0x10c/0x280 [ 2558.787667][T12538] ___sys_recvmsg+0x289/0xb40 [ 2558.792560][T12538] do_recvmmsg+0x7c9/0x1200 [ 2558.797128][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2558.802184][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2558.808577][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2558.813814][T12538] do_fast_syscall_32+0x33/0x70 [ 2558.818708][T12538] do_SYSENTER_32+0x1b/0x20 [ 2558.823392][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2558.829776][T12538] [ 2558.832270][T12538] Uninit was stored to memory at: [ 2558.837365][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2558.842685][T12538] get_compat_msghdr+0x10c/0x280 [ 2558.847683][T12538] ___sys_recvmsg+0x289/0xb40 [ 2558.852556][T12538] do_recvmmsg+0x7c9/0x1200 [ 2558.857117][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2558.862000][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2558.868388][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2558.873603][T12538] do_fast_syscall_32+0x33/0x70 [ 2558.878513][T12538] do_SYSENTER_32+0x1b/0x20 [ 2558.883227][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2558.889615][T12538] [ 2558.892098][T12538] Uninit was stored to memory at: [ 2558.897216][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2558.902477][T12538] get_compat_msghdr+0x10c/0x280 [ 2558.907466][T12538] ___sys_recvmsg+0x289/0xb40 [ 2558.912342][T12538] do_recvmmsg+0x7c9/0x1200 [ 2558.916896][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2558.921713][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2558.928120][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2558.933331][T12538] do_fast_syscall_32+0x33/0x70 [ 2558.938225][T12538] do_SYSENTER_32+0x1b/0x20 [ 2558.942924][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2558.949301][T12538] [ 2558.951758][T12538] Uninit was stored to memory at: [ 2558.956848][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2558.962159][T12538] get_compat_msghdr+0x10c/0x280 [ 2558.967143][T12538] ___sys_recvmsg+0x289/0xb40 [ 2558.972018][T12538] do_recvmmsg+0x7c9/0x1200 [ 2558.976572][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2558.981284][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2558.987855][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2558.993068][T12538] do_fast_syscall_32+0x33/0x70 [ 2558.997982][T12538] do_SYSENTER_32+0x1b/0x20 [ 2559.002697][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2559.009081][T12538] [ 2559.011428][T12538] Local variable msg_sys created at: [ 2559.016967][T12538] do_recvmmsg+0xc9/0x1200 [ 2559.021438][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2559.145517][T12538] not chained 1080000 origins [ 2559.150258][T12538] CPU: 0 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2559.160441][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2559.170512][T12538] Call Trace: [ 2559.173798][T12538] [ 2559.176905][T12538] dump_stack_lvl+0x200/0x28c [ 2559.181619][T12538] dump_stack+0x29/0x2c [ 2559.185801][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2559.191563][T12538] ? preempt_count_sub+0xfc/0x340 [ 2559.196638][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2559.201884][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2559.207053][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2559.212457][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2559.218295][T12538] ? should_fail+0x79/0x9c0 [ 2559.222824][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2559.227975][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2559.234258][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2559.240354][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2559.245495][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2559.251362][T12538] __msan_chain_origin+0xbd/0x140 [ 2559.256444][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2559.261602][T12538] get_compat_msghdr+0x10c/0x280 [ 2559.266579][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2559.271291][T12538] ___sys_recvmsg+0x289/0xb40 [ 2559.276149][T12538] ? __schedule+0x176c/0x21c0 [ 2559.280873][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2559.286035][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2559.291884][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2559.297049][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2559.302918][T12538] do_recvmmsg+0x7c9/0x1200 [ 2559.307507][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2559.312599][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2559.317749][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2559.322549][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2559.329099][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2559.333833][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2559.340207][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2559.345260][T12538] do_fast_syscall_32+0x33/0x70 [ 2559.350181][T12538] do_SYSENTER_32+0x1b/0x20 [ 2559.354726][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2559.361100][T12538] RIP: 0023:0xf7feb549 [ 2559.365180][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2559.384981][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2559.393422][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2559.401694][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2559.409692][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2559.417673][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2559.425648][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2559.433634][T12538] [ 2559.440130][T12538] Uninit was stored to memory at: [ 2559.445794][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2559.450962][T12538] get_compat_msghdr+0x10c/0x280 [ 2559.456075][T12538] ___sys_recvmsg+0x289/0xb40 [ 2559.460803][T12538] do_recvmmsg+0x7c9/0x1200 [ 2559.465523][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2559.470337][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2559.476874][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2559.482044][T12538] do_fast_syscall_32+0x33/0x70 [ 2559.486937][T12538] do_SYSENTER_32+0x1b/0x20 [ 2559.491455][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2559.497954][T12538] [ 2559.500303][T12538] Uninit was stored to memory at: [ 2559.505511][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2559.510691][T12538] get_compat_msghdr+0x10c/0x280 [ 2559.515883][T12538] ___sys_recvmsg+0x289/0xb40 [ 2559.520608][T12538] do_recvmmsg+0x7c9/0x1200 [ 2559.525307][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2559.530033][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2559.536527][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2559.541685][T12538] do_fast_syscall_32+0x33/0x70 [ 2559.546577][T12538] do_SYSENTER_32+0x1b/0x20 [ 2559.551118][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2559.557607][T12538] [ 2559.559934][T12538] Uninit was stored to memory at: [ 2559.565126][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2559.570351][T12538] get_compat_msghdr+0x10c/0x280 [ 2559.575499][T12538] ___sys_recvmsg+0x289/0xb40 [ 2559.580235][T12538] do_recvmmsg+0x7c9/0x1200 [ 2559.584928][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2559.589657][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2559.596162][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2559.601252][T12538] do_fast_syscall_32+0x33/0x70 [ 2559.606321][T12538] do_SYSENTER_32+0x1b/0x20 [ 2559.610886][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2559.617408][T12538] [ 2559.619737][T12538] Uninit was stored to memory at: [ 2559.624988][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2559.630149][T12538] get_compat_msghdr+0x10c/0x280 [ 2559.635303][T12538] ___sys_recvmsg+0x289/0xb40 [ 2559.640118][T12538] do_recvmmsg+0x7c9/0x1200 [ 2559.644816][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2559.649649][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2559.656177][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2559.661253][T12538] do_fast_syscall_32+0x33/0x70 [ 2559.666354][T12538] do_SYSENTER_32+0x1b/0x20 [ 2559.670911][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2559.677482][T12538] [ 2559.679834][T12538] Uninit was stored to memory at: [ 2559.685111][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2559.690278][T12538] get_compat_msghdr+0x10c/0x280 [ 2559.695482][T12538] ___sys_recvmsg+0x289/0xb40 [ 2559.700231][T12538] do_recvmmsg+0x7c9/0x1200 [ 2559.704913][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2559.709757][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2559.716323][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2559.721400][T12538] do_fast_syscall_32+0x33/0x70 [ 2559.726479][T12538] do_SYSENTER_32+0x1b/0x20 [ 2559.731026][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2559.737549][T12538] [ 2559.739885][T12538] Uninit was stored to memory at: [ 2559.745128][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2559.750290][T12538] get_compat_msghdr+0x10c/0x280 [ 2559.755431][T12538] ___sys_recvmsg+0x289/0xb40 [ 2559.760166][T12538] do_recvmmsg+0x7c9/0x1200 [ 2559.764951][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2559.769688][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2559.776282][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2559.781366][T12538] do_fast_syscall_32+0x33/0x70 [ 2559.786410][T12538] do_SYSENTER_32+0x1b/0x20 [ 2559.790985][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2559.797503][T12538] [ 2559.799838][T12538] Uninit was stored to memory at: [ 2559.805144][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2559.810308][T12538] get_compat_msghdr+0x10c/0x280 [ 2559.815489][T12538] ___sys_recvmsg+0x289/0xb40 [ 2559.822175][T12538] do_recvmmsg+0x7c9/0x1200 [ 2559.826731][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2559.831435][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2559.837959][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2559.843207][T12538] do_fast_syscall_32+0x33/0x70 [ 2559.848107][T12538] do_SYSENTER_32+0x1b/0x20 [ 2559.852820][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2559.859202][T12538] [ 2559.861732][T12538] Local variable msg_sys created at: [ 2559.867028][T12538] do_recvmmsg+0xc9/0x1200 [ 2559.871492][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2560.002750][T12538] not chained 1090000 origins [ 2560.007453][T12538] CPU: 1 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2560.017706][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2560.027779][T12538] Call Trace: [ 2560.031082][T12538] [ 2560.034027][T12538] dump_stack_lvl+0x200/0x28c [ 2560.038756][T12538] dump_stack+0x29/0x2c [ 2560.042943][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2560.048696][T12538] ? preempt_count_sub+0xfc/0x340 [ 2560.053750][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2560.059077][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2560.064233][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2560.069557][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2560.075442][T12538] ? should_fail+0x79/0x9c0 [ 2560.080071][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2560.085304][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2560.091587][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2560.097719][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2560.102871][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2560.108737][T12538] __msan_chain_origin+0xbd/0x140 [ 2560.113809][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2560.118963][T12538] get_compat_msghdr+0x10c/0x280 [ 2560.123940][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2560.128687][T12538] ___sys_recvmsg+0x289/0xb40 [ 2560.133405][T12538] ? __schedule+0x176c/0x21c0 [ 2560.138123][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2560.143264][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2560.149105][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2560.154241][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2560.160081][T12538] do_recvmmsg+0x7c9/0x1200 [ 2560.164616][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2560.169705][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2560.174850][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2560.179694][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2560.186251][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2560.191080][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2560.197463][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2560.202549][T12538] do_fast_syscall_32+0x33/0x70 [ 2560.207443][T12538] do_SYSENTER_32+0x1b/0x20 [ 2560.211970][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2560.218347][T12538] RIP: 0023:0xf7feb549 [ 2560.222435][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2560.242067][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2560.250525][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2560.258522][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2560.266539][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2560.274528][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2560.282834][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2560.290841][T12538] [ 2560.298333][T12538] Uninit was stored to memory at: [ 2560.304312][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2560.309486][T12538] get_compat_msghdr+0x10c/0x280 [ 2560.314589][T12538] ___sys_recvmsg+0x289/0xb40 [ 2560.319339][T12538] do_recvmmsg+0x7c9/0x1200 [ 2560.323989][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2560.328736][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2560.335218][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2560.340295][T12538] do_fast_syscall_32+0x33/0x70 [ 2560.345348][T12538] do_SYSENTER_32+0x1b/0x20 [ 2560.349897][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2560.356524][T12538] [ 2560.358855][T12538] Uninit was stored to memory at: [ 2560.364100][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2560.369255][T12538] get_compat_msghdr+0x10c/0x280 [ 2560.374381][T12538] ___sys_recvmsg+0x289/0xb40 [ 2560.379138][T12538] do_recvmmsg+0x7c9/0x1200 [ 2560.383834][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2560.388568][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2560.395093][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2560.400164][T12538] do_fast_syscall_32+0x33/0x70 [ 2560.405194][T12538] do_SYSENTER_32+0x1b/0x20 [ 2560.409739][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2560.416213][T12538] [ 2560.418568][T12538] Uninit was stored to memory at: [ 2560.423917][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2560.429077][T12538] get_compat_msghdr+0x10c/0x280 [ 2560.434191][T12538] ___sys_recvmsg+0x289/0xb40 [ 2560.438925][T12538] do_recvmmsg+0x7c9/0x1200 [ 2560.443629][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2560.448360][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2560.454906][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2560.460007][T12538] do_fast_syscall_32+0x33/0x70 [ 2560.465049][T12538] do_SYSENTER_32+0x1b/0x20 [ 2560.469611][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2560.476105][T12538] [ 2560.478436][T12538] Uninit was stored to memory at: [ 2560.483671][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2560.488828][T12538] get_compat_msghdr+0x10c/0x280 [ 2560.493967][T12538] ___sys_recvmsg+0x289/0xb40 [ 2560.498691][T12538] do_recvmmsg+0x7c9/0x1200 [ 2560.503385][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2560.508115][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2560.514647][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2560.519723][T12538] do_fast_syscall_32+0x33/0x70 [ 2560.524760][T12538] do_SYSENTER_32+0x1b/0x20 [ 2560.529307][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2560.535841][T12538] [ 2560.538179][T12538] Uninit was stored to memory at: [ 2560.543363][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2560.548532][T12538] get_compat_msghdr+0x10c/0x280 [ 2560.553696][T12538] ___sys_recvmsg+0x289/0xb40 [ 2560.558443][T12538] do_recvmmsg+0x7c9/0x1200 [ 2560.563161][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2560.567898][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2560.574449][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2560.579658][T12538] do_fast_syscall_32+0x33/0x70 [ 2560.584856][T12538] do_SYSENTER_32+0x1b/0x20 [ 2560.589443][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2560.595987][T12538] [ 2560.598432][T12538] Uninit was stored to memory at: [ 2560.603806][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2560.608972][T12538] get_compat_msghdr+0x10c/0x280 [ 2560.614116][T12538] ___sys_recvmsg+0x289/0xb40 [ 2560.618853][T12538] do_recvmmsg+0x7c9/0x1200 [ 2560.623654][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2560.628392][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2560.634923][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2560.639995][T12538] do_fast_syscall_32+0x33/0x70 [ 2560.645050][T12538] do_SYSENTER_32+0x1b/0x20 [ 2560.649600][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2560.656117][T12538] [ 2560.658470][T12538] Uninit was stored to memory at: [ 2560.663736][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2560.668903][T12538] get_compat_msghdr+0x10c/0x280 [ 2560.674054][T12538] ___sys_recvmsg+0x289/0xb40 [ 2560.678792][T12538] do_recvmmsg+0x7c9/0x1200 [ 2560.683503][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2560.688247][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2560.694805][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2560.699998][T12538] do_fast_syscall_32+0x33/0x70 [ 2560.705037][T12538] do_SYSENTER_32+0x1b/0x20 [ 2560.709584][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2560.716142][T12538] [ 2560.718480][T12538] Local variable msg_sys created at: [ 2560.723962][T12538] do_recvmmsg+0xc9/0x1200 [ 2560.728439][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2560.855382][T12538] not chained 1100000 origins [ 2560.860798][T12538] CPU: 1 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2560.870971][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2560.881039][T12538] Call Trace: [ 2560.884326][T12538] [ 2560.887360][T12538] dump_stack_lvl+0x200/0x28c [ 2560.892094][T12538] dump_stack+0x29/0x2c [ 2560.896290][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2560.902066][T12538] ? preempt_count_sub+0xfc/0x340 [ 2560.907145][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2560.912388][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2560.917566][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2560.922711][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2560.928578][T12538] ? should_fail+0x79/0x9c0 [ 2560.933105][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2560.938265][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2560.944545][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2560.950776][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2560.955944][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2560.961935][T12538] __msan_chain_origin+0xbd/0x140 [ 2560.967012][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2560.972176][T12538] get_compat_msghdr+0x10c/0x280 [ 2560.977170][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2560.981917][T12538] ___sys_recvmsg+0x289/0xb40 [ 2560.986657][T12538] ? __schedule+0x176c/0x21c0 [ 2560.991382][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2560.996541][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2561.002408][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2561.007571][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2561.013457][T12538] do_recvmmsg+0x7c9/0x1200 [ 2561.018019][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2561.023115][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2561.028286][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2561.033084][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2561.039644][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2561.044370][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2561.050780][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2561.055862][T12538] do_fast_syscall_32+0x33/0x70 [ 2561.060848][T12538] do_SYSENTER_32+0x1b/0x20 [ 2561.065376][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2561.071763][T12538] RIP: 0023:0xf7feb549 [ 2561.075861][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2561.095611][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2561.104097][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2561.112198][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2561.120195][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2561.128615][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2561.136612][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2561.144790][T12538] [ 2561.150559][T12538] Uninit was stored to memory at: [ 2561.156137][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2561.161390][T12538] get_compat_msghdr+0x10c/0x280 [ 2561.166483][T12538] ___sys_recvmsg+0x289/0xb40 [ 2561.171249][T12538] do_recvmmsg+0x7c9/0x1200 [ 2561.175915][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2561.180654][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2561.187137][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2561.192314][T12538] do_fast_syscall_32+0x33/0x70 [ 2561.197219][T12538] do_SYSENTER_32+0x1b/0x20 [ 2561.201862][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2561.208255][T12538] [ 2561.210595][T12538] Uninit was stored to memory at: [ 2561.215799][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2561.220962][T12538] get_compat_msghdr+0x10c/0x280 [ 2561.226046][T12538] ___sys_recvmsg+0x289/0xb40 [ 2561.230787][T12538] do_recvmmsg+0x7c9/0x1200 [ 2561.235433][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2561.240164][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2561.246714][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2561.251885][T12538] do_fast_syscall_32+0x33/0x70 [ 2561.256789][T12538] do_SYSENTER_32+0x1b/0x20 [ 2561.261342][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2561.267826][T12538] [ 2561.270156][T12538] Uninit was stored to memory at: [ 2561.275396][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2561.280556][T12538] get_compat_msghdr+0x10c/0x280 [ 2561.285681][T12538] ___sys_recvmsg+0x289/0xb40 [ 2561.290435][T12538] do_recvmmsg+0x7c9/0x1200 [ 2561.295129][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2561.299866][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2561.306394][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2561.311495][T12538] do_fast_syscall_32+0x33/0x70 [ 2561.316614][T12538] do_SYSENTER_32+0x1b/0x20 [ 2561.321165][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2561.327686][T12538] [ 2561.330033][T12538] Uninit was stored to memory at: [ 2561.335284][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2561.340624][T12538] get_compat_msghdr+0x10c/0x280 [ 2561.345752][T12538] ___sys_recvmsg+0x289/0xb40 [ 2561.350489][T12538] do_recvmmsg+0x7c9/0x1200 [ 2561.355163][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2561.359933][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2561.366485][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2561.371696][T12538] do_fast_syscall_32+0x33/0x70 [ 2561.376611][T12538] do_SYSENTER_32+0x1b/0x20 [ 2561.381133][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2561.387649][T12538] [ 2561.390014][T12538] Uninit was stored to memory at: [ 2561.395220][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2561.400378][T12538] get_compat_msghdr+0x10c/0x280 [ 2561.405503][T12538] ___sys_recvmsg+0x289/0xb40 [ 2561.410230][T12538] do_recvmmsg+0x7c9/0x1200 [ 2561.414888][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2561.419617][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2561.426170][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2561.431244][T12538] do_fast_syscall_32+0x33/0x70 [ 2561.436295][T12538] do_SYSENTER_32+0x1b/0x20 [ 2561.440871][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2561.447384][T12538] [ 2561.449720][T12538] Uninit was stored to memory at: [ 2561.454969][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2561.460128][T12538] get_compat_msghdr+0x10c/0x280 [ 2561.465270][T12538] ___sys_recvmsg+0x289/0xb40 [ 2561.470000][T12538] do_recvmmsg+0x7c9/0x1200 [ 2561.474664][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2561.479507][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2561.486031][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2561.491103][T12538] do_fast_syscall_32+0x33/0x70 [ 2561.496093][T12538] do_SYSENTER_32+0x1b/0x20 [ 2561.500642][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2561.507164][T12538] [ 2561.509498][T12538] Uninit was stored to memory at: [ 2561.514706][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2561.519873][T12538] get_compat_msghdr+0x10c/0x280 [ 2561.525001][T12538] ___sys_recvmsg+0x289/0xb40 [ 2561.529748][T12538] do_recvmmsg+0x7c9/0x1200 [ 2561.534471][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2561.539225][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2561.545749][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2561.550830][T12538] do_fast_syscall_32+0x33/0x70 [ 2561.555966][T12538] do_SYSENTER_32+0x1b/0x20 [ 2561.560533][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2561.567022][T12538] [ 2561.569364][T12538] Local variable msg_sys created at: [ 2561.575080][T12538] do_recvmmsg+0xc9/0x1200 [ 2561.579678][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2561.716975][T12538] not chained 1110000 origins [ 2561.721952][T12538] CPU: 1 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2561.732153][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2561.742224][T12538] Call Trace: [ 2561.745513][T12538] [ 2561.748453][T12538] dump_stack_lvl+0x200/0x28c [ 2561.753174][T12538] dump_stack+0x29/0x2c [ 2561.757358][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2561.763120][T12538] ? preempt_count_sub+0xfc/0x340 [ 2561.768227][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2561.773504][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2561.778700][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2561.783949][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2561.789823][T12538] ? should_fail+0x79/0x9c0 [ 2561.794363][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2561.799532][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2561.805854][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2561.812050][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2561.817189][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2561.823025][T12538] __msan_chain_origin+0xbd/0x140 [ 2561.828093][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2561.833252][T12538] get_compat_msghdr+0x10c/0x280 [ 2561.838360][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2561.843086][T12538] ___sys_recvmsg+0x289/0xb40 [ 2561.847801][T12538] ? __schedule+0x176c/0x21c0 [ 2561.852509][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2561.857649][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2561.863493][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2561.868657][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2561.874634][T12538] do_recvmmsg+0x7c9/0x1200 [ 2561.879348][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2561.884425][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2561.889600][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2561.894415][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2561.900953][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2561.905670][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2561.912037][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2561.917104][T12538] do_fast_syscall_32+0x33/0x70 [ 2561.921996][T12538] do_SYSENTER_32+0x1b/0x20 [ 2561.926532][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2561.932889][T12538] RIP: 0023:0xf7feb549 [ 2561.936977][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2561.956630][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2561.965065][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2561.973048][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2561.981032][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2561.989013][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2561.997024][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2562.005036][T12538] [ 2562.010733][T12538] Uninit was stored to memory at: [ 2562.016303][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2562.021690][T12538] get_compat_msghdr+0x10c/0x280 [ 2562.026690][T12538] ___sys_recvmsg+0x289/0xb40 [ 2562.031424][T12538] do_recvmmsg+0x7c9/0x1200 [ 2562.036110][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2562.040840][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2562.047351][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2562.052590][T12538] do_fast_syscall_32+0x33/0x70 [ 2562.057597][T12538] do_SYSENTER_32+0x1b/0x20 [ 2562.062260][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2562.068663][T12538] [ 2562.070997][T12538] Uninit was stored to memory at: [ 2562.076290][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2562.081464][T12538] get_compat_msghdr+0x10c/0x280 [ 2562.086584][T12538] ___sys_recvmsg+0x289/0xb40 [ 2562.091332][T12538] do_recvmmsg+0x7c9/0x1200 [ 2562.096079][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2562.100813][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2562.107331][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2562.112567][T12538] do_fast_syscall_32+0x33/0x70 [ 2562.117478][T12538] do_SYSENTER_32+0x1b/0x20 [ 2562.122202][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2562.128586][T12538] [ 2562.130923][T12538] Uninit was stored to memory at: [ 2562.136153][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2562.141315][T12538] get_compat_msghdr+0x10c/0x280 [ 2562.146425][T12538] ___sys_recvmsg+0x289/0xb40 [ 2562.151157][T12538] do_recvmmsg+0x7c9/0x1200 [ 2562.155893][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2562.160625][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2562.167179][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2562.172356][T12538] do_fast_syscall_32+0x33/0x70 [ 2562.177255][T12538] do_SYSENTER_32+0x1b/0x20 [ 2562.181985][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2562.188371][T12538] [ 2562.190710][T12538] Uninit was stored to memory at: [ 2562.196000][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2562.201172][T12538] get_compat_msghdr+0x10c/0x280 [ 2562.206364][T12538] ___sys_recvmsg+0x289/0xb40 [ 2562.211100][T12538] do_recvmmsg+0x7c9/0x1200 [ 2562.215854][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2562.220588][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2562.227151][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2562.232329][T12538] do_fast_syscall_32+0x33/0x70 [ 2562.237266][T12538] do_SYSENTER_32+0x1b/0x20 [ 2562.242061][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2562.248444][T12538] [ 2562.250862][T12538] Uninit was stored to memory at: [ 2562.256169][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2562.261330][T12538] get_compat_msghdr+0x10c/0x280 [ 2562.266439][T12538] ___sys_recvmsg+0x289/0xb40 [ 2562.271168][T12538] do_recvmmsg+0x7c9/0x1200 [ 2562.275878][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2562.280623][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2562.287206][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2562.292377][T12538] do_fast_syscall_32+0x33/0x70 [ 2562.297271][T12538] do_SYSENTER_32+0x1b/0x20 [ 2562.301968][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2562.308351][T12538] [ 2562.310686][T12538] Uninit was stored to memory at: [ 2562.315979][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2562.321141][T12538] get_compat_msghdr+0x10c/0x280 [ 2562.326250][T12538] ___sys_recvmsg+0x289/0xb40 [ 2562.330981][T12538] do_recvmmsg+0x7c9/0x1200 [ 2562.335706][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2562.340439][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2562.346946][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2562.352116][T12538] do_fast_syscall_32+0x33/0x70 [ 2562.357074][T12538] do_SYSENTER_32+0x1b/0x20 [ 2562.361853][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2562.368231][T12538] [ 2562.370554][T12538] Uninit was stored to memory at: [ 2562.375810][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2562.380970][T12538] get_compat_msghdr+0x10c/0x280 [ 2562.386158][T12538] ___sys_recvmsg+0x289/0xb40 [ 2562.390891][T12538] do_recvmmsg+0x7c9/0x1200 [ 2562.395600][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2562.400334][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2562.406871][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2562.412091][T12538] do_fast_syscall_32+0x33/0x70 [ 2562.416988][T12538] do_SYSENTER_32+0x1b/0x20 [ 2562.421532][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2562.428101][T12538] [ 2562.430442][T12538] Local variable msg_sys created at: [ 2562.436024][T12538] do_recvmmsg+0xc9/0x1200 [ 2562.440507][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2562.560382][T12538] not chained 1120000 origins [ 2562.565341][T12538] CPU: 0 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2562.575565][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2562.585635][T12538] Call Trace: [ 2562.588920][T12538] [ 2562.591852][T12538] dump_stack_lvl+0x200/0x28c [ 2562.596561][T12538] dump_stack+0x29/0x2c [ 2562.600736][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2562.606503][T12538] ? preempt_count_sub+0xfc/0x340 [ 2562.611555][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2562.616876][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2562.622028][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2562.627202][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2562.633138][T12538] ? should_fail+0x79/0x9c0 [ 2562.637658][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2562.642798][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2562.649076][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2562.655175][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2562.660332][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2562.666171][T12538] __msan_chain_origin+0xbd/0x140 [ 2562.671420][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2562.676579][T12538] get_compat_msghdr+0x10c/0x280 [ 2562.681595][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2562.686333][T12538] ___sys_recvmsg+0x289/0xb40 [ 2562.691074][T12538] ? __schedule+0x176c/0x21c0 [ 2562.695781][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2562.700957][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2562.706794][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2562.711974][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2562.717826][T12538] do_recvmmsg+0x7c9/0x1200 [ 2562.722456][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2562.727559][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2562.732717][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2562.737522][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2562.744070][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2562.748802][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2562.755186][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2562.760243][T12538] do_fast_syscall_32+0x33/0x70 [ 2562.765126][T12538] do_SYSENTER_32+0x1b/0x20 [ 2562.769660][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2562.776123][T12538] RIP: 0023:0xf7feb549 [ 2562.780250][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2562.799988][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2562.808436][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2562.816539][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2562.824683][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2562.832785][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2562.840777][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2562.849099][T12538] [ 2562.855684][T12538] Uninit was stored to memory at: [ 2562.860843][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2562.866647][T12538] get_compat_msghdr+0x10c/0x280 [ 2562.871736][T12538] ___sys_recvmsg+0x289/0xb40 [ 2562.876476][T12538] do_recvmmsg+0x7c9/0x1200 [ 2562.881034][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2562.885916][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2562.892444][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2562.897526][T12538] do_fast_syscall_32+0x33/0x70 [ 2562.902818][T12538] do_SYSENTER_32+0x1b/0x20 [ 2562.907404][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2562.913964][T12538] [ 2562.916302][T12538] Uninit was stored to memory at: [ 2562.921382][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2562.926684][T12538] get_compat_msghdr+0x10c/0x280 [ 2562.931853][T12538] ___sys_recvmsg+0x289/0xb40 [ 2562.936690][T12538] do_recvmmsg+0x7c9/0x1200 [ 2562.941359][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2562.946290][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2562.952922][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2562.958003][T12538] do_fast_syscall_32+0x33/0x70 [ 2562.963201][T12538] do_SYSENTER_32+0x1b/0x20 [ 2562.967755][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2562.974337][T12538] [ 2562.976682][T12538] Uninit was stored to memory at: [ 2562.982071][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2562.987250][T12538] get_compat_msghdr+0x10c/0x280 [ 2562.992427][T12538] ___sys_recvmsg+0x289/0xb40 [ 2562.997161][T12538] do_recvmmsg+0x7c9/0x1200 [ 2563.001883][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2563.006617][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2563.013288][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2563.018379][T12538] do_fast_syscall_32+0x33/0x70 [ 2563.023407][T12538] do_SYSENTER_32+0x1b/0x20 [ 2563.027983][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2563.034537][T12538] [ 2563.036887][T12538] Uninit was stored to memory at: [ 2563.042160][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2563.047320][T12538] get_compat_msghdr+0x10c/0x280 [ 2563.052469][T12538] ___sys_recvmsg+0x289/0xb40 [ 2563.057198][T12538] do_recvmmsg+0x7c9/0x1200 [ 2563.061922][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2563.066654][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2563.073225][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2563.078330][T12538] do_fast_syscall_32+0x33/0x70 [ 2563.083604][T12538] do_SYSENTER_32+0x1b/0x20 [ 2563.088176][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2563.094740][T12538] [ 2563.097089][T12538] Uninit was stored to memory at: [ 2563.102345][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2563.107615][T12538] get_compat_msghdr+0x10c/0x280 [ 2563.112794][T12538] ___sys_recvmsg+0x289/0xb40 [ 2563.117527][T12538] do_recvmmsg+0x7c9/0x1200 [ 2563.122263][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2563.127001][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2563.133589][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2563.138678][T12538] do_fast_syscall_32+0x33/0x70 [ 2563.143701][T12538] do_SYSENTER_32+0x1b/0x20 [ 2563.148255][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2563.154817][T12538] [ 2563.157154][T12538] Uninit was stored to memory at: [ 2563.162430][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2563.167593][T12538] get_compat_msghdr+0x10c/0x280 [ 2563.172864][T12538] ___sys_recvmsg+0x289/0xb40 [ 2563.177601][T12538] do_recvmmsg+0x7c9/0x1200 [ 2563.182371][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2563.187119][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2563.193793][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2563.198875][T12538] do_fast_syscall_32+0x33/0x70 [ 2563.203976][T12538] do_SYSENTER_32+0x1b/0x20 [ 2563.208564][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2563.215110][T12538] [ 2563.217445][T12538] Uninit was stored to memory at: [ 2563.222734][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2563.227892][T12538] get_compat_msghdr+0x10c/0x280 [ 2563.233135][T12538] ___sys_recvmsg+0x289/0xb40 [ 2563.237926][T12538] do_recvmmsg+0x7c9/0x1200 [ 2563.242660][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2563.247388][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2563.253942][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2563.259040][T12538] do_fast_syscall_32+0x33/0x70 [ 2563.264100][T12538] do_SYSENTER_32+0x1b/0x20 [ 2563.268673][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2563.275220][T12538] [ 2563.277557][T12538] Local variable msg_sys created at: [ 2563.283016][T12538] do_recvmmsg+0xc9/0x1200 [ 2563.287488][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2563.428383][T12538] not chained 1130000 origins [ 2563.433185][T12538] CPU: 0 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2563.443366][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2563.453475][T12538] Call Trace: [ 2563.456757][T12538] [ 2563.460209][T12538] dump_stack_lvl+0x200/0x28c [ 2563.464934][T12538] dump_stack+0x29/0x2c [ 2563.469222][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2563.474974][T12538] ? preempt_count_sub+0xfc/0x340 [ 2563.480020][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2563.485233][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2563.490377][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2563.495521][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2563.501390][T12538] ? should_fail+0x79/0x9c0 [ 2563.505911][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2563.511054][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2563.517324][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2563.523454][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2563.528597][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2563.534436][T12538] __msan_chain_origin+0xbd/0x140 [ 2563.539489][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2563.544649][T12538] get_compat_msghdr+0x10c/0x280 [ 2563.549682][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2563.554415][T12538] ___sys_recvmsg+0x289/0xb40 [ 2563.559152][T12538] ? __schedule+0x176c/0x21c0 [ 2563.563868][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2563.569012][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2563.575042][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2563.580196][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2563.586051][T12538] do_recvmmsg+0x7c9/0x1200 [ 2563.590591][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2563.595760][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2563.600937][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2563.605736][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2563.612324][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2563.617068][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2563.623529][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2563.628586][T12538] do_fast_syscall_32+0x33/0x70 [ 2563.633475][T12538] do_SYSENTER_32+0x1b/0x20 [ 2563.638042][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2563.644413][T12538] RIP: 0023:0xf7feb549 [ 2563.648508][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2563.668533][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2563.677163][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2563.685243][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2563.693244][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2563.701243][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2563.709242][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2563.717251][T12538] [ 2563.723777][T12538] Uninit was stored to memory at: [ 2563.728888][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2563.734690][T12538] get_compat_msghdr+0x10c/0x280 [ 2563.739696][T12538] ___sys_recvmsg+0x289/0xb40 [ 2563.744557][T12538] do_recvmmsg+0x7c9/0x1200 [ 2563.749113][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2563.753989][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2563.760384][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2563.765642][T12538] do_fast_syscall_32+0x33/0x70 [ 2563.770545][T12538] do_SYSENTER_32+0x1b/0x20 [ 2563.775327][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2563.781844][T12538] [ 2563.784186][T12538] Uninit was stored to memory at: [ 2563.789264][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2563.794601][T12538] get_compat_msghdr+0x10c/0x280 [ 2563.799593][T12538] ___sys_recvmsg+0x289/0xb40 [ 2563.804564][T12538] do_recvmmsg+0x7c9/0x1200 [ 2563.809176][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2563.814097][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2563.820495][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2563.825702][T12538] do_fast_syscall_32+0x33/0x70 [ 2563.830599][T12538] do_SYSENTER_32+0x1b/0x20 [ 2563.835248][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2563.841935][T12538] [ 2563.844274][T12538] Uninit was stored to memory at: [ 2563.849355][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2563.854647][T12538] get_compat_msghdr+0x10c/0x280 [ 2563.859705][T12538] ___sys_recvmsg+0x289/0xb40 [ 2563.864576][T12538] do_recvmmsg+0x7c9/0x1200 [ 2563.869146][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2563.874050][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2563.880455][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2563.885678][T12538] do_fast_syscall_32+0x33/0x70 [ 2563.890577][T12538] do_SYSENTER_32+0x1b/0x20 [ 2563.895229][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2563.901820][T12538] [ 2563.904161][T12538] Uninit was stored to memory at: [ 2563.909257][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2563.914730][T12538] get_compat_msghdr+0x10c/0x280 [ 2563.919719][T12538] ___sys_recvmsg+0x289/0xb40 [ 2563.924589][T12538] do_recvmmsg+0x7c9/0x1200 [ 2563.929591][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2563.934496][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2563.940887][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2563.946241][T12538] do_fast_syscall_32+0x33/0x70 [ 2563.951140][T12538] do_SYSENTER_32+0x1b/0x20 [ 2563.955814][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2563.962304][T12538] [ 2563.964637][T12538] Uninit was stored to memory at: [ 2563.969718][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2563.974990][T12538] get_compat_msghdr+0x10c/0x280 [ 2563.980015][T12538] ___sys_recvmsg+0x289/0xb40 [ 2563.984957][T12538] do_recvmmsg+0x7c9/0x1200 [ 2563.989526][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2563.994435][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2564.000829][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2564.006161][T12538] do_fast_syscall_32+0x33/0x70 [ 2564.011061][T12538] do_SYSENTER_32+0x1b/0x20 [ 2564.015883][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2564.022366][T12538] [ 2564.024703][T12538] Uninit was stored to memory at: [ 2564.029791][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2564.035073][T12538] get_compat_msghdr+0x10c/0x280 [ 2564.040065][T12538] ___sys_recvmsg+0x289/0xb40 [ 2564.044916][T12538] do_recvmmsg+0x7c9/0x1200 [ 2564.049470][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2564.054366][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2564.060760][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2564.066035][T12538] do_fast_syscall_32+0x33/0x70 [ 2564.070930][T12538] do_SYSENTER_32+0x1b/0x20 [ 2564.075600][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2564.082172][T12538] [ 2564.084512][T12538] Uninit was stored to memory at: [ 2564.089861][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2564.095149][T12538] get_compat_msghdr+0x10c/0x280 [ 2564.100138][T12538] ___sys_recvmsg+0x289/0xb40 [ 2564.104991][T12538] do_recvmmsg+0x7c9/0x1200 [ 2564.109546][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2564.114447][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2564.120838][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2564.126053][T12538] do_fast_syscall_32+0x33/0x70 [ 2564.130952][T12538] do_SYSENTER_32+0x1b/0x20 [ 2564.135598][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2564.142193][T12538] [ 2564.144537][T12538] Local variable msg_sys created at: [ 2564.149851][T12538] do_recvmmsg+0xc9/0x1200 [ 2564.154568][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2564.282808][T12538] not chained 1140000 origins [ 2564.287632][T12538] CPU: 0 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2564.297838][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2564.307946][T12538] Call Trace: [ 2564.311342][T12538] [ 2564.314276][T12538] dump_stack_lvl+0x200/0x28c [ 2564.319084][T12538] dump_stack+0x29/0x2c [ 2564.323475][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2564.329308][T12538] ? preempt_count_sub+0xfc/0x340 [ 2564.334365][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2564.339598][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2564.344846][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2564.350018][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2564.355886][T12538] ? should_fail+0x79/0x9c0 [ 2564.360428][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2564.365599][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2564.371901][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2564.378023][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2564.383170][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2564.389009][T12538] __msan_chain_origin+0xbd/0x140 [ 2564.394068][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2564.399266][T12538] get_compat_msghdr+0x10c/0x280 [ 2564.404258][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2564.408988][T12538] ___sys_recvmsg+0x289/0xb40 [ 2564.413821][T12538] ? __schedule+0x176c/0x21c0 [ 2564.418527][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2564.423670][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2564.429717][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2564.434864][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2564.440726][T12538] do_recvmmsg+0x7c9/0x1200 [ 2564.445274][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2564.450394][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2564.455669][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2564.460459][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2564.467015][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2564.471819][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2564.478190][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2564.483244][T12538] do_fast_syscall_32+0x33/0x70 [ 2564.488211][T12538] do_SYSENTER_32+0x1b/0x20 [ 2564.492737][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2564.499210][T12538] RIP: 0023:0xf7feb549 [ 2564.503299][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2564.522938][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2564.531369][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2564.539363][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2564.547346][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2564.555342][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2564.563425][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2564.571426][T12538] [ 2564.578157][T12538] Uninit was stored to memory at: [ 2564.583899][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2564.589074][T12538] get_compat_msghdr+0x10c/0x280 [ 2564.594435][T12538] ___sys_recvmsg+0x289/0xb40 [ 2564.599181][T12538] do_recvmmsg+0x7c9/0x1200 [ 2564.603876][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2564.608613][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2564.615263][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2564.620518][T12538] do_fast_syscall_32+0x33/0x70 [ 2564.625607][T12538] do_SYSENTER_32+0x1b/0x20 [ 2564.630194][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2564.636725][T12538] [ 2564.639077][T12538] Uninit was stored to memory at: [ 2564.644337][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2564.649600][T12538] get_compat_msghdr+0x10c/0x280 [ 2564.654793][T12538] ___sys_recvmsg+0x289/0xb40 [ 2564.659526][T12538] do_recvmmsg+0x7c9/0x1200 [ 2564.664264][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2564.668995][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2564.675580][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2564.680660][T12538] do_fast_syscall_32+0x33/0x70 [ 2564.685721][T12538] do_SYSENTER_32+0x1b/0x20 [ 2564.690275][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2564.696797][T12538] [ 2564.699134][T12538] Uninit was stored to memory at: [ 2564.704391][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2564.709568][T12538] get_compat_msghdr+0x10c/0x280 [ 2564.714741][T12538] ___sys_recvmsg+0x289/0xb40 [ 2564.719471][T12538] do_recvmmsg+0x7c9/0x1200 [ 2564.724148][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2564.728892][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2564.735453][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2564.740530][T12538] do_fast_syscall_32+0x33/0x70 [ 2564.745568][T12538] do_SYSENTER_32+0x1b/0x20 [ 2564.750115][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2564.756637][T12538] [ 2564.759001][T12538] Uninit was stored to memory at: [ 2564.764292][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2564.769463][T12538] get_compat_msghdr+0x10c/0x280 [ 2564.774621][T12538] ___sys_recvmsg+0x289/0xb40 [ 2564.779450][T12538] do_recvmmsg+0x7c9/0x1200 [ 2564.784176][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2564.788907][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2564.795498][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2564.800660][T12538] do_fast_syscall_32+0x33/0x70 [ 2564.805734][T12538] do_SYSENTER_32+0x1b/0x20 [ 2564.810282][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2564.816792][T12538] [ 2564.819126][T12538] Uninit was stored to memory at: [ 2564.824642][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2564.829810][T12538] get_compat_msghdr+0x10c/0x280 [ 2564.834983][T12538] ___sys_recvmsg+0x289/0xb40 [ 2564.839729][T12538] do_recvmmsg+0x7c9/0x1200 [ 2564.844475][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2564.849201][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2564.855776][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2564.860849][T12538] do_fast_syscall_32+0x33/0x70 [ 2564.865923][T12538] do_SYSENTER_32+0x1b/0x20 [ 2564.870467][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2564.876968][T12538] [ 2564.879423][T12538] Uninit was stored to memory at: [ 2564.884698][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2564.889865][T12538] get_compat_msghdr+0x10c/0x280 [ 2564.895058][T12538] ___sys_recvmsg+0x289/0xb40 [ 2564.899880][T12538] do_recvmmsg+0x7c9/0x1200 [ 2564.904729][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2564.909466][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2564.916093][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2564.921173][T12538] do_fast_syscall_32+0x33/0x70 [ 2564.926308][T12538] do_SYSENTER_32+0x1b/0x20 [ 2564.930957][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2564.937493][T12538] [ 2564.939832][T12538] Uninit was stored to memory at: [ 2564.945088][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2564.950336][T12538] get_compat_msghdr+0x10c/0x280 [ 2564.955447][T12538] ___sys_recvmsg+0x289/0xb40 [ 2564.960178][T12538] do_recvmmsg+0x7c9/0x1200 [ 2564.964858][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2564.969589][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2564.976166][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2564.981334][T12538] do_fast_syscall_32+0x33/0x70 [ 2564.986372][T12538] do_SYSENTER_32+0x1b/0x20 [ 2564.991007][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2564.997523][T12538] [ 2564.999857][T12538] Local variable msg_sys created at: [ 2565.005313][T12538] do_recvmmsg+0xc9/0x1200 [ 2565.009782][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2565.130878][T12538] not chained 1150000 origins [ 2565.135872][T12538] CPU: 1 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2565.146072][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2565.156350][T12538] Call Trace: [ 2565.159647][T12538] [ 2565.162685][T12538] dump_stack_lvl+0x200/0x28c [ 2565.167511][T12538] dump_stack+0x29/0x2c [ 2565.171714][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2565.177499][T12538] ? preempt_count_sub+0xfc/0x340 [ 2565.182558][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2565.187821][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2565.193003][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2565.198169][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2565.204014][T12538] ? should_fail+0x79/0x9c0 [ 2565.208572][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2565.213732][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2565.220005][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2565.226109][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2565.231287][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2565.237214][T12538] __msan_chain_origin+0xbd/0x140 [ 2565.242300][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2565.247515][T12538] get_compat_msghdr+0x10c/0x280 [ 2565.252507][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2565.257235][T12538] ___sys_recvmsg+0x289/0xb40 [ 2565.261974][T12538] ? __schedule+0x176c/0x21c0 [ 2565.266700][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2565.271852][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2565.277711][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2565.282880][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2565.288743][T12538] do_recvmmsg+0x7c9/0x1200 [ 2565.293281][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2565.298365][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2565.303521][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2565.308333][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2565.314873][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2565.319612][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2565.325985][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2565.331038][T12538] do_fast_syscall_32+0x33/0x70 [ 2565.335912][T12538] do_SYSENTER_32+0x1b/0x20 [ 2565.340471][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2565.346857][T12538] RIP: 0023:0xf7feb549 [ 2565.350971][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2565.370730][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2565.379171][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2565.387195][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2565.395201][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2565.403206][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2565.411206][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2565.419308][T12538] [ 2565.425441][T12538] Uninit was stored to memory at: [ 2565.430551][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2565.436201][T12538] get_compat_msghdr+0x10c/0x280 [ 2565.441193][T12538] ___sys_recvmsg+0x289/0xb40 [ 2565.446029][T12538] do_recvmmsg+0x7c9/0x1200 [ 2565.450613][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2565.455433][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2565.461919][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2565.466994][T12538] do_fast_syscall_32+0x33/0x70 [ 2565.471973][T12538] do_SYSENTER_32+0x1b/0x20 [ 2565.476532][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2565.483102][T12538] [ 2565.485555][T12538] Uninit was stored to memory at: [ 2565.490645][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2565.495918][T12538] get_compat_msghdr+0x10c/0x280 [ 2565.501084][T12538] ___sys_recvmsg+0x289/0xb40 [ 2565.506002][T12538] do_recvmmsg+0x7c9/0x1200 [ 2565.510561][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2565.515442][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2565.522024][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2565.527182][T12538] do_fast_syscall_32+0x33/0x70 [ 2565.532215][T12538] do_SYSENTER_32+0x1b/0x20 [ 2565.536797][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2565.543302][T12538] [ 2565.545636][T12538] Uninit was stored to memory at: [ 2565.550720][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2565.556053][T12538] get_compat_msghdr+0x10c/0x280 [ 2565.561049][T12538] ___sys_recvmsg+0x289/0xb40 [ 2565.565943][T12538] do_recvmmsg+0x7c9/0x1200 [ 2565.570499][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2565.575462][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2565.581949][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2565.587026][T12538] do_fast_syscall_32+0x33/0x70 [ 2565.592095][T12538] do_SYSENTER_32+0x1b/0x20 [ 2565.596659][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2565.603191][T12538] [ 2565.605526][T12538] Uninit was stored to memory at: [ 2565.610614][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2565.615955][T12538] get_compat_msghdr+0x10c/0x280 [ 2565.620950][T12538] ___sys_recvmsg+0x289/0xb40 [ 2565.625836][T12538] do_recvmmsg+0x7c9/0x1200 [ 2565.630484][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2565.635375][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2565.641908][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2565.646984][T12538] do_fast_syscall_32+0x33/0x70 [ 2565.652029][T12538] do_SYSENTER_32+0x1b/0x20 [ 2565.656576][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2565.663125][T12538] [ 2565.665460][T12538] Uninit was stored to memory at: [ 2565.670547][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2565.675844][T12538] get_compat_msghdr+0x10c/0x280 [ 2565.680830][T12538] ___sys_recvmsg+0x289/0xb40 [ 2565.685703][T12538] do_recvmmsg+0x7c9/0x1200 [ 2565.690261][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2565.695147][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2565.701683][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2565.706759][T12538] do_fast_syscall_32+0x33/0x70 [ 2565.711787][T12538] do_SYSENTER_32+0x1b/0x20 [ 2565.716339][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2565.722877][T12538] [ 2565.725215][T12538] Uninit was stored to memory at: [ 2565.730382][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2565.735683][T12538] get_compat_msghdr+0x10c/0x280 [ 2565.740668][T12538] ___sys_recvmsg+0x289/0xb40 [ 2565.745497][T12538] do_recvmmsg+0x7c9/0x1200 [ 2565.750048][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2565.754910][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2565.761382][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2565.766616][T12538] do_fast_syscall_32+0x33/0x70 [ 2565.771638][T12538] do_SYSENTER_32+0x1b/0x20 [ 2565.776207][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2565.782781][T12538] [ 2565.785125][T12538] Uninit was stored to memory at: [ 2565.790233][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2565.795663][T12538] get_compat_msghdr+0x10c/0x280 [ 2565.800717][T12538] ___sys_recvmsg+0x289/0xb40 [ 2565.805705][T12538] do_recvmmsg+0x7c9/0x1200 [ 2565.810289][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2565.815143][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2565.821728][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2565.826804][T12538] do_fast_syscall_32+0x33/0x70 [ 2565.831855][T12538] do_SYSENTER_32+0x1b/0x20 [ 2565.836404][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2565.842979][T12538] [ 2565.845403][T12538] Local variable msg_sys created at: [ 2565.850790][T12538] do_recvmmsg+0xc9/0x1200 [ 2565.855355][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2565.984270][T12538] not chained 1160000 origins [ 2565.989014][T12538] CPU: 0 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2565.999187][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2566.009256][T12538] Call Trace: [ 2566.012551][T12538] [ 2566.015486][T12538] dump_stack_lvl+0x200/0x28c [ 2566.020193][T12538] dump_stack+0x29/0x2c [ 2566.024455][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2566.030209][T12538] ? preempt_count_sub+0xfc/0x340 [ 2566.035349][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2566.040590][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2566.045739][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2566.050886][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2566.056732][T12538] ? should_fail+0x79/0x9c0 [ 2566.061251][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2566.066394][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2566.072675][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2566.078803][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2566.083949][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2566.089898][T12538] __msan_chain_origin+0xbd/0x140 [ 2566.094980][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2566.100165][T12538] get_compat_msghdr+0x10c/0x280 [ 2566.105137][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2566.109844][T12538] ___sys_recvmsg+0x289/0xb40 [ 2566.114556][T12538] ? __schedule+0x176c/0x21c0 [ 2566.119261][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2566.124423][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2566.130265][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2566.135434][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2566.141300][T12538] do_recvmmsg+0x7c9/0x1200 [ 2566.145843][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2566.150909][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2566.156052][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2566.160843][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2566.167385][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2566.172124][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2566.178514][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2566.183573][T12538] do_fast_syscall_32+0x33/0x70 [ 2566.188473][T12538] do_SYSENTER_32+0x1b/0x20 [ 2566.193038][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2566.199396][T12538] RIP: 0023:0xf7feb549 [ 2566.203498][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2566.223131][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2566.231574][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2566.239577][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2566.247578][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2566.255558][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2566.263536][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2566.271537][T12538] [ 2566.278250][T12538] Uninit was stored to memory at: [ 2566.284015][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2566.289188][T12538] get_compat_msghdr+0x10c/0x280 [ 2566.294306][T12538] ___sys_recvmsg+0x289/0xb40 [ 2566.299042][T12538] do_recvmmsg+0x7c9/0x1200 [ 2566.303743][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2566.308481][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2566.314999][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2566.320093][T12538] do_fast_syscall_32+0x33/0x70 [ 2566.325400][T12538] do_SYSENTER_32+0x1b/0x20 [ 2566.329980][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2566.336535][T12538] [ 2566.338876][T12538] Uninit was stored to memory at: [ 2566.344086][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2566.349244][T12538] get_compat_msghdr+0x10c/0x280 [ 2566.354391][T12538] ___sys_recvmsg+0x289/0xb40 [ 2566.359122][T12538] do_recvmmsg+0x7c9/0x1200 [ 2566.363870][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2566.368598][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2566.375233][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2566.380308][T12538] do_fast_syscall_32+0x33/0x70 [ 2566.385375][T12538] do_SYSENTER_32+0x1b/0x20 [ 2566.389922][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2566.396553][T12538] [ 2566.398886][T12538] Uninit was stored to memory at: [ 2566.404130][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2566.409288][T12538] get_compat_msghdr+0x10c/0x280 [ 2566.414571][T12538] ___sys_recvmsg+0x289/0xb40 [ 2566.419339][T12538] do_recvmmsg+0x7c9/0x1200 [ 2566.424073][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2566.428809][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2566.435369][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2566.440445][T12538] do_fast_syscall_32+0x33/0x70 [ 2566.445504][T12538] do_SYSENTER_32+0x1b/0x20 [ 2566.450055][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2566.456569][T12538] [ 2566.458903][T12538] Uninit was stored to memory at: [ 2566.464145][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2566.469303][T12538] get_compat_msghdr+0x10c/0x280 [ 2566.474530][T12538] ___sys_recvmsg+0x289/0xb40 [ 2566.479280][T12538] do_recvmmsg+0x7c9/0x1200 [ 2566.483966][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2566.488699][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2566.495207][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2566.500374][T12538] do_fast_syscall_32+0x33/0x70 [ 2566.505388][T12538] do_SYSENTER_32+0x1b/0x20 [ 2566.509935][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2566.516479][T12538] [ 2566.518815][T12538] Uninit was stored to memory at: [ 2566.524023][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2566.529194][T12538] get_compat_msghdr+0x10c/0x280 [ 2566.534365][T12538] ___sys_recvmsg+0x289/0xb40 [ 2566.539108][T12538] do_recvmmsg+0x7c9/0x1200 [ 2566.543996][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2566.548725][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2566.555222][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2566.560296][T12538] do_fast_syscall_32+0x33/0x70 [ 2566.565298][T12538] do_SYSENTER_32+0x1b/0x20 [ 2566.569871][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2566.576404][T12538] [ 2566.578752][T12538] Uninit was stored to memory at: [ 2566.584003][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2566.589165][T12538] get_compat_msghdr+0x10c/0x280 [ 2566.594314][T12538] ___sys_recvmsg+0x289/0xb40 [ 2566.599048][T12538] do_recvmmsg+0x7c9/0x1200 [ 2566.603725][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2566.608460][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2566.615003][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2566.620138][T12538] do_fast_syscall_32+0x33/0x70 [ 2566.625162][T12538] do_SYSENTER_32+0x1b/0x20 [ 2566.629830][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2566.636387][T12538] [ 2566.638727][T12538] Uninit was stored to memory at: [ 2566.643992][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2566.649150][T12538] get_compat_msghdr+0x10c/0x280 [ 2566.654302][T12538] ___sys_recvmsg+0x289/0xb40 [ 2566.659033][T12538] do_recvmmsg+0x7c9/0x1200 [ 2566.663752][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2566.668510][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2566.675030][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2566.680119][T12538] do_fast_syscall_32+0x33/0x70 [ 2566.685306][T12538] do_SYSENTER_32+0x1b/0x20 [ 2566.689860][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2566.696626][T12538] [ 2566.698968][T12538] Local variable msg_sys created at: [ 2566.704430][T12538] do_recvmmsg+0xc9/0x1200 [ 2566.708902][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2566.844131][T12538] not chained 1170000 origins [ 2566.848839][T12538] CPU: 1 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2566.859047][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2566.869240][T12538] Call Trace: [ 2566.872539][T12538] [ 2566.875548][T12538] dump_stack_lvl+0x200/0x28c [ 2566.880269][T12538] dump_stack+0x29/0x2c [ 2566.884457][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2566.890242][T12538] ? preempt_count_sub+0xfc/0x340 [ 2566.895298][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2566.900527][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2566.905690][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2566.910865][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2566.916711][T12538] ? should_fail+0x79/0x9c0 [ 2566.921236][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2566.926387][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2566.932677][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2566.938811][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2566.943964][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2566.949953][T12538] __msan_chain_origin+0xbd/0x140 [ 2566.955012][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2566.960173][T12538] get_compat_msghdr+0x10c/0x280 [ 2566.965146][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2566.969861][T12538] ___sys_recvmsg+0x289/0xb40 [ 2566.974578][T12538] ? __schedule+0x176c/0x21c0 [ 2566.979308][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2566.984461][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2566.990367][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2566.995600][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2567.001452][T12538] do_recvmmsg+0x7c9/0x1200 [ 2567.005989][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2567.011067][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2567.016240][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2567.021147][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2567.027697][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2567.032423][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2567.038809][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2567.043882][T12538] do_fast_syscall_32+0x33/0x70 [ 2567.049415][T12538] do_SYSENTER_32+0x1b/0x20 [ 2567.053955][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2567.060336][T12538] RIP: 0023:0xf7feb549 [ 2567.064413][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2567.084058][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2567.092532][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2567.100534][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2567.108643][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2567.116637][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2567.124628][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2567.132763][T12538] [ 2567.138765][T12538] Uninit was stored to memory at: [ 2567.144481][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2567.149682][T12538] get_compat_msghdr+0x10c/0x280 [ 2567.154800][T12538] ___sys_recvmsg+0x289/0xb40 [ 2567.159539][T12538] do_recvmmsg+0x7c9/0x1200 [ 2567.164200][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2567.168933][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2567.175432][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2567.180513][T12538] do_fast_syscall_32+0x33/0x70 [ 2567.185587][T12538] do_SYSENTER_32+0x1b/0x20 [ 2567.190177][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2567.196754][T12538] [ 2567.199093][T12538] Uninit was stored to memory at: [ 2567.204289][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2567.209459][T12538] get_compat_msghdr+0x10c/0x280 [ 2567.214608][T12538] ___sys_recvmsg+0x289/0xb40 [ 2567.219340][T12538] do_recvmmsg+0x7c9/0x1200 [ 2567.224053][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2567.228900][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2567.235444][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2567.240549][T12538] do_fast_syscall_32+0x33/0x70 [ 2567.245647][T12538] do_SYSENTER_32+0x1b/0x20 [ 2567.250218][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2567.256753][T12538] [ 2567.259093][T12538] Uninit was stored to memory at: [ 2567.264341][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2567.269510][T12538] get_compat_msghdr+0x10c/0x280 [ 2567.274646][T12538] ___sys_recvmsg+0x289/0xb40 [ 2567.279381][T12538] do_recvmmsg+0x7c9/0x1200 [ 2567.284120][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2567.288850][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2567.295854][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2567.301022][T12538] do_fast_syscall_32+0x33/0x70 [ 2567.306079][T12538] do_SYSENTER_32+0x1b/0x20 [ 2567.310626][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2567.317205][T12538] [ 2567.319541][T12538] Uninit was stored to memory at: [ 2567.324786][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2567.329949][T12538] get_compat_msghdr+0x10c/0x280 [ 2567.335110][T12538] ___sys_recvmsg+0x289/0xb40 [ 2567.339841][T12538] do_recvmmsg+0x7c9/0x1200 [ 2567.344545][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2567.349277][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2567.355766][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2567.360928][T12538] do_fast_syscall_32+0x33/0x70 [ 2567.365987][T12538] do_SYSENTER_32+0x1b/0x20 [ 2567.370535][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2567.377016][T12538] [ 2567.379353][T12538] Uninit was stored to memory at: [ 2567.384608][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2567.389873][T12538] get_compat_msghdr+0x10c/0x280 [ 2567.395037][T12538] ___sys_recvmsg+0x289/0xb40 [ 2567.399778][T12538] do_recvmmsg+0x7c9/0x1200 [ 2567.404563][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2567.409327][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2567.415863][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2567.420945][T12538] do_fast_syscall_32+0x33/0x70 [ 2567.425999][T12538] do_SYSENTER_32+0x1b/0x20 [ 2567.430590][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2567.437087][T12538] [ 2567.439429][T12538] Uninit was stored to memory at: [ 2567.444691][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2567.449855][T12538] get_compat_msghdr+0x10c/0x280 [ 2567.455008][T12538] ___sys_recvmsg+0x289/0xb40 [ 2567.459741][T12538] do_recvmmsg+0x7c9/0x1200 [ 2567.464446][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2567.469182][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2567.475759][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2567.480839][T12538] do_fast_syscall_32+0x33/0x70 [ 2567.485894][T12538] do_SYSENTER_32+0x1b/0x20 [ 2567.490442][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2567.496995][T12538] [ 2567.499366][T12538] Uninit was stored to memory at: [ 2567.504556][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2567.509719][T12538] get_compat_msghdr+0x10c/0x280 [ 2567.514887][T12538] ___sys_recvmsg+0x289/0xb40 [ 2567.519617][T12538] do_recvmmsg+0x7c9/0x1200 [ 2567.524328][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2567.529057][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2567.535593][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2567.540698][T12538] do_fast_syscall_32+0x33/0x70 [ 2567.545730][T12538] do_SYSENTER_32+0x1b/0x20 [ 2567.550286][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2567.556834][T12538] [ 2567.559169][T12538] Local variable msg_sys created at: [ 2567.564626][T12538] do_recvmmsg+0xc9/0x1200 [ 2567.569124][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2567.690255][T12538] not chained 1180000 origins [ 2567.695053][T12538] CPU: 1 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2567.705237][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2567.715321][T12538] Call Trace: [ 2567.718605][T12538] [ 2567.721537][T12538] dump_stack_lvl+0x200/0x28c [ 2567.726266][T12538] dump_stack+0x29/0x2c [ 2567.730469][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2567.736251][T12538] ? preempt_count_sub+0xfc/0x340 [ 2567.741328][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2567.746574][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2567.751728][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2567.756900][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2567.762773][T12538] ? should_fail+0x79/0x9c0 [ 2567.767454][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2567.772706][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2567.779022][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2567.785153][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2567.790304][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2567.796502][T12538] __msan_chain_origin+0xbd/0x140 [ 2567.801588][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2567.806780][T12538] get_compat_msghdr+0x10c/0x280 [ 2567.811908][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2567.816909][T12538] ___sys_recvmsg+0x289/0xb40 [ 2567.821648][T12538] ? __schedule+0x176c/0x21c0 [ 2567.826503][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2567.831765][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2567.837638][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2567.842813][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2567.848729][T12538] do_recvmmsg+0x7c9/0x1200 [ 2567.853316][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2567.858400][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2567.863558][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2567.868378][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2567.874961][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2567.879701][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2567.886090][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2567.891174][T12538] do_fast_syscall_32+0x33/0x70 [ 2567.896108][T12538] do_SYSENTER_32+0x1b/0x20 [ 2567.900673][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2567.907057][T12538] RIP: 0023:0xf7feb549 [ 2567.911162][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2567.930822][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2567.939264][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2567.947348][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2567.955355][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2567.963363][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2567.971360][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2567.979374][T12538] [ 2567.985273][T12538] Uninit was stored to memory at: [ 2567.990381][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2567.996091][T12538] get_compat_msghdr+0x10c/0x280 [ 2568.001102][T12538] ___sys_recvmsg+0x289/0xb40 [ 2568.005952][T12538] do_recvmmsg+0x7c9/0x1200 [ 2568.010532][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2568.015436][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2568.021924][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2568.027178][T12538] do_fast_syscall_32+0x33/0x70 [ 2568.032277][T12538] do_SYSENTER_32+0x1b/0x20 [ 2568.036830][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2568.043376][T12538] [ 2568.045714][T12538] Uninit was stored to memory at: [ 2568.050796][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2568.056106][T12538] get_compat_msghdr+0x10c/0x280 [ 2568.061102][T12538] ___sys_recvmsg+0x289/0xb40 [ 2568.066012][T12538] do_recvmmsg+0x7c9/0x1200 [ 2568.070574][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2568.075434][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2568.082073][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2568.087238][T12538] do_fast_syscall_32+0x33/0x70 [ 2568.092298][T12538] do_SYSENTER_32+0x1b/0x20 [ 2568.096846][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2568.103400][T12538] [ 2568.105735][T12538] Uninit was stored to memory at: [ 2568.110826][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2568.116172][T12538] get_compat_msghdr+0x10c/0x280 [ 2568.121364][T12538] ___sys_recvmsg+0x289/0xb40 [ 2568.126252][T12538] do_recvmmsg+0x7c9/0x1200 [ 2568.130809][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2568.135748][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2568.142232][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2568.147307][T12538] do_fast_syscall_32+0x33/0x70 [ 2568.152358][T12538] do_SYSENTER_32+0x1b/0x20 [ 2568.156928][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2568.163544][T12538] [ 2568.165878][T12538] Uninit was stored to memory at: [ 2568.171018][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2568.176342][T12538] get_compat_msghdr+0x10c/0x280 [ 2568.181331][T12538] ___sys_recvmsg+0x289/0xb40 [ 2568.186159][T12538] do_recvmmsg+0x7c9/0x1200 [ 2568.190716][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2568.195598][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2568.202088][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2568.207144][T12538] do_fast_syscall_32+0x33/0x70 [ 2568.212172][T12538] do_SYSENTER_32+0x1b/0x20 [ 2568.216717][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2568.223283][T12538] [ 2568.225625][T12538] Uninit was stored to memory at: [ 2568.230820][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2568.236079][T12538] get_compat_msghdr+0x10c/0x280 [ 2568.241067][T12538] ___sys_recvmsg+0x289/0xb40 [ 2568.245955][T12538] do_recvmmsg+0x7c9/0x1200 [ 2568.250520][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2568.255381][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2568.261857][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2568.266935][T12538] do_fast_syscall_32+0x33/0x70 [ 2568.271972][T12538] do_SYSENTER_32+0x1b/0x20 [ 2568.276524][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2568.282999][T12538] [ 2568.285334][T12538] Uninit was stored to memory at: [ 2568.290419][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2568.295680][T12538] get_compat_msghdr+0x10c/0x280 [ 2568.300677][T12538] ___sys_recvmsg+0x289/0xb40 [ 2568.305554][T12538] do_recvmmsg+0x7c9/0x1200 [ 2568.310240][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2568.315133][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2568.321519][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2568.326745][T12538] do_fast_syscall_32+0x33/0x70 [ 2568.331788][T12538] do_SYSENTER_32+0x1b/0x20 [ 2568.336336][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2568.342994][T12538] [ 2568.345334][T12538] Uninit was stored to memory at: [ 2568.350428][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2568.355725][T12538] get_compat_msghdr+0x10c/0x280 [ 2568.360753][T12538] ___sys_recvmsg+0x289/0xb40 [ 2568.365652][T12538] do_recvmmsg+0x7c9/0x1200 [ 2568.370227][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2568.375150][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2568.381676][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2568.386763][T12538] do_fast_syscall_32+0x33/0x70 [ 2568.391829][T12538] do_SYSENTER_32+0x1b/0x20 [ 2568.396396][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2568.402959][T12538] [ 2568.405297][T12538] Local variable msg_sys created at: [ 2568.410650][T12538] do_recvmmsg+0xc9/0x1200 [ 2568.415302][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2568.663925][T12538] not chained 1190000 origins [ 2568.668650][T12538] CPU: 0 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2568.678848][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2568.688934][T12538] Call Trace: [ 2568.692232][T12538] [ 2568.695185][T12538] dump_stack_lvl+0x200/0x28c [ 2568.699929][T12538] dump_stack+0x29/0x2c [ 2568.704122][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2568.709899][T12538] ? preempt_count_sub+0xfc/0x340 [ 2568.714968][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2568.720302][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2568.725581][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2568.730755][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2568.736634][T12538] ? should_fail+0x79/0x9c0 [ 2568.741179][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2568.746363][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2568.752668][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2568.758799][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2568.763972][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2568.769835][T12538] __msan_chain_origin+0xbd/0x140 [ 2568.774902][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2568.780108][T12538] get_compat_msghdr+0x10c/0x280 [ 2568.785112][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2568.789852][T12538] ___sys_recvmsg+0x289/0xb40 [ 2568.794582][T12538] ? __schedule+0x176c/0x21c0 [ 2568.799292][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2568.804442][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2568.810286][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2568.815437][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2568.821281][T12538] do_recvmmsg+0x7c9/0x1200 [ 2568.825826][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2568.830925][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2568.836102][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2568.840895][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2568.847434][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2568.852258][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2568.858626][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2568.863677][T12538] do_fast_syscall_32+0x33/0x70 [ 2568.868677][T12538] do_SYSENTER_32+0x1b/0x20 [ 2568.873241][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2568.879635][T12538] RIP: 0023:0xf7feb549 [ 2568.883737][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2568.903397][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2568.912008][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2568.920003][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2568.927992][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2568.936000][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2568.944000][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2568.952110][T12538] [ 2568.958711][T12538] Uninit was stored to memory at: [ 2568.964386][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2568.969566][T12538] get_compat_msghdr+0x10c/0x280 [ 2568.974701][T12538] ___sys_recvmsg+0x289/0xb40 [ 2568.979434][T12538] do_recvmmsg+0x7c9/0x1200 [ 2568.984118][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2568.988850][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2568.995472][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2569.000553][T12538] do_fast_syscall_32+0x33/0x70 [ 2569.005679][T12538] do_SYSENTER_32+0x1b/0x20 [ 2569.010365][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2569.016938][T12538] [ 2569.019277][T12538] Uninit was stored to memory at: [ 2569.024591][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2569.029761][T12538] get_compat_msghdr+0x10c/0x280 [ 2569.034934][T12538] ___sys_recvmsg+0x289/0xb40 [ 2569.039668][T12538] do_recvmmsg+0x7c9/0x1200 [ 2569.044351][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2569.049079][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2569.055600][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2569.060681][T12538] do_fast_syscall_32+0x33/0x70 [ 2569.065701][T12538] do_SYSENTER_32+0x1b/0x20 [ 2569.070308][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2569.076870][T12538] [ 2569.079206][T12538] Uninit was stored to memory at: [ 2569.084459][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2569.089621][T12538] get_compat_msghdr+0x10c/0x280 [ 2569.094792][T12538] ___sys_recvmsg+0x289/0xb40 [ 2569.099521][T12538] do_recvmmsg+0x7c9/0x1200 [ 2569.104247][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2569.108977][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2569.115545][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2569.120648][T12538] do_fast_syscall_32+0x33/0x70 [ 2569.125709][T12538] do_SYSENTER_32+0x1b/0x20 [ 2569.130269][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2569.136888][T12538] [ 2569.139226][T12538] Uninit was stored to memory at: [ 2569.144417][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2569.149574][T12538] get_compat_msghdr+0x10c/0x280 [ 2569.154673][T12538] ___sys_recvmsg+0x289/0xb40 [ 2569.159405][T12538] do_recvmmsg+0x7c9/0x1200 [ 2569.164126][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2569.168859][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2569.175451][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2569.180529][T12538] do_fast_syscall_32+0x33/0x70 [ 2569.185557][T12538] do_SYSENTER_32+0x1b/0x20 [ 2569.190115][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2569.196677][T12538] [ 2569.199018][T12538] Uninit was stored to memory at: [ 2569.204282][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2569.209449][T12538] get_compat_msghdr+0x10c/0x280 [ 2569.214607][T12538] ___sys_recvmsg+0x289/0xb40 [ 2569.219334][T12538] do_recvmmsg+0x7c9/0x1200 [ 2569.224066][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2569.228794][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2569.235352][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2569.240548][T12538] do_fast_syscall_32+0x33/0x70 [ 2569.245584][T12538] do_SYSENTER_32+0x1b/0x20 [ 2569.250130][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2569.256681][T12538] [ 2569.259014][T12538] Uninit was stored to memory at: [ 2569.264256][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2569.269414][T12538] get_compat_msghdr+0x10c/0x280 [ 2569.274570][T12538] ___sys_recvmsg+0x289/0xb40 [ 2569.279298][T12538] do_recvmmsg+0x7c9/0x1200 [ 2569.284016][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2569.288749][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2569.295327][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2569.300607][T12538] do_fast_syscall_32+0x33/0x70 [ 2569.305624][T12538] do_SYSENTER_32+0x1b/0x20 [ 2569.310170][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2569.316720][T12538] [ 2569.319055][T12538] Uninit was stored to memory at: [ 2569.324296][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2569.329473][T12538] get_compat_msghdr+0x10c/0x280 [ 2569.334618][T12538] ___sys_recvmsg+0x289/0xb40 [ 2569.339352][T12538] do_recvmmsg+0x7c9/0x1200 [ 2569.344100][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2569.348828][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2569.355466][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2569.360544][T12538] do_fast_syscall_32+0x33/0x70 [ 2569.365556][T12538] do_SYSENTER_32+0x1b/0x20 [ 2569.370104][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2569.376603][T12538] [ 2569.378948][T12538] Local variable msg_sys created at: [ 2569.384486][T12538] do_recvmmsg+0xc9/0x1200 [ 2569.388964][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2569.558273][T12538] not chained 1200000 origins [ 2569.563242][T12538] CPU: 0 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2569.573435][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2569.583519][T12538] Call Trace: [ 2569.586800][T12538] [ 2569.589767][T12538] dump_stack_lvl+0x200/0x28c [ 2569.594485][T12538] dump_stack+0x29/0x2c [ 2569.598677][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2569.604447][T12538] ? preempt_count_sub+0xfc/0x340 [ 2569.609509][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2569.614728][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2569.619882][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2569.625024][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2569.630895][T12538] ? should_fail+0x79/0x9c0 [ 2569.635472][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2569.640631][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2569.646910][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2569.653088][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2569.658235][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2569.664072][T12538] __msan_chain_origin+0xbd/0x140 [ 2569.669129][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2569.674296][T12538] get_compat_msghdr+0x10c/0x280 [ 2569.679305][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2569.684044][T12538] ___sys_recvmsg+0x289/0xb40 [ 2569.688763][T12538] ? __schedule+0x176c/0x21c0 [ 2569.693489][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2569.698652][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2569.704597][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2569.709753][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2569.715622][T12538] do_recvmmsg+0x7c9/0x1200 [ 2569.720176][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2569.725268][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2569.730455][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2569.735365][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2569.741916][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2569.746637][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2569.753206][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2569.758273][T12538] do_fast_syscall_32+0x33/0x70 [ 2569.763156][T12538] do_SYSENTER_32+0x1b/0x20 [ 2569.767702][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2569.774166][T12538] RIP: 0023:0xf7feb549 [ 2569.778281][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2569.798085][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2569.806537][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2569.814529][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2569.822520][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2569.830525][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2569.838560][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2569.846565][T12538] [ 2569.853011][T12538] Uninit was stored to memory at: [ 2569.858122][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2569.863854][T12538] get_compat_msghdr+0x10c/0x280 [ 2569.868850][T12538] ___sys_recvmsg+0x289/0xb40 [ 2569.873719][T12538] do_recvmmsg+0x7c9/0x1200 [ 2569.878285][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2569.883193][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2569.889582][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2569.894856][T12538] do_fast_syscall_32+0x33/0x70 [ 2569.899784][T12538] do_SYSENTER_32+0x1b/0x20 [ 2569.904511][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2569.910890][T12538] [ 2569.913355][T12538] Uninit was stored to memory at: [ 2569.918439][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2569.923790][T12538] get_compat_msghdr+0x10c/0x280 [ 2569.928885][T12538] ___sys_recvmsg+0x289/0xb40 [ 2569.933803][T12538] do_recvmmsg+0x7c9/0x1200 [ 2569.938362][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2569.943323][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2569.949741][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2569.954991][T12538] do_fast_syscall_32+0x33/0x70 [ 2569.959897][T12538] do_SYSENTER_32+0x1b/0x20 [ 2569.964647][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2569.971133][T12538] [ 2569.973677][T12538] Uninit was stored to memory at: [ 2569.978838][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2569.984182][T12538] get_compat_msghdr+0x10c/0x280 [ 2569.989181][T12538] ___sys_recvmsg+0x289/0xb40 [ 2569.994102][T12538] do_recvmmsg+0x7c9/0x1200 [ 2569.998661][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2570.003565][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2570.009949][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2570.015196][T12538] do_fast_syscall_32+0x33/0x70 [ 2570.020090][T12538] do_SYSENTER_32+0x1b/0x20 [ 2570.024815][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2570.031195][T12538] [ 2570.033662][T12538] Uninit was stored to memory at: [ 2570.038805][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2570.044150][T12538] get_compat_msghdr+0x10c/0x280 [ 2570.049146][T12538] ___sys_recvmsg+0x289/0xb40 [ 2570.054059][T12538] do_recvmmsg+0x7c9/0x1200 [ 2570.058619][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2570.063592][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2570.069982][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2570.075250][T12538] do_fast_syscall_32+0x33/0x70 [ 2570.080150][T12538] do_SYSENTER_32+0x1b/0x20 [ 2570.084828][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2570.091226][T12538] [ 2570.093742][T12538] Uninit was stored to memory at: [ 2570.098833][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2570.104168][T12538] get_compat_msghdr+0x10c/0x280 [ 2570.109157][T12538] ___sys_recvmsg+0x289/0xb40 [ 2570.114036][T12538] do_recvmmsg+0x7c9/0x1200 [ 2570.118587][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2570.123501][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2570.129889][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2570.135160][T12538] do_fast_syscall_32+0x33/0x70 [ 2570.140055][T12538] do_SYSENTER_32+0x1b/0x20 [ 2570.144725][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2570.151106][T12538] [ 2570.153624][T12538] Uninit was stored to memory at: [ 2570.158743][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2570.164118][T12538] get_compat_msghdr+0x10c/0x280 [ 2570.169201][T12538] ___sys_recvmsg+0x289/0xb40 [ 2570.174066][T12538] do_recvmmsg+0x7c9/0x1200 [ 2570.178619][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2570.183520][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2570.189990][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2570.195241][T12538] do_fast_syscall_32+0x33/0x70 [ 2570.200137][T12538] do_SYSENTER_32+0x1b/0x20 [ 2570.204847][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2570.211247][T12538] [ 2570.213776][T12538] Uninit was stored to memory at: [ 2570.218874][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2570.224252][T12538] get_compat_msghdr+0x10c/0x280 [ 2570.229238][T12538] ___sys_recvmsg+0x289/0xb40 [ 2570.234091][T12538] do_recvmmsg+0x7c9/0x1200 [ 2570.238639][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2570.243542][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2570.249927][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2570.255185][T12538] do_fast_syscall_32+0x33/0x70 [ 2570.260087][T12538] do_SYSENTER_32+0x1b/0x20 [ 2570.264779][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2570.271155][T12538] [ 2570.273676][T12538] Local variable msg_sys created at: [ 2570.279021][T12538] do_recvmmsg+0xc9/0x1200 [ 2570.283708][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2570.400091][T12538] not chained 1210000 origins [ 2570.405003][T12538] CPU: 0 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2570.415181][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2570.425248][T12538] Call Trace: [ 2570.428544][T12538] [ 2570.431470][T12538] dump_stack_lvl+0x200/0x28c [ 2570.436185][T12538] dump_stack+0x29/0x2c [ 2570.440353][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2570.446104][T12538] ? preempt_count_sub+0xfc/0x340 [ 2570.451147][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2570.456362][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2570.461505][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2570.466672][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2570.472543][T12538] ? should_fail+0x79/0x9c0 [ 2570.477088][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2570.482272][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2570.488556][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2570.494661][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2570.499797][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2570.505635][T12538] __msan_chain_origin+0xbd/0x140 [ 2570.510680][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2570.515839][T12538] get_compat_msghdr+0x10c/0x280 [ 2570.520839][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2570.525580][T12538] ___sys_recvmsg+0x289/0xb40 [ 2570.530311][T12538] ? __schedule+0x176c/0x21c0 [ 2570.535013][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2570.540150][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2570.545981][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2570.551116][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2570.556953][T12538] do_recvmmsg+0x7c9/0x1200 [ 2570.561483][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2570.566558][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2570.571731][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2570.576547][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2570.583082][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2570.587801][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2570.594170][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2570.599217][T12538] do_fast_syscall_32+0x33/0x70 [ 2570.604087][T12538] do_SYSENTER_32+0x1b/0x20 [ 2570.608603][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2570.614958][T12538] RIP: 0023:0xf7feb549 [ 2570.619047][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2570.638784][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2570.647651][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2570.655633][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2570.663615][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2570.671613][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2570.679605][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2570.687793][T12538] [ 2570.694630][T12538] Uninit was stored to memory at: [ 2570.699737][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2570.705503][T12538] get_compat_msghdr+0x10c/0x280 [ 2570.710503][T12538] ___sys_recvmsg+0x289/0xb40 [ 2570.715386][T12538] do_recvmmsg+0x7c9/0x1200 [ 2570.719945][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2570.724822][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2570.731221][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2570.736534][T12538] do_fast_syscall_32+0x33/0x70 [ 2570.741439][T12538] do_SYSENTER_32+0x1b/0x20 [ 2570.746217][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2570.752723][T12538] [ 2570.755055][T12538] Uninit was stored to memory at: [ 2570.760135][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2570.765454][T12538] get_compat_msghdr+0x10c/0x280 [ 2570.770456][T12538] ___sys_recvmsg+0x289/0xb40 [ 2570.775387][T12538] do_recvmmsg+0x7c9/0x1200 [ 2570.779950][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2570.784870][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2570.791271][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2570.796477][T12538] do_fast_syscall_32+0x33/0x70 [ 2570.801381][T12538] do_SYSENTER_32+0x1b/0x20 [ 2570.806116][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2570.812605][T12538] [ 2570.814936][T12538] Uninit was stored to memory at: [ 2570.820014][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2570.825353][T12538] get_compat_msghdr+0x10c/0x280 [ 2570.830344][T12538] ___sys_recvmsg+0x289/0xb40 [ 2570.835202][T12538] do_recvmmsg+0x7c9/0x1200 [ 2570.839761][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2570.844675][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2570.851074][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2570.856354][T12538] do_fast_syscall_32+0x33/0x70 [ 2570.861259][T12538] do_SYSENTER_32+0x1b/0x20 [ 2570.865937][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2570.872429][T12538] [ 2570.874762][T12538] Uninit was stored to memory at: [ 2570.879941][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2570.885272][T12538] get_compat_msghdr+0x10c/0x280 [ 2570.892315][T12538] ___sys_recvmsg+0x289/0xb40 [ 2570.897050][T12538] do_recvmmsg+0x7c9/0x1200 [ 2570.901783][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2570.906532][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2570.913075][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2570.918153][T12538] do_fast_syscall_32+0x33/0x70 [ 2570.923203][T12538] do_SYSENTER_32+0x1b/0x20 [ 2570.927764][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2570.934348][T12538] [ 2570.936691][T12538] Uninit was stored to memory at: [ 2570.941965][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2570.947120][T12538] get_compat_msghdr+0x10c/0x280 [ 2570.952286][T12538] ___sys_recvmsg+0x289/0xb40 [ 2570.957018][T12538] do_recvmmsg+0x7c9/0x1200 [ 2570.961808][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2570.966555][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2570.973106][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2570.978198][T12538] do_fast_syscall_32+0x33/0x70 [ 2570.983322][T12538] do_SYSENTER_32+0x1b/0x20 [ 2570.987886][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2570.994483][T12538] [ 2570.996828][T12538] Uninit was stored to memory at: [ 2571.002121][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2571.007292][T12538] get_compat_msghdr+0x10c/0x280 [ 2571.012473][T12538] ___sys_recvmsg+0x289/0xb40 [ 2571.017210][T12538] do_recvmmsg+0x7c9/0x1200 [ 2571.021958][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2571.026687][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2571.033254][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2571.038324][T12538] do_fast_syscall_32+0x33/0x70 [ 2571.043365][T12538] do_SYSENTER_32+0x1b/0x20 [ 2571.047911][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2571.054469][T12538] [ 2571.056798][T12538] Uninit was stored to memory at: [ 2571.062046][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2571.067202][T12538] get_compat_msghdr+0x10c/0x280 [ 2571.072374][T12538] ___sys_recvmsg+0x289/0xb40 [ 2571.077102][T12538] do_recvmmsg+0x7c9/0x1200 [ 2571.081804][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2571.086530][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2571.093037][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2571.098103][T12538] do_fast_syscall_32+0x33/0x70 [ 2571.103177][T12538] do_SYSENTER_32+0x1b/0x20 [ 2571.107723][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2571.114277][T12538] [ 2571.116611][T12538] Local variable msg_sys created at: [ 2571.122045][T12538] do_recvmmsg+0xc9/0x1200 [ 2571.126539][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2571.250897][T12538] not chained 1220000 origins [ 2571.255873][T12538] CPU: 1 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2571.266068][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2571.276242][T12538] Call Trace: [ 2571.279564][T12538] [ 2571.282509][T12538] dump_stack_lvl+0x200/0x28c [ 2571.287228][T12538] dump_stack+0x29/0x2c [ 2571.291425][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2571.297185][T12538] ? preempt_count_sub+0xfc/0x340 [ 2571.302246][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2571.307491][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2571.312666][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2571.318199][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2571.324056][T12538] ? should_fail+0x79/0x9c0 [ 2571.328588][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2571.333733][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2571.340036][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2571.346143][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2571.351305][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2571.357151][T12538] __msan_chain_origin+0xbd/0x140 [ 2571.362232][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2571.367423][T12538] get_compat_msghdr+0x10c/0x280 [ 2571.372418][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2571.377146][T12538] ___sys_recvmsg+0x289/0xb40 [ 2571.381868][T12538] ? __schedule+0x176c/0x21c0 [ 2571.386598][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2571.391851][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2571.397713][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2571.402859][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2571.408723][T12538] do_recvmmsg+0x7c9/0x1200 [ 2571.413265][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2571.418354][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2571.423503][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2571.428310][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2571.435023][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2571.439742][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2571.446112][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2571.451298][T12538] do_fast_syscall_32+0x33/0x70 [ 2571.456193][T12538] do_SYSENTER_32+0x1b/0x20 [ 2571.460721][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2571.467080][T12538] RIP: 0023:0xf7feb549 [ 2571.471179][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2571.491268][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2571.499734][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2571.507726][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2571.515711][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2571.523694][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2571.531677][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2571.539685][T12538] [ 2571.545747][T12538] Uninit was stored to memory at: [ 2571.550890][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2571.556531][T12538] get_compat_msghdr+0x10c/0x280 [ 2571.561523][T12538] ___sys_recvmsg+0x289/0xb40 [ 2571.566359][T12538] do_recvmmsg+0x7c9/0x1200 [ 2571.570917][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2571.575757][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2571.582256][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2571.587334][T12538] do_fast_syscall_32+0x33/0x70 [ 2571.592321][T12538] do_SYSENTER_32+0x1b/0x20 [ 2571.596867][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2571.603338][T12538] [ 2571.605675][T12538] Uninit was stored to memory at: [ 2571.610772][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2571.616061][T12538] get_compat_msghdr+0x10c/0x280 [ 2571.621051][T12538] ___sys_recvmsg+0x289/0xb40 [ 2571.625932][T12538] do_recvmmsg+0x7c9/0x1200 [ 2571.630489][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2571.635370][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2571.641849][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2571.646921][T12538] do_fast_syscall_32+0x33/0x70 [ 2571.651959][T12538] do_SYSENTER_32+0x1b/0x20 [ 2571.656535][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2571.663079][T12538] [ 2571.665413][T12538] Uninit was stored to memory at: [ 2571.670526][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2571.675832][T12538] get_compat_msghdr+0x10c/0x280 [ 2571.680851][T12538] ___sys_recvmsg+0x289/0xb40 [ 2571.685720][T12538] do_recvmmsg+0x7c9/0x1200 [ 2571.690361][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2571.695182][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2571.701746][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2571.706832][T12538] do_fast_syscall_32+0x33/0x70 [ 2571.711855][T12538] do_SYSENTER_32+0x1b/0x20 [ 2571.716403][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2571.722946][T12538] [ 2571.725287][T12538] Uninit was stored to memory at: [ 2571.730363][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2571.735665][T12538] get_compat_msghdr+0x10c/0x280 [ 2571.740724][T12538] ___sys_recvmsg+0x289/0xb40 [ 2571.745619][T12538] do_recvmmsg+0x7c9/0x1200 [ 2571.750183][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2571.755068][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2571.761472][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2571.766713][T12538] do_fast_syscall_32+0x33/0x70 [ 2571.771734][T12538] do_SYSENTER_32+0x1b/0x20 [ 2571.776291][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2571.782980][T12538] [ 2571.785325][T12538] Uninit was stored to memory at: [ 2571.790408][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2571.795815][T12538] get_compat_msghdr+0x10c/0x280 [ 2571.800814][T12538] ___sys_recvmsg+0x289/0xb40 [ 2571.805758][T12538] do_recvmmsg+0x7c9/0x1200 [ 2571.810318][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2571.815232][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2571.821741][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2571.826824][T12538] do_fast_syscall_32+0x33/0x70 [ 2571.831868][T12538] do_SYSENTER_32+0x1b/0x20 [ 2571.836417][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2571.842950][T12538] [ 2571.845285][T12538] Uninit was stored to memory at: [ 2571.850361][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2571.855629][T12538] get_compat_msghdr+0x10c/0x280 [ 2571.860625][T12538] ___sys_recvmsg+0x289/0xb40 [ 2571.865527][T12538] do_recvmmsg+0x7c9/0x1200 [ 2571.870085][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2571.874941][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2571.881342][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2571.886615][T12538] do_fast_syscall_32+0x33/0x70 [ 2571.891520][T12538] do_SYSENTER_32+0x1b/0x20 [ 2571.896313][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2571.902838][T12538] [ 2571.905174][T12538] Uninit was stored to memory at: [ 2571.910273][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2571.915613][T12538] get_compat_msghdr+0x10c/0x280 [ 2571.920604][T12538] ___sys_recvmsg+0x289/0xb40 [ 2571.925443][T12538] do_recvmmsg+0x7c9/0x1200 [ 2571.929996][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2571.934864][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2571.941961][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2571.947032][T12538] do_fast_syscall_32+0x33/0x70 [ 2571.952080][T12538] do_SYSENTER_32+0x1b/0x20 [ 2571.956633][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2571.963190][T12538] [ 2571.965526][T12538] Local variable msg_sys created at: [ 2571.970823][T12538] do_recvmmsg+0xc9/0x1200 [ 2571.975438][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2572.100530][T12538] not chained 1230000 origins [ 2572.107604][T12538] CPU: 1 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2572.118078][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2572.128169][T12538] Call Trace: [ 2572.131458][T12538] [ 2572.134392][T12538] dump_stack_lvl+0x200/0x28c [ 2572.139124][T12538] dump_stack+0x29/0x2c [ 2572.143326][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2572.149113][T12538] ? preempt_count_sub+0xfc/0x340 [ 2572.154171][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2572.159417][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2572.164592][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2572.169733][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2572.175581][T12538] ? should_fail+0x79/0x9c0 [ 2572.180145][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2572.185293][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2572.191575][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2572.197697][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2572.202863][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2572.208729][T12538] __msan_chain_origin+0xbd/0x140 [ 2572.213812][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2572.219084][T12538] get_compat_msghdr+0x10c/0x280 [ 2572.224078][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2572.228825][T12538] ___sys_recvmsg+0x289/0xb40 [ 2572.233773][T12538] ? __schedule+0x176c/0x21c0 [ 2572.238518][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2572.243698][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2572.249565][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2572.254718][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2572.260593][T12538] do_recvmmsg+0x7c9/0x1200 [ 2572.265147][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2572.270246][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2572.275424][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2572.280248][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2572.286802][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2572.291560][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2572.297980][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2572.303044][T12538] do_fast_syscall_32+0x33/0x70 [ 2572.307951][T12538] do_SYSENTER_32+0x1b/0x20 [ 2572.312511][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2572.318912][T12538] RIP: 0023:0xf7feb549 [ 2572.323002][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2572.342834][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2572.351296][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2572.359394][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2572.367383][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2572.375385][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2572.383390][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2572.391412][T12538] [ 2572.397607][T12538] Uninit was stored to memory at: [ 2572.403121][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2572.408296][T12538] get_compat_msghdr+0x10c/0x280 [ 2572.413383][T12538] ___sys_recvmsg+0x289/0xb40 [ 2572.418116][T12538] do_recvmmsg+0x7c9/0x1200 [ 2572.422773][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2572.427504][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2572.433995][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2572.439071][T12538] do_fast_syscall_32+0x33/0x70 [ 2572.444083][T12538] do_SYSENTER_32+0x1b/0x20 [ 2572.448636][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2572.455114][T12538] [ 2572.457444][T12538] Uninit was stored to memory at: [ 2572.462631][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2572.467794][T12538] get_compat_msghdr+0x10c/0x280 [ 2572.472934][T12538] ___sys_recvmsg+0x289/0xb40 [ 2572.477660][T12538] do_recvmmsg+0x7c9/0x1200 [ 2572.482359][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2572.487193][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2572.493741][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2572.498818][T12538] do_fast_syscall_32+0x33/0x70 [ 2572.503861][T12538] do_SYSENTER_32+0x1b/0x20 [ 2572.508405][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2572.514928][T12538] [ 2572.517259][T12538] Uninit was stored to memory at: [ 2572.522520][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2572.527682][T12538] get_compat_msghdr+0x10c/0x280 [ 2572.532846][T12538] ___sys_recvmsg+0x289/0xb40 [ 2572.537577][T12538] do_recvmmsg+0x7c9/0x1200 [ 2572.542272][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2572.547000][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2572.553582][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2572.558686][T12538] do_fast_syscall_32+0x33/0x70 [ 2572.563735][T12538] do_SYSENTER_32+0x1b/0x20 [ 2572.568281][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2572.574829][T12538] [ 2572.577171][T12538] Uninit was stored to memory at: [ 2572.582416][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2572.587577][T12538] get_compat_msghdr+0x10c/0x280 [ 2572.592732][T12538] ___sys_recvmsg+0x289/0xb40 [ 2572.597458][T12538] do_recvmmsg+0x7c9/0x1200 [ 2572.602166][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2572.606892][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2572.613423][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2572.618498][T12538] do_fast_syscall_32+0x33/0x70 [ 2572.623558][T12538] do_SYSENTER_32+0x1b/0x20 [ 2572.628116][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2572.634628][T12538] [ 2572.636960][T12538] Uninit was stored to memory at: [ 2572.642186][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2572.647342][T12538] get_compat_msghdr+0x10c/0x280 [ 2572.652492][T12538] ___sys_recvmsg+0x289/0xb40 [ 2572.657222][T12538] do_recvmmsg+0x7c9/0x1200 [ 2572.661925][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2572.666658][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2572.673217][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2572.678295][T12538] do_fast_syscall_32+0x33/0x70 [ 2572.683352][T12538] do_SYSENTER_32+0x1b/0x20 [ 2572.687900][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2572.694449][T12538] [ 2572.696781][T12538] Uninit was stored to memory at: [ 2572.702052][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2572.707236][T12538] get_compat_msghdr+0x10c/0x280 [ 2572.712386][T12538] ___sys_recvmsg+0x289/0xb40 [ 2572.717204][T12538] do_recvmmsg+0x7c9/0x1200 [ 2572.721887][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2572.726621][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2572.733138][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2572.738219][T12538] do_fast_syscall_32+0x33/0x70 [ 2572.743282][T12538] do_SYSENTER_32+0x1b/0x20 [ 2572.747837][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2572.754387][T12538] [ 2572.756723][T12538] Uninit was stored to memory at: [ 2572.761950][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2572.767112][T12538] get_compat_msghdr+0x10c/0x280 [ 2572.772264][T12538] ___sys_recvmsg+0x289/0xb40 [ 2572.776993][T12538] do_recvmmsg+0x7c9/0x1200 [ 2572.781524][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2572.786515][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2572.793014][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2572.798091][T12538] do_fast_syscall_32+0x33/0x70 [ 2572.803120][T12538] do_SYSENTER_32+0x1b/0x20 [ 2572.807672][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2572.814299][T12538] [ 2572.816642][T12538] Local variable msg_sys created at: [ 2572.822090][T12538] do_recvmmsg+0xc9/0x1200 [ 2572.826556][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2572.958896][T12538] not chained 1240000 origins [ 2572.963821][T12538] CPU: 0 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2572.974016][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2572.984079][T12538] Call Trace: [ 2572.987358][T12538] [ 2572.990343][T12538] dump_stack_lvl+0x200/0x28c [ 2572.995052][T12538] dump_stack+0x29/0x2c [ 2572.999238][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2573.004985][T12538] ? preempt_count_sub+0xfc/0x340 [ 2573.010034][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2573.015264][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2573.020408][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2573.025552][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2573.031436][T12538] ? should_fail+0x79/0x9c0 [ 2573.035974][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2573.041116][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2573.047392][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2573.053513][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2573.058669][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2573.064506][T12538] __msan_chain_origin+0xbd/0x140 [ 2573.069617][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2573.074807][T12538] get_compat_msghdr+0x10c/0x280 [ 2573.079826][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2573.084559][T12538] ___sys_recvmsg+0x289/0xb40 [ 2573.089315][T12538] ? __schedule+0x176c/0x21c0 [ 2573.094066][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2573.099246][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2573.105117][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2573.110298][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2573.116147][T12538] do_recvmmsg+0x7c9/0x1200 [ 2573.120694][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2573.125770][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2573.131039][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2573.135945][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2573.142599][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2573.147321][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2573.153690][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2573.158764][T12538] do_fast_syscall_32+0x33/0x70 [ 2573.163637][T12538] do_SYSENTER_32+0x1b/0x20 [ 2573.168354][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2573.174742][T12538] RIP: 0023:0xf7feb549 [ 2573.178848][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2573.198539][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2573.206986][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2573.215001][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2573.222997][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2573.231092][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2573.239103][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2573.247221][T12538] [ 2573.254190][T12538] Uninit was stored to memory at: [ 2573.259313][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2573.265097][T12538] get_compat_msghdr+0x10c/0x280 [ 2573.270111][T12538] ___sys_recvmsg+0x289/0xb40 [ 2573.275264][T12538] do_recvmmsg+0x7c9/0x1200 [ 2573.279930][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2573.284804][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2573.291217][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2573.296448][T12538] do_fast_syscall_32+0x33/0x70 [ 2573.301358][T12538] do_SYSENTER_32+0x1b/0x20 [ 2573.306105][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2573.312614][T12538] [ 2573.314948][T12538] Uninit was stored to memory at: [ 2573.320025][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2573.325312][T12538] get_compat_msghdr+0x10c/0x280 [ 2573.330305][T12538] ___sys_recvmsg+0x289/0xb40 [ 2573.335205][T12538] do_recvmmsg+0x7c9/0x1200 [ 2573.339888][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2573.344802][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2573.351197][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2573.356493][T12538] do_fast_syscall_32+0x33/0x70 [ 2573.361401][T12538] do_SYSENTER_32+0x1b/0x20 [ 2573.366113][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2573.372617][T12538] [ 2573.374951][T12538] Uninit was stored to memory at: [ 2573.380104][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2573.385397][T12538] get_compat_msghdr+0x10c/0x280 [ 2573.390389][T12538] ___sys_recvmsg+0x289/0xb40 [ 2573.395268][T12538] do_recvmmsg+0x7c9/0x1200 [ 2573.400745][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2573.405656][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2573.412142][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2573.417193][T12538] do_fast_syscall_32+0x33/0x70 [ 2573.422238][T12538] do_SYSENTER_32+0x1b/0x20 [ 2573.426778][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2573.433332][T12538] [ 2573.435660][T12538] Uninit was stored to memory at: [ 2573.440790][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2573.446104][T12538] get_compat_msghdr+0x10c/0x280 [ 2573.451089][T12538] ___sys_recvmsg+0x289/0xb40 [ 2573.455938][T12538] do_recvmmsg+0x7c9/0x1200 [ 2573.460496][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2573.465376][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2573.471895][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2573.476967][T12538] do_fast_syscall_32+0x33/0x70 [ 2573.482042][T12538] do_SYSENTER_32+0x1b/0x20 [ 2573.486587][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2573.493230][T12538] [ 2573.495559][T12538] Uninit was stored to memory at: [ 2573.500627][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2573.505965][T12538] get_compat_msghdr+0x10c/0x280 [ 2573.510968][T12538] ___sys_recvmsg+0x289/0xb40 [ 2573.515828][T12538] do_recvmmsg+0x7c9/0x1200 [ 2573.520381][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2573.525257][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2573.531779][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2573.536852][T12538] do_fast_syscall_32+0x33/0x70 [ 2573.541938][T12538] do_SYSENTER_32+0x1b/0x20 [ 2573.546505][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2573.553064][T12538] [ 2573.555396][T12538] Uninit was stored to memory at: [ 2573.560488][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2573.565801][T12538] get_compat_msghdr+0x10c/0x280 [ 2573.570791][T12538] ___sys_recvmsg+0x289/0xb40 [ 2573.575736][T12538] do_recvmmsg+0x7c9/0x1200 [ 2573.580291][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2573.585168][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2573.591712][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2573.596795][T12538] do_fast_syscall_32+0x33/0x70 [ 2573.601886][T12538] do_SYSENTER_32+0x1b/0x20 [ 2573.606434][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2573.612993][T12538] [ 2573.615327][T12538] Uninit was stored to memory at: [ 2573.620402][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2573.625762][T12538] get_compat_msghdr+0x10c/0x280 [ 2573.630750][T12538] ___sys_recvmsg+0x289/0xb40 [ 2573.635603][T12538] do_recvmmsg+0x7c9/0x1200 [ 2573.640183][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2573.645100][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2573.651717][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2573.656791][T12538] do_fast_syscall_32+0x33/0x70 [ 2573.661843][T12538] do_SYSENTER_32+0x1b/0x20 [ 2573.666386][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2573.672939][T12538] [ 2573.675273][T12538] Local variable msg_sys created at: [ 2573.680571][T12538] do_recvmmsg+0xc9/0x1200 [ 2573.685210][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2573.820383][T12538] not chained 1250000 origins [ 2573.825297][T12538] CPU: 0 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2573.835491][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2573.845558][T12538] Call Trace: [ 2573.848845][T12538] [ 2573.851782][T12538] dump_stack_lvl+0x200/0x28c [ 2573.856532][T12538] dump_stack+0x29/0x2c [ 2573.860704][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2573.866451][T12538] ? preempt_count_sub+0xfc/0x340 [ 2573.871502][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2573.876730][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2573.881893][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2573.887061][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2573.892926][T12538] ? should_fail+0x79/0x9c0 [ 2573.897445][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2573.902588][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2573.908858][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2573.914951][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2573.920087][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2573.925928][T12538] __msan_chain_origin+0xbd/0x140 [ 2573.930981][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2573.936140][T12538] get_compat_msghdr+0x10c/0x280 [ 2573.941134][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2573.945864][T12538] ___sys_recvmsg+0x289/0xb40 [ 2573.950599][T12538] ? __schedule+0x176c/0x21c0 [ 2573.955329][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2573.960468][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2573.966300][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2573.971452][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2573.977288][T12538] do_recvmmsg+0x7c9/0x1200 [ 2573.981824][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2573.986915][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2573.992080][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2573.996866][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2574.003401][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2574.008123][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2574.014490][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2574.019553][T12538] do_fast_syscall_32+0x33/0x70 [ 2574.024433][T12538] do_SYSENTER_32+0x1b/0x20 [ 2574.028954][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2574.035323][T12538] RIP: 0023:0xf7feb549 [ 2574.039414][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2574.059064][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2574.067512][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2574.075503][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2574.083486][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2574.091481][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2574.099478][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2574.107468][T12538] [ 2574.114028][T12538] Uninit was stored to memory at: [ 2574.119134][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2574.124915][T12538] get_compat_msghdr+0x10c/0x280 [ 2574.129922][T12538] ___sys_recvmsg+0x289/0xb40 [ 2574.134791][T12538] do_recvmmsg+0x7c9/0x1200 [ 2574.139357][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2574.144280][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2574.150673][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2574.155941][T12538] do_fast_syscall_32+0x33/0x70 [ 2574.160844][T12538] do_SYSENTER_32+0x1b/0x20 [ 2574.165566][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2574.172031][T12538] [ 2574.174350][T12538] Uninit was stored to memory at: [ 2574.179409][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2574.184738][T12538] get_compat_msghdr+0x10c/0x280 [ 2574.189727][T12538] ___sys_recvmsg+0x289/0xb40 [ 2574.194638][T12538] do_recvmmsg+0x7c9/0x1200 [ 2574.199192][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2574.204089][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2574.210473][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2574.215735][T12538] do_fast_syscall_32+0x33/0x70 [ 2574.220631][T12538] do_SYSENTER_32+0x1b/0x20 [ 2574.225274][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2574.231766][T12538] [ 2574.234096][T12538] Uninit was stored to memory at: [ 2574.239268][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2574.244565][T12538] get_compat_msghdr+0x10c/0x280 [ 2574.249550][T12538] ___sys_recvmsg+0x289/0xb40 [ 2574.254426][T12538] do_recvmmsg+0x7c9/0x1200 [ 2574.259040][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2574.263945][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2574.270331][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2574.275558][T12538] do_fast_syscall_32+0x33/0x70 [ 2574.280453][T12538] do_SYSENTER_32+0x1b/0x20 [ 2574.285116][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2574.291489][T12538] [ 2574.294007][T12538] Uninit was stored to memory at: [ 2574.299101][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2574.304416][T12538] get_compat_msghdr+0x10c/0x280 [ 2574.309399][T12538] ___sys_recvmsg+0x289/0xb40 [ 2574.314253][T12538] do_recvmmsg+0x7c9/0x1200 [ 2574.318809][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2574.323698][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2574.330084][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2574.335351][T12538] do_fast_syscall_32+0x33/0x70 [ 2574.340251][T12538] do_SYSENTER_32+0x1b/0x20 [ 2574.344919][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2574.351296][T12538] [ 2574.353806][T12538] Uninit was stored to memory at: [ 2574.358901][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2574.364244][T12538] get_compat_msghdr+0x10c/0x280 [ 2574.369224][T12538] ___sys_recvmsg+0x289/0xb40 [ 2574.374068][T12538] do_recvmmsg+0x7c9/0x1200 [ 2574.378616][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2574.383519][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2574.389902][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2574.395163][T12538] do_fast_syscall_32+0x33/0x70 [ 2574.400060][T12538] do_SYSENTER_32+0x1b/0x20 [ 2574.404726][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2574.411194][T12538] [ 2574.413707][T12538] Uninit was stored to memory at: [ 2574.418808][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2574.424161][T12538] get_compat_msghdr+0x10c/0x280 [ 2574.429169][T12538] ___sys_recvmsg+0x289/0xb40 [ 2574.434013][T12538] do_recvmmsg+0x7c9/0x1200 [ 2574.438562][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2574.443460][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2574.449847][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2574.455130][T12538] do_fast_syscall_32+0x33/0x70 [ 2574.460028][T12538] do_SYSENTER_32+0x1b/0x20 [ 2574.464716][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2574.471111][T12538] [ 2574.473619][T12538] Uninit was stored to memory at: [ 2574.478714][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2574.484075][T12538] get_compat_msghdr+0x10c/0x280 [ 2574.489071][T12538] ___sys_recvmsg+0x289/0xb40 [ 2574.493928][T12538] do_recvmmsg+0x7c9/0x1200 [ 2574.498499][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2574.503390][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2574.509772][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2574.514967][T12538] do_fast_syscall_32+0x33/0x70 [ 2574.519863][T12538] do_SYSENTER_32+0x1b/0x20 [ 2574.524529][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2574.530919][T12538] [ 2574.533426][T12538] Local variable msg_sys created at: [ 2574.538717][T12538] do_recvmmsg+0xc9/0x1200 [ 2574.543365][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2574.660307][T12538] not chained 1260000 origins [ 2574.668020][T12538] CPU: 0 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2574.678299][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2574.688382][T12538] Call Trace: [ 2574.691663][T12538] [ 2574.694613][T12538] dump_stack_lvl+0x200/0x28c [ 2574.699319][T12538] dump_stack+0x29/0x2c [ 2574.703491][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2574.709247][T12538] ? preempt_count_sub+0xfc/0x340 [ 2574.714303][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2574.719556][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2574.724719][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2574.729889][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2574.735787][T12538] ? should_fail+0x79/0x9c0 [ 2574.740324][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2574.747369][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2574.754334][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2574.760446][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2574.765598][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2574.771486][T12538] __msan_chain_origin+0xbd/0x140 [ 2574.776572][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2574.781773][T12538] get_compat_msghdr+0x10c/0x280 [ 2574.786772][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2574.791500][T12538] ___sys_recvmsg+0x289/0xb40 [ 2574.796239][T12538] ? __schedule+0x176c/0x21c0 [ 2574.800968][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2574.806209][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2574.812070][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2574.817213][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2574.823066][T12538] do_recvmmsg+0x7c9/0x1200 [ 2574.827629][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2574.832725][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2574.837914][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2574.842728][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2574.849280][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2574.853995][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2574.860362][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2574.865423][T12538] do_fast_syscall_32+0x33/0x70 [ 2574.870310][T12538] do_SYSENTER_32+0x1b/0x20 [ 2574.874880][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2574.881272][T12538] RIP: 0023:0xf7feb549 [ 2574.885365][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2574.905104][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2574.913539][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2574.921535][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2574.929533][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2574.937542][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2574.945553][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2574.953545][T12538] [ 2574.960369][T12538] Uninit was stored to memory at: [ 2574.965970][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2574.971155][T12538] get_compat_msghdr+0x10c/0x280 [ 2574.976275][T12538] ___sys_recvmsg+0x289/0xb40 [ 2574.981005][T12538] do_recvmmsg+0x7c9/0x1200 [ 2574.985696][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2574.990439][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2574.996970][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2575.002215][T12538] do_fast_syscall_32+0x33/0x70 [ 2575.007135][T12538] do_SYSENTER_32+0x1b/0x20 [ 2575.011848][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2575.018227][T12538] [ 2575.020546][T12538] Uninit was stored to memory at: [ 2575.025779][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2575.030955][T12538] get_compat_msghdr+0x10c/0x280 [ 2575.036062][T12538] ___sys_recvmsg+0x289/0xb40 [ 2575.040791][T12538] do_recvmmsg+0x7c9/0x1200 [ 2575.045495][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2575.050220][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2575.056807][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2575.061973][T12538] do_fast_syscall_32+0x33/0x70 [ 2575.066880][T12538] do_SYSENTER_32+0x1b/0x20 [ 2575.071420][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2575.077968][T12538] [ 2575.080307][T12538] Uninit was stored to memory at: [ 2575.085566][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2575.090728][T12538] get_compat_msghdr+0x10c/0x280 [ 2575.095835][T12538] ___sys_recvmsg+0x289/0xb40 [ 2575.100585][T12538] do_recvmmsg+0x7c9/0x1200 [ 2575.105299][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2575.110028][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2575.116622][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2575.121790][T12538] do_fast_syscall_32+0x33/0x70 [ 2575.126688][T12538] do_SYSENTER_32+0x1b/0x20 [ 2575.131231][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2575.137837][T12538] [ 2575.140172][T12538] Uninit was stored to memory at: [ 2575.145375][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2575.150616][T12538] get_compat_msghdr+0x10c/0x280 [ 2575.155795][T12538] ___sys_recvmsg+0x289/0xb40 [ 2575.160525][T12538] do_recvmmsg+0x7c9/0x1200 [ 2575.165264][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2575.169994][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2575.176578][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2575.181966][T12538] do_fast_syscall_32+0x33/0x70 [ 2575.186862][T12538] do_SYSENTER_32+0x1b/0x20 [ 2575.191382][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2575.197894][T12538] [ 2575.200223][T12538] Uninit was stored to memory at: [ 2575.205456][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2575.210607][T12538] get_compat_msghdr+0x10c/0x280 [ 2575.215777][T12538] ___sys_recvmsg+0x289/0xb40 [ 2575.220506][T12538] do_recvmmsg+0x7c9/0x1200 [ 2575.225164][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2575.229893][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2575.236459][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2575.241533][T12538] do_fast_syscall_32+0x33/0x70 [ 2575.246633][T12538] do_SYSENTER_32+0x1b/0x20 [ 2575.251200][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2575.257719][T12538] [ 2575.260065][T12538] Uninit was stored to memory at: [ 2575.265264][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2575.270440][T12538] get_compat_msghdr+0x10c/0x280 [ 2575.275591][T12538] ___sys_recvmsg+0x289/0xb40 [ 2575.280330][T12538] do_recvmmsg+0x7c9/0x1200 [ 2575.285078][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2575.289804][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2575.296304][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2575.301375][T12538] do_fast_syscall_32+0x33/0x70 [ 2575.306449][T12538] do_SYSENTER_32+0x1b/0x20 [ 2575.310994][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2575.317488][T12538] [ 2575.319818][T12538] Uninit was stored to memory at: [ 2575.325063][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2575.330245][T12538] get_compat_msghdr+0x10c/0x280 [ 2575.335404][T12538] ___sys_recvmsg+0x289/0xb40 [ 2575.340154][T12538] do_recvmmsg+0x7c9/0x1200 [ 2575.344884][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2575.349628][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2575.356136][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2575.361208][T12538] do_fast_syscall_32+0x33/0x70 [ 2575.366283][T12538] do_SYSENTER_32+0x1b/0x20 [ 2575.370827][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2575.377381][T12538] [ 2575.379716][T12538] Local variable msg_sys created at: [ 2575.385165][T12538] do_recvmmsg+0xc9/0x1200 [ 2575.389636][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2575.510944][T12538] not chained 1270000 origins [ 2575.515898][T12538] CPU: 1 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2575.526098][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2575.536173][T12538] Call Trace: [ 2575.539465][T12538] [ 2575.542397][T12538] dump_stack_lvl+0x200/0x28c [ 2575.547143][T12538] dump_stack+0x29/0x2c [ 2575.551322][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2575.557081][T12538] ? preempt_count_sub+0xfc/0x340 [ 2575.562166][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2575.567400][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2575.572557][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2575.577817][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2575.583667][T12538] ? should_fail+0x79/0x9c0 [ 2575.588207][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2575.593371][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2575.599667][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2575.605765][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2575.610928][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2575.616772][T12538] __msan_chain_origin+0xbd/0x140 [ 2575.621848][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2575.627029][T12538] get_compat_msghdr+0x10c/0x280 [ 2575.632139][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2575.636889][T12538] ___sys_recvmsg+0x289/0xb40 [ 2575.641640][T12538] ? __schedule+0x176c/0x21c0 [ 2575.646372][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2575.651522][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2575.657384][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2575.662538][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2575.668425][T12538] do_recvmmsg+0x7c9/0x1200 [ 2575.672980][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2575.678069][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2575.683318][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2575.688176][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2575.694744][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2575.699497][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2575.705872][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2575.710940][T12538] do_fast_syscall_32+0x33/0x70 [ 2575.715851][T12538] do_SYSENTER_32+0x1b/0x20 [ 2575.720385][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2575.726748][T12538] RIP: 0023:0xf7feb549 [ 2575.730841][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2575.750491][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2575.759052][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2575.767071][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2575.775097][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2575.783103][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2575.791117][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2575.799144][T12538] [ 2575.804836][T12538] Uninit was stored to memory at: [ 2575.809943][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2575.815556][T12538] get_compat_msghdr+0x10c/0x280 [ 2575.820551][T12538] ___sys_recvmsg+0x289/0xb40 [ 2575.825389][T12538] do_recvmmsg+0x7c9/0x1200 [ 2575.829948][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2575.834771][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2575.841158][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2575.846334][T12538] do_fast_syscall_32+0x33/0x70 [ 2575.851232][T12538] do_SYSENTER_32+0x1b/0x20 [ 2575.855951][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2575.862427][T12538] [ 2575.864759][T12538] Uninit was stored to memory at: [ 2575.869948][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2575.875260][T12538] get_compat_msghdr+0x10c/0x280 [ 2575.880250][T12538] ___sys_recvmsg+0x289/0xb40 [ 2575.885129][T12538] do_recvmmsg+0x7c9/0x1200 [ 2575.889682][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2575.894546][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2575.900939][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2575.906181][T12538] do_fast_syscall_32+0x33/0x70 [ 2575.911076][T12538] do_SYSENTER_32+0x1b/0x20 [ 2575.915728][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2575.922316][T12538] [ 2575.924650][T12538] Uninit was stored to memory at: [ 2575.929726][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2575.934985][T12538] get_compat_msghdr+0x10c/0x280 [ 2575.939995][T12538] ___sys_recvmsg+0x289/0xb40 [ 2575.944868][T12538] do_recvmmsg+0x7c9/0x1200 [ 2575.949422][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2575.954325][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2575.960714][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2575.965963][T12538] do_fast_syscall_32+0x33/0x70 [ 2575.970861][T12538] do_SYSENTER_32+0x1b/0x20 [ 2575.975557][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2575.982031][T12538] [ 2575.984363][T12538] Uninit was stored to memory at: [ 2575.989446][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2575.995072][T12538] get_compat_msghdr+0x10c/0x280 [ 2576.000065][T12538] ___sys_recvmsg+0x289/0xb40 [ 2576.004968][T12538] do_recvmmsg+0x7c9/0x1200 [ 2576.009669][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2576.014570][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2576.020957][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2576.026175][T12538] do_fast_syscall_32+0x33/0x70 [ 2576.031076][T12538] do_SYSENTER_32+0x1b/0x20 [ 2576.035754][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2576.042326][T12538] [ 2576.044659][T12538] Uninit was stored to memory at: [ 2576.049737][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2576.055245][T12538] get_compat_msghdr+0x10c/0x280 [ 2576.060245][T12538] ___sys_recvmsg+0x289/0xb40 [ 2576.065162][T12538] do_recvmmsg+0x7c9/0x1200 [ 2576.069720][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2576.074624][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2576.081012][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2576.086236][T12538] do_fast_syscall_32+0x33/0x70 [ 2576.091131][T12538] do_SYSENTER_32+0x1b/0x20 [ 2576.095781][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2576.102260][T12538] [ 2576.104590][T12538] Uninit was stored to memory at: [ 2576.109669][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2576.114933][T12538] get_compat_msghdr+0x10c/0x280 [ 2576.119943][T12538] ___sys_recvmsg+0x289/0xb40 [ 2576.124822][T12538] do_recvmmsg+0x7c9/0x1200 [ 2576.129374][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2576.134246][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2576.140633][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2576.145876][T12538] do_fast_syscall_32+0x33/0x70 [ 2576.150770][T12538] do_SYSENTER_32+0x1b/0x20 [ 2576.155441][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2576.161913][T12538] [ 2576.164243][T12538] Uninit was stored to memory at: [ 2576.169332][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2576.174661][T12538] get_compat_msghdr+0x10c/0x280 [ 2576.179650][T12538] ___sys_recvmsg+0x289/0xb40 [ 2576.184552][T12538] do_recvmmsg+0x7c9/0x1200 [ 2576.189121][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2576.194118][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2576.200632][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2576.205976][T12538] do_fast_syscall_32+0x33/0x70 [ 2576.210965][T12538] do_SYSENTER_32+0x1b/0x20 [ 2576.215766][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2576.222259][T12538] [ 2576.224596][T12538] Local variable msg_sys created at: [ 2576.229896][T12538] do_recvmmsg+0xc9/0x1200 [ 2576.234519][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2576.368211][T12538] not chained 1280000 origins [ 2576.373069][T12538] CPU: 0 PID: 12538 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2576.383247][T12538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2576.393336][T12538] Call Trace: [ 2576.396634][T12538] [ 2576.399572][T12538] dump_stack_lvl+0x200/0x28c [ 2576.404285][T12538] dump_stack+0x29/0x2c [ 2576.408480][T12538] kmsan_internal_chain_origin+0x78/0x120 [ 2576.414244][T12538] ? preempt_count_sub+0xfc/0x340 [ 2576.419305][T12538] ? __local_bh_enable_ip+0xa8/0xe0 [ 2576.424526][T12538] ? _raw_spin_unlock_bh+0x4f/0x60 [ 2576.429687][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2576.434827][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2576.440695][T12538] ? should_fail+0x79/0x9c0 [ 2576.445232][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2576.450376][T12538] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 2576.456647][T12538] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 2576.462744][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2576.467881][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2576.473718][T12538] __msan_chain_origin+0xbd/0x140 [ 2576.478772][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2576.483943][T12538] get_compat_msghdr+0x10c/0x280 [ 2576.488933][T12538] ? do_recvmmsg+0x7c9/0x1200 [ 2576.493671][T12538] ___sys_recvmsg+0x289/0xb40 [ 2576.498402][T12538] ? __schedule+0x176c/0x21c0 [ 2576.503125][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2576.508266][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2576.514128][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2576.519271][T12538] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2576.525111][T12538] do_recvmmsg+0x7c9/0x1200 [ 2576.529644][T12538] ? filter_irq_stacks+0xb9/0x230 [ 2576.534718][T12538] ? kmsan_get_metadata+0x33/0x220 [ 2576.539913][T12538] ? __sys_recvmmsg+0xb9/0x6f0 [ 2576.544752][T12538] ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2576.551309][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2576.556043][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2576.562421][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2576.567481][T12538] do_fast_syscall_32+0x33/0x70 [ 2576.572373][T12538] do_SYSENTER_32+0x1b/0x20 [ 2576.576940][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2576.583322][T12538] RIP: 0023:0xf7feb549 [ 2576.587422][T12538] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2576.607074][T12538] RSP: 002b:00000000f7fc55cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 2576.615538][T12538] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0 [ 2576.623532][T12538] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000 [ 2576.631518][T12538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2576.639523][T12538] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2576.647526][T12538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2576.655608][T12538] [ 2576.662182][T12538] Uninit was stored to memory at: [ 2576.667310][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2576.673074][T12538] get_compat_msghdr+0x10c/0x280 [ 2576.678159][T12538] ___sys_recvmsg+0x289/0xb40 [ 2576.683031][T12538] do_recvmmsg+0x7c9/0x1200 [ 2576.687588][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2576.692470][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2576.698859][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2576.704131][T12538] do_fast_syscall_32+0x33/0x70 [ 2576.709120][T12538] do_SYSENTER_32+0x1b/0x20 [ 2576.713849][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2576.721014][T12538] [ 2576.723488][T12538] Uninit was stored to memory at: [ 2576.728573][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2576.733918][T12538] get_compat_msghdr+0x10c/0x280 [ 2576.738903][T12538] ___sys_recvmsg+0x289/0xb40 [ 2576.743817][T12538] do_recvmmsg+0x7c9/0x1200 [ 2576.748372][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2576.753371][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2576.759757][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2576.765046][T12538] do_fast_syscall_32+0x33/0x70 [ 2576.770030][T12538] do_SYSENTER_32+0x1b/0x20 [ 2576.774761][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2576.781139][T12538] [ 2576.783670][T12538] Uninit was stored to memory at: [ 2576.789017][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2576.794394][T12538] get_compat_msghdr+0x10c/0x280 [ 2576.799392][T12538] ___sys_recvmsg+0x289/0xb40 [ 2576.804249][T12538] do_recvmmsg+0x7c9/0x1200 [ 2576.808813][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2576.813718][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2576.820111][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2576.825391][T12538] do_fast_syscall_32+0x33/0x70 [ 2576.830286][T12538] do_SYSENTER_32+0x1b/0x20 [ 2576.834960][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2576.841341][T12538] [ 2576.843856][T12538] Uninit was stored to memory at: [ 2576.848937][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2576.854269][T12538] get_compat_msghdr+0x10c/0x280 [ 2576.859259][T12538] ___sys_recvmsg+0x289/0xb40 [ 2576.864115][T12538] do_recvmmsg+0x7c9/0x1200 [ 2576.868665][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2576.873585][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2576.879971][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2576.885237][T12538] do_fast_syscall_32+0x33/0x70 [ 2576.890233][T12538] do_SYSENTER_32+0x1b/0x20 [ 2576.894903][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2576.901280][T12538] [ 2576.903801][T12538] Uninit was stored to memory at: [ 2576.908897][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2576.914251][T12538] get_compat_msghdr+0x10c/0x280 [ 2576.919243][T12538] ___sys_recvmsg+0x289/0xb40 [ 2576.924127][T12538] do_recvmmsg+0x7c9/0x1200 [ 2576.928683][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2576.933583][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2576.939995][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2576.945190][T12538] do_fast_syscall_32+0x33/0x70 [ 2576.950086][T12538] do_SYSENTER_32+0x1b/0x20 [ 2576.954871][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2576.961305][T12538] [ 2576.963834][T12538] Uninit was stored to memory at: [ 2576.968930][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2576.974235][T12538] get_compat_msghdr+0x10c/0x280 [ 2576.979233][T12538] ___sys_recvmsg+0x289/0xb40 [ 2576.984100][T12538] do_recvmmsg+0x7c9/0x1200 [ 2576.988680][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2576.993574][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2576.999962][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2577.005233][T12538] do_fast_syscall_32+0x33/0x70 [ 2577.010357][T12538] do_SYSENTER_32+0x1b/0x20 [ 2577.015057][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2577.021452][T12538] [ 2577.023970][T12538] Uninit was stored to memory at: [ 2577.029054][T12538] __get_compat_msghdr+0x6ea/0x9e0 [ 2577.034412][T12538] get_compat_msghdr+0x10c/0x280 [ 2577.039401][T12538] ___sys_recvmsg+0x289/0xb40 [ 2577.044253][T12538] do_recvmmsg+0x7c9/0x1200 [ 2577.048812][T12538] __sys_recvmmsg+0x520/0x6f0 [ 2577.053713][T12538] __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0 [ 2577.060098][T12538] __do_fast_syscall_32+0x95/0xf0 [ 2577.065347][T12538] do_fast_syscall_32+0x33/0x70 [ 2577.070238][T12538] do_SYSENTER_32+0x1b/0x20 [ 2577.074953][T12538] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2577.081332][T12538] [ 2577.083846][T12538] Local variable msg_sys created at: [ 2577.089134][T12538] do_recvmmsg+0xc9/0x1200 [ 2577.093775][T12538] __sys_recvmmsg+0x520/0x6f0 03:40:00 executing program 3: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000500)={0xffffffffffffffff}) sendmsg(r0, &(0x7f0000004b80)={0x0, 0x0, &(0x7f0000004940)=[{&(0x7f00000034c0)="89736dcb00acf60dbef1b079ea79beb4b877a6be8b9075a8c7cc4f7dbcb85433480633abbb6fa046ec3e95d76c7ab75d4f3cc691cb5b9deb8ac4cc1530aab2e24a201a35cb426c8478407a9246b2e094c9b34410a87a9f74941f1d9d8fa0409a03996cf6986e1ede646b38f045edae3a8a66f9ed96d31d9db59f2238bacf66d24d106e30efca566a53b15233a0be2727fa6e", 0x92}, {&(0x7f0000003580)="27c312e358fe942f57ec70c5ee706d57e52e0b6c8b00547beb251274fc91431947e8ee44ede1417bc70b4b2f45313a0b80e3cbb70b444b68179026ba0300b7cc727bc65bc93eb375819a6621d78236e8a96349d30f51ed8db28a75f1fca6f2824bbc81f535fbc356422edd8cb38e121f2b23d3971743e3f3ca58eb02b850714956d634edef490c930bcfee12e8799d293ff7682739f5ccd9ae42a93e8de162d7ec7fa9d00ed23a7aee6ad8358cad5816b9704d69", 0xb4}, {&(0x7f0000003640)="98753c3ffef99ee1faab06bd8360d799fe61f1368367eb71c3ac5b0aafc6e47cb03cae79aa2ba311d47a7b77c05539c2fa8fc609c6a86202841f22165c281b3133779e3729a967a881a0727d", 0x4c}, {&(0x7f00000036c0)="083d470ef423a2a0d8f0d8bf8341517d0da27cf8d4764ba0885f6f690494aafc831bc991fc7422e6eba7210ed9eea2d2b34f5e6dd318542d5981184d95", 0x3d}, {&(0x7f0000003700)="5c1773efbbd1d1a13a9a581cc95d220cb82cc03bb06eb1175eb73f18d424963f7ca978769955b8dce27cca3979fa5a51bcfb47df3e3ee3a5fb1667e54e5284a9cd617a95f0ee959cf7c74f15d406bf4d7ba2", 0x52}, {&(0x7f0000003780)="6613561a9a11d1eb889fa3237ccb34d8ed513e42c391905e581fe36ede9ad49b1c8e14def727589d71f67c22378508c6b36bc49f8ef1b9c4af33d9c213bd16a9ad29257601395423d7fe44a035046ff77fded75f8075c068b6562ca53db2ec15458c3a2d5d210a", 0x67}, {0x0}, {&(0x7f0000003840)="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", 0xa79}, {0x0}], 0x9, 0x0, 0x803e}, 0x0) 03:40:00 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$SOCK_DESTROY(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001400)={0xec4, 0x15, 0x0, 0x0, 0x0, {}, [@INET_DIAG_REQ_BYTECODE={0x35, 0x1, "b69c0e347ae76274f7f2e54e8be6e1789c71c397458dafe25016a53759c4304d9df3a59fbfe0d86bd477ae80846391ed59"}, @INET_DIAG_REQ_BYTECODE={0xc9, 0x1, "fe5482d769a53dc9c232f02cf29296c21221861b8537003ae1356448ceed612937a918a409ae93b48c2678cdb01a52eae857757646b1d59f8ff2606fa5728c2b6439a7853268fe37e203ee2711697e590a803ac22d6c023952705563f05e5ac5d11a8d6ce1123a0f6b9dc503d7e69a9620e34d3abd213750ab0baf72c45ba6d251ae45dcfc02bd6023e69bb11c1e1a5b09a216b78a6b759176f90cb25baf381d25d0e82489e6ba6cf963c13ad55b391a7da19c1236b29816aa9d79885dde74752cadcc9b97"}, @INET_DIAG_REQ_BYTECODE={0xda9, 0x1, "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"}]}, 0xec4}}, 0x0) 03:40:00 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000180)={0x2, &(0x7f0000000140)=[{}, {0x6}]}, 0x10) 03:40:00 executing program 0: bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x12, 0x4, &(0x7f0000000000)=@framed={{}, [@jmp={0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}]}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x8, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 03:40:00 executing program 5: bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x38839605193e789a, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x48) 03:40:00 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x0, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:00 executing program 4: msgget(0x3, 0x0) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) openat$full(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) msgctl$MSG_INFO(0x0, 0xc, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x1) 03:40:00 executing program 5: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_DEL_SEC_LEVEL(r0, &(0x7f00000008c0)={&(0x7f0000000740)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000880)={&(0x7f00000007c0)={0x14}, 0x14}}, 0x0) 03:40:00 executing program 3: syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000001980), 0x0, &(0x7f0000001b00)={[{@gid_forget}, {@umask}, {@lastblock}, {@uid={'uid', 0x3d, 0xffffffffffffffff}}]}) 03:40:00 executing program 0: prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0}, 0x68) 03:40:00 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_JOIN_IBSS(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x20, r1, 0x401, 0x0, 0x0, {{0x7e}, {@void, @val={0xc}}}}, 0x20}}, 0x0) 03:40:01 executing program 4: syz_clone(0x82280200, 0x0, 0x0, 0x0, 0x0, 0x0) 03:40:01 executing program 5: r0 = syz_open_dev$swradio(&(0x7f0000000000), 0x0, 0x2) ioctl$VIDIOC_TRY_FMT(r0, 0xc0d05640, &(0x7f0000000040)={0xa, @vbi}) 03:40:01 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) r2 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000680)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x40, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @disassoc={@with_ht={{{}, {}, @device_a, @device_b}}, 0x0, @void}}]}, 0x40}}, 0x0) 03:40:01 executing program 0: getrusage(0x5e4862c8466a59b6, 0x0) [ 2578.217048][T12602] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 2578.227353][T12602] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db 03:40:01 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_SB_POOL_GET(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000200)={0x44, r1, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}, {0x6}}]}, 0x44}}, 0x0) 03:40:01 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) r2 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000680)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x40, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @disassoc={@with_ht={{{}, {}, @device_a, @device_b}}, 0x0, @void}}]}, 0x40}}, 0x0) 03:40:02 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x0, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:02 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000002c0)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:40:02 executing program 0: r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1) setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000000)=0x7fffffff, 0x4) 03:40:02 executing program 5: r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) sendmsg$802154_raw(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)="3b83e256b5d77bce", 0x8}}, 0x0) 03:40:02 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) r2 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000680)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x40, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @disassoc={@with_ht={{{}, {}, @device_a, @device_b}}, 0x0, @void}}]}, 0x40}}, 0x0) 03:40:02 executing program 2: socketpair(0x2c, 0x3, 0x0, &(0x7f0000000580)) [ 2579.310022][T12619] ieee802154 phy0 wpan0: encryption failed: -22 03:40:02 executing program 0: syz_clone(0x800480, 0x0, 0x0, 0x0, 0x0, 0x0) 03:40:02 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) r2 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000680)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x40, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @disassoc={@with_ht={{{}, {}, @device_a, @device_b}}, 0x0, @void}}]}, 0x40}}, 0x0) 03:40:02 executing program 5: r0 = openat$sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/mm/ksm/run\x00', 0x1, 0x0) write$sysctl(r0, &(0x7f0000000000)='3\x00', 0x2) 03:40:02 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_SB_POOL_GET(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000200)={0x40, r1, 0x1, 0x0, 0x0, {}, [{@pci={{0x8}, {0x11}}, {0x8}, {0x6}}]}, 0x40}}, 0x0) 03:40:02 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) socket$nl_crypto(0x10, 0x3, 0x15) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x40, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @disassoc={@with_ht={{{}, {}, @device_a, @device_b}}, 0x0, @void}}]}, 0x40}}, 0x0) 03:40:02 executing program 4: r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000000)) ioctl$PPPIOCSNPMODE(r0, 0x4008744b, &(0x7f0000000180)) 03:40:03 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x0, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:03 executing program 0: pipe2$9p(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RLERROR(r0, &(0x7f0000000340)={0xd, 0x7, 0x0, {0x4, '${:#'}}, 0xfffffffffffffdef) 03:40:03 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) r2 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000680)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x48, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_CSA_C_OFFSETS_TX={0x4}, @NL80211_ATTR_FRAME={0x22, 0x33, @disassoc={@with_ht={{{}, {}, @device_a, @device_b}}, 0x0, @void}}, @NL80211_ATTR_OFFCHANNEL_TX_OK={0x4}]}, 0x48}}, 0x0) 03:40:03 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_JOIN_IBSS(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r1, 0x401, 0x0, 0x0, {{0x7}, {@void, @val={0xc}}}}, 0x20}}, 0x0) 03:40:03 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) socket$nl_crypto(0x10, 0x3, 0x15) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x40, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @disassoc={@with_ht={{{}, {}, @device_a, @device_b}}, 0x0, @void}}]}, 0x40}}, 0x0) 03:40:03 executing program 4: openat$bsg(0xffffffffffffff9c, &(0x7f00000000c0), 0x49e001, 0x0) 03:40:03 executing program 4: r0 = openat$sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/mm/ksm/run\x00', 0x1, 0x0) write$sysctl(r0, &(0x7f0000000000)='1\x00', 0x2e) 03:40:03 executing program 2: r0 = syz_open_dev$sndctrl(&(0x7f0000000080), 0x2, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r0, 0xc0505510, &(0x7f00000001c0)={0x0, 0x1, 0x0, 0x0, &(0x7f00000000c0)=[{}]}) 03:40:03 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) socket$nl_crypto(0x10, 0x3, 0x15) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x40, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @disassoc={@with_ht={{{}, {}, @device_a, @device_b}}, 0x0, @void}}]}, 0x40}}, 0x0) 03:40:03 executing program 5: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) getsockopt$bt_l2cap_L2CAP_CONNINFO(r0, 0x6, 0x2, 0x0, &(0x7f0000000080)) 03:40:04 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000680)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x40, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @disassoc={@with_ht={{{}, {}, @device_a, @device_b}}, 0x0, @void}}]}, 0x40}}, 0x0) 03:40:04 executing program 4: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) sendmsg$sock(r0, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x801) 03:40:04 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, 0x0, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:04 executing program 2: pipe2$9p(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RGETATTR(r0, &(0x7f0000000000)={0xa0, 0x19, 0x0, {0x0, {}, 0x0, 0xffffffffffffffff}}, 0xa0) write$P9_RLERROR(r0, &(0x7f0000000340)={0xd, 0x7, 0x0, {0x4, '${:#'}}, 0x134d) 03:40:04 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000680)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x40, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @disassoc={@with_ht={{{}, {}, @device_a, @device_b}}, 0x0, @void}}]}, 0x40}}, 0x0) 03:40:04 executing program 0: r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1) getsockopt$sock_timeval(r0, 0x1, 0x0, 0x0, 0xffffffffffffffff) 03:40:04 executing program 5: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000240)={'netpci0\x00', 0x2}) ioctl$TUNSETTXFILTER(r0, 0x400454e2, &(0x7f0000000000)={0x0, 0x1, [@broadcast]}) 03:40:04 executing program 4: add_key(&(0x7f0000000340)='cifs.spnego\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffe) 03:40:05 executing program 4: r0 = socket$igmp6(0xa, 0x3, 0x2) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000280)={@local, @empty, @mcast1, 0x0, 0x5}) 03:40:05 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, 0x0, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:05 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x5452, &(0x7f0000000280)={0x4000}) 03:40:05 executing program 2: r0 = syz_open_dev$swradio(&(0x7f0000000000), 0x0, 0x2) ioctl$VIDIOC_QBUF(r0, 0xc058560f, &(0x7f00000002c0)=@userptr={0x0, 0x9, 0x4, 0x0, 0x0, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "0f16cd5f"}, 0x0, 0x2, {0x0}, 0x35}) 03:40:05 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000680)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x40, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @disassoc={@with_ht={{{}, {}, @device_a, @device_b}}, 0x0, @void}}]}, 0x40}}, 0x0) 03:40:05 executing program 5: io_setup(0x800, &(0x7f0000000140)=0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$igmp6(0xa, 0x3, 0x2) io_submit(r0, 0x2, &(0x7f0000000100)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x7, 0x0, r2, 0x0}, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x5, r1, 0x0, 0x0, 0x0, 0x0, 0x6}]) 03:40:05 executing program 0: bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x5, 0x3f, 0x9, 0x8, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2}, 0x48) 03:40:05 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) r2 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000680)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_IBSS(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000380)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ibss_ssid}, @NL80211_ATTR_CONTROL_PORT_OVER_NL80211={0x4}]}, 0x34}}, 0x0) 03:40:05 executing program 4: r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) bind$802154_raw(r0, &(0x7f0000000180)={0x24, @short={0x2, 0x0, 0xffff}}, 0x14) 03:40:05 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000680)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x40, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @disassoc={@with_ht={{{}, {}, @device_a, @device_b}}, 0x0, @void}}]}, 0x40}}, 0x0) 03:40:05 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, 0x0, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:05 executing program 0: syz_mount_image$msdos(&(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0x0, 0x1000000, &(0x7f00000023c0), 0x0, &(0x7f0000002480)={[{@fat=@umask}]}) 03:40:05 executing program 5: syz_clone(0x40800400, 0x0, 0x0, 0x0, 0x0, 0x0) 03:40:06 executing program 2: msgrcv(0x0, &(0x7f0000000040)={0x0, ""/165}, 0xad, 0x2, 0x0) msgsnd(0x0, 0x0, 0x0, 0x0) 03:40:06 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x0, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:06 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000680)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x40, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @disassoc={@with_ht={{{}, {}, @device_a, @device_b}}, 0x0, @void}}]}, 0x40}}, 0x0) 03:40:06 executing program 4: r0 = syz_open_dev$vcsu(&(0x7f0000000000), 0x0, 0x80801) write$P9_RLERROR(r0, 0x0, 0x0) r1 = socket$igmp6(0xa, 0x3, 0x2) ioctl$sock_inet6_SIOCDELRT(r1, 0x890c, &(0x7f0000000ac0)={@empty, @ipv4={'\x00', '\xff\xff', @local}, @private0, 0x0, 0x2c, 0x80}) r2 = socket$packet(0x11, 0x3, 0x300) r3 = socket$igmp6(0xa, 0x3, 0x2) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000040)={'batadv_slave_0\x00', 0x0}) ioctl$sock_inet6_SIOCSIFDSTADDR(r3, 0x8918, &(0x7f0000000080)={@dev, 0x0, r4}) ioctl$sock_inet6_SIOCADDRT(r1, 0x890b, &(0x7f0000000040)={@mcast1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @empty, 0x7, 0x0, 0x0, 0x100, 0x0, 0x0, r4}) 03:40:06 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000680)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x40, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @disassoc={@with_ht={{{}, {}, @device_a, @device_b}}, 0x0, @void}}]}, 0x40}}, 0x0) 03:40:06 executing program 4: syz_mount_image$nilfs2(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000017200)="020000000000343418", 0x9, 0x800000000ff000}], 0x0, &(0x7f0000000880)=ANY=[]) 03:40:06 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x3) 03:40:07 executing program 0: msgctl$MSG_STAT_ANY(0xffffffffffffffff, 0xd, &(0x7f0000000000)=""/42) msgctl$MSG_INFO(0x0, 0xc, &(0x7f0000000100)=""/234) msgctl$MSG_STAT(0xffffffffffffffff, 0xb, &(0x7f0000000200)=""/179) msgget$private(0x0, 0x204) syz_mount_image$minix(&(0x7f0000000640), &(0x7f0000000680)='./file1\x00', 0x7fffffffffffffff, 0x3, &(0x7f0000000880)=[{&(0x7f00000006c0)="5705919c5948c1484bba95a9693b99f731e3e47e6f10642220ef50eb91160f457845735bc3ef6c6a4a56a54bb3b62590fa1817b97e065a50f59f37385542842bdc8cad4962894639cefe2447e16dc26945fb7a58a9416a895ddd3fb2a4ceeb8e4ff3cb3c6a37f6f1a8f0f35d09bf5f758fb997e16adf3925ce0c2e7f006ca5a2c90381d69cc09618cfe7fcf7e41e762d55da42b87b8d0c3a333503bf987bc09f8941e3", 0xa3, 0x3}, {&(0x7f0000000780)="2bb88e2ba56ad5481c3a25d1cedbe9310f0f83e6317158c629565696e904ed3462822bdf112cbb30226bdf8025baff75", 0x30, 0x3}, {&(0x7f00000007c0)="cc3caa32db3ef10964d3530a7327efa5a0ecfd497744609fb3575d02394456bd46078bbe818df9113eaf2910e13f09db9f328285a6b1671a70a1c80392a7e008ad4a53679cf3bcb9e0545afe3b8d3ad0665bd40a15e51ef36aed8b026b15c1c6f72747e307cc0c926422d77c11f4b25ae809aea9244d6a552ed560c7026f5fc075173678dc129fc0a93aabb4e2241698f57d8a6d72b330d0d5858072ebac90a6b0bcea33fbb43f37817406c4b6190671c2122e4c99b85f6f939155f8", 0xbc, 0x7fff}], 0x2, &(0x7f0000000900)={[{'/dev/vsock\x00'}, {'A'}], [{@fsuuid={'fsuuid', 0x3d, {[0x31, 0x30, 0x0, 0x66, 0x39, 0x38, 0x61, 0x31], 0x2d, [0x63, 0x66, 0x66, 0x36], 0x2d, [0x32, 0x30, 0x36, 0x35], 0x2d, [0x31, 0x63, 0x35, 0x32], 0x2d, [0x66, 0x63, 0x31, 0x31, 0x33, 0x3, 0x34, 0x34]}}}]}) 03:40:07 executing program 3: r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) r1 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000680)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x40, r0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @disassoc={@with_ht={{{}, {}, @device_a, @device_b}}, 0x0, @void}}]}, 0x40}}, 0x0) 03:40:07 executing program 2: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000200), r0) sendmsg$NLBL_CIPSOV4_C_ADD(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000007c0)={0x14, r2, 0x1}, 0x14}}, 0x0) 03:40:07 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=@newlink={0x98, 0x10, 0x503, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x68, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x58, 0x2, 0x0, 0x1, [@IFLA_VLAN_EGRESS_QOS={0x10, 0x3, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}]}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x8, 0x9}}, @IFLA_VLAN_ID={0x6}, @IFLA_VLAN_EGRESS_QOS={0x28, 0x3, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0xfffffffb}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x8, 0x8}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x6, 0x1}}]}, @IFLA_VLAN_PROTOCOL={0x6, 0x5, 0x8100}]}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x98}}, 0x0) 03:40:07 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000005c0)=0x169, 0x4) bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x5, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000100), 0x4) recvmsg(r0, &(0x7f0000000240)={0x0, 0xfffffffffffffd83, &(0x7f0000000180)=[{&(0x7f0000003ac0)=""/4096, 0x5801}], 0x11, 0x0, 0xf080, 0x3}, 0x100) write$binfmt_elf64(r0, &(0x7f0000000600)=ANY=[], 0xfc30) 03:40:07 executing program 0: r0 = socket$packet(0x11, 0x2, 0x300) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000040)={'batadv0\x00', 0x0}) sendto$packet(r0, &(0x7f0000000080)="10008100", 0x4, 0x0, &(0x7f00000002c0)={0x11, 0x8100, r1, 0x1, 0x0, 0x6, @random="cb48288c2dd2"}, 0x14) 03:40:08 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x0, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:08 executing program 2: bpf$BPF_LINK_UPDATE(0x1d, 0xfffffffffffffffe, 0x700) 03:40:08 executing program 3: r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) r1 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000680)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x40, r0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @disassoc={@with_ht={{{}, {}, @device_a, @device_b}}, 0x0, @void}}]}, 0x40}}, 0x0) 03:40:08 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'veth1_macvtap\x00', 0x0}) sendmmsg$inet6(r0, &(0x7f0000000800)=[{{&(0x7f0000000000)={0xa, 0x4e23, 0x0, @private0}, 0x1c, 0x0, 0x0, &(0x7f00000003c0)=[@pktinfo={{0x24, 0x29, 0x32, {@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, r2}}}], 0x28}}], 0x1, 0x0) 03:40:08 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x68, 0x30, 0x1, 0x0, 0x0, {}, [{0x54, 0x1, [@m_connmark={0x50, 0x1, 0x0, 0x0, {{0xd}, {0x20, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x2}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x68}}, 0x0) 03:40:08 executing program 4: syz_open_dev$ndb(&(0x7f0000000080), 0x0, 0x84c03) 03:40:08 executing program 2: pselect6(0x40, &(0x7f00000001c0), &(0x7f0000000200), &(0x7f0000000240), &(0x7f0000000280)={0x77359400}, &(0x7f0000000300)={&(0x7f00000002c0), 0xffffffffffffffea}) 03:40:08 executing program 3: r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) r1 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000680)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x40, r0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @disassoc={@with_ht={{{}, {}, @device_a, @device_b}}, 0x0, @void}}]}, 0x40}}, 0x0) 03:40:08 executing program 4: r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000100), 0x1, 0x0) write$FUSE_IOCTL(r0, 0x0, 0x0) 03:40:08 executing program 0: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x4, &(0x7f00000000c0)=[{}, {0x1}, {0x20, 0x0, 0x0, 0x1ff}, {0x6}]}) 03:40:08 executing program 5: socketpair(0x10, 0x3, 0x5, &(0x7f0000000600)) 03:40:08 executing program 2: r0 = socket$inet(0x2, 0x2, 0x2000000088) bind(r0, &(0x7f0000000080)=@in={0x2, 0x4e20}, 0x7c) setsockopt$inet_udp_int(r0, 0x11, 0xa, &(0x7f0000000000)=0x1, 0x4) sendto$inet(r0, &(0x7f0000000200)='X', 0x1, 0x0, &(0x7f0000000280)={0x2, 0x8004e20}, 0x10) recvmmsg(r0, &(0x7f00000010c0)=[{{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000180)=""/76, 0x4c}], 0x1}}], 0x7, 0x0, 0x0) 03:40:09 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x0, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:09 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) r2 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000680)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x40, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @disassoc={@with_ht={{{}, {}, @device_a, @device_b}}, 0x0, @void}}]}, 0x40}}, 0x0) 03:40:09 executing program 0: bpf$MAP_CREATE(0x0, &(0x7f0000000800)=@base={0xe, 0x4, 0x4, 0x4, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x4}, 0x48) 03:40:09 executing program 4: r0 = socket$inet(0x2, 0x2, 0x0) bind(r0, &(0x7f0000000080)=@in={0x2, 0x4e20}, 0x7c) sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f0000000280)={0x2, 0x8004e20}, 0x10) recvmmsg(r0, &(0x7f00000008c0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000002c0)=""/189, 0xbd}], 0x1}}], 0x2, 0x2, 0x0) 03:40:09 executing program 5: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$IOC_PR_CLEAR(r0, 0x401070cd, 0x0) 03:40:10 executing program 2: r0 = socket$nl_sock_diag(0x10, 0x3, 0x4) sendmsg$SOCK_DIAG_BY_FAMILY(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14, 0x14, 0x1, 0x0, 0x0, {0x26}}, 0x14}}, 0x0) 03:40:10 executing program 5: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001240)={&(0x7f0000000200)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x10, 0x10, 0x2, [@int={0x1}]}}, &(0x7f0000000240)=""/4096, 0x2a, 0x1000, 0xffffffff}, 0x20) 03:40:10 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) r2 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000680)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x40, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @disassoc={@with_ht={{{}, {}, @device_a, @device_b}}, 0x0, @void}}]}, 0x40}}, 0x0) 03:40:10 executing program 0: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x3, &(0x7f00000000c0)=[{}, {0x20}, {0x6}]}) 03:40:10 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) r2 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000680)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x40, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @disassoc={@with_ht={{{}, {}, @device_a, @device_b}}, 0x0, @void}}]}, 0x40}}, 0x0) [ 2587.554488][ T24] audit: type=1326 audit(1655350810.603:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=12798 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f51549 code=0x0 03:40:10 executing program 5: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$PIO_UNIMAP(r0, 0x5605, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{}]}) 03:40:10 executing program 0: r0 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) io_setup(0x6, &(0x7f0000000000)=0x0) io_submit(r1, 0x1, &(0x7f00000001c0)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x3}]) 03:40:11 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:11 executing program 4: openat$ttyprintk(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f0000000400)={0x0, 0x0, 0xc, 0x6, 0xfb, &(0x7f0000000000)="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"}) 03:40:11 executing program 2: sched_setattr(0x0, &(0x7f00000000c0)={0x38}, 0x0) 03:40:11 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000680)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x40, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @disassoc={@with_ht={{{}, {}, @device_a, @device_b}}, 0x0, @void}}]}, 0x40}}, 0x0) 03:40:11 executing program 0: openat$uhid(0xffffffffffffff9c, &(0x7f0000000900), 0x2, 0x0) 03:40:11 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000680)={0x14, r1, 0x1}, 0x14}}, 0x0) 03:40:11 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000680)={0x1c, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_PRIVFLAGS_FLAGS={0x8, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x4}]}]}, 0x1c}}, 0x0) 03:40:11 executing program 2: syz_open_dev$vbi(&(0x7f0000000000), 0x2, 0x2) 03:40:11 executing program 0: r0 = syz_open_dev$vbi(&(0x7f00000000c0), 0x2, 0x2) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000100)={0x0, 0x0, 0x0, {0xb}}) 03:40:11 executing program 5: r0 = syz_open_dev$vbi(&(0x7f00000000c0), 0x2, 0x2) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000100)={0x0, 0x0, 0x0, {0xc, @vbi}}) 03:40:11 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000680)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x40, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @disassoc={@with_ht={{{}, {}, @device_a, @device_b}}, 0x0, @void}}]}, 0x40}}, 0x0) 03:40:12 executing program 4: r0 = socket$inet6_dccp(0xa, 0x6, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000001cc0)) 03:40:13 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:13 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000680)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x40, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @disassoc={@with_ht={{{}, {}, @device_a, @device_b}}, 0x0, @void}}]}, 0x40}}, 0x0) 03:40:13 executing program 2: r0 = syz_open_dev$vbi(&(0x7f00000000c0), 0x2, 0x2) ioctl$VIDIOC_G_STD(r0, 0x400448c9, 0x0) 03:40:13 executing program 0: io_setup(0x80000000, &(0x7f0000000180)) 03:40:13 executing program 5: syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) io_setup(0xff, &(0x7f0000000040)=0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_SET_MPATH(r1, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000580)={0x28, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MAC={0xa}]}, 0x28}}, 0x0) r2 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000200), 0x242, 0x0) io_destroy(r0) mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0) ioctl$DRM_IOCTL_AGP_ALLOC(r2, 0xc0206434, 0x0) 03:40:13 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000880)={&(0x7f0000000840)={0x14}, 0x14}}, 0x0) 03:40:13 executing program 4: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDFONTOP_GET(r0, 0x4b72, &(0x7f00000004c0)={0x1, 0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)}) 03:40:13 executing program 2: openat$dsp(0xffffffffffffff9c, &(0x7f00000007c0), 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000900), 0x2, 0x0) write$UHID_SET_REPORT_REPLY(r0, &(0x7f0000000940), 0xc) 03:40:13 executing program 0: mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup/syz0\x00', 0x1ff) 03:40:13 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) r2 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, 0x0) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x40, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @disassoc={@with_ht={{{}, {}, @device_a, @device_b}}, 0x0, @void}}]}, 0x40}}, 0x0) 03:40:13 executing program 5: syz_open_dev$vbi(&(0x7f0000000000), 0x3, 0x2) 03:40:13 executing program 2: clock_gettime(0x0, &(0x7f0000000080)) io_setup(0x7, &(0x7f0000000100)=0x0) io_pgetevents(r0, 0xa, 0x0, 0x0, &(0x7f00000000c0)={0x0, 0x3938700}, 0x0) 03:40:14 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:14 executing program 0: r0 = syz_open_dev$vbi(&(0x7f00000000c0), 0x2, 0x2) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000100)={0x0, 0x0, 0x0, {0xa, @pix_mp}}) 03:40:14 executing program 4: r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2) ioctl$VIDIOC_G_TUNER(r0, 0xc054561d, &(0x7f0000000100)={0x0, "4308e201037c58d05a9e940458391541f97ccea35e8f182270ac2b23c4bed439"}) 03:40:14 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) r2 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, 0x0) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x40, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @disassoc={@with_ht={{{}, {}, @device_a, @device_b}}, 0x0, @void}}]}, 0x40}}, 0x0) 03:40:14 executing program 5: socketpair(0x1, 0x0, 0x0, &(0x7f0000000140)) 03:40:14 executing program 2: r0 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000000), 0x2) ioctl$UDMABUF_CREATE_LIST(r0, 0x40087543, &(0x7f0000000080)={0x0, 0x1, [{0xffffffffffffffff, 0x0, 0x0, 0xfffffffff0000000}]}) 03:40:14 executing program 0: io_setup(0x7, &(0x7f0000000100)=0x0) io_submit(r0, 0x3, &(0x7f00000004c0)=[0x0, 0x0, 0x0]) 03:40:14 executing program 5: r0 = syz_open_dev$vbi(&(0x7f00000000c0), 0x2, 0x2) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000100)={0x0, 0x99e, 0x0, {0x6, @sdr}}) 03:40:14 executing program 4: r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2) ioctl$VIDIOC_G_TUNER(r0, 0xc054561d, &(0x7f0000000100)={0x0, "4308e201037c58d05a9e940458391541f97ccea35e8f182270ac2b23c4bed439"}) 03:40:14 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) r2 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, 0x0) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x40, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @disassoc={@with_ht={{{}, {}, @device_a, @device_b}}, 0x0, @void}}]}, 0x40}}, 0x0) 03:40:15 executing program 5: r0 = syz_open_dev$vbi(&(0x7f00000000c0), 0x2, 0x2) ioctl$VIDIOC_S_AUDIO(r0, 0x40345622, &(0x7f0000000140)={0x0, "2edd9272f218b2f86dc9b9b176c775d84ec425ae2d7b54fdd0ea365541a370b1"}) 03:40:15 executing program 4: r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2) ioctl$VIDIOC_G_TUNER(r0, 0xc054561d, &(0x7f0000000100)={0x0, "4308e201037c58d05a9e940458391541f97ccea35e8f182270ac2b23c4bed439"}) 03:40:15 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, 0x0, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:15 executing program 2: socket(0x29, 0x802, 0x0) 03:40:15 executing program 0: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f0000000400)={0x0, 0x0, 0xc, 0x0, 0x0, &(0x7f0000000000)="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"}) 03:40:15 executing program 3: socket$nl_generic(0x10, 0x3, 0x10) r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) r1 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000680)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x40, r0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @disassoc={@with_ht={{{}, {}, @device_a, @device_b}}, 0x0, @void}}]}, 0x40}}, 0x0) 03:40:15 executing program 4: r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2) ioctl$VIDIOC_G_TUNER(r0, 0xc054561d, &(0x7f0000000100)={0x0, "4308e201037c58d05a9e940458391541f97ccea35e8f182270ac2b23c4bed439"}) 03:40:15 executing program 5: openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000200), 0x242, 0x0) 03:40:15 executing program 3: socket$nl_generic(0x10, 0x3, 0x10) r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) r1 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000680)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x40, r0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @disassoc={@with_ht={{{}, {}, @device_a, @device_b}}, 0x0, @void}}]}, 0x40}}, 0x0) 03:40:15 executing program 5: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$RDMA_USER_CM_CMD_LEAVE_MCAST(r0, &(0x7f0000000100)={0x11, 0x10, 0xfa00, {0x0}}, 0x18) 03:40:15 executing program 0: ioctl$IOC_PR_RESERVE(0xffffffffffffffff, 0x401070c9, 0x0) ioctl$SNDRV_PCM_IOCTL_UNLINK(0xffffffffffffffff, 0x4161, 0x0) msgget(0x3, 0x200) msgctl$MSG_STAT(0x0, 0xb, &(0x7f0000000300)=""/43) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x1) socket(0x0, 0x0, 0x4) write$FUSE_INTERRUPT(0xffffffffffffffff, &(0x7f0000000240)={0x10}, 0x10) openat$full(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$IOC_PR_RESERVE(0xffffffffffffffff, 0x401070c9, 0x0) 03:40:15 executing program 4: ioctl$VIDIOC_G_TUNER(0xffffffffffffffff, 0xc054561d, &(0x7f0000000100)={0x0, "4308e201037c58d05a9e940458391541f97ccea35e8f182270ac2b23c4bed439"}) 03:40:15 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) sendto(r0, 0x0, 0x0, 0x5, 0x0, 0x0) 03:40:16 executing program 3: socket$nl_generic(0x10, 0x3, 0x10) r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) r1 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000680)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x40, r0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @disassoc={@with_ht={{{}, {}, @device_a, @device_b}}, 0x0, @void}}]}, 0x40}}, 0x0) 03:40:16 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, 0x0, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:16 executing program 2: r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2) ioctl$VIDIOC_G_EXT_CTRLS(r0, 0xc0205647, &(0x7f0000000100)={0xf000000, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}) 03:40:16 executing program 5: socketpair(0x25, 0x1, 0x0, &(0x7f0000000180)) 03:40:16 executing program 4: ioctl$VIDIOC_G_TUNER(0xffffffffffffffff, 0xc054561d, &(0x7f0000000100)={0x0, "4308e201037c58d05a9e940458391541f97ccea35e8f182270ac2b23c4bed439"}) 03:40:16 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) r1 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000680)={'wlan0\x00'}) sendmsg$NL80211_CMD_FRAME(r0, 0x0, 0x0) 03:40:16 executing program 0: r0 = syz_open_dev$vbi(&(0x7f00000000c0), 0x2, 0x2) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000100)={0x0, 0x0, 0x0, {0x3, @sdr}}) 03:40:17 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) r1 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000680)={'wlan0\x00'}) sendmsg$NL80211_CMD_FRAME(r0, 0x0, 0x0) 03:40:17 executing program 4: ioctl$VIDIOC_G_TUNER(0xffffffffffffffff, 0xc054561d, &(0x7f0000000100)={0x0, "4308e201037c58d05a9e940458391541f97ccea35e8f182270ac2b23c4bed439"}) 03:40:17 executing program 5: r0 = landlock_create_ruleset(&(0x7f00000000c0)={0x480}, 0x8, 0x0) landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r0, 0x1, &(0x7f0000000100), 0x0) 03:40:17 executing program 0: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000002280)={{0xd00}, [@NFT_MSG_DELSET={0xcdc, 0xb, 0xa, 0x0, 0x0, 0x0, {}, [@NFTA_SET_OBJ_TYPE={0x8}, @NFTA_SET_KEY_LEN={0x8}, @NFTA_SET_USERDATA={0xcb5, 0xd, 0x1, 0x0, "d4ca06ab073cc68a94c7a4535e1e1207e5a2f5efc59d8d7d5e59f114e4d8c4eec34955ecbded7962f275c7a91c03f48f945cfe5a032c3eb67613525c2aa7104c7461827d6e6abae26fc8b5c52f044f54a4040a8277b621881f3ec33bfc8cf088fb44f36466d8f02653854e4b025e8f7401510b168f36e3ba8056a7456c12b8d532b366b7282ce4685d2f08a3ce086d192f492df41d33b1dc48e0abb8fa209ce0e01ace46a4a3ad3a7a2e39d91c2354d6e42ae350dcf97877c0bbdec88c82f03b893a3653d8d578aa4b4e2acd69002f7dcb2fcc7c3f88cadb92ed75c0d43f91fa16dbbb7c1a2854a1da3cd6c6bf515b8203976071b0b60b993f18a7b2d7e4e7766bb7ef0de75cf685afd6e30bcd5b66af430e8e3e85417cc6dc9ffc733e7ee917683d7f5d39fd05f54874848dc12525ef0dae3c51868d3c4ab63100a9aa28d867a532af348ef6976f51590280ff16fe759b5cb23e96a29cb2492ddb037a994d18bc0ac32f6c12413bb5b974894b422dcb5119a124cb526d2e623e7103b904873e4ef33f48735ab0efa9cc168d75ab816fa9765903375e2ff3f5be18641c4e10e019201e9cf7b630438cb0ff41bd85a45942d64643d574567e17ceae34004e58c24d746b15b6c46fac9c5b05ecd3cbce8da305c522b8b6591c896a34f4271858a8026d065563bdb3abb0457821471cf6a872f953cf4f0b2a3664df2739ec7301b177d24f8de4328b1e19c1df012de603fac80684087fc8548ddd04b2ef4ad3f56443bb9599b268d05a403fc40ecaa2c3018b2bcdbd85395f7b48434d0240134c316f19546cc3a87574490fc96378aff3b883d62264ff56e464238aaef581fa63d23fa208b97a5d2c3079ee803a228ca033bab2fa88cdfa909f94a6cd59611031f014a7065f1144b45fa42ae78d06ad931b9b4d4e4374b2102703fb28403486f8f5d02bf4c76ef2419ebcaa8347696ba3b5e524a29552193e4f8150ecfbcdad0ea09e353aad1bc69aa903651ab09290c35a13588afb4c997ef00243a172ff8ca1004009bced4e9d1fb64b920d02fd953188f2306123891499fb8b5bfe7242e3fdd7c34040f872fd46a4659eb9445d4049e6dc5b222b875daa4bdaf8896c831d228d35fe5a5cddf773a0db08d21cef7951c1941037d4217c446247b500984d5b9cd9dd46a8e7e5dadb39b81f0a0d549b9650c9d08b0422ce42b58cf1c1a04760255e7073e309c0f6db933a06967b51e8aaa7e0cde08dfbf72309d07661bfb90ba308713a0f3386d2efd81319348e7f86ff3e9e51f88cec4d8f6a91a4d491b5df15384e4a81dc3a0c216280067c285732fb9352836a8b6a0aa48bcc97aefde0b7835fbfa8530fa79454f309f6d9383efb785fb93f5905ff88f4fde87469d3b419cf114d53a0fe56fc8927bc18d1171e80fb4a779a0df44c7e90157463f729510d754ba810cc59d9b95826ac8b9dbbf8e63d3fae0984166cc87b5d7313d2ba92b603965a4871d9eff60946a7e0e45d3852abc592fa2112133713fc0a10fdfa344822532e9b659a92d428f4a8bfd747b544030fd23116f7f30f104019e059f680564d0e22185d6f37aded5b766cf2ee874b5aed64f57b62d21583b998edf5e04f464ded62756793f6cb51644894842b627c0c2f333ef7946ce54d381b611b74a2ccb86e58f2bdbc3562c2d9795a084c41a898990f71af81331e7144ec2ffbfd23bb053b365b3ce5e8973a1e794dd1d08a81ea3e12b93121093833e99ad6503b486fec8d06bf9e6b4ab3e89828cf026f8047356a5f9b9715b067238c23e458059d1676cb766c617be68d1c4dc0f8ab6095f4c25b6f4aa51f721809da7799876a690786db74e8b79fdc07727fc38dc4654a551017efe444bd726ee70c8a4952e4ead953ebcf4fe86faf33ee5f8e1713fa8f66d0158490beeeaf2bd0b450a632192bb21cc750132988f539b476ded224b737c93c2a694544e5cde2f9c753ffd9760ca9d890ecbf52595945b55fc26b09e45aa008e1fe994a880f3a2e981a482cd286ff55ea76db25dd6f481f0557266e7010381c823fe3f7df8a77174fcb3afb4fac6607080cf27a70770fb2ab4a82aa4ce6cd62e50916e838dc0ba00a95da0d8adb2e895b7821edb7f3f8114702cf65cfc148ae8adfff4c8ab9da1e7a3dfc61b74e968084b5e178d122d1caa492a00db03899aac84ee1f7cc858b18e9e46ef58c1819538203c35a4db4c70c12d051d1c566e267401aceeeb628d1055af42c60797e1a675e6b90e29abafb96a3245c607164e524ca85dc4335ee404862c38641640805b1792551e998a808527d3fed622b0068f1cad0d42996517196278ab18cb76d3a609672db1e34dcd729a1a8385d11c9b76e6b8a0ed166906d42c06fc0653e2d7cf4377c6334dc5d382fd758f190e2168a0e281b8cd319ed808839e5b11ceec65e463f9a9c532f8d77d38dbbbe29839b07546cfe87544d85fbc84a993f63fa9333bbc45b70a9de042d70e89f1a066f06e85dbc9a70b65a9d41302da81e43079c7ab7077d9dbb82ec7bb397d54548a260e62f8ff56462abef9316b7d38e9d306b3dd4e0238bc6df63c0aa9236b63e7f0d0357663c34e46386e7b0a6e8208c1a3552706e00b839396911692d2af69be1c0b484c7fa02a69202de88b9887d62fe87dab19a36e75829c30a8d085a6fe6d658cb6021c3cb715cb1b1e2c916c758cb33874466b28774059ec4f05ab44e16d70c7e51507ab69891a2c3e3b3eafb1c47eb1ca33eba737d81997eccd1d882baf5a4fd9178c73b52e4082eec7f7e8b0bbc9532515e3b4415c852a1f6660c096854b80288b085df822011873f278d9435362c7497412b50e0ae923b5a8bb6a324bd9b9b15b95ea5f9b91933c68a31ccec8d6e5cd2d498c04e25a2bc468853168e5440b8fcf6ea757d46f903ca7ed2d195f50968ef3b826fd5dabba23f603a7eda84fdcd23def70cc4a2eb03cb3f6c43401aad975fd08729ecd85c972fb3754ef04e62e4dd4f6d4d43f313888ba7298caeea7741383aa872d4c864cc821b59952e9a9732a3007c2db3ddb5dbf4717750fcfff0ac4e64e51e192523bdc3b21be78cbeae9ac75e35a13e9cd6a31ee48615c795f174dcbde05d51538c396708104b6c802d0fe7291afda86bc1e1e1905719e7c3fa5576b7cab1d4faec5aab2c6ce1b70b2587fd223264db6739e9c9801798c1d68e1998fa8ba3135ff73a28e75feaa6feee9bdf224ffdb6711bd4fbc94b1be1513a8fd2921d928157f2480b1f7bc1ae02177c84ed616bd93ba62af62c396f0554b386f897933ea40abdcc91863dfc5431fc5ed5edc3d6bc5ad583ecd9a09d796eb7b9927e4ea0ebc9d05bec6a5973b347030b53f9413e8389198dc4d7d2b9558cc819eb5bec29cf306ec61f61ed722e0fd1a7d12d9e0a1ec45c7a8356a9f7c599d86c13c68c420d179d5f6d2b28b6cf090248128a99ca829f0dd463acd3a701c2101e09c8176fdaa8ae40d049db22f68849763bd6bf87f0533115f2ef867249f45bdeaa1d1172276b764eea3cff3ef03f8e5b773a833b0e85accf24c1f3c4adea9269edafaaa669792b29437dcf2e70ce54e06913b12434b623dbee12e27c31911a92d99995cd7e4ff0e8a5d44c0610854fcc089acd70778985dec889ab877d433569dabf3277332bdd9c910236a1c4be573b377d76155eb692fdf31e1a723281a593a0013da4854f962f0fa37cc55b1409cc73f024485a04fd97e51d36450021a3d5e0ebb990642646601618ee600e9545c40fd6d0696fc9343945f13283673878c0e2539d74e4d9669cdbbdd5847bc367fb4a0ad351e5f81a699eda6e69d07da061199ab485a2de373c88d9fac4f564a6ed6e77155b62ed3039e8fad58a0d6eca82b0e4499350541fb4304c84b40ce126fedf264bc550dc476bc0618cfb3de1ecdcbf5c599c6031426f813fa880835b855ac82350e843401d4a0eca9397c36142319d4a700277c1ef8ae3fe5e4ffd5fa102bbf4973e394031d178fdee33c90bdbc684d24ca26b64e4300a346b6292a3ca328c0d230dde6c15a61da99af77852d7ef36c2208a7556f0bae55308c070211c84b6effef416a02492f95bbe5e1696a3db5e9183a59f4c4d08b761dee448189e28c3415692cb0a503c8d4f87f4b5c11c3d5ca31475742d96c5bf82ee87b464974daea62a5aceb95d53757b5b4ef2337cf97a98abbe1ab65406d3f74d22b0d389f45a5ad9370ebc6cfc145a925050bd7e91485aa0e58cd1b44f9ad56c0499de159baf4fee6757accfa30ada444a4de54d3ac56c6959dcee3bb596e8185c053f29ff675826db3c6e06a61c55e7aa4293798e22e0922b90f181ed93eaec8a1f0dd77e085dd16055a8d6e27a6970a743583e4b20cd67beaaaf8f1b0d773bdf7358665201070e5a28173309f1fef9184d240cb8e236b48d870a965824edd70bc5cc334102e7e755419831decdc8d03a528bb3f61e4bbd7d440689ca664562cfe36662ac762c01fa2f242b159262e85c287e8179e7f6b98abea9a7e23ec4f14cb20dfd53bad2b8722b062b89e4daf4200859f8374eeb4bafa964e96df6f240b662fbfff0e99ee1"}]}], {0x14}}, 0xd04}}, 0x0) 03:40:17 executing program 2: r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001b40)={0x17, 0x3, &(0x7f0000001300)=@framed, &(0x7f0000000080)='GPL\x00', 0x5, 0xe8, &(0x7f00000016c0)=""/232, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000040)={&(0x7f0000000000)='./file0\x00', r0}, 0x10) 03:40:17 executing program 5: syz_emit_ethernet(0x4f, &(0x7f0000000040)=ANY=[], 0x0) munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) mprotect(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1) [ 2594.436875][T12938] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.0'. 03:40:18 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, 0x0, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:18 executing program 2: syz_clone(0x44000000, 0x0, 0x0, 0x0, 0x0, 0x0) syz_clone(0x18240000, 0x0, 0xfffffcf7, 0x0, 0x0, 0x0) 03:40:18 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) r1 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000680)={'wlan0\x00'}) sendmsg$NL80211_CMD_FRAME(r0, 0x0, 0x0) 03:40:18 executing program 4: r0 = syz_open_dev$vbi(0x0, 0x0, 0x2) ioctl$VIDIOC_G_TUNER(r0, 0xc054561d, &(0x7f0000000100)={0x0, "4308e201037c58d05a9e940458391541f97ccea35e8f182270ac2b23c4bed439"}) 03:40:18 executing program 0: sendmsg$BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20048000}, 0x80000) syz_usbip_server_init(0x2) syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), 0xffffffffffffffff) r0 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000300), 0x2004c0, 0x0) sendmsg$NL80211_CMD_SET_WIPHY_NETNS(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000340)={0x68, 0x0, 0x1, 0x70bd26, 0x25dfdbff, {{}, {@val={0x8, 0x1, 0xb6}, @void, @val={0xc, 0x99, {0x41}}}}, [@NL80211_ATTR_WDEV={0xc, 0x99, {0x3ff}}, @NL80211_ATTR_NETNS_FD={0x8, 0xdb, r0}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x2b}, @NL80211_ATTR_WDEV={0xc, 0x99, {0xfffffff8, 0x6a}}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x0, 0x5f}}, @NL80211_ATTR_WDEV={0xc}]}, 0x68}}, 0x0) 03:40:18 executing program 5: openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000d80), 0x22002, 0x0) 03:40:18 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$FBIOGETCMAP(r0, 0x4604, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) [ 2595.261336][T12953] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3) [ 2595.268057][T12953] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 2595.276790][T12953] vhci_hcd vhci_hcd.0: Device attached 03:40:18 executing program 4: r0 = syz_open_dev$vbi(0x0, 0x0, 0x2) ioctl$VIDIOC_G_TUNER(r0, 0xc054561d, &(0x7f0000000100)={0x0, "4308e201037c58d05a9e940458391541f97ccea35e8f182270ac2b23c4bed439"}) 03:40:18 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) r1 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000680)={'wlan0\x00'}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x0) [ 2595.698498][T12956] vhci_hcd: connection closed [ 2595.699542][ T8] vhci_hcd: stop threads [ 2595.710486][ T8] vhci_hcd: release socket [ 2595.715185][ T8] vhci_hcd: disconnect device 03:40:18 executing program 4: r0 = syz_open_dev$vbi(0x0, 0x0, 0x2) ioctl$VIDIOC_G_TUNER(r0, 0xc054561d, &(0x7f0000000100)={0x0, "4308e201037c58d05a9e940458391541f97ccea35e8f182270ac2b23c4bed439"}) 03:40:18 executing program 5: socket(0x2, 0x6, 0x8) 03:40:18 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) r1 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000680)={'wlan0\x00'}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x0) 03:40:19 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x0, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:19 executing program 2: openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000100), 0x101000, 0x0) 03:40:19 executing program 4: syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2) ioctl$VIDIOC_G_TUNER(0xffffffffffffffff, 0xc054561d, &(0x7f0000000100)={0x0, "4308e201037c58d05a9e940458391541f97ccea35e8f182270ac2b23c4bed439"}) 03:40:19 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) r1 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000680)={'wlan0\x00'}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x0) 03:40:19 executing program 0: r0 = openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) write$6lowpan_control(r0, &(0x7f00000000c0)='disconnect aa:aa:aa:aa:aa:10 2', 0x1e) 03:40:19 executing program 5: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$FS_IOC_SETFSLABEL(r0, 0x41009432, 0x0) 03:40:20 executing program 4: syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2) ioctl$VIDIOC_G_TUNER(0xffffffffffffffff, 0xc054561d, &(0x7f0000000100)={0x0, "4308e201037c58d05a9e940458391541f97ccea35e8f182270ac2b23c4bed439"}) 03:40:20 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) r1 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000680)={'wlan0\x00'}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={0x0}}, 0x0) 03:40:20 executing program 2: bpf$ENABLE_STATS(0x20, &(0x7f00000008c0), 0x4) 03:40:20 executing program 5: r0 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TIOCCONS(r0, 0x541d) 03:40:20 executing program 0: socket(0x11, 0x3, 0x6) 03:40:20 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x0, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:20 executing program 4: syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2) ioctl$VIDIOC_G_TUNER(0xffffffffffffffff, 0xc054561d, &(0x7f0000000100)={0x0, "4308e201037c58d05a9e940458391541f97ccea35e8f182270ac2b23c4bed439"}) 03:40:20 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) r1 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000680)={'wlan0\x00'}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={0x0}}, 0x0) 03:40:20 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) write$RDMA_USER_CM_CMD_DISCONNECT(r0, &(0x7f00000001c0)={0xa, 0x4}, 0xc) 03:40:20 executing program 5: syz_clone(0x820d200, 0x0, 0x0, 0x0, 0x0, 0x0) 03:40:20 executing program 2: r0 = openat$mixer(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0) ioctl$SOUND_MIXER_INFO(r0, 0x805c4d65, &(0x7f0000000040)) 03:40:20 executing program 4: r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2) ioctl$VIDIOC_G_TUNER(r0, 0xc054561d, 0x0) 03:40:20 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x0, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:21 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) r1 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000680)={'wlan0\x00'}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={0x0}}, 0x0) 03:40:21 executing program 5: r0 = socket$nl_audit(0x10, 0x3, 0x9) sendmsg$AUDIT_SIGNAL_INFO(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x10}, 0x10}}, 0x0) 03:40:21 executing program 2: unshare(0x6c060000) unshare(0x0) syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff) r0 = socket(0x10, 0x0, 0x0) r1 = socket(0x0, 0x800000003, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) writev(r2, &(0x7f0000000000)=[{&(0x7f0000000180)="290000002000190f48003f", 0xb}], 0x1) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000005400)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000005c0)=ANY=[@ANYBLOB="4001000024000b0f00e40006000000000000"], 0x140}}, 0x0) r3 = socket$inet6(0xa, 0x2, 0x0) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r1, 0x89f0, &(0x7f0000000380)={'syztnl0\x00', 0x0}) r4 = socket$nl_route(0x10, 0x3, 0x0) bind(0xffffffffffffffff, &(0x7f00000003c0)=@pppol2tpv3={0x18, 0x1, {0x0, r0, {0x2, 0x4e24, @broadcast}, 0x0, 0x0, 0x3, 0x1}}, 0x80) bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x14e24}, 0x1c) connect$inet6(r3, &(0x7f0000000080)={0xa, 0x4e24, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c) sendmsg$nl_route(r4, &(0x7f0000000300)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)=@ipv4_newroute={0x34, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x20, 0x0, 0x0, 0xff, 0x0, 0x0, 0x6, 0x2100}, [@RTA_FLOW={0x8, 0xb, 0x4}, @RTA_UID={0x8, 0x19, 0xee00}, @RTA_PRIORITY={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4}, 0x40) sendmmsg(r3, &(0x7f00000092c0), 0x4ff, 0x0) 03:40:21 executing program 0: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x28, 0x1, 0x4, 0x801, 0x0, 0x0, {}, [@NFULA_CFG_CMD={0x5, 0x1, 0x1}, @NFULA_CFG_MODE={0xa, 0x2, {0x0, 0x2}}]}, 0x28}}, 0x0) 03:40:21 executing program 4: r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2) ioctl$VIDIOC_G_TUNER(r0, 0xc054561d, 0x0) 03:40:21 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, 0x0, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:21 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) r1 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000680)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x40, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @disassoc={@with_ht={{{}, {}, @device_a, @device_b}}, 0x0, @void}}]}, 0x40}}, 0x0) 03:40:21 executing program 5: bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0xf, 0x4, 0x4, 0x8}, 0x48) 03:40:21 executing program 0: r0 = socket$packet(0x11, 0x3, 0x300) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CAP_X86_DISABLE_EXITS(r3, 0x4068aea3, &(0x7f0000000100)={0x148, 0x0, 0x4}) dup3(r0, r3, 0x0) 03:40:21 executing program 4: r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2) ioctl$VIDIOC_G_TUNER(r0, 0xc054561d, 0x0) 03:40:21 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, 0x0, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:21 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) r1 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000680)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x40, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @disassoc={@with_ht={{{}, {}, @device_a, @device_b}}, 0x0, @void}}]}, 0x40}}, 0x0) 03:40:21 executing program 5: unshare(0x6c060000) unshare(0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff) r0 = socket(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) writev(r2, &(0x7f0000000000)=[{&(0x7f0000000180)="290000002000190f48003fffffffda060200000600e80300dd0000040d000c00ea0209f00005004c00", 0x29}], 0x1) bind(r1, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000005400)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) sendmsg$nl_route_sched(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000005c0)=ANY=[@ANYBLOB="4001000024000b0f00e4000600000000000000eb", @ANYRES32=r3, @ANYBLOB="00000000ffffffff00009dfa090001006e6574656d00000010010200ca000000b0"], 0x140}}, 0x0) r4 = socket$inet6(0xa, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=@newqdisc={0x54, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x4}}, @TCA_STAB={0x24, 0x2, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x54}}, 0x0) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r1, 0x89f0, &(0x7f0000000380)={'syztnl0\x00', &(0x7f0000000600)=ANY=[@ANYBLOB='ip_vti0\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=r3, @ANYBLOB="000778000000000300000e1f490500a400680000042f9078ffffffffffffffff880f208137f4c69893e95966b9c5f5070fa778d341cd68d6212d87abe3ff89175aac1e00010a010101ac1414bbe00000027f00000100862500000003010428800603d9070756ff6fa80d011192e338b70276bfd1932b956e388a71441c72317f0000010000045fac1414aa000000ce"]}) socket$nl_route(0x10, 0x3, 0x0) bind$inet6(r4, &(0x7f00000000c0)={0xa, 0x14e24}, 0x1c) connect$inet6(r4, &(0x7f0000000080)={0xa, 0x4e24, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c) sendmmsg(r4, &(0x7f00000092c0), 0x4ff, 0x0) 03:40:22 executing program 4: bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0xe, 0x4, 0x4, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0xffff0700}, 0x48) 03:40:22 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, 0x0, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:22 executing program 4: bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0xe, 0x4, 0x4, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0xffff0700}, 0x48) 03:40:22 executing program 2: unshare(0x6c060000) unshare(0x0) syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff) r0 = socket(0x10, 0x0, 0x0) r1 = socket(0x0, 0x800000003, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) writev(r2, &(0x7f0000000000)=[{&(0x7f0000000180)="290000002000190f48003f", 0xb}], 0x1) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000005400)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000005c0)=ANY=[@ANYBLOB="4001000024000b0f00e40006000000000000"], 0x140}}, 0x0) r3 = socket$inet6(0xa, 0x2, 0x0) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r1, 0x89f0, &(0x7f0000000380)={'syztnl0\x00', 0x0}) r4 = socket$nl_route(0x10, 0x3, 0x0) bind(0xffffffffffffffff, &(0x7f00000003c0)=@pppol2tpv3={0x18, 0x1, {0x0, r0, {0x2, 0x4e24, @broadcast}, 0x0, 0x0, 0x3, 0x1}}, 0x80) bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x14e24}, 0x1c) connect$inet6(r3, &(0x7f0000000080)={0xa, 0x4e24, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c) sendmsg$nl_route(r4, &(0x7f0000000300)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)=@ipv4_newroute={0x34, 0x18, 0x0, 0x0, 0x25dfdbff, {0x2, 0x20, 0x0, 0x0, 0xff, 0x0, 0x0, 0x6, 0x2100}, [@RTA_FLOW={0x8, 0xb, 0x4}, @RTA_UID={0x8, 0x19, 0xee00}, @RTA_PRIORITY={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4}, 0x40) sendmmsg(r3, &(0x7f00000092c0), 0x4ff, 0x0) 03:40:22 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) r1 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000680)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x40, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @disassoc={@with_ht={{{}, {}, @device_a, @device_b}}, 0x0, @void}}]}, 0x40}}, 0x0) 03:40:22 executing program 0: bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@volatile={0x0, 0x0, 0x0, 0x9, 0x2}, @union]}}, &(0x7f0000001280)=""/4096, 0x32, 0x1000, 0x1}, 0x20) 03:40:22 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:22 executing program 4: bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0xe, 0x4, 0x4, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0xffff0700}, 0x48) 03:40:22 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) r2 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000680)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x40, r1, 0x0, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @disassoc={@with_ht={{{}, {}, @device_a, @device_b}}, 0x0, @void}}]}, 0x40}}, 0x0) 03:40:23 executing program 0: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x9, 0x3f, 0x9, 0x3b8, 0x0, 0x1}, 0x48) bpf$BPF_GET_MAP_INFO(0x4, &(0x7f0000000440)={r0, 0xfffffffffffffebe, &(0x7f0000000100)}, 0x10) 03:40:23 executing program 4: bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0xe, 0x4, 0x4, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0xffff0700}, 0x48) 03:40:26 executing program 5: r0 = socket$packet(0x11, 0x3, 0x300) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) dup3(r0, r3, 0x0) 03:40:26 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) r2 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000680)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x40, r1, 0x0, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @disassoc={@with_ht={{{}, {}, @device_a, @device_b}}, 0x0, @void}}]}, 0x40}}, 0x0) 03:40:26 executing program 0: r0 = socket$packet(0x11, 0x3, 0x300) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x0, 0x3, 0x0, 0x1000, &(0x7f0000ffd000/0x1000)=nil}) dup3(r0, r2, 0x0) 03:40:26 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_GET_MSR_INDEX_LIST(r0, 0xc008ae09, &(0x7f0000000040)=ANY=[@ANYRES64=r0]) 03:40:26 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:26 executing program 2: r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000000)='GPL\x00', 0x5, 0xa0, &(0x7f0000000080)=""/160, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000004c0)={r0, 0xe0, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8, 0x0, 0x0}}, 0x10) r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f0000000040)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x5, 0x95, &(0x7f00000001c0)=""/149, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000004c0)={r1, 0xe0, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8, 0x0, 0x0}}, 0x10) 03:40:26 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) r2 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000680)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x40, r1, 0x0, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @disassoc={@with_ht={{{}, {}, @device_a, @device_b}}, 0x0, @void}}]}, 0x40}}, 0x0) 03:40:26 executing program 4: syz_clone3(&(0x7f0000000800)={0xd000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 03:40:26 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:26 executing program 2: syz_clone3(&(0x7f0000000800)={0x10000200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 03:40:26 executing program 0: ioctl$sock_ipv6_tunnel_SIOCDELPRL(0xffffffffffffffff, 0x89f6, 0x0) syz_mount_image$vfat(&(0x7f0000000300), &(0x7f0000000340)='./file0\x00', 0x0, 0x0, &(0x7f0000000600), 0x0, &(0x7f0000000680)={[{@shortname_win95}, {@utf8}, {@shortname_winnt}]}) [ 2603.966473][ T1196] ieee802154 phy0 wpan0: encryption failed: -22 03:40:27 executing program 5: open(&(0x7f0000000000)='./file0\x00', 0x20200, 0x0) 03:40:27 executing program 0: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$unix(r0, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0) 03:40:27 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) r2 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000680)={'wlan0\x00'}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x40, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @disassoc={@with_ht={{{}, {}, @device_a, @device_b}}, 0x0, @void}}]}, 0x40}}, 0x0) 03:40:27 executing program 4: open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) mkdir(&(0x7f00000000c0)='./file1\x00', 0x0) r0 = openat(0xffffffffffffffff, &(0x7f0000001640)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1, 0x10, r0, 0x0) preadv(r0, &(0x7f0000001580)=[{0x0}], 0x1, 0x0, 0x0) mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x3, 0x10, r0, 0x0) mkdir(0x0, 0x0) rmdir(&(0x7f0000000080)='./file1\x00') 03:40:27 executing program 2: syz_mount_image$vfat(&(0x7f0000000300), 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000680)) 03:40:27 executing program 2: syz_clone3(&(0x7f0000000800)={0x14000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 03:40:27 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan0\x00'}) 03:40:27 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) r2 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000680)={'wlan0\x00'}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x40, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @disassoc={@with_ht={{{}, {}, @device_a, @device_b}}, 0x0, @void}}]}, 0x40}}, 0x0) 03:40:27 executing program 5: syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000240)='./file0\x00', 0x0, 0x0, 0x0, 0x1088800, &(0x7f0000000440)) 03:40:28 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, 0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(0x0, r2, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:28 executing program 4: r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$BTRFS_IOC_GET_DEV_STATS(r0, 0xc4089434, 0x0) 03:40:28 executing program 2: bpf$PROG_BIND_MAP(0x14, 0x0, 0x0) 03:40:28 executing program 0: syz_clone3(&(0x7f0000000800)={0x0, 0x0, 0x0, 0x0, {}, &(0x7f0000000640)=""/83, 0x53, 0x0, 0x0}, 0x58) 03:40:28 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) r2 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000680)={'wlan0\x00'}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x40, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @disassoc={@with_ht={{{}, {}, @device_a, @device_b}}, 0x0, @void}}]}, 0x40}}, 0x0) 03:40:28 executing program 5: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0x0) ioctl$SNDRV_TIMER_IOCTL_PVERSION(r0, 0x80045400, &(0x7f0000000240)) 03:40:29 executing program 2: r0 = fsopen(&(0x7f0000000100)='pipefs\x00', 0x0) fsconfig$FSCONFIG_SET_FLAG(r0, 0x0, &(0x7f0000000140)='nomand\x00', 0x0, 0x0) 03:40:29 executing program 5: syz_mount_image$iso9660(&(0x7f0000000080), &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)) 03:40:29 executing program 0: syz_clone(0x9009000, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) 03:40:29 executing program 4: process_vm_readv(0x0, 0x0, 0x0, &(0x7f0000008640), 0x0, 0x0) r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) syncfs(r0) 03:40:29 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) r2 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000680)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x1c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}}, 0x1c}}, 0x0) 03:40:29 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, 0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(0x0, r2, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:29 executing program 2: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) rt_sigqueueinfo(0x0, 0x0, 0x0) r0 = creat(&(0x7f0000000240)='./file0\x00', 0x0) fallocate(r0, 0x100000011, 0x0, 0x2811fdff) 03:40:29 executing program 5: clock_adjtime(0x0, &(0x7f0000000000)={0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x5cc9}) 03:40:29 executing program 0: mkdir(&(0x7f00000020c0)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000042c0)='./file0\x00', &(0x7f0000002000), 0x0, &(0x7f0000002240)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}}) 03:40:29 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) r2 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000680)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x1c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}}, 0x1c}}, 0x0) 03:40:29 executing program 4: process_vm_readv(0x0, 0x0, 0x0, &(0x7f0000008640), 0x0, 0x0) r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) syncfs(r0) 03:40:29 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, 0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(0x0, r2, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:30 executing program 5: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x5f}, 0x48) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f0000000100)=r0, 0x4) sendmsg$inet(r2, &(0x7f0000001e80)={0x0, 0x0, &(0x7f0000001cc0)=[{&(0x7f0000000900)="c7cf", 0x2}], 0x1}, 0x0) 03:40:30 executing program 2: pselect6(0x0, 0x0, &(0x7f0000000100), &(0x7f0000000140), 0x0, &(0x7f0000000200)={&(0x7f00000001c0)={[0x3]}, 0x8}) 03:40:30 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) r2 = socket$nl_crypto(0x10, 0x3, 0x15) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000680)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x1c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}}, 0x1c}}, 0x0) 03:40:30 executing program 0: pipe2$watch_queue(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80) pidfd_getfd(r0, r0, 0x0) r1 = openat$null(0xffffffffffffff9c, 0x0, 0x600280, 0x0) ioctl$SNDRV_PCM_IOCTL_REWIND(r1, 0x40084146, &(0x7f00000000c0)=0x9) r2 = pidfd_getfd(r1, 0xffffffffffffffff, 0x0) ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r2, 0x89f3, &(0x7f0000000240)={'sit0\x00', &(0x7f00000001c0)={'sit0\x00', 0x0, 0x4, 0x6, 0x3f, 0x1400, 0x0, @private2, @mcast1, 0x80b1, 0x0, 0x8, 0x8}}) r3 = syz_mount_image$vfat(&(0x7f0000000300), &(0x7f0000000340)='./file0\x00', 0x0, 0x4, &(0x7f0000000600)=[{&(0x7f0000000380)="581effa92531aebb40462c7afae2590c001a303fcc17fa3758f528332c666d237c5053fa511cf08729ca7c3420a58fc5c4406b09f9862838a3b524cd3f07dd408bea49c203658505edd261e14048d50d58d2ae6866180c9529a746b6b2", 0x5d, 0x4}, {0x0, 0x0, 0x2}, {&(0x7f00000004c0)="11b95695f28c003c948255a3e7e2042e2d7c6b81fb00ff76e789498e6bb677af3ff785cd8267eedb86b7e3673b2272831ec7fa89ce095402cfdd7857322390566adb7199507b67ee1271355dfce9694f460129f2e6311d1386d55758f0ac6e25776ab1f00947e23a263b3d9006358b4cff8124733aff08f3aca616a3328c8f3365ee2b73b60e8e6bf2dbebbed0b6ea1f88c8eff71d8d5f7524cea2bda4176e845ac8e65558ff56c1eba213382d836a4491c4b6c232cc6fb16c540de56b7ec286d0ca98506c839454837d", 0xca, 0xedfa}, {&(0x7f00000005c0), 0x0, 0x4}], 0x11080, &(0x7f0000000680)={[{@fat=@time_offset={'time_offset', 0x3d, 0xfffffffffffffef4}}, {@shortname_win95}, {@shortname_mixed}, {@fat=@nfs}, {@shortname_mixed}, {@utf8}, {@shortname_lower}, {@utf8}, {@rodir}], [{@smackfsfloor={'smackfsfloor', 0x3d, 'sit0\x00'}}]}) fchmodat(r3, &(0x7f0000000740)='./file0\x00', 0x40) 03:40:30 executing program 4: openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000880), 0x4c40, 0x0) 03:40:30 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, 0x0, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:30 executing program 5: syz_clone3(&(0x7f0000000540)={0xb0200400, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000500)=[0x0], 0x1}, 0x58) 03:40:30 executing program 3: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0) ioctl$TCXONC(r0, 0x540a, 0x3) 03:40:30 executing program 0: request_key(&(0x7f0000000080)='id_legacy\x00', &(0x7f0000000140)={'syz', 0x1}, &(0x7f0000000180)='keyring\x00', 0xfffffffffffffffe) 03:40:30 executing program 4: request_key(&(0x7f00000000c0)='ceph\x00', &(0x7f0000000100)={'syz', 0x2}, &(0x7f0000000140)='ip6tnl0\x00', 0x0) 03:40:31 executing program 3: syz_mount_image$vfat(&(0x7f0000000300), &(0x7f0000000340)='./file0\x00', 0x0, 0x1, &(0x7f0000000600)=[{0x0, 0x0, 0xedfa}], 0x0, &(0x7f0000000680)) 03:40:31 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(crct10dif-generic)\x00'}, 0x58) r1 = accept4$alg(r0, 0x0, 0x0, 0x0) r2 = accept4(r1, 0x0, 0x0, 0x0) recvmmsg(r2, &(0x7f00000004c0)=[{{0x0, 0x1000000, 0x0, 0x0, 0x0, 0x700}}], 0x500, 0x0, 0x0) 03:40:31 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, 0x0, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:31 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$fou(&(0x7f0000000300), 0xffffffffffffffff) sendmsg$FOU_CMD_ADD(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={0x1c, r1, 0x1, 0x0, 0x0, {}, [@FOU_ATTR_LOCAL_V4={0x8, 0x6, @loopback}]}, 0x1c}}, 0x0) 03:40:31 executing program 4: socket$inet6_udp(0xa, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000002c80)='geneve1\x00', 0x10) connect$inet(r0, &(0x7f0000000100)={0x2, 0x0, @multicast2}, 0x10) sendmmsg(r0, &(0x7f00000039c0)=[{{0x0, 0x1e, 0x0}}], 0x300, 0x0) socket(0x0, 0x0, 0x0) 03:40:31 executing program 5: syz_genetlink_get_family_id$netlbl_cipso(0x0, 0xffffffffffffffff) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) socket$netlink(0x10, 0x3, 0x0) socket(0x10, 0x3, 0x0) writev(r1, &(0x7f0000000040)=[{&(0x7f0000000140)="390000001100090468fe0700000000000700ff3f0800000045000e070000001419001a00", 0x24}], 0x1) pipe(&(0x7f00000002c0)) write$binfmt_misc(r1, &(0x7f00000002c0)=ANY=[], 0x15) splice(r0, 0x0, r2, 0x0, 0x19404, 0x0) 03:40:31 executing program 3: r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x208040, 0x0) ioctl$PPPIOCSMRU1(r0, 0x40047452, 0x0) 03:40:31 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, 0x0, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:31 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(crct10dif-generic)\x00'}, 0x58) r1 = accept4$alg(r0, 0x0, 0x0, 0x0) r2 = accept4(r1, 0x0, 0x0, 0x0) sendmmsg$unix(r2, &(0x7f0000004000)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4000023) 03:40:32 executing program 2: syz_genetlink_get_family_id$wireguard(&(0x7f0000000980), 0xffffffffffffffff) 03:40:32 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(crct10dif-generic)\x00'}, 0x58) r1 = accept4$alg(r0, 0x0, 0x0, 0x0) r2 = accept4(r1, 0x0, 0x0, 0x0) sendmmsg(r2, &(0x7f0000003000)=[{{0x0, 0x0, &(0x7f0000001540)=[{&(0x7f0000000080)='X', 0x1}], 0x1}}], 0x1, 0x0) 03:40:32 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:32 executing program 0: r0 = socket(0x10, 0x803, 0x0) sendmsg$nl_route(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=@ipv4_newaddr={0x20, 0x14, 0x121, 0x0, 0x0, {}, [@IFA_LOCAL={0x8, 0x2, @local}]}, 0x20}}, 0x0) 03:40:32 executing program 2: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000400), r1) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000440)={'wpan0\x00', 0x0}) sendmsg$IEEE802154_LLSEC_ADD_SECLEVEL(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000380)={0x1c, r2, 0x601, 0x0, 0x0, {0x24}, [@IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r4}]}, 0x1c}}, 0x0) 03:40:32 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:33 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)={0x14, r1, 0xc5aac010b5dbbf77}, 0x14}}, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r0) 03:40:34 executing program 4: socket$inet6_udp(0xa, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000002c80)='geneve1\x00', 0x10) connect$inet(r0, &(0x7f0000000100)={0x2, 0x0, @multicast2}, 0x10) sendmmsg(r0, &(0x7f00000039c0)=[{{0x0, 0x1e, 0x0}}], 0x300, 0x0) socket(0x0, 0x0, 0x0) 03:40:34 executing program 5: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x2c, 0x2c, 0x2, [@func_proto={0x0, 0x2, 0x0, 0xd, 0x0, [{}, {0x0, 0x1}]}, @int={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x21, 0x3}]}}, &(0x7f0000000140)=""/177, 0x46, 0xb1, 0x1}, 0x20) 03:40:34 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$unix(r0, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0) recvmsg(r1, &(0x7f0000000200)={&(0x7f0000000000)=@un=@abs, 0x8, &(0x7f0000001500)=[{&(0x7f0000000040)=""/60, 0x3c}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9, &(0x7f00000015c0)=""/242, 0xf2}, 0x0) 03:40:34 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f00000002c0)=0x1c, 0x4) 03:40:34 executing program 0: syz_emit_ethernet(0x46, &(0x7f0000000000)={@broadcast, @broadcast, @val, {@ipv4}}, 0x0) 03:40:34 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:34 executing program 0: r0 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$IPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x41, &(0x7f0000000200)={'filter\x00', 0x4, [{}, {}, {}, {}]}, 0x68) 03:40:34 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) getpeername$unix(r0, 0x0, &(0x7f0000000100)) 03:40:34 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) sendto(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)=@in={0x10, 0x2}, 0x10) 03:40:34 executing program 5: r0 = socket$inet6_udp(0xa, 0x2, 0x0) sendmmsg$inet6(r0, &(0x7f0000000b80)=[{{&(0x7f0000001300)={0xa, 0x4e21, 0x0, @rand_addr=' \x01\x00'}, 0x1c, 0x0}}], 0x1, 0x0) 03:40:34 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(0x0, r2, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:34 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x14) 03:40:36 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmsg$inet6(r0, &(0x7f0000000300)={&(0x7f00000000c0)={0xa, 0x0, 0x0, @local, 0x7}, 0x1c, &(0x7f00000002c0)=[{&(0x7f0000000140)="15", 0x1}], 0x1}, 0x24000080) 03:40:36 executing program 5: r0 = socket$inet6_udp(0xa, 0x2, 0x0) sendmmsg$inet6(r0, &(0x7f0000005380)=[{{&(0x7f0000000000)={0xa, 0x4e21, 0x0, @private2}, 0x1c, 0x0}}, {{0x0, 0x0, &(0x7f0000001780)=[{&(0x7f0000001640)="ba", 0x1}], 0x1, &(0x7f0000005480)=ANY=[], 0x1410}}, {{0x0, 0x0, &(0x7f0000002c80)=[{&(0x7f0000002c40)="9e", 0x1}], 0x1}}], 0x3, 0x8000) 03:40:36 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_SET_BEACON(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000080)={0x28, 0x0, 0x4, 0x0, 0x0, {{}, {@val={0x8}, @val={0xc}}}}, 0x28}}, 0x0) syz_genetlink_get_family_id$SEG6(&(0x7f00000005c0), r0) syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), r0) 03:40:36 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x9) sendmsg$ETHTOOL_MSG_PAUSE_GET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) 03:40:36 executing program 2: bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x12}, 0x48) 03:40:36 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(0x0, r2, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:36 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000040)={@in6={{0xa, 0x0, 0x0, @local}}, 0x0, 0x0, 0x17, 0x0, "cdd006942855b3e79fa1e1bf98bdadca2bc64feefe46a8e34a3fcee14caa0d8eb08b897c5e8ee20ee8c26c3f2942ab3023278e2da7aec9ace18d6a3ad4943ac32e97be85a48d5a974a23ff8b48a6ed18"}, 0xd8) sendmmsg$inet6(r0, &(0x7f0000004980)=[{{&(0x7f0000000280)={0xa, 0x0, 0x0, @dev, 0x7}, 0x1c, 0x0}}], 0x1, 0x200000c0) 03:40:36 executing program 5: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f00000004c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x4, [@typedef={0x2}]}, {0x0, [0x0, 0x5f]}}, &(0x7f0000000540)=""/236, 0x28, 0xec, 0x1}, 0x20) 03:40:36 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r0, &(0x7f0000004980)=[{{&(0x7f0000000280)={0xa, 0x0, 0x0, @dev, 0x7}, 0x1c, 0x0}}], 0x1, 0x200000c0) setsockopt$inet6_IPV6_PKTINFO(r0, 0x29, 0x32, &(0x7f0000000040)={@private1}, 0x14) 03:40:36 executing program 0: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r0, &(0x7f0000004980)=[{{&(0x7f0000000280)={0xa, 0x0, 0x0, @dev, 0x7}, 0x1c, 0x0}}], 0x1, 0x200000c0) 03:40:37 executing program 2: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) sendmmsg$inet6(r0, &(0x7f00000015c0)=[{{&(0x7f0000000000)={0xa, 0x4e20, 0x0, @remote}, 0x1c, &(0x7f00000010c0)=[{&(0x7f0000000040)="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", 0x545}], 0x1, &(0x7f0000001100)=[@dstopts_2292={{0x78, 0x29, 0x4, {0x0, 0xc, '\x00', [@padn={0x1, 0x3, [0x0, 0x0, 0x0]}, @ra, @pad1, @generic={0x0, 0x40, "decee05674ce09d21414e7d34fe9a19c018bb6db7f4385ced81d5fd059cfd10e542a3946b873647b4057a1dd09f47f06efb7b5afc4ff8bf16d319e6b6c378bf1"}, @hao={0xc9, 0x10, @private1}]}}}], 0x78}}], 0x1, 0x0) 03:40:37 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) sendmmsg$inet(r0, &(0x7f0000001f40)=[{{&(0x7f0000000180)={0x2, 0x4e21}, 0x10, 0x0, 0x0, &(0x7f00000015c0)=[@ip_retopts={{0x20, 0x0, 0x7, {[@rr={0x7, 0xf, 0xb, [@broadcast, @dev, @multicast1]}]}}}], 0x20}}], 0x1, 0x0) 03:40:37 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$sock_inet6_tcp_SIOCATMARK(r0, 0x8905, &(0x7f00000000c0)) mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) 03:40:37 executing program 0: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000004d00)={0x0, 0x0, 0x0, 0x0, 0x1}, 0x20) 03:40:37 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$sock_inet6_tcp_SIOCOUTQNSD(r0, 0x8901, &(0x7f0000000000)) 03:40:38 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmsg$inet6(r0, &(0x7f0000000300)={&(0x7f00000000c0)={0xa, 0x0, 0x0, @local, 0x7}, 0x1c, 0x0}, 0x24000080) 03:40:38 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(0x0, r2, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:38 executing program 5: bpf$PROG_LOAD_XDP(0x5, &(0x7f00000002c0)={0x17, 0x3, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000090040000000000000500001095"], &(0x7f0000000080)='GPL\x00', 0x7, 0xaa, &(0x7f00000000c0)=""/170, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 03:40:38 executing program 0: r0 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000000), 0x2) ioctl$UDMABUF_CREATE_LIST(r0, 0x40087543, &(0x7f0000000080)={0x0, 0x1, [{}]}) 03:40:38 executing program 4: r0 = socket$inet6(0xa, 0x2, 0x0) sendmmsg$inet(r0, &(0x7f0000001f40)=[{{&(0x7f0000000140)={0x2, 0x4e20, @dev}, 0x10, 0x0}}, {{&(0x7f0000000180)={0x2, 0x4e21}, 0x10, 0x0, 0x0, &(0x7f00000015c0)=[@ip_retopts={{0x1c, 0x0, 0x7, {[@rr={0x7, 0xb, 0xb, [@dev, @multicast1]}]}}}], 0x20}}], 0x2, 0x0) 03:40:38 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r0, &(0x7f0000004980)=[{{&(0x7f0000000280)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x31}, 0x7}, 0x1c, 0x0}}], 0x1, 0x200000c0) 03:40:39 executing program 0: syz_genetlink_get_family_id$tipc2(&(0x7f0000000780), 0xffffffffffffffff) 03:40:39 executing program 4: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$netlink(r0, &(0x7f0000003040)={0x0, 0x0, 0x0}, 0x0) 03:40:39 executing program 3: bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x6, 0x3, &(0x7f00000002c0)=@framed, &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 03:40:39 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) sendmmsg$inet6(r0, &(0x7f0000000b80)=[{{&(0x7f0000001300)={0xa, 0x4e21, 0x0, @empty}, 0x1c, 0x0}}, {{&(0x7f0000000100)={0xa, 0x0, 0x0, @mcast2}, 0x17, 0x0}}], 0x2, 0x0) 03:40:39 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) sendmmsg$inet(r0, &(0x7f0000001f40)=[{{&(0x7f0000000140)={0x2, 0x4e20, @dev}, 0x10, 0x0}}, {{&(0x7f0000000180)={0x2, 0x4e21}, 0x10, 0x0, 0x0, &(0x7f00000015c0)=[@ip_retopts={{0x1c, 0x0, 0x7, {[@rr={0x7, 0xb, 0xb, [@broadcast, @dev]}]}}}], 0x20}}], 0x2, 0x0) 03:40:39 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000003c0)=@gettclass={0x24, 0x2a, 0x7bd, 0x0, 0x0, {0x2}}, 0x24}}, 0x0) 03:40:40 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, 0x0, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:40 executing program 3: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmmsg$inet(r0, &(0x7f00000090c0)=[{{0x0, 0x0, &(0x7f0000008b80)=[{0x0}, {&(0x7f0000008940)="18", 0x1}], 0x2}}], 0x1, 0x0) [ 2617.199459][T13340] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. 03:40:40 executing program 4: bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000700)=0xffffffffffffffff, 0x4) 03:40:40 executing program 2: r0 = socket$inet6(0xa, 0x2, 0x0) sendmmsg$inet(r0, &(0x7f0000000480)=[{{&(0x7f00000001c0)={0x2, 0x4e20, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_retopts={{0x1c, 0x0, 0x7, {[@timestamp_addr={0x44, 0xc, 0x9, 0x1, 0x0, [{@initdev={0xac, 0x1e, 0x0, 0x0}}]}]}}}], 0x20}}], 0x1, 0x0) 03:40:40 executing program 0: socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000016c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg(r0, &(0x7f00000017c0)={&(0x7f0000000380)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "5677281937f37695ebc5fafd76c33c11a60164715c2778ad6cf6c4882628118dcf67b6694952468eeada8701a458078be6cb1d525432b93fc92cda2b515e59"}, 0x80, 0x0}, 0x0) 03:40:40 executing program 5: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'syzkaller1\x00', 0xb02}) ioctl$TUNSETOFFLOAD(r0, 0x400454d0, 0x1) 03:40:40 executing program 4: r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'hsr0\x00', 0x1}) ioctl$TUNGETSNDBUF(r0, 0x400454cb, 0x0) 03:40:40 executing program 3: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'syzkaller1\x00', 0xb02}) ioctl$TUNSETSNDBUF(r0, 0x400454d4, &(0x7f0000000000)=0x400) 03:40:40 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'hsr0\x00', 0x1}) ioctl$TUNGETSNDBUF(r0, 0x400454c8, 0x0) 03:40:41 executing program 4: openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x161081, 0x0) 03:40:41 executing program 0: r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'hsr0\x00', 0x1}) ioctl$TUNGETSNDBUF(r0, 0x54e3, 0x0) 03:40:41 executing program 3: syz_clone(0x10922000, 0x0, 0x0, 0x0, 0x0, 0x0) 03:40:41 executing program 2: bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000ec0)={0xffffffffffffffff}, 0x4) 03:40:41 executing program 5: bpf$BPF_MAP_GET_FD_BY_ID(0xd, &(0x7f0000000600)={0xffffffffffffffff, 0x0, 0x18}, 0xc) 03:40:41 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, 0x0, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:41 executing program 3: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'syzkaller1\x00', 0xb02}) ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000000)={'team_slave_1\x00', 0x400}) 03:40:41 executing program 0: syz_clone(0x2000080, 0x0, 0x0, 0x0, 0x0, 0x0) 03:40:41 executing program 4: r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) ioctl$TUNSETVNETBE(r0, 0x400454de, 0x0) 03:40:42 executing program 5: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001a40)={&(0x7f0000002a00)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xffffffffffffff1d, 0x0, 0x9}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000001980)=""/136, 0x21, 0x88, 0x1}, 0x4f) 03:40:42 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'syzkaller1\x00', 0xb02}) ioctl$TUNSETTXFILTER(r0, 0x400454d1, &(0x7f0000000000)) 03:40:42 executing program 4: bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@const]}}, &(0x7f0000000100)=""/148, 0x26, 0x94, 0x1}, 0x20) 03:40:42 executing program 3: syz_clone(0x60002200, 0x0, 0x0, 0x0, 0x0, 0x0) 03:40:42 executing program 0: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'syzkaller1\x00', 0xb02}) ioctl$TUNSETTXFILTER(r0, 0x400454d1, &(0x7f0000000000)={0x0, 0xa, [@empty, @dev, @broadcast, @local, @empty, @empty, @link_local, @remote, @random="d71c09e0a876", @link_local]}) 03:40:42 executing program 5: syz_emit_ethernet(0xe, &(0x7f0000000000)={@random="b51a5dbec188", @broadcast, @val, {@generic={0x8848}}}, 0x0) 03:40:42 executing program 2: syz_emit_ethernet(0x4e, &(0x7f00000000c0)={@random="814c25a5a584", @local, @val, {@ipv6}}, 0x0) 03:40:43 executing program 4: socket(0x21, 0x0, 0xa3) 03:40:43 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, 0x0, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:43 executing program 3: pwritev(0xffffffffffffffff, &(0x7f00000002c0)=[{0x0}], 0x156031e, 0x0, 0x0) 03:40:43 executing program 4: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff}) getsockopt(r0, 0x0, 0x0, 0x0, 0x0) 03:40:43 executing program 5: syz_emit_ethernet(0x36, &(0x7f0000000100)={@random="99d4cbc52b91", @remote, @val, {@ipv6}}, 0x0) 03:40:43 executing program 0: bpf$OBJ_GET_PROG(0x7, &(0x7f0000001700)={0x0, 0x0, 0x30}, 0x10) 03:40:43 executing program 3: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000200)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x10, 0x10, 0x2, [@int={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x96}]}}, &(0x7f0000000240)=""/151, 0x2a, 0x97, 0x1}, 0x20) 03:40:43 executing program 2: recvmsg(0xffffffffffffffff, 0x0, 0x62fbdba87b4019f) 03:40:43 executing program 4: syz_clone(0x41080, 0x0, 0x0, 0x0, 0x0, 0x0) 03:40:44 executing program 3: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000200)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}, {0x2}}, &(0x7f0000000240)=""/151, 0x1a, 0x97, 0x1}, 0x20) 03:40:44 executing program 5: bpf$BPF_BTF_LOAD(0x8, &(0x7f0000000000)={0x0, 0xffffffffffffffff}, 0x20) 03:40:44 executing program 4: open(&(0x7f0000002480)='./file0\x00', 0x200, 0x0) 03:40:44 executing program 0: r0 = socket$unix(0x1, 0x5, 0x0) setsockopt$sock_timeval(r0, 0xffff, 0x1006, &(0x7f0000000a40), 0x10) 03:40:44 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, 0x0, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:44 executing program 3: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) sendto$unix(r0, 0x0, 0x0, 0xe, 0x0, 0x0) sendto$unix(r0, 0x0, 0x0, 0x0, 0x0, 0x0) recvmsg(r1, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000200)=""/211, 0xd3}], 0x1}, 0x0) 03:40:44 executing program 2: r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) fchown(r0, 0x0, 0xffffffffffffffff) 03:40:44 executing program 5: r0 = syz_open_pts(0xffffffffffffffff, 0x0) ioctl$TIOCSETD(r0, 0x8004741b, &(0x7f0000000800)=0x5) 03:40:45 executing program 3: setitimer(0x0, &(0x7f0000000080)={{0x0, 0xfffffffffffffe00}}, 0x0) 03:40:45 executing program 2: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000001100)='net/snmp\x00') read$watch_queue(r0, 0x0, 0x0) 03:40:45 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c) 03:40:45 executing program 5: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x20, &(0x7f0000000100)={@loopback, @rand_addr=0x64010101}, 0xc) 03:40:45 executing program 0: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_tcp_buf(r0, 0x6, 0xb, 0x0, &(0x7f00000001c0)) 03:40:45 executing program 2: sigaltstack(&(0x7f0000000540)={0x0, 0x80000002}, 0x0) 03:40:46 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_tcp_buf(r0, 0x6, 0x1a, 0x0, &(0x7f0000000280)) 03:40:46 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup2(r0, r1) ioctl$TUNSETOFFLOAD(r2, 0x5451, 0x0) 03:40:46 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, 0x0, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:46 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ppoll(&(0x7f0000000000)=[{r0}], 0x1, &(0x7f0000000100)={0x0, 0x989680}, 0x0, 0x0) 03:40:46 executing program 0: r0 = open(&(0x7f0000000040)='./file0\x00', 0x1410c1, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x12, r0, 0x0) 03:40:46 executing program 2: syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00') syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00') 03:40:46 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) ppoll(&(0x7f0000000380)=[{r0}, {r1, 0x300}], 0x2, 0x0, 0x0, 0x0) 03:40:46 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) getsockname$packet(r0, 0x0, &(0x7f0000000080)) 03:40:47 executing program 3: r0 = eventfd2(0x0, 0x0) r1 = dup2(r0, r0) write$FUSE_ATTR(r1, &(0x7f0000002100)={0x78}, 0x78) 03:40:47 executing program 5: r0 = eventfd2(0x0, 0x0) r1 = dup2(r0, r0) write$FUSE_WRITE(r1, &(0x7f0000000080)={0x18}, 0x18) 03:40:47 executing program 4: pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) dup2(r0, r1) write$FUSE_ENTRY(r1, 0x0, 0x0) 03:40:47 executing program 2: r0 = eventfd2(0x0, 0x0) r1 = dup2(r0, r0) write$FUSE_IOCTL(r1, &(0x7f0000000200)={0x3b}, 0x20) 03:40:47 executing program 0: pipe2(&(0x7f00000052c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$cgroup_netprio_ifpriomap(r0, 0x0, 0x0) 03:40:47 executing program 5: pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) dup2(r0, r1) write$FUSE_ATTR(r1, 0x0, 0x0) 03:40:48 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, 0x0, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:48 executing program 3: r0 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) dup3(r0, r1, 0x0) 03:40:48 executing program 2: pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) r2 = dup2(r0, r1) write$FUSE_CREATE_OPEN(r2, 0x0, 0x0) 03:40:48 executing program 0: r0 = eventfd2(0x0, 0x0) r1 = dup2(r0, r0) write$FUSE_INIT(r1, &(0x7f0000002040)={0x50}, 0x50) 03:40:48 executing program 0: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) write$nbd(r1, 0x0, 0x0) 03:40:48 executing program 4: r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000015c0)='./binderfs/custom0\x00', 0x0, 0x0) lseek(r0, 0x0, 0x0) 03:40:48 executing program 5: r0 = eventfd2(0x0, 0x0) r1 = dup(r0) r2 = dup3(r1, r0, 0x0) write$tun(r2, &(0x7f00000000c0)={@void, @void, @mpls={[], @llc={@snap={0x0, 0x0, "b2", '@I*'}}}}, 0x8) 03:40:48 executing program 3: r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x21, &(0x7f0000000700)={0x0, 0x5810}, 0x10) sendmsg$inet_sctp(r0, &(0x7f00000019c0)={&(0x7f0000000780)=@in6={0x1c, 0x1c}, 0x1c, 0x0, 0x0, &(0x7f0000001940)=ANY=[], 0x2c}, 0x0) 03:40:48 executing program 2: r0 = socket$inet_sctp(0x2, 0x5, 0x84) connect$inet(r0, &(0x7f0000000340)={0x10}, 0x10) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x105, &(0x7f00000000c0)={0x1, [0x0]}, &(0x7f0000000100)=0x8) r1 = socket$inet_sctp(0x2, 0x5, 0x84) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x105, &(0x7f00000000c0)={0x1, [0x0]}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0x19, &(0x7f0000000040), 0x8) 03:40:49 executing program 4: r0 = socket$inet6_sctp(0x1c, 0x5, 0x84) connect$inet6(r0, &(0x7f0000000280)={0x1c, 0x1c, 0x3}, 0x1c) 03:40:49 executing program 0: r0 = socket$inet_sctp(0x2, 0x5, 0x84) sendmsg(r0, &(0x7f0000000700)={&(0x7f00000001c0)=@in={0x10, 0x2}, 0x10, 0x0, 0x0, &(0x7f0000000600)=[{0x10}, {0x10}], 0x20}, 0x0) 03:40:49 executing program 5: r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x903, &(0x7f0000000240), 0x8) 03:40:49 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:49 executing program 2: r0 = socket$inet_sctp(0x2, 0x5, 0x84) r1 = socket$inet6_sctp(0x1c, 0x5, 0x84) connect$inet6(r1, &(0x7f0000000400)={0x1c, 0x1c, 0x3}, 0x1c) r2 = dup2(r1, r1) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x105, &(0x7f0000000040)={0x1, [0x0]}, &(0x7f0000000080)=0x8) setsockopt$inet_sctp_SCTP_PR_SUPPORTED(r0, 0x84, 0x26, &(0x7f0000000000)={r3}, 0x8) 03:40:49 executing program 3: r0 = socket$inet_sctp(0x2, 0x5, 0x84) r1 = socket$inet6_sctp(0x1c, 0x5, 0x84) connect$inet6(r1, &(0x7f0000000400)={0x1c, 0x1c, 0x3}, 0x1c) r2 = dup2(r1, r1) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x105, &(0x7f0000000040)={0x1, [0x0]}, &(0x7f0000000080)=0x8) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x108, &(0x7f0000000000)={r3}, &(0x7f0000000180)=0x18) 03:40:49 executing program 0: r0 = socket$inet_sctp(0x2, 0x5, 0x84) sendmsg$inet_sctp(r0, &(0x7f0000000680)={&(0x7f0000000080)=@in6={0x1c, 0x1c}, 0x1c, 0x0, 0x0, &(0x7f0000000000)=ANY=[], 0x98}, 0x0) 03:40:49 executing program 5: r0 = socket$inet6_sctp(0x1c, 0x1, 0x84) r1 = fcntl$dupfd(r0, 0x0, r0) bind(r1, &(0x7f0000000180)=@un=@file={0xa}, 0xa) 03:40:49 executing program 4: r0 = socket$inet_sctp(0x2, 0x5, 0x84) r1 = socket$inet_sctp(0x2, 0x5, 0x84) r2 = dup2(r0, r1) getsockopt$inet_sctp_SCTP_GET_ASSOC_NUMBER(r2, 0x84, 0x104, &(0x7f00000000c0), &(0x7f0000000100)=0x4) 03:40:50 executing program 0: r0 = socket$inet_sctp(0x2, 0x5, 0x84) connect(r0, &(0x7f0000000040)=@un=@abs={0x8}, 0x8) 03:40:50 executing program 2: r0 = socket$inet6_sctp(0x1c, 0x1, 0x84) r1 = fcntl$dupfd(r0, 0x0, r0) setsockopt$inet_sctp_SCTP_HMAC_IDENT(r1, 0x84, 0x14, &(0x7f0000000000)={0x2, [0x1, 0x0]}, 0x8) 03:40:50 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) sendmmsg$inet6(r0, &(0x7f0000005380)=[{{&(0x7f0000000000)={0xa, 0x4e21, 0x0, @private2}, 0x1c, &(0x7f0000001440)=[{0x0}, {&(0x7f0000000100)="a5", 0x1}, {&(0x7f0000000200)="df", 0x1}], 0x3}}, {{0x0, 0x0, &(0x7f0000001780)=[{&(0x7f00000015c0)="8e", 0x1}], 0x1, &(0x7f0000005480)=ANY=[], 0x1410}}], 0x2, 0x8000) 03:40:50 executing program 4: r0 = syz_open_dev$vbi(&(0x7f00000000c0), 0x2, 0x2) ioctl$VIDIOC_G_INPUT(r0, 0x80045626, &(0x7f0000000080)) 03:40:50 executing program 0: r0 = socket$inet_sctp(0x2, 0x5, 0x84) getsockopt$sock_timeval(r0, 0xffff, 0x1006, &(0x7f0000000000), &(0x7f0000001080)=0x8) 03:40:50 executing program 5: r0 = openat$binder_debug(0xffffffffffffff9c, &(0x7f00000004c0)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0) mmap$IORING_OFF_SQES(&(0x7f0000ff9000/0x3000)=nil, 0x3000, 0x6, 0x12, r0, 0x10000000) 03:40:51 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:51 executing program 3: r0 = socket$inet6_sctp(0x1c, 0x5, 0x84) bind$inet6(r0, &(0x7f0000001c00)={0x1c, 0x1c, 0x2}, 0x1c) 03:40:51 executing program 4: r0 = socket$inet6_sctp(0x1c, 0x1, 0x84) read(r0, &(0x7f0000000000)=""/29, 0x1d) 03:40:51 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$inet_sctp_SCTP_AUTH_KEY(r0, 0x84, 0x13, &(0x7f00000003c0)=ANY=[@ANYRES32=0x0, @ANYBLOB="dac4a7"], 0xaf) 03:40:51 executing program 2: r0 = socket$inet6_sctp(0x1c, 0x5, 0x84) r1 = dup2(r0, r0) setsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r1, 0x84, 0x7, &(0x7f0000000000), 0x88) 03:40:51 executing program 5: r0 = socket$inet6_sctp(0x1c, 0x1, 0x84) r1 = fcntl$dupfd(r0, 0x0, r0) bind(r1, &(0x7f0000000000)=@in6={0x1c, 0x1c, 0x3}, 0x1c) 03:40:52 executing program 0: r0 = socket$inet6_sctp(0x1c, 0x1, 0x84) r1 = fcntl$dupfd(r0, 0x0, r0) setsockopt$inet_sctp_SCTP_HMAC_IDENT(r1, 0x84, 0x14, &(0x7f0000000000)={0x1, [0x1]}, 0x6) 03:40:52 executing program 4: r0 = socket$inet_sctp(0x2, 0x5, 0x84) r1 = fcntl$dupfd(r0, 0x0, r0) r2 = fcntl$dupfd(r1, 0x0, r0) setsockopt$inet_sctp_SCTP_AUTH_KEY(r2, 0x84, 0x13, &(0x7f00000004c0)={0x0, 0x0, 0x1, "84"}, 0x9) 03:40:52 executing program 2: r0 = socket$inet_sctp(0x2, 0x5, 0x84) r1 = socket$inet6_sctp(0x1c, 0x5, 0x84) connect$inet6(r1, &(0x7f0000000400)={0x1c, 0x1c, 0x3}, 0x1c) r2 = dup2(r1, r1) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x105, &(0x7f0000000040)={0x1, [0x0]}, &(0x7f0000000080)=0x8) setsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x21, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, r3}, 0x10) 03:40:53 executing program 5: r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendmsg$inet_sctp(r0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)=[@init={0x14, 0x84, 0x8}], 0x14}, 0x0) 03:40:53 executing program 3: r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendmsg$inet_sctp(r0, &(0x7f0000001600)={&(0x7f0000000080)=@in6={0x1c, 0x1c, 0x1}, 0x1c, 0x0, 0x0, &(0x7f0000001580)=[@sndinfo={0x1c}], 0x1c}, 0x0) 03:40:53 executing program 4: r0 = socket$inet6_sctp(0x1c, 0x5, 0x84) connect(r0, &(0x7f0000000000)=@un=@abs={0x8}, 0x8) 03:40:54 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:54 executing program 0: r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0xa, &(0x7f0000000080)={0x0, @in, 0x0, 0x0, 0xe}, 0x98) 03:40:54 executing program 5: r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0xa, &(0x7f0000000000)={0x0, @in, 0x0, 0x0, 0x13}, 0x98) 03:40:54 executing program 2: socket(0x1, 0x3, 0x9e) 03:40:54 executing program 3: mknod(&(0x7f00000000c0)='./file0\x00', 0x8000, 0x400) open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) 03:40:54 executing program 4: r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = dup2(r0, r0) getdents(r1, 0x0, 0x0) 03:40:54 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x8940, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) lseek(r1, 0x0, 0x0) 03:40:54 executing program 0: r0 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) close(r0) openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0xeb25b93d5c02de51, 0x0) write$FUSE_INIT(r0, 0x0, 0x0) 03:40:54 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', 0x0, 0x0) r1 = openat(r0, &(0x7f0000000040)='./file0\x00', 0x40, 0x0) ioctl$KDFONTOP_SET(r1, 0x5450, 0x0) 03:40:55 executing program 2: r0 = msgget(0x3, 0x0) msgctl$MSG_INFO(r0, 0xc, &(0x7f0000000000)=""/178) 03:40:55 executing program 3: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x6, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x5}]}, &(0x7f00000004c0)='GPL\x00', 0x5, 0xa4, &(0x7f0000000500)=""/164, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 03:40:55 executing program 0: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x3, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x4f}]}, &(0x7f00000004c0)='GPL\x00', 0x5, 0xa4, &(0x7f0000000500)=""/164, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 03:40:56 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(0xffffffffffffffff, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:56 executing program 5: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000100)={'macvlan0\x00', 0x1}) ioctl$TUNSETVNETLE(r0, 0x800454d2, &(0x7f0000000000)) 03:40:56 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000001680), 0x264c82, 0x0) ioctl$TUNDETACHFILTER(r0, 0x401054d6, 0x0) 03:40:56 executing program 3: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000100)={'macvlan1\x00', 0x1}) 03:40:56 executing program 0: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001a80)={&(0x7f0000000540)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x2, [@volatile, @func_proto={0x0, 0x0, 0x0, 0xd, 0x3}, @struct={0x0, 0x0, 0x0, 0x2, 0x0, 0x3}]}}, &(0x7f0000001980)=""/240, 0x3e, 0xf0, 0x1}, 0x20) 03:40:56 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x368, 0x80002) ioctl$EVIOCSREP(r0, 0x40084503, &(0x7f0000000040)=[0xfffffff8, 0x1000]) ioctl$EVIOCGKEYCODE(0xffffffffffffffff, 0x80084504, &(0x7f00000000c0)=""/187) syz_usb_connect$cdc_ncm(0x3, 0xa4, &(0x7f0000000180)={{0x12, 0x1, 0x201, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x92, 0x2, 0x1, 0x40, 0x50, 0x2, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0xa, 0x24, 0x6, 0x0, 0x1, "ae268ce00b"}, {0x5, 0x24, 0x0, 0x7}, {0xd, 0x24, 0xf, 0x1, 0xffffff9d, 0xfffe, 0x7, 0x40}, {0x6, 0x24, 0x1a, 0x6}, [@acm={0x4, 0x24, 0x2, 0x2}, @mbim={0xc, 0x24, 0x1b, 0x7, 0x9, 0x3, 0x12, 0x1, 0x1}, @mbim={0xc, 0x24, 0x1b, 0x401, 0x6, 0x3, 0x0, 0x7, 0x77}, @mdlm={0x15, 0x24, 0x12, 0x4}]}, {{0x9, 0x5, 0x81, 0x3, 0x200, 0x81, 0x40, 0x1f}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x3ff, 0x3, 0x6, 0x6}}, {{0x9, 0x5, 0x3, 0x2, 0x20, 0x81, 0x7, 0xce}}}}}}}]}}, &(0x7f0000000640)={0xa, &(0x7f0000000240)={0xa, 0x6, 0x201, 0x3, 0x1, 0x6, 0x40, 0x2}, 0xbb, &(0x7f0000000280)={0x5, 0xf, 0xbb, 0x4, [@wireless={0xb, 0x10, 0x1, 0xc, 0x5a, 0x80, 0x7f, 0x8, 0xe9}, @ptm_cap={0x3}, @generic={0x61, 0x10, 0xb, "730e081f9ce865883d6c7f76ac70b39894f487b538ca482d5b3a03be97bf7663237c7405783bddc3728c76c9a2f88a90c0f0697f3075795dd2dfc650297946b980e5760b419e9d371eb6f6d5d74de348b200a11164467317e5c5e56fbfc6"}, @generic={0x47, 0x10, 0x1, "d6c65a99a3613e36c3b606190b4464aacfc4db7394f004bee05fd299e53b0c720c97d218ae4303e688dc6461549047b4a911489add1f3dac97da4893e25e878baf2b2fe7"}]}, 0x6, [{0xaa, &(0x7f0000000380)=@string={0xaa, 0x3, "c72204d0997e90748fa84c86b147b25887a7e768727163e6acfa9985ccce65fa1d033845ede430129c94d9b9453298e40390fdaf9d753fd3c956d9e1e8f0bc13488fff0553e6f96be79634e73ed5e9759bdf7fcbcc69a63c77787bcb9d7564e18afb7f3b5f2b2f4f551f59c2b1200ac75c6c9c61a9f66dd336094f7d911c0f1a594731b8a608eef74fa7dc3f36a784650bf86ca75c2e45e0b2020d024665a3b0db05986d4046434d"}}, {0x4, &(0x7f0000000440)=@lang_id={0x4, 0x3, 0x812}}, {0x4, &(0x7f0000000480)=@lang_id={0x4, 0x3, 0x40b}}, {0x4, &(0x7f00000004c0)=@lang_id={0x4, 0x3, 0x42b}}, {0xc8, &(0x7f0000000500)=@string={0xc8, 0x3, "1b51da947727bda45098d83371083fb1a8d97816d5e7891a4a0fe33c1a9301997d6ba56154787f34adbd1acffbfe06c481f45b4075a408be484efe086a5d5cd7050f716cbe1fb050b167973e6ace398da354a240e7a128c7cc44f28d02dbee938494361d4f1ad3b3fad68748cdf8f2cb047ba3d34580d42af4890f5c7b1d71c7ce646ab19bcd6a6b2406748396869ddf2cb1bdca8ae1e8680af376d60267d26d39e806f48c79ce3c61bbb03c51813485595e457d1455d65bad4ba356938e30f40f3e4f8a085c"}}, {0x2a, &(0x7f0000000600)=@string={0x2a, 0x3, "9966c03ab71599db31440c31050cec52ca5266af4d57f17a979a3808e4b8efba22aaeaaceee11c5b"}}]}) r1 = syz_open_dev$evdev(&(0x7f00000006c0), 0x6, 0x80000) ioctl$EVIOCGRAB(r1, 0x40044590, &(0x7f0000000700)=0x2) r2 = syz_open_dev$evdev(&(0x7f00000007c0), 0x0, 0x400) ioctl$EVIOCGABS0(r2, 0x80184540, &(0x7f0000000800)=""/196) r3 = syz_open_dev$evdev(&(0x7f0000000900), 0x1000, 0x80) ioctl$EVIOCGKEYCODE(r3, 0x80084504, &(0x7f0000000940)=""/224) ioctl$EVIOCGABS20(r0, 0x80184560, &(0x7f0000000a40)=""/53) ioctl$EVIOCGKEYCODE_V2(r0, 0x80284504, &(0x7f0000000a80)=""/248) r4 = syz_open_dev$evdev(&(0x7f0000000b80), 0xfb, 0x80002) ioctl$EVIOCGEFFECTS(r4, 0x80044584, &(0x7f0000000bc0)=""/78) ioctl$EVIOCGNAME(r4, 0x80404506, &(0x7f0000000c40)=""/163) r5 = syz_open_dev$evdev(&(0x7f0000000d00), 0x3, 0x100) ioctl$EVIOCSMASK(r5, 0x40104593, &(0x7f0000000e00)={0x15, 0x96, &(0x7f0000000d40)="db700c4235f79ca063953179d74b2b2d2fd923f56451498e1793f00674e3d880493f5ea99d0c1c418e0a6be8a97bf447256e930df59d3e8735e35ce113bdccd0bb7fe5aa1de4eaba9581c5c7e57192d076ca5ff3d341a15c55281850740b322bfb689932ff2ffde4e4e2c645d7e12dbd79cec1cd987ca245c19b0e65f10bfe98f3a06b516d322b2616954624f86fdfce6719b060fe71"}) 03:40:56 executing program 0: r0 = syz_open_dev$evdev(0x0, 0x0, 0x0) ioctl$EVIOCSREP(r0, 0x40084503, 0x0) syz_usb_connect$cdc_ncm(0x3, 0x92, &(0x7f0000000180)={{0x12, 0x1, 0x201, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x80, 0x2, 0x1, 0x0, 0x50, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x8, 0x24, 0x6, 0x0, 0x1, "ae268c"}, {0x5}, {0xd, 0x24, 0xf, 0x1, 0xffffff9d, 0xfffe, 0x7, 0x40}, {0x6}, [@mbim={0xc, 0x24, 0x1b, 0x0, 0x0, 0x0, 0x0, 0x7, 0x77}, @mdlm={0x15}]}, {{0x9, 0x5, 0x81, 0x3, 0x200, 0x81, 0x0, 0x1f}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x3ff, 0x3}}, {{0x9, 0x5, 0x3, 0x2, 0x20, 0x81, 0x7, 0xce}}}}}}}]}}, &(0x7f0000000640)={0xa, &(0x7f0000000240)={0xa, 0x6, 0x201, 0x3, 0x1, 0x6, 0x40, 0x2}, 0x87, &(0x7f0000000280)={0x5, 0xf, 0x87, 0x4, [@wireless={0xb, 0x10, 0x1, 0xc, 0x5a, 0x80, 0x7f, 0x8, 0xe9}, @ptm_cap={0x3}, @generic={0x31, 0x10, 0x0, "730e081f9ce865883d6c7f76ac70b39894f487b538ca482d5b3a03be97bf7663237c7405783bddc3728c76c9a2f8"}, @generic={0x43, 0x10, 0x1, "d6c65a99a3613e36c3b606190b4464aacfc4db7394f004bee05fd299e53b0c720c97d218ae4303e688dc6461549047b4a911489add1f3dac97da4893e25e878b"}]}, 0x6, [{0x4, &(0x7f0000000340)=@lang_id={0x4, 0x3, 0x480a}}, {0x9c, &(0x7f0000000380)=@string={0x9c, 0x3, "c72204d0997e90748fa84c86b147b25887a7e768727163e6acfa9985ccce65fa1d033845ede430129c94d9b9453298e40390fdaf9d753fd3c956d9e1e8f0bc13488fff0553e6f96be79634e73ed5e9759bdf7fcbcc69a63c77787bcb9d7564e18afb7f3b5f2b2f4f551f59c2b1200ac75c6c9c61a9f66dd336094f7d911c0f1a594731b8a608eef74fa7dc3f36a784650bf86ca75c2e45e0b202"}}, {0x4, &(0x7f0000000480)=@lang_id={0x4}}, {0x4, &(0x7f00000004c0)=@lang_id={0x4, 0x3, 0x42b}}, {0x6f, &(0x7f0000000500)=@string={0x6f, 0x3, "1b51da947727bda45098d83371083fb1a8d97816d5e7891a4a0fe33c1a9301997d6ba56154787f34adbd1acffbfe06c481f45b4075a408be484efe086a5d5cd7050f716cbe1fb050b167973e6ace398da354a240e7a128c7cc44f28d02dbee938494361d4f1ad3b3fad68748cd"}}, {0x28, &(0x7f0000000600)=@string={0x28, 0x3, "9966c03ab71599db31440c31050cec52ca5266af4d57f17a979a3808e4b8efba22aaeaaceee1"}}]}) syz_open_dev$evdev(&(0x7f00000006c0), 0x6, 0x80000) r1 = syz_open_dev$evdev(&(0x7f00000007c0), 0x0, 0x400) ioctl$EVIOCGABS0(r1, 0x80184540, &(0x7f0000000800)=""/196) ioctl$EVIOCGKEYCODE(0xffffffffffffffff, 0x80084504, &(0x7f0000000940)=""/224) ioctl$EVIOCGEFFECTS(0xffffffffffffffff, 0x80044584, &(0x7f0000000bc0)=""/78) ioctl$EVIOCGNAME(0xffffffffffffffff, 0x80404506, &(0x7f0000000c40)=""/163) 03:40:56 executing program 3: socketpair(0x10, 0x0, 0x12, &(0x7f0000000800)) 03:40:56 executing program 2: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001a80)={&(0x7f0000000540)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x2, [@volatile={0x0, 0x0, 0x0, 0x9, 0x3}, @func_proto={0x0, 0x0, 0x0, 0xd, 0x3}, @struct={0x0, 0x0, 0x0, 0x2}]}}, &(0x7f0000001980)=""/240, 0x3e, 0xf0, 0x1}, 0x20) 03:40:56 executing program 5: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001a80)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x44, 0x44, 0x2, [@volatile, @func_proto={0x0, 0x3, 0x0, 0xd, 0x0, [{0xe}, {0x4}, {}]}, @enum={0x0, 0x1, 0x0, 0x6, 0x4, [{0xa}]}]}}, &(0x7f0000001980)=""/240, 0x5e, 0xf0, 0x1}, 0x20) 03:40:56 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(0xffffffffffffffff, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) [ 2633.652442][ T7158] usb 5-1: new high-speed USB device number 123 using dummy_hcd 03:40:56 executing program 3: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000100)={'macvlan0\x00', 0x1}) ioctl$TUNSETSNDBUF(r0, 0x400454d4, &(0x7f0000000000)) 03:40:57 executing program 2: r0 = syz_open_dev$swradio(&(0x7f0000000200), 0x0, 0x2) ioctl$VIDIOC_QUERYBUF_DMABUF(r0, 0xc0585609, &(0x7f00000000c0)={0x0, 0x4, 0x4, 0x0, 0x0, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "63ee4400"}}) 03:40:57 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r2, 0xc048aeca, 0x0) 03:40:57 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(0xffffffffffffffff, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:57 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) openat$full(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f0000000080)={0x1, 0x0, [{0x0, 0x1, 0x0, 0x0, @irqchip={0x80}}]}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 2634.004537][T12207] usb 1-1: new high-speed USB device number 53 using dummy_hcd [ 2634.128747][ T7158] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 129, changing to 11 [ 2634.140207][ T7158] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1023 [ 2634.150807][ T7158] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 32 03:40:57 executing program 2: bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000011c0)={0xffffffffffffffff, &(0x7f0000000100)="74115727975ca48e8b345f589fde80d1c07dbd2fcba0b3ef8e4c75412cdc2974a2d82de2af93b955f3a14ffd5e8c49b00431", 0x0}, 0x20) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00'}) r3 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) sendmsg$NFNL_MSG_CTHELPER_NEW(r3, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x200c0804}, 0xc891) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) socket(0x0, 0x0, 0x0) getsockopt$inet_sctp_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000080), &(0x7f0000000180)=0xc) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040)) ioctl$KVM_RUN(r4, 0xae80, 0x0) [ 2634.364962][ T7158] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 2634.374306][ T7158] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 2634.382599][ T7158] usb 5-1: Product: Ћ [ 2634.386826][ T7158] usb 5-1: Manufacturer: ࠒ [ 2634.391640][ T7158] usb 5-1: SerialNumber: Ы [ 2634.538338][T12207] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 129, changing to 11 [ 2634.550142][T12207] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1023 [ 2634.560519][T12207] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 32 [ 2634.763003][T12207] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 2634.775221][T12207] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 2634.784141][T12207] usb 1-1: Manufacturer: ⋇퀄纙璐ꢏ虌䞱墲ꞇ棧煲窱薙컌贈̝䔸ሰ钜맙㉅逃꿽疝팿囉Ꮌ轈׿毹雧픾痩쭿槌㲦硷쭻疝ﮊ㭿⭟伯ὕ쉙₱윊汜憜퍭श絏Ბᨏ䝙렱ࢦꝏ㿜Ꜷ斄Ꝭ⹜ʲ [ 2634.808426][T12207] usb 1-1: SerialNumber: Ы [ 2634.819881][ T7158] cdc_ncm 5-1:1.0: bind() failure [ 2634.835178][ T7158] cdc_ncm 5-1:1.1: CDC Union missing and no IAD found [ 2634.842270][ T7158] cdc_ncm 5-1:1.1: bind() failure [ 2634.862774][ T7158] usb 5-1: USB disconnect, device number 123 [ 2635.162443][T12207] cdc_ncm 1-1:1.0: bind() failure [ 2635.178153][T12207] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found [ 2635.189622][T12207] cdc_ncm 1-1:1.1: bind() failure 03:40:58 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r2, 0x9000aecf, 0x0) [ 2635.249851][T12207] usb 1-1: USB disconnect, device number 53 03:40:58 executing program 0: add_key$fscrypt_v1(&(0x7f00000000c0), &(0x7f0000000100)={'fscrypt:', @desc4}, &(0x7f0000000140)={0x0, "f99539a3403ba7df451ef81f9ba33e9f27644e89ed633c92b58c6d03c6d6b401deec1b485cbc8055d84a1aa908b48a675a4329f3a5c461b6027ad6a72aed3507"}, 0x48, 0xfffffffffffffffd) 03:40:58 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:58 executing program 3: add_key$fscrypt_v1(&(0x7f0000000040), 0x0, &(0x7f00000000c0)={0x0, "4ccb9a57c1c5ae1601bcce37dd8f03caa4ae6e0307935a2570d4441ca34c127242933ec25ba3e8e5ce582fe596f91d8006fa26659df3b092f23b8c8fef43e92f"}, 0x48, 0xfffffffffffffffc) 03:40:58 executing program 2: socketpair(0x1e, 0x3, 0x0, &(0x7f0000000000)) 03:40:58 executing program 5: syz_io_uring_setup(0x63ab, &(0x7f0000000000), &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, 0x0, 0x0) syz_io_uring_setup(0x6f68, &(0x7f0000000200)={0x0, 0x6d8e}, &(0x7f0000ff8000/0x2000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000000180), &(0x7f0000000280)) 03:40:58 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r2, 0x9000aecf, 0x0) 03:40:58 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r2, 0xc008ae91, 0x0) 03:40:58 executing program 3: r0 = socket$can_j1939(0x1d, 0x2, 0x7) recvmsg$can_j1939(r0, 0x0, 0x0) 03:40:58 executing program 5: openat$tun(0xffffffffffffff9c, &(0x7f00000002c0), 0xe801, 0x0) 03:40:59 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r2, 0x8004ae98, 0x0) 03:40:59 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:59 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r2, 0x9000aecf, 0x0) 03:40:59 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) openat$full(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f0000000080)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 03:40:59 executing program 2: socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, 0x0, 0x0) 03:40:59 executing program 5: syz_clone(0x6ca28000, 0x0, 0x0, 0x0, 0x0, 0x0) 03:40:59 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r2, 0xc008ae91, 0x0) 03:40:59 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:59 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r2, 0x8188aea6, 0x0) 03:40:59 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r2, 0x9000aecf, 0x0) 03:40:59 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r0 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r0, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(0xffffffffffffffff, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:40:59 executing program 2: r0 = syz_open_dev$swradio(&(0x7f0000000000), 0x1, 0x2) ioctl$VIDIOC_QUERYBUF_DMABUF(r0, 0xc0585609, &(0x7f0000000040)={0x0, 0x2, 0x4, 0x0, 0x0, {0x77359400}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "4769f293"}}) 03:41:00 executing program 5: socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$TIPC_SOCK_RECVQ_DEPTH(r0, 0x10f, 0x82, 0x0, &(0x7f00000001c0)) 03:41:00 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000e40)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_IBSS(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000440)={0x28, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_IE={0x4}, @NL80211_ATTR_SSID={0x5, 0x34, @random="a6"}]}, 0x28}}, 0x0) 03:41:00 executing program 2: r0 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_RX_RING(r0, 0x11b, 0x2, &(0x7f00000000c0)=0x1004044, 0x4) 03:41:00 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r2, 0xc008ae91, 0x0) 03:41:00 executing program 5: r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000340), 0x802, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) write$UHID_CREATE(r1, &(0x7f0000000600)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f0000000580)=""/79, 0x4f}}, 0x120) writev(r0, &(0x7f0000000300)=[{&(0x7f0000000000)='\n\x00\x00\x00', 0x4}], 0x1) 03:41:00 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x9000aecf, 0x0) 03:41:00 executing program 2: r0 = socket(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'wlan1\x00', 0x0}) r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x40046207, 0x0) r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000240)='./binderfs/binder1\x00', 0x0, 0x0) r5 = dup2(r3, r4) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r5, 0x4018620d, &(0x7f0000000000)) sendmsg$nl_route_sched(r5, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000040)={&(0x7f00000001c0)=@deltaction={0x188, 0x31, 0x200, 0x70bd26, 0x25dfdbfe, {}, [@TCA_ACT_TAB={0x10, 0x1, [{0xc, 0x3, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}]}, @TCA_ACT_TAB={0x38, 0x1, [{0xc, 0x0, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x4}}, {0x10, 0x2, 0x0, 0x0, @TCA_ACT_KIND={0xc, 0x1, 'skbedit\x00'}}, {0xc, 0xa, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0xd0c6}}, {0xc, 0x14, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x3}}]}, @TCA_ACT_TAB={0x7c, 0x1, [{0xc, 0x10, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x400}}, {0xc, 0x1c, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x8}}, {0xc, 0x1d, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x6}}, {0x10, 0xb, 0x0, 0x0, @TCA_ACT_KIND={0xa, 0x1, 'pedit\x00'}}, {0xc, 0x11, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'bpf\x00'}}, {0xc, 0x14, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x6}}, {0x10, 0x1d, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'csum\x00'}}, {0xc, 0x4, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x6073}}, {0x10, 0x1b, 0x0, 0x0, @TCA_ACT_KIND={0xc, 0x1, 'skbedit\x00'}}]}, @TCA_ACT_TAB={0x10, 0x1, [{0xc, 0x6, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0xcc}}]}, @TCA_ACT_TAB={0x48, 0x1, [{0x10, 0x13, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'gact\x00'}}, {0xc, 0x1, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x3}}, {0x10, 0xc, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'gact\x00'}}, {0xc, 0x19, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'nat\x00'}}, {0xc, 0xb, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}]}, @TCA_ACT_TAB={0x24, 0x1, [{0x10, 0x0, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'vlan\x00'}}, {0x10, 0x2, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'sample\x00'}}]}, @TCA_ACT_TAB={0x14, 0x1, [{0x10, 0xb, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'skbmod\x00'}}]}, @TCA_ACT_TAB={0x20, 0x1, [{0xc, 0x19, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x20}}, {0x10, 0x16, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'mirred\x00'}}]}]}, 0x188}, 0x1, 0x0, 0x0, 0x20054090}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000003c0)=@newqdisc={0x38, 0x24, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}}, 0x0) 03:41:01 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000e40)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_IBSS(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000440)={0x28, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_IE={0x4}, @NL80211_ATTR_SSID={0x5, 0x34, @random="a6"}]}, 0x28}}, 0x0) [ 2638.212024][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.219871][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.227664][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.235358][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.243139][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.250722][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.261940][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.269856][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.277552][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.285216][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.292902][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.300470][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.308207][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.315912][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.323634][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.331209][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.338903][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.346571][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.354227][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.361964][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.369535][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.377225][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.384894][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.392581][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.400148][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.407834][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.415482][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.423149][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.430718][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.438389][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.446058][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.453707][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.461287][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.468967][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.476637][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.484294][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.491969][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.499562][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.507266][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.515015][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.522689][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.530278][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.537954][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.545714][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.553363][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.560921][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.568647][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.576322][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.583976][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.591652][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.599230][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.606904][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.614557][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.622235][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.629802][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.637468][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.645185][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.652845][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.660399][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.668050][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.675717][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.683362][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.690936][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.698687][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.706364][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.714026][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.721784][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.729352][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.737100][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.744759][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.752482][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.760049][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.767785][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.775436][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.783111][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.790701][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.798440][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.806116][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.813775][ T3561] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0 [ 2638.834077][ T3561] hid-generic 0000:0000:0000.0098: hidraw0: HID v0.00 Device [syz0] on syz1 03:41:02 executing program 5: r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000340), 0x802, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) write$UHID_CREATE(r1, &(0x7f0000000600)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f0000000580)=""/79, 0x4f}}, 0x120) writev(r0, &(0x7f0000000300)=[{&(0x7f0000000000)='\n\x00\x00\x00', 0x4}], 0x1) 03:41:02 executing program 2: socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000040)={0x43}, 0x10) [ 2639.630388][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.638108][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.646192][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.653879][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.661470][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.669194][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.677522][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.685322][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.696532][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.704781][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.712409][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.719957][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.727657][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.735272][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.742882][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.750424][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.758032][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.765765][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.773392][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.780959][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.788608][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.796243][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.803875][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.811430][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.819057][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.826677][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.834292][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.841907][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.849455][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.857067][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.864755][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.872376][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.879921][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.887535][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.895156][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.902769][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.910319][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.917932][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.925528][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.933127][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.940757][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.948364][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.955978][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.963581][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.971317][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 03:41:03 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r0 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r0, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(0xffffffffffffffff, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:41:03 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r2, 0xc008ae91, 0x0) 03:41:03 executing program 3: r0 = syz_open_dev$mouse(&(0x7f00000000c0), 0x0, 0x20682) writev(r0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000000100)="16", 0x1}], 0x2) 03:41:03 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x9000aecf, 0x0) [ 2639.979004][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.986636][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2639.994277][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2640.001910][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2640.009516][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2640.017240][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2640.024883][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2640.032524][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2640.040083][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2640.047743][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2640.055387][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2640.063023][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2640.070586][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2640.078242][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2640.085891][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2640.093545][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2640.101136][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2640.108788][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2640.116435][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2640.124088][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2640.131727][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2640.139307][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2640.146949][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2640.154581][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2640.162219][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2640.169789][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2640.177458][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2640.185116][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2640.192778][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2640.200352][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2640.207986][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2640.215627][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 [ 2640.223285][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 03:41:03 executing program 2: openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x20000000d67) dup3(r0, r1, 0x0) [ 2640.230877][T12207] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0 03:41:03 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x5, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d2f4655fd2f4655f0100ffff53ef010001000000d1f4655f000000000000000001000000000000000b00000080", 0x59, 0x400}, {&(0x7f0000010200)="010000000000050011", 0x9, 0x560}, {&(0x7f0000010400)="030000001300000023", 0x9, 0x800}, {&(0x7f0000011600)="504d4d00504d4dff", 0x8, 0x4400}, {&(0x7f0000012b00)="ed41000000040000d1f4655fd2f4655fd2f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000002600)={[{@resgid}, {@journal_dev}]}) [ 2640.893313][T12207] hid-generic 0000:0000:0000.0099: hidraw0: HID v0.00 Device [syz0] on syz1 03:41:04 executing program 3: r0 = socket$igmp6(0xa, 0x3, 0x2) setsockopt$MRT6_DEL_MFC_PROXY(r0, 0x29, 0x5, 0x0, 0x0) 03:41:04 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0xc008ae91, 0x0) 03:41:04 executing program 5: r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000340), 0x802, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) write$UHID_CREATE(r1, &(0x7f0000000600)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f0000000580)=""/79, 0x4f}}, 0x120) writev(r0, &(0x7f0000000300)=[{&(0x7f0000000000)='\n\x00\x00\x00', 0x4}], 0x1) 03:41:04 executing program 2: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x15, 0x8, 0x5}, 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, r0}, 0x38) 03:41:04 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x9000aecf, 0x0) [ 2641.804684][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2641.812593][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2641.820188][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2641.828148][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2641.835951][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2641.846190][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2641.854413][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2641.862086][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2641.869652][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2641.877415][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2641.885057][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2641.892732][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2641.900296][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2641.907987][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2641.915614][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2641.923281][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2641.930851][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2641.938622][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2641.946349][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2641.953989][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2641.961750][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2641.969317][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2641.977003][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2641.984673][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2641.992408][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2641.999977][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.007731][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.015436][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.023176][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.030746][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.038498][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.046164][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.053876][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.061435][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.069177][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.076965][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.084611][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.092402][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.099972][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.107701][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.115344][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.123069][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.130622][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.138362][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.146031][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.153684][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.161250][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.168915][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.176586][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.184234][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.191901][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.199467][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.207131][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.214775][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.222440][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.230002][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.237664][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.245305][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.252957][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.260524][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.268194][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.275866][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.283519][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.291084][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.298752][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.306419][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.314064][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.321748][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.329312][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.336993][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.344629][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.352306][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.359948][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.367613][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.375248][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.382913][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.390473][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.398142][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.405811][T27414] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0 [ 2642.426481][T27414] hid-generic 0000:0000:0000.009A: hidraw0: HID v0.00 Device [syz0] on syz1 03:41:05 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000140)) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f00000001c0)) ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, 0x0) 03:41:06 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r0 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r0, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(0xffffffffffffffff, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:41:06 executing program 2: r0 = openat$apparmor_task_exec(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) preadv(r0, &(0x7f0000000240)=[{&(0x7f0000000040)=""/218, 0xda}], 0x1, 0x0, 0x0) 03:41:06 executing program 5: r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000340), 0x802, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) write$UHID_CREATE(r1, &(0x7f0000000600)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f0000000580)=""/79, 0x4f}}, 0x120) writev(r0, &(0x7f0000000300)=[{&(0x7f0000000000)='\n\x00\x00\x00', 0x4}], 0x1) 03:41:06 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0xc008ae91, 0x0) 03:41:06 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r2, 0x9000aecf, 0x0) 03:41:06 executing program 3: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0x4) setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000000c0)='veth1\x00', 0x10) connect$inet(r0, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x28, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0) setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000040), 0x4) [ 2643.345815][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.353611][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.361193][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.369051][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.380102][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 03:41:06 executing program 2: r0 = socket$inet_tcp(0x2, 0x1, 0x0) mmap(&(0x7f00001d9000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_tcp_int(r0, 0x6, 0x2, &(0x7f0000000040)=0x2800, 0x4) setsockopt$sock_int(r0, 0x1, 0x29, &(0x7f0000000380)=0x2, 0x4) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x7654}]}, 0x10) bind$inet(0xffffffffffffffff, 0x0, 0x0) socket(0x0, 0x2, 0x0) write(0xffffffffffffffff, &(0x7f00000000c0), 0x0) socket$nl_route(0x10, 0x3, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) bind$alg(0xffffffffffffffff, 0x0, 0x0) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x78) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000003c0)='yeah\x00', 0x5) connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x1c}}, 0x10) sendmsg$inet(r0, &(0x7f00000015c0)={0x0, 0x14, &(0x7f0000001600)=[{&(0x7f0000000240)=' ', 0xffffff1f}], 0x1}, 0x0) recvmsg(r0, &(0x7f0000000580)={0x0, 0x2, &(0x7f0000000500)=[{&(0x7f0000000740)=""/4096, 0xa15b0}], 0x1, 0x0, 0x2000000000000}, 0x700) [ 2643.389000][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.396682][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.404428][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.412177][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.419759][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.427469][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.435132][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.442840][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.450417][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.458072][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.465814][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.473475][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.481080][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.488751][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.496416][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.504065][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.511716][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.519300][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.526960][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.534603][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.542317][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.549913][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.557567][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.565227][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.572900][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.580488][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.588126][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.595797][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.603455][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.611036][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.618711][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.626388][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.634128][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 03:41:06 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) [ 2643.641815][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.649420][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.657234][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.664887][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.672636][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.680237][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.687977][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.695638][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.703329][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.710939][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.718698][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.726392][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.734119][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.741793][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.749393][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.757348][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.765020][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.772755][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.780345][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.788161][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.795826][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.803539][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.811141][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.819206][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.826884][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.834616][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.842285][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.849892][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.857612][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.865321][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.873042][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.880660][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.888389][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.896067][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.903792][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.911384][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.919119][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.926784][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.934508][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 03:41:07 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0xc008ae91, 0x0) [ 2643.942162][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.949730][T12207] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0 [ 2643.973369][T12207] hid-generic 0000:0000:0000.009B: hidraw0: HID v0.00 Device [syz0] on syz1 [ 2644.059784][T13805] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 2644.073259][T13805] IPv6: ADDRCONF(NETDEV_CHANGE): dummy0: link becomes ready [ 2644.085568][T13805] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 2644.097621][T13805] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready 03:41:07 executing program 5: r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000340), 0x802, 0x0) fcntl$dupfd(r0, 0x0, r0) writev(r0, &(0x7f0000000300)=[{&(0x7f0000000000)='\n\x00\x00\x00', 0x4}], 0x1) 03:41:07 executing program 3: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0x4) setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000000c0)='veth1\x00', 0x10) connect$inet(r0, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x28, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0) setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000040), 0x4) 03:41:08 executing program 5: r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000340), 0x802, 0x0) fcntl$dupfd(r0, 0x0, r0) writev(r0, &(0x7f0000000300)=[{&(0x7f0000000000)='\n\x00\x00\x00', 0x4}], 0x1) 03:41:08 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r2, 0x9000aecf, 0x0) 03:41:08 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r2, 0xc008ae91, 0x0) 03:41:08 executing program 2: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0x4) setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000000c0)='veth1\x00', 0x10) connect$inet(r0, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x28, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0) setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000040), 0x4) [ 2645.538867][T13832] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 2645.552129][T13832] IPv6: ADDRCONF(NETDEV_CHANGE): dummy0: link becomes ready [ 2645.564329][T13832] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 2645.572505][T13832] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready 03:41:08 executing program 5: r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000340), 0x802, 0x0) fcntl$dupfd(r0, 0x0, r0) writev(r0, &(0x7f0000000300)=[{&(0x7f0000000000)='\n\x00\x00\x00', 0x4}], 0x1) 03:41:08 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r2, 0x9000aecf, 0x0) [ 2646.059191][T13842] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 2646.072527][T13842] IPv6: ADDRCONF(NETDEV_CHANGE): dummy0: link becomes ready [ 2646.085003][T13842] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 2646.093163][T13842] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready 03:41:09 executing program 3: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0x4) setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000000c0)='veth1\x00', 0x10) connect$inet(r0, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x28, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0) setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000040), 0x4) 03:41:09 executing program 5: r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000340), 0x802, 0x0) write$UHID_CREATE(0xffffffffffffffff, &(0x7f0000000600)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f0000000580)=""/79, 0x4f}}, 0x120) writev(r0, &(0x7f0000000300)=[{&(0x7f0000000000)='\n\x00\x00\x00', 0x4}], 0x1) [ 2646.840711][T13853] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 2646.853940][T13853] IPv6: ADDRCONF(NETDEV_CHANGE): dummy0: link becomes ready [ 2646.868697][T13853] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 2646.876822][T13853] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready 03:41:10 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:41:10 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r2, 0xc008ae91, 0x0) 03:41:10 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r0, 0x9000aecf, 0x0) 03:41:10 executing program 5: r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000340), 0x802, 0x0) write$UHID_CREATE(0xffffffffffffffff, &(0x7f0000000600)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f0000000580)=""/79, 0x4f}}, 0x120) writev(r0, &(0x7f0000000300)=[{&(0x7f0000000000)='\n\x00\x00\x00', 0x4}], 0x1) 03:41:10 executing program 2: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0x4) setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000000c0)='veth1\x00', 0x10) connect$inet(r0, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x28, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0) setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000040), 0x4) 03:41:10 executing program 3: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0x4) setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000000c0)='veth1\x00', 0x10) connect$inet(r0, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x28, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0) setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000040), 0x4) [ 2647.523773][T13862] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 2647.536870][T13862] IPv6: ADDRCONF(NETDEV_CHANGE): dummy0: link becomes ready [ 2647.548965][T13862] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 2647.557412][T13862] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready 03:41:10 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r2, 0xc008ae91, 0x0) 03:41:10 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r0, 0x9000aecf, 0x0) 03:41:10 executing program 5: r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000340), 0x802, 0x0) write$UHID_CREATE(0xffffffffffffffff, &(0x7f0000000600)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f0000000580)=""/79, 0x4f}}, 0x120) writev(r0, &(0x7f0000000300)=[{&(0x7f0000000000)='\n\x00\x00\x00', 0x4}], 0x1) [ 2647.887089][T13869] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 2647.900287][T13869] IPv6: ADDRCONF(NETDEV_CHANGE): dummy0: link becomes ready [ 2647.912786][T13869] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 2647.920707][T13869] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready 03:41:11 executing program 2: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0x4) setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000000c0)='veth1\x00', 0x10) connect$inet(r0, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x28, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0) setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000040), 0x4) 03:41:11 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r0, 0x9000aecf, 0x0) 03:41:11 executing program 5: r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) write$UHID_CREATE(r0, &(0x7f0000000600)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f0000000580)=""/79, 0x4f}}, 0x120) writev(0xffffffffffffffff, &(0x7f0000000300)=[{&(0x7f0000000000)='\n\x00\x00\x00', 0x4}], 0x1) [ 2649.161428][T13887] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 2649.174953][T13887] IPv6: ADDRCONF(NETDEV_CHANGE): dummy0: link becomes ready [ 2649.187935][T13887] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 2649.196192][T13887] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready 03:41:12 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7f, 0x2}, 0x7) 03:41:12 executing program 0: openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r0, 0xc008ae91, 0x0) 03:41:12 executing program 3: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10000000140, 0x56a, 0x331, 0x40, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x1, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x1}}}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000240)={0x24, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='\x00\"\b'], 0x0}, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000c00)={0x84, &(0x7f0000000800)={0x40, 0xc}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r1 = syz_open_dev$hidraw(&(0x7f0000000200), 0x0, 0x481) write$hidraw(r1, &(0x7f0000000cc0)="1825060349a16eca6f16cc45d44e1e0b1bd88dcd68fbc707b448894ad2f7022f8ab0ef5c1fd569ca36d29fdb1097ad", 0x2f) 03:41:12 executing program 4: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r1, 0x9000aecf, 0x0) 03:41:12 executing program 5: r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) write$UHID_CREATE(r0, &(0x7f0000000600)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f0000000580)=""/79, 0x4f}}, 0x120) writev(0xffffffffffffffff, &(0x7f0000000300)=[{&(0x7f0000000000)='\n\x00\x00\x00', 0x4}], 0x1) 03:41:12 executing program 2: mknod(&(0x7f00000000c0)='./file0\x00', 0x8000, 0x0) open(&(0x7f0000001340)='./file0\x00', 0x0, 0x0) 03:41:13 executing program 5: r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) write$UHID_CREATE(r0, &(0x7f0000000600)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f0000000580)=""/79, 0x4f}}, 0x120) writev(0xffffffffffffffff, &(0x7f0000000300)=[{&(0x7f0000000000)='\n\x00\x00\x00', 0x4}], 0x1) 03:41:13 executing program 0: openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r0, 0xc008ae91, 0x0) 03:41:13 executing program 4: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r1, 0x9000aecf, 0x0) 03:41:13 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, 0x0, 0x0) 03:41:13 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000016000/0x18000)=nil, &(0x7f0000000080)=[@textreal={0x8, &(0x7f0000000040)="baa100b000eef36cf30f1ec9ec66b9800000c00f326635001000000f30bad104ecc80080d267d9f8f30f1bb429006635200000000f22c067f3af", 0x3a}], 0xaaaaaaaaaaaabd7, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000140)={0x0, 0x105000}) open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000001c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000020002000ff], 0x100000}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:41:13 executing program 5: r0 = openat$uhid(0xffffffffffffff9c, 0x0, 0x802, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) write$UHID_CREATE(r1, &(0x7f0000000600)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f0000000580)=""/79, 0x4f}}, 0x120) writev(r0, &(0x7f0000000300)=[{&(0x7f0000000000)='\n\x00\x00\x00', 0x4}], 0x1) 03:41:13 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_int(r0, 0x29, 0x4e, &(0x7f0000000040), 0x4) 03:41:13 executing program 4: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r1, 0x9000aecf, 0x0) 03:41:13 executing program 0: openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r0, 0xc008ae91, 0x0) 03:41:13 executing program 2: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) sendmsg$inet6(r0, &(0x7f0000000a00)={0x0, 0x0, 0x0}, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={&(0x7f0000000040)={0xa, 0x4e22, 0x0, @private1}, 0x1c, 0x0, 0x0, &(0x7f0000000a40)=[@hopopts_2292={{0x18}}, @hoplimit={{0x14}}, @flowinfo={{0x14}}, @dontfrag={{0x14, 0x29, 0x3e, 0x7}}], 0x60}, 0x0) 03:41:13 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, 0x0, 0x0) 03:41:13 executing program 5: r0 = openat$uhid(0xffffffffffffff9c, 0x0, 0x802, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) write$UHID_CREATE(r1, &(0x7f0000000600)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f0000000580)=""/79, 0x4f}}, 0x120) writev(r0, &(0x7f0000000300)=[{&(0x7f0000000000)='\n\x00\x00\x00', 0x4}], 0x1) 03:41:14 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) sendmsg$inet6(r0, &(0x7f00000006c0)={&(0x7f0000000040)={0xa, 0x4e22, 0x0, @private1}, 0x1c, 0x0, 0x0, &(0x7f0000000a40)=[@hopopts_2292={{0x18}}, @hoplimit={{0x14}}, @flowinfo={{0x14}}, @dontfrag={{0x14, 0x29, 0x3e, 0x7}}], 0x60}, 0x0) 03:41:14 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r2, 0x9000aecf, 0x0) 03:41:14 executing program 2: syz_mount_image$tmpfs(&(0x7f0000000140), &(0x7f0000000f40)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000001180)={[{@uid={'uid', 0x3d, 0xee01}}]}) 03:41:14 executing program 0: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r1, 0xc008ae91, 0x0) 03:41:14 executing program 5: r0 = openat$uhid(0xffffffffffffff9c, 0x0, 0x802, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) write$UHID_CREATE(r1, &(0x7f0000000600)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f0000000580)=""/79, 0x4f}}, 0x120) writev(r0, &(0x7f0000000300)=[{&(0x7f0000000000)='\n\x00\x00\x00', 0x4}], 0x1) 03:41:14 executing program 3: syz_emit_ethernet(0x36, &(0x7f0000001800)={@link_local, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @broadcast}, @timestamp_reply={0x11, 0x0, 0x0, 0x0, 0x0, 0x800001}}}}}, 0x0) 03:41:14 executing program 0: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r1, 0xc008ae91, 0x0) 03:41:14 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000500)={'wg1\x00'}) 03:41:15 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r2, 0x9000aecf, 0x0) 03:41:15 executing program 3: syz_emit_ethernet(0x36, &(0x7f0000001800)={@link_local, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @broadcast}, @timestamp_reply={0x11, 0x0, 0x0, 0x0, 0x0, 0x800001}}}}}, 0x0) 03:41:16 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, 0x0, 0x0) 03:41:16 executing program 5: r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) write$UHID_CREATE(r1, &(0x7f0000000600)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f0000000580)=""/79, 0x4f}}, 0x120) writev(r0, &(0x7f0000000300)=[{&(0x7f0000000000)='\n\x00\x00\x00', 0x4}], 0x1) 03:41:16 executing program 0: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r1, 0xc008ae91, 0x0) 03:41:16 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r2, 0x9000aecf, 0x0) 03:41:16 executing program 3: syz_emit_ethernet(0x36, &(0x7f0000001800)={@link_local, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @broadcast}, @timestamp_reply={0x11, 0x0, 0x0, 0x0, 0x0, 0x800001}}}}}, 0x0) 03:41:16 executing program 2: syz_mount_image$tmpfs(0x0, 0x0, 0x0, 0x1, &(0x7f0000000780)=[{&(0x7f00000004c0)="03", 0x1, 0xaeba}], 0x0, 0x0) 03:41:16 executing program 2: syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff) socket$inet(0x2, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_SET_POWER_SAVE(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f00000007c0)={0x0}}, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000980), 0xffffffffffffffff) 03:41:16 executing program 3: syz_emit_ethernet(0x36, &(0x7f0000001800)={@link_local, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @broadcast}, @timestamp_reply={0x11, 0x0, 0x0, 0x0, 0x0, 0x800001}}}}}, 0x0) 03:41:16 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r2, 0xc008ae91, 0x0) 03:41:16 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r1, 0x9000aecf, 0x0) 03:41:16 executing program 5: r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) write$UHID_CREATE(r1, &(0x7f0000000600)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f0000000580)=""/79, 0x4f}}, 0x120) writev(r0, &(0x7f0000000300)=[{&(0x7f0000000000)='\n\x00\x00\x00', 0x4}], 0x1) 03:41:17 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r1, 0x9000aecf, 0x0) 03:41:17 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7}, 0x7) 03:41:17 executing program 5: r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) write$UHID_CREATE(r1, &(0x7f0000000600)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f0000000580)=""/79, 0x4f}}, 0x120) writev(r0, &(0x7f0000000300)=[{&(0x7f0000000000)='\n\x00\x00\x00', 0x4}], 0x1) 03:41:17 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r2, 0xc008ae91, 0x0) 03:41:17 executing program 3: syz_emit_ethernet(0x0, 0x0, 0x0) 03:41:17 executing program 2: syz_mount_image$tmpfs(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x1000000, &(0x7f0000000840)={[{@size={'size', 0x3d, [0x0]}}]}) 03:41:17 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r1, 0x9000aecf, 0x0) [ 2655.136366][T13988] tmpfs: Bad value for 'size' 03:41:18 executing program 3: syz_emit_ethernet(0x0, 0x0, 0x0) 03:41:18 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r2, 0xc008ae91, 0x0) 03:41:18 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r1, 0x9000aecf, 0x0) 03:41:18 executing program 5: r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000340), 0x802, 0x0) r1 = fcntl$dupfd(0xffffffffffffffff, 0x0, r0) write$UHID_CREATE(r1, &(0x7f0000000600)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f0000000580)=""/79, 0x4f}}, 0x120) writev(r0, &(0x7f0000000300)=[{&(0x7f0000000000)='\n\x00\x00\x00', 0x4}], 0x1) 03:41:18 executing program 2: sysinfo(&(0x7f0000000200)=""/129) 03:41:18 executing program 3: syz_emit_ethernet(0x0, 0x0, 0x0) 03:41:19 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r1 = syz_io_uring_setup(0x2de9, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000475000/0x3000)=nil, 0x3000}, 0x0) io_uring_enter(r1, 0x22ff, 0x0, 0x0, 0x0, 0x0) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) write$P9_RWSTAT(0xffffffffffffffff, &(0x7f00000002c0)={0x7}, 0x7) 03:41:19 executing program 2: r0 = timerfd_create(0x0, 0x0) ioctl$TFD_IOC_SET_TICKS(r0, 0x40085400, &(0x7f0000000000)=0x8) 03:41:19 executing program 0: openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r1, 0xc008ae91, 0x0) 03:41:19 executing program 5: r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000340), 0x802, 0x0) r1 = fcntl$dupfd(0xffffffffffffffff, 0x0, r0) write$UHID_CREATE(r1, &(0x7f0000000600)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f0000000580)=""/79, 0x4f}}, 0x120) writev(r0, &(0x7f0000000300)=[{&(0x7f0000000000)='\n\x00\x00\x00', 0x4}], 0x1) 03:41:19 executing program 3: syz_emit_ethernet(0x36, &(0x7f0000001800)={@link_local, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @broadcast}, @timestamp_reply={0x11}}}}}, 0x0) 03:41:19 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r1, 0x9000aecf, 0x0) 03:41:20 executing program 2: memfd_create(&(0x7f0000000000)='/:\x82\x00', 0x4) 03:41:20 executing program 3: syz_emit_ethernet(0x36, &(0x7f0000001800)={@link_local, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @broadcast}, @timestamp_reply={0x11}}}}}, 0x0) 03:41:20 executing program 0: openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r1, 0xc008ae91, 0x0) 03:41:20 executing program 5: r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000340), 0x802, 0x0) r1 = fcntl$dupfd(0xffffffffffffffff, 0x0, r0) write$UHID_CREATE(r1, &(0x7f0000000600)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f0000000580)=""/79, 0x4f}}, 0x120) writev(r0, &(0x7f0000000300)=[{&(0x7f0000000000)='\n\x00\x00\x00', 0x4}], 0x1) 03:41:20 executing program 2: mkdir(&(0x7f0000000280)='./file0\x00', 0x0) pipe2$9p(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000240)=ANY=[@ANYBLOB="1500000065ffff0180000008003950323030302e4c"], 0x15) r2 = dup(r1) write$FUSE_BMAP(r2, &(0x7f00000002c0)={0x18}, 0x18) write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137) mount$9p_fd(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1]) setxattr$trusted_overlay_upper(&(0x7f00000006c0)='./file0\x00', &(0x7f0000000700), &(0x7f0000009dc0)={0x0, 0xfb, 0x15, 0x0, 0x0, "dcd2e0d791f187c24fd367ce8f15953a"}, 0x15, 0x0) 03:41:20 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r1, 0x9000aecf, 0x0) [ 2657.979438][T14039] ===================================================== [ 2657.987223][T14039] BUG: KMSAN: uninit-value in p9pdu_vwritef+0x457a/0x4cf0 [ 2657.994540][T14039] p9pdu_vwritef+0x457a/0x4cf0 [ 2657.999350][T14039] p9_client_prepare_req+0xf0a/0x1710 [ 2658.004893][T14039] p9_client_rpc+0x295/0x14a0 [ 2658.009761][T14039] p9_client_write+0x670/0xf70 [ 2658.014658][T14039] v9fs_fid_xattr_set+0x3aa/0x530 [ 2658.019759][T14039] v9fs_xattr_handler_set+0x1b8/0x220 [ 2658.025279][T14039] __vfs_setxattr+0x8d4/0x920 [ 2658.030001][T14039] __vfs_setxattr_noperm+0x38c/0xe80 [ 2658.035546][T14039] __vfs_setxattr_locked+0x627/0x690 [ 2658.040886][T14039] vfs_setxattr+0x444/0x7b0 [ 2658.045531][T14039] setxattr+0x43a/0x800 [ 2658.049732][T14039] path_setxattr+0x30e/0x540 [ 2658.054475][T14039] __ia32_sys_setxattr+0x15f/0x1c0 [ 2658.059638][T14039] __do_fast_syscall_32+0x95/0xf0 [ 2658.064818][T14039] do_fast_syscall_32+0x33/0x70 [ 2658.069714][T14039] do_SYSENTER_32+0x1b/0x20 [ 2658.074375][T14039] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2658.080755][T14039] [ 2658.083179][T14039] Uninit was created at: [ 2658.087483][T14039] kmem_cache_alloc_trace+0xa8e/0x10f0 [ 2658.093076][T14039] p9_fid_create+0x81/0x470 [ 2658.097617][T14039] p9_client_walk+0x161/0xe30 [ 2658.102431][T14039] v9fs_fid_xattr_set+0x248/0x530 [ 2658.107503][T14039] v9fs_xattr_handler_set+0x1b8/0x220 [ 2658.113019][T14039] __vfs_setxattr+0x8d4/0x920 [ 2658.117745][T14039] __vfs_setxattr_noperm+0x38c/0xe80 [ 2658.123175][T14039] __vfs_setxattr_locked+0x627/0x690 [ 2658.128515][T14039] vfs_setxattr+0x444/0x7b0 [ 2658.133171][T14039] setxattr+0x43a/0x800 [ 2658.137380][T14039] path_setxattr+0x30e/0x540 [ 2658.142119][T14039] __ia32_sys_setxattr+0x15f/0x1c0 [ 2658.147280][T14039] __do_fast_syscall_32+0x95/0xf0 [ 2658.152445][T14039] do_fast_syscall_32+0x33/0x70 [ 2658.157337][T14039] do_SYSENTER_32+0x1b/0x20 [ 2658.161969][T14039] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2658.168350][T14039] [ 2658.170685][T14039] CPU: 0 PID: 14039 Comm: syz-executor.2 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2658.180983][T14039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2658.191239][T14039] ===================================================== [ 2658.198284][T14039] Disabling lock debugging due to kernel taint [ 2658.204541][T14039] Kernel panic - not syncing: kmsan.panic set ... [ 2658.211228][T14039] CPU: 0 PID: 14039 Comm: syz-executor.2 Tainted: G B 5.18.0-syzkaller-16253-g2f3064574275 #0 [ 2658.222828][T14039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2658.232915][T14039] Call Trace: [ 2658.236215][T14039] [ 2658.239159][T14039] dump_stack_lvl+0x200/0x28c [ 2658.243892][T14039] dump_stack+0x29/0x2c [ 2658.248083][T14039] panic+0x502/0xc7a [ 2658.252046][T14039] ? add_taint+0x185/0x210 [ 2658.256506][T14039] ? console_unlock+0x1bb0/0x20e0 [ 2658.261593][T14039] kmsan_report+0x2cc/0x2d0 [ 2658.266155][T14039] ? __vfs_setxattr_locked+0x627/0x690 [ 2658.271665][T14039] ? path_setxattr+0x30e/0x540 [ 2658.276494][T14039] ? __ia32_sys_setxattr+0x15f/0x1c0 [ 2658.281831][T14039] ? __do_fast_syscall_32+0x95/0xf0 [ 2658.287073][T14039] ? do_fast_syscall_32+0x33/0x70 [ 2658.292145][T14039] ? do_SYSENTER_32+0x1b/0x20 [ 2658.296888][T14039] ? entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2658.303440][T14039] ? __msan_warning+0x92/0x110 [ 2658.308252][T14039] ? p9pdu_vwritef+0x457a/0x4cf0 [ 2658.313239][T14039] ? p9_client_prepare_req+0xf0a/0x1710 [ 2658.318822][T14039] ? p9_client_rpc+0x295/0x14a0 [ 2658.323702][T14039] ? p9_client_write+0x670/0xf70 [ 2658.328679][T14039] ? v9fs_fid_xattr_set+0x3aa/0x530 [ 2658.333922][T14039] ? v9fs_xattr_handler_set+0x1b8/0x220 [ 2658.339512][T14039] ? __vfs_setxattr+0x8d4/0x920 [ 2658.344404][T14039] ? __vfs_setxattr_noperm+0x38c/0xe80 [ 2658.349911][T14039] ? __vfs_setxattr_locked+0x627/0x690 [ 2658.355412][T14039] ? vfs_setxattr+0x444/0x7b0 [ 2658.360125][T14039] ? setxattr+0x43a/0x800 [ 2658.364498][T14039] ? path_setxattr+0x30e/0x540 [ 2658.369306][T14039] ? __ia32_sys_setxattr+0x15f/0x1c0 [ 2658.374635][T14039] ? __do_fast_syscall_32+0x95/0xf0 [ 2658.379894][T14039] ? do_fast_syscall_32+0x33/0x70 [ 2658.384961][T14039] ? do_SYSENTER_32+0x1b/0x20 [ 2658.389677][T14039] ? entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2658.396231][T14039] ? __stack_depot_save+0x1b1/0x4b0 [ 2658.401487][T14039] ? preempt_count_sub+0xfc/0x340 [ 2658.406553][T14039] ? _raw_spin_unlock_irqrestore+0x79/0xb0 [ 2658.412423][T14039] ? kmsan_internal_memmove_metadata+0x200/0x350 [ 2658.418814][T14039] __msan_warning+0x92/0x110 [ 2658.423461][T14039] p9pdu_vwritef+0x457a/0x4cf0 [ 2658.428270][T14039] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2658.434130][T14039] ? p9pdu_writef+0x23c/0x280 [ 2658.438877][T14039] p9_client_prepare_req+0xf0a/0x1710 [ 2658.444291][T14039] ? kmsan_get_shadow_origin_ptr+0xe0/0xf0 [ 2658.450162][T14039] p9_client_rpc+0x295/0x14a0 [ 2658.454883][T14039] ? _raw_spin_unlock_irqrestore+0x79/0xb0 [ 2658.460749][T14039] ? __stack_depot_save+0x38d/0x4b0 [ 2658.465993][T14039] ? kmsan_get_metadata+0x33/0x220 [ 2658.471158][T14039] ? kmsan_get_metadata+0x33/0x220 [ 2658.476318][T14039] p9_client_write+0x670/0xf70 [ 2658.481144][T14039] v9fs_fid_xattr_set+0x3aa/0x530 [ 2658.486312][T14039] v9fs_xattr_handler_set+0x1b8/0x220 [ 2658.491771][T14039] __vfs_setxattr+0x8d4/0x920 [ 2658.496505][T14039] ? v9fs_xattr_handler_get+0x200/0x200 [ 2658.502104][T14039] __vfs_setxattr_noperm+0x38c/0xe80 [ 2658.507457][T14039] __vfs_setxattr_locked+0x627/0x690 [ 2658.512810][T14039] vfs_setxattr+0x444/0x7b0 [ 2658.517372][T14039] setxattr+0x43a/0x800 [ 2658.521599][T14039] ? preempt_count_sub+0xfc/0x340 [ 2658.526664][T14039] ? __mnt_want_write+0x3e0/0x450 [ 2658.531745][T14039] ? kmsan_get_metadata+0x33/0x220 [ 2658.536900][T14039] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 2658.542761][T14039] path_setxattr+0x30e/0x540 [ 2658.547415][T14039] __ia32_sys_setxattr+0x15f/0x1c0 [ 2658.552579][T14039] __do_fast_syscall_32+0x95/0xf0 [ 2658.557644][T14039] do_fast_syscall_32+0x33/0x70 [ 2658.562541][T14039] do_SYSENTER_32+0x1b/0x20 [ 2658.567079][T14039] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2658.573452][T14039] RIP: 0023:0xf7f1f549 [ 2658.577544][T14039] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 2658.597192][T14039] RSP: 002b:00000000f7f1a5cc EFLAGS: 00000296 ORIG_RAX: 00000000000000e2 [ 2658.605653][T14039] RAX: ffffffffffffffda RBX: 00000000200006c0 RCX: 0000000020000700 [ 2658.613653][T14039] RDX: 0000000020009dc0 RSI: 0000000000000015 RDI: 0000000000000000 [ 2658.621648][T14039] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2658.629762][T14039] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2658.637772][T14039] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2658.645782][T14039] [ 2658.649005][T14039] Kernel Offset: disabled [ 2658.653331][T14039] Rebooting in 86400 seconds..