dProduct=8888, bcdDevice= 0.00 [ 243.715277][ T3565] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 243.736441][ T119] usb 3-1: ath9k_htc: USB layer deinitialized 21:55:59 executing program 2: r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000300)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x81, &(0x7f0000000380)=@generic={0x2, 0x0, 0x79, "398027db", "67ec4cb938290810877773f5e11a52aa985c8c97f8dda950663cd665451e7fbd3bf63eb60a5be421544a3d194b304ef0f4af9d35db09c8780836e570988d9ec5e860e76504bf41cf7b60fe05cdc75d5c41f81dd4568595dab91f5922b594ab765c7ea4d86d3ef16c6f421676929762ba4b88a59f49407a8a22"}) 21:55:59 executing program 1: socketpair(0x2, 0x1, 0x3f, &(0x7f00000002c0)) [ 243.808271][ T3561] usb 4-1: USB disconnect, device number 4 [ 243.867838][ T3565] usb 6-1: config 0 descriptor?? 21:56:00 executing program 0: syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x10, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}}}]}}]}}, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x2, [{0x2, &(0x7f0000000140)=@string={0x2}}, {0x2, &(0x7f0000000280)=@string={0x2}}]}) 21:56:00 executing program 4: syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f00000003c0)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5c, 0x2, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, {0x6}}}}}}]}}, &(0x7f0000000980)={0x0, 0x0, 0x0, 0x0, 0x3, [{0x14, &(0x7f00000005c0)=@string={0x14, 0x3, "3a4cbf8facd8b4a6bdfedafe68b252bf6085"}}, {0x4, &(0x7f0000000540)=@lang_id={0x4, 0x3, 0x2809}}, {0x35, &(0x7f0000000780)=@string={0x35, 0x3, "7e0b8e6af084bf87071cc699c1e74b09694cb96a825a978ad50c1eb0da2ec3ba91f7a5c85266a0e64e59c5282176632a993bac"}}]}) [ 244.360795][ T3565] smartjoyplus 0003:0925:8888.0004: item fetching failed at offset 1/5 21:56:00 executing program 3: r0 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000000), 0x2) ioctl$UDMABUF_CREATE_LIST(r0, 0x40087543, &(0x7f0000000040)={0x0, 0x2, [{}, {0xffffffffffffffff, 0x0, 0x0, 0x4000}]}) [ 244.413512][ T3565] smartjoyplus 0003:0925:8888.0004: parse failed [ 244.421683][ T3565] smartjoyplus: probe of 0003:0925:8888.0004 failed with error -22 [ 244.533316][ T3561] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 244.602237][ T3565] usb 6-1: USB disconnect, device number 6 [ 244.683304][ T3563] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 244.903438][ T3566] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 244.923635][ T3563] usb 1-1: Using ep0 maxpacket: 16 21:56:01 executing program 1: socketpair(0xa, 0x0, 0x5f5e0ff, &(0x7f00000002c0)) 21:56:01 executing program 3: r0 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000000), 0x2) ioctl$UDMABUF_CREATE_LIST(r0, 0x40087543, &(0x7f0000000040)={0x0, 0x2, [{}, {0xffffffffffffffff, 0x0, 0x0, 0x4000}]}) [ 245.043928][ T3563] usb 1-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0 [ 245.106448][ T3561] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 245.111503][ T3563] usb 1-1: language id specifier not provided by device, defaulting to English [ 245.117490][ T3561] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 245.117604][ T3561] usb 3-1: Product: syz [ 245.117684][ T3561] usb 3-1: Manufacturer: syz [ 245.146010][ T3561] usb 3-1: SerialNumber: syz 21:56:01 executing program 5: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x925, 0x8888, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) [ 245.304127][ T3566] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 245.318795][ T3566] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 245.330446][ T3566] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0 [ 245.341039][ T3566] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0 [ 245.355555][ T3566] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0 [ 245.370895][ T3566] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0 [ 245.383333][ T3563] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 245.394321][ T3563] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 245.403240][ T3563] usb 1-1: Product: syz [ 245.408157][ T3563] usb 1-1: SerialNumber: syz [ 245.445566][ T3561] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 245.486091][ T3563] cdc_ether: probe of 1-1:1.0 failed with error -22 [ 245.573378][ T3566] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 245.584226][ T3566] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 245.594236][ T3566] usb 5-1: Product: ୾檎蓰螿ᰇ駆ो䱩檹媂誗ೕ뀞⻚뫃좥晒奎⣅瘡⩣㮙 [ 245.608077][ T3566] usb 5-1: Manufacturer: ⠉ [ 245.613376][ T3566] usb 5-1: SerialNumber: syz [ 245.681598][ T3619] usb 1-1: USB disconnect, device number 6 21:56:01 executing program 3: pipe2$watch_queue(&(0x7f0000000000), 0x80) getresuid(&(0x7f0000000440), &(0x7f0000000480), &(0x7f00000004c0)) 21:56:01 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000000)={@multicast1, @broadcast}, 0x10) [ 245.987132][ T3563] usb 6-1: new high-speed USB device number 7 using dummy_hcd [ 246.046721][ T3566] cdc_ncm 5-1:1.0: bind() failure [ 246.120483][ T3566] cdc_ncm 5-1:1.1: CDC Union missing and no IAD found [ 246.128026][ T3566] cdc_ncm 5-1:1.1: bind() failure [ 246.173686][ T3558] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 21:56:02 executing program 0: syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x10, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}}}]}}]}}, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x3, [{0x2, &(0x7f0000000140)=@string={0x2}}, {0x4, &(0x7f0000000240)=@lang_id={0x4, 0x3, 0x408}}, {0x0, 0x0}]}) [ 246.239994][ T3566] usb 5-1: USB disconnect, device number 5 21:56:02 executing program 3: select(0x40, &(0x7f0000000040), &(0x7f0000000080), 0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x2710}) [ 246.357873][ T3563] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 246.371657][ T3563] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 246.383499][ T3563] usb 6-1: New USB device found, idVendor=0925, idProduct=8888, bcdDevice= 0.00 [ 246.393518][ T3563] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 246.577451][ T3563] usb 6-1: config 0 descriptor?? [ 246.709615][ T3566] usb 3-1: USB disconnect, device number 6 [ 247.074222][ T119] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 247.113881][ T3563] usbhid 6-1:0.0: can't add hid device: -71 [ 247.120582][ T3563] usbhid: probe of 6-1:0.0 failed with error -71 [ 247.144809][ T3563] usb 6-1: USB disconnect, device number 7 21:56:03 executing program 2: syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000300)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) 21:56:03 executing program 1: r0 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000000), 0x2) ioctl$UDMABUF_CREATE_LIST(r0, 0x541b, 0x0) 21:56:03 executing program 4: syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f00000003c0)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5c, 0x2, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, {0x6}}}}}}]}}, &(0x7f0000000980)={0x0, 0x0, 0x0, 0x0, 0x3, [{0x14, &(0x7f00000005c0)=@string={0x14, 0x3, "3a4cbf8facd8b4a6bdfedafe68b252bf6085"}}, {0x4, &(0x7f0000000540)=@lang_id={0x4, 0x3, 0x2809}}, {0x35, &(0x7f0000000780)=@string={0x35, 0x3, "7e0b8e6af084bf87071cc699c1e74b09694cb96a825a978ad50c1eb0da2ec3ba91f7a5c85266a0e64e59c5282176632a993bac"}}]}) 21:56:03 executing program 3: r0 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$IP_VS_SO_SET_TIMEOUT(r0, 0x0, 0x48a, &(0x7f00000002c0), 0xc) [ 247.264222][ T3558] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 247.273560][ T3558] ath9k_htc: Failed to initialize the device [ 247.327783][ T3566] usb 3-1: ath9k_htc: USB layer deinitialized [ 247.343392][ T119] usb 1-1: Using ep0 maxpacket: 16 [ 247.463387][ T119] usb 1-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0 21:56:03 executing program 1: syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x10, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}}}]}}]}}, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x3, [{0x2, &(0x7f0000000140)=@string={0x2}}, {0x4, &(0x7f0000000240)=@lang_id={0x4}}, {0x38, &(0x7f0000000280)=@string={0x38, 0x3, "05e108d54af59790f990951d63d95f55c1df9a85f7c424e382045f16ed16c38247bc7bec462e152ca798a141e41cbf098608050b2581"}}]}) 21:56:03 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_mreqsrc(r0, 0x0, 0x25, &(0x7f0000000080)={@loopback, @empty, @broadcast}, 0xc) [ 247.553427][ T119] usb 1-1: language id specifier not provided by device, defaulting to English 21:56:03 executing program 5: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x925, 0x8888, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) [ 247.683671][ T3565] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 247.894570][ T119] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 247.907334][ T119] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 247.915751][ T119] usb 1-1: Manufacturer: Ј [ 247.920519][ T119] usb 1-1: SerialNumber: syz 21:56:04 executing program 3: r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000300)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x41, &(0x7f0000000380)=@generic={0x0, 0x0, 0x39, "398027db", "67ec4cb938290810877773f5e11a52aa985c8c97f8dda950663cd665451e7fbd3bf63eb60a5be421544a3d194b304ef0f4af9d35db09c87808"}) [ 247.996188][ T119] cdc_ether: probe of 1-1:1.0 failed with error -22 [ 248.043821][ T3565] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 248.056501][ T3565] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 248.067870][ T3565] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0 [ 248.081718][ T3565] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0 [ 248.096148][ T3565] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0 [ 248.108334][ T3565] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0 [ 248.204821][ T3566] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 248.215806][ T119] usb 1-1: USB disconnect, device number 7 [ 248.284345][ T3563] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 248.324167][ T3565] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 248.335398][ T3565] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 248.345604][ T3565] usb 5-1: Product: ୾檎蓰螿ᰇ駆ो䱩檹媂誗ೕ뀞⻚뫃좥晒奎⣅瘡⩣㮙 [ 248.362996][ T3565] usb 5-1: Manufacturer: ⠉ [ 248.368061][ T3565] usb 5-1: SerialNumber: syz [ 248.443608][ T3560] usb 6-1: new high-speed USB device number 8 using dummy_hcd [ 248.544367][ T25] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 248.574899][ T3563] usb 2-1: Using ep0 maxpacket: 16 [ 248.675581][ T3565] cdc_ncm 5-1:1.0: bind() failure [ 248.693814][ T3565] cdc_ncm 5-1:1.1: CDC Union missing and no IAD found [ 248.704215][ T3565] cdc_ncm 5-1:1.1: bind() failure [ 248.720545][ T3563] usb 2-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0 21:56:04 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) accept4$inet(r0, 0x0, 0x0, 0x40000) [ 248.776925][ T3563] usb 2-1: language id specifier not provided by device, defaulting to English [ 248.806546][ T3565] usb 5-1: USB disconnect, device number 6 [ 248.823257][ T3566] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 248.833959][ T3566] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 248.845806][ T3566] usb 3-1: Product: syz [ 248.851158][ T3566] usb 3-1: Manufacturer: syz [ 248.856600][ T3566] usb 3-1: SerialNumber: syz [ 248.866160][ T3560] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 248.878820][ T3560] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 248.889803][ T3560] usb 6-1: New USB device found, idVendor=0925, idProduct=8888, bcdDevice= 0.00 [ 248.899831][ T3560] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 248.935422][ T3560] usb 6-1: config 0 descriptor?? [ 248.964079][ T3563] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 248.975310][ T3563] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 248.984262][ T3563] usb 2-1: Product: 픈邗郹ᶕ啟薚쓷҂ᙟ᛭苃뱇⹆Ⱅ颧䆡᳤িࢆଅ脥 [ 248.996652][ T3563] usb 2-1: SerialNumber: syz [ 249.006775][ T3566] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 249.128669][ T3563] cdc_ether: probe of 2-1:1.0 failed with error -22 21:56:05 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$inet_mreq(r0, 0x0, 0x3, 0x0, &(0x7f0000000240)) [ 249.285313][ T25] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 249.296355][ T25] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 249.305932][ T25] usb 4-1: Product: syz [ 249.310303][ T25] usb 4-1: Manufacturer: syz [ 249.315500][ T25] usb 4-1: SerialNumber: syz 21:56:05 executing program 0: r0 = socket$inet_smc(0x2b, 0x1, 0x0) getsockopt$IPT_SO_GET_REVISION_MATCH(r0, 0x0, 0x42, &(0x7f0000000040)={'ipvs\x00'}, &(0x7f0000000080)=0x1e) [ 249.437665][ T3566] usb 2-1: USB disconnect, device number 3 [ 249.476290][ T25] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 249.495597][ T3560] usbhid 6-1:0.0: can't add hid device: -71 [ 249.504387][ T3560] usbhid: probe of 6-1:0.0 failed with error -71 21:56:05 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$inet_pktinfo(r0, 0x0, 0x8, 0x0, &(0x7f00000025c0)=0xfafdff1ffbdf0def) [ 249.561002][ T3560] usb 6-1: USB disconnect, device number 8 [ 249.674224][ T119] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 249.882804][ T3558] usb 3-1: USB disconnect, device number 7 [ 250.228076][ T3565] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 21:56:06 executing program 1: r0 = socket$pppl2tp(0x18, 0x1, 0x1) ioctl$PPPIOCGMRU(r0, 0x5452, 0x0) syz_genetlink_get_family_id$devlink(&(0x7f0000001200), 0xffffffffffffffff) 21:56:06 executing program 0: select(0x40, &(0x7f0000000140), 0x0, 0x0, 0x0) 21:56:06 executing program 2: syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000300)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) 21:56:06 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000480)={@loopback, @local}, 0x10) 21:56:06 executing program 5: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x925, 0x8888, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 21:56:06 executing program 0: r0 = socket$pppl2tp(0x18, 0x1, 0x1) ioctl$PPPIOCGMRU(r0, 0x2, 0x0) clock_gettime(0x1, &(0x7f0000000000)) 21:56:06 executing program 4: socket$key(0x2, 0x3, 0x2) [ 250.660633][ T3566] usb 4-1: USB disconnect, device number 5 [ 250.704783][ T119] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 250.714009][ T119] ath9k_htc: Failed to initialize the device [ 250.722967][ T3558] usb 3-1: ath9k_htc: USB layer deinitialized [ 250.794089][ T3560] usb 6-1: new high-speed USB device number 9 using dummy_hcd [ 251.163554][ T3560] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 251.177150][ T3560] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 251.184153][ T3558] usb 3-1: new high-speed USB device number 8 using dummy_hcd [ 251.189578][ T3560] usb 6-1: New USB device found, idVendor=0925, idProduct=8888, bcdDevice= 0.00 21:56:07 executing program 3: r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000300)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x41, &(0x7f0000000380)=@generic={0x0, 0x0, 0x39, "398027db", "67ec4cb938290810877773f5e11a52aa985c8c97f8dda950663cd665451e7fbd3bf63eb60a5be421544a3d194b304ef0f4af9d35db09c87808"}) 21:56:07 executing program 1: select(0x40, &(0x7f0000000040), 0x0, 0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x2710}) 21:56:07 executing program 0: socketpair(0xa, 0x3, 0x3f, &(0x7f00000002c0)) 21:56:07 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_buf(r0, 0x0, 0x11, 0x0, 0x0) [ 251.207834][ T3560] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 251.223317][ T3560] usb 6-1: config 0 descriptor?? [ 251.263317][ T3565] ath9k_htc 4-1:1.0: ath9k_htc: Target is unresponsive [ 251.273888][ T3565] ath9k_htc: Failed to initialize the device [ 251.372158][ T3566] usb 4-1: ath9k_htc: USB layer deinitialized 21:56:07 executing program 0: r0 = syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f00000003c0)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x60, 0x2, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, {0x6}, [@acm={0x4}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{}, {{0x9, 0x5, 0x3, 0x2, 0x0, 0x3f}}}}}}}]}}, 0x0) syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0) 21:56:07 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_LEAVE_GROUP(r0, 0x0, 0x23, 0x0, 0x0) 21:56:07 executing program 4: r0 = syz_open_dev$loop(&(0x7f00000000c0), 0x0, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$LOOP_CHANGE_FD(r0, 0x4c06, r1) [ 251.743929][ T3558] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 251.756504][ T3558] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 251.766459][ T3558] usb 3-1: Product: syz [ 251.771469][ T3558] usb 3-1: Manufacturer: syz [ 251.777239][ T3558] usb 3-1: SerialNumber: syz [ 251.793480][ T3560] usbhid 6-1:0.0: can't add hid device: -71 [ 251.801791][ T3560] usbhid: probe of 6-1:0.0 failed with error -71 [ 251.886097][ T3558] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 251.911225][ T3560] usb 6-1: USB disconnect, device number 9 [ 252.138251][ T3619] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 252.213965][ T3566] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 252.495052][ T3561] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 252.601904][ T3566] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 252.614299][ T3566] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 252.625013][ T3566] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0 [ 252.636541][ T3566] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0 [ 252.648876][ T3566] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0 [ 252.661254][ T3566] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0 [ 252.716311][ T119] usb 3-1: USB disconnect, device number 8 [ 252.768301][ T3619] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 252.778952][ T3619] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 252.788369][ T3619] usb 4-1: Product: syz [ 252.793338][ T3619] usb 4-1: Manufacturer: syz [ 252.800164][ T3619] usb 4-1: SerialNumber: syz [ 252.853991][ T3566] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 252.855939][ T3619] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 252.864583][ T3566] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 252.864704][ T3566] usb 1-1: Product: syz [ 252.864786][ T3566] usb 1-1: Manufacturer: syz [ 252.864872][ T3566] usb 1-1: SerialNumber: syz 21:56:09 executing program 2: syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000300)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) 21:56:09 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x2c, &(0x7f0000000c40)={0x0, 0x0, 0xab, {0xab, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab91cd7abf7a917f376386f7e92afc65e75c880a55d2877146ab5f476c1287ecb3e4003547007c60a0466f77cc3abce7d506197b7602e5face683fd5b62746db4fde2e52887d025b1d182565df701612bbacca6413"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) 21:56:09 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f0000000040)={0x2, 0x0, @broadcast}, 0x10) 21:56:09 executing program 5: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x925, 0x8888, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x6, {[@local, @main=@item_4={0x3, 0x0, 0x0, "8b707542"}]}}, 0x0}, 0x0) 21:56:09 executing program 1: r0 = socket$pppl2tp(0x18, 0x1, 0x1) r1 = syz_open_dev$loop(&(0x7f0000000180), 0x0, 0x0) ioctl$LOOP_SET_FD(r1, 0x4c00, r0) [ 253.384242][ T3566] cdc_ncm 1-1:1.0: bind() failure [ 253.448353][ T3566] cdc_ncm: probe of 1-1:1.1 failed with error -71 [ 253.487049][ T3566] cdc_mbim: probe of 1-1:1.1 failed with error -71 [ 253.514582][ T3566] usbtest: probe of 1-1:1.1 failed with error -71 [ 253.523603][ T20] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 253.583451][ T3561] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 253.591777][ T3561] ath9k_htc: Failed to initialize the device [ 253.600258][ T119] usb 3-1: ath9k_htc: USB layer deinitialized [ 253.613701][ T3619] usb 6-1: new high-speed USB device number 10 using dummy_hcd [ 253.616490][ T3566] usb 1-1: USB disconnect, device number 8 [ 253.633473][ T3558] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 253.985039][ T3619] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 253.999629][ T3619] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 254.004291][ T119] usb 3-1: new high-speed USB device number 9 using dummy_hcd [ 254.011294][ T3619] usb 6-1: New USB device found, idVendor=0925, idProduct=8888, bcdDevice= 0.00 [ 254.029226][ T3619] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 254.041973][ T3558] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 254.057099][ T3558] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 254.069272][ T3558] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 254.081456][ T3558] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 254.167240][ T3558] usb 5-1: config 0 descriptor?? [ 254.170118][ T3560] usb 4-1: USB disconnect, device number 6 [ 254.263830][ T3619] usb 6-1: config 0 descriptor?? [ 254.563401][ T119] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 254.574015][ T119] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 254.582659][ T119] usb 3-1: Product: syz [ 254.587534][ T119] usb 3-1: Manufacturer: syz [ 254.594274][ T119] usb 3-1: SerialNumber: syz [ 254.625439][ T20] ath9k_htc 4-1:1.0: ath9k_htc: Target is unresponsive [ 254.634968][ T20] ath9k_htc: Failed to initialize the device [ 254.647903][ T3560] usb 4-1: ath9k_htc: USB layer deinitialized [ 254.669114][ T119] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested 21:56:10 executing program 3: r0 = socket(0x23, 0x2, 0x0) recvmsg$can_bcm(r0, &(0x7f0000000840)={0x0, 0x0, 0x0}, 0x0) 21:56:10 executing program 0: syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f00000003c0)={{0x12, 0x1, 0x250, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5c, 0x2, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, {0x6}}}}}}]}}, &(0x7f0000000980)={0x0, 0x0, 0x8, &(0x7f0000000440)={0x5, 0xf, 0x8, 0x1, [@ptm_cap={0x3}]}}) 21:56:10 executing program 1: syz_usb_ep_write$ath9k_ep2(0xffffffffffffffff, 0x83, 0x40, &(0x7f0000000380)=@generic={0x0, 0x0, 0x38, "398027db", "67ec4cb938290810877773f5e11a52aa985c8c97f8dda950663cd665451e7fbd3bf63eb60a5be421544a3d194b304ef0f4af9d35db09c878"}) [ 254.737685][ T3558] kye 0003:0458:5019.0005: unbalanced delimiter at end of report description [ 254.824318][ T3619] usbhid 6-1:0.0: can't add hid device: -71 [ 254.830881][ T3619] usbhid: probe of 6-1:0.0 failed with error -71 [ 254.846095][ T3558] kye 0003:0458:5019.0005: parse failed [ 254.852215][ T3558] kye: probe of 0003:0458:5019.0005 failed with error -22 [ 254.930983][ T3619] usb 6-1: USB disconnect, device number 10 [ 255.044238][ T3558] usb 5-1: USB disconnect, device number 7 [ 255.184328][ T119] usb 1-1: new high-speed USB device number 9 using dummy_hcd 21:56:11 executing program 5: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x925, 0x8888, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x6, {[@local, @main=@item_4={0x3, 0x0, 0x0, "8b707542"}]}}, 0x0}, 0x0) [ 255.304368][ T3566] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 21:56:11 executing program 1: r0 = socket(0x1, 0x5, 0x0) ioctl$sock_bt_bnep_BNEPGETCONNINFO(r0, 0x800442d3, 0x0) 21:56:11 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x2c, &(0x7f0000000c40)={0x0, 0x0, 0xab, {0xab, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab91cd7abf7a917f376386f7e92afc65e75c880a55d2877146ab5f476c1287ecb3e4003547007c60a0466f77cc3abce7d506197b7602e5face683fd5b62746db4fde2e52887d025b1d182565df701612bbacca6413"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) [ 255.553957][ T3558] usb 3-1: USB disconnect, device number 9 [ 255.714706][ T119] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 255.728833][ T119] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 255.739516][ T119] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0 [ 255.750904][ T119] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0 [ 255.764896][ T119] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0 [ 255.774945][ T119] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0 21:56:11 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB="ec010000190001002dbd7000fcdbdf25fc020000000000000000010000c0f301ffffffff0000000000000000000000004e2100004e1e00070a"], 0x1ec}}, 0x0) [ 256.053478][ T4220] netlink: 312 bytes leftover after parsing attributes in process `syz-executor.1'. 21:56:12 executing program 2: syz_usb_ep_write$ath9k_ep2(0xffffffffffffffff, 0x83, 0x81, &(0x7f0000000380)=@generic={0x2, 0x0, 0x79, "398027db", "67ec4cb938290810877773f5e11a52aa985c8c97f8dda950663cd665451e7fbd3bf63eb60a5be421544a3d194b304ef0f4af9d35db09c8780836e570988d9ec5e860e76504bf41cf7b60fe05cdc75d5c41f81dd4568595dab91f5922b594ab765c7ea4d86d3ef16c6f421676929762ba4b88a59f49407a8a22"}) 21:56:12 executing program 3: r0 = socket(0x2a, 0x2, 0x0) sendmsg$can_bcm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x48}}, 0x0) [ 256.104472][ T119] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 256.114183][ T119] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 256.122505][ T119] usb 1-1: Product: syz [ 256.128093][ T119] usb 1-1: Manufacturer: syz [ 256.133873][ T119] usb 1-1: SerialNumber: syz [ 256.144755][ T3560] usb 6-1: new high-speed USB device number 11 using dummy_hcd 21:56:12 executing program 1: socketpair(0x1e, 0x5, 0x0, &(0x7f0000000400)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_inet_sctp_SIOCINQ(r0, 0x8940, 0x0) 21:56:12 executing program 3: r0 = socket(0xa, 0x5, 0x0) ioctl$sock_bt_bnep_BNEPCONNDEL(r0, 0x400442c9, 0x0) [ 256.313599][ T3565] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 256.384712][ T3566] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 256.392569][ T3566] ath9k_htc: Failed to initialize the device [ 256.429779][ T3558] usb 3-1: ath9k_htc: USB layer deinitialized [ 256.495205][ T119] cdc_ncm 1-1:1.0: bind() failure [ 256.513893][ T3560] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 256.526272][ T3560] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 256.537028][ T3560] usb 6-1: New USB device found, idVendor=0925, idProduct=8888, bcdDevice= 0.00 [ 256.546721][ T3560] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 256.572632][ T119] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found [ 256.579974][ T119] cdc_ncm 1-1:1.1: bind() failure [ 256.670904][ T119] usb 1-1: USB disconnect, device number 9 [ 256.701368][ T3560] usb 6-1: config 0 descriptor?? 21:56:12 executing program 1: r0 = socket(0x1, 0x2, 0x0) sendmsg$can_bcm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0) [ 256.729663][ T3565] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 256.741568][ T3565] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 256.751840][ T3565] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 256.761313][ T3565] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 21:56:12 executing program 3: r0 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000200), 0x20001, 0x0) ioctl$SNDCTL_DSP_SYNC(r0, 0x5001, 0x0) [ 256.906444][ T3565] usb 5-1: config 0 descriptor?? 21:56:13 executing program 0: unshare(0x40000000) r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000000040)=[{&(0x7f0000000000)="290000002000190f00003fffffffda060200000000e80001dd0000040d000d00ea1100000005000000", 0x29}], 0x1) 21:56:13 executing program 1: socketpair(0x1e, 0x5, 0x0, &(0x7f0000000400)={0xffffffffffffffff, 0xffffffffffffffff}) getpeername$llc(r0, &(0x7f0000000000)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @remote}, &(0x7f0000000040)=0x10) [ 257.284573][ T3560] usbhid 6-1:0.0: can't add hid device: -71 [ 257.291305][ T3560] usbhid: probe of 6-1:0.0 failed with error -71 [ 257.386361][ T3560] usb 6-1: USB disconnect, device number 11 [ 257.412585][ T3565] kye 0003:0458:5019.0006: unbalanced delimiter at end of report description [ 257.512087][ T3565] kye 0003:0458:5019.0006: parse failed [ 257.518200][ T3565] kye: probe of 0003:0458:5019.0006 failed with error -22 [ 257.767780][ T3558] usb 5-1: USB disconnect, device number 8 21:56:13 executing program 5: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x925, 0x8888, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x6, {[@local, @main=@item_4={0x3, 0x0, 0x0, "8b707542"}]}}, 0x0}, 0x0) 21:56:13 executing program 2: syz_usb_ep_write$ath9k_ep2(0xffffffffffffffff, 0x83, 0x81, &(0x7f0000000380)=@generic={0x2, 0x0, 0x79, "398027db", "67ec4cb938290810877773f5e11a52aa985c8c97f8dda950663cd665451e7fbd3bf63eb60a5be421544a3d194b304ef0f4af9d35db09c8780836e570988d9ec5e860e76504bf41cf7b60fe05cdc75d5c41f81dd4568595dab91f5922b594ab765c7ea4d86d3ef16c6f421676929762ba4b88a59f49407a8a22"}) 21:56:14 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x2c, &(0x7f0000000c40)={0x0, 0x0, 0xab, {0xab, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab91cd7abf7a917f376386f7e92afc65e75c880a55d2877146ab5f476c1287ecb3e4003547007c60a0466f77cc3abce7d506197b7602e5face683fd5b62746db4fde2e52887d025b1d182565df701612bbacca6413"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) 21:56:14 executing program 1: socketpair(0x26, 0x5, 0x0, &(0x7f0000000400)) 21:56:14 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x4f, 0x92, 0xb9, 0x8, 0x1557, 0x7720, 0xb7eb, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x27, 0x85, 0xe6}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000040)={0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b00)={0x40, 0x13, 0x6, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x40, 0x19, 0x2, "a8cd"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 21:56:14 executing program 0: r0 = socket(0x23, 0x2, 0x0) sendmsg$can_bcm(r0, &(0x7f0000000180)={&(0x7f0000000080)={0xa}, 0x10, &(0x7f0000000140)={0x0}}, 0x0) [ 258.312976][ T3566] usb 6-1: new high-speed USB device number 12 using dummy_hcd 21:56:14 executing program 0: r0 = socket(0x15, 0x5, 0x0) sendmsg$can_bcm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0) 21:56:14 executing program 2: syz_usb_ep_write$ath9k_ep2(0xffffffffffffffff, 0x83, 0x81, &(0x7f0000000380)=@generic={0x2, 0x0, 0x79, "398027db", "67ec4cb938290810877773f5e11a52aa985c8c97f8dda950663cd665451e7fbd3bf63eb60a5be421544a3d194b304ef0f4af9d35db09c8780836e570988d9ec5e860e76504bf41cf7b60fe05cdc75d5c41f81dd4568595dab91f5922b594ab765c7ea4d86d3ef16c6f421676929762ba4b88a59f49407a8a22"}) 21:56:14 executing program 1: r0 = socket(0x11, 0x2, 0x0) connect$can_bcm(r0, 0x0, 0x0) [ 258.673732][ T3566] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 258.685423][ T3566] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 258.695725][ T3566] usb 6-1: New USB device found, idVendor=0925, idProduct=8888, bcdDevice= 0.00 [ 258.705715][ T3566] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 258.715319][ T3560] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 258.730353][ T3566] usb 6-1: config 0 descriptor?? [ 258.930060][ T3619] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 258.965512][ T3560] usb 4-1: Using ep0 maxpacket: 8 21:56:15 executing program 1: r0 = socket(0xa, 0x2, 0x0) accept4$llc(r0, 0x0, 0x0, 0x0) 21:56:15 executing program 0: r0 = socket(0x10, 0x2, 0x0) getsockopt$inet_sctp_SCTP_RECVRCVINFO(r0, 0x84, 0x20, 0x0, 0x0) [ 259.083826][ T3560] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 259.094191][ T3560] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 259.158816][ T3560] usb 4-1: config 0 descriptor?? [ 259.273507][ T3566] usbhid 6-1:0.0: can't add hid device: -71 [ 259.281683][ T3566] usbhid: probe of 6-1:0.0 failed with error -71 [ 259.333264][ T3619] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 259.344938][ T3619] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 259.346895][ T3566] usb 6-1: USB disconnect, device number 12 [ 259.356284][ T3619] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 259.372000][ T3619] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 21:56:15 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000003c0)=0xae) prlimit64(0x0, 0x3, &(0x7f0000000280), &(0x7f0000000300)) r3 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r3, &(0x7f00000000c0)={0x2, 0x4e20, @empty}, 0x10) sendto$inet(r3, &(0x7f0000000140), 0xffffffffffffff58, 0x20008008, &(0x7f0000000100)={0x2, 0x4e20}, 0x10) recvfrom(r3, &(0x7f0000000480)=""/110, 0xfffffe32, 0x700, 0x0, 0xfffffffffffffecb) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x40000, 0x6, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef0100010000", 0x3f, 0x400}, {&(0x7f0000001f40)}, {0x0, 0x0, 0xbff}, {0x0}, {0x0, 0x0, 0x2}, {0x0, 0x0, 0x80000000000000}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) sched_setattr(0x0, 0x0, 0x0) ioctl$sock_FIOGETOWN(r2, 0x8903, &(0x7f0000000040)=0x0) ptrace$cont(0x20, r4, 0x2593, 0x4) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) [ 259.651185][ T3619] usb 5-1: config 0 descriptor?? 21:56:15 executing program 5: syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f00000002c0)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x6, {[@local, @main=@item_4={0x3, 0x0, 0x0, "8b707542"}]}}, 0x0}, 0x0) 21:56:15 executing program 2: r0 = syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x81, &(0x7f0000000380)=@generic={0x2, 0x0, 0x79, "398027db", "67ec4cb938290810877773f5e11a52aa985c8c97f8dda950663cd665451e7fbd3bf63eb60a5be421544a3d194b304ef0f4af9d35db09c8780836e570988d9ec5e860e76504bf41cf7b60fe05cdc75d5c41f81dd4568595dab91f5922b594ab765c7ea4d86d3ef16c6f421676929762ba4b88a59f49407a8a22"}) [ 260.010955][ T4266] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 260.154168][ T3619] kye 0003:0458:5019.0007: unbalanced delimiter at end of report description [ 260.190424][ T3619] kye 0003:0458:5019.0007: parse failed [ 260.196537][ T3619] kye: probe of 0003:0458:5019.0007 failed with error -22 [ 260.244239][ T4270] loop0: detected capacity change from 0 to 512 [ 260.407701][ T3566] usb 5-1: USB disconnect, device number 9 [ 260.507197][ T4270] EXT4-fs (loop0): invalid inodes per group: 67108896 [ 260.507197][ T4270] [ 260.713750][ T3560] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71 [ 260.724325][ T3560] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to send software reset: ffffffb9 [ 260.736971][ T3560] asix: probe of 4-1:0.0 failed with error -71 [ 260.893546][ T3560] usb 4-1: USB disconnect, device number 7 21:56:17 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x2c, &(0x7f0000000c40)={0x0, 0x0, 0xab, {0xab, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab91cd7abf7a917f376386f7e92afc65e75c880a55d2877146ab5f476c1287ecb3e4003547007c60a0466f77cc3abce7d506197b7602e5face683fd5b62746db4fde2e52887d025b1d182565df701612bbacca6413"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) 21:56:17 executing program 1: r0 = socket(0x10, 0x2, 0x0) recvmsg$can_bcm(r0, &(0x7f00000004c0)={0x0, 0x0, 0x0}, 0x60) 21:56:17 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x4f, 0x92, 0xb9, 0x8, 0x1557, 0x7720, 0xb7eb, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x27, 0x85, 0xe6}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000040)={0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b00)={0x40, 0x13, 0x6, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x40, 0x19, 0x2, "a8cd"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 21:56:17 executing program 2: r0 = syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x81, &(0x7f0000000380)=@generic={0x2, 0x0, 0x79, "398027db", "67ec4cb938290810877773f5e11a52aa985c8c97f8dda950663cd665451e7fbd3bf63eb60a5be421544a3d194b304ef0f4af9d35db09c8780836e570988d9ec5e860e76504bf41cf7b60fe05cdc75d5c41f81dd4568595dab91f5922b594ab765c7ea4d86d3ef16c6f421676929762ba4b88a59f49407a8a22"}) 21:56:17 executing program 5: syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f00000002c0)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x6, {[@local, @main=@item_4={0x3, 0x0, 0x0, "8b707542"}]}}, 0x0}, 0x0) 21:56:17 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl$sock_bt_cmtp_CMTPGETCONNINFO(r0, 0x800443d3, 0x0) 21:56:17 executing program 1: r0 = socket(0xa, 0x2, 0x0) sendmsg$can_bcm(r0, &(0x7f0000000180)={&(0x7f0000000080), 0x10, &(0x7f0000000140)={0x0, 0xffffff7f}}, 0x0) [ 261.813343][ T3560] usb 5-1: new high-speed USB device number 10 using dummy_hcd [ 261.843573][ T119] usb 4-1: new high-speed USB device number 8 using dummy_hcd 21:56:18 executing program 5: syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f00000002c0)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x6, {[@local, @main=@item_4={0x3, 0x0, 0x0, "8b707542"}]}}, 0x0}, 0x0) 21:56:18 executing program 2: r0 = syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x81, &(0x7f0000000380)=@generic={0x2, 0x0, 0x79, "398027db", "67ec4cb938290810877773f5e11a52aa985c8c97f8dda950663cd665451e7fbd3bf63eb60a5be421544a3d194b304ef0f4af9d35db09c8780836e570988d9ec5e860e76504bf41cf7b60fe05cdc75d5c41f81dd4568595dab91f5922b594ab765c7ea4d86d3ef16c6f421676929762ba4b88a59f49407a8a22"}) [ 262.083421][ T119] usb 4-1: Using ep0 maxpacket: 8 [ 262.173657][ T3560] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 262.186816][ T3560] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 262.197309][ T3560] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 262.208466][ T3560] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 262.218208][ T119] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 262.228162][ T119] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 262.290471][ T119] usb 4-1: config 0 descriptor?? [ 262.400327][ T3560] usb 5-1: config 0 descriptor?? [ 262.552451][ T4265] not chained 10000 origins [ 262.557874][ T4265] CPU: 1 PID: 4265 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 262.569422][ T4265] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 262.580216][ T4265] Call Trace: [ 262.583836][ T4265] [ 262.586954][ T4265] dump_stack_lvl+0x1c8/0x256 [ 262.592274][ T4265] dump_stack+0x1a/0x1c [ 262.597669][ T4265] kmsan_internal_chain_origin+0x78/0x120 [ 262.604032][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 262.610388][ T4265] ? ____sys_recvmsg+0x5c1/0x810 [ 262.616415][ T4265] ? ___sys_recvmsg+0x217/0x840 [ 262.621698][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 262.627776][ T4265] ? ____sys_recvmsg+0x5c1/0x810 [ 262.633068][ T4265] ? kfree+0x44/0x980 [ 262.637536][ T4265] ? ___sys_recvmsg+0x248/0x840 [ 262.642666][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 262.649636][ T4265] ? get_compat_msghdr+0x51/0x720 [ 262.654814][ T4265] ? ___sys_recvmsg+0x18c/0x840 [ 262.660201][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 262.666196][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 262.672623][ T4265] ? should_fail+0x3f/0x810 [ 262.677482][ T4265] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 262.684340][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 262.691163][ T4265] __msan_chain_origin+0xbd/0x140 [ 262.696640][ T4265] get_compat_msghdr+0x4fc/0x720 [ 262.701722][ T4265] ___sys_recvmsg+0x18c/0x840 [ 262.706734][ T4265] ? __stack_depot_save+0x21/0x4b0 [ 262.712152][ T4265] ? kmsan_internal_check_memory+0x94/0x530 [ 262.718298][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 262.725162][ T4265] do_recvmmsg+0x682/0x1180 [ 262.729938][ T4265] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 262.736892][ T4265] __sys_recvmmsg+0x113/0x450 [ 262.742168][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 262.749088][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 262.754630][ T4265] ? exit_to_user_mode_prepare+0x119/0x220 [ 262.761063][ T4265] do_fast_syscall_32+0x33/0x70 [ 262.766743][ T4265] do_SYSENTER_32+0x1b/0x20 [ 262.772026][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 262.778749][ T4265] RIP: 0023:0xf7f63549 [ 262.783481][ T4265] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 262.805360][ T4265] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 262.813920][ T4265] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 262.822698][ T4265] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 262.831136][ T4265] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 262.839521][ T4265] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 262.848807][ T4265] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 262.857380][ T4265] [ 262.863732][ T4265] Uninit was stored to memory at: [ 262.869190][ T4265] get_compat_msghdr+0x4fc/0x720 [ 262.874472][ T4265] ___sys_recvmsg+0x18c/0x840 [ 262.879500][ T4265] do_recvmmsg+0x682/0x1180 [ 262.886297][ T4265] __sys_recvmmsg+0x113/0x450 [ 262.892873][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 262.899633][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 262.905301][ T4265] do_fast_syscall_32+0x33/0x70 [ 262.910570][ T4265] do_SYSENTER_32+0x1b/0x20 [ 262.915474][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 262.923194][ T4265] [ 262.925989][ T4265] Uninit was stored to memory at: [ 262.926241][ T3560] kye 0003:0458:5019.0008: unbalanced delimiter at end of report description [ 262.931838][ T4265] get_compat_msghdr+0x4fc/0x720 [ 262.946632][ T4265] ___sys_recvmsg+0x18c/0x840 [ 262.951578][ T4265] do_recvmmsg+0x682/0x1180 [ 262.956899][ T4265] __sys_recvmmsg+0x113/0x450 [ 262.962960][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 262.971038][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 262.976993][ T4265] do_fast_syscall_32+0x33/0x70 [ 262.983348][ T4265] do_SYSENTER_32+0x1b/0x20 [ 262.988652][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 262.997581][ T4265] [ 262.999995][ T4265] Uninit was stored to memory at: [ 263.005870][ T4265] get_compat_msghdr+0x4fc/0x720 [ 263.012105][ T4265] ___sys_recvmsg+0x18c/0x840 [ 263.017735][ T4265] do_recvmmsg+0x682/0x1180 [ 263.023186][ T4265] __sys_recvmmsg+0x113/0x450 [ 263.028115][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 263.034624][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 263.039911][ T4265] do_fast_syscall_32+0x33/0x70 [ 263.045269][ T4265] do_SYSENTER_32+0x1b/0x20 [ 263.050214][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 263.057166][ T4265] [ 263.059574][ T4265] Uninit was stored to memory at: [ 263.064891][ T4265] get_compat_msghdr+0x4fc/0x720 [ 263.070287][ T4265] ___sys_recvmsg+0x18c/0x840 [ 263.075567][ T4265] do_recvmmsg+0x682/0x1180 [ 263.080582][ T4265] __sys_recvmmsg+0x113/0x450 [ 263.085858][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 263.092978][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 263.098254][ T4265] do_fast_syscall_32+0x33/0x70 [ 263.103820][ T4265] do_SYSENTER_32+0x1b/0x20 [ 263.108467][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 263.115391][ T4265] [ 263.117893][ T4265] Uninit was stored to memory at: [ 263.123301][ T4265] get_compat_msghdr+0x4fc/0x720 [ 263.128614][ T4265] ___sys_recvmsg+0x18c/0x840 [ 263.131293][ T3560] kye 0003:0458:5019.0008: parse failed [ 263.133770][ T4265] do_recvmmsg+0x682/0x1180 [ 263.133864][ T4265] __sys_recvmmsg+0x113/0x450 [ 263.139791][ T3560] kye: probe of 0003:0458:5019.0008 failed with error -22 [ 263.144345][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 263.144475][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 263.170035][ T4265] do_fast_syscall_32+0x33/0x70 [ 263.175157][ T4265] do_SYSENTER_32+0x1b/0x20 [ 263.180436][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 263.187100][ T4265] [ 263.189912][ T4265] Uninit was stored to memory at: [ 263.195428][ T4265] get_compat_msghdr+0x4fc/0x720 [ 263.201165][ T4265] ___sys_recvmsg+0x18c/0x840 [ 263.206266][ T4265] do_recvmmsg+0x682/0x1180 [ 263.211333][ T4265] __sys_recvmmsg+0x113/0x450 [ 263.216626][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 263.223896][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 263.229634][ T4265] do_fast_syscall_32+0x33/0x70 [ 263.235273][ T4265] do_SYSENTER_32+0x1b/0x20 [ 263.240040][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 263.247410][ T4265] [ 263.250199][ T4265] Uninit was stored to memory at: [ 263.255546][ T4265] get_compat_msghdr+0x4fc/0x720 [ 263.260998][ T4265] ___sys_recvmsg+0x18c/0x840 [ 263.266184][ T4265] do_recvmmsg+0x682/0x1180 [ 263.272068][ T4265] __sys_recvmmsg+0x113/0x450 [ 263.277983][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 263.284689][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 263.290314][ T4265] do_fast_syscall_32+0x33/0x70 [ 263.296399][ T4265] do_SYSENTER_32+0x1b/0x20 [ 263.301505][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 263.308420][ T4265] [ 263.311188][ T4265] Local variable msg_sys created at: [ 263.318051][ T4265] do_recvmmsg+0x5c/0x1180 [ 263.322653][ T4265] __sys_recvmmsg+0x113/0x450 [ 263.368865][ T3560] usb 5-1: USB disconnect, device number 10 [ 263.765494][ T4265] not chained 20000 origins [ 263.770424][ T4265] CPU: 0 PID: 4265 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 263.782917][ T4265] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 263.794869][ T4265] Call Trace: [ 263.798253][ T4265] [ 263.801373][ T4265] dump_stack_lvl+0x1c8/0x256 [ 263.806730][ T4265] dump_stack+0x1a/0x1c [ 263.811566][ T4265] kmsan_internal_chain_origin+0x78/0x120 [ 263.818294][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 263.826121][ T4265] ? ____sys_recvmsg+0x5c1/0x810 [ 263.831658][ T4265] ? ___sys_recvmsg+0x217/0x840 [ 263.837036][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 263.843328][ T4265] ? ____sys_recvmsg+0x5c1/0x810 [ 263.848490][ T4265] ? kfree+0x44/0x980 [ 263.852772][ T4265] ? ___sys_recvmsg+0x248/0x840 [ 263.857829][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 263.864194][ T4265] ? get_compat_msghdr+0x51/0x720 [ 263.870248][ T4265] ? ___sys_recvmsg+0x18c/0x840 [ 263.875613][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 263.881820][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 263.888513][ T4265] ? should_fail+0x3f/0x810 [ 263.893314][ T4265] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 263.900579][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 263.906729][ T4265] __msan_chain_origin+0xbd/0x140 [ 263.912385][ T4265] get_compat_msghdr+0x4fc/0x720 [ 263.917838][ T4265] ___sys_recvmsg+0x18c/0x840 [ 263.922783][ T4265] ? __stack_depot_save+0x21/0x4b0 [ 263.928363][ T4265] ? kmsan_internal_check_memory+0x94/0x530 [ 263.934891][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 263.941221][ T4265] do_recvmmsg+0x682/0x1180 [ 263.947034][ T4265] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 263.953821][ T4265] __sys_recvmmsg+0x113/0x450 [ 263.959342][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 263.966738][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 263.973153][ T4265] ? exit_to_user_mode_prepare+0x119/0x220 [ 263.981260][ T4265] do_fast_syscall_32+0x33/0x70 [ 263.987596][ T4265] do_SYSENTER_32+0x1b/0x20 [ 263.992703][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 263.999504][ T4265] RIP: 0023:0xf7f63549 [ 264.003796][ T4265] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 264.024461][ T4265] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 264.034520][ T4265] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 264.043151][ T4265] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 264.051346][ T4265] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 264.059621][ T4265] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 264.067895][ T4265] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 264.076236][ T4265] [ 264.084032][ T4265] Uninit was stored to memory at: [ 264.089285][ T4265] get_compat_msghdr+0x4fc/0x720 [ 264.094645][ T4265] ___sys_recvmsg+0x18c/0x840 [ 264.099459][ T4265] do_recvmmsg+0x682/0x1180 [ 264.104199][ T4265] __sys_recvmmsg+0x113/0x450 [ 264.109115][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 264.115617][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 264.120829][ T4265] do_fast_syscall_32+0x33/0x70 [ 264.127306][ T4265] do_SYSENTER_32+0x1b/0x20 [ 264.132412][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 264.140175][ T4265] [ 264.142882][ T4265] Uninit was stored to memory at: [ 264.148293][ T4265] get_compat_msghdr+0x4fc/0x720 [ 264.153701][ T4265] ___sys_recvmsg+0x18c/0x840 [ 264.158695][ T4265] do_recvmmsg+0x682/0x1180 [ 264.163777][ T4265] __sys_recvmmsg+0x113/0x450 [ 264.168776][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 264.176605][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 264.182192][ T4265] do_fast_syscall_32+0x33/0x70 [ 264.187622][ T4265] do_SYSENTER_32+0x1b/0x20 [ 264.192386][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 264.199260][ T4265] [ 264.202258][ T4265] Uninit was stored to memory at: [ 264.207801][ T4265] get_compat_msghdr+0x4fc/0x720 [ 264.213472][ T4265] ___sys_recvmsg+0x18c/0x840 [ 264.218395][ T4265] do_recvmmsg+0x682/0x1180 [ 264.223212][ T4265] __sys_recvmmsg+0x113/0x450 [ 264.228127][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 264.235617][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 264.241018][ T4265] do_fast_syscall_32+0x33/0x70 [ 264.246724][ T4265] do_SYSENTER_32+0x1b/0x20 [ 264.251479][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 264.258575][ T4265] [ 264.260987][ T4265] Uninit was stored to memory at: [ 264.267747][ T4265] get_compat_msghdr+0x4fc/0x720 [ 264.273150][ T4265] ___sys_recvmsg+0x18c/0x840 [ 264.279044][ T4265] do_recvmmsg+0x682/0x1180 [ 264.284153][ T4265] __sys_recvmmsg+0x113/0x450 [ 264.289090][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 264.296513][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 264.302217][ T4265] do_fast_syscall_32+0x33/0x70 [ 264.307571][ T4265] do_SYSENTER_32+0x1b/0x20 [ 264.312221][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 264.319919][ T4265] [ 264.322678][ T4265] Uninit was stored to memory at: [ 264.328215][ T4265] get_compat_msghdr+0x4fc/0x720 [ 264.334090][ T4265] ___sys_recvmsg+0x18c/0x840 [ 264.339194][ T4265] do_recvmmsg+0x682/0x1180 [ 264.344111][ T4265] __sys_recvmmsg+0x113/0x450 [ 264.349122][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 264.355812][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 264.361338][ T4265] do_fast_syscall_32+0x33/0x70 [ 264.366586][ T4265] do_SYSENTER_32+0x1b/0x20 [ 264.371463][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 264.378213][ T4265] [ 264.381091][ T4265] Uninit was stored to memory at: [ 264.386645][ T4265] get_compat_msghdr+0x4fc/0x720 [ 264.391730][ T4265] ___sys_recvmsg+0x18c/0x840 [ 264.397371][ T4265] do_recvmmsg+0x682/0x1180 [ 264.402219][ T4265] __sys_recvmmsg+0x113/0x450 [ 264.407259][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 264.413975][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 264.419474][ T4265] do_fast_syscall_32+0x33/0x70 [ 264.424758][ T4265] do_SYSENTER_32+0x1b/0x20 [ 264.429943][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 264.436771][ T4265] [ 264.439293][ T4265] Uninit was stored to memory at: [ 264.444781][ T4265] get_compat_msghdr+0x4fc/0x720 [ 264.449878][ T4265] ___sys_recvmsg+0x18c/0x840 [ 264.455004][ T4265] do_recvmmsg+0x682/0x1180 [ 264.459885][ T4265] __sys_recvmmsg+0x113/0x450 [ 264.466032][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 264.473644][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 264.479454][ T4265] do_fast_syscall_32+0x33/0x70 [ 264.484833][ T4265] do_SYSENTER_32+0x1b/0x20 [ 264.490661][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 264.497509][ T4265] [ 264.500268][ T4265] Local variable msg_sys created at: [ 264.505916][ T4265] do_recvmmsg+0x5c/0x1180 [ 264.510842][ T4265] __sys_recvmmsg+0x113/0x450 [ 264.529598][ T119] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71 [ 264.540697][ T119] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to send software reset: ffffffb9 [ 264.552100][ T119] asix: probe of 4-1:0.0 failed with error -71 [ 264.580808][ T119] usb 4-1: USB disconnect, device number 8 [ 264.834222][ T4265] not chained 30000 origins [ 264.838879][ T4265] CPU: 0 PID: 4265 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 264.849828][ T4265] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 264.860182][ T4265] Call Trace: [ 264.863637][ T4265] [ 264.866826][ T4265] dump_stack_lvl+0x1c8/0x256 [ 264.871917][ T4265] dump_stack+0x1a/0x1c [ 264.876434][ T4265] kmsan_internal_chain_origin+0x78/0x120 [ 264.882780][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 264.889226][ T4265] ? ____sys_recvmsg+0x5c1/0x810 [ 264.894411][ T4265] ? ___sys_recvmsg+0x217/0x840 [ 264.899550][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 264.905548][ T4265] ? ____sys_recvmsg+0x5c1/0x810 [ 264.910634][ T4265] ? kfree+0x44/0x980 [ 264.914908][ T4265] ? ___sys_recvmsg+0x248/0x840 [ 264.919887][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 264.925896][ T4265] ? get_compat_msghdr+0x51/0x720 [ 264.931039][ T4265] ? ___sys_recvmsg+0x18c/0x840 [ 264.936181][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 264.942233][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 264.948323][ T4265] ? should_fail+0x3f/0x810 [ 264.953028][ T4265] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 264.960607][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 264.966963][ T4265] __msan_chain_origin+0xbd/0x140 [ 264.974895][ T4265] get_compat_msghdr+0x4fc/0x720 [ 264.980459][ T4265] ___sys_recvmsg+0x18c/0x840 [ 264.985373][ T4265] ? __stack_depot_save+0x21/0x4b0 [ 264.990806][ T4265] ? kmsan_internal_check_memory+0x94/0x530 [ 264.996979][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 265.003149][ T4265] do_recvmmsg+0x682/0x1180 [ 265.007920][ T4265] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 265.014496][ T4265] __sys_recvmmsg+0x113/0x450 [ 265.019316][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 265.025906][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 265.032125][ T4265] ? exit_to_user_mode_prepare+0x119/0x220 [ 265.038909][ T4265] do_fast_syscall_32+0x33/0x70 [ 265.044346][ T4265] do_SYSENTER_32+0x1b/0x20 [ 265.049072][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 265.056039][ T4265] RIP: 0023:0xf7f63549 [ 265.060894][ T4265] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 265.082679][ T4265] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 265.091429][ T4265] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 265.100235][ T4265] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 265.110600][ T4265] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 265.120084][ T4265] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 265.129657][ T4265] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 265.137885][ T4265] [ 265.141636][ T4265] Uninit was stored to memory at: [ 265.147141][ T4265] get_compat_msghdr+0x4fc/0x720 [ 265.152920][ T4265] ___sys_recvmsg+0x18c/0x840 [ 265.158109][ T4265] do_recvmmsg+0x682/0x1180 [ 265.163408][ T4265] __sys_recvmmsg+0x113/0x450 [ 265.168419][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 265.175205][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 265.180627][ T4265] do_fast_syscall_32+0x33/0x70 [ 265.185958][ T4265] do_SYSENTER_32+0x1b/0x20 [ 265.190856][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 265.197616][ T4265] [ 265.200226][ T4265] Uninit was stored to memory at: [ 265.206380][ T4265] get_compat_msghdr+0x4fc/0x720 [ 265.211970][ T4265] ___sys_recvmsg+0x18c/0x840 [ 265.217503][ T4265] do_recvmmsg+0x682/0x1180 [ 265.222178][ T4265] __sys_recvmmsg+0x113/0x450 [ 265.228662][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 265.237364][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 265.244090][ T4265] do_fast_syscall_32+0x33/0x70 [ 265.250038][ T4265] do_SYSENTER_32+0x1b/0x20 [ 265.255328][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 265.264379][ T4265] [ 265.268790][ T4265] Uninit was stored to memory at: [ 265.275444][ T4265] get_compat_msghdr+0x4fc/0x720 [ 265.282316][ T4265] ___sys_recvmsg+0x18c/0x840 [ 265.288384][ T4265] do_recvmmsg+0x682/0x1180 [ 265.295213][ T4265] __sys_recvmmsg+0x113/0x450 [ 265.300622][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 265.307854][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 265.315053][ T4265] do_fast_syscall_32+0x33/0x70 [ 265.322965][ T4265] do_SYSENTER_32+0x1b/0x20 [ 265.328560][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 265.335580][ T4265] [ 265.338323][ T4265] Uninit was stored to memory at: [ 265.349138][ T4265] get_compat_msghdr+0x4fc/0x720 [ 265.355023][ T4265] ___sys_recvmsg+0x18c/0x840 [ 265.361329][ T4265] do_recvmmsg+0x682/0x1180 [ 265.367140][ T4265] __sys_recvmmsg+0x113/0x450 [ 265.372657][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 265.380221][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 265.386280][ T4265] do_fast_syscall_32+0x33/0x70 [ 265.393065][ T4265] do_SYSENTER_32+0x1b/0x20 [ 265.398337][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 265.406030][ T4265] [ 265.408467][ T4265] Uninit was stored to memory at: [ 265.414438][ T4265] get_compat_msghdr+0x4fc/0x720 [ 265.420138][ T4265] ___sys_recvmsg+0x18c/0x840 [ 265.425490][ T4265] do_recvmmsg+0x682/0x1180 [ 265.431090][ T4265] __sys_recvmmsg+0x113/0x450 [ 265.436263][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 265.443185][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 265.448601][ T4265] do_fast_syscall_32+0x33/0x70 [ 265.454487][ T4265] do_SYSENTER_32+0x1b/0x20 [ 265.460221][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 265.468810][ T4265] [ 265.472917][ T4265] Uninit was stored to memory at: [ 265.480388][ T4265] get_compat_msghdr+0x4fc/0x720 [ 265.486853][ T4265] ___sys_recvmsg+0x18c/0x840 [ 265.491875][ T4265] do_recvmmsg+0x682/0x1180 [ 265.497316][ T4265] __sys_recvmmsg+0x113/0x450 [ 265.502324][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 265.508913][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 265.514877][ T4265] do_fast_syscall_32+0x33/0x70 [ 265.522980][ T4265] do_SYSENTER_32+0x1b/0x20 [ 265.527814][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 265.535093][ T4265] [ 265.537859][ T4265] Uninit was stored to memory at: [ 265.543512][ T4265] get_compat_msghdr+0x4fc/0x720 [ 265.548706][ T4265] ___sys_recvmsg+0x18c/0x840 [ 265.555741][ T4265] do_recvmmsg+0x682/0x1180 [ 265.560846][ T4265] __sys_recvmmsg+0x113/0x450 [ 265.568079][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 265.575849][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 265.582037][ T4265] do_fast_syscall_32+0x33/0x70 [ 265.588354][ T4265] do_SYSENTER_32+0x1b/0x20 [ 265.593471][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 265.602689][ T4265] [ 265.607700][ T4265] Local variable msg_sys created at: [ 265.614061][ T4265] do_recvmmsg+0x5c/0x1180 [ 265.619188][ T4265] __sys_recvmmsg+0x113/0x450 [ 265.798176][ T4265] not chained 40000 origins [ 265.803289][ T4265] CPU: 0 PID: 4265 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 265.814961][ T4265] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 265.825905][ T4265] Call Trace: [ 265.829253][ T4265] [ 265.832238][ T4265] dump_stack_lvl+0x1c8/0x256 [ 265.837279][ T4265] dump_stack+0x1a/0x1c [ 265.841571][ T4265] kmsan_internal_chain_origin+0x78/0x120 [ 265.848705][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 265.855450][ T4265] ? ____sys_recvmsg+0x5c1/0x810 [ 265.861324][ T4265] ? ___sys_recvmsg+0x217/0x840 [ 265.867942][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 265.874798][ T4265] ? ____sys_recvmsg+0x5c1/0x810 [ 265.880872][ T4265] ? kfree+0x44/0x980 [ 265.885746][ T4265] ? ___sys_recvmsg+0x248/0x840 [ 265.893070][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 265.899629][ T4265] ? get_compat_msghdr+0x51/0x720 [ 265.904982][ T4265] ? ___sys_recvmsg+0x18c/0x840 [ 265.910236][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 265.916721][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 265.923186][ T4265] ? should_fail+0x3f/0x810 [ 265.928077][ T4265] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 265.934716][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 265.940929][ T4265] __msan_chain_origin+0xbd/0x140 [ 265.946166][ T4265] get_compat_msghdr+0x4fc/0x720 [ 265.951232][ T4265] ___sys_recvmsg+0x18c/0x840 [ 265.956126][ T4265] ? __stack_depot_save+0x21/0x4b0 [ 265.961673][ T4265] ? kmsan_internal_check_memory+0x94/0x530 [ 265.969935][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 265.977732][ T4265] do_recvmmsg+0x682/0x1180 [ 265.982977][ T4265] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 265.991097][ T4265] __sys_recvmmsg+0x113/0x450 [ 265.997342][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 266.004954][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 266.010878][ T4265] ? exit_to_user_mode_prepare+0x119/0x220 [ 266.019784][ T4265] do_fast_syscall_32+0x33/0x70 [ 266.025125][ T4265] do_SYSENTER_32+0x1b/0x20 [ 266.030923][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 266.039817][ T4265] RIP: 0023:0xf7f63549 [ 266.044811][ T4265] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 266.065612][ T4265] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 266.076639][ T4265] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 266.085835][ T4265] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 266.095055][ T4265] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 266.105175][ T4265] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 266.113602][ T4265] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 266.123028][ T4265] [ 266.128920][ T4265] Uninit was stored to memory at: [ 266.135760][ T4265] get_compat_msghdr+0x4fc/0x720 [ 266.141243][ T4265] ___sys_recvmsg+0x18c/0x840 [ 266.146806][ T4265] do_recvmmsg+0x682/0x1180 [ 266.151779][ T4265] __sys_recvmmsg+0x113/0x450 [ 266.157696][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 266.164356][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 266.171046][ T4265] do_fast_syscall_32+0x33/0x70 [ 266.177363][ T4265] do_SYSENTER_32+0x1b/0x20 [ 266.182422][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 266.190106][ T4265] [ 266.193194][ T4265] Uninit was stored to memory at: [ 266.199366][ T4265] get_compat_msghdr+0x4fc/0x720 [ 266.205794][ T4265] ___sys_recvmsg+0x18c/0x840 [ 266.211656][ T4265] do_recvmmsg+0x682/0x1180 [ 266.217400][ T4265] __sys_recvmmsg+0x113/0x450 [ 266.223469][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 266.231490][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 266.239365][ T4265] do_fast_syscall_32+0x33/0x70 [ 266.245943][ T4265] do_SYSENTER_32+0x1b/0x20 [ 266.251459][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 266.259599][ T4265] [ 266.262527][ T4265] Uninit was stored to memory at: [ 266.270303][ T4265] get_compat_msghdr+0x4fc/0x720 [ 266.276003][ T4265] ___sys_recvmsg+0x18c/0x840 [ 266.280950][ T4265] do_recvmmsg+0x682/0x1180 [ 266.286188][ T4265] __sys_recvmmsg+0x113/0x450 [ 266.291651][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 266.298936][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 266.304605][ T4265] do_fast_syscall_32+0x33/0x70 [ 266.309922][ T4265] do_SYSENTER_32+0x1b/0x20 [ 266.315611][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 266.323540][ T4265] [ 266.327944][ T4265] Uninit was stored to memory at: [ 266.334756][ T4265] get_compat_msghdr+0x4fc/0x720 [ 266.340291][ T4265] ___sys_recvmsg+0x18c/0x840 [ 266.346943][ T4265] do_recvmmsg+0x682/0x1180 [ 266.352553][ T4265] __sys_recvmmsg+0x113/0x450 [ 266.357764][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 266.364789][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 266.370486][ T4265] do_fast_syscall_32+0x33/0x70 [ 266.375718][ T4265] do_SYSENTER_32+0x1b/0x20 [ 266.380885][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 266.388717][ T4265] [ 266.391312][ T4265] Uninit was stored to memory at: [ 266.398539][ T4265] get_compat_msghdr+0x4fc/0x720 [ 266.404162][ T4265] ___sys_recvmsg+0x18c/0x840 [ 266.409203][ T4265] do_recvmmsg+0x682/0x1180 [ 266.415580][ T4265] __sys_recvmmsg+0x113/0x450 [ 266.420956][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 266.427843][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 266.433197][ T4265] do_fast_syscall_32+0x33/0x70 [ 266.438186][ T4265] do_SYSENTER_32+0x1b/0x20 [ 266.443244][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 266.450467][ T4265] [ 266.453004][ T4265] Uninit was stored to memory at: [ 266.458423][ T4265] get_compat_msghdr+0x4fc/0x720 [ 266.464371][ T4265] ___sys_recvmsg+0x18c/0x840 [ 266.470078][ T4265] do_recvmmsg+0x682/0x1180 [ 266.476069][ T4265] __sys_recvmmsg+0x113/0x450 [ 266.484806][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 266.492188][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 266.497835][ T4265] do_fast_syscall_32+0x33/0x70 [ 266.503249][ T4265] do_SYSENTER_32+0x1b/0x20 [ 266.508437][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 266.515351][ T4265] [ 266.518384][ T4265] Uninit was stored to memory at: [ 266.523784][ T4265] get_compat_msghdr+0x4fc/0x720 [ 266.528882][ T4265] ___sys_recvmsg+0x18c/0x840 [ 266.533970][ T4265] do_recvmmsg+0x682/0x1180 [ 266.539530][ T4265] __sys_recvmmsg+0x113/0x450 [ 266.544885][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 266.551534][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 266.557254][ T4265] do_fast_syscall_32+0x33/0x70 [ 266.562698][ T4265] do_SYSENTER_32+0x1b/0x20 [ 266.567496][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 266.574559][ T4265] [ 266.577333][ T4265] Local variable msg_sys created at: [ 266.583460][ T4265] do_recvmmsg+0x5c/0x1180 [ 266.590470][ T4265] __sys_recvmmsg+0x113/0x450 [ 266.778317][ T4265] not chained 50000 origins [ 266.783150][ T4265] CPU: 1 PID: 4265 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 266.794338][ T4265] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 266.804708][ T4265] Call Trace: [ 266.808094][ T4265] [ 266.811361][ T4265] dump_stack_lvl+0x1c8/0x256 [ 266.816226][ T4265] dump_stack+0x1a/0x1c [ 266.820574][ T4265] kmsan_internal_chain_origin+0x78/0x120 [ 266.826568][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 266.832912][ T4265] ? ____sys_recvmsg+0x5c1/0x810 [ 266.838021][ T4265] ? ___sys_recvmsg+0x217/0x840 [ 266.843166][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 266.849628][ T4265] ? ____sys_recvmsg+0x5c1/0x810 [ 266.855037][ T4265] ? kfree+0x44/0x980 [ 266.859519][ T4265] ? ___sys_recvmsg+0x248/0x840 [ 266.864506][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 266.870530][ T4265] ? get_compat_msghdr+0x51/0x720 [ 266.876554][ T4265] ? ___sys_recvmsg+0x18c/0x840 [ 266.882077][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 266.888204][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 266.894272][ T4265] ? should_fail+0x3f/0x810 [ 266.899216][ T4265] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 266.906148][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 266.912174][ T4265] __msan_chain_origin+0xbd/0x140 [ 266.917499][ T4265] get_compat_msghdr+0x4fc/0x720 [ 266.922655][ T4265] ___sys_recvmsg+0x18c/0x840 [ 266.927573][ T4265] ? __stack_depot_save+0x21/0x4b0 [ 266.932989][ T4265] ? kmsan_internal_check_memory+0x94/0x530 [ 266.939624][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 266.945708][ T4265] do_recvmmsg+0x682/0x1180 [ 266.950705][ T4265] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 266.958192][ T4265] __sys_recvmmsg+0x113/0x450 [ 266.963021][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 266.969701][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 266.974945][ T4265] ? exit_to_user_mode_prepare+0x119/0x220 [ 266.981096][ T4265] do_fast_syscall_32+0x33/0x70 [ 266.986640][ T4265] do_SYSENTER_32+0x1b/0x20 [ 266.991776][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 266.998607][ T4265] RIP: 0023:0xf7f63549 [ 267.002907][ T4265] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 267.025375][ T4265] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 267.034133][ T4265] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 267.042583][ T4265] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 267.050828][ T4265] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 267.059015][ T4265] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 267.068136][ T4265] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 267.077958][ T4265] [ 267.083334][ T4265] Uninit was stored to memory at: [ 267.090431][ T4265] get_compat_msghdr+0x4fc/0x720 [ 267.095888][ T4265] ___sys_recvmsg+0x18c/0x840 [ 267.101972][ T4265] do_recvmmsg+0x682/0x1180 [ 267.107587][ T4265] __sys_recvmmsg+0x113/0x450 [ 267.115424][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 267.124729][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 267.131111][ T4265] do_fast_syscall_32+0x33/0x70 [ 267.137882][ T4265] do_SYSENTER_32+0x1b/0x20 [ 267.145162][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 267.154328][ T4265] [ 267.157325][ T4265] Uninit was stored to memory at: [ 267.163713][ T4265] get_compat_msghdr+0x4fc/0x720 [ 267.169741][ T4265] ___sys_recvmsg+0x18c/0x840 [ 267.175054][ T4265] do_recvmmsg+0x682/0x1180 [ 267.180026][ T4265] __sys_recvmmsg+0x113/0x450 [ 267.185119][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 267.192649][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 267.199164][ T4265] do_fast_syscall_32+0x33/0x70 [ 267.205362][ T4265] do_SYSENTER_32+0x1b/0x20 [ 267.211568][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 267.219331][ T4265] [ 267.222477][ T4265] Uninit was stored to memory at: [ 267.232255][ T4265] get_compat_msghdr+0x4fc/0x720 [ 267.239084][ T4265] ___sys_recvmsg+0x18c/0x840 [ 267.245570][ T4265] do_recvmmsg+0x682/0x1180 [ 267.252292][ T4265] __sys_recvmmsg+0x113/0x450 [ 267.258101][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 267.268194][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 267.274872][ T4265] do_fast_syscall_32+0x33/0x70 [ 267.281190][ T4265] do_SYSENTER_32+0x1b/0x20 [ 267.287895][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 267.296991][ T4265] [ 267.300060][ T4265] Uninit was stored to memory at: [ 267.306143][ T4265] get_compat_msghdr+0x4fc/0x720 [ 267.312166][ T4265] ___sys_recvmsg+0x18c/0x840 [ 267.318830][ T4265] do_recvmmsg+0x682/0x1180 [ 267.325518][ T4265] __sys_recvmmsg+0x113/0x450 [ 267.336131][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 267.344079][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 267.351712][ T4265] do_fast_syscall_32+0x33/0x70 [ 267.357917][ T4265] do_SYSENTER_32+0x1b/0x20 [ 267.363922][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 267.372360][ T4265] [ 267.375240][ T4265] Uninit was stored to memory at: [ 267.380623][ T4265] get_compat_msghdr+0x4fc/0x720 [ 267.387891][ T4265] ___sys_recvmsg+0x18c/0x840 [ 267.393235][ T4265] do_recvmmsg+0x682/0x1180 [ 267.399854][ T4265] __sys_recvmmsg+0x113/0x450 [ 267.407101][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 267.418183][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 267.426231][ T4265] do_fast_syscall_32+0x33/0x70 [ 267.432102][ T4265] do_SYSENTER_32+0x1b/0x20 [ 267.437440][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 267.444656][ T4265] [ 267.447298][ T4265] Uninit was stored to memory at: [ 267.453463][ T4265] get_compat_msghdr+0x4fc/0x720 [ 267.458641][ T4265] ___sys_recvmsg+0x18c/0x840 [ 267.463885][ T4265] do_recvmmsg+0x682/0x1180 [ 267.468606][ T4265] __sys_recvmmsg+0x113/0x450 [ 267.473656][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 267.480182][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 267.485870][ T4265] do_fast_syscall_32+0x33/0x70 [ 267.491038][ T4265] do_SYSENTER_32+0x1b/0x20 [ 267.496301][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 267.503668][ T4265] [ 267.506059][ T4265] Uninit was stored to memory at: [ 267.511330][ T4265] get_compat_msghdr+0x4fc/0x720 [ 267.517663][ T4265] ___sys_recvmsg+0x18c/0x840 [ 267.522493][ T4265] do_recvmmsg+0x682/0x1180 [ 267.528057][ T4265] __sys_recvmmsg+0x113/0x450 [ 267.532980][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 267.540347][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 267.545745][ T4265] do_fast_syscall_32+0x33/0x70 [ 267.551344][ T4265] do_SYSENTER_32+0x1b/0x20 [ 267.556392][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 267.563394][ T4265] [ 267.565810][ T4265] Local variable msg_sys created at: [ 267.571272][ T4265] do_recvmmsg+0x5c/0x1180 [ 267.576308][ T4265] __sys_recvmmsg+0x113/0x450 [ 267.773139][ T4265] not chained 60000 origins [ 267.777751][ T4265] CPU: 0 PID: 4265 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 267.788193][ T4265] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 267.798354][ T4265] Call Trace: [ 267.801702][ T4265] [ 267.804791][ T4265] dump_stack_lvl+0x1c8/0x256 [ 267.809817][ T4265] dump_stack+0x1a/0x1c [ 267.814139][ T4265] kmsan_internal_chain_origin+0x78/0x120 [ 267.820581][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 267.826577][ T4265] ? ____sys_recvmsg+0x5c1/0x810 [ 267.831692][ T4265] ? ___sys_recvmsg+0x217/0x840 [ 267.836711][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 267.842796][ T4265] ? ____sys_recvmsg+0x5c1/0x810 [ 267.847858][ T4265] ? kfree+0x44/0x980 [ 267.852459][ T4265] ? ___sys_recvmsg+0x248/0x840 [ 267.857534][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 267.863584][ T4265] ? get_compat_msghdr+0x51/0x720 [ 267.869207][ T4265] ? ___sys_recvmsg+0x18c/0x840 [ 267.874276][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 267.880249][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 267.886170][ T4265] ? should_fail+0x3f/0x810 [ 267.891359][ T4265] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 267.898117][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 267.904177][ T4265] __msan_chain_origin+0xbd/0x140 [ 267.909452][ T4265] get_compat_msghdr+0x4fc/0x720 [ 267.914696][ T4265] ___sys_recvmsg+0x18c/0x840 [ 267.919509][ T4265] ? __stack_depot_save+0x21/0x4b0 [ 267.924775][ T4265] ? kmsan_internal_check_memory+0x94/0x530 [ 267.930883][ T4265] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 267.936902][ T4265] do_recvmmsg+0x682/0x1180 [ 267.941679][ T4265] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 267.948518][ T4265] __sys_recvmmsg+0x113/0x450 [ 267.953318][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 267.959703][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 267.965173][ T4265] ? exit_to_user_mode_prepare+0x119/0x220 [ 267.971485][ T4265] do_fast_syscall_32+0x33/0x70 [ 267.976437][ T4265] do_SYSENTER_32+0x1b/0x20 [ 267.981191][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 267.987762][ T4265] RIP: 0023:0xf7f63549 [ 267.991931][ T4265] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 268.012903][ T4265] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 268.022578][ T4265] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 268.031064][ T4265] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 268.040300][ T4265] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 268.050482][ T4265] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 268.059610][ T4265] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 268.068899][ T4265] [ 268.076379][ T4265] Uninit was stored to memory at: [ 268.081684][ T4265] get_compat_msghdr+0x4fc/0x720 [ 268.088104][ T4265] ___sys_recvmsg+0x18c/0x840 [ 268.094329][ T4265] do_recvmmsg+0x682/0x1180 [ 268.103053][ T4265] __sys_recvmmsg+0x113/0x450 [ 268.111637][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 268.120335][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 268.127016][ T4265] do_fast_syscall_32+0x33/0x70 [ 268.133164][ T4265] do_SYSENTER_32+0x1b/0x20 [ 268.139854][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 268.147391][ T4265] [ 268.150137][ T4265] Uninit was stored to memory at: [ 268.156010][ T4265] get_compat_msghdr+0x4fc/0x720 [ 268.161264][ T4265] ___sys_recvmsg+0x18c/0x840 [ 268.166517][ T4265] do_recvmmsg+0x682/0x1180 [ 268.171403][ T4265] __sys_recvmmsg+0x113/0x450 [ 268.177222][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 268.184555][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 268.190787][ T4265] do_fast_syscall_32+0x33/0x70 [ 268.196999][ T4265] do_SYSENTER_32+0x1b/0x20 [ 268.202020][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 268.209078][ T4265] [ 268.211460][ T4265] Uninit was stored to memory at: [ 268.216792][ T4265] get_compat_msghdr+0x4fc/0x720 [ 268.222419][ T4265] ___sys_recvmsg+0x18c/0x840 [ 268.227403][ T4265] do_recvmmsg+0x682/0x1180 [ 268.232129][ T4265] __sys_recvmmsg+0x113/0x450 [ 268.237997][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 268.244895][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 268.250407][ T4265] do_fast_syscall_32+0x33/0x70 [ 268.255641][ T4265] do_SYSENTER_32+0x1b/0x20 [ 268.260375][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 268.267828][ T4265] [ 268.270310][ T4265] Uninit was stored to memory at: [ 268.277473][ T4265] get_compat_msghdr+0x4fc/0x720 [ 268.282869][ T4265] ___sys_recvmsg+0x18c/0x840 [ 268.288237][ T4265] do_recvmmsg+0x682/0x1180 [ 268.293211][ T4265] __sys_recvmmsg+0x113/0x450 [ 268.298151][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 268.304942][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 268.310560][ T4265] do_fast_syscall_32+0x33/0x70 [ 268.316185][ T4265] do_SYSENTER_32+0x1b/0x20 [ 268.322161][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 268.329017][ T4265] [ 268.331603][ T4265] Uninit was stored to memory at: [ 268.337620][ T4265] get_compat_msghdr+0x4fc/0x720 [ 268.343445][ T4265] ___sys_recvmsg+0x18c/0x840 [ 268.349029][ T4265] do_recvmmsg+0x682/0x1180 [ 268.353873][ T4265] __sys_recvmmsg+0x113/0x450 [ 268.358701][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 268.365500][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 268.370853][ T4265] do_fast_syscall_32+0x33/0x70 [ 268.376006][ T4265] do_SYSENTER_32+0x1b/0x20 [ 268.380760][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 268.388233][ T4265] [ 268.391952][ T4265] Uninit was stored to memory at: [ 268.397652][ T4265] get_compat_msghdr+0x4fc/0x720 [ 268.403216][ T4265] ___sys_recvmsg+0x18c/0x840 [ 268.408051][ T4265] do_recvmmsg+0x682/0x1180 [ 268.413040][ T4265] __sys_recvmmsg+0x113/0x450 [ 268.418394][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 268.424953][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 268.430410][ T4265] do_fast_syscall_32+0x33/0x70 [ 268.435764][ T4265] do_SYSENTER_32+0x1b/0x20 [ 268.441389][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 268.448576][ T4265] [ 268.451046][ T4265] Uninit was stored to memory at: [ 268.456568][ T4265] get_compat_msghdr+0x4fc/0x720 [ 268.462268][ T4265] ___sys_recvmsg+0x18c/0x840 [ 268.467288][ T4265] do_recvmmsg+0x682/0x1180 [ 268.471958][ T4265] __sys_recvmmsg+0x113/0x450 [ 268.477081][ T4265] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 268.484228][ T4265] __do_fast_syscall_32+0xa2/0x100 [ 268.489614][ T4265] do_fast_syscall_32+0x33/0x70 [ 268.495053][ T4265] do_SYSENTER_32+0x1b/0x20 [ 268.499790][ T4265] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 268.507984][ T4265] [ 268.510443][ T4265] Local variable msg_sys created at: [ 268.516235][ T4265] do_recvmmsg+0x5c/0x1180 [ 268.521319][ T4265] __sys_recvmmsg+0x113/0x450 21:56:24 executing program 5: r0 = syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x6, {[@local, @main=@item_4={0x3, 0x0, 0x0, "8b707542"}]}}, 0x0}, 0x0) 21:56:24 executing program 1: r0 = socket(0x2a, 0x2, 0x0) recvmsg$can_bcm(r0, &(0x7f00000016c0)={0x0, 0x0, &(0x7f0000000600)=[{&(0x7f0000000040)}, {&(0x7f0000000100)=""/5}, {&(0x7f0000000240)=""/38, 0x26}, {&(0x7f0000000280)=""/72, 0x48}, {&(0x7f0000000300)=""/98, 0x62}, {&(0x7f0000000380)=""/149, 0x9f}, {&(0x7f0000000440)=""/37, 0xffffff93}, {&(0x7f0000000480)=""/30, 0x1e}, {&(0x7f0000000040)=""/55, 0x2a}, {&(0x7f0000000500)=""/237, 0xed}], 0xa, &(0x7f00000006c0)=""/4096, 0x1000}, 0x0) 21:56:24 executing program 2: syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000300)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(0xffffffffffffffff, 0x83, 0x81, &(0x7f0000000380)=@generic={0x2, 0x0, 0x79, "398027db", "67ec4cb938290810877773f5e11a52aa985c8c97f8dda950663cd665451e7fbd3bf63eb60a5be421544a3d194b304ef0f4af9d35db09c8780836e570988d9ec5e860e76504bf41cf7b60fe05cdc75d5c41f81dd4568595dab91f5922b594ab765c7ea4d86d3ef16c6f421676929762ba4b88a59f49407a8a22"}) 21:56:24 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 21:56:24 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000003c0)=0xae) prlimit64(0x0, 0x3, &(0x7f0000000280), &(0x7f0000000300)) r3 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r3, &(0x7f00000000c0)={0x2, 0x4e20, @empty}, 0x10) sendto$inet(r3, &(0x7f0000000140), 0xffffffffffffff58, 0x20008008, &(0x7f0000000100)={0x2, 0x4e20}, 0x10) recvfrom(r3, &(0x7f0000000480)=""/110, 0xfffffe32, 0x700, 0x0, 0xfffffffffffffecb) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x40000, 0x6, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef0100010000", 0x3f, 0x400}, {&(0x7f0000001f40)}, {0x0, 0x0, 0xbff}, {0x0}, {0x0, 0x0, 0x2}, {0x0, 0x0, 0x80000000000000}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) sched_setattr(0x0, 0x0, 0x0) ioctl$sock_FIOGETOWN(r2, 0x8903, &(0x7f0000000040)=0x0) ptrace$cont(0x20, r4, 0x2593, 0x4) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) 21:56:24 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x4f, 0x92, 0xb9, 0x8, 0x1557, 0x7720, 0xb7eb, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x27, 0x85, 0xe6}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000040)={0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b00)={0x40, 0x13, 0x6, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x40, 0x19, 0x2, "a8cd"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 21:56:25 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000003c0)=0xae) prlimit64(0x0, 0x3, &(0x7f0000000280), &(0x7f0000000300)) r3 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r3, &(0x7f00000000c0)={0x2, 0x4e20, @empty}, 0x10) sendto$inet(r3, &(0x7f0000000140), 0xffffffffffffff58, 0x20008008, &(0x7f0000000100)={0x2, 0x4e20}, 0x10) recvfrom(r3, &(0x7f0000000480)=""/110, 0xfffffe32, 0x700, 0x0, 0xfffffffffffffecb) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x40000, 0x6, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef0100010000", 0x3f, 0x400}, {&(0x7f0000001f40)}, {0x0, 0x0, 0xbff}, {0x0}, {0x0, 0x0, 0x2}, {0x0, 0x0, 0x80000000000000}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) sched_setattr(0x0, 0x0, 0x0) ioctl$sock_FIOGETOWN(r2, 0x8903, &(0x7f0000000040)=0x0) ptrace$cont(0x20, r4, 0x2593, 0x4) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) [ 269.203667][ T119] usb 5-1: new high-speed USB device number 11 using dummy_hcd [ 269.263631][ T3560] usb 3-1: new high-speed USB device number 10 using dummy_hcd [ 269.284012][ T3565] usb 4-1: new high-speed USB device number 9 using dummy_hcd 21:56:25 executing program 5: r0 = syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x6, {[@local, @main=@item_4={0x3, 0x0, 0x0, "8b707542"}]}}, 0x0}, 0x0) [ 269.484728][ T4309] loop0: detected capacity change from 0 to 512 [ 269.523109][ T3565] usb 4-1: Using ep0 maxpacket: 8 [ 269.570617][ T4309] EXT4-fs (loop0): invalid inodes per group: 67108896 [ 269.570617][ T4309] [ 269.575910][ T119] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 269.588588][ T4311] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 269.591850][ T119] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 269.621156][ T119] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 269.630724][ T119] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 269.649906][ T119] usb 5-1: config 0 descriptor?? [ 269.704468][ T3565] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 269.714206][ T3565] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 269.808984][ T3565] usb 4-1: config 0 descriptor?? [ 269.842048][ T4314] loop1: detected capacity change from 0 to 512 [ 269.876875][ T3560] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 269.886429][ T3560] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 269.894973][ T3560] usb 3-1: Product: syz [ 269.899776][ T3560] usb 3-1: Manufacturer: syz [ 269.905033][ T3560] usb 3-1: SerialNumber: syz [ 270.006361][ T3560] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 270.151606][ T4314] EXT4-fs (loop1): invalid inodes per group: 67108896 [ 270.151606][ T4314] [ 270.203563][ T119] usbhid 5-1:0.0: can't add hid device: -71 [ 270.210360][ T119] usbhid: probe of 5-1:0.0 failed with error -71 [ 270.299160][ T119] usb 5-1: USB disconnect, device number 11 [ 270.379900][ T4304] not chained 70000 origins [ 270.385832][ T4304] CPU: 0 PID: 4304 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 270.396428][ T4304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 270.406618][ T4304] Call Trace: [ 270.409999][ T4304] [ 270.413062][ T4304] dump_stack_lvl+0x1c8/0x256 [ 270.418012][ T4304] dump_stack+0x1a/0x1c [ 270.422351][ T4304] kmsan_internal_chain_origin+0x78/0x120 [ 270.428362][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 270.434553][ T4304] ? ____sys_recvmsg+0x5c1/0x810 [ 270.439696][ T4304] ? ___sys_recvmsg+0x217/0x840 [ 270.444975][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 270.451852][ T4304] ? ____sys_recvmsg+0x5c1/0x810 [ 270.457235][ T4304] ? kfree+0x44/0x980 [ 270.461377][ T4304] ? ___sys_recvmsg+0x248/0x840 [ 270.466401][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 270.472962][ T4304] ? get_compat_msghdr+0x51/0x720 [ 270.478168][ T4304] ? ___sys_recvmsg+0x18c/0x840 [ 270.483229][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 270.489345][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 270.495456][ T4304] ? should_fail+0x3f/0x810 [ 270.500153][ T4304] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 270.506714][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 270.512708][ T4304] __msan_chain_origin+0xbd/0x140 [ 270.518184][ T4304] get_compat_msghdr+0x4fc/0x720 [ 270.523423][ T4304] ___sys_recvmsg+0x18c/0x840 [ 270.528362][ T4304] ? __stack_depot_save+0x21/0x4b0 [ 270.533689][ T4304] ? kmsan_internal_check_memory+0x94/0x530 [ 270.539817][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 270.545838][ T4304] do_recvmmsg+0x682/0x1180 [ 270.550555][ T4304] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 270.557274][ T4304] __sys_recvmmsg+0x113/0x450 [ 270.562128][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 270.568576][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 270.573968][ T4304] ? exit_to_user_mode_prepare+0x119/0x220 [ 270.580690][ T4304] do_fast_syscall_32+0x33/0x70 [ 270.586733][ T4304] do_SYSENTER_32+0x1b/0x20 [ 270.591641][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 270.598541][ T4304] RIP: 0023:0xf7f63549 [ 270.602996][ T4304] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 270.623223][ T4304] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 270.632348][ T4304] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 270.640481][ T4304] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 270.648705][ T4304] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 270.656879][ T4304] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 270.665330][ T4304] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 270.673472][ T4304] [ 270.684202][ T4304] Uninit was stored to memory at: [ 270.689457][ T4304] get_compat_msghdr+0x4fc/0x720 [ 270.694758][ T4304] ___sys_recvmsg+0x18c/0x840 [ 270.699599][ T4304] do_recvmmsg+0x682/0x1180 [ 270.704501][ T4304] __sys_recvmmsg+0x113/0x450 [ 270.709606][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 270.717114][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 270.722495][ T4304] do_fast_syscall_32+0x33/0x70 [ 270.727771][ T4304] do_SYSENTER_32+0x1b/0x20 [ 270.732522][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 270.739284][ T4304] [ 270.741691][ T4304] Uninit was stored to memory at: [ 270.747112][ T4304] get_compat_msghdr+0x4fc/0x720 [ 270.752295][ T4304] ___sys_recvmsg+0x18c/0x840 [ 270.757989][ T4304] do_recvmmsg+0x682/0x1180 [ 270.762652][ T4304] __sys_recvmmsg+0x113/0x450 [ 270.767562][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 270.774193][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 270.779483][ T4304] do_fast_syscall_32+0x33/0x70 [ 270.784750][ T4304] do_SYSENTER_32+0x1b/0x20 [ 270.789657][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 270.796972][ T4304] [ 270.799473][ T4304] Uninit was stored to memory at: [ 270.804824][ T4304] get_compat_msghdr+0x4fc/0x720 [ 270.809909][ T4304] ___sys_recvmsg+0x18c/0x840 [ 270.815137][ T4304] do_recvmmsg+0x682/0x1180 [ 270.819804][ T4304] __sys_recvmmsg+0x113/0x450 [ 270.824810][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 270.831231][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 270.836598][ T4304] do_fast_syscall_32+0x33/0x70 [ 270.841603][ T4304] do_SYSENTER_32+0x1b/0x20 [ 270.846545][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 270.853329][ T4304] [ 270.856299][ T4304] Uninit was stored to memory at: [ 270.861707][ T4304] get_compat_msghdr+0x4fc/0x720 [ 270.867426][ T4304] ___sys_recvmsg+0x18c/0x840 [ 270.872415][ T4304] do_recvmmsg+0x682/0x1180 [ 270.877441][ T4304] __sys_recvmmsg+0x113/0x450 [ 270.882868][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 270.889337][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 270.894778][ T4304] do_fast_syscall_32+0x33/0x70 [ 270.900414][ T4304] do_SYSENTER_32+0x1b/0x20 [ 270.905191][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 270.911754][ T4304] [ 270.914269][ T4304] Uninit was stored to memory at: [ 270.919713][ T4304] get_compat_msghdr+0x4fc/0x720 [ 270.924921][ T4304] ___sys_recvmsg+0x18c/0x840 [ 270.929727][ T4304] do_recvmmsg+0x682/0x1180 [ 270.934463][ T4304] __sys_recvmmsg+0x113/0x450 [ 270.939268][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 270.945781][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 270.951034][ T4304] do_fast_syscall_32+0x33/0x70 [ 270.956113][ T4304] do_SYSENTER_32+0x1b/0x20 [ 270.960950][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 270.967669][ T4304] [ 270.970092][ T4304] Uninit was stored to memory at: [ 270.975426][ T4304] get_compat_msghdr+0x4fc/0x720 [ 270.980509][ T4304] ___sys_recvmsg+0x18c/0x840 [ 270.985475][ T4304] do_recvmmsg+0x682/0x1180 [ 270.990229][ T4304] __sys_recvmmsg+0x113/0x450 [ 270.996232][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 271.003245][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 271.009044][ T4304] do_fast_syscall_32+0x33/0x70 [ 271.017277][ T4304] do_SYSENTER_32+0x1b/0x20 [ 271.021914][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 271.029446][ T4304] [ 271.032213][ T4304] Uninit was stored to memory at: [ 271.037757][ T4304] get_compat_msghdr+0x4fc/0x720 [ 271.043001][ T4304] ___sys_recvmsg+0x18c/0x840 [ 271.048006][ T4304] do_recvmmsg+0x682/0x1180 [ 271.052648][ T4304] __sys_recvmmsg+0x113/0x450 [ 271.057722][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 271.064387][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 271.070192][ T4304] do_fast_syscall_32+0x33/0x70 [ 271.076170][ T4304] do_SYSENTER_32+0x1b/0x20 [ 271.081443][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 271.089604][ T4304] [ 271.092177][ T4304] Local variable msg_sys created at: [ 271.100750][ T4304] do_recvmmsg+0x5c/0x1180 [ 271.106369][ T4304] __sys_recvmmsg+0x113/0x450 [ 271.273327][ T3566] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 21:56:27 executing program 5: r0 = syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x6, {[@local, @main=@item_4={0x3, 0x0, 0x0, "8b707542"}]}}, 0x0}, 0x0) 21:56:27 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) [ 271.551265][ T3558] usb 3-1: USB disconnect, device number 10 [ 271.823397][ T3565] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71 [ 271.834121][ T3565] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to send software reset: ffffffb9 [ 271.845246][ T3565] asix: probe of 4-1:0.0 failed with error -71 [ 271.921906][ T3565] usb 4-1: USB disconnect, device number 9 [ 272.036975][ T4304] not chained 80000 origins [ 272.041856][ T4304] CPU: 1 PID: 4304 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 272.052507][ T4304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 272.053270][ T3560] usb 5-1: new high-speed USB device number 12 using dummy_hcd [ 272.062649][ T4304] Call Trace: [ 272.062683][ T4304] [ 272.062708][ T4304] dump_stack_lvl+0x1c8/0x256 [ 272.062841][ T4304] dump_stack+0x1a/0x1c [ 272.091601][ T4304] kmsan_internal_chain_origin+0x78/0x120 [ 272.098944][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 272.107642][ T4304] ? ____sys_recvmsg+0x5c1/0x810 [ 272.113636][ T4304] ? ___sys_recvmsg+0x217/0x840 [ 272.120254][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 272.126269][ T4304] ? ____sys_recvmsg+0x5c1/0x810 [ 272.131813][ T4304] ? kfree+0x44/0x980 [ 272.135941][ T4304] ? ___sys_recvmsg+0x248/0x840 [ 272.141042][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 272.147591][ T4304] ? get_compat_msghdr+0x51/0x720 [ 272.152803][ T4304] ? ___sys_recvmsg+0x18c/0x840 [ 272.157919][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 272.163931][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 272.169919][ T4304] ? should_fail+0x3f/0x810 [ 272.175031][ T4304] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 272.181464][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 272.187563][ T4304] __msan_chain_origin+0xbd/0x140 [ 272.192761][ T4304] get_compat_msghdr+0x4fc/0x720 [ 272.198015][ T4304] ___sys_recvmsg+0x18c/0x840 [ 272.203571][ T4304] ? __stack_depot_save+0x21/0x4b0 [ 272.208897][ T4304] ? kmsan_internal_check_memory+0x94/0x530 [ 272.215239][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 272.221321][ T4304] do_recvmmsg+0x682/0x1180 [ 272.226443][ T4304] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 272.233041][ T4304] __sys_recvmmsg+0x113/0x450 [ 272.238063][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 272.244552][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 272.249820][ T4304] ? exit_to_user_mode_prepare+0x119/0x220 [ 272.255801][ T4304] do_fast_syscall_32+0x33/0x70 [ 272.260973][ T4304] do_SYSENTER_32+0x1b/0x20 [ 272.265806][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 272.272876][ T4304] RIP: 0023:0xf7f63549 [ 272.277141][ T4304] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 272.296928][ T4304] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 272.303114][ T3566] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 272.305445][ T4304] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 272.305508][ T4304] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 272.305559][ T4304] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 272.305607][ T4304] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 272.313140][ T3566] ath9k_htc: Failed to initialize the device [ 272.320535][ T4304] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 272.320608][ T4304] [ 272.363974][ T4304] Uninit was stored to memory at: [ 272.369309][ T4304] get_compat_msghdr+0x4fc/0x720 [ 272.374722][ T4304] ___sys_recvmsg+0x18c/0x840 [ 272.379548][ T4304] do_recvmmsg+0x682/0x1180 [ 272.391789][ T4304] __sys_recvmmsg+0x113/0x450 [ 272.396807][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 272.403349][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 272.408632][ T4304] do_fast_syscall_32+0x33/0x70 [ 272.413823][ T4304] do_SYSENTER_32+0x1b/0x20 [ 272.418524][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 272.425252][ T4304] [ 272.427670][ T4304] Uninit was stored to memory at: [ 272.433058][ T4304] get_compat_msghdr+0x4fc/0x720 [ 272.438225][ T4304] ___sys_recvmsg+0x18c/0x840 [ 272.443169][ T4304] do_recvmmsg+0x682/0x1180 [ 272.447822][ T4304] __sys_recvmmsg+0x113/0x450 [ 272.453102][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 272.456171][ T3560] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 272.459715][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 272.470950][ T3560] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 272.476109][ T4304] do_fast_syscall_32+0x33/0x70 [ 272.476201][ T4304] do_SYSENTER_32+0x1b/0x20 [ 272.486081][ T3560] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 272.490863][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 272.495518][ T3560] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 272.504675][ T4304] [ 272.504695][ T4304] Uninit was stored to memory at: [ 272.504827][ T4304] get_compat_msghdr+0x4fc/0x720 [ 272.532691][ T4304] ___sys_recvmsg+0x18c/0x840 [ 272.537610][ T4304] do_recvmmsg+0x682/0x1180 21:56:28 executing program 5: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x925, 0x8888, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x6, {[@local, @main=@item_4={0x3, 0x0, 0x0, "8b707542"}]}}, 0x0}, 0x0) [ 272.542254][ T4304] __sys_recvmmsg+0x113/0x450 [ 272.547163][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 272.553779][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 272.559303][ T4304] do_fast_syscall_32+0x33/0x70 [ 272.564397][ T4304] do_SYSENTER_32+0x1b/0x20 [ 272.569048][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 272.576400][ T4304] [ 272.578837][ T4304] Uninit was stored to memory at: [ 272.584348][ T4304] get_compat_msghdr+0x4fc/0x720 [ 272.589580][ T4304] ___sys_recvmsg+0x18c/0x840 [ 272.594522][ T4304] do_recvmmsg+0x682/0x1180 [ 272.600847][ T4304] __sys_recvmmsg+0x113/0x450 [ 272.605767][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 272.612186][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 272.617555][ T4304] do_fast_syscall_32+0x33/0x70 [ 272.625633][ T4304] do_SYSENTER_32+0x1b/0x20 [ 272.630542][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 272.639958][ T4304] [ 272.642400][ T4304] Uninit was stored to memory at: [ 272.648060][ T4304] get_compat_msghdr+0x4fc/0x720 [ 272.653419][ T4304] ___sys_recvmsg+0x18c/0x840 [ 272.659841][ T4304] do_recvmmsg+0x682/0x1180 [ 272.664580][ T4304] __sys_recvmmsg+0x113/0x450 [ 272.669704][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 272.676439][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 272.681773][ T4304] do_fast_syscall_32+0x33/0x70 [ 272.687094][ T4304] do_SYSENTER_32+0x1b/0x20 21:56:28 executing program 2: syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000300)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(0xffffffffffffffff, 0x83, 0x81, &(0x7f0000000380)=@generic={0x2, 0x0, 0x79, "398027db", "67ec4cb938290810877773f5e11a52aa985c8c97f8dda950663cd665451e7fbd3bf63eb60a5be421544a3d194b304ef0f4af9d35db09c8780836e570988d9ec5e860e76504bf41cf7b60fe05cdc75d5c41f81dd4568595dab91f5922b594ab765c7ea4d86d3ef16c6f421676929762ba4b88a59f49407a8a22"}) [ 272.691935][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 272.699347][ T4304] [ 272.701835][ T4304] Uninit was stored to memory at: [ 272.707326][ T4304] get_compat_msghdr+0x4fc/0x720 [ 272.712679][ T4304] ___sys_recvmsg+0x18c/0x840 [ 272.717658][ T4304] do_recvmmsg+0x682/0x1180 [ 272.722842][ T4304] __sys_recvmmsg+0x113/0x450 [ 272.727926][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 272.736980][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 272.742432][ T4304] do_fast_syscall_32+0x33/0x70 [ 272.748699][ T4304] do_SYSENTER_32+0x1b/0x20 [ 272.753557][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 272.760137][ T4304] [ 272.762557][ T4304] Uninit was stored to memory at: [ 272.769184][ T4304] get_compat_msghdr+0x4fc/0x720 [ 272.774439][ T4304] ___sys_recvmsg+0x18c/0x840 [ 272.779275][ T4304] do_recvmmsg+0x682/0x1180 [ 272.784022][ T4304] __sys_recvmmsg+0x113/0x450 21:56:28 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x4f, 0x92, 0xb9, 0x8, 0x1557, 0x7720, 0xb7eb, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x27, 0x85, 0xe6}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000040)={0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b00)={0x40, 0x13, 0x6, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x40, 0x19, 0x2, "a8cd"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) [ 272.788923][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 272.795527][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 272.800987][ T4304] do_fast_syscall_32+0x33/0x70 [ 272.806097][ T4304] do_SYSENTER_32+0x1b/0x20 [ 272.810806][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 272.817445][ T4304] [ 272.819873][ T4304] Local variable msg_sys created at: [ 272.825481][ T4304] do_recvmmsg+0x5c/0x1180 [ 272.830037][ T4304] __sys_recvmmsg+0x113/0x450 [ 272.857893][ T3558] usb 3-1: ath9k_htc: USB layer deinitialized [ 272.938320][ T3560] usb 5-1: config 0 descriptor?? [ 273.021173][ T4304] not chained 90000 origins [ 273.030725][ T4304] CPU: 1 PID: 4304 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 273.041439][ T4304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 273.051907][ T4304] Call Trace: [ 273.055328][ T4304] [ 273.058451][ T4304] dump_stack_lvl+0x1c8/0x256 [ 273.063435][ T4304] dump_stack+0x1a/0x1c [ 273.067754][ T4304] kmsan_internal_chain_origin+0x78/0x120 [ 273.073652][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 273.079655][ T4304] ? ____sys_recvmsg+0x5c1/0x810 [ 273.085117][ T4304] ? ___sys_recvmsg+0x217/0x840 [ 273.090111][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 273.096323][ T4304] ? ____sys_recvmsg+0x5c1/0x810 [ 273.101947][ T4304] ? kfree+0x44/0x980 [ 273.106090][ T4304] ? ___sys_recvmsg+0x248/0x840 [ 273.111798][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 273.117811][ T4304] ? get_compat_msghdr+0x51/0x720 [ 273.123126][ T4304] ? ___sys_recvmsg+0x18c/0x840 [ 273.128138][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 273.134152][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 273.140251][ T4304] ? should_fail+0x3f/0x810 [ 273.144963][ T4304] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 273.151428][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 273.157535][ T4304] __msan_chain_origin+0xbd/0x140 [ 273.162768][ T4304] get_compat_msghdr+0x4fc/0x720 [ 273.167902][ T4304] ___sys_recvmsg+0x18c/0x840 [ 273.172761][ T4304] ? __stack_depot_save+0x21/0x4b0 [ 273.178048][ T4304] ? kmsan_internal_check_memory+0x94/0x530 [ 273.184108][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 273.190082][ T4304] do_recvmmsg+0x682/0x1180 [ 273.194829][ T4304] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 273.201564][ T4304] __sys_recvmmsg+0x113/0x450 [ 273.206557][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 273.212961][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 273.218215][ T4304] ? exit_to_user_mode_prepare+0x119/0x220 [ 273.224188][ T4304] do_fast_syscall_32+0x33/0x70 [ 273.229429][ T4304] do_SYSENTER_32+0x1b/0x20 [ 273.234179][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 273.242473][ T4304] RIP: 0023:0xf7f63549 [ 273.246964][ T4304] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 273.268560][ T4304] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 273.277258][ T4304] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 273.285518][ T4304] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 273.293603][ T4304] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 273.301911][ T4304] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 273.310194][ T4304] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 273.318647][ T4304] [ 273.321969][ T4304] Uninit was stored to memory at: [ 273.327544][ T4304] get_compat_msghdr+0x4fc/0x720 [ 273.332785][ T4304] ___sys_recvmsg+0x18c/0x840 [ 273.337716][ T4304] do_recvmmsg+0x682/0x1180 [ 273.342471][ T4304] __sys_recvmmsg+0x113/0x450 [ 273.347570][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 273.354172][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 273.359436][ T4304] do_fast_syscall_32+0x33/0x70 [ 273.364528][ T4304] do_SYSENTER_32+0x1b/0x20 [ 273.369271][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 273.376023][ T4304] [ 273.378433][ T4304] Uninit was stored to memory at: [ 273.383725][ T4304] get_compat_msghdr+0x4fc/0x720 [ 273.388920][ T4304] ___sys_recvmsg+0x18c/0x840 [ 273.393849][ T4304] do_recvmmsg+0x682/0x1180 [ 273.398953][ T4304] __sys_recvmmsg+0x113/0x450 [ 273.403897][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 273.410345][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 273.415739][ T4304] do_fast_syscall_32+0x33/0x70 [ 273.420738][ T4304] do_SYSENTER_32+0x1b/0x20 [ 273.425495][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 273.432212][ T4304] [ 273.434721][ T4304] Uninit was stored to memory at: [ 273.439959][ T4304] get_compat_msghdr+0x4fc/0x720 [ 273.445147][ T4304] ___sys_recvmsg+0x18c/0x840 [ 273.449977][ T4304] do_recvmmsg+0x682/0x1180 [ 273.454710][ T4304] __sys_recvmmsg+0x113/0x450 [ 273.459629][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 273.466124][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 273.471398][ T4304] do_fast_syscall_32+0x33/0x70 [ 273.476480][ T4304] do_SYSENTER_32+0x1b/0x20 [ 273.481106][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 273.487708][ T4304] [ 273.490110][ T4304] Uninit was stored to memory at: [ 273.495425][ T4304] get_compat_msghdr+0x4fc/0x720 [ 273.500511][ T4304] ___sys_recvmsg+0x18c/0x840 [ 273.505421][ T4304] do_recvmmsg+0x682/0x1180 [ 273.510261][ T4304] __sys_recvmmsg+0x113/0x450 [ 273.516172][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 273.523099][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 273.528859][ T4304] do_fast_syscall_32+0x33/0x70 [ 273.534315][ T4304] do_SYSENTER_32+0x1b/0x20 [ 273.539341][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 273.546069][ T4304] [ 273.548512][ T4304] Uninit was stored to memory at: [ 273.553851][ T4304] get_compat_msghdr+0x4fc/0x720 [ 273.559367][ T4304] ___sys_recvmsg+0x18c/0x840 [ 273.564472][ T4304] do_recvmmsg+0x682/0x1180 [ 273.569206][ T4304] __sys_recvmmsg+0x113/0x450 [ 273.574248][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 273.580833][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 273.586190][ T4304] do_fast_syscall_32+0x33/0x70 [ 273.591384][ T4304] do_SYSENTER_32+0x1b/0x20 [ 273.597093][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 273.603905][ T4304] [ 273.606306][ T4304] Uninit was stored to memory at: [ 273.611576][ T4304] get_compat_msghdr+0x4fc/0x720 [ 273.616947][ T4304] ___sys_recvmsg+0x18c/0x840 [ 273.621864][ T4304] do_recvmmsg+0x682/0x1180 [ 273.626765][ T4304] __sys_recvmmsg+0x113/0x450 [ 273.631684][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 273.638197][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 273.643601][ T4304] do_fast_syscall_32+0x33/0x70 [ 273.648612][ T4304] do_SYSENTER_32+0x1b/0x20 [ 273.653479][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 273.660628][ T4304] [ 273.663214][ T4304] Uninit was stored to memory at: [ 273.668521][ T4304] get_compat_msghdr+0x4fc/0x720 [ 273.669361][ T3560] usbhid 5-1:0.0: can't add hid device: -71 [ 273.673644][ T4304] ___sys_recvmsg+0x18c/0x840 [ 273.673724][ T4304] do_recvmmsg+0x682/0x1180 [ 273.680187][ T3560] usbhid: probe of 5-1:0.0 failed with error -71 [ 273.684559][ T4304] __sys_recvmmsg+0x113/0x450 [ 273.684633][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 273.684727][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 273.712136][ T4304] do_fast_syscall_32+0x33/0x70 [ 273.717227][ T4304] do_SYSENTER_32+0x1b/0x20 [ 273.721886][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 273.728601][ T4304] [ 273.731018][ T4304] Local variable msg_sys created at: [ 273.736510][ T4304] do_recvmmsg+0x5c/0x1180 [ 273.741076][ T4304] __sys_recvmmsg+0x113/0x450 [ 273.885806][ T3560] usb 5-1: USB disconnect, device number 12 [ 274.014588][ T4304] not chained 100000 origins [ 274.019411][ T4304] CPU: 1 PID: 4304 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 274.029895][ T4304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 274.032920][ T3566] usb 4-1: new high-speed USB device number 10 using dummy_hcd [ 274.040101][ T4304] Call Trace: [ 274.040131][ T4304] [ 274.040156][ T4304] dump_stack_lvl+0x1c8/0x256 [ 274.040288][ T4304] dump_stack+0x1a/0x1c [ 274.064536][ T4304] kmsan_internal_chain_origin+0x78/0x120 [ 274.070557][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 274.076562][ T4304] ? ____sys_recvmsg+0x5c1/0x810 [ 274.081937][ T4304] ? ___sys_recvmsg+0x217/0x840 [ 274.086972][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 274.092972][ T4304] ? ____sys_recvmsg+0x5c1/0x810 [ 274.098080][ T4304] ? kfree+0x44/0x980 [ 274.102396][ T4304] ? ___sys_recvmsg+0x248/0x840 [ 274.107493][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 21:56:30 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) [ 274.113580][ T4304] ? get_compat_msghdr+0x51/0x720 [ 274.118834][ T4304] ? ___sys_recvmsg+0x18c/0x840 [ 274.123821][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 274.129807][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 274.135790][ T4304] ? should_fail+0x3f/0x810 [ 274.140468][ T4304] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 274.147003][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 274.152986][ T4304] __msan_chain_origin+0xbd/0x140 [ 274.158400][ T4304] get_compat_msghdr+0x4fc/0x720 [ 274.163613][ T4304] ___sys_recvmsg+0x18c/0x840 [ 274.168473][ T4304] ? __stack_depot_save+0x21/0x4b0 [ 274.173780][ T4304] ? kmsan_internal_check_memory+0x94/0x530 [ 274.179963][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 274.186055][ T4304] do_recvmmsg+0x682/0x1180 [ 274.190746][ T4304] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 274.197585][ T4304] __sys_recvmmsg+0x113/0x450 [ 274.202518][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 274.209377][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 274.214844][ T4304] ? exit_to_user_mode_prepare+0x119/0x220 [ 274.221016][ T4304] do_fast_syscall_32+0x33/0x70 [ 274.226044][ T4304] do_SYSENTER_32+0x1b/0x20 [ 274.230718][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 274.237798][ T4304] RIP: 0023:0xf7f63549 [ 274.242003][ T4304] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 274.261788][ T4304] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 274.270685][ T4304] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 274.279931][ T4304] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 274.288055][ T4304] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 274.296164][ T4304] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 274.304350][ T4304] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 274.312972][ T4304] [ 274.322905][ T4304] Uninit was stored to memory at: [ 274.328162][ T4304] get_compat_msghdr+0x4fc/0x720 [ 274.334035][ T4304] ___sys_recvmsg+0x18c/0x840 [ 274.338858][ T4304] do_recvmmsg+0x682/0x1180 [ 274.343066][ T3566] usb 4-1: Using ep0 maxpacket: 8 [ 274.343532][ T4304] __sys_recvmmsg+0x113/0x450 [ 274.353880][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 274.360297][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 274.365814][ T4304] do_fast_syscall_32+0x33/0x70 [ 274.371672][ T4304] do_SYSENTER_32+0x1b/0x20 [ 274.378612][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 274.387157][ T4304] [ 274.389641][ T4304] Uninit was stored to memory at: [ 274.395880][ T4304] get_compat_msghdr+0x4fc/0x720 [ 274.402881][ T4304] ___sys_recvmsg+0x18c/0x840 [ 274.407705][ T4304] do_recvmmsg+0x682/0x1180 [ 274.412687][ T4304] __sys_recvmmsg+0x113/0x450 [ 274.417607][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 274.424241][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 274.430123][ T4304] do_fast_syscall_32+0x33/0x70 [ 274.435221][ T4304] do_SYSENTER_32+0x1b/0x20 [ 274.439883][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 274.446538][ T4304] [ 274.448936][ T4304] Uninit was stored to memory at: [ 274.454276][ T4304] get_compat_msghdr+0x4fc/0x720 [ 274.459424][ T4304] ___sys_recvmsg+0x18c/0x840 [ 274.464165][ T3566] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 274.464377][ T4304] do_recvmmsg+0x682/0x1180 [ 274.473580][ T3566] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 274.478018][ T4304] __sys_recvmmsg+0x113/0x450 [ 274.491364][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 274.497894][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 274.503611][ T4304] do_fast_syscall_32+0x33/0x70 [ 274.508630][ T4304] do_SYSENTER_32+0x1b/0x20 [ 274.513608][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 274.520317][ T4304] [ 274.522938][ T4304] Uninit was stored to memory at: [ 274.528159][ T4304] get_compat_msghdr+0x4fc/0x720 [ 274.533359][ T4304] ___sys_recvmsg+0x18c/0x840 [ 274.533779][ T3566] usb 4-1: config 0 descriptor?? [ 274.538123][ T4304] do_recvmmsg+0x682/0x1180 [ 274.548469][ T4304] __sys_recvmmsg+0x113/0x450 [ 274.553825][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 274.560456][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 274.565925][ T4304] do_fast_syscall_32+0x33/0x70 [ 274.571040][ T4304] do_SYSENTER_32+0x1b/0x20 [ 274.575859][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 274.582441][ T4304] [ 274.584990][ T4304] Uninit was stored to memory at: [ 274.590308][ T4304] get_compat_msghdr+0x4fc/0x720 [ 274.596139][ T4304] ___sys_recvmsg+0x18c/0x840 [ 274.601605][ T4304] do_recvmmsg+0x682/0x1180 [ 274.606417][ T4304] __sys_recvmmsg+0x113/0x450 [ 274.611776][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 274.618777][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 274.624249][ T4304] do_fast_syscall_32+0x33/0x70 [ 274.629439][ T4304] do_SYSENTER_32+0x1b/0x20 [ 274.634264][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 274.640827][ T4304] [ 274.643409][ T4304] Uninit was stored to memory at: [ 274.648813][ T4304] get_compat_msghdr+0x4fc/0x720 [ 274.654261][ T4304] ___sys_recvmsg+0x18c/0x840 [ 274.659267][ T4304] do_recvmmsg+0x682/0x1180 [ 274.664369][ T4304] __sys_recvmmsg+0x113/0x450 [ 274.669319][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 274.675943][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 274.683668][ T4304] do_fast_syscall_32+0x33/0x70 [ 274.688864][ T4304] do_SYSENTER_32+0x1b/0x20 [ 274.693638][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 274.700246][ T4304] [ 274.702851][ T4304] Uninit was stored to memory at: [ 274.708437][ T4304] get_compat_msghdr+0x4fc/0x720 [ 274.713631][ T4304] ___sys_recvmsg+0x18c/0x840 [ 274.718475][ T4304] do_recvmmsg+0x682/0x1180 [ 274.723221][ T4304] __sys_recvmmsg+0x113/0x450 [ 274.728053][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 274.734559][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 274.739912][ T4304] do_fast_syscall_32+0x33/0x70 [ 274.745081][ T4304] do_SYSENTER_32+0x1b/0x20 [ 274.750172][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 274.756977][ T4304] [ 274.759406][ T4304] Local variable msg_sys created at: [ 274.764932][ T4304] do_recvmmsg+0x5c/0x1180 [ 274.769480][ T4304] __sys_recvmmsg+0x113/0x450 [ 274.774500][ T3619] usb 6-1: new high-speed USB device number 13 using dummy_hcd [ 274.966063][ T3561] usb 3-1: new high-speed USB device number 11 using dummy_hcd [ 274.975024][ T3619] usb 6-1: device descriptor read/64, error 18 [ 275.024569][ T4310] not chained 110000 origins [ 275.029427][ T4310] CPU: 0 PID: 4310 Comm: syz-executor.1 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 275.040000][ T4310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 275.050175][ T4310] Call Trace: [ 275.053548][ T4310] [ 275.056563][ T4310] dump_stack_lvl+0x1c8/0x256 [ 275.061547][ T4310] dump_stack+0x1a/0x1c [ 275.065875][ T4310] kmsan_internal_chain_origin+0x78/0x120 [ 275.072114][ T4310] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 275.078197][ T4310] ? ____sys_recvmsg+0x5c1/0x810 [ 275.083268][ T4310] ? ___sys_recvmsg+0x217/0x840 [ 275.088248][ T4310] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 275.094229][ T4310] ? ____sys_recvmsg+0x5c1/0x810 [ 275.099315][ T4310] ? kfree+0x44/0x980 [ 275.103419][ T4310] ? ___sys_recvmsg+0x248/0x840 [ 275.108406][ T4310] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 275.114580][ T4310] ? get_compat_msghdr+0x51/0x720 [ 275.119769][ T4310] ? ___sys_recvmsg+0x18c/0x840 [ 275.125118][ T4310] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 275.131316][ T4310] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 275.138476][ T4310] ? should_fail+0x3f/0x810 [ 275.144066][ T4310] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 275.150520][ T4310] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 275.156510][ T4310] __msan_chain_origin+0xbd/0x140 [ 275.161703][ T4310] get_compat_msghdr+0x4fc/0x720 [ 275.166895][ T4310] ___sys_recvmsg+0x18c/0x840 [ 275.171778][ T4310] ? __stack_depot_save+0x21/0x4b0 [ 275.177474][ T4310] ? kmsan_internal_check_memory+0x94/0x530 [ 275.183581][ T4310] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 275.189584][ T4310] do_recvmmsg+0x682/0x1180 [ 275.194365][ T4310] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 275.201504][ T4310] __sys_recvmmsg+0x113/0x450 [ 275.206384][ T4310] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 275.212910][ T4310] __do_fast_syscall_32+0xa2/0x100 [ 275.218869][ T4310] ? exit_to_user_mode_prepare+0x119/0x220 [ 275.224846][ T4310] do_fast_syscall_32+0x33/0x70 [ 275.229832][ T4310] do_SYSENTER_32+0x1b/0x20 [ 275.234484][ T4310] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 275.241039][ T4310] RIP: 0023:0xf7fd1549 [ 275.245231][ T4310] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 275.265286][ T4310] RSP: 002b:00000000f7fab5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 275.274216][ T4310] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 275.282849][ T4310] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 275.291292][ T4310] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 275.299749][ T4310] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 275.307856][ T4310] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 275.316763][ T4310] [ 275.321373][ T4310] Uninit was stored to memory at: [ 275.323173][ T3619] usb 6-1: new high-speed USB device number 14 using dummy_hcd [ 275.326706][ T4310] get_compat_msghdr+0x4fc/0x720 [ 275.340566][ T4310] ___sys_recvmsg+0x18c/0x840 [ 275.345799][ T4310] do_recvmmsg+0x682/0x1180 [ 275.350878][ T4310] __sys_recvmmsg+0x113/0x450 [ 275.356160][ T4310] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 275.363182][ T4310] __do_fast_syscall_32+0xa2/0x100 [ 275.370196][ T4310] do_fast_syscall_32+0x33/0x70 [ 275.376917][ T4310] do_SYSENTER_32+0x1b/0x20 [ 275.382033][ T4310] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 275.388893][ T4310] [ 275.391674][ T4310] Uninit was stored to memory at: [ 275.397327][ T4310] get_compat_msghdr+0x4fc/0x720 [ 275.402516][ T4310] ___sys_recvmsg+0x18c/0x840 [ 275.407498][ T4310] do_recvmmsg+0x682/0x1180 [ 275.412420][ T4310] __sys_recvmmsg+0x113/0x450 [ 275.417496][ T4310] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 275.424085][ T4310] __do_fast_syscall_32+0xa2/0x100 [ 275.429435][ T4310] do_fast_syscall_32+0x33/0x70 [ 275.434762][ T4310] do_SYSENTER_32+0x1b/0x20 [ 275.439457][ T4310] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 275.446204][ T4310] [ 275.448695][ T4310] Uninit was stored to memory at: [ 275.454163][ T4310] get_compat_msghdr+0x4fc/0x720 [ 275.459251][ T4310] ___sys_recvmsg+0x18c/0x840 [ 275.464306][ T4310] do_recvmmsg+0x682/0x1180 [ 275.468936][ T4310] __sys_recvmmsg+0x113/0x450 [ 275.473871][ T4310] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 275.480287][ T4310] __do_fast_syscall_32+0xa2/0x100 [ 275.485739][ T4310] do_fast_syscall_32+0x33/0x70 [ 275.490768][ T4310] do_SYSENTER_32+0x1b/0x20 [ 275.495909][ T4310] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 275.502611][ T4310] [ 275.505297][ T4310] Uninit was stored to memory at: [ 275.510626][ T4310] get_compat_msghdr+0x4fc/0x720 [ 275.516524][ T4310] ___sys_recvmsg+0x18c/0x840 [ 275.521539][ T4310] do_recvmmsg+0x682/0x1180 [ 275.526369][ T4310] __sys_recvmmsg+0x113/0x450 [ 275.531274][ T4310] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 275.538238][ T4310] __do_fast_syscall_32+0xa2/0x100 [ 275.543673][ T4310] do_fast_syscall_32+0x33/0x70 [ 275.548757][ T4310] do_SYSENTER_32+0x1b/0x20 [ 275.553375][ T3619] usb 6-1: device descriptor read/64, error 18 [ 275.553929][ T4310] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 275.566742][ T4310] [ 275.569149][ T4310] Uninit was stored to memory at: [ 275.574661][ T4310] get_compat_msghdr+0x4fc/0x720 [ 275.579743][ T4310] ___sys_recvmsg+0x18c/0x840 [ 275.589132][ T4310] do_recvmmsg+0x682/0x1180 [ 275.593952][ T4310] __sys_recvmmsg+0x113/0x450 [ 275.598881][ T4310] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 275.605543][ T4310] __do_fast_syscall_32+0xa2/0x100 [ 275.610824][ T4310] do_fast_syscall_32+0x33/0x70 [ 275.616664][ T4310] do_SYSENTER_32+0x1b/0x20 [ 275.621725][ T4304] not chained 120000 origins [ 275.622342][ T4310] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 275.628676][ T4304] CPU: 1 PID: 4304 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 275.636369][ T4310] [ 275.653479][ T4304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 275.653534][ T4304] Call Trace: [ 275.653561][ T4304] [ 275.653587][ T4304] dump_stack_lvl+0x1c8/0x256 [ 275.656265][ T4310] Uninit was stored to memory at: [ 275.656409][ T4310] get_compat_msghdr+0x4fc/0x720 [ 275.666344][ T4304] dump_stack+0x1a/0x1c [ 275.666456][ T4304] kmsan_internal_chain_origin+0x78/0x120 [ 275.669745][ T4310] ___sys_recvmsg+0x18c/0x840 [ 275.672703][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 275.672821][ T4304] ? ____sys_recvmsg+0x5c1/0x810 [ 275.677473][ T4310] do_recvmmsg+0x682/0x1180 [ 275.683117][ T4304] ? ___sys_recvmsg+0x217/0x840 [ 275.683201][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 275.688340][ T4310] __sys_recvmmsg+0x113/0x450 [ 275.692585][ T4304] ? ____sys_recvmsg+0x5c1/0x810 [ 275.698497][ T4310] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 275.703133][ T4304] ? kfree+0x44/0x980 [ 275.703206][ T4304] ? ___sys_recvmsg+0x248/0x840 [ 275.709035][ T4310] __do_fast_syscall_32+0xa2/0x100 [ 275.713980][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 275.714102][ T4304] ? get_compat_msghdr+0x51/0x720 [ 275.718695][ T4310] do_fast_syscall_32+0x33/0x70 [ 275.723554][ T4304] ? ___sys_recvmsg+0x18c/0x840 [ 275.723639][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 275.729456][ T4310] do_SYSENTER_32+0x1b/0x20 [ 275.734142][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 275.734270][ T4304] ? should_fail+0x3f/0x810 [ 275.739341][ T4310] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 275.745627][ T4304] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 275.749689][ T4310] [ 275.749704][ T4310] Uninit was stored to memory at: [ 275.756291][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 275.756414][ T4304] __msan_chain_origin+0xbd/0x140 [ 275.761687][ T4310] get_compat_msghdr+0x4fc/0x720 [ 275.767483][ T4304] get_compat_msghdr+0x4fc/0x720 [ 275.767592][ T4304] ___sys_recvmsg+0x18c/0x840 [ 275.772900][ T4310] ___sys_recvmsg+0x18c/0x840 [ 275.777800][ T4304] ? __stack_depot_save+0x21/0x4b0 [ 275.782636][ T4310] do_recvmmsg+0x682/0x1180 [ 275.788451][ T4304] ? kmsan_internal_check_memory+0x94/0x530 [ 275.793550][ T4310] __sys_recvmmsg+0x113/0x450 [ 275.799241][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 275.804204][ T4310] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 275.810553][ T4304] do_recvmmsg+0x682/0x1180 [ 275.817425][ T4310] __do_fast_syscall_32+0xa2/0x100 [ 275.820439][ T4304] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 275.825522][ T4310] do_fast_syscall_32+0x33/0x70 [ 275.831678][ T4304] __sys_recvmmsg+0x113/0x450 [ 275.836954][ T4310] do_SYSENTER_32+0x1b/0x20 [ 275.841930][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 275.848784][ T4310] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 275.853865][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 275.853974][ T4304] ? exit_to_user_mode_prepare+0x119/0x220 [ 275.858869][ T4310] [ 275.858900][ T4310] Local variable msg_sys created at: [ 275.865070][ T4304] do_fast_syscall_32+0x33/0x70 [ 275.865179][ T4304] do_SYSENTER_32+0x1b/0x20 [ 275.869748][ T4310] do_recvmmsg+0x5c/0x1180 [ 275.876108][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 275.876263][ T4304] RIP: 0023:0xf7f63549 [ 275.884416][ T4310] __sys_recvmmsg+0x113/0x450 [ 275.892188][ T4304] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 276.014686][ T4304] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 276.023370][ T4304] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 276.032270][ T4304] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 276.040477][ T4304] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 276.049947][ T4304] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 276.058420][ T4304] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 276.067689][ T4304] [ 276.073110][ T119] usb 5-1: new high-speed USB device number 13 using dummy_hcd [ 276.079140][ T4304] Uninit was stored to memory at: [ 276.087133][ T4304] get_compat_msghdr+0x4fc/0x720 [ 276.092301][ T4304] ___sys_recvmsg+0x18c/0x840 [ 276.097246][ T4304] do_recvmmsg+0x682/0x1180 [ 276.101925][ T4304] __sys_recvmmsg+0x113/0x450 [ 276.106832][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 276.113555][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 276.118849][ T4304] do_fast_syscall_32+0x33/0x70 [ 276.123929][ T4304] do_SYSENTER_32+0x1b/0x20 [ 276.129078][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 276.136476][ T4304] [ 276.138882][ T4304] Uninit was stored to memory at: [ 276.144194][ T4304] get_compat_msghdr+0x4fc/0x720 [ 276.149363][ T4304] ___sys_recvmsg+0x18c/0x840 [ 276.154312][ T4304] do_recvmmsg+0x682/0x1180 [ 276.158976][ T4304] __sys_recvmmsg+0x113/0x450 [ 276.163874][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 276.170365][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 276.175734][ T4304] do_fast_syscall_32+0x33/0x70 [ 276.180828][ T4304] do_SYSENTER_32+0x1b/0x20 [ 276.185559][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 276.192098][ T4304] [ 276.194625][ T4304] Uninit was stored to memory at: [ 276.199958][ T4304] get_compat_msghdr+0x4fc/0x720 [ 276.205130][ T4304] ___sys_recvmsg+0x18c/0x840 [ 276.210030][ T4304] do_recvmmsg+0x682/0x1180 [ 276.214757][ T4304] __sys_recvmmsg+0x113/0x450 [ 276.219821][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 276.226684][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 276.231984][ T4304] do_fast_syscall_32+0x33/0x70 [ 276.237286][ T4304] do_SYSENTER_32+0x1b/0x20 [ 276.241946][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 276.250487][ T4304] [ 276.253037][ T4304] Uninit was stored to memory at: [ 276.258296][ T4304] get_compat_msghdr+0x4fc/0x720 [ 276.264272][ T4304] ___sys_recvmsg+0x18c/0x840 [ 276.269649][ T4304] do_recvmmsg+0x682/0x1180 [ 276.274389][ T4304] __sys_recvmmsg+0x113/0x450 [ 276.279220][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 276.285975][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 276.291245][ T4304] do_fast_syscall_32+0x33/0x70 [ 276.296416][ T4304] do_SYSENTER_32+0x1b/0x20 [ 276.301147][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 276.307767][ T4304] [ 276.310159][ T4304] Uninit was stored to memory at: [ 276.315926][ T4304] get_compat_msghdr+0x4fc/0x720 [ 276.321017][ T4304] ___sys_recvmsg+0x18c/0x840 [ 276.326104][ T4304] do_recvmmsg+0x682/0x1180 [ 276.330764][ T4304] __sys_recvmmsg+0x113/0x450 [ 276.335699][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 276.342111][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 276.347606][ T4304] do_fast_syscall_32+0x33/0x70 [ 276.352678][ T4304] do_SYSENTER_32+0x1b/0x20 [ 276.357744][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 276.364506][ T4304] [ 276.367007][ T4304] Uninit was stored to memory at: [ 276.372227][ T4304] get_compat_msghdr+0x4fc/0x720 [ 276.377517][ T4304] ___sys_recvmsg+0x18c/0x840 [ 276.382362][ T4304] do_recvmmsg+0x682/0x1180 [ 276.387107][ T4304] __sys_recvmmsg+0x113/0x450 [ 276.392011][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 276.398564][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 276.403925][ T4304] do_fast_syscall_32+0x33/0x70 [ 276.408928][ T4304] do_SYSENTER_32+0x1b/0x20 [ 276.413662][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 276.420200][ T4304] [ 276.422610][ T4304] Uninit was stored to memory at: [ 276.427933][ T4304] get_compat_msghdr+0x4fc/0x720 [ 276.433102][ T4304] ___sys_recvmsg+0x18c/0x840 [ 276.433914][ T119] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 276.437866][ T4304] do_recvmmsg+0x682/0x1180 [ 276.449264][ T119] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 276.453550][ T4304] __sys_recvmmsg+0x113/0x450 [ 276.464346][ T119] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 276.468986][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 276.478354][ T119] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 276.484534][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 276.498201][ T4304] do_fast_syscall_32+0x33/0x70 [ 276.503318][ T4304] do_SYSENTER_32+0x1b/0x20 [ 276.507964][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 276.514579][ T4304] [ 276.517072][ T4304] Local variable msg_sys created at: [ 276.522523][ T4304] do_recvmmsg+0x5c/0x1180 [ 276.527161][ T4304] __sys_recvmmsg+0x113/0x450 [ 276.535666][ T3561] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 276.545039][ T3561] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 276.555715][ T3561] usb 3-1: Product: syz [ 276.560718][ T3561] usb 3-1: Manufacturer: syz [ 276.567110][ T3561] usb 3-1: SerialNumber: syz [ 276.583129][ T3619] usb usb6-port1: attempt power cycle [ 276.636037][ T3561] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested 21:56:32 executing program 5: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x925, 0x8888, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x6, {[@local, @main=@item_4={0x3, 0x0, 0x0, "8b707542"}]}}, 0x0}, 0x0) [ 276.812492][ T4310] not chained 130000 origins [ 276.818142][ T4310] CPU: 1 PID: 4310 Comm: syz-executor.1 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 276.828895][ T4310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 276.839512][ T4310] Call Trace: [ 276.842930][ T4310] [ 276.846562][ T4310] dump_stack_lvl+0x1c8/0x256 [ 276.851906][ T4310] dump_stack+0x1a/0x1c [ 276.856268][ T4310] kmsan_internal_chain_origin+0x78/0x120 [ 276.862195][ T4310] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 276.868357][ T4310] ? ____sys_recvmsg+0x5c1/0x810 [ 276.873454][ T4310] ? ___sys_recvmsg+0x217/0x840 [ 276.878467][ T4310] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 276.884495][ T4310] ? ____sys_recvmsg+0x5c1/0x810 [ 276.889599][ T4310] ? kfree+0x44/0x980 [ 276.893885][ T4310] ? ___sys_recvmsg+0x248/0x840 [ 276.899337][ T4310] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 276.905695][ T4310] ? get_compat_msghdr+0x51/0x720 [ 276.910873][ T4310] ? ___sys_recvmsg+0x18c/0x840 [ 276.915964][ T4310] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 276.922013][ T4310] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 276.928530][ T4310] ? should_fail+0x3f/0x810 [ 276.933225][ T4310] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 276.939723][ T4310] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 276.945768][ T4310] __msan_chain_origin+0xbd/0x140 [ 276.951087][ T4310] get_compat_msghdr+0x4fc/0x720 [ 276.956207][ T4310] ___sys_recvmsg+0x18c/0x840 [ 276.961171][ T4310] ? __stack_depot_save+0x21/0x4b0 [ 276.966570][ T4310] ? kmsan_internal_check_memory+0x94/0x530 [ 276.973068][ T4310] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 276.979140][ T4310] do_recvmmsg+0x682/0x1180 [ 276.983971][ T4310] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 276.990623][ T4310] __sys_recvmmsg+0x113/0x450 [ 276.995553][ T4310] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 277.002441][ T4310] __do_fast_syscall_32+0xa2/0x100 [ 277.007748][ T4310] ? exit_to_user_mode_prepare+0x119/0x220 [ 277.014274][ T4310] do_fast_syscall_32+0x33/0x70 [ 277.019302][ T4310] do_SYSENTER_32+0x1b/0x20 [ 277.023968][ T4310] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 277.030502][ T4310] RIP: 0023:0xf7fd1549 [ 277.035118][ T4310] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 277.058550][ T4310] RSP: 002b:00000000f7fab5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 277.068249][ T4310] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 277.079162][ T4310] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 277.088397][ T4310] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 277.096925][ T4310] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 277.105001][ T4310] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 277.113094][ T4310] [ 277.123920][ T4310] Uninit was stored to memory at: [ 277.129819][ T4310] get_compat_msghdr+0x4fc/0x720 [ 277.135475][ T3566] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71 [ 277.136010][ T4310] ___sys_recvmsg+0x18c/0x840 [ 277.146635][ T3566] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to send software reset: ffffffb9 [ 277.152603][ T4310] do_recvmmsg+0x682/0x1180 [ 277.164581][ T3566] asix: probe of 4-1:0.0 failed with error -71 [ 277.168745][ T4310] __sys_recvmmsg+0x113/0x450 [ 277.181138][ T4310] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 277.190622][ T4310] __do_fast_syscall_32+0xa2/0x100 [ 277.196906][ T4310] do_fast_syscall_32+0x33/0x70 [ 277.203394][ T4310] do_SYSENTER_32+0x1b/0x20 [ 277.208372][ T4310] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 277.216171][ T4310] [ 277.218600][ T4310] Uninit was stored to memory at: [ 277.224097][ T4310] get_compat_msghdr+0x4fc/0x720 [ 277.229285][ T4310] ___sys_recvmsg+0x18c/0x840 [ 277.237030][ T4310] do_recvmmsg+0x682/0x1180 [ 277.241945][ T4310] __sys_recvmmsg+0x113/0x450 [ 277.246912][ T4310] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 277.254357][ T4310] __do_fast_syscall_32+0xa2/0x100 [ 277.265729][ T4310] do_fast_syscall_32+0x33/0x70 [ 277.270831][ T4310] do_SYSENTER_32+0x1b/0x20 [ 277.277078][ T4310] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 277.284954][ T4310] [ 277.287354][ T4310] Uninit was stored to memory at: [ 277.293532][ T4310] get_compat_msghdr+0x4fc/0x720 [ 277.299794][ T4310] ___sys_recvmsg+0x18c/0x840 [ 277.307454][ T4310] do_recvmmsg+0x682/0x1180 [ 277.312574][ T4310] __sys_recvmmsg+0x113/0x450 [ 277.318110][ T4310] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 277.327554][ T4310] __do_fast_syscall_32+0xa2/0x100 [ 277.334599][ T4310] do_fast_syscall_32+0x33/0x70 [ 277.340824][ T4310] do_SYSENTER_32+0x1b/0x20 [ 277.346079][ T4310] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 277.353557][ T4310] [ 277.356146][ T4310] Uninit was stored to memory at: 21:56:33 executing program 2: syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000300)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(0xffffffffffffffff, 0x83, 0x81, &(0x7f0000000380)=@generic={0x2, 0x0, 0x79, "398027db", "67ec4cb938290810877773f5e11a52aa985c8c97f8dda950663cd665451e7fbd3bf63eb60a5be421544a3d194b304ef0f4af9d35db09c8780836e570988d9ec5e860e76504bf41cf7b60fe05cdc75d5c41f81dd4568595dab91f5922b594ab765c7ea4d86d3ef16c6f421676929762ba4b88a59f49407a8a22"}) [ 277.362490][ T4310] get_compat_msghdr+0x4fc/0x720 [ 277.363975][ T119] usb 5-1: config 0 descriptor?? [ 277.368313][ T4310] ___sys_recvmsg+0x18c/0x840 [ 277.380898][ T4310] do_recvmmsg+0x682/0x1180 [ 277.386152][ T4310] __sys_recvmmsg+0x113/0x450 [ 277.391684][ T4310] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 277.398513][ T4310] __do_fast_syscall_32+0xa2/0x100 [ 277.405194][ T4310] do_fast_syscall_32+0x33/0x70 [ 277.411623][ T4310] do_SYSENTER_32+0x1b/0x20 [ 277.424520][ T4310] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 277.432289][ T4310] [ 277.435388][ T4310] Uninit was stored to memory at: [ 277.440696][ T4310] get_compat_msghdr+0x4fc/0x720 [ 277.446119][ T4310] ___sys_recvmsg+0x18c/0x840 [ 277.451648][ T4310] do_recvmmsg+0x682/0x1180 [ 277.456555][ T4310] __sys_recvmmsg+0x113/0x450 [ 277.461467][ T4310] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 277.468211][ T4310] __do_fast_syscall_32+0xa2/0x100 [ 277.473793][ T4310] do_fast_syscall_32+0x33/0x70 [ 277.479843][ T4310] do_SYSENTER_32+0x1b/0x20 [ 277.484647][ T4310] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 277.492942][ T4310] [ 277.495349][ T4310] Uninit was stored to memory at: [ 277.502992][ T4310] get_compat_msghdr+0x4fc/0x720 [ 277.508163][ T4310] ___sys_recvmsg+0x18c/0x840 [ 277.513613][ T4310] do_recvmmsg+0x682/0x1180 [ 277.519580][ T4310] __sys_recvmmsg+0x113/0x450 [ 277.524997][ T4310] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 277.533480][ T4310] __do_fast_syscall_32+0xa2/0x100 [ 277.542341][ T4310] do_fast_syscall_32+0x33/0x70 [ 277.548859][ T4310] do_SYSENTER_32+0x1b/0x20 [ 277.556030][ T4310] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 277.564306][ T4310] [ 277.567951][ T4310] Uninit was stored to memory at: [ 277.574301][ T4310] get_compat_msghdr+0x4fc/0x720 [ 277.581024][ T4310] ___sys_recvmsg+0x18c/0x840 [ 277.590343][ T4310] do_recvmmsg+0x682/0x1180 [ 277.595703][ T4310] __sys_recvmmsg+0x113/0x450 [ 277.602625][ T4310] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 277.610256][ T4310] __do_fast_syscall_32+0xa2/0x100 [ 277.615945][ T4310] do_fast_syscall_32+0x33/0x70 [ 277.621251][ T4310] do_SYSENTER_32+0x1b/0x20 [ 277.627567][ T4310] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 277.635350][ T4310] [ 277.637769][ T4310] Local variable msg_sys created at: [ 277.643378][ T4310] do_recvmmsg+0x5c/0x1180 [ 277.649513][ T4310] __sys_recvmmsg+0x113/0x450 [ 277.683154][ T3558] usb 3-1: ath9k_htc: Firmware - ath9k_htc/htc_9271-1.4.0.fw download failed [ 277.718578][ T3560] usb 3-1: USB disconnect, device number 11 [ 277.735985][ T3560] usb 3-1: ath9k_htc: USB layer deinitialized [ 277.755373][ T3566] usb 4-1: USB disconnect, device number 10 [ 277.904262][ T3619] usb usb6-port1: Cannot enable. Maybe the USB cable is bad? [ 277.914479][ T119] usbhid 5-1:0.0: can't add hid device: -71 [ 277.921670][ T119] usbhid: probe of 5-1:0.0 failed with error -71 [ 278.036138][ T119] usb 5-1: USB disconnect, device number 13 [ 278.083228][ T3619] usb 6-1: new high-speed USB device number 16 using dummy_hcd [ 278.139578][ T4310] not chained 140000 origins [ 278.157367][ T4310] CPU: 1 PID: 4310 Comm: syz-executor.1 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 278.169733][ T4310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 278.181101][ T4310] Call Trace: [ 278.184487][ T4310] [ 278.187536][ T4310] dump_stack_lvl+0x1c8/0x256 [ 278.192515][ T4310] dump_stack+0x1a/0x1c [ 278.197052][ T4310] kmsan_internal_chain_origin+0x78/0x120 [ 278.203681][ T4310] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 278.211272][ T4310] ? ____sys_recvmsg+0x5c1/0x810 [ 278.216494][ T4310] ? ___sys_recvmsg+0x217/0x840 [ 278.221580][ T4310] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 278.227586][ T4310] ? ____sys_recvmsg+0x5c1/0x810 [ 278.232783][ T4310] ? kfree+0x44/0x980 [ 278.237519][ T4310] ? ___sys_recvmsg+0x248/0x840 [ 278.242520][ T4310] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 278.248694][ T4310] ? get_compat_msghdr+0x51/0x720 [ 278.254053][ T4310] ? ___sys_recvmsg+0x18c/0x840 [ 278.260287][ T4310] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 278.266757][ T4310] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 278.272767][ T4310] ? should_fail+0x3f/0x810 [ 278.277703][ T4310] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 278.286051][ T4310] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 278.292089][ T4310] __msan_chain_origin+0xbd/0x140 [ 278.297618][ T4310] get_compat_msghdr+0x4fc/0x720 [ 278.302738][ T4310] ___sys_recvmsg+0x18c/0x840 [ 278.308022][ T4310] ? __stack_depot_save+0x21/0x4b0 [ 278.314621][ T4310] ? kmsan_internal_check_memory+0x94/0x530 [ 278.324335][ T4310] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 278.332813][ T4310] do_recvmmsg+0x682/0x1180 [ 278.341127][ T4310] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 278.348592][ T4310] __sys_recvmmsg+0x113/0x450 [ 278.353642][ T4310] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 278.360099][ T4310] __do_fast_syscall_32+0xa2/0x100 [ 278.366449][ T4310] ? exit_to_user_mode_prepare+0x119/0x220 [ 278.373171][ T4310] do_fast_syscall_32+0x33/0x70 [ 278.378444][ T4310] do_SYSENTER_32+0x1b/0x20 [ 278.384061][ T4310] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 278.391216][ T4310] RIP: 0023:0xf7fd1549 [ 278.395411][ T4310] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 278.416327][ T4310] RSP: 002b:00000000f7fab5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 278.424915][ T4310] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 278.433488][ T4310] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 278.441921][ T4310] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 278.450722][ T4310] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 278.458827][ T4310] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 278.467250][ T4310] [ 278.470618][ T4310] Uninit was stored to memory at: [ 278.475966][ T4310] get_compat_msghdr+0x4fc/0x720 [ 278.481059][ T4310] ___sys_recvmsg+0x18c/0x840 [ 278.486173][ T4310] do_recvmmsg+0x682/0x1180 [ 278.490940][ T4310] __sys_recvmmsg+0x113/0x450 [ 278.495930][ T4310] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 278.502457][ T4310] __do_fast_syscall_32+0xa2/0x100 [ 278.508010][ T4310] do_fast_syscall_32+0x33/0x70 [ 278.513189][ T4310] do_SYSENTER_32+0x1b/0x20 [ 278.518355][ T4310] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 278.524993][ T4310] [ 278.527407][ T4310] Uninit was stored to memory at: [ 278.532817][ T4310] get_compat_msghdr+0x4fc/0x720 [ 278.538016][ T4310] ___sys_recvmsg+0x18c/0x840 [ 278.542939][ T4310] do_recvmmsg+0x682/0x1180 [ 278.547707][ T4310] __sys_recvmmsg+0x113/0x450 [ 278.552556][ T4310] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 278.559096][ T4310] __do_fast_syscall_32+0xa2/0x100 [ 278.564484][ T4310] do_fast_syscall_32+0x33/0x70 [ 278.569508][ T4310] do_SYSENTER_32+0x1b/0x20 [ 278.574257][ T4310] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 278.580800][ T4310] [ 278.583273][ T4310] Uninit was stored to memory at: [ 278.588506][ T4310] get_compat_msghdr+0x4fc/0x720 [ 278.593701][ T4310] ___sys_recvmsg+0x18c/0x840 [ 278.598533][ T4310] do_recvmmsg+0x682/0x1180 [ 278.603544][ T4310] __sys_recvmmsg+0x113/0x450 [ 278.608370][ T4310] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 278.614899][ T4310] __do_fast_syscall_32+0xa2/0x100 [ 278.620359][ T4310] do_fast_syscall_32+0x33/0x70 [ 278.625563][ T4310] do_SYSENTER_32+0x1b/0x20 [ 278.630217][ T4310] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 278.636971][ T4310] [ 278.639368][ T4310] Uninit was stored to memory at: [ 278.644944][ T4310] get_compat_msghdr+0x4fc/0x720 [ 278.650199][ T4310] ___sys_recvmsg+0x18c/0x840 [ 278.655153][ T4310] do_recvmmsg+0x682/0x1180 [ 278.659797][ T4310] __sys_recvmmsg+0x113/0x450 [ 278.663612][ T3560] usb 3-1: new high-speed USB device number 12 using dummy_hcd [ 278.664700][ T4310] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 278.678724][ T4310] __do_fast_syscall_32+0xa2/0x100 [ 278.684136][ T4310] do_fast_syscall_32+0x33/0x70 [ 278.689138][ T4310] do_SYSENTER_32+0x1b/0x20 [ 278.693945][ T4310] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 278.700838][ T4310] [ 278.703365][ T4310] Uninit was stored to memory at: [ 278.708685][ T4310] get_compat_msghdr+0x4fc/0x720 [ 278.713955][ T4310] ___sys_recvmsg+0x18c/0x840 [ 278.719113][ T4310] do_recvmmsg+0x682/0x1180 [ 278.724069][ T4310] __sys_recvmmsg+0x113/0x450 [ 278.728894][ T4310] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 278.735682][ T4310] __do_fast_syscall_32+0xa2/0x100 [ 278.740953][ T4310] do_fast_syscall_32+0x33/0x70 [ 278.746139][ T4310] do_SYSENTER_32+0x1b/0x20 [ 278.750885][ T4310] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 278.757771][ T4310] [ 278.760178][ T4310] Uninit was stored to memory at: [ 278.765641][ T4310] get_compat_msghdr+0x4fc/0x720 [ 278.770732][ T4310] ___sys_recvmsg+0x18c/0x840 [ 278.775744][ T4310] do_recvmmsg+0x682/0x1180 [ 278.780669][ T4310] __sys_recvmmsg+0x113/0x450 [ 278.785643][ T4310] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 278.792183][ T4310] __do_fast_syscall_32+0xa2/0x100 [ 278.797619][ T4310] do_fast_syscall_32+0x33/0x70 [ 278.802640][ T4310] do_SYSENTER_32+0x1b/0x20 [ 278.810321][ T4310] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 278.818067][ T4310] [ 278.820993][ T4310] Uninit was stored to memory at: [ 278.826649][ T4310] get_compat_msghdr+0x4fc/0x720 [ 278.835152][ T4310] ___sys_recvmsg+0x18c/0x840 [ 278.840338][ T4310] do_recvmmsg+0x682/0x1180 [ 278.845146][ T4310] __sys_recvmmsg+0x113/0x450 [ 278.849966][ T4310] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 278.856589][ T4310] __do_fast_syscall_32+0xa2/0x100 [ 278.862135][ T4310] do_fast_syscall_32+0x33/0x70 [ 278.867373][ T4310] do_SYSENTER_32+0x1b/0x20 [ 278.872044][ T4310] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 278.879448][ T4310] [ 278.881862][ T4310] Local variable msg_sys created at: [ 278.887452][ T4310] do_recvmmsg+0x5c/0x1180 [ 278.892317][ T4310] __sys_recvmmsg+0x113/0x450 [ 278.943447][ T3619] usb 6-1: Invalid ep0 maxpacket: 0 [ 278.949511][ T3619] usb usb6-port1: unable to enumerate USB device [ 279.107233][ T4304] not chained 150000 origins [ 279.113602][ T4304] CPU: 0 PID: 4304 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 279.124170][ T4304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 279.135749][ T4304] Call Trace: [ 279.139130][ T4304] [ 279.142665][ T4304] dump_stack_lvl+0x1c8/0x256 [ 279.147540][ T4304] dump_stack+0x1a/0x1c [ 279.151957][ T4304] kmsan_internal_chain_origin+0x78/0x120 [ 279.157887][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 279.164045][ T4304] ? ____sys_recvmsg+0x5c1/0x810 [ 279.169112][ T4304] ? ___sys_recvmsg+0x217/0x840 [ 279.174181][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 279.180151][ T4304] ? ____sys_recvmsg+0x5c1/0x810 [ 279.185228][ T4304] ? kfree+0x44/0x980 [ 279.189573][ T4304] ? ___sys_recvmsg+0x248/0x840 [ 279.194830][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 279.200971][ T4304] ? get_compat_msghdr+0x51/0x720 [ 279.206290][ T4304] ? ___sys_recvmsg+0x18c/0x840 [ 279.211255][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 279.217224][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 279.223195][ T4304] ? should_fail+0x3f/0x810 [ 279.227876][ T4304] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 279.234555][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 279.241262][ T4304] __msan_chain_origin+0xbd/0x140 [ 279.246462][ T4304] get_compat_msghdr+0x4fc/0x720 [ 279.251555][ T4304] ___sys_recvmsg+0x18c/0x840 [ 279.256449][ T4304] ? __stack_depot_save+0x21/0x4b0 [ 279.261751][ T4304] ? kmsan_internal_check_memory+0x94/0x530 [ 279.267923][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 279.274334][ T4304] do_recvmmsg+0x682/0x1180 [ 279.278993][ T4304] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 279.285573][ T4304] __sys_recvmmsg+0x113/0x450 [ 279.290375][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 279.296784][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 279.302345][ T4304] ? exit_to_user_mode_prepare+0x119/0x220 [ 279.308335][ T4304] do_fast_syscall_32+0x33/0x70 [ 279.313603][ T4304] do_SYSENTER_32+0x1b/0x20 [ 279.318525][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 279.326229][ T4304] RIP: 0023:0xf7f63549 [ 279.330532][ T4304] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 279.351035][ T4304] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 279.359786][ T4304] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 279.368162][ T4304] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 279.376612][ T4304] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 279.385245][ T4304] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 279.393605][ T4304] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 279.402160][ T4304] [ 279.405903][ T4304] Uninit was stored to memory at: [ 279.412015][ T4304] get_compat_msghdr+0x4fc/0x720 [ 279.417244][ T4304] ___sys_recvmsg+0x18c/0x840 [ 279.422067][ T4304] do_recvmmsg+0x682/0x1180 [ 279.441277][ T4304] __sys_recvmmsg+0x113/0x450 [ 279.446310][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 279.454233][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 279.460279][ T4304] do_fast_syscall_32+0x33/0x70 [ 279.465430][ T4304] do_SYSENTER_32+0x1b/0x20 [ 279.470262][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 279.476534][ T1197] ieee802154 phy0 wpan0: encryption failed: -22 [ 279.476898][ T4304] [ 279.483479][ T1197] ieee802154 phy1 wpan1: encryption failed: -22 [ 279.485665][ T4304] Uninit was stored to memory at: [ 279.485806][ T4304] get_compat_msghdr+0x4fc/0x720 [ 279.503062][ T4304] ___sys_recvmsg+0x18c/0x840 [ 279.507975][ T4304] do_recvmmsg+0x682/0x1180 [ 279.512625][ T4304] __sys_recvmmsg+0x113/0x450 [ 279.518381][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 279.525163][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 279.531565][ T4304] do_fast_syscall_32+0x33/0x70 [ 279.536701][ T4304] do_SYSENTER_32+0x1b/0x20 [ 279.541360][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 279.548127][ T4304] [ 279.550530][ T4304] Uninit was stored to memory at: [ 279.556333][ T4304] get_compat_msghdr+0x4fc/0x720 [ 279.561519][ T4304] ___sys_recvmsg+0x18c/0x840 [ 279.566568][ T4304] do_recvmmsg+0x682/0x1180 [ 279.571761][ T4304] __sys_recvmmsg+0x113/0x450 [ 279.577171][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 279.583804][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 279.589183][ T4304] do_fast_syscall_32+0x33/0x70 [ 279.594311][ T4304] do_SYSENTER_32+0x1b/0x20 [ 279.598970][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 279.605974][ T4304] [ 279.608383][ T4304] Uninit was stored to memory at: [ 279.613733][ T4304] get_compat_msghdr+0x4fc/0x720 [ 279.618831][ T4304] ___sys_recvmsg+0x18c/0x840 [ 279.624673][ T4304] do_recvmmsg+0x682/0x1180 [ 279.629314][ T4304] __sys_recvmmsg+0x113/0x450 [ 279.635066][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 279.644347][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 279.649889][ T4304] do_fast_syscall_32+0x33/0x70 [ 279.655098][ T4304] do_SYSENTER_32+0x1b/0x20 [ 279.659744][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 279.666393][ T4304] [ 279.668875][ T4304] Uninit was stored to memory at: [ 279.674227][ T4304] get_compat_msghdr+0x4fc/0x720 [ 279.679415][ T4304] ___sys_recvmsg+0x18c/0x840 [ 279.684359][ T4304] do_recvmmsg+0x682/0x1180 [ 279.689114][ T4304] __sys_recvmmsg+0x113/0x450 [ 279.694833][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 279.701900][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 279.707297][ T4304] do_fast_syscall_32+0x33/0x70 [ 279.713197][ T4304] do_SYSENTER_32+0x1b/0x20 [ 279.717855][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 279.726445][ T4304] [ 279.728847][ T4304] Uninit was stored to memory at: [ 279.734456][ T4304] get_compat_msghdr+0x4fc/0x720 [ 279.739570][ T4304] ___sys_recvmsg+0x18c/0x840 [ 279.744779][ T4304] do_recvmmsg+0x682/0x1180 [ 279.749621][ T4304] __sys_recvmmsg+0x113/0x450 [ 279.754753][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 279.761301][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 279.766821][ T4304] do_fast_syscall_32+0x33/0x70 [ 279.771851][ T4304] do_SYSENTER_32+0x1b/0x20 [ 279.777316][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 279.785121][ T4304] [ 279.787876][ T4304] Uninit was stored to memory at: [ 279.793211][ T4304] get_compat_msghdr+0x4fc/0x720 [ 279.798662][ T4304] ___sys_recvmsg+0x18c/0x840 [ 279.803710][ T4304] do_recvmmsg+0x682/0x1180 [ 279.808543][ T4304] __sys_recvmmsg+0x113/0x450 [ 279.813787][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 279.821176][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 279.827920][ T4304] do_fast_syscall_32+0x33/0x70 [ 279.833731][ T4304] do_SYSENTER_32+0x1b/0x20 [ 279.840130][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 279.847622][ T4304] [ 279.850017][ T4304] Local variable msg_sys created at: [ 279.856584][ T4304] do_recvmmsg+0x5c/0x1180 [ 279.861156][ T4304] __sys_recvmmsg+0x113/0x450 [ 279.943753][ T3560] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 279.953747][ T3560] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 279.962056][ T3560] usb 3-1: Product: syz [ 279.966603][ T3560] usb 3-1: Manufacturer: syz [ 279.971438][ T3560] usb 3-1: SerialNumber: syz [ 279.995708][ T4304] not chained 160000 origins [ 280.000608][ T4304] CPU: 0 PID: 4304 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 280.011719][ T4304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 280.022434][ T4304] Call Trace: [ 280.025973][ T4304] [ 280.028981][ T4304] dump_stack_lvl+0x1c8/0x256 [ 280.033914][ T4304] dump_stack+0x1a/0x1c [ 280.038257][ T4304] kmsan_internal_chain_origin+0x78/0x120 [ 280.044300][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 280.050312][ T4304] ? ____sys_recvmsg+0x5c1/0x810 [ 280.055405][ T4304] ? ___sys_recvmsg+0x217/0x840 [ 280.060409][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 280.066481][ T4304] ? ____sys_recvmsg+0x5c1/0x810 [ 280.071548][ T4304] ? kfree+0x44/0x980 [ 280.076193][ T4304] ? ___sys_recvmsg+0x248/0x840 [ 280.081210][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 280.087295][ T4304] ? get_compat_msghdr+0x51/0x720 [ 280.092471][ T4304] ? ___sys_recvmsg+0x18c/0x840 [ 280.097755][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 280.103932][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 280.110370][ T4304] ? should_fail+0x3f/0x810 [ 280.115050][ T4304] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 280.121836][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 280.128206][ T4304] __msan_chain_origin+0xbd/0x140 [ 280.133935][ T4304] get_compat_msghdr+0x4fc/0x720 [ 280.139957][ T4304] ___sys_recvmsg+0x18c/0x840 [ 280.145244][ T4304] ? __stack_depot_save+0x21/0x4b0 [ 280.150540][ T4304] ? kmsan_internal_check_memory+0x94/0x530 [ 280.157091][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 280.163167][ T4304] do_recvmmsg+0x682/0x1180 [ 280.167863][ T4304] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 280.174542][ T4304] __sys_recvmmsg+0x113/0x450 [ 280.179376][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 280.185790][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 280.191057][ T4304] ? exit_to_user_mode_prepare+0x119/0x220 [ 280.197141][ T4304] do_fast_syscall_32+0x33/0x70 [ 280.202390][ T4304] do_SYSENTER_32+0x1b/0x20 [ 280.207075][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 280.214824][ T4304] RIP: 0023:0xf7f63549 [ 280.219893][ T4304] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 280.240386][ T4304] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 280.249779][ T4304] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 280.257984][ T4304] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 280.267485][ T4304] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 280.276028][ T4304] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 280.284633][ T4304] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 280.295101][ T4304] [ 280.298935][ T4304] Uninit was stored to memory at: [ 280.304373][ T4304] get_compat_msghdr+0x4fc/0x720 [ 280.310988][ T4304] ___sys_recvmsg+0x18c/0x840 [ 280.316114][ T4304] do_recvmmsg+0x682/0x1180 [ 280.321932][ T4304] __sys_recvmmsg+0x113/0x450 [ 280.328160][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 280.335390][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 280.341195][ T4304] do_fast_syscall_32+0x33/0x70 [ 280.346858][ T4304] do_SYSENTER_32+0x1b/0x20 [ 280.352317][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 280.360030][ T4304] [ 280.362511][ T4304] Uninit was stored to memory at: [ 280.367847][ T4304] get_compat_msghdr+0x4fc/0x720 [ 280.373631][ T4304] ___sys_recvmsg+0x18c/0x840 [ 280.378463][ T4304] do_recvmmsg+0x682/0x1180 [ 280.384190][ T4304] __sys_recvmmsg+0x113/0x450 [ 280.389297][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 280.395837][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 280.401196][ T4304] do_fast_syscall_32+0x33/0x70 [ 280.406896][ T4304] do_SYSENTER_32+0x1b/0x20 [ 280.412286][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 280.419323][ T4304] [ 280.421742][ T4304] Uninit was stored to memory at: [ 280.427117][ T4304] get_compat_msghdr+0x4fc/0x720 [ 280.432319][ T4304] ___sys_recvmsg+0x18c/0x840 [ 280.437322][ T4304] do_recvmmsg+0x682/0x1180 [ 280.442061][ T4304] __sys_recvmmsg+0x113/0x450 [ 280.447102][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 280.453735][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 280.459349][ T4304] do_fast_syscall_32+0x33/0x70 [ 280.464494][ T4304] do_SYSENTER_32+0x1b/0x20 [ 280.469138][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 280.475865][ T4304] [ 280.478273][ T4304] Uninit was stored to memory at: [ 280.483720][ T4304] get_compat_msghdr+0x4fc/0x720 [ 280.488900][ T4304] ___sys_recvmsg+0x18c/0x840 [ 280.494647][ T4304] do_recvmmsg+0x682/0x1180 [ 280.499442][ T4304] __sys_recvmmsg+0x113/0x450 [ 280.504506][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 280.511046][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 280.516727][ T4304] do_fast_syscall_32+0x33/0x70 [ 280.521746][ T4304] do_SYSENTER_32+0x1b/0x20 [ 280.526527][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 280.533265][ T4304] [ 280.535658][ T4304] Uninit was stored to memory at: [ 280.540862][ T4304] get_compat_msghdr+0x4fc/0x720 [ 280.546172][ T4304] ___sys_recvmsg+0x18c/0x840 [ 280.551019][ T4304] do_recvmmsg+0x682/0x1180 [ 280.556133][ T4304] __sys_recvmmsg+0x113/0x450 [ 280.561769][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 280.568661][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 280.574326][ T4304] do_fast_syscall_32+0x33/0x70 [ 280.579899][ T4304] do_SYSENTER_32+0x1b/0x20 [ 280.584679][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 280.591355][ T4304] [ 280.593958][ T4304] Uninit was stored to memory at: [ 280.602186][ T4304] get_compat_msghdr+0x4fc/0x720 [ 280.608531][ T4304] ___sys_recvmsg+0x18c/0x840 [ 280.613988][ T4304] do_recvmmsg+0x682/0x1180 [ 280.618925][ T4304] __sys_recvmmsg+0x113/0x450 [ 280.624056][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 280.633056][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 280.638329][ T4304] do_fast_syscall_32+0x33/0x70 [ 280.643918][ T4304] do_SYSENTER_32+0x1b/0x20 [ 280.650141][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 280.658555][ T4304] [ 280.664203][ T4304] Uninit was stored to memory at: [ 280.669881][ T4304] get_compat_msghdr+0x4fc/0x720 [ 280.675206][ T4304] ___sys_recvmsg+0x18c/0x840 [ 280.680853][ T4304] do_recvmmsg+0x682/0x1180 [ 280.685700][ T4304] __sys_recvmmsg+0x113/0x450 [ 280.690735][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 280.697455][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 280.704938][ T4304] do_fast_syscall_32+0x33/0x70 [ 280.710303][ T4304] do_SYSENTER_32+0x1b/0x20 [ 280.715704][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 280.722452][ T4304] [ 280.725015][ T4304] Local variable msg_sys created at: [ 280.730673][ T4304] do_recvmmsg+0x5c/0x1180 [ 280.735700][ T4304] __sys_recvmmsg+0x113/0x450 [ 280.796107][ T3560] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 281.045431][ T4304] not chained 170000 origins [ 281.050437][ T4304] CPU: 1 PID: 4304 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 281.062861][ T4304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 281.074018][ T4304] Call Trace: [ 281.077736][ T4304] [ 281.080774][ T4304] dump_stack_lvl+0x1c8/0x256 [ 281.086272][ T4304] dump_stack+0x1a/0x1c [ 281.090693][ T4304] kmsan_internal_chain_origin+0x78/0x120 [ 281.096625][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 281.102624][ T4304] ? ____sys_recvmsg+0x5c1/0x810 [ 281.107997][ T4304] ? ___sys_recvmsg+0x217/0x840 [ 281.113022][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 281.119103][ T4304] ? ____sys_recvmsg+0x5c1/0x810 [ 281.124224][ T3566] usb 3-1: USB disconnect, device number 12 [ 281.124275][ T4304] ? kfree+0x44/0x980 [ 281.134552][ T4304] ? ___sys_recvmsg+0x248/0x840 [ 281.139721][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 281.142515][ T119] usb 3-1: ath9k_htc: Firmware - ath9k_htc/htc_9271-1.4.0.fw download failed [ 281.146800][ T4304] ? get_compat_msghdr+0x51/0x720 [ 281.146898][ T4304] ? ___sys_recvmsg+0x18c/0x840 [ 281.147000][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 281.178559][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 281.185211][ T4304] ? should_fail+0x3f/0x810 [ 281.189955][ T4304] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 281.195236][ T3566] usb 3-1: ath9k_htc: USB layer deinitialized [ 281.196640][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 281.210095][ T4304] __msan_chain_origin+0xbd/0x140 [ 281.215754][ T4304] get_compat_msghdr+0x4fc/0x720 [ 281.220891][ T4304] ___sys_recvmsg+0x18c/0x840 [ 281.226074][ T4304] ? __stack_depot_save+0x21/0x4b0 [ 281.232057][ T4304] ? kmsan_internal_check_memory+0x94/0x530 [ 281.238160][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 281.244255][ T4304] do_recvmmsg+0x682/0x1180 [ 281.249048][ T4304] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 281.256203][ T4304] __sys_recvmmsg+0x113/0x450 [ 281.261235][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 281.267864][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 281.273130][ T4304] ? exit_to_user_mode_prepare+0x119/0x220 [ 281.279210][ T4304] do_fast_syscall_32+0x33/0x70 [ 281.284212][ T4304] do_SYSENTER_32+0x1b/0x20 [ 281.289874][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 281.297018][ T4304] RIP: 0023:0xf7f63549 [ 281.301938][ T4304] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 281.324960][ T4304] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 281.335384][ T4304] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 281.344796][ T4304] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 281.353549][ T4304] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 281.364596][ T4304] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 281.374089][ T4304] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 281.382394][ T4304] [ 281.390175][ T4304] Uninit was stored to memory at: [ 281.395516][ T4304] get_compat_msghdr+0x4fc/0x720 [ 281.400665][ T4304] ___sys_recvmsg+0x18c/0x840 [ 281.405685][ T4304] do_recvmmsg+0x682/0x1180 [ 281.410429][ T4304] __sys_recvmmsg+0x113/0x450 [ 281.415349][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 281.422354][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 281.428047][ T4304] do_fast_syscall_32+0x33/0x70 [ 281.433420][ T4304] do_SYSENTER_32+0x1b/0x20 [ 281.438375][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 281.445055][ T4304] [ 281.447471][ T4304] Uninit was stored to memory at: [ 281.453222][ T4304] get_compat_msghdr+0x4fc/0x720 [ 281.458388][ T4304] ___sys_recvmsg+0x18c/0x840 [ 281.464249][ T4304] do_recvmmsg+0x682/0x1180 [ 281.468922][ T4304] __sys_recvmmsg+0x113/0x450 [ 281.474079][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 281.480516][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 281.485985][ T4304] do_fast_syscall_32+0x33/0x70 [ 281.491078][ T4304] do_SYSENTER_32+0x1b/0x20 [ 281.495905][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 281.503615][ T4304] [ 281.506214][ T4304] Uninit was stored to memory at: [ 281.511704][ T4304] get_compat_msghdr+0x4fc/0x720 [ 281.517021][ T4304] ___sys_recvmsg+0x18c/0x840 [ 281.521970][ T4304] do_recvmmsg+0x682/0x1180 [ 281.526784][ T4304] __sys_recvmmsg+0x113/0x450 [ 281.531877][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 281.538536][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 281.545521][ T4304] do_fast_syscall_32+0x33/0x70 [ 281.550765][ T4304] do_SYSENTER_32+0x1b/0x20 [ 281.555853][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 281.564389][ T4304] [ 281.567049][ T4304] Uninit was stored to memory at: [ 281.574403][ T4304] get_compat_msghdr+0x4fc/0x720 [ 281.579614][ T4304] ___sys_recvmsg+0x18c/0x840 [ 281.585042][ T4304] do_recvmmsg+0x682/0x1180 [ 281.590129][ T4304] __sys_recvmmsg+0x113/0x450 [ 281.595866][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 281.603243][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 281.609133][ T4304] do_fast_syscall_32+0x33/0x70 [ 281.614241][ T4304] do_SYSENTER_32+0x1b/0x20 [ 281.619411][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 281.626379][ T4304] [ 281.628822][ T4304] Uninit was stored to memory at: [ 281.637299][ T4304] get_compat_msghdr+0x4fc/0x720 [ 281.642679][ T4304] ___sys_recvmsg+0x18c/0x840 [ 281.647994][ T4304] do_recvmmsg+0x682/0x1180 [ 281.653164][ T4304] __sys_recvmmsg+0x113/0x450 [ 281.658271][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 281.664834][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 281.670187][ T4304] do_fast_syscall_32+0x33/0x70 [ 281.675394][ T4304] do_SYSENTER_32+0x1b/0x20 [ 281.680685][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 281.688071][ T4304] [ 281.690574][ T4304] Uninit was stored to memory at: [ 281.696453][ T4304] get_compat_msghdr+0x4fc/0x720 [ 281.701726][ T4304] ___sys_recvmsg+0x18c/0x840 [ 281.706805][ T4304] do_recvmmsg+0x682/0x1180 [ 281.711530][ T4304] __sys_recvmmsg+0x113/0x450 [ 281.716523][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 281.723225][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 281.728480][ T4304] do_fast_syscall_32+0x33/0x70 [ 281.733843][ T4304] do_SYSENTER_32+0x1b/0x20 [ 281.738958][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 281.745818][ T4304] [ 281.748221][ T4304] Uninit was stored to memory at: [ 281.753942][ T4304] get_compat_msghdr+0x4fc/0x720 [ 281.759500][ T4304] ___sys_recvmsg+0x18c/0x840 [ 281.764519][ T4304] do_recvmmsg+0x682/0x1180 [ 281.769862][ T4304] __sys_recvmmsg+0x113/0x450 [ 281.774928][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 281.781541][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 281.787473][ T4304] do_fast_syscall_32+0x33/0x70 [ 281.792901][ T4304] do_SYSENTER_32+0x1b/0x20 [ 281.797767][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 281.805126][ T4304] [ 281.807875][ T4304] Local variable msg_sys created at: [ 281.813441][ T4304] do_recvmmsg+0x5c/0x1180 [ 281.818326][ T4304] __sys_recvmmsg+0x113/0x450 [ 282.099853][ T4304] not chained 180000 origins [ 282.105789][ T4304] CPU: 1 PID: 4304 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 282.118518][ T4304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 282.131817][ T4304] Call Trace: [ 282.136509][ T4304] [ 282.139680][ T4304] dump_stack_lvl+0x1c8/0x256 [ 282.144858][ T4304] dump_stack+0x1a/0x1c [ 282.149548][ T4304] kmsan_internal_chain_origin+0x78/0x120 [ 282.155469][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 282.162430][ T4304] ? ____sys_recvmsg+0x5c1/0x810 [ 282.167480][ T4304] ? ___sys_recvmsg+0x217/0x840 [ 282.172658][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 282.178833][ T4304] ? ____sys_recvmsg+0x5c1/0x810 [ 282.184414][ T4304] ? kfree+0x44/0x980 [ 282.188539][ T4304] ? ___sys_recvmsg+0x248/0x840 [ 282.193745][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 282.199679][ T4304] ? get_compat_msghdr+0x51/0x720 [ 282.205006][ T4304] ? ___sys_recvmsg+0x18c/0x840 [ 282.210317][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 282.216275][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 282.222376][ T4304] ? should_fail+0x3f/0x810 [ 282.227455][ T4304] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 282.234423][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 282.241198][ T4304] __msan_chain_origin+0xbd/0x140 [ 282.246363][ T4304] get_compat_msghdr+0x4fc/0x720 [ 282.251797][ T4304] ___sys_recvmsg+0x18c/0x840 [ 282.256822][ T4304] ? __stack_depot_save+0x21/0x4b0 [ 282.262218][ T4304] ? kmsan_internal_check_memory+0x94/0x530 [ 282.269934][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 282.276652][ T4304] do_recvmmsg+0x682/0x1180 [ 282.281675][ T4304] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 282.288228][ T4304] __sys_recvmmsg+0x113/0x450 [ 282.293048][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 282.299936][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 282.305352][ T4304] ? exit_to_user_mode_prepare+0x119/0x220 [ 282.311418][ T4304] do_fast_syscall_32+0x33/0x70 [ 282.316568][ T4304] do_SYSENTER_32+0x1b/0x20 [ 282.321729][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 282.330863][ T4304] RIP: 0023:0xf7f63549 [ 282.335149][ T4304] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 282.355588][ T4304] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 282.364305][ T4304] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 282.372766][ T4304] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 282.380846][ T4304] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 282.389092][ T4304] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 282.397273][ T4304] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 282.405463][ T4304] [ 282.416194][ T4304] Uninit was stored to memory at: [ 282.421892][ T4304] get_compat_msghdr+0x4fc/0x720 [ 282.427373][ T4304] ___sys_recvmsg+0x18c/0x840 [ 282.433412][ T4304] do_recvmmsg+0x682/0x1180 [ 282.438390][ T4304] __sys_recvmmsg+0x113/0x450 [ 282.443448][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 282.450386][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 282.455739][ T4304] do_fast_syscall_32+0x33/0x70 [ 282.460734][ T4304] do_SYSENTER_32+0x1b/0x20 [ 282.465492][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 282.472012][ T4304] [ 282.474586][ T4304] Uninit was stored to memory at: [ 282.480016][ T4304] get_compat_msghdr+0x4fc/0x720 [ 282.485986][ T4304] ___sys_recvmsg+0x18c/0x840 [ 282.490811][ T4304] do_recvmmsg+0x682/0x1180 [ 282.495682][ T4304] __sys_recvmmsg+0x113/0x450 [ 282.500732][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 282.507519][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 282.513052][ T4304] do_fast_syscall_32+0x33/0x70 [ 282.518031][ T4304] do_SYSENTER_32+0x1b/0x20 [ 282.522615][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 282.529271][ T4304] [ 282.531674][ T4304] Uninit was stored to memory at: [ 282.537426][ T4304] get_compat_msghdr+0x4fc/0x720 [ 282.542608][ T4304] ___sys_recvmsg+0x18c/0x840 [ 282.547589][ T4304] do_recvmmsg+0x682/0x1180 [ 282.552401][ T4304] __sys_recvmmsg+0x113/0x450 [ 282.557389][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 282.563993][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 282.569229][ T4304] do_fast_syscall_32+0x33/0x70 [ 282.574377][ T4304] do_SYSENTER_32+0x1b/0x20 [ 282.579033][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 282.585674][ T4304] [ 282.588074][ T4304] Uninit was stored to memory at: [ 282.594234][ T4304] get_compat_msghdr+0x4fc/0x720 [ 282.599315][ T4304] ___sys_recvmsg+0x18c/0x840 [ 282.604252][ T4304] do_recvmmsg+0x682/0x1180 [ 282.608991][ T4304] __sys_recvmmsg+0x113/0x450 [ 282.613972][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 282.620709][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 282.628728][ T4304] do_fast_syscall_32+0x33/0x70 [ 282.636855][ T4304] do_SYSENTER_32+0x1b/0x20 [ 282.641440][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 282.647992][ T4304] [ 282.650372][ T4304] Uninit was stored to memory at: [ 282.655895][ T4304] get_compat_msghdr+0x4fc/0x720 [ 282.661433][ T4304] ___sys_recvmsg+0x18c/0x840 [ 282.667775][ T4304] do_recvmmsg+0x682/0x1180 [ 282.672500][ T4304] __sys_recvmmsg+0x113/0x450 [ 282.677419][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 282.686179][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 282.691552][ T4304] do_fast_syscall_32+0x33/0x70 [ 282.696700][ T4304] do_SYSENTER_32+0x1b/0x20 [ 282.701696][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 282.708628][ T4304] [ 282.711013][ T4304] Uninit was stored to memory at: [ 282.716907][ T4304] get_compat_msghdr+0x4fc/0x720 [ 282.722534][ T4304] ___sys_recvmsg+0x18c/0x840 [ 282.728240][ T4304] do_recvmmsg+0x682/0x1180 [ 282.733015][ T4304] __sys_recvmmsg+0x113/0x450 [ 282.737997][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 282.744550][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 282.749998][ T4304] do_fast_syscall_32+0x33/0x70 [ 282.755471][ T4304] do_SYSENTER_32+0x1b/0x20 [ 282.760102][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 282.766963][ T4304] [ 282.769447][ T4304] Uninit was stored to memory at: [ 282.774851][ T4304] get_compat_msghdr+0x4fc/0x720 [ 282.780192][ T4304] ___sys_recvmsg+0x18c/0x840 [ 282.785219][ T4304] do_recvmmsg+0x682/0x1180 [ 282.790037][ T4304] __sys_recvmmsg+0x113/0x450 [ 282.795005][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 282.801633][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 282.807086][ T4304] do_fast_syscall_32+0x33/0x70 [ 282.812209][ T4304] do_SYSENTER_32+0x1b/0x20 [ 282.817225][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 282.823978][ T4304] [ 282.826367][ T4304] Local variable msg_sys created at: [ 282.831794][ T4304] do_recvmmsg+0x5c/0x1180 [ 282.836922][ T4304] __sys_recvmmsg+0x113/0x450 [ 283.011624][ T4304] not chained 190000 origins [ 283.016618][ T4304] CPU: 0 PID: 4304 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 283.028201][ T4304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 283.038942][ T4304] Call Trace: [ 283.042310][ T4304] [ 283.045300][ T4304] dump_stack_lvl+0x1c8/0x256 [ 283.050406][ T4304] dump_stack+0x1a/0x1c [ 283.055683][ T4304] kmsan_internal_chain_origin+0x78/0x120 [ 283.062166][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 283.068328][ T4304] ? ____sys_recvmsg+0x5c1/0x810 [ 283.073550][ T4304] ? ___sys_recvmsg+0x217/0x840 [ 283.078625][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 283.084830][ T4304] ? ____sys_recvmsg+0x5c1/0x810 [ 283.089886][ T4304] ? kfree+0x44/0x980 [ 283.094024][ T4304] ? ___sys_recvmsg+0x248/0x840 [ 283.099158][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 283.105342][ T4304] ? get_compat_msghdr+0x51/0x720 [ 283.110814][ T4304] ? ___sys_recvmsg+0x18c/0x840 [ 283.116568][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 283.123264][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 283.132167][ T4304] ? should_fail+0x3f/0x810 [ 283.139220][ T4304] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 283.145870][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 283.151971][ T4304] __msan_chain_origin+0xbd/0x140 [ 283.157616][ T4304] get_compat_msghdr+0x4fc/0x720 [ 283.163363][ T4304] ___sys_recvmsg+0x18c/0x840 [ 283.171437][ T4304] ? __stack_depot_save+0x21/0x4b0 [ 283.178434][ T4304] ? kmsan_internal_check_memory+0x94/0x530 [ 283.185165][ T4304] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 283.193812][ T4304] do_recvmmsg+0x682/0x1180 [ 283.200236][ T4304] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 283.207957][ T4304] __sys_recvmmsg+0x113/0x450 [ 283.213102][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 283.221497][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 283.227474][ T4304] ? exit_to_user_mode_prepare+0x119/0x220 [ 283.234214][ T4304] do_fast_syscall_32+0x33/0x70 [ 283.240963][ T4304] do_SYSENTER_32+0x1b/0x20 [ 283.246695][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 283.253839][ T4304] RIP: 0023:0xf7f63549 [ 283.258184][ T4304] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 283.281409][ T4304] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 283.290083][ T4304] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 283.298446][ T4304] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 283.308199][ T4304] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 283.316883][ T4304] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 283.328001][ T4304] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 283.336800][ T4304] [ 283.341176][ T4304] Uninit was stored to memory at: [ 283.346602][ T4304] get_compat_msghdr+0x4fc/0x720 [ 283.351963][ T4304] ___sys_recvmsg+0x18c/0x840 [ 283.357529][ T4304] do_recvmmsg+0x682/0x1180 [ 283.362190][ T4304] __sys_recvmmsg+0x113/0x450 [ 283.367237][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 283.374578][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 283.380632][ T4304] do_fast_syscall_32+0x33/0x70 [ 283.385780][ T4304] do_SYSENTER_32+0x1b/0x20 [ 283.390506][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 283.398138][ T4304] [ 283.400534][ T4304] Uninit was stored to memory at: [ 283.405987][ T4304] get_compat_msghdr+0x4fc/0x720 [ 283.411076][ T4304] ___sys_recvmsg+0x18c/0x840 [ 283.416133][ T4304] do_recvmmsg+0x682/0x1180 [ 283.421046][ T4304] __sys_recvmmsg+0x113/0x450 [ 283.426103][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 283.432610][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 283.438011][ T4304] do_fast_syscall_32+0x33/0x70 [ 283.443375][ T4304] do_SYSENTER_32+0x1b/0x20 [ 283.448627][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 283.455697][ T4304] [ 283.458097][ T4304] Uninit was stored to memory at: [ 283.465063][ T4304] get_compat_msghdr+0x4fc/0x720 [ 283.470151][ T4304] ___sys_recvmsg+0x18c/0x840 [ 283.475108][ T4304] do_recvmmsg+0x682/0x1180 [ 283.479759][ T4304] __sys_recvmmsg+0x113/0x450 [ 283.485636][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 283.492320][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 283.497862][ T4304] do_fast_syscall_32+0x33/0x70 [ 283.503158][ T4304] do_SYSENTER_32+0x1b/0x20 [ 283.508142][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 283.514862][ T4304] [ 283.517287][ T4304] Uninit was stored to memory at: [ 283.522629][ T4304] get_compat_msghdr+0x4fc/0x720 [ 283.527903][ T4304] ___sys_recvmsg+0x18c/0x840 [ 283.533075][ T4304] do_recvmmsg+0x682/0x1180 [ 283.539731][ T4304] __sys_recvmmsg+0x113/0x450 [ 283.544700][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 283.552273][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 283.557860][ T4304] do_fast_syscall_32+0x33/0x70 [ 283.563097][ T4304] do_SYSENTER_32+0x1b/0x20 [ 283.567745][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 283.574490][ T4304] [ 283.577695][ T4304] Uninit was stored to memory at: [ 283.583092][ T4304] get_compat_msghdr+0x4fc/0x720 [ 283.588438][ T4304] ___sys_recvmsg+0x18c/0x840 [ 283.594163][ T4304] do_recvmmsg+0x682/0x1180 [ 283.599254][ T4304] __sys_recvmmsg+0x113/0x450 [ 283.605043][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 283.611917][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 283.617406][ T4304] do_fast_syscall_32+0x33/0x70 [ 283.622420][ T4304] do_SYSENTER_32+0x1b/0x20 [ 283.627358][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 283.634207][ T4304] [ 283.638272][ T4304] Uninit was stored to memory at: [ 283.643712][ T4304] get_compat_msghdr+0x4fc/0x720 [ 283.648890][ T4304] ___sys_recvmsg+0x18c/0x840 [ 283.654223][ T4304] do_recvmmsg+0x682/0x1180 [ 283.660020][ T4304] __sys_recvmmsg+0x113/0x450 [ 283.667289][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 283.673812][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 283.679386][ T4304] do_fast_syscall_32+0x33/0x70 [ 283.685057][ T4304] do_SYSENTER_32+0x1b/0x20 [ 283.690063][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 283.697457][ T4304] [ 283.700248][ T4304] Uninit was stored to memory at: [ 283.705757][ T4304] get_compat_msghdr+0x4fc/0x720 [ 283.712188][ T4304] ___sys_recvmsg+0x18c/0x840 [ 283.718276][ T4304] do_recvmmsg+0x682/0x1180 [ 283.725338][ T4304] __sys_recvmmsg+0x113/0x450 [ 283.732338][ T4304] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 283.740193][ T4304] __do_fast_syscall_32+0xa2/0x100 [ 283.747690][ T4304] do_fast_syscall_32+0x33/0x70 [ 283.752947][ T4304] do_SYSENTER_32+0x1b/0x20 [ 283.757869][ T4304] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 283.764794][ T4304] [ 283.767180][ T4304] Local variable msg_sys created at: [ 283.773143][ T4304] do_recvmmsg+0x5c/0x1180 [ 283.778229][ T4304] __sys_recvmmsg+0x113/0x450 21:56:40 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000003c0)=0xae) prlimit64(0x0, 0x3, &(0x7f0000000280), &(0x7f0000000300)) r3 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r3, &(0x7f00000000c0)={0x2, 0x4e20, @empty}, 0x10) sendto$inet(r3, &(0x7f0000000140), 0xffffffffffffff58, 0x20008008, &(0x7f0000000100)={0x2, 0x4e20}, 0x10) recvfrom(r3, &(0x7f0000000480)=""/110, 0xfffffe32, 0x700, 0x0, 0xfffffffffffffecb) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x40000, 0x6, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef0100010000", 0x3f, 0x400}, {&(0x7f0000001f40)}, {0x0, 0x0, 0xbff}, {0x0}, {0x0, 0x0, 0x2}, {0x0, 0x0, 0x80000000000000}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) sched_setattr(0x0, 0x0, 0x0) ioctl$sock_FIOGETOWN(r2, 0x8903, &(0x7f0000000040)=0x0) ptrace$cont(0x20, r4, 0x2593, 0x4) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) 21:56:40 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x4f, 0x92, 0xb9, 0x8, 0x1557, 0x7720, 0xb7eb, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x27, 0x85, 0xe6}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000040)={0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b00)={0x40, 0x13, 0x6, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x40, 0x19, 0x2, "a8cd"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 21:56:40 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x2c, &(0x7f0000000c40)={0x0, 0x0, 0xab, {0xab, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab91cd7abf7a917f376386f7e92afc65e75c880a55d2877146ab5f476c1287ecb3e4003547007c60a0466f77cc3abce7d506197b7602e5face683fd5b62746db4fde2e52887d025b1d182565df701612bbacca6413"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) 21:56:40 executing program 5: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x925, 0x8888, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x6, {[@local, @main=@item_4={0x3, 0x0, 0x0, "8b707542"}]}}, 0x0}, 0x0) 21:56:40 executing program 1: socketpair(0x1e, 0x5, 0x0, &(0x7f0000000400)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_inet_sctp_SIOCINQ(r0, 0x8903, 0x0) 21:56:40 executing program 2: r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000300)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x0, 0x0) 21:56:40 executing program 1: r0 = socket(0xa, 0x2, 0x0) getpeername$llc(r0, 0x0, 0x0) [ 284.473051][ T3619] usb 5-1: new high-speed USB device number 14 using dummy_hcd [ 284.493829][ T3565] usb 4-1: new high-speed USB device number 11 using dummy_hcd [ 284.503110][ T3566] usb 3-1: new high-speed USB device number 13 using dummy_hcd [ 284.511752][ T119] usb 6-1: new high-speed USB device number 17 using dummy_hcd 21:56:40 executing program 1: r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000180), 0x40002, 0x0) ioctl$SNDCTL_DSP_RESET(r0, 0x5000, 0x0) [ 284.731216][ T119] usb 6-1: device descriptor read/64, error 18 [ 284.753621][ T3565] usb 4-1: Using ep0 maxpacket: 8 [ 284.847146][ T3619] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 284.859259][ T3619] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 284.869500][ T3619] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 284.879066][ T3619] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 284.894203][ T3565] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 284.903849][ T3565] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 284.952107][ T3565] usb 4-1: config 0 descriptor?? [ 284.978359][ T4363] loop0: detected capacity change from 0 to 512 [ 285.013597][ T119] usb 6-1: new high-speed USB device number 18 using dummy_hcd [ 285.019348][ T3619] usb 5-1: config 0 descriptor?? [ 285.134315][ T3566] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 285.144596][ T3566] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 285.153262][ T3566] usb 3-1: Product: syz [ 285.159123][ T3566] usb 3-1: Manufacturer: syz [ 285.164316][ T3566] usb 3-1: SerialNumber: syz [ 285.236251][ T3566] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 285.263943][ T119] usb 6-1: device descriptor read/64, error 18 [ 285.307573][ T4363] EXT4-fs (loop0): invalid inodes per group: 67108896 [ 285.307573][ T4363] [ 285.394451][ T119] usb usb6-port1: attempt power cycle [ 285.553974][ T3619] usbhid 5-1:0.0: can't add hid device: -71 [ 285.563822][ T3619] usbhid: probe of 5-1:0.0 failed with error -71 [ 285.604972][ T4360] not chained 200000 origins [ 285.610260][ T4360] CPU: 0 PID: 4360 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 285.620845][ T4360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 285.633061][ T4360] Call Trace: [ 285.636532][ T4360] [ 285.639596][ T4360] dump_stack_lvl+0x1c8/0x256 [ 285.645084][ T4360] dump_stack+0x1a/0x1c [ 285.647732][ T3619] usb 5-1: USB disconnect, device number 14 [ 285.650338][ T4360] kmsan_internal_chain_origin+0x78/0x120 [ 285.650578][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 285.673653][ T4360] ? ____sys_recvmsg+0x5c1/0x810 [ 285.679000][ T4360] ? ___sys_recvmsg+0x217/0x840 [ 285.684355][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 285.692543][ T4360] ? ____sys_recvmsg+0x5c1/0x810 [ 285.698961][ T4360] ? kfree+0x44/0x980 [ 285.703393][ T4360] ? ___sys_recvmsg+0x248/0x840 [ 285.708701][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 285.714842][ T4360] ? get_compat_msghdr+0x51/0x720 [ 285.720132][ T4360] ? ___sys_recvmsg+0x18c/0x840 [ 285.725305][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 285.731606][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 285.737718][ T4360] ? should_fail+0x3f/0x810 [ 285.742608][ T4360] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 285.749576][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 285.756143][ T4360] __msan_chain_origin+0xbd/0x140 [ 285.762292][ T4360] get_compat_msghdr+0x4fc/0x720 [ 285.767586][ T4360] ___sys_recvmsg+0x18c/0x840 [ 285.772623][ T4360] ? __stack_depot_save+0x21/0x4b0 [ 285.777978][ T4360] ? kmsan_internal_check_memory+0x94/0x530 [ 285.784606][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 285.793704][ T4360] do_recvmmsg+0x682/0x1180 [ 285.799366][ T4360] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 285.808969][ T4360] __sys_recvmmsg+0x113/0x450 [ 285.814082][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 285.820804][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 285.826624][ T4360] ? exit_to_user_mode_prepare+0x119/0x220 [ 285.833482][ T4360] do_fast_syscall_32+0x33/0x70 [ 285.838756][ T4360] do_SYSENTER_32+0x1b/0x20 [ 285.843819][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 285.850359][ T4360] RIP: 0023:0xf7f63549 [ 285.854578][ T4360] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 285.874726][ T4360] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 285.885998][ T4360] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 285.894826][ T4360] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 285.903602][ T4360] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 285.912321][ T4360] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 285.920791][ T4360] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 285.930752][ T4360] [ 285.934262][ T4360] Uninit was stored to memory at: [ 285.940043][ T4360] get_compat_msghdr+0x4fc/0x720 [ 285.945936][ T4360] ___sys_recvmsg+0x18c/0x840 [ 285.951361][ T4360] do_recvmmsg+0x682/0x1180 [ 285.956219][ T4360] __sys_recvmmsg+0x113/0x450 [ 285.961193][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 285.967891][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 285.973435][ T4360] do_fast_syscall_32+0x33/0x70 [ 285.978439][ T4360] do_SYSENTER_32+0x1b/0x20 [ 285.983921][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 285.991245][ T4360] [ 285.994375][ T4360] Uninit was stored to memory at: [ 286.000841][ T4360] get_compat_msghdr+0x4fc/0x720 [ 286.007997][ T4360] ___sys_recvmsg+0x18c/0x840 [ 286.012995][ T4360] do_recvmmsg+0x682/0x1180 [ 286.021217][ T4360] __sys_recvmmsg+0x113/0x450 [ 286.026955][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 286.034517][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 286.042226][ T4360] do_fast_syscall_32+0x33/0x70 [ 286.048997][ T4360] do_SYSENTER_32+0x1b/0x20 [ 286.054375][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 286.062047][ T4360] [ 286.064956][ T4360] Uninit was stored to memory at: [ 286.071277][ T4360] get_compat_msghdr+0x4fc/0x720 [ 286.078769][ T4360] ___sys_recvmsg+0x18c/0x840 [ 286.087127][ T4360] do_recvmmsg+0x682/0x1180 [ 286.094214][ T4360] __sys_recvmmsg+0x113/0x450 [ 286.100187][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 286.112006][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 286.117735][ T4360] do_fast_syscall_32+0x33/0x70 [ 286.123779][ T4360] do_SYSENTER_32+0x1b/0x20 [ 286.129475][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 286.137949][ T4360] [ 286.140707][ T4360] Uninit was stored to memory at: [ 286.146684][ T4360] get_compat_msghdr+0x4fc/0x720 [ 286.153505][ T4360] ___sys_recvmsg+0x18c/0x840 [ 286.158859][ T4360] do_recvmmsg+0x682/0x1180 [ 286.164135][ T4360] __sys_recvmmsg+0x113/0x450 [ 286.169330][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 286.177076][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 286.182528][ T4360] do_fast_syscall_32+0x33/0x70 [ 286.187716][ T4360] do_SYSENTER_32+0x1b/0x20 [ 286.192640][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 286.202057][ T4360] [ 286.205005][ T4360] Uninit was stored to memory at: [ 286.211222][ T4360] get_compat_msghdr+0x4fc/0x720 [ 286.221118][ T4360] ___sys_recvmsg+0x18c/0x840 [ 286.227017][ T4360] do_recvmmsg+0x682/0x1180 [ 286.232950][ T4360] __sys_recvmmsg+0x113/0x450 [ 286.238928][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 286.245916][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 286.251631][ T4360] do_fast_syscall_32+0x33/0x70 [ 286.256767][ T4360] do_SYSENTER_32+0x1b/0x20 [ 286.262070][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 286.269185][ T4360] [ 286.271968][ T4360] Uninit was stored to memory at: [ 286.277723][ T4360] get_compat_msghdr+0x4fc/0x720 [ 286.284562][ T4360] ___sys_recvmsg+0x18c/0x840 [ 286.290560][ T4360] do_recvmmsg+0x682/0x1180 [ 286.295660][ T4360] __sys_recvmmsg+0x113/0x450 [ 286.301349][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 286.308045][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 286.313583][ T4360] do_fast_syscall_32+0x33/0x70 [ 286.320074][ T4360] do_SYSENTER_32+0x1b/0x20 [ 286.325345][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 286.332319][ T4360] [ 286.334926][ T4360] Uninit was stored to memory at: [ 286.340460][ T4360] get_compat_msghdr+0x4fc/0x720 [ 286.345819][ T4360] ___sys_recvmsg+0x18c/0x840 [ 286.351270][ T4360] do_recvmmsg+0x682/0x1180 [ 286.356205][ T4360] __sys_recvmmsg+0x113/0x450 [ 286.361203][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 286.368541][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 286.375340][ T4360] do_fast_syscall_32+0x33/0x70 [ 286.380866][ T4360] do_SYSENTER_32+0x1b/0x20 [ 286.385825][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 286.392904][ T4360] [ 286.395326][ T4360] Local variable msg_sys created at: [ 286.400951][ T4360] do_recvmmsg+0x5c/0x1180 21:56:42 executing program 1: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) recvmsg$can_bcm(r0, &(0x7f0000000780)={0x0, 0x0, 0x0}, 0x0) [ 286.406417][ T4360] __sys_recvmmsg+0x113/0x450 [ 286.504581][ T119] usb 6-1: new high-speed USB device number 19 using dummy_hcd 21:56:42 executing program 1: socketpair(0x1e, 0x5, 0x0, &(0x7f0000000400)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_inet_sctp_SIOCINQ(r0, 0x8902, 0x0) [ 286.605104][ T119] usb 6-1: Invalid ep0 maxpacket: 0 [ 286.743869][ T3560] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 286.783385][ T119] usb 6-1: new high-speed USB device number 20 using dummy_hcd 21:56:42 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x2c, &(0x7f0000000c40)={0x0, 0x0, 0xab, {0xab, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab91cd7abf7a917f376386f7e92afc65e75c880a55d2877146ab5f476c1287ecb3e4003547007c60a0466f77cc3abce7d506197b7602e5face683fd5b62746db4fde2e52887d025b1d182565df701612bbacca6413"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) [ 286.891562][ T119] usb 6-1: Invalid ep0 maxpacket: 0 [ 286.915067][ T119] usb usb6-port1: unable to enumerate USB device 21:56:43 executing program 1: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x328, 0x0, 0xffffff80, 0x178, 0x160, 0xc7, 0x258, 0x258, 0x258, 0x258, 0x258, 0x3, 0x0, {[{{@ipv6={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast1, [], [], 'vlan0\x00', 'bridge_slave_0\x00'}, 0x0, 0x118, 0x160, 0x0, {}, [@common=@unspec=@limit={{0x48}, {0xbc000000}}, @common=@inet=@set1={{0x28}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00'}}}, {{@uncond, 0x0, 0xd0, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@inet=@SYNPROXY={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x388) [ 287.143472][ T3565] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71 [ 287.154192][ T3565] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to send software reset: ffffffb9 [ 287.165407][ T3565] asix: probe of 4-1:0.0 failed with error -71 [ 287.212493][ T119] usb 3-1: USB disconnect, device number 13 [ 287.275093][ T3565] usb 4-1: USB disconnect, device number 11 [ 287.453350][ T3558] usb 5-1: new high-speed USB device number 15 using dummy_hcd [ 287.498429][ T4360] not chained 210000 origins [ 287.503584][ T4360] CPU: 0 PID: 4360 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 287.514435][ T4360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 287.531472][ T4360] Call Trace: [ 287.534856][ T4360] [ 287.537873][ T4360] dump_stack_lvl+0x1c8/0x256 [ 287.544249][ T4360] dump_stack+0x1a/0x1c [ 287.548599][ T4360] kmsan_internal_chain_origin+0x78/0x120 [ 287.556265][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 287.563050][ T4360] ? ____sys_recvmsg+0x5c1/0x810 [ 287.568136][ T4360] ? ___sys_recvmsg+0x217/0x840 [ 287.573258][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 287.579531][ T4360] ? ____sys_recvmsg+0x5c1/0x810 [ 287.587318][ T4360] ? kfree+0x44/0x980 [ 287.591901][ T4360] ? ___sys_recvmsg+0x248/0x840 [ 287.597167][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 287.604060][ T4360] ? get_compat_msghdr+0x51/0x720 [ 287.611507][ T4360] ? ___sys_recvmsg+0x18c/0x840 [ 287.616515][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 287.622521][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 287.628699][ T4360] ? should_fail+0x3f/0x810 [ 287.637739][ T4360] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 287.648412][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 287.655114][ T4360] __msan_chain_origin+0xbd/0x140 [ 287.660418][ T4360] get_compat_msghdr+0x4fc/0x720 [ 287.666679][ T4360] ___sys_recvmsg+0x18c/0x840 [ 287.671700][ T4360] ? __stack_depot_save+0x21/0x4b0 [ 287.677016][ T4360] ? kmsan_internal_check_memory+0x94/0x530 [ 287.683105][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 287.691478][ T4360] do_recvmmsg+0x682/0x1180 [ 287.696537][ T4360] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 287.703734][ T4360] __sys_recvmmsg+0x113/0x450 [ 287.708754][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 287.719294][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 287.728862][ T4360] ? exit_to_user_mode_prepare+0x119/0x220 [ 287.737381][ T4360] do_fast_syscall_32+0x33/0x70 [ 287.744756][ T4360] do_SYSENTER_32+0x1b/0x20 [ 287.749430][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 287.755967][ T4360] RIP: 0023:0xf7f63549 [ 287.760593][ T4360] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 287.781156][ T4360] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 287.789878][ T4360] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 287.797964][ T4360] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 287.806198][ T4360] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 287.814539][ T4360] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 287.824921][ T4360] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 287.848855][ T4360] [ 287.856503][ T4360] Uninit was stored to memory at: [ 287.864967][ T4360] get_compat_msghdr+0x4fc/0x720 [ 287.870065][ T4360] ___sys_recvmsg+0x18c/0x840 [ 287.874976][ T4360] do_recvmmsg+0x682/0x1180 [ 287.879801][ T4360] __sys_recvmmsg+0x113/0x450 [ 287.886806][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 287.893425][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 287.898791][ T4360] do_fast_syscall_32+0x33/0x70 [ 287.903514][ T3558] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 287.903999][ T4360] do_SYSENTER_32+0x1b/0x20 [ 287.915062][ T3558] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 287.919420][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 287.929523][ T3558] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 287.936247][ T4360] [ 287.936269][ T4360] Uninit was stored to memory at: [ 287.936408][ T4360] get_compat_msghdr+0x4fc/0x720 [ 287.946015][ T3558] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 287.948569][ T4360] ___sys_recvmsg+0x18c/0x840 [ 287.972230][ T4360] do_recvmmsg+0x682/0x1180 [ 287.977213][ T4360] __sys_recvmmsg+0x113/0x450 [ 287.982155][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 287.988678][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 287.994006][ T4360] do_fast_syscall_32+0x33/0x70 [ 287.999258][ T4360] do_SYSENTER_32+0x1b/0x20 [ 288.004181][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 288.011338][ T4360] [ 288.013907][ T4360] Uninit was stored to memory at: [ 288.020268][ T4360] get_compat_msghdr+0x4fc/0x720 [ 288.026736][ T4360] ___sys_recvmsg+0x18c/0x840 [ 288.031650][ T4360] do_recvmmsg+0x682/0x1180 [ 288.036596][ T4360] __sys_recvmmsg+0x113/0x450 [ 288.041927][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 288.048783][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 288.054145][ T4360] do_fast_syscall_32+0x33/0x70 [ 288.059499][ T4360] do_SYSENTER_32+0x1b/0x20 [ 288.064298][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 288.070850][ T4360] [ 288.073483][ T4360] Uninit was stored to memory at: [ 288.078900][ T4360] get_compat_msghdr+0x4fc/0x720 [ 288.084292][ T4360] ___sys_recvmsg+0x18c/0x840 [ 288.090645][ T4360] do_recvmmsg+0x682/0x1180 [ 288.096248][ T4360] __sys_recvmmsg+0x113/0x450 [ 288.104333][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 288.113885][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 288.121545][ T4360] do_fast_syscall_32+0x33/0x70 [ 288.130584][ T4360] do_SYSENTER_32+0x1b/0x20 [ 288.135423][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 288.141956][ T4360] [ 288.144613][ T4360] Uninit was stored to memory at: [ 288.149828][ T4360] get_compat_msghdr+0x4fc/0x720 [ 288.155035][ T4360] ___sys_recvmsg+0x18c/0x840 [ 288.159938][ T4360] do_recvmmsg+0x682/0x1180 [ 288.164904][ T4360] __sys_recvmmsg+0x113/0x450 [ 288.169814][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 288.176390][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 288.181745][ T4360] do_fast_syscall_32+0x33/0x70 [ 288.187670][ T4360] do_SYSENTER_32+0x1b/0x20 [ 288.192312][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 288.199007][ T4360] [ 288.201493][ T4360] Uninit was stored to memory at: [ 288.206814][ T4360] get_compat_msghdr+0x4fc/0x720 [ 288.212121][ T4360] ___sys_recvmsg+0x18c/0x840 [ 288.217183][ T4360] do_recvmmsg+0x682/0x1180 [ 288.221909][ T4360] __sys_recvmmsg+0x113/0x450 [ 288.226914][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 288.238353][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 288.244424][ T4360] do_fast_syscall_32+0x33/0x70 [ 288.250987][ T4360] do_SYSENTER_32+0x1b/0x20 [ 288.259309][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 288.261296][ T3558] usb 5-1: config 0 descriptor?? [ 288.269287][ T4360] [ 288.269309][ T4360] Uninit was stored to memory at: [ 288.269443][ T4360] get_compat_msghdr+0x4fc/0x720 [ 288.295452][ T4360] ___sys_recvmsg+0x18c/0x840 [ 288.301008][ T4360] do_recvmmsg+0x682/0x1180 [ 288.306611][ T4360] __sys_recvmmsg+0x113/0x450 [ 288.312877][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 288.320118][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 288.326411][ T4360] do_fast_syscall_32+0x33/0x70 [ 288.331690][ T4360] do_SYSENTER_32+0x1b/0x20 [ 288.336849][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 288.343741][ T4360] [ 288.346162][ T4360] Local variable msg_sys created at: [ 288.351628][ T4360] do_recvmmsg+0x5c/0x1180 [ 288.357837][ T4360] __sys_recvmmsg+0x113/0x450 [ 288.363464][ T3560] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 288.371287][ T3560] ath9k_htc: Failed to initialize the device [ 288.381742][ T119] usb 3-1: ath9k_htc: USB layer deinitialized [ 288.695065][ T4360] not chained 220000 origins [ 288.699976][ T4360] CPU: 0 PID: 4360 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 288.710416][ T4360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 288.721046][ T4360] Call Trace: [ 288.724380][ T4360] [ 288.727382][ T4360] dump_stack_lvl+0x1c8/0x256 [ 288.732604][ T4360] dump_stack+0x1a/0x1c [ 288.736936][ T4360] kmsan_internal_chain_origin+0x78/0x120 [ 288.742983][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 288.748981][ T4360] ? ____sys_recvmsg+0x5c1/0x810 [ 288.754068][ T4360] ? ___sys_recvmsg+0x217/0x840 [ 288.759183][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 288.765357][ T4360] ? ____sys_recvmsg+0x5c1/0x810 [ 288.770462][ T4360] ? kfree+0x44/0x980 [ 288.774597][ T4360] ? ___sys_recvmsg+0x248/0x840 [ 288.779689][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 288.785715][ T4360] ? get_compat_msghdr+0x51/0x720 [ 288.791038][ T4360] ? ___sys_recvmsg+0x18c/0x840 [ 288.797463][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 288.804359][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 288.810443][ T4360] ? should_fail+0x3f/0x810 [ 288.815098][ T4360] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 288.821691][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 288.823445][ T3558] usbhid 5-1:0.0: can't add hid device: -71 [ 288.827576][ T4360] __msan_chain_origin+0xbd/0x140 [ 288.834248][ T3558] usbhid: probe of 5-1:0.0 failed with error -71 [ 288.838584][ T4360] get_compat_msghdr+0x4fc/0x720 [ 288.850387][ T4360] ___sys_recvmsg+0x18c/0x840 [ 288.855508][ T4360] ? __stack_depot_save+0x21/0x4b0 [ 288.861161][ T4360] ? kmsan_internal_check_memory+0x94/0x530 [ 288.867280][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 288.873320][ T4360] do_recvmmsg+0x682/0x1180 [ 288.878102][ T4360] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 288.884775][ T4360] __sys_recvmmsg+0x113/0x450 [ 288.889627][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 288.896407][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 288.902046][ T4360] ? exit_to_user_mode_prepare+0x119/0x220 [ 288.908135][ T4360] do_fast_syscall_32+0x33/0x70 [ 288.913181][ T4360] do_SYSENTER_32+0x1b/0x20 [ 288.917830][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 288.924626][ T4360] RIP: 0023:0xf7f63549 [ 288.929076][ T4360] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 288.931659][ T3558] usb 5-1: USB disconnect, device number 15 [ 288.951620][ T4360] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 288.951708][ T4360] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 288.951762][ T4360] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 288.951810][ T4360] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 288.951855][ T4360] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 288.951908][ T4360] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 288.951978][ T4360] [ 288.952589][ T4360] Uninit was stored to memory at: [ 289.024906][ T4360] get_compat_msghdr+0x4fc/0x720 [ 289.030417][ T4360] ___sys_recvmsg+0x18c/0x840 [ 289.035914][ T4360] do_recvmmsg+0x682/0x1180 [ 289.040743][ T4360] __sys_recvmmsg+0x113/0x450 [ 289.046034][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 289.055487][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 289.062034][ T4360] do_fast_syscall_32+0x33/0x70 [ 289.067302][ T4360] do_SYSENTER_32+0x1b/0x20 [ 289.071965][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 289.078841][ T4360] [ 289.081379][ T4360] Uninit was stored to memory at: [ 289.086831][ T4360] get_compat_msghdr+0x4fc/0x720 [ 289.092242][ T4360] ___sys_recvmsg+0x18c/0x840 [ 289.097321][ T4360] do_recvmmsg+0x682/0x1180 [ 289.103106][ T4360] __sys_recvmmsg+0x113/0x450 [ 289.107927][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 289.114546][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 289.120092][ T4360] do_fast_syscall_32+0x33/0x70 [ 289.125608][ T4360] do_SYSENTER_32+0x1b/0x20 [ 289.131213][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 289.138364][ T4360] [ 289.140849][ T4360] Uninit was stored to memory at: [ 289.146197][ T4360] get_compat_msghdr+0x4fc/0x720 [ 289.151376][ T4360] ___sys_recvmsg+0x18c/0x840 [ 289.156437][ T4360] do_recvmmsg+0x682/0x1180 [ 289.161183][ T4360] __sys_recvmmsg+0x113/0x450 [ 289.166970][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 289.175935][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 289.182503][ T4360] do_fast_syscall_32+0x33/0x70 [ 289.188892][ T4360] do_SYSENTER_32+0x1b/0x20 [ 289.196635][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 289.205210][ T4360] [ 289.207708][ T4360] Uninit was stored to memory at: [ 289.214571][ T4360] get_compat_msghdr+0x4fc/0x720 [ 289.220450][ T4360] ___sys_recvmsg+0x18c/0x840 [ 289.225637][ T4360] do_recvmmsg+0x682/0x1180 [ 289.230295][ T4360] __sys_recvmmsg+0x113/0x450 [ 289.235258][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 289.241689][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 289.247125][ T4360] do_fast_syscall_32+0x33/0x70 [ 289.252236][ T4360] do_SYSENTER_32+0x1b/0x20 [ 289.257045][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 289.263983][ T4360] [ 289.267763][ T4360] Uninit was stored to memory at: [ 289.273730][ T4360] get_compat_msghdr+0x4fc/0x720 [ 289.278922][ T4360] ___sys_recvmsg+0x18c/0x840 [ 289.284111][ T4360] do_recvmmsg+0x682/0x1180 [ 289.288768][ T4360] __sys_recvmmsg+0x113/0x450 [ 289.293726][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 289.302441][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 289.307995][ T4360] do_fast_syscall_32+0x33/0x70 [ 289.313086][ T4360] do_SYSENTER_32+0x1b/0x20 [ 289.317746][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 289.326626][ T4360] [ 289.329213][ T4360] Uninit was stored to memory at: [ 289.334645][ T4360] get_compat_msghdr+0x4fc/0x720 [ 289.339833][ T4360] ___sys_recvmsg+0x18c/0x840 [ 289.344881][ T4360] do_recvmmsg+0x682/0x1180 [ 289.349612][ T4360] __sys_recvmmsg+0x113/0x450 [ 289.354536][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 289.360961][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 289.366485][ T4360] do_fast_syscall_32+0x33/0x70 [ 289.371670][ T4360] do_SYSENTER_32+0x1b/0x20 [ 289.376503][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 289.383182][ T4360] [ 289.385577][ T4360] Uninit was stored to memory at: [ 289.390802][ T4360] get_compat_msghdr+0x4fc/0x720 [ 289.396241][ T4360] ___sys_recvmsg+0x18c/0x840 [ 289.401793][ T4360] do_recvmmsg+0x682/0x1180 [ 289.406594][ T4360] __sys_recvmmsg+0x113/0x450 [ 289.411572][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 289.418113][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 289.423736][ T4360] do_fast_syscall_32+0x33/0x70 [ 289.428830][ T4360] do_SYSENTER_32+0x1b/0x20 [ 289.434044][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 289.440618][ T4360] [ 289.443590][ T4360] Local variable msg_sys created at: [ 289.449156][ T4360] do_recvmmsg+0x5c/0x1180 [ 289.454051][ T4360] __sys_recvmmsg+0x113/0x450 [ 289.669540][ T4360] not chained 230000 origins [ 289.674456][ T4360] CPU: 0 PID: 4360 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 289.685716][ T4360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 289.695863][ T4360] Call Trace: [ 289.699422][ T4360] [ 289.702438][ T4360] dump_stack_lvl+0x1c8/0x256 [ 289.707624][ T4360] dump_stack+0x1a/0x1c [ 289.712829][ T4360] kmsan_internal_chain_origin+0x78/0x120 [ 289.718738][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 289.724780][ T4360] ? ____sys_recvmsg+0x5c1/0x810 [ 289.730118][ T4360] ? ___sys_recvmsg+0x217/0x840 [ 289.736303][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 289.742388][ T4360] ? ____sys_recvmsg+0x5c1/0x810 [ 289.748294][ T4360] ? kfree+0x44/0x980 [ 289.752439][ T4360] ? ___sys_recvmsg+0x248/0x840 [ 289.757543][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 289.763673][ T4360] ? get_compat_msghdr+0x51/0x720 [ 289.769439][ T4360] ? ___sys_recvmsg+0x18c/0x840 [ 289.774560][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 289.781137][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 289.787122][ T4360] ? should_fail+0x3f/0x810 [ 289.792163][ T4360] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 289.798704][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 289.804905][ T4360] __msan_chain_origin+0xbd/0x140 [ 289.810074][ T4360] get_compat_msghdr+0x4fc/0x720 [ 289.815219][ T4360] ___sys_recvmsg+0x18c/0x840 [ 289.820133][ T4360] ? __stack_depot_save+0x21/0x4b0 [ 289.825490][ T4360] ? kmsan_internal_check_memory+0x94/0x530 [ 289.831942][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 289.838223][ T4360] do_recvmmsg+0x682/0x1180 [ 289.843030][ T4360] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 289.852955][ T4360] __sys_recvmmsg+0x113/0x450 [ 289.858255][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 289.864745][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 289.869998][ T4360] ? exit_to_user_mode_prepare+0x119/0x220 [ 289.875950][ T4360] do_fast_syscall_32+0x33/0x70 [ 289.881305][ T4360] do_SYSENTER_32+0x1b/0x20 [ 289.885971][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 289.892428][ T4360] RIP: 0023:0xf7f63549 [ 289.896943][ T4360] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 289.918407][ T4360] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 289.927003][ T4360] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 289.935207][ T4360] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 289.943301][ T4360] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 289.951392][ T4360] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 289.959963][ T4360] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 289.968043][ T4360] [ 289.971398][ T4360] Uninit was stored to memory at: [ 289.977349][ T4360] get_compat_msghdr+0x4fc/0x720 [ 289.982457][ T4360] ___sys_recvmsg+0x18c/0x840 [ 289.987621][ T4360] do_recvmmsg+0x682/0x1180 [ 289.992338][ T4360] __sys_recvmmsg+0x113/0x450 [ 289.997228][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 290.004106][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 290.009477][ T4360] do_fast_syscall_32+0x33/0x70 [ 290.015055][ T4360] do_SYSENTER_32+0x1b/0x20 [ 290.019692][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 290.026534][ T4360] [ 290.030241][ T4360] Uninit was stored to memory at: [ 290.035617][ T4360] get_compat_msghdr+0x4fc/0x720 [ 290.040945][ T4360] ___sys_recvmsg+0x18c/0x840 [ 290.046140][ T4360] do_recvmmsg+0x682/0x1180 [ 290.051241][ T4360] __sys_recvmmsg+0x113/0x450 [ 290.056423][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 290.063090][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 290.068545][ T4360] do_fast_syscall_32+0x33/0x70 [ 290.076522][ T4360] do_SYSENTER_32+0x1b/0x20 [ 290.081345][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 290.091009][ T4360] [ 290.095270][ T4360] Uninit was stored to memory at: [ 290.101161][ T4360] get_compat_msghdr+0x4fc/0x720 [ 290.106672][ T4360] ___sys_recvmsg+0x18c/0x840 [ 290.114777][ T4360] do_recvmmsg+0x682/0x1180 [ 290.119760][ T4360] __sys_recvmmsg+0x113/0x450 [ 290.125427][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 290.134209][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 290.140019][ T4360] do_fast_syscall_32+0x33/0x70 [ 290.145779][ T4360] do_SYSENTER_32+0x1b/0x20 [ 290.151009][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 290.157733][ T4360] [ 290.160260][ T4360] Uninit was stored to memory at: [ 290.165681][ T4360] get_compat_msghdr+0x4fc/0x720 [ 290.170777][ T4360] ___sys_recvmsg+0x18c/0x840 [ 290.175785][ T4360] do_recvmmsg+0x682/0x1180 [ 290.180792][ T4360] __sys_recvmmsg+0x113/0x450 [ 290.185761][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 290.192279][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 290.197959][ T4360] do_fast_syscall_32+0x33/0x70 [ 290.203778][ T4360] do_SYSENTER_32+0x1b/0x20 [ 290.208430][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 290.215159][ T4360] [ 290.217547][ T4360] Uninit was stored to memory at: [ 290.223061][ T4360] get_compat_msghdr+0x4fc/0x720 [ 290.228407][ T4360] ___sys_recvmsg+0x18c/0x840 [ 290.233739][ T4360] do_recvmmsg+0x682/0x1180 [ 290.238489][ T4360] __sys_recvmmsg+0x113/0x450 [ 290.243471][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 290.249981][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 290.255416][ T4360] do_fast_syscall_32+0x33/0x70 [ 290.260548][ T4360] do_SYSENTER_32+0x1b/0x20 [ 290.265369][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 290.271985][ T4360] [ 290.274517][ T4360] Uninit was stored to memory at: [ 290.280036][ T4360] get_compat_msghdr+0x4fc/0x720 [ 290.285571][ T4360] ___sys_recvmsg+0x18c/0x840 [ 290.290482][ T4360] do_recvmmsg+0x682/0x1180 [ 290.295286][ T4360] __sys_recvmmsg+0x113/0x450 [ 290.301325][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 290.307804][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 290.313156][ T4360] do_fast_syscall_32+0x33/0x70 [ 290.318257][ T4360] do_SYSENTER_32+0x1b/0x20 [ 290.323261][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 290.330860][ T4360] [ 290.334007][ T4360] Uninit was stored to memory at: [ 290.340286][ T4360] get_compat_msghdr+0x4fc/0x720 [ 290.346120][ T4360] ___sys_recvmsg+0x18c/0x840 [ 290.350934][ T4360] do_recvmmsg+0x682/0x1180 [ 290.355898][ T4360] __sys_recvmmsg+0x113/0x450 [ 290.360849][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 290.367468][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 290.373337][ T4360] do_fast_syscall_32+0x33/0x70 [ 290.378809][ T4360] do_SYSENTER_32+0x1b/0x20 [ 290.383806][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 290.390559][ T4360] [ 290.393085][ T4360] Local variable msg_sys created at: [ 290.399072][ T4360] do_recvmmsg+0x5c/0x1180 [ 290.404174][ T4360] __sys_recvmmsg+0x113/0x450 [ 290.572193][ T4360] not chained 240000 origins [ 290.580261][ T4360] CPU: 1 PID: 4360 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 290.594247][ T4360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 290.607476][ T4360] Call Trace: [ 290.611321][ T4360] [ 290.615282][ T4360] dump_stack_lvl+0x1c8/0x256 [ 290.621275][ T4360] dump_stack+0x1a/0x1c [ 290.625775][ T4360] kmsan_internal_chain_origin+0x78/0x120 [ 290.632321][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 290.638806][ T4360] ? ____sys_recvmsg+0x5c1/0x810 [ 290.645375][ T4360] ? ___sys_recvmsg+0x217/0x840 [ 290.651013][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 290.659416][ T4360] ? ____sys_recvmsg+0x5c1/0x810 [ 290.664638][ T4360] ? kfree+0x44/0x980 [ 290.668810][ T4360] ? ___sys_recvmsg+0x248/0x840 [ 290.673763][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 290.680495][ T4360] ? get_compat_msghdr+0x51/0x720 [ 290.685856][ T4360] ? ___sys_recvmsg+0x18c/0x840 [ 290.690982][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 290.697604][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 290.704210][ T4360] ? should_fail+0x3f/0x810 [ 290.708832][ T4360] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 290.715584][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 290.721705][ T4360] __msan_chain_origin+0xbd/0x140 [ 290.727181][ T4360] get_compat_msghdr+0x4fc/0x720 [ 290.732288][ T4360] ___sys_recvmsg+0x18c/0x840 [ 290.737197][ T4360] ? __stack_depot_save+0x21/0x4b0 [ 290.742672][ T4360] ? kmsan_internal_check_memory+0x94/0x530 [ 290.748893][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 290.755275][ T4360] do_recvmmsg+0x682/0x1180 [ 290.761574][ T4360] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 290.769768][ T4360] __sys_recvmmsg+0x113/0x450 [ 290.774630][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 290.781102][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 290.786436][ T4360] ? exit_to_user_mode_prepare+0x119/0x220 [ 290.792590][ T4360] do_fast_syscall_32+0x33/0x70 [ 290.797709][ T4360] do_SYSENTER_32+0x1b/0x20 [ 290.802742][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 290.809321][ T4360] RIP: 0023:0xf7f63549 [ 290.813712][ T4360] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 290.833975][ T4360] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 290.843603][ T4360] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 290.852843][ T4360] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 290.862671][ T4360] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 290.870983][ T4360] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 290.879206][ T4360] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 290.887384][ T4360] [ 290.897959][ T4360] Uninit was stored to memory at: [ 290.903489][ T4360] get_compat_msghdr+0x4fc/0x720 [ 290.908756][ T4360] ___sys_recvmsg+0x18c/0x840 [ 290.913695][ T4360] do_recvmmsg+0x682/0x1180 [ 290.918517][ T4360] __sys_recvmmsg+0x113/0x450 [ 290.923616][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 290.930279][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 290.935820][ T4360] do_fast_syscall_32+0x33/0x70 [ 290.941067][ T4360] do_SYSENTER_32+0x1b/0x20 [ 290.945917][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 290.952427][ T4360] [ 290.955159][ T4360] Uninit was stored to memory at: [ 290.960368][ T4360] get_compat_msghdr+0x4fc/0x720 [ 290.965815][ T4360] ___sys_recvmsg+0x18c/0x840 [ 290.970721][ T4360] do_recvmmsg+0x682/0x1180 [ 290.975886][ T4360] __sys_recvmmsg+0x113/0x450 [ 290.980790][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 290.987477][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 290.992981][ T4360] do_fast_syscall_32+0x33/0x70 [ 290.998675][ T4360] do_SYSENTER_32+0x1b/0x20 [ 291.003434][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 291.009948][ T4360] [ 291.012982][ T4360] Uninit was stored to memory at: [ 291.018220][ T4360] get_compat_msghdr+0x4fc/0x720 [ 291.023550][ T4360] ___sys_recvmsg+0x18c/0x840 [ 291.028537][ T4360] do_recvmmsg+0x682/0x1180 [ 291.033346][ T4360] __sys_recvmmsg+0x113/0x450 [ 291.038750][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 291.045916][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 291.051158][ T4360] do_fast_syscall_32+0x33/0x70 [ 291.056608][ T4360] do_SYSENTER_32+0x1b/0x20 [ 291.061857][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 291.068586][ T4360] [ 291.070990][ T4360] Uninit was stored to memory at: [ 291.076343][ T4360] get_compat_msghdr+0x4fc/0x720 [ 291.081447][ T4360] ___sys_recvmsg+0x18c/0x840 [ 291.086548][ T4360] do_recvmmsg+0x682/0x1180 [ 291.091199][ T4360] __sys_recvmmsg+0x113/0x450 [ 291.096172][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 291.102660][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 291.108515][ T4360] do_fast_syscall_32+0x33/0x70 [ 291.113669][ T4360] do_SYSENTER_32+0x1b/0x20 [ 291.118448][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 291.125847][ T4360] [ 291.129135][ T4360] Uninit was stored to memory at: [ 291.135669][ T4360] get_compat_msghdr+0x4fc/0x720 [ 291.141882][ T4360] ___sys_recvmsg+0x18c/0x840 [ 291.147169][ T4360] do_recvmmsg+0x682/0x1180 [ 291.151882][ T4360] __sys_recvmmsg+0x113/0x450 [ 291.157602][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 291.164299][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 291.169824][ T4360] do_fast_syscall_32+0x33/0x70 [ 291.175073][ T4360] do_SYSENTER_32+0x1b/0x20 [ 291.180376][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 291.187193][ T4360] [ 291.190001][ T4360] Uninit was stored to memory at: [ 291.197651][ T4360] get_compat_msghdr+0x4fc/0x720 [ 291.203533][ T4360] ___sys_recvmsg+0x18c/0x840 [ 291.208348][ T4360] do_recvmmsg+0x682/0x1180 [ 291.214202][ T4360] __sys_recvmmsg+0x113/0x450 [ 291.220762][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 291.228556][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 291.234029][ T4360] do_fast_syscall_32+0x33/0x70 [ 291.239902][ T4360] do_SYSENTER_32+0x1b/0x20 [ 291.245015][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 291.251828][ T4360] [ 291.254357][ T4360] Uninit was stored to memory at: [ 291.259948][ T4360] get_compat_msghdr+0x4fc/0x720 [ 291.265354][ T4360] ___sys_recvmsg+0x18c/0x840 [ 291.270543][ T4360] do_recvmmsg+0x682/0x1180 [ 291.275297][ T4360] __sys_recvmmsg+0x113/0x450 [ 291.280631][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 291.287262][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 291.292634][ T4360] do_fast_syscall_32+0x33/0x70 [ 291.298918][ T4360] do_SYSENTER_32+0x1b/0x20 [ 291.304284][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 291.310879][ T4360] [ 291.313531][ T4360] Local variable msg_sys created at: [ 291.318989][ T4360] do_recvmmsg+0x5c/0x1180 [ 291.323872][ T4360] __sys_recvmmsg+0x113/0x450 [ 291.506804][ T4360] not chained 250000 origins [ 291.511722][ T4360] CPU: 1 PID: 4360 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 291.522832][ T4360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 291.532971][ T4360] Call Trace: [ 291.536312][ T4360] [ 291.539304][ T4360] dump_stack_lvl+0x1c8/0x256 [ 291.544156][ T4360] dump_stack+0x1a/0x1c [ 291.548443][ T4360] kmsan_internal_chain_origin+0x78/0x120 [ 291.554650][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 291.560881][ T4360] ? ____sys_recvmsg+0x5c1/0x810 [ 291.566170][ T4360] ? ___sys_recvmsg+0x217/0x840 [ 291.571801][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 291.577805][ T4360] ? ____sys_recvmsg+0x5c1/0x810 [ 291.582872][ T4360] ? kfree+0x44/0x980 [ 291.586967][ T4360] ? ___sys_recvmsg+0x248/0x840 [ 291.592140][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 291.599920][ T4360] ? get_compat_msghdr+0x51/0x720 [ 291.605188][ T4360] ? ___sys_recvmsg+0x18c/0x840 [ 291.610435][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 291.616979][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 291.623068][ T4360] ? should_fail+0x3f/0x810 [ 291.627697][ T4360] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 291.634693][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 291.640715][ T4360] __msan_chain_origin+0xbd/0x140 [ 291.645988][ T4360] get_compat_msghdr+0x4fc/0x720 [ 291.651358][ T4360] ___sys_recvmsg+0x18c/0x840 [ 291.656186][ T4360] ? __stack_depot_save+0x21/0x4b0 [ 291.661894][ T4360] ? kmsan_internal_check_memory+0x94/0x530 [ 291.669808][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 291.678377][ T4360] do_recvmmsg+0x682/0x1180 [ 291.683861][ T4360] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 291.691177][ T4360] __sys_recvmmsg+0x113/0x450 [ 291.696576][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 291.703784][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 291.709194][ T4360] ? exit_to_user_mode_prepare+0x119/0x220 [ 291.717045][ T4360] do_fast_syscall_32+0x33/0x70 [ 291.723212][ T4360] do_SYSENTER_32+0x1b/0x20 [ 291.728700][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 291.737309][ T4360] RIP: 0023:0xf7f63549 [ 291.741466][ T4360] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 291.762497][ T4360] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 291.771643][ T4360] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 291.781866][ T4360] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 291.790452][ T4360] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 291.800757][ T4360] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 291.810527][ T4360] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 291.818946][ T4360] [ 291.824080][ T4360] Uninit was stored to memory at: [ 291.830460][ T4360] get_compat_msghdr+0x4fc/0x720 [ 291.835863][ T4360] ___sys_recvmsg+0x18c/0x840 [ 291.841358][ T4360] do_recvmmsg+0x682/0x1180 [ 291.846398][ T4360] __sys_recvmmsg+0x113/0x450 [ 291.852027][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 291.861181][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 291.866564][ T4360] do_fast_syscall_32+0x33/0x70 [ 291.871644][ T4360] do_SYSENTER_32+0x1b/0x20 [ 291.876532][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 291.883241][ T4360] [ 291.885729][ T4360] Uninit was stored to memory at: [ 291.892092][ T4360] get_compat_msghdr+0x4fc/0x720 [ 291.897599][ T4360] ___sys_recvmsg+0x18c/0x840 [ 291.902669][ T4360] do_recvmmsg+0x682/0x1180 [ 291.908816][ T4360] __sys_recvmmsg+0x113/0x450 [ 291.914352][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 291.922679][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 291.929135][ T4360] do_fast_syscall_32+0x33/0x70 [ 291.934551][ T4360] do_SYSENTER_32+0x1b/0x20 [ 291.939389][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 291.947105][ T4360] [ 291.949586][ T4360] Uninit was stored to memory at: [ 291.955470][ T4360] get_compat_msghdr+0x4fc/0x720 [ 291.961465][ T4360] ___sys_recvmsg+0x18c/0x840 [ 291.967861][ T4360] do_recvmmsg+0x682/0x1180 [ 291.973111][ T4360] __sys_recvmmsg+0x113/0x450 [ 291.977969][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 291.986859][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 291.993022][ T4360] do_fast_syscall_32+0x33/0x70 [ 291.999404][ T4360] do_SYSENTER_32+0x1b/0x20 [ 292.004223][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 292.013147][ T4360] [ 292.015522][ T4360] Uninit was stored to memory at: [ 292.020678][ T4360] get_compat_msghdr+0x4fc/0x720 [ 292.025984][ T4360] ___sys_recvmsg+0x18c/0x840 [ 292.031927][ T4360] do_recvmmsg+0x682/0x1180 [ 292.037794][ T4360] __sys_recvmmsg+0x113/0x450 [ 292.043947][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 292.051036][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 292.057529][ T4360] do_fast_syscall_32+0x33/0x70 [ 292.064392][ T4360] do_SYSENTER_32+0x1b/0x20 [ 292.069675][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 292.077007][ T4360] [ 292.079570][ T4360] Uninit was stored to memory at: [ 292.086056][ T4360] get_compat_msghdr+0x4fc/0x720 [ 292.091903][ T4360] ___sys_recvmsg+0x18c/0x840 [ 292.097300][ T4360] do_recvmmsg+0x682/0x1180 [ 292.103393][ T4360] __sys_recvmmsg+0x113/0x450 [ 292.109064][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 292.117044][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 292.127728][ T4360] do_fast_syscall_32+0x33/0x70 [ 292.133982][ T4360] do_SYSENTER_32+0x1b/0x20 [ 292.138671][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 292.146403][ T4360] [ 292.148969][ T4360] Uninit was stored to memory at: [ 292.154310][ T4360] get_compat_msghdr+0x4fc/0x720 [ 292.159918][ T4360] ___sys_recvmsg+0x18c/0x840 [ 292.164898][ T4360] do_recvmmsg+0x682/0x1180 [ 292.171823][ T4360] __sys_recvmmsg+0x113/0x450 [ 292.177765][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 292.187188][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 292.192925][ T4360] do_fast_syscall_32+0x33/0x70 [ 292.199675][ T4360] do_SYSENTER_32+0x1b/0x20 [ 292.209668][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 292.221099][ T4360] [ 292.223605][ T4360] Uninit was stored to memory at: [ 292.229638][ T4360] get_compat_msghdr+0x4fc/0x720 [ 292.235388][ T4360] ___sys_recvmsg+0x18c/0x840 [ 292.240763][ T4360] do_recvmmsg+0x682/0x1180 [ 292.245854][ T4360] __sys_recvmmsg+0x113/0x450 [ 292.251101][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 292.258201][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 292.263544][ T4360] do_fast_syscall_32+0x33/0x70 [ 292.269019][ T4360] do_SYSENTER_32+0x1b/0x20 [ 292.273871][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 292.281660][ T4360] [ 292.284207][ T4360] Local variable msg_sys created at: [ 292.289994][ T4360] do_recvmmsg+0x5c/0x1180 [ 292.295354][ T4360] __sys_recvmmsg+0x113/0x450 [ 292.482469][ T4360] not chained 260000 origins [ 292.487347][ T4360] CPU: 0 PID: 4360 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 292.498668][ T4360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 292.509015][ T4360] Call Trace: [ 292.512360][ T4360] [ 292.515332][ T4360] dump_stack_lvl+0x1c8/0x256 [ 292.520626][ T4360] dump_stack+0x1a/0x1c [ 292.524914][ T4360] kmsan_internal_chain_origin+0x78/0x120 [ 292.530904][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 292.536902][ T4360] ? ____sys_recvmsg+0x5c1/0x810 [ 292.541984][ T4360] ? ___sys_recvmsg+0x217/0x840 [ 292.547018][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 292.553080][ T4360] ? ____sys_recvmsg+0x5c1/0x810 [ 292.558260][ T4360] ? kfree+0x44/0x980 [ 292.562522][ T4360] ? ___sys_recvmsg+0x248/0x840 [ 292.567732][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 292.573712][ T4360] ? get_compat_msghdr+0x51/0x720 [ 292.578879][ T4360] ? ___sys_recvmsg+0x18c/0x840 [ 292.583835][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 292.590357][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 292.597031][ T4360] ? should_fail+0x3f/0x810 [ 292.601982][ T4360] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 292.608724][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 292.614672][ T4360] __msan_chain_origin+0xbd/0x140 [ 292.619929][ T4360] get_compat_msghdr+0x4fc/0x720 [ 292.625223][ T4360] ___sys_recvmsg+0x18c/0x840 [ 292.630071][ T4360] ? __stack_depot_save+0x21/0x4b0 [ 292.635331][ T4360] ? kmsan_internal_check_memory+0x94/0x530 [ 292.641868][ T4360] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 292.648590][ T4360] do_recvmmsg+0x682/0x1180 [ 292.653275][ T4360] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 292.660543][ T4360] __sys_recvmmsg+0x113/0x450 [ 292.665606][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 292.672363][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 292.679084][ T4360] ? exit_to_user_mode_prepare+0x119/0x220 [ 292.686129][ T4360] do_fast_syscall_32+0x33/0x70 [ 292.693493][ T4360] do_SYSENTER_32+0x1b/0x20 [ 292.699278][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 292.707248][ T4360] RIP: 0023:0xf7f63549 [ 292.711482][ T4360] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 292.733620][ T4360] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 292.742819][ T4360] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 292.752062][ T4360] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 292.760233][ T4360] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 292.768406][ T4360] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 292.776654][ T4360] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 292.784939][ T4360] [ 292.788534][ T4360] Uninit was stored to memory at: [ 292.794108][ T4360] get_compat_msghdr+0x4fc/0x720 [ 292.799364][ T4360] ___sys_recvmsg+0x18c/0x840 [ 292.804358][ T4360] do_recvmmsg+0x682/0x1180 [ 292.809115][ T4360] __sys_recvmmsg+0x113/0x450 [ 292.814478][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 292.820909][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 292.826802][ T4360] do_fast_syscall_32+0x33/0x70 [ 292.832082][ T4360] do_SYSENTER_32+0x1b/0x20 [ 292.836881][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 292.843547][ T4360] [ 292.845941][ T4360] Uninit was stored to memory at: [ 292.851237][ T4360] get_compat_msghdr+0x4fc/0x720 [ 292.856757][ T4360] ___sys_recvmsg+0x18c/0x840 [ 292.861566][ T4360] do_recvmmsg+0x682/0x1180 [ 292.866270][ T4360] __sys_recvmmsg+0x113/0x450 [ 292.871248][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 292.877755][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 292.883177][ T4360] do_fast_syscall_32+0x33/0x70 [ 292.888184][ T4360] do_SYSENTER_32+0x1b/0x20 [ 292.892916][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 292.899443][ T4360] [ 292.902015][ T4360] Uninit was stored to memory at: [ 292.907448][ T4360] get_compat_msghdr+0x4fc/0x720 [ 292.912583][ T4360] ___sys_recvmsg+0x18c/0x840 [ 292.918584][ T4360] do_recvmmsg+0x682/0x1180 [ 292.924190][ T4360] __sys_recvmmsg+0x113/0x450 [ 292.931985][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 292.939577][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 292.945368][ T4360] do_fast_syscall_32+0x33/0x70 [ 292.952113][ T4360] do_SYSENTER_32+0x1b/0x20 [ 292.959065][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 292.966612][ T4360] [ 292.969016][ T4360] Uninit was stored to memory at: [ 292.974315][ T4360] get_compat_msghdr+0x4fc/0x720 [ 292.979386][ T4360] ___sys_recvmsg+0x18c/0x840 [ 292.984276][ T4360] do_recvmmsg+0x682/0x1180 [ 292.989256][ T4360] __sys_recvmmsg+0x113/0x450 [ 292.994216][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 293.000937][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 293.006552][ T4360] do_fast_syscall_32+0x33/0x70 [ 293.012066][ T4360] do_SYSENTER_32+0x1b/0x20 [ 293.017539][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 293.024350][ T4360] [ 293.027365][ T4360] Uninit was stored to memory at: [ 293.033024][ T4360] get_compat_msghdr+0x4fc/0x720 [ 293.038222][ T4360] ___sys_recvmsg+0x18c/0x840 [ 293.043251][ T4360] do_recvmmsg+0x682/0x1180 [ 293.047905][ T4360] __sys_recvmmsg+0x113/0x450 [ 293.053570][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 293.060254][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 293.065633][ T4360] do_fast_syscall_32+0x33/0x70 [ 293.070658][ T4360] do_SYSENTER_32+0x1b/0x20 [ 293.075487][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 293.082692][ T4360] [ 293.085367][ T4360] Uninit was stored to memory at: [ 293.090554][ T4360] get_compat_msghdr+0x4fc/0x720 [ 293.095795][ T4360] ___sys_recvmsg+0x18c/0x840 [ 293.100733][ T4360] do_recvmmsg+0x682/0x1180 [ 293.105540][ T4360] __sys_recvmmsg+0x113/0x450 [ 293.110458][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 293.117034][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 293.122319][ T4360] do_fast_syscall_32+0x33/0x70 [ 293.127430][ T4360] do_SYSENTER_32+0x1b/0x20 [ 293.132536][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 293.139639][ T4360] [ 293.142025][ T4360] Uninit was stored to memory at: [ 293.147468][ T4360] get_compat_msghdr+0x4fc/0x720 [ 293.152632][ T4360] ___sys_recvmsg+0x18c/0x840 [ 293.157517][ T4360] do_recvmmsg+0x682/0x1180 [ 293.162099][ T4360] __sys_recvmmsg+0x113/0x450 [ 293.167282][ T4360] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 293.174295][ T4360] __do_fast_syscall_32+0xa2/0x100 [ 293.179555][ T4360] do_fast_syscall_32+0x33/0x70 [ 293.184651][ T4360] do_SYSENTER_32+0x1b/0x20 [ 293.189311][ T4360] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 293.196147][ T4360] [ 293.198543][ T4360] Local variable msg_sys created at: [ 293.204099][ T4360] do_recvmmsg+0x5c/0x1180 [ 293.208638][ T4360] __sys_recvmmsg+0x113/0x450 21:56:49 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000003c0)=0xae) prlimit64(0x0, 0x3, &(0x7f0000000280), &(0x7f0000000300)) r3 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r3, &(0x7f00000000c0)={0x2, 0x4e20, @empty}, 0x10) sendto$inet(r3, &(0x7f0000000140), 0xffffffffffffff58, 0x20008008, &(0x7f0000000100)={0x2, 0x4e20}, 0x10) recvfrom(r3, &(0x7f0000000480)=""/110, 0xfffffe32, 0x700, 0x0, 0xfffffffffffffecb) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x40000, 0x6, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef0100010000", 0x3f, 0x400}, {&(0x7f0000001f40)}, {0x0, 0x0, 0xbff}, {0x0}, {0x0, 0x0, 0x2}, {0x0, 0x0, 0x80000000000000}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="00da9bccad002100000400001f2b6fe2f96a3f6d2f93ca9700b41d3200000000e61dc18e8c44810000e4259e66932f75a7e35b9cc4c0e894a793926020f869c80184d3c69b0200000067c4eb317d9510c86b996c4c95074763bcffff1b27d72d69e41d5490584127f1be46d68441f24cc08bc114b8640a1c284a042bad52ed8715cb1335cc80259162dda27f90d1947ae4d82b1aa0b548e7393f3e00bc4cc5b3e3c8219821d391264cefcf9faad2b4077e1ebd400df5353093c588708eaeebb789e308a53a50e9c16d7ad1c27b4952e4dc878a3cf617e0558e6a4835afa1ac000000009e9084343c6ed98d00f15eaf0131f5b4136929ed31bdecd21d59ccdb410dd93aa5079d6be21e9b112ef80bdd651f64988663add3343db6ad9e04f5b5eec29b19766749b8801cfb90e1aed6002a74c5081cb3cd8433e4f5c57aa4e64917abef7028d07ed6039c9f08efd7d996a5be6c9a15c6cbcdce39c469faf34d80b5e3633c078ce7d7522ffdaadd9d3d7ab33fce554e2150459954ac9bfcbe5d28ec65524a218b229a40d3b7c9949a617dbe4913dd2e1c383e83fd2ed7b3266a7fef1e0c9fb0f4870bcfc981618782a42ade56271308cea1595bc156a087e038bb447c623d3f0500cbacf9af1c93d1be01bc0b90d0a13edf05702e43ce8268af172e049a5a9a6ca77b0dd3cf48f73f27079a8743644e426be045aa4428c13ebec99f3cc5a269b4d50c077a68af9e8cd7d3ebd646719323fd11e3ac294159ddd9dfda99ea960ebf781a6c6f84de13d1568023f79708e7cc3e5c7a25b1f13ac3ca08bf39810d14b3a7bf2e40c94e8586dbae0e6f5e5379700eeabe00c6ba0ed79c984f042c3c76623c4c", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) sched_setattr(0x0, 0x0, 0x0) ioctl$sock_FIOGETOWN(r2, 0x8903, &(0x7f0000000040)=0x0) ptrace$cont(0x20, r4, 0x2593, 0x4) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) 21:56:49 executing program 5: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x925, 0x8888, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x6, {[@local, @main=@item_4={0x3, 0x0, 0x0, "8b707542"}]}}, 0x0}, 0x0) 21:56:49 executing program 1: socket(0x10, 0x2, 0x4) 21:56:49 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x4f, 0x92, 0xb9, 0x8, 0x1557, 0x7720, 0xb7eb, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x27, 0x85, 0xe6}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000040)={0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b00)={0x40, 0x13, 0x6, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x40, 0x19, 0x2, "a8cd"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 21:56:49 executing program 2: r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000300)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x0, 0x0) 21:56:49 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x2c, &(0x7f0000000c40)={0x0, 0x0, 0xab, {0xab, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab91cd7abf7a917f376386f7e92afc65e75c880a55d2877146ab5f476c1287ecb3e4003547007c60a0466f77cc3abce7d506197b7602e5face683fd5b62746db4fde2e52887d025b1d182565df701612bbacca6413"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) 21:56:49 executing program 1: socketpair(0x1e, 0x5, 0x0, &(0x7f0000000400)={0xffffffffffffffff}) sendmsg$can_bcm(r0, &(0x7f0000000140)={&(0x7f0000000000), 0x10, &(0x7f0000000100)={0x0}}, 0x0) [ 293.673444][ T3558] usb 6-1: new high-speed USB device number 21 using dummy_hcd [ 293.686233][ T3563] usb 5-1: new high-speed USB device number 16 using dummy_hcd [ 293.744422][ T119] usb 3-1: new high-speed USB device number 14 using dummy_hcd [ 293.753327][ T3565] usb 4-1: new high-speed USB device number 12 using dummy_hcd 21:56:49 executing program 1: r0 = socket(0x18, 0x0, 0x0) accept4$llc(r0, 0x0, 0x0, 0x0) [ 293.970911][ T4396] loop0: detected capacity change from 0 to 512 [ 293.994836][ T3565] usb 4-1: Using ep0 maxpacket: 8 21:56:50 executing program 1: bpf$MAP_CREATE(0x0, &(0x7f0000001380)=@base={0x2, 0x0, 0x0, 0x0, 0x4, 0x1}, 0x48) [ 294.048851][ T3558] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 294.063193][ T3558] usb 6-1: New USB device found, idVendor=0925, idProduct=8888, bcdDevice= 0.00 [ 294.072531][ T3558] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 294.105438][ T3563] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 294.117635][ T3563] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 294.128357][ T3563] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 294.138700][ T3563] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 294.164806][ T3565] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 294.180160][ T3565] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 294.217061][ T4396] EXT4-fs (loop0): invalid inodes per group: 67108896 [ 294.217061][ T4396] [ 294.231594][ T3558] usb 6-1: config 0 descriptor?? [ 294.236999][ T3565] usb 4-1: config 0 descriptor?? [ 294.281707][ T3558] usbhid 6-1:0.0: couldn't find an input interrupt endpoint [ 294.322601][ T3563] usb 5-1: config 0 descriptor?? [ 294.335410][ T119] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 294.345316][ T119] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 294.353700][ T119] usb 3-1: Product: syz [ 294.358057][ T119] usb 3-1: Manufacturer: syz [ 294.363187][ T119] usb 3-1: SerialNumber: syz 21:56:50 executing program 1: r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) connect$can_bcm(r0, 0x0, 0xfffffffffffffc5d) [ 294.535682][ T119] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 294.919641][ T3563] usbhid 5-1:0.0: can't add hid device: -71 [ 294.926579][ T3563] usbhid: probe of 5-1:0.0 failed with error -71 21:56:51 executing program 1: bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x8, 0x1, &(0x7f00000001c0)=@raw=[@generic], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) [ 295.000491][ T3563] usb 5-1: USB disconnect, device number 16 [ 295.194049][ T3560] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 21:56:51 executing program 1: socketpair(0x1e, 0x5, 0x0, &(0x7f0000000400)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_inet_sctp_SIOCINQ(r0, 0x8982, 0x0) [ 295.612582][ T3563] usb 3-1: USB disconnect, device number 14 [ 295.651779][ T3565] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71 [ 295.662179][ T3565] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to send software reset: ffffffb9 [ 295.675914][ T3565] asix: probe of 4-1:0.0 failed with error -71 [ 295.758780][ T3565] usb 4-1: USB disconnect, device number 12 [ 295.829931][ T4391] not chained 270000 origins [ 295.836585][ T4391] CPU: 0 PID: 4391 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 295.851392][ T4391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 295.868526][ T4391] Call Trace: [ 295.871902][ T4391] [ 295.875357][ T4391] dump_stack_lvl+0x1c8/0x256 [ 295.880232][ T4391] dump_stack+0x1a/0x1c [ 295.884570][ T4391] kmsan_internal_chain_origin+0x78/0x120 [ 295.892165][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 295.901829][ T4391] ? ____sys_recvmsg+0x5c1/0x810 [ 295.908485][ T4391] ? ___sys_recvmsg+0x217/0x840 [ 295.913525][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 295.919572][ T4391] ? ____sys_recvmsg+0x5c1/0x810 [ 295.924682][ T4391] ? kfree+0x44/0x980 [ 295.930033][ T4391] ? ___sys_recvmsg+0x248/0x840 [ 295.935200][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 295.941291][ T4391] ? get_compat_msghdr+0x51/0x720 [ 295.946585][ T4391] ? ___sys_recvmsg+0x18c/0x840 [ 295.951868][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 295.958243][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 295.964253][ T4391] ? should_fail+0x3f/0x810 [ 295.969027][ T4391] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 295.975452][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 295.981678][ T4391] __msan_chain_origin+0xbd/0x140 [ 295.986951][ T4391] get_compat_msghdr+0x4fc/0x720 [ 295.992303][ T4391] ___sys_recvmsg+0x18c/0x840 [ 295.997645][ T4391] ? __stack_depot_save+0x21/0x4b0 [ 296.002918][ T4391] ? kmsan_internal_check_memory+0x94/0x530 [ 296.009002][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 296.015225][ T4391] do_recvmmsg+0x682/0x1180 [ 296.019928][ T4391] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 296.026644][ T4391] __sys_recvmmsg+0x113/0x450 [ 296.031572][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 296.037988][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 296.043243][ T4391] ? exit_to_user_mode_prepare+0x119/0x220 [ 296.049207][ T4391] do_fast_syscall_32+0x33/0x70 [ 296.054374][ T4391] do_SYSENTER_32+0x1b/0x20 [ 296.059083][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 296.065640][ T4391] RIP: 0023:0xf7f63549 [ 296.069973][ T4391] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 296.090591][ T4391] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 296.099655][ T4391] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 296.108076][ T4391] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 296.116491][ T4391] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 296.124557][ T4391] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 296.134444][ T4391] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 296.143616][ T4391] [ 296.147616][ T4391] Uninit was stored to memory at: [ 296.153012][ T4391] get_compat_msghdr+0x4fc/0x720 [ 296.158103][ T4391] ___sys_recvmsg+0x18c/0x840 [ 296.163185][ T4391] do_recvmmsg+0x682/0x1180 [ 296.167826][ T4391] __sys_recvmmsg+0x113/0x450 [ 296.172648][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 296.179597][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 296.185124][ T4391] do_fast_syscall_32+0x33/0x70 [ 296.190298][ T4391] do_SYSENTER_32+0x1b/0x20 [ 296.195036][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 296.201663][ T4391] [ 296.204153][ T4391] Uninit was stored to memory at: [ 296.209382][ T4391] get_compat_msghdr+0x4fc/0x720 [ 296.214679][ T4391] ___sys_recvmsg+0x18c/0x840 [ 296.219594][ T4391] do_recvmmsg+0x682/0x1180 [ 296.224362][ T4391] __sys_recvmmsg+0x113/0x450 [ 296.229297][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 296.235913][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 296.241381][ T4391] do_fast_syscall_32+0x33/0x70 [ 296.246506][ T4391] do_SYSENTER_32+0x1b/0x20 [ 296.251338][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 296.258320][ T4391] [ 296.260737][ T4391] Uninit was stored to memory at: [ 296.267132][ T4391] get_compat_msghdr+0x4fc/0x720 [ 296.272605][ T4391] ___sys_recvmsg+0x18c/0x840 [ 296.277550][ T4391] do_recvmmsg+0x682/0x1180 [ 296.282643][ T4391] __sys_recvmmsg+0x113/0x450 [ 296.287833][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 296.294417][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 296.299861][ T4391] do_fast_syscall_32+0x33/0x70 [ 296.304951][ T4391] do_SYSENTER_32+0x1b/0x20 [ 296.309595][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 296.316318][ T4391] [ 296.318741][ T4391] Uninit was stored to memory at: [ 296.324297][ T4391] get_compat_msghdr+0x4fc/0x720 [ 296.329965][ T4391] ___sys_recvmsg+0x18c/0x840 [ 296.335340][ T4391] do_recvmmsg+0x682/0x1180 [ 296.340627][ T4391] __sys_recvmmsg+0x113/0x450 [ 296.346137][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 296.352842][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 296.358119][ T4391] do_fast_syscall_32+0x33/0x70 [ 296.363262][ T4391] do_SYSENTER_32+0x1b/0x20 [ 296.368078][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 296.375024][ T4391] [ 296.377529][ T4391] Uninit was stored to memory at: [ 296.383024][ T4391] get_compat_msghdr+0x4fc/0x720 [ 296.388119][ T4391] ___sys_recvmsg+0x18c/0x840 [ 296.393291][ T4391] do_recvmmsg+0x682/0x1180 [ 296.398186][ T4391] __sys_recvmmsg+0x113/0x450 [ 296.403199][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 296.409624][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 296.415246][ T4391] do_fast_syscall_32+0x33/0x70 [ 296.420259][ T4391] do_SYSENTER_32+0x1b/0x20 [ 296.425093][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 296.431854][ T4391] [ 296.434509][ T4391] Uninit was stored to memory at: [ 296.439745][ T4391] get_compat_msghdr+0x4fc/0x720 [ 296.444996][ T4391] ___sys_recvmsg+0x18c/0x840 [ 296.450087][ T4391] do_recvmmsg+0x682/0x1180 [ 296.454979][ T4391] __sys_recvmmsg+0x113/0x450 [ 296.460074][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 296.467210][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 296.474347][ T4391] do_fast_syscall_32+0x33/0x70 [ 296.483278][ T4391] do_SYSENTER_32+0x1b/0x20 [ 296.488364][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 296.495560][ T4391] [ 296.498392][ T4391] Uninit was stored to memory at: [ 296.504618][ T4391] get_compat_msghdr+0x4fc/0x720 [ 296.511457][ T4391] ___sys_recvmsg+0x18c/0x840 [ 296.516943][ T4391] do_recvmmsg+0x682/0x1180 [ 296.521899][ T4391] __sys_recvmmsg+0x113/0x450 [ 296.526890][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 296.529530][ T3619] usb 6-1: USB disconnect, device number 21 [ 296.533399][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 296.533500][ T4391] do_fast_syscall_32+0x33/0x70 [ 296.550020][ T4391] do_SYSENTER_32+0x1b/0x20 [ 296.554836][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 296.561411][ T4391] [ 296.564062][ T4391] Local variable msg_sys created at: [ 296.569534][ T4391] do_recvmmsg+0x5c/0x1180 [ 296.574230][ T4391] __sys_recvmmsg+0x113/0x450 [ 296.591457][ T3560] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 296.599206][ T3560] ath9k_htc: Failed to initialize the device [ 296.607810][ T3563] usb 3-1: ath9k_htc: USB layer deinitialized [ 296.907936][ T4391] not chained 280000 origins [ 296.914913][ T4391] CPU: 0 PID: 4391 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 296.929080][ T4391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 296.940856][ T4391] Call Trace: [ 296.944498][ T4391] [ 296.948268][ T4391] dump_stack_lvl+0x1c8/0x256 [ 296.953682][ T4391] dump_stack+0x1a/0x1c [ 296.958037][ T4391] kmsan_internal_chain_origin+0x78/0x120 [ 296.964282][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 296.970641][ T4391] ? ____sys_recvmsg+0x5c1/0x810 [ 296.975724][ T4391] ? ___sys_recvmsg+0x217/0x840 [ 296.980815][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 296.986859][ T4391] ? ____sys_recvmsg+0x5c1/0x810 [ 296.992079][ T4391] ? kfree+0x44/0x980 [ 296.996293][ T4391] ? ___sys_recvmsg+0x248/0x840 [ 297.001479][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 297.007485][ T4391] ? get_compat_msghdr+0x51/0x720 [ 297.012681][ T4391] ? ___sys_recvmsg+0x18c/0x840 [ 297.017740][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 297.023761][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 297.030824][ T4391] ? should_fail+0x3f/0x810 [ 297.035637][ T4391] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 297.042202][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 297.048429][ T4391] __msan_chain_origin+0xbd/0x140 [ 297.053812][ T4391] get_compat_msghdr+0x4fc/0x720 [ 297.058932][ T4391] ___sys_recvmsg+0x18c/0x840 [ 297.063786][ T4391] ? __stack_depot_save+0x21/0x4b0 [ 297.069500][ T4391] ? kmsan_internal_check_memory+0x94/0x530 [ 297.075696][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 297.081782][ T4391] do_recvmmsg+0x682/0x1180 [ 297.086443][ T4391] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 297.093269][ T4391] __sys_recvmmsg+0x113/0x450 [ 297.098108][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 297.104630][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 297.109986][ T4391] ? exit_to_user_mode_prepare+0x119/0x220 [ 297.116229][ T4391] do_fast_syscall_32+0x33/0x70 [ 297.121364][ T4391] do_SYSENTER_32+0x1b/0x20 [ 297.125953][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 297.133476][ T4391] RIP: 0023:0xf7f63549 [ 297.137658][ T4391] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 297.157983][ T4391] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 297.166547][ T4391] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 297.174760][ T4391] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 297.182919][ T4391] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 297.191090][ T4391] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 297.199158][ T4391] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 297.207369][ T4391] [ 297.210920][ T4391] Uninit was stored to memory at: [ 297.216454][ T4391] get_compat_msghdr+0x4fc/0x720 [ 297.221814][ T4391] ___sys_recvmsg+0x18c/0x840 [ 297.227071][ T4391] do_recvmmsg+0x682/0x1180 [ 297.231804][ T4391] __sys_recvmmsg+0x113/0x450 [ 297.236717][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 297.243220][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 297.248553][ T4391] do_fast_syscall_32+0x33/0x70 [ 297.253837][ T4391] do_SYSENTER_32+0x1b/0x20 [ 297.258559][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 297.265317][ T4391] [ 297.267726][ T4391] Uninit was stored to memory at: [ 297.274170][ T4391] get_compat_msghdr+0x4fc/0x720 [ 297.280338][ T4391] ___sys_recvmsg+0x18c/0x840 [ 297.285368][ T4391] do_recvmmsg+0x682/0x1180 [ 297.290004][ T4391] __sys_recvmmsg+0x113/0x450 [ 297.295009][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 297.301402][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 297.307122][ T4391] do_fast_syscall_32+0x33/0x70 [ 297.312116][ T4391] do_SYSENTER_32+0x1b/0x20 [ 297.316944][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 297.323842][ T4391] [ 297.326238][ T4391] Uninit was stored to memory at: [ 297.331415][ T4391] get_compat_msghdr+0x4fc/0x720 [ 297.336575][ T4391] ___sys_recvmsg+0x18c/0x840 [ 297.341478][ T4391] do_recvmmsg+0x682/0x1180 [ 297.346311][ T4391] __sys_recvmmsg+0x113/0x450 [ 297.351327][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 297.358158][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 297.363930][ T4391] do_fast_syscall_32+0x33/0x70 [ 297.368912][ T4391] do_SYSENTER_32+0x1b/0x20 [ 297.374105][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 297.380671][ T4391] [ 297.383275][ T4391] Uninit was stored to memory at: [ 297.388468][ T4391] get_compat_msghdr+0x4fc/0x720 [ 297.393767][ T4391] ___sys_recvmsg+0x18c/0x840 [ 297.398866][ T4391] do_recvmmsg+0x682/0x1180 [ 297.403658][ T4391] __sys_recvmmsg+0x113/0x450 [ 297.409337][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 297.416132][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 297.421837][ T4391] do_fast_syscall_32+0x33/0x70 [ 297.427248][ T4391] do_SYSENTER_32+0x1b/0x20 [ 297.432451][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 297.441398][ T4391] [ 297.443971][ T4391] Uninit was stored to memory at: [ 297.450453][ T4391] get_compat_msghdr+0x4fc/0x720 [ 297.456424][ T4391] ___sys_recvmsg+0x18c/0x840 [ 297.461425][ T4391] do_recvmmsg+0x682/0x1180 [ 297.466216][ T4391] __sys_recvmmsg+0x113/0x450 [ 297.471129][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 297.478208][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 297.483668][ T4391] do_fast_syscall_32+0x33/0x70 [ 297.489088][ T4391] do_SYSENTER_32+0x1b/0x20 [ 297.493955][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 297.500686][ T4391] [ 297.503218][ T4391] Uninit was stored to memory at: [ 297.508422][ T4391] get_compat_msghdr+0x4fc/0x720 [ 297.513603][ T4391] ___sys_recvmsg+0x18c/0x840 [ 297.518810][ T4391] do_recvmmsg+0x682/0x1180 [ 297.523621][ T4391] __sys_recvmmsg+0x113/0x450 [ 297.528461][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 297.534996][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 297.540264][ T4391] do_fast_syscall_32+0x33/0x70 [ 297.545518][ T4391] do_SYSENTER_32+0x1b/0x20 [ 297.550348][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 297.557066][ T4391] [ 297.559549][ T4391] Uninit was stored to memory at: [ 297.565083][ T4391] get_compat_msghdr+0x4fc/0x720 [ 297.570155][ T4391] ___sys_recvmsg+0x18c/0x840 [ 297.575113][ T4391] do_recvmmsg+0x682/0x1180 [ 297.579872][ T4391] __sys_recvmmsg+0x113/0x450 [ 297.584822][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 297.591253][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 297.596624][ T4391] do_fast_syscall_32+0x33/0x70 [ 297.601786][ T4391] do_SYSENTER_32+0x1b/0x20 [ 297.606563][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 297.613187][ T4391] [ 297.615604][ T4391] Local variable msg_sys created at: [ 297.621048][ T4391] do_recvmmsg+0x5c/0x1180 [ 297.625698][ T4391] __sys_recvmmsg+0x113/0x450 [ 297.808784][ T4391] not chained 290000 origins [ 297.813640][ T4391] CPU: 0 PID: 4391 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 297.824593][ T4391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 297.834956][ T4391] Call Trace: [ 297.838938][ T4391] [ 297.841926][ T4391] dump_stack_lvl+0x1c8/0x256 [ 297.847059][ T4391] dump_stack+0x1a/0x1c [ 297.851454][ T4391] kmsan_internal_chain_origin+0x78/0x120 [ 297.857417][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 297.863957][ T4391] ? ____sys_recvmsg+0x5c1/0x810 [ 297.869175][ T4391] ? ___sys_recvmsg+0x217/0x840 [ 297.874239][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 297.880480][ T4391] ? ____sys_recvmsg+0x5c1/0x810 [ 297.885773][ T4391] ? kfree+0x44/0x980 [ 297.890032][ T4391] ? ___sys_recvmsg+0x248/0x840 [ 297.894997][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 297.901137][ T4391] ? get_compat_msghdr+0x51/0x720 [ 297.908025][ T4391] ? ___sys_recvmsg+0x18c/0x840 [ 297.914375][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 297.923277][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 297.930491][ T4391] ? should_fail+0x3f/0x810 [ 297.936005][ T4391] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 297.943315][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 297.949700][ T4391] __msan_chain_origin+0xbd/0x140 [ 297.955322][ T4391] get_compat_msghdr+0x4fc/0x720 [ 297.960537][ T4391] ___sys_recvmsg+0x18c/0x840 [ 297.965690][ T4391] ? __stack_depot_save+0x21/0x4b0 [ 297.971050][ T4391] ? kmsan_internal_check_memory+0x94/0x530 [ 297.977843][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 297.983948][ T4391] do_recvmmsg+0x682/0x1180 [ 297.988900][ T4391] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 297.995548][ T4391] __sys_recvmmsg+0x113/0x450 [ 298.000628][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 298.007129][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 298.012525][ T4391] ? exit_to_user_mode_prepare+0x119/0x220 [ 298.018528][ T4391] do_fast_syscall_32+0x33/0x70 [ 298.024546][ T4391] do_SYSENTER_32+0x1b/0x20 [ 298.032763][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 298.040251][ T4391] RIP: 0023:0xf7f63549 [ 298.045046][ T4391] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 298.066263][ T4391] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 298.075190][ T4391] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 298.084084][ T4391] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 298.092380][ T4391] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 298.100584][ T4391] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 298.109672][ T4391] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 298.118109][ T4391] [ 298.121579][ T4391] Uninit was stored to memory at: [ 298.127196][ T4391] get_compat_msghdr+0x4fc/0x720 [ 298.132280][ T4391] ___sys_recvmsg+0x18c/0x840 [ 298.137283][ T4391] do_recvmmsg+0x682/0x1180 [ 298.142005][ T4391] __sys_recvmmsg+0x113/0x450 [ 298.147017][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 298.153762][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 298.159785][ T4391] do_fast_syscall_32+0x33/0x70 [ 298.164986][ T4391] do_SYSENTER_32+0x1b/0x20 [ 298.169705][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 298.176636][ T4391] [ 298.179038][ T4391] Uninit was stored to memory at: [ 298.184744][ T4391] get_compat_msghdr+0x4fc/0x720 [ 298.189985][ T4391] ___sys_recvmsg+0x18c/0x840 [ 298.196688][ T4391] do_recvmmsg+0x682/0x1180 [ 298.202036][ T4391] __sys_recvmmsg+0x113/0x450 [ 298.207089][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 298.213745][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 298.218986][ T4391] do_fast_syscall_32+0x33/0x70 [ 298.224161][ T4391] do_SYSENTER_32+0x1b/0x20 [ 298.228803][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 298.235775][ T4391] [ 298.238175][ T4391] Uninit was stored to memory at: [ 298.243568][ T4391] get_compat_msghdr+0x4fc/0x720 [ 298.248851][ T4391] ___sys_recvmsg+0x18c/0x840 [ 298.253816][ T4391] do_recvmmsg+0x682/0x1180 [ 298.258795][ T4391] __sys_recvmmsg+0x113/0x450 [ 298.263754][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 298.271891][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 298.282000][ T4391] do_fast_syscall_32+0x33/0x70 [ 298.292101][ T4391] do_SYSENTER_32+0x1b/0x20 [ 298.297339][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 298.305521][ T4391] [ 298.310153][ T4391] Uninit was stored to memory at: [ 298.315732][ T4391] get_compat_msghdr+0x4fc/0x720 [ 298.323805][ T4391] ___sys_recvmsg+0x18c/0x840 [ 298.332493][ T4391] do_recvmmsg+0x682/0x1180 [ 298.338275][ T4391] __sys_recvmmsg+0x113/0x450 [ 298.344218][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 298.352456][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 298.359085][ T4391] do_fast_syscall_32+0x33/0x70 [ 298.364707][ T4391] do_SYSENTER_32+0x1b/0x20 [ 298.371588][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 298.378427][ T4391] [ 298.380901][ T4391] Uninit was stored to memory at: [ 298.387407][ T4391] get_compat_msghdr+0x4fc/0x720 [ 298.393971][ T4391] ___sys_recvmsg+0x18c/0x840 [ 298.398914][ T4391] do_recvmmsg+0x682/0x1180 [ 298.404285][ T4391] __sys_recvmmsg+0x113/0x450 [ 298.409735][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 298.424114][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 298.434032][ T4391] do_fast_syscall_32+0x33/0x70 [ 298.441200][ T4391] do_SYSENTER_32+0x1b/0x20 [ 298.446016][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 298.452824][ T4391] [ 298.455412][ T4391] Uninit was stored to memory at: [ 298.460684][ T4391] get_compat_msghdr+0x4fc/0x720 [ 298.466832][ T4391] ___sys_recvmsg+0x18c/0x840 [ 298.471753][ T4391] do_recvmmsg+0x682/0x1180 [ 298.476596][ T4391] __sys_recvmmsg+0x113/0x450 [ 298.481398][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 298.488098][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 298.497041][ T4391] do_fast_syscall_32+0x33/0x70 [ 298.505834][ T4391] do_SYSENTER_32+0x1b/0x20 [ 298.518092][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 298.529148][ T4391] [ 298.531534][ T4391] Uninit was stored to memory at: [ 298.536813][ T4391] get_compat_msghdr+0x4fc/0x720 [ 298.545219][ T4391] ___sys_recvmsg+0x18c/0x840 [ 298.550023][ T4391] do_recvmmsg+0x682/0x1180 [ 298.556849][ T4391] __sys_recvmmsg+0x113/0x450 [ 298.561667][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 298.568525][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 298.573938][ T4391] do_fast_syscall_32+0x33/0x70 [ 298.579483][ T4391] do_SYSENTER_32+0x1b/0x20 [ 298.584360][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 298.590990][ T4391] [ 298.593524][ T4391] Local variable msg_sys created at: [ 298.598975][ T4391] do_recvmmsg+0x5c/0x1180 [ 298.603832][ T4391] __sys_recvmmsg+0x113/0x450 [ 298.779682][ T4391] not chained 300000 origins [ 298.791272][ T4391] CPU: 1 PID: 4391 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 298.805145][ T4391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 298.815471][ T4391] Call Trace: [ 298.818889][ T4391] [ 298.822237][ T4391] dump_stack_lvl+0x1c8/0x256 [ 298.827162][ T4391] dump_stack+0x1a/0x1c [ 298.831655][ T4391] kmsan_internal_chain_origin+0x78/0x120 [ 298.837474][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 298.844451][ T4391] ? ____sys_recvmsg+0x5c1/0x810 [ 298.849706][ T4391] ? ___sys_recvmsg+0x217/0x840 [ 298.855315][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 298.861549][ T4391] ? ____sys_recvmsg+0x5c1/0x810 [ 298.867061][ T4391] ? kfree+0x44/0x980 [ 298.871293][ T4391] ? ___sys_recvmsg+0x248/0x840 [ 298.876299][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 298.882633][ T4391] ? get_compat_msghdr+0x51/0x720 [ 298.887830][ T4391] ? ___sys_recvmsg+0x18c/0x840 [ 298.892794][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 298.900153][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 298.906639][ T4391] ? should_fail+0x3f/0x810 [ 298.911366][ T4391] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 298.918595][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 298.924506][ T4391] __msan_chain_origin+0xbd/0x140 [ 298.929951][ T4391] get_compat_msghdr+0x4fc/0x720 [ 298.935083][ T4391] ___sys_recvmsg+0x18c/0x840 [ 298.940319][ T4391] ? __stack_depot_save+0x21/0x4b0 [ 298.946130][ T4391] ? kmsan_internal_check_memory+0x94/0x530 [ 298.952228][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 298.958272][ T4391] do_recvmmsg+0x682/0x1180 [ 298.963182][ T4391] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 298.969723][ T4391] __sys_recvmmsg+0x113/0x450 [ 298.975753][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 298.982141][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 298.987521][ T4391] ? exit_to_user_mode_prepare+0x119/0x220 [ 298.993709][ T4391] do_fast_syscall_32+0x33/0x70 [ 298.998858][ T4391] do_SYSENTER_32+0x1b/0x20 [ 299.004792][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 299.011434][ T4391] RIP: 0023:0xf7f63549 [ 299.015639][ T4391] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 299.049315][ T4391] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 299.058567][ T4391] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 299.067235][ T4391] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 299.076321][ T4391] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 299.084869][ T4391] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 299.093284][ T4391] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 299.102841][ T4391] [ 299.107012][ T4391] Uninit was stored to memory at: [ 299.112251][ T4391] get_compat_msghdr+0x4fc/0x720 [ 299.117616][ T4391] ___sys_recvmsg+0x18c/0x840 [ 299.122423][ T4391] do_recvmmsg+0x682/0x1180 [ 299.127617][ T4391] __sys_recvmmsg+0x113/0x450 [ 299.133925][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 299.156151][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 299.169597][ T4391] do_fast_syscall_32+0x33/0x70 [ 299.174847][ T4391] do_SYSENTER_32+0x1b/0x20 [ 299.179626][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 299.192505][ T4391] [ 299.195169][ T4391] Uninit was stored to memory at: [ 299.200348][ T4391] get_compat_msghdr+0x4fc/0x720 [ 299.205562][ T4391] ___sys_recvmsg+0x18c/0x840 [ 299.210358][ T4391] do_recvmmsg+0x682/0x1180 [ 299.215406][ T4391] __sys_recvmmsg+0x113/0x450 [ 299.220446][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 299.226978][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 299.232948][ T4391] do_fast_syscall_32+0x33/0x70 [ 299.238824][ T4391] do_SYSENTER_32+0x1b/0x20 [ 299.243619][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 299.250477][ T4391] [ 299.253098][ T4391] Uninit was stored to memory at: [ 299.258362][ T4391] get_compat_msghdr+0x4fc/0x720 [ 299.264272][ T4391] ___sys_recvmsg+0x18c/0x840 [ 299.270109][ T4391] do_recvmmsg+0x682/0x1180 [ 299.275137][ T4391] __sys_recvmmsg+0x113/0x450 [ 299.280076][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 299.287070][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 299.292585][ T4391] do_fast_syscall_32+0x33/0x70 [ 299.297785][ T4391] do_SYSENTER_32+0x1b/0x20 [ 299.302968][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 299.309584][ T4391] [ 299.311949][ T4391] Uninit was stored to memory at: [ 299.317309][ T4391] get_compat_msghdr+0x4fc/0x720 [ 299.322675][ T4391] ___sys_recvmsg+0x18c/0x840 [ 299.330520][ T4391] do_recvmmsg+0x682/0x1180 [ 299.335310][ T4391] __sys_recvmmsg+0x113/0x450 [ 299.340156][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 299.346759][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 299.352119][ T4391] do_fast_syscall_32+0x33/0x70 [ 299.357720][ T4391] do_SYSENTER_32+0x1b/0x20 [ 299.362462][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 299.369308][ T4391] [ 299.371692][ T4391] Uninit was stored to memory at: [ 299.377294][ T4391] get_compat_msghdr+0x4fc/0x720 [ 299.382532][ T4391] ___sys_recvmsg+0x18c/0x840 [ 299.388008][ T4391] do_recvmmsg+0x682/0x1180 [ 299.392961][ T4391] __sys_recvmmsg+0x113/0x450 [ 299.397761][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 299.404512][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 299.409872][ T4391] do_fast_syscall_32+0x33/0x70 [ 299.415092][ T4391] do_SYSENTER_32+0x1b/0x20 [ 299.419721][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 299.426494][ T4391] [ 299.428884][ T4391] Uninit was stored to memory at: [ 299.434275][ T4391] get_compat_msghdr+0x4fc/0x720 [ 299.439465][ T4391] ___sys_recvmsg+0x18c/0x840 [ 299.444478][ T4391] do_recvmmsg+0x682/0x1180 [ 299.449122][ T4391] __sys_recvmmsg+0x113/0x450 [ 299.454016][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 299.460684][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 299.466106][ T4391] do_fast_syscall_32+0x33/0x70 [ 299.471219][ T4391] do_SYSENTER_32+0x1b/0x20 [ 299.476033][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 299.482645][ T4391] [ 299.485302][ T4391] Uninit was stored to memory at: [ 299.491165][ T4391] get_compat_msghdr+0x4fc/0x720 [ 299.496435][ T4391] ___sys_recvmsg+0x18c/0x840 [ 299.501364][ T4391] do_recvmmsg+0x682/0x1180 [ 299.506332][ T4391] __sys_recvmmsg+0x113/0x450 [ 299.511455][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 299.517987][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 299.523338][ T4391] do_fast_syscall_32+0x33/0x70 [ 299.528315][ T4391] do_SYSENTER_32+0x1b/0x20 [ 299.533349][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 299.540088][ T4391] [ 299.542490][ T4391] Local variable msg_sys created at: [ 299.548529][ T4391] do_recvmmsg+0x5c/0x1180 [ 299.553190][ T4391] __sys_recvmmsg+0x113/0x450 [ 299.732898][ T4391] not chained 310000 origins [ 299.737709][ T4391] CPU: 1 PID: 4391 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 299.748277][ T4391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 299.758571][ T4391] Call Trace: [ 299.761995][ T4391] [ 299.765052][ T4391] dump_stack_lvl+0x1c8/0x256 [ 299.769875][ T4391] dump_stack+0x1a/0x1c [ 299.774395][ T4391] kmsan_internal_chain_origin+0x78/0x120 [ 299.780251][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 299.786297][ T4391] ? ____sys_recvmsg+0x5c1/0x810 [ 299.791392][ T4391] ? ___sys_recvmsg+0x217/0x840 [ 299.796387][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 299.802590][ T4391] ? ____sys_recvmsg+0x5c1/0x810 [ 299.807640][ T4391] ? kfree+0x44/0x980 [ 299.811704][ T4391] ? ___sys_recvmsg+0x248/0x840 [ 299.816648][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 299.822593][ T4391] ? get_compat_msghdr+0x51/0x720 [ 299.827720][ T4391] ? ___sys_recvmsg+0x18c/0x840 [ 299.832666][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 299.838737][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 299.845258][ T4391] ? should_fail+0x3f/0x810 [ 299.849957][ T4391] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 299.856657][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 299.862851][ T4391] __msan_chain_origin+0xbd/0x140 [ 299.868125][ T4391] get_compat_msghdr+0x4fc/0x720 [ 299.873248][ T4391] ___sys_recvmsg+0x18c/0x840 [ 299.878010][ T4391] ? __stack_depot_save+0x21/0x4b0 [ 299.883773][ T4391] ? kmsan_internal_check_memory+0x94/0x530 [ 299.890631][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 299.896731][ T4391] do_recvmmsg+0x682/0x1180 [ 299.901460][ T4391] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 299.908009][ T4391] __sys_recvmmsg+0x113/0x450 [ 299.912803][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 299.920236][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 299.925576][ T4391] ? exit_to_user_mode_prepare+0x119/0x220 [ 299.931665][ T4391] do_fast_syscall_32+0x33/0x70 [ 299.936822][ T4391] do_SYSENTER_32+0x1b/0x20 [ 299.941545][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 299.948682][ T4391] RIP: 0023:0xf7f63549 [ 299.953565][ T4391] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 299.976255][ T4391] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 299.985063][ T4391] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 299.993245][ T4391] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 300.001501][ T4391] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 300.009580][ T4391] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 300.017621][ T4391] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 300.025836][ T4391] [ 300.029517][ T4391] Uninit was stored to memory at: [ 300.034828][ T4391] get_compat_msghdr+0x4fc/0x720 [ 300.040037][ T4391] ___sys_recvmsg+0x18c/0x840 [ 300.045061][ T4391] do_recvmmsg+0x682/0x1180 [ 300.049703][ T4391] __sys_recvmmsg+0x113/0x450 [ 300.054693][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 300.061214][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 300.067177][ T4391] do_fast_syscall_32+0x33/0x70 [ 300.072422][ T4391] do_SYSENTER_32+0x1b/0x20 [ 300.077242][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 300.084199][ T4391] [ 300.086600][ T4391] Uninit was stored to memory at: [ 300.092062][ T4391] get_compat_msghdr+0x4fc/0x720 [ 300.097858][ T4391] ___sys_recvmsg+0x18c/0x840 [ 300.103265][ T4391] do_recvmmsg+0x682/0x1180 [ 300.107934][ T4391] __sys_recvmmsg+0x113/0x450 [ 300.112931][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 300.120390][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 300.125962][ T4391] do_fast_syscall_32+0x33/0x70 [ 300.131164][ T4391] do_SYSENTER_32+0x1b/0x20 [ 300.136238][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 300.145403][ T4391] [ 300.147934][ T4391] Uninit was stored to memory at: [ 300.153330][ T4391] get_compat_msghdr+0x4fc/0x720 [ 300.158413][ T4391] ___sys_recvmsg+0x18c/0x840 [ 300.163450][ T4391] do_recvmmsg+0x682/0x1180 [ 300.168360][ T4391] __sys_recvmmsg+0x113/0x450 [ 300.173408][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 300.179878][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 300.185552][ T4391] do_fast_syscall_32+0x33/0x70 [ 300.190559][ T4391] do_SYSENTER_32+0x1b/0x20 [ 300.195486][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 300.202185][ T4391] [ 300.204754][ T4391] Uninit was stored to memory at: [ 300.210071][ T4391] get_compat_msghdr+0x4fc/0x720 [ 300.215573][ T4391] ___sys_recvmsg+0x18c/0x840 [ 300.220423][ T4391] do_recvmmsg+0x682/0x1180 [ 300.225378][ T4391] __sys_recvmmsg+0x113/0x450 [ 300.230289][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 300.237226][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 300.242871][ T4391] do_fast_syscall_32+0x33/0x70 [ 300.247956][ T4391] do_SYSENTER_32+0x1b/0x20 [ 300.252671][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 300.259443][ T4391] [ 300.261833][ T4391] Uninit was stored to memory at: [ 300.267270][ T4391] get_compat_msghdr+0x4fc/0x720 [ 300.272357][ T4391] ___sys_recvmsg+0x18c/0x840 [ 300.277339][ T4391] do_recvmmsg+0x682/0x1180 [ 300.282168][ T4391] __sys_recvmmsg+0x113/0x450 [ 300.287107][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 300.294189][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 300.299531][ T4391] do_fast_syscall_32+0x33/0x70 [ 300.304917][ T4391] do_SYSENTER_32+0x1b/0x20 [ 300.309659][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 300.316587][ T4391] [ 300.318990][ T4391] Uninit was stored to memory at: [ 300.324459][ T4391] get_compat_msghdr+0x4fc/0x720 [ 300.329525][ T4391] ___sys_recvmsg+0x18c/0x840 [ 300.334475][ T4391] do_recvmmsg+0x682/0x1180 [ 300.339105][ T4391] __sys_recvmmsg+0x113/0x450 [ 300.344047][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 300.350447][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 300.356221][ T4391] do_fast_syscall_32+0x33/0x70 [ 300.361224][ T4391] do_SYSENTER_32+0x1b/0x20 [ 300.366067][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 300.372872][ T4391] [ 300.375266][ T4391] Uninit was stored to memory at: [ 300.380421][ T4391] get_compat_msghdr+0x4fc/0x720 [ 300.385765][ T4391] ___sys_recvmsg+0x18c/0x840 [ 300.390599][ T4391] do_recvmmsg+0x682/0x1180 [ 300.395401][ T4391] __sys_recvmmsg+0x113/0x450 [ 300.400202][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 300.406899][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 300.412186][ T4391] do_fast_syscall_32+0x33/0x70 [ 300.417274][ T4391] do_SYSENTER_32+0x1b/0x20 [ 300.421910][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 300.428862][ T4391] [ 300.431254][ T4391] Local variable msg_sys created at: [ 300.436741][ T4391] do_recvmmsg+0x5c/0x1180 [ 300.441300][ T4391] __sys_recvmmsg+0x113/0x450 [ 300.609938][ T4391] not chained 320000 origins [ 300.614770][ T4391] CPU: 0 PID: 4391 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 300.625313][ T4391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 300.636795][ T4391] Call Trace: [ 300.640241][ T4391] [ 300.643254][ T4391] dump_stack_lvl+0x1c8/0x256 [ 300.648125][ T4391] dump_stack+0x1a/0x1c [ 300.652383][ T4391] kmsan_internal_chain_origin+0x78/0x120 [ 300.658278][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 300.664990][ T4391] ? ____sys_recvmsg+0x5c1/0x810 [ 300.670063][ T4391] ? ___sys_recvmsg+0x217/0x840 [ 300.675020][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 300.681025][ T4391] ? ____sys_recvmsg+0x5c1/0x810 [ 300.686085][ T4391] ? kfree+0x44/0x980 [ 300.690160][ T4391] ? ___sys_recvmsg+0x248/0x840 [ 300.695276][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 300.701329][ T4391] ? get_compat_msghdr+0x51/0x720 [ 300.706484][ T4391] ? ___sys_recvmsg+0x18c/0x840 [ 300.711425][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 300.717359][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 300.723754][ T4391] ? should_fail+0x3f/0x810 [ 300.728657][ T4391] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 300.735152][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 300.741052][ T4391] __msan_chain_origin+0xbd/0x140 [ 300.746161][ T4391] get_compat_msghdr+0x4fc/0x720 [ 300.751205][ T4391] ___sys_recvmsg+0x18c/0x840 [ 300.755970][ T4391] ? __stack_depot_save+0x21/0x4b0 [ 300.761191][ T4391] ? kmsan_internal_check_memory+0x94/0x530 [ 300.767356][ T4391] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 300.773285][ T4391] do_recvmmsg+0x682/0x1180 [ 300.777952][ T4391] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 300.784500][ T4391] __sys_recvmmsg+0x113/0x450 [ 300.789251][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 300.795611][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 300.800894][ T4391] ? exit_to_user_mode_prepare+0x119/0x220 [ 300.806959][ T4391] do_fast_syscall_32+0x33/0x70 [ 300.812006][ T4391] do_SYSENTER_32+0x1b/0x20 [ 300.816642][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 300.823153][ T4391] RIP: 0023:0xf7f63549 [ 300.827341][ T4391] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 300.847864][ T4391] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 300.857957][ T4391] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 300.866279][ T4391] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 300.874353][ T4391] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 300.883138][ T4391] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 300.891622][ T4391] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 300.901675][ T4391] [ 300.905710][ T4391] Uninit was stored to memory at: [ 300.912157][ T4391] get_compat_msghdr+0x4fc/0x720 [ 300.917468][ T4391] ___sys_recvmsg+0x18c/0x840 [ 300.922313][ T4391] do_recvmmsg+0x682/0x1180 [ 300.927315][ T4391] __sys_recvmmsg+0x113/0x450 [ 300.932551][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 300.939708][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 300.947352][ T4391] do_fast_syscall_32+0x33/0x70 [ 300.953065][ T4391] do_SYSENTER_32+0x1b/0x20 [ 300.957709][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 300.964452][ T4391] [ 300.966950][ T4391] Uninit was stored to memory at: [ 300.972209][ T4391] get_compat_msghdr+0x4fc/0x720 [ 300.978431][ T4391] ___sys_recvmsg+0x18c/0x840 [ 300.983355][ T4391] do_recvmmsg+0x682/0x1180 [ 300.987985][ T4391] __sys_recvmmsg+0x113/0x450 [ 300.992857][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 300.999292][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 301.004648][ T4391] do_fast_syscall_32+0x33/0x70 [ 301.009611][ T4391] do_SYSENTER_32+0x1b/0x20 [ 301.014353][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 301.020849][ T4391] [ 301.023502][ T4391] Uninit was stored to memory at: [ 301.028713][ T4391] get_compat_msghdr+0x4fc/0x720 [ 301.033937][ T4391] ___sys_recvmsg+0x18c/0x840 [ 301.038715][ T4391] do_recvmmsg+0x682/0x1180 [ 301.043409][ T4391] __sys_recvmmsg+0x113/0x450 [ 301.048197][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 301.054701][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 301.059931][ T4391] do_fast_syscall_32+0x33/0x70 [ 301.065026][ T4391] do_SYSENTER_32+0x1b/0x20 [ 301.069639][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 301.076265][ T4391] [ 301.078656][ T4391] Uninit was stored to memory at: [ 301.084072][ T4391] get_compat_msghdr+0x4fc/0x720 [ 301.089120][ T4391] ___sys_recvmsg+0x18c/0x840 [ 301.094013][ T4391] do_recvmmsg+0x682/0x1180 [ 301.098620][ T4391] __sys_recvmmsg+0x113/0x450 [ 301.103602][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 301.109982][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 301.115343][ T4391] do_fast_syscall_32+0x33/0x70 [ 301.120339][ T4391] do_SYSENTER_32+0x1b/0x20 [ 301.125079][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 301.131671][ T4391] [ 301.134311][ T4391] Uninit was stored to memory at: [ 301.139477][ T4391] get_compat_msghdr+0x4fc/0x720 [ 301.144726][ T4391] ___sys_recvmsg+0x18c/0x840 [ 301.149713][ T4391] do_recvmmsg+0x682/0x1180 [ 301.154517][ T4391] __sys_recvmmsg+0x113/0x450 [ 301.159408][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 301.166127][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 301.171400][ T4391] do_fast_syscall_32+0x33/0x70 [ 301.176576][ T4391] do_SYSENTER_32+0x1b/0x20 [ 301.181788][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 301.189040][ T4391] [ 301.191428][ T4391] Uninit was stored to memory at: [ 301.196977][ T4391] get_compat_msghdr+0x4fc/0x720 [ 301.202240][ T4391] ___sys_recvmsg+0x18c/0x840 [ 301.207274][ T4391] do_recvmmsg+0x682/0x1180 [ 301.211898][ T4391] __sys_recvmmsg+0x113/0x450 [ 301.216821][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 301.223361][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 301.228886][ T4391] do_fast_syscall_32+0x33/0x70 [ 301.234030][ T4391] do_SYSENTER_32+0x1b/0x20 [ 301.238746][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 301.245336][ T4391] [ 301.247716][ T4391] Uninit was stored to memory at: [ 301.253010][ T4391] get_compat_msghdr+0x4fc/0x720 [ 301.258184][ T4391] ___sys_recvmsg+0x18c/0x840 [ 301.263306][ T4391] do_recvmmsg+0x682/0x1180 [ 301.268043][ T4391] __sys_recvmmsg+0x113/0x450 [ 301.273485][ T4391] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 301.280689][ T4391] __do_fast_syscall_32+0xa2/0x100 [ 301.286245][ T4391] do_fast_syscall_32+0x33/0x70 [ 301.291435][ T4391] do_SYSENTER_32+0x1b/0x20 [ 301.296588][ T4391] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 301.303271][ T4391] [ 301.305685][ T4391] Local variable msg_sys created at: [ 301.311024][ T4391] do_recvmmsg+0x5c/0x1180 [ 301.315695][ T4391] __sys_recvmmsg+0x113/0x450 21:56:57 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000003c0)=0xae) prlimit64(0x0, 0x3, &(0x7f0000000280), &(0x7f0000000300)) r3 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r3, &(0x7f00000000c0)={0x2, 0x4e20, @empty}, 0x10) sendto$inet(r3, &(0x7f0000000140), 0xffffffffffffff58, 0x20008008, &(0x7f0000000100)={0x2, 0x4e20}, 0x10) recvfrom(r3, &(0x7f0000000480)=""/110, 0xfffffe32, 0x700, 0x0, 0xfffffffffffffecb) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x40000, 0x6, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef0100010000", 0x3f, 0x400}, {&(0x7f0000001f40)}, {0x0, 0x0, 0xbff}, {0x0}, {0x0, 0x0, 0x2}, {0x0, 0x0, 0x80000000000000}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) sched_setattr(0x0, 0x0, 0x0) ioctl$sock_FIOGETOWN(r2, 0x8903, &(0x7f0000000040)=0x0) ptrace$cont(0x20, r4, 0x2593, 0x4) 21:56:57 executing program 4: syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(0xffffffffffffffff, &(0x7f0000000dc0)={0x2c, &(0x7f0000000c40)={0x0, 0x0, 0xab, {0xab, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab91cd7abf7a917f376386f7e92afc65e75c880a55d2877146ab5f476c1287ecb3e4003547007c60a0466f77cc3abce7d506197b7602e5face683fd5b62746db4fde2e52887d025b1d182565df701612bbacca6413"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) 21:56:57 executing program 1: r0 = socket(0xa, 0x2, 0x0) sendmsg$can_bcm(r0, &(0x7f0000000180)={&(0x7f0000000080)={0xa, 0x0, 0x1000000}, 0x18, &(0x7f0000000140)={0x0}}, 0x0) 21:56:57 executing program 2: r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000300)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x0, 0x0) 21:56:57 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x4f, 0x92, 0xb9, 0x8, 0x1557, 0x7720, 0xb7eb, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x27, 0x85, 0xe6}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000040)={0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b00)={0x40, 0x13, 0x6, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x40, 0x19, 0x2, "a8cd"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 21:56:57 executing program 5: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x925, 0x8888, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x6, {[@local, @main=@item_4={0x3, 0x0, 0x0, "8b707542"}]}}, 0x0}, 0x0) 21:56:57 executing program 1: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(r0, 0xc01064c2, 0x0) [ 301.993477][ T3619] usb 6-1: new high-speed USB device number 22 using dummy_hcd [ 302.013929][ T3558] usb 4-1: new high-speed USB device number 13 using dummy_hcd [ 302.014043][ T3563] usb 3-1: new high-speed USB device number 15 using dummy_hcd 21:56:58 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB="ec010000190001002dbd7000fcdbdf25fc020000000000000000010000c0f301ffffffff9effffff00000000000000004e2100004e1e00070a0020", @ANYRESOCT], 0x1ec}}, 0x0) [ 302.220143][ T4429] not chained 330000 origins [ 302.225899][ T4429] CPU: 0 PID: 4429 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 302.236835][ T4429] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 302.247534][ T4429] Call Trace: [ 302.250997][ T4429] [ 302.254103][ T4429] dump_stack_lvl+0x1c8/0x256 [ 302.258994][ T4429] dump_stack+0x1a/0x1c [ 302.263327][ T4429] kmsan_internal_chain_origin+0x78/0x120 [ 302.269405][ T4429] ? ____sys_recvmsg+0x5c1/0x810 [ 302.274657][ T4429] ? ___sys_recvmsg+0x217/0x840 [ 302.279672][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 302.285689][ T4429] ? ____sys_recvmsg+0x5c1/0x810 [ 302.290774][ T4429] ? kfree+0x44/0x980 [ 302.294948][ T4429] ? ___sys_recvmsg+0x248/0x840 [ 302.299979][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 302.306093][ T4429] ? get_compat_msghdr+0x51/0x720 [ 302.311267][ T4429] ? ___sys_recvmsg+0x18c/0x840 [ 302.316687][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 302.322870][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 302.328842][ T4429] ? should_fail+0x3f/0x810 [ 302.333596][ T4429] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 302.340195][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 302.346186][ T4429] __msan_chain_origin+0xbd/0x140 [ 302.351557][ T4429] get_compat_msghdr+0x4fc/0x720 [ 302.356725][ T4429] ___sys_recvmsg+0x18c/0x840 [ 302.361575][ T4429] ? __stack_depot_save+0x21/0x4b0 [ 302.367154][ T4429] ? kmsan_internal_check_memory+0x94/0x530 [ 302.373221][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 302.379225][ T4429] do_recvmmsg+0x682/0x1180 [ 302.384092][ T4429] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 302.390671][ T4429] __sys_recvmmsg+0x113/0x450 [ 302.395511][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 302.401952][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 302.407230][ T4429] ? exit_to_user_mode_prepare+0x119/0x220 [ 302.413192][ T4429] do_fast_syscall_32+0x33/0x70 [ 302.418177][ T4429] do_SYSENTER_32+0x1b/0x20 [ 302.422828][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 302.429568][ T4429] RIP: 0023:0xf7f63549 [ 302.433739][ T4429] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 302.453927][ T4429] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 302.462747][ T4429] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 302.470828][ T4429] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 302.478931][ T4429] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 302.487110][ T4429] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 302.495472][ T4429] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 302.503858][ T4429] [ 302.507673][ T4429] Uninit was stored to memory at: [ 302.507970][ T3558] usb 4-1: Using ep0 maxpacket: 8 [ 302.513372][ T4429] get_compat_msghdr+0x4fc/0x720 [ 302.523702][ T4429] ___sys_recvmsg+0x18c/0x840 [ 302.528711][ T4429] do_recvmmsg+0x682/0x1180 [ 302.533621][ T4429] __sys_recvmmsg+0x113/0x450 [ 302.538472][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 302.545084][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 302.550439][ T4429] do_fast_syscall_32+0x33/0x70 [ 302.555560][ T4429] do_SYSENTER_32+0x1b/0x20 [ 302.560362][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 302.567362][ T4429] [ 302.569785][ T4429] Uninit was stored to memory at: [ 302.575098][ T4429] get_compat_msghdr+0x4fc/0x720 [ 302.580365][ T4429] ___sys_recvmsg+0x18c/0x840 [ 302.585937][ T4429] do_recvmmsg+0x682/0x1180 [ 302.590870][ T4429] __sys_recvmmsg+0x113/0x450 [ 302.595954][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 302.597065][ T3619] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 302.603804][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 302.603904][ T4429] do_fast_syscall_32+0x33/0x70 [ 302.603975][ T4429] do_SYSENTER_32+0x1b/0x20 [ 302.604043][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 302.604171][ T4429] [ 302.604184][ T4429] Uninit was stored to memory at: [ 302.604305][ T4429] get_compat_msghdr+0x4fc/0x720 [ 302.604380][ T4429] ___sys_recvmsg+0x18c/0x840 [ 302.604455][ T4429] do_recvmmsg+0x682/0x1180 [ 302.604525][ T4429] __sys_recvmmsg+0x113/0x450 [ 302.617802][ T3619] usb 6-1: New USB device found, idVendor=0925, idProduct=8888, bcdDevice= 0.00 [ 302.622834][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 302.627877][ T3619] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 302.632370][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 302.697367][ T4429] do_fast_syscall_32+0x33/0x70 [ 302.702392][ T4429] do_SYSENTER_32+0x1b/0x20 [ 302.707395][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 302.714132][ T4429] [ 302.716527][ T4429] Uninit was stored to memory at: [ 302.721862][ T4429] get_compat_msghdr+0x4fc/0x720 [ 302.727274][ T4429] ___sys_recvmsg+0x18c/0x840 [ 302.732208][ T4429] do_recvmmsg+0x682/0x1180 [ 302.737045][ T4429] __sys_recvmmsg+0x113/0x450 [ 302.741870][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 302.748534][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 302.753990][ T4429] do_fast_syscall_32+0x33/0x70 [ 302.756063][ T3558] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 302.758941][ T4429] do_SYSENTER_32+0x1b/0x20 [ 302.768256][ T3558] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 302.772811][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 302.788581][ T4429] [ 302.790975][ T4429] Uninit was stored to memory at: [ 302.797437][ T4429] get_compat_msghdr+0x4fc/0x720 [ 302.805133][ T4429] ___sys_recvmsg+0x18c/0x840 [ 302.807625][ T3619] usb 6-1: config 0 descriptor?? [ 302.809915][ T4429] do_recvmmsg+0x682/0x1180 [ 302.819721][ T4429] __sys_recvmmsg+0x113/0x450 [ 302.824785][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 302.831206][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 302.836763][ T4429] do_fast_syscall_32+0x33/0x70 [ 302.841765][ T4429] do_SYSENTER_32+0x1b/0x20 [ 302.843643][ T3558] usb 4-1: config 0 descriptor?? [ 302.846509][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 302.858587][ T4429] [ 302.860992][ T4429] Uninit was stored to memory at: [ 302.866441][ T4429] get_compat_msghdr+0x4fc/0x720 [ 302.871638][ T4429] ___sys_recvmsg+0x18c/0x840 [ 302.876657][ T4429] do_recvmmsg+0x682/0x1180 [ 302.880854][ T3619] usbhid 6-1:0.0: couldn't find an input interrupt endpoint [ 302.881262][ T4429] __sys_recvmmsg+0x113/0x450 [ 302.893965][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 302.900489][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 302.905922][ T4429] do_fast_syscall_32+0x33/0x70 [ 302.910930][ T4429] do_SYSENTER_32+0x1b/0x20 [ 302.915729][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 302.922268][ T4429] [ 302.924891][ T4429] Uninit was stored to memory at: [ 302.930146][ T4429] get_compat_msghdr+0x4fc/0x720 [ 302.935403][ T4429] ___sys_recvmsg+0x18c/0x840 [ 302.940229][ T4429] do_recvmmsg+0x682/0x1180 [ 302.945766][ T4429] __sys_recvmmsg+0x113/0x450 [ 302.950718][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 302.957392][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 302.962670][ T4429] do_fast_syscall_32+0x33/0x70 [ 302.967844][ T4429] do_SYSENTER_32+0x1b/0x20 [ 302.972512][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 302.979198][ T4429] [ 302.981608][ T4429] Local variable msg_sys created at: [ 302.987204][ T4429] do_recvmmsg+0x5c/0x1180 [ 302.991754][ T4429] __sys_recvmmsg+0x113/0x450 21:56:59 executing program 4: syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(0xffffffffffffffff, &(0x7f0000000dc0)={0x2c, &(0x7f0000000c40)={0x0, 0x0, 0xab, {0xab, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab91cd7abf7a917f376386f7e92afc65e75c880a55d2877146ab5f476c1287ecb3e4003547007c60a0466f77cc3abce7d506197b7602e5face683fd5b62746db4fde2e52887d025b1d182565df701612bbacca6413"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) [ 303.050736][ T4432] loop0: detected capacity change from 0 to 512 [ 303.076048][ T4434] netlink: 312 bytes leftover after parsing attributes in process `syz-executor.1'. 21:56:59 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB="ec010000190001002dbd7000fcdbdf25fc020000000000000000010000c0f301ffffffff9effffff00000000000000004e2100004e1e00070a0020", @ANYRESOCT], 0x1ec}}, 0x0) [ 303.311280][ T4432] EXT4-fs (loop0): invalid inodes per group: 67108896 [ 303.311280][ T4432] [ 303.343924][ T3563] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 303.353476][ T3563] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 303.361820][ T3563] usb 3-1: Product: syz [ 303.366332][ T3563] usb 3-1: Manufacturer: syz [ 303.371118][ T3563] usb 3-1: SerialNumber: syz [ 303.448538][ T4440] netlink: 312 bytes leftover after parsing attributes in process `syz-executor.1'. [ 303.535570][ T3563] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested 21:56:59 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB="ec010000190001002dbd7000fcdbdf25fc020000000000000000010000c0f301ffffffff9effffff00000000000000004e2100004e1e00070a0020", @ANYRESOCT], 0x1ec}}, 0x0) [ 303.792263][ C1] hrtimer: interrupt took 373123 ns 21:56:59 executing program 4: syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(0xffffffffffffffff, &(0x7f0000000dc0)={0x2c, &(0x7f0000000c40)={0x0, 0x0, 0xab, {0xab, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab91cd7abf7a917f376386f7e92afc65e75c880a55d2877146ab5f476c1287ecb3e4003547007c60a0466f77cc3abce7d506197b7602e5face683fd5b62746db4fde2e52887d025b1d182565df701612bbacca6413"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) [ 303.840967][ T4443] netlink: 312 bytes leftover after parsing attributes in process `syz-executor.1'. [ 304.193401][ T3560] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 304.193797][ T3558] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71 [ 304.213401][ T3558] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to send software reset: ffffffb9 [ 304.224683][ T3558] asix: probe of 4-1:0.0 failed with error -71 [ 304.273196][ T3558] usb 4-1: USB disconnect, device number 13 [ 304.327383][ T4429] not chained 340000 origins [ 304.332379][ T4429] CPU: 0 PID: 4429 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 304.343150][ T4429] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 304.353427][ T4429] Call Trace: [ 304.356797][ T4429] [ 304.359813][ T4429] dump_stack_lvl+0x1c8/0x256 [ 304.364694][ T4429] dump_stack+0x1a/0x1c [ 304.369048][ T4429] kmsan_internal_chain_origin+0x78/0x120 [ 304.374965][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 304.380970][ T4429] ? ____sys_recvmsg+0x5c1/0x810 [ 304.386049][ T4429] ? ___sys_recvmsg+0x217/0x840 [ 304.391109][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 304.397111][ T4429] ? ____sys_recvmsg+0x5c1/0x810 [ 304.402366][ T4429] ? kfree+0x44/0x980 [ 304.406468][ T4429] ? ___sys_recvmsg+0x248/0x840 [ 304.411465][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 304.417476][ T4429] ? get_compat_msghdr+0x51/0x720 [ 304.422686][ T4429] ? ___sys_recvmsg+0x18c/0x840 [ 304.427812][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 304.434067][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 304.440048][ T4429] ? should_fail+0x3f/0x810 [ 304.444929][ T4429] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 304.451383][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 304.457505][ T4429] __msan_chain_origin+0xbd/0x140 [ 304.462722][ T4429] get_compat_msghdr+0x4fc/0x720 [ 304.468021][ T4429] ___sys_recvmsg+0x18c/0x840 [ 304.473046][ T4429] ? __stack_depot_save+0x21/0x4b0 [ 304.478612][ T4429] ? kmsan_internal_check_memory+0x94/0x530 [ 304.484714][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 304.490824][ T4429] do_recvmmsg+0x682/0x1180 [ 304.495590][ T4429] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 304.502182][ T4429] __sys_recvmmsg+0x113/0x450 [ 304.507131][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 304.513678][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 304.519024][ T4429] ? exit_to_user_mode_prepare+0x119/0x220 [ 304.525309][ T4429] do_fast_syscall_32+0x33/0x70 [ 304.530575][ T4429] do_SYSENTER_32+0x1b/0x20 [ 304.535260][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 304.543229][ T4429] RIP: 0023:0xf7f63549 [ 304.547497][ T4429] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 304.567765][ T4429] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 304.576600][ T4429] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 304.584791][ T4429] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 304.593068][ T4429] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 304.601516][ T4429] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 304.610590][ T4429] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 304.618983][ T4429] [ 304.623281][ T4429] Uninit was stored to memory at: [ 304.628523][ T4429] get_compat_msghdr+0x4fc/0x720 [ 304.633710][ T4429] ___sys_recvmsg+0x18c/0x840 [ 304.638541][ T4429] do_recvmmsg+0x682/0x1180 [ 304.644434][ T4429] __sys_recvmmsg+0x113/0x450 [ 304.649623][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 304.657637][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 304.662984][ T4429] do_fast_syscall_32+0x33/0x70 [ 304.667986][ T4429] do_SYSENTER_32+0x1b/0x20 [ 304.673032][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 304.680096][ T4429] [ 304.682511][ T4429] Uninit was stored to memory at: [ 304.688002][ T4429] get_compat_msghdr+0x4fc/0x720 [ 304.693374][ T4429] ___sys_recvmsg+0x18c/0x840 [ 304.698207][ T4429] do_recvmmsg+0x682/0x1180 [ 304.703080][ T4429] __sys_recvmmsg+0x113/0x450 [ 304.707899][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 304.714392][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 304.719645][ T4429] do_fast_syscall_32+0x33/0x70 [ 304.724762][ T4429] do_SYSENTER_32+0x1b/0x20 [ 304.729396][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 304.736058][ T4429] [ 304.738463][ T4429] Uninit was stored to memory at: [ 304.743862][ T4429] get_compat_msghdr+0x4fc/0x720 [ 304.748955][ T4429] ___sys_recvmsg+0x18c/0x840 [ 304.753927][ T4429] do_recvmmsg+0x682/0x1180 [ 304.758641][ T4429] __sys_recvmmsg+0x113/0x450 [ 304.763656][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 304.770410][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 304.776685][ T4429] do_fast_syscall_32+0x33/0x70 [ 304.782849][ T4429] do_SYSENTER_32+0x1b/0x20 [ 304.787505][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 304.794623][ T4429] [ 304.798516][ T4429] Uninit was stored to memory at: [ 304.804692][ T4429] get_compat_msghdr+0x4fc/0x720 [ 304.809870][ T4429] ___sys_recvmsg+0x18c/0x840 [ 304.815220][ T4429] do_recvmmsg+0x682/0x1180 [ 304.819861][ T4429] __sys_recvmmsg+0x113/0x450 [ 304.824958][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 304.831574][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 304.836976][ T4429] do_fast_syscall_32+0x33/0x70 [ 304.841976][ T4429] do_SYSENTER_32+0x1b/0x20 [ 304.846768][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 304.853801][ T4429] [ 304.856201][ T4429] Uninit was stored to memory at: [ 304.861771][ T4429] get_compat_msghdr+0x4fc/0x720 [ 304.868036][ T4429] ___sys_recvmsg+0x18c/0x840 [ 304.874446][ T4429] do_recvmmsg+0x682/0x1180 [ 304.879617][ T4429] __sys_recvmmsg+0x113/0x450 [ 304.884719][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 304.891927][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 304.897350][ T4429] do_fast_syscall_32+0x33/0x70 [ 304.902360][ T4429] do_SYSENTER_32+0x1b/0x20 [ 304.907166][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 304.914575][ T4429] [ 304.917056][ T4429] Uninit was stored to memory at: [ 304.922574][ T4429] get_compat_msghdr+0x4fc/0x720 [ 304.927804][ T4429] ___sys_recvmsg+0x18c/0x840 [ 304.932810][ T4429] do_recvmmsg+0x682/0x1180 [ 304.937493][ T4429] __sys_recvmmsg+0x113/0x450 [ 304.944465][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 304.950982][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 304.956374][ T4429] do_fast_syscall_32+0x33/0x70 [ 304.961365][ T4429] do_SYSENTER_32+0x1b/0x20 [ 304.966152][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 304.972953][ T4429] [ 304.975376][ T4429] Uninit was stored to memory at: [ 304.981636][ T4429] get_compat_msghdr+0x4fc/0x720 [ 304.986847][ T4429] ___sys_recvmsg+0x18c/0x840 [ 304.991688][ T4429] do_recvmmsg+0x682/0x1180 [ 304.996539][ T4429] __sys_recvmmsg+0x113/0x450 [ 305.001377][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 305.008373][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 305.013756][ T4429] do_fast_syscall_32+0x33/0x70 [ 305.019146][ T4429] do_SYSENTER_32+0x1b/0x20 [ 305.023963][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 305.030865][ T4429] [ 305.033481][ T4429] Local variable msg_sys created at: [ 305.038835][ T4429] do_recvmmsg+0x5c/0x1180 [ 305.043492][ T4429] __sys_recvmmsg+0x113/0x450 [ 305.094351][ T3561] usb 3-1: USB disconnect, device number 15 [ 305.114141][ T3619] usb 6-1: USB disconnect, device number 22 [ 305.273723][ T3560] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 305.285304][ T3560] ath9k_htc: Failed to initialize the device [ 305.325344][ T3561] usb 3-1: ath9k_htc: USB layer deinitialized [ 305.541612][ T4429] not chained 350000 origins [ 305.548506][ T4429] CPU: 0 PID: 4429 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 305.561180][ T4429] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 305.572267][ T4429] Call Trace: [ 305.576085][ T4429] [ 305.579237][ T4429] dump_stack_lvl+0x1c8/0x256 [ 305.585349][ T4429] dump_stack+0x1a/0x1c [ 305.591177][ T4429] kmsan_internal_chain_origin+0x78/0x120 [ 305.597383][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 305.604409][ T4429] ? ____sys_recvmsg+0x5c1/0x810 [ 305.612048][ T4429] ? ___sys_recvmsg+0x217/0x840 [ 305.620116][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 305.626494][ T4429] ? ____sys_recvmsg+0x5c1/0x810 [ 305.633513][ T4429] ? kfree+0x44/0x980 [ 305.638085][ T4429] ? ___sys_recvmsg+0x248/0x840 [ 305.643533][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 305.651373][ T4429] ? get_compat_msghdr+0x51/0x720 [ 305.658481][ T4429] ? ___sys_recvmsg+0x18c/0x840 [ 305.665567][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 305.671797][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 305.677846][ T4429] ? should_fail+0x3f/0x810 [ 305.682492][ T4429] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 305.688901][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 305.694842][ T4429] __msan_chain_origin+0xbd/0x140 [ 305.700125][ T4429] get_compat_msghdr+0x4fc/0x720 [ 305.705734][ T4429] ___sys_recvmsg+0x18c/0x840 [ 305.711554][ T4429] ? __stack_depot_save+0x21/0x4b0 [ 305.717071][ T4429] ? kmsan_internal_check_memory+0x94/0x530 [ 305.725341][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 305.732424][ T4429] do_recvmmsg+0x682/0x1180 [ 305.737500][ T4429] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 305.745019][ T4429] __sys_recvmmsg+0x113/0x450 [ 305.751594][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 305.759354][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 305.765282][ T4429] ? exit_to_user_mode_prepare+0x119/0x220 [ 305.772082][ T4429] do_fast_syscall_32+0x33/0x70 [ 305.777407][ T4429] do_SYSENTER_32+0x1b/0x20 [ 305.782194][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 305.791391][ T4429] RIP: 0023:0xf7f63549 [ 305.797067][ T4429] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 305.820433][ T4429] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 305.830129][ T4429] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 305.840044][ T4429] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 305.848708][ T4429] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 305.857150][ T4429] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 305.865308][ T4429] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 305.873680][ T4429] [ 305.877228][ T4429] Uninit was stored to memory at: [ 305.882452][ T4429] get_compat_msghdr+0x4fc/0x720 [ 305.888865][ T4429] ___sys_recvmsg+0x18c/0x840 [ 305.894870][ T4429] do_recvmmsg+0x682/0x1180 [ 305.899885][ T4429] __sys_recvmmsg+0x113/0x450 [ 305.905306][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 305.913115][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 305.918912][ T4429] do_fast_syscall_32+0x33/0x70 [ 305.924581][ T4429] do_SYSENTER_32+0x1b/0x20 [ 305.930262][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 305.937843][ T4429] [ 305.940260][ T4429] Uninit was stored to memory at: [ 305.946442][ T4429] get_compat_msghdr+0x4fc/0x720 [ 305.951681][ T4429] ___sys_recvmsg+0x18c/0x840 [ 305.956855][ T4429] do_recvmmsg+0x682/0x1180 [ 305.961654][ T4429] __sys_recvmmsg+0x113/0x450 [ 305.966583][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 305.974138][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 305.980732][ T4429] do_fast_syscall_32+0x33/0x70 [ 305.986708][ T4429] do_SYSENTER_32+0x1b/0x20 [ 305.991677][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 305.999140][ T4429] [ 306.001700][ T4429] Uninit was stored to memory at: [ 306.007291][ T4429] get_compat_msghdr+0x4fc/0x720 [ 306.013155][ T4429] ___sys_recvmsg+0x18c/0x840 [ 306.018822][ T4429] do_recvmmsg+0x682/0x1180 [ 306.024483][ T4429] __sys_recvmmsg+0x113/0x450 [ 306.031762][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 306.039609][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 306.045433][ T4429] do_fast_syscall_32+0x33/0x70 [ 306.052625][ T4429] do_SYSENTER_32+0x1b/0x20 [ 306.058150][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 306.068224][ T4429] [ 306.070822][ T4429] Uninit was stored to memory at: [ 306.077844][ T4429] get_compat_msghdr+0x4fc/0x720 [ 306.085812][ T4429] ___sys_recvmsg+0x18c/0x840 [ 306.091457][ T4429] do_recvmmsg+0x682/0x1180 [ 306.097394][ T4429] __sys_recvmmsg+0x113/0x450 [ 306.103548][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 306.110812][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 306.117626][ T4429] do_fast_syscall_32+0x33/0x70 [ 306.122859][ T4429] do_SYSENTER_32+0x1b/0x20 [ 306.128384][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 306.135443][ T4429] [ 306.138024][ T4429] Uninit was stored to memory at: [ 306.143860][ T4429] get_compat_msghdr+0x4fc/0x720 [ 306.149018][ T4429] ___sys_recvmsg+0x18c/0x840 [ 306.154174][ T4429] do_recvmmsg+0x682/0x1180 [ 306.160490][ T4429] __sys_recvmmsg+0x113/0x450 [ 306.165612][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 306.172204][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 306.177926][ T4429] do_fast_syscall_32+0x33/0x70 [ 306.183194][ T4429] do_SYSENTER_32+0x1b/0x20 [ 306.187865][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 306.195384][ T4429] [ 306.198236][ T4429] Uninit was stored to memory at: [ 306.203866][ T4429] get_compat_msghdr+0x4fc/0x720 [ 306.209576][ T4429] ___sys_recvmsg+0x18c/0x840 [ 306.214643][ T4429] do_recvmmsg+0x682/0x1180 [ 306.220598][ T4429] __sys_recvmmsg+0x113/0x450 [ 306.225815][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 306.233111][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 306.238511][ T4429] do_fast_syscall_32+0x33/0x70 [ 306.243661][ T4429] do_SYSENTER_32+0x1b/0x20 [ 306.248408][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 306.255170][ T4429] [ 306.257975][ T4429] Uninit was stored to memory at: [ 306.263581][ T4429] get_compat_msghdr+0x4fc/0x720 [ 306.268664][ T4429] ___sys_recvmsg+0x18c/0x840 [ 306.273819][ T4429] do_recvmmsg+0x682/0x1180 [ 306.279000][ T4429] __sys_recvmmsg+0x113/0x450 [ 306.284248][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 306.290851][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 306.296274][ T4429] do_fast_syscall_32+0x33/0x70 [ 306.301880][ T4429] do_SYSENTER_32+0x1b/0x20 [ 306.306809][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 306.314103][ T4429] [ 306.316597][ T4429] Local variable msg_sys created at: [ 306.322380][ T4429] do_recvmmsg+0x5c/0x1180 [ 306.327291][ T4429] __sys_recvmmsg+0x113/0x450 [ 306.505671][ T4429] not chained 360000 origins [ 306.510609][ T4429] CPU: 0 PID: 4429 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 306.521050][ T4429] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 306.532063][ T4429] Call Trace: [ 306.535933][ T4429] [ 306.538945][ T4429] dump_stack_lvl+0x1c8/0x256 [ 306.544037][ T4429] dump_stack+0x1a/0x1c [ 306.548708][ T4429] kmsan_internal_chain_origin+0x78/0x120 [ 306.555055][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 306.561119][ T4429] ? ____sys_recvmsg+0x5c1/0x810 [ 306.566181][ T4429] ? ___sys_recvmsg+0x217/0x840 [ 306.571399][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 306.578031][ T4429] ? ____sys_recvmsg+0x5c1/0x810 [ 306.583313][ T4429] ? kfree+0x44/0x980 [ 306.587753][ T4429] ? ___sys_recvmsg+0x248/0x840 [ 306.593089][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 306.599798][ T4429] ? get_compat_msghdr+0x51/0x720 [ 306.605211][ T4429] ? ___sys_recvmsg+0x18c/0x840 [ 306.610300][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 306.616877][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 306.624313][ T4429] ? should_fail+0x3f/0x810 [ 306.629149][ T4429] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 306.639231][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 306.645480][ T4429] __msan_chain_origin+0xbd/0x140 [ 306.651149][ T4429] get_compat_msghdr+0x4fc/0x720 [ 306.657126][ T4429] ___sys_recvmsg+0x18c/0x840 [ 306.662122][ T4429] ? __stack_depot_save+0x21/0x4b0 [ 306.667740][ T4429] ? kmsan_internal_check_memory+0x94/0x530 [ 306.674787][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 306.681830][ T4429] do_recvmmsg+0x682/0x1180 [ 306.688106][ T4429] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 306.695628][ T4429] __sys_recvmmsg+0x113/0x450 [ 306.702052][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 306.708852][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 306.715074][ T4429] ? exit_to_user_mode_prepare+0x119/0x220 [ 306.721758][ T4429] do_fast_syscall_32+0x33/0x70 [ 306.727059][ T4429] do_SYSENTER_32+0x1b/0x20 [ 306.731956][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 306.738661][ T4429] RIP: 0023:0xf7f63549 [ 306.742946][ T4429] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 306.766714][ T4429] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 306.778064][ T4429] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 306.788379][ T4429] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 306.796981][ T4429] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 306.807219][ T4429] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 306.815654][ T4429] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 306.825608][ T4429] [ 306.829199][ T4429] Uninit was stored to memory at: [ 306.834774][ T4429] get_compat_msghdr+0x4fc/0x720 [ 306.841439][ T4429] ___sys_recvmsg+0x18c/0x840 [ 306.848121][ T4429] do_recvmmsg+0x682/0x1180 [ 306.853986][ T4429] __sys_recvmmsg+0x113/0x450 [ 306.859243][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 306.867344][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 306.873553][ T4429] do_fast_syscall_32+0x33/0x70 [ 306.879804][ T4429] do_SYSENTER_32+0x1b/0x20 [ 306.886183][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 306.893272][ T4429] [ 306.896085][ T4429] Uninit was stored to memory at: [ 306.901606][ T4429] get_compat_msghdr+0x4fc/0x720 [ 306.907278][ T4429] ___sys_recvmsg+0x18c/0x840 [ 306.912289][ T4429] do_recvmmsg+0x682/0x1180 [ 306.918774][ T4429] __sys_recvmmsg+0x113/0x450 [ 306.924089][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 306.930694][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 306.936899][ T4429] do_fast_syscall_32+0x33/0x70 [ 306.942009][ T4429] do_SYSENTER_32+0x1b/0x20 [ 306.947415][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 306.954812][ T4429] [ 306.957410][ T4429] Uninit was stored to memory at: [ 306.963472][ T4429] get_compat_msghdr+0x4fc/0x720 [ 306.968629][ T4429] ___sys_recvmsg+0x18c/0x840 [ 306.975026][ T4429] do_recvmmsg+0x682/0x1180 [ 306.979770][ T4429] __sys_recvmmsg+0x113/0x450 [ 306.984871][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 306.991548][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 306.997476][ T4429] do_fast_syscall_32+0x33/0x70 [ 307.002943][ T4429] do_SYSENTER_32+0x1b/0x20 [ 307.008028][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 307.017741][ T4429] [ 307.021626][ T4429] Uninit was stored to memory at: [ 307.027457][ T4429] get_compat_msghdr+0x4fc/0x720 [ 307.033562][ T4429] ___sys_recvmsg+0x18c/0x840 [ 307.040613][ T4429] do_recvmmsg+0x682/0x1180 [ 307.045872][ T4429] __sys_recvmmsg+0x113/0x450 [ 307.050870][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 307.058158][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 307.063610][ T4429] do_fast_syscall_32+0x33/0x70 [ 307.069255][ T4429] do_SYSENTER_32+0x1b/0x20 [ 307.074209][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 307.080830][ T4429] [ 307.083469][ T4429] Uninit was stored to memory at: [ 307.089326][ T4429] get_compat_msghdr+0x4fc/0x720 [ 307.096277][ T4429] ___sys_recvmsg+0x18c/0x840 [ 307.101400][ T4429] do_recvmmsg+0x682/0x1180 [ 307.106394][ T4429] __sys_recvmmsg+0x113/0x450 [ 307.111518][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 307.119400][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 307.125266][ T4429] do_fast_syscall_32+0x33/0x70 [ 307.130618][ T4429] do_SYSENTER_32+0x1b/0x20 [ 307.135799][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 307.142376][ T4429] [ 307.144903][ T4429] Uninit was stored to memory at: [ 307.150517][ T4429] get_compat_msghdr+0x4fc/0x720 [ 307.156037][ T4429] ___sys_recvmsg+0x18c/0x840 [ 307.160864][ T4429] do_recvmmsg+0x682/0x1180 [ 307.165701][ T4429] __sys_recvmmsg+0x113/0x450 [ 307.170535][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 307.177644][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 307.183114][ T4429] do_fast_syscall_32+0x33/0x70 [ 307.188089][ T4429] do_SYSENTER_32+0x1b/0x20 [ 307.192959][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 307.200311][ T4429] [ 307.202685][ T4429] Uninit was stored to memory at: [ 307.208001][ T4429] get_compat_msghdr+0x4fc/0x720 [ 307.213334][ T4429] ___sys_recvmsg+0x18c/0x840 [ 307.218321][ T4429] do_recvmmsg+0x682/0x1180 [ 307.223144][ T4429] __sys_recvmmsg+0x113/0x450 [ 307.228060][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 307.234808][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 307.240065][ T4429] do_fast_syscall_32+0x33/0x70 [ 307.245487][ T4429] do_SYSENTER_32+0x1b/0x20 [ 307.250127][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 307.257525][ T4429] [ 307.260025][ T4429] Local variable msg_sys created at: [ 307.265565][ T4429] do_recvmmsg+0x5c/0x1180 [ 307.270135][ T4429] __sys_recvmmsg+0x113/0x450 [ 307.445607][ T4429] not chained 370000 origins [ 307.451065][ T4429] CPU: 0 PID: 4429 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 307.462381][ T4429] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 307.472976][ T4429] Call Trace: [ 307.476414][ T4429] [ 307.479411][ T4429] dump_stack_lvl+0x1c8/0x256 [ 307.484916][ T4429] dump_stack+0x1a/0x1c [ 307.489270][ T4429] kmsan_internal_chain_origin+0x78/0x120 [ 307.496183][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 307.502624][ T4429] ? ____sys_recvmsg+0x5c1/0x810 [ 307.507860][ T4429] ? ___sys_recvmsg+0x217/0x840 [ 307.513107][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 307.520805][ T4429] ? ____sys_recvmsg+0x5c1/0x810 [ 307.526569][ T4429] ? kfree+0x44/0x980 [ 307.531164][ T4429] ? ___sys_recvmsg+0x248/0x840 [ 307.536143][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 307.543577][ T4429] ? get_compat_msghdr+0x51/0x720 [ 307.549291][ T4429] ? ___sys_recvmsg+0x18c/0x840 [ 307.557610][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 307.564339][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 307.570911][ T4429] ? should_fail+0x3f/0x810 [ 307.575805][ T4429] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 307.582421][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 307.588585][ T4429] __msan_chain_origin+0xbd/0x140 [ 307.594479][ T4429] get_compat_msghdr+0x4fc/0x720 [ 307.599835][ T4429] ___sys_recvmsg+0x18c/0x840 [ 307.605619][ T4429] ? __stack_depot_save+0x21/0x4b0 [ 307.611109][ T4429] ? kmsan_internal_check_memory+0x94/0x530 [ 307.618107][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 307.625641][ T4429] do_recvmmsg+0x682/0x1180 [ 307.630784][ T4429] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 307.638990][ T4429] __sys_recvmmsg+0x113/0x450 [ 307.644396][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 307.651177][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 307.656537][ T4429] ? exit_to_user_mode_prepare+0x119/0x220 [ 307.664691][ T4429] do_fast_syscall_32+0x33/0x70 [ 307.669723][ T4429] do_SYSENTER_32+0x1b/0x20 [ 307.674483][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 307.681258][ T4429] RIP: 0023:0xf7f63549 [ 307.687078][ T4429] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 307.712541][ T4429] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 307.721210][ T4429] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 307.729529][ T4429] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 307.737623][ T4429] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 307.746301][ T4429] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 307.755987][ T4429] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 307.765211][ T4429] [ 307.768718][ T4429] Uninit was stored to memory at: [ 307.775182][ T4429] get_compat_msghdr+0x4fc/0x720 [ 307.781807][ T4429] ___sys_recvmsg+0x18c/0x840 [ 307.788068][ T4429] do_recvmmsg+0x682/0x1180 [ 307.792869][ T4429] __sys_recvmmsg+0x113/0x450 [ 307.797805][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 307.804324][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 307.809600][ T4429] do_fast_syscall_32+0x33/0x70 [ 307.814775][ T4429] do_SYSENTER_32+0x1b/0x20 [ 307.819507][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 307.826384][ T4429] [ 307.828782][ T4429] Uninit was stored to memory at: [ 307.834113][ T4429] get_compat_msghdr+0x4fc/0x720 [ 307.839187][ T4429] ___sys_recvmsg+0x18c/0x840 [ 307.844164][ T4429] do_recvmmsg+0x682/0x1180 [ 307.848920][ T4429] __sys_recvmmsg+0x113/0x450 [ 307.853981][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 307.861755][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 307.867345][ T4429] do_fast_syscall_32+0x33/0x70 [ 307.872499][ T4429] do_SYSENTER_32+0x1b/0x20 [ 307.877234][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 307.884261][ T4429] [ 307.886650][ T4429] Uninit was stored to memory at: [ 307.891856][ T4429] get_compat_msghdr+0x4fc/0x720 [ 307.897108][ T4429] ___sys_recvmsg+0x18c/0x840 [ 307.901948][ T4429] do_recvmmsg+0x682/0x1180 [ 307.906830][ T4429] __sys_recvmmsg+0x113/0x450 [ 307.912957][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 307.919958][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 307.925361][ T4429] do_fast_syscall_32+0x33/0x70 [ 307.930461][ T4429] do_SYSENTER_32+0x1b/0x20 [ 307.935717][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 307.942250][ T4429] [ 307.945111][ T4429] Uninit was stored to memory at: [ 307.952403][ T4429] get_compat_msghdr+0x4fc/0x720 [ 307.957877][ T4429] ___sys_recvmsg+0x18c/0x840 [ 307.963101][ T4429] do_recvmmsg+0x682/0x1180 [ 307.967723][ T4429] __sys_recvmmsg+0x113/0x450 [ 307.972931][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 307.979341][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 307.984961][ T4429] do_fast_syscall_32+0x33/0x70 [ 307.989935][ T4429] do_SYSENTER_32+0x1b/0x20 [ 307.994740][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 308.001261][ T4429] [ 308.003830][ T4429] Uninit was stored to memory at: [ 308.009039][ T4429] get_compat_msghdr+0x4fc/0x720 [ 308.014307][ T4429] ___sys_recvmsg+0x18c/0x840 [ 308.020651][ T4429] do_recvmmsg+0x682/0x1180 [ 308.025776][ T4429] __sys_recvmmsg+0x113/0x450 [ 308.031026][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 308.040498][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 308.050636][ T4429] do_fast_syscall_32+0x33/0x70 [ 308.058209][ T4429] do_SYSENTER_32+0x1b/0x20 [ 308.064230][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 308.071010][ T4429] [ 308.073559][ T4429] Uninit was stored to memory at: [ 308.078721][ T4429] get_compat_msghdr+0x4fc/0x720 [ 308.085606][ T4429] ___sys_recvmsg+0x18c/0x840 [ 308.090764][ T4429] do_recvmmsg+0x682/0x1180 [ 308.095489][ T4429] __sys_recvmmsg+0x113/0x450 [ 308.100359][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 308.107290][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 308.113264][ T4429] do_fast_syscall_32+0x33/0x70 [ 308.118861][ T4429] do_SYSENTER_32+0x1b/0x20 [ 308.124122][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 308.133312][ T4429] [ 308.135733][ T4429] Uninit was stored to memory at: [ 308.140911][ T4429] get_compat_msghdr+0x4fc/0x720 [ 308.146141][ T4429] ___sys_recvmsg+0x18c/0x840 [ 308.151112][ T4429] do_recvmmsg+0x682/0x1180 [ 308.155867][ T4429] __sys_recvmmsg+0x113/0x450 [ 308.160768][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 308.167965][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 308.173408][ T4429] do_fast_syscall_32+0x33/0x70 [ 308.178465][ T4429] do_SYSENTER_32+0x1b/0x20 [ 308.183353][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 308.190126][ T4429] [ 308.192482][ T4429] Local variable msg_sys created at: [ 308.198176][ T4429] do_recvmmsg+0x5c/0x1180 [ 308.203213][ T4429] __sys_recvmmsg+0x113/0x450 [ 308.382448][ T4429] not chained 380000 origins [ 308.390515][ T4429] CPU: 0 PID: 4429 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 308.404901][ T4429] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 308.416197][ T4429] Call Trace: [ 308.420499][ T4429] [ 308.425045][ T4429] dump_stack_lvl+0x1c8/0x256 [ 308.429964][ T4429] dump_stack+0x1a/0x1c [ 308.434258][ T4429] kmsan_internal_chain_origin+0x78/0x120 [ 308.440621][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 308.446596][ T4429] ? ____sys_recvmsg+0x5c1/0x810 [ 308.452272][ T4429] ? ___sys_recvmsg+0x217/0x840 [ 308.457275][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 308.463446][ T4429] ? ____sys_recvmsg+0x5c1/0x810 [ 308.468448][ T4429] ? kfree+0x44/0x980 [ 308.472486][ T4429] ? ___sys_recvmsg+0x248/0x840 [ 308.477683][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 308.483841][ T4429] ? get_compat_msghdr+0x51/0x720 [ 308.488935][ T4429] ? ___sys_recvmsg+0x18c/0x840 [ 308.493872][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 308.500302][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 308.506418][ T4429] ? should_fail+0x3f/0x810 [ 308.511110][ T4429] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 308.518064][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 308.524266][ T4429] __msan_chain_origin+0xbd/0x140 [ 308.529440][ T4429] get_compat_msghdr+0x4fc/0x720 [ 308.535114][ T4429] ___sys_recvmsg+0x18c/0x840 [ 308.539912][ T4429] ? __stack_depot_save+0x21/0x4b0 [ 308.546995][ T4429] ? kmsan_internal_check_memory+0x94/0x530 [ 308.553173][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 308.561650][ T4429] do_recvmmsg+0x682/0x1180 [ 308.566555][ T4429] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 308.578322][ T4429] __sys_recvmmsg+0x113/0x450 [ 308.587294][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 308.594046][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 308.602618][ T4429] ? exit_to_user_mode_prepare+0x119/0x220 [ 308.610703][ T4429] do_fast_syscall_32+0x33/0x70 [ 308.616197][ T4429] do_SYSENTER_32+0x1b/0x20 [ 308.620805][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 308.627427][ T4429] RIP: 0023:0xf7f63549 [ 308.631815][ T4429] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 308.652364][ T4429] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 308.661045][ T4429] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 308.670477][ T4429] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 308.682109][ T4429] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 308.690741][ T4429] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 308.700344][ T4429] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 308.708823][ T4429] [ 308.712573][ T4429] Uninit was stored to memory at: [ 308.718096][ T4429] get_compat_msghdr+0x4fc/0x720 [ 308.723254][ T4429] ___sys_recvmsg+0x18c/0x840 [ 308.728059][ T4429] do_recvmmsg+0x682/0x1180 [ 308.732694][ T4429] __sys_recvmmsg+0x113/0x450 [ 308.738304][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 308.744956][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 308.750300][ T4429] do_fast_syscall_32+0x33/0x70 [ 308.755608][ T4429] do_SYSENTER_32+0x1b/0x20 [ 308.760703][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 308.767399][ T4429] [ 308.769793][ T4429] Uninit was stored to memory at: [ 308.775190][ T4429] get_compat_msghdr+0x4fc/0x720 [ 308.780412][ T4429] ___sys_recvmsg+0x18c/0x840 [ 308.786458][ T4429] do_recvmmsg+0x682/0x1180 [ 308.791307][ T4429] __sys_recvmmsg+0x113/0x450 [ 308.796786][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 308.803504][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 308.809421][ T4429] do_fast_syscall_32+0x33/0x70 [ 308.815740][ T4429] do_SYSENTER_32+0x1b/0x20 [ 308.820393][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 308.827229][ T4429] [ 308.829704][ T4429] Uninit was stored to memory at: [ 308.835313][ T4429] get_compat_msghdr+0x4fc/0x720 [ 308.840833][ T4429] ___sys_recvmsg+0x18c/0x840 [ 308.845874][ T4429] do_recvmmsg+0x682/0x1180 [ 308.851034][ T4429] __sys_recvmmsg+0x113/0x450 [ 308.856125][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 308.863176][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 308.868786][ T4429] do_fast_syscall_32+0x33/0x70 [ 308.874143][ T4429] do_SYSENTER_32+0x1b/0x20 [ 308.878824][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 308.886059][ T4429] [ 308.888561][ T4429] Uninit was stored to memory at: [ 308.894036][ T4429] get_compat_msghdr+0x4fc/0x720 [ 308.899405][ T4429] ___sys_recvmsg+0x18c/0x840 [ 308.905773][ T4429] do_recvmmsg+0x682/0x1180 [ 308.910562][ T4429] __sys_recvmmsg+0x113/0x450 [ 308.917495][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 308.924176][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 308.929444][ T4429] do_fast_syscall_32+0x33/0x70 [ 308.934590][ T4429] do_SYSENTER_32+0x1b/0x20 [ 308.939222][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 308.945941][ T4429] [ 308.948323][ T4429] Uninit was stored to memory at: [ 308.954091][ T4429] get_compat_msghdr+0x4fc/0x720 [ 308.959187][ T4429] ___sys_recvmsg+0x18c/0x840 [ 308.964182][ T4429] do_recvmmsg+0x682/0x1180 [ 308.968875][ T4429] __sys_recvmmsg+0x113/0x450 [ 308.975095][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 308.982640][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 308.988123][ T4429] do_fast_syscall_32+0x33/0x70 [ 308.993581][ T4429] do_SYSENTER_32+0x1b/0x20 [ 308.998402][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 309.006027][ T4429] [ 309.008425][ T4429] Uninit was stored to memory at: [ 309.013879][ T4429] get_compat_msghdr+0x4fc/0x720 [ 309.019593][ T4429] ___sys_recvmsg+0x18c/0x840 [ 309.025900][ T4429] do_recvmmsg+0x682/0x1180 [ 309.030850][ T4429] __sys_recvmmsg+0x113/0x450 [ 309.037648][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 309.044381][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 309.049626][ T4429] do_fast_syscall_32+0x33/0x70 [ 309.054864][ T4429] do_SYSENTER_32+0x1b/0x20 [ 309.059807][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 309.067134][ T4429] [ 309.069521][ T4429] Uninit was stored to memory at: [ 309.074977][ T4429] get_compat_msghdr+0x4fc/0x720 [ 309.080236][ T4429] ___sys_recvmsg+0x18c/0x840 [ 309.085591][ T4429] do_recvmmsg+0x682/0x1180 [ 309.090286][ T4429] __sys_recvmmsg+0x113/0x450 [ 309.095233][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 309.101697][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 309.107123][ T4429] do_fast_syscall_32+0x33/0x70 [ 309.112114][ T4429] do_SYSENTER_32+0x1b/0x20 [ 309.117278][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 309.124194][ T4429] [ 309.126592][ T4429] Local variable msg_sys created at: [ 309.133575][ T4429] do_recvmmsg+0x5c/0x1180 [ 309.138490][ T4429] __sys_recvmmsg+0x113/0x450 [ 309.304066][ T4429] not chained 390000 origins [ 309.308758][ T4429] CPU: 1 PID: 4429 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 309.319193][ T4429] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 309.329686][ T4429] Call Trace: [ 309.333503][ T4429] [ 309.337109][ T4429] dump_stack_lvl+0x1c8/0x256 [ 309.342450][ T4429] dump_stack+0x1a/0x1c [ 309.346825][ T4429] kmsan_internal_chain_origin+0x78/0x120 [ 309.353048][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 309.360020][ T4429] ? ____sys_recvmsg+0x5c1/0x810 [ 309.365116][ T4429] ? ___sys_recvmsg+0x217/0x840 [ 309.370231][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 309.376426][ T4429] ? ____sys_recvmsg+0x5c1/0x810 [ 309.381659][ T4429] ? kfree+0x44/0x980 [ 309.385917][ T4429] ? ___sys_recvmsg+0x248/0x840 [ 309.390956][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 309.396994][ T4429] ? get_compat_msghdr+0x51/0x720 [ 309.402576][ T4429] ? ___sys_recvmsg+0x18c/0x840 [ 309.408405][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 309.414400][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 309.420650][ T4429] ? should_fail+0x3f/0x810 [ 309.425335][ T4429] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 309.431825][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 309.437975][ T4429] __msan_chain_origin+0xbd/0x140 [ 309.443363][ T4429] get_compat_msghdr+0x4fc/0x720 [ 309.448762][ T4429] ___sys_recvmsg+0x18c/0x840 [ 309.453725][ T4429] ? __stack_depot_save+0x21/0x4b0 [ 309.459263][ T4429] ? kmsan_internal_check_memory+0x94/0x530 [ 309.465315][ T4429] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 309.471249][ T4429] do_recvmmsg+0x682/0x1180 [ 309.475947][ T4429] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 309.482477][ T4429] __sys_recvmmsg+0x113/0x450 [ 309.487258][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 309.494944][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 309.501978][ T4429] ? exit_to_user_mode_prepare+0x119/0x220 [ 309.508193][ T4429] do_fast_syscall_32+0x33/0x70 [ 309.513636][ T4429] do_SYSENTER_32+0x1b/0x20 [ 309.519800][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 309.526848][ T4429] RIP: 0023:0xf7f63549 [ 309.531685][ T4429] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 309.554355][ T4429] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 309.562953][ T4429] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 309.571037][ T4429] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 309.579189][ T4429] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 309.587332][ T4429] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 309.595473][ T4429] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 309.604272][ T4429] [ 309.614683][ T4429] Uninit was stored to memory at: [ 309.620182][ T4429] get_compat_msghdr+0x4fc/0x720 [ 309.625365][ T4429] ___sys_recvmsg+0x18c/0x840 [ 309.630180][ T4429] do_recvmmsg+0x682/0x1180 [ 309.635448][ T4429] __sys_recvmmsg+0x113/0x450 [ 309.640614][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 309.647953][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 309.653314][ T4429] do_fast_syscall_32+0x33/0x70 [ 309.658308][ T4429] do_SYSENTER_32+0x1b/0x20 [ 309.663530][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 309.670102][ T4429] [ 309.672589][ T4429] Uninit was stored to memory at: [ 309.678023][ T4429] get_compat_msghdr+0x4fc/0x720 [ 309.683384][ T4429] ___sys_recvmsg+0x18c/0x840 [ 309.689594][ T4429] do_recvmmsg+0x682/0x1180 [ 309.695079][ T4429] __sys_recvmmsg+0x113/0x450 [ 309.700087][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 309.707083][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 309.713036][ T4429] do_fast_syscall_32+0x33/0x70 [ 309.718978][ T4429] do_SYSENTER_32+0x1b/0x20 [ 309.723979][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 309.730521][ T4429] [ 309.733045][ T4429] Uninit was stored to memory at: [ 309.738223][ T4429] get_compat_msghdr+0x4fc/0x720 [ 309.743438][ T4429] ___sys_recvmsg+0x18c/0x840 [ 309.748345][ T4429] do_recvmmsg+0x682/0x1180 [ 309.753143][ T4429] __sys_recvmmsg+0x113/0x450 [ 309.758664][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 309.765526][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 309.770800][ T4429] do_fast_syscall_32+0x33/0x70 [ 309.775953][ T4429] do_SYSENTER_32+0x1b/0x20 [ 309.780692][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 309.787491][ T4429] [ 309.789885][ T4429] Uninit was stored to memory at: [ 309.795347][ T4429] get_compat_msghdr+0x4fc/0x720 [ 309.800406][ T4429] ___sys_recvmsg+0x18c/0x840 [ 309.805339][ T4429] do_recvmmsg+0x682/0x1180 [ 309.809967][ T4429] __sys_recvmmsg+0x113/0x450 [ 309.815064][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 309.821482][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 309.826972][ T4429] do_fast_syscall_32+0x33/0x70 [ 309.831951][ T4429] do_SYSENTER_32+0x1b/0x20 [ 309.837222][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 309.844062][ T4429] [ 309.846447][ T4429] Uninit was stored to memory at: [ 309.851700][ T4429] get_compat_msghdr+0x4fc/0x720 [ 309.857012][ T4429] ___sys_recvmsg+0x18c/0x840 [ 309.861848][ T4429] do_recvmmsg+0x682/0x1180 [ 309.866714][ T4429] __sys_recvmmsg+0x113/0x450 [ 309.871626][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 309.878195][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 309.883543][ T4429] do_fast_syscall_32+0x33/0x70 [ 309.888507][ T4429] do_SYSENTER_32+0x1b/0x20 [ 309.893393][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 309.899949][ T4429] [ 309.902624][ T4429] Uninit was stored to memory at: [ 309.908694][ T4429] get_compat_msghdr+0x4fc/0x720 [ 309.913874][ T4429] ___sys_recvmsg+0x18c/0x840 [ 309.918902][ T4429] do_recvmmsg+0x682/0x1180 [ 309.923867][ T4429] __sys_recvmmsg+0x113/0x450 [ 309.929474][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 309.936618][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 309.942137][ T4429] do_fast_syscall_32+0x33/0x70 [ 309.947376][ T4429] do_SYSENTER_32+0x1b/0x20 [ 309.952183][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 309.958787][ T4429] [ 309.961193][ T4429] Uninit was stored to memory at: [ 309.966740][ T4429] get_compat_msghdr+0x4fc/0x720 [ 309.971809][ T4429] ___sys_recvmsg+0x18c/0x840 [ 309.976896][ T4429] do_recvmmsg+0x682/0x1180 [ 309.981612][ T4429] __sys_recvmmsg+0x113/0x450 [ 309.986563][ T4429] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 309.993193][ T4429] __do_fast_syscall_32+0xa2/0x100 [ 309.998580][ T4429] do_fast_syscall_32+0x33/0x70 [ 310.003772][ T4429] do_SYSENTER_32+0x1b/0x20 [ 310.008430][ T4429] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 310.015153][ T4429] [ 310.017813][ T4429] Local variable msg_sys created at: [ 310.023531][ T4429] do_recvmmsg+0x5c/0x1180 [ 310.028343][ T4429] __sys_recvmmsg+0x113/0x450 21:57:06 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x2c, &(0x7f0000000c40)={0x0, 0x0, 0xab, {0xab, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab91cd7abf7a917f376386f7e92afc65e75c880a55d2877146ab5f476c1287ecb3e4003547007c60a0466f77cc3abce7d506197b7602e5face683fd5b62746db4fde2e52887d025b1d182565df701612bbacca6413"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) 21:57:06 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB="ec010000190001002dbd7000fcdbdf25fc020000000000000000010000c0f301ffffffff9effffff00000000000000004e2100004e1e00070a0020", @ANYRESOCT], 0x1ec}}, 0x0) 21:57:06 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000003c0)=0xae) prlimit64(0x0, 0x3, &(0x7f0000000280), &(0x7f0000000300)) r3 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r3, &(0x7f00000000c0)={0x2, 0x4e20, @empty}, 0x10) sendto$inet(r3, &(0x7f0000000140), 0xffffffffffffff58, 0x20008008, &(0x7f0000000100)={0x2, 0x4e20}, 0x10) recvfrom(r3, &(0x7f0000000480)=""/110, 0xfffffe32, 0x700, 0x0, 0xfffffffffffffecb) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x40000, 0x6, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef0100010000", 0x3f, 0x400}, {&(0x7f0000001f40)}, {0x0, 0x0, 0xbff}, {0x0}, {0x0, 0x0, 0x2}, {0x0, 0x0, 0x80000000000000}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) sched_setattr(0x0, 0x0, 0x0) ioctl$sock_FIOGETOWN(r2, 0x8903, &(0x7f0000000040)) 21:57:06 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x4f, 0x92, 0xb9, 0x8, 0x1557, 0x7720, 0xb7eb, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x27, 0x85, 0xe6}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000040)={0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b00)={0x40, 0x13, 0x6, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x40, 0x19, 0x2, "a8cd"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 21:57:06 executing program 2: r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000300)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x81, &(0x7f0000000380)=@generic={0x0, 0x0, 0x79, "398027db", "67ec4cb938290810877773f5e11a52aa985c8c97f8dda950663cd665451e7fbd3bf63eb60a5be421544a3d194b304ef0f4af9d35db09c8780836e570988d9ec5e860e76504bf41cf7b60fe05cdc75d5c41f81dd4568595dab91f5922b594ab765c7ea4d86d3ef16c6f421676929762ba4b88a59f49407a8a22"}) 21:57:06 executing program 5: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x925, 0x8888, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x6, {[@local, @main=@item_4={0x3, 0x0, 0x0, "8b707542"}]}}, 0x0}, 0x0) [ 310.276044][ T4455] netlink: 312 bytes leftover after parsing attributes in process `syz-executor.1'. 21:57:06 executing program 1: sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB="ec010000190001002dbd7000fcdbdf25fc020000000000000000010000c0f301ffffffff9effffff00000000000000004e2100004e1e00070a0020", @ANYRESOCT], 0x1ec}}, 0x0) [ 310.543014][ T3563] usb 4-1: new high-speed USB device number 14 using dummy_hcd [ 310.544542][ T3619] usb 6-1: new high-speed USB device number 23 using dummy_hcd [ 310.574995][ T3560] usb 3-1: new high-speed USB device number 16 using dummy_hcd 21:57:06 executing program 1: sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB="ec010000190001002dbd7000fcdbdf25fc020000000000000000010000c0f301ffffffff9effffff00000000000000004e2100004e1e00070a0020", @ANYRESOCT], 0x1ec}}, 0x0) [ 310.793764][ T3563] usb 4-1: Using ep0 maxpacket: 8 21:57:06 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x2c, &(0x7f0000000c40)={0x0, 0x0, 0xab, {0xab, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab91cd7abf7a917f376386f7e92afc65e75c880a55d2877146ab5f476c1287ecb3e4003547007c60a0466f77cc3abce7d506197b7602e5face683fd5b62746db4fde2e52887d025b1d182565df701612bbacca6413"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) [ 310.822237][ T4464] loop0: detected capacity change from 0 to 512 [ 310.923018][ T3563] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 310.932438][ T3563] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 310.963445][ T3619] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 310.977384][ T3619] usb 6-1: New USB device found, idVendor=0925, idProduct=8888, bcdDevice= 0.00 [ 310.987124][ T3619] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 21:57:07 executing program 1: sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB="ec010000190001002dbd7000fcdbdf25fc020000000000000000010000c0f301ffffffff9effffff00000000000000004e2100004e1e00070a0020", @ANYRESOCT], 0x1ec}}, 0x0) [ 311.010471][ T3563] usb 4-1: config 0 descriptor?? [ 311.015639][ T4464] EXT4-fs (loop0): invalid inodes per group: 67108896 [ 311.015639][ T4464] [ 311.133103][ T3619] usb 6-1: config 0 descriptor?? [ 311.154114][ T3560] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 311.163667][ T3560] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 311.171974][ T3560] usb 3-1: Product: syz [ 311.176679][ T3560] usb 3-1: Manufacturer: syz [ 311.181329][ T3619] usbhid 6-1:0.0: couldn't find an input interrupt endpoint [ 311.184432][ T3560] usb 3-1: SerialNumber: syz [ 311.326313][ T3560] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested 21:57:07 executing program 1: socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB="ec010000190001002dbd7000fcdbdf25fc020000000000000000010000c0f301ffffffff9effffff00000000000000004e2100004e1e00070a0020", @ANYRESOCT], 0x1ec}}, 0x0) 21:57:07 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000003c0)=0xae) prlimit64(0x0, 0x3, &(0x7f0000000280), &(0x7f0000000300)) r3 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r3, &(0x7f00000000c0)={0x2, 0x4e20, @empty}, 0x10) sendto$inet(r3, &(0x7f0000000140), 0xffffffffffffff58, 0x20008008, &(0x7f0000000100)={0x2, 0x4e20}, 0x10) recvfrom(r3, &(0x7f0000000480)=""/110, 0xfffffe32, 0x700, 0x0, 0xfffffffffffffecb) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x40000, 0x6, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef0100010000", 0x3f, 0x400}, {&(0x7f0000001f40)}, {0x0, 0x0, 0xbff}, {0x0}, {0x0, 0x0, 0x2}, {0x0, 0x0, 0x80000000000000}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) sched_setattr(0x0, 0x0, 0x0) 21:57:07 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x2c, &(0x7f0000000c40)={0x0, 0x0, 0xab, {0xab, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab91cd7abf7a917f376386f7e92afc65e75c880a55d2877146ab5f476c1287ecb3e4003547007c60a0466f77cc3abce7d506197b7602e5face683fd5b62746db4fde2e52887d025b1d182565df701612bbacca6413"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) 21:57:07 executing program 1: socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB="ec010000190001002dbd7000fcdbdf25fc020000000000000000010000c0f301ffffffff9effffff00000000000000004e2100004e1e00070a0020", @ANYRESOCT], 0x1ec}}, 0x0) [ 311.944441][ T3565] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 312.062518][ T4479] loop0: detected capacity change from 0 to 512 [ 312.119055][ T4479] EXT4-fs (loop0): invalid inodes per group: 67108896 [ 312.119055][ T4479] 21:57:08 executing program 1: socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB="ec010000190001002dbd7000fcdbdf25fc020000000000000000010000c0f301ffffffff9effffff00000000000000004e2100004e1e00070a0020", @ANYRESOCT], 0x1ec}}, 0x0) [ 312.353676][ T3563] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71 [ 312.364947][ T3563] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to send software reset: ffffffb9 [ 312.376447][ T3563] asix: probe of 4-1:0.0 failed with error -71 [ 312.564400][ T3560] usb 3-1: USB disconnect, device number 16 [ 312.612715][ T3563] usb 4-1: USB disconnect, device number 14 21:57:09 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x4f, 0x92, 0xb9, 0x8, 0x1557, 0x7720, 0xb7eb, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x27, 0x85, 0xe6}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000040)={0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b00)={0x40, 0x13, 0x6, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x40, 0x19, 0x2, "a8cd"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 21:57:09 executing program 2: r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000300)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x8, &(0x7f0000000380)=@generic={0x0, 0x0, 0x0, "398027db"}) [ 313.023883][ T3565] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 313.031531][ T3565] ath9k_htc: Failed to initialize the device [ 313.085408][ T3560] usb 3-1: ath9k_htc: USB layer deinitialized [ 313.163333][ T4478] not chained 400000 origins [ 313.168160][ T4478] CPU: 0 PID: 4478 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 313.178756][ T4478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 313.189030][ T4478] Call Trace: [ 313.192481][ T4478] [ 313.195490][ T4478] dump_stack_lvl+0x1c8/0x256 [ 313.200436][ T4478] dump_stack+0x1a/0x1c [ 313.204752][ T4478] kmsan_internal_chain_origin+0x78/0x120 [ 313.210639][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 313.216683][ T4478] ? ____sys_recvmsg+0x5c1/0x810 [ 313.221772][ T4478] ? ___sys_recvmsg+0x217/0x840 [ 313.226816][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 313.232832][ T4478] ? ____sys_recvmsg+0x5c1/0x810 [ 313.237952][ T4478] ? kfree+0x44/0x980 [ 313.242064][ T4478] ? ___sys_recvmsg+0x248/0x840 [ 313.247063][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 313.253461][ T4478] ? get_compat_msghdr+0x51/0x720 [ 313.258707][ T4478] ? ___sys_recvmsg+0x18c/0x840 [ 313.263978][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 313.270450][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 313.276517][ T4478] ? should_fail+0x3f/0x810 [ 313.281196][ T4478] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 313.287606][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 313.293686][ T4478] __msan_chain_origin+0xbd/0x140 [ 313.298904][ T4478] get_compat_msghdr+0x4fc/0x720 [ 313.304387][ T4478] ___sys_recvmsg+0x18c/0x840 [ 313.309571][ T4478] ? __stack_depot_save+0x21/0x4b0 [ 313.314867][ T4478] ? kmsan_internal_check_memory+0x94/0x530 [ 313.322090][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 313.328266][ T4478] do_recvmmsg+0x682/0x1180 [ 313.332936][ T4478] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 313.339496][ T4478] __sys_recvmmsg+0x113/0x450 [ 313.344296][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 313.350861][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 313.357089][ T4478] ? exit_to_user_mode_prepare+0x119/0x220 [ 313.364052][ T4478] do_fast_syscall_32+0x33/0x70 [ 313.369148][ T4478] do_SYSENTER_32+0x1b/0x20 [ 313.374058][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 313.380789][ T4478] RIP: 0023:0xf7f63549 [ 313.385571][ T4478] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 313.406318][ T4478] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 313.415161][ T4478] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 313.423348][ T4478] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 313.431644][ T4478] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 313.440015][ T4478] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 313.448354][ T4478] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 313.457694][ T4478] [ 313.461734][ T4478] Uninit was stored to memory at: [ 313.467163][ T4478] get_compat_msghdr+0x4fc/0x720 [ 313.472260][ T4478] ___sys_recvmsg+0x18c/0x840 [ 313.477171][ T4478] do_recvmmsg+0x682/0x1180 [ 313.481974][ T4478] __sys_recvmmsg+0x113/0x450 [ 313.487107][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 313.493881][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 313.500038][ T4478] do_fast_syscall_32+0x33/0x70 [ 313.505138][ T4478] do_SYSENTER_32+0x1b/0x20 [ 313.509791][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 313.516918][ T4478] [ 313.519349][ T4478] Uninit was stored to memory at: [ 313.524807][ T4478] get_compat_msghdr+0x4fc/0x720 [ 313.530092][ T4478] ___sys_recvmsg+0x18c/0x840 [ 313.535180][ T4478] do_recvmmsg+0x682/0x1180 [ 313.539921][ T4478] __sys_recvmmsg+0x113/0x450 [ 313.545014][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 313.551713][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 313.557856][ T4478] do_fast_syscall_32+0x33/0x70 [ 313.563131][ T4478] do_SYSENTER_32+0x1b/0x20 [ 313.568230][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 313.575247][ T4478] [ 313.577729][ T4478] Uninit was stored to memory at: [ 313.583144][ T4478] get_compat_msghdr+0x4fc/0x720 [ 313.588224][ T4478] ___sys_recvmsg+0x18c/0x840 [ 313.593188][ T4478] do_recvmmsg+0x682/0x1180 [ 313.597949][ T4478] __sys_recvmmsg+0x113/0x450 [ 313.602914][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 313.609333][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 313.614754][ T4478] do_fast_syscall_32+0x33/0x70 [ 313.619932][ T4478] do_SYSENTER_32+0x1b/0x20 [ 313.624731][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 313.631453][ T4478] [ 313.634117][ T4478] Uninit was stored to memory at: [ 313.639329][ T4478] get_compat_msghdr+0x4fc/0x720 [ 313.644499][ T4478] ___sys_recvmsg+0x18c/0x840 [ 313.649412][ T4478] do_recvmmsg+0x682/0x1180 [ 313.654223][ T4478] __sys_recvmmsg+0x113/0x450 [ 313.659173][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 313.665694][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 313.670956][ T4478] do_fast_syscall_32+0x33/0x70 [ 313.676131][ T4478] do_SYSENTER_32+0x1b/0x20 [ 313.680792][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 313.687620][ T4478] [ 313.690549][ T4478] Uninit was stored to memory at: [ 313.696084][ T4478] get_compat_msghdr+0x4fc/0x720 [ 313.701264][ T4478] ___sys_recvmsg+0x18c/0x840 [ 313.706274][ T4478] do_recvmmsg+0x682/0x1180 [ 313.710917][ T4478] __sys_recvmmsg+0x113/0x450 [ 313.715816][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 313.722226][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 313.728247][ T4478] do_fast_syscall_32+0x33/0x70 [ 313.733330][ T4478] do_SYSENTER_32+0x1b/0x20 [ 313.738001][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 313.744813][ T4478] [ 313.747236][ T4478] Uninit was stored to memory at: [ 313.752647][ T4478] get_compat_msghdr+0x4fc/0x720 [ 313.757994][ T4478] ___sys_recvmsg+0x18c/0x840 [ 313.763012][ T4478] do_recvmmsg+0x682/0x1180 [ 313.768706][ T4478] __sys_recvmmsg+0x113/0x450 [ 313.768782][ T3619] usb 6-1: USB disconnect, device number 23 [ 313.773722][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 313.786959][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 313.792415][ T4478] do_fast_syscall_32+0x33/0x70 [ 313.797796][ T4478] do_SYSENTER_32+0x1b/0x20 [ 313.802704][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 313.809803][ T4478] [ 313.814128][ T4478] Uninit was stored to memory at: [ 313.819429][ T4478] get_compat_msghdr+0x4fc/0x720 [ 313.824705][ T4478] ___sys_recvmsg+0x18c/0x840 [ 313.829549][ T4478] do_recvmmsg+0x682/0x1180 [ 313.834372][ T4478] __sys_recvmmsg+0x113/0x450 [ 313.839190][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 313.845731][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 313.851168][ T4478] do_fast_syscall_32+0x33/0x70 [ 313.856260][ T4478] do_SYSENTER_32+0x1b/0x20 [ 313.860920][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 313.867868][ T4478] [ 313.870329][ T4478] Local variable msg_sys created at: [ 313.875943][ T4478] do_recvmmsg+0x5c/0x1180 [ 313.880675][ T4478] __sys_recvmmsg+0x113/0x450 21:57:10 executing program 5: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x925, 0x8888, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x6, {[@local, @main=@item_4={0x3, 0x0, 0x0, "8b707542"}]}}, 0x0}, 0x0) 21:57:10 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x2c, &(0x7f0000000c40)={0x0, 0x0, 0xab, {0xab, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab91cd7abf7a917f376386f7e92afc65e75c880a55d2877146ab5f476c1287ecb3e4003547007c60a0466f77cc3abce7d506197b7602e5face683fd5b62746db4fde2e52887d025b1d182565df701612bbacca6413"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) 21:57:10 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, 0x0, 0x0) 21:57:10 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, 0x0, 0x0) [ 314.303099][ T119] usb 4-1: new high-speed USB device number 15 using dummy_hcd [ 314.315199][ T3563] usb 5-1: new high-speed USB device number 17 using dummy_hcd 21:57:10 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, 0x0, 0x0) [ 314.434069][ T3561] usb 6-1: new high-speed USB device number 24 using dummy_hcd [ 314.523678][ T3563] usb 5-1: device descriptor read/64, error 18 [ 314.557006][ T3560] usb 3-1: new high-speed USB device number 17 using dummy_hcd [ 314.566655][ T119] usb 4-1: Using ep0 maxpacket: 8 [ 314.684263][ T119] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 314.695073][ T119] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 314.782139][ T119] usb 4-1: config 0 descriptor?? [ 314.794298][ T3561] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 314.803287][ T3563] usb 5-1: new high-speed USB device number 18 using dummy_hcd [ 314.807869][ T3561] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 314.831836][ T3561] usb 6-1: New USB device found, idVendor=0925, idProduct=8888, bcdDevice= 0.00 [ 314.842108][ T3561] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 314.923262][ T3561] usb 6-1: config 0 descriptor?? 21:57:11 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) [ 314.994430][ T3561] usbhid 6-1:0.0: can't add hid device: -22 [ 315.000910][ T3561] usbhid: probe of 6-1:0.0 failed with error -22 [ 315.053300][ T3563] usb 5-1: device descriptor read/64, error 18 [ 315.183449][ T3560] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 315.193428][ T3560] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 315.202133][ T3560] usb 3-1: Product: syz [ 315.206704][ T3560] usb 3-1: Manufacturer: syz [ 315.211599][ T3560] usb 3-1: SerialNumber: syz [ 315.218951][ T3563] usb usb5-port1: attempt power cycle [ 315.279698][ T3560] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 315.352030][ T4478] not chained 410000 origins [ 315.357519][ T4478] CPU: 0 PID: 4478 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 315.368104][ T4478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 315.378572][ T4478] Call Trace: [ 315.382836][ T4478] [ 315.385856][ T4478] dump_stack_lvl+0x1c8/0x256 [ 315.390923][ T4478] dump_stack+0x1a/0x1c [ 315.395523][ T4478] kmsan_internal_chain_origin+0x78/0x120 [ 315.401966][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 315.408591][ T4478] ? ____sys_recvmsg+0x5c1/0x810 [ 315.413779][ T4478] ? ___sys_recvmsg+0x217/0x840 [ 315.418794][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 315.424876][ T4478] ? ____sys_recvmsg+0x5c1/0x810 [ 315.430007][ T4478] ? kfree+0x44/0x980 [ 315.434232][ T4478] ? ___sys_recvmsg+0x248/0x840 [ 315.439708][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 315.445891][ T4478] ? get_compat_msghdr+0x51/0x720 [ 315.451084][ T4478] ? ___sys_recvmsg+0x18c/0x840 [ 315.456185][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 315.462205][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 315.468314][ T4478] ? should_fail+0x3f/0x810 [ 315.473031][ T4478] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 315.479497][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 315.485497][ T4478] __msan_chain_origin+0xbd/0x140 [ 315.491144][ T4478] get_compat_msghdr+0x4fc/0x720 [ 315.496263][ T4478] ___sys_recvmsg+0x18c/0x840 [ 315.501120][ T4478] ? __stack_depot_save+0x21/0x4b0 [ 315.506427][ T4478] ? kmsan_internal_check_memory+0x94/0x530 [ 315.512525][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 315.518713][ T4478] do_recvmmsg+0x682/0x1180 [ 315.523507][ T4478] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 315.530079][ T4478] __sys_recvmmsg+0x113/0x450 [ 315.534942][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 315.541736][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 315.547101][ T4478] ? exit_to_user_mode_prepare+0x119/0x220 [ 315.553077][ T4478] do_fast_syscall_32+0x33/0x70 [ 315.558170][ T4478] do_SYSENTER_32+0x1b/0x20 [ 315.562983][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 315.569489][ T4478] RIP: 0023:0xf7f63549 [ 315.573768][ T4478] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 315.593962][ T4478] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 315.605064][ T4478] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 315.613700][ T4478] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 315.621875][ T4478] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 315.629957][ T4478] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 315.638137][ T4478] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 315.646871][ T4478] [ 315.651246][ T4478] Uninit was stored to memory at: [ 315.657294][ T4478] get_compat_msghdr+0x4fc/0x720 [ 315.662421][ T4478] ___sys_recvmsg+0x18c/0x840 [ 315.667824][ T4478] do_recvmmsg+0x682/0x1180 [ 315.677505][ T4478] __sys_recvmmsg+0x113/0x450 [ 315.683049][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 315.689471][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 315.695095][ T4478] do_fast_syscall_32+0x33/0x70 [ 315.700542][ T4478] do_SYSENTER_32+0x1b/0x20 [ 315.705343][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 315.711889][ T4478] [ 315.714447][ T4478] Uninit was stored to memory at: [ 315.719942][ T4478] get_compat_msghdr+0x4fc/0x720 [ 315.725302][ T4478] ___sys_recvmsg+0x18c/0x840 [ 315.730227][ T4478] do_recvmmsg+0x682/0x1180 [ 315.735377][ T4478] __sys_recvmmsg+0x113/0x450 [ 315.740413][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 315.747104][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 315.752394][ T4478] do_fast_syscall_32+0x33/0x70 [ 315.757647][ T4478] do_SYSENTER_32+0x1b/0x20 [ 315.762310][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 315.769003][ T4478] [ 315.771395][ T4478] Uninit was stored to memory at: [ 315.776733][ T4478] get_compat_msghdr+0x4fc/0x720 [ 315.781994][ T4478] ___sys_recvmsg+0x18c/0x840 [ 315.787249][ T4478] do_recvmmsg+0x682/0x1180 [ 315.792597][ T4478] __sys_recvmmsg+0x113/0x450 [ 315.798242][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 315.805074][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 315.810811][ T4478] do_fast_syscall_32+0x33/0x70 [ 315.816773][ T4478] do_SYSENTER_32+0x1b/0x20 [ 315.822048][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 315.828866][ T4478] [ 315.831267][ T4478] Uninit was stored to memory at: [ 315.836789][ T4478] get_compat_msghdr+0x4fc/0x720 [ 315.841972][ T4478] ___sys_recvmsg+0x18c/0x840 [ 315.846981][ T4478] do_recvmmsg+0x682/0x1180 [ 315.852910][ T4478] __sys_recvmmsg+0x113/0x450 [ 315.857925][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 315.864849][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 315.870310][ T4478] do_fast_syscall_32+0x33/0x70 [ 315.875526][ T4478] do_SYSENTER_32+0x1b/0x20 [ 315.880186][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 315.887042][ T4478] [ 315.889474][ T4478] Uninit was stored to memory at: [ 315.895721][ T4478] get_compat_msghdr+0x4fc/0x720 [ 315.900924][ T4478] ___sys_recvmsg+0x18c/0x840 [ 315.905890][ T4478] do_recvmmsg+0x682/0x1180 [ 315.910578][ T4478] __sys_recvmmsg+0x113/0x450 [ 315.915638][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 315.922113][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 315.927542][ T4478] do_fast_syscall_32+0x33/0x70 [ 315.932567][ T4478] do_SYSENTER_32+0x1b/0x20 [ 315.937477][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 315.944637][ T4478] [ 315.947052][ T4478] Uninit was stored to memory at: [ 315.952379][ T4478] get_compat_msghdr+0x4fc/0x720 [ 315.957622][ T4478] ___sys_recvmsg+0x18c/0x840 [ 315.966106][ T4478] do_recvmmsg+0x682/0x1180 [ 315.970864][ T4478] __sys_recvmmsg+0x113/0x450 [ 315.976081][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 315.982950][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 315.988701][ T4478] do_fast_syscall_32+0x33/0x70 [ 315.993854][ T4478] do_SYSENTER_32+0x1b/0x20 [ 315.998692][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 316.005508][ T4478] [ 316.007931][ T4478] Uninit was stored to memory at: [ 316.013469][ T4478] get_compat_msghdr+0x4fc/0x720 [ 316.018590][ T4478] ___sys_recvmsg+0x18c/0x840 [ 316.023645][ T4478] do_recvmmsg+0x682/0x1180 [ 316.028434][ T4478] __sys_recvmmsg+0x113/0x450 [ 316.033397][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 316.039824][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 316.045471][ T4478] do_fast_syscall_32+0x33/0x70 [ 316.050699][ T4478] do_SYSENTER_32+0x1b/0x20 [ 316.055527][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 316.062258][ T4478] [ 316.065068][ T4478] Local variable msg_sys created at: [ 316.070465][ T4478] do_recvmmsg+0x5c/0x1180 [ 316.075259][ T4478] __sys_recvmmsg+0x113/0x450 [ 316.372416][ T4478] not chained 420000 origins [ 316.378402][ T4478] CPU: 0 PID: 4478 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 316.390703][ T4478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 316.403228][ T4478] Call Trace: [ 316.406908][ T4478] [ 316.411043][ T4478] dump_stack_lvl+0x1c8/0x256 [ 316.417069][ T4478] dump_stack+0x1a/0x1c [ 316.421620][ T4478] kmsan_internal_chain_origin+0x78/0x120 [ 316.427604][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 316.434094][ T4478] ? ____sys_recvmsg+0x5c1/0x810 [ 316.439269][ T4478] ? ___sys_recvmsg+0x217/0x840 [ 316.444376][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 316.450368][ T4478] ? ____sys_recvmsg+0x5c1/0x810 [ 316.455466][ T4478] ? kfree+0x44/0x980 [ 316.459583][ T4478] ? ___sys_recvmsg+0x248/0x840 [ 316.464674][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 316.470894][ T4478] ? get_compat_msghdr+0x51/0x720 [ 316.476782][ T4478] ? ___sys_recvmsg+0x18c/0x840 [ 316.482153][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 316.488267][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 316.494469][ T4478] ? should_fail+0x3f/0x810 [ 316.499436][ T4478] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 316.506780][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 316.512873][ T4478] __msan_chain_origin+0xbd/0x140 [ 316.518083][ T4478] get_compat_msghdr+0x4fc/0x720 [ 316.524337][ T4478] ___sys_recvmsg+0x18c/0x840 [ 316.529175][ T4478] ? __stack_depot_save+0x21/0x4b0 [ 316.534745][ T4478] ? kmsan_internal_check_memory+0x94/0x530 [ 316.540843][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 316.547116][ T4478] do_recvmmsg+0x682/0x1180 [ 316.551985][ T4478] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 316.558678][ T4478] __sys_recvmmsg+0x113/0x450 [ 316.563534][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 316.569969][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 316.575427][ T4478] ? exit_to_user_mode_prepare+0x119/0x220 [ 316.581431][ T4478] do_fast_syscall_32+0x33/0x70 [ 316.586605][ T4478] do_SYSENTER_32+0x1b/0x20 [ 316.592413][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 316.602298][ T4478] RIP: 0023:0xf7f63549 [ 316.606605][ T4478] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 316.627539][ T4478] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 316.636241][ T4478] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 316.644422][ T4478] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 316.652700][ T4478] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 316.660870][ T4478] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 316.669403][ T4478] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 316.677701][ T4478] [ 316.681983][ T4478] Uninit was stored to memory at: [ 316.687378][ T4478] get_compat_msghdr+0x4fc/0x720 [ 316.692573][ T4478] ___sys_recvmsg+0x18c/0x840 [ 316.697774][ T4478] do_recvmmsg+0x682/0x1180 [ 316.702956][ T4478] __sys_recvmmsg+0x113/0x450 [ 316.707781][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 316.714275][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 316.719550][ T4478] do_fast_syscall_32+0x33/0x70 [ 316.724732][ T4478] do_SYSENTER_32+0x1b/0x20 [ 316.729457][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 316.736177][ T4478] [ 316.738570][ T4478] Uninit was stored to memory at: [ 316.743969][ T4478] get_compat_msghdr+0x4fc/0x720 [ 316.749060][ T4478] ___sys_recvmsg+0x18c/0x840 [ 316.753968][ T4478] do_recvmmsg+0x682/0x1180 [ 316.758972][ T4478] __sys_recvmmsg+0x113/0x450 [ 316.764822][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 316.771503][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 316.777040][ T4478] do_fast_syscall_32+0x33/0x70 [ 316.782151][ T4478] do_SYSENTER_32+0x1b/0x20 [ 316.787343][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 316.794473][ T4478] [ 316.796921][ T4478] Uninit was stored to memory at: [ 316.802147][ T4478] get_compat_msghdr+0x4fc/0x720 [ 316.807479][ T4478] ___sys_recvmsg+0x18c/0x840 [ 316.812313][ T4478] do_recvmmsg+0x682/0x1180 [ 316.817116][ T4478] __sys_recvmmsg+0x113/0x450 [ 316.821947][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 316.828626][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 316.834064][ T4478] do_fast_syscall_32+0x33/0x70 [ 316.839057][ T4478] do_SYSENTER_32+0x1b/0x20 [ 316.844103][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 316.850668][ T4478] [ 316.853213][ T4478] Uninit was stored to memory at: [ 316.858442][ T4478] get_compat_msghdr+0x4fc/0x720 [ 316.866251][ T4478] ___sys_recvmsg+0x18c/0x840 [ 316.871087][ T4478] do_recvmmsg+0x682/0x1180 [ 316.876076][ T4478] __sys_recvmmsg+0x113/0x450 [ 316.881122][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 316.888910][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 316.895719][ T4478] do_fast_syscall_32+0x33/0x70 [ 316.903510][ T4478] do_SYSENTER_32+0x1b/0x20 [ 316.908291][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 316.918151][ T4478] [ 316.920574][ T4478] Uninit was stored to memory at: [ 316.926463][ T4478] get_compat_msghdr+0x4fc/0x720 [ 316.931602][ T4478] ___sys_recvmsg+0x18c/0x840 [ 316.936756][ T4478] do_recvmmsg+0x682/0x1180 [ 316.941408][ T4478] __sys_recvmmsg+0x113/0x450 [ 316.946508][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 316.953799][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 316.959748][ T4478] do_fast_syscall_32+0x33/0x70 [ 316.964898][ T4478] do_SYSENTER_32+0x1b/0x20 [ 316.969567][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 316.976341][ T4478] [ 316.979027][ T4478] Uninit was stored to memory at: [ 316.984385][ T4478] get_compat_msghdr+0x4fc/0x720 [ 316.989471][ T4478] ___sys_recvmsg+0x18c/0x840 [ 316.994439][ T4478] do_recvmmsg+0x682/0x1180 [ 316.999088][ T4478] __sys_recvmmsg+0x113/0x450 [ 317.004055][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 317.010642][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 317.016067][ T4478] do_fast_syscall_32+0x33/0x70 [ 317.021674][ T4478] do_SYSENTER_32+0x1b/0x20 [ 317.026633][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 317.033544][ T4478] [ 317.036472][ T4478] Uninit was stored to memory at: [ 317.041957][ T4478] get_compat_msghdr+0x4fc/0x720 [ 317.047227][ T4478] ___sys_recvmsg+0x18c/0x840 [ 317.052072][ T4478] do_recvmmsg+0x682/0x1180 [ 317.057083][ T4478] __sys_recvmmsg+0x113/0x450 [ 317.061917][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 317.068774][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 317.074134][ T4478] do_fast_syscall_32+0x33/0x70 [ 317.079498][ T4478] do_SYSENTER_32+0x1b/0x20 [ 317.084334][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 317.092186][ T4478] [ 317.094751][ T4478] Local variable msg_sys created at: [ 317.100121][ T4478] do_recvmmsg+0x5c/0x1180 [ 317.105176][ T4478] __sys_recvmmsg+0x113/0x450 [ 317.121105][ T119] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71 [ 317.136229][ T119] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to send software reset: ffffffb9 [ 317.148775][ T119] asix: probe of 4-1:0.0 failed with error -71 [ 317.163914][ T3563] usb 5-1: new high-speed USB device number 19 using dummy_hcd [ 317.192099][ T119] usb 4-1: USB disconnect, device number 15 [ 317.273210][ T3560] usb 6-1: USB disconnect, device number 24 [ 317.345595][ T3561] Bluetooth: hci3: command 0x0406 tx timeout [ 317.373501][ T3561] Bluetooth: hci4: command 0x0406 tx timeout [ 317.389805][ T3566] usb 3-1: USB disconnect, device number 17 [ 317.404568][ T3561] Bluetooth: hci5: command 0x0406 tx timeout [ 317.411969][ T3565] usb 3-1: ath9k_htc: Firmware - ath9k_htc/htc_9271-1.4.0.fw download failed [ 317.422134][ T3563] usb 5-1: device not accepting address 19, error -71 [ 317.453825][ T3561] Bluetooth: hci0: command 0x0406 tx timeout [ 317.463732][ T3566] usb 3-1: ath9k_htc: USB layer deinitialized [ 317.484258][ T3561] Bluetooth: hci1: command 0x0406 tx timeout [ 317.520671][ T3561] Bluetooth: hci2: command 0x0406 tx timeout [ 317.782274][ T4478] not chained 430000 origins [ 317.788749][ T4478] CPU: 1 PID: 4478 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 317.801077][ T4478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 317.815474][ T4478] Call Trace: [ 317.819040][ T4478] [ 317.822584][ T4478] dump_stack_lvl+0x1c8/0x256 [ 317.827490][ T4478] dump_stack+0x1a/0x1c [ 317.831825][ T4478] kmsan_internal_chain_origin+0x78/0x120 [ 317.837732][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 317.843770][ T4478] ? ____sys_recvmsg+0x5c1/0x810 [ 317.849377][ T4478] ? ___sys_recvmsg+0x217/0x840 [ 317.854463][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 317.860456][ T4478] ? ____sys_recvmsg+0x5c1/0x810 [ 317.865543][ T4478] ? kfree+0x44/0x980 [ 317.870018][ T4478] ? ___sys_recvmsg+0x248/0x840 [ 317.878192][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 317.884330][ T4478] ? get_compat_msghdr+0x51/0x720 [ 317.889448][ T4478] ? ___sys_recvmsg+0x18c/0x840 [ 317.894414][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 317.900960][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 317.907275][ T4478] ? should_fail+0x3f/0x810 [ 317.912206][ T4478] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 317.921640][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 317.927735][ T4478] __msan_chain_origin+0xbd/0x140 [ 317.932892][ T4478] get_compat_msghdr+0x4fc/0x720 [ 317.938967][ T4478] ___sys_recvmsg+0x18c/0x840 [ 317.945690][ T4478] ? __stack_depot_save+0x21/0x4b0 [ 317.952189][ T4478] ? kmsan_internal_check_memory+0x94/0x530 [ 317.958521][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 317.964483][ T4478] do_recvmmsg+0x682/0x1180 [ 317.969185][ T4478] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 317.976164][ T4478] __sys_recvmmsg+0x113/0x450 [ 317.981011][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 317.987656][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 317.993402][ T4478] ? exit_to_user_mode_prepare+0x119/0x220 [ 317.999988][ T4478] do_fast_syscall_32+0x33/0x70 [ 318.005124][ T4478] do_SYSENTER_32+0x1b/0x20 [ 318.009797][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 318.017431][ T4478] RIP: 0023:0xf7f63549 [ 318.023579][ T4478] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 318.050073][ T4478] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 318.062824][ T4478] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 318.071950][ T4478] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 318.084004][ T4478] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 318.092759][ T4478] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 318.101046][ T4478] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 318.109272][ T4478] [ 318.120691][ T4478] Uninit was stored to memory at: [ 318.126392][ T4478] get_compat_msghdr+0x4fc/0x720 [ 318.132381][ T4478] ___sys_recvmsg+0x18c/0x840 [ 318.137422][ T4478] do_recvmmsg+0x682/0x1180 [ 318.142358][ T4478] __sys_recvmmsg+0x113/0x450 [ 318.147395][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 318.154246][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 318.160716][ T4478] do_fast_syscall_32+0x33/0x70 [ 318.166315][ T4478] do_SYSENTER_32+0x1b/0x20 [ 318.171958][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 318.178748][ T4478] [ 318.181146][ T4478] Uninit was stored to memory at: [ 318.186475][ T4478] get_compat_msghdr+0x4fc/0x720 [ 318.193007][ T4478] ___sys_recvmsg+0x18c/0x840 [ 318.198807][ T4478] do_recvmmsg+0x682/0x1180 [ 318.204350][ T4478] __sys_recvmmsg+0x113/0x450 [ 318.210301][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 318.216994][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 318.223934][ T4478] do_fast_syscall_32+0x33/0x70 [ 318.229619][ T4478] do_SYSENTER_32+0x1b/0x20 [ 318.235672][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 318.243914][ T4478] [ 318.246349][ T4478] Uninit was stored to memory at: [ 318.252044][ T4478] get_compat_msghdr+0x4fc/0x720 [ 318.259733][ T4478] ___sys_recvmsg+0x18c/0x840 [ 318.265429][ T4478] do_recvmmsg+0x682/0x1180 [ 318.270126][ T4478] __sys_recvmmsg+0x113/0x450 [ 318.275169][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 318.282586][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 318.288994][ T4478] do_fast_syscall_32+0x33/0x70 [ 318.295107][ T4478] do_SYSENTER_32+0x1b/0x20 [ 318.300693][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 318.309684][ T4478] [ 318.312340][ T4478] Uninit was stored to memory at: [ 318.318245][ T4478] get_compat_msghdr+0x4fc/0x720 [ 318.324061][ T4478] ___sys_recvmsg+0x18c/0x840 [ 318.329082][ T4478] do_recvmmsg+0x682/0x1180 [ 318.333941][ T4478] __sys_recvmmsg+0x113/0x450 [ 318.339428][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 318.346912][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 318.352447][ T4478] do_fast_syscall_32+0x33/0x70 [ 318.358568][ T4478] do_SYSENTER_32+0x1b/0x20 [ 318.363485][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 318.370227][ T4478] [ 318.372992][ T4478] Uninit was stored to memory at: [ 318.378289][ T4478] get_compat_msghdr+0x4fc/0x720 [ 318.384526][ T4478] ___sys_recvmsg+0x18c/0x840 [ 318.389962][ T4478] do_recvmmsg+0x682/0x1180 [ 318.394897][ T4478] __sys_recvmmsg+0x113/0x450 [ 318.399930][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 318.406675][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 318.412969][ T4478] do_fast_syscall_32+0x33/0x70 [ 318.420047][ T4478] do_SYSENTER_32+0x1b/0x20 [ 318.425501][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 318.434242][ T4478] [ 318.436733][ T4478] Uninit was stored to memory at: [ 318.442488][ T4478] get_compat_msghdr+0x4fc/0x720 [ 318.448156][ T4478] ___sys_recvmsg+0x18c/0x840 [ 318.453393][ T4478] do_recvmmsg+0x682/0x1180 [ 318.460446][ T4478] __sys_recvmmsg+0x113/0x450 [ 318.465782][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 318.472304][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 318.477832][ T4478] do_fast_syscall_32+0x33/0x70 [ 318.483082][ T4478] do_SYSENTER_32+0x1b/0x20 [ 318.487719][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 318.494381][ T4478] [ 318.496872][ T4478] Uninit was stored to memory at: [ 318.502133][ T4478] get_compat_msghdr+0x4fc/0x720 [ 318.507914][ T4478] ___sys_recvmsg+0x18c/0x840 [ 318.513015][ T4478] do_recvmmsg+0x682/0x1180 [ 318.517703][ T4478] __sys_recvmmsg+0x113/0x450 [ 318.522618][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 318.530144][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 318.536799][ T4478] do_fast_syscall_32+0x33/0x70 [ 318.542016][ T4478] do_SYSENTER_32+0x1b/0x20 [ 318.547108][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 318.554812][ T4478] [ 318.558387][ T4478] Local variable msg_sys created at: [ 318.564642][ T4478] do_recvmmsg+0x5c/0x1180 [ 318.569953][ T4478] __sys_recvmmsg+0x113/0x450 [ 318.766285][ T4478] not chained 440000 origins [ 318.771519][ T4478] CPU: 1 PID: 4478 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 318.782640][ T4478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 318.793385][ T4478] Call Trace: [ 318.796753][ T4478] [ 318.800030][ T4478] dump_stack_lvl+0x1c8/0x256 [ 318.805904][ T4478] dump_stack+0x1a/0x1c [ 318.810881][ T4478] kmsan_internal_chain_origin+0x78/0x120 [ 318.819406][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 318.827536][ T4478] ? ____sys_recvmsg+0x5c1/0x810 [ 318.832855][ T4478] ? ___sys_recvmsg+0x217/0x840 [ 318.838620][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 318.844734][ T4478] ? ____sys_recvmsg+0x5c1/0x810 [ 318.851103][ T4478] ? kfree+0x44/0x980 [ 318.855288][ T4478] ? ___sys_recvmsg+0x248/0x840 [ 318.861611][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 318.868546][ T4478] ? get_compat_msghdr+0x51/0x720 [ 318.873745][ T4478] ? ___sys_recvmsg+0x18c/0x840 [ 318.879587][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 318.885538][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 318.892143][ T4478] ? should_fail+0x3f/0x810 [ 318.897376][ T4478] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 318.903893][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 318.910275][ T4478] __msan_chain_origin+0xbd/0x140 [ 318.916719][ T4478] get_compat_msghdr+0x4fc/0x720 [ 318.922511][ T4478] ___sys_recvmsg+0x18c/0x840 [ 318.928062][ T4478] ? __stack_depot_save+0x21/0x4b0 [ 318.934197][ T4478] ? kmsan_internal_check_memory+0x94/0x530 [ 318.942095][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 318.948215][ T4478] do_recvmmsg+0x682/0x1180 [ 318.953348][ T4478] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 318.960895][ T4478] __sys_recvmmsg+0x113/0x450 [ 318.965704][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 318.974224][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 318.980448][ T4478] ? exit_to_user_mode_prepare+0x119/0x220 [ 318.987730][ T4478] do_fast_syscall_32+0x33/0x70 [ 318.993413][ T4478] do_SYSENTER_32+0x1b/0x20 [ 318.998252][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 319.005165][ T4478] RIP: 0023:0xf7f63549 [ 319.009389][ T4478] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 319.031978][ T4478] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 319.041794][ T4478] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 319.050018][ T4478] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 319.059028][ T4478] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 319.067199][ T4478] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 319.075292][ T4478] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 319.083521][ T4478] [ 319.088644][ T4478] Uninit was stored to memory at: [ 319.094074][ T4478] get_compat_msghdr+0x4fc/0x720 [ 319.099169][ T4478] ___sys_recvmsg+0x18c/0x840 [ 319.104122][ T4478] do_recvmmsg+0x682/0x1180 [ 319.108787][ T4478] __sys_recvmmsg+0x113/0x450 [ 319.113730][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 319.120486][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 319.125937][ T4478] do_fast_syscall_32+0x33/0x70 [ 319.130900][ T4478] do_SYSENTER_32+0x1b/0x20 [ 319.135718][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 319.142250][ T4478] [ 319.144831][ T4478] Uninit was stored to memory at: [ 319.150095][ T4478] get_compat_msghdr+0x4fc/0x720 [ 319.155244][ T4478] ___sys_recvmsg+0x18c/0x840 [ 319.160039][ T4478] do_recvmmsg+0x682/0x1180 [ 319.165009][ T4478] __sys_recvmmsg+0x113/0x450 [ 319.170230][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 319.177074][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 319.182358][ T4478] do_fast_syscall_32+0x33/0x70 [ 319.187835][ T4478] do_SYSENTER_32+0x1b/0x20 [ 319.192472][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 319.199432][ T4478] [ 319.201858][ T4478] Uninit was stored to memory at: [ 319.207364][ T4478] get_compat_msghdr+0x4fc/0x720 [ 319.213023][ T4478] ___sys_recvmsg+0x18c/0x840 [ 319.218008][ T4478] do_recvmmsg+0x682/0x1180 [ 319.222670][ T4478] __sys_recvmmsg+0x113/0x450 [ 319.227728][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 319.234231][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 319.239749][ T4478] do_fast_syscall_32+0x33/0x70 [ 319.245034][ T4478] do_SYSENTER_32+0x1b/0x20 [ 319.249699][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 319.257409][ T4478] [ 319.260238][ T4478] Uninit was stored to memory at: [ 319.266133][ T4478] get_compat_msghdr+0x4fc/0x720 [ 319.271527][ T4478] ___sys_recvmsg+0x18c/0x840 [ 319.276806][ T4478] do_recvmmsg+0x682/0x1180 [ 319.282265][ T4478] __sys_recvmmsg+0x113/0x450 [ 319.287748][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 319.294624][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 319.300617][ T4478] do_fast_syscall_32+0x33/0x70 [ 319.306410][ T4478] do_SYSENTER_32+0x1b/0x20 [ 319.311489][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 319.318903][ T4478] [ 319.321826][ T4478] Uninit was stored to memory at: [ 319.327305][ T4478] get_compat_msghdr+0x4fc/0x720 [ 319.332544][ T4478] ___sys_recvmsg+0x18c/0x840 [ 319.339355][ T4478] do_recvmmsg+0x682/0x1180 [ 319.344220][ T4478] __sys_recvmmsg+0x113/0x450 [ 319.349239][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 319.355828][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 319.361503][ T4478] do_fast_syscall_32+0x33/0x70 [ 319.367144][ T4478] do_SYSENTER_32+0x1b/0x20 [ 319.371794][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 319.379643][ T4478] [ 319.382347][ T4478] Uninit was stored to memory at: [ 319.388530][ T4478] get_compat_msghdr+0x4fc/0x720 [ 319.395584][ T4478] ___sys_recvmsg+0x18c/0x840 [ 319.401791][ T4478] do_recvmmsg+0x682/0x1180 [ 319.407106][ T4478] __sys_recvmmsg+0x113/0x450 [ 319.412539][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 319.421336][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 319.427009][ T4478] do_fast_syscall_32+0x33/0x70 [ 319.432451][ T4478] do_SYSENTER_32+0x1b/0x20 [ 319.437538][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 319.444214][ T4478] [ 319.446781][ T4478] Uninit was stored to memory at: [ 319.452157][ T4478] get_compat_msghdr+0x4fc/0x720 [ 319.457333][ T4478] ___sys_recvmsg+0x18c/0x840 [ 319.462686][ T4478] do_recvmmsg+0x682/0x1180 [ 319.467599][ T4478] __sys_recvmmsg+0x113/0x450 [ 319.472599][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 319.479372][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 319.485662][ T4478] do_fast_syscall_32+0x33/0x70 [ 319.492898][ T4478] do_SYSENTER_32+0x1b/0x20 [ 319.497645][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 319.504474][ T4478] [ 319.506902][ T4478] Local variable msg_sys created at: [ 319.512473][ T4478] do_recvmmsg+0x5c/0x1180 [ 319.517335][ T4478] __sys_recvmmsg+0x113/0x450 [ 319.714461][ T4478] not chained 450000 origins [ 319.719635][ T4478] CPU: 1 PID: 4478 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 319.730395][ T4478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 319.740726][ T4478] Call Trace: [ 319.744254][ T4478] [ 319.747290][ T4478] dump_stack_lvl+0x1c8/0x256 [ 319.752088][ T4478] dump_stack+0x1a/0x1c [ 319.756405][ T4478] kmsan_internal_chain_origin+0x78/0x120 [ 319.762253][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 319.768372][ T4478] ? ____sys_recvmsg+0x5c1/0x810 [ 319.773524][ T4478] ? ___sys_recvmsg+0x217/0x840 [ 319.778541][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 319.784535][ T4478] ? ____sys_recvmsg+0x5c1/0x810 [ 319.789680][ T4478] ? kfree+0x44/0x980 [ 319.794279][ T4478] ? ___sys_recvmsg+0x248/0x840 [ 319.799595][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 319.805803][ T4478] ? get_compat_msghdr+0x51/0x720 [ 319.811010][ T4478] ? ___sys_recvmsg+0x18c/0x840 [ 319.816325][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 319.823697][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 319.829790][ T4478] ? should_fail+0x3f/0x810 [ 319.834924][ T4478] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 319.842155][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 319.848420][ T4478] __msan_chain_origin+0xbd/0x140 [ 319.853624][ T4478] get_compat_msghdr+0x4fc/0x720 [ 319.859094][ T4478] ___sys_recvmsg+0x18c/0x840 [ 319.864135][ T4478] ? __stack_depot_save+0x21/0x4b0 [ 319.870782][ T4478] ? kmsan_internal_check_memory+0x94/0x530 [ 319.877329][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 319.884091][ T4478] do_recvmmsg+0x682/0x1180 [ 319.888828][ T4478] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 319.896272][ T4478] __sys_recvmmsg+0x113/0x450 [ 319.901061][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 319.907818][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 319.913033][ T4478] ? exit_to_user_mode_prepare+0x119/0x220 [ 319.919600][ T4478] do_fast_syscall_32+0x33/0x70 [ 319.925561][ T4478] do_SYSENTER_32+0x1b/0x20 [ 319.930393][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 319.936993][ T4478] RIP: 0023:0xf7f63549 [ 319.941114][ T4478] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 319.962337][ T4478] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 319.970836][ T4478] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 319.978908][ T4478] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 319.987000][ T4478] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 319.995659][ T4478] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 320.004903][ T4478] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 320.013685][ T4478] [ 320.017296][ T4478] Uninit was stored to memory at: [ 320.022698][ T4478] get_compat_msghdr+0x4fc/0x720 [ 320.027913][ T4478] ___sys_recvmsg+0x18c/0x840 [ 320.032905][ T4478] do_recvmmsg+0x682/0x1180 [ 320.037980][ T4478] __sys_recvmmsg+0x113/0x450 [ 320.043338][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 320.050435][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 320.055998][ T4478] do_fast_syscall_32+0x33/0x70 [ 320.061628][ T4478] do_SYSENTER_32+0x1b/0x20 [ 320.066645][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 320.073545][ T4478] [ 320.075923][ T4478] Uninit was stored to memory at: [ 320.081506][ T4478] get_compat_msghdr+0x4fc/0x720 [ 320.087773][ T4478] ___sys_recvmsg+0x18c/0x840 [ 320.092926][ T4478] do_recvmmsg+0x682/0x1180 [ 320.098188][ T4478] __sys_recvmmsg+0x113/0x450 [ 320.103582][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 320.110111][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 320.115979][ T4478] do_fast_syscall_32+0x33/0x70 [ 320.120976][ T4478] do_SYSENTER_32+0x1b/0x20 [ 320.126008][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 320.133045][ T4478] [ 320.135564][ T4478] Uninit was stored to memory at: [ 320.141712][ T4478] get_compat_msghdr+0x4fc/0x720 [ 320.152242][ T4478] ___sys_recvmsg+0x18c/0x840 [ 320.160079][ T4478] do_recvmmsg+0x682/0x1180 [ 320.166262][ T4478] __sys_recvmmsg+0x113/0x450 [ 320.173169][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 320.181852][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 320.193374][ T4478] do_fast_syscall_32+0x33/0x70 [ 320.200824][ T4478] do_SYSENTER_32+0x1b/0x20 [ 320.205634][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 320.212386][ T4478] [ 320.214939][ T4478] Uninit was stored to memory at: [ 320.220258][ T4478] get_compat_msghdr+0x4fc/0x720 [ 320.225468][ T4478] ___sys_recvmsg+0x18c/0x840 [ 320.230266][ T4478] do_recvmmsg+0x682/0x1180 [ 320.235634][ T4478] __sys_recvmmsg+0x113/0x450 [ 320.241205][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 320.247914][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 320.253631][ T4478] do_fast_syscall_32+0x33/0x70 [ 320.258605][ T4478] do_SYSENTER_32+0x1b/0x20 [ 320.263656][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 320.270618][ T4478] [ 320.273133][ T4478] Uninit was stored to memory at: [ 320.280699][ T4478] get_compat_msghdr+0x4fc/0x720 [ 320.285898][ T4478] ___sys_recvmsg+0x18c/0x840 [ 320.291421][ T4478] do_recvmmsg+0x682/0x1180 [ 320.296719][ T4478] __sys_recvmmsg+0x113/0x450 [ 320.301684][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 320.308412][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 320.313949][ T4478] do_fast_syscall_32+0x33/0x70 [ 320.319310][ T4478] do_SYSENTER_32+0x1b/0x20 [ 320.324359][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 320.330972][ T4478] [ 320.333754][ T4478] Uninit was stored to memory at: [ 320.339363][ T4478] get_compat_msghdr+0x4fc/0x720 [ 320.344597][ T4478] ___sys_recvmsg+0x18c/0x840 [ 320.350627][ T4478] do_recvmmsg+0x682/0x1180 [ 320.355433][ T4478] __sys_recvmmsg+0x113/0x450 [ 320.361152][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 320.367958][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 320.373312][ T4478] do_fast_syscall_32+0x33/0x70 [ 320.379067][ T4478] do_SYSENTER_32+0x1b/0x20 [ 320.383821][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 320.390765][ T4478] [ 320.393271][ T4478] Uninit was stored to memory at: [ 320.399525][ T4478] get_compat_msghdr+0x4fc/0x720 [ 320.404804][ T4478] ___sys_recvmsg+0x18c/0x840 [ 320.409637][ T4478] do_recvmmsg+0x682/0x1180 [ 320.414345][ T4478] __sys_recvmmsg+0x113/0x450 [ 320.419175][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 320.425709][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 320.430964][ T4478] do_fast_syscall_32+0x33/0x70 [ 320.436453][ T4478] do_SYSENTER_32+0x1b/0x20 [ 320.441081][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 320.447766][ T4478] [ 320.450154][ T4478] Local variable msg_sys created at: [ 320.455767][ T4478] do_recvmmsg+0x5c/0x1180 [ 320.460411][ T4478] __sys_recvmmsg+0x113/0x450 [ 320.639716][ T4478] not chained 460000 origins [ 320.644644][ T4478] CPU: 0 PID: 4478 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 320.656228][ T4478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 320.668972][ T4478] Call Trace: [ 320.674933][ T4478] [ 320.680013][ T4478] dump_stack_lvl+0x1c8/0x256 [ 320.685464][ T4478] dump_stack+0x1a/0x1c [ 320.690755][ T4478] kmsan_internal_chain_origin+0x78/0x120 [ 320.696673][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 320.703274][ T4478] ? ____sys_recvmsg+0x5c1/0x810 [ 320.708624][ T4478] ? ___sys_recvmsg+0x217/0x840 [ 320.713948][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 320.719857][ T4478] ? ____sys_recvmsg+0x5c1/0x810 [ 320.725002][ T4478] ? kfree+0x44/0x980 [ 320.729197][ T4478] ? ___sys_recvmsg+0x248/0x840 [ 320.734221][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 320.740315][ T4478] ? get_compat_msghdr+0x51/0x720 [ 320.746246][ T4478] ? ___sys_recvmsg+0x18c/0x840 [ 320.751935][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 320.758201][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 320.764759][ T4478] ? should_fail+0x3f/0x810 [ 320.769514][ T4478] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 320.775866][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 320.781982][ T4478] __msan_chain_origin+0xbd/0x140 [ 320.787145][ T4478] get_compat_msghdr+0x4fc/0x720 [ 320.792422][ T4478] ___sys_recvmsg+0x18c/0x840 [ 320.797307][ T4478] ? __stack_depot_save+0x21/0x4b0 [ 320.803004][ T4478] ? kmsan_internal_check_memory+0x94/0x530 [ 320.809192][ T4478] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 320.815752][ T4478] do_recvmmsg+0x682/0x1180 [ 320.821374][ T4478] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 320.828790][ T4478] __sys_recvmmsg+0x113/0x450 [ 320.833710][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 320.840566][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 320.846289][ T4478] ? exit_to_user_mode_prepare+0x119/0x220 [ 320.852830][ T4478] do_fast_syscall_32+0x33/0x70 [ 320.858372][ T4478] do_SYSENTER_32+0x1b/0x20 [ 320.864740][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 320.871374][ T4478] RIP: 0023:0xf7f63549 [ 320.875611][ T4478] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 320.896441][ T4478] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 320.905154][ T4478] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 320.913322][ T4478] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 320.922015][ T4478] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 320.930177][ T4478] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 320.938218][ T4478] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 320.947758][ T4478] [ 320.951585][ T4478] Uninit was stored to memory at: [ 320.957084][ T4478] get_compat_msghdr+0x4fc/0x720 [ 320.962166][ T4478] ___sys_recvmsg+0x18c/0x840 [ 320.967115][ T4478] do_recvmmsg+0x682/0x1180 [ 320.971796][ T4478] __sys_recvmmsg+0x113/0x450 [ 320.976690][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 320.983164][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 320.988414][ T4478] do_fast_syscall_32+0x33/0x70 [ 320.993638][ T4478] do_SYSENTER_32+0x1b/0x20 [ 320.998635][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 321.006720][ T4478] [ 321.009166][ T4478] Uninit was stored to memory at: [ 321.014641][ T4478] get_compat_msghdr+0x4fc/0x720 [ 321.019721][ T4478] ___sys_recvmsg+0x18c/0x840 [ 321.024689][ T4478] do_recvmmsg+0x682/0x1180 [ 321.029492][ T4478] __sys_recvmmsg+0x113/0x450 [ 321.034695][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 321.041615][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 321.048288][ T4478] do_fast_syscall_32+0x33/0x70 [ 321.053369][ T4478] do_SYSENTER_32+0x1b/0x20 [ 321.058442][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 321.065167][ T4478] [ 321.067653][ T4478] Uninit was stored to memory at: [ 321.073148][ T4478] get_compat_msghdr+0x4fc/0x720 [ 321.078601][ T4478] ___sys_recvmsg+0x18c/0x840 [ 321.084103][ T4478] do_recvmmsg+0x682/0x1180 [ 321.088941][ T4478] __sys_recvmmsg+0x113/0x450 [ 321.093917][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 321.100509][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 321.106061][ T4478] do_fast_syscall_32+0x33/0x70 [ 321.111054][ T4478] do_SYSENTER_32+0x1b/0x20 [ 321.115788][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 321.123107][ T4478] [ 321.125514][ T4478] Uninit was stored to memory at: [ 321.130723][ T4478] get_compat_msghdr+0x4fc/0x720 [ 321.136342][ T4478] ___sys_recvmsg+0x18c/0x840 [ 321.141172][ T4478] do_recvmmsg+0x682/0x1180 [ 321.145959][ T4478] __sys_recvmmsg+0x113/0x450 [ 321.150897][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 321.158035][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 321.164402][ T4478] do_fast_syscall_32+0x33/0x70 [ 321.171733][ T4478] do_SYSENTER_32+0x1b/0x20 [ 321.177872][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 321.186609][ T4478] [ 321.189025][ T4478] Uninit was stored to memory at: [ 321.194315][ T4478] get_compat_msghdr+0x4fc/0x720 [ 321.199507][ T4478] ___sys_recvmsg+0x18c/0x840 [ 321.204500][ T4478] do_recvmmsg+0x682/0x1180 [ 321.209187][ T4478] __sys_recvmmsg+0x113/0x450 [ 321.214392][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 321.220877][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 321.226284][ T4478] do_fast_syscall_32+0x33/0x70 [ 321.231279][ T4478] do_SYSENTER_32+0x1b/0x20 [ 321.236360][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 321.243455][ T4478] [ 321.245871][ T4478] Uninit was stored to memory at: [ 321.251057][ T4478] get_compat_msghdr+0x4fc/0x720 [ 321.256249][ T4478] ___sys_recvmsg+0x18c/0x840 [ 321.261565][ T4478] do_recvmmsg+0x682/0x1180 [ 321.266522][ T4478] __sys_recvmmsg+0x113/0x450 [ 321.271332][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 321.279758][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 321.285117][ T4478] do_fast_syscall_32+0x33/0x70 [ 321.290355][ T4478] do_SYSENTER_32+0x1b/0x20 [ 321.295099][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 321.301807][ T4478] [ 321.304385][ T4478] Uninit was stored to memory at: [ 321.309645][ T4478] get_compat_msghdr+0x4fc/0x720 [ 321.315391][ T4478] ___sys_recvmsg+0x18c/0x840 [ 321.320246][ T4478] do_recvmmsg+0x682/0x1180 [ 321.325938][ T4478] __sys_recvmmsg+0x113/0x450 [ 321.330915][ T4478] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 321.337488][ T4478] __do_fast_syscall_32+0xa2/0x100 [ 321.342949][ T4478] do_fast_syscall_32+0x33/0x70 [ 321.348103][ T4478] do_SYSENTER_32+0x1b/0x20 [ 321.352971][ T4478] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 321.361501][ T4478] [ 321.364249][ T4478] Local variable msg_sys created at: [ 321.369720][ T4478] do_recvmmsg+0x5c/0x1180 [ 321.374636][ T4478] __sys_recvmmsg+0x113/0x450 21:57:17 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000003c0)=0xae) prlimit64(0x0, 0x3, &(0x7f0000000280), &(0x7f0000000300)) r3 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r3, &(0x7f00000000c0)={0x2, 0x4e20, @empty}, 0x10) sendto$inet(r3, &(0x7f0000000140), 0xffffffffffffff58, 0x20008008, &(0x7f0000000100)={0x2, 0x4e20}, 0x10) recvfrom(r3, &(0x7f0000000480)=""/110, 0xfffffe32, 0x700, 0x0, 0xfffffffffffffecb) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x40000, 0x6, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef0100010000", 0x3f, 0x400}, {&(0x7f0000001f40)}, {0x0, 0x0, 0xbff}, {0x0}, {0x0, 0x0, 0x2}, {0x0, 0x0, 0x80000000000000}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) 21:57:17 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) 21:57:17 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x2c, &(0x7f0000000c40)={0x0, 0x0, 0xab, {0xab, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab91cd7abf7a917f376386f7e92afc65e75c880a55d2877146ab5f476c1287ecb3e4003547007c60a0466f77cc3abce7d506197b7602e5face683fd5b62746db4fde2e52887d025b1d182565df701612bbacca6413"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) 21:57:17 executing program 5: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x925, 0x8888, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x6, {[@local, @main=@item_4={0x3, 0x0, 0x0, "8b707542"}]}}, 0x0}, 0x0) 21:57:17 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x4f, 0x92, 0xb9, 0x8, 0x1557, 0x7720, 0xb7eb, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x27, 0x85, 0xe6}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000040)={0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b00)={0x40, 0x13, 0x6, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x40, 0x19, 0x2, "a8cd"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 21:57:17 executing program 2: r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000300)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x8, &(0x7f0000000380)=@generic={0x0, 0x0, 0x0, "398027db"}) 21:57:17 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) [ 321.803929][ T3561] usb 6-1: new high-speed USB device number 25 using dummy_hcd [ 321.824441][ T3566] usb 5-1: new high-speed USB device number 21 using dummy_hcd [ 321.833517][ T119] usb 3-1: new high-speed USB device number 18 using dummy_hcd [ 321.864699][ T3565] usb 4-1: new high-speed USB device number 16 using dummy_hcd [ 322.021417][ T4522] loop0: detected capacity change from 0 to 512 [ 322.034327][ T3566] usb 5-1: device descriptor read/64, error 18 21:57:18 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={0x0, 0x1ec}}, 0x0) [ 322.091047][ T4522] EXT4-fs (loop0): invalid inodes per group: 67108896 [ 322.091047][ T4522] [ 322.132917][ T3565] usb 4-1: Using ep0 maxpacket: 8 [ 322.164164][ T3561] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 322.176198][ T3561] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 322.186449][ T3561] usb 6-1: New USB device found, idVendor=0925, idProduct=8888, bcdDevice= 0.00 [ 322.196287][ T3561] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 322.239027][ T3561] usb 6-1: config 0 descriptor?? [ 322.254356][ T3565] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 322.263959][ T3565] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 322.296505][ T3561] usbhid 6-1:0.0: can't add hid device: -22 [ 322.303411][ T3561] usbhid: probe of 6-1:0.0 failed with error -22 [ 322.313487][ T3566] usb 5-1: new high-speed USB device number 22 using dummy_hcd [ 322.368454][ T3565] usb 4-1: config 0 descriptor?? [ 322.395286][ T119] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 322.405223][ T119] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 322.413763][ T119] usb 3-1: Product: syz [ 322.418316][ T119] usb 3-1: Manufacturer: syz [ 322.423392][ T119] usb 3-1: SerialNumber: syz [ 322.513770][ T3566] usb 5-1: device descriptor read/64, error 18 21:57:18 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={0x0, 0x1ec}}, 0x0) [ 322.555774][ T119] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 322.635428][ T3566] usb usb5-port1: attempt power cycle 21:57:19 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={0x0, 0x1ec}}, 0x0) [ 323.063885][ T3566] usb 5-1: new high-speed USB device number 23 using dummy_hcd [ 323.148400][ T4521] not chained 470000 origins [ 323.153798][ T4521] CPU: 0 PID: 4521 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 323.164468][ T4521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 323.175010][ T4521] Call Trace: [ 323.178468][ T4521] [ 323.181487][ T4521] dump_stack_lvl+0x1c8/0x256 [ 323.186355][ T4521] dump_stack+0x1a/0x1c [ 323.190858][ T4521] kmsan_internal_chain_origin+0x78/0x120 21:57:19 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB="ec010000190001002dbd7000fcdbdf25fc020000000000000000010000c0f301ffffffff9effffff00000000000000004e2100004e1e00070a0020"], 0x1ec}}, 0x0) [ 323.197030][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 323.204166][ T4521] ? ____sys_recvmsg+0x5c1/0x810 [ 323.209352][ T4521] ? ___sys_recvmsg+0x217/0x840 [ 323.214357][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 323.221769][ T4521] ? ____sys_recvmsg+0x5c1/0x810 [ 323.227593][ T4521] ? kfree+0x44/0x980 [ 323.231861][ T4521] ? ___sys_recvmsg+0x248/0x840 [ 323.236867][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 323.242986][ T4521] ? get_compat_msghdr+0x51/0x720 [ 323.248767][ T4521] ? ___sys_recvmsg+0x18c/0x840 [ 323.254224][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 323.260232][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 323.266579][ T4521] ? should_fail+0x3f/0x810 [ 323.271536][ T4521] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 323.278678][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 323.284778][ T4521] __msan_chain_origin+0xbd/0x140 [ 323.289971][ T4521] get_compat_msghdr+0x4fc/0x720 [ 323.295160][ T4521] ___sys_recvmsg+0x18c/0x840 [ 323.300338][ T4521] ? __stack_depot_save+0x21/0x4b0 [ 323.305719][ T4521] ? kmsan_internal_check_memory+0x94/0x530 [ 323.312133][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 323.318104][ T4521] do_recvmmsg+0x682/0x1180 [ 323.324343][ T4521] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 323.330923][ T4521] __sys_recvmmsg+0x113/0x450 [ 323.335820][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 323.342291][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 323.347561][ T4521] ? exit_to_user_mode_prepare+0x119/0x220 [ 323.353526][ T4521] do_fast_syscall_32+0x33/0x70 [ 323.358701][ T4521] do_SYSENTER_32+0x1b/0x20 [ 323.364665][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 323.372102][ T4521] RIP: 0023:0xf7f63549 [ 323.377452][ T4521] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 323.400415][ T4521] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 323.408980][ T4521] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 323.417412][ T4521] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 323.427157][ T4521] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 323.435556][ T4521] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 323.443828][ T4521] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 323.453071][ T4521] [ 323.458009][ T4521] Uninit was stored to memory at: [ 323.463351][ T4521] get_compat_msghdr+0x4fc/0x720 [ 323.468620][ T4521] ___sys_recvmsg+0x18c/0x840 [ 323.473658][ T4521] do_recvmmsg+0x682/0x1180 [ 323.478500][ T4521] __sys_recvmmsg+0x113/0x450 [ 323.484546][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 323.491666][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 323.497217][ T4521] do_fast_syscall_32+0x33/0x70 [ 323.502318][ T4521] do_SYSENTER_32+0x1b/0x20 [ 323.507255][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 323.513900][ T4521] [ 323.516319][ T4521] Uninit was stored to memory at: [ 323.522961][ T4521] get_compat_msghdr+0x4fc/0x720 [ 323.528222][ T4521] ___sys_recvmsg+0x18c/0x840 [ 323.533249][ T4521] do_recvmmsg+0x682/0x1180 [ 323.538806][ T4521] __sys_recvmmsg+0x113/0x450 [ 323.545466][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 323.552951][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 323.558313][ T4521] do_fast_syscall_32+0x33/0x70 [ 323.563676][ T4521] do_SYSENTER_32+0x1b/0x20 [ 323.568315][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 323.575143][ T4521] [ 323.577596][ T4521] Uninit was stored to memory at: [ 323.583254][ T4521] get_compat_msghdr+0x4fc/0x720 [ 323.590518][ T4521] ___sys_recvmsg+0x18c/0x840 [ 323.595464][ T4521] do_recvmmsg+0x682/0x1180 [ 323.601689][ T4521] __sys_recvmmsg+0x113/0x450 [ 323.609134][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 323.616219][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 323.622019][ T4521] do_fast_syscall_32+0x33/0x70 [ 323.627284][ T4521] do_SYSENTER_32+0x1b/0x20 [ 323.632204][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 323.639359][ T4521] [ 323.641852][ T4521] Uninit was stored to memory at: [ 323.647196][ T4521] get_compat_msghdr+0x4fc/0x720 [ 323.652883][ T4521] ___sys_recvmsg+0x18c/0x840 [ 323.657848][ T4521] do_recvmmsg+0x682/0x1180 [ 323.662919][ T4521] __sys_recvmmsg+0x113/0x450 [ 323.667756][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 323.674342][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 323.679700][ T4521] do_fast_syscall_32+0x33/0x70 [ 323.686147][ T4521] do_SYSENTER_32+0x1b/0x20 [ 323.691151][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 323.697770][ T4521] [ 323.700176][ T4521] Uninit was stored to memory at: [ 323.705912][ T4521] get_compat_msghdr+0x4fc/0x720 [ 323.712956][ T4521] ___sys_recvmsg+0x18c/0x840 [ 323.717879][ T4521] do_recvmmsg+0x682/0x1180 [ 323.722619][ T4521] __sys_recvmmsg+0x113/0x450 [ 323.727580][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 323.734075][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 323.739361][ T4521] do_fast_syscall_32+0x33/0x70 [ 323.744595][ T4521] do_SYSENTER_32+0x1b/0x20 [ 323.751899][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 323.758851][ T4521] [ 323.761268][ T4521] Uninit was stored to memory at: [ 323.767817][ T4521] get_compat_msghdr+0x4fc/0x720 [ 323.774650][ T4521] ___sys_recvmsg+0x18c/0x840 [ 323.779660][ T4521] do_recvmmsg+0x682/0x1180 [ 323.784649][ T4521] __sys_recvmmsg+0x113/0x450 [ 323.789539][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 323.796830][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 323.802412][ T4521] do_fast_syscall_32+0x33/0x70 [ 323.807593][ T4521] do_SYSENTER_32+0x1b/0x20 [ 323.812815][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 323.821920][ T4521] [ 323.824421][ T4521] Uninit was stored to memory at: [ 323.829667][ T4521] get_compat_msghdr+0x4fc/0x720 [ 323.834865][ T4521] ___sys_recvmsg+0x18c/0x840 [ 323.839694][ T4521] do_recvmmsg+0x682/0x1180 [ 323.844420][ T4521] __sys_recvmmsg+0x113/0x450 [ 323.849242][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 323.855929][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 323.861268][ T4521] do_fast_syscall_32+0x33/0x70 [ 323.866824][ T4521] do_SYSENTER_32+0x1b/0x20 [ 323.871957][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 323.878579][ T4521] [ 323.880980][ T4521] Local variable msg_sys created at: [ 323.887012][ T4521] do_recvmmsg+0x5c/0x1180 [ 323.891672][ T4521] __sys_recvmmsg+0x113/0x450 [ 323.896836][ T3566] usb 5-1: Invalid ep0 maxpacket: 0 [ 323.933988][ T3563] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 21:57:20 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[], 0x1ec}}, 0x0) [ 323.997590][ T4536] netlink: 312 bytes leftover after parsing attributes in process `syz-executor.1'. [ 324.073378][ T3566] usb 5-1: new high-speed USB device number 24 using dummy_hcd [ 324.193598][ T3566] usb 5-1: Invalid ep0 maxpacket: 0 [ 324.199838][ T3566] usb usb5-port1: unable to enumerate USB device [ 324.214185][ T3565] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71 [ 324.225251][ T3565] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to send software reset: ffffffb9 [ 324.236381][ T3565] asix: probe of 4-1:0.0 failed with error -71 [ 324.376230][ T3566] usb 3-1: USB disconnect, device number 18 [ 324.468404][ T3565] usb 4-1: USB disconnect, device number 16 [ 324.595188][ T119] usb 6-1: USB disconnect, device number 25 [ 325.023836][ T3563] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 325.031611][ T3563] ath9k_htc: Failed to initialize the device [ 325.080301][ T3566] usb 3-1: ath9k_htc: USB layer deinitialized [ 325.110547][ T4521] not chained 480000 origins [ 325.118928][ T4521] CPU: 1 PID: 4521 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 325.131599][ T4521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 325.142992][ T4521] Call Trace: [ 325.146610][ T4521] [ 325.149695][ T4521] dump_stack_lvl+0x1c8/0x256 [ 325.154986][ T4521] dump_stack+0x1a/0x1c [ 325.159739][ T4521] kmsan_internal_chain_origin+0x78/0x120 [ 325.165779][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 325.171944][ T4521] ? ____sys_recvmsg+0x5c1/0x810 [ 325.177020][ T4521] ? ___sys_recvmsg+0x217/0x840 [ 325.182025][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 325.188072][ T4521] ? ____sys_recvmsg+0x5c1/0x810 [ 325.193152][ T4521] ? kfree+0x44/0x980 [ 325.197440][ T4521] ? ___sys_recvmsg+0x248/0x840 [ 325.202550][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 325.208917][ T4521] ? get_compat_msghdr+0x51/0x720 [ 325.214083][ T4521] ? ___sys_recvmsg+0x18c/0x840 [ 325.219440][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 325.225702][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 325.231767][ T4521] ? should_fail+0x3f/0x810 [ 325.236546][ T4521] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 325.242984][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 325.248998][ T4521] __msan_chain_origin+0xbd/0x140 [ 325.254196][ T4521] get_compat_msghdr+0x4fc/0x720 [ 325.259282][ T4521] ___sys_recvmsg+0x18c/0x840 [ 325.264317][ T4521] ? __stack_depot_save+0x21/0x4b0 [ 325.271623][ T4521] ? kmsan_internal_check_memory+0x94/0x530 [ 325.278026][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 325.284129][ T4521] do_recvmmsg+0x682/0x1180 [ 325.288837][ T4521] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 325.295867][ T4521] __sys_recvmmsg+0x113/0x450 [ 325.303651][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 325.310058][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 325.315327][ T4521] ? exit_to_user_mode_prepare+0x119/0x220 [ 325.321505][ T4521] do_fast_syscall_32+0x33/0x70 [ 325.327684][ T4521] do_SYSENTER_32+0x1b/0x20 [ 325.332427][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 325.338965][ T4521] RIP: 0023:0xf7f63549 [ 325.343132][ T4521] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 325.365259][ T4521] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 325.376363][ T4521] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 325.385959][ T4521] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 325.395824][ T4521] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 325.405245][ T4521] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 325.413419][ T4521] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 325.421626][ T4521] [ 325.426736][ T4521] Uninit was stored to memory at: [ 325.431972][ T4521] get_compat_msghdr+0x4fc/0x720 [ 325.437253][ T4521] ___sys_recvmsg+0x18c/0x840 [ 325.442327][ T4521] do_recvmmsg+0x682/0x1180 [ 325.447199][ T4521] __sys_recvmmsg+0x113/0x450 [ 325.452025][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 325.458567][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 325.464032][ T4521] do_fast_syscall_32+0x33/0x70 [ 325.469593][ T4521] do_SYSENTER_32+0x1b/0x20 [ 325.474467][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 325.481098][ T4521] [ 325.483714][ T4521] Uninit was stored to memory at: [ 325.488944][ T4521] get_compat_msghdr+0x4fc/0x720 [ 325.494158][ T4521] ___sys_recvmsg+0x18c/0x840 [ 325.498987][ T4521] do_recvmmsg+0x682/0x1180 [ 325.503795][ T4521] __sys_recvmmsg+0x113/0x450 [ 325.508745][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 325.515503][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 325.520989][ T4521] do_fast_syscall_32+0x33/0x70 [ 325.526257][ T4521] do_SYSENTER_32+0x1b/0x20 [ 325.531068][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 325.537736][ T4521] [ 325.540232][ T4521] Uninit was stored to memory at: [ 325.545618][ T4521] get_compat_msghdr+0x4fc/0x720 [ 325.550698][ T4521] ___sys_recvmsg+0x18c/0x840 [ 325.556011][ T4521] do_recvmmsg+0x682/0x1180 [ 325.560671][ T4521] __sys_recvmmsg+0x113/0x450 [ 325.565699][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 325.572161][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 325.578964][ T4521] do_fast_syscall_32+0x33/0x70 [ 325.586308][ T4521] do_SYSENTER_32+0x1b/0x20 [ 325.592872][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 325.603306][ T4521] [ 325.605729][ T4521] Uninit was stored to memory at: [ 325.611372][ T4521] get_compat_msghdr+0x4fc/0x720 [ 325.616860][ T4521] ___sys_recvmsg+0x18c/0x840 [ 325.621722][ T4521] do_recvmmsg+0x682/0x1180 [ 325.626623][ T4521] __sys_recvmmsg+0x113/0x450 [ 325.631611][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 325.639746][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 325.645434][ T4521] do_fast_syscall_32+0x33/0x70 [ 325.650481][ T4521] do_SYSENTER_32+0x1b/0x20 [ 325.655867][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 325.662497][ T4521] [ 325.665024][ T4521] Uninit was stored to memory at: [ 325.670384][ T4521] get_compat_msghdr+0x4fc/0x720 [ 325.675655][ T4521] ___sys_recvmsg+0x18c/0x840 [ 325.680703][ T4521] do_recvmmsg+0x682/0x1180 [ 325.685685][ T4521] __sys_recvmmsg+0x113/0x450 [ 325.690524][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 325.697201][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 325.702481][ T4521] do_fast_syscall_32+0x33/0x70 [ 325.707646][ T4521] do_SYSENTER_32+0x1b/0x20 [ 325.712413][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 325.719126][ T4521] [ 325.721515][ T4521] Uninit was stored to memory at: [ 325.726826][ T4521] get_compat_msghdr+0x4fc/0x720 [ 325.732415][ T4521] ___sys_recvmsg+0x18c/0x840 [ 325.737412][ T4521] do_recvmmsg+0x682/0x1180 [ 325.742065][ T4521] __sys_recvmmsg+0x113/0x450 [ 325.747160][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 325.753860][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 325.759933][ T4521] do_fast_syscall_32+0x33/0x70 [ 325.765073][ T4521] do_SYSENTER_32+0x1b/0x20 [ 325.769702][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 325.776606][ T4521] [ 325.779264][ T4521] Uninit was stored to memory at: [ 325.785051][ T4521] get_compat_msghdr+0x4fc/0x720 [ 325.791103][ T4521] ___sys_recvmsg+0x18c/0x840 [ 325.798575][ T4521] do_recvmmsg+0x682/0x1180 [ 325.803690][ T4521] __sys_recvmmsg+0x113/0x450 [ 325.809596][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 325.818292][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 325.829133][ T4521] do_fast_syscall_32+0x33/0x70 [ 325.835725][ T4521] do_SYSENTER_32+0x1b/0x20 [ 325.843493][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 325.852576][ T4521] [ 325.855367][ T4521] Local variable msg_sys created at: [ 325.862170][ T4521] do_recvmmsg+0x5c/0x1180 [ 325.867448][ T4521] __sys_recvmmsg+0x113/0x450 [ 326.053681][ T4521] not chained 490000 origins [ 326.058779][ T4521] CPU: 1 PID: 4521 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 326.069269][ T4521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 326.080442][ T4521] Call Trace: [ 326.084112][ T4521] [ 326.089095][ T4521] dump_stack_lvl+0x1c8/0x256 [ 326.096567][ T4521] dump_stack+0x1a/0x1c [ 326.102505][ T4521] kmsan_internal_chain_origin+0x78/0x120 [ 326.110981][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 326.118699][ T4521] ? ____sys_recvmsg+0x5c1/0x810 [ 326.124073][ T4521] ? ___sys_recvmsg+0x217/0x840 [ 326.129116][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 326.136361][ T4521] ? ____sys_recvmsg+0x5c1/0x810 [ 326.145005][ T4521] ? kfree+0x44/0x980 [ 326.149358][ T4521] ? ___sys_recvmsg+0x248/0x840 [ 326.154359][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 326.160390][ T4521] ? get_compat_msghdr+0x51/0x720 [ 326.165572][ T4521] ? ___sys_recvmsg+0x18c/0x840 [ 326.172256][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 326.178323][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 326.184245][ T4521] ? should_fail+0x3f/0x810 [ 326.188867][ T4521] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 326.195728][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 326.202501][ T4521] __msan_chain_origin+0xbd/0x140 [ 326.207816][ T4521] get_compat_msghdr+0x4fc/0x720 [ 326.213263][ T4521] ___sys_recvmsg+0x18c/0x840 [ 326.218065][ T4521] ? __stack_depot_save+0x21/0x4b0 [ 326.223357][ T4521] ? kmsan_internal_check_memory+0x94/0x530 [ 326.230063][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 326.235994][ T4521] do_recvmmsg+0x682/0x1180 [ 326.240989][ T4521] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 326.247572][ T4521] __sys_recvmmsg+0x113/0x450 [ 326.253930][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 326.260297][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 326.265557][ T4521] ? exit_to_user_mode_prepare+0x119/0x220 [ 326.271625][ T4521] do_fast_syscall_32+0x33/0x70 [ 326.276698][ T4521] do_SYSENTER_32+0x1b/0x20 [ 326.281308][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 326.287758][ T4521] RIP: 0023:0xf7f63549 [ 326.292112][ T4521] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 326.314519][ T4521] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 326.325134][ T4521] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 326.333821][ T4521] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 326.342089][ T4521] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 326.350252][ T4521] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 326.358602][ T4521] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 326.366996][ T4521] [ 326.370913][ T4521] Uninit was stored to memory at: [ 326.376448][ T4521] get_compat_msghdr+0x4fc/0x720 [ 326.381628][ T4521] ___sys_recvmsg+0x18c/0x840 [ 326.394040][ T4521] do_recvmmsg+0x682/0x1180 [ 326.398699][ T4521] __sys_recvmmsg+0x113/0x450 [ 326.403713][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 326.410197][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 326.415998][ T4521] do_fast_syscall_32+0x33/0x70 [ 326.421072][ T4521] do_SYSENTER_32+0x1b/0x20 [ 326.425956][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 326.432490][ T4521] [ 326.434983][ T4521] Uninit was stored to memory at: [ 326.440336][ T4521] get_compat_msghdr+0x4fc/0x720 [ 326.445760][ T4521] ___sys_recvmsg+0x18c/0x840 [ 326.451003][ T4521] do_recvmmsg+0x682/0x1180 [ 326.455965][ T4521] __sys_recvmmsg+0x113/0x450 [ 326.462122][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 326.470550][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 326.478938][ T4521] do_fast_syscall_32+0x33/0x70 [ 326.484175][ T4521] do_SYSENTER_32+0x1b/0x20 [ 326.489929][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 326.498305][ T4521] [ 326.501498][ T4521] Uninit was stored to memory at: [ 326.507199][ T4521] get_compat_msghdr+0x4fc/0x720 [ 326.512701][ T4521] ___sys_recvmsg+0x18c/0x840 [ 326.518126][ T4521] do_recvmmsg+0x682/0x1180 [ 326.523481][ T4521] __sys_recvmmsg+0x113/0x450 [ 326.528269][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 326.534771][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 326.540031][ T4521] do_fast_syscall_32+0x33/0x70 [ 326.545404][ T4521] do_SYSENTER_32+0x1b/0x20 [ 326.550457][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 326.558442][ T4521] [ 326.561439][ T4521] Uninit was stored to memory at: [ 326.566867][ T4521] get_compat_msghdr+0x4fc/0x720 [ 326.572035][ T4521] ___sys_recvmsg+0x18c/0x840 [ 326.577029][ T4521] do_recvmmsg+0x682/0x1180 [ 326.581653][ T4521] __sys_recvmmsg+0x113/0x450 [ 326.586623][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 326.593214][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 326.598457][ T4521] do_fast_syscall_32+0x33/0x70 [ 326.603937][ T4521] do_SYSENTER_32+0x1b/0x20 [ 326.608774][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 326.616851][ T4521] [ 326.619312][ T4521] Uninit was stored to memory at: [ 326.624658][ T4521] get_compat_msghdr+0x4fc/0x720 [ 326.629802][ T4521] ___sys_recvmsg+0x18c/0x840 [ 326.635652][ T4521] do_recvmmsg+0x682/0x1180 [ 326.640586][ T4521] __sys_recvmmsg+0x113/0x450 [ 326.645799][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 326.653297][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 326.658586][ T4521] do_fast_syscall_32+0x33/0x70 [ 326.663792][ T4521] do_SYSENTER_32+0x1b/0x20 [ 326.668435][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 326.675274][ T4521] [ 326.677683][ T4521] Uninit was stored to memory at: [ 326.683298][ T4521] get_compat_msghdr+0x4fc/0x720 [ 326.688575][ T4521] ___sys_recvmsg+0x18c/0x840 [ 326.693760][ T4521] do_recvmmsg+0x682/0x1180 [ 326.698891][ T4521] __sys_recvmmsg+0x113/0x450 [ 326.704271][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 326.710953][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 326.716546][ T4521] do_fast_syscall_32+0x33/0x70 [ 326.721635][ T4521] do_SYSENTER_32+0x1b/0x20 [ 326.726515][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 326.733169][ T4521] [ 326.735574][ T4521] Uninit was stored to memory at: [ 326.740746][ T4521] get_compat_msghdr+0x4fc/0x720 [ 326.746114][ T4521] ___sys_recvmsg+0x18c/0x840 [ 326.751026][ T4521] do_recvmmsg+0x682/0x1180 [ 326.755788][ T4521] __sys_recvmmsg+0x113/0x450 [ 326.761033][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 326.767712][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 326.773152][ T4521] do_fast_syscall_32+0x33/0x70 [ 326.778838][ T4521] do_SYSENTER_32+0x1b/0x20 [ 326.783715][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 326.790320][ T4521] [ 326.792677][ T4521] Local variable msg_sys created at: [ 326.798354][ T4521] do_recvmmsg+0x5c/0x1180 [ 326.803037][ T4521] __sys_recvmmsg+0x113/0x450 [ 326.981357][ T4521] not chained 500000 origins [ 326.986397][ T4521] CPU: 0 PID: 4521 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 326.997305][ T4521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 327.008826][ T4521] Call Trace: [ 327.012149][ T4521] [ 327.015117][ T4521] dump_stack_lvl+0x1c8/0x256 [ 327.019925][ T4521] dump_stack+0x1a/0x1c [ 327.024751][ T4521] kmsan_internal_chain_origin+0x78/0x120 [ 327.031655][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 327.037850][ T4521] ? ____sys_recvmsg+0x5c1/0x810 [ 327.043010][ T4521] ? ___sys_recvmsg+0x217/0x840 [ 327.048097][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 327.054508][ T4521] ? ____sys_recvmsg+0x5c1/0x810 [ 327.059745][ T4521] ? kfree+0x44/0x980 [ 327.063875][ T4521] ? ___sys_recvmsg+0x248/0x840 [ 327.069102][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 327.075030][ T4521] ? get_compat_msghdr+0x51/0x720 [ 327.080148][ T4521] ? ___sys_recvmsg+0x18c/0x840 [ 327.085367][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 327.091511][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 327.097520][ T4521] ? should_fail+0x3f/0x810 [ 327.102275][ T4521] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 327.108829][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 327.114851][ T4521] __msan_chain_origin+0xbd/0x140 [ 327.120245][ T4521] get_compat_msghdr+0x4fc/0x720 [ 327.125822][ T4521] ___sys_recvmsg+0x18c/0x840 [ 327.131903][ T4521] ? __stack_depot_save+0x21/0x4b0 [ 327.137224][ T4521] ? kmsan_internal_check_memory+0x94/0x530 [ 327.143443][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 327.149636][ T4521] do_recvmmsg+0x682/0x1180 [ 327.154425][ T4521] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 327.160942][ T4521] __sys_recvmmsg+0x113/0x450 [ 327.165716][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 327.172824][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 327.178157][ T4521] ? exit_to_user_mode_prepare+0x119/0x220 [ 327.184115][ T4521] do_fast_syscall_32+0x33/0x70 [ 327.189068][ T4521] do_SYSENTER_32+0x1b/0x20 [ 327.193758][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 327.201839][ T4521] RIP: 0023:0xf7f63549 [ 327.207256][ T4521] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 327.229992][ T4521] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 327.241379][ T4521] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 327.249462][ T4521] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 327.257497][ T4521] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 327.265587][ T4521] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 327.273944][ T4521] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 327.282385][ T4521] [ 327.286095][ T4521] Uninit was stored to memory at: [ 327.291604][ T4521] get_compat_msghdr+0x4fc/0x720 [ 327.297618][ T4521] ___sys_recvmsg+0x18c/0x840 [ 327.302545][ T4521] do_recvmmsg+0x682/0x1180 [ 327.307333][ T4521] __sys_recvmmsg+0x113/0x450 [ 327.312517][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 327.319063][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 327.324693][ T4521] do_fast_syscall_32+0x33/0x70 [ 327.329796][ T4521] do_SYSENTER_32+0x1b/0x20 [ 327.334586][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 327.341732][ T4521] [ 327.344289][ T4521] Uninit was stored to memory at: [ 327.349595][ T4521] get_compat_msghdr+0x4fc/0x720 [ 327.355002][ T4521] ___sys_recvmsg+0x18c/0x840 [ 327.360287][ T4521] do_recvmmsg+0x682/0x1180 [ 327.365532][ T4521] __sys_recvmmsg+0x113/0x450 [ 327.370980][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 327.377634][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 327.383080][ T4521] do_fast_syscall_32+0x33/0x70 [ 327.388172][ T4521] do_SYSENTER_32+0x1b/0x20 [ 327.392924][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 327.399827][ T4521] [ 327.402378][ T4521] Uninit was stored to memory at: [ 327.407879][ T4521] get_compat_msghdr+0x4fc/0x720 [ 327.413182][ T4521] ___sys_recvmsg+0x18c/0x840 [ 327.418353][ T4521] do_recvmmsg+0x682/0x1180 [ 327.423299][ T4521] __sys_recvmmsg+0x113/0x450 [ 327.428531][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 327.435251][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 327.440529][ T4521] do_fast_syscall_32+0x33/0x70 [ 327.445925][ T4521] do_SYSENTER_32+0x1b/0x20 [ 327.450664][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 327.462504][ T4521] [ 327.465130][ T4521] Uninit was stored to memory at: [ 327.470438][ T4521] get_compat_msghdr+0x4fc/0x720 [ 327.475690][ T4521] ___sys_recvmsg+0x18c/0x840 [ 327.481328][ T4521] do_recvmmsg+0x682/0x1180 [ 327.486378][ T4521] __sys_recvmmsg+0x113/0x450 [ 327.491364][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 327.497987][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 327.504250][ T4521] do_fast_syscall_32+0x33/0x70 [ 327.509230][ T4521] do_SYSENTER_32+0x1b/0x20 [ 327.514785][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 327.521561][ T4521] [ 327.524137][ T4521] Uninit was stored to memory at: [ 327.529572][ T4521] get_compat_msghdr+0x4fc/0x720 [ 327.534712][ T4521] ___sys_recvmsg+0x18c/0x840 [ 327.539713][ T4521] do_recvmmsg+0x682/0x1180 [ 327.544608][ T4521] __sys_recvmmsg+0x113/0x450 [ 327.549417][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 327.555898][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 327.561210][ T4521] do_fast_syscall_32+0x33/0x70 [ 327.566357][ T4521] do_SYSENTER_32+0x1b/0x20 [ 327.571065][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 327.577716][ T4521] [ 327.580235][ T4521] Uninit was stored to memory at: [ 327.587135][ T4521] get_compat_msghdr+0x4fc/0x720 [ 327.595871][ T4521] ___sys_recvmsg+0x18c/0x840 [ 327.602593][ T4521] do_recvmmsg+0x682/0x1180 [ 327.607323][ T4521] __sys_recvmmsg+0x113/0x450 [ 327.612582][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 327.622903][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 327.628264][ T4521] do_fast_syscall_32+0x33/0x70 [ 327.633544][ T4521] do_SYSENTER_32+0x1b/0x20 [ 327.638171][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 327.645910][ T4521] [ 327.648598][ T4521] Uninit was stored to memory at: [ 327.654701][ T4521] get_compat_msghdr+0x4fc/0x720 [ 327.659803][ T4521] ___sys_recvmsg+0x18c/0x840 [ 327.664737][ T4521] do_recvmmsg+0x682/0x1180 [ 327.670498][ T4521] __sys_recvmmsg+0x113/0x450 [ 327.675483][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 327.682397][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 327.688738][ T4521] do_fast_syscall_32+0x33/0x70 [ 327.694367][ T4521] do_SYSENTER_32+0x1b/0x20 [ 327.699499][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 327.706692][ T4521] [ 327.709080][ T4521] Local variable msg_sys created at: [ 327.714884][ T4521] do_recvmmsg+0x5c/0x1180 [ 327.719785][ T4521] __sys_recvmmsg+0x113/0x450 [ 327.897515][ T4521] not chained 510000 origins [ 327.902316][ T4521] CPU: 1 PID: 4521 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 327.912845][ T4521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 327.923011][ T4521] Call Trace: [ 327.926367][ T4521] [ 327.929383][ T4521] dump_stack_lvl+0x1c8/0x256 [ 327.934461][ T4521] dump_stack+0x1a/0x1c [ 327.938786][ T4521] kmsan_internal_chain_origin+0x78/0x120 [ 327.944646][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 327.950588][ T4521] ? ____sys_recvmsg+0x5c1/0x810 [ 327.955618][ T4521] ? ___sys_recvmsg+0x217/0x840 [ 327.961051][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 327.967973][ T4521] ? ____sys_recvmsg+0x5c1/0x810 [ 327.973012][ T4521] ? kfree+0x44/0x980 [ 327.977181][ T4521] ? ___sys_recvmsg+0x248/0x840 [ 327.982146][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 327.988886][ T4521] ? get_compat_msghdr+0x51/0x720 [ 327.994152][ T4521] ? ___sys_recvmsg+0x18c/0x840 [ 327.999130][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 328.005248][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 328.011196][ T4521] ? should_fail+0x3f/0x810 [ 328.015917][ T4521] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 328.022549][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 328.028858][ T4521] __msan_chain_origin+0xbd/0x140 [ 328.034878][ T4521] get_compat_msghdr+0x4fc/0x720 [ 328.040138][ T4521] ___sys_recvmsg+0x18c/0x840 [ 328.045422][ T4521] ? __stack_depot_save+0x21/0x4b0 [ 328.051427][ T4521] ? kmsan_internal_check_memory+0x94/0x530 [ 328.057556][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 328.063910][ T4521] do_recvmmsg+0x682/0x1180 [ 328.069162][ T4521] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 328.076017][ T4521] __sys_recvmmsg+0x113/0x450 [ 328.081337][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 328.088847][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 328.095134][ T4521] ? exit_to_user_mode_prepare+0x119/0x220 [ 328.103489][ T4521] do_fast_syscall_32+0x33/0x70 [ 328.108591][ T4521] do_SYSENTER_32+0x1b/0x20 [ 328.113300][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 328.120916][ T4521] RIP: 0023:0xf7f63549 [ 328.125158][ T4521] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 328.145354][ T4521] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 328.154017][ T4521] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 328.162349][ T4521] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 328.170415][ T4521] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 328.178621][ T4521] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 328.186802][ T4521] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 328.195422][ T4521] [ 328.199557][ T4521] Uninit was stored to memory at: [ 328.204926][ T4521] get_compat_msghdr+0x4fc/0x720 [ 328.210018][ T4521] ___sys_recvmsg+0x18c/0x840 [ 328.214991][ T4521] do_recvmmsg+0x682/0x1180 [ 328.219706][ T4521] __sys_recvmmsg+0x113/0x450 [ 328.224692][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 328.231188][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 328.236803][ T4521] do_fast_syscall_32+0x33/0x70 [ 328.241829][ T4521] do_SYSENTER_32+0x1b/0x20 [ 328.246977][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 328.254745][ T4521] [ 328.257159][ T4521] Uninit was stored to memory at: [ 328.262386][ T4521] get_compat_msghdr+0x4fc/0x720 [ 328.267867][ T4521] ___sys_recvmsg+0x18c/0x840 [ 328.273553][ T4521] do_recvmmsg+0x682/0x1180 [ 328.278840][ T4521] __sys_recvmmsg+0x113/0x450 [ 328.284135][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 328.290735][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 328.296293][ T4521] do_fast_syscall_32+0x33/0x70 [ 328.301566][ T4521] do_SYSENTER_32+0x1b/0x20 [ 328.306583][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 328.313523][ T4521] [ 328.315925][ T4521] Uninit was stored to memory at: [ 328.321109][ T4521] get_compat_msghdr+0x4fc/0x720 [ 328.326445][ T4521] ___sys_recvmsg+0x18c/0x840 [ 328.331455][ T4521] do_recvmmsg+0x682/0x1180 [ 328.336329][ T4521] __sys_recvmmsg+0x113/0x450 [ 328.341153][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 328.348013][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 328.353844][ T4521] do_fast_syscall_32+0x33/0x70 [ 328.359842][ T4521] do_SYSENTER_32+0x1b/0x20 [ 328.364763][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 328.371466][ T4521] [ 328.374218][ T4521] Uninit was stored to memory at: [ 328.380170][ T4521] get_compat_msghdr+0x4fc/0x720 [ 328.386058][ T4521] ___sys_recvmsg+0x18c/0x840 [ 328.391029][ T4521] do_recvmmsg+0x682/0x1180 [ 328.395775][ T4521] __sys_recvmmsg+0x113/0x450 [ 328.400570][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 328.407319][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 328.412932][ T4521] do_fast_syscall_32+0x33/0x70 [ 328.418204][ T4521] do_SYSENTER_32+0x1b/0x20 [ 328.422972][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 328.429766][ T4521] [ 328.432135][ T4521] Uninit was stored to memory at: [ 328.437877][ T4521] get_compat_msghdr+0x4fc/0x720 [ 328.443187][ T4521] ___sys_recvmsg+0x18c/0x840 [ 328.448712][ T4521] do_recvmmsg+0x682/0x1180 [ 328.453822][ T4521] __sys_recvmmsg+0x113/0x450 [ 328.459153][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 328.470781][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 328.476336][ T4521] do_fast_syscall_32+0x33/0x70 [ 328.481505][ T4521] do_SYSENTER_32+0x1b/0x20 [ 328.486773][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 328.493889][ T4521] [ 328.496395][ T4521] Uninit was stored to memory at: [ 328.502492][ T4521] get_compat_msghdr+0x4fc/0x720 [ 328.507878][ T4521] ___sys_recvmsg+0x18c/0x840 [ 328.512992][ T4521] do_recvmmsg+0x682/0x1180 [ 328.518148][ T4521] __sys_recvmmsg+0x113/0x450 [ 328.523798][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 328.530708][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 328.536087][ T4521] do_fast_syscall_32+0x33/0x70 [ 328.542049][ T4521] do_SYSENTER_32+0x1b/0x20 [ 328.547245][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 328.553944][ T4521] [ 328.556894][ T4521] Uninit was stored to memory at: [ 328.562078][ T4521] get_compat_msghdr+0x4fc/0x720 [ 328.567258][ T4521] ___sys_recvmsg+0x18c/0x840 [ 328.572096][ T4521] do_recvmmsg+0x682/0x1180 [ 328.576936][ T4521] __sys_recvmmsg+0x113/0x450 [ 328.581752][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 328.591942][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 328.600935][ T4521] do_fast_syscall_32+0x33/0x70 [ 328.607203][ T4521] do_SYSENTER_32+0x1b/0x20 [ 328.612652][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 328.620280][ T4521] [ 328.622679][ T4521] Local variable msg_sys created at: [ 328.628863][ T4521] do_recvmmsg+0x5c/0x1180 [ 328.633979][ T4521] __sys_recvmmsg+0x113/0x450 [ 328.881810][ T4521] not chained 520000 origins [ 328.886700][ T4521] CPU: 0 PID: 4521 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 328.898443][ T4521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 328.909029][ T4521] Call Trace: [ 328.912390][ T4521] [ 328.915724][ T4521] dump_stack_lvl+0x1c8/0x256 [ 328.920528][ T4521] dump_stack+0x1a/0x1c [ 328.924805][ T4521] kmsan_internal_chain_origin+0x78/0x120 [ 328.930692][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 328.936798][ T4521] ? ____sys_recvmsg+0x5c1/0x810 [ 328.941907][ T4521] ? ___sys_recvmsg+0x217/0x840 [ 328.947214][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 328.953549][ T4521] ? ____sys_recvmsg+0x5c1/0x810 [ 328.959169][ T4521] ? kfree+0x44/0x980 [ 328.963433][ T4521] ? ___sys_recvmsg+0x248/0x840 [ 328.968486][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 328.975278][ T4521] ? get_compat_msghdr+0x51/0x720 [ 328.981043][ T4521] ? ___sys_recvmsg+0x18c/0x840 [ 328.986163][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 328.992604][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 328.999095][ T4521] ? should_fail+0x3f/0x810 [ 329.004029][ T4521] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 329.010449][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 329.016388][ T4521] __msan_chain_origin+0xbd/0x140 [ 329.023330][ T4521] get_compat_msghdr+0x4fc/0x720 [ 329.030411][ T4521] ___sys_recvmsg+0x18c/0x840 [ 329.037510][ T4521] ? __stack_depot_save+0x21/0x4b0 [ 329.045445][ T4521] ? kmsan_internal_check_memory+0x94/0x530 [ 329.052534][ T4521] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 329.060238][ T4521] do_recvmmsg+0x682/0x1180 [ 329.065161][ T4521] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 329.072351][ T4521] __sys_recvmmsg+0x113/0x450 [ 329.078183][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 329.085911][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 329.091903][ T4521] ? exit_to_user_mode_prepare+0x119/0x220 [ 329.101093][ T4521] do_fast_syscall_32+0x33/0x70 [ 329.107370][ T4521] do_SYSENTER_32+0x1b/0x20 [ 329.112160][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 329.118785][ T4521] RIP: 0023:0xf7f63549 [ 329.123203][ T4521] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 329.144026][ T4521] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 329.153212][ T4521] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 329.161676][ T4521] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 329.169843][ T4521] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 329.177898][ T4521] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 329.186334][ T4521] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 329.194556][ T4521] [ 329.198021][ T4521] Uninit was stored to memory at: [ 329.204026][ T4521] get_compat_msghdr+0x4fc/0x720 [ 329.209364][ T4521] ___sys_recvmsg+0x18c/0x840 [ 329.214261][ T4521] do_recvmmsg+0x682/0x1180 [ 329.218907][ T4521] __sys_recvmmsg+0x113/0x450 [ 329.223926][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 329.230526][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 329.235934][ T4521] do_fast_syscall_32+0x33/0x70 [ 329.241035][ T4521] do_SYSENTER_32+0x1b/0x20 [ 329.245795][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 329.252399][ T4521] [ 329.254960][ T4521] Uninit was stored to memory at: [ 329.260611][ T4521] get_compat_msghdr+0x4fc/0x720 [ 329.265831][ T4521] ___sys_recvmsg+0x18c/0x840 [ 329.272155][ T4521] do_recvmmsg+0x682/0x1180 [ 329.277403][ T4521] __sys_recvmmsg+0x113/0x450 [ 329.282205][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 329.288770][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 329.294200][ T4521] do_fast_syscall_32+0x33/0x70 [ 329.299751][ T4521] do_SYSENTER_32+0x1b/0x20 [ 329.304992][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 329.311538][ T4521] [ 329.314068][ T4521] Uninit was stored to memory at: [ 329.319275][ T4521] get_compat_msghdr+0x4fc/0x720 [ 329.326050][ T4521] ___sys_recvmsg+0x18c/0x840 [ 329.333502][ T4521] do_recvmmsg+0x682/0x1180 [ 329.338179][ T4521] __sys_recvmmsg+0x113/0x450 [ 329.343222][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 329.350521][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 329.356065][ T4521] do_fast_syscall_32+0x33/0x70 [ 329.361174][ T4521] do_SYSENTER_32+0x1b/0x20 [ 329.366286][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 329.373202][ T4521] [ 329.375615][ T4521] Uninit was stored to memory at: [ 329.380868][ T4521] get_compat_msghdr+0x4fc/0x720 [ 329.386102][ T4521] ___sys_recvmsg+0x18c/0x840 [ 329.391105][ T4521] do_recvmmsg+0x682/0x1180 [ 329.396043][ T4521] __sys_recvmmsg+0x113/0x450 [ 329.401119][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 329.407622][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 329.413101][ T4521] do_fast_syscall_32+0x33/0x70 [ 329.418085][ T4521] do_SYSENTER_32+0x1b/0x20 [ 329.423206][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 329.429731][ T4521] [ 329.432177][ T4521] Uninit was stored to memory at: [ 329.437521][ T4521] get_compat_msghdr+0x4fc/0x720 [ 329.442598][ T4521] ___sys_recvmsg+0x18c/0x840 [ 329.447752][ T4521] do_recvmmsg+0x682/0x1180 [ 329.452929][ T4521] __sys_recvmmsg+0x113/0x450 [ 329.458549][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 329.466063][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 329.471740][ T4521] do_fast_syscall_32+0x33/0x70 [ 329.476948][ T4521] do_SYSENTER_32+0x1b/0x20 [ 329.481663][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 329.488306][ T4521] [ 329.490714][ T4521] Uninit was stored to memory at: [ 329.496382][ T4521] get_compat_msghdr+0x4fc/0x720 [ 329.501632][ T4521] ___sys_recvmsg+0x18c/0x840 [ 329.506659][ T4521] do_recvmmsg+0x682/0x1180 [ 329.511479][ T4521] __sys_recvmmsg+0x113/0x450 [ 329.517183][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 329.524266][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 329.529765][ T4521] do_fast_syscall_32+0x33/0x70 [ 329.534820][ T4521] do_SYSENTER_32+0x1b/0x20 [ 329.539445][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 329.546063][ T4521] [ 329.548754][ T4521] Uninit was stored to memory at: [ 329.554096][ T4521] get_compat_msghdr+0x4fc/0x720 [ 329.559329][ T4521] ___sys_recvmsg+0x18c/0x840 [ 329.565913][ T4521] do_recvmmsg+0x682/0x1180 [ 329.573548][ T4521] __sys_recvmmsg+0x113/0x450 [ 329.578793][ T4521] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 329.585654][ T4521] __do_fast_syscall_32+0xa2/0x100 [ 329.591180][ T4521] do_fast_syscall_32+0x33/0x70 [ 329.596968][ T4521] do_SYSENTER_32+0x1b/0x20 [ 329.605855][ T4521] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 329.613087][ T4521] [ 329.615655][ T4521] Local variable msg_sys created at: [ 329.623074][ T4521] do_recvmmsg+0x5c/0x1180 [ 329.628016][ T4521] __sys_recvmmsg+0x113/0x450 21:57:25 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000003c0)=0xae) prlimit64(0x0, 0x3, &(0x7f0000000280), &(0x7f0000000300)) r3 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r3, &(0x7f00000000c0)={0x2, 0x4e20, @empty}, 0x10) sendto$inet(r3, &(0x7f0000000140), 0xffffffffffffff58, 0x20008008, &(0x7f0000000100)={0x2, 0x4e20}, 0x10) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x40000, 0x6, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef0100010000", 0x3f, 0x400}, {&(0x7f0000001f40)}, {0x0, 0x0, 0xbff}, {0x0}, {0x0, 0x0, 0x2}, {0x0, 0x0, 0x80000000000000}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="00da9bccad002100000400001f2b6fe2f96a3f6d2f93ca9700b41d3200000000e61dc18e8c44810000e4259e66932f75a7e35b9cc4c0e894a793926020f869c80184d3c69b0200000067c4eb317d9510c86b996c4c95074763bcffff1b27d72d69e41d5490584127f1be46d68441f24cc08bc114b8640a1c284a042bad52ed8715cb1335cc80259162dda27f90d1947ae4d82b1aa0b548e7393f3e00bc4cc5b3e3c8219821d391264cefcf9faad2b4077e1ebd400df5353093c588708eaeebb789e308a53a50e9c16d7ad1c27b4952e4dc878a3cf617e0558e6a4835afa1ac000000009e9084343c6ed98d00f15eaf0131f5b4136929ed31bdecd21d59ccdb410dd93aa5079d6be21e9b112ef80bdd651f64988663add3343db6ad9e04f5b5eec29b19766749b8801cfb90e1aed6002a74c5081cb3cd8433e4f5c57aa4e64917abef7028d07ed6039c9f08efd7d996a5be6c9a15c6cbcdce39c469faf34d80b5e3633c078ce7d7522ffdaadd9d3d7ab33fce554e2150459954ac9bfcbe5d28ec65524a218b229a40d3b7c9949a617dbe4913dd2e1c383e83fd2ed7b3266a7fef1e0c9fb0f4870bcfc981618782a42ade56271308cea1595bc156a087e038bb447c623d3f0500cbacf9af1c93d1be01bc0b90d0a13edf05702e43ce8268af172e049a5a9a6ca77b0dd3cf48f73f27079a8743644e426be045aa4428c13ebec99f3cc5a269b4d50c077a68af9e8cd7d3ebd646719323fd11e3ac294159ddd9dfda99ea960ebf781a6c6f84de13d1568023f79708e7cc3e5c7a25b1f13ac3ca08bf39810d14b3a7bf2e40c94e8586dbae0e6f5e5379700eeabe00c6ba0ed79c984f042c3c76623c4c", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) 21:57:25 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[], 0x1ec}}, 0x0) 21:57:25 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x2c, &(0x7f0000000c40)={0x0, 0x0, 0xab, {0xab, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab91cd7abf7a917f376386f7e92afc65e75c880a55d2877146ab5f476c1287ecb3e4003547007c60a0466f77cc3abce7d506197b7602e5face683fd5b62746db4fde2e52887d025b1d182565df701612bbacca6413"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) 21:57:25 executing program 5: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x925, 0x8888, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x6, {[@local, @main=@item_4={0x3, 0x0, 0x0, "8b707542"}]}}, 0x0}, 0x0) 21:57:25 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x4f, 0x92, 0xb9, 0x8, 0x1557, 0x7720, 0xb7eb, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x27, 0x85, 0xe6}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000040)={0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b00)={0x40, 0x13, 0x6, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x40, 0x19, 0x2, "a8cd"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 21:57:25 executing program 2: r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000300)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x8, &(0x7f0000000380)=@generic={0x0, 0x0, 0x0, "398027db"}) 21:57:26 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[], 0x1ec}}, 0x0) [ 330.173743][ T3561] usb 4-1: new high-speed USB device number 17 using dummy_hcd [ 330.191377][ T3619] usb 5-1: new high-speed USB device number 25 using dummy_hcd [ 330.209200][ T3563] usb 3-1: new high-speed USB device number 19 using dummy_hcd [ 330.217380][ T119] usb 6-1: new high-speed USB device number 26 using dummy_hcd 21:57:26 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB], 0x1ec}}, 0x0) [ 330.367681][ T4556] loop0: detected capacity change from 0 to 512 [ 330.384265][ T3619] usb 5-1: device descriptor read/64, error 18 [ 330.443048][ T3561] usb 4-1: Using ep0 maxpacket: 8 [ 330.493645][ T4556] EXT4-fs (loop0): invalid inodes per group: 67108896 [ 330.493645][ T4556] [ 330.565054][ T3561] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 330.574868][ T3561] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 330.599136][ T3561] usb 4-1: config 0 descriptor?? [ 330.640104][ T119] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 330.652811][ T119] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 330.653307][ T3619] usb 5-1: new high-speed USB device number 26 using dummy_hcd [ 330.663887][ T119] usb 6-1: New USB device found, idVendor=0925, idProduct=8888, bcdDevice= 0.00 [ 330.682274][ T119] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 21:57:26 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB], 0x1ec}}, 0x0) [ 330.748867][ T119] usb 6-1: config 0 descriptor?? [ 330.832362][ T119] usbhid 6-1:0.0: can't add hid device: -22 [ 330.839549][ T119] usbhid: probe of 6-1:0.0 failed with error -22 [ 330.858513][ T3619] usb 5-1: device descriptor read/64, error 18 [ 330.894661][ T3563] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 330.905532][ T3563] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 330.913891][ T3563] usb 3-1: Product: syz [ 330.918361][ T3563] usb 3-1: Manufacturer: syz [ 330.923448][ T3563] usb 3-1: SerialNumber: syz [ 330.987764][ T3619] usb usb5-port1: attempt power cycle [ 330.996663][ T3563] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested 21:57:27 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000003c0)=0xae) prlimit64(0x0, 0x3, &(0x7f0000000280), &(0x7f0000000300)) r3 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r3, &(0x7f00000000c0)={0x2, 0x4e20, @empty}, 0x10) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x40000, 0x6, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef0100010000", 0x3f, 0x400}, {&(0x7f0000001f40)}, {0x0, 0x0, 0xbff}, {0x0}, {0x0, 0x0, 0x2}, {0x0, 0x0, 0x80000000000000}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="00da9bccad002100000400001f2b6fe2f96a3f6d2f93ca9700b41d3200000000e61dc18e8c44810000e4259e66932f75a7e35b9cc4c0e894a793926020f869c80184d3c69b0200000067c4eb317d9510c86b996c4c95074763bcffff1b27d72d69e41d5490584127f1be46d68441f24cc08bc114b8640a1c284a042bad52ed8715cb1335cc80259162dda27f90d1947ae4d82b1aa0b548e7393f3e00bc4cc5b3e3c8219821d391264cefcf9faad2b4077e1ebd400df5353093c588708eaeebb789e308a53a50e9c16d7ad1c27b4952e4dc878a3cf617e0558e6a4835afa1ac000000009e9084343c6ed98d00f15eaf0131f5b4136929ed31bdecd21d59ccdb410dd93aa5079d6be21e9b112ef80bdd651f64988663add3343db6ad9e04f5b5eec29b19766749b8801cfb90e1aed6002a74c5081cb3cd8433e4f5c57aa4e64917abef7028d07ed6039c9f08efd7d996a5be6c9a15c6cbcdce39c469faf34d80b5e3633c078ce7d7522ffdaadd9d3d7ab33fce554e2150459954ac9bfcbe5d28ec65524a218b229a40d3b7c9949a617dbe4913dd2e1c383e83fd2ed7b3266a7fef1e0c9fb0f4870bcfc981618782a42ade56271308cea1595bc156a087e038bb447c623d3f0500cbacf9af1c93d1be01bc0b90d0a13edf05702e43ce8268af172e049a5a9a6ca77b0dd3cf48f73f27079a8743644e426be045aa4428c13ebec99f3cc5a269b4d50c077a68af9e8cd7d3ebd646719323fd11e3ac294159ddd9dfda99ea960ebf781a6c6f84de13d1568023f79708e7cc3e5c7a25b1f13ac3ca08bf39810d14b3a7bf2e40c94e8586dbae0e6f5e5379700eeabe00c6ba0ed79c984f042c3c76623c4c", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) 21:57:27 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB], 0x1ec}}, 0x0) 21:57:27 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB="ec010000190001002dbd7000fcdbdf25fc020000000000000000010000c0"], 0x1ec}}, 0x0) [ 331.403061][ T3619] usb 5-1: new high-speed USB device number 27 using dummy_hcd [ 331.494077][ T3619] usb 5-1: Invalid ep0 maxpacket: 0 [ 331.619414][ T4570] loop0: detected capacity change from 0 to 512 [ 331.621344][ T4572] netlink: 312 bytes leftover after parsing attributes in process `syz-executor.1'. [ 331.649943][ T119] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 331.664164][ T3619] usb 5-1: new high-speed USB device number 28 using dummy_hcd [ 331.690303][ T4570] EXT4-fs (loop0): invalid inodes per group: 67108896 [ 331.690303][ T4570] 21:57:27 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB="ec010000190001002dbd7000fcdbdf25fc020000000000000000010000c0"], 0x1ec}}, 0x0) [ 331.774337][ T3619] usb 5-1: Invalid ep0 maxpacket: 0 [ 331.791182][ T3619] usb usb5-port1: unable to enumerate USB device [ 331.983626][ T3561] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71 [ 331.994801][ T3561] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to send software reset: ffffffb9 [ 332.006954][ T3561] asix: probe of 4-1:0.0 failed with error -71 [ 332.023825][ T4574] netlink: 312 bytes leftover after parsing attributes in process `syz-executor.1'. [ 332.083379][ T3563] usb 3-1: USB disconnect, device number 19 [ 332.129007][ T3561] usb 4-1: USB disconnect, device number 17 21:57:28 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB="ec010000190001002dbd7000fcdbdf25fc020000000000000000010000c0"], 0x1ec}}, 0x0) [ 332.412024][ T4577] netlink: 312 bytes leftover after parsing attributes in process `syz-executor.1'. [ 332.520541][ T4569] not chained 530000 origins [ 332.526663][ T4569] CPU: 1 PID: 4569 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 332.538722][ T4569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 332.549961][ T4569] Call Trace: [ 332.553684][ T4569] [ 332.556735][ T4569] dump_stack_lvl+0x1c8/0x256 [ 332.561629][ T4569] dump_stack+0x1a/0x1c [ 332.565981][ T4569] kmsan_internal_chain_origin+0x78/0x120 [ 332.572260][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 332.578450][ T4569] ? ____sys_recvmsg+0x5c1/0x810 [ 332.584597][ T4569] ? ___sys_recvmsg+0x217/0x840 [ 332.589713][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 332.595701][ T4569] ? ____sys_recvmsg+0x5c1/0x810 [ 332.601427][ T4569] ? kfree+0x44/0x980 [ 332.605585][ T4569] ? ___sys_recvmsg+0x248/0x840 [ 332.610597][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 332.616590][ T4569] ? get_compat_msghdr+0x51/0x720 [ 332.621856][ T4569] ? ___sys_recvmsg+0x18c/0x840 [ 332.626860][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 332.632876][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 332.639221][ T4569] ? should_fail+0x3f/0x810 [ 332.644000][ T4569] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 332.650958][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 332.657111][ T4569] __msan_chain_origin+0xbd/0x140 [ 332.662331][ T4569] get_compat_msghdr+0x4fc/0x720 [ 332.667471][ T4569] ___sys_recvmsg+0x18c/0x840 [ 332.672308][ T4569] ? __stack_depot_save+0x21/0x4b0 [ 332.677865][ T4569] ? kmsan_internal_check_memory+0x94/0x530 [ 332.683964][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 332.689975][ T4569] do_recvmmsg+0x682/0x1180 [ 332.694824][ T4569] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 332.702638][ T4569] __sys_recvmmsg+0x113/0x450 [ 332.707570][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 332.713991][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 332.719749][ T4569] ? exit_to_user_mode_prepare+0x119/0x220 [ 332.725823][ T4569] do_fast_syscall_32+0x33/0x70 [ 332.730827][ T4569] do_SYSENTER_32+0x1b/0x20 [ 332.735459][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 332.742336][ T4569] RIP: 0023:0xf7f63549 [ 332.746535][ T4569] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 332.766496][ T4569] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 332.775131][ T4569] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 332.783210][ T4569] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 332.791277][ T4569] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 332.799558][ T4569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 332.809056][ T4569] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 332.817240][ T4569] [ 332.821326][ T119] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 332.827625][ T4569] Uninit was stored to memory at: [ 332.829131][ T119] ath9k_htc: Failed to initialize the device [ 332.833639][ T4569] get_compat_msghdr+0x4fc/0x720 [ 332.845234][ T4569] ___sys_recvmsg+0x18c/0x840 [ 332.850077][ T4569] do_recvmmsg+0x682/0x1180 [ 332.854642][ T3563] usb 3-1: ath9k_htc: USB layer deinitialized [ 332.854978][ T4569] __sys_recvmmsg+0x113/0x450 [ 332.868353][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 332.875498][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 332.882617][ T4569] do_fast_syscall_32+0x33/0x70 [ 332.889483][ T4569] do_SYSENTER_32+0x1b/0x20 [ 332.894631][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 332.901277][ T4569] [ 332.903802][ T4569] Uninit was stored to memory at: [ 332.909379][ T4569] get_compat_msghdr+0x4fc/0x720 [ 332.914583][ T4569] ___sys_recvmsg+0x18c/0x840 [ 332.919484][ T4569] do_recvmmsg+0x682/0x1180 [ 332.924448][ T4569] __sys_recvmmsg+0x113/0x450 [ 332.929705][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 332.936293][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 332.941361][ T3566] usb 6-1: USB disconnect, device number 26 [ 332.941772][ T4569] do_fast_syscall_32+0x33/0x70 [ 332.953433][ T4569] do_SYSENTER_32+0x1b/0x20 [ 332.958264][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 332.966063][ T4569] [ 332.968472][ T4569] Uninit was stored to memory at: [ 332.973800][ T4569] get_compat_msghdr+0x4fc/0x720 [ 332.978906][ T4569] ___sys_recvmsg+0x18c/0x840 [ 332.984154][ T4569] do_recvmmsg+0x682/0x1180 [ 332.988944][ T4569] __sys_recvmmsg+0x113/0x450 [ 332.993883][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 333.001608][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 333.007081][ T4569] do_fast_syscall_32+0x33/0x70 [ 333.012111][ T4569] do_SYSENTER_32+0x1b/0x20 [ 333.016972][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 333.023764][ T4569] [ 333.026175][ T4569] Uninit was stored to memory at: [ 333.031385][ T4569] get_compat_msghdr+0x4fc/0x720 [ 333.036681][ T4569] ___sys_recvmsg+0x18c/0x840 [ 333.041517][ T4569] do_recvmmsg+0x682/0x1180 [ 333.046282][ T4569] __sys_recvmmsg+0x113/0x450 [ 333.051123][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 333.057678][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 333.063164][ T4569] do_fast_syscall_32+0x33/0x70 [ 333.068361][ T4569] do_SYSENTER_32+0x1b/0x20 [ 333.073210][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 333.080133][ T4569] [ 333.082672][ T4569] Uninit was stored to memory at: [ 333.088204][ T4569] get_compat_msghdr+0x4fc/0x720 [ 333.093506][ T4569] ___sys_recvmsg+0x18c/0x840 [ 333.098360][ T4569] do_recvmmsg+0x682/0x1180 [ 333.103221][ T4569] __sys_recvmmsg+0x113/0x450 [ 333.108030][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 333.114578][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 333.120070][ T4569] do_fast_syscall_32+0x33/0x70 [ 333.125423][ T4569] do_SYSENTER_32+0x1b/0x20 [ 333.130077][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 333.136931][ T4569] [ 333.139499][ T4569] Uninit was stored to memory at: [ 333.146603][ T4569] get_compat_msghdr+0x4fc/0x720 [ 333.151828][ T4569] ___sys_recvmsg+0x18c/0x840 [ 333.156866][ T4569] do_recvmmsg+0x682/0x1180 [ 333.161981][ T4569] __sys_recvmmsg+0x113/0x450 [ 333.167147][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 333.173865][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 333.179162][ T4569] do_fast_syscall_32+0x33/0x70 [ 333.184454][ T4569] do_SYSENTER_32+0x1b/0x20 [ 333.189207][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 333.195942][ T4569] [ 333.198436][ T4569] Uninit was stored to memory at: [ 333.203767][ T4569] get_compat_msghdr+0x4fc/0x720 [ 333.209131][ T4569] ___sys_recvmsg+0x18c/0x840 [ 333.214067][ T4569] do_recvmmsg+0x682/0x1180 [ 333.218747][ T4569] __sys_recvmmsg+0x113/0x450 [ 333.224151][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 333.230927][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 333.237106][ T4569] do_fast_syscall_32+0x33/0x70 [ 333.242400][ T4569] do_SYSENTER_32+0x1b/0x20 [ 333.247720][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 333.254555][ T4569] [ 333.256980][ T4569] Local variable msg_sys created at: [ 333.262452][ T4569] do_recvmmsg+0x5c/0x1180 [ 333.267150][ T4569] __sys_recvmmsg+0x113/0x450 21:57:29 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x2c, &(0x7f0000000c40)={0x0, 0x0, 0xab, {0xab, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab91cd7abf7a917f376386f7e92afc65e75c880a55d2877146ab5f476c1287ecb3e4003547007c60a0466f77cc3abce7d506197b7602e5face683fd5b62746db4fde2e52887d025b1d182565df701612bbacca6413"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) 21:57:29 executing program 2: r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000300)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x45, &(0x7f0000000380)=@generic={0x0, 0x0, 0x3d, "398027db", "67ec4cb938290810877773f5e11a52aa985c8c97f8dda950663cd665451e7fbd3bf63eb60a5be421544a3d194b304ef0f4af9d35db09c8780836e57098"}) 21:57:29 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x4f, 0x92, 0xb9, 0x8, 0x1557, 0x7720, 0xb7eb, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x27, 0x85, 0xe6}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000040)={0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b00)={0x40, 0x13, 0x6, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x40, 0x19, 0x2, "a8cd"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 21:57:29 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB="ec010000190001002dbd7000fcdbdf25fc020000000000000000010000c0f301ffffffff9effffff0000000000"], 0x1ec}}, 0x0) 21:57:29 executing program 5: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x925, 0x8888, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x6, {[@local, @main=@item_4={0x3, 0x0, 0x0, "8b707542"}]}}, 0x0}, 0x0) [ 333.517367][ T4583] netlink: 312 bytes leftover after parsing attributes in process `syz-executor.1'. 21:57:29 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB="ec010000190001002dbd7000fcdbdf25fc020000000000000000010000c0f301ffffffff9effffff0000000000"], 0x1ec}}, 0x0) [ 333.723644][ T3561] usb 6-1: new high-speed USB device number 27 using dummy_hcd [ 333.814225][ T3619] usb 5-1: new high-speed USB device number 29 using dummy_hcd [ 333.863558][ T3566] usb 4-1: new high-speed USB device number 18 using dummy_hcd [ 333.913742][ T3565] usb 3-1: new high-speed USB device number 20 using dummy_hcd [ 334.004636][ T4590] netlink: 312 bytes leftover after parsing attributes in process `syz-executor.1'. [ 334.094567][ T3561] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 334.106189][ T3561] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 334.113430][ T3566] usb 4-1: Using ep0 maxpacket: 8 [ 334.117413][ T3561] usb 6-1: New USB device found, idVendor=0925, idProduct=8888, bcdDevice= 0.00 [ 334.132901][ T3561] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 21:57:30 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB="ec010000190001002dbd7000fcdbdf25fc020000000000000000010000c0f301ffffffff9effffff0000000000"], 0x1ec}}, 0x0) [ 334.223928][ T3619] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 334.239496][ T3619] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 334.249110][ T3619] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 334.263984][ T3566] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 334.273474][ T3566] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 334.334202][ T3566] usb 4-1: config 0 descriptor?? [ 334.354837][ T3561] usb 6-1: config 0 descriptor?? [ 334.425852][ T3619] usb 5-1: config 0 descriptor?? [ 334.450296][ T4592] netlink: 312 bytes leftover after parsing attributes in process `syz-executor.1'. [ 334.483233][ T3619] usbhid 5-1:0.0: couldn't find an input interrupt endpoint [ 334.518643][ T3565] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 334.530953][ T3565] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 334.540258][ T3565] usb 3-1: Product: syz [ 334.544953][ T3565] usb 3-1: Manufacturer: syz [ 334.551349][ T3565] usb 3-1: SerialNumber: syz [ 334.686353][ T3565] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 334.884591][ T3561] usbhid 6-1:0.0: can't add hid device: -71 [ 334.892397][ T3561] usbhid: probe of 6-1:0.0 failed with error -71 [ 334.918148][ T4569] not chained 540000 origins [ 334.924753][ T4569] CPU: 0 PID: 4569 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 334.936562][ T4569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 334.947796][ T4569] Call Trace: [ 334.951331][ T4569] [ 334.954645][ T4569] dump_stack_lvl+0x1c8/0x256 [ 334.959622][ T4569] dump_stack+0x1a/0x1c [ 334.963687][ T3561] usb 6-1: USB disconnect, device number 27 [ 334.963921][ T4569] kmsan_internal_chain_origin+0x78/0x120 [ 334.977114][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 334.983392][ T4569] ? ____sys_recvmsg+0x5c1/0x810 [ 334.988593][ T4569] ? ___sys_recvmsg+0x217/0x840 [ 334.993611][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 335.001202][ T4569] ? ____sys_recvmsg+0x5c1/0x810 [ 335.006574][ T4569] ? kfree+0x44/0x980 [ 335.010879][ T4569] ? ___sys_recvmsg+0x248/0x840 [ 335.021541][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 335.029143][ T4569] ? get_compat_msghdr+0x51/0x720 [ 335.036163][ T4569] ? ___sys_recvmsg+0x18c/0x840 [ 335.044145][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 335.051737][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 335.058640][ T4569] ? should_fail+0x3f/0x810 [ 335.065640][ T4569] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 335.075574][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 335.082158][ T4569] __msan_chain_origin+0xbd/0x140 [ 335.087917][ T4569] get_compat_msghdr+0x4fc/0x720 [ 335.094169][ T4569] ___sys_recvmsg+0x18c/0x840 [ 335.100141][ T4569] ? __stack_depot_save+0x21/0x4b0 [ 335.105500][ T4569] ? kmsan_internal_check_memory+0x94/0x530 [ 335.112095][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 335.119071][ T4569] do_recvmmsg+0x682/0x1180 [ 335.124640][ T4569] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 335.133749][ T4569] __sys_recvmmsg+0x113/0x450 [ 335.139564][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 335.147407][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 335.153409][ T4569] ? exit_to_user_mode_prepare+0x119/0x220 [ 335.160187][ T4569] do_fast_syscall_32+0x33/0x70 [ 335.166832][ T4569] do_SYSENTER_32+0x1b/0x20 [ 335.172382][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 335.179534][ T4569] RIP: 0023:0xf7f63549 [ 335.183709][ T4569] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 335.205794][ T4569] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 335.215549][ T4569] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 335.225597][ T4569] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 335.236962][ T4569] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 335.246648][ T4569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 335.256069][ T4569] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 335.264465][ T4569] [ 335.268268][ T4569] Uninit was stored to memory at: [ 335.274122][ T4569] get_compat_msghdr+0x4fc/0x720 [ 335.279256][ T4569] ___sys_recvmsg+0x18c/0x840 [ 335.284190][ T4569] do_recvmmsg+0x682/0x1180 [ 335.288946][ T4569] __sys_recvmmsg+0x113/0x450 [ 335.294005][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 335.300903][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 335.308494][ T4569] do_fast_syscall_32+0x33/0x70 [ 335.314372][ T4569] do_SYSENTER_32+0x1b/0x20 [ 335.320284][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 335.331291][ T4569] [ 335.334256][ T4569] Uninit was stored to memory at: [ 335.339754][ T4569] get_compat_msghdr+0x4fc/0x720 [ 335.345185][ T4569] ___sys_recvmsg+0x18c/0x840 [ 335.350129][ T4569] do_recvmmsg+0x682/0x1180 [ 335.355785][ T4569] __sys_recvmmsg+0x113/0x450 [ 335.363688][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 335.371537][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 335.377465][ T4569] do_fast_syscall_32+0x33/0x70 [ 335.384164][ T4569] do_SYSENTER_32+0x1b/0x20 [ 335.388924][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 335.396604][ T4569] [ 335.399021][ T4569] Uninit was stored to memory at: [ 335.404636][ T4569] get_compat_msghdr+0x4fc/0x720 [ 335.411491][ T4569] ___sys_recvmsg+0x18c/0x840 [ 335.416977][ T4569] do_recvmmsg+0x682/0x1180 [ 335.422159][ T4569] __sys_recvmmsg+0x113/0x450 [ 335.427638][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 335.434260][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 335.441831][ T4569] do_fast_syscall_32+0x33/0x70 [ 335.447851][ T4569] do_SYSENTER_32+0x1b/0x20 [ 335.454570][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 335.464105][ T4569] [ 335.466687][ T4569] Uninit was stored to memory at: [ 335.473235][ T4569] get_compat_msghdr+0x4fc/0x720 [ 335.478510][ T4569] ___sys_recvmsg+0x18c/0x840 [ 335.483765][ T4569] do_recvmmsg+0x682/0x1180 [ 335.488878][ T4569] __sys_recvmmsg+0x113/0x450 [ 335.493870][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 335.500490][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 335.506316][ T4569] do_fast_syscall_32+0x33/0x70 [ 335.511424][ T4569] do_SYSENTER_32+0x1b/0x20 [ 335.516775][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 335.524281][ T4569] [ 335.527208][ T4569] Uninit was stored to memory at: [ 335.532597][ T4569] get_compat_msghdr+0x4fc/0x720 [ 335.537807][ T4569] ___sys_recvmsg+0x18c/0x840 [ 335.543707][ T4569] do_recvmmsg+0x682/0x1180 [ 335.549675][ T4569] __sys_recvmmsg+0x113/0x450 [ 335.556974][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 335.565402][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 335.571166][ T4569] do_fast_syscall_32+0x33/0x70 [ 335.577071][ T4569] do_SYSENTER_32+0x1b/0x20 [ 335.583554][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 335.590219][ T4569] [ 335.592701][ T4569] Uninit was stored to memory at: [ 335.599668][ T4569] get_compat_msghdr+0x4fc/0x720 [ 335.605078][ T4569] ___sys_recvmsg+0x18c/0x840 [ 335.610577][ T4569] do_recvmmsg+0x682/0x1180 [ 335.615532][ T4569] __sys_recvmmsg+0x113/0x450 [ 335.620488][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 335.627257][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 335.633148][ T4569] do_fast_syscall_32+0x33/0x70 [ 335.638938][ T4569] do_SYSENTER_32+0x1b/0x20 [ 335.643815][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 335.650484][ T4569] [ 335.653035][ T4569] Uninit was stored to memory at: [ 335.658353][ T4569] get_compat_msghdr+0x4fc/0x720 [ 335.663584][ T4569] ___sys_recvmsg+0x18c/0x840 [ 335.668434][ T4569] do_recvmmsg+0x682/0x1180 [ 335.673468][ T4569] __sys_recvmmsg+0x113/0x450 [ 335.678396][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 335.686006][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 335.691330][ T4569] do_fast_syscall_32+0x33/0x70 [ 335.696581][ T4569] do_SYSENTER_32+0x1b/0x20 [ 335.702215][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 335.709985][ T4569] [ 335.712398][ T4569] Local variable msg_sys created at: [ 335.719432][ T4569] do_recvmmsg+0x5c/0x1180 [ 335.725394][ T4569] __sys_recvmmsg+0x113/0x450 [ 336.026110][ T4569] not chained 550000 origins [ 336.030824][ T4569] CPU: 0 PID: 4569 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 336.041308][ T4569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 336.052410][ T4569] Call Trace: [ 336.055762][ T4569] [ 336.058774][ T4569] dump_stack_lvl+0x1c8/0x256 [ 336.063646][ T4569] dump_stack+0x1a/0x1c [ 336.067979][ T4569] kmsan_internal_chain_origin+0x78/0x120 [ 336.073975][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 336.080400][ T4569] ? ____sys_recvmsg+0x5c1/0x810 [ 336.085512][ T4569] ? ___sys_recvmsg+0x217/0x840 [ 336.090605][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 336.096616][ T4569] ? ____sys_recvmsg+0x5c1/0x810 [ 336.101897][ T4569] ? kfree+0x44/0x980 [ 336.106205][ T4569] ? ___sys_recvmsg+0x248/0x840 [ 336.111398][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 336.117836][ T4569] ? get_compat_msghdr+0x51/0x720 [ 336.123153][ T4569] ? ___sys_recvmsg+0x18c/0x840 [ 336.128151][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 336.134184][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 336.140195][ T4569] ? should_fail+0x3f/0x810 [ 336.144945][ T4569] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 336.151566][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 336.157652][ T4569] __msan_chain_origin+0xbd/0x140 [ 336.162974][ T4569] get_compat_msghdr+0x4fc/0x720 [ 336.168167][ T4569] ___sys_recvmsg+0x18c/0x840 [ 336.173410][ T4569] ? __stack_depot_save+0x21/0x4b0 [ 336.178708][ T4569] ? kmsan_internal_check_memory+0x94/0x530 [ 336.184814][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 336.191133][ T4569] do_recvmmsg+0x682/0x1180 [ 336.195890][ T4569] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 336.202678][ T4569] __sys_recvmmsg+0x113/0x450 [ 336.207526][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 336.214437][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 336.219976][ T4569] ? exit_to_user_mode_prepare+0x119/0x220 [ 336.226148][ T4569] do_fast_syscall_32+0x33/0x70 [ 336.231344][ T4569] do_SYSENTER_32+0x1b/0x20 [ 336.236332][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 336.242977][ T4569] RIP: 0023:0xf7f63549 [ 336.247157][ T4569] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 336.267037][ T4569] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 336.276253][ T4569] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 336.284740][ T4569] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 336.293621][ T4569] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 336.304706][ T4569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 336.313252][ T4569] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 336.322380][ T4569] [ 336.326750][ T4569] Uninit was stored to memory at: [ 336.335058][ T4569] get_compat_msghdr+0x4fc/0x720 [ 336.340554][ T4569] ___sys_recvmsg+0x18c/0x840 [ 336.346031][ T4569] do_recvmmsg+0x682/0x1180 [ 336.350812][ T4569] __sys_recvmmsg+0x113/0x450 [ 336.356610][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 336.365870][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 336.372915][ T4569] do_fast_syscall_32+0x33/0x70 [ 336.378829][ T4569] do_SYSENTER_32+0x1b/0x20 [ 336.384604][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 336.391595][ T4569] [ 336.394145][ T4569] Uninit was stored to memory at: [ 336.400199][ T4569] get_compat_msghdr+0x4fc/0x720 [ 336.405492][ T4569] ___sys_recvmsg+0x18c/0x840 [ 336.410408][ T4569] do_recvmmsg+0x682/0x1180 [ 336.415531][ T4569] __sys_recvmmsg+0x113/0x450 [ 336.420643][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 336.427575][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 336.432970][ T4569] do_fast_syscall_32+0x33/0x70 [ 336.438054][ T4569] do_SYSENTER_32+0x1b/0x20 [ 336.444253][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 336.452391][ T4569] [ 336.455798][ T4569] Uninit was stored to memory at: [ 336.461113][ T4569] get_compat_msghdr+0x4fc/0x720 [ 336.466652][ T4569] ___sys_recvmsg+0x18c/0x840 [ 336.471572][ T4569] do_recvmmsg+0x682/0x1180 [ 336.476947][ T4569] __sys_recvmmsg+0x113/0x450 [ 336.481966][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 336.489998][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 336.496698][ T4569] do_fast_syscall_32+0x33/0x70 [ 336.504276][ T4569] do_SYSENTER_32+0x1b/0x20 [ 336.509756][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 336.517323][ T4569] [ 336.520011][ T4569] Uninit was stored to memory at: [ 336.526699][ T4569] get_compat_msghdr+0x4fc/0x720 [ 336.532340][ T4569] ___sys_recvmsg+0x18c/0x840 [ 336.538681][ T4569] do_recvmmsg+0x682/0x1180 [ 336.543711][ T4569] __sys_recvmmsg+0x113/0x450 [ 336.548750][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 336.555407][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 336.561339][ T4569] do_fast_syscall_32+0x33/0x70 [ 336.566843][ T4569] do_SYSENTER_32+0x1b/0x20 [ 336.571721][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 336.580357][ T4569] [ 336.583160][ T4569] Uninit was stored to memory at: [ 336.589491][ T4569] get_compat_msghdr+0x4fc/0x720 [ 336.595225][ T4569] ___sys_recvmsg+0x18c/0x840 [ 336.600577][ T4569] do_recvmmsg+0x682/0x1180 [ 336.603386][ T3561] usb 5-1: USB disconnect, device number 29 [ 336.605904][ T4569] __sys_recvmmsg+0x113/0x450 [ 336.620586][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 336.628416][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 336.634368][ T4569] do_fast_syscall_32+0x33/0x70 [ 336.639413][ T4569] do_SYSENTER_32+0x1b/0x20 [ 336.645487][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 336.653890][ T4569] [ 336.656290][ T4569] Uninit was stored to memory at: [ 336.662311][ T4569] get_compat_msghdr+0x4fc/0x720 [ 336.667984][ T4569] ___sys_recvmsg+0x18c/0x840 [ 336.673203][ T4569] do_recvmmsg+0x682/0x1180 [ 336.678556][ T4569] __sys_recvmmsg+0x113/0x450 [ 336.683924][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 336.690460][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 336.695929][ T4569] do_fast_syscall_32+0x33/0x70 [ 336.701780][ T4569] do_SYSENTER_32+0x1b/0x20 [ 336.707082][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 336.714358][ T4569] [ 336.716882][ T4569] Uninit was stored to memory at: [ 336.724180][ T4569] get_compat_msghdr+0x4fc/0x720 [ 336.730077][ T4569] ___sys_recvmsg+0x18c/0x840 [ 336.735088][ T4569] do_recvmmsg+0x682/0x1180 [ 336.740648][ T4569] __sys_recvmmsg+0x113/0x450 [ 336.746536][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 336.755239][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 336.762097][ T4569] do_fast_syscall_32+0x33/0x70 [ 336.768371][ T4569] do_SYSENTER_32+0x1b/0x20 [ 336.773299][ T3558] usb 3-1: USB disconnect, device number 20 [ 336.773492][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 336.787166][ T4569] [ 336.789600][ T4569] Local variable msg_sys created at: [ 336.795776][ T4569] do_recvmmsg+0x5c/0x1180 [ 336.801116][ T4569] __sys_recvmmsg+0x113/0x450 [ 336.813583][ T3563] usb 3-1: ath9k_htc: Firmware - ath9k_htc/htc_9271-1.4.0.fw download failed [ 336.826028][ T3566] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71 [ 336.837673][ T3566] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to send software reset: ffffffb9 [ 336.849866][ T3566] asix: probe of 4-1:0.0 failed with error -71 [ 336.880532][ T3558] usb 3-1: ath9k_htc: USB layer deinitialized [ 336.883304][ T3566] usb 4-1: USB disconnect, device number 18 [ 337.331817][ T4569] not chained 560000 origins [ 337.340303][ T4569] CPU: 1 PID: 4569 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 337.352295][ T4569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 337.366331][ T4569] Call Trace: [ 337.370438][ T4569] [ 337.374128][ T4569] dump_stack_lvl+0x1c8/0x256 [ 337.380702][ T4569] dump_stack+0x1a/0x1c [ 337.386060][ T4569] kmsan_internal_chain_origin+0x78/0x120 [ 337.392386][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 337.401775][ T4569] ? ____sys_recvmsg+0x5c1/0x810 [ 337.408005][ T4569] ? ___sys_recvmsg+0x217/0x840 [ 337.413929][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 337.420589][ T4569] ? ____sys_recvmsg+0x5c1/0x810 [ 337.426416][ T4569] ? kfree+0x44/0x980 [ 337.431835][ T4569] ? ___sys_recvmsg+0x248/0x840 [ 337.437827][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 337.446696][ T4569] ? get_compat_msghdr+0x51/0x720 [ 337.454481][ T4569] ? ___sys_recvmsg+0x18c/0x840 [ 337.461366][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 337.468809][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 337.476365][ T4569] ? should_fail+0x3f/0x810 [ 337.485944][ T4569] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 337.492850][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 337.499112][ T4569] __msan_chain_origin+0xbd/0x140 [ 337.507514][ T4569] get_compat_msghdr+0x4fc/0x720 [ 337.513342][ T4569] ___sys_recvmsg+0x18c/0x840 [ 337.518114][ T4569] ? __stack_depot_save+0x21/0x4b0 [ 337.524237][ T4569] ? kmsan_internal_check_memory+0x94/0x530 [ 337.530989][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 337.539810][ T4569] do_recvmmsg+0x682/0x1180 [ 337.544994][ T4569] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 337.552704][ T4569] __sys_recvmmsg+0x113/0x450 [ 337.560551][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 337.568833][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 337.575438][ T4569] ? exit_to_user_mode_prepare+0x119/0x220 [ 337.584485][ T4569] do_fast_syscall_32+0x33/0x70 [ 337.590089][ T4569] do_SYSENTER_32+0x1b/0x20 [ 337.595584][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 337.605883][ T4569] RIP: 0023:0xf7f63549 [ 337.610715][ T4569] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 337.640450][ T4569] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 337.651017][ T4569] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 337.663040][ T4569] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 337.672428][ T4569] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 337.683809][ T4569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 337.693555][ T4569] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 337.706184][ T4569] [ 337.711419][ T4569] Uninit was stored to memory at: [ 337.716924][ T4569] get_compat_msghdr+0x4fc/0x720 [ 337.724895][ T4569] ___sys_recvmsg+0x18c/0x840 [ 337.730002][ T4569] do_recvmmsg+0x682/0x1180 [ 337.736392][ T4569] __sys_recvmmsg+0x113/0x450 [ 337.741432][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 337.749991][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 337.757551][ T4569] do_fast_syscall_32+0x33/0x70 [ 337.766707][ T4569] do_SYSENTER_32+0x1b/0x20 [ 337.772222][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 337.783797][ T4569] [ 337.787726][ T4569] Uninit was stored to memory at: [ 337.794882][ T4569] get_compat_msghdr+0x4fc/0x720 [ 337.803558][ T4569] ___sys_recvmsg+0x18c/0x840 [ 337.809161][ T4569] do_recvmmsg+0x682/0x1180 [ 337.814331][ T4569] __sys_recvmmsg+0x113/0x450 [ 337.821078][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 337.829366][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 337.835049][ T4569] do_fast_syscall_32+0x33/0x70 [ 337.840851][ T4569] do_SYSENTER_32+0x1b/0x20 [ 337.846464][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 337.853140][ T4569] [ 337.855762][ T4569] Uninit was stored to memory at: [ 337.861258][ T4569] get_compat_msghdr+0x4fc/0x720 [ 337.867568][ T4569] ___sys_recvmsg+0x18c/0x840 [ 337.873115][ T4569] do_recvmmsg+0x682/0x1180 [ 337.880171][ T4569] __sys_recvmmsg+0x113/0x450 [ 337.886267][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 337.893866][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 337.901909][ T4569] do_fast_syscall_32+0x33/0x70 [ 337.908606][ T4569] do_SYSENTER_32+0x1b/0x20 [ 337.915819][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 337.922852][ T4569] [ 337.926415][ T4569] Uninit was stored to memory at: [ 337.934092][ T4569] get_compat_msghdr+0x4fc/0x720 [ 337.940801][ T4569] ___sys_recvmsg+0x18c/0x840 [ 337.946782][ T4569] do_recvmmsg+0x682/0x1180 [ 337.951773][ T4569] __sys_recvmmsg+0x113/0x450 [ 337.958360][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 337.965598][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 337.970853][ T4569] do_fast_syscall_32+0x33/0x70 [ 337.977435][ T4569] do_SYSENTER_32+0x1b/0x20 [ 337.982956][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 337.991829][ T4569] [ 337.995199][ T4569] Uninit was stored to memory at: [ 338.001084][ T4569] get_compat_msghdr+0x4fc/0x720 [ 338.006641][ T4569] ___sys_recvmsg+0x18c/0x840 [ 338.011706][ T4569] do_recvmmsg+0x682/0x1180 [ 338.019112][ T4569] __sys_recvmmsg+0x113/0x450 [ 338.024975][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 338.031856][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 338.038285][ T4569] do_fast_syscall_32+0x33/0x70 [ 338.043573][ T4569] do_SYSENTER_32+0x1b/0x20 [ 338.049103][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 338.057576][ T4569] [ 338.060575][ T4569] Uninit was stored to memory at: [ 338.067597][ T4569] get_compat_msghdr+0x4fc/0x720 [ 338.074529][ T4569] ___sys_recvmsg+0x18c/0x840 [ 338.081527][ T4569] do_recvmmsg+0x682/0x1180 [ 338.088405][ T4569] __sys_recvmmsg+0x113/0x450 [ 338.096375][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 338.107317][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 338.118420][ T4569] do_fast_syscall_32+0x33/0x70 [ 338.126776][ T4569] do_SYSENTER_32+0x1b/0x20 [ 338.134734][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 338.146878][ T4569] [ 338.150022][ T4569] Uninit was stored to memory at: [ 338.156655][ T4569] get_compat_msghdr+0x4fc/0x720 [ 338.163213][ T4569] ___sys_recvmsg+0x18c/0x840 [ 338.171292][ T4569] do_recvmmsg+0x682/0x1180 [ 338.176914][ T4569] __sys_recvmmsg+0x113/0x450 [ 338.185843][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 338.194394][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 338.203711][ T4569] do_fast_syscall_32+0x33/0x70 [ 338.209495][ T4569] do_SYSENTER_32+0x1b/0x20 [ 338.215352][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 338.222640][ T4569] [ 338.225601][ T4569] Local variable msg_sys created at: [ 338.232695][ T4569] do_recvmmsg+0x5c/0x1180 [ 338.238288][ T4569] __sys_recvmmsg+0x113/0x450 [ 338.420896][ T4569] not chained 570000 origins [ 338.425961][ T4569] CPU: 1 PID: 4569 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 338.437092][ T4569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 338.447319][ T4569] Call Trace: [ 338.450744][ T4569] [ 338.454805][ T4569] dump_stack_lvl+0x1c8/0x256 [ 338.462026][ T4569] dump_stack+0x1a/0x1c [ 338.467664][ T4569] kmsan_internal_chain_origin+0x78/0x120 [ 338.473949][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 338.481702][ T4569] ? ____sys_recvmsg+0x5c1/0x810 [ 338.486801][ T4569] ? ___sys_recvmsg+0x217/0x840 [ 338.492161][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 338.498541][ T4569] ? ____sys_recvmsg+0x5c1/0x810 [ 338.504695][ T4569] ? kfree+0x44/0x980 [ 338.509161][ T4569] ? ___sys_recvmsg+0x248/0x840 [ 338.514183][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 338.520380][ T4569] ? get_compat_msghdr+0x51/0x720 [ 338.525827][ T4569] ? ___sys_recvmsg+0x18c/0x840 [ 338.531060][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 338.537189][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 338.543558][ T4569] ? should_fail+0x3f/0x810 [ 338.548376][ T4569] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 338.556280][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 338.563867][ T4569] __msan_chain_origin+0xbd/0x140 [ 338.569957][ T4569] get_compat_msghdr+0x4fc/0x720 [ 338.576466][ T4569] ___sys_recvmsg+0x18c/0x840 [ 338.581426][ T4569] ? __stack_depot_save+0x21/0x4b0 [ 338.587611][ T4569] ? kmsan_internal_check_memory+0x94/0x530 [ 338.595352][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 338.602290][ T4569] do_recvmmsg+0x682/0x1180 [ 338.607015][ T4569] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 338.613550][ T4569] __sys_recvmmsg+0x113/0x450 [ 338.618768][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 338.625683][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 338.630979][ T4569] ? exit_to_user_mode_prepare+0x119/0x220 [ 338.637086][ T4569] do_fast_syscall_32+0x33/0x70 [ 338.642056][ T4569] do_SYSENTER_32+0x1b/0x20 [ 338.646649][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 338.654320][ T4569] RIP: 0023:0xf7f63549 [ 338.659059][ T4569] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 338.681324][ T4569] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 338.690180][ T4569] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 338.699042][ T4569] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 338.707804][ T4569] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 338.717153][ T4569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 338.725565][ T4569] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 338.734784][ T4569] [ 338.738673][ T4569] Uninit was stored to memory at: [ 338.746182][ T4569] get_compat_msghdr+0x4fc/0x720 [ 338.753001][ T4569] ___sys_recvmsg+0x18c/0x840 [ 338.758135][ T4569] do_recvmmsg+0x682/0x1180 [ 338.762989][ T4569] __sys_recvmmsg+0x113/0x450 [ 338.767878][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 338.777080][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 338.783404][ T4569] do_fast_syscall_32+0x33/0x70 [ 338.789110][ T4569] do_SYSENTER_32+0x1b/0x20 [ 338.794898][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 338.804942][ T4569] [ 338.807337][ T4569] Uninit was stored to memory at: [ 338.814067][ T4569] get_compat_msghdr+0x4fc/0x720 [ 338.819522][ T4569] ___sys_recvmsg+0x18c/0x840 [ 338.824831][ T4569] do_recvmmsg+0x682/0x1180 [ 338.829575][ T4569] __sys_recvmmsg+0x113/0x450 [ 338.834612][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 338.841884][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 338.847833][ T4569] do_fast_syscall_32+0x33/0x70 [ 338.855112][ T4569] do_SYSENTER_32+0x1b/0x20 [ 338.862115][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 338.869365][ T4569] [ 338.871861][ T4569] Uninit was stored to memory at: [ 338.878693][ T4569] get_compat_msghdr+0x4fc/0x720 [ 338.884020][ T4569] ___sys_recvmsg+0x18c/0x840 [ 338.888976][ T4569] do_recvmmsg+0x682/0x1180 [ 338.895200][ T4569] __sys_recvmmsg+0x113/0x450 [ 338.900214][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 338.907116][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 338.913561][ T4569] do_fast_syscall_32+0x33/0x70 [ 338.918566][ T4569] do_SYSENTER_32+0x1b/0x20 [ 338.923525][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 338.930520][ T4569] [ 338.933368][ T4569] Uninit was stored to memory at: [ 338.939004][ T4569] get_compat_msghdr+0x4fc/0x720 [ 338.947391][ T4569] ___sys_recvmsg+0x18c/0x840 [ 338.954631][ T4569] do_recvmmsg+0x682/0x1180 [ 338.961079][ T4569] __sys_recvmmsg+0x113/0x450 [ 338.966420][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 338.974071][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 338.983410][ T4569] do_fast_syscall_32+0x33/0x70 [ 338.989377][ T4569] do_SYSENTER_32+0x1b/0x20 [ 338.994743][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 339.003323][ T4569] [ 339.006338][ T4569] Uninit was stored to memory at: [ 339.014282][ T4569] get_compat_msghdr+0x4fc/0x720 [ 339.021461][ T4569] ___sys_recvmsg+0x18c/0x840 [ 339.031970][ T4569] do_recvmmsg+0x682/0x1180 [ 339.036795][ T4569] __sys_recvmmsg+0x113/0x450 [ 339.043502][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 339.050004][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 339.055523][ T4569] do_fast_syscall_32+0x33/0x70 [ 339.061033][ T4569] do_SYSENTER_32+0x1b/0x20 [ 339.067575][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 339.075275][ T4569] [ 339.078461][ T4569] Uninit was stored to memory at: [ 339.087852][ T4569] get_compat_msghdr+0x4fc/0x720 [ 339.096135][ T4569] ___sys_recvmsg+0x18c/0x840 [ 339.101433][ T4569] do_recvmmsg+0x682/0x1180 [ 339.106803][ T4569] __sys_recvmmsg+0x113/0x450 [ 339.113025][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 339.120356][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 339.128236][ T4569] do_fast_syscall_32+0x33/0x70 [ 339.137199][ T4569] do_SYSENTER_32+0x1b/0x20 [ 339.143286][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 339.151293][ T4569] [ 339.156019][ T4569] Uninit was stored to memory at: [ 339.161394][ T4569] get_compat_msghdr+0x4fc/0x720 [ 339.167283][ T4569] ___sys_recvmsg+0x18c/0x840 [ 339.172395][ T4569] do_recvmmsg+0x682/0x1180 [ 339.177799][ T4569] __sys_recvmmsg+0x113/0x450 [ 339.183418][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 339.190509][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 339.197041][ T4569] do_fast_syscall_32+0x33/0x70 [ 339.203277][ T4569] do_SYSENTER_32+0x1b/0x20 [ 339.208209][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 339.215626][ T4569] [ 339.218290][ T4569] Local variable msg_sys created at: [ 339.227749][ T4569] do_recvmmsg+0x5c/0x1180 [ 339.233083][ T4569] __sys_recvmmsg+0x113/0x450 [ 339.423947][ T4569] not chained 580000 origins [ 339.429568][ T4569] CPU: 1 PID: 4569 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 339.442489][ T4569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 339.453591][ T4569] Call Trace: [ 339.458182][ T4569] [ 339.462376][ T4569] dump_stack_lvl+0x1c8/0x256 [ 339.467523][ T4569] dump_stack+0x1a/0x1c [ 339.471981][ T4569] kmsan_internal_chain_origin+0x78/0x120 [ 339.479679][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 339.486595][ T4569] ? ____sys_recvmsg+0x5c1/0x810 [ 339.491778][ T4569] ? ___sys_recvmsg+0x217/0x840 [ 339.497161][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 339.503703][ T4569] ? ____sys_recvmsg+0x5c1/0x810 [ 339.509003][ T4569] ? kfree+0x44/0x980 [ 339.514802][ T4569] ? ___sys_recvmsg+0x248/0x840 [ 339.520410][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 339.528137][ T4569] ? get_compat_msghdr+0x51/0x720 [ 339.533528][ T4569] ? ___sys_recvmsg+0x18c/0x840 [ 339.538624][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 339.545089][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 339.551133][ T4569] ? should_fail+0x3f/0x810 [ 339.556993][ T4569] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 339.563812][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 339.569958][ T4569] __msan_chain_origin+0xbd/0x140 [ 339.575677][ T4569] get_compat_msghdr+0x4fc/0x720 [ 339.581365][ T4569] ___sys_recvmsg+0x18c/0x840 [ 339.587020][ T4569] ? __stack_depot_save+0x21/0x4b0 [ 339.592917][ T4569] ? kmsan_internal_check_memory+0x94/0x530 [ 339.600214][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 339.607076][ T4569] do_recvmmsg+0x682/0x1180 [ 339.612470][ T4569] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 339.621442][ T4569] __sys_recvmmsg+0x113/0x450 [ 339.627182][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 339.633744][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 339.640043][ T4569] ? exit_to_user_mode_prepare+0x119/0x220 [ 339.647246][ T4569] do_fast_syscall_32+0x33/0x70 [ 339.652287][ T4569] do_SYSENTER_32+0x1b/0x20 [ 339.659009][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 339.666204][ T4569] RIP: 0023:0xf7f63549 [ 339.670661][ T4569] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 339.693118][ T4569] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 339.705239][ T4569] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 339.716578][ T4569] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 339.726781][ T4569] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 339.736421][ T4569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 339.747943][ T4569] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 339.758106][ T4569] [ 339.763741][ T4569] Uninit was stored to memory at: [ 339.773627][ T4569] get_compat_msghdr+0x4fc/0x720 [ 339.780140][ T4569] ___sys_recvmsg+0x18c/0x840 [ 339.787706][ T4569] do_recvmmsg+0x682/0x1180 [ 339.794152][ T4569] __sys_recvmmsg+0x113/0x450 [ 339.800831][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 339.808832][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 339.818463][ T4569] do_fast_syscall_32+0x33/0x70 [ 339.825166][ T4569] do_SYSENTER_32+0x1b/0x20 [ 339.833919][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 339.845391][ T4569] [ 339.848508][ T4569] Uninit was stored to memory at: [ 339.857316][ T4569] get_compat_msghdr+0x4fc/0x720 [ 339.864393][ T4569] ___sys_recvmsg+0x18c/0x840 [ 339.869355][ T4569] do_recvmmsg+0x682/0x1180 [ 339.874749][ T4569] __sys_recvmmsg+0x113/0x450 [ 339.879604][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 339.887429][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 339.893682][ T4569] do_fast_syscall_32+0x33/0x70 [ 339.899726][ T4569] do_SYSENTER_32+0x1b/0x20 [ 339.906690][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 339.913795][ T4569] [ 339.916452][ T4569] Uninit was stored to memory at: [ 339.923175][ T4569] get_compat_msghdr+0x4fc/0x720 [ 339.928672][ T4569] ___sys_recvmsg+0x18c/0x840 [ 339.933669][ T4569] do_recvmmsg+0x682/0x1180 [ 339.938570][ T4569] __sys_recvmmsg+0x113/0x450 [ 339.944212][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 339.951669][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 339.957902][ T4569] do_fast_syscall_32+0x33/0x70 [ 339.963333][ T4569] do_SYSENTER_32+0x1b/0x20 [ 339.969362][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 339.976753][ T4569] [ 339.979140][ T4569] Uninit was stored to memory at: [ 339.987779][ T4569] get_compat_msghdr+0x4fc/0x720 [ 339.993372][ T4569] ___sys_recvmsg+0x18c/0x840 [ 339.998753][ T4569] do_recvmmsg+0x682/0x1180 [ 340.003637][ T4569] __sys_recvmmsg+0x113/0x450 [ 340.008832][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 340.015642][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 340.021015][ T4569] do_fast_syscall_32+0x33/0x70 [ 340.026199][ T4569] do_SYSENTER_32+0x1b/0x20 [ 340.032109][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 340.041173][ T4569] [ 340.043860][ T4569] Uninit was stored to memory at: [ 340.049592][ T4569] get_compat_msghdr+0x4fc/0x720 [ 340.055473][ T4569] ___sys_recvmsg+0x18c/0x840 [ 340.060402][ T4569] do_recvmmsg+0x682/0x1180 [ 340.065360][ T4569] __sys_recvmmsg+0x113/0x450 [ 340.070353][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 340.077335][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 340.082990][ T4569] do_fast_syscall_32+0x33/0x70 [ 340.088786][ T4569] do_SYSENTER_32+0x1b/0x20 [ 340.093643][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 340.100291][ T4569] [ 340.102685][ T4569] Uninit was stored to memory at: [ 340.108156][ T4569] get_compat_msghdr+0x4fc/0x720 [ 340.113693][ T4569] ___sys_recvmsg+0x18c/0x840 [ 340.118929][ T4569] do_recvmmsg+0x682/0x1180 [ 340.124323][ T4569] __sys_recvmmsg+0x113/0x450 [ 340.129573][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 340.137484][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 340.143170][ T4569] do_fast_syscall_32+0x33/0x70 [ 340.150427][ T4569] do_SYSENTER_32+0x1b/0x20 [ 340.158002][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 340.166105][ T4569] [ 340.168812][ T4569] Uninit was stored to memory at: [ 340.174488][ T4569] get_compat_msghdr+0x4fc/0x720 [ 340.181891][ T4569] ___sys_recvmsg+0x18c/0x840 [ 340.187644][ T4569] do_recvmmsg+0x682/0x1180 [ 340.195119][ T4569] __sys_recvmmsg+0x113/0x450 [ 340.202344][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 340.209720][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 340.216512][ T4569] do_fast_syscall_32+0x33/0x70 [ 340.223321][ T4569] do_SYSENTER_32+0x1b/0x20 [ 340.229729][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 340.239147][ T4569] [ 340.242323][ T4569] Local variable msg_sys created at: [ 340.249393][ T4569] do_recvmmsg+0x5c/0x1180 [ 340.254708][ T4569] __sys_recvmmsg+0x113/0x450 [ 340.537096][ T4569] not chained 590000 origins [ 340.542379][ T4569] CPU: 0 PID: 4569 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 340.555523][ T4569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 340.568231][ T4569] Call Trace: [ 340.571931][ T4569] [ 340.575889][ T4569] dump_stack_lvl+0x1c8/0x256 [ 340.581744][ T4569] dump_stack+0x1a/0x1c [ 340.586986][ T4569] kmsan_internal_chain_origin+0x78/0x120 [ 340.593978][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 340.600696][ T4569] ? ____sys_recvmsg+0x5c1/0x810 [ 340.606245][ T4569] ? ___sys_recvmsg+0x217/0x840 [ 340.613720][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 340.621337][ T4569] ? ____sys_recvmsg+0x5c1/0x810 [ 340.627642][ T4569] ? kfree+0x44/0x980 [ 340.632286][ T4569] ? ___sys_recvmsg+0x248/0x840 [ 340.640128][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 340.649839][ T4569] ? get_compat_msghdr+0x51/0x720 [ 340.660386][ T4569] ? ___sys_recvmsg+0x18c/0x840 [ 340.666114][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 340.674393][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 340.682777][ T4569] ? should_fail+0x3f/0x810 [ 340.688610][ T4569] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 340.695517][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 340.703185][ T4569] __msan_chain_origin+0xbd/0x140 [ 340.709648][ T4569] get_compat_msghdr+0x4fc/0x720 [ 340.717906][ T4569] ___sys_recvmsg+0x18c/0x840 [ 340.724663][ T4569] ? __stack_depot_save+0x21/0x4b0 [ 340.730873][ T4569] ? kmsan_internal_check_memory+0x94/0x530 [ 340.737609][ T4569] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 340.743697][ T4569] do_recvmmsg+0x682/0x1180 [ 340.751127][ T4569] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 340.759589][ T4569] __sys_recvmmsg+0x113/0x450 [ 340.765405][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 340.776456][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 340.784250][ T4569] ? exit_to_user_mode_prepare+0x119/0x220 [ 340.792762][ T4569] do_fast_syscall_32+0x33/0x70 [ 340.800031][ T4569] do_SYSENTER_32+0x1b/0x20 [ 340.805939][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 340.813738][ T4569] RIP: 0023:0xf7f63549 [ 340.820008][ T4569] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 340.843034][ T4569] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 340.856294][ T4569] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 340.867793][ T4569] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 340.877469][ T4569] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 340.889933][ T4569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 340.900559][ T4569] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 340.910069][ T4569] [ 340.934577][ T1197] ieee802154 phy0 wpan0: encryption failed: -22 [ 340.943011][ T1197] ieee802154 phy1 wpan1: encryption failed: -22 [ 340.943782][ T4569] Uninit was stored to memory at: [ 340.956155][ T4569] get_compat_msghdr+0x4fc/0x720 [ 340.961864][ T4569] ___sys_recvmsg+0x18c/0x840 [ 340.967593][ T4569] do_recvmmsg+0x682/0x1180 [ 340.973025][ T4569] __sys_recvmmsg+0x113/0x450 [ 340.978052][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 340.986720][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 340.993377][ T4569] do_fast_syscall_32+0x33/0x70 [ 340.999790][ T4569] do_SYSENTER_32+0x1b/0x20 [ 341.004773][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 341.013951][ T4569] [ 341.016959][ T4569] Uninit was stored to memory at: [ 341.024051][ T4569] get_compat_msghdr+0x4fc/0x720 [ 341.032432][ T4569] ___sys_recvmsg+0x18c/0x840 [ 341.040583][ T4569] do_recvmmsg+0x682/0x1180 [ 341.050298][ T4569] __sys_recvmmsg+0x113/0x450 [ 341.056020][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 341.068237][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 341.075405][ T4569] do_fast_syscall_32+0x33/0x70 [ 341.084883][ T4569] do_SYSENTER_32+0x1b/0x20 [ 341.090649][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 341.099930][ T4569] [ 341.104150][ T4569] Uninit was stored to memory at: [ 341.109986][ T4569] get_compat_msghdr+0x4fc/0x720 [ 341.116428][ T4569] ___sys_recvmsg+0x18c/0x840 [ 341.124674][ T4569] do_recvmmsg+0x682/0x1180 [ 341.130445][ T4569] __sys_recvmmsg+0x113/0x450 [ 341.135996][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 341.143959][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 341.150613][ T4569] do_fast_syscall_32+0x33/0x70 [ 341.156808][ T4569] do_SYSENTER_32+0x1b/0x20 [ 341.163381][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 341.174098][ T4569] [ 341.178062][ T4569] Uninit was stored to memory at: [ 341.186526][ T4569] get_compat_msghdr+0x4fc/0x720 [ 341.194064][ T4569] ___sys_recvmsg+0x18c/0x840 [ 341.201878][ T4569] do_recvmmsg+0x682/0x1180 [ 341.207825][ T4569] __sys_recvmmsg+0x113/0x450 [ 341.213275][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 341.220979][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 341.228227][ T4569] do_fast_syscall_32+0x33/0x70 [ 341.234531][ T4569] do_SYSENTER_32+0x1b/0x20 [ 341.240581][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 341.248669][ T4569] [ 341.251581][ T4569] Uninit was stored to memory at: [ 341.257655][ T4569] get_compat_msghdr+0x4fc/0x720 [ 341.263580][ T4569] ___sys_recvmsg+0x18c/0x840 [ 341.268823][ T4569] do_recvmmsg+0x682/0x1180 [ 341.274615][ T4569] __sys_recvmmsg+0x113/0x450 [ 341.280916][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 341.287924][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 341.297091][ T4569] do_fast_syscall_32+0x33/0x70 [ 341.304205][ T4569] do_SYSENTER_32+0x1b/0x20 [ 341.314566][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 341.322986][ T4569] [ 341.325386][ T4569] Uninit was stored to memory at: [ 341.332653][ T4569] get_compat_msghdr+0x4fc/0x720 [ 341.339739][ T4569] ___sys_recvmsg+0x18c/0x840 [ 341.348029][ T4569] do_recvmmsg+0x682/0x1180 [ 341.352671][ T4569] __sys_recvmmsg+0x113/0x450 [ 341.357796][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 341.365227][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 341.372190][ T4569] do_fast_syscall_32+0x33/0x70 [ 341.378468][ T4569] do_SYSENTER_32+0x1b/0x20 [ 341.384246][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 341.392024][ T4569] [ 341.395505][ T4569] Uninit was stored to memory at: [ 341.403124][ T4569] get_compat_msghdr+0x4fc/0x720 [ 341.409455][ T4569] ___sys_recvmsg+0x18c/0x840 [ 341.416520][ T4569] do_recvmmsg+0x682/0x1180 [ 341.423591][ T4569] __sys_recvmmsg+0x113/0x450 [ 341.429093][ T4569] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 341.436759][ T4569] __do_fast_syscall_32+0xa2/0x100 [ 341.443404][ T4569] do_fast_syscall_32+0x33/0x70 [ 341.450432][ T4569] do_SYSENTER_32+0x1b/0x20 [ 341.455468][ T4569] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 341.464009][ T4569] [ 341.467822][ T4569] Local variable msg_sys created at: [ 341.475587][ T4569] do_recvmmsg+0x5c/0x1180 [ 341.481746][ T4569] __sys_recvmmsg+0x113/0x450 21:57:37 executing program 5: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x925, 0x8888, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x6, {[@local, @main=@item_4={0x3, 0x0, 0x0, "8b707542"}]}}, 0x0}, 0x0) 21:57:37 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB="ec010000190001002dbd7000fcdbdf25fc020000000000000000010000c0f301ffffffff9effffff00000000000000004e210000"], 0x1ec}}, 0x0) 21:57:37 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000003c0)=0xae) prlimit64(0x0, 0x3, &(0x7f0000000280), &(0x7f0000000300)) socket$inet_tcp(0x2, 0x1, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x40000, 0x6, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef0100010000", 0x3f, 0x400}, {&(0x7f0000001f40)}, {0x0, 0x0, 0xbff}, {0x0}, {0x0, 0x0, 0x2}, {0x0, 0x0, 0x80000000000000}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) 21:57:37 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x2c, &(0x7f0000000c40)={0x0, 0x0, 0xab, {0xab, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab91cd7abf7a917f376386f7e92afc65e75c880a55d2877146ab5f476c1287ecb3e4003547007c60a0466f77cc3abce7d506197b7602e5face683fd5b62746db4fde2e52887d025b1d182565df701612bbacca6413"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) 21:57:37 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x4f, 0x92, 0xb9, 0x8, 0x1557, 0x7720, 0xb7eb, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x27, 0x85, 0xe6}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000040)={0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b00)={0x40, 0x13, 0x6, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x40, 0x19, 0x2, "a8cd"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 21:57:37 executing program 2: r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000300)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x45, &(0x7f0000000380)=@generic={0x0, 0x0, 0x3d, "398027db", "67ec4cb938290810877773f5e11a52aa985c8c97f8dda950663cd665451e7fbd3bf63eb60a5be421544a3d194b304ef0f4af9d35db09c8780836e57098"}) [ 341.726301][ T4602] netlink: 312 bytes leftover after parsing attributes in process `syz-executor.1'. 21:57:37 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB="ec010000190001002dbd7000fcdbdf25fc020000000000000000010000c0f301ffffffff9effffff00000000000000004e210000"], 0x1ec}}, 0x0) [ 341.973380][ T3566] usb 6-1: new high-speed USB device number 28 using dummy_hcd [ 341.993872][ T3558] usb 4-1: new high-speed USB device number 19 using dummy_hcd [ 342.013894][ T3561] usb 5-1: new high-speed USB device number 30 using dummy_hcd [ 342.034905][ T3563] usb 3-1: new high-speed USB device number 21 using dummy_hcd [ 342.196091][ T4612] netlink: 312 bytes leftover after parsing attributes in process `syz-executor.1'. [ 342.227986][ T4611] loop0: detected capacity change from 0 to 512 [ 342.243800][ T3558] usb 4-1: Using ep0 maxpacket: 8 21:57:38 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB="ec010000190001002dbd7000fcdbdf25fc020000000000000000010000c0f301ffffffff9effffff00000000000000004e210000"], 0x1ec}}, 0x0) [ 342.297402][ T4611] EXT4-fs (loop0): invalid inodes per group: 67108896 [ 342.297402][ T4611] [ 342.364428][ T3558] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 342.375356][ T3558] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 342.385260][ T3566] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 342.387240][ T3561] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 342.397349][ T3566] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 342.412964][ T3561] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 342.413106][ T3561] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 342.443071][ T3566] usb 6-1: New USB device found, idVendor=0925, idProduct=8888, bcdDevice= 0.00 [ 342.452952][ T3566] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 342.495158][ T3566] usb 6-1: config 0 descriptor?? [ 342.505453][ T3558] usb 4-1: config 0 descriptor?? [ 342.526837][ T3561] usb 5-1: config 0 descriptor?? [ 342.600729][ T3561] usbhid 5-1:0.0: couldn't find an input interrupt endpoint [ 342.655834][ T3563] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 342.665419][ T3563] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 342.674423][ T3563] usb 3-1: Product: syz [ 342.678809][ T3563] usb 3-1: Manufacturer: syz [ 342.685281][ T3563] usb 3-1: SerialNumber: syz [ 342.752184][ T4615] netlink: 312 bytes leftover after parsing attributes in process `syz-executor.1'. [ 342.787897][ T3563] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested 21:57:39 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000003c0)=0xae) prlimit64(0x0, 0x3, &(0x7f0000000280), &(0x7f0000000300)) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x40000, 0x6, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef0100010000", 0x3f, 0x400}, {&(0x7f0000001f40)}, {0x0, 0x0, 0xbff}, {0x0}, {0x0, 0x0, 0x2}, {0x0, 0x0, 0x80000000000000}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="00da9bccad002100000400001f2b6fe2f96a3f6d2f93ca9700b41d3200000000e61dc18e8c44810000e4259e66932f75a7e35b9cc4c0e894a793926020f869c80184d3c69b0200000067c4eb317d9510c86b996c4c95074763bcffff1b27d72d69e41d5490584127f1be46d68441f24cc08bc114b8640a1c284a042bad52ed8715cb1335cc80259162dda27f90d1947ae4d82b1aa0b548e7393f3e00bc4cc5b3e3c8219821d391264cefcf9faad2b4077e1ebd400df5353093c588708eaeebb789e308a53a50e9c16d7ad1c27b4952e4dc878a3cf617e0558e6a4835afa1ac000000009e9084343c6ed98d00f15eaf0131f5b4136929ed31bdecd21d59ccdb410dd93aa5079d6be21e9b112ef80bdd651f64988663add3343db6ad9e04f5b5eec29b19766749b8801cfb90e1aed6002a74c5081cb3cd8433e4f5c57aa4e64917abef7028d07ed6039c9f08efd7d996a5be6c9a15c6cbcdce39c469faf34d80b5e3633c078ce7d7522ffdaadd9d3d7ab33fce554e2150459954ac9bfcbe5d28ec65524a218b229a40d3b7c9949a617dbe4913dd2e1c383e83fd2ed7b3266a7fef1e0c9fb0f4870bcfc981618782a42ade56271308cea1595bc156a087e038bb447c623d3f0500cbacf9af1c93d1be01bc0b90d0a13edf05702e43ce8268af172e049a5a9a6ca77b0dd3cf48f73f27079a8743644e426be045aa4428c13ebec99f3cc5a269b4d50c077a68af9e8cd7d3ebd646719323fd11e3ac294159ddd9dfda99ea960ebf781a6c6f84de13d1568023f79708e7cc3e5c7a25b1f13ac3ca08bf39810d14b3a7bf2e40c94e8586dbae0e6f5e5379700eeabe00c6ba0ed79c984f042c3c76623c4c", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) 21:57:39 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB="ec010000190001002dbd7000fcdbdf25fc020000000000000000010000c0f301ffffffff9effffff00000000000000004e2100004e1e0007"], 0x1ec}}, 0x0) [ 343.063773][ T3566] usbhid 6-1:0.0: can't add hid device: -71 [ 343.070581][ T3566] usbhid: probe of 6-1:0.0 failed with error -71 [ 343.134430][ T3566] usb 6-1: USB disconnect, device number 28 [ 343.378460][ T4623] loop0: detected capacity change from 0 to 512 [ 343.433873][ T3565] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 343.451691][ T4625] netlink: 312 bytes leftover after parsing attributes in process `syz-executor.1'. [ 343.493815][ T4623] EXT4-fs (loop0): invalid inodes per group: 67108896 [ 343.493815][ T4623] 21:57:39 executing program 5: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x925, 0x8888, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x6, {[@local, @main=@item_4={0x3, 0x0, 0x0, "8b707542"}]}}, 0x0}, 0x0) 21:57:39 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB="ec010000190001002dbd7000fcdbdf25fc020000000000000000010000c0f301ffffffff9effffff00000000000000004e2100004e1e0007"], 0x1ec}}, 0x0) [ 343.849012][ T119] usb 3-1: USB disconnect, device number 21 [ 343.853797][ T3558] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71 [ 343.870236][ T3558] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to send software reset: ffffffb9 [ 343.884075][ T3558] asix: probe of 4-1:0.0 failed with error -71 [ 343.915414][ T4627] netlink: 312 bytes leftover after parsing attributes in process `syz-executor.1'. 21:57:40 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB="ec010000190001002dbd7000fcdbdf25fc020000000000000000010000c0f301ffffffff9effffff00000000000000004e2100004e1e0007"], 0x1ec}}, 0x0) [ 344.111575][ T3558] usb 4-1: USB disconnect, device number 19 21:57:40 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000003c0)=0xae) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x40000, 0x6, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef0100010000", 0x3f, 0x400}, {&(0x7f0000001f40)}, {0x0, 0x0, 0xbff}, {0x0}, {0x0, 0x0, 0x2}, {0x0, 0x0, 0x80000000000000}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) [ 344.314106][ T3566] usb 6-1: new high-speed USB device number 29 using dummy_hcd [ 344.376036][ T4631] netlink: 312 bytes leftover after parsing attributes in process `syz-executor.1'. 21:57:40 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x4f, 0x92, 0xb9, 0x8, 0x1557, 0x7720, 0xb7eb, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x27, 0x85, 0xe6}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000040)={0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b00)={0x40, 0x13, 0x6, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x40, 0x19, 0x2, "a8cd"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) [ 344.464121][ T3565] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 344.471955][ T3565] ath9k_htc: Failed to initialize the device [ 344.511196][ T119] usb 3-1: ath9k_htc: USB layer deinitialized [ 344.693595][ T3566] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 344.706309][ T3566] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 344.719195][ T3566] usb 6-1: New USB device found, idVendor=0925, idProduct=8888, bcdDevice= 0.00 [ 344.730355][ T3566] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 21:57:40 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x2c, &(0x7f0000000c40)={0x0, 0x0, 0xab, {0xab, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab91cd7abf7a917f376386f7e92afc65e75c880a55d2877146ab5f476c1287ecb3e4003547007c60a0466f77cc3abce7d506197b7602e5face683fd5b62746db4fde2e52887d025b1d182565df701612bbacca6413"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) 21:57:40 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB="ec010000190001002dbd7000fcdbdf25fc020000000000000000010000c0f301ffffffff9effffff00000000000000004e2100004e1e00070a00"], 0x1ec}}, 0x0) 21:57:40 executing program 2: r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000300)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x9, &(0x7f0000000380)=@generic={0x0, 0x0, 0x1, "398027db", 'g'}) [ 344.774050][ T3558] usb 5-1: USB disconnect, device number 30 [ 344.835420][ T4635] loop0: detected capacity change from 0 to 512 [ 344.841891][ T3566] usb 6-1: config 0 descriptor?? [ 345.005291][ T4638] netlink: 312 bytes leftover after parsing attributes in process `syz-executor.1'. 21:57:41 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB="ec010000190001002dbd7000fcdbdf25fc020000000000000000010000c0f301ffffffff9effffff00000000000000004e2100004e1e00070a"], 0x1ec}}, 0x0) [ 345.116538][ T4635] EXT4-fs (loop0): invalid inodes per group: 67108896 [ 345.116538][ T4635] [ 345.318454][ T119] usb 4-1: new high-speed USB device number 20 using dummy_hcd [ 345.384717][ T3566] usbhid 6-1:0.0: can't add hid device: -71 [ 345.391211][ T3566] usbhid: probe of 6-1:0.0 failed with error -71 [ 345.405257][ T3565] usb 3-1: new high-speed USB device number 22 using dummy_hcd [ 345.440427][ T3566] usb 6-1: USB disconnect, device number 29 [ 345.552508][ T4645] netlink: 312 bytes leftover after parsing attributes in process `syz-executor.1'. [ 345.593540][ T3563] usb 5-1: new high-speed USB device number 31 using dummy_hcd [ 345.623110][ T119] usb 4-1: Using ep0 maxpacket: 8 21:57:41 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB="ec010000190001002dbd7000fcdbdf25fc020000000000000000010000c0f301ffffffff9effffff00000000000000004e2100004e1e0007"], 0x1ec}}, 0x0) [ 345.754894][ T119] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 345.764853][ T119] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 345.847084][ T119] usb 4-1: config 0 descriptor?? 21:57:41 executing program 5: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x925, 0x8888, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f00000002c0)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x6, {[@local, @main=@item_4={0x3, 0x0, 0x0, "8b707542"}]}}, 0x0}, 0x0) [ 345.964696][ T3563] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 345.978405][ T3563] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 345.998565][ T3563] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 346.054126][ T3565] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 346.064198][ T3565] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 346.073276][ T3565] usb 3-1: Product: syz [ 346.078454][ T3565] usb 3-1: Manufacturer: syz [ 346.084501][ T3565] usb 3-1: SerialNumber: syz [ 346.113619][ T4647] netlink: 312 bytes leftover after parsing attributes in process `syz-executor.1'. [ 346.153688][ T3563] usb 5-1: config 0 descriptor?? [ 346.210909][ T3563] usbhid 5-1:0.0: couldn't find an input interrupt endpoint [ 346.235388][ T3565] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 346.274226][ T4634] not chained 600000 origins [ 346.279726][ T4634] CPU: 1 PID: 4634 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 346.293627][ T4634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 346.304356][ T4634] Call Trace: [ 346.307774][ T4634] [ 346.311147][ T4634] dump_stack_lvl+0x1c8/0x256 [ 346.316417][ T4634] dump_stack+0x1a/0x1c [ 346.321626][ T4634] kmsan_internal_chain_origin+0x78/0x120 [ 346.328934][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 346.335547][ T4634] ? ____sys_recvmsg+0x5c1/0x810 [ 346.341088][ T4634] ? ___sys_recvmsg+0x217/0x840 [ 346.347475][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 346.353657][ T4634] ? ____sys_recvmsg+0x5c1/0x810 [ 346.358937][ T4634] ? kfree+0x44/0x980 [ 346.364937][ T4634] ? ___sys_recvmsg+0x248/0x840 [ 346.370205][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 346.377857][ T4634] ? get_compat_msghdr+0x51/0x720 [ 346.384156][ T4634] ? ___sys_recvmsg+0x18c/0x840 [ 346.393080][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 346.401188][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 346.409642][ T4634] ? should_fail+0x3f/0x810 [ 346.414530][ T4634] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 346.421425][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 346.428359][ T4634] __msan_chain_origin+0xbd/0x140 [ 346.434882][ T4634] get_compat_msghdr+0x4fc/0x720 [ 346.440453][ T4634] ___sys_recvmsg+0x18c/0x840 [ 346.449745][ T4634] ? __stack_depot_save+0x21/0x4b0 [ 346.455073][ T4634] ? kmsan_internal_check_memory+0x94/0x530 [ 346.461875][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 346.470324][ T4634] do_recvmmsg+0x682/0x1180 [ 346.475923][ T4634] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 346.482612][ T4634] __sys_recvmmsg+0x113/0x450 [ 346.489481][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 346.497615][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 346.504164][ T4634] ? exit_to_user_mode_prepare+0x119/0x220 [ 346.511371][ T4634] do_fast_syscall_32+0x33/0x70 [ 346.517601][ T4634] do_SYSENTER_32+0x1b/0x20 [ 346.522459][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 346.530067][ T4634] RIP: 0023:0xf7f63549 [ 346.534418][ T4634] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 346.565393][ T4634] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 346.578633][ T4634] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 346.589698][ T4634] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 346.599599][ T4634] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 346.610232][ T4634] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 346.620896][ T4634] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 346.630689][ T4634] [ 346.636603][ T4634] Uninit was stored to memory at: [ 346.643787][ T4634] get_compat_msghdr+0x4fc/0x720 [ 346.651876][ T4634] ___sys_recvmsg+0x18c/0x840 [ 346.663143][ T4634] do_recvmmsg+0x682/0x1180 21:57:42 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB="ec010000190001002dbd7000fcdbdf25fc020000000000000000010000c0f301ffffffff9effffff00000000000000004e2100004e1e0007"], 0x1ec}}, 0x0) [ 346.671037][ T4634] __sys_recvmmsg+0x113/0x450 [ 346.677637][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 346.685337][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 346.691567][ T4634] do_fast_syscall_32+0x33/0x70 [ 346.697857][ T4634] do_SYSENTER_32+0x1b/0x20 [ 346.703187][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 346.710130][ T4634] [ 346.712524][ T4634] Uninit was stored to memory at: [ 346.718163][ T4634] get_compat_msghdr+0x4fc/0x720 [ 346.725021][ T4634] ___sys_recvmsg+0x18c/0x840 [ 346.729852][ T4634] do_recvmmsg+0x682/0x1180 [ 346.734796][ T4634] __sys_recvmmsg+0x113/0x450 [ 346.739709][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 346.746415][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 346.754267][ T4634] do_fast_syscall_32+0x33/0x70 [ 346.760059][ T4634] do_SYSENTER_32+0x1b/0x20 [ 346.766806][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 346.777489][ T4634] [ 346.780663][ T4634] Uninit was stored to memory at: [ 346.786212][ T4634] get_compat_msghdr+0x4fc/0x720 [ 346.792033][ T4634] ___sys_recvmsg+0x18c/0x840 [ 346.797027][ T4634] do_recvmmsg+0x682/0x1180 [ 346.802832][ T4634] __sys_recvmmsg+0x113/0x450 [ 346.807657][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 346.814173][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 346.819429][ T4634] do_fast_syscall_32+0x33/0x70 [ 346.824812][ T4634] do_SYSENTER_32+0x1b/0x20 [ 346.832024][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 346.840036][ T4634] [ 346.843346][ T4634] Uninit was stored to memory at: [ 346.849111][ T4634] get_compat_msghdr+0x4fc/0x720 [ 346.854576][ T4634] ___sys_recvmsg+0x18c/0x840 [ 346.859943][ T4634] do_recvmmsg+0x682/0x1180 [ 346.866385][ T4634] __sys_recvmmsg+0x113/0x450 [ 346.871582][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 346.878950][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 346.884345][ T4634] do_fast_syscall_32+0x33/0x70 [ 346.889970][ T4634] do_SYSENTER_32+0x1b/0x20 [ 346.894816][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 346.901469][ T4634] [ 346.904635][ T4634] Uninit was stored to memory at: [ 346.910677][ T4634] get_compat_msghdr+0x4fc/0x720 [ 346.916122][ T4634] ___sys_recvmsg+0x18c/0x840 [ 346.921051][ T4634] do_recvmmsg+0x682/0x1180 [ 346.925915][ T4634] __sys_recvmmsg+0x113/0x450 [ 346.930919][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 346.933674][ T119] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32 [ 346.940498][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 346.951361][ T119] asix: probe of 4-1:0.0 failed with error -32 [ 346.956125][ T4634] do_fast_syscall_32+0x33/0x70 [ 346.956225][ T4634] do_SYSENTER_32+0x1b/0x20 [ 346.975106][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 346.982079][ T4634] [ 346.984687][ T4634] Uninit was stored to memory at: [ 346.990627][ T4634] get_compat_msghdr+0x4fc/0x720 [ 346.997232][ T4634] ___sys_recvmsg+0x18c/0x840 [ 347.003358][ T4634] do_recvmmsg+0x682/0x1180 [ 347.008912][ T4634] __sys_recvmmsg+0x113/0x450 [ 347.013878][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 347.020307][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 347.025730][ T4634] do_fast_syscall_32+0x33/0x70 [ 347.030742][ T4634] do_SYSENTER_32+0x1b/0x20 [ 347.035559][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 347.042103][ T4634] [ 347.044682][ T4634] Uninit was stored to memory at: [ 347.050094][ T4634] get_compat_msghdr+0x4fc/0x720 [ 347.055320][ T4634] ___sys_recvmsg+0x18c/0x840 [ 347.060144][ T4634] do_recvmmsg+0x682/0x1180 [ 347.065224][ T4634] __sys_recvmmsg+0x113/0x450 [ 347.070309][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 347.076951][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 347.082206][ T4634] do_fast_syscall_32+0x33/0x70 [ 347.087448][ T4634] do_SYSENTER_32+0x1b/0x20 [ 347.092106][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 347.100173][ T4634] [ 347.102862][ T4634] Local variable msg_sys created at: [ 347.108259][ T4634] do_recvmmsg+0x5c/0x1180 [ 347.113023][ T4634] __sys_recvmmsg+0x113/0x450 [ 347.442133][ T4653] netlink: 312 bytes leftover after parsing attributes in process `syz-executor.1'. 21:57:43 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB="ec010000190001002dbd7000fcdbdf25fc020000000000000000010000c0f301ffffffff9effffff00000000000000004e2100004e1e0007"], 0x1ec}}, 0x0) [ 347.713396][ T3619] usb 6-1: new high-speed USB device number 30 using dummy_hcd [ 347.777900][ T4655] netlink: 312 bytes leftover after parsing attributes in process `syz-executor.1'. 21:57:44 executing program 1: timer_create(0x2, 0x0, &(0x7f00000000c0)) timer_settime(0x0, 0x0, &(0x7f0000000100)={{0x77359400}, {0x0, 0x989680}}, 0x0) [ 348.087465][ T3619] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 348.099413][ T3619] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 348.110177][ T3619] usb 6-1: New USB device found, idVendor=0925, idProduct=8888, bcdDevice= 0.00 [ 348.119864][ T3619] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 348.123943][ T3565] usb 3-1: ath9k_htc: Firmware - ath9k_htc/htc_9271-1.4.0.fw download failed 21:57:44 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x4f, 0x92, 0xb9, 0x8, 0x1557, 0x7720, 0xb7eb, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x27, 0x85, 0xe6}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000040)={0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b00)={0x40, 0x13, 0x6, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x40, 0x19, 0x2, "a8cd"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) [ 348.131145][ T3558] usb 4-1: USB disconnect, device number 20 [ 348.140644][ T119] usb 3-1: USB disconnect, device number 22 [ 348.260800][ T119] usb 3-1: ath9k_htc: USB layer deinitialized [ 348.323751][ T3561] usb 5-1: USB disconnect, device number 31 [ 348.407940][ T3619] usb 6-1: config 0 descriptor?? [ 348.548687][ T4634] not chained 610000 origins [ 348.554778][ T4634] CPU: 0 PID: 4634 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 348.565293][ T4634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 348.575480][ T4634] Call Trace: [ 348.578938][ T4634] [ 348.581948][ T4634] dump_stack_lvl+0x1c8/0x256 [ 348.586862][ T4634] dump_stack+0x1a/0x1c [ 348.591314][ T4634] kmsan_internal_chain_origin+0x78/0x120 [ 348.597566][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 348.603930][ T4634] ? ____sys_recvmsg+0x5c1/0x810 [ 348.609125][ T4634] ? ___sys_recvmsg+0x217/0x840 [ 348.614420][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 348.620492][ T4634] ? ____sys_recvmsg+0x5c1/0x810 [ 348.625562][ T4634] ? kfree+0x44/0x980 [ 348.629650][ T4634] ? ___sys_recvmsg+0x248/0x840 [ 348.634713][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 348.641745][ T4634] ? get_compat_msghdr+0x51/0x720 [ 348.647032][ T4634] ? ___sys_recvmsg+0x18c/0x840 [ 348.652137][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 348.658416][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 348.664388][ T4634] ? should_fail+0x3f/0x810 [ 348.669057][ T4634] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 348.675466][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 348.681691][ T4634] __msan_chain_origin+0xbd/0x140 [ 348.686860][ T4634] get_compat_msghdr+0x4fc/0x720 [ 348.691967][ T4634] ___sys_recvmsg+0x18c/0x840 [ 348.696874][ T4634] ? __stack_depot_save+0x21/0x4b0 [ 348.702606][ T4634] ? kmsan_internal_check_memory+0x94/0x530 [ 348.708791][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 348.714788][ T4634] do_recvmmsg+0x682/0x1180 [ 348.719469][ T4634] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 348.726074][ T4634] __sys_recvmmsg+0x113/0x450 [ 348.731407][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 348.737988][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 348.743228][ T4634] ? exit_to_user_mode_prepare+0x119/0x220 [ 348.749446][ T4634] do_fast_syscall_32+0x33/0x70 [ 348.754974][ T4634] do_SYSENTER_32+0x1b/0x20 [ 348.759882][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 348.767911][ T4634] RIP: 0023:0xf7f63549 [ 348.774109][ T4634] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 348.794658][ T4634] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 348.803745][ T4634] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 348.811985][ T4634] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 348.820071][ T4634] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 348.828153][ T4634] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 348.836312][ T4634] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 348.844407][ T4634] [ 348.848006][ T4634] Uninit was stored to memory at: [ 348.853412][ T4634] get_compat_msghdr+0x4fc/0x720 [ 348.858845][ T4634] ___sys_recvmsg+0x18c/0x840 [ 348.863894][ T4634] do_recvmmsg+0x682/0x1180 [ 348.868678][ T4634] __sys_recvmmsg+0x113/0x450 [ 348.873612][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 348.880035][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 348.885380][ T4634] do_fast_syscall_32+0x33/0x70 [ 348.890464][ T4634] do_SYSENTER_32+0x1b/0x20 [ 348.895329][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 348.901986][ T4634] [ 348.904713][ T4634] Uninit was stored to memory at: [ 348.910043][ T4634] get_compat_msghdr+0x4fc/0x720 [ 348.915246][ T4634] ___sys_recvmsg+0x18c/0x840 [ 348.920626][ T4634] do_recvmmsg+0x682/0x1180 [ 348.925381][ T4634] __sys_recvmmsg+0x113/0x450 [ 348.930449][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 348.940370][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 348.946312][ T4634] do_fast_syscall_32+0x33/0x70 [ 348.951945][ T4634] do_SYSENTER_32+0x1b/0x20 [ 348.958583][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 348.965746][ T4634] [ 348.968517][ T4634] Uninit was stored to memory at: [ 348.973832][ T4634] get_compat_msghdr+0x4fc/0x720 [ 348.979184][ T4634] ___sys_recvmsg+0x18c/0x840 [ 348.984169][ T4634] do_recvmmsg+0x682/0x1180 [ 348.988993][ T4634] __sys_recvmmsg+0x113/0x450 [ 348.993963][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 349.000552][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 349.005897][ T4634] do_fast_syscall_32+0x33/0x70 [ 349.010884][ T4634] do_SYSENTER_32+0x1b/0x20 [ 349.015640][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 349.022442][ T4634] [ 349.025019][ T4634] Uninit was stored to memory at: [ 349.030387][ T4634] get_compat_msghdr+0x4fc/0x720 [ 349.035702][ T4634] ___sys_recvmsg+0x18c/0x840 [ 349.040543][ T4634] do_recvmmsg+0x682/0x1180 [ 349.045270][ T4634] __sys_recvmmsg+0x113/0x450 [ 349.050100][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 349.056736][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 349.061992][ T4634] do_fast_syscall_32+0x33/0x70 [ 349.067173][ T4634] do_SYSENTER_32+0x1b/0x20 [ 349.072038][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 349.078910][ T4634] [ 349.081687][ T4634] Uninit was stored to memory at: [ 349.087177][ T4634] get_compat_msghdr+0x4fc/0x720 [ 349.092405][ T4634] ___sys_recvmsg+0x18c/0x840 [ 349.097402][ T4634] do_recvmmsg+0x682/0x1180 [ 349.102228][ T4634] __sys_recvmmsg+0x113/0x450 [ 349.107425][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 349.114005][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 349.119276][ T4634] do_fast_syscall_32+0x33/0x70 [ 349.124688][ T4634] do_SYSENTER_32+0x1b/0x20 [ 349.129460][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 349.134361][ T3619] usbhid 6-1:0.0: can't add hid device: -71 [ 349.136176][ T4634] [ 349.142417][ T3619] usbhid: probe of 6-1:0.0 failed with error -71 [ 349.144673][ T4634] Uninit was stored to memory at: [ 349.144815][ T4634] get_compat_msghdr+0x4fc/0x720 [ 349.161571][ T4634] ___sys_recvmsg+0x18c/0x840 [ 349.166586][ T4634] do_recvmmsg+0x682/0x1180 [ 349.171265][ T4634] __sys_recvmmsg+0x113/0x450 [ 349.176385][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 349.183322][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 349.188708][ T4634] do_fast_syscall_32+0x33/0x70 [ 349.193823][ T4634] do_SYSENTER_32+0x1b/0x20 [ 349.198574][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 349.205426][ T4634] [ 349.207826][ T4634] Uninit was stored to memory at: [ 349.213309][ T4634] get_compat_msghdr+0x4fc/0x720 [ 349.218841][ T4634] ___sys_recvmsg+0x18c/0x840 [ 349.219350][ T3619] usb 6-1: USB disconnect, device number 30 [ 349.223789][ T4634] do_recvmmsg+0x682/0x1180 [ 349.223872][ T4634] __sys_recvmmsg+0x113/0x450 [ 349.223948][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 349.245991][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 349.252405][ T4634] do_fast_syscall_32+0x33/0x70 [ 349.258026][ T4634] do_SYSENTER_32+0x1b/0x20 [ 349.263317][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 349.269968][ T4634] [ 349.272388][ T4634] Local variable msg_sys created at: [ 349.277866][ T4634] do_recvmmsg+0x5c/0x1180 [ 349.282524][ T4634] __sys_recvmmsg+0x113/0x450 [ 349.483951][ T3561] usb 4-1: new high-speed USB device number 21 using dummy_hcd [ 349.725113][ T3561] usb 4-1: Using ep0 maxpacket: 8 [ 349.781805][ T4634] not chained 620000 origins [ 349.788346][ T4634] CPU: 1 PID: 4634 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 349.798935][ T4634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 349.809658][ T4634] Call Trace: [ 349.813114][ T4634] [ 349.816576][ T4634] dump_stack_lvl+0x1c8/0x256 [ 349.823337][ T4634] dump_stack+0x1a/0x1c [ 349.827738][ T4634] kmsan_internal_chain_origin+0x78/0x120 [ 349.833845][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 349.840244][ T4634] ? ____sys_recvmsg+0x5c1/0x810 [ 349.845386][ T4634] ? ___sys_recvmsg+0x217/0x840 [ 349.850394][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 349.856472][ T4634] ? ____sys_recvmsg+0x5c1/0x810 [ 349.861636][ T4634] ? kfree+0x44/0x980 [ 349.865740][ T4634] ? ___sys_recvmsg+0x248/0x840 [ 349.870700][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 349.876985][ T4634] ? get_compat_msghdr+0x51/0x720 [ 349.882471][ T4634] ? ___sys_recvmsg+0x18c/0x840 [ 349.887448][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 349.893690][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 349.899953][ T4634] ? should_fail+0x3f/0x810 [ 349.904654][ T4634] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 349.911316][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 349.917271][ T4634] __msan_chain_origin+0xbd/0x140 [ 349.922664][ T4634] get_compat_msghdr+0x4fc/0x720 [ 349.928180][ T4634] ___sys_recvmsg+0x18c/0x840 [ 349.932960][ T4634] ? __stack_depot_save+0x21/0x4b0 [ 349.940357][ T4634] ? kmsan_internal_check_memory+0x94/0x530 [ 349.946675][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 349.952842][ T4634] do_recvmmsg+0x682/0x1180 [ 349.957659][ T4634] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 349.964631][ T4634] __sys_recvmmsg+0x113/0x450 [ 349.969716][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 349.976079][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 349.981632][ T4634] ? exit_to_user_mode_prepare+0x119/0x220 [ 349.987579][ T4634] do_fast_syscall_32+0x33/0x70 [ 349.992749][ T4634] do_SYSENTER_32+0x1b/0x20 [ 349.997579][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 350.004199][ T4634] RIP: 0023:0xf7f63549 [ 350.008370][ T4634] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 350.028372][ T4634] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 350.037158][ T4634] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 350.045703][ T4634] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 350.054050][ T4634] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 350.062626][ T4634] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 350.070741][ T4634] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 350.078889][ T4634] [ 350.083548][ T4634] Uninit was stored to memory at: [ 350.088797][ T4634] get_compat_msghdr+0x4fc/0x720 [ 350.094193][ T4634] ___sys_recvmsg+0x18c/0x840 [ 350.099067][ T4634] do_recvmmsg+0x682/0x1180 [ 350.103928][ T4634] __sys_recvmmsg+0x113/0x450 [ 350.109883][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 350.117080][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 350.122832][ T4634] do_fast_syscall_32+0x33/0x70 [ 350.128094][ T4634] do_SYSENTER_32+0x1b/0x20 [ 350.134967][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 350.142606][ T4634] [ 350.145264][ T4634] Uninit was stored to memory at: [ 350.151859][ T4634] get_compat_msghdr+0x4fc/0x720 [ 350.157185][ T4634] ___sys_recvmsg+0x18c/0x840 [ 350.161996][ T4634] do_recvmmsg+0x682/0x1180 [ 350.166780][ T4634] __sys_recvmmsg+0x113/0x450 [ 350.171704][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 350.178365][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 350.184370][ T4634] do_fast_syscall_32+0x33/0x70 [ 350.189363][ T4634] do_SYSENTER_32+0x1b/0x20 [ 350.194227][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 350.200935][ T4634] [ 350.203586][ T4634] Uninit was stored to memory at: [ 350.208785][ T4634] get_compat_msghdr+0x4fc/0x720 [ 350.214124][ T4634] ___sys_recvmsg+0x18c/0x840 [ 350.218951][ T4634] do_recvmmsg+0x682/0x1180 [ 350.224316][ T4634] __sys_recvmmsg+0x113/0x450 [ 350.229419][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 350.236053][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 350.241452][ T4634] do_fast_syscall_32+0x33/0x70 [ 350.246562][ T4634] do_SYSENTER_32+0x1b/0x20 [ 350.251199][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 350.258811][ T4634] [ 350.261214][ T4634] Uninit was stored to memory at: [ 350.266574][ T4634] get_compat_msghdr+0x4fc/0x720 [ 350.271642][ T4634] ___sys_recvmsg+0x18c/0x840 [ 350.277163][ T4634] do_recvmmsg+0x682/0x1180 [ 350.282412][ T4634] __sys_recvmmsg+0x113/0x450 [ 350.287419][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 350.294233][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 350.300193][ T4634] do_fast_syscall_32+0x33/0x70 [ 350.305285][ T4634] do_SYSENTER_32+0x1b/0x20 [ 350.310023][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 350.317069][ T4634] [ 350.319478][ T4634] Uninit was stored to memory at: [ 350.325421][ T4634] get_compat_msghdr+0x4fc/0x720 [ 350.330610][ T4634] ___sys_recvmsg+0x18c/0x840 [ 350.335581][ T4634] do_recvmmsg+0x682/0x1180 [ 350.340229][ T4634] __sys_recvmmsg+0x113/0x450 [ 350.345311][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 350.351731][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 350.357130][ T4634] do_fast_syscall_32+0x33/0x70 [ 350.363344][ T4634] do_SYSENTER_32+0x1b/0x20 [ 350.368171][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 350.374784][ T4634] [ 350.377197][ T4634] Uninit was stored to memory at: [ 350.382451][ T4634] get_compat_msghdr+0x4fc/0x720 [ 350.387747][ T4634] ___sys_recvmsg+0x18c/0x840 [ 350.392941][ T4634] do_recvmmsg+0x682/0x1180 [ 350.397591][ T4634] __sys_recvmmsg+0x113/0x450 [ 350.402587][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 350.409808][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 350.415527][ T4634] do_fast_syscall_32+0x33/0x70 [ 350.420533][ T4634] do_SYSENTER_32+0x1b/0x20 [ 350.425376][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 350.432363][ T4634] [ 350.434940][ T4634] Uninit was stored to memory at: [ 350.440220][ T4634] get_compat_msghdr+0x4fc/0x720 [ 350.445745][ T4634] ___sys_recvmsg+0x18c/0x840 [ 350.450832][ T4634] do_recvmmsg+0x682/0x1180 [ 350.455875][ T4634] __sys_recvmmsg+0x113/0x450 [ 350.460700][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 350.467517][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 350.472919][ T4634] do_fast_syscall_32+0x33/0x70 [ 350.477920][ T4634] do_SYSENTER_32+0x1b/0x20 [ 350.482640][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 350.489361][ T4634] [ 350.492659][ T4634] Local variable msg_sys created at: [ 350.499281][ T4634] do_recvmmsg+0x5c/0x1180 [ 350.504259][ T4634] __sys_recvmmsg+0x113/0x450 [ 350.553319][ T3561] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 350.563471][ T3561] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 350.576258][ T3561] usb 4-1: config 0 descriptor?? [ 350.725549][ T4634] not chained 630000 origins [ 350.730336][ T4634] CPU: 1 PID: 4634 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 350.740963][ T4634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 350.751448][ T4634] Call Trace: [ 350.754924][ T4634] [ 350.758116][ T4634] dump_stack_lvl+0x1c8/0x256 [ 350.762941][ T4634] dump_stack+0x1a/0x1c [ 350.767670][ T4634] kmsan_internal_chain_origin+0x78/0x120 [ 350.773660][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 350.779724][ T4634] ? ____sys_recvmsg+0x5c1/0x810 [ 350.784862][ T4634] ? ___sys_recvmsg+0x217/0x840 [ 350.789846][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 350.796196][ T4634] ? ____sys_recvmsg+0x5c1/0x810 [ 350.801905][ T4634] ? kfree+0x44/0x980 [ 350.806081][ T4634] ? ___sys_recvmsg+0x248/0x840 [ 350.811156][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 350.817285][ T4634] ? get_compat_msghdr+0x51/0x720 [ 350.822693][ T4634] ? ___sys_recvmsg+0x18c/0x840 [ 350.828130][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 350.835364][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 350.841469][ T4634] ? should_fail+0x3f/0x810 [ 350.846124][ T4634] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 350.852838][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 350.859006][ T4634] __msan_chain_origin+0xbd/0x140 [ 350.864337][ T4634] get_compat_msghdr+0x4fc/0x720 [ 350.870738][ T4634] ___sys_recvmsg+0x18c/0x840 [ 350.875636][ T4634] ? __stack_depot_save+0x21/0x4b0 [ 350.880942][ T4634] ? kmsan_internal_check_memory+0x94/0x530 [ 350.887323][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 350.893285][ T4634] do_recvmmsg+0x682/0x1180 [ 350.898038][ T4634] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 350.904688][ T4634] __sys_recvmmsg+0x113/0x450 [ 350.910879][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 350.917708][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 350.923171][ T4634] ? exit_to_user_mode_prepare+0x119/0x220 [ 350.929616][ T4634] do_fast_syscall_32+0x33/0x70 [ 350.934705][ T4634] do_SYSENTER_32+0x1b/0x20 [ 350.939356][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 350.946082][ T4634] RIP: 0023:0xf7f63549 [ 350.950318][ T4634] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 350.970387][ T4634] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 350.978902][ T4634] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 350.987574][ T4634] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 350.997755][ T4634] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 351.006809][ T4634] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 351.015311][ T4634] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 351.024237][ T4634] [ 351.028376][ T4634] Uninit was stored to memory at: [ 351.033862][ T4634] get_compat_msghdr+0x4fc/0x720 [ 351.039220][ T4634] ___sys_recvmsg+0x18c/0x840 [ 351.044681][ T4634] do_recvmmsg+0x682/0x1180 [ 351.049782][ T4634] __sys_recvmmsg+0x113/0x450 [ 351.055523][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 351.062380][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 351.067852][ T4634] do_fast_syscall_32+0x33/0x70 [ 351.073187][ T4634] do_SYSENTER_32+0x1b/0x20 [ 351.077851][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 351.084743][ T4634] [ 351.087231][ T4634] Uninit was stored to memory at: [ 351.092500][ T4634] get_compat_msghdr+0x4fc/0x720 [ 351.097698][ T4634] ___sys_recvmsg+0x18c/0x840 [ 351.121657][ T4634] do_recvmmsg+0x682/0x1180 [ 351.127145][ T4634] __sys_recvmmsg+0x113/0x450 [ 351.132490][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 351.140133][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 351.146599][ T4634] do_fast_syscall_32+0x33/0x70 [ 351.151600][ T4634] do_SYSENTER_32+0x1b/0x20 [ 351.156501][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 351.163303][ T4634] [ 351.165948][ T4634] Uninit was stored to memory at: [ 351.171171][ T4634] get_compat_msghdr+0x4fc/0x720 [ 351.176411][ T4634] ___sys_recvmsg+0x18c/0x840 [ 351.181247][ T4634] do_recvmmsg+0x682/0x1180 [ 351.186484][ T4634] __sys_recvmmsg+0x113/0x450 [ 351.191484][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 351.198637][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 351.204139][ T4634] do_fast_syscall_32+0x33/0x70 [ 351.209151][ T4634] do_SYSENTER_32+0x1b/0x20 [ 351.215805][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 351.222344][ T4634] [ 351.224904][ T4634] Uninit was stored to memory at: [ 351.230159][ T4634] get_compat_msghdr+0x4fc/0x720 [ 351.235472][ T4634] ___sys_recvmsg+0x18c/0x840 [ 351.241075][ T4634] do_recvmmsg+0x682/0x1180 [ 351.246442][ T4634] __sys_recvmmsg+0x113/0x450 [ 351.251361][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 351.258185][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 351.263619][ T4634] do_fast_syscall_32+0x33/0x70 [ 351.269047][ T4634] do_SYSENTER_32+0x1b/0x20 [ 351.273896][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 351.280520][ T4634] [ 351.283176][ T4634] Uninit was stored to memory at: [ 351.288597][ T4634] get_compat_msghdr+0x4fc/0x720 [ 351.293897][ T4634] ___sys_recvmsg+0x18c/0x840 [ 351.299254][ T4634] do_recvmmsg+0x682/0x1180 [ 351.304753][ T4634] __sys_recvmmsg+0x113/0x450 [ 351.309752][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 351.316355][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 351.322095][ T4634] do_fast_syscall_32+0x33/0x70 [ 351.329783][ T4634] do_SYSENTER_32+0x1b/0x20 [ 351.334847][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 351.341386][ T4634] [ 351.344041][ T4634] Uninit was stored to memory at: [ 351.349342][ T4634] get_compat_msghdr+0x4fc/0x720 [ 351.354557][ T4634] ___sys_recvmsg+0x18c/0x840 [ 351.359559][ T4634] do_recvmmsg+0x682/0x1180 [ 351.364615][ T4634] __sys_recvmmsg+0x113/0x450 [ 351.369620][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 351.376301][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 351.381665][ T4634] do_fast_syscall_32+0x33/0x70 [ 351.386800][ T4634] do_SYSENTER_32+0x1b/0x20 [ 351.391605][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 351.398335][ T4634] [ 351.401000][ T4634] Uninit was stored to memory at: [ 351.406444][ T4634] get_compat_msghdr+0x4fc/0x720 [ 351.411622][ T4634] ___sys_recvmsg+0x18c/0x840 [ 351.416783][ T4634] do_recvmmsg+0x682/0x1180 [ 351.421607][ T4634] __sys_recvmmsg+0x113/0x450 [ 351.426874][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 351.433506][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 351.438875][ T4634] do_fast_syscall_32+0x33/0x70 [ 351.444006][ T4634] do_SYSENTER_32+0x1b/0x20 [ 351.448922][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 351.455850][ T4634] [ 351.458257][ T4634] Local variable msg_sys created at: [ 351.463904][ T4634] do_recvmmsg+0x5c/0x1180 [ 351.468649][ T4634] __sys_recvmmsg+0x113/0x450 [ 351.553213][ T3561] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32 [ 351.564367][ T3561] asix: probe of 4-1:0.0 failed with error -32 [ 351.723353][ T4634] not chained 640000 origins [ 351.728637][ T4634] CPU: 1 PID: 4634 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 351.740323][ T4634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 351.751369][ T4634] Call Trace: [ 351.754720][ T4634] [ 351.757753][ T4634] dump_stack_lvl+0x1c8/0x256 [ 351.763533][ T4634] dump_stack+0x1a/0x1c [ 351.768023][ T4634] kmsan_internal_chain_origin+0x78/0x120 [ 351.774336][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 351.780463][ T4634] ? ____sys_recvmsg+0x5c1/0x810 [ 351.785534][ T4634] ? ___sys_recvmsg+0x217/0x840 [ 351.790637][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 351.796631][ T4634] ? ____sys_recvmsg+0x5c1/0x810 [ 351.801919][ T4634] ? kfree+0x44/0x980 [ 351.808064][ T4634] ? ___sys_recvmsg+0x248/0x840 [ 351.813135][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 351.819404][ T4634] ? get_compat_msghdr+0x51/0x720 [ 351.825680][ T4634] ? ___sys_recvmsg+0x18c/0x840 [ 351.831015][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 351.837251][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 351.844035][ T4634] ? should_fail+0x3f/0x810 [ 351.848825][ T4634] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 351.855571][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 351.863209][ T4634] __msan_chain_origin+0xbd/0x140 [ 351.868840][ T4634] get_compat_msghdr+0x4fc/0x720 [ 351.874801][ T4634] ___sys_recvmsg+0x18c/0x840 [ 351.881970][ T4634] ? __stack_depot_save+0x21/0x4b0 [ 351.887546][ T4634] ? kmsan_internal_check_memory+0x94/0x530 [ 351.894449][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 351.902627][ T4634] do_recvmmsg+0x682/0x1180 [ 351.907643][ T4634] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 351.914271][ T4634] __sys_recvmmsg+0x113/0x450 [ 351.919131][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 351.926594][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 351.932470][ T4634] ? exit_to_user_mode_prepare+0x119/0x220 [ 351.939179][ T4634] do_fast_syscall_32+0x33/0x70 [ 351.944509][ T4634] do_SYSENTER_32+0x1b/0x20 [ 351.949359][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 351.956224][ T4634] RIP: 0023:0xf7f63549 [ 351.960949][ T4634] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 351.983121][ T4634] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 351.993693][ T4634] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 352.006237][ T4634] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 352.015271][ T4634] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 352.025305][ T4634] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 352.034660][ T4634] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 352.043483][ T4634] [ 352.049112][ T4634] Uninit was stored to memory at: [ 352.054429][ T4634] get_compat_msghdr+0x4fc/0x720 [ 352.060470][ T4634] ___sys_recvmsg+0x18c/0x840 [ 352.066458][ T4634] do_recvmmsg+0x682/0x1180 [ 352.072061][ T4634] __sys_recvmmsg+0x113/0x450 [ 352.077245][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 352.083965][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 352.089724][ T4634] do_fast_syscall_32+0x33/0x70 [ 352.095809][ T4634] do_SYSENTER_32+0x1b/0x20 [ 352.100673][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 352.108132][ T4634] [ 352.110743][ T4634] Uninit was stored to memory at: [ 352.117786][ T4634] get_compat_msghdr+0x4fc/0x720 [ 352.124307][ T4634] ___sys_recvmsg+0x18c/0x840 [ 352.129225][ T4634] do_recvmmsg+0x682/0x1180 [ 352.134180][ T4634] __sys_recvmmsg+0x113/0x450 [ 352.139350][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 352.146479][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 352.152665][ T4634] do_fast_syscall_32+0x33/0x70 [ 352.159134][ T4634] do_SYSENTER_32+0x1b/0x20 [ 352.164536][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 352.173117][ T4634] [ 352.176669][ T4634] Uninit was stored to memory at: [ 352.184203][ T4634] get_compat_msghdr+0x4fc/0x720 [ 352.189996][ T4634] ___sys_recvmsg+0x18c/0x840 [ 352.195652][ T4634] do_recvmmsg+0x682/0x1180 [ 352.201120][ T4634] __sys_recvmmsg+0x113/0x450 [ 352.207156][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 352.215510][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 352.221333][ T4634] do_fast_syscall_32+0x33/0x70 [ 352.226717][ T4634] do_SYSENTER_32+0x1b/0x20 [ 352.233723][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 352.243287][ T4634] [ 352.245960][ T4634] Uninit was stored to memory at: [ 352.251905][ T4634] get_compat_msghdr+0x4fc/0x720 [ 352.258663][ T4634] ___sys_recvmsg+0x18c/0x840 [ 352.263998][ T4634] do_recvmmsg+0x682/0x1180 [ 352.270300][ T4634] __sys_recvmmsg+0x113/0x450 [ 352.276524][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 352.283296][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 352.289188][ T4634] do_fast_syscall_32+0x33/0x70 [ 352.294318][ T4634] do_SYSENTER_32+0x1b/0x20 [ 352.299369][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 352.306222][ T4634] [ 352.308644][ T4634] Uninit was stored to memory at: [ 352.314050][ T4634] get_compat_msghdr+0x4fc/0x720 [ 352.323134][ T4634] ___sys_recvmsg+0x18c/0x840 [ 352.328575][ T4634] do_recvmmsg+0x682/0x1180 [ 352.334042][ T4634] __sys_recvmmsg+0x113/0x450 [ 352.339117][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 352.347044][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 352.352591][ T4634] do_fast_syscall_32+0x33/0x70 [ 352.357767][ T4634] do_SYSENTER_32+0x1b/0x20 [ 352.363891][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 352.371080][ T4634] [ 352.373658][ T4634] Uninit was stored to memory at: [ 352.379892][ T4634] get_compat_msghdr+0x4fc/0x720 [ 352.385105][ T4634] ___sys_recvmsg+0x18c/0x840 [ 352.390428][ T4634] do_recvmmsg+0x682/0x1180 [ 352.395541][ T4634] __sys_recvmmsg+0x113/0x450 [ 352.403758][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 352.413878][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 352.419269][ T4634] do_fast_syscall_32+0x33/0x70 [ 352.428095][ T4634] do_SYSENTER_32+0x1b/0x20 [ 352.435111][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 352.445256][ T4634] [ 352.447836][ T4634] Uninit was stored to memory at: [ 352.454427][ T4634] get_compat_msghdr+0x4fc/0x720 [ 352.460161][ T4634] ___sys_recvmsg+0x18c/0x840 [ 352.472215][ T4634] do_recvmmsg+0x682/0x1180 [ 352.478524][ T4634] __sys_recvmmsg+0x113/0x450 [ 352.486499][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 352.495445][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 352.503800][ T4634] do_fast_syscall_32+0x33/0x70 [ 352.509332][ T4634] do_SYSENTER_32+0x1b/0x20 [ 352.515710][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 352.525033][ T4634] [ 352.530261][ T4634] Local variable msg_sys created at: [ 352.538658][ T4634] do_recvmmsg+0x5c/0x1180 [ 352.545556][ T4634] __sys_recvmmsg+0x113/0x450 [ 352.759165][ T4634] not chained 650000 origins [ 352.764287][ T4634] CPU: 0 PID: 4634 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 352.777206][ T4634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 352.788508][ T4634] Call Trace: [ 352.792677][ T4634] [ 352.796471][ T4634] dump_stack_lvl+0x1c8/0x256 [ 352.801405][ T4634] dump_stack+0x1a/0x1c [ 352.806195][ T4634] kmsan_internal_chain_origin+0x78/0x120 [ 352.813481][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 352.820987][ T4634] ? ____sys_recvmsg+0x5c1/0x810 [ 352.826994][ T4634] ? ___sys_recvmsg+0x217/0x840 [ 352.833137][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 352.839235][ T4634] ? ____sys_recvmsg+0x5c1/0x810 [ 352.845813][ T4634] ? kfree+0x44/0x980 [ 352.850110][ T4634] ? ___sys_recvmsg+0x248/0x840 [ 352.855252][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 352.862995][ T4634] ? get_compat_msghdr+0x51/0x720 [ 352.868950][ T4634] ? ___sys_recvmsg+0x18c/0x840 [ 352.876080][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 352.882538][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 352.890424][ T4634] ? should_fail+0x3f/0x810 [ 352.896928][ T4634] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 352.907047][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 352.916222][ T4634] __msan_chain_origin+0xbd/0x140 [ 352.918181][ T3561] usb 4-1: USB disconnect, device number 21 [ 352.922622][ T4634] get_compat_msghdr+0x4fc/0x720 [ 352.922742][ T4634] ___sys_recvmsg+0x18c/0x840 [ 352.922845][ T4634] ? __stack_depot_save+0x21/0x4b0 [ 352.945640][ T4634] ? kmsan_internal_check_memory+0x94/0x530 [ 352.952036][ T4634] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 352.958881][ T4634] do_recvmmsg+0x682/0x1180 [ 352.963844][ T4634] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 352.972639][ T4634] __sys_recvmmsg+0x113/0x450 [ 352.978594][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 352.985468][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 352.991428][ T4634] ? exit_to_user_mode_prepare+0x119/0x220 [ 352.998253][ T4634] do_fast_syscall_32+0x33/0x70 [ 353.004891][ T4634] do_SYSENTER_32+0x1b/0x20 [ 353.009534][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 353.017162][ T4634] RIP: 0023:0xf7f63549 [ 353.021814][ T4634] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 353.044732][ T4634] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 353.054154][ T4634] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 353.062776][ T4634] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 353.071658][ T4634] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 353.080193][ T4634] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 353.088731][ T4634] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 353.097202][ T4634] [ 353.101241][ T4634] Uninit was stored to memory at: [ 353.108265][ T4634] get_compat_msghdr+0x4fc/0x720 [ 353.114008][ T4634] ___sys_recvmsg+0x18c/0x840 [ 353.119102][ T4634] do_recvmmsg+0x682/0x1180 [ 353.126236][ T4634] __sys_recvmmsg+0x113/0x450 [ 353.131699][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 353.140713][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 353.146713][ T4634] do_fast_syscall_32+0x33/0x70 [ 353.152230][ T4634] do_SYSENTER_32+0x1b/0x20 [ 353.157547][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 353.164604][ T4634] [ 353.167041][ T4634] Uninit was stored to memory at: [ 353.173377][ T4634] get_compat_msghdr+0x4fc/0x720 [ 353.178658][ T4634] ___sys_recvmsg+0x18c/0x840 [ 353.184262][ T4634] do_recvmmsg+0x682/0x1180 [ 353.189251][ T4634] __sys_recvmmsg+0x113/0x450 [ 353.194705][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 353.202347][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 353.208241][ T4634] do_fast_syscall_32+0x33/0x70 [ 353.215624][ T4634] do_SYSENTER_32+0x1b/0x20 [ 353.220316][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 353.228230][ T4634] [ 353.232107][ T4634] Uninit was stored to memory at: [ 353.238396][ T4634] get_compat_msghdr+0x4fc/0x720 [ 353.245934][ T4634] ___sys_recvmsg+0x18c/0x840 [ 353.251295][ T4634] do_recvmmsg+0x682/0x1180 [ 353.257623][ T4634] __sys_recvmmsg+0x113/0x450 [ 353.264072][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 353.270798][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 353.278698][ T4634] do_fast_syscall_32+0x33/0x70 [ 353.284059][ T4634] do_SYSENTER_32+0x1b/0x20 [ 353.288983][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 353.295748][ T4634] [ 353.299156][ T4634] Uninit was stored to memory at: [ 353.305969][ T4634] get_compat_msghdr+0x4fc/0x720 [ 353.311316][ T4634] ___sys_recvmsg+0x18c/0x840 [ 353.317528][ T4634] do_recvmmsg+0x682/0x1180 [ 353.324953][ T4634] __sys_recvmmsg+0x113/0x450 [ 353.333524][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 353.340224][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 353.345798][ T4634] do_fast_syscall_32+0x33/0x70 [ 353.351859][ T4634] do_SYSENTER_32+0x1b/0x20 [ 353.356744][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 353.363745][ T4634] [ 353.366775][ T4634] Uninit was stored to memory at: [ 353.373168][ T4634] get_compat_msghdr+0x4fc/0x720 [ 353.379195][ T4634] ___sys_recvmsg+0x18c/0x840 [ 353.385270][ T4634] do_recvmmsg+0x682/0x1180 [ 353.390194][ T4634] __sys_recvmmsg+0x113/0x450 [ 353.396803][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 353.408081][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 353.415176][ T4634] do_fast_syscall_32+0x33/0x70 [ 353.420234][ T4634] do_SYSENTER_32+0x1b/0x20 [ 353.425258][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 353.432073][ T4634] [ 353.434686][ T4634] Uninit was stored to memory at: [ 353.442969][ T4634] get_compat_msghdr+0x4fc/0x720 [ 353.448785][ T4634] ___sys_recvmsg+0x18c/0x840 [ 353.455789][ T4634] do_recvmmsg+0x682/0x1180 [ 353.462327][ T4634] __sys_recvmmsg+0x113/0x450 [ 353.467346][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 353.473973][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 353.479873][ T4634] do_fast_syscall_32+0x33/0x70 [ 353.485236][ T4634] do_SYSENTER_32+0x1b/0x20 [ 353.490760][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 353.497877][ T4634] [ 353.501320][ T4634] Uninit was stored to memory at: [ 353.507942][ T4634] get_compat_msghdr+0x4fc/0x720 [ 353.513173][ T4634] ___sys_recvmsg+0x18c/0x840 [ 353.518110][ T4634] do_recvmmsg+0x682/0x1180 [ 353.526182][ T4634] __sys_recvmmsg+0x113/0x450 [ 353.531211][ T4634] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 353.537986][ T4634] __do_fast_syscall_32+0xa2/0x100 [ 353.543614][ T4634] do_fast_syscall_32+0x33/0x70 [ 353.548936][ T4634] do_SYSENTER_32+0x1b/0x20 [ 353.555728][ T4634] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 353.562321][ T4634] [ 353.564924][ T4634] Local variable msg_sys created at: [ 353.570285][ T4634] do_recvmmsg+0x5c/0x1180 [ 353.575099][ T4634] __sys_recvmmsg+0x113/0x450 21:57:49 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x40000, 0x6, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef0100010000", 0x3f, 0x400}, {&(0x7f0000001f40)}, {0x0, 0x0, 0xbff}, {0x0}, {0x0, 0x0, 0x2}, {0x0, 0x0, 0x80000000000000}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) 21:57:49 executing program 2: r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000300)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x9, &(0x7f0000000380)=@generic={0x0, 0x0, 0x1, "398027db", 'g'}) 21:57:49 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x2c, &(0x7f0000000c40)={0x0, 0x0, 0xab, {0xab, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab91cd7abf7a917f376386f7e92afc65e75c880a55d2877146ab5f476c1287ecb3e4003547007c60a0466f77cc3abce7d506197b7602e5face683fd5b62746db4fde2e52887d025b1d182565df701612bbacca6413"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) 21:57:49 executing program 1: mq_open(&(0x7f0000000280)='blkio.throttle.io_service_bytes\x00', 0x0, 0x0, 0x0) 21:57:49 executing program 5: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x925, 0x8888, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f00000002c0)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x6, {[@local, @main=@item_4={0x3, 0x0, 0x0, "8b707542"}]}}, 0x0}, 0x0) 21:57:49 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x4f, 0x92, 0xb9, 0x8, 0x1557, 0x7720, 0xb7eb, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x27, 0x85, 0xe6}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000040)={0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b00)={0x40, 0x13, 0x6, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x40, 0x19, 0x2, "a8cd"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 21:57:50 executing program 1: r0 = socket(0xa, 0x2, 0x0) sendmsg$can_bcm(r0, &(0x7f0000000180)={&(0x7f0000000080), 0x10, &(0x7f0000000140)={0x0}}, 0x0) [ 354.143146][ T119] usb 3-1: new high-speed USB device number 23 using dummy_hcd [ 354.163842][ T3565] usb 6-1: new high-speed USB device number 31 using dummy_hcd [ 354.267094][ T3619] usb 5-1: new high-speed USB device number 32 using dummy_hcd [ 354.288879][ T3561] usb 4-1: new high-speed USB device number 22 using dummy_hcd [ 354.339041][ T4674] loop0: detected capacity change from 0 to 512 [ 354.399547][ T4674] EXT4-fs (loop0): invalid inodes per group: 67108896 [ 354.399547][ T4674] 21:57:50 executing program 1: r0 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f00000000c0)={0x4, 0x5, 0x1000, 0x0, 0x0}) ioctl$DRM_IOCTL_MODE_DESTROY_DUMB(r0, 0xc00464b4, &(0x7f0000000100)={r1}) ioctl$DRM_IOCTL_MODE_DESTROY_DUMB(r0, 0xc00464b4, &(0x7f0000000140)={r1}) [ 354.534151][ T3565] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 354.546473][ T3565] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 354.553479][ T3561] usb 4-1: Using ep0 maxpacket: 8 [ 354.557718][ T3565] usb 6-1: New USB device found, idVendor=0925, idProduct=8888, bcdDevice= 0.00 [ 354.573348][ T3565] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 354.597603][ T4673] not chained 660000 origins [ 354.602559][ T4673] CPU: 0 PID: 4673 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 354.613340][ T4673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 354.624297][ T4673] Call Trace: [ 354.627752][ T4673] [ 354.630952][ T4673] dump_stack_lvl+0x1c8/0x256 [ 354.636782][ T4673] dump_stack+0x1a/0x1c [ 354.642594][ T4673] kmsan_internal_chain_origin+0x78/0x120 [ 354.649501][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 354.656372][ T4673] ? ____sys_recvmsg+0x5c1/0x810 [ 354.662167][ T4673] ? ___sys_recvmsg+0x217/0x840 [ 354.667177][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 354.675037][ T4673] ? ____sys_recvmsg+0x5c1/0x810 [ 354.681864][ T4673] ? kfree+0x44/0x980 [ 354.686013][ T4673] ? ___sys_recvmsg+0x248/0x840 [ 354.691707][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 354.697876][ T4673] ? get_compat_msghdr+0x51/0x720 [ 354.703351][ T4673] ? ___sys_recvmsg+0x18c/0x840 [ 354.708668][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 354.714779][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 354.720898][ T4673] ? should_fail+0x3f/0x810 [ 354.725952][ T4673] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 354.733438][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 354.739410][ T4673] __msan_chain_origin+0xbd/0x140 [ 354.744949][ T4673] get_compat_msghdr+0x4fc/0x720 [ 354.750211][ T4673] ___sys_recvmsg+0x18c/0x840 [ 354.755113][ T4673] ? __stack_depot_save+0x21/0x4b0 [ 354.760517][ T4673] ? kmsan_internal_check_memory+0x94/0x530 [ 354.766619][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 354.772702][ T4673] do_recvmmsg+0x682/0x1180 [ 354.778221][ T4673] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 354.784915][ T4673] __sys_recvmmsg+0x113/0x450 [ 354.790244][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 354.797666][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 354.804324][ T4673] ? exit_to_user_mode_prepare+0x119/0x220 [ 354.810420][ T4673] do_fast_syscall_32+0x33/0x70 [ 354.815529][ T4673] do_SYSENTER_32+0x1b/0x20 [ 354.820291][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 354.827808][ T4673] RIP: 0023:0xf7f63549 [ 354.832118][ T4673] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 354.852873][ T4673] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 354.861907][ T4673] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 354.870118][ T4673] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 354.878211][ T4673] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 354.886928][ T4673] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 354.897383][ T4673] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 354.906771][ T4673] [ 354.911391][ T4673] Uninit was stored to memory at: [ 354.916775][ T4673] get_compat_msghdr+0x4fc/0x720 [ 354.922042][ T4673] ___sys_recvmsg+0x18c/0x840 [ 354.928561][ T4673] do_recvmmsg+0x682/0x1180 [ 354.935541][ T4673] __sys_recvmmsg+0x113/0x450 [ 354.941159][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 354.949032][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 354.954892][ T4673] do_fast_syscall_32+0x33/0x70 [ 354.955763][ T3619] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 354.960523][ T4673] do_SYSENTER_32+0x1b/0x20 [ 354.960609][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 354.973524][ T3619] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 354.977979][ T4673] [ 354.978001][ T4673] Uninit was stored to memory at: [ 354.978152][ T4673] get_compat_msghdr+0x4fc/0x720 [ 354.985855][ T3619] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 354.996343][ T4673] ___sys_recvmsg+0x18c/0x840 [ 354.996440][ T4673] do_recvmmsg+0x682/0x1180 [ 354.996509][ T4673] __sys_recvmmsg+0x113/0x450 [ 354.996580][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 354.996675][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 354.996757][ T4673] do_fast_syscall_32+0x33/0x70 [ 354.999193][ T3619] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 355.004305][ T4673] do_SYSENTER_32+0x1b/0x20 [ 355.063791][ T3561] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 355.064687][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 355.074725][ T3561] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 355.080952][ T4673] [ 355.080973][ T4673] Uninit was stored to memory at: [ 355.081111][ T4673] get_compat_msghdr+0x4fc/0x720 [ 355.104376][ T4673] ___sys_recvmsg+0x18c/0x840 [ 355.109392][ T4673] do_recvmmsg+0x682/0x1180 [ 355.114186][ T4673] __sys_recvmmsg+0x113/0x450 [ 355.119332][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 355.126035][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 355.131834][ T4673] do_fast_syscall_32+0x33/0x70 [ 355.137159][ T4673] do_SYSENTER_32+0x1b/0x20 [ 355.142173][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 355.148623][ T3561] usb 4-1: config 0 descriptor?? [ 355.149481][ T4673] [ 355.157246][ T4673] Uninit was stored to memory at: [ 355.163030][ T4673] get_compat_msghdr+0x4fc/0x720 [ 355.168561][ T4673] ___sys_recvmsg+0x18c/0x840 [ 355.174442][ T4673] do_recvmmsg+0x682/0x1180 [ 355.179931][ T4673] __sys_recvmmsg+0x113/0x450 [ 355.185033][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 355.191547][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 355.196996][ T4673] do_fast_syscall_32+0x33/0x70 [ 355.203218][ T3619] usb 5-1: config 0 descriptor?? [ 355.203268][ T4673] do_SYSENTER_32+0x1b/0x20 [ 355.213172][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 355.220011][ T4673] [ 355.222694][ T4673] Uninit was stored to memory at: [ 355.230194][ T4673] get_compat_msghdr+0x4fc/0x720 [ 355.236775][ T4673] ___sys_recvmsg+0x18c/0x840 [ 355.241738][ T4673] do_recvmmsg+0x682/0x1180 [ 355.248302][ T4673] __sys_recvmmsg+0x113/0x450 [ 355.253585][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 355.260702][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 355.261995][ T3619] usbhid 5-1:0.0: can't add hid device: -22 [ 355.266261][ T4673] do_fast_syscall_32+0x33/0x70 [ 355.266345][ T4673] do_SYSENTER_32+0x1b/0x20 [ 355.266506][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 355.273079][ T3619] usbhid: probe of 5-1:0.0 failed with error -22 [ 355.279108][ T4673] [ 355.302166][ T4673] Uninit was stored to memory at: [ 355.309937][ T4673] get_compat_msghdr+0x4fc/0x720 [ 355.315739][ T4673] ___sys_recvmsg+0x18c/0x840 [ 355.322521][ T4673] do_recvmmsg+0x682/0x1180 [ 355.329803][ T4673] __sys_recvmmsg+0x113/0x450 [ 355.335896][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 355.343753][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 355.349477][ T4673] do_fast_syscall_32+0x33/0x70 [ 355.354838][ T4673] do_SYSENTER_32+0x1b/0x20 [ 355.359518][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 355.366757][ T4673] [ 355.369345][ T4673] Uninit was stored to memory at: [ 355.375252][ T4673] get_compat_msghdr+0x4fc/0x720 [ 355.380968][ T4673] ___sys_recvmsg+0x18c/0x840 [ 355.386522][ T4673] do_recvmmsg+0x682/0x1180 [ 355.393476][ T4673] __sys_recvmmsg+0x113/0x450 [ 355.398514][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 355.405282][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 355.410920][ T4673] do_fast_syscall_32+0x33/0x70 [ 355.416468][ T4673] do_SYSENTER_32+0x1b/0x20 [ 355.423428][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 355.431552][ T4673] [ 355.434311][ T4673] Local variable msg_sys created at: [ 355.440153][ T4673] do_recvmmsg+0x5c/0x1180 [ 355.445289][ T4673] __sys_recvmmsg+0x113/0x450 [ 355.524584][ T119] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 355.534634][ T119] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 355.544585][ T119] usb 3-1: Product: syz [ 355.549001][ T119] usb 3-1: Manufacturer: syz [ 355.554179][ T119] usb 3-1: SerialNumber: syz [ 355.582323][ T3565] usb 6-1: config 0 descriptor?? [ 355.635862][ T119] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested 21:57:51 executing program 1: r0 = socket$igmp6(0xa, 0x3, 0x2) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000000)) [ 355.843670][ T3561] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32 [ 355.856685][ T3561] asix: probe of 4-1:0.0 failed with error -32 21:57:52 executing program 1: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) sendmsg$inet6(r0, &(0x7f00000004c0)={&(0x7f0000000100)={0xa, 0x4621, 0x0, @local}, 0x1c, 0x0, 0x0, &(0x7f00000003c0)=[@tclass={{0x14, 0x29, 0x43, 0x7ff}}], 0x18}, 0x0) [ 356.124142][ T3565] usbhid 6-1:0.0: can't add hid device: -71 [ 356.130934][ T3565] usbhid: probe of 6-1:0.0 failed with error -71 [ 356.201541][ T3565] usb 6-1: USB disconnect, device number 31 [ 356.215933][ T3563] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 21:57:52 executing program 1: r0 = add_key$keyring(&(0x7f00000001c0), &(0x7f0000000200)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffb) add_key$fscrypt_provisioning(&(0x7f0000000480), 0x0, &(0x7f0000000500)={0x0, 0x0, @d}, 0x18, r0) [ 356.551434][ T4673] not chained 670000 origins [ 356.557066][ T4673] CPU: 1 PID: 4673 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 356.567565][ T4673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 356.577850][ T4673] Call Trace: [ 356.581229][ T4673] [ 356.585397][ T4673] dump_stack_lvl+0x1c8/0x256 [ 356.590315][ T4673] dump_stack+0x1a/0x1c [ 356.595180][ T4673] kmsan_internal_chain_origin+0x78/0x120 [ 356.605454][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 356.611631][ T4673] ? ____sys_recvmsg+0x5c1/0x810 [ 356.616732][ T4673] ? ___sys_recvmsg+0x217/0x840 [ 356.621775][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 356.627973][ T4673] ? ____sys_recvmsg+0x5c1/0x810 [ 356.633104][ T4673] ? kfree+0x44/0x980 [ 356.638127][ T4673] ? ___sys_recvmsg+0x248/0x840 [ 356.643301][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 356.649826][ T4673] ? get_compat_msghdr+0x51/0x720 [ 356.656327][ T4673] ? ___sys_recvmsg+0x18c/0x840 [ 356.657557][ T3565] usb 3-1: USB disconnect, device number 23 [ 356.661393][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 356.661541][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 356.679678][ T4673] ? should_fail+0x3f/0x810 [ 356.684387][ T4673] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 356.690839][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 356.696937][ T4673] __msan_chain_origin+0xbd/0x140 [ 356.703254][ T4673] get_compat_msghdr+0x4fc/0x720 [ 356.708584][ T4673] ___sys_recvmsg+0x18c/0x840 [ 356.714304][ T4673] ? __stack_depot_save+0x21/0x4b0 [ 356.723189][ T4673] ? kmsan_internal_check_memory+0x94/0x530 [ 356.730348][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 356.737423][ T4673] do_recvmmsg+0x682/0x1180 [ 356.742287][ T4673] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 356.750385][ T4673] __sys_recvmmsg+0x113/0x450 [ 356.755411][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 356.762814][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 356.768540][ T4673] ? exit_to_user_mode_prepare+0x119/0x220 [ 356.774789][ T4673] do_fast_syscall_32+0x33/0x70 [ 356.779863][ T4673] do_SYSENTER_32+0x1b/0x20 [ 356.785618][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 356.794041][ T4673] RIP: 0023:0xf7f63549 [ 356.800410][ T4673] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 356.824905][ T4673] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 356.836574][ T4673] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 356.845573][ T4673] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 356.855847][ T4673] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 356.868671][ T4673] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 356.878791][ T4673] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 356.888027][ T4673] [ 356.893330][ T4673] Uninit was stored to memory at: [ 356.899670][ T4673] get_compat_msghdr+0x4fc/0x720 [ 356.906822][ T4673] ___sys_recvmsg+0x18c/0x840 [ 356.913057][ T4673] do_recvmmsg+0x682/0x1180 [ 356.919104][ T4673] __sys_recvmmsg+0x113/0x450 [ 356.925506][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 356.933383][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 356.940924][ T4673] do_fast_syscall_32+0x33/0x70 [ 356.949587][ T4673] do_SYSENTER_32+0x1b/0x20 [ 356.956547][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 356.965064][ T4673] [ 356.967838][ T4673] Uninit was stored to memory at: [ 356.973675][ T4673] get_compat_msghdr+0x4fc/0x720 [ 356.979095][ T4673] ___sys_recvmsg+0x18c/0x840 [ 356.984930][ T4673] do_recvmmsg+0x682/0x1180 [ 356.991171][ T4673] __sys_recvmmsg+0x113/0x450 [ 356.996684][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 357.005338][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 357.012487][ T4673] do_fast_syscall_32+0x33/0x70 [ 357.018752][ T4673] do_SYSENTER_32+0x1b/0x20 [ 357.023981][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 357.034157][ T4673] [ 357.036662][ T4673] Uninit was stored to memory at: [ 357.044762][ T4673] get_compat_msghdr+0x4fc/0x720 [ 357.051021][ T4673] ___sys_recvmsg+0x18c/0x840 [ 357.056027][ T4673] do_recvmmsg+0x682/0x1180 [ 357.060967][ T4673] __sys_recvmmsg+0x113/0x450 [ 357.066705][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 357.073913][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 357.079598][ T4673] do_fast_syscall_32+0x33/0x70 [ 357.084969][ T4673] do_SYSENTER_32+0x1b/0x20 [ 357.089899][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 357.097431][ T4673] 21:57:53 executing program 5: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x925, 0x8888, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f00000002c0)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x6, {[@local, @main=@item_4={0x3, 0x0, 0x0, "8b707542"}]}}, 0x0}, 0x0) [ 357.101435][ T4673] Uninit was stored to memory at: [ 357.107980][ T4673] get_compat_msghdr+0x4fc/0x720 [ 357.115252][ T4673] ___sys_recvmsg+0x18c/0x840 [ 357.120943][ T4673] do_recvmmsg+0x682/0x1180 [ 357.126744][ T4673] __sys_recvmmsg+0x113/0x450 [ 357.132893][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 357.139773][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 357.145244][ T4673] do_fast_syscall_32+0x33/0x70 [ 357.150523][ T4673] do_SYSENTER_32+0x1b/0x20 [ 357.156655][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 357.165153][ T4673] [ 357.167549][ T4673] Uninit was stored to memory at: [ 357.173186][ T4673] get_compat_msghdr+0x4fc/0x720 [ 357.178457][ T4673] ___sys_recvmsg+0x18c/0x840 [ 357.184002][ T4673] do_recvmmsg+0x682/0x1180 [ 357.189203][ T4673] __sys_recvmmsg+0x113/0x450 [ 357.194668][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 357.201587][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 357.207137][ T4673] do_fast_syscall_32+0x33/0x70 [ 357.212502][ T4673] do_SYSENTER_32+0x1b/0x20 [ 357.218524][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 357.226139][ T4673] [ 357.228686][ T4673] Uninit was stored to memory at: [ 357.235907][ T4673] get_compat_msghdr+0x4fc/0x720 [ 357.241864][ T4673] ___sys_recvmsg+0x18c/0x840 [ 357.243667][ T119] usb 5-1: USB disconnect, device number 32 [ 357.246748][ T4673] do_recvmmsg+0x682/0x1180 [ 357.258390][ T4673] __sys_recvmmsg+0x113/0x450 [ 357.263310][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 357.263362][ T3563] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 357.263431][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 357.270476][ T3563] ath9k_htc: Failed to initialize the device [ 357.277217][ T4673] do_fast_syscall_32+0x33/0x70 [ 357.303388][ T4673] do_SYSENTER_32+0x1b/0x20 [ 357.312617][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 357.326767][ T4673] [ 357.329515][ T4673] Uninit was stored to memory at: [ 357.341633][ T4673] get_compat_msghdr+0x4fc/0x720 [ 357.346824][ T4673] ___sys_recvmsg+0x18c/0x840 [ 357.352205][ T4673] do_recvmmsg+0x682/0x1180 [ 357.357053][ T4673] __sys_recvmmsg+0x113/0x450 [ 357.363077][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 357.371109][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 357.377708][ T4673] do_fast_syscall_32+0x33/0x70 [ 357.383166][ T4673] do_SYSENTER_32+0x1b/0x20 [ 357.387990][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 357.394874][ T4673] [ 357.397364][ T4673] Local variable msg_sys created at: [ 357.403978][ T4673] do_recvmmsg+0x5c/0x1180 [ 357.408638][ T4673] __sys_recvmmsg+0x113/0x450 [ 357.428302][ T3565] usb 3-1: ath9k_htc: USB layer deinitialized [ 357.523272][ T3566] usb 4-1: USB disconnect, device number 22 [ 357.965984][ T4673] not chained 680000 origins [ 357.971592][ T4673] CPU: 1 PID: 4673 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 357.984119][ T4673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 357.994487][ T4673] Call Trace: [ 357.997947][ T4673] [ 358.001061][ T4673] dump_stack_lvl+0x1c8/0x256 [ 358.007172][ T4673] dump_stack+0x1a/0x1c [ 358.015456][ T4673] kmsan_internal_chain_origin+0x78/0x120 [ 358.021393][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 358.030789][ T4673] ? ____sys_recvmsg+0x5c1/0x810 [ 358.041300][ T4673] ? ___sys_recvmsg+0x217/0x840 [ 358.048256][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 358.054514][ T4673] ? ____sys_recvmsg+0x5c1/0x810 [ 358.059698][ T4673] ? kfree+0x44/0x980 [ 358.063817][ T4673] ? ___sys_recvmsg+0x248/0x840 [ 358.068834][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 358.075125][ T4673] ? get_compat_msghdr+0x51/0x720 [ 358.080292][ T4673] ? ___sys_recvmsg+0x18c/0x840 [ 358.085821][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 358.091964][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 358.098166][ T4673] ? should_fail+0x3f/0x810 [ 358.102960][ T4673] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 358.109599][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 358.117192][ T4673] __msan_chain_origin+0xbd/0x140 [ 358.122482][ T4673] get_compat_msghdr+0x4fc/0x720 [ 358.123168][ T3565] usb 6-1: new high-speed USB device number 32 using dummy_hcd [ 358.127610][ T4673] ___sys_recvmsg+0x18c/0x840 [ 358.127720][ T4673] ? __stack_depot_save+0x21/0x4b0 [ 358.146308][ T4673] ? kmsan_internal_check_memory+0x94/0x530 [ 358.152573][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 358.159868][ T4673] do_recvmmsg+0x682/0x1180 [ 358.165259][ T4673] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 358.172726][ T4673] __sys_recvmmsg+0x113/0x450 [ 358.177715][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 358.184157][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 358.189592][ T4673] ? exit_to_user_mode_prepare+0x119/0x220 [ 358.196749][ T4673] do_fast_syscall_32+0x33/0x70 [ 358.202110][ T4673] do_SYSENTER_32+0x1b/0x20 [ 358.207034][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 358.213583][ T4673] RIP: 0023:0xf7f63549 [ 358.218906][ T4673] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 358.241189][ T4673] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 358.250699][ T4673] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 358.263412][ T4673] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 358.271502][ T4673] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 358.280185][ T4673] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 358.294927][ T4673] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 358.304433][ T4673] [ 358.308576][ T4673] Uninit was stored to memory at: [ 358.313986][ T4673] get_compat_msghdr+0x4fc/0x720 [ 358.319079][ T4673] ___sys_recvmsg+0x18c/0x840 [ 358.324465][ T4673] do_recvmmsg+0x682/0x1180 [ 358.329702][ T4673] __sys_recvmmsg+0x113/0x450 [ 358.340679][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 358.348301][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 358.353829][ T4673] do_fast_syscall_32+0x33/0x70 [ 358.362323][ T4673] do_SYSENTER_32+0x1b/0x20 [ 358.369971][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 358.382883][ T4673] [ 358.385711][ T4673] Uninit was stored to memory at: [ 358.394305][ T4673] get_compat_msghdr+0x4fc/0x720 [ 358.400986][ T4673] ___sys_recvmsg+0x18c/0x840 [ 358.406434][ T4673] do_recvmmsg+0x682/0x1180 [ 358.411861][ T4673] __sys_recvmmsg+0x113/0x450 [ 358.416866][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 358.423555][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 358.429923][ T4673] do_fast_syscall_32+0x33/0x70 [ 358.435874][ T4673] do_SYSENTER_32+0x1b/0x20 [ 358.440941][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 358.447705][ T4673] [ 358.450107][ T4673] Uninit was stored to memory at: [ 358.455759][ T4673] get_compat_msghdr+0x4fc/0x720 [ 358.461027][ T4673] ___sys_recvmsg+0x18c/0x840 [ 358.467256][ T4673] do_recvmmsg+0x682/0x1180 [ 358.471996][ T4673] __sys_recvmmsg+0x113/0x450 [ 358.477117][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 358.483942][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 358.489265][ T4673] do_fast_syscall_32+0x33/0x70 [ 358.493460][ T3565] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 358.495019][ T4673] do_SYSENTER_32+0x1b/0x20 [ 358.506646][ T3565] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 358.511147][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 358.521255][ T3565] usb 6-1: New USB device found, idVendor=0925, idProduct=8888, bcdDevice= 0.00 [ 358.527673][ T4673] [ 358.527693][ T4673] Uninit was stored to memory at: [ 358.527825][ T4673] get_compat_msghdr+0x4fc/0x720 [ 358.536871][ T3565] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 358.539235][ T4673] ___sys_recvmsg+0x18c/0x840 [ 358.552004][ T3565] usb 6-1: config 0 descriptor?? [ 358.561265][ T4673] do_recvmmsg+0x682/0x1180 [ 358.576940][ T4673] __sys_recvmmsg+0x113/0x450 [ 358.581963][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 358.588633][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 358.594264][ T4673] do_fast_syscall_32+0x33/0x70 [ 358.599263][ T4673] do_SYSENTER_32+0x1b/0x20 [ 358.604254][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 358.610985][ T4673] [ 358.613567][ T4673] Uninit was stored to memory at: [ 358.618783][ T4673] get_compat_msghdr+0x4fc/0x720 [ 358.624086][ T4673] ___sys_recvmsg+0x18c/0x840 [ 358.629085][ T4673] do_recvmmsg+0x682/0x1180 [ 358.634188][ T4673] __sys_recvmmsg+0x113/0x450 [ 358.639026][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 358.648713][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 358.655565][ T4673] do_fast_syscall_32+0x33/0x70 [ 358.661262][ T4673] do_SYSENTER_32+0x1b/0x20 [ 358.666181][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 358.672688][ T4673] [ 358.675504][ T4673] Uninit was stored to memory at: [ 358.680885][ T4673] get_compat_msghdr+0x4fc/0x720 [ 358.686165][ T4673] ___sys_recvmsg+0x18c/0x840 [ 358.691060][ T4673] do_recvmmsg+0x682/0x1180 [ 358.696108][ T4673] __sys_recvmmsg+0x113/0x450 [ 358.701077][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 358.707761][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 358.713168][ T4673] do_fast_syscall_32+0x33/0x70 [ 358.718168][ T4673] do_SYSENTER_32+0x1b/0x20 [ 358.723164][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 358.729711][ T4673] [ 358.732218][ T4673] Uninit was stored to memory at: [ 358.739598][ T4673] get_compat_msghdr+0x4fc/0x720 [ 358.744890][ T4673] ___sys_recvmsg+0x18c/0x840 [ 358.749705][ T4673] do_recvmmsg+0x682/0x1180 [ 358.754854][ T4673] __sys_recvmmsg+0x113/0x450 [ 358.759835][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 358.766437][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 358.771680][ T4673] do_fast_syscall_32+0x33/0x70 [ 358.776913][ T4673] do_SYSENTER_32+0x1b/0x20 [ 358.781643][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 358.788309][ T4673] [ 358.790874][ T4673] Local variable msg_sys created at: [ 358.797177][ T4673] do_recvmmsg+0x5c/0x1180 [ 358.801726][ T4673] __sys_recvmmsg+0x113/0x450 [ 358.995100][ T4673] not chained 690000 origins [ 358.999887][ T4673] CPU: 0 PID: 4673 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 359.010962][ T4673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 359.021620][ T4673] Call Trace: [ 359.026032][ T4673] [ 359.029718][ T4673] dump_stack_lvl+0x1c8/0x256 [ 359.034518][ T4673] dump_stack+0x1a/0x1c [ 359.038984][ T4673] kmsan_internal_chain_origin+0x78/0x120 [ 359.045978][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 359.052048][ T4673] ? ____sys_recvmsg+0x5c1/0x810 [ 359.057131][ T4673] ? ___sys_recvmsg+0x217/0x840 [ 359.062297][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 359.068531][ T4673] ? ____sys_recvmsg+0x5c1/0x810 [ 359.074135][ T4673] ? kfree+0x44/0x980 [ 359.078462][ T4673] ? ___sys_recvmsg+0x248/0x840 [ 359.083932][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 359.090132][ T4673] ? get_compat_msghdr+0x51/0x720 [ 359.095771][ T4673] ? ___sys_recvmsg+0x18c/0x840 [ 359.101930][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 359.107963][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 359.114284][ T4673] ? should_fail+0x3f/0x810 [ 359.120659][ T4673] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 359.127159][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 359.133597][ T4673] __msan_chain_origin+0xbd/0x140 [ 359.140115][ T4673] get_compat_msghdr+0x4fc/0x720 [ 359.145324][ T4673] ___sys_recvmsg+0x18c/0x840 [ 359.150258][ T4673] ? __stack_depot_save+0x21/0x4b0 [ 359.155744][ T4673] ? kmsan_internal_check_memory+0x94/0x530 [ 359.162517][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 359.168636][ T4673] do_recvmmsg+0x682/0x1180 [ 359.173260][ T4673] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 359.179967][ T4673] __sys_recvmmsg+0x113/0x450 [ 359.184813][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 359.191657][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 359.197139][ T4673] ? exit_to_user_mode_prepare+0x119/0x220 [ 359.203353][ T4673] do_fast_syscall_32+0x33/0x70 [ 359.208636][ T4673] do_SYSENTER_32+0x1b/0x20 [ 359.213290][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 359.220453][ T4673] RIP: 0023:0xf7f63549 [ 359.224977][ T4673] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 359.249492][ T4673] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 359.258219][ T4673] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 359.266765][ T4673] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 359.275223][ T4673] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 359.284038][ T4673] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 359.292267][ T4673] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 359.302163][ T4673] [ 359.307669][ T4673] Uninit was stored to memory at: [ 359.313943][ T4673] get_compat_msghdr+0x4fc/0x720 [ 359.319132][ T4673] ___sys_recvmsg+0x18c/0x840 [ 359.324348][ T4673] do_recvmmsg+0x682/0x1180 [ 359.330490][ T4673] __sys_recvmmsg+0x113/0x450 [ 359.335555][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 359.342520][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 359.348688][ T4673] do_fast_syscall_32+0x33/0x70 [ 359.354338][ T4673] do_SYSENTER_32+0x1b/0x20 [ 359.360745][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 359.368813][ T4673] [ 359.372011][ T4673] Uninit was stored to memory at: [ 359.377806][ T4673] get_compat_msghdr+0x4fc/0x720 [ 359.385280][ T4673] ___sys_recvmsg+0x18c/0x840 [ 359.391378][ T4673] do_recvmmsg+0x682/0x1180 [ 359.397434][ T4673] __sys_recvmmsg+0x113/0x450 [ 359.406079][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 359.416923][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 359.423462][ T4673] do_fast_syscall_32+0x33/0x70 [ 359.430694][ T4673] do_SYSENTER_32+0x1b/0x20 [ 359.436387][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 359.444412][ T4673] [ 359.447540][ T4673] Uninit was stored to memory at: [ 359.458853][ T4673] get_compat_msghdr+0x4fc/0x720 [ 359.465891][ T4673] ___sys_recvmsg+0x18c/0x840 [ 359.470814][ T4673] do_recvmmsg+0x682/0x1180 [ 359.476285][ T4673] __sys_recvmmsg+0x113/0x450 [ 359.481607][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 359.489852][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 359.495337][ T4673] do_fast_syscall_32+0x33/0x70 [ 359.500740][ T4673] do_SYSENTER_32+0x1b/0x20 [ 359.506313][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 359.514098][ T4673] [ 359.516692][ T4673] Uninit was stored to memory at: [ 359.521982][ T4673] get_compat_msghdr+0x4fc/0x720 [ 359.527767][ T4673] ___sys_recvmsg+0x18c/0x840 [ 359.533017][ T4673] do_recvmmsg+0x682/0x1180 [ 359.538066][ T4673] __sys_recvmmsg+0x113/0x450 [ 359.543051][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 359.550653][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 359.559221][ T4673] do_fast_syscall_32+0x33/0x70 [ 359.565510][ T4673] do_SYSENTER_32+0x1b/0x20 [ 359.570218][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 359.580181][ T4673] [ 359.583025][ T4673] Uninit was stored to memory at: [ 359.590881][ T4673] get_compat_msghdr+0x4fc/0x720 [ 359.597261][ T4673] ___sys_recvmsg+0x18c/0x840 [ 359.603030][ T4673] do_recvmmsg+0x682/0x1180 [ 359.608268][ T4673] __sys_recvmmsg+0x113/0x450 [ 359.613350][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 359.619873][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 359.625665][ T4673] do_fast_syscall_32+0x33/0x70 [ 359.630712][ T4673] do_SYSENTER_32+0x1b/0x20 [ 359.635761][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 359.643378][ T4673] [ 359.645973][ T4673] Uninit was stored to memory at: [ 359.651325][ T4673] get_compat_msghdr+0x4fc/0x720 [ 359.656689][ T4673] ___sys_recvmsg+0x18c/0x840 [ 359.661532][ T4673] do_recvmmsg+0x682/0x1180 [ 359.666640][ T4673] __sys_recvmmsg+0x113/0x450 [ 359.671835][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 359.678558][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 359.685113][ T4673] do_fast_syscall_32+0x33/0x70 [ 359.690479][ T4673] do_SYSENTER_32+0x1b/0x20 [ 359.696660][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 359.703316][ T4673] [ 359.705721][ T4673] Uninit was stored to memory at: [ 359.711157][ T4673] get_compat_msghdr+0x4fc/0x720 [ 359.716387][ T4673] ___sys_recvmsg+0x18c/0x840 [ 359.721226][ T4673] do_recvmmsg+0x682/0x1180 [ 359.726020][ T4673] __sys_recvmmsg+0x113/0x450 [ 359.731510][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 359.738395][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 359.743955][ T4673] do_fast_syscall_32+0x33/0x70 [ 359.749569][ T4673] do_SYSENTER_32+0x1b/0x20 [ 359.754741][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 359.761394][ T4673] [ 359.764139][ T4673] Local variable msg_sys created at: [ 359.769981][ T4673] do_recvmmsg+0x5c/0x1180 [ 359.774807][ T4673] __sys_recvmmsg+0x113/0x450 [ 359.843419][ T3565] usbhid 6-1:0.0: can't add hid device: -71 [ 359.852237][ T3565] usbhid: probe of 6-1:0.0 failed with error -71 [ 359.880580][ T3565] usb 6-1: USB disconnect, device number 32 [ 360.099745][ T4673] not chained 700000 origins [ 360.106755][ T4673] CPU: 1 PID: 4673 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 360.119837][ T4673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 360.130011][ T4673] Call Trace: [ 360.133464][ T4673] [ 360.136646][ T4673] dump_stack_lvl+0x1c8/0x256 [ 360.141571][ T4673] dump_stack+0x1a/0x1c [ 360.147359][ T4673] kmsan_internal_chain_origin+0x78/0x120 [ 360.153858][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 360.161490][ T4673] ? ____sys_recvmsg+0x5c1/0x810 [ 360.166723][ T4673] ? ___sys_recvmsg+0x217/0x840 [ 360.171884][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 360.178829][ T4673] ? ____sys_recvmsg+0x5c1/0x810 [ 360.184840][ T4673] ? kfree+0x44/0x980 [ 360.188975][ T4673] ? ___sys_recvmsg+0x248/0x840 [ 360.194203][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 360.201138][ T4673] ? get_compat_msghdr+0x51/0x720 [ 360.206398][ T4673] ? ___sys_recvmsg+0x18c/0x840 [ 360.211377][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 360.217704][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 360.223866][ T4673] ? should_fail+0x3f/0x810 [ 360.228663][ T4673] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 360.235368][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 360.241364][ T4673] __msan_chain_origin+0xbd/0x140 [ 360.246552][ T4673] get_compat_msghdr+0x4fc/0x720 [ 360.251842][ T4673] ___sys_recvmsg+0x18c/0x840 [ 360.256646][ T4673] ? __stack_depot_save+0x21/0x4b0 [ 360.262270][ T4673] ? kmsan_internal_check_memory+0x94/0x530 [ 360.268391][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 360.275039][ T4673] do_recvmmsg+0x682/0x1180 [ 360.279774][ T4673] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 360.286327][ T4673] __sys_recvmmsg+0x113/0x450 [ 360.291150][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 360.297570][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 360.302879][ T4673] ? exit_to_user_mode_prepare+0x119/0x220 [ 360.309715][ T4673] do_fast_syscall_32+0x33/0x70 [ 360.314676][ T4673] do_SYSENTER_32+0x1b/0x20 [ 360.319297][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 360.326035][ T4673] RIP: 0023:0xf7f63549 [ 360.330192][ T4673] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 360.350655][ T4673] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 360.359615][ T4673] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 360.367998][ T4673] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 360.376132][ T4673] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 360.384403][ T4673] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 360.392535][ T4673] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 360.400745][ T4673] [ 360.404669][ T4673] Uninit was stored to memory at: [ 360.409962][ T4673] get_compat_msghdr+0x4fc/0x720 [ 360.415493][ T4673] ___sys_recvmsg+0x18c/0x840 [ 360.420313][ T4673] do_recvmmsg+0x682/0x1180 [ 360.425178][ T4673] __sys_recvmmsg+0x113/0x450 [ 360.430024][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 360.436583][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 360.441850][ T4673] do_fast_syscall_32+0x33/0x70 [ 360.447110][ T4673] do_SYSENTER_32+0x1b/0x20 [ 360.451747][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 360.458482][ T4673] [ 360.460878][ T4673] Uninit was stored to memory at: [ 360.466579][ T4673] get_compat_msghdr+0x4fc/0x720 [ 360.471767][ T4673] ___sys_recvmsg+0x18c/0x840 [ 360.477293][ T4673] do_recvmmsg+0x682/0x1180 [ 360.482059][ T4673] __sys_recvmmsg+0x113/0x450 [ 360.487202][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 360.493876][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 360.499435][ T4673] do_fast_syscall_32+0x33/0x70 [ 360.504652][ T4673] do_SYSENTER_32+0x1b/0x20 [ 360.509308][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 360.516701][ T4673] [ 360.519321][ T4673] Uninit was stored to memory at: [ 360.525000][ T4673] get_compat_msghdr+0x4fc/0x720 [ 360.530338][ T4673] ___sys_recvmsg+0x18c/0x840 [ 360.535545][ T4673] do_recvmmsg+0x682/0x1180 [ 360.540271][ T4673] __sys_recvmmsg+0x113/0x450 [ 360.545342][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 360.551832][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 360.559246][ T4673] do_fast_syscall_32+0x33/0x70 [ 360.564383][ T4673] do_SYSENTER_32+0x1b/0x20 [ 360.569225][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 360.575965][ T4673] [ 360.578344][ T4673] Uninit was stored to memory at: [ 360.584550][ T4673] get_compat_msghdr+0x4fc/0x720 [ 360.590506][ T4673] ___sys_recvmsg+0x18c/0x840 [ 360.595650][ T4673] do_recvmmsg+0x682/0x1180 [ 360.600471][ T4673] __sys_recvmmsg+0x113/0x450 [ 360.605641][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 360.612164][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 360.619011][ T4673] do_fast_syscall_32+0x33/0x70 [ 360.624284][ T4673] do_SYSENTER_32+0x1b/0x20 [ 360.628992][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 360.635794][ T4673] [ 360.638358][ T4673] Uninit was stored to memory at: [ 360.643853][ T4673] get_compat_msghdr+0x4fc/0x720 [ 360.649711][ T4673] ___sys_recvmsg+0x18c/0x840 [ 360.654748][ T4673] do_recvmmsg+0x682/0x1180 [ 360.660736][ T4673] __sys_recvmmsg+0x113/0x450 [ 360.665887][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 360.673300][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 360.679338][ T4673] do_fast_syscall_32+0x33/0x70 [ 360.684886][ T4673] do_SYSENTER_32+0x1b/0x20 [ 360.689735][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 360.696590][ T4673] [ 360.699062][ T4673] Uninit was stored to memory at: [ 360.704688][ T4673] get_compat_msghdr+0x4fc/0x720 [ 360.709809][ T4673] ___sys_recvmsg+0x18c/0x840 [ 360.714823][ T4673] do_recvmmsg+0x682/0x1180 [ 360.719499][ T4673] __sys_recvmmsg+0x113/0x450 [ 360.724529][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 360.730956][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 360.738161][ T4673] do_fast_syscall_32+0x33/0x70 [ 360.743322][ T4673] do_SYSENTER_32+0x1b/0x20 [ 360.747985][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 360.754803][ T4673] [ 360.757338][ T4673] Uninit was stored to memory at: [ 360.763553][ T4673] get_compat_msghdr+0x4fc/0x720 [ 360.768654][ T4673] ___sys_recvmsg+0x18c/0x840 [ 360.773701][ T4673] do_recvmmsg+0x682/0x1180 [ 360.778444][ T4673] __sys_recvmmsg+0x113/0x450 [ 360.783682][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 360.790211][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 360.795879][ T4673] do_fast_syscall_32+0x33/0x70 [ 360.800893][ T4673] do_SYSENTER_32+0x1b/0x20 [ 360.805946][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 360.812646][ T4673] [ 360.815184][ T4673] Local variable msg_sys created at: [ 360.820564][ T4673] do_recvmmsg+0x5c/0x1180 [ 360.825493][ T4673] __sys_recvmmsg+0x113/0x450 [ 361.006694][ T4673] not chained 710000 origins [ 361.011839][ T4673] CPU: 1 PID: 4673 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 361.022450][ T4673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 361.032841][ T4673] Call Trace: [ 361.036360][ T4673] [ 361.039332][ T4673] dump_stack_lvl+0x1c8/0x256 [ 361.044347][ T4673] dump_stack+0x1a/0x1c [ 361.048683][ T4673] kmsan_internal_chain_origin+0x78/0x120 [ 361.054679][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 361.060753][ T4673] ? ____sys_recvmsg+0x5c1/0x810 [ 361.066018][ T4673] ? ___sys_recvmsg+0x217/0x840 [ 361.071006][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 361.076938][ T4673] ? ____sys_recvmsg+0x5c1/0x810 [ 361.081954][ T4673] ? kfree+0x44/0x980 [ 361.086258][ T4673] ? ___sys_recvmsg+0x248/0x840 [ 361.091337][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 361.097269][ T4673] ? get_compat_msghdr+0x51/0x720 [ 361.102493][ T4673] ? ___sys_recvmsg+0x18c/0x840 [ 361.107468][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 361.113687][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 361.119874][ T4673] ? should_fail+0x3f/0x810 [ 361.124546][ T4673] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 361.131230][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 361.137358][ T4673] __msan_chain_origin+0xbd/0x140 [ 361.142628][ T4673] get_compat_msghdr+0x4fc/0x720 [ 361.148310][ T4673] ___sys_recvmsg+0x18c/0x840 [ 361.153291][ T4673] ? __stack_depot_save+0x21/0x4b0 [ 361.158667][ T4673] ? kmsan_internal_check_memory+0x94/0x530 [ 361.164745][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 361.170676][ T4673] do_recvmmsg+0x682/0x1180 [ 361.175285][ T4673] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 361.181828][ T4673] __sys_recvmmsg+0x113/0x450 [ 361.186708][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 361.193174][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 361.199358][ T4673] ? exit_to_user_mode_prepare+0x119/0x220 [ 361.205390][ T4673] do_fast_syscall_32+0x33/0x70 [ 361.210474][ T4673] do_SYSENTER_32+0x1b/0x20 [ 361.215126][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 361.221646][ T4673] RIP: 0023:0xf7f63549 [ 361.226157][ T4673] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 361.246055][ T4673] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 361.254773][ T4673] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 361.263861][ T4673] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 361.272350][ T4673] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 361.280397][ T4673] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 361.289575][ T4673] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 361.298779][ T4673] [ 361.303972][ T4673] Uninit was stored to memory at: [ 361.309215][ T4673] get_compat_msghdr+0x4fc/0x720 [ 361.315458][ T4673] ___sys_recvmsg+0x18c/0x840 [ 361.320405][ T4673] do_recvmmsg+0x682/0x1180 [ 361.325146][ T4673] __sys_recvmmsg+0x113/0x450 [ 361.330381][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 361.337212][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 361.342948][ T4673] do_fast_syscall_32+0x33/0x70 [ 361.348736][ T4673] do_SYSENTER_32+0x1b/0x20 [ 361.353598][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 361.360394][ T4673] [ 361.362922][ T4673] Uninit was stored to memory at: [ 361.368519][ T4673] get_compat_msghdr+0x4fc/0x720 [ 361.374777][ T4673] ___sys_recvmsg+0x18c/0x840 [ 361.381432][ T4673] do_recvmmsg+0x682/0x1180 [ 361.388486][ T4673] __sys_recvmmsg+0x113/0x450 [ 361.393498][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 361.399902][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 361.407176][ T4673] do_fast_syscall_32+0x33/0x70 [ 361.412204][ T4673] do_SYSENTER_32+0x1b/0x20 [ 361.416982][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 361.423618][ T4673] [ 361.426012][ T4673] Uninit was stored to memory at: [ 361.431633][ T4673] get_compat_msghdr+0x4fc/0x720 [ 361.436839][ T4673] ___sys_recvmsg+0x18c/0x840 [ 361.441894][ T4673] do_recvmmsg+0x682/0x1180 [ 361.447669][ T4673] __sys_recvmmsg+0x113/0x450 [ 361.452582][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 361.459919][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 361.466220][ T4673] do_fast_syscall_32+0x33/0x70 [ 361.471249][ T4673] do_SYSENTER_32+0x1b/0x20 [ 361.476103][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 361.483749][ T4673] [ 361.487388][ T4673] Uninit was stored to memory at: [ 361.493445][ T4673] get_compat_msghdr+0x4fc/0x720 [ 361.500287][ T4673] ___sys_recvmsg+0x18c/0x840 [ 361.505871][ T4673] do_recvmmsg+0x682/0x1180 [ 361.510550][ T4673] __sys_recvmmsg+0x113/0x450 [ 361.515577][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 361.523269][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 361.529059][ T4673] do_fast_syscall_32+0x33/0x70 [ 361.534296][ T4673] do_SYSENTER_32+0x1b/0x20 [ 361.538957][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 361.546058][ T4673] [ 361.548720][ T4673] Uninit was stored to memory at: [ 361.555454][ T4673] get_compat_msghdr+0x4fc/0x720 [ 361.560987][ T4673] ___sys_recvmsg+0x18c/0x840 [ 361.566911][ T4673] do_recvmmsg+0x682/0x1180 [ 361.572022][ T4673] __sys_recvmmsg+0x113/0x450 [ 361.577262][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 361.584080][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 361.589429][ T4673] do_fast_syscall_32+0x33/0x70 [ 361.594789][ T4673] do_SYSENTER_32+0x1b/0x20 [ 361.599626][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 361.607010][ T4673] [ 361.609509][ T4673] Uninit was stored to memory at: [ 361.614945][ T4673] get_compat_msghdr+0x4fc/0x720 [ 361.620038][ T4673] ___sys_recvmsg+0x18c/0x840 [ 361.625022][ T4673] do_recvmmsg+0x682/0x1180 [ 361.629682][ T4673] __sys_recvmmsg+0x113/0x450 [ 361.634772][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 361.642096][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 361.647599][ T4673] do_fast_syscall_32+0x33/0x70 [ 361.653419][ T4673] do_SYSENTER_32+0x1b/0x20 [ 361.658091][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 361.664806][ T4673] [ 361.667212][ T4673] Uninit was stored to memory at: [ 361.672438][ T4673] get_compat_msghdr+0x4fc/0x720 [ 361.678030][ T4673] ___sys_recvmsg+0x18c/0x840 [ 361.684771][ T4673] do_recvmmsg+0x682/0x1180 [ 361.689546][ T4673] __sys_recvmmsg+0x113/0x450 [ 361.695066][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 361.701579][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 361.707973][ T4673] do_fast_syscall_32+0x33/0x70 [ 361.713497][ T4673] do_SYSENTER_32+0x1b/0x20 [ 361.718266][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 361.725098][ T4673] [ 361.727533][ T4673] Local variable msg_sys created at: [ 361.733038][ T4673] do_recvmmsg+0x5c/0x1180 [ 361.737594][ T4673] __sys_recvmmsg+0x113/0x450 [ 361.937541][ T4673] not chained 720000 origins [ 361.942982][ T4673] CPU: 0 PID: 4673 Comm: syz-executor.0 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 361.953781][ T4673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 361.964613][ T4673] Call Trace: [ 361.967978][ T4673] [ 361.970967][ T4673] dump_stack_lvl+0x1c8/0x256 [ 361.975787][ T4673] dump_stack+0x1a/0x1c [ 361.980129][ T4673] kmsan_internal_chain_origin+0x78/0x120 [ 361.986105][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 361.992026][ T4673] ? ____sys_recvmsg+0x5c1/0x810 [ 361.997062][ T4673] ? ___sys_recvmsg+0x217/0x840 [ 362.002328][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 362.008416][ T4673] ? ____sys_recvmsg+0x5c1/0x810 [ 362.013444][ T4673] ? kfree+0x44/0x980 [ 362.017537][ T4673] ? ___sys_recvmsg+0x248/0x840 [ 362.022905][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 362.029041][ T4673] ? get_compat_msghdr+0x51/0x720 [ 362.034178][ T4673] ? ___sys_recvmsg+0x18c/0x840 [ 362.039494][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 362.045692][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 362.053464][ T4673] ? should_fail+0x3f/0x810 [ 362.058224][ T4673] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 362.064628][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 362.070719][ T4673] __msan_chain_origin+0xbd/0x140 [ 362.075855][ T4673] get_compat_msghdr+0x4fc/0x720 [ 362.081234][ T4673] ___sys_recvmsg+0x18c/0x840 [ 362.086086][ T4673] ? __stack_depot_save+0x21/0x4b0 [ 362.091356][ T4673] ? kmsan_internal_check_memory+0x94/0x530 [ 362.097493][ T4673] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 362.104135][ T4673] do_recvmmsg+0x682/0x1180 [ 362.108855][ T4673] ? __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 362.115394][ T4673] __sys_recvmmsg+0x113/0x450 [ 362.120169][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 362.126739][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 362.132082][ T4673] ? exit_to_user_mode_prepare+0x119/0x220 [ 362.138111][ T4673] do_fast_syscall_32+0x33/0x70 [ 362.143101][ T4673] do_SYSENTER_32+0x1b/0x20 [ 362.147859][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 362.156064][ T4673] RIP: 0023:0xf7f63549 [ 362.160558][ T4673] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 362.181701][ T4673] RSP: 002b:00000000f7f3d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 362.190244][ T4673] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 362.198680][ T4673] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 362.207895][ T4673] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 362.216693][ T4673] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 362.225325][ T4673] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 362.234463][ T4673] [ 362.238395][ T4673] Uninit was stored to memory at: [ 362.243710][ T4673] get_compat_msghdr+0x4fc/0x720 [ 362.249172][ T4673] ___sys_recvmsg+0x18c/0x840 [ 362.254087][ T4673] do_recvmmsg+0x682/0x1180 [ 362.258712][ T4673] __sys_recvmmsg+0x113/0x450 [ 362.264412][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 362.270826][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 362.278939][ T4673] do_fast_syscall_32+0x33/0x70 [ 362.284879][ T4673] do_SYSENTER_32+0x1b/0x20 [ 362.289980][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 362.297781][ T4673] [ 362.300190][ T4673] Uninit was stored to memory at: [ 362.305581][ T4673] get_compat_msghdr+0x4fc/0x720 [ 362.311272][ T4673] ___sys_recvmsg+0x18c/0x840 [ 362.317663][ T4673] do_recvmmsg+0x682/0x1180 [ 362.323051][ T4673] __sys_recvmmsg+0x113/0x450 [ 362.329973][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 362.336715][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 362.342492][ T4673] do_fast_syscall_32+0x33/0x70 [ 362.348099][ T4673] do_SYSENTER_32+0x1b/0x20 [ 362.352967][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 362.359435][ T4673] [ 362.362417][ T4673] Uninit was stored to memory at: [ 362.368865][ T4673] get_compat_msghdr+0x4fc/0x720 [ 362.376308][ T4673] ___sys_recvmsg+0x18c/0x840 [ 362.382681][ T4673] do_recvmmsg+0x682/0x1180 [ 362.388008][ T4673] __sys_recvmmsg+0x113/0x450 [ 362.392959][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 362.400149][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 362.405737][ T4673] do_fast_syscall_32+0x33/0x70 [ 362.410913][ T4673] do_SYSENTER_32+0x1b/0x20 [ 362.416238][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 362.423468][ T4673] [ 362.425889][ T4673] Uninit was stored to memory at: [ 362.431072][ T4673] get_compat_msghdr+0x4fc/0x720 [ 362.436340][ T4673] ___sys_recvmsg+0x18c/0x840 [ 362.442466][ T4673] do_recvmmsg+0x682/0x1180 [ 362.447284][ T4673] __sys_recvmmsg+0x113/0x450 [ 362.453589][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 362.460155][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 362.466927][ T4673] do_fast_syscall_32+0x33/0x70 [ 362.472365][ T4673] do_SYSENTER_32+0x1b/0x20 [ 362.477524][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 362.484216][ T4673] [ 362.486748][ T4673] Uninit was stored to memory at: [ 362.491925][ T4673] get_compat_msghdr+0x4fc/0x720 [ 362.497267][ T4673] ___sys_recvmsg+0x18c/0x840 [ 362.502095][ T4673] do_recvmmsg+0x682/0x1180 [ 362.506795][ T4673] __sys_recvmmsg+0x113/0x450 [ 362.511718][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 362.519136][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 362.524533][ T4673] do_fast_syscall_32+0x33/0x70 [ 362.530069][ T4673] do_SYSENTER_32+0x1b/0x20 [ 362.534970][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 362.541495][ T4673] [ 362.544136][ T4673] Uninit was stored to memory at: [ 362.549665][ T4673] get_compat_msghdr+0x4fc/0x720 [ 362.555493][ T4673] ___sys_recvmsg+0x18c/0x840 [ 362.560387][ T4673] do_recvmmsg+0x682/0x1180 [ 362.565279][ T4673] __sys_recvmmsg+0x113/0x450 [ 362.570519][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 362.577065][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 362.583263][ T4673] do_fast_syscall_32+0x33/0x70 [ 362.589378][ T4673] do_SYSENTER_32+0x1b/0x20 [ 362.595798][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 362.602495][ T4673] [ 362.605741][ T4673] Uninit was stored to memory at: [ 362.611942][ T4673] get_compat_msghdr+0x4fc/0x720 [ 362.617466][ T4673] ___sys_recvmsg+0x18c/0x840 [ 362.622967][ T4673] do_recvmmsg+0x682/0x1180 [ 362.627619][ T4673] __sys_recvmmsg+0x113/0x450 [ 362.632599][ T4673] __ia32_compat_sys_recvmmsg_time32+0xf1/0x180 [ 362.639336][ T4673] __do_fast_syscall_32+0xa2/0x100 [ 362.644816][ T4673] do_fast_syscall_32+0x33/0x70 [ 362.649837][ T4673] do_SYSENTER_32+0x1b/0x20 [ 362.654670][ T4673] entry_SYSENTER_compat_after_hwframe+0x70/0x82 [ 362.661872][ T4673] [ 362.664425][ T4673] Local variable msg_sys created at: [ 362.671631][ T4673] do_recvmmsg+0x5c/0x1180 [ 362.677055][ T4673] __sys_recvmmsg+0x113/0x450 21:57:58 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x4f, 0x92, 0xb9, 0x8, 0x1557, 0x7720, 0xb7eb, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x27, 0x85, 0xe6}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000040)={0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b00)={0x40, 0x13, 0x6, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 21:57:58 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x2c, &(0x7f0000000c40)={0x0, 0x0, 0xab, {0xab, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab91cd7abf7a917f376386f7e92afc65e75c880a55d2877146ab5f476c1287ecb3e4003547007c60a0466f77cc3abce7d506197b7602e5face683fd5b62746db4fde2e52887d025b1d182565df701612bbacca6413"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) 21:57:58 executing program 2: r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000300)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x9, &(0x7f0000000380)=@generic={0x0, 0x0, 0x1, "398027db", 'g'}) 21:57:58 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x40000, 0x6, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef0100010000", 0x3f, 0x400}, {&(0x7f0000001f40)}, {0x0, 0x0, 0xbff}, {0x0}, {0x0, 0x0, 0x2}, {0x0, 0x0, 0x80000000000000}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) 21:57:58 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/igmp\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f0000000080)=""/72, 0x48}], 0x1, 0x79, 0x0) 21:57:58 executing program 5: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x925, 0x8888, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 21:57:59 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/igmp\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f0000000080)=""/72, 0x48}], 0x1, 0x79, 0x0) [ 363.203548][ T3561] usb 3-1: new high-speed USB device number 24 using dummy_hcd [ 363.219416][ T3558] usb 5-1: new high-speed USB device number 33 using dummy_hcd [ 363.229996][ T3619] usb 4-1: new high-speed USB device number 23 using dummy_hcd [ 363.243619][ T3566] usb 6-1: new high-speed USB device number 33 using dummy_hcd [ 363.255406][ T4702] loop0: detected capacity change from 0 to 512 [ 363.331035][ T4702] EXT4-fs (loop0): invalid inodes per group: 67108896 [ 363.331035][ T4702] 21:57:59 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/igmp\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f0000000080)=""/72, 0x48}], 0x1, 0x79, 0x0) [ 363.474125][ T3619] usb 4-1: Using ep0 maxpacket: 8 [ 363.595708][ T3619] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 363.607061][ T3619] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 363.617280][ T3558] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 363.629528][ T3558] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 363.642520][ T3558] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 363.655757][ T3558] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 363.674116][ T3566] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 363.685973][ T3566] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 363.687276][ T3619] usb 4-1: config 0 descriptor?? [ 363.696082][ T3566] usb 6-1: New USB device found, idVendor=0925, idProduct=8888, bcdDevice= 0.00 [ 363.705676][ T3558] usb 5-1: config 0 descriptor?? [ 363.710629][ T3566] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 21:57:59 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/igmp\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f0000000080)=""/72, 0x48}], 0x1, 0x79, 0x0) [ 363.807221][ T3561] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 363.816771][ T3561] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 363.825451][ T3561] usb 3-1: Product: syz [ 363.829819][ T3561] usb 3-1: Manufacturer: syz [ 363.834861][ T3561] usb 3-1: SerialNumber: syz [ 363.872314][ T3566] usb 6-1: config 0 descriptor?? [ 363.875882][ T3558] usbhid 5-1:0.0: can't add hid device: -22 [ 363.884083][ T3558] usbhid: probe of 5-1:0.0 failed with error -22 [ 363.936182][ T3561] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested 21:58:00 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x40000, 0x6, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef0100010000", 0x3f, 0x400}, {&(0x7f0000001f40)}, {0x0, 0x0, 0xbff}, {0x0}, {0x0, 0x0, 0x2}, {0x0, 0x0, 0x80000000000000}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) 21:58:00 executing program 1: r0 = socket(0x10, 0x2, 0x0) accept4$llc(r0, 0x0, 0x0, 0x0) [ 364.195223][ T3619] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -61 [ 364.205982][ T3619] asix 4-1:0.0 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffc3 [ 364.218075][ T3619] asix: probe of 4-1:0.0 failed with error -61 21:58:00 executing program 1: r0 = socket(0x23, 0x2, 0x0) sendmsg$can_bcm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x1000000) [ 364.409655][ T4712] loop0: detected capacity change from 0 to 512 [ 364.473365][ T3566] usbhid 6-1:0.0: can't add hid device: -71 [ 364.480028][ T3566] usbhid: probe of 6-1:0.0 failed with error -71 [ 364.512084][ T4712] EXT4-fs (loop0): invalid inodes per group: 67108896 [ 364.512084][ T4712] [ 364.558806][ T3566] usb 6-1: USB disconnect, device number 33 [ 364.563603][ T3558] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 364.983761][ T3619] usb 3-1: USB disconnect, device number 24 [ 365.663688][ T3558] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 365.672343][ T3558] ath9k_htc: Failed to initialize the device [ 365.685704][ T3619] usb 3-1: ath9k_htc: USB layer deinitialized [ 365.909221][ T3561] usb 5-1: USB disconnect, device number 33 [ 365.984220][ T3619] usb 4-1: USB disconnect, device number 23 21:58:02 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x4f, 0x92, 0xb9, 0x8, 0x1557, 0x7720, 0xb7eb, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x27, 0x85, 0xe6}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000040)={0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b00)={0x40, 0x13, 0x6, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 21:58:02 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x40000, 0x6, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef0100010000", 0x3f, 0x400}, {&(0x7f0000001f40)}, {0x0, 0x0, 0xbff}, {0x0}, {0x0, 0x0, 0x2}, {0x0, 0x0, 0x80000000000000}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) 21:58:02 executing program 1: syz_open_dev$rtc(&(0x7f00000000c0), 0x9, 0x200803) 21:58:02 executing program 2: r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000300)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x27, &(0x7f0000000380)=@generic={0x0, 0x0, 0x1f, "398027db", "67ec4cb938290810877773f5e11a52aa985c8c97f8dda950663cd665451e7f"}) 21:58:02 executing program 5: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x925, 0x8888, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 21:58:02 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x2c, &(0x7f0000000c40)={0x0, 0x0, 0xab, {0xab, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab91cd7abf7a917f376386f7e92afc65e75c880a55d2877146ab5f476c1287ecb3e4003547007c60a0466f77cc3abce7d506197b7602e5face683fd5b62746db4fde2e52887d025b1d182565df701612bbacca6413"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) [ 366.176968][ T4721] loop0: detected capacity change from 0 to 512 21:58:02 executing program 1: add_key$keyring(&(0x7f00000001c0), &(0x7f0000000200)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffb) [ 366.280681][ T4721] EXT4-fs (loop0): invalid inodes per group: 67108896 [ 366.280681][ T4721] 21:58:02 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x40000, 0x6, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef0100010000", 0x3f, 0x400}, {&(0x7f0000001f40)}, {0x0, 0x0, 0xbff}, {0x0}, {0x0, 0x0, 0x2}, {0x0, 0x0, 0x80000000000000}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) [ 366.413185][ T3566] usb 3-1: new high-speed USB device number 25 using dummy_hcd [ 366.484398][ T3565] usb 6-1: new high-speed USB device number 34 using dummy_hcd [ 366.553579][ T3619] usb 5-1: new high-speed USB device number 34 using dummy_hcd 21:58:02 executing program 1: mount$fuse(0x0, &(0x7f0000000e00)='./file0\x00', &(0x7f0000000e40), 0x0, &(0x7f0000000e80)) [ 366.622902][ T3560] usb 4-1: new high-speed USB device number 24 using dummy_hcd [ 366.781985][ T4733] loop0: detected capacity change from 0 to 512 [ 366.860550][ T4733] EXT4-fs (loop0): invalid inodes per group: 67108896 [ 366.860550][ T4733] [ 366.881572][ T3560] usb 4-1: Using ep0 maxpacket: 8 [ 366.914160][ T3619] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 366.915998][ T3565] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 366.925721][ T3619] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 366.937501][ T3565] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 366.947688][ T3619] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 366.947827][ T3619] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 366.958146][ T3565] usb 6-1: New USB device found, idVendor=0925, idProduct=8888, bcdDevice= 0.00 [ 366.985513][ T3565] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 21:58:03 executing program 1: r0 = socket$igmp(0x2, 0x3, 0x2) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8915, &(0x7f0000000240)) 21:58:03 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) getpid() sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x40000, 0x6, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef0100010000", 0x3f, 0x400}, {&(0x7f0000001f40)}, {0x0, 0x0, 0xbff}, {0x0}, {0x0, 0x0, 0x2}, {0x0, 0x0, 0x80000000000000}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="00da9bccad002100000400001f2b6fe2f96a3f6d2f93ca9700b41d3200000000e61dc18e8c44810000e4259e66932f75a7e35b9cc4c0e894a793926020f869c80184d3c69b0200000067c4eb317d9510c86b996c4c95074763bcffff1b27d72d69e41d5490584127f1be46d68441f24cc08bc114b8640a1c284a042bad52ed8715cb1335cc80259162dda27f90d1947ae4d82b1aa0b548e7393f3e00bc4cc5b3e3c8219821d391264cefcf9faad2b4077e1ebd400df5353093c588708eaeebb789e308a53a50e9c16d7ad1c27b4952e4dc878a3cf617e0558e6a4835afa1ac000000009e9084343c6ed98d00f15eaf0131f5b4136929ed31bdecd21d59ccdb410dd93aa5079d6be21e9b112ef80bdd651f64988663add3343db6ad9e04f5b5eec29b19766749b8801cfb90e1aed6002a74c5081cb3cd8433e4f5c57aa4e64917abef7028d07ed6039c9f08efd7d996a5be6c9a15c6cbcdce39c469faf34d80b5e3633c078ce7d7522ffdaadd9d3d7ab33fce554e2150459954ac9bfcbe5d28ec65524a218b229a40d3b7c9949a617dbe4913dd2e1c383e83fd2ed7b3266a7fef1e0c9fb0f4870bcfc981618782a42ade56271308cea1595bc156a087e038bb447c623d3f0500cbacf9af1c93d1be01bc0b90d0a13edf05702e43ce8268af172e049a5a9a6ca77b0dd3cf48f73f27079a8743644e426be045aa4428c13ebec99f3cc5a269b4d50c077a68af9e8cd7d3ebd646719323fd11e3ac294159ddd9dfda99ea960ebf781a6c6f84de13d1568023f79708e7cc3e5c7a25b1f13ac3ca08bf39810d14b3a7bf2e40c94e8586dbae0e6f5e5379700eeabe00c6ba0ed79c984f042c3c76623c4c", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) [ 367.109673][ T3566] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 367.119314][ T3566] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 367.128901][ T3566] usb 3-1: Product: syz [ 367.133689][ T3566] usb 3-1: Manufacturer: syz [ 367.138578][ T3566] usb 3-1: SerialNumber: syz [ 367.154410][ T3560] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 367.163807][ T3560] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 367.187414][ T3560] usb 4-1: config 0 descriptor?? [ 367.216345][ T3565] usb 6-1: config 0 descriptor?? [ 367.275364][ T3566] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 367.288206][ T3619] usb 5-1: config 0 descriptor?? [ 367.343458][ T3619] usbhid 5-1:0.0: can't add hid device: -22 [ 367.353222][ T3619] usbhid: probe of 5-1:0.0 failed with error -22 21:58:03 executing program 1: request_key(&(0x7f0000004440)='dns_resolver\x00', &(0x7f0000004480)={'syz', 0x2}, &(0x7f00000044c0)=')\x00', 0xfffffffffffffffb) [ 367.551878][ T4739] loop0: detected capacity change from 0 to 512 [ 367.628024][ T4739] EXT4-fs (loop0): invalid inodes per group: 67108896 [ 367.628024][ T4739] [ 367.664371][ T3560] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -61 [ 367.674835][ T3560] asix 4-1:0.0 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffc3 [ 367.686500][ T3560] asix: probe of 4-1:0.0 failed with error -61 [ 367.803184][ T3565] usbhid 6-1:0.0: can't add hid device: -71 [ 367.810034][ T3565] usbhid: probe of 6-1:0.0 failed with error -71 [ 367.895434][ T3565] usb 6-1: USB disconnect, device number 34 [ 368.013698][ T3563] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 368.440384][ T3561] usb 3-1: USB disconnect, device number 25 [ 369.103094][ T3563] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 369.110887][ T3563] ath9k_htc: Failed to initialize the device [ 369.120624][ T3561] usb 3-1: ath9k_htc: USB layer deinitialized [ 369.222691][ T3619] usb 5-1: USB disconnect, device number 34 21:58:05 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x4f, 0x92, 0xb9, 0x8, 0x1557, 0x7720, 0xb7eb, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x27, 0x85, 0xe6}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000040)={0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b00)={0x40, 0x13, 0x6, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) [ 369.352565][ T3561] usb 4-1: USB disconnect, device number 24 21:58:05 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) getpid() syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x40000, 0x6, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef0100010000", 0x3f, 0x400}, {&(0x7f0000001f40)}, {0x0, 0x0, 0xbff}, {0x0}, {0x0, 0x0, 0x2}, {0x0, 0x0, 0x80000000000000}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) 21:58:05 executing program 1: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f00000000c0)='syzkaller\x00', 0x4, 0x91, &(0x7f0000000000)=""/145, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10) syz_open_dev$sg(&(0x7f00000000c0), 0x0, 0x0) 21:58:05 executing program 5: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x925, 0x8888, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 21:58:05 executing program 2: r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000300)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x27, &(0x7f0000000380)=@generic={0x0, 0x0, 0x1f, "398027db", "67ec4cb938290810877773f5e11a52aa985c8c97f8dda950663cd665451e7f"}) 21:58:05 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x2c, &(0x7f0000000c40)={0x0, 0x0, 0xab, {0xab, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab91cd7abf7a917f376386f7e92afc65e75c880a55d2877146ab5f476c1287ecb3e4003547007c60a0466f77cc3abce7d506197b7602e5face683fd5b62746db4fde2e52887d025b1d182565df701612bbacca6413"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) [ 369.527100][ T4753] loop0: detected capacity change from 0 to 512 21:58:05 executing program 1: bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1d, 0x2, &(0x7f00000001c0)=@raw=[@cb_func], &(0x7f0000000200)='syzkaller\x00', 0x5, 0x82, &(0x7f0000000240)=""/130, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) [ 369.601666][ T4753] EXT4-fs (loop0): invalid inodes per group: 67108896 [ 369.601666][ T4753] 21:58:05 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x40000, 0x6, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef0100010000", 0x3f, 0x400}, {&(0x7f0000001f40)}, {0x0, 0x0, 0xbff}, {0x0}, {0x0, 0x0, 0x2}, {0x0, 0x0, 0x80000000000000}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) [ 369.773446][ T3563] usb 6-1: new high-speed USB device number 35 using dummy_hcd [ 369.783942][ T3558] usb 3-1: new high-speed USB device number 26 using dummy_hcd [ 369.804768][ T3619] usb 5-1: new high-speed USB device number 35 using dummy_hcd 21:58:06 executing program 1: r0 = socket$igmp(0x2, 0x3, 0x2) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8912, &(0x7f0000000240)) [ 370.013296][ T4761] loop0: detected capacity change from 0 to 512 [ 370.024046][ T3561] usb 4-1: new high-speed USB device number 25 using dummy_hcd [ 370.088975][ T4761] EXT4-fs (loop0): invalid inodes per group: 67108896 [ 370.088975][ T4761] [ 370.143252][ T3563] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 370.155450][ T3563] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 370.165964][ T3563] usb 6-1: New USB device found, idVendor=0925, idProduct=8888, bcdDevice= 0.00 [ 370.175364][ T3563] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 370.214502][ T3619] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 370.232167][ T3563] usb 6-1: config 0 descriptor?? [ 370.238414][ T3619] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 370.248737][ T3619] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 370.258203][ T3619] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 370.327012][ T3561] usb 4-1: Using ep0 maxpacket: 8 21:58:06 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_LLSEC_DEL_DEVKEY(0xffffffffffffffff, 0x0, 0x0) [ 370.414354][ T3558] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 370.423969][ T3558] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 370.432296][ T3558] usb 3-1: Product: syz [ 370.436890][ T3558] usb 3-1: Manufacturer: syz [ 370.441705][ T3558] usb 3-1: SerialNumber: syz [ 370.475795][ T3619] usb 5-1: config 0 descriptor?? 21:58:06 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x40000, 0x6, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef0100010000", 0x3f, 0x400}, {&(0x7f0000001f40)}, {0x0, 0x0, 0xbff}, {0x0}, {0x0, 0x0, 0x2}, {0x0, 0x0, 0x80000000000000}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) [ 370.499781][ T3561] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 370.509552][ T3561] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 370.526522][ T3558] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 370.604269][ T3561] usb 4-1: config 0 descriptor?? [ 370.813340][ T3563] usbhid 6-1:0.0: can't add hid device: -71 [ 370.819857][ T3563] usbhid: probe of 6-1:0.0 failed with error -71 21:58:06 executing program 1: setsockopt$MRT_ADD_MFC(0xffffffffffffffff, 0x0, 0xcc, &(0x7f0000000000)={@private, @remote, 0x0, "9bed92b5b50f8535e63aa3064a7bd4aed740b4a8052d54bd2bc724310d1a9e0d"}, 0x3c) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000c00)) [ 370.891460][ T3563] usb 6-1: USB disconnect, device number 35 [ 370.937830][ T4767] loop0: detected capacity change from 0 to 512 [ 371.033129][ T4767] EXT4-fs (loop0): invalid inodes per group: 67108896 [ 371.033129][ T4767] [ 371.044928][ T3619] usbhid 5-1:0.0: can't add hid device: -71 [ 371.052050][ T3619] usbhid: probe of 5-1:0.0 failed with error -71 [ 371.072237][ T3561] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -61 [ 371.084735][ T3561] asix 4-1:0.0 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffc3 [ 371.098269][ T3561] asix: probe of 4-1:0.0 failed with error -61 [ 371.149523][ T3619] usb 5-1: USB disconnect, device number 35 [ 371.209280][ T20] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 371.618885][ T3565] usb 3-1: USB disconnect, device number 26 [ 372.307893][ T20] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 372.315900][ T20] ath9k_htc: Failed to initialize the device [ 372.329104][ T3565] usb 3-1: ath9k_htc: USB layer deinitialized 21:58:08 executing program 5: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x925, 0x8888, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x14, 0x0, 0x0, 0x0, 0x0}, 0x0) 21:58:08 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x40000, 0x6, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef0100010000", 0x3f, 0x400}, {&(0x7f0000001f40)}, {0x0, 0x0, 0xbff}, {0x0}, {0x0, 0x0, 0x2}, {0x0, 0x0, 0x80000000000000}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) 21:58:08 executing program 1: sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(0xffffffffffffffff, 0x0, 0x0) 21:58:08 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x2c, &(0x7f0000000c40)={0x0, 0x0, 0xab, {0xab, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab91cd7abf7a917f376386f7e92afc65e75c880a55d2877146ab5f476c1287ecb3e4003547007c60a0466f77cc3abce7d506197b7602e5face683fd5b62746db4fde2e52887d025b1d182565df701612bbacca6413"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) 21:58:08 executing program 2: r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000300)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x27, &(0x7f0000000380)=@generic={0x0, 0x0, 0x1f, "398027db", "67ec4cb938290810877773f5e11a52aa985c8c97f8dda950663cd665451e7f"}) 21:58:08 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x4f, 0x92, 0xb9, 0x8, 0x1557, 0x7720, 0xb7eb, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x27, 0x85, 0xe6}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x40, 0x19, 0x2, "a8cd"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) [ 372.726188][ T20] usb 4-1: USB disconnect, device number 25 [ 372.855760][ T4780] loop0: detected capacity change from 0 to 512 21:58:09 executing program 1: socket(0x0, 0x0, 0x0) open(0x0, 0x602c2, 0x0) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$AUTOFS_IOC_EXPIRE(0xffffffffffffffff, 0x810c9365, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000340)='./file0\x00', 0x0, 0x2, &(0x7f0000000700)=[{&(0x7f0000000000)="eb3c906d8d6673fdd2617400028001000240000004f801", 0x17}, {0x0, 0x0, 0x10e00}], 0x2010080, &(0x7f0000000800)={[{@rodir}]}) mkdirat(r0, &(0x7f0000000040)='./file1\x00', 0x8c00) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) [ 372.922356][ T4780] EXT4-fs (loop0): invalid inodes per group: 67108896 [ 372.922356][ T4780] 21:58:09 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file1\x00', 0x40000, 0x6, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef0100010000", 0x3f, 0x400}, {&(0x7f0000001f40)}, {0x0, 0x0, 0xbff}, {0x0}, {0x0, 0x0, 0x2}, {0x0, 0x0, 0x80000000000000}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) [ 373.123723][ T3619] usb 6-1: new high-speed USB device number 36 using dummy_hcd [ 373.133626][ T3561] usb 5-1: new high-speed USB device number 36 using dummy_hcd [ 373.139593][ T3565] usb 3-1: new high-speed USB device number 27 using dummy_hcd [ 373.374224][ T4787] loop1: detected capacity change from 0 to 270 [ 373.417504][ T4789] loop0: detected capacity change from 0 to 512 [ 373.483714][ T3619] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 373.496090][ T3619] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 373.506839][ T3619] usb 6-1: New USB device found, idVendor=0925, idProduct=8888, bcdDevice= 0.00 [ 373.516818][ T3619] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 373.528607][ T3561] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 373.541756][ T3561] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 373.552616][ T3561] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 373.562657][ T3561] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 373.574554][ T3558] usb 4-1: new high-speed USB device number 26 using dummy_hcd [ 373.623677][ T3619] usb 6-1: config 0 descriptor?? [ 373.637816][ T3561] usb 5-1: config 0 descriptor?? 21:58:09 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file1\x00', 0x40000, 0x6, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef0100010000", 0x3f, 0x400}, {&(0x7f0000001f40)}, {0x0, 0x0, 0xbff}, {0x0}, {0x0, 0x0, 0x2}, {0x0, 0x0, 0x80000000000000}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) [ 373.753826][ T3565] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 373.763327][ T3565] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 373.772694][ T3565] usb 3-1: Product: syz [ 373.777253][ T3565] usb 3-1: Manufacturer: syz [ 373.782147][ T3565] usb 3-1: SerialNumber: syz 21:58:09 executing program 1: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_opts(r0, 0x29, 0x37, &(0x7f0000000040)=@srh, 0x8) sendmsg$inet6(r0, &(0x7f00000004c0)={&(0x7f0000000000)={0xa, 0x4e1f, 0x0, @local}, 0x1c, 0x0}, 0x0) [ 373.823112][ T3558] usb 4-1: Using ep0 maxpacket: 8 [ 373.945208][ T3558] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 373.955192][ T3558] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 374.027530][ T3565] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 374.040899][ T3558] usb 4-1: config 0 descriptor?? [ 374.059310][ T4792] loop0: detected capacity change from 0 to 512 [ 374.174263][ T3561] usbhid 5-1:0.0: can't add hid device: -71 [ 374.183966][ T3561] usbhid: probe of 5-1:0.0 failed with error -71 [ 374.214059][ T3619] usbhid 6-1:0.0: can't add hid device: -71 [ 374.220785][ T3619] usbhid: probe of 6-1:0.0 failed with error -71 21:58:10 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file1\x00', 0x40000, 0x6, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef0100010000", 0x3f, 0x400}, {&(0x7f0000001f40)}, {0x0, 0x0, 0xbff}, {0x0}, {0x0, 0x0, 0x2}, {0x0, 0x0, 0x80000000000000}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) [ 374.259728][ T3619] usb 6-1: USB disconnect, device number 36 21:58:10 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_buf(r0, 0x0, 0x29, &(0x7f0000000180)="b6719677d63d42c1a4d59f6ffbffff3f", 0x10) [ 374.304783][ T3558] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32 [ 374.315649][ T3558] asix: probe of 4-1:0.0 failed with error -32 [ 374.334911][ T3561] usb 5-1: USB disconnect, device number 36 [ 374.589528][ T4797] loop0: detected capacity change from 0 to 512 [ 374.733553][ T3563] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 21:58:10 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x2c, &(0x7f0000000c40)={0x0, 0x0, 0xab, {0xab, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab91cd7abf7a917f376386f7e92afc65e75c880a55d2877146ab5f476c1287ecb3e4003547007c60a0466f77cc3abce7d506197b7602e5face683fd5b62746db4fde2e52887d025b1d182565df701612bbacca6413"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) 21:58:10 executing program 1: r0 = socket$inet(0x2, 0x1, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8919, &(0x7f00000002c0)) 21:58:10 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', 0x0, 0x40000, 0x6, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef0100010000", 0x3f, 0x400}, {&(0x7f0000001f40)}, {0x0, 0x0, 0xbff}, {0x0}, {0x0, 0x0, 0x2}, {0x0, 0x0, 0x80000000000000}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) 21:58:10 executing program 5: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x925, 0x8888, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x14, 0x0, 0x0, 0x0, 0x0}, 0x0) [ 375.130371][ T4807] loop0: detected capacity change from 0 to 512 [ 375.149997][ T3560] usb 3-1: USB disconnect, device number 27 [ 375.364015][ T3565] usb 5-1: new high-speed USB device number 37 using dummy_hcd [ 375.393123][ T3561] usb 6-1: new high-speed USB device number 37 using dummy_hcd 21:58:11 executing program 2: r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000300)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x36, &(0x7f0000000380)=@generic={0x0, 0x0, 0x2e, "398027db", "67ec4cb938290810877773f5e11a52aa985c8c97f8dda950663cd665451e7fbd3bf63eb60a5be421544a3d194b30"}) [ 375.725007][ T3565] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 375.737199][ T3565] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 375.747637][ T3565] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 375.754451][ T3561] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 375.757205][ T3565] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 375.768431][ T3561] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 375.786876][ T3561] usb 6-1: New USB device found, idVendor=0925, idProduct=8888, bcdDevice= 0.00 [ 375.796726][ T3561] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 375.824594][ T3563] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 375.832404][ T3563] ath9k_htc: Failed to initialize the device [ 375.861269][ T3560] usb 3-1: ath9k_htc: USB layer deinitialized [ 375.882597][ T3561] usb 6-1: config 0 descriptor?? [ 375.941582][ T3565] usb 5-1: config 0 descriptor?? 21:58:12 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x4f, 0x92, 0xb9, 0x8, 0x1557, 0x7720, 0xb7eb, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x27, 0x85, 0xe6}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x40, 0x19, 0x2, "a8cd"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 21:58:12 executing program 1: r0 = getpid() kcmp$KCMP_EPOLL_TFD(r0, 0x0, 0x7, 0xffffffffffffffff, 0x0) 21:58:12 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', 0x0, 0x40000, 0x6, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef0100010000", 0x3f, 0x400}, {&(0x7f0000001f40)}, {0x0, 0x0, 0xbff}, {0x0}, {0x0, 0x0, 0x2}, {0x0, 0x0, 0x80000000000000}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="00da9bccad002100000400001f2b6fe2f96a3f6d2f93ca9700b41d3200000000e61dc18e8c44810000e4259e66932f75a7e35b9cc4c0e894a793926020f869c80184d3c69b0200000067c4eb317d9510c86b996c4c95074763bcffff1b27d72d69e41d5490584127f1be46d68441f24cc08bc114b8640a1c284a042bad52ed8715cb1335cc80259162dda27f90d1947ae4d82b1aa0b548e7393f3e00bc4cc5b3e3c8219821d391264cefcf9faad2b4077e1ebd400df5353093c588708eaeebb789e308a53a50e9c16d7ad1c27b4952e4dc878a3cf617e0558e6a4835afa1ac000000009e9084343c6ed98d00f15eaf0131f5b4136929ed31bdecd21d59ccdb410dd93aa5079d6be21e9b112ef80bdd651f64988663add3343db6ad9e04f5b5eec29b19766749b8801cfb90e1aed6002a74c5081cb3cd8433e4f5c57aa4e64917abef7028d07ed6039c9f08efd7d996a5be6c9a15c6cbcdce39c469faf34d80b5e3633c078ce7d7522ffdaadd9d3d7ab33fce554e2150459954ac9bfcbe5d28ec65524a218b229a40d3b7c9949a617dbe4913dd2e1c383e83fd2ed7b3266a7fef1e0c9fb0f4870bcfc981618782a42ade56271308cea1595bc156a087e038bb447c623d3f0500cbacf9af1c93d1be01bc0b90d0a13edf05702e43ce8268af172e049a5a9a6ca77b0dd3cf48f73f27079a8743644e426be045aa4428c13ebec99f3cc5a269b4d50c077a68af9e8cd7d3ebd646719323fd11e3ac294159ddd9dfda99ea960ebf781a6c6f84de13d1568023f79708e7cc3e5c7a25b1f13ac3ca08bf39810d14b3a7bf2e40c94e8586dbae0e6f5e5379700eeabe00c6ba0ed79c984f042c3c76623c4c", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) [ 376.219772][ T3566] usb 4-1: USB disconnect, device number 26 [ 376.347748][ T4816] loop0: detected capacity change from 0 to 512 [ 376.373108][ T3560] usb 3-1: new high-speed USB device number 28 using dummy_hcd 21:58:12 executing program 1: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_LLSEC_DEL_DEVKEY(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[], 0x3c}}, 0x0) [ 376.424265][ T3561] usbhid 6-1:0.0: can't add hid device: -71 [ 376.430929][ T3561] usbhid: probe of 6-1:0.0 failed with error -71 [ 376.513447][ T3565] usbhid 5-1:0.0: can't add hid device: -71 [ 376.520075][ T3565] usbhid: probe of 5-1:0.0 failed with error -71 [ 376.539558][ T3561] usb 6-1: USB disconnect, device number 37 21:58:12 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', 0x0, 0x40000, 0x6, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef0100010000", 0x3f, 0x400}, {&(0x7f0000001f40)}, {0x0, 0x0, 0xbff}, {0x0}, {0x0, 0x0, 0x2}, {0x0, 0x0, 0x80000000000000}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) [ 376.600330][ T3565] usb 5-1: USB disconnect, device number 37 21:58:12 executing program 1: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000080)={'team0\x00', 0x0}) sendmsg$ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000001800)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000000c000000180003800c000100040004000800020000000000040003800c00018008000100", @ANYRES32=r3], 0x38}}, 0x0) [ 376.871035][ T4822] loop0: detected capacity change from 0 to 512 [ 376.915310][ T3560] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 376.927122][ T3560] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 376.935565][ T3560] usb 3-1: Product: syz [ 376.939943][ T3560] usb 3-1: Manufacturer: syz [ 376.945244][ T3560] usb 3-1: SerialNumber: syz [ 376.951618][ T3566] usb 4-1: new high-speed USB device number 27 using dummy_hcd 21:58:13 executing program 5: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x925, 0x8888, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x14, 0x0, 0x0, 0x0, 0x0}, 0x0) 21:58:13 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(0xffffffffffffffff, &(0x7f0000000dc0)={0x2c, &(0x7f0000000c40)={0x0, 0x0, 0xab, {0xab, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab91cd7abf7a917f376386f7e92afc65e75c880a55d2877146ab5f476c1287ecb3e4003547007c60a0466f77cc3abce7d506197b7602e5face683fd5b62746db4fde2e52887d025b1d182565df701612bbacca6413"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) [ 377.015865][ T4604] I/O error, dev loop0, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 377.026652][ T4604] Buffer I/O error on dev loop0, logical block 1, async page read [ 377.034833][ T4604] Dev loop0: unable to read RDB block 8 [ 377.040699][ T4604] loop0: unable to read partition table [ 377.148844][ T4604] loop0: partition table beyond EOD, truncated [ 377.165834][ T3560] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 377.230824][ T3566] usb 4-1: Using ep0 maxpacket: 8 21:58:13 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x6, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef0100010000", 0x3f, 0x400}, {&(0x7f0000001f40)}, {0x0, 0x0, 0xbff}, {0x0}, {0x0, 0x0, 0x2}, {0x0, 0x0, 0x80000000000000}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) [ 377.355667][ T3566] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 377.365970][ T3566] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 21:58:13 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) sendmsg$inet6(r0, &(0x7f00000004c0)={&(0x7f0000000100)={0xa, 0x4e21, 0x0, @mcast2, 0x7}, 0x1c, 0x0}, 0x0) [ 377.423510][ T3566] usb 4-1: config 0 descriptor?? [ 377.618900][ T4830] loop0: detected capacity change from 0 to 11 [ 377.663112][ T3561] usb 6-1: new high-speed USB device number 38 using dummy_hcd [ 377.684218][ T4604] Dev loop0: unable to read RDB block 11 [ 377.684352][ T3566] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32 [ 377.690931][ T4604] loop0: unable to read partition table [ 377.704534][ T3566] asix: probe of 4-1:0.0 failed with error -32 [ 377.711125][ T3619] usb 5-1: new high-speed USB device number 38 using dummy_hcd [ 377.803820][ T3565] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 377.819022][ T4604] loop0: partition table beyond EOD, truncated [ 377.835436][ T4830] EXT4-fs (loop0): invalid inodes per group: 67108896 [ 377.835436][ T4830] 21:58:14 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) [ 378.044311][ T3561] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 378.056294][ T3561] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 378.067237][ T3561] usb 6-1: New USB device found, idVendor=0925, idProduct=8888, bcdDevice= 0.00 [ 378.077307][ T3561] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 378.125101][ T3619] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 378.136558][ T3619] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 378.147929][ T3619] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 378.157325][ T3619] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 378.213865][ T3560] usb 3-1: USB disconnect, device number 28 [ 378.251184][ T3561] usb 6-1: config 0 descriptor?? [ 378.264392][ T3619] usb 5-1: config 0 descriptor?? 21:58:14 executing program 2: r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000300)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x36, &(0x7f0000000380)=@generic={0x0, 0x0, 0x2e, "398027db", "67ec4cb938290810877773f5e11a52aa985c8c97f8dda950663cd665451e7fbd3bf63eb60a5be421544a3d194b30"}) [ 378.795270][ T3619] usbhid 5-1:0.0: can't add hid device: -71 [ 378.805640][ T3619] usbhid: probe of 5-1:0.0 failed with error -71 [ 378.823820][ T3561] usbhid 6-1:0.0: can't add hid device: -71 [ 378.834383][ T3561] usbhid: probe of 6-1:0.0 failed with error -71 [ 378.863546][ T3565] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 378.872916][ T3565] ath9k_htc: Failed to initialize the device [ 378.888967][ T3560] usb 3-1: ath9k_htc: USB layer deinitialized [ 378.902389][ T3619] usb 5-1: USB disconnect, device number 38 [ 378.918904][ T3561] usb 6-1: USB disconnect, device number 38 [ 379.449188][ T3560] usb 3-1: new high-speed USB device number 29 using dummy_hcd 21:58:15 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x4f, 0x92, 0xb9, 0x8, 0x1557, 0x7720, 0xb7eb, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x27, 0x85, 0xe6}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x40, 0x19, 0x2, "a8cd"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 21:58:15 executing program 1: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TCSETA(r0, 0x5459, 0x0) 21:58:15 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) 21:58:15 executing program 5: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x925, 0x8888, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x14, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x1, {[@local]}}, 0x0}, 0x0) 21:58:15 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(0xffffffffffffffff, &(0x7f0000000dc0)={0x2c, &(0x7f0000000c40)={0x0, 0x0, 0xab, {0xab, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab91cd7abf7a917f376386f7e92afc65e75c880a55d2877146ab5f476c1287ecb3e4003547007c60a0466f77cc3abce7d506197b7602e5face683fd5b62746db4fde2e52887d025b1d182565df701612bbacca6413"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) [ 379.593543][ T3566] usb 4-1: USB disconnect, device number 27 21:58:15 executing program 1: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r0, 0xc0189375, &(0x7f0000000040)=ANY=[@ANYBLOB="01b1ffffffffffff7e"]) 21:58:15 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="00da9bccad002100000400001f2b6fe2f96a3f6d2f93ca9700b41d3200000000e61dc18e8c44810000e4259e66932f75a7e35b9cc4c0e894a793926020f869c80184d3c69b0200000067c4eb317d9510c86b996c4c95074763bcffff1b27d72d69e41d5490584127f1be46d68441f24cc08bc114b8640a1c284a042bad52ed8715cb1335cc80259162dda27f90d1947ae4d82b1aa0b548e7393f3e00bc4cc5b3e3c8219821d391264cefcf9faad2b4077e1ebd400df5353093c588708eaeebb789e308a53a50e9c16d7ad1c27b4952e4dc878a3cf617e0558e6a4835afa1ac000000009e9084343c6ed98d00f15eaf0131f5b4136929ed31bdecd21d59ccdb410dd93aa5079d6be21e9b112ef80bdd651f64988663add3343db6ad9e04f5b5eec29b19766749b8801cfb90e1aed6002a74c5081cb3cd8433e4f5c57aa4e64917abef7028d07ed6039c9f08efd7d996a5be6c9a15c6cbcdce39c469faf34d80b5e3633c078ce7d7522ffdaadd9d3d7ab33fce554e2150459954ac9bfcbe5d28ec65524a218b229a40d3b7c9949a617dbe4913dd2e1c383e83fd2ed7b3266a7fef1e0c9fb0f4870bcfc981618782a42ade56271308cea1595bc156a087e038bb447c623d3f0500cbacf9af1c93d1be01bc0b90d0a13edf05702e43ce8268af172e049a5a9a6ca77b0dd3cf48f73f27079a8743644e426be045aa4428c13ebec99f3cc5a269b4d50c077a68af9e8cd7d3ebd646719323fd11e3ac294159ddd9dfda99ea960ebf781a6c6f84de13d1568023f79708e7cc3e5c7a25b1f13ac3ca08bf39810d14b3a7bf2e40c94e8586dbae0e6f5e5379700eeabe00c6ba0ed79c984f042c3c76623c4c", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) [ 379.944958][ T4850] autofs4:pid:4850:check_dev_ioctl_version: ioctl control interface version mismatch: kernel(1.1), user(4294947073.4294967295), cmd(0xc0189375) [ 379.965405][ T4850] autofs4:pid:4850:validate_dev_ioctl: invalid device control module version supplied for cmd(0xc0189375) [ 379.989867][ T3563] usb 5-1: new high-speed USB device number 39 using dummy_hcd [ 379.998534][ T119] usb 6-1: new high-speed USB device number 39 using dummy_hcd [ 380.024343][ T3560] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 380.034176][ T3560] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 380.042663][ T3560] usb 3-1: Product: syz [ 380.047465][ T3560] usb 3-1: Manufacturer: syz [ 380.052441][ T3560] usb 3-1: SerialNumber: syz [ 380.115900][ T3560] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested 21:58:16 executing program 1: bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000002c0)=@bpf_lsm={0x1d, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x80) [ 380.345390][ T3566] usb 4-1: new high-speed USB device number 28 using dummy_hcd 21:58:16 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x5, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef0100010000", 0x3f, 0x400}, {&(0x7f0000001f40)}, {0x0, 0x0, 0xbff}, {0x0}, {0x0, 0x0, 0x2}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) [ 380.405265][ T3563] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 380.416820][ T3563] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 380.427953][ T3563] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 380.438029][ T3563] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 380.448951][ T119] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 380.460262][ T119] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 380.470707][ T119] usb 6-1: New USB device found, idVendor=0925, idProduct=8888, bcdDevice= 0.00 [ 380.480175][ T119] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 380.517623][ T3563] usb 5-1: config 0 descriptor?? [ 380.531745][ T119] usb 6-1: config 0 descriptor?? [ 380.624558][ T3566] usb 4-1: Using ep0 maxpacket: 8 21:58:16 executing program 1: add_key$keyring(&(0x7f0000000280), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) [ 380.744851][ T4857] loop0: detected capacity change from 0 to 11 [ 380.783682][ T3566] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 380.793354][ T3566] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 380.804844][ T4857] Dev loop0: unable to read RDB block 11 [ 380.812665][ T4857] loop0: unable to read partition table [ 380.838418][ T4857] loop0: partition table beyond EOD, truncated [ 380.859066][ T4857] EXT4-fs (loop0): invalid inodes per group: 67108896 [ 380.859066][ T4857] [ 380.874349][ T3565] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 380.901876][ T3566] usb 4-1: config 0 descriptor?? 21:58:17 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x4, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef0100010000", 0x3f, 0x400}, {&(0x7f0000001f40)}, {0x0, 0x0, 0xbff}, {0x0}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) [ 381.085065][ T3563] usbhid 5-1:0.0: can't add hid device: -71 [ 381.091593][ T3563] usbhid: probe of 5-1:0.0 failed with error -71 [ 381.154395][ T3563] usb 5-1: USB disconnect, device number 39 [ 381.168432][ T3566] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32 [ 381.178863][ T3566] asix: probe of 4-1:0.0 failed with error -32 [ 381.285523][ T3561] usb 3-1: USB disconnect, device number 29 [ 381.329467][ T119] usbhid 6-1:0.0: can't add hid device: -71 [ 381.338412][ T119] usbhid: probe of 6-1:0.0 failed with error -71 [ 381.375203][ T119] usb 6-1: USB disconnect, device number 39 [ 381.531097][ T4862] loop0: detected capacity change from 0 to 11 [ 381.558911][ T4862] Dev loop0: unable to read RDB block 11 [ 381.565472][ T4862] loop0: unable to read partition table [ 381.574813][ T4862] loop0: partition table beyond EOD, truncated [ 381.654716][ T4862] EXT4-fs (loop0): invalid inodes per group: 67108896 [ 381.654716][ T4862] 21:58:17 executing program 2: r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000300)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x36, &(0x7f0000000380)=@generic={0x0, 0x0, 0x2e, "398027db", "67ec4cb938290810877773f5e11a52aa985c8c97f8dda950663cd665451e7fbd3bf63eb60a5be421544a3d194b30"}) [ 381.903708][ T3565] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 381.911711][ T3565] ath9k_htc: Failed to initialize the device [ 381.961188][ T3561] usb 3-1: ath9k_htc: USB layer deinitialized [ 382.423163][ T3561] usb 3-1: new high-speed USB device number 30 using dummy_hcd 21:58:19 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(0xffffffffffffffff, &(0x7f0000000dc0)={0x2c, &(0x7f0000000c40)={0x0, 0x0, 0xab, {0xab, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab91cd7abf7a917f376386f7e92afc65e75c880a55d2877146ab5f476c1287ecb3e4003547007c60a0466f77cc3abce7d506197b7602e5face683fd5b62746db4fde2e52887d025b1d182565df701612bbacca6413"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) 21:58:19 executing program 1: r0 = getpid() pidfd_open(r0, 0x0) 21:58:19 executing program 3: syz_usb_control_io(0xffffffffffffffff, 0x0, &(0x7f0000000040)={0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b00)={0x40, 0x13, 0x6, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(0xffffffffffffffff, 0x0, &(0x7f0000000940)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x40, 0x19, 0x2, "a8cd"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) 21:58:19 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x3, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef0100010000", 0x3f, 0x400}, {&(0x7f0000001f40)}, {0x0, 0x0, 0xbff}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) 21:58:19 executing program 5: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x925, 0x8888, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x14, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x1, {[@local]}}, 0x0}, 0x0) [ 382.945139][ T3561] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 382.955223][ T3561] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 382.964476][ T3561] usb 3-1: Product: syz [ 382.969111][ T3561] usb 3-1: Manufacturer: syz [ 382.974159][ T3561] usb 3-1: SerialNumber: syz [ 382.987945][ T3558] usb 4-1: USB disconnect, device number 28 [ 383.065705][ T4869] loop0: detected capacity change from 0 to 11 21:58:19 executing program 1: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_LLSEC_DEL_DEVKEY(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x14}, 0x14}}, 0x0) [ 383.115665][ T4869] Dev loop0: unable to read RDB block 11 [ 383.121706][ T4869] loop0: unable to read partition table [ 383.176594][ T3561] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 383.222189][ T4869] loop0: partition table beyond EOD, truncated [ 383.265827][ T4869] EXT4-fs (loop0): invalid inodes per group: 67108896 [ 383.265827][ T4869] [ 383.393607][ T3560] usb 6-1: new high-speed USB device number 40 using dummy_hcd [ 383.403958][ T119] usb 5-1: new high-speed USB device number 40 using dummy_hcd 21:58:19 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x2, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef0100010000", 0x3f, 0x400}, {&(0x7f0000001f40)}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) 21:58:19 executing program 1: r0 = syz_open_dev$sg(&(0x7f00000000c0), 0x0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r1, &(0x7f0000000040)=ANY=[], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0) ioctl$SG_GET_LOW_DMA(r0, 0x2276, &(0x7f00000005c0)) [ 383.743909][ T3619] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 383.805164][ T3560] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 383.811563][ T4882] loop0: detected capacity change from 0 to 4 [ 383.816953][ T3560] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 383.817142][ T3560] usb 6-1: New USB device found, idVendor=0925, idProduct=8888, bcdDevice= 0.00 [ 383.817277][ T3560] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 383.818705][ T119] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 383.866171][ T119] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 383.867935][ T4882] Dev loop0: unable to read RDB block 4 [ 383.877171][ T119] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 383.877309][ T119] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 21:58:20 executing program 3: syz_usb_control_io(0xffffffffffffffff, 0x0, &(0x7f0000000040)={0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b00)={0x40, 0x13, 0x6, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(0xffffffffffffffff, 0x0, &(0x7f0000000940)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x40, 0x19, 0x2, "a8cd"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) [ 383.902350][ T4882] loop0: unable to read partition table [ 383.924724][ T3560] usb 6-1: config 0 descriptor?? [ 383.932635][ T4882] loop0: partition table beyond EOD, truncated 21:58:20 executing program 1: mount$fuse(0x0, &(0x7f0000000000)='.\x00', 0x0, 0x2100080, 0x0) [ 383.963674][ T4882] EXT4-fs (loop0): invalid inodes per group: 67108896 [ 383.963674][ T4882] [ 384.006624][ T119] usb 5-1: config 0 descriptor?? [ 384.158240][ T3561] usb 3-1: USB disconnect, device number 30 21:58:20 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x1, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef0100010000", 0x3f, 0x400}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) [ 384.439729][ T4889] loop0: detected capacity change from 0 to 4 [ 384.504204][ T4889] Dev loop0: unable to read RDB block 4 [ 384.510369][ T4889] loop0: unable to read partition table [ 384.536542][ T119] usbhid 5-1:0.0: can't add hid device: -71 [ 384.543417][ T119] usbhid: probe of 5-1:0.0 failed with error -71 [ 384.564473][ T4889] loop0: partition table beyond EOD, truncated [ 384.584771][ T4889] EXT4-fs (loop0): invalid inodes per group: 67108896 [ 384.584771][ T4889] [ 384.651945][ T119] usb 5-1: USB disconnect, device number 40 21:58:20 executing program 2: r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000300)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x3e, &(0x7f0000000380)=@generic={0x0, 0x0, 0x36, "398027db", "67ec4cb938290810877773f5e11a52aa985c8c97f8dda950663cd665451e7fbd3bf63eb60a5be421544a3d194b304ef0f4af9d35db09"}) [ 384.713559][ T3560] usbhid 6-1:0.0: can't add hid device: -71 [ 384.720141][ T3560] usbhid: probe of 6-1:0.0 failed with error -71 [ 384.771583][ T3560] usb 6-1: USB disconnect, device number 40 [ 384.788903][ T3619] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 384.796664][ T3619] ath9k_htc: Failed to initialize the device [ 384.837090][ T3561] usb 3-1: ath9k_htc: USB layer deinitialized 21:58:21 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 21:58:21 executing program 1: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TCSETA(r0, 0x545c, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "f691078aaa14955b"}) 21:58:21 executing program 3: syz_usb_control_io(0xffffffffffffffff, 0x0, &(0x7f0000000040)={0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b00)={0x40, 0x13, 0x6, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(0xffffffffffffffff, 0x0, &(0x7f0000000940)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x40, 0x19, 0x2, "a8cd"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) 21:58:21 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x0, &(0x7f0000001f80), 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) [ 385.204463][ T4896] EXT4-fs (loop0): VFS: Can't find ext4 filesystem 21:58:21 executing program 5: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x925, 0x8888, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x14, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x1, {[@local]}}, 0x0}, 0x0) 21:58:21 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x0, &(0x7f0000001f80), 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) [ 385.423961][ T3561] usb 3-1: new high-speed USB device number 31 using dummy_hcd [ 385.623830][ T3560] usb 5-1: new high-speed USB device number 41 using dummy_hcd 21:58:21 executing program 3: r0 = syz_usb_connect(0x0, 0x0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000040)={0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b00)={0x40, 0x13, 0x6, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x40, 0x19, 0x2, "a8cd"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) [ 385.787173][ T4903] EXT4-fs (loop0): VFS: Can't find ext4 filesystem [ 385.853356][ T119] usb 6-1: new high-speed USB device number 41 using dummy_hcd 21:58:22 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x0, &(0x7f0000001f80), 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) [ 385.958655][ T3561] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 385.968321][ T3561] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 385.976814][ T3561] usb 3-1: Product: syz [ 385.981189][ T3561] usb 3-1: Manufacturer: syz [ 385.986258][ T3561] usb 3-1: SerialNumber: syz [ 385.994663][ T3560] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 21:58:22 executing program 1: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TCSETA(r0, 0x545c, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "f691078aaa14955b"}) [ 386.007128][ T3560] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 386.017584][ T3560] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 386.027095][ T3560] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 386.186301][ T3561] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 386.202493][ T3560] usb 5-1: config 0 descriptor?? [ 386.314362][ T119] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 386.328266][ T119] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 386.340445][ T119] usb 6-1: New USB device found, idVendor=0925, idProduct=8888, bcdDevice= 0.00 [ 386.349989][ T119] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 386.396980][ T4907] EXT4-fs (loop0): VFS: Can't find ext4 filesystem [ 386.434300][ T119] usb 6-1: config 0 descriptor?? 21:58:22 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x1, &(0x7f0000001f80)=[{0x0, 0x0, 0x400}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) [ 386.751532][ T3560] usbhid 5-1:0.0: can't add hid device: -71 [ 386.753244][ T3558] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 386.758309][ T3560] usbhid: probe of 5-1:0.0 failed with error -71 21:58:22 executing program 3: r0 = syz_usb_connect(0x0, 0x0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000040)={0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b00)={0x40, 0x13, 0x6, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x40, 0x19, 0x2, "a8cd"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) [ 386.800562][ T4911] loop0: detected capacity change from 0 to 4 [ 386.838405][ T4911] Dev loop0: unable to read RDB block 4 [ 386.844617][ T4911] loop0: unable to read partition table [ 386.878744][ T3560] usb 5-1: USB disconnect, device number 41 [ 386.896766][ T4911] loop0: partition table beyond EOD, truncated [ 386.944847][ T4911] EXT4-fs (loop0): VFS: Can't find ext4 filesystem [ 387.154407][ T119] usbhid 6-1:0.0: can't add hid device: -71 [ 387.160944][ T119] usbhid: probe of 6-1:0.0 failed with error -71 [ 387.182117][ T3561] usb 3-1: USB disconnect, device number 31 [ 387.255353][ T119] usb 6-1: USB disconnect, device number 41 21:58:23 executing program 1: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TCSETA(r0, 0x545c, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "f691078aaa14955b"}) 21:58:23 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 21:58:23 executing program 3: r0 = syz_usb_connect(0x0, 0x0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000040)={0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b00)={0x40, 0x13, 0x6, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x40, 0x19, 0x2, "a8cd"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 21:58:23 executing program 5: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x925, 0x8888, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x14, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x5, {[@main=@item_4={0x3, 0x0, 0x0, "8b707542"}]}}, 0x0}, 0x0) 21:58:23 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x1, &(0x7f0000001f80)=[{0x0, 0x0, 0x400}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="00da9bccad002100000400001f2b6fe2f96a3f6d2f93ca9700b41d3200000000e61dc18e8c44810000e4259e66932f75a7e35b9cc4c0e894a793926020f869c80184d3c69b0200000067c4eb317d9510c86b996c4c95074763bcffff1b27d72d69e41d5490584127f1be46d68441f24cc08bc114b8640a1c284a042bad52ed8715cb1335cc80259162dda27f90d1947ae4d82b1aa0b548e7393f3e00bc4cc5b3e3c8219821d391264cefcf9faad2b4077e1ebd400df5353093c588708eaeebb789e308a53a50e9c16d7ad1c27b4952e4dc878a3cf617e0558e6a4835afa1ac000000009e9084343c6ed98d00f15eaf0131f5b4136929ed31bdecd21d59ccdb410dd93aa5079d6be21e9b112ef80bdd651f64988663add3343db6ad9e04f5b5eec29b19766749b8801cfb90e1aed6002a74c5081cb3cd8433e4f5c57aa4e64917abef7028d07ed6039c9f08efd7d996a5be6c9a15c6cbcdce39c469faf34d80b5e3633c078ce7d7522ffdaadd9d3d7ab33fce554e2150459954ac9bfcbe5d28ec65524a218b229a40d3b7c9949a617dbe4913dd2e1c383e83fd2ed7b3266a7fef1e0c9fb0f4870bcfc981618782a42ade56271308cea1595bc156a087e038bb447c623d3f0500cbacf9af1c93d1be01bc0b90d0a13edf05702e43ce8268af172e049a5a9a6ca77b0dd3cf48f73f27079a8743644e426be045aa4428c13ebec99f3cc5a269b4d50c077a68af9e8cd7d3ebd646719323fd11e3ac294159ddd9dfda99ea960ebf781a6c6f84de13d1568023f79708e7cc3e5c7a25b1f13ac3ca08bf39810d14b3a7bf2e40c94e8586dbae0e6f5e5379700eeabe00c6ba0ed79c984f042c3c76623c4c", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) 21:58:23 executing program 2: r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000300)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x3e, &(0x7f0000000380)=@generic={0x0, 0x0, 0x36, "398027db", "67ec4cb938290810877773f5e11a52aa985c8c97f8dda950663cd665451e7fbd3bf63eb60a5be421544a3d194b304ef0f4af9d35db09"}) [ 387.831636][ T3558] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 387.840460][ T3558] ath9k_htc: Failed to initialize the device [ 387.873112][ T3561] usb 3-1: ath9k_htc: USB layer deinitialized [ 387.917552][ T4922] loop0: detected capacity change from 0 to 4 [ 387.970329][ T4922] Dev loop0: unable to read RDB block 4 [ 387.976514][ T4922] loop0: unable to read partition table [ 388.010126][ T4922] loop0: partition table beyond EOD, truncated [ 388.081132][ T4922] EXT4-fs (loop0): VFS: Can't find ext4 filesystem 21:58:24 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x1, &(0x7f0000001f80)=[{0x0, 0x0, 0x400}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) [ 388.183364][ T3619] usb 5-1: new high-speed USB device number 42 using dummy_hcd [ 388.203482][ T3563] usb 6-1: new high-speed USB device number 42 using dummy_hcd [ 388.360558][ T4927] loop0: detected capacity change from 0 to 4 [ 388.386343][ T4927] Dev loop0: unable to read RDB block 4 [ 388.392322][ T4927] loop0: unable to read partition table [ 388.402264][ T4927] loop0: partition table beyond EOD, truncated [ 388.414154][ T4927] EXT4-fs (loop0): VFS: Can't find ext4 filesystem 21:58:24 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x4f, 0x92, 0xb9, 0x0, 0x1557, 0x7720, 0xb7eb, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x27, 0x85, 0xe6}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000040)={0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b00)={0x40, 0x13, 0x6, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x40, 0x19, 0x2, "a8cd"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 21:58:24 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x1, &(0x7f0000001f80)=[{&(0x7f00000002c0), 0x0, 0x400}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) [ 388.494533][ T3561] usb 3-1: new high-speed USB device number 32 using dummy_hcd [ 388.563443][ T3619] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 388.576375][ T3619] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 388.586885][ T3619] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 388.596516][ T3619] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 388.613394][ T3563] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 388.625457][ T3563] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 388.635750][ T3563] usb 6-1: New USB device found, idVendor=0925, idProduct=8888, bcdDevice= 0.00 [ 388.639617][ T3619] usb 5-1: config 0 descriptor?? [ 388.646179][ T3563] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 388.671074][ T3563] usb 6-1: config 0 descriptor?? 21:58:24 executing program 1: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TCSETA(r0, 0x545c, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "f691078aaa14955b"}) [ 388.853582][ T4930] loop0: detected capacity change from 0 to 4 [ 388.910290][ T4930] Dev loop0: unable to read RDB block 4 [ 388.916984][ T4930] loop0: unable to read partition table [ 388.938615][ T4930] loop0: partition table beyond EOD, truncated [ 388.981781][ T4930] EXT4-fs (loop0): VFS: Can't find ext4 filesystem [ 389.044021][ T3561] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 389.053716][ T3561] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 389.062201][ T3561] usb 3-1: Product: syz [ 389.067391][ T3561] usb 3-1: Manufacturer: syz [ 389.072195][ T3561] usb 3-1: SerialNumber: syz 21:58:25 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x1, &(0x7f0000001f80)=[{&(0x7f00000002c0), 0x0, 0x400}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) [ 389.163515][ T20] usb 4-1: new high-speed USB device number 29 using dummy_hcd [ 389.179208][ T3619] usbhid 5-1:0.0: can't add hid device: -71 [ 389.186101][ T3619] usbhid: probe of 5-1:0.0 failed with error -71 [ 389.209876][ T3563] smartjoyplus 0003:0925:8888.0009: unknown main item tag 0x0 [ 389.254696][ T3619] usb 5-1: USB disconnect, device number 42 [ 389.271470][ T3563] smartjoyplus 0003:0925:8888.0009: hidraw0: USB HID v0.00 Device [HID 0925:8888] on usb-dummy_hcd.5-1/input0 [ 389.284247][ T3563] smartjoyplus 0003:0925:8888.0009: no output reports found [ 389.326395][ T3561] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 389.363090][ T20] usb 4-1: device descriptor read/64, error 18 [ 389.431763][ T119] usb 6-1: USB disconnect, device number 42 [ 389.590854][ T4935] loop0: detected capacity change from 0 to 4 [ 389.624227][ T4935] Dev loop0: unable to read RDB block 4 [ 389.631723][ T4935] loop0: unable to read partition table 21:58:25 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) [ 389.634273][ T20] usb 4-1: new high-speed USB device number 30 using dummy_hcd [ 389.666537][ T4935] loop0: partition table beyond EOD, truncated [ 389.718007][ T4935] EXT4-fs (loop0): VFS: Can't find ext4 filesystem 21:58:25 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x1, &(0x7f0000001f80)=[{&(0x7f00000002c0), 0x0, 0x400}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) [ 389.843808][ T20] usb 4-1: device descriptor read/64, error 18 [ 389.964186][ T20] usb usb4-port1: attempt power cycle [ 389.973803][ T3558] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 21:58:26 executing program 5: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x925, 0x8888, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x14, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x5, {[@main=@item_4={0x3, 0x0, 0x0, "8b707542"}]}}, 0x0}, 0x0) 21:58:26 executing program 1: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) r1 = socket$igmp(0x2, 0x3, 0x2) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r0, 0xc0189375, &(0x7f0000000040)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) [ 390.235174][ T4939] loop0: detected capacity change from 0 to 4 [ 390.289724][ T119] usb 5-1: new high-speed USB device number 43 using dummy_hcd [ 390.306865][ T4939] Dev loop0: unable to read RDB block 4 [ 390.313910][ T4939] loop0: unable to read partition table [ 390.369036][ T4939] loop0: partition table beyond EOD, truncated [ 390.400186][ T4939] EXT4-fs (loop0): VFS: Can't find ext4 filesystem [ 390.436757][ T20] usb 4-1: new high-speed USB device number 31 using dummy_hcd [ 390.454245][ T122] usb 3-1: USB disconnect, device number 32 21:58:26 executing program 1: bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1d, 0x2, &(0x7f00000001c0)=@raw=[@cb_func={0x18, 0x0, 0x4, 0x0, 0xfffffffffffffffe}], &(0x7f0000000200)='syzkaller\x00', 0x5, 0x82, &(0x7f0000000240)=""/130, 0x0, 0x12, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) [ 390.602488][ T20] usb 4-1: Invalid ep0 maxpacket: 0 21:58:26 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x1, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff0000000000000000", 0x20, 0x400}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) [ 390.674488][ T119] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 390.683468][ T3619] usb 6-1: new high-speed USB device number 43 using dummy_hcd [ 390.687192][ T119] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 390.706083][ T119] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 390.715632][ T119] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 390.763654][ T20] usb 4-1: new high-speed USB device number 32 using dummy_hcd [ 390.864443][ T20] usb 4-1: Invalid ep0 maxpacket: 0 [ 390.874304][ T20] usb usb4-port1: unable to enumerate USB device [ 390.899698][ T119] usb 5-1: config 0 descriptor?? [ 391.002585][ T4947] loop0: detected capacity change from 0 to 4 [ 391.029707][ T3558] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 391.037513][ T3558] ath9k_htc: Failed to initialize the device [ 391.054914][ T122] usb 3-1: ath9k_htc: USB layer deinitialized [ 391.066722][ T4947] Dev loop0: unable to read RDB block 4 [ 391.067111][ T3619] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 391.073373][ T4947] loop0: unable to read partition table [ 391.087314][ T3619] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 21:58:27 executing program 2: r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000300)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x3e, &(0x7f0000000380)=@generic={0x0, 0x0, 0x36, "398027db", "67ec4cb938290810877773f5e11a52aa985c8c97f8dda950663cd665451e7fbd3bf63eb60a5be421544a3d194b304ef0f4af9d35db09"}) 21:58:27 executing program 1: r0 = socket$inet6(0xa, 0x3, 0xdd) setsockopt$inet6_opts(r0, 0x29, 0x37, &(0x7f0000000500)=ANY=[], 0x148) [ 391.087567][ T3619] usb 6-1: New USB device found, idVendor=0925, idProduct=8888, bcdDevice= 0.00 [ 391.087706][ T3619] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 391.138539][ T4947] loop0: partition table beyond EOD, truncated [ 391.170334][ T4947] EXT4-fs (loop0): VFS: Can't find ext4 filesystem [ 391.250947][ T3619] usb 6-1: config 0 descriptor?? [ 391.454434][ T119] usbhid 5-1:0.0: can't add hid device: -71 [ 391.460945][ T119] usbhid: probe of 5-1:0.0 failed with error -71 [ 391.519820][ T119] usb 5-1: USB disconnect, device number 43 [ 391.683822][ T122] usb 3-1: new high-speed USB device number 33 using dummy_hcd [ 391.738584][ T3619] smartjoyplus 0003:0925:8888.000A: unknown main item tag 0x0 [ 391.780285][ T3619] smartjoyplus 0003:0925:8888.000A: hidraw0: USB HID v0.00 Device [HID 0925:8888] on usb-dummy_hcd.5-1/input0 [ 391.793350][ T3619] smartjoyplus 0003:0925:8888.000A: no output reports found 21:58:28 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x4f, 0x92, 0xb9, 0x0, 0x1557, 0x7720, 0xb7eb, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x27, 0x85, 0xe6}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000040)={0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b00)={0x40, 0x13, 0x6, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x40, 0x19, 0x2, "a8cd"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 21:58:28 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x1, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff0000000000000000", 0x20, 0x400}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) 21:58:28 executing program 1: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TCSETA(r0, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0xffff, 0x0, 0x0, "f691078aaa14955b"}) 21:58:28 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x18, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) [ 391.965125][ T3558] usb 6-1: USB disconnect, device number 43 [ 392.073646][ T4956] loop0: detected capacity change from 0 to 4 21:58:28 executing program 1: shmat(0x0, &(0x7f0000003000/0x2000)=nil, 0x4000) [ 392.123813][ T4956] Dev loop0: unable to read RDB block 4 [ 392.131481][ T4956] loop0: unable to read partition table [ 392.217903][ T4956] loop0: partition table beyond EOD, truncated [ 392.226253][ T122] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 392.236412][ T122] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 392.244831][ T122] usb 3-1: Product: syz [ 392.249735][ T122] usb 3-1: Manufacturer: syz [ 392.254701][ T122] usb 3-1: SerialNumber: syz [ 392.293965][ T4956] EXT4-fs (loop0): VFS: Can't find ext4 filesystem [ 392.386065][ T122] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested 21:58:28 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x1, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff0000000000000000", 0x20, 0x400}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) 21:58:28 executing program 1: add_key$keyring(&(0x7f0000000080), &(0x7f00000000c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe) 21:58:28 executing program 5: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x925, 0x8888, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x14, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x5, {[@main=@item_4={0x3, 0x0, 0x0, "8b707542"}]}}, 0x0}, 0x0) [ 392.553475][ T119] usb 4-1: new high-speed USB device number 33 using dummy_hcd [ 392.573092][ T3619] usb 5-1: new high-speed USB device number 44 using dummy_hcd [ 392.753818][ T119] usb 4-1: device descriptor read/64, error 18 [ 392.759844][ T4965] loop0: detected capacity change from 0 to 4 [ 392.793664][ T4965] Dev loop0: unable to read RDB block 4 21:58:28 executing program 1: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) fsetxattr$security_ima(r0, 0x0, 0x0, 0x0, 0x1000000) [ 392.799702][ T4965] loop0: unable to read partition table [ 392.840335][ T4965] loop0: partition table beyond EOD, truncated [ 392.877323][ T4965] EXT4-fs (loop0): VFS: Can't find ext4 filesystem [ 392.934225][ T3619] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 392.946387][ T3619] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 392.956725][ T3619] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 392.966208][ T3619] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 392.986450][ T3558] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 393.017900][ T3619] usb 5-1: config 0 descriptor?? 21:58:29 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x1, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f46509", 0x30, 0x400}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="00da9bccad002100000400001f2b6fe2f96a3f6d2f93ca9700b41d3200000000e61dc18e8c44810000e4259e66932f75a7e35b9cc4c0e894a793926020f869c80184d3c69b0200000067c4eb317d9510c86b996c4c95074763bcffff1b27d72d69e41d5490584127f1be46d68441f24cc08bc114b8640a1c284a042bad52ed8715cb1335cc80259162dda27f90d1947ae4d82b1aa0b548e7393f3e00bc4cc5b3e3c8219821d391264cefcf9faad2b4077e1ebd400df5353093c588708eaeebb789e308a53a50e9c16d7ad1c27b4952e4dc878a3cf617e0558e6a4835afa1ac000000009e9084343c6ed98d00f15eaf0131f5b4136929ed31bdecd21d59ccdb410dd93aa5079d6be21e9b112ef80bdd651f64988663add3343db6ad9e04f5b5eec29b19766749b8801cfb90e1aed6002a74c5081cb3cd8433e4f5c57aa4e64917abef7028d07ed6039c9f08efd7d996a5be6c9a15c6cbcdce39c469faf34d80b5e3633c078ce7d7522ffdaadd9d3d7ab33fce554e2150459954ac9bfcbe5d28ec65524a218b229a40d3b7c9949a617dbe4913dd2e1c383e83fd2ed7b3266a7fef1e0c9fb0f4870bcfc981618782a42ade56271308cea1595bc156a087e038bb447c623d3f0500cbacf9af1c93d1be01bc0b90d0a13edf05702e43ce8268af172e049a5a9a6ca77b0dd3cf48f73f27079a8743644e426be045aa4428c13ebec99f3cc5a269b4d50c077a68af9e8cd7d3ebd646719323fd11e3ac294159ddd9dfda99ea960ebf781a6c6f84de13d1568023f79708e7cc3e5c7a25b1f13ac3ca08bf39810d14b3a7bf2e40c94e8586dbae0e6f5e5379700eeabe00c6ba0ed79c984f042c3c76623c4c", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) [ 393.053926][ T119] usb 4-1: new high-speed USB device number 34 using dummy_hcd [ 393.143274][ T3563] usb 6-1: new high-speed USB device number 44 using dummy_hcd [ 393.264308][ T119] usb 4-1: device descriptor read/64, error 18 [ 393.317536][ T4972] loop0: detected capacity change from 0 to 4 [ 393.340690][ T4972] Dev loop0: unable to read RDB block 4 [ 393.346999][ T4972] loop0: unable to read partition table [ 393.359107][ T4972] loop0: partition table beyond EOD, truncated [ 393.370404][ T4972] EXT4-fs (loop0): VFS: Can't find ext4 filesystem [ 393.383996][ T119] usb usb4-port1: attempt power cycle [ 393.420437][ T3565] usb 3-1: USB disconnect, device number 33 [ 393.553398][ T3563] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 393.554285][ T3619] usbhid 5-1:0.0: can't add hid device: -71 [ 393.564858][ T3563] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 393.571160][ T3619] usbhid: probe of 5-1:0.0 failed with error -71 [ 393.580821][ T3563] usb 6-1: New USB device found, idVendor=0925, idProduct=8888, bcdDevice= 0.00 [ 393.597018][ T3563] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 393.629826][ T3563] usb 6-1: config 0 descriptor?? [ 393.758700][ T3619] usb 5-1: USB disconnect, device number 44 [ 393.804193][ T119] usb 4-1: new high-speed USB device number 35 using dummy_hcd [ 393.894585][ T119] usb 4-1: Invalid ep0 maxpacket: 0 21:58:30 executing program 2: r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000300)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x42, &(0x7f0000000380)=@generic={0x0, 0x0, 0x3a, "398027db", "67ec4cb938290810877773f5e11a52aa985c8c97f8dda950663cd665451e7fbd3bf63eb60a5be421544a3d194b304ef0f4af9d35db09c8780836"}) 21:58:30 executing program 1: r0 = socket$unix(0x1, 0x2, 0x0) sendmsg$unix(r0, &(0x7f0000001640)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001600)=[@cred={{0x1c}}], 0x20}, 0x0) [ 394.063095][ T3558] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 394.070870][ T3558] ath9k_htc: Failed to initialize the device [ 394.083502][ T119] usb 4-1: new high-speed USB device number 36 using dummy_hcd [ 394.108992][ T3563] smartjoyplus 0003:0925:8888.000B: unknown main item tag 0x0 [ 394.131544][ T3565] usb 3-1: ath9k_htc: USB layer deinitialized [ 394.199498][ T3563] smartjoyplus 0003:0925:8888.000B: hidraw0: USB HID v0.00 Device [HID 0925:8888] on usb-dummy_hcd.5-1/input0 [ 394.212042][ T3563] smartjoyplus 0003:0925:8888.000B: no output reports found [ 394.225506][ T119] usb 4-1: Invalid ep0 maxpacket: 0 [ 394.240268][ T119] usb usb4-port1: unable to enumerate USB device [ 394.327581][ T3563] usb 6-1: USB disconnect, device number 44 [ 394.803178][ T3565] usb 3-1: new high-speed USB device number 34 using dummy_hcd 21:58:31 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x4f, 0x92, 0xb9, 0x0, 0x1557, 0x7720, 0xb7eb, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x27, 0x85, 0xe6}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000040)={0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b00)={0x40, 0x13, 0x6, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x40, 0x19, 0x2, "a8cd"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 21:58:31 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x1, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f46509", 0x30, 0x400}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) 21:58:31 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x18, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) 21:58:31 executing program 1: r0 = socket$igmp(0x2, 0x3, 0x2) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x891b, &(0x7f0000000240)) 21:58:31 executing program 5: r0 = socket$igmp(0x2, 0x3, 0x2) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x4020940d, 0x0) [ 395.292041][ T4981] loop0: detected capacity change from 0 to 4 [ 395.366297][ T3565] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 395.377453][ T3565] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 395.386256][ T3565] usb 3-1: Product: syz [ 395.390734][ T3565] usb 3-1: Manufacturer: syz [ 395.395845][ T3565] usb 3-1: SerialNumber: syz 21:58:31 executing program 5: r0 = add_key$keyring(&(0x7f0000000280), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) add_key$user(&(0x7f0000000140), &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)='U', 0x1, r0) 21:58:31 executing program 1: r0 = socket$igmp(0x2, 0x3, 0x2) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x894c, 0x0) [ 395.453575][ T4981] Dev loop0: unable to read RDB block 4 [ 395.459620][ T4981] loop0: unable to read partition table [ 395.515703][ T4981] loop0: partition table beyond EOD, truncated [ 395.544906][ T4981] EXT4-fs (loop0): VFS: Can't find ext4 filesystem [ 395.595802][ T3565] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 395.614013][ T3619] usb 5-1: new high-speed USB device number 45 using dummy_hcd 21:58:31 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x1, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f46509", 0x30, 0x400}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) 21:58:31 executing program 1: r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/cgroup\x00') fsetxattr$security_ima(r0, &(0x7f0000001280), 0x0, 0x0, 0x0) 21:58:31 executing program 5: r0 = socket$igmp(0x2, 0x3, 0x2) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x5460, 0x0) [ 395.832997][ T3560] usb 4-1: new high-speed USB device number 37 using dummy_hcd [ 395.928452][ T4992] loop0: detected capacity change from 0 to 4 [ 395.973975][ T3619] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 395.986211][ T3619] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 395.996869][ T3619] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 396.007181][ T3619] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 396.019042][ T4992] Dev loop0: unable to read RDB block 4 [ 396.025617][ T4992] loop0: unable to read partition table [ 396.033633][ T3560] usb 4-1: device descriptor read/64, error 18 [ 396.040518][ T4992] loop0: partition table beyond EOD, truncated [ 396.054477][ T4992] EXT4-fs (loop0): VFS: Can't find ext4 filesystem [ 396.066539][ T3619] usb 5-1: config 0 descriptor?? [ 396.263709][ T3563] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 396.313605][ T3560] usb 4-1: new high-speed USB device number 38 using dummy_hcd [ 396.556918][ T3560] usb 4-1: device descriptor read/64, error 18 [ 396.593676][ T3619] usbhid 5-1:0.0: can't add hid device: -71 [ 396.601421][ T3619] usbhid: probe of 5-1:0.0 failed with error -71 [ 396.666887][ T3619] usb 5-1: USB disconnect, device number 45 [ 396.688676][ T3565] usb 3-1: USB disconnect, device number 34 [ 396.707079][ T3560] usb usb4-port1: attempt power cycle [ 396.717592][ T4618] udevd[4618]: setting mode of /dev/bus/usb/005/045 to 020664 failed: No such file or directory [ 396.718034][ T4618] udevd[4618]: setting owner of /dev/bus/usb/005/045 to uid=0, gid=0 failed: No such file or directory 21:58:33 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x1, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff", 0x38, 0x400}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) 21:58:33 executing program 1: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="60900600f0ffffff181500", @ANYRES32=0x1, @ANYBLOB="00000000000000008520"], &(0x7f0000000040)='GPL\x00', 0x2, 0xf2, &(0x7f0000000080)=""/242, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) [ 397.239929][ T3560] usb 4-1: new high-speed USB device number 39 using dummy_hcd [ 397.330866][ T5000] loop0: detected capacity change from 0 to 4 [ 397.353092][ T3563] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 397.362014][ T3563] ath9k_htc: Failed to initialize the device [ 397.378393][ T5000] Dev loop0: unable to read RDB block 4 [ 397.384027][ T3560] usb 4-1: Invalid ep0 maxpacket: 0 [ 397.385052][ T5000] loop0: unable to read partition table [ 397.409676][ T3565] usb 3-1: ath9k_htc: USB layer deinitialized [ 397.443882][ T5000] loop0: partition table beyond EOD, truncated [ 397.461502][ T5000] EXT4-fs (loop0): VFS: Can't find ext4 filesystem [ 397.533237][ T3560] usb 4-1: new high-speed USB device number 40 using dummy_hcd [ 397.635860][ T3560] usb 4-1: Invalid ep0 maxpacket: 0 [ 397.673304][ T3560] usb usb4-port1: unable to enumerate USB device 21:58:34 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x4f, 0x92, 0xb9, 0x8, 0x1557, 0x7720, 0xb7eb, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x27, 0x85, 0xe6}}]}}]}}, 0x0) syz_usb_control_io(0xffffffffffffffff, 0x0, &(0x7f0000000040)={0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b00)={0x40, 0x13, 0x6, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x40, 0x19, 0x2, "a8cd"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 21:58:34 executing program 5: r0 = socket$inet(0x2, 0xa, 0x0) sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f0000000100)={0x2, 0x0, @local}, 0xf) 21:58:34 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x18, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) 21:58:34 executing program 2: r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000300)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x3f, &(0x7f0000000380)=@generic={0x0, 0x0, 0x37, "398027db", "67ec4cb938290810877773f5e11a52aa985c8c97f8dda950663cd665451e7fbd3bf63eb60a5be421544a3d194b304ef0f4af9d35db09c8"}) 21:58:34 executing program 1: syz_emit_ethernet(0x36, &(0x7f0000000540)={@empty, @dev, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @dev, @remote}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 21:58:34 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x1, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff", 0x38, 0x400}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) [ 398.643019][ T5008] loop0: detected capacity change from 0 to 4 [ 398.667317][ T5008] Dev loop0: unable to read RDB block 4 [ 398.674249][ T5008] loop0: unable to read partition table 21:58:34 executing program 5: getuid() epoll_create1(0x80000) syz_genetlink_get_family_id$gtp(&(0x7f0000000080), 0xffffffffffffffff) syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/time_for_children\x00') openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200), 0x2280, 0x0) 21:58:34 executing program 1: bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict]}}, &(0x7f0000000100)=""/151, 0x26, 0x97, 0x1}, 0x20) [ 398.706927][ T5008] loop0: partition table beyond EOD, truncated [ 398.735017][ T5008] EXT4-fs (loop0): VFS: Can't find ext4 filesystem 21:58:34 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x1, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff", 0x38, 0x400}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) [ 398.875037][ T3619] usb 3-1: new high-speed USB device number 35 using dummy_hcd [ 398.954643][ T3558] usb 5-1: new high-speed USB device number 46 using dummy_hcd 21:58:35 executing program 1: r0 = socket$inet(0x2, 0xa, 0x0) sendto$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x0) [ 399.204523][ T3560] usb 4-1: new high-speed USB device number 41 using dummy_hcd [ 399.252535][ T5018] loop0: detected capacity change from 0 to 4 21:58:35 executing program 5: r0 = socket$nl_rdma(0x10, 0x3, 0x14) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8905, &(0x7f0000000000)) [ 399.325308][ T3558] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 399.337088][ T3558] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 399.354456][ T3558] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 399.363994][ T3558] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 399.396652][ T3558] usb 5-1: config 0 descriptor?? [ 399.414156][ T5018] Dev loop0: unable to read RDB block 4 [ 399.421248][ T5018] loop0: unable to read partition table [ 399.444595][ T3619] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 399.455585][ T3619] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 399.464005][ T3619] usb 3-1: Product: syz [ 399.469588][ T3619] usb 3-1: Manufacturer: syz [ 399.474602][ T3619] usb 3-1: SerialNumber: syz [ 399.474744][ T3560] usb 4-1: Using ep0 maxpacket: 8 [ 399.520369][ T5018] loop0: partition table beyond EOD, truncated [ 399.529836][ T5018] EXT4-fs (loop0): VFS: Can't find ext4 filesystem [ 399.576219][ T3619] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested 21:58:35 executing program 1: r0 = syz_open_dev$evdev(&(0x7f0000000480), 0x0, 0x0) ioctl$EVIOCGNAME(r0, 0x80404506, &(0x7f00000004c0)=""/171) [ 399.634774][ T3560] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 399.646478][ T3560] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 399.716878][ T3560] usb 4-1: config 0 descriptor?? [ 399.944287][ T3558] usbhid 5-1:0.0: can't add hid device: -71 [ 399.950811][ T3558] usbhid: probe of 5-1:0.0 failed with error -71 [ 399.983558][ T3560] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32 [ 399.994634][ T3560] asix: probe of 4-1:0.0 failed with error -32 [ 400.040816][ T3558] usb 5-1: USB disconnect, device number 46 [ 400.194464][ T122] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 400.603548][ T3560] usb 3-1: USB disconnect, device number 35 [ 401.263128][ T122] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 401.270678][ T122] ath9k_htc: Failed to initialize the device [ 401.279822][ T3560] usb 3-1: ath9k_htc: USB layer deinitialized 21:58:38 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x4f, 0x92, 0xb9, 0x8, 0x1557, 0x7720, 0xb7eb, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x27, 0x85, 0xe6}}]}}]}}, 0x0) syz_usb_control_io(0xffffffffffffffff, 0x0, &(0x7f0000000040)={0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b00)={0x40, 0x13, 0x6, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x40, 0x19, 0x2, "a8cd"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 21:58:38 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x1, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef0100", 0x3c, 0x400}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) 21:58:38 executing program 5: request_key(&(0x7f0000000480)='encrypted\x00', &(0x7f00000004c0)={'syz', 0x0}, 0x0, 0xfffffffffffffffc) 21:58:38 executing program 1: r0 = socket$inet(0x2, 0xa, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x5411, &(0x7f00000002c0)) 21:58:38 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x18, &(0x7f0000000c40)={0x0, 0x0, 0x2, {0x2}}, 0x0, 0x0, 0x0, 0x0}, 0x0) 21:58:38 executing program 2: r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000300)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x3f, &(0x7f0000000380)=@generic={0x0, 0x0, 0x37, "398027db", "67ec4cb938290810877773f5e11a52aa985c8c97f8dda950663cd665451e7fbd3bf63eb60a5be421544a3d194b304ef0f4af9d35db09c8"}) [ 401.909720][ T122] usb 4-1: USB disconnect, device number 41 21:58:38 executing program 1: socket$vsock_stream(0x28, 0x1, 0x0) pselect6(0x40, &(0x7f0000000040), &(0x7f0000000100)={0x9}, 0x0, 0x0, 0x0) [ 402.070332][ T5037] loop0: detected capacity change from 0 to 4 21:58:38 executing program 5: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, 0x0) [ 402.147331][ T5037] Dev loop0: unable to read RDB block 4 [ 402.154587][ T5037] loop0: unable to read partition table [ 402.191616][ T5037] loop0: partition table beyond EOD, truncated [ 402.249201][ T5037] EXT4-fs (loop0): invalid inodes per group: 67108896 [ 402.249201][ T5037] [ 402.283510][ T3558] usb 3-1: new high-speed USB device number 36 using dummy_hcd [ 402.328715][ T1197] ieee802154 phy0 wpan0: encryption failed: -22 [ 402.336235][ T1197] ieee802154 phy1 wpan1: encryption failed: -22 [ 402.363470][ T20] usb 5-1: new high-speed USB device number 47 using dummy_hcd 21:58:38 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x1, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53", 0x39, 0x400}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) 21:58:38 executing program 1: r0 = openat$vga_arbiter(0xffffff9c, &(0x7f00000030c0), 0x0, 0x0) read$FUSE(r0, 0x0, 0x2) 21:58:38 executing program 5: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = socket$packet(0x11, 0x3, 0x300) sendmsg(r1, &(0x7f0000000480)={&(0x7f0000000240)=@pppol2tpv3={0x18, 0x1, {0x0, r0, {0x2, 0x0, @multicast2}}}, 0x80, 0x0}, 0x0) [ 402.614220][ T122] usb 4-1: new high-speed USB device number 42 using dummy_hcd 21:58:38 executing program 1: r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_WOL_SET(r1, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000580)={0x18, r0, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_WOL_SOPASS={0x4}]}, 0x18}}, 0x0) [ 402.725326][ T20] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 402.737172][ T20] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 402.747592][ T20] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 402.757895][ T20] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 402.791607][ T5047] loop0: detected capacity change from 0 to 4 [ 402.830859][ T5047] Dev loop0: unable to read RDB block 4 [ 402.837364][ T5047] loop0: unable to read partition table [ 402.848019][ T20] usb 5-1: config 0 descriptor?? [ 402.884220][ T3558] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 402.894458][ T3558] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 402.903362][ T3558] usb 3-1: Product: syz [ 402.907740][ T3558] usb 3-1: Manufacturer: syz [ 402.912618][ T3558] usb 3-1: SerialNumber: syz [ 402.927831][ T5047] loop0: partition table beyond EOD, truncated [ 402.934423][ T122] usb 4-1: Using ep0 maxpacket: 8 [ 402.978297][ T5047] EXT4-fs (loop0): VFS: Can't find ext4 filesystem [ 403.025713][ T3558] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 403.053948][ T122] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 403.066697][ T122] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 403.179063][ T122] usb 4-1: config 0 descriptor?? [ 403.434418][ T122] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32 [ 403.445335][ T122] asix: probe of 4-1:0.0 failed with error -32 [ 403.614229][ T20] usbhid 5-1:0.0: can't add hid device: -71 [ 403.620879][ T20] usbhid: probe of 5-1:0.0 failed with error -71 [ 403.645552][ T20] usb 5-1: USB disconnect, device number 47 [ 403.663336][ T3619] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 404.105422][ T3560] usb 3-1: USB disconnect, device number 36 [ 404.710807][ T3619] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 404.718800][ T3619] ath9k_htc: Failed to initialize the device [ 404.735451][ T3560] usb 3-1: ath9k_htc: USB layer deinitialized 21:58:41 executing program 1: mount$fuse(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0) mount$fuse(0x0, &(0x7f0000000240)='./file0\x00', 0x0, 0x0, 0x0) 21:58:41 executing program 5: r0 = socket$igmp(0x2, 0x3, 0x2) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000240)={'batadv0\x00', 0x0}) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0x1d, 0x10, &(0x7f0000000000)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r1, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 21:58:41 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x1, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53", 0x39, 0x400}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) 21:58:41 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x18, &(0x7f0000000c40)={0x0, 0x0, 0x2, {0x2}}, 0x0, 0x0, 0x0, 0x0}, 0x0) 21:58:41 executing program 2: r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000300)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x3f, &(0x7f0000000380)=@generic={0x0, 0x0, 0x37, "398027db", "67ec4cb938290810877773f5e11a52aa985c8c97f8dda950663cd665451e7fbd3bf63eb60a5be421544a3d194b304ef0f4af9d35db09c8"}) [ 405.270339][ T3560] usb 4-1: USB disconnect, device number 42 21:58:41 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x4f, 0x92, 0xb9, 0x8, 0x1557, 0x7720, 0xb7eb, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x27, 0x85, 0xe6}}]}}]}}, 0x0) syz_usb_control_io(0xffffffffffffffff, 0x0, &(0x7f0000000040)={0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b00)={0x40, 0x13, 0x6, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x40, 0x19, 0x2, "a8cd"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) [ 405.411914][ T5062] loop0: detected capacity change from 0 to 4 21:58:41 executing program 5: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TCSETA(r0, 0x540b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "f691078aaa14955b"}) [ 405.490925][ T5062] Dev loop0: unable to read RDB block 4 [ 405.497232][ T5062] loop0: unable to read partition table [ 405.515279][ T5062] loop0: partition table beyond EOD, truncated 21:58:41 executing program 1: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TCSETA(r0, 0x542e, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "f691078aaa14955b"}) [ 405.569907][ T5062] EXT4-fs (loop0): VFS: Can't find ext4 filesystem [ 405.653748][ T119] usb 5-1: new high-speed USB device number 48 using dummy_hcd [ 405.684119][ T3563] usb 3-1: new high-speed USB device number 37 using dummy_hcd 21:58:41 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x1, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53", 0x39, 0x400}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) 21:58:42 executing program 1: r0 = socket$igmp(0x2, 0x3, 0x2) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, 0x0) [ 405.984094][ T3619] usb 4-1: new high-speed USB device number 43 using dummy_hcd [ 406.044389][ T119] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 406.055989][ T119] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 406.067510][ T119] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 406.076982][ T119] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 21:58:42 executing program 5: r0 = socket$igmp(0x2, 0x3, 0x2) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x5450, 0x0) [ 406.096128][ T5073] loop0: detected capacity change from 0 to 4 [ 406.130411][ T5073] Dev loop0: unable to read RDB block 4 [ 406.137349][ T5073] loop0: unable to read partition table [ 406.233734][ T3619] usb 4-1: Using ep0 maxpacket: 8 [ 406.243709][ T119] usb 5-1: config 0 descriptor?? [ 406.253912][ T3563] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 406.265207][ T3563] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 406.273890][ T3563] usb 3-1: Product: syz [ 406.279945][ T3563] usb 3-1: Manufacturer: syz [ 406.286885][ T3563] usb 3-1: SerialNumber: syz [ 406.316490][ T5073] loop0: partition table beyond EOD, truncated [ 406.353634][ T3619] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 406.363416][ T3619] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 406.395219][ T5073] EXT4-fs (loop0): VFS: Can't find ext4 filesystem [ 406.454938][ T3619] usb 4-1: config 0 descriptor?? 21:58:42 executing program 1: r0 = socket$igmp(0x2, 0x3, 0x2) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8930, &(0x7f0000000240)) [ 406.475794][ T3563] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested 21:58:42 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x1, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef01", 0x3b, 0x400}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="00da9bccad002100000400001f2b6fe2f96a3f6d2f93ca9700b41d3200000000e61dc18e8c44810000e4259e66932f75a7e35b9cc4c0e894a793926020f869c80184d3c69b0200000067c4eb317d9510c86b996c4c95074763bcffff1b27d72d69e41d5490584127f1be46d68441f24cc08bc114b8640a1c284a042bad52ed8715cb1335cc80259162dda27f90d1947ae4d82b1aa0b548e7393f3e00bc4cc5b3e3c8219821d391264cefcf9faad2b4077e1ebd400df5353093c588708eaeebb789e308a53a50e9c16d7ad1c27b4952e4dc878a3cf617e0558e6a4835afa1ac000000009e9084343c6ed98d00f15eaf0131f5b4136929ed31bdecd21d59ccdb410dd93aa5079d6be21e9b112ef80bdd651f64988663add3343db6ad9e04f5b5eec29b19766749b8801cfb90e1aed6002a74c5081cb3cd8433e4f5c57aa4e64917abef7028d07ed6039c9f08efd7d996a5be6c9a15c6cbcdce39c469faf34d80b5e3633c078ce7d7522ffdaadd9d3d7ab33fce554e2150459954ac9bfcbe5d28ec65524a218b229a40d3b7c9949a617dbe4913dd2e1c383e83fd2ed7b3266a7fef1e0c9fb0f4870bcfc981618782a42ade56271308cea1595bc156a087e038bb447c623d3f0500cbacf9af1c93d1be01bc0b90d0a13edf05702e43ce8268af172e049a5a9a6ca77b0dd3cf48f73f27079a8743644e426be045aa4428c13ebec99f3cc5a269b4d50c077a68af9e8cd7d3ebd646719323fd11e3ac294159ddd9dfda99ea960ebf781a6c6f84de13d1568023f79708e7cc3e5c7a25b1f13ac3ca08bf39810d14b3a7bf2e40c94e8586dbae0e6f5e5379700eeabe00c6ba0ed79c984f042c3c76623c4c", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) [ 406.704175][ T3619] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32 [ 406.714942][ T3619] asix: probe of 4-1:0.0 failed with error -32 21:58:42 executing program 5: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TCSETA(r0, 0x5457, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "f691078aaa14955b"}) 21:58:43 executing program 1: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x18}, 0x10}, 0x80) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_buf(r0, 0x0, 0x30, &(0x7f0000000180)="b6719677d63d42c1a4d59f6fa401dd8d", 0x5000) [ 407.015012][ T5081] loop0: detected capacity change from 0 to 4 [ 407.034281][ T119] usbhid 5-1:0.0: can't add hid device: -71 [ 407.040814][ T119] usbhid: probe of 5-1:0.0 failed with error -71 [ 407.063832][ T4604] Dev loop0: unable to read RDB block 4 [ 407.070439][ T4604] loop0: unable to read partition table [ 407.100742][ T4604] loop0: partition table beyond EOD, truncated [ 407.110684][ T5081] EXT4-fs (loop0): invalid inodes per group: 67108896 [ 407.110684][ T5081] [ 407.144226][ T3565] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 407.166710][ T119] usb 5-1: USB disconnect, device number 48 21:58:43 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x18, &(0x7f0000000c40)={0x0, 0x0, 0x2, {0x2}}, 0x0, 0x0, 0x0, 0x0}, 0x0) [ 407.552858][ T3560] usb 3-1: USB disconnect, device number 37 21:58:44 executing program 2: r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000300)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x41, &(0x7f0000000380)=@generic={0x0, 0x0, 0x39, "398027db", "67ec4cb938290810877773f5e11a52aa985c8c97f8dda950663cd665451e7fbd3bf63eb60a5be421544a3d194b304ef0f4af9d35db09c87808"}) [ 408.103085][ T119] usb 5-1: new high-speed USB device number 49 using dummy_hcd [ 408.223171][ T3565] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 408.232418][ T3565] ath9k_htc: Failed to initialize the device [ 408.247301][ T3560] usb 3-1: ath9k_htc: USB layer deinitialized [ 408.533336][ T119] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 408.547760][ T119] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 408.563925][ T119] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 408.574311][ T119] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 408.596309][ T119] usb 5-1: config 0 descriptor?? 21:58:44 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x4f, 0x92, 0xb9, 0x8, 0x1557, 0x7720, 0xb7eb, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x27, 0x85, 0xe6}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x40, 0x19, 0x2, "a8cd"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 21:58:44 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x1, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) 21:58:44 executing program 5: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000080), r1) sendmsg$IEEE802154_LLSEC_DEL_DEVKEY(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB='l'], 0x3c}}, 0x0) 21:58:44 executing program 1: r0 = socket$packet(0x11, 0x2, 0x300) sendmmsg(r0, &(0x7f0000003d80)=[{{&(0x7f0000000000)=@l2tp={0x2, 0x0, @private}, 0x80, 0x0}}], 0x1, 0x0) [ 408.664397][ T3563] usb 4-1: USB disconnect, device number 43 [ 408.683202][ T3560] usb 3-1: new high-speed USB device number 38 using dummy_hcd [ 408.758661][ T5097] loop0: detected capacity change from 0 to 4 [ 408.774241][ T5097] Dev loop0: unable to read RDB block 4 [ 408.780378][ T5097] loop0: unable to read partition table [ 408.790316][ T5097] loop0: partition table beyond EOD, truncated 21:58:44 executing program 1: r0 = socket$igmp(0x2, 0x3, 0x2) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8910, &(0x7f0000000240)) [ 408.818446][ T5097] EXT4-fs (loop0): invalid inodes per group: 67108896 [ 408.818446][ T5097] 21:58:45 executing program 5: ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000240)) shmat(0x0, &(0x7f0000003000/0x2000)=nil, 0x4000) 21:58:45 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x1, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53", 0x39, 0x400}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) 21:58:45 executing program 1: r0 = add_key$keyring(&(0x7f0000000380), &(0x7f00000003c0)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff) add_key$user(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x3}, &(0x7f00000002c0)='{', 0x1, r0) [ 409.233913][ T3560] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 409.245106][ T3560] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 409.254316][ T3560] usb 3-1: Product: syz [ 409.258685][ T3560] usb 3-1: Manufacturer: syz [ 409.264070][ T3560] usb 3-1: SerialNumber: syz [ 409.363929][ T119] usbhid 5-1:0.0: can't add hid device: -71 [ 409.370774][ T119] usbhid: probe of 5-1:0.0 failed with error -71 [ 409.423241][ T3566] usb 4-1: new high-speed USB device number 44 using dummy_hcd [ 409.435330][ T5107] loop0: detected capacity change from 0 to 4 [ 409.479808][ T119] usb 5-1: USB disconnect, device number 49 [ 409.487909][ T5107] Dev loop0: unable to read RDB block 4 [ 409.494439][ T5107] loop0: unable to read partition table 21:58:45 executing program 5: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TCSETA(r0, 0x5428, 0x0) [ 409.527474][ T5107] loop0: partition table beyond EOD, truncated [ 409.565160][ T3560] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 409.596206][ T5107] EXT4-fs (loop0): VFS: Can't find ext4 filesystem [ 409.700020][ T3566] usb 4-1: Using ep0 maxpacket: 8 21:58:45 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x1, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53", 0x39, 0x400}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) [ 409.834002][ T3566] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 409.844185][ T3566] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 21:58:45 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x18, &(0x7f0000000c40)={0x0, 0x0, 0x57, {0x57, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) [ 409.927685][ T3566] usb 4-1: config 0 descriptor?? [ 410.083497][ T5113] loop0: detected capacity change from 0 to 4 [ 410.130659][ T5113] Dev loop0: unable to read RDB block 4 [ 410.137415][ T5113] loop0: unable to read partition table [ 410.193829][ T5113] loop0: partition table beyond EOD, truncated [ 410.210687][ T3566] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32 [ 410.221490][ T3566] asix: probe of 4-1:0.0 failed with error -32 [ 410.235762][ T3563] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 410.277398][ T5113] EXT4-fs (loop0): VFS: Can't find ext4 filesystem [ 410.453425][ T119] usb 5-1: new high-speed USB device number 50 using dummy_hcd [ 410.641896][ T3566] usb 3-1: USB disconnect, device number 38 [ 410.864962][ T119] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 410.877560][ T119] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 410.888755][ T119] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 410.900897][ T119] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 410.921778][ T119] usb 5-1: config 0 descriptor?? 21:58:47 executing program 2: r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000300)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x40, &(0x7f0000000380)=@generic={0x0, 0x0, 0x38, "398027db", "67ec4cb938290810877773f5e11a52aa985c8c97f8dda950663cd665451e7fbd3bf63eb60a5be421544a3d194b304ef0f4af9d35db09c878"}) [ 411.272479][ T3563] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 411.280367][ T3563] ath9k_htc: Failed to initialize the device [ 411.292484][ T3566] usb 3-1: ath9k_htc: USB layer deinitialized [ 411.423239][ T119] kye 0003:0458:5019.000C: hidraw0: USB HID v0.00 Device [HID 0458:5019] on usb-dummy_hcd.4-1/input0 [ 411.436815][ T119] kye 0003:0458:5019.000C: tablet-enabling feature report not found [ 411.445650][ T119] kye 0003:0458:5019.000C: tablet enabling failed [ 411.624362][ T119] usb 5-1: USB disconnect, device number 50 [ 411.723018][ T3566] usb 3-1: new high-speed USB device number 39 using dummy_hcd 21:58:48 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x4f, 0x92, 0xb9, 0x8, 0x1557, 0x7720, 0xb7eb, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x27, 0x85, 0xe6}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x40, 0x19, 0x2, "a8cd"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 21:58:48 executing program 1: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TCSETA(r0, 0x5424, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "f691078aaa14955b"}) 21:58:48 executing program 5: bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@bloom_filter={0x1e, 0x0, 0x10001, 0x6, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x1}, 0x48) 21:58:48 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x1, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53", 0x39, 0x400}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) [ 412.081221][ T119] usb 4-1: USB disconnect, device number 44 21:58:48 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x18, &(0x7f0000000c40)={0x0, 0x0, 0x57, {0x57, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) [ 412.169498][ T5129] loop0: detected capacity change from 0 to 4 [ 412.224379][ T5129] Dev loop0: unable to read RDB block 4 [ 412.230327][ T5129] loop0: unable to read partition table 21:58:48 executing program 1: request_key(&(0x7f0000004440)='dns_resolver\x00', &(0x7f0000004480)={'syz', 0x2}, 0x0, 0xfffffffffffffffb) 21:58:48 executing program 5: r0 = socket$igmp(0x2, 0x3, 0x2) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8947, &(0x7f0000000240)) [ 412.294121][ T3566] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 412.307428][ T3566] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 412.318140][ T3566] usb 3-1: Product: syz [ 412.323026][ T3566] usb 3-1: Manufacturer: syz [ 412.329405][ T3566] usb 3-1: SerialNumber: syz [ 412.383280][ T5129] loop0: partition table beyond EOD, truncated [ 412.405905][ T5129] EXT4-fs (loop0): VFS: Can't find ext4 filesystem [ 412.505999][ T3566] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested 21:58:48 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x1, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef", 0x3a}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="00da9bccad002100000400001f2b6fe2f96a3f6d2f93ca9700b41d3200000000e61dc18e8c44810000e4259e66932f75a7e35b9cc4c0e894a793926020f869c80184d3c69b0200000067c4eb317d9510c86b996c4c95074763bcffff1b27d72d69e41d5490584127f1be46d68441f24cc08bc114b8640a1c284a042bad52ed8715cb1335cc80259162dda27f90d1947ae4d82b1aa0b548e7393f3e00bc4cc5b3e3c8219821d391264cefcf9faad2b4077e1ebd400df5353093c588708eaeebb789e308a53a50e9c16d7ad1c27b4952e4dc878a3cf617e0558e6a4835afa1ac000000009e9084343c6ed98d00f15eaf0131f5b4136929ed31bdecd21d59ccdb410dd93aa5079d6be21e9b112ef80bdd651f64988663add3343db6ad9e04f5b5eec29b19766749b8801cfb90e1aed6002a74c5081cb3cd8433e4f5c57aa4e64917abef7028d07ed6039c9f08efd7d996a5be6c9a15c6cbcdce39c469faf34d80b5e3633c078ce7d7522ffdaadd9d3d7ab33fce554e2150459954ac9bfcbe5d28ec65524a218b229a40d3b7c9949a617dbe4913dd2e1c383e83fd2ed7b3266a7fef1e0c9fb0f4870bcfc981618782a42ade56271308cea1595bc156a087e038bb447c623d3f0500cbacf9af1c93d1be01bc0b90d0a13edf05702e43ce8268af172e049a5a9a6ca77b0dd3cf48f73f27079a8743644e426be045aa4428c13ebec99f3cc5a269b4d50c077a68af9e8cd7d3ebd646719323fd11e3ac294159ddd9dfda99ea960ebf781a6c6f84de13d1568023f79708e7cc3e5c7a25b1f13ac3ca08bf39810d14b3a7bf2e40c94e8586dbae0e6f5e5379700eeabe00c6ba0ed79c984f042c3c76623c4c", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) 21:58:48 executing program 1: r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000), 0x222600, 0x0) ioctl$VFIO_IOMMU_MAP_DMA(r0, 0x3b71, 0x0) 21:58:48 executing program 5: add_key$keyring(&(0x7f0000000100), 0x0, 0x0, 0x0, 0x0) [ 412.863216][ T3560] usb 4-1: new high-speed USB device number 45 using dummy_hcd [ 412.871445][ T119] usb 5-1: new high-speed USB device number 51 using dummy_hcd [ 412.954918][ T5141] EXT4-fs (loop0): VFS: Can't find ext4 filesystem 21:58:49 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x1, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef", 0x3a}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="00da9bccad002100000400001f2b6fe2f96a3f6d2f93ca9700b41d3200000000e61dc18e8c44810000e4259e66932f75a7e35b9cc4c0e894a793926020f869c80184d3c69b0200000067c4eb317d9510c86b996c4c95074763bcffff1b27d72d69e41d5490584127f1be46d68441f24cc08bc114b8640a1c284a042bad52ed8715cb1335cc80259162dda27f90d1947ae4d82b1aa0b548e7393f3e00bc4cc5b3e3c8219821d391264cefcf9faad2b4077e1ebd400df5353093c588708eaeebb789e308a53a50e9c16d7ad1c27b4952e4dc878a3cf617e0558e6a4835afa1ac000000009e9084343c6ed98d00f15eaf0131f5b4136929ed31bdecd21d59ccdb410dd93aa5079d6be21e9b112ef80bdd651f64988663add3343db6ad9e04f5b5eec29b19766749b8801cfb90e1aed6002a74c5081cb3cd8433e4f5c57aa4e64917abef7028d07ed6039c9f08efd7d996a5be6c9a15c6cbcdce39c469faf34d80b5e3633c078ce7d7522ffdaadd9d3d7ab33fce554e2150459954ac9bfcbe5d28ec65524a218b229a40d3b7c9949a617dbe4913dd2e1c383e83fd2ed7b3266a7fef1e0c9fb0f4870bcfc981618782a42ade56271308cea1595bc156a087e038bb447c623d3f0500cbacf9af1c93d1be01bc0b90d0a13edf05702e43ce8268af172e049a5a9a6ca77b0dd3cf48f73f27079a8743644e426be045aa4428c13ebec99f3cc5a269b4d50c077a68af9e8cd7d3ebd646719323fd11e3ac294159ddd9dfda99ea960ebf781a6c6f84de13d1568023f79708e7cc3e5c7a25b1f13ac3ca08bf39810d14b3a7bf2e40c94e8586dbae0e6f5e5379700eeabe00c6ba0ed79c984f042c3c76623c4c", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) [ 413.113017][ T3560] usb 4-1: Using ep0 maxpacket: 8 [ 413.163969][ T3563] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 413.245566][ T3560] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 413.256242][ T3560] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 413.267249][ T119] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 413.280032][ T119] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 413.291968][ T119] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 413.303152][ T119] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 413.352286][ T3560] usb 4-1: config 0 descriptor?? [ 413.390532][ T119] usb 5-1: config 0 descriptor?? [ 413.542456][ T5147] EXT4-fs (loop0): VFS: Can't find ext4 filesystem [ 413.571768][ T3566] usb 3-1: USB disconnect, device number 39 [ 413.623893][ T3560] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32 [ 413.635492][ T3560] asix: probe of 4-1:0.0 failed with error -32 [ 413.932173][ T119] kye 0003:0458:5019.000D: hidraw0: USB HID v0.00 Device [HID 0458:5019] on usb-dummy_hcd.4-1/input0 [ 413.943938][ T119] kye 0003:0458:5019.000D: tablet-enabling feature report not found [ 413.952305][ T119] kye 0003:0458:5019.000D: tablet enabling failed [ 414.122031][ T119] usb 5-1: USB disconnect, device number 51 21:58:50 executing program 2: r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000300)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x40, &(0x7f0000000380)=@generic={0x0, 0x0, 0x38, "398027db", "67ec4cb938290810877773f5e11a52aa985c8c97f8dda950663cd665451e7fbd3bf63eb60a5be421544a3d194b304ef0f4af9d35db09c878"}) [ 414.227324][ T3563] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 414.235430][ T3563] ath9k_htc: Failed to initialize the device [ 414.258001][ T3566] usb 3-1: ath9k_htc: USB layer deinitialized [ 414.753191][ T3566] usb 3-1: new high-speed USB device number 40 using dummy_hcd [ 415.343566][ T3566] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 415.354647][ T3566] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 415.363859][ T3566] usb 3-1: Product: syz [ 415.368309][ T3566] usb 3-1: Manufacturer: syz [ 415.373323][ T3566] usb 3-1: SerialNumber: syz [ 415.425190][ T3566] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested 21:58:51 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x4f, 0x92, 0xb9, 0x8, 0x1557, 0x7720, 0xb7eb, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x27, 0x85, 0xe6}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x40, 0x19, 0x2, "a8cd"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 21:58:51 executing program 1: r0 = socket$igmp(0x2, 0x3, 0x2) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8970, &(0x7f0000000240)) 21:58:51 executing program 5: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TCSETA(r0, 0x5422, 0x0) 21:58:51 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x1, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef", 0x3a}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYBLOB="2110bf40e33f4e6bd51e1788c18ba7a4876fe5e8bd63b95556698dd2ca7bdc9ca19f6c64581664842a0fafcb03a07e611aa7a043536220ca36ae8c55f018422bc366af58ccaa5f30e4abd7ddfd8ed9643d873369cd6df85fa17ab79ccf8ec408e9e52164d8100d94b2d5de022b0354fb"]) 21:58:51 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x18, &(0x7f0000000c40)={0x0, 0x0, 0x57, {0x57, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) [ 415.541815][ T3619] usb 4-1: USB disconnect, device number 45 21:58:51 executing program 1: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000001240)='/proc/key-users\x00', 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0x3, &(0x7f0000000040)=@framed, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r0}, 0x80) [ 415.731682][ T5159] EXT4-fs (loop0): VFS: Can't find ext4 filesystem 21:58:51 executing program 5: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r0, 0xc018937c, &(0x7f0000000080)={{0x1, 0x1, 0x18}, './file0\x00'}) 21:58:52 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x1, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef", 0x3a, 0x400}], 0x0, 0x0) [ 415.973624][ T3566] usb 5-1: new high-speed USB device number 52 using dummy_hcd [ 416.043751][ T3563] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 21:58:52 executing program 1: keyctl$setperm(0x5, 0x0, 0x40012400) 21:58:52 executing program 5: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r0, 0xc0189375, &(0x7f0000000140)={{0x1, 0x1, 0x18}, './file0\x00'}) [ 416.231257][ T5169] loop0: detected capacity change from 0 to 4 [ 416.246942][ T119] usb 4-1: new high-speed USB device number 46 using dummy_hcd 21:58:52 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x1, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef", 0x3a, 0x400}], 0x0, 0x0) [ 416.373901][ T3566] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 416.392178][ T3566] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 416.405010][ T3566] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 416.419800][ T3566] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 416.470628][ T3565] usb 3-1: USB disconnect, device number 40 [ 416.542020][ T2846] Dev loop0: unable to read RDB block 4 [ 416.546099][ T3566] usb 5-1: config 0 descriptor?? [ 416.548851][ T2846] loop0: unable to read partition table [ 416.569938][ T119] usb 4-1: Using ep0 maxpacket: 8 [ 416.607372][ T2846] loop0: partition table beyond EOD, truncated [ 416.705459][ T119] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 416.715675][ T119] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 416.771163][ T119] usb 4-1: config 0 descriptor?? [ 416.810051][ T5175] loop0: detected capacity change from 0 to 4 [ 416.915850][ T2846] Dev loop0: unable to read RDB block 4 [ 416.922408][ T2846] loop0: unable to read partition table [ 416.943843][ T2846] loop0: partition table beyond EOD, truncated 21:58:53 executing program 2: r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000300)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x40, &(0x7f0000000380)=@generic={0x0, 0x0, 0x38, "398027db", "67ec4cb938290810877773f5e11a52aa985c8c97f8dda950663cd665451e7fbd3bf63eb60a5be421544a3d194b304ef0f4af9d35db09c878"}) [ 417.053265][ T119] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32 [ 417.065440][ T119] asix: probe of 4-1:0.0 failed with error -32 [ 417.104521][ T3563] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 417.113218][ T3563] ath9k_htc: Failed to initialize the device [ 417.125585][ T3566] kye 0003:0458:5019.000E: hidraw0: USB HID v0.00 Device [HID 0458:5019] on usb-dummy_hcd.4-1/input0 [ 417.138721][ T3566] kye 0003:0458:5019.000E: tablet-enabling feature report not found [ 417.150525][ T3566] kye 0003:0458:5019.000E: tablet enabling failed [ 417.160785][ T3565] usb 3-1: ath9k_htc: USB layer deinitialized [ 417.254812][ T3566] usb 5-1: USB disconnect, device number 52 [ 417.714210][ T3565] usb 3-1: new high-speed USB device number 41 using dummy_hcd [ 418.273324][ T3565] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 418.283425][ T3565] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 418.292118][ T3565] usb 3-1: Product: syz [ 418.297448][ T3565] usb 3-1: Manufacturer: syz [ 418.304459][ T3565] usb 3-1: SerialNumber: syz [ 418.375203][ T3565] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested 21:58:55 executing program 1: socket$packet(0x11, 0x2, 0x300) r0 = socket$inet6_udplite(0xa, 0x2, 0x88) sendmsg$inet6(r0, &(0x7f00000004c0)={&(0x7f0000000100)={0xa, 0x4e21, 0x0, @local, 0x7}, 0x1c, 0x0}, 0x0) 21:58:55 executing program 5: r0 = socket$igmp(0x2, 0x3, 0x2) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0xc0189436, &(0x7f0000000240)) 21:58:55 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x1, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef", 0x3a, 0x400}], 0x0, 0x0) 21:58:55 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x18, &(0x7f0000000c40)={0x0, 0x0, 0x81, {0x81, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab91cd7abf7a917f376386f7e92afc65e75c880a55d2877146ab5f476c1287ecb3e4003547007c60a0466f"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) 21:58:55 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x4f, 0x92, 0xb9, 0x8, 0x1557, 0x7720, 0xb7eb, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x27, 0x85, 0xe6}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000040)={0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x40, 0x19, 0x2, "a8cd"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) [ 418.905367][ T3565] usb 4-1: USB disconnect, device number 46 [ 419.044120][ T3563] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 419.046376][ T5189] loop0: detected capacity change from 0 to 4 21:58:55 executing program 5: r0 = socket$inet(0x2, 0x1, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8915, &(0x7f00000002c0)) 21:58:55 executing program 1: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TCSETA(r0, 0x5453, 0x0) [ 419.211633][ T2846] Dev loop0: unable to read RDB block 4 [ 419.217845][ T2846] loop0: unable to read partition table 21:58:55 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x1, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="00da9bccad002100000400001f2b6fe2f96a3f6d2f93ca9700b41d3200000000e61dc18e8c44810000e4259e66932f75a7e35b9cc4c0e894a793926020f869c80184d3c69b0200000067c4eb317d9510c86b996c4c95074763bcffff1b27d72d69e41d5490584127f1be46d68441f24cc08bc114b8640a1c284a042bad52ed8715cb1335cc80259162dda27f90d1947ae4d82b1aa0b548e7393f3e00bc4cc5b3e3c8219821d391264cefcf9faad2b4077e1ebd400df5353093c588708eaeebb789e308a53a50e9c16d7ad1c27b4952e4dc878a3cf617e0558e6a4835afa1ac000000009e9084343c6ed98d00f15eaf0131f5b4136929ed31bdecd21d59ccdb410dd93aa5079d6be21e9b112ef80bdd651f64988663add3343db6ad9e04f5b5eec29b19766749b8801cfb90e1aed6002a74c5081cb3cd8433e4f5c57aa4e64917abef7028d07ed6039c9f08efd7d996a5be6c9a15c6cbcdce39c469faf34d80b5e3633c078ce7d7522ffdaadd9d3d7ab33fce554e2150459954ac9bfcbe5d28ec65524a218b229a40d3b7c9949a617dbe4913dd2e1c383e83fd2ed7b3266a7fef1e0c9fb0f4870bcfc981618782a42ade56271308cea1595bc156a087e038bb447c623d3f0500cbacf9af1c93d1be01bc0b90d0a13edf05702e43ce8268af172e049a5a9a6ca77b0dd3cf48f73f27079a8743644e426be045aa4428c13ebec99f3cc5a269b4d50c077a68af9e8cd7d3ebd646719323fd11e3ac294159ddd9dfda99ea960ebf781a6c6f84de13d1568023f79708e7cc3e5c7a25b1f13ac3ca08bf39810d14b3a7bf2e40c94e8586dbae0e6f5e5379700eeabe00c6ba0ed79c984f042c3c76623c4c"]) [ 419.263867][ T3566] usb 5-1: new high-speed USB device number 53 using dummy_hcd [ 419.299381][ T2846] loop0: partition table beyond EOD, truncated [ 419.473358][ T3560] usb 3-1: USB disconnect, device number 41 21:58:55 executing program 5: setsockopt$MRT_PIM(0xffffffffffffffff, 0x0, 0xcf, 0x0, 0x0) [ 419.585504][ T3565] usb 4-1: new high-speed USB device number 47 using dummy_hcd 21:58:55 executing program 1: shmat(0x0, &(0x7f0000fee000/0x12000)=nil, 0x1000) [ 419.665767][ T5198] loop0: detected capacity change from 0 to 4 [ 419.685071][ T3566] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 419.697617][ T3566] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 419.707808][ T3566] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 419.718536][ T3566] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 419.740973][ T5198] Dev loop0: unable to read RDB block 4 [ 419.747593][ T5198] loop0: unable to read partition table [ 419.796704][ T5198] loop0: partition table beyond EOD, truncated [ 419.814800][ T5198] EXT4-fs (loop0): invalid inodes per group: 67108896 [ 419.814800][ T5198] [ 419.842302][ T3566] usb 5-1: config 0 descriptor?? [ 419.849098][ T3565] usb 4-1: Using ep0 maxpacket: 8 [ 419.942582][ T4604] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 419.952956][ T4604] Buffer I/O error on dev loop0, logical block 0, async page read [ 419.994123][ T3565] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 420.003847][ T3565] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 420.114663][ T3565] usb 4-1: config 0 descriptor?? 21:58:56 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x1, &(0x7f0000001f80)=[{&(0x7f00000002c0)="20000000200100000c000000ce0000000f000000f8ffffff000000000000000000200000f21f000020000004d2f4650900000000000000ff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000000a40)=ANY=[]) [ 420.144068][ T3563] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 420.151819][ T3563] ath9k_htc: Failed to initialize the device 21:58:56 executing program 5: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_dccp_int(r0, 0x21, 0x0, 0x0, 0x0) [ 420.189661][ T3560] usb 3-1: ath9k_htc: USB layer deinitialized 21:58:56 executing program 1: syz_emit_ethernet(0x68, &(0x7f0000000000)={@local, @multicast, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "f21b12", 0x32, 0x3a, 0x0, @remote, @local, {[], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, "d93efb", 0x0, 0x2c, 0x0, @private1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [], "8d2f"}}}}}}}, 0x0) [ 420.332663][ T3566] kye 0003:0458:5019.000F: item fetching failed at offset 2/5 21:58:56 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$SMC_PNETID_GET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x40001) [ 420.403255][ T3566] kye 0003:0458:5019.000F: parse failed [ 420.409199][ T3566] kye: probe of 0003:0458:5019.000F failed with error -22 [ 420.443565][ T3565] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32 [ 420.454671][ T3565] asix: probe of 4-1:0.0 failed with error -32 [ 420.569105][ T3565] usb 5-1: USB disconnect, device number 53 21:58:56 executing program 2: bpf$BPF_GET_MAP_INFO(0x5, 0x0, 0x0) [ 420.811745][ T5210] loop0: detected capacity change from 0 to 4 [ 420.830968][ T4604] Dev loop0: unable to read RDB block 4 [ 420.838000][ T4604] loop0: unable to read partition table [ 420.917698][ T4604] loop0: partition table beyond EOD, truncated [ 420.929219][ T5210] EXT4-fs (loop0): invalid inodes per group: 67108896 [ 420.929219][ T5210] 21:58:57 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x18, &(0x7f0000000c40)={0x0, 0x0, 0x81, {0x81, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab91cd7abf7a917f376386f7e92afc65e75c880a55d2877146ab5f476c1287ecb3e4003547007c60a0466f"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) [ 421.752994][ T3566] usb 5-1: new high-speed USB device number 54 using dummy_hcd [ 422.143630][ T3566] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 422.155208][ T3566] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 422.165700][ T3566] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 422.175460][ T3566] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 422.195517][ T3566] usb 5-1: config 0 descriptor?? 21:58:58 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x4f, 0x92, 0xb9, 0x8, 0x1557, 0x7720, 0xb7eb, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x27, 0x85, 0xe6}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000040)={0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x40, 0x19, 0x2, "a8cd"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 21:58:58 executing program 1: syz_emit_ethernet(0x68, &(0x7f0000000000)={@local, @multicast, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "f21b12", 0x32, 0x3a, 0x0, @remote, @local, {[], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, "d93efb", 0x0, 0x2c, 0x0, @private1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [], "8d2f"}}}}}}}, 0x0) 21:58:58 executing program 5: syz_emit_ethernet(0x52, &(0x7f00000000c0)={@local, @multicast, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "080080", 0x1c, 0x3a, 0x0, @remote, @private0, {[], @mlv2_query={0x82, 0x0, 0x0, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}}}}, 0x0) 21:58:58 executing program 2: r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x1}, 0x4) 21:58:58 executing program 0: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x89a1, &(0x7f00000002c0)={'ip6_vti0\x00', 0x0}) [ 422.276080][ T3565] usb 4-1: USB disconnect, device number 47 21:58:58 executing program 2: syz_emit_ethernet(0x76, &(0x7f0000000080)={@local, @multicast, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "f21b12", 0x40, 0x3a, 0x0, @remote, @local, {[], @pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "50ab5b", 0x0, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @local, [@dstopts={0x3a}], "22249535884e46dd"}}}}}}}, 0x0) 21:58:58 executing program 1: syz_emit_ethernet(0x68, &(0x7f0000000000)={@local, @multicast, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "f21b12", 0x32, 0x3a, 0x0, @remote, @local, {[], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, "d93efb", 0x0, 0x2c, 0x0, @private1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [], "8d2f"}}}}}}}, 0x0) 21:58:58 executing program 5: add_key(&(0x7f0000000000)='ceph\x00', 0x0, 0x0, 0x0, 0xffffffffffffffff) add_key(&(0x7f0000000000)='id_resolver\x00', &(0x7f0000000080)={'syz', 0x1}, &(0x7f00000000c0)="cb", 0x1, 0xfffffffffffffffe) 21:58:58 executing program 0: syz_emit_ethernet(0x6e, &(0x7f0000000080)={@local, @multicast, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "f21b12", 0x38, 0x3a, 0x0, @remote, @local, {[], @pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "50ab5b", 0x0, 0x84, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @local, [], "22249535884e46dd"}}}}}}}, 0x0) [ 422.691746][ T3566] kye 0003:0458:5019.0010: item fetching failed at offset 2/5 [ 422.749454][ T3566] kye 0003:0458:5019.0010: parse failed [ 422.755819][ T3566] kye: probe of 0003:0458:5019.0010 failed with error -22 21:58:58 executing program 2: add_key(&(0x7f0000000040)='ceph\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffb) [ 422.890400][ T3566] usb 5-1: USB disconnect, device number 54 21:58:59 executing program 5: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x8943, &(0x7f00000002c0)={'ip6_vti0\x00', 0x0}) [ 422.993398][ T3619] usb 4-1: new high-speed USB device number 48 using dummy_hcd [ 423.233416][ T3619] usb 4-1: Using ep0 maxpacket: 8 [ 423.353758][ T3619] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 423.365452][ T3619] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 423.421596][ T3619] usb 4-1: config 0 descriptor?? 21:58:59 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x18, &(0x7f0000000c40)={0x0, 0x0, 0x81, {0x81, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab91cd7abf7a917f376386f7e92afc65e75c880a55d2877146ab5f476c1287ecb3e4003547007c60a0466f"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) [ 423.684077][ T3619] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32 [ 423.696275][ T3619] asix: probe of 4-1:0.0 failed with error -32 [ 423.913591][ T3566] usb 5-1: new high-speed USB device number 55 using dummy_hcd [ 424.323135][ T3566] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 424.336486][ T3566] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 424.349737][ T3566] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 424.361480][ T3566] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 424.391295][ T3566] usb 5-1: config 0 descriptor?? [ 424.881060][ T3566] kye 0003:0458:5019.0011: item fetching failed at offset 2/5 [ 424.893622][ T3566] kye 0003:0458:5019.0011: parse failed [ 424.900133][ T3566] kye: probe of 0003:0458:5019.0011 failed with error -22 [ 425.093336][ T3566] usb 5-1: USB disconnect, device number 55 21:59:01 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x4f, 0x92, 0xb9, 0x8, 0x1557, 0x7720, 0xb7eb, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x27, 0x85, 0xe6}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000040)={0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x40, 0x19, 0x2, "a8cd"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 21:59:01 executing program 0: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_MSG_GETSET(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000380)={0x2c, 0xa, 0xa, 0x301, 0x0, 0x0, {}, [@NFTA_SET_EXPR={0x14, 0x11, 0x0, 0x1, @range={{0xa}, @val={0x4}}}, @NFTA_SET_USERDATA={0x4}]}, 0x2c}}, 0x0) 21:59:01 executing program 1: syz_emit_ethernet(0x68, &(0x7f0000000000)={@local, @multicast, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "f21b12", 0x32, 0x3a, 0x0, @remote, @local, {[], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, "d93efb", 0x0, 0x2c, 0x0, @private1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [], "8d2f"}}}}}}}, 0x0) 21:59:01 executing program 2: bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x12, 0x1, 0x4, 0x5, 0x0, 0x1}, 0x48) 21:59:01 executing program 5: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000080)={'ip6gre0\x00', &(0x7f0000000000)={'ip6_vti0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @mcast2, @rand_addr=' \x01\x00', 0x0, 0x700}}) 21:59:01 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x18, &(0x7f0000000c40)={0x0, 0x0, 0x96, {0x96, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab91cd7abf7a917f376386f7e92afc65e75c880a55d2877146ab5f476c1287ecb3e4003547007c60a0466f77cc3abce7d506197b7602e5face683fd5b62746db"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) [ 425.644356][ T20] usb 4-1: USB disconnect, device number 48 21:59:01 executing program 5: bpf$BPF_GET_MAP_INFO(0x12, &(0x7f0000000380)={0xffffffffffffffff, 0x58, &(0x7f0000000440)}, 0x52) 21:59:02 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_WOWLAN(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)={0x20, r1, 0x577, 0x0, 0x0, {{}, {@void, @void, @val={0xc}}}}, 0x20}}, 0x0) 21:59:02 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$l2tp(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$L2TP_CMD_SESSION_MODIFY(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)={0x28, r1, 0x1, 0x0, 0x0, {}, [@L2TP_ATTR_IFNAME={0x14, 0x8, 'veth1_to_bridge\x00'}]}, 0x28}}, 0x0) 21:59:02 executing program 1: syz_usb_connect(0x0, 0x896, &(0x7f0000000000)=ANY=[@ANYBLOB="12011001eac34d20081608031d010102030109028408023f8110020904"], 0x0) 21:59:02 executing program 5: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r0, 0x89f2, &(0x7f0000000100)={'ip6gre0\x00', &(0x7f0000000040)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}) [ 426.343606][ T3566] usb 5-1: new high-speed USB device number 56 using dummy_hcd [ 426.375043][ T3565] usb 4-1: new high-speed USB device number 49 using dummy_hcd 21:59:02 executing program 0: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TCSETSF2(r0, 0x5423, &(0x7f0000000000)={0x9, 0x0, 0x0, 0x0, 0x0, "6ac2400000000000000056c4abbc570300d185"}) [ 426.583068][ T20] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 426.654588][ T3565] usb 4-1: Using ep0 maxpacket: 8 [ 426.734542][ T3566] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 426.734703][ T3566] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 426.734872][ T3566] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 426.735010][ T3566] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 426.742377][ T3566] usb 5-1: config 0 descriptor?? [ 426.774150][ T3565] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 426.774294][ T3565] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 426.778425][ T3565] usb 4-1: config 0 descriptor?? [ 426.829081][ T20] usb 2-1: Using ep0 maxpacket: 32 [ 426.951914][ T20] usb 2-1: config 63 has an invalid descriptor of length 0, skipping remainder of the config [ 426.952041][ T20] usb 2-1: config 63 has 1 interface, different from the descriptor's value: 2 [ 427.035895][ T3565] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32 [ 427.036319][ T3565] asix: probe of 4-1:0.0 failed with error -32 [ 427.114468][ T20] usb 2-1: New USB device found, idVendor=1608, idProduct=0308, bcdDevice= 1.1d [ 427.114607][ T20] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 427.114710][ T20] usb 2-1: Product: syz [ 427.114790][ T20] usb 2-1: Manufacturer: syz [ 427.114873][ T20] usb 2-1: SerialNumber: syz [ 427.243385][ T3566] hid (null): invalid report_count 29440 [ 427.268950][ T3566] kye 0003:0458:5019.0012: invalid report_count 29440 [ 427.269061][ T3566] kye 0003:0458:5019.0012: item 0 2 1 9 parsing failed [ 427.277039][ T3566] kye 0003:0458:5019.0012: parse failed [ 427.277186][ T3566] kye: probe of 0003:0458:5019.0012 failed with error -22 [ 427.453287][ T3566] usb 5-1: USB disconnect, device number 56 [ 427.467861][ T20] io_ti 2-1:63.0: required endpoints missing [ 427.559089][ T20] usb 2-1: USB disconnect, device number 4 21:59:05 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x4f, 0x92, 0xb9, 0x8, 0x1557, 0x7720, 0xb7eb, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x27, 0x85, 0xe6}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000040)={0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b00)={0x40, 0x13, 0x6, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(0xffffffffffffffff, 0x0, &(0x7f0000000940)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x40, 0x19, 0x2, "a8cd"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 21:59:05 executing program 2: syz_io_uring_setup(0x7fc5, &(0x7f0000000040), &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f00000000c0), 0x0) syz_io_uring_setup(0x15cd, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 21:59:05 executing program 5: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TCSETSF2(r0, 0x5423, &(0x7f0000000000)={0x14, 0x0, 0x0, 0x0, 0x0, "6ac2f7dc74d1fce00b4956c4abbd572f2ed185"}) 21:59:05 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x18, &(0x7f0000000c40)={0x0, 0x0, 0x96, {0x96, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab91cd7abf7a917f376386f7e92afc65e75c880a55d2877146ab5f476c1287ecb3e4003547007c60a0466f77cc3abce7d506197b7602e5face683fd5b62746db"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) 21:59:05 executing program 0: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff}) sendto(r0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=@un=@abs={0x0, 0x0, 0x2}, 0x8) 21:59:05 executing program 1: r0 = socket$unix(0x1, 0x2, 0x0) connect$unix(r0, &(0x7f0000000000)=@abs={0x0, 0x0, 0x3}, 0x8) [ 429.062572][ T20] usb 4-1: USB disconnect, device number 49 21:59:05 executing program 0: r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmctl$IPC_RMID(r0, 0x0) 21:59:05 executing program 1: mlock(&(0x7f0000feb000/0x12000)=nil, 0x12000) munlock(&(0x7f0000ff9000/0x4000)=nil, 0x4000) 21:59:05 executing program 5: stat(&(0x7f0000000000)='./file0\x00', 0x0) symlink(&(0x7f00000000c0)='./file0/../file0\x00', &(0x7f0000000100)='./file0\x00') sendmmsg(0xffffffffffffff9c, &(0x7f0000001580), 0x10, 0x2) [ 429.453197][ T3619] usb 5-1: new high-speed USB device number 57 using dummy_hcd 21:59:05 executing program 2: syz_emit_ethernet(0xe, &(0x7f0000000000)={@broadcast, @local, @val, {@generic={0x8848}}}, 0x0) [ 429.823573][ T3619] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 429.841934][ T3619] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 429.858626][ T3619] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 21:59:05 executing program 0: socket(0x1, 0x0, 0xe7) [ 429.872196][ T3619] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 429.894090][ T3566] usb 4-1: new high-speed USB device number 50 using dummy_hcd 21:59:06 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x5452, &(0x7f0000000140)) [ 430.134965][ T3619] usb 5-1: config 0 descriptor?? [ 430.139186][ T3566] usb 4-1: Using ep0 maxpacket: 8 [ 430.274263][ T3566] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 430.286796][ T3566] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 430.343284][ T3566] usb 4-1: config 0 descriptor?? [ 430.614625][ T3619] hid (null): invalid report_count 29440 [ 430.650918][ T3619] kye 0003:0458:5019.0013: invalid report_count 29440 [ 430.662322][ T3619] kye 0003:0458:5019.0013: item 0 2 1 9 parsing failed [ 430.688353][ T3619] kye 0003:0458:5019.0013: parse failed [ 430.695883][ T3619] kye: probe of 0003:0458:5019.0013 failed with error -22 [ 430.814034][ T3566] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -61 [ 430.827009][ T3566] asix 4-1:0.0 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffc3 [ 430.838878][ T3566] asix: probe of 4-1:0.0 failed with error -61 [ 430.849327][ T3619] usb 5-1: USB disconnect, device number 57 21:59:08 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x4f, 0x92, 0xb9, 0x8, 0x1557, 0x7720, 0xb7eb, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x27, 0x85, 0xe6}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000040)={0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b00)={0x40, 0x13, 0x6, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(0xffffffffffffffff, 0x0, &(0x7f0000000940)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x40, 0x19, 0x2, "a8cd"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 21:59:08 executing program 5: syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, &(0x7f00000023c0), 0x0, &(0x7f0000002440)) 21:59:08 executing program 0: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000040)={0x5, 0x0, 0x0, 0x0, 0x0, "8beaf99f9b0c06f0e1ab0dbdf825addc9d9caa"}) 21:59:08 executing program 2: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8970, &(0x7f0000000140)) 21:59:08 executing program 1: execveat(0xffffffffffffffff, &(0x7f0000000280)='./file1\x00', 0x0, 0x0, 0x800) 21:59:08 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x18, &(0x7f0000000c40)={0x0, 0x0, 0x96, {0x96, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab91cd7abf7a917f376386f7e92afc65e75c880a55d2877146ab5f476c1287ecb3e4003547007c60a0466f77cc3abce7d506197b7602e5face683fd5b62746db"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) [ 432.564357][ T3619] usb 4-1: USB disconnect, device number 50 [ 432.673542][ T5309] process 'syz-executor.1' launched '/dev/fd/-1/./file1' with NULL argv: empty string added 21:59:09 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)={0x1, 0x7, [{0x40000000}]}) 21:59:09 executing program 0: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = dup(r0) write$UHID_INPUT(r1, &(0x7f0000001040)={0xf, {"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", 0x1000}}, 0x1006) 21:59:09 executing program 1: setgroups(0x7, &(0x7f0000000cc0)=[0x0, 0x0, 0xee00, 0x0, 0x0, 0x0, 0xee00]) [ 432.956902][ T5311] ISOFS: Unable to identify CD-ROM format. [ 432.996186][ T122] usb 5-1: new high-speed USB device number 58 using dummy_hcd 21:59:09 executing program 5: r0 = fanotify_init(0x0, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, 0x0) 21:59:09 executing program 1: r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000600)=@raw={'raw\x00', 0x9, 0x3, 0x278, 0x110, 0xffffffff, 0xffffffff, 0x110, 0xffffffff, 0x1e0, 0xffffffff, 0xffffffff, 0x1e0, 0xffffffff, 0x3, 0x0, {[{{@uncond, 0x0, 0xe8, 0x110, 0x0, {}, [@common=@inet=@length={{0x28}}, @common=@osf={{0x50}, {'syz1\x00'}}]}, @common=@unspec=@NFQUEUE3={0x28}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@SET={0x60}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x2d8) [ 433.398398][ T3619] usb 4-1: new high-speed USB device number 51 using dummy_hcd [ 433.415076][ T5320] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 433.514090][ T122] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 21:59:09 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000640)={&(0x7f0000000240), 0xc, &(0x7f0000000600)={&(0x7f00000005c0)={0x24, 0x0, 0x0, 0x0, 0x0, {}, [@L2TP_ATTR_LNS_MODE={0x5}, @L2TP_ATTR_OFFSET={0x6}]}, 0x35}}, 0x0) [ 433.514245][ T122] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 433.514412][ T122] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 433.514546][ T122] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 433.519178][ T122] usb 5-1: config 0 descriptor?? [ 433.634263][ T3619] usb 4-1: Using ep0 maxpacket: 8 [ 433.954947][ T3619] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 433.955093][ T3619] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 433.959040][ T3619] usb 4-1: config 0 descriptor?? [ 433.995160][ T122] hid (null): invalid report_count 29440 [ 434.003278][ T122] kye 0003:0458:5019.0014: invalid report_count 29440 [ 434.003375][ T122] kye 0003:0458:5019.0014: item 0 2 1 9 parsing failed [ 434.049339][ T122] kye 0003:0458:5019.0014: parse failed [ 434.049550][ T122] kye: probe of 0003:0458:5019.0014 failed with error -22 [ 434.200866][ T20] usb 5-1: USB disconnect, device number 58 [ 434.435042][ T3619] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -61 [ 434.446818][ T3619] asix 4-1:0.0 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffc3 [ 434.458799][ T3619] asix: probe of 4-1:0.0 failed with error -61 21:59:12 executing program 1: syz_mount_image$iso9660(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000380), 0x400, &(0x7f0000001440)={[{@nojoliet}, {@iocharset={'iocharset', 0x3d, 'iso8859-5'}}, {@check_relaxed}]}) 21:59:12 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) sendmsg$L2TP_CMD_SESSION_DELETE(r0, &(0x7f00000002c0)={&(0x7f0000000180), 0xc, &(0x7f0000000280)={0x0}}, 0x0) 21:59:12 executing program 5: r0 = socket$inet_sctp(0x2, 0x1, 0x84) connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @rand_addr=0x64010100}, 0x10) 21:59:12 executing program 0: openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x40, 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r0, &(0x7f000000e440)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f}}, 0x50) [ 435.896884][ T20] usb 4-1: USB disconnect, device number 51 syz_fuse_handle_req(r0, &(0x7f00000021c0)="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", 0x2000, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x0) syz_fuse_handle_req(r0, &(0x7f00000041c0)="0a44566bd8cd7422e078875d6a98d0a2dcc0a0c7881e44e46c6bf84253a3ba4cba8183c2236313cd49babfb721c547a5caed646bac2f2ea43e134e2a05d84cd813c9e2a96e68352f95c458f6ba48078f1d10fce44d869b4a00c68ca338ff3b877cb434f502cedfe83cbfb33d5233d081ec8ee2ac10e08194f6257183be922fc7203071a2aaf87478d1420237a1516e749623929f0d60f15e536376ba41fbbce034588b60680572f0d1d76ed122dc46252cc143f0e665e3f4e3f56bc454957265bd9a029cf8c7397ca01f95bc0e6601673bb31804c34307725385260df48c32527d74e51e5f26728aaedf9f379f5960f5e6e7146eff3254aaf54eb42834e1f57595a2b0333f5ca1474e07c2447c33dbe8f62f24cd788ac18475493edb813450e917837b125ad6f850e6af93e16828a6741c6ac00a4e25cfcd498f1b857e74a4eb8dce5ffcb3999031f1da13e9e6a973134ec04795a3fe91388fb6b349e668f49bd4c4ffa71a8662916219b4a2075bbfe4892cd1080f662005c1c2030d35999c9637f4836ae5745acae8ff0d745184e58241510d780f8a9aeeccb17b9213527a1b747dd23df6b4ac2ca4bd07fb7de6bb4bf8811e5c2f99f4bbcb3cba79fc483182bb981815a1b1ba5afad464631e6eb940a5da4e73787e9e0103bc7ea59cc8d63f740131a14c3cd034e91e885bd730521ba80c1071f25e0073a44bf8e36cc23a5f433378a13d2e2be7fbb8ca204976651924ae8637b339e883f4d388e239424031e20616341a5d51cd5d574382d518e4824dcdadba86143b4de3ff8126f0be226d1e6526a2af981d11092c428bc699ea208d4d38d63ef525b8da551207397fdb7d57a52c2062182072b017141de1b70bd15c758c88c65f6acffd5b5b0846c2a779660ceef46b22336abf817a24d27c3f66839b5f2f99131898dd372a124d9e5df84b24fa7be045b92fb225a735da1be1972c706120c391ffadf231603ffbb86d38ff2c76202a0f81317a7f790dadcdca1d109e4428f52246b17f6b5822f64d36da71167df86cedf76f4405f320f70a3d6d6307a13e023d9a23985fd9c95793118674346d7977654ed14a121c1bc0b3e8672087245e0721230edc667c1fb6bcdb22b3264b7fffedb589a2899096493ba97ce5fb0ad97821d0a4528465380e086b61f632eb0ce1f89eea2d8336217f51b4085433d426d404431360be55776cbb0f80c33e807732df3d73bf9d9a8e3b1468d2ac7c73a4aa239c96bbeef3965132a02254d887e65fbeaf517e913cc331ed36c3e326163d1a3aef7df9db06f8997668cc35e39813c82a440a73f12011bcc0b2abb993b99e79727d49e6656e8d9ecfb7b65c2c187ca6262361c6a7d3679aba9df764d13485874b1443f47d8caea64963011294082a9d50ed2fb08cdfaaa7dbcf782b7e8f8d8206dbc421bf9807727126b1ea364498f3ae693fe19f5b56af13df090892919c136c201a0d058c1863f136a3ff389cc510c17b1de341ca9a8d6ffd80fd019ac3fd9eeeb845202f2c5f207b1e7e169d57164855b9c3dbdf3c696124136d07a4de6be16b43352567a3e3bab0f73ccdd41255ffeb3ecb2bdf9eedd1d4332f4a7534b01b6331474880d4d07b464bd8c3b18d02fbf1faeeff70c8ae35b4eef002930dfa9a0c9350ffb72c82535a55280ac9c6d5384cf9aa3c66cc918497f51a6dbad608eee21f6085f85990983d0a51e5b41cb69ae52d60fa835045aaa0132be8b4dfdb10f521bc22b0192a4133040453c5a0a8bbb5d4c46ea25f2be5b0e79d71c4a13db6e9cb66db9f2c4804d41b9c26f96fd23c358ee9c8f57322540953224b56072af25b5c7041de560f1d4bde367eb3bbac949d9a9a86123ae62d0f4741446192e85772fb893b64c0e7c44a6e967af906b0f50e32be384027379c8dde251f549f94b16cee199da537d07ae89848da801b43bab3b65651402756cb22d17e602cdc33790ec8a5484a955bc8f487597ac9752166a405bbd7dfc9107af72b46e39d29afd2a0447e53377fd11997ab21db0f740699843a168720377e365caf88fd319dca184cadb8ffb4d288a0045b349be5ecb64561a2bdfa13336ef96aea86c48a5e405330a01c5390d482e6ccf4ebb2cf149d8b6274b2f9e6e1066004172a1a90e0db9838afafcb663bd693b2e5ca35858dcb82c05cbc87ec5cedfbb08daf55c472e250861bf357569342d90a667f3ac7fc2d4e54220444a97810ac14b0af6b043a07c1d791182635b983492f21db4a6ffee2d686238869e50b9bb73d75ec26087c0c8cb92ff25740b3995e4d771469b8474efef04d8d75f3544aaf84f02ad977948764d4c1bce36aa4198d6f22091b263d9eae96f1096fe3d8045949f189f33ec713101fea26ea043fe98b987542e33ab372058c64205e90a0e1f52d04b2c5ba7a5572ddb95f7d2b04f22e2e987c5d0f879db65718d8979da2a45cd333a5aacf96081977a9eb3dcee4afb44443ad37528c5a314d1ea08d1c3f0a36d4bdf77fc0caaeaa1eb2746a26683561b62d22f4e166192892e2ec1597f8bf6e89cd53840c8d7baea220e1b5e17df52a05017363727b0cc77ee61577a79b3de2ed364f3419a30d23701044b45ed3ba44b01804750bacf5bc959cffba86619f3331cc939fecadb5cba1edfe28952e0f70d2d99ce696dab9411aa2f7e7ca6207a3b16fc36a70e339aa5a618f6bcb0272968eba6edd95242825fe6e47cf1d50d229d4b1676aad0e9410aa1f2d6d2fcb9c4ec8e06c83faefbc2143de2367123bdb7669bd959782cf64def3a601c596611ac98d76df33e1fe340829340ba0a582d014ffacf9a9394300ab7efd60222cf96a99e42dae6e1ff1fcad1e3280ca07de5ea7e08b264a60015ffb76cc72d70ded58a1e2f59906f3c76433e4353a94a2a49f91103e2b5491ac7f66d54ae2a0e82099c4c9bd683971c2d3dd51601bf5e94f7660158bc6fdc1b2ce3d689a3aa64c29810ad7d9e91e49b72e6f97230a2a966434bf5cdb339556e6452e6b446766f55df45219fc02192cb73076285e74eb848229bffd812f6058782b3f5d0efa4d7b0d3c120931aa8b679e318ecc5ea539e3dcaf87473e2573189ce500b616957d88a09a014baffbd66990e41a3432891279cb82d9c4b50675ff067b76503535631aab9a29ee7e274eded1cd542c801bf519e1119fbab84f57c7686209c9e5177545bf0f403609c81fe6d8f2979d886c43fa3053b38b6e21ec3632011c97451d8409f169f71d226e61fdd206ec5f962b0277eee286a694ba5381493941ed44b3659994d3cd2a8c9c3bdb2f63d77eaee180428d7d6df86f6738cf7adb4b863c9ee9da9904bba4c2c3188a1ce31c5b082857e5566055c8cf58a9e9f7624d220b8d3093cbc6eaed7fcf15fc700ed711575aff5fb5cb7e206c810ea7a766d2960a1356687aad2ec171e4a1db6540a9257385a1e8b9f029485866c32e74c1a19e1113040c9d215f9f4bb4311f0d587b9cb6d11cdf28d4cbcdde4ee7831e5c8608335a1e41883b55b3609b9c4fb8489619481dffc6224e4c98b1e89831187b28b6bcebe7f78c779f5a2896e47bef8e607811b435c517e8e3f19d74752d7ae99cb7caf69c0f977f1b94f8f11bdbf35444fabaac2fc0e568d3b5b3b9f13162b1fa92615bc16492b870fc85c79c51b6516276f8e559e769a8d37a2335d67edbdbe2d4ded10e79ad26629ba6de862acb27fa7d0607a5c83840e446ca0d231ae9175ae9cddf35443ef8434a61d54b704d2b46835ca030d4325dd62918d361c27bd6e422f3f8431ff979953c88a5f3d07a84b733b2fffda5dedbc2ba876ea653aaa2a8446019d2cb69c4c7023177af7b5de358c4a93ba969415c7e3bd3e10a17653cc4c0031dc779d47bedc8d0f77b9fb39484e47d1edfa16a4839d7e3c1f4147bf7a5a41395980d0234577d433c4f3663a648865cf5cfc4a713bfde809cae8161f044770d8f3dd65f183392ed73dd0512951dce40dd6f68927144d09a6df1225769a47a2f1dc7da5a0e5651dc0198c2feb7de7aae5675a3753272294cdc8f05b4bf1b478d6e2a18f6a9dfdc42421bae7072786a4122cb3fcc61b2d0bc9314b92be8be3f9b8b109631305e06b52c0bf621d577f014d0572327c49fd705b45794aa8f198b37c139c4a8008763c654af912552549203733ad09c667104a3c1756dacc50af3d19bd996a99a7f857d9ff8c337c6feb16cb7fe282cbf8c975bdb60a7ddaa056352d9cf752f2b49fd0ae9dd7a263c4e1c1a027c7d45529b5a49de9f2306862b8ef8d386594f9909aabc849c5955241d192ab57d52fd2c7db0e4066bc3f70445599a60016de606b30a92b1bcbcd9dc8cfb492a6e66aa2be612e1d5f7fc61989d51285f1ef8a4e724a46c36bdaa6bed82ec972fe3e929a7a708397432b13e266d9a66954e011a158c9bc031587f9315382dfcc2334100d99b7d50b87096970d294261dd3263bee8f5aac2d86f070d70e278ecca4cf6ff05e511c0a65d6da81b68d94cd635e9dc98c1259fa2060de60d05117090a9a36d7b7aab999cd28a6c0727336312ede8f7fe0118e22aeb4094a64311fa766412d68ee04a93a1b9e2da91afcc91a1fc3c216f0aed6da74baed3242e620482ae01d3055562d16cab58500a5f41145d2275f6da8e24003cae19a7bdb9de8ef57965341253901962d846fcfd687e32fc81e716c42fae279382c8a750c9ef9543c942ca644287ec9cc921f99e9c901810a342e198f3b60a5c75aa91e67c1a6f08008841ddbe0766604b38a211929682303ce61e8024ea4589aa955886adc98f365af515daf30c376eb2b96fd78d46bc3999935a336c89f02ebe822bb5db6a1fd145c4d403b88f17b3fac670b2eb1296b3a5a7055556c21259695c248696162fc179aa1b4ec10e022ea7bacd0255937f9aa89f4d4c58bdedb54b43fde47268552f51b949a9cfbdabf6e3172853e6de9d0b0d9643349595769e98dab85282c49ce8c52301c04710a2c43cf63decaf65243d4756015b681bb680fdd1aba59d63b54e2ebedc68df32e575a95adfb2b18a79688b23ffb498d03012250f0dfaaed5353025aea7a35c8a89873b5f73adb41cc864b9f86e14624d70c917f05e47bab793958de9957cf23c94a9807b30bd7574edf66250224b887a8c02baa05cc02abd4c008339129b3109f1b04da29a9edf472991a440fcc8e586bef32b8c95fcd3d6702b9f43bf41454d5fe72a1f1ac80604c93dc9e9abf9a824c6d45e65b4f39f8341799dce4eac5e9036450ba7829221fdac7ec394c0a8e9813f5aad3ad0052f5156b3dca979e9c9a8755d4be2502727d346889210a13e5391951afef1880bcbd2a9ea020c9b2946563cd40c40f6202bce9bd1d2a1bbc3e5e6b2a9d2220343fd1ff5cde1b4d27c0601b8890b6ad8d3d80075a23725bddd81c15cd1b63e0123c4ac01de7b62b1e0fe2b72eaf400a1bcc63f76316d471eb191c931d5350e83a110b89e77668cfdc47734b91c2268fbbd89ce15b50b84c423a1f27943c32739e99b046a665c966275dba2dd6449b69ec53e5cb9cde89afe4149589c7378f5f3648d748bf3d46fa53f50d1228714252a328cebe7146d81dbb2f850aad492bc0697e2760dc9c60bc76a010e85110c0076478a21b47e5fbc4f7397a319e1db642e305bb1330674d96eb4b421f0f2131d125d4cec8aef4637dce572bad633e076972c9147a48b4c67135ace6a4490e16fa4731d62864e910762f1eb58afa63031c78c375a90147ceef07cd1e8155a649f2558d67dba9d6d2e012a3af4b603cd094e4a3b2e30c65c80cf8d9b2cb840e9df91e70162b80e74be96467574ca0ac5ad52238163283c556f0865c2338d6dcc73fa330634f6e5ce68e766df2db5b7edce0d98203e1d4374e7eda3558667229ea2daeb74156cf5895c4afb460cb4037456b14d9b748ddf7b8f3d5accd3e0d8d2eca2a78056d945eb4383078cc09a3a77736ce4e91f8174fe03fdceef8df92a50c2797b0cd06c6f1ae95650e48d103fb269c0a004d62237b77257807c8954678476030d788543d84770a1533a72141c7ea919e533bc182a3306782233d1a20153fa3e9e315a856e75f760bb7f943ea2f5956243f75fdb241ddfb4c081219ebb4eb3c3e989e3d953a93d96dafe1142c29434a554a92d319747e618cbd3af5202e51d30761e81b6c2d6febf221e3147b63171ea5dbaab4cba1b0fe7dc9cb249d74bbbcd7ef11c35fade1132ee4b74dc6090cfb6f852fb01d79aa0e5ee6897b7c021c6a1e69995e0546932c56e65b2581d619fc59f9775f3e8573b3c4926b8f6a9041512788d11a6fb279941ce24fea916e6568db25f1fcd3fd1e907fb3c45ddbca37230f5b3ffd48cf9c2269ec068d0bc528aac14807636c9067c5e32f2c2f259f6502ffffdbea40ad1b6b4a1d819fccc5c77da908204781747ecb0f2245dfa2941a9dba5d11ad186ab0eb87173dda634bd5a9221143e244c793d6262c904a64ba36cdced65abdd3be06d534b649b03791f7ce41e9abdea4d2c17f14bfbee0455dfa791f241341c78ce24cb8b86a9e332787d4ac1bdc20d022ae9588e8d63c22925d5e507bf41faddc17e01d3354c597908124705d88131b2e8ce8d04d660ce4100b5288d750d996e069bca1fe21f9b84c97011dd14c95c3cd538bf619b1df241fcf286c7014f8467a7ee81b2bef1c3bc56573894dbb54efb6a2fff0302b26c7589e08993e755059ba8b94fe728f1fdcb8ab10a5133d0434973e6667c25288b6e5e2d75202aec6bc0255177a53ea7c666afa79dca738a9d20990f118075b9f1cfb8ff1e5be75b49635bcbf43cb3bf97719dae8ec5c5528fcf89a9dda8fe6c08f7f737d69ef181ad3e35cf8e46efd94358b4640de1c387e295ae38edd0d5b80287f022895ca4dd9532bece6b2bbe100a83fef98dc5af595f4f7e4747ff5d28ab372db71b7c1c423183fa8ba4d823cc05b7be8819dd669b6517bd753e83f4d407a72dcbfcd0e9b2d5daef7fa88c1618236375a50ad2baa6a5e0551e679dce352181a1f9e72f5fca8c323b945bdd92e2d424b3e75041734d099f778fcb1e6407c80e7724d52ab110b02c0c9d1d4b78df12fc443fd8dc8fe82d9f3c8da7b87fdfb11e912c97a4e61425ac7b3954cb2e7e46ed0e24cc0c961dd5c2fc619a9e5e3550ca7bc21f2adc1a85c5b9dade357f1ecfd72646b27e7ab59b1b4d63c63082907b3be4cda341c49ade8992af489d11cf285b81a34c5614284ab4bb94018009e2333aa8e4630a9f6792b44b62d9c6e9d1855ffecab30c611cf5dc1e6ec09088b83a4c2cda9e5ee080df0b5e36b9badc035d6991bfd82fbb408faac15ced6ddcc917a9249b767f8844d6458411c1a31ff84e272311ea968ed3ff02f2e0caa47b1a6e030b07984c07d71e740420a9ed47b26799feecbba4f26dcdb61c9422e940550bfafa99ef0f826d2bcb1d7862016abe81d021be29adabe2c399fb9aa2f3ac472012b26ccd4eea2957343b06ac8ad71a637b8fa209ab6d4351fae53a9af0e920c043df94eccd5c1a847cb17d13589021f1a621b457fbe02a16f0f4b9dee0e7eb9358b8afd999d47f5143d49d4aef227f5b06ecef1ed71207e3526ff82b6ec69d3e8788f6c476437fe96f0533394027cf48e3e146aed7943d872bc35de34f7fdba13e5e1c259a68aa8050a813aa734f202ad7faba9f64b16f5068b43bdfb726e5fa54a1675dcab0697fc47a4fa3dd472022cc0d317d39076ad9847e72e1965b227f3e49ad6e8e742305bdd05d0c88b5859d6cfc98cc47a566269dbc4c200615f3e995511a69d8e724f0c842c06c46b5460dca83137656aae785e8415cfb57d57265af9c1d8f126081bcb218a427b80ccfaa95b8bd3f87f58f09ac52a2a47bbff99b057576d26876fa758c8e41172dd2bd45742a30d55f1b65bafc0c7c9c785f583069caf6de080c9057238e110456c0f9e8d898918b6981011f8dd17c55caced49eed32839305ec37b45e8cc4c35aec0c8a4cac54035a941842e5d19fd298757799c4a501718bf21a024106a292626d4eb3c784119b9f5003c6cdb36e442c04ca5b0ea59efb63fe90f9e218fdd9f0864f407cf8edbe71f3fb1d3a587ccfadbf7a5acbb0713b1ca1991e25e75738ca68e1817d08fdbacfab6900242b91ed9541efd2ca469bf7acc7857185d47506fd0a735d7b542949241976cfb1252f2e490fcdef3166f993ff9a812d0af902001a4f239989c087b41de65f83af93e349a2d37ad3b59c5009465e14030ecdfc8fec2d27939af2311bc5d544b19220b12a5782deb83f0e193f57cc4631d8746e7d0736e1295128f3a48aeacf2952be3005b09de00c9a4565e07692d8355a947d072de4324f2e8f3b2f01483d31999826b4ac7bad4f6ae099225f751995f463e5f762b9671ebb79fdfc51b5080af6fae4837a4e00a76b775eaa6f1fa1479b6afe5d66ac5fd148fdc4750d6ae1e268da446ba08dc4d7c872bd6401f1dd6b226e91bcf77c085e3c115f49d05a29c4e282caa7b8a60a1fe09a2e98227a2cbaa838d6053cb56bc7cc84e6ffa81c18ee26c1b32c2ce205c8fee3b2f4fa8d983b4901c80d766a3299fd62e3339a697305ab7cda995b3cce61e3372f152841ec1d540c9f6cfe2871e7cf4e6997afac85b1c05bed03a5e017bce4b45b0903e9c60cf3538df7df9d8fa93b53856fe93f522f723470c553799c90c56fb705040ba78141f7e5e9117f4876c45884edd5059c8588fc39f9c6268038c4a462a4a5fbbecac0daaf54876ac0217a9ab6f83ec52f15a170005e57baead0e8b1570508e10d2c9808ff3a437436d93ffd02c72c703e2e1917c0c82c3a4b4c03cb91c961451e3f6e2d9d9e58ac1810831d7618f81a34c23cc14029326f16cd043e82ea3bea5c6bcb84152d140659d1a4f135cee82640f96e177c030907117a6c6a8049fd3815fa06249ba4b37c2381c0eca124e7f5abd393c6d175ccf0c5fd4a6e9e00d5338899ed03b5a5023dbe4c6ae1f1ffc192411049e6fa34adeefa3b2e6b45165f341e0b853561ea0d183d93100efe80237ab878312281d607ac8dc10f34e6840a6b6d5c2975348a15761326504c24d5ec648f5714254087bd8c53fe131461ca4cea09ab52848b2526edb91a2bf6c0287aeaac51eb720507d66522ff2f94d90ec584f6088910ee079538e43cf8db55e2f0d70a60eac90eafd82480d11ea5dd795a05a698c2961eedad5f8a79dc3ffa92129f76b8d795e24a1905fc82f11c40d68d11af282621b9a2e39a8dd146013bd3a044f55366af078f7c15adc548029ba4ed896ddb646d74e3af69d8597831e08eb4df1b7ed54b8f3b327753ebf47d50a215c461cd422483c8f2d54f010fa9b76e5afef86b1bb8aa6d4b0c5c9ee798791379ed4dea481feb37ea18b5c7c0146aed32772245cc39628ecc13e03b76c302f80ebcb50279fa2ff74139468a23f36881ee7e7119d8040f90c7e3d8f75d80624d17d881e363b4913eb02e73224c7dac1077d19cc9063f8831053eaa9ecf87ffc31140f6a0a47869e5a5660e5d53b404c34e17b4693df9d5418131c8aaabb0e15aee98594c57cfb2202f209a4529a293b37ef68a2e95fb8fe5142e974f1d3fe3a08ed169379387e96ab5d927771ca7157e9bbd2650992680105dcd6a75829e0643b5ad708e5c65ea4b04b3eeedc24bcac8152cb887f32436a11efab6dc2509fa42d3d31e8aac73e9e8e84a88d7096b9549bc4a879d8f824eb63809a253409294f359b76ac3f031e6bf74a4de018f1c666239bae7bb01c523f53efc922232415d68264872296967dd150af095a12717e7eaeeb98f48c84a70fce8063790f9c2f43db477175e1c8da911ce853042d84e7f24df59e8caca5ee93e2daa6aa18e92930b4495dc22ff6729964942d1baaccd07233dcab828c2254f719132271e9239390e2ebb74ddde7284ebb8955719f7d086cdbe7eef6d7298576fac821eae5a8b6ddf9d88a1dcb32121b6d3ce49c245dd675e8a3b2254a9998ec0d0d7d9570bf6b6db0392c5b060872e154841096351d880f71bc00e5a576b14c26f85840c93a0c424cdbbc57b1d1212e300a874921c1f9c0de14a8cf61f8ebd03eee5cc79f34a41235b6c72aebf48243250c6dae8547b6634374e0bd073f7c162d4226a26032bc154eba7964b2975a8d35f17560a5312cf124741c74774f9a30f8d5ddc891e78bafdaf4f86d16d4c1363d23708463ab1314e3bade23316c7fbf51d2a2417da5162f9112c4331eab695d457e3712bb5f880c68367dba95b61f6f6a9297e477eaec615dff2cd3222f21d90abd8bd4b12fabb278c9fd44ce1ed024ccf908cb4995a1d9da53f62532203d7079e20a46b2b069be4b13a52a81c3b5227f57d6c184945a1799e80dbc7cd137e3427df352c0c0fba04f3b7fb02aa36c9af4611ebb51333326f8f750d662a0a8b43e30acaaeaf2653431b57e95a77adf8261298f791d200c02bdf4b821f7d09f972dd165ce92109c8dce081bd0bd53f598200bb3c5d875bbf1be2a7dc68355e42c515c20f2d72cef3d680a42e8a705f17c6ce15f47b144e55a3e566cb73ba5ee18c5a1535e5f4b4c1774736ed1654bc024b6c748b48d9cea48a06a571d264fc876f9afb2bb43441b39bb3f9e844f70dabd4d0ea06a46c1361a60ef5914411397600e63ecaa65f6598b4ce6f3a967c93ef0697e268b70d0637709ea3fef1da8afed0d2ffd36503197efcf68e0a2cb10b4104b209c133fdbe11e07a8d5c511045d19b69c63818e55168de4357a99eed1d8410664efdc866451de9bf6794d9742e2182449e2ae3869a01f1ed7ee37ffe817a38c502b8243a1c05f1ccbd349c7b9864cbf45b5a3c6f395e4a6602a02bb80ccac94ab66d67dfd8e5cc6fa6321e930354a2c40a1e8d360752dbdcf00134d34a21b24b9acfa2cd37f3c191461f4c9d8243176f42a8109bb05c37ee715ceb027861cf71268f283035d71ce4bae4ac5f79ee5211475ddfc33f02dcd91276e5ca265e5b9104222fdff5969f434a4412ba9fe00aec27f559b63c25a9e8d53c063db549035ec2c8e91e1a6247045541a7e28ff6c13e9f29a3683e55731d80d714b9d5801cfbf617aeb6651290293ac0f4e246df99e72434772b7d8494485537b7b2063c7bc5e80eb6c7ab6647d01189cc910aae2fe8249a0fc3226caa8994b476c6777bf113d153c43da337a6304fd10582d58919596a6de42ad500b62c1e6550d8cdc059496073a48110b2fccb42c96e3e3640f1a87fe379779adcd8836aa8dc545db39bb3afc032c16977e150e9572c3e5f8e04bc15497ec8217a0e187ba097fa95a855af66d47a105bdc3c837091daf5fbeb3ee5ce10b132f912b89ea1c6b9ecb8fbee0e4ea4e43b835ae583b67aab430dec741ea03195fed3cc164472d4b571d166ae20e0a309a80ce00b0fb349f7641f41a31993a8bd9ee092aa7ef16c9563e4db6236c9e702710dc95b198f533b1140441a1827aa4bef6a01c689127eb7028d1bb083edc8a08b8d239389d99948f1290623ba908e6e1c606035b70ba7065f8011451151dca715fb920b4d87858f01c5484df0e63656", 0x2000, &(0x7f0000000a40)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={0x18}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 21:59:12 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x18, &(0x7f0000000c40)={0x0, 0x0, 0xa1, {0xa1, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab91cd7abf7a917f376386f7e92afc65e75c880a55d2877146ab5f476c1287ecb3e4003547007c60a0466f77cc3abce7d506197b7602e5face683fd5b62746db4fde2e52887d025b1d1825"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) 21:59:12 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x4f, 0x92, 0xb9, 0x8, 0x1557, 0x7720, 0xb7eb, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x27, 0x85, 0xe6}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000040)={0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b00)={0x40, 0x13, 0x6, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(0xffffffffffffffff, 0x0, &(0x7f0000000940)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x40, 0x19, 0x2, "a8cd"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 21:59:12 executing program 2: r0 = socket$inet(0x2b, 0x801, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) r2 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r4 = dup(r3) dup(r3) write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c) r5 = syz_io_uring_setup(0x570, &(0x7f00000001c0), &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=0x0, &(0x7f00000000c0)=0x0) socket$xdp(0x2c, 0x3, 0x0) ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r2, 0xc0305302, 0x0) syz_io_uring_submit(r6, r7, &(0x7f0000000080)=@IORING_OP_SENDMSG={0x9, 0x5, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0, 0xfd9de5738ca6d6f3}, 0x0) sendmsg$netlink(0xffffffffffffffff, &(0x7f000000a040)={0x0, 0x0, 0x0}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_EPOLL_CTL=@del={0x1d, 0x4, 0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x2, 0x0, 0x1}, 0x6) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4) io_uring_enter(r5, 0x6905, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) [ 436.336876][ T5338] ISOFS: Unable to identify CD-ROM format. [ 436.383485][ T3566] usb 5-1: new high-speed USB device number 59 using dummy_hcd 21:59:12 executing program 1: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000b67c8140501da1603dc7000000010902120001000000000904"], 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000f00)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0x40, 0x9, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000002a40)={0x2c, &(0x7f0000000840)=ANY=[], 0x0, 0x0, 0x0, 0x0}) [ 436.593441][ T3565] usb 4-1: new high-speed USB device number 52 using dummy_hcd [ 436.753320][ T3566] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 436.766160][ T3566] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 436.777297][ T3566] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 436.787061][ T3566] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 436.808023][ T3566] usb 5-1: config 0 descriptor?? 21:59:13 executing program 5: r0 = socket$inet_sctp(0x2, 0x5, 0x84) getpeername$inet(r0, 0x0, 0x0) [ 437.073090][ T3565] usb 4-1: Using ep0 maxpacket: 8 21:59:13 executing program 0: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000200)={'syztnl0\x00', &(0x7f0000000180)={'ip6gre0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @remote, @private0}}) [ 437.203374][ T3565] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 437.213124][ T3565] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 437.362393][ T3565] usb 4-1: config 0 descriptor?? [ 437.381791][ T3566] kye 0003:0458:5019.0015: item fetching failed at offset 2/5 [ 437.414070][ T3563] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 437.554816][ T3566] kye 0003:0458:5019.0015: parse failed [ 437.563674][ T3566] kye: probe of 0003:0458:5019.0015 failed with error -22 [ 437.673592][ T3566] usb 5-1: USB disconnect, device number 59 21:59:13 executing program 5: socketpair(0x1d, 0x0, 0x1, &(0x7f0000000240)) 21:59:13 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_DEBUG_GET(r0, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000840)={0x50, r1, 0x1, 0x0, 0x0, {}, [@HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_0\x00'}]}, @HEADER={0x4}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7}]}]}, 0x50}}, 0x0) [ 437.854294][ T3565] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -61 [ 437.864907][ T3565] asix 4-1:0.0 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffc3 [ 437.876365][ T3565] asix: probe of 4-1:0.0 failed with error -61 [ 437.924029][ T3563] usb 2-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=c7.3d [ 437.934609][ T3563] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 437.999477][ T3563] usb 2-1: config 0 descriptor?? 21:59:14 executing program 0: r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000140)='ns/pid_for_children\x00') ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r0, 0xc0c89425, 0x0) 21:59:14 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x18, &(0x7f0000000c40)={0x0, 0x0, 0xa1, {0xa1, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab91cd7abf7a917f376386f7e92afc65e75c880a55d2877146ab5f476c1287ecb3e4003547007c60a0466f77cc3abce7d506197b7602e5face683fd5b62746db4fde2e52887d025b1d1825"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) 21:59:14 executing program 5: r0 = timerfd_create(0x0, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x401c5820, 0x0) 21:59:14 executing program 2: add_key(&(0x7f0000000180)='rxrpc_s\x00', &(0x7f00000001c0)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd) [ 438.473847][ T3563] airspy 2-1:0.0: Board ID: 00 [ 438.483930][ T3563] airspy 2-1:0.0: Firmware version: 21:59:14 executing program 0: r0 = add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x1}, &(0x7f0000000080)="bc", 0x1, 0xffffffffffffffff) r1 = add_key$user(&(0x7f0000000080), &(0x7f0000000140)={'syz', 0x2}, &(0x7f0000000180)="c2", 0x1, 0xfffffffffffffffc) keyctl$dh_compute(0x17, &(0x7f00000001c0)={0x0, r0, r1}, 0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000300)={'sha256-avx\x00'}}) [ 438.684497][ T3563] airspy 2-1:0.0: usb_control_msg() failed -71 request 11 [ 438.698669][ T3563] airspy 2-1:0.0: Registered as swradio16 [ 438.705341][ T3563] airspy 2-1:0.0: SDR API is still slightly experimental and functionality changes may follow [ 438.802302][ T3563] usb 2-1: USB disconnect, device number 5 [ 438.954095][ T3565] usb 5-1: new high-speed USB device number 60 using dummy_hcd 21:59:15 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x4f, 0x92, 0xb9, 0x8, 0x1557, 0x7720, 0xb7eb, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x27, 0x85, 0xe6}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000040)={0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b00)={0x40, 0x13, 0x6, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) [ 439.344022][ T3565] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 439.361614][ T3565] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 439.372170][ T20] usb 4-1: USB disconnect, device number 52 [ 439.372955][ T3565] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 21:59:15 executing program 5: r0 = add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x1}, &(0x7f0000000080)="bc", 0x1, 0xffffffffffffffff) add_key$user(&(0x7f0000000380), &(0x7f00000003c0)={'syz', 0x1}, &(0x7f0000000400)="6a6513fcfe19a6c1d5988ad000b9d73d2e5faeab3b09e3b156945b0aaffc2865e132fef2cef280c55588d99b4eb8b4194fa66b47ab5e921f6af40e151f57645005af453913d73ba1891f4d5a54a3406cb6e5707c4a18bef3b43e5be427814ef29b1d05b5da96eadd9fabc8c68a9fb2c78012d10e7db2dcdd2968cf923fc31be330c0d6ff945fb3ff1cb1d6957c126eea75bac06946ac1f71183316e5d823a15766e88d9dcc9d0637c59e2ee34a34caddfd5f4357620d08745c13e9756291063b6d0b754e6ce5faa23fd3e023711016d040128e1d6c566ff4ae8417abeb9d7896bada078a0bc2", 0xe6, 0xffffffffffffffff) keyctl$dh_compute(0x17, &(0x7f0000000300)={r0, r0, r0}, 0x0, 0x0, 0x0) 21:59:15 executing program 2: add_key$user(&(0x7f0000000000), 0x0, &(0x7f0000000080), 0x0, 0xfffffffffffffffe) add_key$user(&(0x7f0000000000), 0x0, 0x0, 0x0, 0xffffffffffffffff) syz_clone(0x70004000, 0x0, 0x0, 0x0, 0x0, 0x0) 21:59:15 executing program 1: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x925, 0x8888, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x5, {[@main=@item_4={0x3, 0x0, 0x0, "8b707542"}]}}, 0x0}, 0x0) [ 439.389252][ T3565] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 439.678722][ T3565] usb 5-1: config 0 descriptor?? 21:59:15 executing program 5: r0 = syz_open_dev$usbfs(&(0x7f0000000080), 0xf174, 0x0) ioctl$USBDEVFS_CONNECTINFO(r0, 0x40085511, 0x0) [ 439.821079][ T5373] could not allocate digest TFM handle sha256-avx 21:59:16 executing program 0: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet6_buf(r0, 0x29, 0x1c, 0x0, 0x0) [ 440.033724][ T3563] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 440.162211][ T3565] kye 0003:0458:5019.0016: item fetching failed at offset 2/5 [ 440.201758][ T3565] kye 0003:0458:5019.0016: parse failed [ 440.207977][ T3565] kye: probe of 0003:0458:5019.0016 failed with error -22 [ 440.233114][ T3560] usb 4-1: new high-speed USB device number 53 using dummy_hcd 21:59:16 executing program 2: r0 = socket(0x1, 0x5, 0x0) r1 = socket$inet_sctp(0x2, 0x5, 0x84) dup2(r1, r0) sendmsg$inet_sctp(r0, &(0x7f0000002a80)={&(0x7f0000000240)=@in6={0x1c, 0x1c, 0x1}, 0x1c, 0x0, 0x0, &(0x7f0000002b00)=ANY=[], 0x50}, 0x0) 21:59:16 executing program 0: keyctl$dh_compute(0x9, 0x0, 0x0, 0x0, 0x0) [ 440.362565][ T3566] usb 5-1: USB disconnect, device number 60 [ 440.426546][ T3563] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 440.438125][ T3563] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 440.449999][ T3563] usb 2-1: New USB device found, idVendor=0925, idProduct=8888, bcdDevice= 0.00 [ 440.459627][ T3563] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 440.527249][ T3560] usb 4-1: Using ep0 maxpacket: 8 [ 440.569367][ T3563] usb 2-1: config 0 descriptor?? [ 440.664048][ T3560] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 440.675790][ T3560] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 440.721672][ T3560] usb 4-1: config 0 descriptor?? 21:59:17 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x18, &(0x7f0000000c40)={0x0, 0x0, 0xa1, {0xa1, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab91cd7abf7a917f376386f7e92afc65e75c880a55d2877146ab5f476c1287ecb3e4003547007c60a0466f77cc3abce7d506197b7602e5face683fd5b62746db4fde2e52887d025b1d1825"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) 21:59:17 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)={0x40, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'lo\x00'}]}, @ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7fff}]}]}]}]}, 0x40}}, 0x0) 21:59:17 executing program 0: r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x109402, 0x0) ioctl$SNDCTL_DSP_GETOPTR(r0, 0xc0045002, &(0x7f0000000040)) [ 441.061153][ T3563] smartjoyplus 0003:0925:8888.0017: unknown main item tag 0x0 [ 441.130857][ T3563] smartjoyplus 0003:0925:8888.0017: hidraw0: USB HID v0.00 Device [HID 0925:8888] on usb-dummy_hcd.1-1/input0 [ 441.146036][ T3563] smartjoyplus 0003:0925:8888.0017: no output reports found [ 441.203832][ T3560] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32 [ 441.217428][ T3560] asix 4-1:0.0 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffe0 [ 441.230356][ T3560] asix: probe of 4-1:0.0 failed with error -32 21:59:17 executing program 5: keyctl$dh_compute(0x17, &(0x7f0000001540), 0x0, 0x0, &(0x7f0000001640)={&(0x7f00000015c0)={'cmac(aes)\x00'}}) [ 441.307400][ T3563] usb 2-1: USB disconnect, device number 6 [ 441.603247][ T3565] usb 5-1: new high-speed USB device number 61 using dummy_hcd [ 442.013863][ T3565] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 442.026338][ T3565] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 442.037646][ T3565] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 442.049025][ T3565] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 442.145597][ T3565] usb 5-1: config 0 descriptor?? [ 442.642220][ T3565] kye 0003:0458:5019.0018: item fetching failed at offset 2/5 [ 442.670490][ T3565] kye 0003:0458:5019.0018: parse failed [ 442.676705][ T3565] kye: probe of 0003:0458:5019.0018 failed with error -22 [ 442.854457][ T3565] usb 5-1: USB disconnect, device number 61 21:59:19 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x4f, 0x92, 0xb9, 0x8, 0x1557, 0x7720, 0xb7eb, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x27, 0x85, 0xe6}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000040)={0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b00)={0x40, 0x13, 0x6, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 21:59:19 executing program 2: sendmsg$NL80211_CMD_NOTIFY_RADAR(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) ptrace$getsig(0x4202, 0x0, 0x0, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000280)='net/nf_conntrack\x00') sendmsg$MPTCP_PM_CMD_GET_ADDR(0xffffffffffffffff, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) r2 = socket$inet6(0xa, 0x1, 0x8010000000000084) bind$inet6(r2, &(0x7f0000000080)={0xa, 0x4e21, 0x0, @empty}, 0x1c) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x29}}}, 0x1c) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f0000000300)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0xb3550aa4ba878354, 0x8d}, 0x9c) 21:59:19 executing program 0: r0 = socket$nl_rdma(0x10, 0x3, 0x14) setsockopt$IP_VS_SO_SET_DEL(r0, 0x0, 0x484, 0x0, 0x0) 21:59:19 executing program 1: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f00000003c0)={'ip6_vti0\x00', &(0x7f0000000340)={'ip6gre0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local, @empty}}) 21:59:19 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x21, 0x0, &(0x7f0000000040)) [ 442.974565][ T3563] usb 4-1: USB disconnect, device number 53 21:59:19 executing program 0: r0 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="380000000314010000000000000000000900020073797a320000000008004100727865001400330076657468315f746f3c38"], 0x38}}, 0x0) 21:59:19 executing program 1: keyctl$dh_compute(0x17, &(0x7f0000000000), 0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)={'vmac64(cipher_null)\x00'}}) 21:59:19 executing program 5: add_key$user(&(0x7f0000000000), 0x0, 0x0, 0xfffffffffffffdd9, 0x0) 21:59:19 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x18, &(0x7f0000000c40)={0x0, 0x0, 0xa6, {0xa6, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab91cd7abf7a917f376386f7e92afc65e75c880a55d2877146ab5f476c1287ecb3e4003547007c60a0466f77cc3abce7d506197b7602e5face683fd5b62746db4fde2e52887d025b1d182565df701612"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) 21:59:19 executing program 0: add_key$user(&(0x7f0000000000), 0x0, 0x0, 0x47, 0xffffffffffffffff) 21:59:19 executing program 5: keyctl$dh_compute(0x17, &(0x7f0000000040), 0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={'crc32c-generic\x00'}}) [ 443.952931][ T3563] usb 4-1: new high-speed USB device number 54 using dummy_hcd [ 444.193090][ T3563] usb 4-1: Using ep0 maxpacket: 8 [ 444.213893][ T122] usb 5-1: new high-speed USB device number 62 using dummy_hcd [ 444.323344][ T3563] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 444.332831][ T3563] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 444.368561][ T3563] usb 4-1: config 0 descriptor?? [ 444.393498][ T5428] could not allocate digest TFM handle vmac64(cipher_null) 21:59:20 executing program 5: r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) sendmsg$netlink(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000001c0)={0x114, 0x1e, 0x1, 0x0, 0x0, "", [@nested={0x101, 0x0, 0x0, 0x1, [@typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb47d96219c08c029d160da487f26fbe816b89f7cb81bff81a8b7a82565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875cf0d972df9e99f07976773f4d98fe3fa370d47eb640dc5061dc35817c8a66c29be82fdc2f4393c05a007d12b505a84dfdb98d568175b62421d726d1e5331e1ddfd4d770b57"]}]}, 0x114}], 0x1}, 0x0) [ 444.574080][ T122] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 444.586437][ T122] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 444.597123][ T122] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 444.607287][ T122] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 444.778536][ T122] usb 5-1: config 0 descriptor?? [ 444.805599][ T5440] netlink: 232 bytes leftover after parsing attributes in process `syz-executor.5'. [ 444.843866][ T3563] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32 [ 444.854767][ T3563] asix 4-1:0.0 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffe0 [ 444.865891][ T3563] asix: probe of 4-1:0.0 failed with error -32 [ 445.270537][ T122] kye 0003:0458:5019.0019: item fetching failed at offset 3/5 [ 445.283071][ T122] kye 0003:0458:5019.0019: parse failed [ 445.288946][ T122] kye: probe of 0003:0458:5019.0019 failed with error -22 [ 445.468949][ T122] usb 5-1: USB disconnect, device number 62 21:59:22 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x4f, 0x92, 0xb9, 0x8, 0x1557, 0x7720, 0xb7eb, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x27, 0x85, 0xe6}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000040)={0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b00)={0x40, 0x13, 0x6, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000840)={0x2c, &(0x7f00000006c0)={0x0, 0x0, 0x1, "a3"}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 21:59:22 executing program 0: r0 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x33, 0x1403, 0x1, 0x0, 0x0, "", [{{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'veth1_to_hsr\x00'}}]}, 0x38}}, 0x0) 21:59:22 executing program 1: add_key$user(&(0x7f0000000000), 0x0, 0x0, 0x0, 0xfffffffffffffffe) add_key$user(&(0x7f0000000000), 0x0, 0x0, 0x0, 0xffffffffffffffff) syz_clone(0x70004000, 0x0, 0x0, 0x0, 0x0, 0x0) 21:59:22 executing program 5: r0 = syz_open_dev$media(&(0x7f00000000c0), 0x0, 0x0) r1 = syz_open_dev$media(&(0x7f0000000300), 0x0, 0x0) ioctl$MEDIA_IOC_ENUM_LINKS(r1, 0xc0287c02, &(0x7f00000004c0)={0x80000000, 0x0, &(0x7f0000000700)=[{{0x80000000}}]}) ioctl$MEDIA_IOC_SETUP_LINK(r0, 0xc0347c03, &(0x7f0000000340)={{}, {r2}}) 21:59:22 executing program 2: sendmsg$NL80211_CMD_NOTIFY_RADAR(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) ptrace$getsig(0x4202, 0x0, 0x0, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000280)='net/nf_conntrack\x00') sendmsg$MPTCP_PM_CMD_GET_ADDR(0xffffffffffffffff, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) r2 = socket$inet6(0xa, 0x1, 0x8010000000000084) bind$inet6(r2, &(0x7f0000000080)={0xa, 0x4e21, 0x0, @empty}, 0x1c) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x29}}}, 0x1c) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f0000000300)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0xb3550aa4ba878354, 0x8d}, 0x9c) 21:59:22 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x5019, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000dc0)={0x18, &(0x7f0000000c40)={0x0, 0x0, 0xa6, {0xa6, 0x0, "738f6b92ed6a7114c620a26885f1900386d028c40dc7ca93da1ef86af9a8a51d1cda5b5d94ae58eb7bee3fc642c1e5db95b30303c3e688edffa51c89552e7e551bcab7777c79d2c8145609546aef597bd8613dafab91cd7abf7a917f376386f7e92afc65e75c880a55d2877146ab5f476c1287ecb3e4003547007c60a0466f77cc3abce7d506197b7602e5face683fd5b62746db4fde2e52887d025b1d182565df701612"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) [ 446.494367][ T3565] usb 4-1: USB disconnect, device number 54 [ 446.629972][ T5451] netlink: 15 bytes leftover after parsing attributes in process `syz-executor.0'. 21:59:22 executing program 5: syz_clone(0x7c9819daa68a5512, 0x0, 0x0, 0x0, 0x0, 0x0) 21:59:23 executing program 0: r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000080)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x10, &(0x7f0000000040)=@ready={0x0, 0x0, 0x8, "f959d1e5"}) syz_usb_ep_write$ath9k_ep1(r0, 0x82, 0xc, &(0x7f0000000500)={[{0x8, 0x4e00, "15ed48ae5feda328"}]}) [ 446.983433][ T3563] usb 5-1: new high-speed USB device number 63 using dummy_hcd 21:59:23 executing program 1: add_key$user(&(0x7f0000000000), 0x0, 0x0, 0x0, 0xfffffffffffffffe) add_key$user(&(0x7f0000000000), 0x0, 0x0, 0x0, 0xffffffffffffffff) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) [ 447.453375][ T3565] usb 4-1: new high-speed USB device number 55 using dummy_hcd [ 447.493988][ T3563] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 447.506498][ T3563] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 447.518162][ T3563] usb 5-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 447.529097][ T3563] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 21:59:23 executing program 5: sendmsg$NL80211_CMD_NOTIFY_RADAR(0xffffffffffffffff, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) ptrace$getsig(0x4202, 0x0, 0x0, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = socket$inet6(0xa, 0x1, 0x8010000000000084) bind$inet6(r2, &(0x7f0000000080)={0xa, 0x4e21, 0x0, @empty}, 0x1c) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x29}}}, 0x1c) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f0000000300)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0xb3550aa4ba878354, 0x8d}, 0x9c) [ 447.663856][ T20] usb 1-1: new high-speed USB device number 10 using dummy_hcd [ 447.783249][ T3565] usb 4-1: Using ep0 maxpacket: 8 [ 447.818677][ T3563] usb 5-1: config 0 descriptor?? 21:59:24 executing program 1: r0 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_RES_GET(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000540)=ANY=[@ANYBLOB="30000000091401002abd7000fcdbdf250800010000000000080001000000000008000100020001"], 0x30}}, 0x0) [ 447.923748][ T3565] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 447.933288][ T3565] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 447.984588][ T3565] usb 4-1: config 0 descriptor?? [ 448.194111][ T20] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 448.204972][ T20] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 448.214609][ T20] usb 1-1: Product: syz [ 448.218971][ T20] usb 1-1: Manufacturer: syz [ 448.224089][ T20] usb 1-1: SerialNumber: syz [ 448.332443][ T3563] kye 0003:0458:5019.001A: item fetching failed at offset 3/5 [ 448.350438][ T3563] kye 0003:0458:5019.001A: parse failed [ 448.356404][ T3563] kye: probe of 0003:0458:5019.001A failed with error -22 [ 448.486439][ T20] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 448.524227][ T3565] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32 [ 448.535412][ T3565] asix 4-1:0.0 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffe0 [ 448.546799][ T3565] asix: probe of 4-1:0.0 failed with error -32 [ 448.611614][ T5471] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 448.648691][ T3563] usb 5-1: USB disconnect, device number 63 21:59:24 executing program 1: syz_emit_ethernet(0xe81, &(0x7f0000000180)={@random="96c9e5631fc0", @link_local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "91363f", 0xe4b, 0x3a, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @private0, {[], @echo_request={0x80, 0x0, 0x0, 0x0, 0x0, "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"}}}}}}, 0x0) [ 449.064484][ T122] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 449.473130][ C1] ===================================================== [ 449.482962][ C1] BUG: KMSAN: uninit-value in ath9k_wmi_ctrl_rx+0x344/0x590 [ 449.492604][ C1] ath9k_wmi_ctrl_rx+0x344/0x590 [ 449.503261][ C1] ath9k_htc_rx_msg+0x5a5/0xac0 [ 449.511030][ C1] ath9k_hif_usb_rx_cb+0x1a9e/0x20c0 [ 449.517919][ C1] __usb_hcd_giveback_urb+0x522/0x740 [ 449.524757][ C1] usb_hcd_giveback_urb+0x154/0x670 [ 449.530191][ C1] dummy_timer+0xd3f/0x4f20 [ 449.534837][ C1] call_timer_fn+0x43/0x480 [ 449.539478][ C1] expire_timers+0x272/0x610 [ 449.544149][ C1] __run_timers+0x5bd/0x8c0 [ 449.548729][ C1] run_timer_softirq+0x64/0xe0 [ 449.553565][ C1] __do_softirq+0x1cc/0x7fb [ 449.558129][ C1] invoke_softirq+0x8f/0x100 [ 449.563429][ C1] __irq_exit_rcu+0x5a/0x110 [ 449.569143][ C1] irq_exit_rcu+0xe/0x10 [ 449.574520][ C1] sysvec_apic_timer_interrupt+0x9a/0xc0 [ 449.580499][ C1] asm_sysvec_apic_timer_interrupt+0x1b/0x20 [ 449.588872][ C1] acpi_idle_enter+0x63b/0x770 [ 449.594926][ C1] cpuidle_enter_state+0x82a/0x19f0 [ 449.602594][ C1] cpuidle_enter+0x7b/0xf0 [ 449.607278][ C1] do_idle+0x5ee/0x7f0 [ 449.611502][ C1] cpu_startup_entry+0x1d/0x20 [ 449.616418][ C1] start_secondary+0xf1/0x110 [ 449.621249][ C1] secondary_startup_64_no_verify+0xcf/0xdb [ 449.628095][ C1] [ 449.630446][ C1] Uninit was created at: [ 449.635541][ C1] __kmalloc_node_track_caller+0x814/0x1250 [ 449.642388][ C1] __alloc_skb+0x346/0xcf0 [ 449.647197][ C1] __netdev_alloc_skb+0x126/0x780 [ 449.654767][ C1] ath9k_hif_usb_rx_cb+0xd59/0x20c0 [ 449.661367][ C1] __usb_hcd_giveback_urb+0x522/0x740 [ 449.669372][ C1] usb_hcd_giveback_urb+0x154/0x670 [ 449.674999][ C1] dummy_timer+0xd3f/0x4f20 [ 449.679854][ C1] call_timer_fn+0x43/0x480 [ 449.685062][ C1] expire_timers+0x272/0x610 [ 449.690641][ C1] __run_timers+0x5bd/0x8c0 [ 449.695265][ C1] run_timer_softirq+0x64/0xe0 [ 449.700779][ C1] __do_softirq+0x1cc/0x7fb [ 449.705366][ C1] [ 449.707928][ C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 449.721866][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 449.738410][ C1] ===================================================== [ 449.749928][ C1] Disabling lock debugging due to kernel taint [ 449.756294][ C1] Kernel panic - not syncing: kmsan.panic set ... [ 449.762864][ C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G B 6.0.0-rc4-syzkaller-48205-g4367d178d9eb #0 [ 449.774549][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 449.786057][ C1] Call Trace: [ 449.791810][ C1] [ 449.795382][ C1] dump_stack_lvl+0x1c8/0x256 [ 449.800254][ C1] dump_stack+0x1a/0x1c [ 449.804544][ C1] panic+0x4d3/0xc69 [ 449.808658][ C1] kmsan_report+0x2cc/0x2d0 [ 449.814209][ C1] ? cpuidle_enter+0x7b/0xf0 [ 449.819037][ C1] ? native_cpu_up+0x1078/0x1ff0 [ 449.825402][ C1] ? secondary_startup_64_no_verify+0xcf/0xdb [ 449.832639][ C1] ? __msan_warning+0x92/0x110 [ 449.837834][ C1] ? ath9k_wmi_ctrl_rx+0x344/0x590 [ 449.843199][ C1] ? ath9k_htc_rx_msg+0x5a5/0xac0 [ 449.848338][ C1] ? ath9k_hif_usb_rx_cb+0x1a9e/0x20c0 [ 449.854750][ C1] ? __usb_hcd_giveback_urb+0x522/0x740 [ 449.860647][ C1] ? usb_hcd_giveback_urb+0x154/0x670 [ 449.866197][ C1] ? dummy_timer+0xd3f/0x4f20 [ 449.870975][ C1] ? call_timer_fn+0x43/0x480 [ 449.875837][ C1] ? expire_timers+0x272/0x610 [ 449.881401][ C1] ? __run_timers+0x5bd/0x8c0 [ 449.886357][ C1] ? run_timer_softirq+0x64/0xe0 [ 449.891848][ C1] ? __do_softirq+0x1cc/0x7fb [ 449.896615][ C1] ? invoke_softirq+0x8f/0x100 [ 449.901567][ C1] ? __irq_exit_rcu+0x5a/0x110 [ 449.906779][ C1] ? irq_exit_rcu+0xe/0x10 [ 449.911379][ C1] ? sysvec_apic_timer_interrupt+0x9a/0xc0 [ 449.917276][ C1] ? asm_sysvec_apic_timer_interrupt+0x1b/0x20 [ 449.924319][ C1] ? acpi_idle_enter+0x63b/0x770 [ 449.929368][ C1] ? cpuidle_enter_state+0x82a/0x19f0 [ 449.934845][ C1] ? cpuidle_enter+0x7b/0xf0 [ 449.941009][ C1] ? do_idle+0x5ee/0x7f0 [ 449.945404][ C1] ? cpu_startup_entry+0x1d/0x20 [ 449.950414][ C1] ? start_secondary+0xf1/0x110 [ 449.955529][ C1] ? secondary_startup_64_no_verify+0xcf/0xdb [ 449.962658][ C1] ? preempt_count_sub+0x7d/0x280 [ 449.967894][ C1] ? _raw_spin_unlock_irqrestore+0x34/0x50 [ 449.974664][ C1] ? __stack_depot_save+0x38d/0x4b0 [ 449.980494][ C1] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 449.987025][ C1] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 449.994724][ C1] __msan_warning+0x92/0x110 [ 449.999866][ C1] ath9k_wmi_ctrl_rx+0x344/0x590 [ 450.005163][ C1] ? ath9k_wmi_ctrl_tx+0x30/0x30 [ 450.010450][ C1] ath9k_htc_rx_msg+0x5a5/0xac0 [ 450.017447][ C1] ath9k_hif_usb_rx_cb+0x1a9e/0x20c0 [ 450.022876][ C1] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 450.028893][ C1] ? ath9k_hif_usb_alloc_urbs+0x1700/0x1700 [ 450.034971][ C1] __usb_hcd_giveback_urb+0x522/0x740 [ 450.040906][ C1] usb_hcd_giveback_urb+0x154/0x670 [ 450.046571][ C1] dummy_timer+0xd3f/0x4f20 [ 450.051498][ C1] ? dummy_free_streams+0x690/0x690 [ 450.056979][ C1] ? dummy_free_streams+0x690/0x690 [ 450.062739][ C1] call_timer_fn+0x43/0x480 [ 450.067645][ C1] ? dummy_free_streams+0x690/0x690 [ 450.073121][ C1] expire_timers+0x272/0x610 [ 450.078108][ C1] __run_timers+0x5bd/0x8c0 [ 450.083036][ C1] ? migrate_timer_list+0x5d0/0x5d0 [ 450.088515][ C1] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 450.094439][ C1] ? migrate_timer_list+0x5d0/0x5d0 [ 450.099924][ C1] run_timer_softirq+0x64/0xe0 [ 450.104774][ C1] __do_softirq+0x1cc/0x7fb [ 450.109364][ C1] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 450.115622][ C1] invoke_softirq+0x8f/0x100 [ 450.120305][ C1] __irq_exit_rcu+0x5a/0x110 [ 450.125007][ C1] irq_exit_rcu+0xe/0x10 [ 450.129340][ C1] sysvec_apic_timer_interrupt+0x9a/0xc0 [ 450.135367][ C1] [ 450.138491][ C1] [ 450.141562][ C1] asm_sysvec_apic_timer_interrupt+0x1b/0x20 [ 450.148571][ C1] RIP: 0010:acpi_idle_enter+0x63b/0x770 [ 450.154327][ C1] Code: e0 08 74 0d f7 d3 44 89 f8 21 d8 0f 84 b8 00 00 00 4d 85 ff 0f 85 c0 00 00 00 66 90 e8 8e 12 e5 f3 0f 00 2d 71 90 7b 00 fb f4 e9 af 00 00 00 e8 5a 21 64 f4 e9 76 fc ff ff 8b 7d c4 e8 4d 21 [ 450.175657][ C1] RSP: 0018:ffff888102657cb8 EFLAGS: 000002d3 [ 450.181880][ C1] RAX: ffffffff8dc56f82 RBX: 0000000000000000 RCX: ffff888102660000 [ 450.190524][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 450.198671][ C1] RBP: ffff888102657d30 R08: ffffffff8dc56f5c R09: ffffea000000000f [ 450.207260][ C1] R10: 0000000000000200 R11: ffff888182660000 R12: 0000000000000002 [ 450.216319][ C1] R13: ffff888102660b58 R14: 0000000000000000 R15: 0000000000000000 [ 450.225623][ C1] ? acpi_idle_enter+0x60c/0x770 [ 450.231149][ C1] ? acpi_idle_enter+0x632/0x770 [ 450.237349][ C1] ? acpi_idle_enter+0x632/0x770 [ 450.243211][ C1] ? intel_idle_xstate+0x2a0/0x2a0 [ 450.248738][ C1] cpuidle_enter_state+0x82a/0x19f0 [ 450.254045][ C1] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 450.260051][ C1] cpuidle_enter+0x7b/0xf0 [ 450.265506][ C1] do_idle+0x5ee/0x7f0 [ 450.269694][ C1] cpu_startup_entry+0x1d/0x20 [ 450.274561][ C1] ? setup_APIC_timer+0x360/0x360 [ 450.279859][ C1] start_secondary+0xf1/0x110 [ 450.284808][ C1] secondary_startup_64_no_verify+0xcf/0xdb [ 450.290855][ C1] [ 450.294199][ C1] Kernel Offset: disabled [ 450.299060][ C1] Rebooting in 86400 seconds..