R11: 0000000000000000 R12: 0000000000000000
[ 1630.712776][T22495] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1630.720765][T22495]  </TASK>
[ 1630.725215][T22495] Uninit was stored to memory at:
[ 1630.730323][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1630.736276][T22495]  get_compat_msghdr+0x10c/0x280
[ 1630.741275][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1630.746246][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1630.750813][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1630.755744][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1630.762273][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1630.767350][T22495]  do_fast_syscall_32+0x33/0x70
[ 1630.772420][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1630.776995][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1630.783590][T22495] 
[ 1630.785922][T22495] Uninit was stored to memory at:
[ 1630.791027][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1630.796326][T22495]  get_compat_msghdr+0x10c/0x280
[ 1630.801317][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1630.806241][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1630.810795][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1630.815717][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1630.822197][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1630.827248][T22495]  do_fast_syscall_32+0x33/0x70
[ 1630.832298][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1630.836847][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1630.843437][T22495] 
[ 1630.845779][T22495] Uninit was stored to memory at:
[ 1630.850861][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1630.856161][T22495]  get_compat_msghdr+0x10c/0x280
[ 1630.861156][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1630.866071][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1630.870626][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1630.875513][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1630.882032][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1630.887116][T22495]  do_fast_syscall_32+0x33/0x70
[ 1630.892166][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1630.896740][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1630.903330][T22495] 
[ 1630.905668][T22495] Uninit was stored to memory at:
[ 1630.910768][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1630.916062][T22495]  get_compat_msghdr+0x10c/0x280
[ 1630.921051][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1630.925963][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1630.930525][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1630.935425][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1630.941932][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1630.947014][T22495]  do_fast_syscall_32+0x33/0x70
[ 1630.952222][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1630.956852][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1630.963403][T22495] 
[ 1630.965734][T22495] Uninit was stored to memory at:
[ 1630.970811][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1630.976142][T22495]  get_compat_msghdr+0x10c/0x280
[ 1630.981219][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1630.986106][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1630.990666][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1630.995693][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1631.002205][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1631.007292][T22495]  do_fast_syscall_32+0x33/0x70
[ 1631.012383][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1631.017032][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1631.023666][T22495] 
[ 1631.026027][T22495] Uninit was stored to memory at:
[ 1631.031100][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1631.036487][T22495]  get_compat_msghdr+0x10c/0x280
[ 1631.041486][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1631.046430][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1631.050987][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1631.055851][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1631.062356][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1631.067444][T22495]  do_fast_syscall_32+0x33/0x70
[ 1631.072527][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1631.077089][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1631.083650][T22495] 
[ 1631.085986][T22495] Uninit was stored to memory at:
[ 1631.091065][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1631.096404][T22495]  get_compat_msghdr+0x10c/0x280
[ 1631.101394][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1631.106278][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1631.110835][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1631.115740][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1631.122238][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1631.127325][T22495]  do_fast_syscall_32+0x33/0x70
[ 1631.132428][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1631.136982][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1631.143570][T22495] 
[ 1631.145909][T22495] Local variable msg_sys created at:
[ 1631.151203][T22495]  do_recvmmsg+0xc9/0x1200
[ 1631.155859][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1631.275278][T22495] not chained 3980000 origins
[ 1631.280003][T22495] CPU: 0 PID: 22495 Comm: syz-executor.4 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1631.290184][T22495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1631.300258][T22495] Call Trace:
[ 1631.303570][T22495]  <TASK>
[ 1631.306505][T22495]  dump_stack_lvl+0x200/0x28c
[ 1631.311213][T22495]  dump_stack+0x29/0x2c
[ 1631.315396][T22495]  kmsan_internal_chain_origin+0x78/0x120
[ 1631.321161][T22495]  ? preempt_count_sub+0xfc/0x340
[ 1631.326214][T22495]  ? __local_bh_enable_ip+0xa8/0xe0
[ 1631.331456][T22495]  ? _raw_spin_unlock_bh+0x4f/0x60
[ 1631.336618][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1631.341764][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1631.347648][T22495]  ? should_fail+0x79/0x9c0
[ 1631.352282][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1631.357435][T22495]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1631.363724][T22495]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1631.369843][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1631.374985][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1631.380829][T22495]  __msan_chain_origin+0xbd/0x140
[ 1631.385880][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1631.391036][T22495]  get_compat_msghdr+0x10c/0x280
[ 1631.396045][T22495]  ? do_recvmmsg+0x7c9/0x1200
[ 1631.400751][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1631.405464][T22495]  ? __schedule+0x176c/0x21c0
[ 1631.410187][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1631.415341][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1631.421178][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1631.426326][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1631.432167][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1631.436708][T22495]  ? filter_irq_stacks+0xb9/0x230
[ 1631.441770][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1631.446934][T22495]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1631.451746][T22495]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1631.458309][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1631.463026][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1631.469394][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1631.474445][T22495]  do_fast_syscall_32+0x33/0x70
[ 1631.479326][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1631.483860][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1631.490215][T22495] RIP: 0023:0xf7f8e549
[ 1631.494288][T22495] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1631.513943][T22495] RSP: 002b:00000000f7f685cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1631.522386][T22495] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0
[ 1631.530381][T22495] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000
[ 1631.538487][T22495] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1631.546478][T22495] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1631.554464][T22495] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1631.562466][T22495]  </TASK>
[ 1631.571698][T22495] Uninit was stored to memory at:
[ 1631.577937][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1631.583218][T22495]  get_compat_msghdr+0x10c/0x280
[ 1631.588221][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1631.593067][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1631.597625][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1631.602513][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1631.608898][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1631.614172][T22495]  do_fast_syscall_32+0x33/0x70
[ 1631.619076][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1631.623753][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1631.630135][T22495] 
[ 1631.632624][T22495] Uninit was stored to memory at:
[ 1631.637742][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1631.643071][T22495]  get_compat_msghdr+0x10c/0x280
[ 1631.648065][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1631.652947][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1631.657506][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1631.662425][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1631.668822][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1631.674054][T22495]  do_fast_syscall_32+0x33/0x70
[ 1631.678953][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1631.683678][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1631.690070][T22495] 
[ 1631.692563][T22495] Uninit was stored to memory at:
[ 1631.697664][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1631.703031][T22495]  get_compat_msghdr+0x10c/0x280
[ 1631.708038][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1631.712923][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1631.717482][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1631.722474][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1631.728886][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1631.734175][T22495]  do_fast_syscall_32+0x33/0x70
[ 1631.739090][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1631.743799][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1631.750217][T22495] 
[ 1631.752710][T22495] Uninit was stored to memory at:
[ 1631.757818][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1631.763178][T22495]  get_compat_msghdr+0x10c/0x280
[ 1631.768181][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1631.773207][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1631.777782][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1631.782692][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1631.789084][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1631.794322][T22495]  do_fast_syscall_32+0x33/0x70
[ 1631.799225][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1631.803957][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1631.810343][T22495] 
[ 1631.812830][T22495] Uninit was stored to memory at:
[ 1631.817932][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1631.823368][T22495]  get_compat_msghdr+0x10c/0x280
[ 1631.828445][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1631.833317][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1631.837878][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1631.842773][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1631.849183][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1631.854398][T22495]  do_fast_syscall_32+0x33/0x70
[ 1631.859297][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1631.863999][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1631.870380][T22495] 
[ 1631.872851][T22495] Uninit was stored to memory at:
[ 1631.877946][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1631.883313][T22495]  get_compat_msghdr+0x10c/0x280
[ 1631.888326][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1631.893200][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1631.897755][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1631.902662][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1631.909054][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1631.914277][T22495]  do_fast_syscall_32+0x33/0x70
[ 1631.919201][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1631.923930][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1631.930310][T22495] 
[ 1631.932810][T22495] Uninit was stored to memory at:
[ 1631.937926][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1631.943284][T22495]  get_compat_msghdr+0x10c/0x280
[ 1631.948271][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1631.953178][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1631.957746][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1631.962654][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1631.969056][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1631.974275][T22495]  do_fast_syscall_32+0x33/0x70
[ 1631.979176][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1631.983874][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1631.990251][T22495] 
[ 1631.992729][T22495] Local variable msg_sys created at:
[ 1631.998185][T22495]  do_recvmmsg+0xc9/0x1200
[ 1632.002821][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1632.141247][T22495] not chained 3990000 origins
[ 1632.146597][T22495] CPU: 1 PID: 22495 Comm: syz-executor.4 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1632.156805][T22495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1632.166890][T22495] Call Trace:
[ 1632.170191][T22495]  <TASK>
[ 1632.173139][T22495]  dump_stack_lvl+0x200/0x28c
[ 1632.177850][T22495]  dump_stack+0x29/0x2c
[ 1632.182028][T22495]  kmsan_internal_chain_origin+0x78/0x120
[ 1632.187780][T22495]  ? preempt_count_sub+0xfc/0x340
[ 1632.192940][T22495]  ? __local_bh_enable_ip+0xa8/0xe0
[ 1632.198208][T22495]  ? _raw_spin_unlock_bh+0x4f/0x60
[ 1632.203364][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1632.208531][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1632.214400][T22495]  ? should_fail+0x79/0x9c0
[ 1632.218947][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1632.224532][T22495]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1632.230824][T22495]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1632.236943][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1632.242092][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1632.247944][T22495]  __msan_chain_origin+0xbd/0x140
[ 1632.253003][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1632.258183][T22495]  get_compat_msghdr+0x10c/0x280
[ 1632.263179][T22495]  ? do_recvmmsg+0x7c9/0x1200
[ 1632.267956][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1632.272875][T22495]  ? __schedule+0x176c/0x21c0
[ 1632.277702][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1632.282864][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1632.288706][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1632.293867][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1632.299710][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1632.304257][T22495]  ? filter_irq_stacks+0xb9/0x230
[ 1632.309353][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1632.314522][T22495]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1632.319311][T22495]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1632.326025][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1632.330779][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1632.337239][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1632.342462][T22495]  do_fast_syscall_32+0x33/0x70
[ 1632.347336][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1632.351874][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1632.358345][T22495] RIP: 0023:0xf7f8e549
[ 1632.362447][T22495] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1632.382077][T22495] RSP: 002b:00000000f7f685cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1632.390506][T22495] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0
[ 1632.398499][T22495] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000
[ 1632.406615][T22495] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1632.414638][T22495] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1632.422646][T22495] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1632.430841][T22495]  </TASK>
[ 1632.435530][T22495] Uninit was stored to memory at:
[ 1632.440645][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1632.446101][T22495]  get_compat_msghdr+0x10c/0x280
[ 1632.451104][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1632.455978][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1632.460538][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1632.465456][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1632.471966][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1632.477066][T22495]  do_fast_syscall_32+0x33/0x70
[ 1632.482140][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1632.486705][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1632.493388][T22495] 
[ 1632.495720][T22495] Uninit was stored to memory at:
[ 1632.500786][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1632.506131][T22495]  get_compat_msghdr+0x10c/0x280
[ 1632.511124][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1632.515978][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1632.520531][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1632.525441][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1632.531952][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1632.537023][T22495]  do_fast_syscall_32+0x33/0x70
[ 1632.542135][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1632.546706][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1632.553313][T22495] 
[ 1632.555643][T22495] Uninit was stored to memory at:
[ 1632.560706][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1632.566042][T22495]  get_compat_msghdr+0x10c/0x280
[ 1632.571026][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1632.575974][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1632.580610][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1632.585443][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1632.591963][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1632.597045][T22495]  do_fast_syscall_32+0x33/0x70
[ 1632.602100][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1632.606653][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1632.613203][T22495] 
[ 1632.615532][T22495] Uninit was stored to memory at:
[ 1632.620597][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1632.625936][T22495]  get_compat_msghdr+0x10c/0x280
[ 1632.630923][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1632.635840][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1632.640485][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1632.645351][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1632.651743][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1632.656979][T22495]  do_fast_syscall_32+0x33/0x70
[ 1632.662245][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1632.666789][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1632.673341][T22495] 
[ 1632.675677][T22495] Uninit was stored to memory at:
[ 1632.680756][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1632.686045][T22495]  get_compat_msghdr+0x10c/0x280
[ 1632.691032][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1632.695938][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1632.700490][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1632.705498][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1632.712007][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1632.717085][T22495]  do_fast_syscall_32+0x33/0x70
[ 1632.722118][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1632.726661][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1632.733237][T22495] 
[ 1632.735566][T22495] Uninit was stored to memory at:
[ 1632.740645][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1632.745994][T22495]  get_compat_msghdr+0x10c/0x280
[ 1632.750998][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1632.755909][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1632.760461][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1632.765342][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1632.771739][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1632.776979][T22495]  do_fast_syscall_32+0x33/0x70
[ 1632.782184][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1632.786734][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1632.793314][T22495] 
[ 1632.795643][T22495] Uninit was stored to memory at:
[ 1632.800719][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1632.806021][T22495]  get_compat_msghdr+0x10c/0x280
[ 1632.811019][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1632.815928][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1632.820480][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1632.825323][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1632.831706][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1632.836933][T22495]  do_fast_syscall_32+0x33/0x70
[ 1632.842022][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1632.846567][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1632.853069][T22495] 
[ 1632.855397][T22495] Local variable msg_sys created at:
[ 1632.860670][T22495]  do_recvmmsg+0xc9/0x1200
[ 1632.865297][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1632.978314][T22495] not chained 4000000 origins
[ 1632.983223][T22495] CPU: 1 PID: 22495 Comm: syz-executor.4 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1632.993417][T22495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1633.003492][T22495] Call Trace:
[ 1633.006779][T22495]  <TASK>
[ 1633.009708][T22495]  dump_stack_lvl+0x200/0x28c
[ 1633.014415][T22495]  dump_stack+0x29/0x2c
[ 1633.018681][T22495]  kmsan_internal_chain_origin+0x78/0x120
[ 1633.024468][T22495]  ? preempt_count_sub+0xfc/0x340
[ 1633.029531][T22495]  ? __local_bh_enable_ip+0xa8/0xe0
[ 1633.034763][T22495]  ? _raw_spin_unlock_bh+0x4f/0x60
[ 1633.039919][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1633.045066][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1633.050936][T22495]  ? should_fail+0x79/0x9c0
[ 1633.055565][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1633.060732][T22495]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1633.067060][T22495]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1633.073158][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1633.078293][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1633.084126][T22495]  __msan_chain_origin+0xbd/0x140
[ 1633.089174][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1633.094356][T22495]  get_compat_msghdr+0x10c/0x280
[ 1633.099351][T22495]  ? do_recvmmsg+0x7c9/0x1200
[ 1633.104086][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1633.108825][T22495]  ? __schedule+0x176c/0x21c0
[ 1633.113579][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1633.118750][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1633.124593][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1633.129737][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1633.135576][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1633.140108][T22495]  ? filter_irq_stacks+0xb9/0x230
[ 1633.145183][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1633.150371][T22495]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1633.155197][T22495]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1633.161927][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1633.166696][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1633.173094][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1633.178247][T22495]  do_fast_syscall_32+0x33/0x70
[ 1633.183126][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1633.187709][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1633.194097][T22495] RIP: 0023:0xf7f8e549
[ 1633.198201][T22495] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1633.218013][T22495] RSP: 002b:00000000f7f685cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1633.226453][T22495] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0
[ 1633.234538][T22495] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000
[ 1633.242524][T22495] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1633.250627][T22495] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1633.258740][T22495] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1633.266961][T22495]  </TASK>
[ 1633.273251][T22495] Uninit was stored to memory at:
[ 1633.278369][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1633.284285][T22495]  get_compat_msghdr+0x10c/0x280
[ 1633.289288][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1633.294169][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1633.298747][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1633.303672][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1633.310071][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1633.315443][T22495]  do_fast_syscall_32+0x33/0x70
[ 1633.320346][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1633.325088][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1633.331475][T22495] 
[ 1633.334019][T22495] Uninit was stored to memory at:
[ 1633.339150][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1633.344477][T22495]  get_compat_msghdr+0x10c/0x280
[ 1633.349470][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1633.354473][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1633.359033][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1633.364026][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1633.370438][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1633.375647][T22495]  do_fast_syscall_32+0x33/0x70
[ 1633.380556][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1633.385220][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1633.391600][T22495] 
[ 1633.394292][T22495] Uninit was stored to memory at:
[ 1633.399373][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1633.404729][T22495]  get_compat_msghdr+0x10c/0x280
[ 1633.409712][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1633.414564][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1633.419120][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1633.424029][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1633.430422][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1633.435733][T22495]  do_fast_syscall_32+0x33/0x70
[ 1633.440632][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1633.445317][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1633.451707][T22495] 
[ 1633.454205][T22495] Uninit was stored to memory at:
[ 1633.459302][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1633.464597][T22495]  get_compat_msghdr+0x10c/0x280
[ 1633.469586][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1633.474476][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1633.479055][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1633.483955][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1633.490349][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1633.495568][T22495]  do_fast_syscall_32+0x33/0x70
[ 1633.500489][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1633.505149][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1633.511542][T22495] 
[ 1633.514055][T22495] Uninit was stored to memory at:
[ 1633.519155][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1633.524470][T22495]  get_compat_msghdr+0x10c/0x280
[ 1633.529457][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1633.534304][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1633.538877][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1633.543770][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1633.551149][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1633.556414][T22495]  do_fast_syscall_32+0x33/0x70
[ 1633.561310][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1633.566057][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1633.572539][T22495] 
[ 1633.574872][T22495] Uninit was stored to memory at:
[ 1633.579951][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1633.585237][T22495]  get_compat_msghdr+0x10c/0x280
[ 1633.590223][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1633.595126][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1633.599676][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1633.604577][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1633.610966][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1633.616187][T22495]  do_fast_syscall_32+0x33/0x70
[ 1633.621082][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1633.625797][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1633.632271][T22495] 
[ 1633.634602][T22495] Uninit was stored to memory at:
[ 1633.639691][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1633.645027][T22495]  get_compat_msghdr+0x10c/0x280
[ 1633.650015][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1633.654889][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1633.659444][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1633.664362][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1633.670935][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1633.676225][T22495]  do_fast_syscall_32+0x33/0x70
[ 1633.681125][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1633.685817][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1633.692303][T22495] 
[ 1633.694644][T22495] Local variable msg_sys created at:
[ 1633.699932][T22495]  do_recvmmsg+0xc9/0x1200
[ 1633.704579][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1633.814542][T22495] not chained 4010000 origins
[ 1633.819246][T22495] CPU: 1 PID: 22495 Comm: syz-executor.4 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1633.829504][T22495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1633.839583][T22495] Call Trace:
[ 1633.842859][T22495]  <TASK>
[ 1633.845790][T22495]  dump_stack_lvl+0x200/0x28c
[ 1633.850502][T22495]  dump_stack+0x29/0x2c
[ 1633.854670][T22495]  kmsan_internal_chain_origin+0x78/0x120
[ 1633.860431][T22495]  ? preempt_count_sub+0xfc/0x340
[ 1633.865483][T22495]  ? __local_bh_enable_ip+0xa8/0xe0
[ 1633.870733][T22495]  ? _raw_spin_unlock_bh+0x4f/0x60
[ 1633.875956][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1633.881122][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1633.886961][T22495]  ? should_fail+0x79/0x9c0
[ 1633.891504][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1633.896644][T22495]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1633.902914][T22495]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1633.909017][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1633.914157][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1633.920020][T22495]  __msan_chain_origin+0xbd/0x140
[ 1633.925179][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1633.930362][T22495]  get_compat_msghdr+0x10c/0x280
[ 1633.935351][T22495]  ? do_recvmmsg+0x7c9/0x1200
[ 1633.940066][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1633.944789][T22495]  ? do_recvmmsg+0x87d/0x1200
[ 1633.949489][T22495]  ? kmsan_get_metadata+0xcf/0x220
[ 1633.954624][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1633.959768][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1633.965610][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1633.970184][T22495]  ? filter_irq_stacks+0xb9/0x230
[ 1633.975273][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1633.980419][T22495]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1633.985219][T22495]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1633.991760][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1633.996502][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1634.002898][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1634.007965][T22495]  do_fast_syscall_32+0x33/0x70
[ 1634.012848][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1634.017488][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1634.023879][T22495] RIP: 0023:0xf7f8e549
[ 1634.027968][T22495] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1634.047596][T22495] RSP: 002b:00000000f7f685cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1634.056031][T22495] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0
[ 1634.064022][T22495] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000
[ 1634.072016][T22495] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1634.080018][T22495] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1634.088018][T22495] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1634.096021][T22495]  </TASK>
[ 1634.100500][T22495] Uninit was stored to memory at:
[ 1634.105896][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1634.111094][T22495]  get_compat_msghdr+0x10c/0x280
[ 1634.116228][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1634.120959][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1634.125761][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1634.130516][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1634.137052][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1634.142235][T22495]  do_fast_syscall_32+0x33/0x70
[ 1634.147138][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1634.151682][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1634.158370][T22495] 
[ 1634.160704][T22495] Uninit was stored to memory at:
[ 1634.165939][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1634.171095][T22495]  get_compat_msghdr+0x10c/0x280
[ 1634.176278][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1634.181023][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1634.185769][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1634.190505][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1634.197031][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1634.202277][T22495]  do_fast_syscall_32+0x33/0x70
[ 1634.207172][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1634.211714][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1634.218264][T22495] 
[ 1634.220583][T22495] Uninit was stored to memory at:
[ 1634.225815][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1634.230986][T22495]  get_compat_msghdr+0x10c/0x280
[ 1634.236151][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1634.240882][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1634.246133][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1634.250859][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1634.257390][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1634.262568][T22495]  do_fast_syscall_32+0x33/0x70
[ 1634.267472][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1634.272177][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1634.278553][T22495] 
[ 1634.280884][T22495] Uninit was stored to memory at:
[ 1634.286130][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1634.291294][T22495]  get_compat_msghdr+0x10c/0x280
[ 1634.296659][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1634.301398][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1634.306151][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1634.310884][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1634.317564][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1634.322858][T22495]  do_fast_syscall_32+0x33/0x70
[ 1634.327768][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1634.332527][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1634.338916][T22495] 
[ 1634.341234][T22495] Uninit was stored to memory at:
[ 1634.346532][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1634.351700][T22495]  get_compat_msghdr+0x10c/0x280
[ 1634.356876][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1634.361613][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1634.366374][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1634.371100][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1634.377710][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1634.382859][T22495]  do_fast_syscall_32+0x33/0x70
[ 1634.387740][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1634.392448][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1634.398847][T22495] 
[ 1634.401167][T22495] Uninit was stored to memory at:
[ 1634.406465][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1634.411628][T22495]  get_compat_msghdr+0x10c/0x280
[ 1634.416742][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1634.421478][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1634.426252][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1634.431131][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1634.437746][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1634.443059][T22495]  do_fast_syscall_32+0x33/0x70
[ 1634.447947][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1634.452687][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1634.459076][T22495] 
[ 1634.461398][T22495] Uninit was stored to memory at:
[ 1634.466643][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1634.471898][T22495]  get_compat_msghdr+0x10c/0x280
[ 1634.476892][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1634.481621][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1634.486387][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1634.491116][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1634.497637][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1634.502817][T22495]  do_fast_syscall_32+0x33/0x70
[ 1634.507721][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1634.512472][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1634.518880][T22495] 
[ 1634.521201][T22495] Local variable msg_sys created at:
[ 1634.526738][T22495]  do_recvmmsg+0xc9/0x1200
[ 1634.531239][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1634.640705][T22495] not chained 4020000 origins
[ 1634.645618][T22495] CPU: 1 PID: 22495 Comm: syz-executor.4 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1634.655901][T22495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1634.665995][T22495] Call Trace:
[ 1634.669276][T22495]  <TASK>
[ 1634.672200][T22495]  dump_stack_lvl+0x200/0x28c
[ 1634.676904][T22495]  dump_stack+0x29/0x2c
[ 1634.681076][T22495]  kmsan_internal_chain_origin+0x78/0x120
[ 1634.686846][T22495]  ? preempt_count_sub+0xfc/0x340
[ 1634.691916][T22495]  ? __local_bh_enable_ip+0xa8/0xe0
[ 1634.697131][T22495]  ? _raw_spin_unlock_bh+0x4f/0x60
[ 1634.702278][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1634.707437][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1634.713299][T22495]  ? should_fail+0x79/0x9c0
[ 1634.717859][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1634.722999][T22495]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1634.729267][T22495]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1634.735366][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1634.740501][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1634.746336][T22495]  __msan_chain_origin+0xbd/0x140
[ 1634.751398][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1634.756558][T22495]  get_compat_msghdr+0x10c/0x280
[ 1634.761563][T22495]  ? do_recvmmsg+0x7c9/0x1200
[ 1634.766294][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1634.771079][T22495]  ? __schedule+0x176c/0x21c0
[ 1634.775788][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1634.780978][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1634.786824][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1634.791983][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1634.797845][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1634.802382][T22495]  ? filter_irq_stacks+0xb9/0x230
[ 1634.807558][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1634.812725][T22495]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1634.817534][T22495]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1634.824071][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1634.828842][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1634.835207][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1634.840258][T22495]  do_fast_syscall_32+0x33/0x70
[ 1634.845142][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1634.849665][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1634.856051][T22495] RIP: 0023:0xf7f8e549
[ 1634.860144][T22495] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1634.879880][T22495] RSP: 002b:00000000f7f685cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1634.888507][T22495] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0
[ 1634.896508][T22495] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000
[ 1634.904493][T22495] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1634.912526][T22495] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1634.920523][T22495] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1634.928517][T22495]  </TASK>
[ 1634.932823][T22495] Uninit was stored to memory at:
[ 1634.937925][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1634.943429][T22495]  get_compat_msghdr+0x10c/0x280
[ 1634.948439][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1634.953305][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1634.957863][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1634.962750][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1634.969143][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1634.974402][T22495]  do_fast_syscall_32+0x33/0x70
[ 1634.979355][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1634.984154][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1634.990568][T22495] 
[ 1634.993057][T22495] Uninit was stored to memory at:
[ 1634.998151][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1635.003489][T22495]  get_compat_msghdr+0x10c/0x280
[ 1635.008483][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1635.013497][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1635.018057][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1635.023099][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1635.029516][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1635.034737][T22495]  do_fast_syscall_32+0x33/0x70
[ 1635.039643][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1635.044375][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1635.050765][T22495] 
[ 1635.053280][T22495] Uninit was stored to memory at:
[ 1635.058371][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1635.063855][T22495]  get_compat_msghdr+0x10c/0x280
[ 1635.068859][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1635.073745][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1635.078315][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1635.083191][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1635.089590][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1635.094889][T22495]  do_fast_syscall_32+0x33/0x70
[ 1635.099796][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1635.104510][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1635.110899][T22495] 
[ 1635.113423][T22495] Uninit was stored to memory at:
[ 1635.118517][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1635.124025][T22495]  get_compat_msghdr+0x10c/0x280
[ 1635.129027][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1635.133903][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1635.138465][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1635.143371][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1635.149894][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1635.155181][T22495]  do_fast_syscall_32+0x33/0x70
[ 1635.160087][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1635.164804][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1635.171198][T22495] 
[ 1635.173748][T22495] Uninit was stored to memory at:
[ 1635.178842][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1635.184321][T22495]  get_compat_msghdr+0x10c/0x280
[ 1635.189324][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1635.194250][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1635.198811][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1635.203740][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1635.210139][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1635.215445][T22495]  do_fast_syscall_32+0x33/0x70
[ 1635.220365][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1635.225119][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1635.231500][T22495] 
[ 1635.234014][T22495] Uninit was stored to memory at:
[ 1635.239125][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1635.244463][T22495]  get_compat_msghdr+0x10c/0x280
[ 1635.249459][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1635.254323][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1635.258874][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1635.263800][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1635.270271][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1635.275574][T22495]  do_fast_syscall_32+0x33/0x70
[ 1635.280554][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1635.285215][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1635.291600][T22495] 
[ 1635.294123][T22495] Uninit was stored to memory at:
[ 1635.299226][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1635.304570][T22495]  get_compat_msghdr+0x10c/0x280
[ 1635.309581][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1635.314447][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1635.319003][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1635.323899][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1635.330302][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1635.335564][T22495]  do_fast_syscall_32+0x33/0x70
[ 1635.340478][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1635.345154][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1635.351535][T22495] 
[ 1635.354060][T22495] Local variable msg_sys created at:
[ 1635.359360][T22495]  do_recvmmsg+0xc9/0x1200
[ 1635.364004][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1635.492528][T22495] not chained 4030000 origins
[ 1635.497231][T22495] CPU: 1 PID: 22495 Comm: syz-executor.4 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1635.507427][T22495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1635.517497][T22495] Call Trace:
[ 1635.520786][T22495]  <TASK>
[ 1635.523715][T22495]  dump_stack_lvl+0x200/0x28c
[ 1635.528420][T22495]  dump_stack+0x29/0x2c
[ 1635.532590][T22495]  kmsan_internal_chain_origin+0x78/0x120
[ 1635.538341][T22495]  ? preempt_count_sub+0xfc/0x340
[ 1635.543395][T22495]  ? __local_bh_enable_ip+0xa8/0xe0
[ 1635.548628][T22495]  ? _raw_spin_unlock_bh+0x4f/0x60
[ 1635.553771][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1635.558929][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1635.564787][T22495]  ? should_fail+0x79/0x9c0
[ 1635.569303][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1635.574452][T22495]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1635.580743][T22495]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1635.586853][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1635.592003][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1635.597890][T22495]  __msan_chain_origin+0xbd/0x140
[ 1635.603006][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1635.608195][T22495]  get_compat_msghdr+0x10c/0x280
[ 1635.613193][T22495]  ? do_recvmmsg+0x7c9/0x1200
[ 1635.617901][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1635.622636][T22495]  ? __schedule+0x176c/0x21c0
[ 1635.627341][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1635.632487][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1635.638330][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1635.643503][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1635.649342][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1635.653877][T22495]  ? filter_irq_stacks+0xb9/0x230
[ 1635.658960][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1635.664104][T22495]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1635.668892][T22495]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1635.675427][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1635.680145][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1635.686542][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1635.691591][T22495]  do_fast_syscall_32+0x33/0x70
[ 1635.696466][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1635.700996][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1635.707355][T22495] RIP: 0023:0xf7f8e549
[ 1635.711453][T22495] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1635.731107][T22495] RSP: 002b:00000000f7f685cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1635.739562][T22495] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0
[ 1635.747551][T22495] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000
[ 1635.755533][T22495] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1635.763516][T22495] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1635.771611][T22495] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1635.779604][T22495]  </TASK>
[ 1635.784079][T22495] Uninit was stored to memory at:
[ 1635.789177][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1635.794607][T22495]  get_compat_msghdr+0x10c/0x280
[ 1635.799621][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1635.804460][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1635.809042][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1635.813862][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1635.820249][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1635.825415][T22495]  do_fast_syscall_32+0x33/0x70
[ 1635.830310][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1635.834956][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1635.841328][T22495] 
[ 1635.843800][T22495] Uninit was stored to memory at:
[ 1635.848899][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1635.854216][T22495]  get_compat_msghdr+0x10c/0x280
[ 1635.859201][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1635.864069][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1635.868621][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1635.873660][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1635.880050][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1635.885289][T22495]  do_fast_syscall_32+0x33/0x70
[ 1635.890198][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1635.894847][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1635.901224][T22495] 
[ 1635.903699][T22495] Uninit was stored to memory at:
[ 1635.908778][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1635.914074][T22495]  get_compat_msghdr+0x10c/0x280
[ 1635.919061][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1635.923926][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1635.928486][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1635.933395][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1635.939788][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1635.945011][T22495]  do_fast_syscall_32+0x33/0x70
[ 1635.949913][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1635.954645][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1635.961024][T22495] 
[ 1635.963509][T22495] Uninit was stored to memory at:
[ 1635.968609][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1635.973912][T22495]  get_compat_msghdr+0x10c/0x280
[ 1635.978915][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1635.983802][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1635.988366][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1635.993271][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1635.999664][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1636.004886][T22495]  do_fast_syscall_32+0x33/0x70
[ 1636.009867][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1636.014632][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1636.021019][T22495] 
[ 1636.023522][T22495] Uninit was stored to memory at:
[ 1636.028624][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1636.033923][T22495]  get_compat_msghdr+0x10c/0x280
[ 1636.038910][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1636.043800][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1636.048442][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1636.053328][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1636.059805][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1636.065021][T22495]  do_fast_syscall_32+0x33/0x70
[ 1636.069927][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1636.074627][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1636.081007][T22495] 
[ 1636.083500][T22495] Uninit was stored to memory at:
[ 1636.088599][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1636.093900][T22495]  get_compat_msghdr+0x10c/0x280
[ 1636.098890][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1636.103782][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1636.108445][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1636.113431][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1636.119829][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1636.125088][T22495]  do_fast_syscall_32+0x33/0x70
[ 1636.130015][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1636.134765][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1636.141155][T22495] 
[ 1636.143650][T22495] Uninit was stored to memory at:
[ 1636.148758][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1636.154101][T22495]  get_compat_msghdr+0x10c/0x280
[ 1636.159097][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1636.164069][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1636.168625][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1636.173632][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1636.180160][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1636.185387][T22495]  do_fast_syscall_32+0x33/0x70
[ 1636.190290][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1636.194960][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1636.201341][T22495] 
[ 1636.203835][T22495] Local variable msg_sys created at:
[ 1636.209129][T22495]  do_recvmmsg+0xc9/0x1200
[ 1636.213765][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1636.334554][T22495] not chained 4040000 origins
[ 1636.339256][T22495] CPU: 1 PID: 22495 Comm: syz-executor.4 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1636.349431][T22495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1636.359518][T22495] Call Trace:
[ 1636.362809][T22495]  <TASK>
[ 1636.365756][T22495]  dump_stack_lvl+0x200/0x28c
[ 1636.370492][T22495]  dump_stack+0x29/0x2c
[ 1636.374697][T22495]  kmsan_internal_chain_origin+0x78/0x120
[ 1636.380481][T22495]  ? preempt_count_sub+0xfc/0x340
[ 1636.385546][T22495]  ? __local_bh_enable_ip+0xa8/0xe0
[ 1636.390792][T22495]  ? _raw_spin_unlock_bh+0x4f/0x60
[ 1636.395967][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1636.401116][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1636.407061][T22495]  ? should_fail+0x79/0x9c0
[ 1636.411607][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1636.416756][T22495]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1636.423063][T22495]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1636.429197][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1636.434366][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1636.440233][T22495]  __msan_chain_origin+0xbd/0x140
[ 1636.445318][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1636.450496][T22495]  get_compat_msghdr+0x10c/0x280
[ 1636.455464][T22495]  ? do_recvmmsg+0x7c9/0x1200
[ 1636.460303][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1636.465023][T22495]  ? __schedule+0x176c/0x21c0
[ 1636.469765][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1636.474923][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1636.480797][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1636.485978][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1636.491851][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1636.496434][T22495]  ? filter_irq_stacks+0xb9/0x230
[ 1636.501536][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1636.506809][T22495]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1636.511624][T22495]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1636.518172][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1636.522912][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1636.529319][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1636.534403][T22495]  do_fast_syscall_32+0x33/0x70
[ 1636.539304][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1636.543836][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1636.550235][T22495] RIP: 0023:0xf7f8e549
[ 1636.554311][T22495] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1636.574064][T22495] RSP: 002b:00000000f7f685cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1636.582544][T22495] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0
[ 1636.590551][T22495] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000
[ 1636.598536][T22495] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1636.606524][T22495] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1636.614529][T22495] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1636.622556][T22495]  </TASK>
[ 1636.627078][T22495] Uninit was stored to memory at:
[ 1636.632469][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1636.637635][T22495]  get_compat_msghdr+0x10c/0x280
[ 1636.642725][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1636.647456][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1636.652109][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1636.656838][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1636.663332][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1636.668404][T22495]  do_fast_syscall_32+0x33/0x70
[ 1636.673396][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1636.677943][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1636.684484][T22495] 
[ 1636.686828][T22495] Uninit was stored to memory at:
[ 1636.692067][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1636.697223][T22495]  get_compat_msghdr+0x10c/0x280
[ 1636.702343][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1636.707068][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1636.711618][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1636.716503][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1636.722998][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1636.728143][T22495]  do_fast_syscall_32+0x33/0x70
[ 1636.733176][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1636.737727][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1636.744255][T22495] 
[ 1636.746589][T22495] Uninit was stored to memory at:
[ 1636.751666][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1636.757017][T22495]  get_compat_msghdr+0x10c/0x280
[ 1636.762098][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1636.766830][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1636.771384][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1636.776214][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1636.782701][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1636.787775][T22495]  do_fast_syscall_32+0x33/0x70
[ 1636.792808][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1636.797349][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1636.803869][T22495] 
[ 1636.806206][T22495] Uninit was stored to memory at:
[ 1636.811312][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1636.816644][T22495]  get_compat_msghdr+0x10c/0x280
[ 1636.821628][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1636.826499][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1636.831053][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1636.835956][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1636.842633][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1636.847702][T22495]  do_fast_syscall_32+0x33/0x70
[ 1636.852730][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1636.857291][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1636.863830][T22495] 
[ 1636.866165][T22495] Uninit was stored to memory at:
[ 1636.871251][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1636.876641][T22495]  get_compat_msghdr+0x10c/0x280
[ 1636.881637][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1636.886512][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1636.891089][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1636.895922][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1636.902409][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1636.907479][T22495]  do_fast_syscall_32+0x33/0x70
[ 1636.912501][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1636.917045][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1636.923579][T22495] 
[ 1636.925915][T22495] Uninit was stored to memory at:
[ 1636.931012][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1636.936313][T22495]  get_compat_msghdr+0x10c/0x280
[ 1636.941299][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1636.946204][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1636.950844][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1636.955682][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1636.962318][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1636.967403][T22495]  do_fast_syscall_32+0x33/0x70
[ 1636.972457][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1636.977009][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1636.983707][T22495] 
[ 1636.986045][T22495] Uninit was stored to memory at:
[ 1636.991153][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1636.996457][T22495]  get_compat_msghdr+0x10c/0x280
[ 1637.001463][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1637.006364][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1637.010949][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1637.015789][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1637.022268][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1637.027339][T22495]  do_fast_syscall_32+0x33/0x70
[ 1637.032391][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1637.036943][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1637.043569][T22495] 
[ 1637.045900][T22495] Local variable msg_sys created at:
[ 1637.051184][T22495]  do_recvmmsg+0xc9/0x1200
[ 1637.055802][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1637.168354][T22495] not chained 4050000 origins
[ 1637.173381][T22495] CPU: 1 PID: 22495 Comm: syz-executor.4 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1637.183581][T22495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1637.193657][T22495] Call Trace:
[ 1637.196951][T22495]  <TASK>
[ 1637.199895][T22495]  dump_stack_lvl+0x200/0x28c
[ 1637.204659][T22495]  dump_stack+0x29/0x2c
[ 1637.208856][T22495]  kmsan_internal_chain_origin+0x78/0x120
[ 1637.214643][T22495]  ? preempt_count_sub+0xfc/0x340
[ 1637.219712][T22495]  ? __local_bh_enable_ip+0xa8/0xe0
[ 1637.224932][T22495]  ? _raw_spin_unlock_bh+0x4f/0x60
[ 1637.230079][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1637.235223][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1637.241088][T22495]  ? should_fail+0x79/0x9c0
[ 1637.245625][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1637.250786][T22495]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1637.257064][T22495]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1637.263194][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1637.268364][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1637.274212][T22495]  __msan_chain_origin+0xbd/0x140
[ 1637.279290][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1637.284455][T22495]  get_compat_msghdr+0x10c/0x280
[ 1637.289463][T22495]  ? do_recvmmsg+0x7c9/0x1200
[ 1637.294189][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1637.298926][T22495]  ? __schedule+0x176c/0x21c0
[ 1637.303643][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1637.308803][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1637.314647][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1637.319826][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1637.325675][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1637.330233][T22495]  ? filter_irq_stacks+0xb9/0x230
[ 1637.335308][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1637.340478][T22495]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1637.345271][T22495]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1637.351841][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1637.356604][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1637.362982][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1637.368056][T22495]  do_fast_syscall_32+0x33/0x70
[ 1637.372957][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1637.377512][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1637.384091][T22495] RIP: 0023:0xf7f8e549
[ 1637.388184][T22495] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1637.407925][T22495] RSP: 002b:00000000f7f685cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1637.416457][T22495] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0
[ 1637.424463][T22495] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000
[ 1637.432466][T22495] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1637.440463][T22495] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1637.448446][T22495] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1637.456467][T22495]  </TASK>
[ 1637.462511][T22495] Uninit was stored to memory at:
[ 1637.467617][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1637.473455][T22495]  get_compat_msghdr+0x10c/0x280
[ 1637.478447][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1637.483267][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1637.487824][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1637.492656][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1637.499039][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1637.504206][T22495]  do_fast_syscall_32+0x33/0x70
[ 1637.509100][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1637.513810][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1637.520274][T22495] 
[ 1637.522855][T22495] Uninit was stored to memory at:
[ 1637.527951][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1637.533272][T22495]  get_compat_msghdr+0x10c/0x280
[ 1637.538263][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1637.543137][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1637.547689][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1637.552569][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1637.558958][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1637.564164][T22495]  do_fast_syscall_32+0x33/0x70
[ 1637.569162][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1637.573941][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1637.580319][T22495] 
[ 1637.582799][T22495] Uninit was stored to memory at:
[ 1637.587888][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1637.593141][T22495]  get_compat_msghdr+0x10c/0x280
[ 1637.598130][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1637.603042][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1637.607597][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1637.612475][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1637.618865][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1637.624065][T22495]  do_fast_syscall_32+0x33/0x70
[ 1637.629083][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1637.633778][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1637.640161][T22495] 
[ 1637.642644][T22495] Uninit was stored to memory at:
[ 1637.647723][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1637.653017][T22495]  get_compat_msghdr+0x10c/0x280
[ 1637.658011][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1637.663029][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1637.667601][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1637.672466][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1637.678851][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1637.684081][T22495]  do_fast_syscall_32+0x33/0x70
[ 1637.688979][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1637.693667][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1637.700043][T22495] 
[ 1637.702540][T22495] Uninit was stored to memory at:
[ 1637.707619][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1637.713094][T22495]  get_compat_msghdr+0x10c/0x280
[ 1637.718108][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1637.723005][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1637.727563][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1637.732438][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1637.738822][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1637.744038][T22495]  do_fast_syscall_32+0x33/0x70
[ 1637.748946][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1637.753654][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1637.760033][T22495] 
[ 1637.762519][T22495] Uninit was stored to memory at:
[ 1637.767617][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1637.772919][T22495]  get_compat_msghdr+0x10c/0x280
[ 1637.777912][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1637.782807][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1637.787361][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1637.792253][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1637.798644][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1637.803855][T22495]  do_fast_syscall_32+0x33/0x70
[ 1637.808751][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1637.813465][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1637.820105][T22495] 
[ 1637.822578][T22495] Uninit was stored to memory at:
[ 1637.827669][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1637.832991][T22495]  get_compat_msghdr+0x10c/0x280
[ 1637.837991][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1637.842893][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1637.847471][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1637.852326][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1637.858712][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1637.863943][T22495]  do_fast_syscall_32+0x33/0x70
[ 1637.868846][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1637.873555][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1637.879931][T22495] 
[ 1637.882439][T22495] Local variable msg_sys created at:
[ 1637.887755][T22495]  do_recvmmsg+0xc9/0x1200
[ 1637.892373][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1638.003478][T22495] not chained 4060000 origins
[ 1638.008194][T22495] CPU: 1 PID: 22495 Comm: syz-executor.4 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1638.018458][T22495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1638.028545][T22495] Call Trace:
[ 1638.031846][T22495]  <TASK>
[ 1638.034793][T22495]  dump_stack_lvl+0x200/0x28c
[ 1638.039528][T22495]  dump_stack+0x29/0x2c
[ 1638.043723][T22495]  kmsan_internal_chain_origin+0x78/0x120
[ 1638.049492][T22495]  ? preempt_count_sub+0xfc/0x340
[ 1638.054550][T22495]  ? __local_bh_enable_ip+0xa8/0xe0
[ 1638.059785][T22495]  ? _raw_spin_unlock_bh+0x4f/0x60
[ 1638.064931][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1638.070115][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1638.075996][T22495]  ? should_fail+0x79/0x9c0
[ 1638.080573][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1638.085750][T22495]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1638.092064][T22495]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1638.098194][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1638.103368][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1638.109230][T22495]  __msan_chain_origin+0xbd/0x140
[ 1638.114375][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1638.119566][T22495]  get_compat_msghdr+0x10c/0x280
[ 1638.124537][T22495]  ? do_recvmmsg+0x7c9/0x1200
[ 1638.129265][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1638.133989][T22495]  ? __schedule+0x176c/0x21c0
[ 1638.138718][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1638.143905][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1638.149773][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1638.155006][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1638.160879][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1638.165458][T22495]  ? filter_irq_stacks+0xb9/0x230
[ 1638.170565][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1638.175797][T22495]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1638.180604][T22495]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1638.187165][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1638.191916][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1638.198375][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1638.203448][T22495]  do_fast_syscall_32+0x33/0x70
[ 1638.208370][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1638.212901][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1638.219302][T22495] RIP: 0023:0xf7f8e549
[ 1638.223383][T22495] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1638.243056][T22495] RSP: 002b:00000000f7f685cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1638.251516][T22495] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0
[ 1638.259516][T22495] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000
[ 1638.267500][T22495] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1638.275676][T22495] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1638.283680][T22495] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1638.291691][T22495]  </TASK>
[ 1638.296122][T22495] Uninit was stored to memory at:
[ 1638.301223][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1638.306662][T22495]  get_compat_msghdr+0x10c/0x280
[ 1638.311689][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1638.316532][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1638.321088][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1638.325889][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1638.332411][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1638.337489][T22495]  do_fast_syscall_32+0x33/0x70
[ 1638.342558][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1638.347108][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1638.353630][T22495] 
[ 1638.355960][T22495] Uninit was stored to memory at:
[ 1638.361063][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1638.366394][T22495]  get_compat_msghdr+0x10c/0x280
[ 1638.371382][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1638.376268][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1638.380839][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1638.385722][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1638.392209][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1638.397284][T22495]  do_fast_syscall_32+0x33/0x70
[ 1638.402299][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1638.406843][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1638.413384][T22495] 
[ 1638.415718][T22495] Uninit was stored to memory at:
[ 1638.420812][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1638.426143][T22495]  get_compat_msghdr+0x10c/0x280
[ 1638.431285][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1638.436124][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1638.440684][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1638.445596][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1638.452098][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1638.457172][T22495]  do_fast_syscall_32+0x33/0x70
[ 1638.462203][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1638.466744][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1638.473227][T22495] 
[ 1638.475560][T22495] Uninit was stored to memory at:
[ 1638.480638][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1638.485900][T22495]  get_compat_msghdr+0x10c/0x280
[ 1638.490893][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1638.495786][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1638.500352][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1638.505257][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1638.511669][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1638.516919][T22495]  do_fast_syscall_32+0x33/0x70
[ 1638.521938][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1638.526669][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1638.533181][T22495] 
[ 1638.535513][T22495] Uninit was stored to memory at:
[ 1638.540606][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1638.545887][T22495]  get_compat_msghdr+0x10c/0x280
[ 1638.550903][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1638.555812][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1638.560373][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1638.565256][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1638.571645][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1638.576889][T22495]  do_fast_syscall_32+0x33/0x70
[ 1638.581895][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1638.586455][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1638.592999][T22495] 
[ 1638.595329][T22495] Uninit was stored to memory at:
[ 1638.600421][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1638.605728][T22495]  get_compat_msghdr+0x10c/0x280
[ 1638.610711][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1638.615588][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1638.620143][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1638.625003][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1638.631408][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1638.636631][T22495]  do_fast_syscall_32+0x33/0x70
[ 1638.641549][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1638.646224][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1638.652708][T22495] 
[ 1638.655043][T22495] Uninit was stored to memory at:
[ 1638.660121][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1638.665381][T22495]  get_compat_msghdr+0x10c/0x280
[ 1638.670368][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1638.675242][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1638.679803][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1638.684720][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1638.691113][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1638.696354][T22495]  do_fast_syscall_32+0x33/0x70
[ 1638.701251][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1638.706204][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1638.712689][T22495] 
[ 1638.715053][T22495] Local variable msg_sys created at:
[ 1638.720339][T22495]  do_recvmmsg+0xc9/0x1200
[ 1638.724957][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1638.840668][T22495] not chained 4070000 origins
[ 1638.845609][T22495] CPU: 1 PID: 22495 Comm: syz-executor.4 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1638.855822][T22495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1638.865925][T22495] Call Trace:
[ 1638.869210][T22495]  <TASK>
[ 1638.872144][T22495]  dump_stack_lvl+0x200/0x28c
[ 1638.876876][T22495]  dump_stack+0x29/0x2c
[ 1638.881079][T22495]  kmsan_internal_chain_origin+0x78/0x120
[ 1638.886854][T22495]  ? preempt_count_sub+0xfc/0x340
[ 1638.891919][T22495]  ? __local_bh_enable_ip+0xa8/0xe0
[ 1638.897165][T22495]  ? _raw_spin_unlock_bh+0x4f/0x60
[ 1638.902333][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1638.907493][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1638.913341][T22495]  ? should_fail+0x79/0x9c0
[ 1638.917883][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1638.923049][T22495]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1638.929326][T22495]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1638.935432][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1638.940619][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1638.946482][T22495]  __msan_chain_origin+0xbd/0x140
[ 1638.951547][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1638.956710][T22495]  get_compat_msghdr+0x10c/0x280
[ 1638.961724][T22495]  ? do_recvmmsg+0x7c9/0x1200
[ 1638.966448][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1638.971175][T22495]  ? __schedule+0x176c/0x21c0
[ 1638.975888][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1638.981138][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1638.987520][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1638.992683][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1638.998558][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1639.003132][T22495]  ? filter_irq_stacks+0xb9/0x230
[ 1639.008247][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1639.013428][T22495]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1639.018334][T22495]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1639.024902][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1639.029661][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1639.036044][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1639.041119][T22495]  do_fast_syscall_32+0x33/0x70
[ 1639.046028][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1639.050769][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1639.057144][T22495] RIP: 0023:0xf7f8e549
[ 1639.061400][T22495] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1639.081046][T22495] RSP: 002b:00000000f7f685cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1639.089522][T22495] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0
[ 1639.097639][T22495] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000
[ 1639.105714][T22495] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1639.113876][T22495] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1639.121907][T22495] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1639.129935][T22495]  </TASK>
[ 1639.134335][T22495] Uninit was stored to memory at:
[ 1639.139468][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1639.145002][T22495]  get_compat_msghdr+0x10c/0x280
[ 1639.150000][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1639.154837][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1639.159431][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1639.164322][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1639.170735][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1639.175961][T22495]  do_fast_syscall_32+0x33/0x70
[ 1639.180970][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1639.185754][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1639.192254][T22495] 
[ 1639.194599][T22495] Uninit was stored to memory at:
[ 1639.199703][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1639.205001][T22495]  get_compat_msghdr+0x10c/0x280
[ 1639.210000][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1639.214916][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1639.219493][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1639.224410][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1639.230812][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1639.236083][T22495]  do_fast_syscall_32+0x33/0x70
[ 1639.241082][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1639.245839][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1639.252359][T22495] 
[ 1639.254704][T22495] Uninit was stored to memory at:
[ 1639.259787][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1639.265100][T22495]  get_compat_msghdr+0x10c/0x280
[ 1639.270093][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1639.274998][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1639.279603][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1639.284479][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1639.290880][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1639.296141][T22495]  do_fast_syscall_32+0x33/0x70
[ 1639.301055][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1639.305761][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1639.312242][T22495] 
[ 1639.314581][T22495] Uninit was stored to memory at:
[ 1639.319677][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1639.324987][T22495]  get_compat_msghdr+0x10c/0x280
[ 1639.329975][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1639.334856][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1639.339410][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1639.344290][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1639.350687][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1639.355930][T22495]  do_fast_syscall_32+0x33/0x70
[ 1639.360829][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1639.365485][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1639.372210][T22495] 
[ 1639.374549][T22495] Uninit was stored to memory at:
[ 1639.379654][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1639.384974][T22495]  get_compat_msghdr+0x10c/0x280
[ 1639.389980][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1639.394854][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1639.399422][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1639.404330][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1639.410734][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1639.415991][T22495]  do_fast_syscall_32+0x33/0x70
[ 1639.420923][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1639.425777][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1639.432718][T22495] 
[ 1639.435056][T22495] Uninit was stored to memory at:
[ 1639.440264][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1639.445572][T22495]  get_compat_msghdr+0x10c/0x280
[ 1639.450563][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1639.455465][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1639.460059][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1639.464965][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1639.471356][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1639.476539][T22495]  do_fast_syscall_32+0x33/0x70
[ 1639.481433][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1639.486124][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1639.492611][T22495] 
[ 1639.494952][T22495] Uninit was stored to memory at:
[ 1639.500165][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1639.505550][T22495]  get_compat_msghdr+0x10c/0x280
[ 1639.510547][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1639.515411][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1639.519972][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1639.524840][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1639.531234][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1639.536467][T22495]  do_fast_syscall_32+0x33/0x70
[ 1639.541374][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1639.546102][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1639.552591][T22495] 
[ 1639.554929][T22495] Local variable msg_sys created at:
[ 1639.560218][T22495]  do_recvmmsg+0xc9/0x1200
[ 1639.565106][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1639.688281][T22495] not chained 4080000 origins
[ 1639.693236][T22495] CPU: 0 PID: 22495 Comm: syz-executor.4 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1639.703445][T22495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1639.713528][T22495] Call Trace:
[ 1639.716810][T22495]  <TASK>
[ 1639.719741][T22495]  dump_stack_lvl+0x200/0x28c
[ 1639.724449][T22495]  dump_stack+0x29/0x2c
[ 1639.728639][T22495]  kmsan_internal_chain_origin+0x78/0x120
[ 1639.734390][T22495]  ? preempt_count_sub+0xfc/0x340
[ 1639.739445][T22495]  ? __local_bh_enable_ip+0xa8/0xe0
[ 1639.744665][T22495]  ? _raw_spin_unlock_bh+0x4f/0x60
[ 1639.749816][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1639.755013][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1639.760877][T22495]  ? should_fail+0x79/0x9c0
[ 1639.765399][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1639.770547][T22495]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1639.776821][T22495]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1639.782919][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1639.788151][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1639.794082][T22495]  __msan_chain_origin+0xbd/0x140
[ 1639.799154][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1639.804331][T22495]  get_compat_msghdr+0x10c/0x280
[ 1639.809348][T22495]  ? do_recvmmsg+0x7c9/0x1200
[ 1639.814084][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1639.818930][T22495]  ? __schedule+0x176c/0x21c0
[ 1639.823665][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1639.828809][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1639.834731][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1639.839915][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1639.845767][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1639.850342][T22495]  ? filter_irq_stacks+0xb9/0x230
[ 1639.855419][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1639.860591][T22495]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1639.865385][T22495]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1639.872011][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1639.876726][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1639.883184][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1639.888246][T22495]  do_fast_syscall_32+0x33/0x70
[ 1639.893132][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1639.897655][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1639.904011][T22495] RIP: 0023:0xf7f8e549
[ 1639.908109][T22495] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1639.928635][T22495] RSP: 002b:00000000f7f685cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1639.937082][T22495] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0
[ 1639.945270][T22495] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000
[ 1639.953263][T22495] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1639.961376][T22495] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1639.969592][T22495] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1639.977609][T22495]  </TASK>
[ 1639.986828][T22495] Uninit was stored to memory at:
[ 1639.993128][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1639.998437][T22495]  get_compat_msghdr+0x10c/0x280
[ 1640.003555][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1640.008318][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1640.013011][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1640.017748][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1640.024387][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1640.029475][T22495]  do_fast_syscall_32+0x33/0x70
[ 1640.034536][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1640.039097][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1640.045756][T22495] 
[ 1640.048104][T22495] Uninit was stored to memory at:
[ 1640.053365][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1640.058553][T22495]  get_compat_msghdr+0x10c/0x280
[ 1640.063770][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1640.068511][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1640.073271][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1640.078009][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1640.084608][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1640.089691][T22495]  do_fast_syscall_32+0x33/0x70
[ 1640.094729][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1640.099281][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1640.105839][T22495] 
[ 1640.108180][T22495] Uninit was stored to memory at:
[ 1640.113553][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1640.118723][T22495]  get_compat_msghdr+0x10c/0x280
[ 1640.123898][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1640.128646][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1640.133397][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1640.138140][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1640.144840][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1640.149933][T22495]  do_fast_syscall_32+0x33/0x70
[ 1640.154974][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1640.159527][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1640.166086][T22495] 
[ 1640.168452][T22495] Uninit was stored to memory at:
[ 1640.173705][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1640.178865][T22495]  get_compat_msghdr+0x10c/0x280
[ 1640.184142][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1640.188934][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1640.193657][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1640.198388][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1640.205155][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1640.210226][T22495]  do_fast_syscall_32+0x33/0x70
[ 1640.215306][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1640.219857][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1640.226418][T22495] 
[ 1640.228759][T22495] Uninit was stored to memory at:
[ 1640.233983][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1640.239153][T22495]  get_compat_msghdr+0x10c/0x280
[ 1640.244342][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1640.249078][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1640.253811][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1640.258545][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1640.265057][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1640.270154][T22495]  do_fast_syscall_32+0x33/0x70
[ 1640.275260][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1640.279822][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1640.286401][T22495] 
[ 1640.288744][T22495] Uninit was stored to memory at:
[ 1640.294010][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1640.299170][T22495]  get_compat_msghdr+0x10c/0x280
[ 1640.304350][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1640.309104][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1640.313855][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1640.318584][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1640.325108][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1640.330180][T22495]  do_fast_syscall_32+0x33/0x70
[ 1640.335258][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1640.339807][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1640.346415][T22495] 
[ 1640.348763][T22495] Uninit was stored to memory at:
[ 1640.354028][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1640.359188][T22495]  get_compat_msghdr+0x10c/0x280
[ 1640.364352][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1640.369097][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1640.373779][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1640.378681][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1640.385201][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1640.390288][T22495]  do_fast_syscall_32+0x33/0x70
[ 1640.395397][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1640.399950][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1640.406507][T22495] 
[ 1640.408847][T22495] Local variable msg_sys created at:
[ 1640.414302][T22495]  do_recvmmsg+0xc9/0x1200
[ 1640.418770][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1640.548090][T22495] not chained 4090000 origins
[ 1640.553142][T22495] CPU: 1 PID: 22495 Comm: syz-executor.4 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1640.563339][T22495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1640.573403][T22495] Call Trace:
[ 1640.576693][T22495]  <TASK>
[ 1640.579621][T22495]  dump_stack_lvl+0x200/0x28c
[ 1640.584333][T22495]  dump_stack+0x29/0x2c
[ 1640.588500][T22495]  kmsan_internal_chain_origin+0x78/0x120
[ 1640.594252][T22495]  ? preempt_count_sub+0xfc/0x340
[ 1640.599298][T22495]  ? __local_bh_enable_ip+0xa8/0xe0
[ 1640.604518][T22495]  ? _raw_spin_unlock_bh+0x4f/0x60
[ 1640.609686][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1640.614854][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1640.620740][T22495]  ? should_fail+0x79/0x9c0
[ 1640.625366][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1640.630531][T22495]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1640.636803][T22495]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1640.642897][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1640.648154][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1640.654013][T22495]  __msan_chain_origin+0xbd/0x140
[ 1640.659102][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1640.664282][T22495]  get_compat_msghdr+0x10c/0x280
[ 1640.669276][T22495]  ? do_recvmmsg+0x7c9/0x1200
[ 1640.674009][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1640.678724][T22495]  ? __schedule+0x176c/0x21c0
[ 1640.683425][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1640.688564][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1640.694399][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1640.699532][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1640.705375][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1640.709934][T22495]  ? filter_irq_stacks+0xb9/0x230
[ 1640.714997][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1640.720147][T22495]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1640.724938][T22495]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1640.731514][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1640.736246][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1640.742614][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1640.747660][T22495]  do_fast_syscall_32+0x33/0x70
[ 1640.752537][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1640.757089][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1640.763479][T22495] RIP: 0023:0xf7f8e549
[ 1640.767560][T22495] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1640.787271][T22495] RSP: 002b:00000000f7f685cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1640.795710][T22495] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0
[ 1640.803692][T22495] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000
[ 1640.811686][T22495] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1640.819681][T22495] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1640.827696][T22495] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1640.835708][T22495]  </TASK>
[ 1640.840232][T22495] Uninit was stored to memory at:
[ 1640.845597][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1640.850764][T22495]  get_compat_msghdr+0x10c/0x280
[ 1640.855894][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1640.860630][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1640.865309][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1640.870063][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1640.876596][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1640.881668][T22495]  do_fast_syscall_32+0x33/0x70
[ 1640.886736][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1640.891281][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1640.897835][T22495] 
[ 1640.900169][T22495] Uninit was stored to memory at:
[ 1640.905392][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1640.910546][T22495]  get_compat_msghdr+0x10c/0x280
[ 1640.915798][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1640.920524][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1640.925316][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1640.930043][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1640.936572][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1640.941647][T22495]  do_fast_syscall_32+0x33/0x70
[ 1640.946820][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1640.951384][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1640.957980][T22495] 
[ 1640.960320][T22495] Uninit was stored to memory at:
[ 1640.965573][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1640.970731][T22495]  get_compat_msghdr+0x10c/0x280
[ 1640.975851][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1640.980587][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1640.985256][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1640.989983][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1640.996638][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1641.001710][T22495]  do_fast_syscall_32+0x33/0x70
[ 1641.006752][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1641.011297][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1641.017821][T22495] 
[ 1641.020154][T22495] Uninit was stored to memory at:
[ 1641.025374][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1641.030530][T22495]  get_compat_msghdr+0x10c/0x280
[ 1641.035700][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1641.040435][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1641.045167][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1641.049897][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1641.056465][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1641.061543][T22495]  do_fast_syscall_32+0x33/0x70
[ 1641.066625][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1641.071185][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1641.077714][T22495] 
[ 1641.080049][T22495] Uninit was stored to memory at:
[ 1641.085270][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1641.090430][T22495]  get_compat_msghdr+0x10c/0x280
[ 1641.095565][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1641.100294][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1641.105031][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1641.109769][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1641.116428][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1641.121524][T22495]  do_fast_syscall_32+0x33/0x70
[ 1641.126559][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1641.131116][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1641.137703][T22495] 
[ 1641.140042][T22495] Uninit was stored to memory at:
[ 1641.145311][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1641.150474][T22495]  get_compat_msghdr+0x10c/0x280
[ 1641.155810][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1641.160545][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1641.165401][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1641.170143][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1641.176750][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1641.181941][T22495]  do_fast_syscall_32+0x33/0x70
[ 1641.186855][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1641.191422][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1641.197969][T22495] 
[ 1641.200302][T22495] Uninit was stored to memory at:
[ 1641.205568][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1641.210732][T22495]  get_compat_msghdr+0x10c/0x280
[ 1641.215901][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1641.220640][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1641.225317][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1641.230141][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1641.236698][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1641.241883][T22495]  do_fast_syscall_32+0x33/0x70
[ 1641.246788][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1641.251333][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1641.257865][T22495] 
[ 1641.260195][T22495] Local variable msg_sys created at:
[ 1641.265620][T22495]  do_recvmmsg+0xc9/0x1200
[ 1641.270104][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1641.389976][T22495] not chained 4100000 origins
[ 1641.394859][T22495] CPU: 0 PID: 22495 Comm: syz-executor.4 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1641.405058][T22495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1641.415139][T22495] Call Trace:
[ 1641.418424][T22495]  <TASK>
[ 1641.421351][T22495]  dump_stack_lvl+0x200/0x28c
[ 1641.426060][T22495]  dump_stack+0x29/0x2c
[ 1641.430261][T22495]  kmsan_internal_chain_origin+0x78/0x120
[ 1641.436019][T22495]  ? preempt_count_sub+0xfc/0x340
[ 1641.441074][T22495]  ? __local_bh_enable_ip+0xa8/0xe0
[ 1641.446297][T22495]  ? _raw_spin_unlock_bh+0x4f/0x60
[ 1641.451466][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1641.456612][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1641.462472][T22495]  ? should_fail+0x79/0x9c0
[ 1641.467016][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1641.472178][T22495]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1641.478464][T22495]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1641.484577][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1641.489750][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1641.495667][T22495]  __msan_chain_origin+0xbd/0x140
[ 1641.500724][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1641.505888][T22495]  get_compat_msghdr+0x10c/0x280
[ 1641.510881][T22495]  ? do_recvmmsg+0x7c9/0x1200
[ 1641.515607][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1641.520399][T22495]  ? __schedule+0x176c/0x21c0
[ 1641.525110][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1641.530271][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1641.536110][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1641.541256][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1641.547104][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1641.551673][T22495]  ? filter_irq_stacks+0xb9/0x230
[ 1641.556932][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1641.562088][T22495]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1641.566916][T22495]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1641.573482][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1641.578241][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1641.584617][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1641.589781][T22495]  do_fast_syscall_32+0x33/0x70
[ 1641.594675][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1641.599199][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1641.605557][T22495] RIP: 0023:0xf7f8e549
[ 1641.609695][T22495] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1641.629326][T22495] RSP: 002b:00000000f7f685cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1641.637767][T22495] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0
[ 1641.645764][T22495] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000
[ 1641.653764][T22495] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1641.661835][T22495] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1641.669826][T22495] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1641.677823][T22495]  </TASK>
[ 1641.683749][T22495] Uninit was stored to memory at:
[ 1641.688859][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1641.694466][T22495]  get_compat_msghdr+0x10c/0x280
[ 1641.699466][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1641.704302][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1641.708856][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1641.713688][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1641.720079][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1641.725252][T22495]  do_fast_syscall_32+0x33/0x70
[ 1641.730240][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1641.734950][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1641.741359][T22495] 
[ 1641.743803][T22495] Uninit was stored to memory at:
[ 1641.748934][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1641.754241][T22495]  get_compat_msghdr+0x10c/0x280
[ 1641.759228][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1641.764076][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1641.768640][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1641.773517][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1641.779906][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1641.785103][T22495]  do_fast_syscall_32+0x33/0x70
[ 1641.790011][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1641.794713][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1641.801109][T22495] 
[ 1641.803570][T22495] Uninit was stored to memory at:
[ 1641.808655][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1641.813960][T22495]  get_compat_msghdr+0x10c/0x280
[ 1641.818952][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1641.823826][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1641.828396][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1641.833257][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1641.839646][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1641.844904][T22495]  do_fast_syscall_32+0x33/0x70
[ 1641.849808][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1641.854539][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1641.860942][T22495] 
[ 1641.863431][T22495] Uninit was stored to memory at:
[ 1641.868539][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1641.873851][T22495]  get_compat_msghdr+0x10c/0x280
[ 1641.878858][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1641.883728][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1641.888287][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1641.893158][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1641.899541][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1641.904767][T22495]  do_fast_syscall_32+0x33/0x70
[ 1641.909675][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1641.914440][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1641.920832][T22495] 
[ 1641.923318][T22495] Uninit was stored to memory at:
[ 1641.928541][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1641.933887][T22495]  get_compat_msghdr+0x10c/0x280
[ 1641.938892][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1641.943782][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1641.948345][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1641.953242][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1641.959639][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1641.964911][T22495]  do_fast_syscall_32+0x33/0x70
[ 1641.969822][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1641.974565][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1641.980980][T22495] 
[ 1641.983463][T22495] Uninit was stored to memory at:
[ 1641.988549][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1641.993870][T22495]  get_compat_msghdr+0x10c/0x280
[ 1641.999019][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1642.003920][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1642.008478][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1642.013358][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1642.019748][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1642.024993][T22495]  do_fast_syscall_32+0x33/0x70
[ 1642.030037][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1642.034749][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1642.041136][T22495] 
[ 1642.043643][T22495] Uninit was stored to memory at:
[ 1642.048729][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1642.054021][T22495]  get_compat_msghdr+0x10c/0x280
[ 1642.059012][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1642.063914][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1642.068466][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1642.073342][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1642.079728][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1642.084988][T22495]  do_fast_syscall_32+0x33/0x70
[ 1642.089889][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1642.094584][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1642.100985][T22495] 
[ 1642.103486][T22495] Local variable msg_sys created at:
[ 1642.108777][T22495]  do_recvmmsg+0xc9/0x1200
[ 1642.113396][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1642.230310][T22495] not chained 4110000 origins
[ 1642.235376][T22495] CPU: 0 PID: 22495 Comm: syz-executor.4 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1642.245574][T22495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1642.255658][T22495] Call Trace:
[ 1642.258998][T22495]  <TASK>
[ 1642.261962][T22495]  dump_stack_lvl+0x200/0x28c
[ 1642.266708][T22495]  dump_stack+0x29/0x2c
[ 1642.270902][T22495]  kmsan_internal_chain_origin+0x78/0x120
[ 1642.276695][T22495]  ? preempt_count_sub+0xfc/0x340
[ 1642.281775][T22495]  ? __local_bh_enable_ip+0xa8/0xe0
[ 1642.287019][T22495]  ? _raw_spin_unlock_bh+0x4f/0x60
[ 1642.292177][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1642.297343][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1642.303187][T22495]  ? should_fail+0x79/0x9c0
[ 1642.307730][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1642.312880][T22495]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1642.319200][T22495]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1642.325305][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1642.330459][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1642.336307][T22495]  __msan_chain_origin+0xbd/0x140
[ 1642.341395][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1642.346551][T22495]  get_compat_msghdr+0x10c/0x280
[ 1642.351606][T22495]  ? do_recvmmsg+0x7c9/0x1200
[ 1642.356318][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1642.361062][T22495]  ? __schedule+0x176c/0x21c0
[ 1642.365872][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1642.371022][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1642.376864][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1642.382122][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1642.387989][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1642.392531][T22495]  ? filter_irq_stacks+0xb9/0x230
[ 1642.397706][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1642.402880][T22495]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1642.407721][T22495]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1642.414286][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1642.419031][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1642.425403][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1642.430461][T22495]  do_fast_syscall_32+0x33/0x70
[ 1642.435343][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1642.439914][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1642.446297][T22495] RIP: 0023:0xf7f8e549
[ 1642.450385][T22495] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1642.470102][T22495] RSP: 002b:00000000f7f685cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1642.478556][T22495] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0
[ 1642.486566][T22495] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000
[ 1642.494573][T22495] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1642.502577][T22495] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1642.510596][T22495] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1642.518602][T22495]  </TASK>
[ 1642.524263][T22495] Uninit was stored to memory at:
[ 1642.529460][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1642.535010][T22495]  get_compat_msghdr+0x10c/0x280
[ 1642.540006][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1642.544850][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1642.549410][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1642.554304][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1642.560694][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1642.565917][T22495]  do_fast_syscall_32+0x33/0x70
[ 1642.570914][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1642.575629][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1642.582119][T22495] 
[ 1642.584451][T22495] Uninit was stored to memory at:
[ 1642.589529][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1642.594849][T22495]  get_compat_msghdr+0x10c/0x280
[ 1642.599837][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1642.604726][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1642.609301][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1642.614192][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1642.620583][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1642.625821][T22495]  do_fast_syscall_32+0x33/0x70
[ 1642.630813][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1642.635506][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1642.641983][T22495] 
[ 1642.644317][T22495] Uninit was stored to memory at:
[ 1642.649393][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1642.654695][T22495]  get_compat_msghdr+0x10c/0x280
[ 1642.659705][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1642.664580][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1642.669143][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1642.674030][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1642.680439][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1642.685673][T22495]  do_fast_syscall_32+0x33/0x70
[ 1642.690568][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1642.695281][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1642.701661][T22495] 
[ 1642.704153][T22495] Uninit was stored to memory at:
[ 1642.709235][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1642.714533][T22495]  get_compat_msghdr+0x10c/0x280
[ 1642.719554][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1642.724460][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1642.729015][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1642.733967][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1642.740359][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1642.745601][T22495]  do_fast_syscall_32+0x33/0x70
[ 1642.750514][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1642.755228][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1642.761614][T22495] 
[ 1642.764163][T22495] Uninit was stored to memory at:
[ 1642.769334][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1642.774643][T22495]  get_compat_msghdr+0x10c/0x280
[ 1642.779639][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1642.784494][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1642.789047][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1642.793911][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1642.800819][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1642.806021][T22495]  do_fast_syscall_32+0x33/0x70
[ 1642.810919][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1642.815601][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1642.822113][T22495] 
[ 1642.824460][T22495] Uninit was stored to memory at:
[ 1642.829549][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1642.834858][T22495]  get_compat_msghdr+0x10c/0x280
[ 1642.839851][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1642.844729][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1642.849279][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1642.854144][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1642.860532][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1642.865734][T22495]  do_fast_syscall_32+0x33/0x70
[ 1642.870632][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1642.875325][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1642.881708][T22495] 
[ 1642.884159][T22495] Uninit was stored to memory at:
[ 1642.889242][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1642.894541][T22495]  get_compat_msghdr+0x10c/0x280
[ 1642.899535][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1642.904460][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1642.909012][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1642.913880][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1642.920281][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1642.925479][T22495]  do_fast_syscall_32+0x33/0x70
[ 1642.930372][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1642.935052][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1642.941434][T22495] 
[ 1642.943884][T22495] Local variable msg_sys created at:
[ 1642.949173][T22495]  do_recvmmsg+0xc9/0x1200
[ 1642.953774][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1643.069465][T22495] not chained 4120000 origins
[ 1643.074549][T22495] CPU: 1 PID: 22495 Comm: syz-executor.4 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1643.084749][T22495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1643.094849][T22495] Call Trace:
[ 1643.098180][T22495]  <TASK>
[ 1643.101127][T22495]  dump_stack_lvl+0x200/0x28c
[ 1643.105853][T22495]  dump_stack+0x29/0x2c
[ 1643.110035][T22495]  kmsan_internal_chain_origin+0x78/0x120
[ 1643.115798][T22495]  ? preempt_count_sub+0xfc/0x340
[ 1643.120860][T22495]  ? __local_bh_enable_ip+0xa8/0xe0
[ 1643.126100][T22495]  ? _raw_spin_unlock_bh+0x4f/0x60
[ 1643.131254][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1643.136404][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1643.142279][T22495]  ? should_fail+0x79/0x9c0
[ 1643.146819][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1643.151970][T22495]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1643.158276][T22495]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1643.164513][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1643.169685][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1643.175533][T22495]  __msan_chain_origin+0xbd/0x140
[ 1643.180596][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1643.185782][T22495]  get_compat_msghdr+0x10c/0x280
[ 1643.190795][T22495]  ? do_recvmmsg+0x7c9/0x1200
[ 1643.195545][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1643.200276][T22495]  ? __schedule+0x176c/0x21c0
[ 1643.205009][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1643.210151][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1643.215986][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1643.221132][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1643.226978][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1643.231514][T22495]  ? filter_irq_stacks+0xb9/0x230
[ 1643.236675][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1643.241863][T22495]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1643.246660][T22495]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1643.253240][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1643.257971][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1643.264361][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1643.269419][T22495]  do_fast_syscall_32+0x33/0x70
[ 1643.274291][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1643.278838][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1643.285232][T22495] RIP: 0023:0xf7f8e549
[ 1643.289338][T22495] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1643.309082][T22495] RSP: 002b:00000000f7f685cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1643.317537][T22495] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0
[ 1643.325537][T22495] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000
[ 1643.333524][T22495] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1643.341533][T22495] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1643.349530][T22495] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1643.357531][T22495]  </TASK>
[ 1643.362054][T22495] Uninit was stored to memory at:
[ 1643.367160][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1643.372759][T22495]  get_compat_msghdr+0x10c/0x280
[ 1643.377801][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1643.382664][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1643.387243][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1643.392102][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1643.398490][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1643.403784][T22495]  do_fast_syscall_32+0x33/0x70
[ 1643.408680][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1643.413353][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1643.419836][T22495] 
[ 1643.422347][T22495] Uninit was stored to memory at:
[ 1643.427428][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1643.432831][T22495]  get_compat_msghdr+0x10c/0x280
[ 1643.437815][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1643.442679][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1643.447336][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1643.452218][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1643.458601][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1643.463794][T22495]  do_fast_syscall_32+0x33/0x70
[ 1643.468726][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1643.473411][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1643.479798][T22495] 
[ 1643.482326][T22495] Uninit was stored to memory at:
[ 1643.487430][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1643.492911][T22495]  get_compat_msghdr+0x10c/0x280
[ 1643.497924][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1643.502820][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1643.507393][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1643.512312][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1643.518708][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1643.524007][T22495]  do_fast_syscall_32+0x33/0x70
[ 1643.529007][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1643.533952][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1643.540436][T22495] 
[ 1643.543104][T22495] Uninit was stored to memory at:
[ 1643.548196][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1643.553552][T22495]  get_compat_msghdr+0x10c/0x280
[ 1643.558542][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1643.563424][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1643.567998][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1643.572916][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1643.579314][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1643.584530][T22495]  do_fast_syscall_32+0x33/0x70
[ 1643.589452][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1643.594311][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1643.600703][T22495] 
[ 1643.603235][T22495] Uninit was stored to memory at:
[ 1643.608324][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1643.613666][T22495]  get_compat_msghdr+0x10c/0x280
[ 1643.618661][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1643.623555][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1643.628240][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1643.633172][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1643.639659][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1643.644956][T22495]  do_fast_syscall_32+0x33/0x70
[ 1643.649874][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1643.654577][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1643.661086][T22495] 
[ 1643.663611][T22495] Uninit was stored to memory at:
[ 1643.668846][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1643.674286][T22495]  get_compat_msghdr+0x10c/0x280
[ 1643.679297][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1643.684222][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1643.688790][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1643.693697][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1643.700085][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1643.705327][T22495]  do_fast_syscall_32+0x33/0x70
[ 1643.710241][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1643.714934][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1643.721337][T22495] 
[ 1643.723815][T22495] Uninit was stored to memory at:
[ 1643.728918][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1643.734264][T22495]  get_compat_msghdr+0x10c/0x280
[ 1643.739256][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1643.744228][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1643.748870][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1643.753741][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1643.760206][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1643.765476][T22495]  do_fast_syscall_32+0x33/0x70
[ 1643.770379][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1643.775145][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1643.781526][T22495] 
[ 1643.783999][T22495] Local variable msg_sys created at:
[ 1643.789311][T22495]  do_recvmmsg+0xc9/0x1200
[ 1643.794050][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1643.924704][T22495] not chained 4130000 origins
[ 1643.929421][T22495] CPU: 0 PID: 22495 Comm: syz-executor.4 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1643.939697][T22495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1643.949796][T22495] Call Trace:
[ 1643.953187][T22495]  <TASK>
[ 1643.956147][T22495]  dump_stack_lvl+0x200/0x28c
[ 1643.960879][T22495]  dump_stack+0x29/0x2c
[ 1643.965147][T22495]  kmsan_internal_chain_origin+0x78/0x120
[ 1643.970908][T22495]  ? preempt_count_sub+0xfc/0x340
[ 1643.976050][T22495]  ? __local_bh_enable_ip+0xa8/0xe0
[ 1643.981292][T22495]  ? _raw_spin_unlock_bh+0x4f/0x60
[ 1643.986457][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1643.991618][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1643.997466][T22495]  ? should_fail+0x79/0x9c0
[ 1644.002024][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1644.007195][T22495]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1644.013575][T22495]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1644.019725][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1644.024880][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1644.030765][T22495]  __msan_chain_origin+0xbd/0x140
[ 1644.035830][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1644.041012][T22495]  get_compat_msghdr+0x10c/0x280
[ 1644.046001][T22495]  ? do_recvmmsg+0x7c9/0x1200
[ 1644.050736][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1644.055458][T22495]  ? __schedule+0x176c/0x21c0
[ 1644.060186][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1644.065339][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1644.071233][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1644.076398][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1644.082271][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1644.086830][T22495]  ? filter_irq_stacks+0xb9/0x230
[ 1644.091905][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1644.097083][T22495]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1644.101922][T22495]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1644.108497][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1644.113242][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1644.119655][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1644.124718][T22495]  do_fast_syscall_32+0x33/0x70
[ 1644.129601][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1644.134150][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1644.140537][T22495] RIP: 0023:0xf7f8e549
[ 1644.144728][T22495] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1644.164367][T22495] RSP: 002b:00000000f7f685cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1644.172829][T22495] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0
[ 1644.180921][T22495] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000
[ 1644.188925][T22495] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1644.196962][T22495] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1644.205094][T22495] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1644.213126][T22495]  </TASK>
[ 1644.222416][T22495] Uninit was stored to memory at:
[ 1644.227542][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1644.239463][T22495]  get_compat_msghdr+0x10c/0x280
[ 1644.244603][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1644.249342][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1644.254041][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1644.258784][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1644.265290][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1644.270370][T22495]  do_fast_syscall_32+0x33/0x70
[ 1644.275411][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1644.279965][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1644.286516][T22495] 
[ 1644.288855][T22495] Uninit was stored to memory at:
[ 1644.294084][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1644.299259][T22495]  get_compat_msghdr+0x10c/0x280
[ 1644.304408][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1644.309167][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1644.313858][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1644.319126][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1644.325759][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1644.330917][T22495]  do_fast_syscall_32+0x33/0x70
[ 1644.335935][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1644.340492][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1644.347037][T22495] 
[ 1644.349380][T22495] Uninit was stored to memory at:
[ 1644.354653][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1644.359831][T22495]  get_compat_msghdr+0x10c/0x280
[ 1644.364981][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1644.369714][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1644.374381][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1644.379112][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1644.385659][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1644.390763][T22495]  do_fast_syscall_32+0x33/0x70
[ 1644.395796][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1644.400349][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1644.406981][T22495] 
[ 1644.409328][T22495] Uninit was stored to memory at:
[ 1644.414568][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1644.419728][T22495]  get_compat_msghdr+0x10c/0x280
[ 1644.424868][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1644.429605][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1644.434290][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1644.439027][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1644.445571][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1644.450644][T22495]  do_fast_syscall_32+0x33/0x70
[ 1644.455649][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1644.460203][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1644.466745][T22495] 
[ 1644.469086][T22495] Uninit was stored to memory at:
[ 1644.474308][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1644.479465][T22495]  get_compat_msghdr+0x10c/0x280
[ 1644.484604][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1644.489332][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1644.494088][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1644.498819][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1644.505444][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1644.510538][T22495]  do_fast_syscall_32+0x33/0x70
[ 1644.515553][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1644.520107][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1644.526655][T22495] 
[ 1644.528991][T22495] Uninit was stored to memory at:
[ 1644.534209][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1644.539373][T22495]  get_compat_msghdr+0x10c/0x280
[ 1644.544546][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1644.549277][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1644.553983][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1644.558713][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1644.565262][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1644.570333][T22495]  do_fast_syscall_32+0x33/0x70
[ 1644.575384][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1644.579939][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1644.586475][T22495] 
[ 1644.588815][T22495] Uninit was stored to memory at:
[ 1644.594127][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1644.599309][T22495]  get_compat_msghdr+0x10c/0x280
[ 1644.604461][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1644.609201][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1644.613905][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1644.618645][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1644.625196][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1644.630361][T22495]  do_fast_syscall_32+0x33/0x70
[ 1644.635372][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1644.639945][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1644.646508][T22495] 
[ 1644.648851][T22495] Local variable msg_sys created at:
[ 1644.655330][T22495]  do_recvmmsg+0xc9/0x1200
[ 1644.659949][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1644.801198][T22495] not chained 4140000 origins
[ 1644.806388][T22495] CPU: 1 PID: 22495 Comm: syz-executor.4 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1644.816701][T22495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1644.826787][T22495] Call Trace:
[ 1644.830082][T22495]  <TASK>
[ 1644.833035][T22495]  dump_stack_lvl+0x200/0x28c
[ 1644.837754][T22495]  dump_stack+0x29/0x2c
[ 1644.841944][T22495]  kmsan_internal_chain_origin+0x78/0x120
[ 1644.847697][T22495]  ? preempt_count_sub+0xfc/0x340
[ 1644.852747][T22495]  ? __local_bh_enable_ip+0xa8/0xe0
[ 1644.857965][T22495]  ? _raw_spin_unlock_bh+0x4f/0x60
[ 1644.863212][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1644.868374][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1644.874240][T22495]  ? should_fail+0x79/0x9c0
[ 1644.878758][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1644.883894][T22495]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1644.890177][T22495]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1644.896292][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1644.901439][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1644.907284][T22495]  __msan_chain_origin+0xbd/0x140
[ 1644.912339][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1644.917514][T22495]  get_compat_msghdr+0x10c/0x280
[ 1644.922504][T22495]  ? do_recvmmsg+0x7c9/0x1200
[ 1644.927246][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1644.931987][T22495]  ? __schedule+0x176c/0x21c0
[ 1644.936799][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1644.941964][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1644.947824][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1644.952987][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1644.958834][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1644.963493][T22495]  ? filter_irq_stacks+0xb9/0x230
[ 1644.968601][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1644.973779][T22495]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1644.978576][T22495]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1644.985129][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1644.989846][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1644.996223][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1645.001289][T22495]  do_fast_syscall_32+0x33/0x70
[ 1645.006371][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1645.010927][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1645.017310][T22495] RIP: 0023:0xf7f8e549
[ 1645.021415][T22495] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1645.041071][T22495] RSP: 002b:00000000f7f685cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1645.049511][T22495] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0
[ 1645.057499][T22495] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000
[ 1645.065486][T22495] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1645.073580][T22495] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1645.081598][T22495] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1645.089612][T22495]  </TASK>
[ 1645.094512][T22495] Uninit was stored to memory at:
[ 1645.099623][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1645.105145][T22495]  get_compat_msghdr+0x10c/0x280
[ 1645.110141][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1645.115006][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1645.119563][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1645.124440][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1645.130858][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1645.136090][T22495]  do_fast_syscall_32+0x33/0x70
[ 1645.141006][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1645.145756][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1645.152221][T22495] 
[ 1645.154546][T22495] Uninit was stored to memory at:
[ 1645.159620][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1645.165120][T22495]  get_compat_msghdr+0x10c/0x280
[ 1645.170113][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1645.175029][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1645.179652][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1645.184555][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1645.190952][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1645.196192][T22495]  do_fast_syscall_32+0x33/0x70
[ 1645.201112][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1645.205798][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1645.212453][T22495] 
[ 1645.214805][T22495] Uninit was stored to memory at:
[ 1645.219895][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1645.225228][T22495]  get_compat_msghdr+0x10c/0x280
[ 1645.230219][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1645.235102][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1645.239757][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1645.244744][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1645.251130][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1645.256330][T22495]  do_fast_syscall_32+0x33/0x70
[ 1645.261225][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1645.265928][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1645.272425][T22495] 
[ 1645.274769][T22495] Uninit was stored to memory at:
[ 1645.279844][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1645.285134][T22495]  get_compat_msghdr+0x10c/0x280
[ 1645.290125][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1645.295178][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1645.299743][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1645.304659][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1645.311049][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1645.316259][T22495]  do_fast_syscall_32+0x33/0x70
[ 1645.321161][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1645.325889][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1645.332450][T22495] 
[ 1645.334795][T22495] Uninit was stored to memory at:
[ 1645.339896][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1645.345285][T22495]  get_compat_msghdr+0x10c/0x280
[ 1645.350259][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1645.355228][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1645.359786][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1645.364690][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1645.371101][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1645.376429][T22495]  do_fast_syscall_32+0x33/0x70
[ 1645.381355][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1645.386071][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1645.392651][T22495] 
[ 1645.394995][T22495] Uninit was stored to memory at:
[ 1645.400083][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1645.405386][T22495]  get_compat_msghdr+0x10c/0x280
[ 1645.410384][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1645.415248][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1645.419802][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1645.424722][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1645.431213][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1645.436645][T22495]  do_fast_syscall_32+0x33/0x70
[ 1645.441632][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1645.446434][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1645.452894][T22495] 
[ 1645.455220][T22495] Uninit was stored to memory at:
[ 1645.460299][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1645.465630][T22495]  get_compat_msghdr+0x10c/0x280
[ 1645.470624][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1645.475428][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1645.479959][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1645.484849][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1645.491246][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1645.496548][T22495]  do_fast_syscall_32+0x33/0x70
[ 1645.501567][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1645.506264][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1645.512845][T22495] 
[ 1645.515180][T22495] Local variable msg_sys created at:
[ 1645.520555][T22495]  do_recvmmsg+0xc9/0x1200
[ 1645.525208][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1645.657476][T22495] not chained 4150000 origins
[ 1645.662351][T22495] CPU: 1 PID: 22495 Comm: syz-executor.4 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1645.672527][T22495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1645.682772][T22495] Call Trace:
[ 1645.686055][T22495]  <TASK>
[ 1645.688995][T22495]  dump_stack_lvl+0x200/0x28c
[ 1645.693730][T22495]  dump_stack+0x29/0x2c
[ 1645.697928][T22495]  kmsan_internal_chain_origin+0x78/0x120
[ 1645.703678][T22495]  ? preempt_count_sub+0xfc/0x340
[ 1645.708836][T22495]  ? __local_bh_enable_ip+0xa8/0xe0
[ 1645.714050][T22495]  ? _raw_spin_unlock_bh+0x4f/0x60
[ 1645.719189][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1645.724338][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1645.730210][T22495]  ? should_fail+0x79/0x9c0
[ 1645.734749][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1645.739888][T22495]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1645.746198][T22495]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1645.752308][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1645.757542][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1645.763467][T22495]  __msan_chain_origin+0xbd/0x140
[ 1645.768584][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1645.773849][T22495]  get_compat_msghdr+0x10c/0x280
[ 1645.778863][T22495]  ? do_recvmmsg+0x7c9/0x1200
[ 1645.783615][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1645.788357][T22495]  ? __schedule+0x176c/0x21c0
[ 1645.793184][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1645.798347][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1645.804212][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1645.809374][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1645.815381][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1645.819944][T22495]  ? filter_irq_stacks+0xb9/0x230
[ 1645.825046][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1645.830220][T22495]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1645.835019][T22495]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1645.841577][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1645.846319][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1645.852722][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1645.857797][T22495]  do_fast_syscall_32+0x33/0x70
[ 1645.862678][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1645.867217][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1645.873576][T22495] RIP: 0023:0xf7f8e549
[ 1645.877667][T22495] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1645.897317][T22495] RSP: 002b:00000000f7f685cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1645.905852][T22495] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0
[ 1645.913845][T22495] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000
[ 1645.921840][T22495] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1645.931778][T22495] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1645.939785][T22495] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1645.947810][T22495]  </TASK>
[ 1645.953961][T22495] Uninit was stored to memory at:
[ 1645.959076][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1645.965073][T22495]  get_compat_msghdr+0x10c/0x280
[ 1645.970086][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1645.975157][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1645.979762][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1645.984695][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1645.991109][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1645.996327][T22495]  do_fast_syscall_32+0x33/0x70
[ 1646.001575][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1646.006310][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1646.012799][T22495] 
[ 1646.015250][T22495] Uninit was stored to memory at:
[ 1646.021032][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1646.026324][T22495]  get_compat_msghdr+0x10c/0x280
[ 1646.031379][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1646.036249][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1646.040804][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1646.045700][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1646.052185][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1646.057258][T22495]  do_fast_syscall_32+0x33/0x70
[ 1646.062340][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1646.066889][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1646.074546][T22495] 
[ 1646.076879][T22495] Uninit was stored to memory at:
[ 1646.082135][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1646.087298][T22495]  get_compat_msghdr+0x10c/0x280
[ 1646.092429][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1646.097163][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1646.101709][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1646.106648][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1646.113215][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1646.118295][T22495]  do_fast_syscall_32+0x33/0x70
[ 1646.123325][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1646.127873][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1646.134545][T22495] 
[ 1646.136882][T22495] Uninit was stored to memory at:
[ 1646.142265][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1646.147423][T22495]  get_compat_msghdr+0x10c/0x280
[ 1646.152569][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1646.157306][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1646.162048][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1646.166785][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1646.173367][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1646.178439][T22495]  do_fast_syscall_32+0x33/0x70
[ 1646.183617][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1646.188163][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1646.194727][T22495] 
[ 1646.197075][T22495] Uninit was stored to memory at:
[ 1646.202362][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1646.207522][T22495]  get_compat_msghdr+0x10c/0x280
[ 1646.212695][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1646.217428][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1646.222267][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1646.227132][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1646.233700][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1646.238930][T22495]  do_fast_syscall_32+0x33/0x70
[ 1646.244038][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1646.248770][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1646.255329][T22495] 
[ 1646.257669][T22495] Uninit was stored to memory at:
[ 1646.262948][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1646.268118][T22495]  get_compat_msghdr+0x10c/0x280
[ 1646.273320][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1646.278058][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1646.282815][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1646.287559][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1646.294091][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1646.299175][T22495]  do_fast_syscall_32+0x33/0x70
[ 1646.304266][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1646.308821][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1646.315439][T22495] 
[ 1646.317781][T22495] Uninit was stored to memory at:
[ 1646.323065][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1646.328225][T22495]  get_compat_msghdr+0x10c/0x280
[ 1646.333376][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1646.338111][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1646.342884][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1646.347621][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1646.354147][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1646.359230][T22495]  do_fast_syscall_32+0x33/0x70
[ 1646.364312][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1646.368879][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1646.375428][T22495] 
[ 1646.377763][T22495] Local variable msg_sys created at:
[ 1646.383246][T22495]  do_recvmmsg+0xc9/0x1200
[ 1646.387717][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1646.506639][T22495] not chained 4160000 origins
[ 1646.511376][T22495] CPU: 1 PID: 22495 Comm: syz-executor.4 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1646.521566][T22495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1646.531846][T22495] Call Trace:
[ 1646.535161][T22495]  <TASK>
[ 1646.538091][T22495]  dump_stack_lvl+0x200/0x28c
[ 1646.542795][T22495]  dump_stack+0x29/0x2c
[ 1646.546980][T22495]  kmsan_internal_chain_origin+0x78/0x120
[ 1646.552741][T22495]  ? preempt_count_sub+0xfc/0x340
[ 1646.557816][T22495]  ? __local_bh_enable_ip+0xa8/0xe0
[ 1646.563055][T22495]  ? _raw_spin_unlock_bh+0x4f/0x60
[ 1646.568229][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1646.573491][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1646.579359][T22495]  ? should_fail+0x79/0x9c0
[ 1646.583988][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1646.589139][T22495]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1646.595410][T22495]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1646.601507][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1646.607257][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1646.613126][T22495]  __msan_chain_origin+0xbd/0x140
[ 1646.618180][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1646.623418][T22495]  get_compat_msghdr+0x10c/0x280
[ 1646.628399][T22495]  ? do_recvmmsg+0x7c9/0x1200
[ 1646.633112][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1646.637913][T22495]  ? __schedule+0x176c/0x21c0
[ 1646.642615][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1646.647761][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1646.653621][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1646.658791][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1646.664659][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1646.669392][T22495]  ? filter_irq_stacks+0xb9/0x230
[ 1646.674460][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1646.679607][T22495]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1646.684401][T22495]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1646.691000][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1646.695824][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1646.702222][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1646.707326][T22495]  do_fast_syscall_32+0x33/0x70
[ 1646.712330][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1646.716878][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1646.723269][T22495] RIP: 0023:0xf7f8e549
[ 1646.727346][T22495] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1646.746979][T22495] RSP: 002b:00000000f7f685cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1646.755471][T22495] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0
[ 1646.763485][T22495] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000
[ 1646.771574][T22495] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1646.779563][T22495] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1646.787545][T22495] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1646.795559][T22495]  </TASK>
[ 1646.800370][T22495] Uninit was stored to memory at:
[ 1646.805775][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1646.810970][T22495]  get_compat_msghdr+0x10c/0x280
[ 1646.816116][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1646.820851][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1646.825612][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1646.830337][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1646.836859][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1646.842034][T22495]  do_fast_syscall_32+0x33/0x70
[ 1646.846960][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1646.851594][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1646.858116][T22495] 
[ 1646.860455][T22495] Uninit was stored to memory at:
[ 1646.865764][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1646.870919][T22495]  get_compat_msghdr+0x10c/0x280
[ 1646.876087][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1646.880823][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1646.885539][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1646.890355][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1646.896864][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1646.902043][T22495]  do_fast_syscall_32+0x33/0x70
[ 1646.906946][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1646.911498][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1646.918077][T22495] 
[ 1646.920411][T22495] Uninit was stored to memory at:
[ 1646.925637][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1646.930792][T22495]  get_compat_msghdr+0x10c/0x280
[ 1646.935945][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1646.940684][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1646.945417][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1646.950145][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1646.956667][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1646.962044][T22495]  do_fast_syscall_32+0x33/0x70
[ 1646.966946][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1646.971499][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1646.978041][T22495] 
[ 1646.980375][T22495] Uninit was stored to memory at:
[ 1646.985660][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1646.990919][T22495]  get_compat_msghdr+0x10c/0x280
[ 1646.996115][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1647.000848][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1647.005559][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1647.010306][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1647.016826][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1647.022013][T22495]  do_fast_syscall_32+0x33/0x70
[ 1647.026912][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1647.031471][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1647.037972][T22495] 
[ 1647.040306][T22495] Uninit was stored to memory at:
[ 1647.045524][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1647.050695][T22495]  get_compat_msghdr+0x10c/0x280
[ 1647.055853][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1647.060587][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1647.065322][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1647.070062][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1647.076645][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1647.081724][T22495]  do_fast_syscall_32+0x33/0x70
[ 1647.086811][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1647.091376][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1647.097900][T22495] 
[ 1647.100233][T22495] Uninit was stored to memory at:
[ 1647.105502][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1647.110668][T22495]  get_compat_msghdr+0x10c/0x280
[ 1647.115861][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1647.120605][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1647.125309][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1647.130043][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1647.136565][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1647.141642][T22495]  do_fast_syscall_32+0x33/0x70
[ 1647.146676][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1647.151225][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1647.157785][T22495] 
[ 1647.160118][T22495] Uninit was stored to memory at:
[ 1647.165359][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1647.170521][T22495]  get_compat_msghdr+0x10c/0x280
[ 1647.175675][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1647.180402][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1647.185112][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1647.189838][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1647.196417][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1647.201489][T22495]  do_fast_syscall_32+0x33/0x70
[ 1647.206508][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1647.211054][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1647.217611][T22495] 
[ 1647.219947][T22495] Local variable msg_sys created at:
[ 1647.225407][T22495]  do_recvmmsg+0xc9/0x1200
[ 1647.229875][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1647.350429][T22495] not chained 4170000 origins
[ 1647.355242][T22495] CPU: 1 PID: 22495 Comm: syz-executor.4 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1647.365461][T22495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1647.375881][T22495] Call Trace:
[ 1647.379165][T22495]  <TASK>
[ 1647.382108][T22495]  dump_stack_lvl+0x200/0x28c
[ 1647.386841][T22495]  dump_stack+0x29/0x2c
[ 1647.391044][T22495]  kmsan_internal_chain_origin+0x78/0x120
[ 1647.396883][T22495]  ? preempt_count_sub+0xfc/0x340
[ 1647.401930][T22495]  ? __local_bh_enable_ip+0xa8/0xe0
[ 1647.407147][T22495]  ? _raw_spin_unlock_bh+0x4f/0x60
[ 1647.412295][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1647.417457][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1647.423318][T22495]  ? should_fail+0x79/0x9c0
[ 1647.427861][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1647.433056][T22495]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1647.439334][T22495]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1647.445455][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1647.450601][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1647.456457][T22495]  __msan_chain_origin+0xbd/0x140
[ 1647.461522][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1647.466685][T22495]  get_compat_msghdr+0x10c/0x280
[ 1647.471680][T22495]  ? do_recvmmsg+0x7c9/0x1200
[ 1647.476412][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1647.481131][T22495]  ? __schedule+0x176c/0x21c0
[ 1647.485880][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1647.491024][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1647.496878][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1647.502110][T22495]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1647.507947][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1647.512573][T22495]  ? filter_irq_stacks+0xb9/0x230
[ 1647.517666][T22495]  ? kmsan_get_metadata+0x33/0x220
[ 1647.522833][T22495]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1647.527639][T22495]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1647.534175][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1647.538889][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1647.545256][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1647.550404][T22495]  do_fast_syscall_32+0x33/0x70
[ 1647.556057][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1647.560666][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1647.567023][T22495] RIP: 0023:0xf7f8e549
[ 1647.571121][T22495] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1647.590862][T22495] RSP: 002b:00000000f7f685cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1647.599398][T22495] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200005c0
[ 1647.607393][T22495] RDX: 00000000ffffff62 RSI: 0000000000000000 RDI: 0000000000000000
[ 1647.615377][T22495] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1647.623375][T22495] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1647.631356][T22495] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1647.639346][T22495]  </TASK>
[ 1647.643772][T22495] Uninit was stored to memory at:
[ 1647.648901][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1647.654346][T22495]  get_compat_msghdr+0x10c/0x280
[ 1647.659337][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1647.664197][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1647.668757][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1647.673663][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1647.680055][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1647.685308][T22495]  do_fast_syscall_32+0x33/0x70
[ 1647.690230][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1647.694899][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1647.701278][T22495] 
[ 1647.703744][T22495] Uninit was stored to memory at:
[ 1647.708820][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1647.714097][T22495]  get_compat_msghdr+0x10c/0x280
[ 1647.719084][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1647.723990][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1647.728554][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1647.733482][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1647.739885][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1647.745105][T22495]  do_fast_syscall_32+0x33/0x70
[ 1647.750006][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1647.754736][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1647.761116][T22495] 
[ 1647.763624][T22495] Uninit was stored to memory at:
[ 1647.768793][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1647.774156][T22495]  get_compat_msghdr+0x10c/0x280
[ 1647.779146][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1647.784079][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1647.788637][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1647.793549][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1647.799937][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1647.805220][T22495]  do_fast_syscall_32+0x33/0x70
[ 1647.810117][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1647.814804][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1647.821185][T22495] 
[ 1647.823701][T22495] Uninit was stored to memory at:
[ 1647.828797][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1647.834100][T22495]  get_compat_msghdr+0x10c/0x280
[ 1647.839090][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1647.843963][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1647.848521][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1647.853425][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1647.859820][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1647.865038][T22495]  do_fast_syscall_32+0x33/0x70
[ 1647.869950][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1647.874621][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1647.881000][T22495] 
[ 1647.883511][T22495] Uninit was stored to memory at:
[ 1647.888613][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1647.894069][T22495]  get_compat_msghdr+0x10c/0x280
[ 1647.899062][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1647.903944][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1647.908505][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1647.913400][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1647.919788][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1647.925070][T22495]  do_fast_syscall_32+0x33/0x70
[ 1647.929976][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1647.934674][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1647.941149][T22495] 
[ 1647.943755][T22495] Uninit was stored to memory at:
[ 1647.948853][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1647.954249][T22495]  get_compat_msghdr+0x10c/0x280
[ 1647.959276][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1647.964205][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1647.968805][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1647.973718][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1647.980893][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1647.986127][T22495]  do_fast_syscall_32+0x33/0x70
[ 1647.991023][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1647.995743][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1648.002238][T22495] 
[ 1648.004581][T22495] Uninit was stored to memory at:
[ 1648.009688][T22495]  __get_compat_msghdr+0x6ea/0x9e0
[ 1648.015088][T22495]  get_compat_msghdr+0x10c/0x280
[ 1648.020092][T22495]  ___sys_recvmsg+0x289/0xb40
[ 1648.025032][T22495]  do_recvmmsg+0x7c9/0x1200
[ 1648.029602][T22495]  __sys_recvmmsg+0x520/0x6f0
[ 1648.034558][T22495]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1648.041062][T22495]  __do_fast_syscall_32+0x95/0xf0
[ 1648.046448][T22495]  do_fast_syscall_32+0x33/0x70
[ 1648.051533][T22495]  do_SYSENTER_32+0x1b/0x20
[ 1648.056224][T22495]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1648.063327][T22495] 
[ 1648.065669][T22495] Local variable msg_sys created at:
[ 1648.070975][T22495]  do_recvmmsg+0xc9/0x1200
[ 1648.075590][T22495]  __sys_recvmmsg+0x520/0x6f0
03:48:17 executing program 5:
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@ipv6_newroute={0x34, 0x18, 0x1, 0x0, 0x0, {}, [@RTA_OIF={0x8, 0x4, r1}, @RTA_ENCAP={0x8, 0x16, 0x0, 0x1, @MPLS_IPTUNNEL_DST={0x4}}, @RTA_ENCAP_TYPE={0x6, 0x15, 0x8}]}, 0x34}}, 0x0)

03:48:17 executing program 2:
openat2(0xffffffffffffffff, 0x0, &(0x7f0000000040)={0x4ac1, 0x0, 0x25}, 0x18)

03:48:17 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x80108907, 0x0)

03:48:17 executing program 0:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x2, &(0x7f0000000000)=[{0x6c}, {0x16}]})
syz_open_dev$audion(0x0, 0x0, 0x0)

03:48:17 executing program 3:
recvmsg(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000000)=""/30, 0x1e}], 0x1}, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x1, 0xbf, 0x7, 0x9}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x5, 0xc3, 0x5, 0x7}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000000100), 0x5, r1}, 0x38)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000180)={r1, 0x0, &(0x7f00000000c0)=""/159}, 0x20)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000900)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={0xffffffffffffffff, 0xe0, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000400), 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8, 0x0, 0x0}}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=@base={0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000000000), 0x8001, r0}, 0x38)

03:48:17 executing program 4:
recvmsg(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000000)=""/30, 0x1e}], 0x1}, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x1, 0xbf, 0x7, 0x9}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x5, 0xc3, 0x5, 0x7}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000000100), 0x5, r1}, 0x38)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000180)={r1, 0x0, &(0x7f00000000c0)=""/159}, 0x20)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000900)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={0xffffffffffffffff, 0xe0, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000400), 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8, 0x0, 0x0}}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=@base={0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000000000), 0x8001, r0}, 0x38)

[ 1648.528638][   T24] audit: type=1326 audit(2000000897.400:822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=22512 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f69549 code=0x0
03:48:17 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x80108907, 0x0)

03:48:17 executing program 2:
openat2(0xffffffffffffffff, 0x0, &(0x7f0000000040)={0x4ac1, 0x0, 0x25}, 0x18)

03:48:17 executing program 5:
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@ipv6_newroute={0x34, 0x18, 0x1, 0x0, 0x0, {}, [@RTA_OIF={0x8, 0x4, r1}, @RTA_ENCAP={0x8, 0x16, 0x0, 0x1, @MPLS_IPTUNNEL_DST={0x4}}, @RTA_ENCAP_TYPE={0x6, 0x15, 0x8}]}, 0x34}}, 0x0)

03:48:17 executing program 2:
recvmsg(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000000)=""/30, 0x1e}], 0x1}, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x1, 0xbf, 0x7, 0x9}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x5, 0xc3, 0x5, 0x7}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000000100), 0x5, r1}, 0x38)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000180)={r1, 0x0, &(0x7f00000000c0)=""/159}, 0x20)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000900)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={0xffffffffffffffff, 0xe0, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000400), 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8, 0x0, 0x0}}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=@base={0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000000000), 0x8001, r0}, 0x38)

03:48:17 executing program 1:
syz_mount_image$ocfs2(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x8000000, 0x30, &(0x7f0000000200)=[{&(0x7f0000010000)="02020202020202027468697320697320616e206f6366733220766f6c756d650002020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202027468697320697320616e206f6366733220766f6c756d6500020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202027468697320697320616e206f6366733220766f6c756d65000202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202027468697320697320616e206f6366733220766f6c756d65000202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202024f434653563200004ba7e2d9ffffffff000000000080000000000000000000000000000000000000000000003100000000000000000000006bc3655f000000006bc3655f000000000000000000000000020000000000000000000000000000004ba7e2d900"/8320, 0x2080}, {&(0x7f0000012100)="00005a000000140000000000000000006bc3655f00000000000000000300000050b7000001000000050000000000000006000000000000000c0000000c000000020000001f4cd25a0300"/96, 0x60, 0x20c0}, {&(0x7f0000012200)="00000000000000000000000000000000ce8118355abd4b459a1897b214cf099b000000000000000000000000000000000000000000000000000100006bb9452864e8785ebce66a1600"/96, 0x60, 0x2140}, {&(0x7f0000012300)="47524f5550303100c00f007eee3700004ba7e2d90000000000000000000000000b00000000000000030000000000000000000000000000000000000000000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0300"/2336, 0x920, 0x3000}, {&(0x7f0000012d00)="47524f5550303100c00f0d01f90000004ba7e2d90000000000000000000000000800000000000000040000000000000000000000000000000000000000000000ffff0f00"/96, 0x60, 0x4000}, {&(0x7f0000012e00)="494e4f44453031004ba7e2d9ffff010000000000000000000000000000000000380f000000000000ed410300110000006bc3655f000000006bc3655f000000006bc3655f000000000000000000000000050000000000000000000000000000004ba7e2d900000000000000000000000000000000000001000000000000000000", 0x80, 0x5000}, {&(0x7f0000012f00)="380f0000000000000500000000000000100001022e0000000500000000000000100002022e2e00001342000000000000180f0a026c6f73742b666f756e640000", 0x40, 0x50c0}, {&(0x7f0000013000)="494e4f44453031004ba7e2d9ffff020000000000000000000000000000000000380f000000000000ed410400110000006bc3655f000000006bc3655f000000006bc3655f000000000000000000000000060000000000000000000000000000004ba7e2d900000000000000000000000000000000000001000000000000000000", 0x80, 0x6000}, {&(0x7f0000013100)="380f0000000000000600000000000000100001022e0000000600000000000000100002022e2e0000070000000000000018000a016261645f626c6f636b730000080000000000000020001201676c6f62616c5f696e6f64655f616c6c6f630000090000000000000014000801736c6f745f6d61700a00000000000000180009016865617274626561740000000b000000000000001c000d01676c6f62616c5f6269746d61700000000c000000000000001c000f026f727068616e5f6469723a30303030000d000000000000001c000f026f727068616e5f6469723a30303031000e0000000000000020001101657874656e745f616c6c6f633a303030300000000f0000000000000020001101657874656e745f616c6c6f633a3030303100000010000000000000001c001001696e6f64655f616c6c6f633a3030303011000000000000001c001001696e6f64655f616c6c6f633a30303031120000000000000018000c016a6f75726e616c3a30303030130000000000000018000c016a6f75726e616c3a3030303114000000000000001c0010016c6f63616c5f616c6c6f633a3030303015000000000000001c0010016c6f63616c5f616c6c6f633a303030311600000000000000200011017472756e636174655f6c6f673a303030300000001700000000000000600d11017472756e636174655f6c6f673a30303031000000", 0x200, 0x60c0}, {&(0x7f0000013300)="494e4f44453031004ba7e2d9ffff0300000000000000000000000000000000000000000000000000a4810100110000006bc3655f000000006bc3655f000000006bc3655f000000000000000000000000070000000000000000000000000000004ba7e2d900"/128, 0x80, 0x7000}, {&(0x7f0000013400)="0000f300"/32, 0x20, 0x70c0}, {&(0x7f0000013500)="494e4f44453031004ba7e2d9ffff0400000000000d010000000000000000000000d0100000000000a4810100910400006bc3655f000000006bc3655f000000006bc3655f000000000000000000000000080000000000000000000000000000004ba7e2d900"/128, 0x80, 0x8000}, {&(0x7f0000013600)="000000000000000000000000000000000000000000000000140000000d0100000d010100f30001000000000000000000f90000000d0100000400000000000000", 0x40, 0x80a0}, {&(0x7f0000013700)="494e4f44453031004ba7e2d9ffff0500000000000100000000000000000000000010000000000000a4810100110000006bc3655f000000006bc3655f0000000087c3655f000000000000000000000000090000000000000000000000000000004ba7e2d900"/128, 0x80, 0x9000}, {&(0x7f0000013800)="0000f30001000000000000000000000000000000010000001142000000000000", 0x20, 0x90c0}, {&(0x7f0000013900)="494e4f44453031004ba7e2d9ffff0600000000000001000000000000000000000000100000000000a4810100110200006bc3655f000000006bc3655f000000006bc3655f0000000000000000000000000a0000000000000000000000000000004ba7e2d900"/128, 0x80, 0xa000}, {&(0x7f0000013a00)="0000f30001000000000000000000000000000000000100001101000000000000", 0x20, 0xa0c0}, {&(0x7f0000013b00)="494e4f44453031004ba7e2d9ffff0700000000000080000000000000000000000000000800000000a4810100910400006bc3655f000000006bc3655f000000006bc3655f0000000000000000000000000b0000000000000000000000000000004ba7e2d900"/128, 0x80, 0xb000}, {&(0x7f0000013c00)="0000000000000000000000000000000000000000000000001346000000800000007e0100f30002000000000000000000ee370000007e00000300000000000000ff01000000020000007e00"/96, 0x60, 0xb0a0}, {&(0x7f0000013d00)="494e4f44453031004ba7e2d9ffff080000000000000000000000000000000000380f000000000000ed410200110000006bc3655f000000006bc3655f000000006bc3655f0000000000000000000000000c0000000000000000000000000000004ba7e2d900000000000000000000000000000000000001000000000000000000", 0x80, 0xc000}, {&(0x7f0000013e00)="380f0000000000000c00000000000000100001022e0000000600000000000000280f02022e2e00"/64, 0x40, 0xc0c0}, {&(0x7f0000013f00)="494e4f44453031004ba7e2d9ffff090000000000000000000000000000000000380f000000000000ed410200110000006bc3655f000000006bc3655f000000006bc3655f0000000000000000000000000d0000000000000000000000000000004ba7e2d900000000000000000000000000000000000001000000000000000000", 0x80, 0xd000}, {&(0x7f0000014000)="380f0000000000000d00000000000000100001022e0000000600000000000000280f02022e2e00"/64, 0x40, 0xd0c0}, {&(0x7f0000014100)="494e4f44453031004ba7e2d9ffff0a00000000000000000000000000000000000000000000000000a4810100910400006bc3655f000000006bc3655f000000006bc3655f0000000000000000000000000e0000000000000000000000000000004ba7e2d900"/128, 0x80, 0xe000}, {&(0x7f0000014200)="00040100f300"/32, 0x20, 0xe0c0}, {&(0x7f0000014300)="494e4f44453031004ba7e2d9ffff0b00000000000000000000000000000000000000000000000000a4810100910400006bc3655f000000006bc3655f000000006bc3655f0000000000000000000000000f0000000000000000000000000000004ba7e2d900"/128, 0x80, 0xf000}, {&(0x7f0000014400)="00040100f300"/32, 0x20, 0xf0c0}, {&(0x7f0000014500)="494e4f44453031004ba7e2d9ffff0c00000000000004000000000000000000000000400000000000a4810100910400006bc3655f000000006bc3655f000000006bc3655f000000000000000000000000100000000000000000000000000000004ba7e2d900"/128, 0x80, 0x10000}, {&(0x7f0000014600)="000000000000000000000000000000000000000000000000020000000004000000040100f30001000000000000000000fe030000000400001242000000000000", 0x40, 0x100a0}, {&(0x7f0000014700)="494e4f44453031004ba7e2d9ffff0d00000000000000000000000000000000000000000000000000a4810100910400006bc3655f000000006bc3655f000000006bc3655f000000000000000000000000110000000000000000000000000000004ba7e2d900"/128, 0x80, 0x11000}, {&(0x7f0000014800)="00040100f300"/32, 0x20, 0x110c0}, {&(0x7f0000014900)="494e4f44453031004ba7e2d9ffff0e00000000000020000000000000000000000000000200000000a4810100110100006bc3655f000000006bc3655f0000000072c3655f000000000000000000000000120000000000000000000000000000004ba7e2d900"/128, 0x80, 0x12000}, {&(0x7f0000014a00)="0000f30001000000000000000000000000000000002000001102000000000000", 0x20, 0x120c0}, {&(0x7f0000014b00)="494e4f44453031004ba7e2d9ffff0f00000000000020000000000000000000000000000200000000a4810100110100006bc3655f000000006bc3655f000000007cc3655f000000000000000000000000130000000000000000000000000000004ba7e2d900"/128, 0x80, 0x13000}, {&(0x7f0000014c00)="0000f30001000000000000000000000000000000002000001122000000000000", 0x20, 0x130c0}, {&(0x7f0000014d00)="494e4f44453031004ba7e2d9ffff1000000000000000000000000000000000000000000000000000a4810100d10000006bc3655f000000006bc3655f000000006bc3655f000000000000000000000000140000000000000000000000000000004ba7e2d900"/128, 0x80, 0x14000}, {&(0x7f0000014e00)="00000000300f00"/32, 0x20, 0x140c0}, {&(0x7f0000014f00)="494e4f44453031004ba7e2d9ffff1100000000000000000000000000000000000000000000000000a4810100d10000006bc3655f000000006bc3655f000000006bc3655f000000000000000000000000150000000000000000000000000000004ba7e2d900"/128, 0x80, 0x15000}, {&(0x7f0000015000)="00000000300f00"/32, 0x20, 0x150c0}, {&(0x7f0000015100)="494e4f44453031004ba7e2d9ffff1200000000000000000000000000000000000000000000000000a4810100110800006bc3655f000000006bc3655f000000006bc3655f000000000000000000000000160000000000000000000000000000004ba7e2d900"/128, 0x80, 0x16000}, {&(0x7f0000015200)="e70100"/32, 0x20, 0x160c0}, {&(0x7f0000015300)="494e4f44453031004ba7e2d9ffff1300000000000000000000000000000000000000000000000000a4810100110800006bc3655f000000006bc3655f000000006bc3655f000000000000000000000000170000000000000000000000000000004ba7e2d900"/128, 0x80, 0x17000}, {&(0x7f0000015400)="e70100"/32, 0x20, 0x170c0}, {&(0x7f0000015500)="c03b39980000000400000000000010000000200000000001000000010000000100000000000000000000000200000000ce8118355abd4b459a1897b214cf099b0000000100"/96, 0x60, 0x211000}, {&(0x7f0000015600)="c03b39980000000400000000000010000000200000000001000000010000000100000000000000000000000200000000ce8118355abd4b459a1897b214cf099b0000000100"/96, 0x60, 0x2211000}, {&(0x7f0000015700)="47524f555030310000010004fe0300004ba7e2d900000000000000000000000010000000000000001242000000000000000000000000000000000000000000000300"/96, 0x60, 0x4212000}, {&(0x7f0000015800)="494e4f44453031004ba7e2d90000010000000000000000000000000000000000380f000000000000ed4102000100000088c3655f0000000088c3655f0000000088c3655f000000000000000000000000134200000000000000000000000000004ba7e2d90000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000012420000000000000000000000000000000000000000000000000000000000000000000000000000380f0000000000001342000000000000100001022e0000000500000000000000280f02022e2e00"/256, 0x100, 0x4213000}, {&(0x7f0000015900)="47524f5550303100c00f0002ff0101004ba7e2d90000000000000000000000000b00000000000000007e000000000000000000000000000000000000000000000100"/96, 0x60, 0x7e00000}], 0x0, &(0x7f0000015a00))

03:48:18 executing program 5:
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@ipv6_newroute={0x34, 0x18, 0x1, 0x0, 0x0, {}, [@RTA_OIF={0x8, 0x4, r1}, @RTA_ENCAP={0x8, 0x16, 0x0, 0x1, @MPLS_IPTUNNEL_DST={0x4}}, @RTA_ENCAP_TYPE={0x6, 0x15, 0x8}]}, 0x34}}, 0x0)

03:48:18 executing program 1:
syz_usb_connect(0x2, 0x2d, &(0x7f0000000bc0)={{0x12, 0x1, 0x0, 0x55, 0x91, 0x81, 0x20, 0x182d, 0x21c, 0x7a0f, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x0, 0x3f, 0x50, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x9c, 0xe, 0x51, 0x0, [], [{{0x9, 0x5, 0x7}}]}}]}}]}}, 0x0)

03:48:18 executing program 0:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x2, &(0x7f0000000000)=[{0x6c}, {0x16}]})
syz_open_dev$audion(0x0, 0x0, 0x0)

03:48:18 executing program 5:
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f00000001c0)='sysfs\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000c80)='./file0\x00', 0x0, 0x9002d, 0x0)
chdir(&(0x7f00000000c0)='./file0\x00')
rmdir(&(0x7f0000000100)='./file0\x00')

[ 1649.797229][   T24] audit: type=1326 audit(2000000898.670:823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=22541 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f69549 code=0x0
03:48:18 executing program 5:
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f00000001c0)='sysfs\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000c80)='./file0\x00', 0x0, 0x9002d, 0x0)
chdir(&(0x7f00000000c0)='./file0\x00')
rmdir(&(0x7f0000000100)='./file0\x00')

03:48:20 executing program 3:
recvmsg(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000000)=""/30, 0x1e}], 0x1}, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x1, 0xbf, 0x7, 0x9}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x5, 0xc3, 0x5, 0x7}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000000100), 0x5, r1}, 0x38)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000180)={r1, 0x0, &(0x7f00000000c0)=""/159}, 0x20)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000900)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={0xffffffffffffffff, 0xe0, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000400), 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8, 0x0, 0x0}}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=@base={0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000000000), 0x8001, r0}, 0x38)

03:48:21 executing program 4:
recvmsg(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000000)=""/30, 0x1e}], 0x1}, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x1, 0xbf, 0x7, 0x9}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x5, 0xc3, 0x5, 0x7}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000000100), 0x5, r1}, 0x38)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000180)={r1, 0x0, &(0x7f00000000c0)=""/159}, 0x20)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000900)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={0xffffffffffffffff, 0xe0, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000400), 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8, 0x0, 0x0}}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=@base={0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000000000), 0x8001, r0}, 0x38)

03:48:21 executing program 1:
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f0000000040), 0x10)
sendmsg$can_bcm(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="05"], 0x48}}, 0x0)
sendmsg$can_bcm(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000780)=ANY=[@ANYBLOB="050000000108"], 0x80}}, 0x0)

03:48:21 executing program 5:
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f00000001c0)='sysfs\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000c80)='./file0\x00', 0x0, 0x9002d, 0x0)
chdir(&(0x7f00000000c0)='./file0\x00')
rmdir(&(0x7f0000000100)='./file0\x00')

03:48:21 executing program 0:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x2, &(0x7f0000000000)=[{0x6c}, {0x16}]})
syz_open_dev$audion(0x0, 0x0, 0x0)

[ 1652.265325][   T24] audit: type=1326 audit(2000000901.140:824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=22549 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f69549 code=0x0
03:48:21 executing program 2:
recvmsg(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000000)=""/30, 0x1e}], 0x1}, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x1, 0xbf, 0x7, 0x9}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x5, 0xc3, 0x5, 0x7}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000000100), 0x5, r1}, 0x38)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000180)={r1, 0x0, &(0x7f00000000c0)=""/159}, 0x20)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000900)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={0xffffffffffffffff, 0xe0, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000400), 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8, 0x0, 0x0}}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=@base={0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000000000), 0x8001, r0}, 0x38)

03:48:21 executing program 5:
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f00000001c0)='sysfs\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000c80)='./file0\x00', 0x0, 0x9002d, 0x0)
chdir(&(0x7f00000000c0)='./file0\x00')
rmdir(&(0x7f0000000100)='./file0\x00')

03:48:21 executing program 1:
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f0000000040), 0x10)
sendmsg$can_bcm(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="05"], 0x48}}, 0x0)
sendmsg$can_bcm(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000780)=ANY=[@ANYBLOB="050000000108"], 0x80}}, 0x0)

03:48:21 executing program 1:
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f0000000040), 0x10)
sendmsg$can_bcm(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="05"], 0x48}}, 0x0)
sendmsg$can_bcm(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000780)=ANY=[@ANYBLOB="050000000108"], 0x80}}, 0x0)

03:48:21 executing program 5:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPIOCSFLAGS(r0, 0x40047459, &(0x7f0000000000))

03:48:22 executing program 0:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x2, &(0x7f0000000000)=[{0x6c}, {0x16}]})
syz_open_dev$audion(0x0, 0x0, 0x0)

03:48:22 executing program 5:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPIOCSFLAGS(r0, 0x40047459, &(0x7f0000000000))

[ 1653.488199][   T24] audit: type=1326 audit(2000000902.350:825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=22566 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f69549 code=0x0
03:48:24 executing program 3:
recvmsg(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000000)=""/30, 0x1e}], 0x1}, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x1, 0xbf, 0x7, 0x9}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x5, 0xc3, 0x5, 0x7}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000000100), 0x5, r1}, 0x38)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000180)={r1, 0x0, &(0x7f00000000c0)=""/159}, 0x20)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000900)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={0xffffffffffffffff, 0xe0, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000400), 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8, 0x0, 0x0}}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=@base={0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000000000), 0x8001, r0}, 0x38)

03:48:24 executing program 4:
recvmsg(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000000)=""/30, 0x1e}], 0x1}, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x1, 0xbf, 0x7, 0x9}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x5, 0xc3, 0x5, 0x7}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000000100), 0x5, r1}, 0x38)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000180)={r1, 0x0, &(0x7f00000000c0)=""/159}, 0x20)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000900)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={0xffffffffffffffff, 0xe0, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000400), 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8, 0x0, 0x0}}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=@base={0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000000000), 0x8001, r0}, 0x38)

03:48:24 executing program 1:
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f0000000040), 0x10)
sendmsg$can_bcm(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="05"], 0x48}}, 0x0)
sendmsg$can_bcm(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000780)=ANY=[@ANYBLOB="050000000108"], 0x80}}, 0x0)

03:48:24 executing program 0:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000140)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7df8}]})
r0 = inotify_init1(0x0)
fcntl$setown(r0, 0x8, 0xffffffffffffffff)
fcntl$getownex(r0, 0x10, &(0x7f0000000080)={0x0, <r1=>0x0})
ptrace$setopts(0x4206, r1, 0x0, 0x20001a)

03:48:24 executing program 5:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPIOCSFLAGS(r0, 0x40047459, &(0x7f0000000000))

03:48:24 executing program 2:
recvmsg(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000000)=""/30, 0x1e}], 0x1}, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x1, 0xbf, 0x7, 0x9}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x5, 0xc3, 0x5, 0x7}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000000100), 0x5, r1}, 0x38)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000180)={r1, 0x0, &(0x7f00000000c0)=""/159}, 0x20)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000900)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={0xffffffffffffffff, 0xe0, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000400), 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8, 0x0, 0x0}}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=@base={0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000000000), 0x8001, r0}, 0x38)

03:48:24 executing program 5:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPIOCSFLAGS(r0, 0x40047459, &(0x7f0000000000))

03:48:24 executing program 1:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmmsg(r0, &(0x7f0000005100)=[{{0x0, 0x0, &(0x7f0000000600)=[{&(0x7f00000002c0)="8f", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000100)='o', 0x1}], 0x1, &(0x7f0000007600)=[{0x10, 0x1, 0x1}], 0x10}}], 0x2, 0x0)

03:48:24 executing program 0:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000140)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7df8}]})
r0 = inotify_init1(0x0)
fcntl$setown(r0, 0x8, 0xffffffffffffffff)
fcntl$getownex(r0, 0x10, &(0x7f0000000080)={0x0, <r1=>0x0})
ptrace$setopts(0x4206, r1, 0x0, 0x20001a)

03:48:25 executing program 5:
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000380), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f00000000c0)={{0x1, 0x0, 0x0, 0x0, 0x9}})

03:48:25 executing program 0:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000140)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7df8}]})
r0 = inotify_init1(0x0)
fcntl$setown(r0, 0x8, 0xffffffffffffffff)
fcntl$getownex(r0, 0x10, &(0x7f0000000080)={0x0, <r1=>0x0})
ptrace$setopts(0x4206, r1, 0x0, 0x20001a)

03:48:25 executing program 1:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmmsg(r0, &(0x7f0000005100)=[{{0x0, 0x0, &(0x7f0000000600)=[{&(0x7f00000002c0)="8f", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000100)='o', 0x1}], 0x1, &(0x7f0000007600)=[{0x10, 0x1, 0x1}], 0x10}}], 0x2, 0x0)

03:48:27 executing program 5:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000017c0)=@newlink={0x4c, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_VFINFO_LIST={0x20, 0x16, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, [@IFLA_VF_VLAN_LIST={0x18, 0xc, 0x0, 0x1, [{0x8, 0x1, {0xfffffffd}}]}]}]}, @IFLA_ADDRESS={0xa, 0x1, @local}]}, 0x4c}}, 0x0)

03:48:27 executing program 0:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000140)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7df8}]})
r0 = inotify_init1(0x0)
fcntl$setown(r0, 0x8, 0xffffffffffffffff)
fcntl$getownex(r0, 0x10, &(0x7f0000000080)={0x0, <r1=>0x0})
ptrace$setopts(0x4206, r1, 0x0, 0x20001a)

03:48:27 executing program 1:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmmsg(r0, &(0x7f0000005100)=[{{0x0, 0x0, &(0x7f0000000600)=[{&(0x7f00000002c0)="8f", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000100)='o', 0x1}], 0x1, &(0x7f0000007600)=[{0x10, 0x1, 0x1}], 0x10}}], 0x2, 0x0)

03:48:27 executing program 3:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='devices.list\x00', 0x275a, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000000c0))
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='devices.list\x00', 0x275a, 0x0)
ioctl$EXT4_IOC_GET_ES_CACHE(r1, 0xc020662a, &(0x7f0000000140)=ANY=[@ANYBLOB="010000094008000000c1"])

03:48:27 executing program 4:
socketpair(0x15, 0x5, 0x0, &(0x7f00000001c0))

[ 1658.624397][T22601] net_ratelimit: 1014 callbacks suppressed
[ 1658.624463][T22601] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
03:48:27 executing program 0:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x80, &(0x7f00000002c0)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000080)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendto$inet6(r0, &(0x7f0000000340)="10", 0x1, 0x0, &(0x7f0000000240)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

03:48:27 executing program 1:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmmsg(r0, &(0x7f0000005100)=[{{0x0, 0x0, &(0x7f0000000600)=[{&(0x7f00000002c0)="8f", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000100)='o', 0x1}], 0x1, &(0x7f0000007600)=[{0x10, 0x1, 0x1}], 0x10}}], 0x2, 0x0)

03:48:27 executing program 2:
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x79, 0x10, 0x48}, [@ldst={0x3, 0x3, 0x3, 0xa, 0x0, 0xff00}], {0x95, 0x0, 0x74}}, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195}, 0x48)

03:48:27 executing program 5:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000017c0)=@newlink={0x4c, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_VFINFO_LIST={0x20, 0x16, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, [@IFLA_VF_VLAN_LIST={0x18, 0xc, 0x0, 0x1, [{0x8, 0x1, {0xfffffffd}}]}]}]}, @IFLA_ADDRESS={0xa, 0x1, @local}]}, 0x4c}}, 0x0)

03:48:27 executing program 4:
socketpair(0x15, 0x5, 0x0, &(0x7f00000001c0))

03:48:27 executing program 3:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='devices.list\x00', 0x275a, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000000c0))
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='devices.list\x00', 0x275a, 0x0)
ioctl$EXT4_IOC_GET_ES_CACHE(r1, 0xc020662a, &(0x7f0000000140)=ANY=[@ANYBLOB="010000094008000000c1"])

03:48:28 executing program 0:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x80, &(0x7f00000002c0)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000080)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendto$inet6(r0, &(0x7f0000000340)="10", 0x1, 0x0, &(0x7f0000000240)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

03:48:28 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x80, &(0x7f00000002c0)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000080)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendto$inet6(r0, &(0x7f0000000340)="10", 0x1, 0x0, &(0x7f0000000240)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

[ 1659.118425][T22614] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
03:48:28 executing program 2:
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x79, 0x10, 0x48}, [@ldst={0x3, 0x3, 0x3, 0xa, 0x0, 0xff00}], {0x95, 0x0, 0x74}}, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195}, 0x48)

03:48:28 executing program 5:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000017c0)=@newlink={0x4c, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_VFINFO_LIST={0x20, 0x16, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, [@IFLA_VF_VLAN_LIST={0x18, 0xc, 0x0, 0x1, [{0x8, 0x1, {0xfffffffd}}]}]}]}, @IFLA_ADDRESS={0xa, 0x1, @local}]}, 0x4c}}, 0x0)

03:48:28 executing program 4:
socketpair(0x15, 0x5, 0x0, &(0x7f00000001c0))

03:48:28 executing program 3:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='devices.list\x00', 0x275a, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000000c0))
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='devices.list\x00', 0x275a, 0x0)
ioctl$EXT4_IOC_GET_ES_CACHE(r1, 0xc020662a, &(0x7f0000000140)=ANY=[@ANYBLOB="010000094008000000c1"])

[ 1659.448957][T22623] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1659.458389][T22623] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
03:48:28 executing program 2:
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x79, 0x10, 0x48}, [@ldst={0x3, 0x3, 0x3, 0xa, 0x0, 0xff00}], {0x95, 0x0, 0x74}}, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195}, 0x48)

03:48:28 executing program 0:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x80, &(0x7f00000002c0)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000080)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendto$inet6(r0, &(0x7f0000000340)="10", 0x1, 0x0, &(0x7f0000000240)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

03:48:28 executing program 4:
socketpair(0x15, 0x5, 0x0, &(0x7f00000001c0))

[ 1659.624169][T22628] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
03:48:28 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x80, &(0x7f00000002c0)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000080)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendto$inet6(r0, &(0x7f0000000340)="10", 0x1, 0x0, &(0x7f0000000240)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

03:48:28 executing program 3:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='devices.list\x00', 0x275a, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000000c0))
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='devices.list\x00', 0x275a, 0x0)
ioctl$EXT4_IOC_GET_ES_CACHE(r1, 0xc020662a, &(0x7f0000000140)=ANY=[@ANYBLOB="010000094008000000c1"])

03:48:28 executing program 2:
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x79, 0x10, 0x48}, [@ldst={0x3, 0x3, 0x3, 0xa, 0x0, 0xff00}], {0x95, 0x0, 0x74}}, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195}, 0x48)

03:48:28 executing program 5:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000017c0)=@newlink={0x4c, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_VFINFO_LIST={0x20, 0x16, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, [@IFLA_VF_VLAN_LIST={0x18, 0xc, 0x0, 0x1, [{0x8, 0x1, {0xfffffffd}}]}]}]}, @IFLA_ADDRESS={0xa, 0x1, @local}]}, 0x4c}}, 0x0)

[ 1659.955573][T22638] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1659.965570][T22638] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
03:48:28 executing program 0:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x80, &(0x7f00000002c0)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000080)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendto$inet6(r0, &(0x7f0000000340)="10", 0x1, 0x0, &(0x7f0000000240)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

03:48:28 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="600000003000ed030000000000000000000000004c000100480001000c000100736b62656469740038000280180002000000000000000000ffffffff0000000000000000040006000c00090000000000000000000c0008"], 0x60}}, 0x0)

03:48:29 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x80, &(0x7f00000002c0)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000080)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendto$inet6(r0, &(0x7f0000000340)="10", 0x1, 0x0, &(0x7f0000000240)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

[ 1660.269152][T22644] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
03:48:29 executing program 3:
r0 = socket$packet(0x11, 0x3, 0x300)
sendmmsg(r0, &(0x7f000000e0c0)=[{{&(0x7f0000000000)=@ieee802154={0x24, @long}, 0x80, 0x0}}, {{&(0x7f00000019c0)=@ieee802154={0x24, @long}, 0x80, &(0x7f0000003000)=[{&(0x7f0000001a40)="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", 0x5e1}], 0x1}}], 0x2, 0x0)

03:48:29 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="600000003000ed030000000000000000000000004c000100480001000c000100736b62656469740038000280180002000000000000000000ffffffff0000000000000000040006000c00090000000000000000000c0008"], 0x60}}, 0x0)

03:48:29 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80000, 0xa, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000600100000f000000000000000000000004000000000002000020000020000000ddf4655fddf4655f0100ffff53ef010001000000ddf4655f000000000000000001000000000000000b0000000001000008000000d24200001203", 0x66, 0x400}, {&(0x7f0000010100)="0000000000000000000000006856d49a00cc4371bd6a7c893f2800450100", 0x1e}, {&(0x7f0000010e00)="ed41000000040000ddf4655fddf4655fddf4655f00000000000004002000000000000800050000000a", 0x29, 0x1500}, {&(0x7f0000011000)="8081000000180000ddf4655fddf4655fddf4655f00000000000001002000000010000800000000000af3020004000000000000000000", 0x36, 0x1600}, {&(0x7f0000011100)="8081000000180000ddf4655fddf4655fddf4655f00000000000001002000000010000800000000000af30200040000000000000000000000020000004000000002000000040000", 0x47, 0x1700}, {&(0x7f0000011a00)}, {&(0x7f0000012700)="111fc0d901000000803a0900803a09000000000006", 0x15, 0xc000}, {&(0x7f0000012d00)="2719c0d901000000803a0900803a09000000000006", 0x15, 0x10000}, {&(0x7f0000012e00)}, {0x0}], 0x0, &(0x7f0000000380)=ANY=[])
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000000080eff95"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000380)='rcu_utilization\x00', r3}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext2\x00', &(0x7f00000000c0)='./file0\x00', 0xa0, 0x0, &(0x7f0000000800), 0x31041, &(0x7f0000000400)={[{@data_journal}, {@grpquota}, {@delalloc}, {@noquota}], [{@fowner_eq={'fowner', 0x3d, 0xee00}}, {@measure}, {@fscontext={'fscontext', 0x3d, 'system_u'}}, {@obj_role}, {@context={'context', 0x3d, 'user_u'}}, {@smackfsroot={'smackfsroot', 0x3d, 'ext4\x00'}}, {@mask={'mask', 0x3d, 'MAY_APPEND'}}]})

[ 1660.509915][T22650] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1660.519396][T22650] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
03:48:29 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20044015, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000000280)=[{&(0x7f00000003c0)="580000001400192340834b80040d8c560a067fbc45ff81054e220200000058000b480400945f64009400050038925a01000000000000008000f0fffeffe809000000fff5dd0000001000010002081000418e00000004fcff", 0x58}], 0x1)

03:48:29 executing program 3:
r0 = socket$packet(0x11, 0x3, 0x300)
sendmmsg(r0, &(0x7f000000e0c0)=[{{&(0x7f0000000000)=@ieee802154={0x24, @long}, 0x80, 0x0}}, {{&(0x7f00000019c0)=@ieee802154={0x24, @long}, 0x80, &(0x7f0000003000)=[{&(0x7f0000001a40)="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", 0x5e1}], 0x1}}], 0x2, 0x0)

03:48:29 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="600000003000ed030000000000000000000000004c000100480001000c000100736b62656469740038000280180002000000000000000000ffffffff0000000000000000040006000c00090000000000000000000c0008"], 0x60}}, 0x0)

03:48:29 executing program 2:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL802154_CMD_NEW_INTERFACE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000280)={0x34, r1, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFNAME={0xa, 0x4, 'wpan3\x00'}, @NL802154_ATTR_WPAN_PHY={0x8}, @NL802154_ATTR_EXTENDED_ADDR={0xc}]}, 0x34}}, 0x0)

03:48:29 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x60, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_EXPR={0x24, 0x11, 0x0, 0x1, @xfrm={{0x9}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_XFRM_DIR={0x5}, @NFTA_XFRM_KEY={0x8}]}}}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x21}, @NFTA_SET_ID={0x8}]}], {0x14, 0x10}}, 0xa8}}, 0x0)

[ 1660.996071][T22660] loop5: detected capacity change from 0 to 1024
03:48:30 executing program 2:
openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r0 = syz_io_uring_setup(0x1c87, &(0x7f0000000340), &(0x7f0000ee8000/0x4000)=nil, &(0x7f0000eea000/0x1000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307c, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3}, 0x0)
io_uring_enter(r0, 0x450e, 0x0, 0x0, 0x0, 0x0)

[ 1661.168353][T22660] EXT4-fs (loop5): unsupported descriptor size 0
03:48:30 executing program 1:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$RTC_ALM_SET(r0, 0x40247007, &(0x7f0000001240)={0x3c})

03:48:30 executing program 3:
r0 = socket$packet(0x11, 0x3, 0x300)
sendmmsg(r0, &(0x7f000000e0c0)=[{{&(0x7f0000000000)=@ieee802154={0x24, @long}, 0x80, 0x0}}, {{&(0x7f00000019c0)=@ieee802154={0x24, @long}, 0x80, &(0x7f0000003000)=[{&(0x7f0000001a40)="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", 0x5e1}], 0x1}}], 0x2, 0x0)

03:48:30 executing program 0:
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000f40)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_ASSOCIATE(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[@ANYBLOB="bc000080", @ANYRES16, @ANYBLOB="04002abd7000fedbdf252600000008000300", @ANYRES32, @ANYBLOB="18004c0002ac0f000aac0f0003ac0f0002ac0f0014ac0f000400080155001501aa7287e547a9e7d7fe379f6ce9f19635664d53addce3132091bc2079c560e609550e987d0c3fc671035639db7833008ec41485935085a6f5ed42a15e54821f7e0b6c6034a68fc32332b6"], 0xbc}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan1\x00', <r2=>0x0})
syz_usb_connect(0x0, 0x39, &(0x7f0000000340)={{0x12, 0x1, 0x0, 0x1e, 0xcb, 0x33, 0x20, 0xb48, 0x300a, 0x7e03, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x27, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x9b, 0x64, 0x50, 0x0, [@uac_as={[@format_type_i_continuous={0x9, 0x24, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, "", "bc"}]}], [{{0x9, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [@generic={0x3, 0x0, "01"}]}}]}}]}}]}}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000001240)={&(0x7f0000000040)=ANY=[@ANYBLOB="48040000", @ANYRES16=r3, @ANYBLOB="010000000000000000003b1c210008000300", @ANYRES32=r2, @ANYBLOB="2c0433005000de295b3acba512e4080211000001505050505050"], 0x448}}, 0x0)

[ 1661.482601][T22659] not chained 4180000 origins
[ 1661.487494][T22659] CPU: 1 PID: 22659 Comm: syz-executor.5 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1661.497700][T22659] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1661.507791][T22659] Call Trace:
[ 1661.511093][T22659]  <TASK>
[ 1661.514032][T22659]  dump_stack_lvl+0x200/0x28c
[ 1661.518761][T22659]  dump_stack+0x29/0x2c
[ 1661.522953][T22659]  kmsan_internal_chain_origin+0x78/0x120
[ 1661.528726][T22659]  ? propagate_entity_load_avg+0x50/0x1610
[ 1661.534595][T22659]  ? kmsan_get_metadata+0x33/0x220
[ 1661.539757][T22659]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1661.545639][T22659]  ? kmsan_get_metadata+0x33/0x220
[ 1661.550805][T22659]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1661.556753][T22659]  ? should_fail+0x79/0x9c0
[ 1661.561289][T22659]  ? kmsan_get_metadata+0x33/0x220
[ 1661.566445][T22659]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1661.572758][T22659]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1661.578880][T22659]  ? kmsan_get_metadata+0x33/0x220
[ 1661.584057][T22659]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1661.589919][T22659]  __msan_chain_origin+0xbd/0x140
[ 1661.595003][T22659]  __get_compat_msghdr+0x6ea/0x9e0
[ 1661.600182][T22659]  get_compat_msghdr+0x10c/0x280
[ 1661.605171][T22659]  ? do_recvmmsg+0x7c9/0x1200
[ 1661.609895][T22659]  ___sys_recvmsg+0x289/0xb40
[ 1661.614628][T22659]  ? __schedule+0x176c/0x21c0
[ 1661.619351][T22659]  ? kmsan_get_metadata+0x33/0x220
[ 1661.624530][T22659]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1661.630389][T22659]  ? __cond_resched+0x23/0x40
[ 1661.635110][T22659]  ? preempt_schedule_common+0x130/0x190
[ 1661.640789][T22659]  do_recvmmsg+0x7c9/0x1200
[ 1661.645348][T22659]  ? filter_irq_stacks+0xb9/0x230
[ 1661.650434][T22659]  ? kmsan_get_metadata+0x33/0x220
[ 1661.655604][T22659]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1661.660414][T22659]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1661.667062][T22659]  __sys_recvmmsg+0x520/0x6f0
[ 1661.671801][T22659]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1661.678192][T22659]  __do_fast_syscall_32+0x95/0xf0
[ 1661.683263][T22659]  do_fast_syscall_32+0x33/0x70
[ 1661.688181][T22659]  do_SYSENTER_32+0x1b/0x20
[ 1661.692725][T22659]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1661.699096][T22659] RIP: 0023:0xf7fd2549
[ 1661.703180][T22659] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1661.722828][T22659] RSP: 002b:00000000f7fac5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1661.731284][T22659] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 1661.739283][T22659] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[ 1661.747279][T22659] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1661.755271][T22659] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1661.763272][T22659] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1661.771293][T22659]  </TASK>
[ 1661.776255][T22659] Uninit was stored to memory at:
[ 1661.781371][T22659]  __get_compat_msghdr+0x6ea/0x9e0
[ 1661.787191][T22659]  get_compat_msghdr+0x10c/0x280
[ 1661.792298][T22659]  ___sys_recvmsg+0x289/0xb40
[ 1661.797127][T22659]  do_recvmmsg+0x7c9/0x1200
[ 1661.801702][T22659]  __sys_recvmmsg+0x520/0x6f0
[ 1661.806569][T22659]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1661.813069][T22659]  __do_fast_syscall_32+0x95/0xf0
[ 1661.818193][T22659]  do_fast_syscall_32+0x33/0x70
[ 1661.823216][T22659]  do_SYSENTER_32+0x1b/0x20
[ 1661.827777][T22659]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
03:48:30 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="600000003000ed030000000000000000000000004c000100480001000c000100736b62656469740038000280180002000000000000000000ffffffff0000000000000000040006000c00090000000000000000000c0008"], 0x60}}, 0x0)

[ 1661.834282][T22659] 
[ 1661.836626][T22659] Uninit was stored to memory at:
[ 1661.841750][T22659]  __get_compat_msghdr+0x6ea/0x9e0
[ 1661.847037][T22659]  get_compat_msghdr+0x10c/0x280
[ 1661.852237][T22659]  ___sys_recvmsg+0x289/0xb40
[ 1661.856984][T22659]  do_recvmmsg+0x7c9/0x1200
[ 1661.861555][T22659]  __sys_recvmmsg+0x520/0x6f0
[ 1661.866443][T22659]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1661.872956][T22659]  __do_fast_syscall_32+0x95/0xf0
[ 1661.878052][T22659]  do_fast_syscall_32+0x33/0x70
[ 1661.883113][T22659]  do_SYSENTER_32+0x1b/0x20
[ 1661.887677][T22659]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1661.894213][T22659] 
[ 1661.896557][T22659] Uninit was stored to memory at:
[ 1661.901660][T22659]  __get_compat_msghdr+0x6ea/0x9e0
[ 1661.906954][T22659]  get_compat_msghdr+0x10c/0x280
[ 1661.912093][T22659]  ___sys_recvmsg+0x289/0xb40
[ 1661.916837][T22659]  do_recvmmsg+0x7c9/0x1200
[ 1661.921398][T22659]  __sys_recvmmsg+0x520/0x6f0
[ 1661.926332][T22659]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1661.932837][T22659]  __do_fast_syscall_32+0x95/0xf0
[ 1661.937940][T22659]  do_fast_syscall_32+0x33/0x70
[ 1661.943049][T22659]  do_SYSENTER_32+0x1b/0x20
[ 1661.947624][T22659]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1661.954194][T22659] 
[ 1661.956537][T22659] Uninit was stored to memory at:
[ 1661.961632][T22659]  __get_compat_msghdr+0x6ea/0x9e0
[ 1661.967124][T22659]  get_compat_msghdr+0x10c/0x280
[ 1661.972222][T22659]  ___sys_recvmsg+0x289/0xb40
[ 1661.976951][T22659]  do_recvmmsg+0x7c9/0x1200
[ 1661.981519][T22659]  __sys_recvmmsg+0x520/0x6f0
[ 1661.986401][T22659]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1661.992891][T22659]  __do_fast_syscall_32+0x95/0xf0
[ 1661.997984][T22659]  do_fast_syscall_32+0x33/0x70
[ 1662.003018][T22659]  do_SYSENTER_32+0x1b/0x20
[ 1662.007563][T22659]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1662.014071][T22659] 
[ 1662.016412][T22659] Uninit was stored to memory at:
[ 1662.021510][T22659]  __get_compat_msghdr+0x6ea/0x9e0
[ 1662.026795][T22659]  get_compat_msghdr+0x10c/0x280
[ 1662.031871][T22659]  ___sys_recvmsg+0x289/0xb40
[ 1662.036598][T22659]  do_recvmmsg+0x7c9/0x1200
[ 1662.041153][T22659]  __sys_recvmmsg+0x520/0x6f0
[ 1662.046016][T22659]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1662.052489][T22659]  __do_fast_syscall_32+0x95/0xf0
[ 1662.057582][T22659]  do_fast_syscall_32+0x33/0x70
[ 1662.062600][T22659]  do_SYSENTER_32+0x1b/0x20
[ 1662.067142][T22659]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1662.073646][T22659] 
[ 1662.075973][T22659] Uninit was stored to memory at:
[ 1662.081057][T22659]  __get_compat_msghdr+0x6ea/0x9e0
[ 1662.086343][T22659]  get_compat_msghdr+0x10c/0x280
[ 1662.091333][T22659]  ___sys_recvmsg+0x289/0xb40
[ 1662.096180][T22659]  do_recvmmsg+0x7c9/0x1200
[ 1662.100749][T22659]  __sys_recvmmsg+0x520/0x6f0
[ 1662.105597][T22659]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1662.112086][T22659]  __do_fast_syscall_32+0x95/0xf0
[ 1662.117160][T22659]  do_fast_syscall_32+0x33/0x70
[ 1662.122204][T22659]  do_SYSENTER_32+0x1b/0x20
[ 1662.126764][T22659]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1662.133279][T22659] 
[ 1662.135633][T22659] Uninit was stored to memory at:
[ 1662.140718][T22659]  __get_compat_msghdr+0x6ea/0x9e0
[ 1662.146005][T22659]  get_compat_msghdr+0x10c/0x280
[ 1662.151085][T22659]  ___sys_recvmsg+0x289/0xb40
[ 1662.155926][T22659]  do_recvmmsg+0x7c9/0x1200
[ 1662.160476][T22659]  __sys_recvmmsg+0x520/0x6f0
[ 1662.165302][T22659]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1662.171689][T22659]  __do_fast_syscall_32+0x95/0xf0
[ 1662.176873][T22659]  do_fast_syscall_32+0x33/0x70
[ 1662.181908][T22659]  do_SYSENTER_32+0x1b/0x20
[ 1662.186447][T22659]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1662.192935][T22659] 
[ 1662.195265][T22659] Local variable msg_sys created at:
[ 1662.200550][T22659]  do_recvmmsg+0xc9/0x1200
[ 1662.205233][T22659]  __sys_recvmmsg+0x520/0x6f0
03:48:31 executing program 2:
openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r0 = syz_io_uring_setup(0x1c87, &(0x7f0000000340), &(0x7f0000ee8000/0x4000)=nil, &(0x7f0000eea000/0x1000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307c, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3}, 0x0)
io_uring_enter(r0, 0x450e, 0x0, 0x0, 0x0, 0x0)

03:48:31 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80000, 0xa, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000600100000f000000000000000000000004000000000002000020000020000000ddf4655fddf4655f0100ffff53ef010001000000ddf4655f000000000000000001000000000000000b0000000001000008000000d24200001203", 0x66, 0x400}, {&(0x7f0000010100)="0000000000000000000000006856d49a00cc4371bd6a7c893f2800450100", 0x1e}, {&(0x7f0000010e00)="ed41000000040000ddf4655fddf4655fddf4655f00000000000004002000000000000800050000000a", 0x29, 0x1500}, {&(0x7f0000011000)="8081000000180000ddf4655fddf4655fddf4655f00000000000001002000000010000800000000000af3020004000000000000000000", 0x36, 0x1600}, {&(0x7f0000011100)="8081000000180000ddf4655fddf4655fddf4655f00000000000001002000000010000800000000000af30200040000000000000000000000020000004000000002000000040000", 0x47, 0x1700}, {&(0x7f0000011a00)}, {&(0x7f0000012700)="111fc0d901000000803a0900803a09000000000006", 0x15, 0xc000}, {&(0x7f0000012d00)="2719c0d901000000803a0900803a09000000000006", 0x15, 0x10000}, {&(0x7f0000012e00)}, {0x0}], 0x0, &(0x7f0000000380)=ANY=[])
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000000080eff95"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000380)='rcu_utilization\x00', r3}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext2\x00', &(0x7f00000000c0)='./file0\x00', 0xa0, 0x0, &(0x7f0000000800), 0x31041, &(0x7f0000000400)={[{@data_journal}, {@grpquota}, {@delalloc}, {@noquota}], [{@fowner_eq={'fowner', 0x3d, 0xee00}}, {@measure}, {@fscontext={'fscontext', 0x3d, 'system_u'}}, {@obj_role}, {@context={'context', 0x3d, 'user_u'}}, {@smackfsroot={'smackfsroot', 0x3d, 'ext4\x00'}}, {@mask={'mask', 0x3d, 'MAY_APPEND'}}]})

03:48:31 executing program 1:
syz_emit_ethernet(0x22, &(0x7f0000000000)={@empty, @local}, 0x0)

03:48:31 executing program 3:
r0 = socket$packet(0x11, 0x3, 0x300)
sendmmsg(r0, &(0x7f000000e0c0)=[{{&(0x7f0000000000)=@ieee802154={0x24, @long}, 0x80, 0x0}}, {{&(0x7f00000019c0)=@ieee802154={0x24, @long}, 0x80, &(0x7f0000003000)=[{&(0x7f0000001a40)="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", 0x5e1}], 0x1}}], 0x2, 0x0)

03:48:31 executing program 4:
syz_mount_image$fuse(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
fchownat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0, 0xee01, 0x0)

03:48:31 executing program 1:
unshare(0x42040200)
socket$unix(0x1, 0x7, 0x0)
r0 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001c40)=@base={0x1b, 0x0, 0x0, 0x0, 0xc00, 0xffffffffffffffff, 0x0, '\x00', 0x0, r0, 0x0, 0x4}, 0x48)
ioctl$PPPIOCGFLAGS(r0, 0x8004745a, 0x0)

03:48:32 executing program 0:
r0 = syz_open_dev$vim2m(&(0x7f0000000040), 0x4, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000080)={0x2, @pix_mp={0x0, 0x0, 0x0, 0x5}})

[ 1663.223685][T22691] vcan0 speed is unknown, defaulting to 1000
03:48:32 executing program 4:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000200)=ANY=[@ANYBLOB="120100004e844e0858047f705336010203010902350001000000000904"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000a80)={0x84, &(0x7f0000000440), 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000580)={0x2c, &(0x7f00000002c0), 0x0, 0x0, 0x0, 0x0})

03:48:32 executing program 1:
unshare(0x42040200)
socket$unix(0x1, 0x7, 0x0)
r0 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001c40)=@base={0x1b, 0x0, 0x0, 0x0, 0xc00, 0xffffffffffffffff, 0x0, '\x00', 0x0, r0, 0x0, 0x4}, 0x48)
ioctl$PPPIOCGFLAGS(r0, 0x8004745a, 0x0)

03:48:32 executing program 2:
openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r0 = syz_io_uring_setup(0x1c87, &(0x7f0000000340), &(0x7f0000ee8000/0x4000)=nil, &(0x7f0000eea000/0x1000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307c, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3}, 0x0)
io_uring_enter(r0, 0x450e, 0x0, 0x0, 0x0, 0x0)

03:48:32 executing program 3:
unshare(0x42040200)
socket$unix(0x1, 0x7, 0x0)
r0 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001c40)=@base={0x1b, 0x0, 0x0, 0x0, 0xc00, 0xffffffffffffffff, 0x0, '\x00', 0x0, r0, 0x0, 0x4}, 0x48)
ioctl$PPPIOCGFLAGS(r0, 0x8004745a, 0x0)

03:48:32 executing program 0:
syz_usb_connect(0x0, 0x36, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0x16, 0xe2, 0x45, 0x10, 0x19d2, 0x3, 0x3ae5, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x2, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xff, 0xff, 0xff}}, {{0x9, 0x4, 0x0, 0x0, 0x1, 0xfb, 0x1b, 0x24, 0x0, [], [{}]}}]}}]}}, 0x0)

[ 1663.783232][T22704] loop5: detected capacity change from 0 to 1024
[ 1664.061576][T22707] vcan0 speed is unknown, defaulting to 1000
[ 1664.391064][T22708] vcan0 speed is unknown, defaulting to 1000
[ 1664.417575][T22704] ext4: Unknown parameter 'rcu_utilization'
03:48:33 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000000)=@newnexthop={0x24, 0x68, 0x1, 0x0, 0x0, {}, [@NHA_GROUP={0x4}, @NHA_GROUP_TYPE={0x6, 0x3, 0x1}]}, 0x24}}, 0x0)

03:48:33 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80000, 0xa, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000600100000f000000000000000000000004000000000002000020000020000000ddf4655fddf4655f0100ffff53ef010001000000ddf4655f000000000000000001000000000000000b0000000001000008000000d24200001203", 0x66, 0x400}, {&(0x7f0000010100)="0000000000000000000000006856d49a00cc4371bd6a7c893f2800450100", 0x1e}, {&(0x7f0000010e00)="ed41000000040000ddf4655fddf4655fddf4655f00000000000004002000000000000800050000000a", 0x29, 0x1500}, {&(0x7f0000011000)="8081000000180000ddf4655fddf4655fddf4655f00000000000001002000000010000800000000000af3020004000000000000000000", 0x36, 0x1600}, {&(0x7f0000011100)="8081000000180000ddf4655fddf4655fddf4655f00000000000001002000000010000800000000000af30200040000000000000000000000020000004000000002000000040000", 0x47, 0x1700}, {&(0x7f0000011a00)}, {&(0x7f0000012700)="111fc0d901000000803a0900803a09000000000006", 0x15, 0xc000}, {&(0x7f0000012d00)="2719c0d901000000803a0900803a09000000000006", 0x15, 0x10000}, {&(0x7f0000012e00)}, {0x0}], 0x0, &(0x7f0000000380)=ANY=[])
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000000080eff95"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000380)='rcu_utilization\x00', r3}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext2\x00', &(0x7f00000000c0)='./file0\x00', 0xa0, 0x0, &(0x7f0000000800), 0x31041, &(0x7f0000000400)={[{@data_journal}, {@grpquota}, {@delalloc}, {@noquota}], [{@fowner_eq={'fowner', 0x3d, 0xee00}}, {@measure}, {@fscontext={'fscontext', 0x3d, 'system_u'}}, {@obj_role}, {@context={'context', 0x3d, 'user_u'}}, {@smackfsroot={'smackfsroot', 0x3d, 'ext4\x00'}}, {@mask={'mask', 0x3d, 'MAY_APPEND'}}]})

03:48:33 executing program 3:
unshare(0x42040200)
socket$unix(0x1, 0x7, 0x0)
r0 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001c40)=@base={0x1b, 0x0, 0x0, 0x0, 0xc00, 0xffffffffffffffff, 0x0, '\x00', 0x0, r0, 0x0, 0x4}, 0x48)
ioctl$PPPIOCGFLAGS(r0, 0x8004745a, 0x0)

03:48:33 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000000)=@newnexthop={0x24, 0x68, 0x1, 0x0, 0x0, {}, [@NHA_GROUP={0x4}, @NHA_GROUP_TYPE={0x6, 0x3, 0x1}]}, 0x24}}, 0x0)

03:48:33 executing program 2:
openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r0 = syz_io_uring_setup(0x1c87, &(0x7f0000000340), &(0x7f0000ee8000/0x4000)=nil, &(0x7f0000eea000/0x1000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307c, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3}, 0x0)
io_uring_enter(r0, 0x450e, 0x0, 0x0, 0x0, 0x0)

[ 1665.066183][T22718] vcan0 speed is unknown, defaulting to 1000
03:48:34 executing program 0:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$RTC_WKALM_SET(r0, 0x4028700f, &(0x7f0000000180)={0x0, 0x0, {0x0, 0x0, 0x10000032, 0xe, 0x0, 0x6b731f7c}})

03:48:34 executing program 1:
unshare(0x42040200)
socket$unix(0x1, 0x7, 0x0)
r0 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001c40)=@base={0x1b, 0x0, 0x0, 0x0, 0xc00, 0xffffffffffffffff, 0x0, '\x00', 0x0, r0, 0x0, 0x4}, 0x48)
ioctl$PPPIOCGFLAGS(r0, 0x8004745a, 0x0)

03:48:34 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000000)=@newnexthop={0x24, 0x68, 0x1, 0x0, 0x0, {}, [@NHA_GROUP={0x4}, @NHA_GROUP_TYPE={0x6, 0x3, 0x1}]}, 0x24}}, 0x0)

[ 1665.830947][T22729] loop5: detected capacity change from 0 to 1024
03:48:34 executing program 0:
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000000)="48000000140081fb7059ae08060c04000aff0f03000004000011000000006fabca1b4e7d06a6bd7c493872f750375ed08a562ad6e74703c48f93b82a02000000461eb886a5e54e8f", 0x48}], 0x1}, 0x0)

[ 1665.884189][T22734] vcan0 speed is unknown, defaulting to 1000
03:48:34 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000000)=@newnexthop={0x24, 0x68, 0x1, 0x0, 0x0, {}, [@NHA_GROUP={0x4}, @NHA_GROUP_TYPE={0x6, 0x3, 0x1}]}, 0x24}}, 0x0)

[ 1666.028530][T22729] ext4: Unknown parameter 'rcu_utilization'
03:48:35 executing program 4:
r0 = socket$packet(0x11, 0x2, 0x300)
fstatfs(r0, 0x0)

03:48:35 executing program 0:
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000000)="48000000140081fb7059ae08060c04000aff0f03000004000011000000006fabca1b4e7d06a6bd7c493872f750375ed08a562ad6e74703c48f93b82a02000000461eb886a5e54e8f", 0x48}], 0x1}, 0x0)

03:48:35 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80000, 0xa, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000600100000f000000000000000000000004000000000002000020000020000000ddf4655fddf4655f0100ffff53ef010001000000ddf4655f000000000000000001000000000000000b0000000001000008000000d24200001203", 0x66, 0x400}, {&(0x7f0000010100)="0000000000000000000000006856d49a00cc4371bd6a7c893f2800450100", 0x1e}, {&(0x7f0000010e00)="ed41000000040000ddf4655fddf4655fddf4655f00000000000004002000000000000800050000000a", 0x29, 0x1500}, {&(0x7f0000011000)="8081000000180000ddf4655fddf4655fddf4655f00000000000001002000000010000800000000000af3020004000000000000000000", 0x36, 0x1600}, {&(0x7f0000011100)="8081000000180000ddf4655fddf4655fddf4655f00000000000001002000000010000800000000000af30200040000000000000000000000020000004000000002000000040000", 0x47, 0x1700}, {&(0x7f0000011a00)}, {&(0x7f0000012700)="111fc0d901000000803a0900803a09000000000006", 0x15, 0xc000}, {&(0x7f0000012d00)="2719c0d901000000803a0900803a09000000000006", 0x15, 0x10000}, {&(0x7f0000012e00)}, {0x0}], 0x0, &(0x7f0000000380)=ANY=[])
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000000080eff95"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000380)='rcu_utilization\x00', r3}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext2\x00', &(0x7f00000000c0)='./file0\x00', 0xa0, 0x0, &(0x7f0000000800), 0x31041, &(0x7f0000000400)={[{@data_journal}, {@grpquota}, {@delalloc}, {@noquota}], [{@fowner_eq={'fowner', 0x3d, 0xee00}}, {@measure}, {@fscontext={'fscontext', 0x3d, 'system_u'}}, {@obj_role}, {@context={'context', 0x3d, 'user_u'}}, {@smackfsroot={'smackfsroot', 0x3d, 'ext4\x00'}}, {@mask={'mask', 0x3d, 'MAY_APPEND'}}]})

03:48:35 executing program 3:
unshare(0x42040200)
socket$unix(0x1, 0x7, 0x0)
r0 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001c40)=@base={0x1b, 0x0, 0x0, 0x0, 0xc00, 0xffffffffffffffff, 0x0, '\x00', 0x0, r0, 0x0, 0x4}, 0x48)
ioctl$PPPIOCGFLAGS(r0, 0x8004745a, 0x0)

03:48:35 executing program 0:
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000000)="48000000140081fb7059ae08060c04000aff0f03000004000011000000006fabca1b4e7d06a6bd7c493872f750375ed08a562ad6e74703c48f93b82a02000000461eb886a5e54e8f", 0x48}], 0x1}, 0x0)

03:48:35 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000000)={0x4, 0x2, &(0x7f00000000c0)=@raw=[@call={0x85, 0x0, 0x0, 0x5f}, @exit], &(0x7f0000000100)='syzkaller\x00', 0x1, 0xca, &(0x7f0000000140)=""/202, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

[ 1667.108145][T22752] vcan0 speed is unknown, defaulting to 1000
03:48:36 executing program 0:
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000000)="48000000140081fb7059ae08060c04000aff0f03000004000011000000006fabca1b4e7d06a6bd7c493872f750375ed08a562ad6e74703c48f93b82a02000000461eb886a5e54e8f", 0x48}], 0x1}, 0x0)

03:48:36 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000000)={0x4, 0x2, &(0x7f00000000c0)=@raw=[@call={0x85, 0x0, 0x0, 0x5f}, @exit], &(0x7f0000000100)='syzkaller\x00', 0x1, 0xca, &(0x7f0000000140)=""/202, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

03:48:36 executing program 1:
unshare(0x42040200)
socket$unix(0x1, 0x7, 0x0)
r0 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001c40)=@base={0x1b, 0x0, 0x0, 0x0, 0xc00, 0xffffffffffffffff, 0x0, '\x00', 0x0, r0, 0x0, 0x4}, 0x48)
ioctl$PPPIOCGFLAGS(r0, 0x8004745a, 0x0)

03:48:36 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TCSETS(r0, 0x5402, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "69f63132d1a07461ffc92802ea9a1c6727e979"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "0040001e1d013c81fcf76000"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TCSETS(r0, 0x5402, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x6, 0x0, "e79e01aa00"})
read$FUSE(r2, &(0x7f0000006340)={0x2020}, 0x2058)

[ 1667.374279][T22758] loop5: detected capacity change from 0 to 1024
[ 1667.460067][T22758] ext4: Unknown parameter 'rcu_utilization'
03:48:36 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000000)={0x4, 0x2, &(0x7f00000000c0)=@raw=[@call={0x85, 0x0, 0x0, 0x5f}, @exit], &(0x7f0000000100)='syzkaller\x00', 0x1, 0xca, &(0x7f0000000140)=""/202, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

03:48:36 executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000040000000000000000850000000e000000850000000e00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000500)='sys_exit\x00', r0}, 0x10)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000240)={0x0, <r2=>0x0}, &(0x7f0000000280)=0x5)
setuid(r2)
clock_nanosleep(0x8, 0x0, &(0x7f0000000300), 0x0)

[ 1667.683466][T22765] vcan0 speed is unknown, defaulting to 1000
03:48:36 executing program 2:
unshare(0x6c060000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0)
r0 = socket(0x11, 0x800000003, 0x0)
bind(r0, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80)
getsockname$packet(r0, &(0x7f00000003c0)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="2c00000024000bc6ccba90000000000000000000", @ANYRES32=r1, @ANYBLOB="00000000ffffffff0000000008000100647272"], 0x2c}}, 0x0)
r3 = socket(0x11, 0x800000003, 0x0)
bind(r3, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0x14)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x9}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_EMATCHES={0x10, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x200}}, @TCA_EMATCH_TREE_LIST={0x4}]}]}}]}, 0x44}, 0x1, 0x100000000000000}, 0x0)

03:48:37 executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000040000000000000000850000000e000000850000000e00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000500)='sys_exit\x00', r0}, 0x10)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000240)={0x0, <r2=>0x0}, &(0x7f0000000280)=0x5)
setuid(r2)
clock_nanosleep(0x8, 0x0, &(0x7f0000000300), 0x0)

03:48:37 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000000)={0x4, 0x2, &(0x7f00000000c0)=@raw=[@call={0x85, 0x0, 0x0, 0x5f}, @exit], &(0x7f0000000100)='syzkaller\x00', 0x1, 0xca, &(0x7f0000000140)=""/202, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

[ 1668.407879][T22775] vcan0 speed is unknown, defaulting to 1000
03:48:37 executing program 3:
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x12, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x6b, 0x11, 0x28}]}, &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f0000000200)=""/4096, 0x0, 0x0, '\x00', 0x0, 0xe, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70)

03:48:37 executing program 5:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000500)={0x6c, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0x12, 0x3, 'bitmap:ip,mac\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_DATA={0x20, 0x7, 0x0, 0x1, [@IPSET_ATTR_CIDR={0x5, 0x3, 0x1f}, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}, @IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x14}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x6c}}, 0x0)

03:48:37 executing program 4:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_STATUS(r0, 0xc05c5340, &(0x7f0000000140)={0x3ff})

03:48:37 executing program 3:
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x12, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x6b, 0x11, 0x28}]}, &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f0000000200)=""/4096, 0x0, 0x0, '\x00', 0x0, 0xe, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70)

03:48:37 executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000040000000000000000850000000e000000850000000e00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000500)='sys_exit\x00', r0}, 0x10)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000240)={0x0, <r2=>0x0}, &(0x7f0000000280)=0x5)
setuid(r2)
clock_nanosleep(0x8, 0x0, &(0x7f0000000300), 0x0)

03:48:37 executing program 5:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000500)={0x6c, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0x12, 0x3, 'bitmap:ip,mac\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_DATA={0x20, 0x7, 0x0, 0x1, [@IPSET_ATTR_CIDR={0x5, 0x3, 0x1f}, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}, @IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x14}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x6c}}, 0x0)

03:48:37 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x1f}]}, @NFT_MSG_NEWSETELEM={0x3c, 0xe, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8}]}]}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0xc0}}, 0x0)

03:48:37 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000fd000095"], &(0x7f00000000c0)='syzkaller\x00', 0x4, 0x91, &(0x7f0000000000)=""/145, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$xdp(0x2c, 0x3, 0x0)
r2 = dup(r1)
setsockopt$XDP_UMEM_FILL_RING(r2, 0x11b, 0x5, &(0x7f00000002c0)=0x562ef5fce1b33a64, 0x4)

03:48:38 executing program 3:
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x12, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x6b, 0x11, 0x28}]}, &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f0000000200)=""/4096, 0x0, 0x0, '\x00', 0x0, 0xe, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70)

03:48:38 executing program 2:
unshare(0x6c060000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0)
r0 = socket(0x11, 0x800000003, 0x0)
bind(r0, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80)
getsockname$packet(r0, &(0x7f00000003c0)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="2c00000024000bc6ccba90000000000000000000", @ANYRES32=r1, @ANYBLOB="00000000ffffffff0000000008000100647272"], 0x2c}}, 0x0)
r3 = socket(0x11, 0x800000003, 0x0)
bind(r3, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0x14)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x9}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_EMATCHES={0x10, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x200}}, @TCA_EMATCH_TREE_LIST={0x4}]}]}}]}, 0x44}, 0x1, 0x100000000000000}, 0x0)

03:48:38 executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000040000000000000000850000000e000000850000000e00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000500)='sys_exit\x00', r0}, 0x10)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000240)={0x0, <r2=>0x0}, &(0x7f0000000280)=0x5)
setuid(r2)
clock_nanosleep(0x8, 0x0, &(0x7f0000000300), 0x0)

03:48:38 executing program 5:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000500)={0x6c, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0x12, 0x3, 'bitmap:ip,mac\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_DATA={0x20, 0x7, 0x0, 0x1, [@IPSET_ATTR_CIDR={0x5, 0x3, 0x1f}, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}, @IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x14}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x6c}}, 0x0)

03:48:38 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000fd000095"], &(0x7f00000000c0)='syzkaller\x00', 0x4, 0x91, &(0x7f0000000000)=""/145, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$xdp(0x2c, 0x3, 0x0)
r2 = dup(r1)
setsockopt$XDP_UMEM_FILL_RING(r2, 0x11b, 0x5, &(0x7f00000002c0)=0x562ef5fce1b33a64, 0x4)

03:48:38 executing program 3:
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x12, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x6b, 0x11, 0x28}]}, &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f0000000200)=""/4096, 0x0, 0x0, '\x00', 0x0, 0xe, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70)

03:48:38 executing program 0:
timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000040))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r0 = syz_io_uring_setup(0x2de7, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000200)=<r2=>0x0)
openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index, 0x0, 0x0}, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x27c6)
io_uring_enter(0xffffffffffffffff, 0x6c76, 0xa5b2, 0x1, 0x0, 0x0)
io_uring_enter(r0, 0x22ff, 0x0, 0x100000000000000, 0x0, 0x0)
syz_io_uring_setup(0x183, &(0x7f0000000180), &(0x7f0000148000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000040)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4)
r5 = socket$inet(0x2, 0x4000000000000001, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000280)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x80, &(0x7f0000000200)=@in={0x2, 0x0, @private}}, 0x0)
r6 = syz_io_uring_setup(0x2c44, &(0x7f00000007c0), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ff0000/0x10000)=nil, &(0x7f0000000840), &(0x7f0000000880)=<r7=>0x0)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r6, 0xa, 0x0, r8)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(0xffffffffffffffff, 0xa, 0x0, r9)
syz_io_uring_submit(0x0, r7, &(0x7f0000000400)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x4, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x1, {0x2, r9}}, 0x0)
syz_io_uring_submit(r1, r4, &(0x7f00000003c0)=@IORING_OP_LINK_TIMEOUT={0xf, 0x1, 0x0, 0x0, 0x0, &(0x7f0000000380)={0x77359400}, 0x1, 0x1, 0x0, {0x0, r8}}, 0x2)
io_pgetevents(0x0, 0x80, 0xa, &(0x7f0000000240)=[{}, {}, {}, {}, {}, {}, {}, {}, {}, {}], &(0x7f0000000000), &(0x7f00000000c0)={&(0x7f0000000080)={[0x100000000]}, 0x8})

03:48:38 executing program 5:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000500)={0x6c, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0x12, 0x3, 'bitmap:ip,mac\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_DATA={0x20, 0x7, 0x0, 0x1, [@IPSET_ATTR_CIDR={0x5, 0x3, 0x1f}, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}, @IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x14}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x6c}}, 0x0)

[ 1669.944623][T22808] vcan0 speed is unknown, defaulting to 1000
03:48:38 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000fd000095"], &(0x7f00000000c0)='syzkaller\x00', 0x4, 0x91, &(0x7f0000000000)=""/145, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$xdp(0x2c, 0x3, 0x0)
r2 = dup(r1)
setsockopt$XDP_UMEM_FILL_RING(r2, 0x11b, 0x5, &(0x7f00000002c0)=0x562ef5fce1b33a64, 0x4)

03:48:38 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x1f}]}, @NFT_MSG_NEWSETELEM={0x3c, 0xe, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8}]}]}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0xc0}}, 0x0)

03:48:39 executing program 3:
r0 = syz_io_uring_setup(0x18d, &(0x7f00000002c0), &(0x7f0000ff9000/0x4000)=nil, &(0x7f00006d3000/0x2000)=nil, &(0x7f0000000540)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$phonet(0x23, 0x2, 0x1)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000001980)={&(0x7f0000000040)=@hci, 0x80, 0x0}}, 0x0)
io_uring_enter(r0, 0x10004c0b, 0x0, 0x0, 0x0, 0x0)

03:48:39 executing program 5:
r0 = socket(0xa, 0x3, 0x8)
sendto$l2tp6(r0, &(0x7f0000000040)='-', 0x1, 0xfffffffe, &(0x7f0000000140)={0xa, 0x0, 0x0, @dev}, 0x20)

03:48:39 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000fd000095"], &(0x7f00000000c0)='syzkaller\x00', 0x4, 0x91, &(0x7f0000000000)=""/145, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$xdp(0x2c, 0x3, 0x0)
r2 = dup(r1)
setsockopt$XDP_UMEM_FILL_RING(r2, 0x11b, 0x5, &(0x7f00000002c0)=0x562ef5fce1b33a64, 0x4)

03:48:41 executing program 2:
unshare(0x6c060000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0)
r0 = socket(0x11, 0x800000003, 0x0)
bind(r0, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80)
getsockname$packet(r0, &(0x7f00000003c0)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="2c00000024000bc6ccba90000000000000000000", @ANYRES32=r1, @ANYBLOB="00000000ffffffff0000000008000100647272"], 0x2c}}, 0x0)
r3 = socket(0x11, 0x800000003, 0x0)
bind(r3, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0x14)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x9}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_EMATCHES={0x10, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x200}}, @TCA_EMATCH_TREE_LIST={0x4}]}]}}]}, 0x44}, 0x1, 0x100000000000000}, 0x0)

03:48:41 executing program 3:
r0 = syz_io_uring_setup(0x18d, &(0x7f00000002c0), &(0x7f0000ff9000/0x4000)=nil, &(0x7f00006d3000/0x2000)=nil, &(0x7f0000000540)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$phonet(0x23, 0x2, 0x1)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000001980)={&(0x7f0000000040)=@hci, 0x80, 0x0}}, 0x0)
io_uring_enter(r0, 0x10004c0b, 0x0, 0x0, 0x0, 0x0)

03:48:41 executing program 5:
r0 = socket(0xa, 0x3, 0x8)
sendto$l2tp6(r0, &(0x7f0000000040)='-', 0x1, 0xfffffffe, &(0x7f0000000140)={0xa, 0x0, 0x0, @dev}, 0x20)

03:48:41 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = dup(r0)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x60, 0x2, 0x6, 0x5, 0x0, 0xf0ffff, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8}, @IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x0}]}, @IPSET_ATTR_TYPENAME={0x13, 0x3, 'hash:net,iface\x00'}]}, 0x60}}, 0x0)

03:48:41 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = dup(r0)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x60, 0x2, 0x6, 0x5, 0x0, 0xf0ffff, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8}, @IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x0}]}, @IPSET_ATTR_TYPENAME={0x13, 0x3, 'hash:net,iface\x00'}]}, 0x60}}, 0x0)

[ 1673.657558][T22836] vcan0 speed is unknown, defaulting to 1000
03:48:44 executing program 0:
timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000040))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r0 = syz_io_uring_setup(0x2de7, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000200)=<r2=>0x0)
openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index, 0x0, 0x0}, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x27c6)
io_uring_enter(0xffffffffffffffff, 0x6c76, 0xa5b2, 0x1, 0x0, 0x0)
io_uring_enter(r0, 0x22ff, 0x0, 0x100000000000000, 0x0, 0x0)
syz_io_uring_setup(0x183, &(0x7f0000000180), &(0x7f0000148000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000040)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4)
r5 = socket$inet(0x2, 0x4000000000000001, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000280)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x80, &(0x7f0000000200)=@in={0x2, 0x0, @private}}, 0x0)
r6 = syz_io_uring_setup(0x2c44, &(0x7f00000007c0), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ff0000/0x10000)=nil, &(0x7f0000000840), &(0x7f0000000880)=<r7=>0x0)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r6, 0xa, 0x0, r8)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(0xffffffffffffffff, 0xa, 0x0, r9)
syz_io_uring_submit(0x0, r7, &(0x7f0000000400)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x4, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x1, {0x2, r9}}, 0x0)
syz_io_uring_submit(r1, r4, &(0x7f00000003c0)=@IORING_OP_LINK_TIMEOUT={0xf, 0x1, 0x0, 0x0, 0x0, &(0x7f0000000380)={0x77359400}, 0x1, 0x1, 0x0, {0x0, r8}}, 0x2)
io_pgetevents(0x0, 0x80, 0xa, &(0x7f0000000240)=[{}, {}, {}, {}, {}, {}, {}, {}, {}, {}], &(0x7f0000000000), &(0x7f00000000c0)={&(0x7f0000000080)={[0x100000000]}, 0x8})

03:48:44 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x1f}]}, @NFT_MSG_NEWSETELEM={0x3c, 0xe, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8}]}]}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0xc0}}, 0x0)

03:48:44 executing program 5:
r0 = socket(0xa, 0x3, 0x8)
sendto$l2tp6(r0, &(0x7f0000000040)='-', 0x1, 0xfffffffe, &(0x7f0000000140)={0xa, 0x0, 0x0, @dev}, 0x20)

03:48:44 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = dup(r0)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x60, 0x2, 0x6, 0x5, 0x0, 0xf0ffff, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8}, @IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x0}]}, @IPSET_ATTR_TYPENAME={0x13, 0x3, 'hash:net,iface\x00'}]}, 0x60}}, 0x0)

03:48:44 executing program 3:
r0 = syz_io_uring_setup(0x18d, &(0x7f00000002c0), &(0x7f0000ff9000/0x4000)=nil, &(0x7f00006d3000/0x2000)=nil, &(0x7f0000000540)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$phonet(0x23, 0x2, 0x1)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000001980)={&(0x7f0000000040)=@hci, 0x80, 0x0}}, 0x0)
io_uring_enter(r0, 0x10004c0b, 0x0, 0x0, 0x0, 0x0)

03:48:44 executing program 2:
unshare(0x6c060000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0)
r0 = socket(0x11, 0x800000003, 0x0)
bind(r0, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80)
getsockname$packet(r0, &(0x7f00000003c0)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="2c00000024000bc6ccba90000000000000000000", @ANYRES32=r1, @ANYBLOB="00000000ffffffff0000000008000100647272"], 0x2c}}, 0x0)
r3 = socket(0x11, 0x800000003, 0x0)
bind(r3, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0x14)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x9}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_EMATCHES={0x10, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x200}}, @TCA_EMATCH_TREE_LIST={0x4}]}]}}]}, 0x44}, 0x1, 0x100000000000000}, 0x0)

[ 1675.801240][T22848] vcan0 speed is unknown, defaulting to 1000
03:48:44 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = dup(r0)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x60, 0x2, 0x6, 0x5, 0x0, 0xf0ffff, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8}, @IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x0}]}, @IPSET_ATTR_TYPENAME={0x13, 0x3, 'hash:net,iface\x00'}]}, 0x60}}, 0x0)

03:48:45 executing program 5:
r0 = socket(0xa, 0x3, 0x8)
sendto$l2tp6(r0, &(0x7f0000000040)='-', 0x1, 0xfffffffe, &(0x7f0000000140)={0xa, 0x0, 0x0, @dev}, 0x20)

03:48:45 executing program 3:
r0 = syz_io_uring_setup(0x18d, &(0x7f00000002c0), &(0x7f0000ff9000/0x4000)=nil, &(0x7f00006d3000/0x2000)=nil, &(0x7f0000000540)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$phonet(0x23, 0x2, 0x1)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000001980)={&(0x7f0000000040)=@hci, 0x80, 0x0}}, 0x0)
io_uring_enter(r0, 0x10004c0b, 0x0, 0x0, 0x0, 0x0)

03:48:45 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x1f}]}, @NFT_MSG_NEWSETELEM={0x3c, 0xe, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8}]}]}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0xc0}}, 0x0)

03:48:46 executing program 4:
syz_usb_connect$cdc_ecm(0x0, 0x56, &(0x7f0000000000)={{0x12, 0x1, 0x310, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x44, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x3, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}, {[{{0x9, 0x5, 0x81, 0x3, 0x40, 0x1}}], {{0x9, 0x5, 0x82, 0x2, 0x10}}}}}]}}]}}, &(0x7f0000000380)={0x0, 0x0, 0x11, &(0x7f0000000100)={0x5, 0xf, 0x11, 0x1, [@ssp_cap={0xc}]}})

03:48:46 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000008c0)={0x2c, 0x1d, 0x1, 0x0, 0x0, "", [@nested={0x6, 0x0, 0x0, 0x1, [@typed={0x8, 0x1, 0x0, 0x0, @uid}, @typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x0, 0x0, 0x0, @uid}]}]}, 0x2c}], 0x1}, 0x0)

03:48:50 executing program 0:
timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000040))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r0 = syz_io_uring_setup(0x2de7, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000200)=<r2=>0x0)
openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index, 0x0, 0x0}, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x27c6)
io_uring_enter(0xffffffffffffffff, 0x6c76, 0xa5b2, 0x1, 0x0, 0x0)
io_uring_enter(r0, 0x22ff, 0x0, 0x100000000000000, 0x0, 0x0)
syz_io_uring_setup(0x183, &(0x7f0000000180), &(0x7f0000148000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000040)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4)
r5 = socket$inet(0x2, 0x4000000000000001, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000280)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x80, &(0x7f0000000200)=@in={0x2, 0x0, @private}}, 0x0)
r6 = syz_io_uring_setup(0x2c44, &(0x7f00000007c0), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ff0000/0x10000)=nil, &(0x7f0000000840), &(0x7f0000000880)=<r7=>0x0)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r6, 0xa, 0x0, r8)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(0xffffffffffffffff, 0xa, 0x0, r9)
syz_io_uring_submit(0x0, r7, &(0x7f0000000400)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x4, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x1, {0x2, r9}}, 0x0)
syz_io_uring_submit(r1, r4, &(0x7f00000003c0)=@IORING_OP_LINK_TIMEOUT={0xf, 0x1, 0x0, 0x0, 0x0, &(0x7f0000000380)={0x77359400}, 0x1, 0x1, 0x0, {0x0, r8}}, 0x2)
io_pgetevents(0x0, 0x80, 0xa, &(0x7f0000000240)=[{}, {}, {}, {}, {}, {}, {}, {}, {}, {}], &(0x7f0000000000), &(0x7f00000000c0)={&(0x7f0000000080)={[0x100000000]}, 0x8})

03:48:50 executing program 5:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f00000003c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@union={0x0, 0x1, 0x0, 0x5, 0x0, 0x0, [{0x0, 0x5}]}]}}, 0x0, 0x32}, 0x20)

03:48:50 executing program 2:
r0 = socket$inet6_dccp(0xa, 0x6, 0x0)
getsockopt$inet6_int(r0, 0x29, 0x31, 0x0, &(0x7f00000000c0))

03:48:50 executing program 1:
r0 = syz_mount_image$msdos(&(0x7f0000001a80), &(0x7f0000000180)='./file1\x00', 0xaea1, 0x1, &(0x7f0000000300)=[{&(0x7f0000000140)="040005090000000066617400040409000200027400f801", 0x17}], 0x0, &(0x7f0000000080)=ANY=[])
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="910000000000007ffffffffd6e9c2206c61803501ff53c9f068b3f421d67e78282a28ed1338967ada5c4a75da93aee5dad888b5d2656a1972953cd56eb7e8749f4b21f"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x800001, 0x28011, r1, 0x0)
mkdirat(r0, &(0x7f0000000040)='./file1\x00', 0x0)

03:48:50 executing program 3:
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, 0x1c)
shutdown(r0, 0x1)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x7d, &(0x7f000000bd40), &(0x7f0000006640)=0x8)

03:48:50 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$inet(r0, &(0x7f0000006d80)=[{{&(0x7f0000000000)={0x2, 0x4e22, @loopback}, 0x10, 0x0}}, {{&(0x7f00000005c0)={0x2, 0x4e22, @broadcast}, 0x10, 0x0, 0x0, &(0x7f0000002c80)=[@ip_retopts={{0x18, 0x0, 0x7, {[@timestamp_prespec={0x44, 0x2}, @rr={0x7, 0x3}]}}}], 0x18}}], 0x2, 0x0)

03:48:50 executing program 5:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f00000003c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@union={0x0, 0x1, 0x0, 0x5, 0x0, 0x0, [{0x0, 0x5}]}]}}, 0x0, 0x32}, 0x20)

03:48:50 executing program 3:
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, 0x1c)
shutdown(r0, 0x1)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x7d, &(0x7f000000bd40), &(0x7f0000006640)=0x8)

03:48:51 executing program 1:
r0 = syz_open_dev$vbi(&(0x7f00000000c0), 0x3, 0x2)
ioctl$VIDIOC_ENUMOUTPUT(r0, 0xc0485630, &(0x7f0000000000)={0x2, "70d0ef27b56e64f52b512b1f28c5e0f58bd0f2a14d1df870f205b73a4af8d65c"})

[ 1682.345567][ T1192] ieee802154 phy1 wpan1: encryption failed: -22
03:48:51 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$inet(r0, &(0x7f0000006d80)=[{{&(0x7f0000000000)={0x2, 0x4e22, @loopback}, 0x10, 0x0}}, {{&(0x7f00000005c0)={0x2, 0x4e22, @broadcast}, 0x10, 0x0, 0x0, &(0x7f0000002c80)=[@ip_retopts={{0x18, 0x0, 0x7, {[@timestamp_prespec={0x44, 0x2}, @rr={0x7, 0x3}]}}}], 0x18}}], 0x2, 0x0)

03:48:51 executing program 5:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f00000003c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@union={0x0, 0x1, 0x0, 0x5, 0x0, 0x0, [{0x0, 0x5}]}]}}, 0x0, 0x32}, 0x20)

03:48:51 executing program 2:
r0 = socket$inet6_dccp(0xa, 0x6, 0x0)
getsockopt$inet6_int(r0, 0x29, 0x31, 0x0, &(0x7f00000000c0))

03:48:56 executing program 0:
timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000040))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r0 = syz_io_uring_setup(0x2de7, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000200)=<r2=>0x0)
openat(0xffffffffffffff9c, &(0x7f0000002040)='./bus\x00', 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index, 0x0, 0x0}, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x27c6)
io_uring_enter(0xffffffffffffffff, 0x6c76, 0xa5b2, 0x1, 0x0, 0x0)
io_uring_enter(r0, 0x22ff, 0x0, 0x100000000000000, 0x0, 0x0)
syz_io_uring_setup(0x183, &(0x7f0000000180), &(0x7f0000148000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000040)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4)
r5 = socket$inet(0x2, 0x4000000000000001, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000280)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x80, &(0x7f0000000200)=@in={0x2, 0x0, @private}}, 0x0)
r6 = syz_io_uring_setup(0x2c44, &(0x7f00000007c0), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ff0000/0x10000)=nil, &(0x7f0000000840), &(0x7f0000000880)=<r7=>0x0)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r6, 0xa, 0x0, r8)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(0xffffffffffffffff, 0xa, 0x0, r9)
syz_io_uring_submit(0x0, r7, &(0x7f0000000400)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x4, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x1, {0x2, r9}}, 0x0)
syz_io_uring_submit(r1, r4, &(0x7f00000003c0)=@IORING_OP_LINK_TIMEOUT={0xf, 0x1, 0x0, 0x0, 0x0, &(0x7f0000000380)={0x77359400}, 0x1, 0x1, 0x0, {0x0, r8}}, 0x2)
io_pgetevents(0x0, 0x80, 0xa, &(0x7f0000000240)=[{}, {}, {}, {}, {}, {}, {}, {}, {}, {}], &(0x7f0000000000), &(0x7f00000000c0)={&(0x7f0000000080)={[0x100000000]}, 0x8})

03:48:56 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$inet(r0, &(0x7f0000006d80)=[{{&(0x7f0000000000)={0x2, 0x4e22, @loopback}, 0x10, 0x0}}, {{&(0x7f00000005c0)={0x2, 0x4e22, @broadcast}, 0x10, 0x0, 0x0, &(0x7f0000002c80)=[@ip_retopts={{0x18, 0x0, 0x7, {[@timestamp_prespec={0x44, 0x2}, @rr={0x7, 0x3}]}}}], 0x18}}], 0x2, 0x0)

03:48:56 executing program 5:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f00000003c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@union={0x0, 0x1, 0x0, 0x5, 0x0, 0x0, [{0x0, 0x5}]}]}}, 0x0, 0x32}, 0x20)

03:48:56 executing program 2:
r0 = socket$inet6_dccp(0xa, 0x6, 0x0)
getsockopt$inet6_int(r0, 0x29, 0x31, 0x0, &(0x7f00000000c0))

03:48:56 executing program 3:
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, 0x1c)
shutdown(r0, 0x1)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x7d, &(0x7f000000bd40), &(0x7f0000006640)=0x8)

03:48:56 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000003e00)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x40, 0x16, 0xa, 0x1, 0x0, 0x0, {0x1}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_FLOWTABLE_HOOK={0x14, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}]}]}, @NFT_MSG_DELFLOWTABLE={0x2c, 0x18, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0xb4}}, 0x0)

03:48:56 executing program 2:
r0 = socket$inet6_dccp(0xa, 0x6, 0x0)
getsockopt$inet6_int(r0, 0x29, 0x31, 0x0, &(0x7f00000000c0))

03:48:56 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000003e00)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x40, 0x16, 0xa, 0x1, 0x0, 0x0, {0x1}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_FLOWTABLE_HOOK={0x14, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}]}]}, @NFT_MSG_DELFLOWTABLE={0x2c, 0x18, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0xb4}}, 0x0)

03:48:56 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$inet(r0, &(0x7f0000006d80)=[{{&(0x7f0000000000)={0x2, 0x4e22, @loopback}, 0x10, 0x0}}, {{&(0x7f00000005c0)={0x2, 0x4e22, @broadcast}, 0x10, 0x0, 0x0, &(0x7f0000002c80)=[@ip_retopts={{0x18, 0x0, 0x7, {[@timestamp_prespec={0x44, 0x2}, @rr={0x7, 0x3}]}}}], 0x18}}], 0x2, 0x0)

03:48:56 executing program 5:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f00000004c0)='sys_exit\x00', r0}, 0x10)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000240)={0x0, <r2=>0x0}, &(0x7f0000000280)=0x31)
ioprio_set$uid(0x3, r2, 0x0)

03:48:56 executing program 3:
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, 0x1c)
shutdown(r0, 0x1)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x7d, &(0x7f000000bd40), &(0x7f0000006640)=0x8)

03:48:57 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000003e00)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x40, 0x16, 0xa, 0x1, 0x0, 0x0, {0x1}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_FLOWTABLE_HOOK={0x14, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}]}]}, @NFT_MSG_DELFLOWTABLE={0x2c, 0x18, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0xb4}}, 0x0)

03:48:59 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000003e00)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x40, 0x16, 0xa, 0x1, 0x0, 0x0, {0x1}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_FLOWTABLE_HOOK={0x14, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}]}]}, @NFT_MSG_DELFLOWTABLE={0x2c, 0x18, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0xb4}}, 0x0)

03:48:59 executing program 5:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f00000004c0)='sys_exit\x00', r0}, 0x10)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000240)={0x0, <r2=>0x0}, &(0x7f0000000280)=0x31)
ioprio_set$uid(0x3, r2, 0x0)

03:48:59 executing program 2:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f00000004c0)='sys_exit\x00', r0}, 0x10)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000240)={0x0, <r2=>0x0}, &(0x7f0000000280)=0x31)
ioprio_set$uid(0x3, r2, 0x0)

03:48:59 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=@newlink={0x54, 0x10, 0x5421, 0x0, 0x0, {}, [@IFLA_CARRIER={0x5}, @IFLA_VFINFO_LIST={0x18, 0x16, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, [@IFLA_VF_VLAN={0x10}]}]}, @IFLA_IFNAME={0x14, 0x3, 'syz_tun\x00'}]}, 0x54}}, 0x0)

03:48:59 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
ioctl$FITRIM(r1, 0x40305839, &(0x7f0000000240)={0x0, 0x0, 0x2be20000})
setsockopt$sock_timeval(r0, 0x1, 0x49, &(0x7f0000000040)={0x77359400}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)

03:48:59 executing program 0:
r0 = userfaultfd(0x1)
r1 = syz_open_dev$sg(&(0x7f0000000180), 0x0, 0x5)
writev(r1, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff8241000005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}], 0x1)
ppoll(&(0x7f0000000080)=[{r0}, {r1}], 0x2, 0x0, 0x0, 0x0)

03:48:59 executing program 0:
r0 = userfaultfd(0x1)
r1 = syz_open_dev$sg(&(0x7f0000000180), 0x0, 0x5)
writev(r1, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff8241000005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}], 0x1)
ppoll(&(0x7f0000000080)=[{r0}, {r1}], 0x2, 0x0, 0x0, 0x0)

[ 1690.663079][T22941] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
03:48:59 executing program 1:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000c80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_exit\x00', r0}, 0x10)
epoll_pwait2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)

03:48:59 executing program 0:
r0 = userfaultfd(0x1)
r1 = syz_open_dev$sg(&(0x7f0000000180), 0x0, 0x5)
writev(r1, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff8241000005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}], 0x1)
ppoll(&(0x7f0000000080)=[{r0}, {r1}], 0x2, 0x0, 0x0, 0x0)

03:48:59 executing program 2:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f00000004c0)='sys_exit\x00', r0}, 0x10)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000240)={0x0, <r2=>0x0}, &(0x7f0000000280)=0x31)
ioprio_set$uid(0x3, r2, 0x0)

03:48:59 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=@newlink={0x54, 0x10, 0x5421, 0x0, 0x0, {}, [@IFLA_CARRIER={0x5}, @IFLA_VFINFO_LIST={0x18, 0x16, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, [@IFLA_VF_VLAN={0x10}]}]}, @IFLA_IFNAME={0x14, 0x3, 'syz_tun\x00'}]}, 0x54}}, 0x0)

03:48:59 executing program 5:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f00000004c0)='sys_exit\x00', r0}, 0x10)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000240)={0x0, <r2=>0x0}, &(0x7f0000000280)=0x31)
ioprio_set$uid(0x3, r2, 0x0)

03:49:00 executing program 0:
r0 = userfaultfd(0x1)
r1 = syz_open_dev$sg(&(0x7f0000000180), 0x0, 0x5)
writev(r1, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff8241000005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}], 0x1)
ppoll(&(0x7f0000000080)=[{r0}, {r1}], 0x2, 0x0, 0x0, 0x0)

[ 1691.258900][T22960] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
03:49:00 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=@newlink={0x54, 0x10, 0x5421, 0x0, 0x0, {}, [@IFLA_CARRIER={0x5}, @IFLA_VFINFO_LIST={0x18, 0x16, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, [@IFLA_VF_VLAN={0x10}]}]}, @IFLA_IFNAME={0x14, 0x3, 'syz_tun\x00'}]}, 0x54}}, 0x0)

03:49:00 executing program 2:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f00000004c0)='sys_exit\x00', r0}, 0x10)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000240)={0x0, <r2=>0x0}, &(0x7f0000000280)=0x31)
ioprio_set$uid(0x3, r2, 0x0)

03:49:00 executing program 1:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000c80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_exit\x00', r0}, 0x10)
epoll_pwait2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)

[ 1691.632890][T22964] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
03:49:00 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
ioctl$FITRIM(r1, 0x40305839, &(0x7f0000000240)={0x0, 0x0, 0x2be20000})
setsockopt$sock_timeval(r0, 0x1, 0x49, &(0x7f0000000040)={0x77359400}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)

03:49:00 executing program 5:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f00000004c0)='sys_exit\x00', r0}, 0x10)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000240)={0x0, <r2=>0x0}, &(0x7f0000000280)=0x31)
ioprio_set$uid(0x3, r2, 0x0)

03:49:00 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=@newlink={0x54, 0x10, 0x5421, 0x0, 0x0, {}, [@IFLA_CARRIER={0x5}, @IFLA_VFINFO_LIST={0x18, 0x16, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, [@IFLA_VF_VLAN={0x10}]}]}, @IFLA_IFNAME={0x14, 0x3, 'syz_tun\x00'}]}, 0x54}}, 0x0)

03:49:00 executing program 0:
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, 0x0)

03:49:00 executing program 2:
r0 = syz_open_dev$usbmon(&(0x7f0000002600), 0x0, 0x0)
read$usbmon(r0, &(0x7f0000000000)=""/98, 0x62)

[ 1692.150776][T22973] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
03:49:01 executing program 1:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000c80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_exit\x00', r0}, 0x10)
epoll_pwait2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)

03:49:01 executing program 0:
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff})
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000280)={'netdevsim0\x00', &(0x7f00000000c0)=@ethtool_ringparam={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf4a9}})

03:49:01 executing program 2:
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
sendmsg$ETHTOOL_MSG_RINGS_SET(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)={0x30, r0, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_RINGS_RX_JUMBO={0x8, 0x8, 0xfffffffc}, @ETHTOOL_A_RINGS_TX={0x8}, @ETHTOOL_A_RINGS_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}]}, 0x30}}, 0x0)

03:49:01 executing program 2:
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
sendmsg$ETHTOOL_MSG_RINGS_SET(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)={0x30, r0, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_RINGS_RX_JUMBO={0x8, 0x8, 0xfffffffc}, @ETHTOOL_A_RINGS_TX={0x8}, @ETHTOOL_A_RINGS_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}]}, 0x30}}, 0x0)

03:49:01 executing program 1:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000c80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_exit\x00', r0}, 0x10)
epoll_pwait2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)

03:49:01 executing program 0:
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff})
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000280)={'netdevsim0\x00', &(0x7f00000000c0)=@ethtool_ringparam={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf4a9}})

03:49:01 executing program 2:
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
sendmsg$ETHTOOL_MSG_RINGS_SET(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)={0x30, r0, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_RINGS_RX_JUMBO={0x8, 0x8, 0xfffffffc}, @ETHTOOL_A_RINGS_TX={0x8}, @ETHTOOL_A_RINGS_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}]}, 0x30}}, 0x0)

03:49:02 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
ioctl$FITRIM(r1, 0x40305839, &(0x7f0000000240)={0x0, 0x0, 0x2be20000})
setsockopt$sock_timeval(r0, 0x1, 0x49, &(0x7f0000000040)={0x77359400}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)

03:49:02 executing program 0:
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff})
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000280)={'netdevsim0\x00', &(0x7f00000000c0)=@ethtool_ringparam={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf4a9}})

03:49:02 executing program 2:
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
sendmsg$ETHTOOL_MSG_RINGS_SET(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)={0x30, r0, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_RINGS_RX_JUMBO={0x8, 0x8, 0xfffffffc}, @ETHTOOL_A_RINGS_TX={0x8}, @ETHTOOL_A_RINGS_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}]}, 0x30}}, 0x0)

03:49:02 executing program 0:
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff})
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000280)={'netdevsim0\x00', &(0x7f00000000c0)=@ethtool_ringparam={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf4a9}})

03:49:03 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
ioctl$FITRIM(r1, 0x40305839, &(0x7f0000000240)={0x0, 0x0, 0x2be20000})
setsockopt$sock_timeval(r0, 0x1, 0x49, &(0x7f0000000040)={0x77359400}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)

03:49:03 executing program 0:
r0 = socket$pppoe(0x18, 0x1, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x1e, 0x0, &(0x7f0000000480))

03:49:03 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001880)={0x60, 0x0, 0x2, 0x401, 0x0, 0x0, {0x2}, [@CTA_EXPECT_TUPLE={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_EXPECT_MASK={0x24, 0x3, 0x0, 0x1, [@CTA_TUPLE_IP={0x8, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @broadcast}, {0x8, 0x2, @remote}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_EXPECT_MASTER={0x4}]}, 0x60}}, 0x0)

03:49:03 executing program 5:
r0 = openat$dsp1(0xffffff9c, &(0x7f0000000040), 0x0, 0x0)
read$dsp(r0, &(0x7f0000000080)=""/9, 0x9)
r1 = openat$adsp1(0xffffff9c, &(0x7f0000000140), 0x121c42, 0x0)
ioctl$SNDCTL_DSP_POST(r1, 0x5008, 0x0)

03:49:03 executing program 1:
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=@encrypted_new={'new ', 'default', 0x20, 'user:', 'syz', 0x20, 0xffd}, 0x2a, 0xfffffffffffffffc)
r0 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0x5ba8, 0xfffffffffffffffd)
keyctl$read(0xb, r0, &(0x7f0000000240)=""/112, 0x349b7f55)

03:49:03 executing program 2:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmmsg$inet(r0, &(0x7f0000000f40)=[{{&(0x7f0000000180)={0x2, 0x4e24, @local}, 0x10, 0x0}}, {{&(0x7f0000000380)={0xa, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}}], 0x2, 0x0)

[ 1694.929319][T23017] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1694.938838][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1694.968213][T23019] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1694.978036][T23019] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1694.987698][T23019] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
03:49:03 executing program 0:
r0 = socket$pppoe(0x18, 0x1, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x1e, 0x0, &(0x7f0000000480))

03:49:04 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001880)={0x60, 0x0, 0x2, 0x401, 0x0, 0x0, {0x2}, [@CTA_EXPECT_TUPLE={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_EXPECT_MASK={0x24, 0x3, 0x0, 0x1, [@CTA_TUPLE_IP={0x8, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @broadcast}, {0x8, 0x2, @remote}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_EXPECT_MASTER={0x4}]}, 0x60}}, 0x0)

03:49:04 executing program 1:
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=@encrypted_new={'new ', 'default', 0x20, 'user:', 'syz', 0x20, 0xffd}, 0x2a, 0xfffffffffffffffc)
r0 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0x5ba8, 0xfffffffffffffffd)
keyctl$read(0xb, r0, &(0x7f0000000240)=""/112, 0x349b7f55)

03:49:04 executing program 2:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmmsg$inet(r0, &(0x7f0000000f40)=[{{&(0x7f0000000180)={0x2, 0x4e24, @local}, 0x10, 0x0}}, {{&(0x7f0000000380)={0xa, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}}], 0x2, 0x0)

03:49:04 executing program 4:
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x5, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r2=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000080)={r0, r2, 0x29}, 0x10)

03:49:04 executing program 0:
r0 = socket$pppoe(0x18, 0x1, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x1e, 0x0, &(0x7f0000000480))

[ 1695.495370][T23029] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1695.505356][T23029] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1695.507640][T23028] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1695.517613][T23029] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1695.524456][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
03:49:04 executing program 1:
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=@encrypted_new={'new ', 'default', 0x20, 'user:', 'syz', 0x20, 0xffd}, 0x2a, 0xfffffffffffffffc)
r0 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0x5ba8, 0xfffffffffffffffd)
keyctl$read(0xb, r0, &(0x7f0000000240)=""/112, 0x349b7f55)

03:49:04 executing program 2:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmmsg$inet(r0, &(0x7f0000000f40)=[{{&(0x7f0000000180)={0x2, 0x4e24, @local}, 0x10, 0x0}}, {{&(0x7f0000000380)={0xa, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}}], 0x2, 0x0)

03:49:04 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001880)={0x60, 0x0, 0x2, 0x401, 0x0, 0x0, {0x2}, [@CTA_EXPECT_TUPLE={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_EXPECT_MASK={0x24, 0x3, 0x0, 0x1, [@CTA_TUPLE_IP={0x8, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @broadcast}, {0x8, 0x2, @remote}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_EXPECT_MASTER={0x4}]}, 0x60}}, 0x0)

[ 1696.094076][T23040] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1696.103772][T23040] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1696.114097][T23040] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
03:49:05 executing program 5:
r0 = openat$dsp1(0xffffff9c, &(0x7f0000000040), 0x0, 0x0)
read$dsp(r0, &(0x7f0000000080)=""/9, 0x9)
r1 = openat$adsp1(0xffffff9c, &(0x7f0000000140), 0x121c42, 0x0)
ioctl$SNDCTL_DSP_POST(r1, 0x5008, 0x0)

03:49:05 executing program 0:
r0 = socket$pppoe(0x18, 0x1, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x1e, 0x0, &(0x7f0000000480))

03:49:05 executing program 4:
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x5, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r2=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000080)={r0, r2, 0x29}, 0x10)

[ 1696.159143][T23042] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1696.168773][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
03:49:05 executing program 1:
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=@encrypted_new={'new ', 'default', 0x20, 'user:', 'syz', 0x20, 0xffd}, 0x2a, 0xfffffffffffffffc)
r0 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0x5ba8, 0xfffffffffffffffd)
keyctl$read(0xb, r0, &(0x7f0000000240)=""/112, 0x349b7f55)

03:49:05 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001880)={0x60, 0x0, 0x2, 0x401, 0x0, 0x0, {0x2}, [@CTA_EXPECT_TUPLE={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_EXPECT_MASK={0x24, 0x3, 0x0, 0x1, [@CTA_TUPLE_IP={0x8, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @broadcast}, {0x8, 0x2, @remote}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_EXPECT_MASTER={0x4}]}, 0x60}}, 0x0)

03:49:05 executing program 2:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmmsg$inet(r0, &(0x7f0000000f40)=[{{&(0x7f0000000180)={0x2, 0x4e24, @local}, 0x10, 0x0}}, {{&(0x7f0000000380)={0xa, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}}], 0x2, 0x0)

03:49:05 executing program 0:
r0 = openat$dsp1(0xffffff9c, &(0x7f0000000040), 0x0, 0x0)
read$dsp(r0, &(0x7f0000000080)=""/9, 0x9)
r1 = openat$adsp1(0xffffff9c, &(0x7f0000000140), 0x121c42, 0x0)
ioctl$SNDCTL_DSP_POST(r1, 0x5008, 0x0)

[ 1696.570832][T23054] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'.
03:49:05 executing program 0:
r0 = openat$dsp1(0xffffff9c, &(0x7f0000000040), 0x0, 0x0)
read$dsp(r0, &(0x7f0000000080)=""/9, 0x9)
r1 = openat$adsp1(0xffffff9c, &(0x7f0000000140), 0x121c42, 0x0)
ioctl$SNDCTL_DSP_POST(r1, 0x5008, 0x0)

[ 1696.705892][T23060] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1696.715495][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
03:49:05 executing program 3:
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x5, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r2=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000080)={r0, r2, 0x29}, 0x10)

03:49:05 executing program 1:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f00000004c0)={0x0, {0x0, 0x80000001, 0x9}})

03:49:05 executing program 2:
timer_create(0x3, 0x0, &(0x7f0000000080))
exit(0x0)
timer_gettime(0x0, &(0x7f00000001c0))

03:49:05 executing program 4:
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x5, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r2=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000080)={r0, r2, 0x29}, 0x10)

03:49:06 executing program 5:
r0 = openat$dsp1(0xffffff9c, &(0x7f0000000040), 0x0, 0x0)
read$dsp(r0, &(0x7f0000000080)=""/9, 0x9)
r1 = openat$adsp1(0xffffff9c, &(0x7f0000000140), 0x121c42, 0x0)
ioctl$SNDCTL_DSP_POST(r1, 0x5008, 0x0)

03:49:06 executing program 0:
r0 = openat$dsp1(0xffffff9c, &(0x7f0000000040), 0x0, 0x0)
read$dsp(r0, &(0x7f0000000080)=""/9, 0x9)
r1 = openat$adsp1(0xffffff9c, &(0x7f0000000140), 0x121c42, 0x0)
ioctl$SNDCTL_DSP_POST(r1, 0x5008, 0x0)

03:49:06 executing program 1:
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000140)=0xa0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000080)={@my=0x0})
ioctl$IOCTL_VMCI_DATAGRAM_SEND(r0, 0x7ab, &(0x7f0000000000)={&(0x7f0000000640)={{@my=0x0}, {@host}, 0x400, "4501272ae8fef5707f18c9148efd3d93d423c9d0dc5befbb2d5d5b7c3bbce452e00c77593b67a0a8dff433d73dc5f40e33dc3e15a5cc4497b947d1e0bc0929c3551bb74955d8c2ba0361050a9b81b63a3c72de427c3dd0fdf8fc268f59d0d74779a5e239039692c11fc011b86fd5dd54dbc84a4315b0c3308c4664a21193588bfa4493d9cb92ce7affc634e26be01572dca9209469de4a54c3a53afb9fca3e017cdde631257fd963f3131d58942cae025315f09202d9f5a034f1d7dd81b58d8ea539fa8ede6cad01bf8c3c76561bab78cc2f628e36aa628bcec1ea3925dbb2eed46e79f2b679cfde6f1a1d1f69ae5122169970d0ca34066195dcc7de5c36d2e1513ef1c45d00531eaec48274030261cc77fa99e68f5dda0bbbd0158106f23df9df93c0688d21c384d6748c623bd09f9f42d8c473bd0321e3e636104955a194160e8de56b0097f5725610df28a8c3e4c9322d9b96be03e952cc02ffc54002ad2266cc26ee7decd62df791b0d3e95f9b2e03244ee0eefdd25affcdf76fd4294d2336e391973e09dfac4be9c98ee7ce87e789d927182942532659dd8de4c3398778a2720f46991769fa9bb7d4e498ff6508ee21c840dab03adac679788cc409f8aad5c8affe7218f470e3e0e9b3136a3039bef78e6216fcc96fbab2d6b2111a36e2b509b98358375ab14bf84d405ea78869a414874efca5c8928d330d256a17ddd47c81dd9bae3fe6a2b10f8ed9604ea5e8cb763378793ee4cb6efcd7463aa55e3ad3bd346401726e8a780d4417b96028a900000000dd5f149d446dbba757238edd336be60000056f80238cce10525f57e73ad0bdf23d45991c9d3e0fd49828dbadddc02bd82a9227c722a95eee806e5f099fa2890b405df94e8633f8517bc953cf0640ea42ee21da1170a59a3c078e711f03f3ecba5b932597f6a0c18b48ea308cf2245bde5266b53269d51a5ee1bb36ae07fb42e78d13bc4c349f4e67a6b8bf77c05df7a595b579841edc293bbc514d5d4de65b07896d5d874aae73b72e1331651b29d8a4d4f2a6ea0424902007d5c070dd54d3f884d41541e3717726a351bba6c23941365050bab824900d03c69e08b4b2fd3a6a295378e031907c3cda1fdbe25f2291def1456e4759a4a739d108664973f899e753d5e0e77d2e8613f6297a46c870867f7df4f9846e8ba8ea1264e9bd6eb530b080c367055ceb6b2b472540a9252b951af3906447e11fb312d7faf453a776a7ba36059ee398382b65e1be673f9d600a162c03e2d0c3139634211a6895a7cbb4a7461005c04780eef0dd9ba480ace85eed5250067ba7d5c86a4e2db462b98dbb1ae251b88235689b5b608fde9d7b2ee9c0d46440b3dde57237c642e6c39c0e3ee6a267107852164cfe650a748440de7e9911691aa870133d5a86b5fbba3f434101e62700"}, 0x418})

03:49:06 executing program 3:
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x5, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r2=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000080)={r0, r2, 0x29}, 0x10)

03:49:06 executing program 0:
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000940)='tmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000380)='./file0\x00')
mkdir(&(0x7f0000000580)='./bus\x00', 0x0)
chdir(&(0x7f0000000200)='./bus\x00')
open(&(0x7f0000000040)='./file0\x00', 0x141042, 0x0)
r0 = inotify_init()
inotify_add_watch(r0, &(0x7f0000000000)='.\x00', 0x400017e)
r1 = open(&(0x7f00009e1000)='./file0\x00', 0x0, 0x0)
read$FUSE(r1, 0x0, 0x0)

03:49:06 executing program 1:
r0 = socket$inet6(0xa, 0x1, 0x84)
bind$inet6(r0, &(0x7f0000001180)={0xa, 0x4e20}, 0x1c)
connect$inet6(r0, &(0x7f00000010c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
getsockopt$bt_hci(r0, 0x84, 0x85, &(0x7f0000002280)=""/4087, &(0x7f0000000040)=0xff7)

03:49:06 executing program 4:
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x5, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r2=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000080)={r0, r2, 0x29}, 0x10)

03:49:07 executing program 2:
timer_create(0x3, 0x0, &(0x7f0000000080))
exit(0x0)
timer_gettime(0x0, &(0x7f00000001c0))

[ 1698.264800][T23094] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1698.372177][T23094] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
03:49:07 executing program 0:
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000940)='tmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000380)='./file0\x00')
mkdir(&(0x7f0000000580)='./bus\x00', 0x0)
chdir(&(0x7f0000000200)='./bus\x00')
open(&(0x7f0000000040)='./file0\x00', 0x141042, 0x0)
r0 = inotify_init()
inotify_add_watch(r0, &(0x7f0000000000)='.\x00', 0x400017e)
r1 = open(&(0x7f00009e1000)='./file0\x00', 0x0, 0x0)
read$FUSE(r1, 0x0, 0x0)

03:49:07 executing program 3:
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x5, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r2=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000080)={r0, r2, 0x29}, 0x10)

[ 1698.796433][T23094] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
03:49:07 executing program 0:
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000940)='tmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000380)='./file0\x00')
mkdir(&(0x7f0000000580)='./bus\x00', 0x0)
chdir(&(0x7f0000000200)='./bus\x00')
open(&(0x7f0000000040)='./file0\x00', 0x141042, 0x0)
r0 = inotify_init()
inotify_add_watch(r0, &(0x7f0000000000)='.\x00', 0x400017e)
r1 = open(&(0x7f00009e1000)='./file0\x00', 0x0, 0x0)
read$FUSE(r1, 0x0, 0x0)

03:49:07 executing program 4:
r0 = socket$rxrpc(0x21, 0x2, 0x2)
bind$rxrpc(r0, &(0x7f0000000040)=@in4={0x21, 0x0, 0x2, 0xf, {0x2, 0x0, @empty}}, 0x24)

[ 1699.089780][T23094] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
03:49:08 executing program 5:
r0 = openat$dsp1(0xffffff9c, &(0x7f0000000040), 0x0, 0x0)
read$dsp(r0, &(0x7f0000000080)=""/9, 0x9)
r1 = openat$adsp1(0xffffff9c, &(0x7f0000000140), 0x121c42, 0x0)
ioctl$SNDCTL_DSP_POST(r1, 0x5008, 0x0)

[ 1699.240775][T23094] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1699.250594][T23094] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
03:49:08 executing program 2:
timer_create(0x3, 0x0, &(0x7f0000000080))
exit(0x0)
timer_gettime(0x0, &(0x7f00000001c0))

03:49:08 executing program 1:
r0 = socket$inet6(0xa, 0x1, 0x84)
bind$inet6(r0, &(0x7f0000001180)={0xa, 0x4e20}, 0x1c)
connect$inet6(r0, &(0x7f00000010c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
getsockopt$bt_hci(r0, 0x84, 0x85, &(0x7f0000002280)=""/4087, &(0x7f0000000040)=0xff7)

03:49:08 executing program 4:
r0 = socket$rxrpc(0x21, 0x2, 0x2)
bind$rxrpc(r0, &(0x7f0000000040)=@in4={0x21, 0x0, 0x2, 0xf, {0x2, 0x0, @empty}}, 0x24)

03:49:08 executing program 3:
r0 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049ed)
write$binfmt_script(r0, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], 0x191)
close(r0)
execve(&(0x7f0000000400)='./file0\x00', 0x0, 0x0)

03:49:08 executing program 0:
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000940)='tmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000380)='./file0\x00')
mkdir(&(0x7f0000000580)='./bus\x00', 0x0)
chdir(&(0x7f0000000200)='./bus\x00')
open(&(0x7f0000000040)='./file0\x00', 0x141042, 0x0)
r0 = inotify_init()
inotify_add_watch(r0, &(0x7f0000000000)='.\x00', 0x400017e)
r1 = open(&(0x7f00009e1000)='./file0\x00', 0x0, 0x0)
read$FUSE(r1, 0x0, 0x0)

03:49:08 executing program 4:
r0 = socket$rxrpc(0x21, 0x2, 0x2)
bind$rxrpc(r0, &(0x7f0000000040)=@in4={0x21, 0x0, 0x2, 0xf, {0x2, 0x0, @empty}}, 0x24)

03:49:08 executing program 0:
syz_emit_ethernet(0x221, &(0x7f0000000000)={@broadcast, @local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x213, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}, {"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"}}}}}}, 0x0)
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff"], 0x15)
r2 = dup(r1)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}})
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000200)=ANY=[@ANYBLOB="b0000000000000"], 0xb0)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000480)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})
utimes(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380)={{}, {0x77359400}})

03:49:08 executing program 3:
r0 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049ed)
write$binfmt_script(r0, &(0x7f00000008c0)=ANY=[@ANYBLOB="2321202e2f66696c653020cde4b352b7a0e0617105f8e29e23db42507b87b9ec0431bb18b3b07f20736d7c9546dcfea001aa469f47d3a07baf17ccbea936872ae8edab7acafeffffffe390682c624210e8c5a689d19f3765a51206009f06299edba788a01a40049c6c704589efbf023d7c35966f0b24587fbc9ab74161f77fc52e6fa970be68691afeb515f6460958817409cc50cdd49551152e28306cf5b8398b1db82f59a3b83ff82ed8fc87c52174da7d99f2175aa164c6cd57a801b11708b67b3ff09063f6918333e0aca49f090a0e44538c9303f63fc481269d6c2883439cd109befa4c3c107fc8bf37b2c94c0bd8deee5feee6c062ff8d7ad65da209"], 0x191)
close(r0)
execve(&(0x7f0000000400)='./file0\x00', 0x0, 0x0)

03:49:09 executing program 0:
syz_emit_ethernet(0x221, &(0x7f0000000000)={@broadcast, @local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x213, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}, {"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"}}}}}}, 0x0)
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff"], 0x15)
r2 = dup(r1)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}})
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000200)=ANY=[@ANYBLOB="b0000000000000"], 0xb0)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000480)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})
utimes(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380)={{}, {0x77359400}})

03:49:09 executing program 4:
r0 = socket$rxrpc(0x21, 0x2, 0x2)
bind$rxrpc(r0, &(0x7f0000000040)=@in4={0x21, 0x0, 0x2, 0xf, {0x2, 0x0, @empty}}, 0x24)

03:49:09 executing program 3:
r0 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049ed)
write$binfmt_script(r0, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], 0x191)
close(r0)
execve(&(0x7f0000000400)='./file0\x00', 0x0, 0x0)

03:49:09 executing program 2:
timer_create(0x3, 0x0, &(0x7f0000000080))
exit(0x0)
timer_gettime(0x0, &(0x7f00000001c0))

03:49:09 executing program 4:
unshare(0x20680)
timer_create(0x0, &(0x7f0000000440)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000040))
timer_settime(0x0, 0x0, &(0x7f0000000140)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmsg$unix(r1, &(0x7f0000002600)={0x0, 0x0, 0x0}, 0x0)

03:49:09 executing program 1:
r0 = socket$inet6(0xa, 0x1, 0x84)
bind$inet6(r0, &(0x7f0000001180)={0xa, 0x4e20}, 0x1c)
connect$inet6(r0, &(0x7f00000010c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
getsockopt$bt_hci(r0, 0x84, 0x85, &(0x7f0000002280)=""/4087, &(0x7f0000000040)=0xff7)

03:49:09 executing program 3:
r0 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049ed)
write$binfmt_script(r0, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], 0x191)
close(r0)
execve(&(0x7f0000000400)='./file0\x00', 0x0, 0x0)

03:49:09 executing program 5:
r0 = getpgid(0x0)
r1 = getpgid(0x0)
kcmp$KCMP_EPOLL_TFD(r1, r0, 0x2, 0xffffffffffffffff, 0x0)

03:49:09 executing program 0:
syz_emit_ethernet(0x221, &(0x7f0000000000)={@broadcast, @local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x213, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}, {"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"}}}}}}, 0x0)
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff"], 0x15)
r2 = dup(r1)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}})
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000200)=ANY=[@ANYBLOB="b0000000000000"], 0xb0)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000480)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})
utimes(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380)={{}, {0x77359400}})

03:49:09 executing program 5:
r0 = getpgid(0x0)
r1 = getpgid(0x0)
kcmp$KCMP_EPOLL_TFD(r1, r0, 0x2, 0xffffffffffffffff, 0x0)

[ 1701.218884][T23153] net_ratelimit: 8 callbacks suppressed
[ 1701.218956][T23153] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1701.321022][T23153] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1701.424776][T23153] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1701.527957][T23153] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
03:49:10 executing program 5:
r0 = getpgid(0x0)
r1 = getpgid(0x0)
kcmp$KCMP_EPOLL_TFD(r1, r0, 0x2, 0xffffffffffffffff, 0x0)

03:49:10 executing program 0:
syz_emit_ethernet(0x221, &(0x7f0000000000)={@broadcast, @local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x213, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}, {"70c62802fad83c14750dd4294d091858a91c3801d5c34629a0df0936b0ee0cf8ad39d3d07ccac18ca95af4eb6a2e381ea4815c86516f2a4493914fb9ff87096b67b39b21e997d439abaa6df5efec608c9905fe5128893edb8093e5b183a1237829d740fae16d602b6ae868f314ffa00b7cedc881dd92ce15cab8382dbca3b5b6ce8ba640a5f41161ecd753e7303e058367bb0a0c0105390e2a2aa9bee946366ec794c27d6196e86c423e0d57682057ea255ef2403a789fa61a4864cf9d1d37489d04cd93033ed802d18693864930cde5ffc2b483e0c4e0ea8321da4f03ac1b68b57ef3d94306937944f5950977042180edcc0aae055297dcf9b498c7eceb41b63863ca124cd2eaba6dcfce0c676ca551e546b1af5c0cd877229a6c1dc2c5a6b7d68d4c651e2cd06229ba193448383c8869a0308a041dbb67d7c391507da176945b9c3b00ca5f4dec6c928791385985b0579ea5ab08172d397db99c264704645610c477422937120b951e47a689921497f668d9ffe69d57343b17da784ec7afe08679f2019a3647e0d5879b599c5b3d8e182194de37ecb56202998b33d12930f967bb6dc894f37cc9f695c875cc8c0e76a2f9c2d7570da68ac74229e2d6ba862cb2f71433fff3838e5316c4301b139e6af24fb90c0515047c6f117886b1b57d9ec414fdca087dd361cd9b5c"}}}}}}, 0x0)
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff"], 0x15)
r2 = dup(r1)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}})
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000200)=ANY=[@ANYBLOB="b0000000000000"], 0xb0)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000480)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})
utimes(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380)={{}, {0x77359400}})

03:49:10 executing program 3:
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000005640)=0x2, 0x4)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f0000000080)=@req3={0x8000, 0x6, 0x8000, 0x6, 0x0, 0x0, 0x7fffffff}, 0x1c)
syz_emit_ethernet(0x8a, &(0x7f00000000c0)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x2f, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @local, {[], {{0x0, 0x8906, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

03:49:10 executing program 2:
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f00000000c0)=0x1, 0x4)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @dev}, 0x10)
shutdown(r0, 0x1)
poll(&(0x7f0000000040)=[{r0}], 0x1, 0x0)

03:49:10 executing program 4:
unshare(0x20680)
timer_create(0x0, &(0x7f0000000440)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000040))
timer_settime(0x0, 0x0, &(0x7f0000000140)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmsg$unix(r1, &(0x7f0000002600)={0x0, 0x0, 0x0}, 0x0)

[ 1701.890917][T23152] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1701.900537][T23152] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1701.936270][T23152] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
03:49:10 executing program 3:
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000005640)=0x2, 0x4)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f0000000080)=@req3={0x8000, 0x6, 0x8000, 0x6, 0x0, 0x0, 0x7fffffff}, 0x1c)
syz_emit_ethernet(0x8a, &(0x7f00000000c0)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x2f, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @local, {[], {{0x0, 0x8906, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

03:49:10 executing program 5:
r0 = getpgid(0x0)
r1 = getpgid(0x0)
kcmp$KCMP_EPOLL_TFD(r1, r0, 0x2, 0xffffffffffffffff, 0x0)

03:49:11 executing program 1:
r0 = socket$inet6(0xa, 0x1, 0x84)
bind$inet6(r0, &(0x7f0000001180)={0xa, 0x4e20}, 0x1c)
connect$inet6(r0, &(0x7f00000010c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
getsockopt$bt_hci(r0, 0x84, 0x85, &(0x7f0000002280)=""/4087, &(0x7f0000000040)=0xff7)

03:49:11 executing program 2:
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f00000000c0)=0x1, 0x4)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @dev}, 0x10)
shutdown(r0, 0x1)
poll(&(0x7f0000000040)=[{r0}], 0x1, 0x0)

03:49:11 executing program 5:
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f00000000c0)=0x1, 0x4)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @dev}, 0x10)
shutdown(r0, 0x1)
poll(&(0x7f0000000040)=[{r0}], 0x1, 0x0)

03:49:11 executing program 3:
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000005640)=0x2, 0x4)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f0000000080)=@req3={0x8000, 0x6, 0x8000, 0x6, 0x0, 0x0, 0x7fffffff}, 0x1c)
syz_emit_ethernet(0x8a, &(0x7f00000000c0)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x2f, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @local, {[], {{0x0, 0x8906, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

03:49:11 executing program 0:
unshare(0x20680)
timer_create(0x0, &(0x7f0000000440)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000040))
timer_settime(0x0, 0x0, &(0x7f0000000140)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmsg$unix(r1, &(0x7f0000002600)={0x0, 0x0, 0x0}, 0x0)

[ 1702.540000][T23176] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1702.632002][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1702.719012][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
03:49:11 executing program 5:
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f00000000c0)=0x1, 0x4)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @dev}, 0x10)
shutdown(r0, 0x1)
poll(&(0x7f0000000040)=[{r0}], 0x1, 0x0)

03:49:11 executing program 2:
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f00000000c0)=0x1, 0x4)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @dev}, 0x10)
shutdown(r0, 0x1)
poll(&(0x7f0000000040)=[{r0}], 0x1, 0x0)

03:49:11 executing program 1:
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001580)='./file0\x00', &(0x7f00000000c0)='sysfs\x00', 0x0, 0x0)
getxattr(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)=@known='trusted.overlay.upper\x00', &(0x7f00000001c0)=""/66, 0x42)

03:49:11 executing program 4:
unshare(0x20680)
timer_create(0x0, &(0x7f0000000440)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000040))
timer_settime(0x0, 0x0, &(0x7f0000000140)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmsg$unix(r1, &(0x7f0000002600)={0x0, 0x0, 0x0}, 0x0)

03:49:11 executing program 3:
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000005640)=0x2, 0x4)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f0000000080)=@req3={0x8000, 0x6, 0x8000, 0x6, 0x0, 0x0, 0x7fffffff}, 0x1c)
syz_emit_ethernet(0x8a, &(0x7f00000000c0)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x2f, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @local, {[], {{0x0, 0x8906, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

03:49:12 executing program 5:
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f00000000c0)=0x1, 0x4)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @dev}, 0x10)
shutdown(r0, 0x1)
poll(&(0x7f0000000040)=[{r0}], 0x1, 0x0)

03:49:12 executing program 2:
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f00000000c0)=0x1, 0x4)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @dev}, 0x10)
shutdown(r0, 0x1)
poll(&(0x7f0000000040)=[{r0}], 0x1, 0x0)

03:49:12 executing program 1:
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001580)='./file0\x00', &(0x7f00000000c0)='sysfs\x00', 0x0, 0x0)
getxattr(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)=@known='trusted.overlay.upper\x00', &(0x7f00000001c0)=""/66, 0x42)

03:49:12 executing program 3:
r0 = openat$sysctl(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv4/tcp_window_scaling\x00', 0x1, 0x0)
write$sysctl(r0, &(0x7f0000000080)='7\x00', 0x1)

03:49:12 executing program 5:
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000064c0)='/proc/stat\x00', 0x0, 0x0)
r1 = syz_open_dev$loop(&(0x7f0000003680), 0x0, 0x0)
ioctl$LOOP_SET_FD(r1, 0x4c00, r0)

03:49:12 executing program 2:
r0 = syz_open_dev$vbi(&(0x7f0000000440), 0x0, 0x2)
ioctl$VIDIOC_QBUF(r0, 0xc058565d, &(0x7f00000004c0)=@userptr={0x0, 0x6, 0x4, 0x0, 0x0, {0x0, 0xea60}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "64dbb5d1"}, 0x0, 0x2, {0x0}})

03:49:12 executing program 0:
unshare(0x20680)
timer_create(0x0, &(0x7f0000000440)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000040))
timer_settime(0x0, 0x0, &(0x7f0000000140)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmsg$unix(r1, &(0x7f0000002600)={0x0, 0x0, 0x0}, 0x0)

03:49:12 executing program 1:
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001580)='./file0\x00', &(0x7f00000000c0)='sysfs\x00', 0x0, 0x0)
getxattr(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)=@known='trusted.overlay.upper\x00', &(0x7f00000001c0)=""/66, 0x42)

03:49:12 executing program 3:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002200055bd25a80648c63940d0524fc6010002b010a000a00053582c137153e370248038047000000d1bd", 0x33fe0}], 0x1}, 0x0)

03:49:13 executing program 5:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_NEW(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x40, 0x0, 0x7, 0x3, 0x0, 0x0, {}, [@NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0xa1b}, @NFACCT_FLAGS={0x8}, @NFACCT_NAME={0x9, 0x1, 'syz0\x00'}, @NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0x7}]}, 0x40}, 0x1, 0x0, 0x0, 0x4008010}, 0x20020040)

03:49:13 executing program 4:
unshare(0x20680)
timer_create(0x0, &(0x7f0000000440)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000040))
timer_settime(0x0, 0x0, &(0x7f0000000140)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmsg$unix(r1, &(0x7f0000002600)={0x0, 0x0, 0x0}, 0x0)

03:49:13 executing program 2:
r0 = syz_io_uring_setup(0x35d7, &(0x7f0000000000), &(0x7f00006d6000/0x1000)=nil, &(0x7f0000149000/0x4000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000200)=<r2=>0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'digest_null\x00'}, 0x58)
r4 = accept4(r3, 0x0, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f00000002c0)={0x0, 0x0, 0x0}}, 0x0)
io_uring_enter(r0, 0x45f5, 0x0, 0x0, 0x0, 0x1800)

03:49:13 executing program 1:
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001580)='./file0\x00', &(0x7f00000000c0)='sysfs\x00', 0x0, 0x0)
getxattr(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)=@known='trusted.overlay.upper\x00', &(0x7f00000001c0)=""/66, 0x42)

03:49:13 executing program 3:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002200055bd25a80648c63940d0524fc6010002b010a000a00053582c137153e370248038047000000d1bd", 0x33fe0}], 0x1}, 0x0)

03:49:13 executing program 5:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_NEW(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x40, 0x0, 0x7, 0x3, 0x0, 0x0, {}, [@NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0xa1b}, @NFACCT_FLAGS={0x8}, @NFACCT_NAME={0x9, 0x1, 'syz0\x00'}, @NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0x7}]}, 0x40}, 0x1, 0x0, 0x0, 0x4008010}, 0x20020040)

03:49:13 executing program 2:
r0 = syz_io_uring_setup(0x35d7, &(0x7f0000000000), &(0x7f00006d6000/0x1000)=nil, &(0x7f0000149000/0x4000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000200)=<r2=>0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'digest_null\x00'}, 0x58)
r4 = accept4(r3, 0x0, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f00000002c0)={0x0, 0x0, 0x0}}, 0x0)
io_uring_enter(r0, 0x45f5, 0x0, 0x0, 0x0, 0x1800)

03:49:13 executing program 3:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002200055bd25a80648c63940d0524fc6010002b010a000a00053582c137153e370248038047000000d1bd", 0x33fe0}], 0x1}, 0x0)

03:49:13 executing program 1:
lsetxattr$security_capability(0x0, 0x0, 0x0, 0x0, 0x0)
add_key(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_read_part_table(0x0, 0x1, &(0x7f0000001440)=[{&(0x7f0000000d00)='\f', 0x1}])
unlink(0x0)

03:49:14 executing program 2:
r0 = syz_io_uring_setup(0x35d7, &(0x7f0000000000), &(0x7f00006d6000/0x1000)=nil, &(0x7f0000149000/0x4000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000200)=<r2=>0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'digest_null\x00'}, 0x58)
r4 = accept4(r3, 0x0, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f00000002c0)={0x0, 0x0, 0x0}}, 0x0)
io_uring_enter(r0, 0x45f5, 0x0, 0x0, 0x0, 0x1800)

03:49:14 executing program 0:
unshare(0x20680)
timer_create(0x0, &(0x7f0000000440)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000040))
timer_settime(0x0, 0x0, &(0x7f0000000140)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmsg$unix(r1, &(0x7f0000002600)={0x0, 0x0, 0x0}, 0x0)

03:49:14 executing program 1:
io_setup(0x8, &(0x7f0000000cc0)=<r0=>0x0)
io_destroy(r0)
io_setup(0x40, &(0x7f0000000600))
io_submit(r0, 0x0, 0x0)

03:49:14 executing program 3:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002200055bd25a80648c63940d0524fc6010002b010a000a00053582c137153e370248038047000000d1bd", 0x33fe0}], 0x1}, 0x0)

03:49:14 executing program 5:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_NEW(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x40, 0x0, 0x7, 0x3, 0x0, 0x0, {}, [@NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0xa1b}, @NFACCT_FLAGS={0x8}, @NFACCT_NAME={0x9, 0x1, 'syz0\x00'}, @NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0x7}]}, 0x40}, 0x1, 0x0, 0x0, 0x4008010}, 0x20020040)

03:49:14 executing program 4:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, 0x0, 0x0)
close(r0)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendmsg(0xffffffffffffffff, 0x0, 0x0)

03:49:14 executing program 5:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_NEW(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x40, 0x0, 0x7, 0x3, 0x0, 0x0, {}, [@NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0xa1b}, @NFACCT_FLAGS={0x8}, @NFACCT_NAME={0x9, 0x1, 'syz0\x00'}, @NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0x7}]}, 0x40}, 0x1, 0x0, 0x0, 0x4008010}, 0x20020040)

03:49:14 executing program 3:
mlockall(0x3)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x0, 0x31, 0xffffffffffffffff, 0x0)
io_setup(0x0, 0x0)
socket$inet6_sctp(0xa, 0x0, 0x84)

03:49:14 executing program 1:
io_setup(0x8, &(0x7f0000000cc0)=<r0=>0x0)
io_destroy(r0)
io_setup(0x40, &(0x7f0000000600))
io_submit(r0, 0x0, 0x0)

03:49:14 executing program 4:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, 0x0, 0x0)
close(r0)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendmsg(0xffffffffffffffff, 0x0, 0x0)

03:49:14 executing program 2:
r0 = syz_io_uring_setup(0x35d7, &(0x7f0000000000), &(0x7f00006d6000/0x1000)=nil, &(0x7f0000149000/0x4000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000200)=<r2=>0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'digest_null\x00'}, 0x58)
r4 = accept4(r3, 0x0, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f00000002c0)={0x0, 0x0, 0x0}}, 0x0)
io_uring_enter(r0, 0x45f5, 0x0, 0x0, 0x0, 0x1800)

03:49:14 executing program 5:
r0 = syz_io_uring_setup(0x87, &(0x7f0000000140), &(0x7f0000ee4000/0x3000)=nil, &(0x7f0000ee5000/0x3000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x4510, 0x0, 0x0, 0x0, 0x0)
shutdown(r4, 0x1)

03:49:14 executing program 4:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, 0x0, 0x0)
close(r0)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendmsg(0xffffffffffffffff, 0x0, 0x0)

03:49:15 executing program 1:
io_setup(0x8, &(0x7f0000000cc0)=<r0=>0x0)
io_destroy(r0)
io_setup(0x40, &(0x7f0000000600))
io_submit(r0, 0x0, 0x0)

03:49:15 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$BTRFS_IOC_GET_DEV_STATS(r0, 0xc008ae09, 0x0)

03:49:15 executing program 5:
r0 = syz_io_uring_setup(0x87, &(0x7f0000000140), &(0x7f0000ee4000/0x3000)=nil, &(0x7f0000ee5000/0x3000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x4510, 0x0, 0x0, 0x0, 0x0)
shutdown(r4, 0x1)

03:49:15 executing program 4:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, 0x0, 0x0)
close(r0)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendmsg(0xffffffffffffffff, 0x0, 0x0)

03:49:15 executing program 0:
r0 = syz_io_uring_setup(0x87, &(0x7f0000000140), &(0x7f0000ee4000/0x3000)=nil, &(0x7f0000ee5000/0x3000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x4510, 0x0, 0x0, 0x0, 0x0)
shutdown(r4, 0x1)

03:49:15 executing program 5:
r0 = syz_io_uring_setup(0x87, &(0x7f0000000140), &(0x7f0000ee4000/0x3000)=nil, &(0x7f0000ee5000/0x3000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x4510, 0x0, 0x0, 0x0, 0x0)
shutdown(r4, 0x1)

03:49:17 executing program 1:
io_setup(0x8, &(0x7f0000000cc0)=<r0=>0x0)
io_destroy(r0)
io_setup(0x40, &(0x7f0000000600))
io_submit(r0, 0x0, 0x0)

03:49:17 executing program 3:
mlockall(0x3)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x0, 0x31, 0xffffffffffffffff, 0x0)
io_setup(0x0, 0x0)
socket$inet6_sctp(0xa, 0x0, 0x84)

03:49:17 executing program 2:
syz_mount_image$erofs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x2000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="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"/2112, 0x840, 0x400}, {&(0x7f0000010900)="0000000000000000000000000000000000001f000100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff32500000000000", 0x40, 0x1fc0}], 0x0, &(0x7f0000010a00))

03:49:17 executing program 0:
r0 = syz_io_uring_setup(0x87, &(0x7f0000000140), &(0x7f0000ee4000/0x3000)=nil, &(0x7f0000ee5000/0x3000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x4510, 0x0, 0x0, 0x0, 0x0)
shutdown(r4, 0x1)

03:49:17 executing program 4:
setitimer(0x1, &(0x7f0000000080)={{}, {0x77359400}}, &(0x7f0000000300))
mkdir(&(0x7f0000000400)='./file0\x00', 0x1)
mount(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000280)='tmpfs\x00', 0x0, 0x0)
mount(&(0x7f0000000380)=ANY=[@ANYBLOB="bd72cfec0fb34fdaee570800d26808000000b1b004f78f65ed9fa11f064ac4797d862167ff66b26595f693bd4cc3220ec0881b88e0596a54222c48c211c9570dd1f2dc578099023deda97a9a21dd4646a56104bd8e74efd3"], &(0x7f0000000100)='./file0\x00', &(0x7f0000000200)='rpc_pipefs\x00', 0x40000, &(0x7f0000000240)='[(-\xc8#!#\x00')
r0 = memfd_create(&(0x7f0000000000)='\xf3e\t\x9f\x918\xc0y\x01c\x1fnux\x00sV\ad\xb0l \xfd\xd7\x8e\x7f\x89\xb8\xc5;~\x04\x03~K\xfbP\x84=\xfa\x81\f\x1et\x10\x0e\xcf^9\xbe\\', 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000001c0)=ANY=[@ANYBLOB="b8000000130001000000000000000000ffffffff000000000000000000000000fff7ffff00000000000000000000000000000000000000000200000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000052fa3431000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000bf6b6e000000000000000000"], 0xb8}}, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x300000c, 0x20010, r1, 0xb980c000)
pwrite64(r0, &(0x7f000003bfff)='/', 0x1, 0x0)
rmdir(&(0x7f0000000340)='./file0\x00')
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
lseek(r0, 0x0, 0x4)
mount$overlay(0x0, &(0x7f0000000580)='./file0\x00', &(0x7f00000005c0), 0x8020, &(0x7f0000000480)={[{@index_on}, {@metacopy_on}, {@xino_on}, {@default_permissions}, {@default_permissions}], [{@appraise_type}, {@euid_eq={'euid', 0x3d, 0xee00}}, {@subj_user}]})
mount$overlay(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000440), 0x1a, &(0x7f0000000780)=ANY=[@ANYBLOB='workdir=./file0,redirect_dir=./file0,nfs_export=on,smackfstransmute=,obj_role=,uid<', @ANYRESDEC=0x0, @ANYBLOB="2c6f626a5f747970653df365099f9138c07901631f6e75780073560764b06c20fdd78e7f89b8c53b7e04037e4bfb50843dfa810c1e74100ecf5e39be5c2c6d61736b3d5e4db800000000000000442c6673636f6e746578743d73797374656d5f752c666f776e65723c", @ANYRESDEC=0x0, @ANYBLOB=',\x00'])
sendfile(r0, r0, &(0x7f00000001c0), 0x7fa)
chdir(&(0x7f0000000140)='./file0\x00')
symlink(&(0x7f0000001000)='./file0\x00', &(0x7f00000000c0)='./file0\x00')
ftruncate(r0, 0x4)
chown(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
umount2(&(0x7f0000000040)='./file0\x00', 0x2)

03:49:17 executing program 5:
r0 = syz_io_uring_setup(0x87, &(0x7f0000000140), &(0x7f0000ee4000/0x3000)=nil, &(0x7f0000ee5000/0x3000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x4510, 0x0, 0x0, 0x0, 0x0)
shutdown(r4, 0x1)

[ 1708.443097][T23284] __nla_validate_parse: 2 callbacks suppressed
[ 1708.443175][T23284] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
03:49:17 executing program 5:
mlockall(0x3)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x0, 0x31, 0xffffffffffffffff, 0x0)
io_setup(0x0, 0x0)
socket$inet6_sctp(0xa, 0x0, 0x84)

03:49:17 executing program 2:
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000100)=@bpf_lsm={0x12, 0x4, &(0x7f00000000c0)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x6c}]}, &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xe, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

03:49:17 executing program 0:
r0 = syz_io_uring_setup(0x87, &(0x7f0000000140), &(0x7f0000ee4000/0x3000)=nil, &(0x7f0000ee5000/0x3000)=nil, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x4510, 0x0, 0x0, 0x0, 0x0)
shutdown(r4, 0x1)

03:49:17 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000002c0)={'erspan0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000380)=@newlink={0x48, 0x10, 0xc3b, 0x0, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @erspan={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GRE_ENCAP_FLAGS={0x6}, @IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_ENCAP_SPORT={0x6}]}}}]}, 0x48}}, 0x0)

[ 1708.607925][T23284] tmpfs: Unknown parameter 'index'
[ 1708.683780][T23292] overlayfs: unrecognized mount option "smackfstransmute=" or missing value
03:49:17 executing program 2:
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000100)=@bpf_lsm={0x12, 0x4, &(0x7f00000000c0)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x6c}]}, &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xe, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

03:49:17 executing program 0:
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @dev}, 0x1c)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x18, r2, 0x1, 0x0, 0x0, {0x2}, [@MPTCP_PM_ATTR_ADDR={0x4}]}, 0x18}}, 0x0)

03:49:17 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000002c0)={'erspan0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000380)=@newlink={0x48, 0x10, 0xc3b, 0x0, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @erspan={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GRE_ENCAP_FLAGS={0x6}, @IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_ENCAP_SPORT={0x6}]}}}]}, 0x48}}, 0x0)

03:49:20 executing program 3:
mlockall(0x3)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x0, 0x31, 0xffffffffffffffff, 0x0)
io_setup(0x0, 0x0)
socket$inet6_sctp(0xa, 0x0, 0x84)

03:49:20 executing program 2:
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000100)=@bpf_lsm={0x12, 0x4, &(0x7f00000000c0)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x6c}]}, &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xe, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

03:49:20 executing program 4:
setitimer(0x1, &(0x7f0000000080)={{}, {0x77359400}}, &(0x7f0000000300))
mkdir(&(0x7f0000000400)='./file0\x00', 0x1)
mount(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000280)='tmpfs\x00', 0x0, 0x0)
mount(&(0x7f0000000380)=ANY=[@ANYBLOB="bd72cfec0fb34fdaee570800d26808000000b1b004f78f65ed9fa11f064ac4797d862167ff66b26595f693bd4cc3220ec0881b88e0596a54222c48c211c9570dd1f2dc578099023deda97a9a21dd4646a56104bd8e74efd3"], &(0x7f0000000100)='./file0\x00', &(0x7f0000000200)='rpc_pipefs\x00', 0x40000, &(0x7f0000000240)='[(-\xc8#!#\x00')
r0 = memfd_create(&(0x7f0000000000)='\xf3e\t\x9f\x918\xc0y\x01c\x1fnux\x00sV\ad\xb0l \xfd\xd7\x8e\x7f\x89\xb8\xc5;~\x04\x03~K\xfbP\x84=\xfa\x81\f\x1et\x10\x0e\xcf^9\xbe\\', 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000001c0)=ANY=[@ANYBLOB="b8000000130001000000000000000000ffffffff000000000000000000000000fff7ffff00000000000000000000000000000000000000000200000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000052fa3431000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000bf6b6e000000000000000000"], 0xb8}}, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x300000c, 0x20010, r1, 0xb980c000)
pwrite64(r0, &(0x7f000003bfff)='/', 0x1, 0x0)
rmdir(&(0x7f0000000340)='./file0\x00')
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
lseek(r0, 0x0, 0x4)
mount$overlay(0x0, &(0x7f0000000580)='./file0\x00', &(0x7f00000005c0), 0x8020, &(0x7f0000000480)={[{@index_on}, {@metacopy_on}, {@xino_on}, {@default_permissions}, {@default_permissions}], [{@appraise_type}, {@euid_eq={'euid', 0x3d, 0xee00}}, {@subj_user}]})
mount$overlay(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000440), 0x1a, &(0x7f0000000780)=ANY=[@ANYBLOB='workdir=./file0,redirect_dir=./file0,nfs_export=on,smackfstransmute=,obj_role=,uid<', @ANYRESDEC=0x0, @ANYBLOB="2c6f626a5f747970653df365099f9138c07901631f6e75780073560764b06c20fdd78e7f89b8c53b7e04037e4bfb50843dfa810c1e74100ecf5e39be5c2c6d61736b3d5e4db800000000000000442c6673636f6e746578743d73797374656d5f752c666f776e65723c", @ANYRESDEC=0x0, @ANYBLOB=',\x00'])
sendfile(r0, r0, &(0x7f00000001c0), 0x7fa)
chdir(&(0x7f0000000140)='./file0\x00')
symlink(&(0x7f0000001000)='./file0\x00', &(0x7f00000000c0)='./file0\x00')
ftruncate(r0, 0x4)
chown(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
umount2(&(0x7f0000000040)='./file0\x00', 0x2)

03:49:20 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000002c0)={'erspan0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000380)=@newlink={0x48, 0x10, 0xc3b, 0x0, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @erspan={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GRE_ENCAP_FLAGS={0x6}, @IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_ENCAP_SPORT={0x6}]}}}]}, 0x48}}, 0x0)

03:49:20 executing program 0:
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @dev}, 0x1c)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x18, r2, 0x1, 0x0, 0x0, {0x2}, [@MPTCP_PM_ATTR_ADDR={0x4}]}, 0x18}}, 0x0)

[ 1711.567388][T23320] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
03:49:21 executing program 5:
mlockall(0x3)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x0, 0x31, 0xffffffffffffffff, 0x0)
io_setup(0x0, 0x0)
socket$inet6_sctp(0xa, 0x0, 0x84)

03:49:21 executing program 2:
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000100)=@bpf_lsm={0x12, 0x4, &(0x7f00000000c0)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x6c}]}, &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xe, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

03:49:21 executing program 0:
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @dev}, 0x1c)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x18, r2, 0x1, 0x0, 0x0, {0x2}, [@MPTCP_PM_ATTR_ADDR={0x4}]}, 0x18}}, 0x0)

03:49:21 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000002c0)={'erspan0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000380)=@newlink={0x48, 0x10, 0xc3b, 0x0, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @erspan={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GRE_ENCAP_FLAGS={0x6}, @IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_ENCAP_SPORT={0x6}]}}}]}, 0x48}}, 0x0)

03:49:21 executing program 4:
setitimer(0x1, &(0x7f0000000080)={{}, {0x77359400}}, &(0x7f0000000300))
mkdir(&(0x7f0000000400)='./file0\x00', 0x1)
mount(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000280)='tmpfs\x00', 0x0, 0x0)
mount(&(0x7f0000000380)=ANY=[@ANYBLOB="bd72cfec0fb34fdaee570800d26808000000b1b004f78f65ed9fa11f064ac4797d862167ff66b26595f693bd4cc3220ec0881b88e0596a54222c48c211c9570dd1f2dc578099023deda97a9a21dd4646a56104bd8e74efd3"], &(0x7f0000000100)='./file0\x00', &(0x7f0000000200)='rpc_pipefs\x00', 0x40000, &(0x7f0000000240)='[(-\xc8#!#\x00')
r0 = memfd_create(&(0x7f0000000000)='\xf3e\t\x9f\x918\xc0y\x01c\x1fnux\x00sV\ad\xb0l \xfd\xd7\x8e\x7f\x89\xb8\xc5;~\x04\x03~K\xfbP\x84=\xfa\x81\f\x1et\x10\x0e\xcf^9\xbe\\', 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000001c0)=ANY=[@ANYBLOB="b8000000130001000000000000000000ffffffff000000000000000000000000fff7ffff00000000000000000000000000000000000000000200000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000052fa3431000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000bf6b6e000000000000000000"], 0xb8}}, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x300000c, 0x20010, r1, 0xb980c000)
pwrite64(r0, &(0x7f000003bfff)='/', 0x1, 0x0)
rmdir(&(0x7f0000000340)='./file0\x00')
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
lseek(r0, 0x0, 0x4)
mount$overlay(0x0, &(0x7f0000000580)='./file0\x00', &(0x7f00000005c0), 0x8020, &(0x7f0000000480)={[{@index_on}, {@metacopy_on}, {@xino_on}, {@default_permissions}, {@default_permissions}], [{@appraise_type}, {@euid_eq={'euid', 0x3d, 0xee00}}, {@subj_user}]})
mount$overlay(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000440), 0x1a, &(0x7f0000000780)=ANY=[@ANYBLOB='workdir=./file0,redirect_dir=./file0,nfs_export=on,smackfstransmute=,obj_role=,uid<', @ANYRESDEC=0x0, @ANYBLOB="2c6f626a5f747970653df365099f9138c07901631f6e75780073560764b06c20fdd78e7f89b8c53b7e04037e4bfb50843dfa810c1e74100ecf5e39be5c2c6d61736b3d5e4db800000000000000442c6673636f6e746578743d73797374656d5f752c666f776e65723c", @ANYRESDEC=0x0, @ANYBLOB=',\x00'])
sendfile(r0, r0, &(0x7f00000001c0), 0x7fa)
chdir(&(0x7f0000000140)='./file0\x00')
symlink(&(0x7f0000001000)='./file0\x00', &(0x7f00000000c0)='./file0\x00')
ftruncate(r0, 0x4)
chown(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
umount2(&(0x7f0000000040)='./file0\x00', 0x2)

03:49:21 executing program 1:
setitimer(0x1, &(0x7f0000000080)={{}, {0x77359400}}, &(0x7f0000000300))
mkdir(&(0x7f0000000400)='./file0\x00', 0x1)
mount(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000280)='tmpfs\x00', 0x0, 0x0)
mount(&(0x7f0000000380)=ANY=[@ANYBLOB="bd72cfec0fb34fdaee570800d26808000000b1b004f78f65ed9fa11f064ac4797d862167ff66b26595f693bd4cc3220ec0881b88e0596a54222c48c211c9570dd1f2dc578099023deda97a9a21dd4646a56104bd8e74efd3"], &(0x7f0000000100)='./file0\x00', &(0x7f0000000200)='rpc_pipefs\x00', 0x40000, &(0x7f0000000240)='[(-\xc8#!#\x00')
r0 = memfd_create(&(0x7f0000000000)='\xf3e\t\x9f\x918\xc0y\x01c\x1fnux\x00sV\ad\xb0l \xfd\xd7\x8e\x7f\x89\xb8\xc5;~\x04\x03~K\xfbP\x84=\xfa\x81\f\x1et\x10\x0e\xcf^9\xbe\\', 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000001c0)=ANY=[@ANYBLOB="b8000000130001000000000000000000ffffffff000000000000000000000000fff7ffff00000000000000000000000000000000000000000200000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000052fa3431000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000bf6b6e000000000000000000"], 0xb8}}, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x300000c, 0x20010, r1, 0xb980c000)
pwrite64(r0, &(0x7f000003bfff)='/', 0x1, 0x0)
rmdir(&(0x7f0000000340)='./file0\x00')
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
lseek(r0, 0x0, 0x4)
mount$overlay(0x0, &(0x7f0000000580)='./file0\x00', &(0x7f00000005c0), 0x8020, &(0x7f0000000480)={[{@index_on}, {@metacopy_on}, {@xino_on}, {@default_permissions}, {@default_permissions}], [{@appraise_type}, {@euid_eq={'euid', 0x3d, 0xee00}}, {@subj_user}]})
mount$overlay(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000440), 0x1a, &(0x7f0000000780)=ANY=[@ANYBLOB='workdir=./file0,redirect_dir=./file0,nfs_export=on,smackfstransmute=,obj_role=,uid<', @ANYRESDEC=0x0, @ANYBLOB="2c6f626a5f747970653df365099f9138c07901631f6e75780073560764b06c20fdd78e7f89b8c53b7e04037e4bfb50843dfa810c1e74100ecf5e39be5c2c6d61736b3d5e4db800000000000000442c6673636f6e746578743d73797374656d5f752c666f776e65723c", @ANYRESDEC=0x0, @ANYBLOB=',\x00'])
sendfile(r0, r0, &(0x7f00000001c0), 0x7fa)
chdir(&(0x7f0000000140)='./file0\x00')
symlink(&(0x7f0000001000)='./file0\x00', &(0x7f00000000c0)='./file0\x00')
ftruncate(r0, 0x4)
chown(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
umount2(&(0x7f0000000040)='./file0\x00', 0x2)

03:49:21 executing program 0:
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @dev}, 0x1c)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x18, r2, 0x1, 0x0, 0x0, {0x2}, [@MPTCP_PM_ATTR_ADDR={0x4}]}, 0x18}}, 0x0)

[ 1712.899414][T23335] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1712.946973][T23338] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 1712.998995][T23338] tmpfs: Unknown parameter 'index'
[ 1713.032443][T23338] overlayfs: unrecognized mount option "smackfstransmute=" or missing value
03:49:23 executing program 3:
mlockall(0x3)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x0, 0x31, 0xffffffffffffffff, 0x0)
io_setup(0x0, 0x0)
socket$inet6_sctp(0xa, 0x0, 0x84)

03:49:23 executing program 2:
setitimer(0x1, &(0x7f0000000080)={{}, {0x77359400}}, &(0x7f0000000300))
mkdir(&(0x7f0000000400)='./file0\x00', 0x1)
mount(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000280)='tmpfs\x00', 0x0, 0x0)
mount(&(0x7f0000000380)=ANY=[@ANYBLOB="bd72cfec0fb34fdaee570800d26808000000b1b004f78f65ed9fa11f064ac4797d862167ff66b26595f693bd4cc3220ec0881b88e0596a54222c48c211c9570dd1f2dc578099023deda97a9a21dd4646a56104bd8e74efd3"], &(0x7f0000000100)='./file0\x00', &(0x7f0000000200)='rpc_pipefs\x00', 0x40000, &(0x7f0000000240)='[(-\xc8#!#\x00')
r0 = memfd_create(&(0x7f0000000000)='\xf3e\t\x9f\x918\xc0y\x01c\x1fnux\x00sV\ad\xb0l \xfd\xd7\x8e\x7f\x89\xb8\xc5;~\x04\x03~K\xfbP\x84=\xfa\x81\f\x1et\x10\x0e\xcf^9\xbe\\', 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000001c0)=ANY=[@ANYBLOB="b8000000130001000000000000000000ffffffff000000000000000000000000fff7ffff00000000000000000000000000000000000000000200000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000052fa3431000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000bf6b6e000000000000000000"], 0xb8}}, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x300000c, 0x20010, r1, 0xb980c000)
pwrite64(r0, &(0x7f000003bfff)='/', 0x1, 0x0)
rmdir(&(0x7f0000000340)='./file0\x00')
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
lseek(r0, 0x0, 0x4)
mount$overlay(0x0, &(0x7f0000000580)='./file0\x00', &(0x7f00000005c0), 0x8020, &(0x7f0000000480)={[{@index_on}, {@metacopy_on}, {@xino_on}, {@default_permissions}, {@default_permissions}], [{@appraise_type}, {@euid_eq={'euid', 0x3d, 0xee00}}, {@subj_user}]})
mount$overlay(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000440), 0x1a, &(0x7f0000000780)=ANY=[@ANYBLOB='workdir=./file0,redirect_dir=./file0,nfs_export=on,smackfstransmute=,obj_role=,uid<', @ANYRESDEC=0x0, @ANYBLOB="2c6f626a5f747970653df365099f9138c07901631f6e75780073560764b06c20fdd78e7f89b8c53b7e04037e4bfb50843dfa810c1e74100ecf5e39be5c2c6d61736b3d5e4db800000000000000442c6673636f6e746578743d73797374656d5f752c666f776e65723c", @ANYRESDEC=0x0, @ANYBLOB=',\x00'])
sendfile(r0, r0, &(0x7f00000001c0), 0x7fa)
chdir(&(0x7f0000000140)='./file0\x00')
symlink(&(0x7f0000001000)='./file0\x00', &(0x7f00000000c0)='./file0\x00')
ftruncate(r0, 0x4)
chown(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
umount2(&(0x7f0000000040)='./file0\x00', 0x2)

03:49:23 executing program 0:
setitimer(0x1, &(0x7f0000000080)={{}, {0x77359400}}, &(0x7f0000000300))
mkdir(&(0x7f0000000400)='./file0\x00', 0x1)
mount(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000280)='tmpfs\x00', 0x0, 0x0)
mount(&(0x7f0000000380)=ANY=[@ANYBLOB="bd72cfec0fb34fdaee570800d26808000000b1b004f78f65ed9fa11f064ac4797d862167ff66b26595f693bd4cc3220ec0881b88e0596a54222c48c211c9570dd1f2dc578099023deda97a9a21dd4646a56104bd8e74efd3"], &(0x7f0000000100)='./file0\x00', &(0x7f0000000200)='rpc_pipefs\x00', 0x40000, &(0x7f0000000240)='[(-\xc8#!#\x00')
r0 = memfd_create(&(0x7f0000000000)='\xf3e\t\x9f\x918\xc0y\x01c\x1fnux\x00sV\ad\xb0l \xfd\xd7\x8e\x7f\x89\xb8\xc5;~\x04\x03~K\xfbP\x84=\xfa\x81\f\x1et\x10\x0e\xcf^9\xbe\\', 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000001c0)=ANY=[@ANYBLOB="b8000000130001000000000000000000ffffffff000000000000000000000000fff7ffff00000000000000000000000000000000000000000200000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000052fa3431000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000bf6b6e000000000000000000"], 0xb8}}, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x300000c, 0x20010, r1, 0xb980c000)
pwrite64(r0, &(0x7f000003bfff)='/', 0x1, 0x0)
rmdir(&(0x7f0000000340)='./file0\x00')
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
lseek(r0, 0x0, 0x4)
mount$overlay(0x0, &(0x7f0000000580)='./file0\x00', &(0x7f00000005c0), 0x8020, &(0x7f0000000480)={[{@index_on}, {@metacopy_on}, {@xino_on}, {@default_permissions}, {@default_permissions}], [{@appraise_type}, {@euid_eq={'euid', 0x3d, 0xee00}}, {@subj_user}]})
mount$overlay(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000440), 0x1a, &(0x7f0000000780)=ANY=[@ANYBLOB='workdir=./file0,redirect_dir=./file0,nfs_export=on,smackfstransmute=,obj_role=,uid<', @ANYRESDEC=0x0, @ANYBLOB="2c6f626a5f747970653df365099f9138c07901631f6e75780073560764b06c20fdd78e7f89b8c53b7e04037e4bfb50843dfa810c1e74100ecf5e39be5c2c6d61736b3d5e4db800000000000000442c6673636f6e746578743d73797374656d5f752c666f776e65723c", @ANYRESDEC=0x0, @ANYBLOB=',\x00'])
sendfile(r0, r0, &(0x7f00000001c0), 0x7fa)
chdir(&(0x7f0000000140)='./file0\x00')
symlink(&(0x7f0000001000)='./file0\x00', &(0x7f00000000c0)='./file0\x00')
ftruncate(r0, 0x4)
chown(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
umount2(&(0x7f0000000040)='./file0\x00', 0x2)

03:49:23 executing program 4:
setitimer(0x1, &(0x7f0000000080)={{}, {0x77359400}}, &(0x7f0000000300))
mkdir(&(0x7f0000000400)='./file0\x00', 0x1)
mount(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000280)='tmpfs\x00', 0x0, 0x0)
mount(&(0x7f0000000380)=ANY=[@ANYBLOB="bd72cfec0fb34fdaee570800d26808000000b1b004f78f65ed9fa11f064ac4797d862167ff66b26595f693bd4cc3220ec0881b88e0596a54222c48c211c9570dd1f2dc578099023deda97a9a21dd4646a56104bd8e74efd3"], &(0x7f0000000100)='./file0\x00', &(0x7f0000000200)='rpc_pipefs\x00', 0x40000, &(0x7f0000000240)='[(-\xc8#!#\x00')
r0 = memfd_create(&(0x7f0000000000)='\xf3e\t\x9f\x918\xc0y\x01c\x1fnux\x00sV\ad\xb0l \xfd\xd7\x8e\x7f\x89\xb8\xc5;~\x04\x03~K\xfbP\x84=\xfa\x81\f\x1et\x10\x0e\xcf^9\xbe\\', 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000001c0)=ANY=[@ANYBLOB="b8000000130001000000000000000000ffffffff000000000000000000000000fff7ffff00000000000000000000000000000000000000000200000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000052fa3431000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000bf6b6e000000000000000000"], 0xb8}}, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x300000c, 0x20010, r1, 0xb980c000)
pwrite64(r0, &(0x7f000003bfff)='/', 0x1, 0x0)
rmdir(&(0x7f0000000340)='./file0\x00')
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
lseek(r0, 0x0, 0x4)
mount$overlay(0x0, &(0x7f0000000580)='./file0\x00', &(0x7f00000005c0), 0x8020, &(0x7f0000000480)={[{@index_on}, {@metacopy_on}, {@xino_on}, {@default_permissions}, {@default_permissions}], [{@appraise_type}, {@euid_eq={'euid', 0x3d, 0xee00}}, {@subj_user}]})
mount$overlay(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000440), 0x1a, &(0x7f0000000780)=ANY=[@ANYBLOB='workdir=./file0,redirect_dir=./file0,nfs_export=on,smackfstransmute=,obj_role=,uid<', @ANYRESDEC=0x0, @ANYBLOB="2c6f626a5f747970653df365099f9138c07901631f6e75780073560764b06c20fdd78e7f89b8c53b7e04037e4bfb50843dfa810c1e74100ecf5e39be5c2c6d61736b3d5e4db800000000000000442c6673636f6e746578743d73797374656d5f752c666f776e65723c", @ANYRESDEC=0x0, @ANYBLOB=',\x00'])
sendfile(r0, r0, &(0x7f00000001c0), 0x7fa)
chdir(&(0x7f0000000140)='./file0\x00')
symlink(&(0x7f0000001000)='./file0\x00', &(0x7f00000000c0)='./file0\x00')
ftruncate(r0, 0x4)
chown(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
umount2(&(0x7f0000000040)='./file0\x00', 0x2)

03:49:23 executing program 1:
setitimer(0x1, &(0x7f0000000080)={{}, {0x77359400}}, &(0x7f0000000300))
mkdir(&(0x7f0000000400)='./file0\x00', 0x1)
mount(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000280)='tmpfs\x00', 0x0, 0x0)
mount(&(0x7f0000000380)=ANY=[@ANYBLOB="bd72cfec0fb34fdaee570800d26808000000b1b004f78f65ed9fa11f064ac4797d862167ff66b26595f693bd4cc3220ec0881b88e0596a54222c48c211c9570dd1f2dc578099023deda97a9a21dd4646a56104bd8e74efd3"], &(0x7f0000000100)='./file0\x00', &(0x7f0000000200)='rpc_pipefs\x00', 0x40000, &(0x7f0000000240)='[(-\xc8#!#\x00')
r0 = memfd_create(&(0x7f0000000000)='\xf3e\t\x9f\x918\xc0y\x01c\x1fnux\x00sV\ad\xb0l \xfd\xd7\x8e\x7f\x89\xb8\xc5;~\x04\x03~K\xfbP\x84=\xfa\x81\f\x1et\x10\x0e\xcf^9\xbe\\', 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000001c0)=ANY=[@ANYBLOB="b8000000130001000000000000000000ffffffff000000000000000000000000fff7ffff00000000000000000000000000000000000000000200000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000052fa3431000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000bf6b6e000000000000000000"], 0xb8}}, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x300000c, 0x20010, r1, 0xb980c000)
pwrite64(r0, &(0x7f000003bfff)='/', 0x1, 0x0)
rmdir(&(0x7f0000000340)='./file0\x00')
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
lseek(r0, 0x0, 0x4)
mount$overlay(0x0, &(0x7f0000000580)='./file0\x00', &(0x7f00000005c0), 0x8020, &(0x7f0000000480)={[{@index_on}, {@metacopy_on}, {@xino_on}, {@default_permissions}, {@default_permissions}], [{@appraise_type}, {@euid_eq={'euid', 0x3d, 0xee00}}, {@subj_user}]})
mount$overlay(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000440), 0x1a, &(0x7f0000000780)=ANY=[@ANYBLOB='workdir=./file0,redirect_dir=./file0,nfs_export=on,smackfstransmute=,obj_role=,uid<', @ANYRESDEC=0x0, @ANYBLOB="2c6f626a5f747970653df365099f9138c07901631f6e75780073560764b06c20fdd78e7f89b8c53b7e04037e4bfb50843dfa810c1e74100ecf5e39be5c2c6d61736b3d5e4db800000000000000442c6673636f6e746578743d73797374656d5f752c666f776e65723c", @ANYRESDEC=0x0, @ANYBLOB=',\x00'])
sendfile(r0, r0, &(0x7f00000001c0), 0x7fa)
chdir(&(0x7f0000000140)='./file0\x00')
symlink(&(0x7f0000001000)='./file0\x00', &(0x7f00000000c0)='./file0\x00')
ftruncate(r0, 0x4)
chown(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
umount2(&(0x7f0000000040)='./file0\x00', 0x2)

[ 1715.085369][T23352] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 1715.096635][T23354] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1715.120868][T23353] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1715.152662][T23351] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1715.181692][T23354] tmpfs: Unknown parameter 'index'
[ 1715.189630][T23351] tmpfs: Unknown parameter 'index'
[ 1715.230561][T23351] overlayfs: unrecognized mount option "smackfstransmute=" or missing value
[ 1715.242181][T23354] overlayfs: unrecognized mount option "smackfstransmute=" or missing value
03:49:25 executing program 5:
mlockall(0x3)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x0, 0x31, 0xffffffffffffffff, 0x0)
io_setup(0x0, 0x0)
socket$inet6_sctp(0xa, 0x0, 0x84)

03:49:25 executing program 0:
setitimer(0x1, &(0x7f0000000080)={{}, {0x77359400}}, &(0x7f0000000300))
mkdir(&(0x7f0000000400)='./file0\x00', 0x1)
mount(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000280)='tmpfs\x00', 0x0, 0x0)
mount(&(0x7f0000000380)=ANY=[@ANYBLOB="bd72cfec0fb34fdaee570800d26808000000b1b004f78f65ed9fa11f064ac4797d862167ff66b26595f693bd4cc3220ec0881b88e0596a54222c48c211c9570dd1f2dc578099023deda97a9a21dd4646a56104bd8e74efd3"], &(0x7f0000000100)='./file0\x00', &(0x7f0000000200)='rpc_pipefs\x00', 0x40000, &(0x7f0000000240)='[(-\xc8#!#\x00')
r0 = memfd_create(&(0x7f0000000000)='\xf3e\t\x9f\x918\xc0y\x01c\x1fnux\x00sV\ad\xb0l \xfd\xd7\x8e\x7f\x89\xb8\xc5;~\x04\x03~K\xfbP\x84=\xfa\x81\f\x1et\x10\x0e\xcf^9\xbe\\', 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000001c0)=ANY=[@ANYBLOB="b8000000130001000000000000000000ffffffff000000000000000000000000fff7ffff00000000000000000000000000000000000000000200000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000052fa3431000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000bf6b6e000000000000000000"], 0xb8}}, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x300000c, 0x20010, r1, 0xb980c000)
pwrite64(r0, &(0x7f000003bfff)='/', 0x1, 0x0)
rmdir(&(0x7f0000000340)='./file0\x00')
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
lseek(r0, 0x0, 0x4)
mount$overlay(0x0, &(0x7f0000000580)='./file0\x00', &(0x7f00000005c0), 0x8020, &(0x7f0000000480)={[{@index_on}, {@metacopy_on}, {@xino_on}, {@default_permissions}, {@default_permissions}], [{@appraise_type}, {@euid_eq={'euid', 0x3d, 0xee00}}, {@subj_user}]})
mount$overlay(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000440), 0x1a, &(0x7f0000000780)=ANY=[@ANYBLOB='workdir=./file0,redirect_dir=./file0,nfs_export=on,smackfstransmute=,obj_role=,uid<', @ANYRESDEC=0x0, @ANYBLOB="2c6f626a5f747970653df365099f9138c07901631f6e75780073560764b06c20fdd78e7f89b8c53b7e04037e4bfb50843dfa810c1e74100ecf5e39be5c2c6d61736b3d5e4db800000000000000442c6673636f6e746578743d73797374656d5f752c666f776e65723c", @ANYRESDEC=0x0, @ANYBLOB=',\x00'])
sendfile(r0, r0, &(0x7f00000001c0), 0x7fa)
chdir(&(0x7f0000000140)='./file0\x00')
symlink(&(0x7f0000001000)='./file0\x00', &(0x7f00000000c0)='./file0\x00')
ftruncate(r0, 0x4)
chown(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
umount2(&(0x7f0000000040)='./file0\x00', 0x2)

03:49:25 executing program 2:
setitimer(0x1, &(0x7f0000000080)={{}, {0x77359400}}, &(0x7f0000000300))
mkdir(&(0x7f0000000400)='./file0\x00', 0x1)
mount(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000280)='tmpfs\x00', 0x0, 0x0)
mount(&(0x7f0000000380)=ANY=[@ANYBLOB="bd72cfec0fb34fdaee570800d26808000000b1b004f78f65ed9fa11f064ac4797d862167ff66b26595f693bd4cc3220ec0881b88e0596a54222c48c211c9570dd1f2dc578099023deda97a9a21dd4646a56104bd8e74efd3"], &(0x7f0000000100)='./file0\x00', &(0x7f0000000200)='rpc_pipefs\x00', 0x40000, &(0x7f0000000240)='[(-\xc8#!#\x00')
r0 = memfd_create(&(0x7f0000000000)='\xf3e\t\x9f\x918\xc0y\x01c\x1fnux\x00sV\ad\xb0l \xfd\xd7\x8e\x7f\x89\xb8\xc5;~\x04\x03~K\xfbP\x84=\xfa\x81\f\x1et\x10\x0e\xcf^9\xbe\\', 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000001c0)=ANY=[@ANYBLOB="b8000000130001000000000000000000ffffffff000000000000000000000000fff7ffff00000000000000000000000000000000000000000200000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000052fa3431000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000bf6b6e000000000000000000"], 0xb8}}, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x300000c, 0x20010, r1, 0xb980c000)
pwrite64(r0, &(0x7f000003bfff)='/', 0x1, 0x0)
rmdir(&(0x7f0000000340)='./file0\x00')
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
lseek(r0, 0x0, 0x4)
mount$overlay(0x0, &(0x7f0000000580)='./file0\x00', &(0x7f00000005c0), 0x8020, &(0x7f0000000480)={[{@index_on}, {@metacopy_on}, {@xino_on}, {@default_permissions}, {@default_permissions}], [{@appraise_type}, {@euid_eq={'euid', 0x3d, 0xee00}}, {@subj_user}]})
mount$overlay(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000440), 0x1a, &(0x7f0000000780)=ANY=[@ANYBLOB='workdir=./file0,redirect_dir=./file0,nfs_export=on,smackfstransmute=,obj_role=,uid<', @ANYRESDEC=0x0, @ANYBLOB="2c6f626a5f747970653df365099f9138c07901631f6e75780073560764b06c20fdd78e7f89b8c53b7e04037e4bfb50843dfa810c1e74100ecf5e39be5c2c6d61736b3d5e4db800000000000000442c6673636f6e746578743d73797374656d5f752c666f776e65723c", @ANYRESDEC=0x0, @ANYBLOB=',\x00'])
sendfile(r0, r0, &(0x7f00000001c0), 0x7fa)
chdir(&(0x7f0000000140)='./file0\x00')
symlink(&(0x7f0000001000)='./file0\x00', &(0x7f00000000c0)='./file0\x00')
ftruncate(r0, 0x4)
chown(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
umount2(&(0x7f0000000040)='./file0\x00', 0x2)

03:49:25 executing program 4:
setitimer(0x1, &(0x7f0000000080)={{}, {0x77359400}}, &(0x7f0000000300))
mkdir(&(0x7f0000000400)='./file0\x00', 0x1)
mount(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000280)='tmpfs\x00', 0x0, 0x0)
mount(&(0x7f0000000380)=ANY=[@ANYBLOB="bd72cfec0fb34fdaee570800d26808000000b1b004f78f65ed9fa11f064ac4797d862167ff66b26595f693bd4cc3220ec0881b88e0596a54222c48c211c9570dd1f2dc578099023deda97a9a21dd4646a56104bd8e74efd3"], &(0x7f0000000100)='./file0\x00', &(0x7f0000000200)='rpc_pipefs\x00', 0x40000, &(0x7f0000000240)='[(-\xc8#!#\x00')
r0 = memfd_create(&(0x7f0000000000)='\xf3e\t\x9f\x918\xc0y\x01c\x1fnux\x00sV\ad\xb0l \xfd\xd7\x8e\x7f\x89\xb8\xc5;~\x04\x03~K\xfbP\x84=\xfa\x81\f\x1et\x10\x0e\xcf^9\xbe\\', 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000001c0)=ANY=[@ANYBLOB="b8000000130001000000000000000000ffffffff000000000000000000000000fff7ffff00000000000000000000000000000000000000000200000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000052fa3431000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000bf6b6e000000000000000000"], 0xb8}}, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x300000c, 0x20010, r1, 0xb980c000)
pwrite64(r0, &(0x7f000003bfff)='/', 0x1, 0x0)
rmdir(&(0x7f0000000340)='./file0\x00')
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
lseek(r0, 0x0, 0x4)
mount$overlay(0x0, &(0x7f0000000580)='./file0\x00', &(0x7f00000005c0), 0x8020, &(0x7f0000000480)={[{@index_on}, {@metacopy_on}, {@xino_on}, {@default_permissions}, {@default_permissions}], [{@appraise_type}, {@euid_eq={'euid', 0x3d, 0xee00}}, {@subj_user}]})
mount$overlay(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000440), 0x1a, &(0x7f0000000780)=ANY=[@ANYBLOB='workdir=./file0,redirect_dir=./file0,nfs_export=on,smackfstransmute=,obj_role=,uid<', @ANYRESDEC=0x0, @ANYBLOB="2c6f626a5f747970653df365099f9138c07901631f6e75780073560764b06c20fdd78e7f89b8c53b7e04037e4bfb50843dfa810c1e74100ecf5e39be5c2c6d61736b3d5e4db800000000000000442c6673636f6e746578743d73797374656d5f752c666f776e65723c", @ANYRESDEC=0x0, @ANYBLOB=',\x00'])
sendfile(r0, r0, &(0x7f00000001c0), 0x7fa)
chdir(&(0x7f0000000140)='./file0\x00')
symlink(&(0x7f0000001000)='./file0\x00', &(0x7f00000000c0)='./file0\x00')
ftruncate(r0, 0x4)
chown(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
umount2(&(0x7f0000000040)='./file0\x00', 0x2)

03:49:25 executing program 1:
setitimer(0x1, &(0x7f0000000080)={{}, {0x77359400}}, &(0x7f0000000300))
mkdir(&(0x7f0000000400)='./file0\x00', 0x1)
mount(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000280)='tmpfs\x00', 0x0, 0x0)
mount(&(0x7f0000000380)=ANY=[@ANYBLOB="bd72cfec0fb34fdaee570800d26808000000b1b004f78f65ed9fa11f064ac4797d862167ff66b26595f693bd4cc3220ec0881b88e0596a54222c48c211c9570dd1f2dc578099023deda97a9a21dd4646a56104bd8e74efd3"], &(0x7f0000000100)='./file0\x00', &(0x7f0000000200)='rpc_pipefs\x00', 0x40000, &(0x7f0000000240)='[(-\xc8#!#\x00')
r0 = memfd_create(&(0x7f0000000000)='\xf3e\t\x9f\x918\xc0y\x01c\x1fnux\x00sV\ad\xb0l \xfd\xd7\x8e\x7f\x89\xb8\xc5;~\x04\x03~K\xfbP\x84=\xfa\x81\f\x1et\x10\x0e\xcf^9\xbe\\', 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000001c0)=ANY=[@ANYBLOB="b8000000130001000000000000000000ffffffff000000000000000000000000fff7ffff00000000000000000000000000000000000000000200000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000052fa3431000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000bf6b6e000000000000000000"], 0xb8}}, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x300000c, 0x20010, r1, 0xb980c000)
pwrite64(r0, &(0x7f000003bfff)='/', 0x1, 0x0)
rmdir(&(0x7f0000000340)='./file0\x00')
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
lseek(r0, 0x0, 0x4)
mount$overlay(0x0, &(0x7f0000000580)='./file0\x00', &(0x7f00000005c0), 0x8020, &(0x7f0000000480)={[{@index_on}, {@metacopy_on}, {@xino_on}, {@default_permissions}, {@default_permissions}], [{@appraise_type}, {@euid_eq={'euid', 0x3d, 0xee00}}, {@subj_user}]})
mount$overlay(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000440), 0x1a, &(0x7f0000000780)=ANY=[@ANYBLOB='workdir=./file0,redirect_dir=./file0,nfs_export=on,smackfstransmute=,obj_role=,uid<', @ANYRESDEC=0x0, @ANYBLOB="2c6f626a5f747970653df365099f9138c07901631f6e75780073560764b06c20fdd78e7f89b8c53b7e04037e4bfb50843dfa810c1e74100ecf5e39be5c2c6d61736b3d5e4db800000000000000442c6673636f6e746578743d73797374656d5f752c666f776e65723c", @ANYRESDEC=0x0, @ANYBLOB=',\x00'])
sendfile(r0, r0, &(0x7f00000001c0), 0x7fa)
chdir(&(0x7f0000000140)='./file0\x00')
symlink(&(0x7f0000001000)='./file0\x00', &(0x7f00000000c0)='./file0\x00')
ftruncate(r0, 0x4)
chown(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
umount2(&(0x7f0000000040)='./file0\x00', 0x2)

[ 1716.918081][T23368] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 1716.936609][T23367] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1716.957813][T23369] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1716.983834][T23370] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
03:49:26 executing program 2:
setitimer(0x1, &(0x7f0000000080)={{}, {0x77359400}}, &(0x7f0000000300))
mkdir(&(0x7f0000000400)='./file0\x00', 0x1)
mount(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000280)='tmpfs\x00', 0x0, 0x0)
mount(&(0x7f0000000380)=ANY=[@ANYBLOB="bd72cfec0fb34fdaee570800d26808000000b1b004f78f65ed9fa11f064ac4797d862167ff66b26595f693bd4cc3220ec0881b88e0596a54222c48c211c9570dd1f2dc578099023deda97a9a21dd4646a56104bd8e74efd3"], &(0x7f0000000100)='./file0\x00', &(0x7f0000000200)='rpc_pipefs\x00', 0x40000, &(0x7f0000000240)='[(-\xc8#!#\x00')
r0 = memfd_create(&(0x7f0000000000)='\xf3e\t\x9f\x918\xc0y\x01c\x1fnux\x00sV\ad\xb0l \xfd\xd7\x8e\x7f\x89\xb8\xc5;~\x04\x03~K\xfbP\x84=\xfa\x81\f\x1et\x10\x0e\xcf^9\xbe\\', 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000001c0)=ANY=[@ANYBLOB="b8000000130001000000000000000000ffffffff000000000000000000000000fff7ffff00000000000000000000000000000000000000000200000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000052fa3431000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000bf6b6e000000000000000000"], 0xb8}}, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x300000c, 0x20010, r1, 0xb980c000)
pwrite64(r0, &(0x7f000003bfff)='/', 0x1, 0x0)
rmdir(&(0x7f0000000340)='./file0\x00')
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
lseek(r0, 0x0, 0x4)
mount$overlay(0x0, &(0x7f0000000580)='./file0\x00', &(0x7f00000005c0), 0x8020, &(0x7f0000000480)={[{@index_on}, {@metacopy_on}, {@xino_on}, {@default_permissions}, {@default_permissions}], [{@appraise_type}, {@euid_eq={'euid', 0x3d, 0xee00}}, {@subj_user}]})
mount$overlay(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000440), 0x1a, &(0x7f0000000780)=ANY=[@ANYBLOB='workdir=./file0,redirect_dir=./file0,nfs_export=on,smackfstransmute=,obj_role=,uid<', @ANYRESDEC=0x0, @ANYBLOB="2c6f626a5f747970653df365099f9138c07901631f6e75780073560764b06c20fdd78e7f89b8c53b7e04037e4bfb50843dfa810c1e74100ecf5e39be5c2c6d61736b3d5e4db800000000000000442c6673636f6e746578743d73797374656d5f752c666f776e65723c", @ANYRESDEC=0x0, @ANYBLOB=',\x00'])
sendfile(r0, r0, &(0x7f00000001c0), 0x7fa)
chdir(&(0x7f0000000140)='./file0\x00')
symlink(&(0x7f0000001000)='./file0\x00', &(0x7f00000000c0)='./file0\x00')
ftruncate(r0, 0x4)
chown(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
umount2(&(0x7f0000000040)='./file0\x00', 0x2)

03:49:26 executing program 0:
setitimer(0x1, &(0x7f0000000080)={{}, {0x77359400}}, &(0x7f0000000300))
mkdir(&(0x7f0000000400)='./file0\x00', 0x1)
mount(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000280)='tmpfs\x00', 0x0, 0x0)
mount(&(0x7f0000000380)=ANY=[@ANYBLOB="bd72cfec0fb34fdaee570800d26808000000b1b004f78f65ed9fa11f064ac4797d862167ff66b26595f693bd4cc3220ec0881b88e0596a54222c48c211c9570dd1f2dc578099023deda97a9a21dd4646a56104bd8e74efd3"], &(0x7f0000000100)='./file0\x00', &(0x7f0000000200)='rpc_pipefs\x00', 0x40000, &(0x7f0000000240)='[(-\xc8#!#\x00')
r0 = memfd_create(&(0x7f0000000000)='\xf3e\t\x9f\x918\xc0y\x01c\x1fnux\x00sV\ad\xb0l \xfd\xd7\x8e\x7f\x89\xb8\xc5;~\x04\x03~K\xfbP\x84=\xfa\x81\f\x1et\x10\x0e\xcf^9\xbe\\', 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000001c0)=ANY=[@ANYBLOB="b8000000130001000000000000000000ffffffff000000000000000000000000fff7ffff00000000000000000000000000000000000000000200000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000052fa3431000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000bf6b6e000000000000000000"], 0xb8}}, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x300000c, 0x20010, r1, 0xb980c000)
pwrite64(r0, &(0x7f000003bfff)='/', 0x1, 0x0)
rmdir(&(0x7f0000000340)='./file0\x00')
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
lseek(r0, 0x0, 0x4)
mount$overlay(0x0, &(0x7f0000000580)='./file0\x00', &(0x7f00000005c0), 0x8020, &(0x7f0000000480)={[{@index_on}, {@metacopy_on}, {@xino_on}, {@default_permissions}, {@default_permissions}], [{@appraise_type}, {@euid_eq={'euid', 0x3d, 0xee00}}, {@subj_user}]})
mount$overlay(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000440), 0x1a, &(0x7f0000000780)=ANY=[@ANYBLOB='workdir=./file0,redirect_dir=./file0,nfs_export=on,smackfstransmute=,obj_role=,uid<', @ANYRESDEC=0x0, @ANYBLOB="2c6f626a5f747970653df365099f9138c07901631f6e75780073560764b06c20fdd78e7f89b8c53b7e04037e4bfb50843dfa810c1e74100ecf5e39be5c2c6d61736b3d5e4db800000000000000442c6673636f6e746578743d73797374656d5f752c666f776e65723c", @ANYRESDEC=0x0, @ANYBLOB=',\x00'])
sendfile(r0, r0, &(0x7f00000001c0), 0x7fa)
chdir(&(0x7f0000000140)='./file0\x00')
symlink(&(0x7f0000001000)='./file0\x00', &(0x7f00000000c0)='./file0\x00')
ftruncate(r0, 0x4)
chown(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
umount2(&(0x7f0000000040)='./file0\x00', 0x2)

[ 1718.298379][T23381] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1718.489003][T23385] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
03:49:28 executing program 0:
syz_mount_image$ext4(&(0x7f00000000c0)='ext2\x00', &(0x7f0000000380)='./file1\x00', 0x0, 0x0, &(0x7f0000000580), 0x0, &(0x7f00000004c0)={[{@sb={'sb', 0x3d, 0xfffffffffffffff8}}], [{@func={'func', 0x3d, 'MODULE_CHECK'}}, {@obj_role={'obj_role', 0x3d, ',+@)'}}, {@func={'func', 0x3d, 'MODULE_CHECK'}}, {@uid_gt}, {@func={'func', 0x3d, 'FILE_MMAP'}}]})
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
splice(0xffffffffffffffff, 0x0, r0, 0x0, 0x2000070, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
chdir(&(0x7f0000000240)='./file0\x00')
mkdir(&(0x7f0000001ac0)='./file0\x00', 0x0)
r1 = open(&(0x7f0000001680)='./file0\x00', 0x0, 0x0)
r2 = openat$cgroup_procs(r1, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
rmdir(&(0x7f0000000000)='./file0\x00')
ppoll(&(0x7f00000001c0)=[{r2}], 0x1, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000600)={{{@in=@multicast2, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}}, {{}, 0x0, @in=@local}}, &(0x7f0000000080)=0xe8)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x10, &(0x7f0000000700)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=r3, @ANYBLOB="0200000075705f69643dbc38457b470c6b5ad262b084ac8b34d5da0a314e8faa70c3d6ee6cd1a5a376dd09b74cf09623d49bbb8a5c73804b1a4e49f301811e", @ANYRESDEC, @ANYBLOB=',allow_other,allow_other,default_permissions,default_permissions,fsmagic=0x0000000000000074,\x00'])
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000840)={{{@in=@local, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in=@private}, 0x0, @in=@dev}}, &(0x7f0000000180)=0xfffffcea)
r5 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xe, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000600100000f000000000000000000000004000000000002000020000020000000ddf4655fddf4655f0100ffff53ef010001000000ddf4655f000000000000000001000000000000000b0000000001000008000000d24200001203", 0x66, 0x400}, {&(0x7f0000010100)="0000000000000000000000006856d49a00cc4371bd6a7c893f280045010040", 0x1f, 0x4e0}, {&(0x7f0000010300)="0300000004", 0x5, 0x640}, {&(0x7f0000002540)="03000000040000000500000016000f000300040000000000000000000f00698c", 0x20, 0x800}, {&(0x7f0000010500)="ff030000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x400, 0xc00}, {&(0x7f0000010e00)="ed41000000040000ddf4655fddf4655fddf4655f00000000000004002000000000000800050000000af301000400000000000000000000000100000010", 0x3d, 0x1500}, {&(0x7f0000011000)="8081000000180000ddf4655fddf4655fddf4655f00000000000001002000000010000800000000000af302000400000000000000000000000200000030000000020000000400000032", 0x49, 0x1600}, {&(0x7f0000011100)="8081000000180000ddf4655fddf4655fddf4655f00000000000001002000000010000800000000000af302000400000000000000000000000200000040000000020000000400000042", 0x49, 0x1700}, {0x0, 0x0, 0x6700000}, {&(0x7f0000011700)="ed8100000a000000ddf4655fddf4655fddf4655f00000000000001", 0x1b, 0x2200}, {&(0x7f0000011a00)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531", 0x49, 0x4000}, {&(0x7f0000000580)="111fc0d901000000803a0900803a09000000000006", 0x15, 0xc000}, {&(0x7f0000012d00)="2719c0d901000000803a0900803a090000000000060000000000000005", 0x1d, 0x10000}, {&(0x7f0000000140)="640400000000000005ff", 0xa, 0x11400}], 0x0, &(0x7f0000013b00))
r6 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r6, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r7=>0x0}, &(0x7f0000cab000)=0xc)
fchownat(r5, &(0x7f0000000080)='./file2\x00', 0x0, r7, 0x1000)
lchown(&(0x7f0000000000)='./file0\x00', 0x0, r7)
chown(&(0x7f0000000300)='./file0\x00', r4, r7)

03:49:28 executing program 4:
setitimer(0x1, &(0x7f0000000080)={{}, {0x77359400}}, &(0x7f0000000300))
mkdir(&(0x7f0000000400)='./file0\x00', 0x1)
mount(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000280)='tmpfs\x00', 0x0, 0x0)
mount(&(0x7f0000000380)=ANY=[@ANYBLOB="bd72cfec0fb34fdaee570800d26808000000b1b004f78f65ed9fa11f064ac4797d862167ff66b26595f693bd4cc3220ec0881b88e0596a54222c48c211c9570dd1f2dc578099023deda97a9a21dd4646a56104bd8e74efd3"], &(0x7f0000000100)='./file0\x00', &(0x7f0000000200)='rpc_pipefs\x00', 0x40000, &(0x7f0000000240)='[(-\xc8#!#\x00')
r0 = memfd_create(&(0x7f0000000000)='\xf3e\t\x9f\x918\xc0y\x01c\x1fnux\x00sV\ad\xb0l \xfd\xd7\x8e\x7f\x89\xb8\xc5;~\x04\x03~K\xfbP\x84=\xfa\x81\f\x1et\x10\x0e\xcf^9\xbe\\', 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000001c0)=ANY=[@ANYBLOB="b8000000130001000000000000000000ffffffff000000000000000000000000fff7ffff00000000000000000000000000000000000000000200000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000052fa3431000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000bf6b6e000000000000000000"], 0xb8}}, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x300000c, 0x20010, r1, 0xb980c000)
pwrite64(r0, &(0x7f000003bfff)='/', 0x1, 0x0)
rmdir(&(0x7f0000000340)='./file0\x00')
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
lseek(r0, 0x0, 0x4)
mount$overlay(0x0, &(0x7f0000000580)='./file0\x00', &(0x7f00000005c0), 0x8020, &(0x7f0000000480)={[{@index_on}, {@metacopy_on}, {@xino_on}, {@default_permissions}, {@default_permissions}], [{@appraise_type}, {@euid_eq={'euid', 0x3d, 0xee00}}, {@subj_user}]})
mount$overlay(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000440), 0x1a, &(0x7f0000000780)=ANY=[@ANYBLOB='workdir=./file0,redirect_dir=./file0,nfs_export=on,smackfstransmute=,obj_role=,uid<', @ANYRESDEC=0x0, @ANYBLOB="2c6f626a5f747970653df365099f9138c07901631f6e75780073560764b06c20fdd78e7f89b8c53b7e04037e4bfb50843dfa810c1e74100ecf5e39be5c2c6d61736b3d5e4db800000000000000442c6673636f6e746578743d73797374656d5f752c666f776e65723c", @ANYRESDEC=0x0, @ANYBLOB=',\x00'])
sendfile(r0, r0, &(0x7f00000001c0), 0x7fa)
chdir(&(0x7f0000000140)='./file0\x00')
symlink(&(0x7f0000001000)='./file0\x00', &(0x7f00000000c0)='./file0\x00')
ftruncate(r0, 0x4)
chown(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
umount2(&(0x7f0000000040)='./file0\x00', 0x2)

03:49:28 executing program 1:
r0 = syz_open_dev$video4linux(&(0x7f00000015c0), 0x0, 0x0)
mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x4004012, r0, 0x0)

03:49:28 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_LINK_WINDOW(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000340)={0x68, r1, 0x1, 0x0, 0x0, {{}, {}, {0x4c, 0x18, {0x0, @media='udp\x00'}}}}, 0x68}}, 0x0)

03:49:28 executing program 3:
r0 = socket(0x10, 0x8000000000000003, 0x0)
r1 = socket(0x11, 0x800000003, 0x0)
bind(r1, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80)
getsockname$packet(r1, &(0x7f00000025c0)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x66)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000007c0)=ANY=[@ANYBLOB="4800000024000b0f000000000000000060000000", @ANYRES32=r2, @ANYBLOB="00000000ffffffff00000000090001007072696f000000001800020008000000000000c4"], 0x48}}, 0x0)
sendmmsg(r0, &(0x7f0000000000), 0x40000000000024a, 0x0)

03:49:29 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_LINK_WINDOW(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000340)={0x68, r1, 0x1, 0x0, 0x0, {{}, {}, {0x4c, 0x18, {0x0, @media='udp\x00'}}}}, 0x68}}, 0x0)

03:49:29 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)={0x34, r1, 0x231, 0x0, 0x0, {}, [@ETHTOOL_A_COALESCE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}, @ETHTOOL_A_COALESCE_RX_USECS_HIGH={0x8}]}, 0x34}}, 0x0)

03:49:29 executing program 3:
r0 = socket(0x10, 0x8000000000000003, 0x0)
r1 = socket(0x11, 0x800000003, 0x0)
bind(r1, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80)
getsockname$packet(r1, &(0x7f00000025c0)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x66)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000007c0)=ANY=[@ANYBLOB="4800000024000b0f000000000000000060000000", @ANYRES32=r2, @ANYBLOB="00000000ffffffff00000000090001007072696f000000001800020008000000000000c4"], 0x48}}, 0x0)
sendmmsg(r0, &(0x7f0000000000), 0x40000000000024a, 0x0)

03:49:29 executing program 0:
syz_mount_image$ext4(&(0x7f00000000c0)='ext2\x00', &(0x7f0000000380)='./file1\x00', 0x0, 0x0, &(0x7f0000000580), 0x0, &(0x7f00000004c0)={[{@sb={'sb', 0x3d, 0xfffffffffffffff8}}], [{@func={'func', 0x3d, 'MODULE_CHECK'}}, {@obj_role={'obj_role', 0x3d, ',+@)'}}, {@func={'func', 0x3d, 'MODULE_CHECK'}}, {@uid_gt}, {@func={'func', 0x3d, 'FILE_MMAP'}}]})
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
splice(0xffffffffffffffff, 0x0, r0, 0x0, 0x2000070, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
chdir(&(0x7f0000000240)='./file0\x00')
mkdir(&(0x7f0000001ac0)='./file0\x00', 0x0)
r1 = open(&(0x7f0000001680)='./file0\x00', 0x0, 0x0)
r2 = openat$cgroup_procs(r1, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
rmdir(&(0x7f0000000000)='./file0\x00')
ppoll(&(0x7f00000001c0)=[{r2}], 0x1, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000600)={{{@in=@multicast2, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}}, {{}, 0x0, @in=@local}}, &(0x7f0000000080)=0xe8)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x10, &(0x7f0000000700)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=r3, @ANYBLOB="0200000075705f69643dbc38457b470c6b5ad262b084ac8b34d5da0a314e8faa70c3d6ee6cd1a5a376dd09b74cf09623d49bbb8a5c73804b1a4e49f301811e", @ANYRESDEC, @ANYBLOB=',allow_other,allow_other,default_permissions,default_permissions,fsmagic=0x0000000000000074,\x00'])
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000840)={{{@in=@local, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in=@private}, 0x0, @in=@dev}}, &(0x7f0000000180)=0xfffffcea)
r5 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xe, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000600100000f000000000000000000000004000000000002000020000020000000ddf4655fddf4655f0100ffff53ef010001000000ddf4655f000000000000000001000000000000000b0000000001000008000000d24200001203", 0x66, 0x400}, {&(0x7f0000010100)="0000000000000000000000006856d49a00cc4371bd6a7c893f280045010040", 0x1f, 0x4e0}, {&(0x7f0000010300)="0300000004", 0x5, 0x640}, {&(0x7f0000002540)="03000000040000000500000016000f000300040000000000000000000f00698c", 0x20, 0x800}, {&(0x7f0000010500)="ff030000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x400, 0xc00}, {&(0x7f0000010e00)="ed41000000040000ddf4655fddf4655fddf4655f00000000000004002000000000000800050000000af301000400000000000000000000000100000010", 0x3d, 0x1500}, {&(0x7f0000011000)="8081000000180000ddf4655fddf4655fddf4655f00000000000001002000000010000800000000000af302000400000000000000000000000200000030000000020000000400000032", 0x49, 0x1600}, {&(0x7f0000011100)="8081000000180000ddf4655fddf4655fddf4655f00000000000001002000000010000800000000000af302000400000000000000000000000200000040000000020000000400000042", 0x49, 0x1700}, {0x0, 0x0, 0x6700000}, {&(0x7f0000011700)="ed8100000a000000ddf4655fddf4655fddf4655f00000000000001", 0x1b, 0x2200}, {&(0x7f0000011a00)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531", 0x49, 0x4000}, {&(0x7f0000000580)="111fc0d901000000803a0900803a09000000000006", 0x15, 0xc000}, {&(0x7f0000012d00)="2719c0d901000000803a0900803a090000000000060000000000000005", 0x1d, 0x10000}, {&(0x7f0000000140)="640400000000000005ff", 0xa, 0x11400}], 0x0, &(0x7f0000013b00))
r6 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r6, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r7=>0x0}, &(0x7f0000cab000)=0xc)
fchownat(r5, &(0x7f0000000080)='./file2\x00', 0x0, r7, 0x1000)
lchown(&(0x7f0000000000)='./file0\x00', 0x0, r7)
chown(&(0x7f0000000300)='./file0\x00', r4, r7)

03:49:29 executing program 4:
setitimer(0x1, &(0x7f0000000080)={{}, {0x77359400}}, &(0x7f0000000300))
mkdir(&(0x7f0000000400)='./file0\x00', 0x1)
mount(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000280)='tmpfs\x00', 0x0, 0x0)
mount(&(0x7f0000000380)=ANY=[@ANYBLOB="bd72cfec0fb34fdaee570800d26808000000b1b004f78f65ed9fa11f064ac4797d862167ff66b26595f693bd4cc3220ec0881b88e0596a54222c48c211c9570dd1f2dc578099023deda97a9a21dd4646a56104bd8e74efd3"], &(0x7f0000000100)='./file0\x00', &(0x7f0000000200)='rpc_pipefs\x00', 0x40000, &(0x7f0000000240)='[(-\xc8#!#\x00')
r0 = memfd_create(&(0x7f0000000000)='\xf3e\t\x9f\x918\xc0y\x01c\x1fnux\x00sV\ad\xb0l \xfd\xd7\x8e\x7f\x89\xb8\xc5;~\x04\x03~K\xfbP\x84=\xfa\x81\f\x1et\x10\x0e\xcf^9\xbe\\', 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000001c0)=ANY=[@ANYBLOB="b8000000130001000000000000000000ffffffff000000000000000000000000fff7ffff00000000000000000000000000000000000000000200000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000052fa3431000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000bf6b6e000000000000000000"], 0xb8}}, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x300000c, 0x20010, r1, 0xb980c000)
pwrite64(r0, &(0x7f000003bfff)='/', 0x1, 0x0)
rmdir(&(0x7f0000000340)='./file0\x00')
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
lseek(r0, 0x0, 0x4)
mount$overlay(0x0, &(0x7f0000000580)='./file0\x00', &(0x7f00000005c0), 0x8020, &(0x7f0000000480)={[{@index_on}, {@metacopy_on}, {@xino_on}, {@default_permissions}, {@default_permissions}], [{@appraise_type}, {@euid_eq={'euid', 0x3d, 0xee00}}, {@subj_user}]})
mount$overlay(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000440), 0x1a, &(0x7f0000000780)=ANY=[@ANYBLOB='workdir=./file0,redirect_dir=./file0,nfs_export=on,smackfstransmute=,obj_role=,uid<', @ANYRESDEC=0x0, @ANYBLOB="2c6f626a5f747970653df365099f9138c07901631f6e75780073560764b06c20fdd78e7f89b8c53b7e04037e4bfb50843dfa810c1e74100ecf5e39be5c2c6d61736b3d5e4db800000000000000442c6673636f6e746578743d73797374656d5f752c666f776e65723c", @ANYRESDEC=0x0, @ANYBLOB=',\x00'])
sendfile(r0, r0, &(0x7f00000001c0), 0x7fa)
chdir(&(0x7f0000000140)='./file0\x00')
symlink(&(0x7f0000001000)='./file0\x00', &(0x7f00000000c0)='./file0\x00')
ftruncate(r0, 0x4)
chown(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
umount2(&(0x7f0000000040)='./file0\x00', 0x2)

03:49:29 executing program 5:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000100)={0x48, 0x0, 0x2, 0x101, 0x0, 0x0, {0x2}, [@CTA_EXPECT_MASTER={0x4}, @CTA_EXPECT_TUPLE={0x2c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8}, {0x8, 0x2, @dev}}}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_EXPECT_MASK={0x4}]}, 0x48}}, 0x0)

[ 1720.911226][T23405] __nla_validate_parse: 1 callbacks suppressed
[ 1720.911297][T23405] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
03:49:29 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_LINK_WINDOW(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000340)={0x68, r1, 0x1, 0x0, 0x0, {{}, {}, {0x4c, 0x18, {0x0, @media='udp\x00'}}}}, 0x68}}, 0x0)

03:49:29 executing program 3:
r0 = socket(0x10, 0x8000000000000003, 0x0)
r1 = socket(0x11, 0x800000003, 0x0)
bind(r1, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80)
getsockname$packet(r1, &(0x7f00000025c0)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x66)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000007c0)=ANY=[@ANYBLOB="4800000024000b0f000000000000000060000000", @ANYRES32=r2, @ANYBLOB="00000000ffffffff00000000090001007072696f000000001800020008000000000000c4"], 0x48}}, 0x0)
sendmmsg(r0, &(0x7f0000000000), 0x40000000000024a, 0x0)

03:49:29 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)={0x34, r1, 0x231, 0x0, 0x0, {}, [@ETHTOOL_A_COALESCE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}, @ETHTOOL_A_COALESCE_RX_USECS_HIGH={0x8}]}, 0x34}}, 0x0)

03:49:30 executing program 5:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000100)={0x48, 0x0, 0x2, 0x101, 0x0, 0x0, {0x2}, [@CTA_EXPECT_MASTER={0x4}, @CTA_EXPECT_TUPLE={0x2c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8}, {0x8, 0x2, @dev}}}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_EXPECT_MASK={0x4}]}, 0x48}}, 0x0)

03:49:30 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_LINK_WINDOW(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000340)={0x68, r1, 0x1, 0x0, 0x0, {{}, {}, {0x4c, 0x18, {0x0, @media='udp\x00'}}}}, 0x68}}, 0x0)

03:49:30 executing program 3:
r0 = socket(0x10, 0x8000000000000003, 0x0)
r1 = socket(0x11, 0x800000003, 0x0)
bind(r1, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80)
getsockname$packet(r1, &(0x7f00000025c0)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x66)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000007c0)=ANY=[@ANYBLOB="4800000024000b0f000000000000000060000000", @ANYRES32=r2, @ANYBLOB="00000000ffffffff00000000090001007072696f000000001800020008000000000000c4"], 0x48}}, 0x0)
sendmmsg(r0, &(0x7f0000000000), 0x40000000000024a, 0x0)

03:49:30 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)={0x34, r1, 0x231, 0x0, 0x0, {}, [@ETHTOOL_A_COALESCE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}, @ETHTOOL_A_COALESCE_RX_USECS_HIGH={0x8}]}, 0x34}}, 0x0)

03:49:30 executing program 5:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000100)={0x48, 0x0, 0x2, 0x101, 0x0, 0x0, {0x2}, [@CTA_EXPECT_MASTER={0x4}, @CTA_EXPECT_TUPLE={0x2c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8}, {0x8, 0x2, @dev}}}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_EXPECT_MASK={0x4}]}, 0x48}}, 0x0)

03:49:30 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
sendto$inet(r1, &(0x7f0000000080)='\x00'/10, 0xa, 0x0, &(0x7f00000000c0)={0x2, 0x4e20, @empty}, 0x10)
recvfrom(r0, &(0x7f0000000100)=""/10, 0xa, 0x0, 0x0, 0x0)

03:49:30 executing program 0:
syz_mount_image$ext4(&(0x7f00000000c0)='ext2\x00', &(0x7f0000000380)='./file1\x00', 0x0, 0x0, &(0x7f0000000580), 0x0, &(0x7f00000004c0)={[{@sb={'sb', 0x3d, 0xfffffffffffffff8}}], [{@func={'func', 0x3d, 'MODULE_CHECK'}}, {@obj_role={'obj_role', 0x3d, ',+@)'}}, {@func={'func', 0x3d, 'MODULE_CHECK'}}, {@uid_gt}, {@func={'func', 0x3d, 'FILE_MMAP'}}]})
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
splice(0xffffffffffffffff, 0x0, r0, 0x0, 0x2000070, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
chdir(&(0x7f0000000240)='./file0\x00')
mkdir(&(0x7f0000001ac0)='./file0\x00', 0x0)
r1 = open(&(0x7f0000001680)='./file0\x00', 0x0, 0x0)
r2 = openat$cgroup_procs(r1, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
rmdir(&(0x7f0000000000)='./file0\x00')
ppoll(&(0x7f00000001c0)=[{r2}], 0x1, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000600)={{{@in=@multicast2, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}}, {{}, 0x0, @in=@local}}, &(0x7f0000000080)=0xe8)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x10, &(0x7f0000000700)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=r3, @ANYBLOB="0200000075705f69643dbc38457b470c6b5ad262b084ac8b34d5da0a314e8faa70c3d6ee6cd1a5a376dd09b74cf09623d49bbb8a5c73804b1a4e49f301811e", @ANYRESDEC, @ANYBLOB=',allow_other,allow_other,default_permissions,default_permissions,fsmagic=0x0000000000000074,\x00'])
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000840)={{{@in=@local, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in=@private}, 0x0, @in=@dev}}, &(0x7f0000000180)=0xfffffcea)
r5 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xe, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000600100000f000000000000000000000004000000000002000020000020000000ddf4655fddf4655f0100ffff53ef010001000000ddf4655f000000000000000001000000000000000b0000000001000008000000d24200001203", 0x66, 0x400}, {&(0x7f0000010100)="0000000000000000000000006856d49a00cc4371bd6a7c893f280045010040", 0x1f, 0x4e0}, {&(0x7f0000010300)="0300000004", 0x5, 0x640}, {&(0x7f0000002540)="03000000040000000500000016000f000300040000000000000000000f00698c", 0x20, 0x800}, {&(0x7f0000010500)="ff030000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x400, 0xc00}, {&(0x7f0000010e00)="ed41000000040000ddf4655fddf4655fddf4655f00000000000004002000000000000800050000000af301000400000000000000000000000100000010", 0x3d, 0x1500}, {&(0x7f0000011000)="8081000000180000ddf4655fddf4655fddf4655f00000000000001002000000010000800000000000af302000400000000000000000000000200000030000000020000000400000032", 0x49, 0x1600}, {&(0x7f0000011100)="8081000000180000ddf4655fddf4655fddf4655f00000000000001002000000010000800000000000af302000400000000000000000000000200000040000000020000000400000042", 0x49, 0x1700}, {0x0, 0x0, 0x6700000}, {&(0x7f0000011700)="ed8100000a000000ddf4655fddf4655fddf4655f00000000000001", 0x1b, 0x2200}, {&(0x7f0000011a00)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531", 0x49, 0x4000}, {&(0x7f0000000580)="111fc0d901000000803a0900803a09000000000006", 0x15, 0xc000}, {&(0x7f0000012d00)="2719c0d901000000803a0900803a090000000000060000000000000005", 0x1d, 0x10000}, {&(0x7f0000000140)="640400000000000005ff", 0xa, 0x11400}], 0x0, &(0x7f0000013b00))
r6 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r6, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r7=>0x0}, &(0x7f0000cab000)=0xc)
fchownat(r5, &(0x7f0000000080)='./file2\x00', 0x0, r7, 0x1000)
lchown(&(0x7f0000000000)='./file0\x00', 0x0, r7)
chown(&(0x7f0000000300)='./file0\x00', r4, r7)

03:49:30 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0xe22, 0x0, @mcast2, 0x9}, 0x1c)
connect$inet6(r0, &(0x7f0000000280)={0xa, 0x0, 0x0, @remote}, 0x1c)
syz_emit_ethernet(0x9a, &(0x7f00000002c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb86dd6020a34c00641100fe8000000000000000000100000000bbff02000000000000000000000000000100000e22"], 0x0)

03:49:30 executing program 2:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x12, 0x3, 0x4, 0x3}, 0x48)
bpf$BPF_GET_MAP_INFO(0x3, &(0x7f0000000200)={r0, 0xae20faf58ef4a0d0, &(0x7f0000000080)}, 0x10)

03:49:30 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)={0x34, r1, 0x231, 0x0, 0x0, {}, [@ETHTOOL_A_COALESCE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}, @ETHTOOL_A_COALESCE_RX_USECS_HIGH={0x8}]}, 0x34}}, 0x0)

03:49:30 executing program 5:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000100)={0x48, 0x0, 0x2, 0x101, 0x0, 0x0, {0x2}, [@CTA_EXPECT_MASTER={0x4}, @CTA_EXPECT_TUPLE={0x2c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8}, {0x8, 0x2, @dev}}}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_EXPECT_MASK={0x4}]}, 0x48}}, 0x0)

03:49:31 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
sendto$inet(r1, &(0x7f0000000080)='\x00'/10, 0xa, 0x0, &(0x7f00000000c0)={0x2, 0x4e20, @empty}, 0x10)
recvfrom(r0, &(0x7f0000000100)=""/10, 0xa, 0x0, 0x0, 0x0)

03:49:31 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000100)={'ip_vti0\x00', &(0x7f0000000040)={'gre0\x00', 0x0, 0x7800, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast1, @multicast2}}}})

03:49:31 executing program 2:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x12, 0x3, 0x4, 0x3}, 0x48)
bpf$BPF_GET_MAP_INFO(0x3, &(0x7f0000000200)={r0, 0xae20faf58ef4a0d0, &(0x7f0000000080)}, 0x10)

03:49:31 executing program 5:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x60, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x21}, @NFTA_SET_EXPR={0x24, 0x11, 0x0, 0x1, @meta={{0x9}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_META_KEY={0x8, 0x2, 0x1, 0x0, 0x1c}, @NFTA_META_DREG={0x8}]}}}]}], {0x14, 0x10}}, 0xa8}}, 0x0)

03:49:31 executing program 1:
r0 = socket$rds(0x15, 0x5, 0x0)
setsockopt$SO_RDS_MSG_RXPATH_LATENCY(r0, 0x114, 0xa, &(0x7f0000000040)={0x2, '\x00\x00/'}, 0x4)

03:49:31 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000100)={'ip_vti0\x00', &(0x7f0000000040)={'gre0\x00', 0x0, 0x7800, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast1, @multicast2}}}})

03:49:31 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
sendto$inet(r1, &(0x7f0000000080)='\x00'/10, 0xa, 0x0, &(0x7f00000000c0)={0x2, 0x4e20, @empty}, 0x10)
recvfrom(r0, &(0x7f0000000100)=""/10, 0xa, 0x0, 0x0, 0x0)

03:49:32 executing program 0:
syz_mount_image$ext4(&(0x7f00000000c0)='ext2\x00', &(0x7f0000000380)='./file1\x00', 0x0, 0x0, &(0x7f0000000580), 0x0, &(0x7f00000004c0)={[{@sb={'sb', 0x3d, 0xfffffffffffffff8}}], [{@func={'func', 0x3d, 'MODULE_CHECK'}}, {@obj_role={'obj_role', 0x3d, ',+@)'}}, {@func={'func', 0x3d, 'MODULE_CHECK'}}, {@uid_gt}, {@func={'func', 0x3d, 'FILE_MMAP'}}]})
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
splice(0xffffffffffffffff, 0x0, r0, 0x0, 0x2000070, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
chdir(&(0x7f0000000240)='./file0\x00')
mkdir(&(0x7f0000001ac0)='./file0\x00', 0x0)
r1 = open(&(0x7f0000001680)='./file0\x00', 0x0, 0x0)
r2 = openat$cgroup_procs(r1, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
rmdir(&(0x7f0000000000)='./file0\x00')
ppoll(&(0x7f00000001c0)=[{r2}], 0x1, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000600)={{{@in=@multicast2, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}}, {{}, 0x0, @in=@local}}, &(0x7f0000000080)=0xe8)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x10, &(0x7f0000000700)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=r3, @ANYBLOB="0200000075705f69643dbc38457b470c6b5ad262b084ac8b34d5da0a314e8faa70c3d6ee6cd1a5a376dd09b74cf09623d49bbb8a5c73804b1a4e49f301811e", @ANYRESDEC, @ANYBLOB=',allow_other,allow_other,default_permissions,default_permissions,fsmagic=0x0000000000000074,\x00'])
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000840)={{{@in=@local, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in=@private}, 0x0, @in=@dev}}, &(0x7f0000000180)=0xfffffcea)
r5 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xe, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000600100000f000000000000000000000004000000000002000020000020000000ddf4655fddf4655f0100ffff53ef010001000000ddf4655f000000000000000001000000000000000b0000000001000008000000d24200001203", 0x66, 0x400}, {&(0x7f0000010100)="0000000000000000000000006856d49a00cc4371bd6a7c893f280045010040", 0x1f, 0x4e0}, {&(0x7f0000010300)="0300000004", 0x5, 0x640}, {&(0x7f0000002540)="03000000040000000500000016000f000300040000000000000000000f00698c", 0x20, 0x800}, {&(0x7f0000010500)="ff030000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x400, 0xc00}, {&(0x7f0000010e00)="ed41000000040000ddf4655fddf4655fddf4655f00000000000004002000000000000800050000000af301000400000000000000000000000100000010", 0x3d, 0x1500}, {&(0x7f0000011000)="8081000000180000ddf4655fddf4655fddf4655f00000000000001002000000010000800000000000af302000400000000000000000000000200000030000000020000000400000032", 0x49, 0x1600}, {&(0x7f0000011100)="8081000000180000ddf4655fddf4655fddf4655f00000000000001002000000010000800000000000af302000400000000000000000000000200000040000000020000000400000042", 0x49, 0x1700}, {0x0, 0x0, 0x6700000}, {&(0x7f0000011700)="ed8100000a000000ddf4655fddf4655fddf4655f00000000000001", 0x1b, 0x2200}, {&(0x7f0000011a00)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531", 0x49, 0x4000}, {&(0x7f0000000580)="111fc0d901000000803a0900803a09000000000006", 0x15, 0xc000}, {&(0x7f0000012d00)="2719c0d901000000803a0900803a090000000000060000000000000005", 0x1d, 0x10000}, {&(0x7f0000000140)="640400000000000005ff", 0xa, 0x11400}], 0x0, &(0x7f0000013b00))
r6 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r6, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r7=>0x0}, &(0x7f0000cab000)=0xc)
fchownat(r5, &(0x7f0000000080)='./file2\x00', 0x0, r7, 0x1000)
lchown(&(0x7f0000000000)='./file0\x00', 0x0, r7)
chown(&(0x7f0000000300)='./file0\x00', r4, r7)

03:49:32 executing program 2:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x12, 0x3, 0x4, 0x3}, 0x48)
bpf$BPF_GET_MAP_INFO(0x3, &(0x7f0000000200)={r0, 0xae20faf58ef4a0d0, &(0x7f0000000080)}, 0x10)

03:49:32 executing program 5:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x60, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x21}, @NFTA_SET_EXPR={0x24, 0x11, 0x0, 0x1, @meta={{0x9}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_META_KEY={0x8, 0x2, 0x1, 0x0, 0x1c}, @NFTA_META_DREG={0x8}]}}}]}], {0x14, 0x10}}, 0xa8}}, 0x0)

03:49:32 executing program 1:
r0 = socket$rds(0x15, 0x5, 0x0)
setsockopt$SO_RDS_MSG_RXPATH_LATENCY(r0, 0x114, 0xa, &(0x7f0000000040)={0x2, '\x00\x00/'}, 0x4)

03:49:32 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000100)={'ip_vti0\x00', &(0x7f0000000040)={'gre0\x00', 0x0, 0x7800, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast1, @multicast2}}}})

03:49:32 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
sendto$inet(r1, &(0x7f0000000080)='\x00'/10, 0xa, 0x0, &(0x7f00000000c0)={0x2, 0x4e20, @empty}, 0x10)
recvfrom(r0, &(0x7f0000000100)=""/10, 0xa, 0x0, 0x0, 0x0)

03:49:32 executing program 1:
r0 = socket$rds(0x15, 0x5, 0x0)
setsockopt$SO_RDS_MSG_RXPATH_LATENCY(r0, 0x114, 0xa, &(0x7f0000000040)={0x2, '\x00\x00/'}, 0x4)

03:49:32 executing program 2:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x12, 0x3, 0x4, 0x3}, 0x48)
bpf$BPF_GET_MAP_INFO(0x3, &(0x7f0000000200)={r0, 0xae20faf58ef4a0d0, &(0x7f0000000080)}, 0x10)

03:49:32 executing program 5:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x60, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x21}, @NFTA_SET_EXPR={0x24, 0x11, 0x0, 0x1, @meta={{0x9}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_META_KEY={0x8, 0x2, 0x1, 0x0, 0x1c}, @NFTA_META_DREG={0x8}]}}}]}], {0x14, 0x10}}, 0xa8}}, 0x0)

03:49:32 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000100)={'ip_vti0\x00', &(0x7f0000000040)={'gre0\x00', 0x0, 0x7800, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast1, @multicast2}}}})

03:49:32 executing program 3:
r0 = syz_open_dev$ndb(&(0x7f0000000080), 0x0, 0x0)
ioctl$BLKIOOPT(r0, 0x80041285, &(0x7f0000000340))

03:49:32 executing program 1:
r0 = socket$rds(0x15, 0x5, 0x0)
setsockopt$SO_RDS_MSG_RXPATH_LATENCY(r0, 0x114, 0xa, &(0x7f0000000040)={0x2, '\x00\x00/'}, 0x4)

03:49:33 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x33, 0x701, 0x0, 0x0, {0x1}}, 0x14}}, 0x0)
read(r0, &(0x7f0000000200)=""/193, 0xc1)

03:49:33 executing program 5:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x60, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x21}, @NFTA_SET_EXPR={0x24, 0x11, 0x0, 0x1, @meta={{0x9}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_META_KEY={0x8, 0x2, 0x1, 0x0, 0x1c}, @NFTA_META_DREG={0x8}]}}}]}], {0x14, 0x10}}, 0xa8}}, 0x0)

03:49:33 executing program 4:
r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f00006d9000/0x2000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket(0x2, 0x803, 0x2)
connect$inet(r3, &(0x7f0000000240)={0x2, 0x0, @loopback}, 0x10)
setsockopt$inet_mreqn(r3, 0x0, 0x3, &(0x7f0000000340)={@initdev={0xac, 0x1e, 0x0, 0x0}, @remote}, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SEND={0x1a, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x7ebc, 0x0, 0x0, 0x0, 0x0)

03:49:33 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000000c0), r1)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000080)={0x58, r2, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_TAGLST={0x34, 0x4, 0x0, 0x1, [{0x4}, {0x5}, {0x5}, {0x5}, {0x5}, {0x5}]}]}, 0x58}}, 0x0)

03:49:33 executing program 2:
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e20}, 0x1c)
listen(r0, 0x200007)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @loopback}, 0x10)
getsockopt$inet_int(r1, 0x10d, 0xea, &(0x7f0000000080), &(0x7f0000000000)=0x4)

03:49:33 executing program 0:
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f0000000000)={0x0, 0x1c3b47e1a87c5b09, 0x800, 0x0, 0x1}, 0x20)

[ 1724.499535][T23494] net_ratelimit: 4 callbacks suppressed
[ 1724.499607][T23494] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1724.515864][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1724.525989][T23494] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
03:49:33 executing program 1:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0xe3}, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000000080eff95"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000480)='rcu_utilization\x00', r2}, 0x10)
r3 = signalfd4(r2, &(0x7f0000000000)={[0x14]}, 0x8, 0x0)
r4 = openat$zero(0xffffffffffffff9c, &(0x7f00000001c0), 0x8202, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETPRL(0xffffffffffffffff, 0x89f4, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDPRL(r4, 0x89f5, &(0x7f0000000340)={'sit0\x00', &(0x7f0000000400)={'syztnl0\x00', 0x0, 0x4, 0x4, 0x7f, 0x800, 0x4, @rand_addr=' \x01\x00', @private2, 0x7, 0x29, 0x3, 0x5}})
sendto$inet6(r3, 0x0, 0x0, 0x0, 0x0, 0x0)
fallocate(r3, 0x4, 0x3, 0xf5da)
syz_clone(0x40900280, 0x0, 0x0, 0x0, &(0x7f0000000a80), &(0x7f0000000ac0)="24f1d5342107c074da50a1777db81c5303d020be216562a5640325019495efccb44d5102bedbeccfd97ad8676264babd4cfb01bd1fe1480db1b671889917d11cb89103807c02fb58c86080028e82505a7bc46b5b5d97692d231b4109613e33bd1808d167026f02242ecb6860fac7fb")
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000380)=@ipv4_getaddr={0x34, 0x16, 0x440, 0x70bd2c, 0x25dfdbfe, {0x2, 0x1, 0x80, 0x36}, [@IFA_BROADCAST={0x8, 0x4, @broadcast}, @IFA_CACHEINFO={0x14, 0x6, {0x0, 0x3, 0x0, 0x5}}]}, 0x34}, 0x1, 0x0, 0x0, 0x40040}, 0x20044805)
io_setup(0x100000000000c333, &(0x7f0000000180)=<r5=>0x0)
io_submit(r5, 0x20000000000001cb, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x400000000000, 0x0, 0x1, 0x0, 0xffffffffffffffff, &(0x7f0000000000), 0x377140be6b5ef4c7}])

03:49:33 executing program 4:
r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f00006d9000/0x2000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket(0x2, 0x803, 0x2)
connect$inet(r3, &(0x7f0000000240)={0x2, 0x0, @loopback}, 0x10)
setsockopt$inet_mreqn(r3, 0x0, 0x3, &(0x7f0000000340)={@initdev={0xac, 0x1e, 0x0, 0x0}, @remote}, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SEND={0x1a, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x7ebc, 0x0, 0x0, 0x0, 0x0)

03:49:33 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f00000000c0)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x374, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x1c1}, {&(0x7f0000000140)=""/85, 0x158}, {&(0x7f0000000fc0)=""/4096, 0x5c0}, {&(0x7f0000000400)=""/106, 0x250}, {&(0x7f0000000740)=""/73, 0x36f}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x40d}, {&(0x7f0000000000)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})

[ 1724.582977][T23490] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
03:49:33 executing program 2:
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e20}, 0x1c)
listen(r0, 0x200007)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @loopback}, 0x10)
getsockopt$inet_int(r1, 0x10d, 0xea, &(0x7f0000000080), &(0x7f0000000000)=0x4)

03:49:33 executing program 0:
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f0000000000)={0x0, 0x1c3b47e1a87c5b09, 0x800, 0x0, 0x1}, 0x20)

03:49:33 executing program 4:
r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f00006d9000/0x2000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket(0x2, 0x803, 0x2)
connect$inet(r3, &(0x7f0000000240)={0x2, 0x0, @loopback}, 0x10)
setsockopt$inet_mreqn(r3, 0x0, 0x3, &(0x7f0000000340)={@initdev={0xac, 0x1e, 0x0, 0x0}, @remote}, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SEND={0x1a, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x7ebc, 0x0, 0x0, 0x0, 0x0)

[ 1725.119569][T23508] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1725.129965][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1725.140082][T23508] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1725.177008][T23507] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1725.240862][T23505] vcan0 speed is unknown, defaulting to 1000
03:49:34 executing program 3:
unshare(0x40000400)
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = socket$inet(0x2, 0x806, 0x0)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x41, &(0x7f00000001c0)={'filter\x00', 0x4, [{}, {}, {}, {}]}, 0x68)

03:49:34 executing program 0:
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f0000000000)={0x0, 0x1c3b47e1a87c5b09, 0x800, 0x0, 0x1}, 0x20)

03:49:34 executing program 2:
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e20}, 0x1c)
listen(r0, 0x200007)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @loopback}, 0x10)
getsockopt$inet_int(r1, 0x10d, 0xea, &(0x7f0000000080), &(0x7f0000000000)=0x4)

03:49:34 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f00000000c0)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x374, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x1c1}, {&(0x7f0000000140)=""/85, 0x158}, {&(0x7f0000000fc0)=""/4096, 0x5c0}, {&(0x7f0000000400)=""/106, 0x250}, {&(0x7f0000000740)=""/73, 0x36f}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x40d}, {&(0x7f0000000000)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})

03:49:34 executing program 0:
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f0000000000)={0x0, 0x1c3b47e1a87c5b09, 0x800, 0x0, 0x1}, 0x20)

03:49:34 executing program 4:
r0 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f00006d5000/0x2000)=nil, &(0x7f00006d9000/0x2000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket(0x2, 0x803, 0x2)
connect$inet(r3, &(0x7f0000000240)={0x2, 0x0, @loopback}, 0x10)
setsockopt$inet_mreqn(r3, 0x0, 0x3, &(0x7f0000000340)={@initdev={0xac, 0x1e, 0x0, 0x0}, @remote}, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SEND={0x1a, 0x0, 0x0, r3, 0x0, 0x0}, 0x0)
io_uring_enter(r0, 0x7ebc, 0x0, 0x0, 0x0, 0x0)

[ 1725.783046][T23521] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1725.793270][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1725.946528][T23525] vcan0 speed is unknown, defaulting to 1000
[ 1726.213625][T23503] not chained 4190000 origins
[ 1726.218628][T23503] CPU: 1 PID: 23503 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1726.228867][T23503] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1726.238954][T23503] Call Trace:
[ 1726.242285][T23503]  <TASK>
[ 1726.245231][T23503]  dump_stack_lvl+0x200/0x28c
[ 1726.249965][T23503]  dump_stack+0x29/0x2c
[ 1726.254168][T23503]  kmsan_internal_chain_origin+0x78/0x120
[ 1726.259947][T23503]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1726.266069][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1726.271232][T23503]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1726.277095][T23503]  ? __unix_dgram_recvmsg+0x19b9/0x1b80
[ 1726.282689][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1726.287936][T23503]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1726.293806][T23503]  ? should_fail+0x79/0x9c0
[ 1726.298343][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1726.303499][T23503]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1726.309791][T23503]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1726.315911][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1726.321075][T23503]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1726.326933][T23503]  __msan_chain_origin+0xbd/0x140
[ 1726.332018][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1726.337209][T23503]  get_compat_msghdr+0x10c/0x280
[ 1726.342198][T23503]  ? do_recvmmsg+0x7c9/0x1200
[ 1726.346945][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1726.351676][T23503]  ? __schedule+0x176c/0x21c0
[ 1726.356418][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1726.361578][T23503]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1726.367432][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1726.372589][T23503]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1726.378448][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1726.383003][T23503]  ? filter_irq_stacks+0xb9/0x230
[ 1726.388092][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1726.393258][T23503]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1726.398070][T23503]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1726.404720][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1726.409461][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1726.415872][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1726.420950][T23503]  do_fast_syscall_32+0x33/0x70
[ 1726.426015][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1726.430562][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1726.436936][T23503] RIP: 0023:0xf7f8b549
[ 1726.441113][T23503] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1726.460788][T23503] RSP: 002b:00000000f7f655cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1726.469235][T23503] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 1726.477231][T23503] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[ 1726.485242][T23503] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1726.493320][T23503] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1726.501317][T23503] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1726.509324][T23503]  </TASK>
[ 1726.514429][T23503] Uninit was stored to memory at:
[ 1726.519767][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1726.525084][T23503]  get_compat_msghdr+0x10c/0x280
[ 1726.530074][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1726.534950][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1726.539533][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1726.544423][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1726.550831][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1726.556153][T23503]  do_fast_syscall_32+0x33/0x70
[ 1726.561071][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1726.565769][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1726.572448][T23503] 
[ 1726.574799][T23503] Uninit was stored to memory at:
[ 1726.579919][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1726.585230][T23503]  get_compat_msghdr+0x10c/0x280
[ 1726.590222][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1726.595097][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1726.599651][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1726.604521][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1726.610910][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1726.616136][T23503]  do_fast_syscall_32+0x33/0x70
[ 1726.621057][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1726.625850][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1726.632356][T23503] 
[ 1726.634695][T23503] Uninit was stored to memory at:
[ 1726.639790][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1726.645116][T23503]  get_compat_msghdr+0x10c/0x280
[ 1726.650112][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1726.654985][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1726.659543][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1726.664423][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1726.670806][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1726.676006][T23503]  do_fast_syscall_32+0x33/0x70
[ 1726.680904][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1726.685595][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1726.692093][T23503] 
[ 1726.694434][T23503] Uninit was stored to memory at:
[ 1726.699583][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1726.704893][T23503]  get_compat_msghdr+0x10c/0x280
[ 1726.709906][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1726.714883][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1726.719539][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1726.724430][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1726.730833][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1726.736047][T23503]  do_fast_syscall_32+0x33/0x70
[ 1726.741129][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1726.745833][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1726.752352][T23503] 
[ 1726.754700][T23503] Uninit was stored to memory at:
[ 1726.759901][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1726.765226][T23503]  get_compat_msghdr+0x10c/0x280
[ 1726.770212][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1726.775088][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1726.779646][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1726.784510][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1726.791015][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1726.796244][T23503]  do_fast_syscall_32+0x33/0x70
[ 1726.801236][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1726.805935][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1726.812425][T23503] 
[ 1726.815717][T23503] Uninit was stored to memory at:
[ 1726.820824][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1726.826160][T23503]  get_compat_msghdr+0x10c/0x280
[ 1726.831174][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1726.836084][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1726.840644][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1726.845551][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1726.852066][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1726.857144][T23503]  do_fast_syscall_32+0x33/0x70
[ 1726.862198][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1726.866745][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1726.873286][T23503] 
[ 1726.875625][T23503] Uninit was stored to memory at:
[ 1726.880737][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1726.886050][T23503]  get_compat_msghdr+0x10c/0x280
[ 1726.891035][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1726.895927][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1726.900486][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1726.905340][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1726.911726][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1726.916952][T23503]  do_fast_syscall_32+0x33/0x70
[ 1726.922005][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1726.926548][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1726.933060][T23503] 
[ 1726.935406][T23503] Local variable msg_sys created at:
[ 1726.940706][T23503]  do_recvmmsg+0xc9/0x1200
[ 1726.945322][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1727.464850][T23503] not chained 4200000 origins
[ 1727.469579][T23503] CPU: 1 PID: 23503 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1727.479772][T23503] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1727.489845][T23503] Call Trace:
[ 1727.493127][T23503]  <TASK>
[ 1727.496075][T23503]  dump_stack_lvl+0x200/0x28c
[ 1727.500799][T23503]  dump_stack+0x29/0x2c
[ 1727.504972][T23503]  kmsan_internal_chain_origin+0x78/0x120
[ 1727.510730][T23503]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1727.516838][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1727.522010][T23503]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1727.527879][T23503]  ? __unix_dgram_recvmsg+0x19b9/0x1b80
[ 1727.533471][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1727.538617][T23503]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1727.544479][T23503]  ? should_fail+0x79/0x9c0
[ 1727.549003][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1727.554143][T23503]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1727.560436][T23503]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1727.566571][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1727.571744][T23503]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1727.577609][T23503]  __msan_chain_origin+0xbd/0x140
[ 1727.582668][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1727.587848][T23503]  get_compat_msghdr+0x10c/0x280
[ 1727.592816][T23503]  ? do_recvmmsg+0x7c9/0x1200
[ 1727.597525][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1727.602234][T23503]  ? __schedule+0x176c/0x21c0
[ 1727.606938][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1727.612081][T23503]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1727.617945][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1727.623104][T23503]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1727.628951][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1727.633490][T23503]  ? filter_irq_stacks+0xb9/0x230
[ 1727.638582][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1727.643727][T23503]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1727.648514][T23503]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1727.655055][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1727.659803][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1727.666202][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1727.671284][T23503]  do_fast_syscall_32+0x33/0x70
[ 1727.676182][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1727.680721][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1727.687092][T23503] RIP: 0023:0xf7f8b549
[ 1727.691166][T23503] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1727.710792][T23503] RSP: 002b:00000000f7f655cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1727.719231][T23503] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 1727.727238][T23503] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[ 1727.735222][T23503] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1727.743205][T23503] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1727.751185][T23503] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1727.759206][T23503]  </TASK>
[ 1727.763578][T23503] Uninit was stored to memory at:
[ 1727.768683][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1727.774152][T23503]  get_compat_msghdr+0x10c/0x280
[ 1727.779245][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1727.784109][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1727.788667][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1727.793530][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1727.799918][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1727.805120][T23503]  do_fast_syscall_32+0x33/0x70
[ 1727.810037][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1727.814773][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1727.821179][T23503] 
[ 1727.823697][T23503] Uninit was stored to memory at:
[ 1727.828783][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1727.834120][T23503]  get_compat_msghdr+0x10c/0x280
[ 1727.839110][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1727.844035][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1727.848593][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1727.853465][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1727.859850][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1727.865091][T23503]  do_fast_syscall_32+0x33/0x70
[ 1727.869984][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1727.874742][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1727.881130][T23503] 
[ 1727.883727][T23503] Uninit was stored to memory at:
[ 1727.888811][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1727.894162][T23503]  get_compat_msghdr+0x10c/0x280
[ 1727.899149][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1727.904025][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1727.908584][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1727.913510][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1727.919896][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1727.925093][T23503]  do_fast_syscall_32+0x33/0x70
[ 1727.930013][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1727.934715][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1727.941482][T23503] 
[ 1727.944002][T23503] Uninit was stored to memory at:
[ 1727.949091][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1727.954435][T23503]  get_compat_msghdr+0x10c/0x280
[ 1727.959539][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1727.964692][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1727.969262][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1727.974213][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1727.980699][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1727.985981][T23503]  do_fast_syscall_32+0x33/0x70
[ 1727.990969][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1727.995707][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1728.002213][T23503] 
[ 1728.004565][T23503] Uninit was stored to memory at:
[ 1728.009648][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1728.015033][T23503]  get_compat_msghdr+0x10c/0x280
[ 1728.020038][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1728.024952][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1728.029662][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1728.034589][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1728.040987][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1728.048106][T23503]  do_fast_syscall_32+0x33/0x70
[ 1728.053124][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1728.057676][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1728.064251][T23503] 
[ 1728.066588][T23503] Uninit was stored to memory at:
[ 1728.071682][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1728.076997][T23503]  get_compat_msghdr+0x10c/0x280
[ 1728.082199][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1728.087547][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1728.092310][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1728.097055][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1728.103741][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1728.108846][T23503]  do_fast_syscall_32+0x33/0x70
[ 1728.113963][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1728.118553][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1728.125085][T23503] 
[ 1728.127426][T23503] Uninit was stored to memory at:
[ 1728.132712][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1728.137873][T23503]  get_compat_msghdr+0x10c/0x280
[ 1728.143038][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1728.147871][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1728.152607][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1728.157345][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1728.163873][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1728.168958][T23503]  do_fast_syscall_32+0x33/0x70
[ 1728.174061][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1728.178620][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1728.185213][T23503] 
[ 1728.187547][T23503] Local variable msg_sys created at:
[ 1728.193035][T23503]  do_recvmmsg+0xc9/0x1200
[ 1728.197509][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1728.386546][T23503] not chained 4210000 origins
[ 1728.391271][T23503] CPU: 1 PID: 23503 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1728.401549][T23503] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1728.411628][T23503] Call Trace:
[ 1728.414946][T23503]  <TASK>
[ 1728.417894][T23503]  dump_stack_lvl+0x200/0x28c
[ 1728.422716][T23503]  dump_stack+0x29/0x2c
[ 1728.426903][T23503]  kmsan_internal_chain_origin+0x78/0x120
[ 1728.432672][T23503]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1728.438789][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1728.444035][T23503]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1728.449894][T23503]  ? __unix_dgram_recvmsg+0x19b9/0x1b80
[ 1728.455509][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1728.460665][T23503]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1728.466536][T23503]  ? should_fail+0x79/0x9c0
[ 1728.471074][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1728.476232][T23503]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1728.482523][T23503]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1728.488642][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1728.493802][T23503]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1728.499663][T23503]  __msan_chain_origin+0xbd/0x140
[ 1728.504732][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1728.512164][T23503]  get_compat_msghdr+0x10c/0x280
[ 1728.517152][T23503]  ? do_recvmmsg+0x7c9/0x1200
[ 1728.521882][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1728.526620][T23503]  ? __schedule+0x176c/0x21c0
[ 1728.531353][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1728.536510][T23503]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1728.542371][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1728.547555][T23503]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1728.553416][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1728.557976][T23503]  ? filter_irq_stacks+0xb9/0x230
[ 1728.563058][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1728.568220][T23503]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1728.573035][T23503]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1728.579603][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1728.584339][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1728.590735][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1728.595822][T23503]  do_fast_syscall_32+0x33/0x70
[ 1728.600712][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1728.605350][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1728.611739][T23503] RIP: 0023:0xf7f8b549
[ 1728.615830][T23503] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1728.635479][T23503] RSP: 002b:00000000f7f655cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1728.643916][T23503] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 1728.651935][T23503] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[ 1728.659923][T23503] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1728.667902][T23503] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1728.675879][T23503] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1728.683962][T23503]  </TASK>
[ 1728.688512][T23503] Uninit was stored to memory at:
[ 1728.693892][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1728.699065][T23503]  get_compat_msghdr+0x10c/0x280
[ 1728.704190][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1728.708923][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1728.713620][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1728.718349][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1728.724849][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1728.729938][T23503]  do_fast_syscall_32+0x33/0x70
[ 1728.734964][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1728.739509][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1728.746025][T23503] 
[ 1728.748373][T23503] Uninit was stored to memory at:
[ 1728.753609][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1728.758764][T23503]  get_compat_msghdr+0x10c/0x280
[ 1728.763827][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1728.768528][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1728.773203][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1728.777925][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1728.784497][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1728.789566][T23503]  do_fast_syscall_32+0x33/0x70
[ 1728.794659][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1728.799220][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1728.805718][T23503] 
[ 1728.808056][T23503] Uninit was stored to memory at:
[ 1728.813303][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1728.818476][T23503]  get_compat_msghdr+0x10c/0x280
[ 1728.823648][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1728.828382][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1728.833101][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1728.837835][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1728.844443][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1728.849512][T23503]  do_fast_syscall_32+0x33/0x70
[ 1728.854581][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1728.859137][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1728.865635][T23503] 
[ 1728.867964][T23503] Uninit was stored to memory at:
[ 1728.873213][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1728.878371][T23503]  get_compat_msghdr+0x10c/0x280
[ 1728.883435][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1728.888237][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1728.892942][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1728.897787][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1728.904336][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1728.909402][T23503]  do_fast_syscall_32+0x33/0x70
[ 1728.914381][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1728.918906][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1728.925413][T23503] 
[ 1728.927743][T23503] Uninit was stored to memory at:
[ 1728.933005][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1728.938166][T23503]  get_compat_msghdr+0x10c/0x280
[ 1728.943334][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1728.948055][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1728.952761][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1728.957486][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1728.964002][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1728.969071][T23503]  do_fast_syscall_32+0x33/0x70
[ 1728.974238][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1728.978802][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1728.985407][T23503] 
[ 1728.987750][T23503] Uninit was stored to memory at:
[ 1728.993022][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1728.998203][T23503]  get_compat_msghdr+0x10c/0x280
[ 1729.003318][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1729.008045][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1729.012735][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1729.017457][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1729.024109][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1729.029181][T23503]  do_fast_syscall_32+0x33/0x70
[ 1729.034222][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1729.038769][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1729.045273][T23503] 
[ 1729.047608][T23503] Uninit was stored to memory at:
[ 1729.052877][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1729.058054][T23503]  get_compat_msghdr+0x10c/0x280
[ 1729.063218][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1729.067947][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1729.072842][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1729.077569][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1729.084083][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1729.089159][T23503]  do_fast_syscall_32+0x33/0x70
[ 1729.094239][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1729.098813][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1729.105335][T23503] 
[ 1729.107669][T23503] Local variable msg_sys created at:
[ 1729.113147][T23503]  do_recvmmsg+0xc9/0x1200
[ 1729.117715][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1729.400264][T23503] not chained 4220000 origins
[ 1729.407485][T23503] CPU: 0 PID: 23503 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1729.417691][T23503] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1729.427809][T23503] Call Trace:
[ 1729.431106][T23503]  <TASK>
[ 1729.434056][T23503]  dump_stack_lvl+0x200/0x28c
[ 1729.438825][T23503]  dump_stack+0x29/0x2c
[ 1729.443021][T23503]  kmsan_internal_chain_origin+0x78/0x120
[ 1729.448801][T23503]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1729.454925][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1729.460089][T23503]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1729.465977][T23503]  ? __unix_dgram_recvmsg+0x19b9/0x1b80
[ 1729.471600][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1729.476772][T23503]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1729.482637][T23503]  ? should_fail+0x79/0x9c0
[ 1729.487176][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1729.492342][T23503]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1729.498639][T23503]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1729.504781][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1729.509949][T23503]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1729.515820][T23503]  __msan_chain_origin+0xbd/0x140
[ 1729.520896][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1729.526079][T23503]  get_compat_msghdr+0x10c/0x280
[ 1729.531080][T23503]  ? do_recvmmsg+0x7c9/0x1200
[ 1729.535810][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1729.540548][T23503]  ? __schedule+0x176c/0x21c0
[ 1729.545278][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1729.550443][T23503]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1729.556310][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1729.561470][T23503]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1729.567335][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1729.572005][T23503]  ? filter_irq_stacks+0xb9/0x230
[ 1729.577102][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1729.582274][T23503]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1729.587096][T23503]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1729.593655][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1729.598398][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1729.604816][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1729.609893][T23503]  do_fast_syscall_32+0x33/0x70
[ 1729.614797][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1729.619340][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1729.625716][T23503] RIP: 0023:0xf7f8b549
[ 1729.629806][T23503] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1729.649459][T23503] RSP: 002b:00000000f7f655cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1729.657917][T23503] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 1729.665928][T23503] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[ 1729.673931][T23503] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1729.681930][T23503] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1729.689926][T23503] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1729.697945][T23503]  </TASK>
[ 1729.707534][T23503] Uninit was stored to memory at:
[ 1729.716087][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1729.721262][T23503]  get_compat_msghdr+0x10c/0x280
[ 1729.726652][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1729.731388][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1729.736137][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1729.740875][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1729.747371][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1729.752533][T23503]  do_fast_syscall_32+0x33/0x70
[ 1729.757429][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1729.762137][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1729.768516][T23503] 
[ 1729.770844][T23503] Uninit was stored to memory at:
[ 1729.776110][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1729.781359][T23503]  get_compat_msghdr+0x10c/0x280
[ 1729.786511][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1729.791242][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1729.795967][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1729.800733][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1729.807298][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1729.812468][T23503]  do_fast_syscall_32+0x33/0x70
[ 1729.817364][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1729.822079][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1729.828462][T23503] 
[ 1729.830803][T23503] Uninit was stored to memory at:
[ 1729.836070][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1729.841231][T23503]  get_compat_msghdr+0x10c/0x280
[ 1729.846386][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1729.851115][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1729.855825][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1729.860557][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1729.867115][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1729.872282][T23503]  do_fast_syscall_32+0x33/0x70
[ 1729.877178][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1729.881718][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1729.888276][T23503] 
[ 1729.890607][T23503] Uninit was stored to memory at:
[ 1729.895873][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1729.901042][T23503]  get_compat_msghdr+0x10c/0x280
[ 1729.906208][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1729.910935][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1729.915658][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1729.920390][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1729.926962][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1729.932146][T23503]  do_fast_syscall_32+0x33/0x70
[ 1729.937048][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1729.941676][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1729.948220][T23503] 
[ 1729.950562][T23503] Uninit was stored to memory at:
[ 1729.955829][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1729.960989][T23503]  get_compat_msghdr+0x10c/0x280
[ 1729.966161][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1729.970891][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1729.975615][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1729.980347][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1729.986905][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1729.992091][T23503]  do_fast_syscall_32+0x33/0x70
[ 1729.997115][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1730.001670][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1730.008264][T23503] 
[ 1730.010949][T23503] Uninit was stored to memory at:
[ 1730.016198][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1730.021366][T23503]  get_compat_msghdr+0x10c/0x280
[ 1730.026529][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1730.031257][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1730.035980][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1730.040741][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1730.047297][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1730.052469][T23503]  do_fast_syscall_32+0x33/0x70
[ 1730.057371][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1730.062175][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1730.068568][T23503] 
[ 1730.070903][T23503] Uninit was stored to memory at:
[ 1730.076172][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1730.081340][T23503]  get_compat_msghdr+0x10c/0x280
[ 1730.086516][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1730.091265][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1730.095994][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1730.100726][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1730.107281][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1730.112449][T23503]  do_fast_syscall_32+0x33/0x70
[ 1730.117348][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1730.122043][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1730.128543][T23503] 
[ 1730.130889][T23503] Local variable msg_sys created at:
[ 1730.136363][T23503]  do_recvmmsg+0xc9/0x1200
[ 1730.140870][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1730.517206][T23503] not chained 4230000 origins
[ 1730.522197][T23503] CPU: 1 PID: 23503 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1730.532425][T23503] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1730.542605][T23503] Call Trace:
[ 1730.545905][T23503]  <TASK>
[ 1730.548908][T23503]  dump_stack_lvl+0x200/0x28c
[ 1730.553639][T23503]  dump_stack+0x29/0x2c
[ 1730.557867][T23503]  kmsan_internal_chain_origin+0x78/0x120
[ 1730.563652][T23503]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1730.569779][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1730.574945][T23503]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1730.580787][T23503]  ? __unix_dgram_recvmsg+0x19b9/0x1b80
[ 1730.586372][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1730.591646][T23503]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1730.597642][T23503]  ? should_fail+0x79/0x9c0
[ 1730.602164][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1730.607302][T23503]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1730.613675][T23503]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1730.619775][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1730.624914][T23503]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1730.630870][T23503]  __msan_chain_origin+0xbd/0x140
[ 1730.635941][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1730.641159][T23503]  get_compat_msghdr+0x10c/0x280
[ 1730.646153][T23503]  ? do_recvmmsg+0x7c9/0x1200
[ 1730.650880][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1730.655608][T23503]  ? __schedule+0x176c/0x21c0
[ 1730.660330][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1730.665473][T23503]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1730.671312][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1730.676449][T23503]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1730.682314][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1730.686871][T23503]  ? filter_irq_stacks+0xb9/0x230
[ 1730.691981][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1730.697131][T23503]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1730.701918][T23503]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1730.708453][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1730.713163][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1730.719528][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1730.724576][T23503]  do_fast_syscall_32+0x33/0x70
[ 1730.729445][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1730.733972][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1730.740441][T23503] RIP: 0023:0xf7f8b549
[ 1730.744541][T23503] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1730.764169][T23503] RSP: 002b:00000000f7f655cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1730.772596][T23503] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 1730.780599][T23503] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[ 1730.788582][T23503] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1730.796575][T23503] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1730.804565][T23503] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1730.812575][T23503]  </TASK>
[ 1730.817311][T23503] Uninit was stored to memory at:
[ 1730.822670][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1730.827853][T23503]  get_compat_msghdr+0x10c/0x280
[ 1730.832977][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1730.837737][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1730.842428][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1730.847156][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1730.853669][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1730.858738][T23503]  do_fast_syscall_32+0x33/0x70
[ 1730.863756][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1730.868300][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1730.874811][T23503] 
[ 1730.877143][T23503] Uninit was stored to memory at:
[ 1730.882354][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1730.887601][T23503]  get_compat_msghdr+0x10c/0x280
[ 1730.892709][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1730.897432][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1730.902099][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1730.906824][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1730.913320][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1730.918390][T23503]  do_fast_syscall_32+0x33/0x70
[ 1730.923397][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1730.927940][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1730.934434][T23503] 
[ 1730.936764][T23503] Uninit was stored to memory at:
[ 1730.941976][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1730.947131][T23503]  get_compat_msghdr+0x10c/0x280
[ 1730.952254][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1730.956984][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1730.961710][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1730.966582][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1730.973109][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1730.978184][T23503]  do_fast_syscall_32+0x33/0x70
[ 1730.983211][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1730.987763][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1730.994359][T23503] 
[ 1730.996817][T23503] Uninit was stored to memory at:
[ 1731.002035][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1731.007216][T23503]  get_compat_msghdr+0x10c/0x280
[ 1731.012408][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1731.017146][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1731.021704][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1731.026623][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1731.033242][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1731.038314][T23503]  do_fast_syscall_32+0x33/0x70
[ 1731.043399][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1731.047953][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1731.054532][T23503] 
[ 1731.056868][T23503] Uninit was stored to memory at:
[ 1731.062165][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1731.067325][T23503]  get_compat_msghdr+0x10c/0x280
[ 1731.072502][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1731.077246][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1731.081998][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1731.086735][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1731.093327][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1731.098397][T23503]  do_fast_syscall_32+0x33/0x70
[ 1731.103425][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1731.107975][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1731.114535][T23503] 
[ 1731.116871][T23503] Uninit was stored to memory at:
[ 1731.122137][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1731.127312][T23503]  get_compat_msghdr+0x10c/0x280
[ 1731.132442][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1731.137175][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1731.141714][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1731.146636][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1731.153193][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1731.158272][T23503]  do_fast_syscall_32+0x33/0x70
[ 1731.163387][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1731.167945][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1731.174505][T23503] 
[ 1731.176841][T23503] Uninit was stored to memory at:
[ 1731.182125][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1731.187315][T23503]  get_compat_msghdr+0x10c/0x280
[ 1731.192462][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1731.197197][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1731.201731][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1731.206634][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1731.213249][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1731.218496][T23503]  do_fast_syscall_32+0x33/0x70
[ 1731.223520][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1731.228066][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1731.234614][T23503] 
[ 1731.236946][T23503] Local variable msg_sys created at:
[ 1731.242439][T23503]  do_recvmmsg+0xc9/0x1200
[ 1731.246904][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1731.433801][T23503] not chained 4240000 origins
[ 1731.438648][T23503] CPU: 1 PID: 23503 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1731.448839][T23503] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1731.459427][T23503] Call Trace:
[ 1731.462711][T23503]  <TASK>
[ 1731.465637][T23503]  dump_stack_lvl+0x200/0x28c
[ 1731.470343][T23503]  dump_stack+0x29/0x2c
[ 1731.474511][T23503]  kmsan_internal_chain_origin+0x78/0x120
[ 1731.480275][T23503]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1731.486380][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1731.491688][T23503]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1731.497537][T23503]  ? __unix_dgram_recvmsg+0x19b9/0x1b80
[ 1731.503133][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1731.508299][T23503]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1731.514285][T23503]  ? should_fail+0x79/0x9c0
[ 1731.518806][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1731.523943][T23503]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1731.530316][T23503]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1731.536410][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1731.541548][T23503]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1731.547477][T23503]  __msan_chain_origin+0xbd/0x140
[ 1731.552552][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1731.557749][T23503]  get_compat_msghdr+0x10c/0x280
[ 1731.562721][T23503]  ? do_recvmmsg+0x7c9/0x1200
[ 1731.567426][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1731.572135][T23503]  ? __schedule+0x176c/0x21c0
[ 1731.576890][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1731.582029][T23503]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1731.587863][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1731.593089][T23503]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1731.598962][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1731.603539][T23503]  ? filter_irq_stacks+0xb9/0x230
[ 1731.608600][T23503]  ? kmsan_get_metadata+0x33/0x220
[ 1731.613745][T23503]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1731.618531][T23503]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1731.625066][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1731.629797][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1731.636247][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1731.641293][T23503]  do_fast_syscall_32+0x33/0x70
[ 1731.646169][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1731.650712][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1731.657090][T23503] RIP: 0023:0xf7f8b549
[ 1731.661188][T23503] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1731.680944][T23503] RSP: 002b:00000000f7f655cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1731.689462][T23503] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 1731.697444][T23503] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[ 1731.705439][T23503] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1731.713419][T23503] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1731.721396][T23503] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1731.729389][T23503]  </TASK>
[ 1731.734001][T23503] Uninit was stored to memory at:
[ 1731.739101][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1731.744588][T23503]  get_compat_msghdr+0x10c/0x280
[ 1731.749583][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1731.754507][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1731.759084][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1731.763935][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1731.770319][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1731.775509][T23503]  do_fast_syscall_32+0x33/0x70
[ 1731.780573][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1731.785251][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1731.791630][T23503] 
[ 1731.794090][T23503] Uninit was stored to memory at:
[ 1731.799173][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1731.804490][T23503]  get_compat_msghdr+0x10c/0x280
[ 1731.809474][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1731.814381][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1731.818933][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1731.823794][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1731.830279][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1731.835462][T23503]  do_fast_syscall_32+0x33/0x70
[ 1731.840355][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1731.845070][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1731.851463][T23503] 
[ 1731.853975][T23503] Uninit was stored to memory at:
[ 1731.859065][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1731.864411][T23503]  get_compat_msghdr+0x10c/0x280
[ 1731.869395][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1731.874294][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1731.878844][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1731.883739][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1731.890120][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1731.895343][T23503]  do_fast_syscall_32+0x33/0x70
[ 1731.900245][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1731.904961][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1731.911511][T23503] 
[ 1731.913977][T23503] Uninit was stored to memory at:
[ 1731.919063][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1731.924430][T23503]  get_compat_msghdr+0x10c/0x280
[ 1731.929425][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1731.934337][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1731.938967][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1731.943830][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1731.950214][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1731.955484][T23503]  do_fast_syscall_32+0x33/0x70
[ 1731.960385][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1731.965108][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1731.971490][T23503] 
[ 1731.974041][T23503] Uninit was stored to memory at:
[ 1731.979143][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1731.985305][T23503]  get_compat_msghdr+0x10c/0x280
[ 1731.990296][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1731.995244][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1731.999808][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1732.004724][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1732.011111][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1732.016368][T23503]  do_fast_syscall_32+0x33/0x70
[ 1732.021270][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1732.026015][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1732.032501][T23503] 
[ 1732.034831][T23503] Uninit was stored to memory at:
[ 1732.039895][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1732.045243][T23503]  get_compat_msghdr+0x10c/0x280
[ 1732.050325][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1732.055327][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1732.059895][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1732.064778][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1732.071176][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1732.076380][T23503]  do_fast_syscall_32+0x33/0x70
[ 1732.081275][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1732.085983][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1732.092472][T23503] 
[ 1732.094803][T23503] Uninit was stored to memory at:
[ 1732.099887][T23503]  __get_compat_msghdr+0x6ea/0x9e0
[ 1732.105236][T23503]  get_compat_msghdr+0x10c/0x280
[ 1732.110242][T23503]  ___sys_recvmsg+0x289/0xb40
[ 1732.115104][T23503]  do_recvmmsg+0x7c9/0x1200
[ 1732.119666][T23503]  __sys_recvmmsg+0x520/0x6f0
[ 1732.124596][T23503]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1732.130981][T23503]  __do_fast_syscall_32+0x95/0xf0
[ 1732.136179][T23503]  do_fast_syscall_32+0x33/0x70
[ 1732.141162][T23503]  do_SYSENTER_32+0x1b/0x20
[ 1732.145860][T23503]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1732.152373][T23503] 
[ 1732.154708][T23503] Local variable msg_sys created at:
[ 1732.159990][T23503]  do_recvmmsg+0xc9/0x1200
[ 1732.164698][T23503]  __sys_recvmmsg+0x520/0x6f0
03:49:41 executing program 1:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0xe3}, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000000080eff95"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000480)='rcu_utilization\x00', r2}, 0x10)
r3 = signalfd4(r2, &(0x7f0000000000)={[0x14]}, 0x8, 0x0)
r4 = openat$zero(0xffffffffffffff9c, &(0x7f00000001c0), 0x8202, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETPRL(0xffffffffffffffff, 0x89f4, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDPRL(r4, 0x89f5, &(0x7f0000000340)={'sit0\x00', &(0x7f0000000400)={'syztnl0\x00', 0x0, 0x4, 0x4, 0x7f, 0x800, 0x4, @rand_addr=' \x01\x00', @private2, 0x7, 0x29, 0x3, 0x5}})
sendto$inet6(r3, 0x0, 0x0, 0x0, 0x0, 0x0)
fallocate(r3, 0x4, 0x3, 0xf5da)
syz_clone(0x40900280, 0x0, 0x0, 0x0, &(0x7f0000000a80), &(0x7f0000000ac0)="24f1d5342107c074da50a1777db81c5303d020be216562a5640325019495efccb44d5102bedbeccfd97ad8676264babd4cfb01bd1fe1480db1b671889917d11cb89103807c02fb58c86080028e82505a7bc46b5b5d97692d231b4109613e33bd1808d167026f02242ecb6860fac7fb")
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000380)=@ipv4_getaddr={0x34, 0x16, 0x440, 0x70bd2c, 0x25dfdbfe, {0x2, 0x1, 0x80, 0x36}, [@IFA_BROADCAST={0x8, 0x4, @broadcast}, @IFA_CACHEINFO={0x14, 0x6, {0x0, 0x3, 0x0, 0x5}}]}, 0x34}, 0x1, 0x0, 0x0, 0x40040}, 0x20044805)
io_setup(0x100000000000c333, &(0x7f0000000180)=<r5=>0x0)
io_submit(r5, 0x20000000000001cb, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x400000000000, 0x0, 0x1, 0x0, 0xffffffffffffffff, &(0x7f0000000000), 0x377140be6b5ef4c7}])

03:49:41 executing program 2:
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e20}, 0x1c)
listen(r0, 0x200007)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @loopback}, 0x10)
getsockopt$inet_int(r1, 0x10d, 0xea, &(0x7f0000000080), &(0x7f0000000000)=0x4)

03:49:41 executing program 0:
socketpair(0x1, 0x0, 0x2, &(0x7f00000009c0))

03:49:41 executing program 3:
unshare(0x40000400)
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = socket$inet(0x2, 0x806, 0x0)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x41, &(0x7f00000001c0)={'filter\x00', 0x4, [{}, {}, {}, {}]}, 0x68)

03:49:41 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f00000000c0)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x374, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x1c1}, {&(0x7f0000000140)=""/85, 0x158}, {&(0x7f0000000fc0)=""/4096, 0x5c0}, {&(0x7f0000000400)=""/106, 0x250}, {&(0x7f0000000740)=""/73, 0x36f}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x40d}, {&(0x7f0000000000)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})

03:49:41 executing program 4:
r0 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r0, &(0x7f0000000140)={0x18, 0x0, {0x3, @local, 'bridge0\x00'}}, 0x1e)
r1 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r1, &(0x7f00000000c0)={0x18, 0x0, {0x3, @local, 'ip6_vti0\x00'}}, 0x1e)
close(r0)

[ 1732.824808][T23539] net_ratelimit: 2 callbacks suppressed
[ 1732.824874][T23539] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1732.841075][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1732.851043][T23539] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1732.856159][T23541] vcan0 speed is unknown, defaulting to 1000
[ 1733.049770][T23534] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
03:49:42 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000180)="b5eed4af01db22b7c134010000007a15", 0x10)
r1 = accept4$alg(r0, 0x0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x0)
read$alg(r1, &(0x7f0000001480)=""/4096, 0x16)
ioctl$int_in(r1, 0x5452, &(0x7f0000002480)=0x9)
sendmmsg$alg(r1, &(0x7f0000003940)=[{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000300)="d8", 0x1}], 0x1}], 0x1, 0x0)

03:49:42 executing program 4:
r0 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r0, &(0x7f0000000140)={0x18, 0x0, {0x3, @local, 'bridge0\x00'}}, 0x1e)
r1 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r1, &(0x7f00000000c0)={0x18, 0x0, {0x3, @local, 'ip6_vti0\x00'}}, 0x1e)
close(r0)

03:49:42 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f00000000c0)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x374, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x1c1}, {&(0x7f0000000140)=""/85, 0x158}, {&(0x7f0000000fc0)=""/4096, 0x5c0}, {&(0x7f0000000400)=""/106, 0x250}, {&(0x7f0000000740)=""/73, 0x36f}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x40d}, {&(0x7f0000000000)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})

03:49:42 executing program 2:
sysfs$1(0x1, &(0x7f0000000000)='\x00')

03:49:42 executing program 4:
r0 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r0, &(0x7f0000000140)={0x18, 0x0, {0x3, @local, 'bridge0\x00'}}, 0x1e)
r1 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r1, &(0x7f00000000c0)={0x18, 0x0, {0x3, @local, 'ip6_vti0\x00'}}, 0x1e)
close(r0)

[ 1733.565397][T23553] vcan0 speed is unknown, defaulting to 1000
03:49:42 executing program 3:
unshare(0x40000400)
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = socket$inet(0x2, 0x806, 0x0)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x41, &(0x7f00000001c0)={'filter\x00', 0x4, [{}, {}, {}, {}]}, 0x68)

[ 1734.050998][T23546] not chained 4250000 origins
[ 1734.057032][T23546] CPU: 1 PID: 23546 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1734.067250][T23546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1734.077347][T23546] Call Trace:
[ 1734.080673][T23546]  <TASK>
[ 1734.083629][T23546]  dump_stack_lvl+0x200/0x28c
[ 1734.088368][T23546]  dump_stack+0x29/0x2c
[ 1734.092572][T23546]  kmsan_internal_chain_origin+0x78/0x120
[ 1734.098348][T23546]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1734.104471][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1734.109636][T23546]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1734.115508][T23546]  ? __unix_dgram_recvmsg+0x19b9/0x1b80
[ 1734.121126][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1734.126282][T23546]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1734.132161][T23546]  ? should_fail+0x79/0x9c0
[ 1734.136709][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1734.141880][T23546]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1734.148234][T23546]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1734.154361][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1734.159522][T23546]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1734.165380][T23546]  __msan_chain_origin+0xbd/0x140
[ 1734.170470][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1734.175650][T23546]  get_compat_msghdr+0x10c/0x280
[ 1734.180635][T23546]  ? do_recvmmsg+0x7c9/0x1200
[ 1734.185361][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1734.190095][T23546]  ? __schedule+0x176c/0x21c0
[ 1734.194820][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1734.199978][T23546]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1734.205833][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1734.211076][T23546]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1734.216938][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1734.221493][T23546]  ? filter_irq_stacks+0xb9/0x230
[ 1734.226717][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1734.231903][T23546]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1734.236717][T23546]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1734.243283][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1734.248023][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1734.254416][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1734.259488][T23546]  do_fast_syscall_32+0x33/0x70
[ 1734.264385][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1734.268938][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1734.275313][T23546] RIP: 0023:0xf7f8b549
[ 1734.279401][T23546] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1734.299047][T23546] RSP: 002b:00000000f7f655cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1734.307496][T23546] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 1734.315496][T23546] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[ 1734.323504][T23546] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1734.331501][T23546] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1734.339497][T23546] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1734.347507][T23546]  </TASK>
[ 1734.350981][T23546] Uninit was stored to memory at:
[ 1734.356238][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1734.361398][T23546]  get_compat_msghdr+0x10c/0x280
[ 1734.366521][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1734.371256][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1734.375949][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1734.380680][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1734.387223][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1734.392432][T23546]  do_fast_syscall_32+0x33/0x70
[ 1734.397337][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1734.402028][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1734.408449][T23546] 
[ 1734.410783][T23546] Uninit was stored to memory at:
[ 1734.416020][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1734.421184][T23546]  get_compat_msghdr+0x10c/0x280
[ 1734.426437][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1734.431183][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1734.435980][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1734.440719][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1734.447260][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1734.452455][T23546]  do_fast_syscall_32+0x33/0x70
[ 1734.457355][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1734.462043][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1734.468428][T23546] 
[ 1734.470762][T23546] Uninit was stored to memory at:
[ 1734.476122][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1734.481299][T23546]  get_compat_msghdr+0x10c/0x280
[ 1734.486598][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1734.491333][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1734.496097][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1734.500867][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1734.507553][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1734.512862][T23546]  do_fast_syscall_32+0x33/0x70
[ 1734.517760][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1734.522525][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1734.528908][T23546] 
[ 1734.531240][T23546] Uninit was stored to memory at:
[ 1734.536484][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1734.541650][T23546]  get_compat_msghdr+0x10c/0x280
[ 1734.543671][T23564] vcan0 speed is unknown, defaulting to 1000
[ 1734.546795][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1734.557438][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1734.562126][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1734.566850][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1734.573395][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1734.578552][T23546]  do_fast_syscall_32+0x33/0x70
[ 1734.583578][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1734.588120][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1734.594632][T23546] 
[ 1734.596964][T23546] Uninit was stored to memory at:
[ 1734.602174][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1734.607330][T23546]  get_compat_msghdr+0x10c/0x280
[ 1734.612439][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1734.617162][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1734.621709][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1734.626563][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1734.633090][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1734.638165][T23546]  do_fast_syscall_32+0x33/0x70
[ 1734.643271][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1734.647807][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1734.654393][T23546] 
[ 1734.656731][T23546] Uninit was stored to memory at:
[ 1734.661937][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1734.667090][T23546]  get_compat_msghdr+0x10c/0x280
[ 1734.672196][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1734.676918][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1734.681461][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1734.686306][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1734.692783][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1734.697858][T23546]  do_fast_syscall_32+0x33/0x70
[ 1734.702870][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1734.707417][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1734.713935][T23546] 
[ 1734.716266][T23546] Uninit was stored to memory at:
[ 1734.721350][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1734.726645][T23546]  get_compat_msghdr+0x10c/0x280
[ 1734.731630][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1734.736493][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1734.741046][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1734.745896][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1734.752410][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1734.757569][T23546]  do_fast_syscall_32+0x33/0x70
[ 1734.762608][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1734.767159][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1734.773686][T23546] 
[ 1734.776024][T23546] Local variable msg_sys created at:
[ 1734.781317][T23546]  do_recvmmsg+0xc9/0x1200
[ 1734.785930][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1735.608393][T23546] not chained 4260000 origins
[ 1735.613479][T23546] CPU: 1 PID: 23546 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1735.623681][T23546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1735.633780][T23546] Call Trace:
[ 1735.637092][T23546]  <TASK>
[ 1735.640040][T23546]  dump_stack_lvl+0x200/0x28c
[ 1735.644783][T23546]  dump_stack+0x29/0x2c
[ 1735.648979][T23546]  kmsan_internal_chain_origin+0x78/0x120
[ 1735.654767][T23546]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1735.660901][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1735.666076][T23546]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1735.672033][T23546]  ? __unix_dgram_recvmsg+0x19b9/0x1b80
[ 1735.677641][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1735.682806][T23546]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1735.688677][T23546]  ? should_fail+0x79/0x9c0
[ 1735.693303][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1735.698472][T23546]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1735.704777][T23546]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1735.710904][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1735.716163][T23546]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1735.722031][T23546]  __msan_chain_origin+0xbd/0x140
[ 1735.727113][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1735.732299][T23546]  get_compat_msghdr+0x10c/0x280
[ 1735.737298][T23546]  ? do_recvmmsg+0x7c9/0x1200
[ 1735.742029][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1735.746779][T23546]  ? __schedule+0x176c/0x21c0
[ 1735.751514][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1735.756684][T23546]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1735.762639][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1735.767808][T23546]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1735.773680][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1735.778337][T23546]  ? filter_irq_stacks+0xb9/0x230
[ 1735.783431][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1735.789998][T23546]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1735.794821][T23546]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1735.801386][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1735.806132][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1735.812533][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1735.817615][T23546]  do_fast_syscall_32+0x33/0x70
[ 1735.822535][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1735.827086][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1735.833464][T23546] RIP: 0023:0xf7f8b549
[ 1735.837557][T23546] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1735.857301][T23546] RSP: 002b:00000000f7f655cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1735.866459][T23546] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 1735.874467][T23546] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[ 1735.882465][T23546] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1735.890470][T23546] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1735.898487][T23546] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1735.906503][T23546]  </TASK>
[ 1735.911287][T23546] Uninit was stored to memory at:
[ 1735.916669][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1735.921943][T23546]  get_compat_msghdr+0x10c/0x280
[ 1735.926932][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1735.931659][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1735.936355][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1735.941093][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1735.947681][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1735.952874][T23546]  do_fast_syscall_32+0x33/0x70
[ 1735.957809][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1735.962571][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1735.968960][T23546] 
[ 1735.971311][T23546] Uninit was stored to memory at:
[ 1735.976622][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1735.981900][T23546]  get_compat_msghdr+0x10c/0x280
[ 1735.986908][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1735.991637][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1735.996487][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1736.001231][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1736.007822][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1736.013004][T23546]  do_fast_syscall_32+0x33/0x70
[ 1736.017909][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1736.022647][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1736.029034][T23546] 
[ 1736.031368][T23546] Uninit was stored to memory at:
[ 1736.036662][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1736.041921][T23546]  get_compat_msghdr+0x10c/0x280
[ 1736.046914][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1736.051644][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1736.056390][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1736.061119][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1736.067650][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1736.072841][T23546]  do_fast_syscall_32+0x33/0x70
[ 1736.077762][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1736.082495][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1736.088884][T23546] 
[ 1736.091231][T23546] Uninit was stored to memory at:
[ 1736.096534][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1736.101965][T23546]  get_compat_msghdr+0x10c/0x280
[ 1736.106960][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1736.112074][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1736.116716][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1736.121629][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1736.128259][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1736.133448][T23546]  do_fast_syscall_32+0x33/0x70
[ 1736.138441][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1736.143250][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1736.149672][T23546] 
[ 1736.152224][T23546] Uninit was stored to memory at:
[ 1736.157331][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1736.162690][T23546]  get_compat_msghdr+0x10c/0x280
[ 1736.167692][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1736.172561][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1736.177117][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1736.182015][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1736.188401][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1736.193607][T23546]  do_fast_syscall_32+0x33/0x70
[ 1736.198552][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1736.203282][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1736.209666][T23546] 
[ 1736.212207][T23546] Uninit was stored to memory at:
[ 1736.217313][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1736.222603][T23546]  get_compat_msghdr+0x10c/0x280
[ 1736.227799][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1736.232974][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1736.237548][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1736.242412][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1736.248802][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1736.254057][T23546]  do_fast_syscall_32+0x33/0x70
[ 1736.259917][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1736.264672][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1736.271161][T23546] 
[ 1736.273694][T23546] Uninit was stored to memory at:
[ 1736.278789][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1736.284174][T23546]  get_compat_msghdr+0x10c/0x280
[ 1736.289187][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1736.294239][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1736.298817][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1736.303849][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1736.310239][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1736.315497][T23546]  do_fast_syscall_32+0x33/0x70
[ 1736.320398][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1736.325145][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1736.331540][T23546] 
[ 1736.334068][T23546] Local variable msg_sys created at:
[ 1736.339362][T23546]  do_recvmmsg+0xc9/0x1200
[ 1736.344031][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1736.581555][T23546] not chained 4270000 origins
[ 1736.586498][T23546] CPU: 1 PID: 23546 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1736.596697][T23546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1736.606784][T23546] Call Trace:
[ 1736.610087][T23546]  <TASK>
[ 1736.613052][T23546]  dump_stack_lvl+0x200/0x28c
[ 1736.617786][T23546]  dump_stack+0x29/0x2c
[ 1736.621976][T23546]  kmsan_internal_chain_origin+0x78/0x120
[ 1736.627749][T23546]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1736.633869][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1736.639016][T23546]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1736.644876][T23546]  ? __unix_dgram_recvmsg+0x19b9/0x1b80
[ 1736.650471][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1736.655634][T23546]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1736.661523][T23546]  ? should_fail+0x79/0x9c0
[ 1736.666041][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1736.671181][T23546]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1736.677478][T23546]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1736.683582][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1736.688721][T23546]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1736.694562][T23546]  __msan_chain_origin+0xbd/0x140
[ 1736.699667][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1736.704857][T23546]  get_compat_msghdr+0x10c/0x280
[ 1736.709833][T23546]  ? do_recvmmsg+0x7c9/0x1200
[ 1736.714542][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1736.719259][T23546]  ? __schedule+0x176c/0x21c0
[ 1736.723964][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1736.730318][T23546]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1736.736154][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1736.741293][T23546]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1736.747140][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1736.751700][T23546]  ? filter_irq_stacks+0xb9/0x230
[ 1736.756772][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1736.761920][T23546]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1736.766729][T23546]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1736.773274][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1736.777989][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1736.784360][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1736.789410][T23546]  do_fast_syscall_32+0x33/0x70
[ 1736.794284][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1736.798835][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1736.805210][T23546] RIP: 0023:0xf7f8b549
[ 1736.809308][T23546] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1736.828956][T23546] RSP: 002b:00000000f7f655cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1736.837390][T23546] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 1736.845468][T23546] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[ 1736.853486][T23546] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1736.861532][T23546] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1736.869507][T23546] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1736.877500][T23546]  </TASK>
[ 1736.883464][T23546] Uninit was stored to memory at:
[ 1736.888573][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1736.894474][T23546]  get_compat_msghdr+0x10c/0x280
[ 1736.899467][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1736.904353][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1736.908908][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1736.913816][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1736.920225][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1736.925498][T23546]  do_fast_syscall_32+0x33/0x70
[ 1736.930388][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1736.935147][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1736.941543][T23546] 
[ 1736.944004][T23546] Uninit was stored to memory at:
[ 1736.949097][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1736.954610][T23546]  get_compat_msghdr+0x10c/0x280
[ 1736.959604][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1736.964528][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1736.969082][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1736.973955][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1736.980342][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1736.985605][T23546]  do_fast_syscall_32+0x33/0x70
[ 1736.990504][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1736.995160][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1737.001548][T23546] 
[ 1737.004006][T23546] Uninit was stored to memory at:
[ 1737.009091][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1737.014425][T23546]  get_compat_msghdr+0x10c/0x280
[ 1737.019425][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1737.024328][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1737.028879][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1737.033821][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1737.040222][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1737.045427][T23546]  do_fast_syscall_32+0x33/0x70
[ 1737.050323][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1737.055069][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1737.061451][T23546] 
[ 1737.063897][T23546] Uninit was stored to memory at:
[ 1737.068984][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1737.074278][T23546]  get_compat_msghdr+0x10c/0x280
[ 1737.079272][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1737.084179][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1737.088740][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1737.093667][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1737.100162][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1737.105441][T23546]  do_fast_syscall_32+0x33/0x70
[ 1737.110438][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1737.115462][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1737.122170][T23546] 
[ 1737.124518][T23546] Uninit was stored to memory at:
[ 1737.129612][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1737.134958][T23546]  get_compat_msghdr+0x10c/0x280
[ 1737.139986][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1737.144918][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1737.149484][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1737.154424][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1737.160844][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1737.166140][T23546]  do_fast_syscall_32+0x33/0x70
[ 1737.171076][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1737.175806][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1737.182290][T23546] 
[ 1737.184625][T23546] Uninit was stored to memory at:
[ 1737.189806][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1737.195421][T23546]  get_compat_msghdr+0x10c/0x280
[ 1737.200544][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1737.205459][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1737.210016][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1737.214934][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1737.221337][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1737.226586][T23546]  do_fast_syscall_32+0x33/0x70
[ 1737.231485][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1737.236229][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1737.242709][T23546] 
[ 1737.245037][T23546] Uninit was stored to memory at:
[ 1737.250104][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1737.255390][T23546]  get_compat_msghdr+0x10c/0x280
[ 1737.260390][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1737.265247][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1737.269804][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1737.274709][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1737.281097][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1737.286294][T23546]  do_fast_syscall_32+0x33/0x70
[ 1737.291188][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1737.295881][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1737.302411][T23546] 
[ 1737.304745][T23546] Local variable msg_sys created at:
[ 1737.310055][T23546]  do_recvmmsg+0xc9/0x1200
[ 1737.314708][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1737.520966][T23546] not chained 4280000 origins
[ 1737.525909][T23546] CPU: 1 PID: 23546 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1737.536154][T23546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1737.546220][T23546] Call Trace:
[ 1737.549615][T23546]  <TASK>
[ 1737.552553][T23546]  dump_stack_lvl+0x200/0x28c
[ 1737.557458][T23546]  dump_stack+0x29/0x2c
[ 1737.561666][T23546]  kmsan_internal_chain_origin+0x78/0x120
[ 1737.567604][T23546]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1737.573897][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1737.579053][T23546]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1737.584902][T23546]  ? __unix_dgram_recvmsg+0x19b9/0x1b80
[ 1737.590504][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1737.595681][T23546]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1737.601633][T23546]  ? should_fail+0x79/0x9c0
[ 1737.606157][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1737.611300][T23546]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1737.617567][T23546]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1737.623771][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1737.628909][T23546]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1737.634751][T23546]  __msan_chain_origin+0xbd/0x140
[ 1737.639832][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1737.645012][T23546]  get_compat_msghdr+0x10c/0x280
[ 1737.650027][T23546]  ? do_recvmmsg+0x7c9/0x1200
[ 1737.654773][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1737.659486][T23546]  ? __schedule+0x176c/0x21c0
[ 1737.664188][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1737.669323][T23546]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1737.675156][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1737.680304][T23546]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1737.686156][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1737.690870][T23546]  ? filter_irq_stacks+0xb9/0x230
[ 1737.696041][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1737.701218][T23546]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1737.706036][T23546]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1737.712575][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1737.717308][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1737.723686][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1737.728740][T23546]  do_fast_syscall_32+0x33/0x70
[ 1737.733631][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1737.738192][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1737.744570][T23546] RIP: 0023:0xf7f8b549
[ 1737.748656][T23546] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1737.768293][T23546] RSP: 002b:00000000f7f655cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1737.776723][T23546] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 1737.784706][T23546] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[ 1737.792723][T23546] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1737.800719][T23546] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1737.808729][T23546] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1737.816733][T23546]  </TASK>
[ 1737.821122][T23546] Uninit was stored to memory at:
[ 1737.826531][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1737.831714][T23546]  get_compat_msghdr+0x10c/0x280
[ 1737.836811][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1737.841555][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1737.846251][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1737.850987][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1737.857466][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1737.862661][T23546]  do_fast_syscall_32+0x33/0x70
[ 1737.867560][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1737.872283][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1737.878659][T23546] 
[ 1737.880974][T23546] Uninit was stored to memory at:
[ 1737.886206][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1737.891364][T23546]  get_compat_msghdr+0x10c/0x280
[ 1737.896477][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1737.901226][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1737.905982][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1737.910716][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1737.917233][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1737.922465][T23546]  do_fast_syscall_32+0x33/0x70
[ 1737.927705][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1737.932512][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1737.938894][T23546] 
[ 1737.942103][T23546] Uninit was stored to memory at:
[ 1737.947205][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1737.952534][T23546]  get_compat_msghdr+0x10c/0x280
[ 1737.957522][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1737.962419][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1737.966970][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1737.971955][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1737.978358][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1737.983584][T23546]  do_fast_syscall_32+0x33/0x70
[ 1737.988482][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1737.993213][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1737.999604][T23546] 
[ 1738.002105][T23546] Uninit was stored to memory at:
[ 1738.007202][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1738.012508][T23546]  get_compat_msghdr+0x10c/0x280
[ 1738.017553][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1738.022482][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1738.027040][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1738.031905][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1738.038294][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1738.043497][T23546]  do_fast_syscall_32+0x33/0x70
[ 1738.048396][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1738.053181][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1738.059564][T23546] 
[ 1738.062081][T23546] Uninit was stored to memory at:
[ 1738.067260][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1738.072730][T23546]  get_compat_msghdr+0x10c/0x280
[ 1738.077723][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1738.082704][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1738.087260][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1738.092162][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1738.098548][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1738.103800][T23546]  do_fast_syscall_32+0x33/0x70
[ 1738.108697][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1738.113441][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1738.119909][T23546] 
[ 1738.122413][T23546] Uninit was stored to memory at:
[ 1738.127518][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1738.132935][T23546]  get_compat_msghdr+0x10c/0x280
[ 1738.137939][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1738.142868][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1738.147459][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1738.152365][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1738.158755][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1738.164017][T23546]  do_fast_syscall_32+0x33/0x70
[ 1738.168927][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1738.173648][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1738.180049][T23546] 
[ 1738.182609][T23546] Uninit was stored to memory at:
[ 1738.187704][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1738.193052][T23546]  get_compat_msghdr+0x10c/0x280
[ 1738.198121][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1738.203021][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1738.207587][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1738.212481][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1738.218960][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1738.224314][T23546]  do_fast_syscall_32+0x33/0x70
[ 1738.229212][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1738.233936][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1738.240317][T23546] 
[ 1738.242838][T23546] Local variable msg_sys created at:
[ 1738.248147][T23546]  do_recvmmsg+0xc9/0x1200
[ 1738.252779][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1738.440158][T23546] not chained 4290000 origins
[ 1738.445628][T23546] CPU: 0 PID: 23546 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1738.455838][T23546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1738.465986][T23546] Call Trace:
[ 1738.469279][T23546]  <TASK>
[ 1738.472207][T23546]  dump_stack_lvl+0x200/0x28c
[ 1738.477002][T23546]  dump_stack+0x29/0x2c
[ 1738.481175][T23546]  kmsan_internal_chain_origin+0x78/0x120
[ 1738.486924][T23546]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1738.493038][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1738.498200][T23546]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1738.504056][T23546]  ? __unix_dgram_recvmsg+0x19b9/0x1b80
[ 1738.509664][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1738.514844][T23546]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1738.520725][T23546]  ? should_fail+0x79/0x9c0
[ 1738.525244][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1738.530381][T23546]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1738.536662][T23546]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1738.542757][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1738.547892][T23546]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1738.553728][T23546]  __msan_chain_origin+0xbd/0x140
[ 1738.558803][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1738.563970][T23546]  get_compat_msghdr+0x10c/0x280
[ 1738.568938][T23546]  ? do_recvmmsg+0x7c9/0x1200
[ 1738.573643][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1738.578366][T23546]  ? __schedule+0x176c/0x21c0
[ 1738.583088][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1738.588243][T23546]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1738.594166][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1738.599310][T23546]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1738.605154][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1738.609716][T23546]  ? filter_irq_stacks+0xb9/0x230
[ 1738.614811][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1738.619957][T23546]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1738.624754][T23546]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1738.631288][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1738.635998][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1738.642366][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1738.647413][T23546]  do_fast_syscall_32+0x33/0x70
[ 1738.652287][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1738.656830][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1738.663209][T23546] RIP: 0023:0xf7f8b549
[ 1738.667295][T23546] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1738.686920][T23546] RSP: 002b:00000000f7f655cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1738.695346][T23546] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 1738.703330][T23546] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[ 1738.711323][T23546] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1738.719298][T23546] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1738.727274][T23546] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1738.735265][T23546]  </TASK>
[ 1738.741440][T23546] Uninit was stored to memory at:
[ 1738.746986][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1738.752253][T23546]  get_compat_msghdr+0x10c/0x280
[ 1738.757238][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1738.762097][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1738.766671][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1738.771420][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1738.777949][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1738.783143][T23546]  do_fast_syscall_32+0x33/0x70
[ 1738.788047][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1738.792725][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1738.799113][T23546] 
[ 1738.801445][T23546] Uninit was stored to memory at:
[ 1738.806710][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1738.811971][T23546]  get_compat_msghdr+0x10c/0x280
[ 1738.816966][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1738.821714][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1738.826481][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1738.831186][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1738.837713][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1738.842976][T23546]  do_fast_syscall_32+0x33/0x70
[ 1738.847881][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1738.852568][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1738.858961][T23546] 
[ 1738.861286][T23546] Uninit was stored to memory at:
[ 1738.866568][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1738.871730][T23546]  get_compat_msghdr+0x10c/0x280
[ 1738.876863][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1738.881623][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1738.886359][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1738.891116][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1738.897674][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1738.902858][T23546]  do_fast_syscall_32+0x33/0x70
[ 1738.907780][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1738.912476][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1738.918855][T23546] 
[ 1738.921225][T23546] Uninit was stored to memory at:
[ 1738.926471][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1738.931639][T23546]  get_compat_msghdr+0x10c/0x280
[ 1738.936814][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1738.941566][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1738.946280][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1738.951028][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1738.957564][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1738.962747][T23546]  do_fast_syscall_32+0x33/0x70
[ 1738.967641][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1738.972351][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1738.978735][T23546] 
[ 1738.981081][T23546] Uninit was stored to memory at:
[ 1738.986317][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1738.991478][T23546]  get_compat_msghdr+0x10c/0x280
[ 1738.996769][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1739.001502][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1739.006253][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1739.011000][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1739.017697][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1739.023059][T23546]  do_fast_syscall_32+0x33/0x70
[ 1739.027958][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1739.032706][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1739.039084][T23546] 
[ 1739.041423][T23546] Uninit was stored to memory at:
[ 1739.046660][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1739.051913][T23546]  get_compat_msghdr+0x10c/0x280
[ 1739.056900][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1739.061620][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1739.066294][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1739.071024][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1739.078953][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1739.084132][T23546]  do_fast_syscall_32+0x33/0x70
[ 1739.089026][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1739.093706][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1739.100080][T23546] 
[ 1739.102580][T23546] Uninit was stored to memory at:
[ 1739.107672][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1739.112998][T23546]  get_compat_msghdr+0x10c/0x280
[ 1739.117983][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1739.122840][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1739.127396][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1739.132283][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1739.138685][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1739.144008][T23546]  do_fast_syscall_32+0x33/0x70
[ 1739.148901][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1739.153613][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1739.160119][T23546] 
[ 1739.162630][T23546] Local variable msg_sys created at:
[ 1739.167926][T23546]  do_recvmmsg+0xc9/0x1200
[ 1739.172574][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1739.481172][T23546] not chained 4300000 origins
[ 1739.486167][T23546] CPU: 1 PID: 23546 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1739.496371][T23546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1739.506457][T23546] Call Trace:
[ 1739.510017][T23546]  <TASK>
[ 1739.512962][T23546]  dump_stack_lvl+0x200/0x28c
[ 1739.517696][T23546]  dump_stack+0x29/0x2c
[ 1739.521897][T23546]  kmsan_internal_chain_origin+0x78/0x120
[ 1739.528531][T23546]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1739.534758][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1739.539926][T23546]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1739.545966][T23546]  ? __unix_dgram_recvmsg+0x19b9/0x1b80
[ 1739.552097][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1739.557284][T23546]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1739.563159][T23546]  ? should_fail+0x79/0x9c0
[ 1739.567716][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1739.572878][T23546]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1739.579173][T23546]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1739.585296][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1739.590462][T23546]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1739.596327][T23546]  __msan_chain_origin+0xbd/0x140
[ 1739.601402][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1739.606590][T23546]  get_compat_msghdr+0x10c/0x280
[ 1739.611582][T23546]  ? do_recvmmsg+0x7c9/0x1200
[ 1739.616334][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1739.621087][T23546]  ? __schedule+0x176c/0x21c0
[ 1739.625816][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1739.630983][T23546]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1739.636936][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1739.642099][T23546]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1739.647964][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1739.652529][T23546]  ? filter_irq_stacks+0xb9/0x230
[ 1739.657620][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1739.662802][T23546]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1739.667618][T23546]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1739.674182][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1739.678925][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1739.685328][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1739.690518][T23546]  do_fast_syscall_32+0x33/0x70
[ 1739.695676][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1739.700229][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1739.706697][T23546] RIP: 0023:0xf7f8b549
[ 1739.710787][T23546] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1739.730434][T23546] RSP: 002b:00000000f7f655cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1739.738953][T23546] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 1739.746960][T23546] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[ 1739.755056][T23546] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1739.763076][T23546] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1739.771067][T23546] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1739.779063][T23546]  </TASK>
[ 1739.783505][T23546] Uninit was stored to memory at:
[ 1739.789301][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1739.794645][T23546]  get_compat_msghdr+0x10c/0x280
[ 1739.799638][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1739.804456][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1739.809011][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1739.813840][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1739.820227][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1739.825405][T23546]  do_fast_syscall_32+0x33/0x70
[ 1739.830307][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1739.834958][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1739.841342][T23546] 
[ 1739.843764][T23546] Uninit was stored to memory at:
[ 1739.848884][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1739.854198][T23546]  get_compat_msghdr+0x10c/0x280
[ 1739.859185][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1739.863975][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1739.868507][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1739.873359][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1739.879747][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1739.884907][T23546]  do_fast_syscall_32+0x33/0x70
[ 1739.889807][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1739.894499][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1739.900897][T23546] 
[ 1739.903388][T23546] Uninit was stored to memory at:
[ 1739.908492][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1739.913829][T23546]  get_compat_msghdr+0x10c/0x280
[ 1739.918836][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1739.923863][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1739.928430][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1739.933546][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1739.939939][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1739.945186][T23546]  do_fast_syscall_32+0x33/0x70
[ 1739.950085][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1739.954787][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1739.961170][T23546] 
[ 1739.963665][T23546] Uninit was stored to memory at:
[ 1739.968762][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1739.974056][T23546]  get_compat_msghdr+0x10c/0x280
[ 1739.979217][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1739.984122][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1739.988690][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1739.993534][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1740.000077][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1740.005281][T23546]  do_fast_syscall_32+0x33/0x70
[ 1740.010190][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1740.014918][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1740.021311][T23546] 
[ 1740.023815][T23546] Uninit was stored to memory at:
[ 1740.028911][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1740.034329][T23546]  get_compat_msghdr+0x10c/0x280
[ 1740.039333][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1740.044289][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1740.048846][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1740.053793][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1740.060184][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1740.065443][T23546]  do_fast_syscall_32+0x33/0x70
[ 1740.070347][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1740.074991][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1740.081374][T23546] 
[ 1740.083850][T23546] Uninit was stored to memory at:
[ 1740.088934][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1740.094218][T23546]  get_compat_msghdr+0x10c/0x280
[ 1740.099204][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1740.104016][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1740.108565][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1740.113728][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1740.120127][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1740.125508][T23546]  do_fast_syscall_32+0x33/0x70
[ 1740.130424][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1740.135117][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1740.141512][T23546] 
[ 1740.144000][T23546] Uninit was stored to memory at:
[ 1740.149078][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1740.154371][T23546]  get_compat_msghdr+0x10c/0x280
[ 1740.159355][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1740.164236][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1740.168786][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1740.173756][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1740.180190][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1740.185412][T23546]  do_fast_syscall_32+0x33/0x70
[ 1740.190311][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1740.194965][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1740.201364][T23546] 
[ 1740.203845][T23546] Local variable msg_sys created at:
[ 1740.209148][T23546]  do_recvmmsg+0xc9/0x1200
[ 1740.213784][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1740.435324][T23546] not chained 4310000 origins
[ 1740.440044][T23546] CPU: 1 PID: 23546 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1740.450232][T23546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1740.460315][T23546] Call Trace:
[ 1740.463609][T23546]  <TASK>
[ 1740.466550][T23546]  dump_stack_lvl+0x200/0x28c
[ 1740.471280][T23546]  dump_stack+0x29/0x2c
[ 1740.475470][T23546]  kmsan_internal_chain_origin+0x78/0x120
[ 1740.481240][T23546]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1740.487445][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1740.492608][T23546]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1740.498468][T23546]  ? __unix_dgram_recvmsg+0x19b9/0x1b80
[ 1740.504058][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1740.509218][T23546]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1740.515081][T23546]  ? should_fail+0x79/0x9c0
[ 1740.519617][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1740.524775][T23546]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1740.531067][T23546]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1740.537191][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1740.542350][T23546]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1740.548204][T23546]  __msan_chain_origin+0xbd/0x140
[ 1740.553270][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1740.558445][T23546]  get_compat_msghdr+0x10c/0x280
[ 1740.563434][T23546]  ? do_recvmmsg+0x7c9/0x1200
[ 1740.568166][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1740.572901][T23546]  ? __schedule+0x176c/0x21c0
[ 1740.577629][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1740.582788][T23546]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1740.588641][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1740.593802][T23546]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1740.599659][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1740.604219][T23546]  ? filter_irq_stacks+0xb9/0x230
[ 1740.609303][T23546]  ? kmsan_get_metadata+0x33/0x220
[ 1740.614467][T23546]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1740.619274][T23546]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1740.625848][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1740.630587][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1740.636979][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1740.642045][T23546]  do_fast_syscall_32+0x33/0x70
[ 1740.646937][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1740.651474][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1740.657845][T23546] RIP: 0023:0xf7f8b549
[ 1740.661932][T23546] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1740.681577][T23546] RSP: 002b:00000000f7f655cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1740.690036][T23546] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 1740.698034][T23546] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[ 1740.706028][T23546] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1740.714020][T23546] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1740.722013][T23546] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1740.730113][T23546]  </TASK>
[ 1740.734826][T23546] Uninit was stored to memory at:
[ 1740.739931][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1740.745323][T23546]  get_compat_msghdr+0x10c/0x280
[ 1740.750306][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1740.755166][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1740.759708][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1740.764511][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1740.770929][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1740.776076][T23546]  do_fast_syscall_32+0x33/0x70
[ 1740.780963][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1740.785582][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1740.792037][T23546] 
[ 1740.794363][T23546] Uninit was stored to memory at:
[ 1740.799461][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1740.804702][T23546]  get_compat_msghdr+0x10c/0x280
[ 1740.809680][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1740.814501][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1740.819057][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1740.823879][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1740.830262][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1740.835534][T23546]  do_fast_syscall_32+0x33/0x70
[ 1740.840438][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1740.845080][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1740.851458][T23546] 
[ 1740.853882][T23546] Uninit was stored to memory at:
[ 1740.858973][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1740.864293][T23546]  get_compat_msghdr+0x10c/0x280
[ 1740.869283][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1740.874161][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1740.878716][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1740.883604][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1740.889983][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1740.895144][T23546]  do_fast_syscall_32+0x33/0x70
[ 1740.900052][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1740.904683][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1740.911053][T23546] 
[ 1740.913476][T23546] Uninit was stored to memory at:
[ 1740.918553][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1740.923874][T23546]  get_compat_msghdr+0x10c/0x280
[ 1740.928850][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1740.933666][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1740.938209][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1740.943358][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1740.949822][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1740.954976][T23546]  do_fast_syscall_32+0x33/0x70
[ 1740.959952][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1740.964578][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1740.970967][T23546] 
[ 1740.973383][T23546] Uninit was stored to memory at:
[ 1740.978466][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1740.983710][T23546]  get_compat_msghdr+0x10c/0x280
[ 1740.988688][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1740.993496][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1740.998038][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1741.003018][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1741.009397][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1741.014564][T23546]  do_fast_syscall_32+0x33/0x70
[ 1741.019455][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1741.024072][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1741.030438][T23546] 
[ 1741.032843][T23546] Uninit was stored to memory at:
[ 1741.037929][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1741.043182][T23546]  get_compat_msghdr+0x10c/0x280
[ 1741.048166][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1741.053142][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1741.057690][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1741.062491][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1741.068900][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1741.074056][T23546]  do_fast_syscall_32+0x33/0x70
[ 1741.078942][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1741.083561][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1741.089945][T23546] 
[ 1741.092372][T23546] Uninit was stored to memory at:
[ 1741.097451][T23546]  __get_compat_msghdr+0x6ea/0x9e0
[ 1741.102683][T23546]  get_compat_msghdr+0x10c/0x280
[ 1741.107674][T23546]  ___sys_recvmsg+0x289/0xb40
[ 1741.112492][T23546]  do_recvmmsg+0x7c9/0x1200
[ 1741.117044][T23546]  __sys_recvmmsg+0x520/0x6f0
[ 1741.122032][T23546]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1741.128415][T23546]  __do_fast_syscall_32+0x95/0xf0
[ 1741.133570][T23546]  do_fast_syscall_32+0x33/0x70
[ 1741.138571][T23546]  do_SYSENTER_32+0x1b/0x20
[ 1741.143224][T23546]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1741.149622][T23546] 
[ 1741.152051][T23546] Local variable msg_sys created at:
[ 1741.157340][T23546]  do_recvmmsg+0xc9/0x1200
[ 1741.161899][T23546]  __sys_recvmmsg+0x520/0x6f0
03:49:50 executing program 1:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0xe3}, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000000080eff95"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000480)='rcu_utilization\x00', r2}, 0x10)
r3 = signalfd4(r2, &(0x7f0000000000)={[0x14]}, 0x8, 0x0)
r4 = openat$zero(0xffffffffffffff9c, &(0x7f00000001c0), 0x8202, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETPRL(0xffffffffffffffff, 0x89f4, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDPRL(r4, 0x89f5, &(0x7f0000000340)={'sit0\x00', &(0x7f0000000400)={'syztnl0\x00', 0x0, 0x4, 0x4, 0x7f, 0x800, 0x4, @rand_addr=' \x01\x00', @private2, 0x7, 0x29, 0x3, 0x5}})
sendto$inet6(r3, 0x0, 0x0, 0x0, 0x0, 0x0)
fallocate(r3, 0x4, 0x3, 0xf5da)
syz_clone(0x40900280, 0x0, 0x0, 0x0, &(0x7f0000000a80), &(0x7f0000000ac0)="24f1d5342107c074da50a1777db81c5303d020be216562a5640325019495efccb44d5102bedbeccfd97ad8676264babd4cfb01bd1fe1480db1b671889917d11cb89103807c02fb58c86080028e82505a7bc46b5b5d97692d231b4109613e33bd1808d167026f02242ecb6860fac7fb")
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000380)=@ipv4_getaddr={0x34, 0x16, 0x440, 0x70bd2c, 0x25dfdbfe, {0x2, 0x1, 0x80, 0x36}, [@IFA_BROADCAST={0x8, 0x4, @broadcast}, @IFA_CACHEINFO={0x14, 0x6, {0x0, 0x3, 0x0, 0x5}}]}, 0x34}, 0x1, 0x0, 0x0, 0x40040}, 0x20044805)
io_setup(0x100000000000c333, &(0x7f0000000180)=<r5=>0x0)
io_submit(r5, 0x20000000000001cb, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x400000000000, 0x0, 0x1, 0x0, 0xffffffffffffffff, &(0x7f0000000000), 0x377140be6b5ef4c7}])

03:49:50 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000180)="b5eed4af01db22b7c134010000007a15", 0x10)
r1 = accept4$alg(r0, 0x0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x0)
read$alg(r1, &(0x7f0000001480)=""/4096, 0x16)
ioctl$int_in(r1, 0x5452, &(0x7f0000002480)=0x9)
sendmmsg$alg(r1, &(0x7f0000003940)=[{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000300)="d8", 0x1}], 0x1}], 0x1, 0x0)

03:49:50 executing program 2:
sysfs$1(0x1, &(0x7f0000000000)='\x00')

03:49:50 executing program 5:
r0 = creat(&(0x7f0000000140)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
io_setup(0xad, &(0x7f0000000000)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000540)=[&(0x7f0000000200)={0x101010, 0x400000000000, 0x0, 0x1, 0x0, r0, &(0x7f00000000c0)=',', 0x1}])

03:49:50 executing program 4:
r0 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r0, &(0x7f0000000140)={0x18, 0x0, {0x3, @local, 'bridge0\x00'}}, 0x1e)
r1 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r1, &(0x7f00000000c0)={0x18, 0x0, {0x3, @local, 'ip6_vti0\x00'}}, 0x1e)
close(r0)

03:49:50 executing program 3:
unshare(0x40000400)
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = socket$inet(0x2, 0x806, 0x0)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x41, &(0x7f00000001c0)={'filter\x00', 0x4, [{}, {}, {}, {}]}, 0x68)

[ 1741.602453][T23574] vcan0 speed is unknown, defaulting to 1000
03:49:50 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000180)="b5eed4af01db22b7c134010000007a15", 0x10)
r1 = accept4$alg(r0, 0x0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x0)
read$alg(r1, &(0x7f0000001480)=""/4096, 0x16)
ioctl$int_in(r1, 0x5452, &(0x7f0000002480)=0x9)
sendmmsg$alg(r1, &(0x7f0000003940)=[{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000300)="d8", 0x1}], 0x1}], 0x1, 0x0)

03:49:50 executing program 2:
sysfs$1(0x1, &(0x7f0000000000)='\x00')

03:49:50 executing program 4:
creat(&(0x7f0000000000)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000103c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f000000e3c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x80101, 0x0)
dup2(r2, r0)
fcntl$lock(r0, 0x6, &(0x7f00000000c0)={0x1})

03:49:50 executing program 5:
r0 = creat(&(0x7f0000000140)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
io_setup(0xad, &(0x7f0000000000)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000540)=[&(0x7f0000000200)={0x101010, 0x400000000000, 0x0, 0x1, 0x0, r0, &(0x7f00000000c0)=',', 0x1}])

[ 1742.378150][T23593] fuse: Bad value for 'fd'
[ 1742.383954][T23585] vcan0 speed is unknown, defaulting to 1000
03:49:51 executing program 2:
sysfs$1(0x1, &(0x7f0000000000)='\x00')

03:49:51 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000180)="b5eed4af01db22b7c134010000007a15", 0x10)
r1 = accept4$alg(r0, 0x0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x0)
read$alg(r1, &(0x7f0000001480)=""/4096, 0x16)
ioctl$int_in(r1, 0x5452, &(0x7f0000002480)=0x9)
sendmmsg$alg(r1, &(0x7f0000003940)=[{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000300)="d8", 0x1}], 0x1}], 0x1, 0x0)

[ 1743.319058][T23581] not chained 4320000 origins
[ 1743.324010][T23581] CPU: 0 PID: 23581 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1743.334217][T23581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1743.344303][T23581] Call Trace:
[ 1743.347599][T23581]  <TASK>
[ 1743.350548][T23581]  dump_stack_lvl+0x200/0x28c
[ 1743.355282][T23581]  dump_stack+0x29/0x2c
[ 1743.359479][T23581]  kmsan_internal_chain_origin+0x78/0x120
[ 1743.365263][T23581]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1743.371404][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1743.376579][T23581]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1743.382458][T23581]  ? __unix_dgram_recvmsg+0x19b9/0x1b80
[ 1743.388058][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1743.393228][T23581]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1743.399103][T23581]  ? should_fail+0x79/0x9c0
[ 1743.403647][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1743.408816][T23581]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1743.415121][T23581]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1743.421252][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1743.426418][T23581]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1743.432280][T23581]  __msan_chain_origin+0xbd/0x140
[ 1743.437361][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1743.442540][T23581]  get_compat_msghdr+0x10c/0x280
[ 1743.447536][T23581]  ? do_recvmmsg+0x7c9/0x1200
[ 1743.452358][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1743.457105][T23581]  ? __schedule+0x176c/0x21c0
[ 1743.461861][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1743.467027][T23581]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1743.472890][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1743.478057][T23581]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1743.483930][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1743.488500][T23581]  ? filter_irq_stacks+0xb9/0x230
[ 1743.493612][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1743.498795][T23581]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1743.503609][T23581]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1743.510171][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1743.514916][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1743.521312][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1743.526402][T23581]  do_fast_syscall_32+0x33/0x70
[ 1743.531297][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1743.535843][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1743.542234][T23581] RIP: 0023:0xf7f8b549
[ 1743.546322][T23581] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1743.566079][T23581] RSP: 002b:00000000f7f655cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1743.574533][T23581] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 1743.582542][T23581] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[ 1743.590550][T23581] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1743.598552][T23581] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1743.606567][T23581] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1743.615012][T23581]  </TASK>
[ 1743.621357][T23581] Uninit was stored to memory at:
[ 1743.626844][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1743.632109][T23581]  get_compat_msghdr+0x10c/0x280
[ 1743.637115][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1743.641960][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1743.646527][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1743.651263][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1743.657781][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1743.662955][T23581]  do_fast_syscall_32+0x33/0x70
[ 1743.667855][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1743.672529][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1743.678911][T23581] 
[ 1743.681238][T23581] Uninit was stored to memory at:
[ 1743.686447][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1743.691601][T23581]  get_compat_msghdr+0x10c/0x280
[ 1743.696710][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1743.701439][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1743.706365][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1743.711437][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1743.717943][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1743.723102][T23581]  do_fast_syscall_32+0x33/0x70
[ 1743.727997][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1743.732665][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1743.739045][T23581] 
[ 1743.741382][T23581] Uninit was stored to memory at:
[ 1743.746647][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1743.751909][T23581]  get_compat_msghdr+0x10c/0x280
[ 1743.756981][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1743.761702][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1743.766367][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1743.771095][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1743.777609][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1743.782775][T23581]  do_fast_syscall_32+0x33/0x70
[ 1743.787670][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1743.792335][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1743.798730][T23581] 
[ 1743.801255][T23581] Uninit was stored to memory at:
[ 1743.806470][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1743.811633][T23581]  get_compat_msghdr+0x10c/0x280
[ 1743.816742][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1743.821563][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1743.826231][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1743.830954][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1743.837462][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1743.842644][T23581]  do_fast_syscall_32+0x33/0x70
[ 1743.847540][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1743.852215][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1743.858686][T23581] 
[ 1743.861013][T23581] Uninit was stored to memory at:
[ 1743.866231][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1743.871390][T23581]  get_compat_msghdr+0x10c/0x280
[ 1743.876515][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1743.881265][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1743.885986][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1743.890721][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1743.897234][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1743.902403][T23581]  do_fast_syscall_32+0x33/0x70
[ 1743.907310][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1743.911980][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1743.918358][T23581] 
[ 1743.920688][T23581] Uninit was stored to memory at:
[ 1743.925915][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1743.931077][T23581]  get_compat_msghdr+0x10c/0x280
[ 1743.936247][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1743.940977][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1743.945737][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1743.950476][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1743.957133][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1743.962385][T23581]  do_fast_syscall_32+0x33/0x70
[ 1743.967431][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1743.972200][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1743.978615][T23581] 
[ 1743.980950][T23581] Uninit was stored to memory at:
[ 1743.986229][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1743.991394][T23581]  get_compat_msghdr+0x10c/0x280
[ 1743.996638][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1744.001383][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1744.006143][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1744.010903][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1744.017492][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1744.022686][T23581]  do_fast_syscall_32+0x33/0x70
[ 1744.027591][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1744.032416][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1744.038802][T23581] 
[ 1744.041311][T23581] Local variable msg_sys created at:
[ 1744.046795][T23581]  do_recvmmsg+0xc9/0x1200
[ 1744.051266][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1744.072816][ T1192] ieee802154 phy1 wpan1: encryption failed: -22
[ 1744.336132][T23581] not chained 4330000 origins
[ 1744.340967][T23581] CPU: 0 PID: 23581 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1744.351198][T23581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1744.361896][T23581] Call Trace:
[ 1744.365199][T23581]  <TASK>
[ 1744.368147][T23581]  dump_stack_lvl+0x200/0x28c
[ 1744.372878][T23581]  dump_stack+0x29/0x2c
[ 1744.377075][T23581]  kmsan_internal_chain_origin+0x78/0x120
[ 1744.382852][T23581]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1744.388978][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1744.394155][T23581]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1744.400017][T23581]  ? __unix_dgram_recvmsg+0x19b9/0x1b80
[ 1744.405678][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1744.410860][T23581]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1744.416726][T23581]  ? should_fail+0x79/0x9c0
[ 1744.421272][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1744.426433][T23581]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1744.432729][T23581]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1744.438854][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1744.444015][T23581]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1744.449971][T23581]  __msan_chain_origin+0xbd/0x140
[ 1744.455057][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1744.460240][T23581]  get_compat_msghdr+0x10c/0x280
[ 1744.465316][T23581]  ? do_recvmmsg+0x7c9/0x1200
[ 1744.470050][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1744.474787][T23581]  ? __schedule+0x176c/0x21c0
[ 1744.479518][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1744.484665][T23581]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1744.490534][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1744.495694][T23581]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1744.501557][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1744.506100][T23581]  ? filter_irq_stacks+0xb9/0x230
[ 1744.511167][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1744.516316][T23581]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1744.521109][T23581]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1744.527657][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1744.532380][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1744.538782][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1744.543856][T23581]  do_fast_syscall_32+0x33/0x70
[ 1744.548728][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1744.553252][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1744.559611][T23581] RIP: 0023:0xf7f8b549
[ 1744.563707][T23581] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1744.583642][T23581] RSP: 002b:00000000f7f655cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1744.592097][T23581] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 1744.600187][T23581] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[ 1744.608184][T23581] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1744.616268][T23581] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1744.624248][T23581] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1744.632256][T23581]  </TASK>
[ 1744.638028][T23581] Uninit was stored to memory at:
[ 1744.643640][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1744.648806][T23581]  get_compat_msghdr+0x10c/0x280
[ 1744.653961][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1744.658708][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1744.663382][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1744.668109][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1744.674682][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1744.679779][T23581]  do_fast_syscall_32+0x33/0x70
[ 1744.684872][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1744.689419][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1744.695933][T23581] 
[ 1744.698264][T23581] Uninit was stored to memory at:
[ 1744.703530][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1744.708684][T23581]  get_compat_msghdr+0x10c/0x280
[ 1744.713835][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1744.718564][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1744.723249][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1744.728158][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1744.734655][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1744.739729][T23581]  do_fast_syscall_32+0x33/0x70
[ 1744.744770][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1744.749317][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1744.755873][T23581] 
[ 1744.758205][T23581] Uninit was stored to memory at:
[ 1744.763468][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1744.768666][T23581]  get_compat_msghdr+0x10c/0x280
[ 1744.773843][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1744.778571][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1744.783291][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1744.788115][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1744.794684][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1744.799758][T23581]  do_fast_syscall_32+0x33/0x70
[ 1744.804843][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1744.809386][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1744.815949][T23581] 
[ 1744.818281][T23581] Uninit was stored to memory at:
[ 1744.823514][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1744.828693][T23581]  get_compat_msghdr+0x10c/0x280
[ 1744.833833][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1744.838572][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1744.843297][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1744.848041][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1744.854677][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1744.859757][T23581]  do_fast_syscall_32+0x33/0x70
[ 1744.864834][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1744.869381][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1744.875888][T23581] 
[ 1744.878224][T23581] Uninit was stored to memory at:
[ 1744.883461][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1744.888625][T23581]  get_compat_msghdr+0x10c/0x280
[ 1744.893794][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1744.898524][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1744.903233][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1744.907961][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1744.914542][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1744.919620][T23581]  do_fast_syscall_32+0x33/0x70
[ 1744.924687][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1744.929250][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1744.935745][T23581] 
[ 1744.938081][T23581] Uninit was stored to memory at:
[ 1744.943348][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1744.948505][T23581]  get_compat_msghdr+0x10c/0x280
[ 1744.953657][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1744.958388][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1744.963225][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1744.968056][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1744.974774][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1744.979866][T23581]  do_fast_syscall_32+0x33/0x70
[ 1744.985061][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1744.989696][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1744.996291][T23581] 
[ 1744.998643][T23581] Uninit was stored to memory at:
[ 1745.003903][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1745.009062][T23581]  get_compat_msghdr+0x10c/0x280
[ 1745.014375][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1745.019115][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1745.023868][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1745.028605][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1745.035235][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1745.040320][T23581]  do_fast_syscall_32+0x33/0x70
[ 1745.045394][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1745.049945][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1745.056499][T23581] 
[ 1745.058841][T23581] Local variable msg_sys created at:
[ 1745.064303][T23581]  do_recvmmsg+0xc9/0x1200
[ 1745.068809][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1745.266441][T23581] not chained 4340000 origins
[ 1745.271388][T23581] CPU: 0 PID: 23581 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1745.281566][T23581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1745.291639][T23581] Call Trace:
[ 1745.294923][T23581]  <TASK>
[ 1745.297873][T23581]  dump_stack_lvl+0x200/0x28c
[ 1745.302578][T23581]  dump_stack+0x29/0x2c
[ 1745.306786][T23581]  kmsan_internal_chain_origin+0x78/0x120
[ 1745.312887][T23581]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1745.319013][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1745.324181][T23581]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1745.330116][T23581]  ? __unix_dgram_recvmsg+0x19b9/0x1b80
[ 1745.335707][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1745.340911][T23581]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1745.346776][T23581]  ? should_fail+0x79/0x9c0
[ 1745.351313][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1745.356449][T23581]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1745.363363][T23581]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1745.369493][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1745.374756][T23581]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1745.380610][T23581]  __msan_chain_origin+0xbd/0x140
[ 1745.385673][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1745.390825][T23581]  get_compat_msghdr+0x10c/0x280
[ 1745.395788][T23581]  ? do_recvmmsg+0x7c9/0x1200
[ 1745.400497][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1745.405223][T23581]  ? __schedule+0x176c/0x21c0
[ 1745.409924][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1745.415073][T23581]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1745.420944][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1745.426135][T23581]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1745.432002][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1745.436534][T23581]  ? filter_irq_stacks+0xb9/0x230
[ 1745.441613][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1745.446766][T23581]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1745.451556][T23581]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1745.458092][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1745.462904][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1745.469341][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1745.474672][T23581]  do_fast_syscall_32+0x33/0x70
[ 1745.479547][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1745.484075][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1745.490430][T23581] RIP: 0023:0xf7f8b549
[ 1745.494502][T23581] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1745.514131][T23581] RSP: 002b:00000000f7f655cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1745.522620][T23581] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 1745.530635][T23581] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[ 1745.538615][T23581] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1745.546594][T23581] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1745.554568][T23581] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1745.562563][T23581]  </TASK>
[ 1745.568380][T23581] Uninit was stored to memory at:
[ 1745.573967][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1745.579137][T23581]  get_compat_msghdr+0x10c/0x280
[ 1745.584256][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1745.589022][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1745.593711][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1745.598438][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1745.605105][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1745.610584][T23581]  do_fast_syscall_32+0x33/0x70
[ 1745.615664][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1745.620212][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1745.626713][T23581] 
[ 1745.629047][T23581] Uninit was stored to memory at:
[ 1745.634320][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1745.639477][T23581]  get_compat_msghdr+0x10c/0x280
[ 1745.644645][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1745.649372][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1745.654047][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1745.658772][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1745.665323][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1745.670393][T23581]  do_fast_syscall_32+0x33/0x70
[ 1745.675416][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1745.679964][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1745.686478][T23581] 
[ 1745.688812][T23581] Uninit was stored to memory at:
[ 1745.694094][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1745.699258][T23581]  get_compat_msghdr+0x10c/0x280
[ 1745.704415][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1745.709152][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1745.713897][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1745.718626][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1745.725197][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1745.730266][T23581]  do_fast_syscall_32+0x33/0x70
[ 1745.735283][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1745.739847][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1745.746394][T23581] 
[ 1745.748728][T23581] Uninit was stored to memory at:
[ 1745.753976][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1745.759132][T23581]  get_compat_msghdr+0x10c/0x280
[ 1745.764305][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1745.769038][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1745.773763][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1745.778497][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1745.785173][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1745.790249][T23581]  do_fast_syscall_32+0x33/0x70
[ 1745.797351][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1745.801998][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1745.808384][T23581] 
[ 1745.810723][T23581] Uninit was stored to memory at:
[ 1745.815948][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1745.821120][T23581]  get_compat_msghdr+0x10c/0x280
[ 1745.828290][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1745.833175][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1745.837734][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1745.842990][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1745.849378][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1745.854799][T23581]  do_fast_syscall_32+0x33/0x70
[ 1745.859704][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1745.864523][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1745.870910][T23581] 
[ 1745.874478][T23581] Uninit was stored to memory at:
[ 1745.879559][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1745.884866][T23581]  get_compat_msghdr+0x10c/0x280
[ 1745.889860][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1745.896164][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1745.900718][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1745.905589][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1745.912084][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1745.917166][T23581]  do_fast_syscall_32+0x33/0x70
[ 1745.922244][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1745.926795][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1745.933326][T23581] 
[ 1745.935662][T23581] Uninit was stored to memory at:
[ 1745.940741][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1745.946061][T23581]  get_compat_msghdr+0x10c/0x280
[ 1745.951056][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1745.955999][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1745.960687][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1745.965624][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1745.972136][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1745.977216][T23581]  do_fast_syscall_32+0x33/0x70
[ 1745.982299][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1745.986858][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1745.993436][T23581] 
[ 1745.995782][T23581] Local variable msg_sys created at:
[ 1746.001196][T23581]  do_recvmmsg+0xc9/0x1200
[ 1746.006708][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1746.218021][T23581] not chained 4350000 origins
[ 1746.223154][T23581] CPU: 0 PID: 23581 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1746.233358][T23581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1746.243644][T23581] Call Trace:
[ 1746.246928][T23581]  <TASK>
[ 1746.249868][T23581]  dump_stack_lvl+0x200/0x28c
[ 1746.254597][T23581]  dump_stack+0x29/0x2c
[ 1746.258855][T23581]  kmsan_internal_chain_origin+0x78/0x120
[ 1746.264620][T23581]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1746.270726][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1746.276338][T23581]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1746.282209][T23581]  ? __unix_dgram_recvmsg+0x19b9/0x1b80
[ 1746.287820][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1746.293041][T23581]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1746.298901][T23581]  ? should_fail+0x79/0x9c0
[ 1746.303424][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1746.308579][T23581]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1746.314870][T23581]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1746.320972][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1746.326149][T23581]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1746.331990][T23581]  __msan_chain_origin+0xbd/0x140
[ 1746.337073][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1746.342277][T23581]  get_compat_msghdr+0x10c/0x280
[ 1746.347368][T23581]  ? do_recvmmsg+0x7c9/0x1200
[ 1746.352094][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1746.356805][T23581]  ? __schedule+0x176c/0x21c0
[ 1746.361506][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1746.366738][T23581]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1746.372574][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1746.377713][T23581]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1746.383937][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1746.388501][T23581]  ? filter_irq_stacks+0xb9/0x230
[ 1746.393591][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1746.398739][T23581]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1746.403527][T23581]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1746.410067][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1746.414784][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1746.421234][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1746.426282][T23581]  do_fast_syscall_32+0x33/0x70
[ 1746.431240][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1746.435768][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1746.442208][T23581] RIP: 0023:0xf7f8b549
[ 1746.446399][T23581] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1746.466128][T23581] RSP: 002b:00000000f7f655cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1746.474664][T23581] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 1746.482677][T23581] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[ 1746.490677][T23581] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1746.498693][T23581] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1746.506677][T23581] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1746.514678][T23581]  </TASK>
[ 1746.523767][T23581] Uninit was stored to memory at:
[ 1746.528877][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1746.535185][T23581]  get_compat_msghdr+0x10c/0x280
[ 1746.540175][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1746.545045][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1746.549695][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1746.554586][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1746.560973][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1746.566220][T23581]  do_fast_syscall_32+0x33/0x70
[ 1746.571113][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1746.575782][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1746.582270][T23581] 
[ 1746.584606][T23581] Uninit was stored to memory at:
[ 1746.589681][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1746.595023][T23581]  get_compat_msghdr+0x10c/0x280
[ 1746.600047][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1746.604925][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1746.609480][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1746.614726][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1746.621113][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1746.626304][T23581]  do_fast_syscall_32+0x33/0x70
[ 1746.631202][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1746.635873][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1746.642373][T23581] 
[ 1746.644704][T23581] Uninit was stored to memory at:
[ 1746.650214][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1746.655492][T23581]  get_compat_msghdr+0x10c/0x280
[ 1746.660480][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1746.665327][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1746.670052][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1746.674941][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1746.681446][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1746.686636][T23581]  do_fast_syscall_32+0x33/0x70
[ 1746.691561][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1746.696228][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1746.702708][T23581] 
[ 1746.705041][T23581] Uninit was stored to memory at:
[ 1746.710472][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1746.715771][T23581]  get_compat_msghdr+0x10c/0x280
[ 1746.720756][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1746.725600][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1746.730153][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1746.735033][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1746.741422][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1746.746681][T23581]  do_fast_syscall_32+0x33/0x70
[ 1746.751581][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1746.756582][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1746.763072][T23581] 
[ 1746.765412][T23581] Uninit was stored to memory at:
[ 1746.770493][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1746.775772][T23581]  get_compat_msghdr+0x10c/0x280
[ 1746.780763][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1746.785615][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1746.790171][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1746.795055][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1746.801478][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1746.806680][T23581]  do_fast_syscall_32+0x33/0x70
[ 1746.811577][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1746.816259][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1746.822922][T23581] 
[ 1746.825260][T23581] Uninit was stored to memory at:
[ 1746.830349][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1746.835693][T23581]  get_compat_msghdr+0x10c/0x280
[ 1746.840689][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1746.845623][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1746.850180][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1746.855077][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1746.861462][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1746.866651][T23581]  do_fast_syscall_32+0x33/0x70
[ 1746.871546][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1746.876258][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1746.882764][T23581] 
[ 1746.885180][T23581] Uninit was stored to memory at:
[ 1746.890246][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1746.895564][T23581]  get_compat_msghdr+0x10c/0x280
[ 1746.900547][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1746.905425][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1746.909976][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1746.914878][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1746.921263][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1746.926453][T23581]  do_fast_syscall_32+0x33/0x70
[ 1746.931349][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1746.936021][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1746.942498][T23581] 
[ 1746.944832][T23581] Local variable msg_sys created at:
[ 1746.950116][T23581]  do_recvmmsg+0xc9/0x1200
[ 1746.954750][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1747.165407][T23581] not chained 4360000 origins
[ 1747.170144][T23581] CPU: 0 PID: 23581 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1747.180343][T23581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1747.190411][T23581] Call Trace:
[ 1747.193691][T23581]  <TASK>
[ 1747.196630][T23581]  dump_stack_lvl+0x200/0x28c
[ 1747.201333][T23581]  dump_stack+0x29/0x2c
[ 1747.205507][T23581]  kmsan_internal_chain_origin+0x78/0x120
[ 1747.211260][T23581]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1747.217368][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1747.222540][T23581]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1747.228492][T23581]  ? __unix_dgram_recvmsg+0x19b9/0x1b80
[ 1747.234084][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1747.239252][T23581]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1747.245154][T23581]  ? should_fail+0x79/0x9c0
[ 1747.249785][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1747.254924][T23581]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1747.261195][T23581]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1747.267303][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1747.272474][T23581]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1747.278314][T23581]  __msan_chain_origin+0xbd/0x140
[ 1747.283366][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1747.288539][T23581]  get_compat_msghdr+0x10c/0x280
[ 1747.293504][T23581]  ? do_recvmmsg+0x7c9/0x1200
[ 1747.298212][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1747.302923][T23581]  ? __schedule+0x176c/0x21c0
[ 1747.307627][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1747.312780][T23581]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1747.318650][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1747.323814][T23581]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1747.329659][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1747.334210][T23581]  ? filter_irq_stacks+0xb9/0x230
[ 1747.339285][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1747.344429][T23581]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1747.349220][T23581]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1747.355775][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1747.360490][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1747.366865][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1747.371940][T23581]  do_fast_syscall_32+0x33/0x70
[ 1747.376814][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1747.381344][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1747.387693][T23581] RIP: 0023:0xf7f8b549
[ 1747.391778][T23581] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1747.411422][T23581] RSP: 002b:00000000f7f655cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1747.419857][T23581] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 1747.427863][T23581] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[ 1747.435956][T23581] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1747.443950][T23581] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1747.452024][T23581] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1747.460050][T23581]  </TASK>
[ 1747.466075][T23581] Uninit was stored to memory at:
[ 1747.471189][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1747.476874][T23581]  get_compat_msghdr+0x10c/0x280
[ 1747.481972][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1747.486716][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1747.491274][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1747.496190][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1747.502695][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1747.507771][T23581]  do_fast_syscall_32+0x33/0x70
[ 1747.512860][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1747.517413][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1747.523955][T23581] 
[ 1747.526342][T23581] Uninit was stored to memory at:
[ 1747.531516][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1747.536821][T23581]  get_compat_msghdr+0x10c/0x280
[ 1747.541940][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1747.546678][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1747.551237][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1747.556107][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1747.562579][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1747.567643][T23581]  do_fast_syscall_32+0x33/0x70
[ 1747.572788][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1747.577346][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1747.583914][T23581] 
[ 1747.586257][T23581] Uninit was stored to memory at:
[ 1747.591326][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1747.596616][T23581]  get_compat_msghdr+0x10c/0x280
[ 1747.601605][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1747.606514][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1747.611080][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1747.616042][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1747.622548][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1747.627621][T23581]  do_fast_syscall_32+0x33/0x70
[ 1747.632697][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1747.637286][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1747.643792][T23581] 
[ 1747.646241][T23581] Uninit was stored to memory at:
[ 1747.651323][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1747.656607][T23581]  get_compat_msghdr+0x10c/0x280
[ 1747.662969][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1747.667730][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1747.672443][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1747.677174][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1747.683715][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1747.689139][T23581]  do_fast_syscall_32+0x33/0x70
[ 1747.694224][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1747.698805][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1747.705348][T23581] 
[ 1747.707681][T23581] Uninit was stored to memory at:
[ 1747.712974][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1747.718162][T23581]  get_compat_msghdr+0x10c/0x280
[ 1747.723323][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1747.728074][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1747.732797][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1747.737534][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1747.744072][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1747.749148][T23581]  do_fast_syscall_32+0x33/0x70
[ 1747.754237][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1747.758805][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1747.765362][T23581] 
[ 1747.767697][T23581] Uninit was stored to memory at:
[ 1747.772995][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1747.778162][T23581]  get_compat_msghdr+0x10c/0x280
[ 1747.783494][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1747.788258][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1747.793027][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1747.797790][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1747.804592][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1747.809667][T23581]  do_fast_syscall_32+0x33/0x70
[ 1747.814764][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1747.819314][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1747.825886][T23581] 
[ 1747.828222][T23581] Uninit was stored to memory at:
[ 1747.833469][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1747.838630][T23581]  get_compat_msghdr+0x10c/0x280
[ 1747.843784][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1747.848508][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1747.853404][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1747.858128][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1747.864686][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1747.869760][T23581]  do_fast_syscall_32+0x33/0x70
[ 1747.874860][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1747.879412][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1747.885995][T23581] 
[ 1747.888324][T23581] Local variable msg_sys created at:
[ 1747.893731][T23581]  do_recvmmsg+0xc9/0x1200
[ 1747.898197][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1748.227954][T23581] not chained 4370000 origins
[ 1748.232993][T23581] CPU: 0 PID: 23581 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1748.243193][T23581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1748.253271][T23581] Call Trace:
[ 1748.256569][T23581]  <TASK>
[ 1748.259523][T23581]  dump_stack_lvl+0x200/0x28c
[ 1748.264259][T23581]  dump_stack+0x29/0x2c
[ 1748.268445][T23581]  kmsan_internal_chain_origin+0x78/0x120
[ 1748.274227][T23581]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1748.280342][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1748.285508][T23581]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1748.291372][T23581]  ? __unix_dgram_recvmsg+0x19b9/0x1b80
[ 1748.296962][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1748.302127][T23581]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1748.307988][T23581]  ? should_fail+0x79/0x9c0
[ 1748.312526][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1748.317683][T23581]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1748.323976][T23581]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1748.330097][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1748.335257][T23581]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1748.341117][T23581]  __msan_chain_origin+0xbd/0x140
[ 1748.346194][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1748.351369][T23581]  get_compat_msghdr+0x10c/0x280
[ 1748.356357][T23581]  ? do_recvmmsg+0x7c9/0x1200
[ 1748.361084][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1748.365816][T23581]  ? __schedule+0x176c/0x21c0
[ 1748.370538][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1748.375706][T23581]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1748.381568][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1748.386726][T23581]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1748.392606][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1748.397162][T23581]  ? filter_irq_stacks+0xb9/0x230
[ 1748.402348][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1748.407523][T23581]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1748.412338][T23581]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1748.418918][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1748.423638][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1748.430020][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1748.435079][T23581]  do_fast_syscall_32+0x33/0x70
[ 1748.439949][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1748.444476][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1748.450853][T23581] RIP: 0023:0xf7f8b549
[ 1748.454952][T23581] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1748.474581][T23581] RSP: 002b:00000000f7f655cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1748.483010][T23581] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 1748.491003][T23581] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[ 1748.499001][T23581] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1748.507017][T23581] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1748.515103][T23581] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1748.523096][T23581]  </TASK>
[ 1748.529049][T23581] Uninit was stored to memory at:
[ 1748.534542][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1748.539718][T23581]  get_compat_msghdr+0x10c/0x280
[ 1748.544836][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1748.549677][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1748.554501][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1748.559238][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1748.565775][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1748.570939][T23581]  do_fast_syscall_32+0x33/0x70
[ 1748.575963][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1748.580514][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1748.587020][T23581] 
[ 1748.589374][T23581] Uninit was stored to memory at:
[ 1748.594621][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1748.599783][T23581]  get_compat_msghdr+0x10c/0x280
[ 1748.604904][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1748.609646][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1748.614319][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1748.619067][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1748.625633][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1748.630712][T23581]  do_fast_syscall_32+0x33/0x70
[ 1748.635767][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1748.640313][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1748.646843][T23581] 
[ 1748.649187][T23581] Uninit was stored to memory at:
[ 1748.654427][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1748.659607][T23581]  get_compat_msghdr+0x10c/0x280
[ 1748.664786][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1748.669537][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1748.674230][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1748.678969][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1748.685522][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1748.690592][T23581]  do_fast_syscall_32+0x33/0x70
[ 1748.695609][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1748.700182][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1748.706781][T23581] 
[ 1748.709112][T23581] Uninit was stored to memory at:
[ 1748.714362][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1748.719519][T23581]  get_compat_msghdr+0x10c/0x280
[ 1748.724674][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1748.729419][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1748.734099][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1748.738822][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1748.745391][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1748.750481][T23581]  do_fast_syscall_32+0x33/0x70
[ 1748.755545][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1748.760268][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1748.766764][T23581] 
[ 1748.769098][T23581] Uninit was stored to memory at:
[ 1748.774339][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1748.779500][T23581]  get_compat_msghdr+0x10c/0x280
[ 1748.784679][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1748.789410][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1748.794096][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1748.798826][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1748.805756][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1748.810834][T23581]  do_fast_syscall_32+0x33/0x70
[ 1748.815858][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1748.820408][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1748.826980][T23581] 
[ 1748.829316][T23581] Uninit was stored to memory at:
[ 1748.834612][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1748.840727][T23581]  get_compat_msghdr+0x10c/0x280
[ 1748.845854][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1748.850595][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1748.855261][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1748.859988][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1748.866667][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1748.871883][T23581]  do_fast_syscall_32+0x33/0x70
[ 1748.877114][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1748.881661][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1748.888640][T23581] 
[ 1748.890991][T23581] Uninit was stored to memory at:
[ 1748.896290][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1748.901469][T23581]  get_compat_msghdr+0x10c/0x280
[ 1748.906774][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1748.911515][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1748.916290][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1748.921026][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1748.927544][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1748.932733][T23581]  do_fast_syscall_32+0x33/0x70
[ 1748.937630][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1748.942329][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1748.948711][T23581] 
[ 1748.951040][T23581] Local variable msg_sys created at:
[ 1748.956485][T23581]  do_recvmmsg+0xc9/0x1200
[ 1748.960951][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1749.222894][T23581] not chained 4380000 origins
[ 1749.227626][T23581] CPU: 0 PID: 23581 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1749.237826][T23581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1749.247910][T23581] Call Trace:
[ 1749.251208][T23581]  <TASK>
[ 1749.254152][T23581]  dump_stack_lvl+0x200/0x28c
[ 1749.258882][T23581]  dump_stack+0x29/0x2c
[ 1749.263117][T23581]  kmsan_internal_chain_origin+0x78/0x120
[ 1749.268923][T23581]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1749.275056][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1749.280218][T23581]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1749.286175][T23581]  ? __unix_dgram_recvmsg+0x19b9/0x1b80
[ 1749.292209][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1749.297379][T23581]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1749.303263][T23581]  ? should_fail+0x79/0x9c0
[ 1749.307811][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1749.312994][T23581]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1749.319312][T23581]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1749.325439][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1749.330609][T23581]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1749.336477][T23581]  __msan_chain_origin+0xbd/0x140
[ 1749.341646][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1749.346830][T23581]  get_compat_msghdr+0x10c/0x280
[ 1749.351822][T23581]  ? do_recvmmsg+0x7c9/0x1200
[ 1749.356554][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1749.361290][T23581]  ? __schedule+0x176c/0x21c0
[ 1749.366029][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1749.371194][T23581]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1749.377062][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1749.382225][T23581]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1749.388132][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1749.393127][T23581]  ? filter_irq_stacks+0xb9/0x230
[ 1749.398239][T23581]  ? kmsan_get_metadata+0x33/0x220
[ 1749.403440][T23581]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1749.408253][T23581]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1749.414823][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1749.419567][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1749.426062][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1749.431147][T23581]  do_fast_syscall_32+0x33/0x70
[ 1749.436055][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1749.440606][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1749.446983][T23581] RIP: 0023:0xf7f8b549
[ 1749.451080][T23581] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1749.470732][T23581] RSP: 002b:00000000f7f655cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1749.479189][T23581] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 1749.487303][T23581] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[ 1749.495310][T23581] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1749.503308][T23581] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1749.511306][T23581] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1749.519319][T23581]  </TASK>
[ 1749.525209][T23581] Uninit was stored to memory at:
[ 1749.530314][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1749.535980][T23581]  get_compat_msghdr+0x10c/0x280
[ 1749.540982][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1749.545854][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1749.550416][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1749.555327][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1749.561718][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1749.567009][T23581]  do_fast_syscall_32+0x33/0x70
[ 1749.572111][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1749.576689][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1749.583279][T23581] 
[ 1749.585611][T23581] Uninit was stored to memory at:
[ 1749.590707][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1749.596083][T23581]  get_compat_msghdr+0x10c/0x280
[ 1749.601076][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1749.606006][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1749.610557][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1749.615464][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1749.622023][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1749.627114][T23581]  do_fast_syscall_32+0x33/0x70
[ 1749.632207][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1749.636763][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1749.643330][T23581] 
[ 1749.645667][T23581] Uninit was stored to memory at:
[ 1749.650765][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1749.656211][T23581]  get_compat_msghdr+0x10c/0x280
[ 1749.661203][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1749.666154][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1749.670716][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1749.675660][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1749.682166][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1749.687250][T23581]  do_fast_syscall_32+0x33/0x70
[ 1749.692328][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1749.696889][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1749.703478][T23581] 
[ 1749.705814][T23581] Uninit was stored to memory at:
[ 1749.710939][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1749.716328][T23581]  get_compat_msghdr+0x10c/0x280
[ 1749.721332][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1749.726261][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1749.730817][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1749.735756][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1749.742255][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1749.747332][T23581]  do_fast_syscall_32+0x33/0x70
[ 1749.752429][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1749.756986][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1749.763563][T23581] 
[ 1749.765901][T23581] Uninit was stored to memory at:
[ 1749.770998][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1749.776369][T23581]  get_compat_msghdr+0x10c/0x280
[ 1749.781359][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1749.786383][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1749.790939][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1749.795899][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1749.802389][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1749.807460][T23581]  do_fast_syscall_32+0x33/0x70
[ 1749.812536][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1749.817085][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1749.823645][T23581] 
[ 1749.825977][T23581] Uninit was stored to memory at:
[ 1749.831073][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1749.836429][T23581]  get_compat_msghdr+0x10c/0x280
[ 1749.841416][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1749.846341][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1749.850894][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1749.855816][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1749.862304][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1749.867375][T23581]  do_fast_syscall_32+0x33/0x70
[ 1749.872460][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1749.877009][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1749.883587][T23581] 
[ 1749.885918][T23581] Uninit was stored to memory at:
[ 1749.891002][T23581]  __get_compat_msghdr+0x6ea/0x9e0
[ 1749.896358][T23581]  get_compat_msghdr+0x10c/0x280
[ 1749.901346][T23581]  ___sys_recvmsg+0x289/0xb40
[ 1749.906274][T23581]  do_recvmmsg+0x7c9/0x1200
[ 1749.910831][T23581]  __sys_recvmmsg+0x520/0x6f0
[ 1749.915750][T23581]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1749.922245][T23581]  __do_fast_syscall_32+0x95/0xf0
[ 1749.927317][T23581]  do_fast_syscall_32+0x33/0x70
[ 1749.932393][T23581]  do_SYSENTER_32+0x1b/0x20
[ 1749.936993][T23581]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1749.943678][T23581] 
[ 1749.946012][T23581] Local variable msg_sys created at:
[ 1749.951308][T23581]  do_recvmmsg+0xc9/0x1200
[ 1749.955905][T23581]  __sys_recvmmsg+0x520/0x6f0
03:49:59 executing program 5:
r0 = creat(&(0x7f0000000140)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
io_setup(0xad, &(0x7f0000000000)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000540)=[&(0x7f0000000200)={0x101010, 0x400000000000, 0x0, 0x1, 0x0, r0, &(0x7f00000000c0)=',', 0x1}])

03:49:59 executing program 1:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0xe3}, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000000080eff95"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000480)='rcu_utilization\x00', r2}, 0x10)
r3 = signalfd4(r2, &(0x7f0000000000)={[0x14]}, 0x8, 0x0)
r4 = openat$zero(0xffffffffffffff9c, &(0x7f00000001c0), 0x8202, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETPRL(0xffffffffffffffff, 0x89f4, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDPRL(r4, 0x89f5, &(0x7f0000000340)={'sit0\x00', &(0x7f0000000400)={'syztnl0\x00', 0x0, 0x4, 0x4, 0x7f, 0x800, 0x4, @rand_addr=' \x01\x00', @private2, 0x7, 0x29, 0x3, 0x5}})
sendto$inet6(r3, 0x0, 0x0, 0x0, 0x0, 0x0)
fallocate(r3, 0x4, 0x3, 0xf5da)
syz_clone(0x40900280, 0x0, 0x0, 0x0, &(0x7f0000000a80), &(0x7f0000000ac0)="24f1d5342107c074da50a1777db81c5303d020be216562a5640325019495efccb44d5102bedbeccfd97ad8676264babd4cfb01bd1fe1480db1b671889917d11cb89103807c02fb58c86080028e82505a7bc46b5b5d97692d231b4109613e33bd1808d167026f02242ecb6860fac7fb")
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000380)=@ipv4_getaddr={0x34, 0x16, 0x440, 0x70bd2c, 0x25dfdbfe, {0x2, 0x1, 0x80, 0x36}, [@IFA_BROADCAST={0x8, 0x4, @broadcast}, @IFA_CACHEINFO={0x14, 0x6, {0x0, 0x3, 0x0, 0x5}}]}, 0x34}, 0x1, 0x0, 0x0, 0x40040}, 0x20044805)
io_setup(0x100000000000c333, &(0x7f0000000180)=<r5=>0x0)
io_submit(r5, 0x20000000000001cb, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x400000000000, 0x0, 0x1, 0x0, 0xffffffffffffffff, &(0x7f0000000000), 0x377140be6b5ef4c7}])

03:49:59 executing program 4:
r0 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=[{0xc, 0x110, 0x2}], 0xc}, 0x0)

03:49:59 executing program 2:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'\x00', 0x2})
ioctl$TUNSETOFFLOAD(r0, 0x400454c9, 0x13)
ioctl$TUNSETLINK(r0, 0x400454cd, 0x339)

03:49:59 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f000000a540)={0x0, 0x0, &(0x7f000000a500)={&(0x7f0000001140)=ANY=[@ANYBLOB="b80e000030000101000000000000000000000000a40e0100a00e01000a0001007065646974000000740e0280380e020000000000000000000000000000000000000000001f"], 0xeb8}}, 0x0)

03:49:59 executing program 0:
syz_clone(0x41021500, 0x0, 0x0, &(0x7f0000000140), 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xb, 0x0, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000480)=@bpf_lsm={0x1d, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x80)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000000)={@map=0x1, 0xffffffffffffffff, 0xd}, 0x10)

[ 1750.273097][T23608] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1750.283029][T23608] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1750.295176][T23608] netlink: 56 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1750.364941][T23609] vcan0 speed is unknown, defaulting to 1000
03:49:59 executing program 2:
connect$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}}, 0x1c)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000004c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
fcntl$lock(r0, 0x24, &(0x7f0000000180))

03:49:59 executing program 4:
r0 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=[{0xc, 0x110, 0x2}], 0xc}, 0x0)

03:49:59 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f000000a540)={0x0, 0x0, &(0x7f000000a500)={&(0x7f0000001140)=ANY=[@ANYBLOB="b80e000030000101000000000000000000000000a40e0100a00e01000a0001007065646974000000740e0280380e020000000000000000000000000000000000000000001f"], 0xeb8}}, 0x0)

03:49:59 executing program 5:
r0 = creat(&(0x7f0000000140)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
io_setup(0xad, &(0x7f0000000000)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000540)=[&(0x7f0000000200)={0x101010, 0x400000000000, 0x0, 0x1, 0x0, r0, &(0x7f00000000c0)=',', 0x1}])

03:49:59 executing program 2:
connect$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}}, 0x1c)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000004c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
fcntl$lock(r0, 0x24, &(0x7f0000000180))

03:49:59 executing program 4:
r0 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=[{0xc, 0x110, 0x2}], 0xc}, 0x0)

[ 1750.950150][T23623] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1750.959898][T23623] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1750.969938][T23623] netlink: 56 bytes leftover after parsing attributes in process `syz-executor.3'.
03:50:00 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f000000a540)={0x0, 0x0, &(0x7f000000a500)={&(0x7f0000001140)=ANY=[@ANYBLOB="b80e000030000101000000000000000000000000a40e0100a00e01000a0001007065646974000000740e0280380e020000000000000000000000000000000000000000001f"], 0xeb8}}, 0x0)

[ 1751.411614][T23632] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1751.424012][T23632] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1751.434061][T23632] netlink: 56 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1751.760935][T23634] vcan0 speed is unknown, defaulting to 1000
[ 1752.210192][T23622] not chained 4390000 origins
[ 1752.215225][T23622] CPU: 1 PID: 23622 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1752.225425][T23622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1752.235514][T23622] Call Trace:
[ 1752.238820][T23622]  <TASK>
[ 1752.241769][T23622]  dump_stack_lvl+0x200/0x28c
[ 1752.246504][T23622]  dump_stack+0x29/0x2c
[ 1752.250702][T23622]  kmsan_internal_chain_origin+0x78/0x120
[ 1752.256477][T23622]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1752.262627][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1752.267790][T23622]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1752.273652][T23622]  ? __unix_dgram_recvmsg+0x19b9/0x1b80
[ 1752.279255][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1752.284412][T23622]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1752.290360][T23622]  ? should_fail+0x79/0x9c0
[ 1752.294900][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1752.300059][T23622]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1752.306350][T23622]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1752.312465][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1752.317623][T23622]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1752.323474][T23622]  __msan_chain_origin+0xbd/0x140
[ 1752.328550][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1752.333726][T23622]  get_compat_msghdr+0x10c/0x280
[ 1752.338709][T23622]  ? do_recvmmsg+0x7c9/0x1200
[ 1752.343430][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1752.348166][T23622]  ? __schedule+0x176c/0x21c0
[ 1752.352890][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1752.358048][T23622]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1752.363902][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1752.369059][T23622]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1752.374924][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1752.379475][T23622]  ? filter_irq_stacks+0xb9/0x230
[ 1752.384563][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1752.389749][T23622]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1752.394558][T23622]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1752.401116][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1752.405850][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1752.412238][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1752.417309][T23622]  do_fast_syscall_32+0x33/0x70
[ 1752.422212][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1752.426837][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1752.433204][T23622] RIP: 0023:0xf7f8b549
[ 1752.437287][T23622] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1752.456929][T23622] RSP: 002b:00000000f7f655cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1752.465376][T23622] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 1752.473371][T23622] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[ 1752.481361][T23622] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1752.489351][T23622] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1752.497344][T23622] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1752.505349][T23622]  </TASK>
[ 1752.510275][T23622] Uninit was stored to memory at:
[ 1752.515625][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1752.520853][T23622]  get_compat_msghdr+0x10c/0x280
[ 1752.525959][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1752.530741][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1752.535390][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1752.540115][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1752.546601][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1752.551674][T23622]  do_fast_syscall_32+0x33/0x70
[ 1752.556750][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1752.561292][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1752.567760][T23622] 
[ 1752.570177][T23622] Uninit was stored to memory at:
[ 1752.575428][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1752.580593][T23622]  get_compat_msghdr+0x10c/0x280
[ 1752.585695][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1752.590433][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1752.595151][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1752.599877][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1752.606426][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1752.611502][T23622]  do_fast_syscall_32+0x33/0x70
[ 1752.616554][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1752.621099][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1752.627717][T23622] 
[ 1752.630050][T23622] Uninit was stored to memory at:
[ 1752.635304][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1752.640462][T23622]  get_compat_msghdr+0x10c/0x280
[ 1752.645599][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1752.650329][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1752.654976][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1752.659706][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1752.666213][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1752.671289][T23622]  do_fast_syscall_32+0x33/0x70
[ 1752.676575][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1752.681146][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1752.687685][T23622] 
[ 1752.690023][T23622] Uninit was stored to memory at:
[ 1752.695273][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1752.700434][T23622]  get_compat_msghdr+0x10c/0x280
[ 1752.705535][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1752.710271][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1752.714960][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1752.719694][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1752.726180][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1752.731256][T23622]  do_fast_syscall_32+0x33/0x70
[ 1752.736299][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1752.740857][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1752.747361][T23622] 
[ 1752.749701][T23622] Uninit was stored to memory at:
[ 1752.754966][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1752.760135][T23622]  get_compat_msghdr+0x10c/0x280
[ 1752.765210][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1752.769942][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1752.774657][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1752.779388][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1752.785928][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1752.791006][T23622]  do_fast_syscall_32+0x33/0x70
[ 1752.796056][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1752.800604][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1752.807110][T23622] 
[ 1752.809443][T23622] Uninit was stored to memory at:
[ 1752.814693][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1752.819854][T23622]  get_compat_msghdr+0x10c/0x280
[ 1752.824982][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1752.829752][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1752.834468][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1752.839198][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1752.845695][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1752.850798][T23622]  do_fast_syscall_32+0x33/0x70
[ 1752.855845][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1752.860397][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1752.867031][T23622] 
[ 1752.869367][T23622] Uninit was stored to memory at:
[ 1752.874608][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1752.879772][T23622]  get_compat_msghdr+0x10c/0x280
[ 1752.884906][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1752.889746][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1752.894449][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1752.899277][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1752.905800][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1752.911221][T23622]  do_fast_syscall_32+0x33/0x70
[ 1752.916265][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1752.920814][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1752.927351][T23622] 
[ 1752.929689][T23622] Local variable msg_sys created at:
[ 1752.935153][T23622]  do_recvmmsg+0xc9/0x1200
[ 1752.939620][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1753.147058][T23622] not chained 4400000 origins
[ 1753.152023][T23622] CPU: 1 PID: 23622 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1753.162393][T23622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1753.172479][T23622] Call Trace:
[ 1753.175783][T23622]  <TASK>
[ 1753.178725][T23622]  dump_stack_lvl+0x200/0x28c
[ 1753.183466][T23622]  dump_stack+0x29/0x2c
[ 1753.187685][T23622]  kmsan_internal_chain_origin+0x78/0x120
[ 1753.193533][T23622]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1753.199652][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1753.204798][T23622]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1753.210672][T23622]  ? __unix_dgram_recvmsg+0x19b9/0x1b80
[ 1753.216284][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1753.221459][T23622]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1753.227333][T23622]  ? should_fail+0x79/0x9c0
[ 1753.231976][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1753.237154][T23622]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1753.243452][T23622]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1753.249592][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1753.254774][T23622]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1753.260654][T23622]  __msan_chain_origin+0xbd/0x140
[ 1753.265741][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1753.270941][T23622]  get_compat_msghdr+0x10c/0x280
[ 1753.275919][T23622]  ? do_recvmmsg+0x7c9/0x1200
[ 1753.280654][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1753.285383][T23622]  ? __schedule+0x176c/0x21c0
[ 1753.290201][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1753.295361][T23622]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1753.301234][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1753.306399][T23622]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1753.312268][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1753.316844][T23622]  ? filter_irq_stacks+0xb9/0x230
[ 1753.321942][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1753.327113][T23622]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1753.331909][T23622]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1753.338489][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1753.343229][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1753.349649][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1753.354707][T23622]  do_fast_syscall_32+0x33/0x70
[ 1753.359619][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1753.364152][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1753.370530][T23622] RIP: 0023:0xf7f8b549
[ 1753.374639][T23622] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1753.394384][T23622] RSP: 002b:00000000f7f655cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1753.402950][T23622] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 1753.410955][T23622] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[ 1753.418942][T23622] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1753.426947][T23622] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1753.434948][T23622] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1753.442991][T23622]  </TASK>
[ 1753.447439][T23622] Uninit was stored to memory at:
[ 1753.452891][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1753.458058][T23622]  get_compat_msghdr+0x10c/0x280
[ 1753.463151][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1753.467897][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1753.472554][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1753.477285][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1753.483784][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1753.488889][T23622]  do_fast_syscall_32+0x33/0x70
[ 1753.493934][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1753.498483][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1753.505008][T23622] 
[ 1753.507355][T23622] Uninit was stored to memory at:
[ 1753.512630][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1753.517817][T23622]  get_compat_msghdr+0x10c/0x280
[ 1753.522973][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1753.527706][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1753.532409][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1753.537134][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1753.543619][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1753.548716][T23622]  do_fast_syscall_32+0x33/0x70
[ 1753.553744][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1753.558293][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1753.564834][T23622] 
[ 1753.567169][T23622] Uninit was stored to memory at:
[ 1753.572411][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1753.577578][T23622]  get_compat_msghdr+0x10c/0x280
[ 1753.582713][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1753.587447][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1753.592178][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1753.596910][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1753.603458][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1753.608535][T23622]  do_fast_syscall_32+0x33/0x70
[ 1753.613609][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1753.618186][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1753.624718][T23622] 
[ 1753.627064][T23622] Uninit was stored to memory at:
[ 1753.632303][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1753.637468][T23622]  get_compat_msghdr+0x10c/0x280
[ 1753.642632][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1753.647365][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1753.652007][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1753.656759][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1753.663301][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1753.668412][T23622]  do_fast_syscall_32+0x33/0x70
[ 1753.673442][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1753.677992][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1753.684528][T23622] 
[ 1753.686865][T23622] Uninit was stored to memory at:
[ 1753.692108][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1753.697271][T23622]  get_compat_msghdr+0x10c/0x280
[ 1753.702409][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1753.707144][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1753.711715][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1753.716621][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1753.723164][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1753.728238][T23622]  do_fast_syscall_32+0x33/0x70
[ 1753.733285][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1753.737833][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1753.744344][T23622] 
[ 1753.746687][T23622] Uninit was stored to memory at:
[ 1753.751980][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1753.757142][T23622]  get_compat_msghdr+0x10c/0x280
[ 1753.762232][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1753.766965][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1753.771534][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1753.776404][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1753.783234][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1753.788316][T23622]  do_fast_syscall_32+0x33/0x70
[ 1753.793367][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1753.797917][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1753.804455][T23622] 
[ 1753.806855][T23622] Uninit was stored to memory at:
[ 1753.812113][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1753.817274][T23622]  get_compat_msghdr+0x10c/0x280
[ 1753.822397][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1753.827234][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1753.831950][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1753.836713][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1753.843255][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1753.848377][T23622]  do_fast_syscall_32+0x33/0x70
[ 1753.853448][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1753.858007][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1753.864535][T23622] 
[ 1753.866879][T23622] Local variable msg_sys created at:
[ 1753.872342][T23622]  do_recvmmsg+0xc9/0x1200
[ 1753.876847][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1754.139659][T23622] not chained 4410000 origins
[ 1754.144660][T23622] CPU: 1 PID: 23622 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1754.154890][T23622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1754.164968][T23622] Call Trace:
[ 1754.168261][T23622]  <TASK>
[ 1754.171203][T23622]  dump_stack_lvl+0x200/0x28c
[ 1754.175929][T23622]  dump_stack+0x29/0x2c
[ 1754.180152][T23622]  kmsan_internal_chain_origin+0x78/0x120
[ 1754.185923][T23622]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1754.192039][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1754.197201][T23622]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1754.203060][T23622]  ? __unix_dgram_recvmsg+0x19b9/0x1b80
[ 1754.208655][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1754.213825][T23622]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1754.219702][T23622]  ? should_fail+0x79/0x9c0
[ 1754.224245][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1754.229416][T23622]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1754.235722][T23622]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1754.241860][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1754.247032][T23622]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1754.252880][T23622]  __msan_chain_origin+0xbd/0x140
[ 1754.258299][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1754.263480][T23622]  get_compat_msghdr+0x10c/0x280
[ 1754.268483][T23622]  ? do_recvmmsg+0x7c9/0x1200
[ 1754.273203][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1754.278183][T23622]  ? __schedule+0x176c/0x21c0
[ 1754.282902][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1754.288085][T23622]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1754.294077][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1754.299319][T23622]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1754.305237][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1754.309816][T23622]  ? filter_irq_stacks+0xb9/0x230
[ 1754.314898][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1754.320254][T23622]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1754.325055][T23622]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1754.331627][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1754.336364][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1754.342803][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1754.347879][T23622]  do_fast_syscall_32+0x33/0x70
[ 1754.352755][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1754.357292][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1754.363646][T23622] RIP: 0023:0xf7f8b549
[ 1754.367721][T23622] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1754.387530][T23622] RSP: 002b:00000000f7f655cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1754.395985][T23622] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 1754.403982][T23622] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[ 1754.411970][T23622] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1754.419953][T23622] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1754.427944][T23622] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1754.435944][T23622]  </TASK>
[ 1754.440531][T23622] Uninit was stored to memory at:
[ 1754.445937][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1754.451118][T23622]  get_compat_msghdr+0x10c/0x280
[ 1754.456231][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1754.460970][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1754.465627][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1754.470356][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1754.476849][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1754.482026][T23622]  do_fast_syscall_32+0x33/0x70
[ 1754.487028][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1754.491607][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1754.498120][T23622] 
[ 1754.500455][T23622] Uninit was stored to memory at:
[ 1754.505700][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1754.510965][T23622]  get_compat_msghdr+0x10c/0x280
[ 1754.516061][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1754.520796][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1754.525498][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1754.530244][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1754.536735][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1754.541908][T23622]  do_fast_syscall_32+0x33/0x70
[ 1754.546804][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1754.551348][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1754.557893][T23622] 
[ 1754.560247][T23622] Uninit was stored to memory at:
[ 1754.565502][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1754.570661][T23622]  get_compat_msghdr+0x10c/0x280
[ 1754.575772][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1754.580500][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1754.585204][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1754.589949][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1754.596504][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1754.601578][T23622]  do_fast_syscall_32+0x33/0x70
[ 1754.606624][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1754.611171][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1754.617658][T23622] 
[ 1754.620011][T23622] Uninit was stored to memory at:
[ 1754.625284][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1754.630442][T23622]  get_compat_msghdr+0x10c/0x280
[ 1754.635532][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1754.640265][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1754.644965][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1754.649698][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1754.656275][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1754.661361][T23622]  do_fast_syscall_32+0x33/0x70
[ 1754.666424][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1754.670973][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1754.677704][T23622] 
[ 1754.680040][T23622] Uninit was stored to memory at:
[ 1754.685339][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1754.690599][T23622]  get_compat_msghdr+0x10c/0x280
[ 1754.695752][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1754.700490][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1754.705230][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1754.709961][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1754.716472][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1754.721545][T23622]  do_fast_syscall_32+0x33/0x70
[ 1754.726585][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1754.731132][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1754.737619][T23622] 
[ 1754.739952][T23622] Uninit was stored to memory at:
[ 1754.745287][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1754.750445][T23622]  get_compat_msghdr+0x10c/0x280
[ 1754.755540][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1754.760265][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1754.764961][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1754.769693][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1754.776263][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1754.781336][T23622]  do_fast_syscall_32+0x33/0x70
[ 1754.786396][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1754.790960][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1754.797468][T23622] 
[ 1754.799800][T23622] Uninit was stored to memory at:
[ 1754.805053][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1754.810221][T23622]  get_compat_msghdr+0x10c/0x280
[ 1754.815317][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1754.820142][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1754.824869][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1754.829611][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1754.836102][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1754.841185][T23622]  do_fast_syscall_32+0x33/0x70
[ 1754.846232][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1754.850790][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1754.857274][T23622] 
[ 1754.859604][T23622] Local variable msg_sys created at:
[ 1754.865068][T23622]  do_recvmmsg+0xc9/0x1200
[ 1754.869540][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1755.125048][T23622] not chained 4420000 origins
[ 1755.129776][T23622] CPU: 1 PID: 23622 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1755.140007][T23622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1755.150185][T23622] Call Trace:
[ 1755.153486][T23622]  <TASK>
[ 1755.156439][T23622]  dump_stack_lvl+0x200/0x28c
[ 1755.161179][T23622]  dump_stack+0x29/0x2c
[ 1755.165378][T23622]  kmsan_internal_chain_origin+0x78/0x120
[ 1755.171154][T23622]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1755.177295][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1755.182473][T23622]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1755.188358][T23622]  ? __unix_dgram_recvmsg+0x19b9/0x1b80
[ 1755.193962][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1755.199125][T23622]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1755.205011][T23622]  ? should_fail+0x79/0x9c0
[ 1755.209584][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1755.214756][T23622]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1755.221056][T23622]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1755.227186][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1755.232368][T23622]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1755.238229][T23622]  __msan_chain_origin+0xbd/0x140
[ 1755.243325][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1755.248504][T23622]  get_compat_msghdr+0x10c/0x280
[ 1755.253585][T23622]  ? do_recvmmsg+0x7c9/0x1200
[ 1755.258314][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1755.263051][T23622]  ? __schedule+0x176c/0x21c0
[ 1755.267779][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1755.272943][T23622]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1755.278844][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1755.284021][T23622]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1755.289897][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1755.294481][T23622]  ? filter_irq_stacks+0xb9/0x230
[ 1755.299691][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1755.304868][T23622]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1755.309679][T23622]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1755.316264][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1755.321101][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1755.327493][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1755.332566][T23622]  do_fast_syscall_32+0x33/0x70
[ 1755.337462][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1755.342015][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1755.348394][T23622] RIP: 0023:0xf7f8b549
[ 1755.352485][T23622] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1755.372139][T23622] RSP: 002b:00000000f7f655cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1755.380595][T23622] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 1755.388605][T23622] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[ 1755.396611][T23622] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1755.404621][T23622] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1755.412636][T23622] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1755.420663][T23622]  </TASK>
[ 1755.425354][T23622] Uninit was stored to memory at:
[ 1755.430460][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1755.435890][T23622]  get_compat_msghdr+0x10c/0x280
[ 1755.440887][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1755.445730][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1755.450285][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1755.455111][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1755.461497][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1755.466666][T23622]  do_fast_syscall_32+0x33/0x70
[ 1755.471561][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1755.476201][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1755.482683][T23622] 
[ 1755.485052][T23622] Uninit was stored to memory at:
[ 1755.490153][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1755.495427][T23622]  get_compat_msghdr+0x10c/0x280
[ 1755.500432][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1755.505274][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1755.509837][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1755.514678][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1755.521240][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1755.526438][T23622]  do_fast_syscall_32+0x33/0x70
[ 1755.531351][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1755.536000][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1755.542483][T23622] 
[ 1755.544812][T23622] Uninit was stored to memory at:
[ 1755.549903][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1755.555230][T23622]  get_compat_msghdr+0x10c/0x280
[ 1755.560213][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1755.565105][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1755.569666][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1755.574571][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1755.580991][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1755.586245][T23622]  do_fast_syscall_32+0x33/0x70
[ 1755.591143][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1755.595851][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1755.602328][T23622] 
[ 1755.604660][T23622] Uninit was stored to memory at:
[ 1755.609762][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1755.615077][T23622]  get_compat_msghdr+0x10c/0x280
[ 1755.620096][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1755.624936][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1755.629490][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1755.634373][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1755.640765][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1755.646008][T23622]  do_fast_syscall_32+0x33/0x70
[ 1755.650906][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1755.655608][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1755.662076][T23622] 
[ 1755.664411][T23622] Uninit was stored to memory at:
[ 1755.669497][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1755.674822][T23622]  get_compat_msghdr+0x10c/0x280
[ 1755.679812][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1755.684709][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1755.689280][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1755.694175][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1755.700558][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1755.705812][T23622]  do_fast_syscall_32+0x33/0x70
[ 1755.710707][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1755.715411][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1755.721895][T23622] 
[ 1755.724226][T23622] Uninit was stored to memory at:
[ 1755.729316][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1755.734623][T23622]  get_compat_msghdr+0x10c/0x280
[ 1755.739607][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1755.744503][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1755.749059][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1755.753981][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1755.760370][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1755.765602][T23622]  do_fast_syscall_32+0x33/0x70
[ 1755.770499][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1755.775231][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1755.781664][T23622] 
[ 1755.784245][T23622] Uninit was stored to memory at:
[ 1755.789422][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1755.795314][T23622]  get_compat_msghdr+0x10c/0x280
[ 1755.800563][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1755.805465][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1755.810025][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1755.814922][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1755.821422][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1755.826670][T23622]  do_fast_syscall_32+0x33/0x70
[ 1755.831573][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1755.836283][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1755.842765][T23622] 
[ 1755.845109][T23622] Local variable msg_sys created at:
[ 1755.850403][T23622]  do_recvmmsg+0xc9/0x1200
[ 1755.855023][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1756.160109][T23622] not chained 4430000 origins
[ 1756.164972][T23622] CPU: 1 PID: 23622 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1756.175174][T23622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1756.185351][T23622] Call Trace:
[ 1756.188658][T23622]  <TASK>
[ 1756.191617][T23622]  dump_stack_lvl+0x200/0x28c
[ 1756.196447][T23622]  dump_stack+0x29/0x2c
[ 1756.200650][T23622]  kmsan_internal_chain_origin+0x78/0x120
[ 1756.206473][T23622]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1756.212621][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1756.217798][T23622]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1756.223711][T23622]  ? __unix_dgram_recvmsg+0x19b9/0x1b80
[ 1756.229318][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1756.234501][T23622]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1756.240390][T23622]  ? should_fail+0x79/0x9c0
[ 1756.245108][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1756.250302][T23622]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1756.256626][T23622]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1756.262774][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1756.267946][T23622]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1756.273830][T23622]  __msan_chain_origin+0xbd/0x140
[ 1756.278951][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1756.284149][T23622]  get_compat_msghdr+0x10c/0x280
[ 1756.289166][T23622]  ? do_recvmmsg+0x7c9/0x1200
[ 1756.293919][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1756.298665][T23622]  ? __schedule+0x176c/0x21c0
[ 1756.303405][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1756.308572][T23622]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1756.314464][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1756.319633][T23622]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1756.325768][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1756.330351][T23622]  ? filter_irq_stacks+0xb9/0x230
[ 1756.335549][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1756.340734][T23622]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1756.345559][T23622]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1756.352134][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1756.357011][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1756.363537][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1756.368624][T23622]  do_fast_syscall_32+0x33/0x70
[ 1756.373528][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1756.378088][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1756.385172][T23622] RIP: 0023:0xf7f8b549
[ 1756.389278][T23622] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1756.409050][T23622] RSP: 002b:00000000f7f655cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1756.417516][T23622] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 1756.425531][T23622] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[ 1756.433542][T23622] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1756.441549][T23622] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1756.449556][T23622] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1756.457576][T23622]  </TASK>
[ 1756.462209][T23622] Uninit was stored to memory at:
[ 1756.467322][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1756.472785][T23622]  get_compat_msghdr+0x10c/0x280
[ 1756.477775][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1756.482595][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1756.487237][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1756.492055][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1756.498444][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1756.503642][T23622]  do_fast_syscall_32+0x33/0x70
[ 1756.508551][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1756.513208][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1756.519595][T23622] 
[ 1756.522026][T23622] Uninit was stored to memory at:
[ 1756.527122][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1756.532385][T23622]  get_compat_msghdr+0x10c/0x280
[ 1756.537376][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1756.542211][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1756.546879][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1756.551612][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1756.558104][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1756.563269][T23622]  do_fast_syscall_32+0x33/0x70
[ 1756.568164][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1756.572804][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1756.579187][T23622] 
[ 1756.581529][T23622] Uninit was stored to memory at:
[ 1756.586778][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1756.592022][T23622]  get_compat_msghdr+0x10c/0x280
[ 1756.597009][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1756.601742][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1756.606441][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1756.611170][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1756.617709][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1756.622934][T23622]  do_fast_syscall_32+0x33/0x70
[ 1756.627832][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1756.632527][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1756.638906][T23622] 
[ 1756.641237][T23622] Uninit was stored to memory at:
[ 1756.646495][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1756.651664][T23622]  get_compat_msghdr+0x10c/0x280
[ 1756.656810][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1756.661540][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1756.666245][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1756.670973][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1756.677511][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1756.682700][T23622]  do_fast_syscall_32+0x33/0x70
[ 1756.687614][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1756.692304][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1756.698682][T23622] 
[ 1756.701012][T23622] Uninit was stored to memory at:
[ 1756.706257][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1756.711505][T23622]  get_compat_msghdr+0x10c/0x280
[ 1756.716657][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1756.721393][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1756.726080][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1756.730818][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1756.737434][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1756.742666][T23622]  do_fast_syscall_32+0x33/0x70
[ 1756.747739][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1756.752444][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1756.758823][T23622] 
[ 1756.761138][T23622] Uninit was stored to memory at:
[ 1756.766457][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1756.771618][T23622]  get_compat_msghdr+0x10c/0x280
[ 1756.776754][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1756.781481][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1756.786161][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1756.790892][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1756.797371][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1756.802535][T23622]  do_fast_syscall_32+0x33/0x70
[ 1756.807449][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1756.812710][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1756.819094][T23622] 
[ 1756.821429][T23622] Uninit was stored to memory at:
[ 1756.826659][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1756.831909][T23622]  get_compat_msghdr+0x10c/0x280
[ 1756.836897][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1756.841622][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1756.846324][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1756.851055][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1756.857564][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1756.862739][T23622]  do_fast_syscall_32+0x33/0x70
[ 1756.867634][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1756.872313][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1756.878689][T23622] 
[ 1756.881016][T23622] Local variable msg_sys created at:
[ 1756.886414][T23622]  do_recvmmsg+0xc9/0x1200
[ 1756.890886][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1757.101698][T23622] not chained 4440000 origins
[ 1757.106657][T23622] CPU: 1 PID: 23622 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1757.116855][T23622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1757.126941][T23622] Call Trace:
[ 1757.130237][T23622]  <TASK>
[ 1757.133348][T23622]  dump_stack_lvl+0x200/0x28c
[ 1757.138094][T23622]  dump_stack+0x29/0x2c
[ 1757.142298][T23622]  kmsan_internal_chain_origin+0x78/0x120
[ 1757.148168][T23622]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1757.154296][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1757.159465][T23622]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1757.165344][T23622]  ? __unix_dgram_recvmsg+0x19b9/0x1b80
[ 1757.170942][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1757.176092][T23622]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1757.181976][T23622]  ? should_fail+0x79/0x9c0
[ 1757.186525][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1757.191824][T23622]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1757.198133][T23622]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 1757.204240][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1757.209418][T23622]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1757.215269][T23622]  __msan_chain_origin+0xbd/0x140
[ 1757.220358][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1757.225513][T23622]  get_compat_msghdr+0x10c/0x280
[ 1757.230488][T23622]  ? do_recvmmsg+0x7c9/0x1200
[ 1757.235203][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1757.239940][T23622]  ? sysvec_apic_timer_interrupt+0x55/0xc0
[ 1757.245794][T23622]  ? do_recvmmsg+0x87d/0x1200
[ 1757.250545][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1757.255696][T23622]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1757.261568][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1757.266215][T23622]  ? filter_irq_stacks+0xb9/0x230
[ 1757.271304][T23622]  ? kmsan_get_metadata+0x33/0x220
[ 1757.276454][T23622]  ? __sys_recvmmsg+0xb9/0x6f0
[ 1757.281339][T23622]  ? __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1757.287884][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1757.292636][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1757.299027][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1757.304129][T23622]  do_fast_syscall_32+0x33/0x70
[ 1757.309027][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1757.313731][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1757.320089][T23622] RIP: 0023:0xf7f8b549
[ 1757.324188][T23622] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1757.343841][T23622] RSP: 002b:00000000f7f655cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1757.352299][T23622] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 1757.360309][T23622] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[ 1757.368299][T23622] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1757.376299][T23622] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1757.384285][T23622] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1757.392302][T23622]  </TASK>
[ 1757.396771][T23622] Uninit was stored to memory at:
[ 1757.402628][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1757.407882][T23622]  get_compat_msghdr+0x10c/0x280
[ 1757.413144][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1757.417883][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1757.422578][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1757.427307][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1757.433853][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1757.438931][T23622]  do_fast_syscall_32+0x33/0x70
[ 1757.443976][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1757.448553][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1757.455171][T23622] 
[ 1757.457508][T23622] Uninit was stored to memory at:
[ 1757.462750][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1757.468026][T23622]  get_compat_msghdr+0x10c/0x280
[ 1757.473202][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1757.477943][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1757.482587][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1757.487345][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1757.493861][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1757.498946][T23622]  do_fast_syscall_32+0x33/0x70
[ 1757.504187][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1757.508820][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1757.515361][T23622] 
[ 1757.517697][T23622] Uninit was stored to memory at:
[ 1757.522930][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1757.528098][T23622]  get_compat_msghdr+0x10c/0x280
[ 1757.533215][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1757.538078][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1757.542816][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1757.547556][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1757.554130][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1757.559207][T23622]  do_fast_syscall_32+0x33/0x70
[ 1757.564254][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1757.568801][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1757.575306][T23622] 
[ 1757.577642][T23622] Uninit was stored to memory at:
[ 1757.582883][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1757.588043][T23622]  get_compat_msghdr+0x10c/0x280
[ 1757.593188][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1757.598006][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1757.602711][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1757.607439][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1757.613971][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1757.619139][T23622]  do_fast_syscall_32+0x33/0x70
[ 1757.624282][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1757.628827][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1757.635319][T23622] 
[ 1757.637650][T23622] Uninit was stored to memory at:
[ 1757.642877][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1757.648047][T23622]  get_compat_msghdr+0x10c/0x280
[ 1757.653190][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1757.657917][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1757.662597][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1757.667327][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1757.673863][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1757.678934][T23622]  do_fast_syscall_32+0x33/0x70
[ 1757.683957][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1757.688509][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1757.695061][T23622] 
[ 1757.697398][T23622] Uninit was stored to memory at:
[ 1757.702578][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1757.707735][T23622]  get_compat_msghdr+0x10c/0x280
[ 1757.712845][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1757.717598][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1757.722280][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1757.727015][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1757.733553][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1757.738625][T23622]  do_fast_syscall_32+0x33/0x70
[ 1757.743664][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1757.748332][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1757.754829][T23622] 
[ 1757.757173][T23622] Uninit was stored to memory at:
[ 1757.762405][T23622]  __get_compat_msghdr+0x6ea/0x9e0
[ 1757.767564][T23622]  get_compat_msghdr+0x10c/0x280
[ 1757.772705][T23622]  ___sys_recvmsg+0x289/0xb40
[ 1757.777434][T23622]  do_recvmmsg+0x7c9/0x1200
[ 1757.782100][T23622]  __sys_recvmmsg+0x520/0x6f0
[ 1757.786825][T23622]  __ia32_compat_sys_recvmmsg_time32+0x16b/0x1d0
[ 1757.793375][T23622]  __do_fast_syscall_32+0x95/0xf0
[ 1757.798457][T23622]  do_fast_syscall_32+0x33/0x70
[ 1757.803516][T23622]  do_SYSENTER_32+0x1b/0x20
[ 1757.808070][T23622]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1757.814607][T23622] 
[ 1757.816943][T23622] Local variable msg_sys created at:
[ 1757.822380][T23622]  do_recvmmsg+0xc9/0x1200
[ 1757.826842][T23622]  __sys_recvmmsg+0x520/0x6f0
03:50:07 executing program 0:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000000040)=[@in={0x2, 0x0, @local}], 0x10)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x24, 0x0, 0x0)

03:50:07 executing program 5:
unshare(0x40000400)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
r1 = socket(0x11, 0x800000003, 0x0)
bind(r1, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80)
getsockname$packet(r1, &(0x7f00000003c0)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14)
r3 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=@newqdisc={0x4c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c}}]}, 0x4c}}, 0x0)
sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f0000000080)={0x2, 0x4e20}, 0x10)

03:50:07 executing program 2:
connect$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}}, 0x1c)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000004c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
fcntl$lock(r0, 0x24, &(0x7f0000000180))

03:50:07 executing program 4:
r0 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=[{0xc, 0x110, 0x2}], 0xc}, 0x0)

03:50:07 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f000000a540)={0x0, 0x0, &(0x7f000000a500)={&(0x7f0000001140)=ANY=[@ANYBLOB="b80e000030000101000000000000000000000000a40e0100a00e01000a0001007065646974000000740e0280380e020000000000000000000000000000000000000000001f"], 0xeb8}}, 0x0)

03:50:07 executing program 1:
r0 = openat$capi20(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$CAPI_GET_PROFILE(r0, 0xc0404309, &(0x7f0000000040)=0x5)

03:50:07 executing program 0:
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xc, 0x6, &(0x7f0000000000)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x11, 0x1a001000050}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x8}, @exit]}, &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70)

[ 1758.275724][T23644] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1758.286287][T23644] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1758.296212][T23644] netlink: 56 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1758.367554][T23642] vcan0 speed is unknown, defaulting to 1000
03:50:07 executing program 2:
connect$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}}, 0x1c)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000004c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
fcntl$lock(r0, 0x24, &(0x7f0000000180))

03:50:07 executing program 4:
r0 = syz_io_uring_setup(0x35a5, &(0x7f0000000040), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ff6000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000100))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x100910, r0, 0x0)

03:50:07 executing program 3:
r0 = socket$inet(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000200)={0x2, 0x1004e20}, 0x10)
connect$inet(r0, &(0x7f00000002c0)={0x2, 0x4e20, @loopback}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x14)
setsockopt$sock_int(r0, 0x1, 0x28, &(0x7f0000000000)=0x5, 0x4)
recvmmsg(r0, &(0x7f0000003c80), 0x38e, 0x62, 0x0)

03:50:07 executing program 1:
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r0, 0x8931, &(0x7f0000000040)={'macvtap0\x00'})

03:50:07 executing program 0:
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xc, 0x6, &(0x7f0000000000)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x11, 0x1a001000050}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x8}, @exit]}, &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70)

03:50:07 executing program 2:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000200)={0x3, &(0x7f0000000180)=[{0x2d}, {0x5c}, {0x6, 0x0, 0x0, 0x7fff8002}]})
io_setup(0x10000, &(0x7f0000000080))

03:50:09 executing program 5:
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040), 0x82, 0x0)
io_setup(0x9, &(0x7f0000001c00)=<r1=>0x0)
io_submit(r1, 0xc3, &(0x7f0000000440)=[&(0x7f0000000000)={0x4, 0x960000, 0x0, 0x1, 0x0, r0, &(0x7f00000001c0)="10000040040000000000000000000000b22025285db74192e7576d9062ec6e2fe8ffff3ff248691861d03a71091d334252afb1af5b8f0474c2ed58338226131291198f3d70dcf797ac42d0eeed042c06b56b89f02f92b12ebe4c45948a362a76def2f4955f100a13131f474b140942110257e173cea102775e1b3873ebf98dac6421f6d449544114b8ce29f4b48d1738b5be127a96f24c9d3c130e1a6c2eb5b3f12eb6a1f5051594545cbb895e65d83c08d2d6cd56694e5a6c00f54aceaf498f57b2a56634a23ae7", 0x40000010}])

03:50:09 executing program 3:
r0 = socket$inet(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000200)={0x2, 0x1004e20}, 0x10)
connect$inet(r0, &(0x7f00000002c0)={0x2, 0x4e20, @loopback}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x14)
setsockopt$sock_int(r0, 0x1, 0x28, &(0x7f0000000000)=0x5, 0x4)
recvmmsg(r0, &(0x7f0000003c80), 0x38e, 0x62, 0x0)

03:50:09 executing program 4:
r0 = syz_io_uring_setup(0x35a5, &(0x7f0000000040), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ff6000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000100))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x100910, r0, 0x0)

03:50:09 executing program 0:
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xc, 0x6, &(0x7f0000000000)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x11, 0x1a001000050}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x8}, @exit]}, &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70)

03:50:09 executing program 1:
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r0, 0x8931, &(0x7f0000000040)={'macvtap0\x00'})

03:50:09 executing program 2:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000200)={0x3, &(0x7f0000000180)=[{0x2d}, {0x5c}, {0x6, 0x0, 0x0, 0x7fff8002}]})
io_setup(0x10000, &(0x7f0000000080))

03:50:09 executing program 0:
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xc, 0x6, &(0x7f0000000000)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x11, 0x1a001000050}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x8}, @exit]}, &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70)

03:50:09 executing program 1:
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r0, 0x8931, &(0x7f0000000040)={'macvtap0\x00'})

03:50:09 executing program 3:
r0 = socket$inet(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000200)={0x2, 0x1004e20}, 0x10)
connect$inet(r0, &(0x7f00000002c0)={0x2, 0x4e20, @loopback}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x14)
setsockopt$sock_int(r0, 0x1, 0x28, &(0x7f0000000000)=0x5, 0x4)
recvmmsg(r0, &(0x7f0000003c80), 0x38e, 0x62, 0x0)

03:50:09 executing program 4:
r0 = syz_io_uring_setup(0x35a5, &(0x7f0000000040), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ff6000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000100))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x100910, r0, 0x0)

03:50:09 executing program 2:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000200)={0x3, &(0x7f0000000180)=[{0x2d}, {0x5c}, {0x6, 0x0, 0x0, 0x7fff8002}]})
io_setup(0x10000, &(0x7f0000000080))

03:50:09 executing program 5:
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040), 0x82, 0x0)
io_setup(0x9, &(0x7f0000001c00)=<r1=>0x0)
io_submit(r1, 0xc3, &(0x7f0000000440)=[&(0x7f0000000000)={0x4, 0x960000, 0x0, 0x1, 0x0, r0, &(0x7f00000001c0)="10000040040000000000000000000000b22025285db74192e7576d9062ec6e2fe8ffff3ff248691861d03a71091d334252afb1af5b8f0474c2ed58338226131291198f3d70dcf797ac42d0eeed042c06b56b89f02f92b12ebe4c45948a362a76def2f4955f100a13131f474b140942110257e173cea102775e1b3873ebf98dac6421f6d449544114b8ce29f4b48d1738b5be127a96f24c9d3c130e1a6c2eb5b3f12eb6a1f5051594545cbb895e65d83c08d2d6cd56694e5a6c00f54aceaf498f57b2a56634a23ae7", 0x40000010}])

03:50:10 executing program 1:
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r0, 0x8931, &(0x7f0000000040)={'macvtap0\x00'})

03:50:10 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000700), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_RESET_STATS(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000a000000180004800500010062726f6164636173742d6c696e6b0b"], 0x2c}}, 0x0)

03:50:10 executing program 4:
r0 = syz_io_uring_setup(0x35a5, &(0x7f0000000040), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ff6000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000100))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x100910, r0, 0x0)

03:50:10 executing program 3:
r0 = socket$inet(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000200)={0x2, 0x1004e20}, 0x10)
connect$inet(r0, &(0x7f00000002c0)={0x2, 0x4e20, @loopback}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x14)
setsockopt$sock_int(r0, 0x1, 0x28, &(0x7f0000000000)=0x5, 0x4)
recvmmsg(r0, &(0x7f0000003c80), 0x38e, 0x62, 0x0)

[ 1761.548915][T23697] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
03:50:10 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000180)={0x2, 0x0, @dev}, 0x10)
sendmmsg$inet(r0, &(0x7f0000000740)=[{{&(0x7f0000000140)={0x2, 0x0, @dev}, 0x10, &(0x7f0000000580)=[{&(0x7f00000001c0)='W', 0x1}], 0x1}}], 0x1, 0x0)

03:50:10 executing program 5:
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040), 0x82, 0x0)
io_setup(0x9, &(0x7f0000001c00)=<r1=>0x0)
io_submit(r1, 0xc3, &(0x7f0000000440)=[&(0x7f0000000000)={0x4, 0x960000, 0x0, 0x1, 0x0, r0, &(0x7f00000001c0)="10000040040000000000000000000000b22025285db74192e7576d9062ec6e2fe8ffff3ff248691861d03a71091d334252afb1af5b8f0474c2ed58338226131291198f3d70dcf797ac42d0eeed042c06b56b89f02f92b12ebe4c45948a362a76def2f4955f100a13131f474b140942110257e173cea102775e1b3873ebf98dac6421f6d449544114b8ce29f4b48d1738b5be127a96f24c9d3c130e1a6c2eb5b3f12eb6a1f5051594545cbb895e65d83c08d2d6cd56694e5a6c00f54aceaf498f57b2a56634a23ae7", 0x40000010}])

03:50:10 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000700), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_RESET_STATS(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000a000000180004800500010062726f6164636173742d6c696e6b0b"], 0x2c}}, 0x0)

03:50:10 executing program 3:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x16}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0x2103, 0x0)

03:50:10 executing program 4:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000000740)=[{{&(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1}, 0x1c, 0x0}}, {{&(0x7f0000000040)={0xa, 0x0, 0x0, @mcast1}, 0x1c, 0x0, 0x0, &(0x7f0000000080)=[@hopopts={{0x18, 0x29, 0x2}}], 0x18}}], 0x2, 0x0)

[ 1762.055229][T23706] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1762.064796][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1762.108350][T23708] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
03:50:11 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000180)={0x2, 0x0, @dev}, 0x10)
sendmmsg$inet(r0, &(0x7f0000000740)=[{{&(0x7f0000000140)={0x2, 0x0, @dev}, 0x10, &(0x7f0000000580)=[{&(0x7f00000001c0)='W', 0x1}], 0x1}}], 0x1, 0x0)

03:50:11 executing program 2:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000200)={0x3, &(0x7f0000000180)=[{0x2d}, {0x5c}, {0x6, 0x0, 0x0, 0x7fff8002}]})
io_setup(0x10000, &(0x7f0000000080))

03:50:11 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000700), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_RESET_STATS(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000a000000180004800500010062726f6164636173742d6c696e6b0b"], 0x2c}}, 0x0)

03:50:11 executing program 4:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000000740)=[{{&(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1}, 0x1c, 0x0}}, {{&(0x7f0000000040)={0xa, 0x0, 0x0, @mcast1}, 0x1c, 0x0, 0x0, &(0x7f0000000080)=[@hopopts={{0x18, 0x29, 0x2}}], 0x18}}], 0x2, 0x0)

03:50:11 executing program 5:
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040), 0x82, 0x0)
io_setup(0x9, &(0x7f0000001c00)=<r1=>0x0)
io_submit(r1, 0xc3, &(0x7f0000000440)=[&(0x7f0000000000)={0x4, 0x960000, 0x0, 0x1, 0x0, r0, &(0x7f00000001c0)="10000040040000000000000000000000b22025285db74192e7576d9062ec6e2fe8ffff3ff248691861d03a71091d334252afb1af5b8f0474c2ed58338226131291198f3d70dcf797ac42d0eeed042c06b56b89f02f92b12ebe4c45948a362a76def2f4955f100a13131f474b140942110257e173cea102775e1b3873ebf98dac6421f6d449544114b8ce29f4b48d1738b5be127a96f24c9d3c130e1a6c2eb5b3f12eb6a1f5051594545cbb895e65d83c08d2d6cd56694e5a6c00f54aceaf498f57b2a56634a23ae7", 0x40000010}])

[ 1762.325740][   T24] audit: type=1326 audit(2000001011.200:826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=23712 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f26549 code=0x0
[ 1762.629496][T23721] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1762.666869][T23720] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
03:50:11 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000700), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_RESET_STATS(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000a000000180004800500010062726f6164636173742d6c696e6b0b"], 0x2c}}, 0x0)

[ 1762.676545][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1762.803012][T23727] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
03:50:11 executing program 4:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000000740)=[{{&(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1}, 0x1c, 0x0}}, {{&(0x7f0000000040)={0xa, 0x0, 0x0, @mcast1}, 0x1c, 0x0, 0x0, &(0x7f0000000080)=[@hopopts={{0x18, 0x29, 0x2}}], 0x18}}], 0x2, 0x0)

03:50:11 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000180)={0x2, 0x0, @dev}, 0x10)
sendmmsg$inet(r0, &(0x7f0000000740)=[{{&(0x7f0000000140)={0x2, 0x0, @dev}, 0x10, &(0x7f0000000580)=[{&(0x7f00000001c0)='W', 0x1}], 0x1}}], 0x1, 0x0)

03:50:11 executing program 5:
ioctl$USBDEVFS_BULK(0xffffffffffffffff, 0xc0105502, &(0x7f0000000100)={{}, 0x5, 0x0, &(0x7f00000000c0)="3861b10c51"})
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f00000000c0)={0x1, [<r1=>0x0]}, &(0x7f0000000100)=0x8)
setsockopt$inet_sctp_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000580)={r1}, 0x10)

03:50:11 executing program 2:
syz_usb_connect$uac1(0x0, 0x71, &(0x7f0000000000)={{0x12, 0x1, 0x310, 0x0, 0x0, 0x0, 0x20, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5f, 0x3, 0x1, 0x0, 0x0, 0x0, {{}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x1, 0x9, 0x0, 0x0, 0x0, 0x0, {0x7}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x82, 0x9, 0x0, 0x0, 0x0, 0x0, {0x7}}}}}}}]}}, &(0x7f00000005c0)={0x0, 0x0, 0xf, &(0x7f00000001c0)={0x5, 0xf, 0xf, 0x1, [@generic={0xa, 0x10, 0x3, "36e72da5354796"}]}})

03:50:12 executing program 3:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x16}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0x2103, 0x0)

03:50:12 executing program 0:
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
connect$tipc(r0, &(0x7f0000000040)=@id, 0x10)

[ 1763.322436][T23736] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1763.332001][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
03:50:12 executing program 5:
ioctl$USBDEVFS_BULK(0xffffffffffffffff, 0xc0105502, &(0x7f0000000100)={{}, 0x5, 0x0, &(0x7f00000000c0)="3861b10c51"})
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f00000000c0)={0x1, [<r1=>0x0]}, &(0x7f0000000100)=0x8)
setsockopt$inet_sctp_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000580)={r1}, 0x10)

03:50:12 executing program 4:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000000740)=[{{&(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1}, 0x1c, 0x0}}, {{&(0x7f0000000040)={0xa, 0x0, 0x0, @mcast1}, 0x1c, 0x0, 0x0, &(0x7f0000000080)=[@hopopts={{0x18, 0x29, 0x2}}], 0x18}}], 0x2, 0x0)

03:50:12 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000180)={0x2, 0x0, @dev}, 0x10)
sendmmsg$inet(r0, &(0x7f0000000740)=[{{&(0x7f0000000140)={0x2, 0x0, @dev}, 0x10, &(0x7f0000000580)=[{&(0x7f00000001c0)='W', 0x1}], 0x1}}], 0x1, 0x0)

03:50:12 executing program 0:
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
connect$tipc(r0, &(0x7f0000000040)=@id, 0x10)

[ 1763.519454][   T24] audit: type=1326 audit(2000001012.390:827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=23738 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f26549 code=0x0
03:50:12 executing program 2:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x16}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0x2103, 0x0)

03:50:12 executing program 4:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x16}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0x2103, 0x0)

03:50:12 executing program 5:
ioctl$USBDEVFS_BULK(0xffffffffffffffff, 0xc0105502, &(0x7f0000000100)={{}, 0x5, 0x0, &(0x7f00000000c0)="3861b10c51"})
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f00000000c0)={0x1, [<r1=>0x0]}, &(0x7f0000000100)=0x8)
setsockopt$inet_sctp_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000580)={r1}, 0x10)

[ 1763.966119][T23747] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1763.975680][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
03:50:13 executing program 0:
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
connect$tipc(r0, &(0x7f0000000040)=@id, 0x10)

[ 1764.278183][   T24] audit: type=1326 audit(2000001013.150:828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=23749 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7ff9549 code=0x0
03:50:13 executing program 1:
mprotect(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0)
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
mbind(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0x0, 0x0, 0x0)
mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2)

03:50:13 executing program 3:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x16}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0x2103, 0x0)

[ 1764.394862][   T24] audit: type=1326 audit(2000001013.180:829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=23750 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f8e549 code=0x0
03:50:13 executing program 5:
ioctl$USBDEVFS_BULK(0xffffffffffffffff, 0xc0105502, &(0x7f0000000100)={{}, 0x5, 0x0, &(0x7f00000000c0)="3861b10c51"})
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f00000000c0)={0x1, [<r1=>0x0]}, &(0x7f0000000100)=0x8)
setsockopt$inet_sctp_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000580)={r1}, 0x10)

03:50:13 executing program 1:
mprotect(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0)
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
mbind(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0x0, 0x0, 0x0)
mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2)

03:50:13 executing program 0:
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
connect$tipc(r0, &(0x7f0000000040)=@id, 0x10)

[ 1764.755537][   T24] audit: type=1326 audit(2000001013.630:830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=23761 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f26549 code=0x0
03:50:13 executing program 5:
r0 = syz_open_dev$loop(&(0x7f00000001c0), 0xa5, 0x0)
setresuid(0xee00, 0xee01, 0x0)
ioctl$LOOP_GET_STATUS64(r0, 0x1269, &(0x7f0000000000))

03:50:14 executing program 1:
mprotect(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0)
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
mbind(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0x0, 0x0, 0x0)
mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2)

03:50:14 executing program 2:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x16}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0x2103, 0x0)

03:50:14 executing program 4:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x16}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0x2103, 0x0)

03:50:14 executing program 0:
r0 = gettid()
getpgid(r0)
getpgrp(0xffffffffffffffff)
syz_clone(0xc00ac080, &(0x7f0000000080)="b47cdc860214e3b036c3dac643c79c128a9f447bbffb95dc19ebaf339e3823f46e1320a63959b08ca6205ed780b51644a94894df15c80695b9c51af61b9b4de64ce377e26456d347668ad89ab6720f0ea1601e0f87007b6035409da6", 0x5c, &(0x7f0000000100), &(0x7f0000000140), &(0x7f0000000180)="42b766e9303329219f3a693478b994600ec891c15df125da1ec05edff8853aa0acf7dd819da4a5a622ad485e018798379eebee333f278a90e0b66ed0fe9ce494a2a213ab6b0c142cbf1c83e670ed5bab2d1b09b6b8132da0cc309a696de245cb26adbf7aebb666ebc865a0c0d93e7e53731dc645726679720ee22132d4d77d798adf7f66243e903a0cd7c07501cfbd7ba654540d88912653e833")

03:50:14 executing program 5:
r0 = syz_open_dev$loop(&(0x7f00000001c0), 0xa5, 0x0)
setresuid(0xee00, 0xee01, 0x0)
ioctl$LOOP_GET_STATUS64(r0, 0x1269, &(0x7f0000000000))

[ 1765.494868][   T24] audit: type=1326 audit(2000001014.370:831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=23774 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7ff9549 code=0x0
03:50:14 executing program 1:
mprotect(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0)
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
mbind(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0x0, 0x0, 0x0)
mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2)

[ 1765.614111][   T24] audit: type=1326 audit(2000001014.460:832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=23775 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f8e549 code=0x0
[ 1765.666613][T23778] vcan0 speed is unknown, defaulting to 1000
03:50:14 executing program 3:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x16}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0x2103, 0x0)

03:50:14 executing program 5:
r0 = syz_open_dev$loop(&(0x7f00000001c0), 0xa5, 0x0)
setresuid(0xee00, 0xee01, 0x0)
ioctl$LOOP_GET_STATUS64(r0, 0x1269, &(0x7f0000000000))

03:50:15 executing program 1:
syz_emit_ethernet(0x36, &(0x7f0000000140)={@local, @random="39dfa1bc872c", @void, {@ipv4={0x800, @dccp={{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x21, 0x0, @remote, @local, {[@timestamp_prespec={0x44, 0x4}]}}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "180819", 0x0, '01i'}}}}}}, 0x0)

[ 1766.154038][   T24] audit: type=1326 audit(2000001015.020:833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=23787 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f26549 code=0x0
03:50:15 executing program 5:
r0 = syz_open_dev$loop(&(0x7f00000001c0), 0xa5, 0x0)
setresuid(0xee00, 0xee01, 0x0)
ioctl$LOOP_GET_STATUS64(r0, 0x1269, &(0x7f0000000000))

03:50:15 executing program 2:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x16}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0x2103, 0x0)

03:50:15 executing program 4:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x16}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0x2103, 0x0)

03:50:15 executing program 0:
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$sock_inet_tcp_SIOCOUTQ(r0, 0x8901, &(0x7f00000000c0))

[ 1766.493654][T23792] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
03:50:15 executing program 1:
syz_emit_ethernet(0x36, &(0x7f0000000140)={@local, @random="39dfa1bc872c", @void, {@ipv4={0x800, @dccp={{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x21, 0x0, @remote, @local, {[@timestamp_prespec={0x44, 0x4}]}}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "180819", 0x0, '01i'}}}}}}, 0x0)

03:50:15 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000002280)=[@in={0x2, 0x4e20, @dev}], 0x10)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e20, 0x0, @loopback}], 0x1c)

[ 1766.774210][   T24] audit: type=1326 audit(2000001015.650:834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=23794 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7ff9549 code=0x0
[ 1766.850673][   T24] audit: type=1326 audit(2000001015.710:835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=23796 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f8e549 code=0x0
03:50:15 executing program 0:
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$sock_inet_tcp_SIOCOUTQ(r0, 0x8901, &(0x7f00000000c0))

[ 1767.051718][T23804] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
03:50:16 executing program 3:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000600)=ANY=[@ANYBLOB="18000000", @ANYRES16=r1, @ANYBLOB="ad4300000000000000000100000004000180"], 0x18}}, 0x0)

03:50:16 executing program 1:
syz_emit_ethernet(0x36, &(0x7f0000000140)={@local, @random="39dfa1bc872c", @void, {@ipv4={0x800, @dccp={{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x21, 0x0, @remote, @local, {[@timestamp_prespec={0x44, 0x4}]}}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "180819", 0x0, '01i'}}}}}}, 0x0)

03:50:16 executing program 5:
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
lsetxattr$system_posix_acl(&(0x7f0000000140)='./file1\x00', &(0x7f0000000480)='system.posix_acl_default\x00', &(0x7f0000000040)=ANY=[@ANYBLOB="020000000100000000000000040000000000000020"], 0x1c, 0x0)
creat(&(0x7f0000000080)='./file1/file0\x00', 0x0)

03:50:16 executing program 0:
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$sock_inet_tcp_SIOCOUTQ(r0, 0x8901, &(0x7f00000000c0))

03:50:16 executing program 3:
r0 = socket(0x1, 0x3, 0x0)
ioctl$sock_qrtr_TIOCINQ(r0, 0x541b, &(0x7f0000000000))

[ 1767.594938][T23812] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
03:50:16 executing program 2:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmsg$inet6(r0, &(0x7f0000000380)={&(0x7f0000000100)={0xa, 0x0, 0x0, @local}, 0x1c, 0x0, 0x0, &(0x7f0000000140)=[@rthdr={{0x24, 0x29, 0x39, {0x0, 0x2, 0x2, 0x1, 0x0, [@remote]}}}, @rthdrdstopts={{0x14}}], 0x38}, 0x0)

03:50:16 executing program 0:
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$sock_inet_tcp_SIOCOUTQ(r0, 0x8901, &(0x7f00000000c0))

03:50:16 executing program 1:
syz_emit_ethernet(0x36, &(0x7f0000000140)={@local, @random="39dfa1bc872c", @void, {@ipv4={0x800, @dccp={{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x21, 0x0, @remote, @local, {[@timestamp_prespec={0x44, 0x4}]}}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "180819", 0x0, '01i'}}}}}}, 0x0)

03:50:16 executing program 4:
unshare(0x40400)
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$sock_int(r0, 0x1, 0xd, 0x0, 0x0)

03:50:16 executing program 5:
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
lsetxattr$system_posix_acl(&(0x7f0000000140)='./file1\x00', &(0x7f0000000480)='system.posix_acl_default\x00', &(0x7f0000000040)=ANY=[@ANYBLOB="020000000100000000000000040000000000000020"], 0x1c, 0x0)
creat(&(0x7f0000000080)='./file1/file0\x00', 0x0)

03:50:16 executing program 3:
r0 = socket(0x1, 0x3, 0x0)
ioctl$sock_qrtr_TIOCINQ(r0, 0x541b, &(0x7f0000000000))

03:50:17 executing program 2:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmsg$inet6(r0, &(0x7f0000000380)={&(0x7f0000000100)={0xa, 0x0, 0x0, @local}, 0x1c, 0x0, 0x0, &(0x7f0000000140)=[@rthdr={{0x24, 0x29, 0x39, {0x0, 0x2, 0x2, 0x1, 0x0, [@remote]}}}, @rthdrdstopts={{0x14}}], 0x38}, 0x0)

03:50:17 executing program 0:
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0xc)
mlock2(&(0x7f000004c000/0x4000)=nil, 0x4000, 0x0)
r0 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/mm/ksm/run\x00', 0x1, 0x0)
write$sysctl(r0, &(0x7f0000000300)='1\x00', 0x1)
write$sysctl(r0, &(0x7f0000000000)='2\x00', 0x2)

03:50:17 executing program 4:
unshare(0x40400)
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$sock_int(r0, 0x1, 0xd, 0x0, 0x0)

[ 1768.253307][T23826] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
03:50:17 executing program 3:
r0 = socket(0x1, 0x3, 0x0)
ioctl$sock_qrtr_TIOCINQ(r0, 0x541b, &(0x7f0000000000))

03:50:17 executing program 1:
r0 = syz_open_procfs(0x0, &(0x7f00000004c0)='mountstats\x00')
preadv(r0, &(0x7f0000001400)=[{&(0x7f0000000180)=""/177, 0xb1}], 0x1, 0x7a, 0x0)

03:50:17 executing program 5:
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
lsetxattr$system_posix_acl(&(0x7f0000000140)='./file1\x00', &(0x7f0000000480)='system.posix_acl_default\x00', &(0x7f0000000040)=ANY=[@ANYBLOB="020000000100000000000000040000000000000020"], 0x1c, 0x0)
creat(&(0x7f0000000080)='./file1/file0\x00', 0x0)

03:50:17 executing program 4:
unshare(0x40400)
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$sock_int(r0, 0x1, 0xd, 0x0, 0x0)

03:50:17 executing program 2:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmsg$inet6(r0, &(0x7f0000000380)={&(0x7f0000000100)={0xa, 0x0, 0x0, @local}, 0x1c, 0x0, 0x0, &(0x7f0000000140)=[@rthdr={{0x24, 0x29, 0x39, {0x0, 0x2, 0x2, 0x1, 0x0, [@remote]}}}, @rthdrdstopts={{0x14}}], 0x38}, 0x0)

03:50:17 executing program 0:
r0 = socket(0x10, 0x2, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000080)={0x7ff}, 0x10)
write(r0, &(0x7f0000000280)="3200000012009b8a140000003b9b301f070000000000000001000000", 0x32)

03:50:17 executing program 3:
r0 = socket(0x1, 0x3, 0x0)
ioctl$sock_qrtr_TIOCINQ(r0, 0x541b, &(0x7f0000000000))

03:50:17 executing program 1:
r0 = openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$6lowpan_control(r0, &(0x7f0000000080)='connect aa:aa:aa:aa:aa:10 0', 0x1b)

03:50:17 executing program 5:
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
lsetxattr$system_posix_acl(&(0x7f0000000140)='./file1\x00', &(0x7f0000000480)='system.posix_acl_default\x00', &(0x7f0000000040)=ANY=[@ANYBLOB="020000000100000000000000040000000000000020"], 0x1c, 0x0)
creat(&(0x7f0000000080)='./file1/file0\x00', 0x0)

[ 1769.054660][T23849] netlink: 18 bytes leftover after parsing attributes in process `syz-executor.0'.
03:50:18 executing program 4:
unshare(0x40400)
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$sock_int(r0, 0x1, 0xd, 0x0, 0x0)

03:50:18 executing program 2:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmsg$inet6(r0, &(0x7f0000000380)={&(0x7f0000000100)={0xa, 0x0, 0x0, @local}, 0x1c, 0x0, 0x0, &(0x7f0000000140)=[@rthdr={{0x24, 0x29, 0x39, {0x0, 0x2, 0x2, 0x1, 0x0, [@remote]}}}, @rthdrdstopts={{0x14}}], 0x38}, 0x0)

03:50:18 executing program 0:
r0 = socket(0x10, 0x2, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000080)={0x7ff}, 0x10)
write(r0, &(0x7f0000000280)="3200000012009b8a140000003b9b301f070000000000000001000000", 0x32)

03:50:18 executing program 3:
setuid(0xee01)
r0 = socket$netlink(0x10, 0x3, 0xa)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, 0x0, 0x0)

03:50:18 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_procfs(0xffffffffffffffff, 0x0)
r2 = open(&(0x7f00000000c0)='./file0\x00', 0x1050c2, 0x0)
setuid(0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000d40)=[{{&(0x7f0000000840)=@abs={0x1}, 0x6e, &(0x7f0000000cc0)=[{0x0}, {0x0}], 0x2, 0x0, 0x0, 0x800}}], 0x1, 0x24000801)
r3 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
write(r2, &(0x7f0000001400)="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"/3584, 0xe00)
sendfile(r2, r3, 0x0, 0x11f06)

03:50:18 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x40, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IE={0x11, 0x2a, [@random={0xdd, 0xb, 'abcdefghijk'}]}, @NL80211_ATTR_SCAN_SSIDS={0x10, 0x2d, 0x0, 0x1, [{0xa, 0x0, @default_ap_ssid}]}]}, 0x40}}, 0x0)
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000040)=@mgmt_frame=@beacon={@wo_ht={{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}, 0x36)
nanosleep(&(0x7f0000000080)={0x0, 0x4c4b40}, &(0x7f00000000c0))
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000340)=@mgmt_frame=@probe_response={@wo_ht={{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void}, 0x36)

[ 1769.558641][T23861] netlink: 18 bytes leftover after parsing attributes in process `syz-executor.0'.
03:50:18 executing program 3:
setuid(0xee01)
r0 = socket$netlink(0x10, 0x3, 0xa)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, 0x0, 0x0)

03:50:18 executing program 5:
r0 = socket$inet(0x2, 0x840000000003, 0x2)
setsockopt$inet_int(r0, 0x0, 0x200000000000c8, &(0x7f0000000040), 0x4)
setsockopt$inet_int(r0, 0x0, 0xcb, 0x0, 0x0)

03:50:18 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$llc_int(r0, 0x10c, 0x0, 0x0, 0x0)

03:50:18 executing program 0:
r0 = socket(0x10, 0x2, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000080)={0x7ff}, 0x10)
write(r0, &(0x7f0000000280)="3200000012009b8a140000003b9b301f070000000000000001000000", 0x32)

[ 1769.846375][   T24] audit: type=1800 audit(2000001018.720:836): pid=23867 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="file0" dev="sda1" ino=1171 res=0 errno=0
[ 1769.868559][   T24] audit: type=1804 audit(2000001018.720:837): pid=23867 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="file0" dev="sda1" ino=1171 res=1 errno=0
[ 1769.929729][T23868] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1770.032253][T23868] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1770.150179][T23877] netlink: 18 bytes leftover after parsing attributes in process `syz-executor.0'.
03:50:19 executing program 2:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x40001001}], 0x10, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = creat(&(0x7f0000000040)='./bus\x00', 0x140)
accept4(0xffffffffffffffff, 0x0, &(0x7f0000000140), 0x80000)
ftruncate(r2, 0x800)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
statx(0xffffffffffffffff, &(0x7f0000000780)='./file1\x00', 0x4000, 0x7ff, 0x0)
lseek(r2, 0x200, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5}, 0x0)
r3 = open(&(0x7f0000000440)='./bus\x00', 0x24080, 0x0)
sendfile(r2, r3, 0x0, 0x10000)

03:50:19 executing program 3:
setuid(0xee01)
r0 = socket$netlink(0x10, 0x3, 0xa)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, 0x0, 0x0)

03:50:19 executing program 5:
r0 = socket$inet(0x2, 0x840000000003, 0x2)
setsockopt$inet_int(r0, 0x0, 0x200000000000c8, &(0x7f0000000040), 0x4)
setsockopt$inet_int(r0, 0x0, 0xcb, 0x0, 0x0)

03:50:19 executing program 0:
r0 = socket(0x10, 0x2, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000080)={0x7ff}, 0x10)
write(r0, &(0x7f0000000280)="3200000012009b8a140000003b9b301f070000000000000001000000", 0x32)

03:50:19 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x40, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IE={0x11, 0x2a, [@random={0xdd, 0xb, 'abcdefghijk'}]}, @NL80211_ATTR_SCAN_SSIDS={0x10, 0x2d, 0x0, 0x1, [{0xa, 0x0, @default_ap_ssid}]}]}, 0x40}}, 0x0)
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000040)=@mgmt_frame=@beacon={@wo_ht={{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}, 0x36)
nanosleep(&(0x7f0000000080)={0x0, 0x4c4b40}, &(0x7f00000000c0))
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000340)=@mgmt_frame=@probe_response={@wo_ht={{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void}, 0x36)

[ 1770.617088][T23885] netlink: 18 bytes leftover after parsing attributes in process `syz-executor.0'.
03:50:19 executing program 3:
setuid(0xee01)
r0 = socket$netlink(0x10, 0x3, 0xa)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, 0x0, 0x0)

03:50:19 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_procfs(0xffffffffffffffff, 0x0)
r2 = open(&(0x7f00000000c0)='./file0\x00', 0x1050c2, 0x0)
setuid(0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000d40)=[{{&(0x7f0000000840)=@abs={0x1}, 0x6e, &(0x7f0000000cc0)=[{0x0}, {0x0}], 0x2, 0x0, 0x0, 0x800}}], 0x1, 0x24000801)
r3 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
write(r2, &(0x7f0000001400)="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"/3584, 0xe00)
sendfile(r2, r3, 0x0, 0x11f06)

03:50:19 executing program 5:
r0 = socket$inet(0x2, 0x840000000003, 0x2)
setsockopt$inet_int(r0, 0x0, 0x200000000000c8, &(0x7f0000000040), 0x4)
setsockopt$inet_int(r0, 0x0, 0xcb, 0x0, 0x0)

[ 1770.671581][   T24] audit: type=1804 audit(2000001019.540:838): pid=23886 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="bus" dev="sda1" ino=1188 res=1 errno=0
[ 1770.692646][   T24] audit: type=1800 audit(2000001019.540:839): pid=23886 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=1188 res=0 errno=0
03:50:19 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x40, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IE={0x11, 0x2a, [@random={0xdd, 0xb, 'abcdefghijk'}]}, @NL80211_ATTR_SCAN_SSIDS={0x10, 0x2d, 0x0, 0x1, [{0xa, 0x0, @default_ap_ssid}]}]}, 0x40}}, 0x0)
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000040)=@mgmt_frame=@beacon={@wo_ht={{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}, 0x36)
nanosleep(&(0x7f0000000080)={0x0, 0x4c4b40}, &(0x7f00000000c0))
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000340)=@mgmt_frame=@probe_response={@wo_ht={{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void}, 0x36)

03:50:19 executing program 5:
r0 = socket$inet(0x2, 0x840000000003, 0x2)
setsockopt$inet_int(r0, 0x0, 0x200000000000c8, &(0x7f0000000040), 0x4)
setsockopt$inet_int(r0, 0x0, 0xcb, 0x0, 0x0)

[ 1771.050356][T23890] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1771.107391][T23890] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1771.132867][   T24] audit: type=1800 audit(2000001020.000:840): pid=23896 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="file0" dev="sda1" ino=1162 res=0 errno=0
[ 1771.197772][   T24] audit: type=1804 audit(2000001020.030:841): pid=23896 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="file0" dev="sda1" ino=1162 res=1 errno=0
[ 1771.219460][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1771.220292][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1771.221067][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
03:50:20 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x40, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IE={0x11, 0x2a, [@random={0xdd, 0xb, 'abcdefghijk'}]}, @NL80211_ATTR_SCAN_SSIDS={0x10, 0x2d, 0x0, 0x1, [{0xa, 0x0, @default_ap_ssid}]}]}, 0x40}}, 0x0)
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000040)=@mgmt_frame=@beacon={@wo_ht={{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}, 0x36)
nanosleep(&(0x7f0000000080)={0x0, 0x4c4b40}, &(0x7f00000000c0))
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000340)=@mgmt_frame=@probe_response={@wo_ht={{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void}, 0x36)

[ 1771.221954][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
03:50:20 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x40, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IE={0x11, 0x2a, [@random={0xdd, 0xb, 'abcdefghijk'}]}, @NL80211_ATTR_SCAN_SSIDS={0x10, 0x2d, 0x0, 0x1, [{0xa, 0x0, @default_ap_ssid}]}]}, 0x40}}, 0x0)
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000040)=@mgmt_frame=@beacon={@wo_ht={{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}, 0x36)
nanosleep(&(0x7f0000000080)={0x0, 0x4c4b40}, &(0x7f00000000c0))
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000340)=@mgmt_frame=@probe_response={@wo_ht={{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void}, 0x36)

[ 1771.675452][T23903] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1771.729184][T23904] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1771.849802][T23904] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
03:50:20 executing program 2:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x40001001}], 0x10, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = creat(&(0x7f0000000040)='./bus\x00', 0x140)
accept4(0xffffffffffffffff, 0x0, &(0x7f0000000140), 0x80000)
ftruncate(r2, 0x800)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
statx(0xffffffffffffffff, &(0x7f0000000780)='./file1\x00', 0x4000, 0x7ff, 0x0)
lseek(r2, 0x200, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5}, 0x0)
r3 = open(&(0x7f0000000440)='./bus\x00', 0x24080, 0x0)
sendfile(r2, r3, 0x0, 0x10000)

03:50:20 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x40, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IE={0x11, 0x2a, [@random={0xdd, 0xb, 'abcdefghijk'}]}, @NL80211_ATTR_SCAN_SSIDS={0x10, 0x2d, 0x0, 0x1, [{0xa, 0x0, @default_ap_ssid}]}]}, 0x40}}, 0x0)
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000040)=@mgmt_frame=@beacon={@wo_ht={{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}, 0x36)
nanosleep(&(0x7f0000000080)={0x0, 0x4c4b40}, &(0x7f00000000c0))
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000340)=@mgmt_frame=@probe_response={@wo_ht={{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void}, 0x36)

[ 1772.026343][T23910] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1772.037458][T23909] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
03:50:20 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_procfs(0xffffffffffffffff, 0x0)
r2 = open(&(0x7f00000000c0)='./file0\x00', 0x1050c2, 0x0)
setuid(0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000d40)=[{{&(0x7f0000000840)=@abs={0x1}, 0x6e, &(0x7f0000000cc0)=[{0x0}, {0x0}], 0x2, 0x0, 0x0, 0x800}}], 0x1, 0x24000801)
r3 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
write(r2, &(0x7f0000001400)="bb8f9f640903127a53527c6fbfe65d43b0e0586f2d40c7e7df58cac83420e83662d6e39bb6d5430622431454eedeeaee423d8f210bc3525fa7927c18d5fbc91ab13c2041136047d8da9375934d00f325499bfe7712208d387d41c31821c2a22d1325b556528e9b790b74053d1ed631c6ec8126d37c87216173138c00cef396868029af5b76bebac5e38b74d8bbc6ae66b6e202b6d505710377710ea7d43edf00e1a4c1c670bb4c263ce777da81abdd5ba5a5c82f67232f9b4d6f21b2e6afa8b38e4642b0daa2acbc0478d89b88e8b2094d4248855e5e81992e60be3afff0f3c3799350615489a901a659abdeca0c615a622ebf64175f990320e0356d4a11ed62eff72b709c23dd65942e8b534d7d775d370c1e435654a2634e6ee3649c4c3bcbe39e866f1eb9972af1a9cef42e701798a53dc92a242aadbac343e1765cf8ea5665e22deda69777e52b1e9e5d3edc022256939e1eee013448294911139d5b9c6241049fecdf9b31f4cdf6cff65d71b5071ef70e1798347c8846aa5b905e83050e3e606986ed3f603d18c5cdeb11cda1ce3abddea9376231af130e19fc7601ec1ab8cb5a7de9e2174547f18225b09a54fc8720dbb91eb69c1be88e601c3c9df4f2758f39a5151951b9c6dbb419ffd783a34c9fad10f201b8724d31865e2fc1fcf48db2be713053b43a0e3943c1e2b08e8a26e946c439d891db2a80b5ffa054bc8d0177d3214056250c61a537d2ec7630fb90395df2cd6aa9c5e573365db580520bdc3f1c6b2be992e1516a4b810a11935dc780699e461d9715f70c6d103ff49bf168f3cff4c0d0d6ba5671fcd2975450b0e1a3474139cb0f2d3476fcd87a8bccbeb2f5f8a821017b879aa5b9d1fafa9f4c429a74cd2da782114d97bf031746a817dd0293c4eddc3a9ecb5afe496f4971474ccd827449409f07cf94dda2e7dbe8520b5afff10a7e3b0b4289a167fc692635b5b7426d9e771b95860b09a3e752c867213c772e48ba30a78feecc7ff26e63e1749c62b52d377ac5cc52db830c965e04ccfcfb24ceacc69cfdc2094124dd27b2d68f699476a2562bab1de117ffc2b0702ee8b0b77f85fecec3a25b37ab7eb06232c9a73b4470f1727c82581d81942abf42d3ea37957927ad3dbd0ebe46678a9f4d25c47acaac83c14210a54b71fed40df017e2be27f01e3e6ea3ea381ca14efd202858e6535ad4f79a8cdf47e385b740a70c14e3651731a45cc0ca4a56f2e903cad0384efcc364caf67e09551d35c682ebc90a9286c4d274ba1b8ced742ede4e55a62db7ef9a96fde2add05b41599fd72a79ba280cc125cb266ef21b7eeafe3ee6aa78eef33fc66454549c3ec298cb683a55a32208cf6ce88b560166159d59e65f30540f62c5437652ea7f2a02f87ca242dd2250f58e75938a9a3ded51ae6598c2aba53287ff5cdaab17be7f4310f8e07e310d52778de79e1c2e4391b254be38910aa1cf6e1ca0e75d24be97d59f7025f16c6fbd549529b74e319c58f50438765ef0e3dc394eeb75dec41b3d80435b17520c97f5cd7ee692fb86d188fb0089fbf737dc1b96b9cc49be23a38a8cd92e5075f349993d7866369dd25eccbe1481477a05fee14e0edd1617921d7fcaa8fdc642e63b64388fa5b63442ff1466b1938d02546750b01ed9c980282ccbe10f204741249aed88c555ed6fdf7f68af9209807a71bbf4f31bef5a4223466da74ba8b034df529aef6ec6610a0d25973961e50e02af22d0ca8be1b9804a5918acbdb536e8f2f441ec9d640ed15133ee747440c86fc4526c9195954528673d25c8390170f3c19cb0b0c30b9e634c7ebae96946ae97c19eabca92226da925d22be37abbe0740938ea899ec42fd529a3b1063981e4c154219df5cf5af60a29b5a8ee530905725a14b28900eae937e705401ba8f632a7bca00d9724a992afdc9ed14aac71b8e3a7ee5ca095888feb195b4e083c3b611a1c2f8d092febe3b9f5f0df61e8d3c31a643c935b76bc1ad4265164e755484beb06610510bc51e8c6da8d71123bbe83a5e4128f41cf5c486d6a60496c300c406f990bee485cbdef794f2663ee66d2b18d8e55210c25c04b1a0c6d9c5f904e72806d2d4f5e5439bcdf146343cdffe4d0d70d42a9959cff9bd50c37cd478b0b0add16aae4dc839b46bca2ac7547144b6a422aed5e2db661bcb31a82bc0fc678e71a6cb090ef772860f3008b4152b5d281033be4a77b367baec3ab8ce7c83c601b11c8199bafcd15161a5454a6a982dbc3c2e3a5172b6a63e4904817075754eccbb0188c9cb2e5da9600f567485014887463b40f189b7ec3c5c0f36d502509e402c285765c78417ce6b3aab130ee79622dcd8ada842233e73a14554ee5e4995e32b3fe4075e247eb9bdeef64d1a7436c9b5782fb2f84f74e4c6e976289729c37b5bb8200a9480d181a6b11f5ec229b818134b8334967ae935ac1d81be4776fae4cb68b6fa330e93bd8de388b38455d569159bcd166df030a6dfedf28caf4608de7243f5df2c76f6680c301d819dc67d24d2f780432a931700a253b0a5b075195c6dbfd1fe17a1c11a3dffa872a07b877adc66d069fffb6d8326e1998c5a337c3d530250cae335ceffcf81dc438a47e73490d050a053813dbe6674e42c91ae94b4a88144f36adc1b08b4bcd6ddf4058c4e08d4dc83d5fbd843ee27eaf50b297c220350260d9abbeeb6deb921e50cae0ea590cfb6f00fb3c71520f565bb769705e2481ef27cf537d29f163c9fe3d39ed9fd18dc8b0c976cd302283e430807a9d751357f89092532d89fe280c69ad36e3541b5da9dea13fd19d0434c760fe295dfd9b9e63453c7853914c50b1b77ccd4b33c8b1f31fcb1aec040ffe2f9d728d8ea84297bac2e22230ebd1488c503b05b2e433cc37ce9fc123b7d3eb244b4549e9a841e73b664c8f6621ea5a4c9ff9c1da032255311f2c063a682baf4c97e7ba552bf71af4bd64f43872b846d15c65c487089be272cfa24a33f8c50930ea0bc4b089505fb8e97ded0e7e64a5ce897da6b940df4c3dddb8b4871d773f6ebf02058518c55c19aadb0f266caf18777ae68d2bfcfb2225961fcd10538ba664fd053a443320072707533ab761b9397bd0559126b84fe9196463ae50633017ea2d80940311d9c867102b1017f34af1965d8eb61be616a0d40656e2bbb750aee6f74f788c8acb2578e8686f5f8da6a19e979c152b7ee7c7f16902120588e2ff630144b5f929ffc593e946d9717c5968aa16c2d73d689fb5cce117acda3e23e5e0116de1cb6bddfa1a84cefb22c1e2c3753017696f27b9aec5d44f15411247643b84dd4410e784b4eb5b9c68fea671976f9b51c6526e2ddb40659611b0b3bcc7e249c77396fdb8c864ea9318f9de7fd3936fcbdc732c2f8b9556ec9afeb15d5e2df890351d66074d53dddc6e8dba8c91d733623ac95a49eb69c7de37ff2364ccddb01f6500750a012c2acf32a9f6bbd9e92d17ef858fbc34575db414ea42ad87a65b11ae5506469db256c421328f45aec73bdf18562447dc2840bbe9fc84dedd0fe6276fa174f21210d40193530ec7a70a9e60bfd6b00cba4d483be59950f16fa0dbd089b5fd0bb078badfcf42270cc62fe37be22b0d81f755263d74636fa466d2574ca62b58c649936d21e949de73ea45df3acade6609413f56fc218d6f11947bf1fd629d38d8acce90ee3c1a51117601ae126bec537e3e76ce7ecc53cfeefee8aaa104aa853a65aadf27bac9849ee0122793b11cd8e4f32fb07afa39e439cb738c30a6df958160aac15c26032a61aaf614b2e6601581fb0ab8d115e045005dee3df8ea42643cbcbb0b111130c42c94b7e874cfee50d5c2eb13b3a38c417fce9d740b7d43120431a7d44bc3934ee87b112401cbee3553837b6a0b4b3faaceb46eca4064301c8060870350e256ac9d5557f674536b9d9717a82fa211e7dfb52ca410d8a4f2f6b733c2a082f247538a6c40f56cf64204e62515db692f32733ff6f4b0787ef305d5e80881375467ae603ac3600e688c42f89a4fea4fdda09a8d59e19457c654a98c8129a8c65bae3310af2b170729e18400c915d0a2f4c4fc51747846630b95ec181228bda7ef48ad389815aa82de6c4a3b0746c28c01f9ec697ff17f095e1cf9d2fe78fdab9cbb1ca7aefc8af6a0cd98444735fad79e394a8f9c2fd358c3cde4ca6d57a620d0bb52dc6ff93f034b596f407c21511cc2c5ec8b0ede7f5c0acca61939ac7f2cad820c15133e69507eaa739e9a88936f4a74f0ad1574a1591f31f582a76157d89805cb3ba5e8d10509bf7a08e928653b4f05ba797a06765b74c8759fc34178624c08a2b99e59bcff5d33af2b0f9176b56c35f4da31c751a4c2fd88a1997cd9fc9bbf78220731d4c8cea23be1fd29c36b34d8458b7021ebcfafdc7e54096e517da3eb684298f742532d776164d9c9658e5faca0a3b08afca1bc27ed357884f49fe51bd0c38057f4288f1917e36e3865310b5eed140aef6150ae363293cf7467abd5e06cd7af5e2c49e7c5253a1155741e380bccb023a0faed93d9a64512d72436f1ef4ac0904a413e45164c23413bd57274a0a951c41a9a43aed094d4ea5c480ce64663cc9d36723179e2b19a48e9277a6591bbd888a06e0f2f142cd4495be4ba7274d69ba32a2788b935b2f18c5f336cb9de062829e2e0bb476efb36c3f53a766c14314f31637a464ac59d378ad7f51bef8d88715613653a427038e0d3e4dc3948bb1d70eb55c91c92f7510b1c0387253b458d2c90d17238f9eb239c680179a6c1e0759be367963e3b4d7395fd3911626582a094e6a8d0e746242f94267a4c57d5b2360ce3a6f7f3e3c10e124a54ed24d1585bc7b731cf731c94ee00ebf070b999b9bf28d76bfec9dcf12fcce2b9c4444c706ec6b943b5f39e9151a764ba1cd0cd6c1c7cdc3aa824cf17da705be27a18fbee41be39d6ae4dd4312f5f4bfee2c5bb21d941666f9d79b0f80c9b1bace84a05d2b0e3be1c3fd04d72b4b0124595c435813969d413960fddc858730a433383f3bc0472cb7683ea569e001f00"/3584, 0xe00)
sendfile(r2, r3, 0x0, 0x11f06)

[ 1772.069680][T23910] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1772.091241][T23908] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1772.266047][   T24] audit: type=1804 audit(2000001021.140:842): pid=23914 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="bus" dev="sda1" ino=1162 res=1 errno=0
[ 1772.287064][   T24] audit: type=1800 audit(2000001021.140:843): pid=23914 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=1162 res=0 errno=0
03:50:21 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x40, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IE={0x11, 0x2a, [@random={0xdd, 0xb, 'abcdefghijk'}]}, @NL80211_ATTR_SCAN_SSIDS={0x10, 0x2d, 0x0, 0x1, [{0xa, 0x0, @default_ap_ssid}]}]}, 0x40}}, 0x0)
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000040)=@mgmt_frame=@beacon={@wo_ht={{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}, 0x36)
nanosleep(&(0x7f0000000080)={0x0, 0x4c4b40}, &(0x7f00000000c0))
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000340)=@mgmt_frame=@probe_response={@wo_ht={{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void}, 0x36)

03:50:21 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x40, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IE={0x11, 0x2a, [@random={0xdd, 0xb, 'abcdefghijk'}]}, @NL80211_ATTR_SCAN_SSIDS={0x10, 0x2d, 0x0, 0x1, [{0xa, 0x0, @default_ap_ssid}]}]}, 0x40}}, 0x0)
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000040)=@mgmt_frame=@beacon={@wo_ht={{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}, 0x36)
nanosleep(&(0x7f0000000080)={0x0, 0x4c4b40}, &(0x7f00000000c0))
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000340)=@mgmt_frame=@probe_response={@wo_ht={{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void}, 0x36)

03:50:21 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x40, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IE={0x11, 0x2a, [@random={0xdd, 0xb, 'abcdefghijk'}]}, @NL80211_ATTR_SCAN_SSIDS={0x10, 0x2d, 0x0, 0x1, [{0xa, 0x0, @default_ap_ssid}]}]}, 0x40}}, 0x0)
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000040)=@mgmt_frame=@beacon={@wo_ht={{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}, 0x36)
nanosleep(&(0x7f0000000080)={0x0, 0x4c4b40}, &(0x7f00000000c0))
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000340)=@mgmt_frame=@probe_response={@wo_ht={{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void}, 0x36)

[ 1772.566757][   T24] audit: type=1800 audit(2000001021.440:844): pid=23918 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="file0" dev="sda1" ino=1163 res=0 errno=0
[ 1772.670894][   T24] audit: type=1804 audit(2000001021.470:845): pid=23918 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="file0" dev="sda1" ino=1163 res=1 errno=0
[ 1772.821062][T23923] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1772.855843][T23922] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1772.900882][T23926] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1772.903249][T23923] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1772.945105][T23925] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1773.027438][T23925] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
03:50:22 executing program 2:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x40001001}], 0x10, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = creat(&(0x7f0000000040)='./bus\x00', 0x140)
accept4(0xffffffffffffffff, 0x0, &(0x7f0000000140), 0x80000)
ftruncate(r2, 0x800)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
statx(0xffffffffffffffff, &(0x7f0000000780)='./file1\x00', 0x4000, 0x7ff, 0x0)
lseek(r2, 0x200, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5}, 0x0)
r3 = open(&(0x7f0000000440)='./bus\x00', 0x24080, 0x0)
sendfile(r2, r3, 0x0, 0x10000)

03:50:22 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x40, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IE={0x11, 0x2a, [@random={0xdd, 0xb, 'abcdefghijk'}]}, @NL80211_ATTR_SCAN_SSIDS={0x10, 0x2d, 0x0, 0x1, [{0xa, 0x0, @default_ap_ssid}]}]}, 0x40}}, 0x0)
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000040)=@mgmt_frame=@beacon={@wo_ht={{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}, 0x36)
nanosleep(&(0x7f0000000080)={0x0, 0x4c4b40}, &(0x7f00000000c0))
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000340)=@mgmt_frame=@probe_response={@wo_ht={{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void}, 0x36)

[ 1773.633002][T23933] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1773.705765][T23933] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1777.622479][ T3513] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1777.630538][ T3513] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1777.641460][ T3513] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1777.651282][ T3513] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1777.660396][ T3513] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1777.669097][T23936] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1777.748485][T23935] vcan0 speed is unknown, defaulting to 1000
[ 1778.138828][T23935] chnl_net:caif_netlink_parms(): no params data found
[ 1778.390314][T23935] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1778.397897][T23935] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1778.408665][T23935] device bridge_slave_0 entered promiscuous mode
[ 1778.420717][T23935] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1778.428449][T23935] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1778.438201][T23935] device bridge_slave_1 entered promiscuous mode
[ 1778.518895][T23935] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1778.537152][T23935] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1778.610998][T23935] team0: Port device team_slave_0 added
[ 1778.628746][T23935] team0: Port device team_slave_1 added
[ 1778.688845][T23935] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1778.695971][T23935] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1778.722875][T23935] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1778.738795][T23935] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1778.746165][T23935] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1778.773158][T23935] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1778.864475][T23935] device hsr_slave_0 entered promiscuous mode
[ 1778.874390][T23935] device hsr_slave_1 entered promiscuous mode
[ 1778.883694][T23935] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1778.891368][T23935] Cannot create hsr debugfs directory
[ 1779.363937][T23935] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1779.395158][T16300] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1779.406072][T16300] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1779.428428][T23935] 8021q: adding VLAN 0 to HW filter on device team0
[ 1779.455771][T16300] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1779.467311][T16300] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1779.479509][T16300] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1779.487024][T16300] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1779.503142][T16300] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1779.514259][T16300] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1779.526335][T16300] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1779.537227][T16300] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1779.544619][T16300] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1779.582481][T16300] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1779.619850][T17572] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1779.633094][T17572] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1779.645519][T17572] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1779.658095][T17572] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1779.695081][T16300] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1779.707206][T16300] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1779.748884][T23935] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1779.759721][T23935] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1779.776140][T23531] Bluetooth: hci0: command 0x0409 tx timeout
[ 1779.785403][T16300] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1779.796671][T16300] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1779.808839][T16300] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1779.820026][T16300] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1779.835338][T16300] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1779.887842][T17572] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1779.895988][T17572] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1779.929300][T23935] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1780.489698][T16300] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1780.503135][T16300] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1780.560928][T17572] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1780.572732][T17572] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1780.589877][T17572] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1780.600211][T17572] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1780.618004][T23935] device veth0_vlan entered promiscuous mode
[ 1780.648749][T23935] device veth1_vlan entered promiscuous mode
[ 1780.718791][T17572] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1780.731193][T17572] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1780.742439][T17572] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1780.754614][T17572] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1780.775058][T23935] device veth0_macvtap entered promiscuous mode
[ 1780.814357][T23935] device veth1_macvtap entered promiscuous mode
[ 1780.863967][T23935] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1780.874973][T23935] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1780.885194][T23935] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1780.898079][T23935] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1780.908234][T23935] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1780.918881][T23935] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1780.929015][T23935] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1780.939668][T23935] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1780.949821][T23935] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1780.960470][T23935] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1780.976123][T23935] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1780.989588][T17572] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1781.000234][T17572] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1781.010376][T17572] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1781.021423][T17572] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1781.048950][T23935] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1781.059779][T23935] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1781.069964][T23935] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1781.080668][T23935] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1781.090645][T23935] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1781.101320][T23935] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1781.112583][T23935] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1781.125236][T23935] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1781.135786][T23935] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1781.146482][T23935] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1781.156487][T23935] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1781.167082][T23935] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1781.182429][T23935] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1781.203291][T23531] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1781.215187][T23531] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1781.854369][T23531] Bluetooth: hci0: command 0x041b tx timeout
[ 1782.165910][T13890] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1782.174474][T13890] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1782.255775][T23531] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1782.285247][ T3676] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1782.293483][ T3676] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1782.302511][T23531] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1782.452712][T23977] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1782.476172][T23977] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
03:50:31 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x40, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IE={0x11, 0x2a, [@random={0xdd, 0xb, 'abcdefghijk'}]}, @NL80211_ATTR_SCAN_SSIDS={0x10, 0x2d, 0x0, 0x1, [{0xa, 0x0, @default_ap_ssid}]}]}, 0x40}}, 0x0)
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000040)=@mgmt_frame=@beacon={@wo_ht={{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}, 0x36)
nanosleep(&(0x7f0000000080)={0x0, 0x4c4b40}, &(0x7f00000000c0))
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000340)=@mgmt_frame=@probe_response={@wo_ht={{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void}, 0x36)

03:50:31 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_procfs(0xffffffffffffffff, 0x0)
r2 = open(&(0x7f00000000c0)='./file0\x00', 0x1050c2, 0x0)
setuid(0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000d40)=[{{&(0x7f0000000840)=@abs={0x1}, 0x6e, &(0x7f0000000cc0)=[{0x0}, {0x0}], 0x2, 0x0, 0x0, 0x800}}], 0x1, 0x24000801)
r3 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
write(r2, &(0x7f0000001400)="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"/3584, 0xe00)
sendfile(r2, r3, 0x0, 0x11f06)

03:50:31 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x40, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IE={0x11, 0x2a, [@random={0xdd, 0xb, 'abcdefghijk'}]}, @NL80211_ATTR_SCAN_SSIDS={0x10, 0x2d, 0x0, 0x1, [{0xa, 0x0, @default_ap_ssid}]}]}, 0x40}}, 0x0)
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000040)=@mgmt_frame=@beacon={@wo_ht={{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}, 0x36)
nanosleep(&(0x7f0000000080)={0x0, 0x4c4b40}, &(0x7f00000000c0))
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000340)=@mgmt_frame=@probe_response={@wo_ht={{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void}, 0x36)

03:50:31 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x40, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IE={0x11, 0x2a, [@random={0xdd, 0xb, 'abcdefghijk'}]}, @NL80211_ATTR_SCAN_SSIDS={0x10, 0x2d, 0x0, 0x1, [{0xa, 0x0, @default_ap_ssid}]}]}, 0x40}}, 0x0)
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000040)=@mgmt_frame=@beacon={@wo_ht={{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}, 0x36)
nanosleep(&(0x7f0000000080)={0x0, 0x4c4b40}, &(0x7f00000000c0))
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000340)=@mgmt_frame=@probe_response={@wo_ht={{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void}, 0x36)

03:50:31 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x40, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IE={0x11, 0x2a, [@random={0xdd, 0xb, 'abcdefghijk'}]}, @NL80211_ATTR_SCAN_SSIDS={0x10, 0x2d, 0x0, 0x1, [{0xa, 0x0, @default_ap_ssid}]}]}, 0x40}}, 0x0)
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000040)=@mgmt_frame=@beacon={@wo_ht={{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}, 0x36)
nanosleep(&(0x7f0000000080)={0x0, 0x4c4b40}, &(0x7f00000000c0))
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000340)=@mgmt_frame=@probe_response={@wo_ht={{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void}, 0x36)

03:50:31 executing program 2:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0x40001001}], 0x10, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = creat(&(0x7f0000000040)='./bus\x00', 0x140)
accept4(0xffffffffffffffff, 0x0, &(0x7f0000000140), 0x80000)
ftruncate(r2, 0x800)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
statx(0xffffffffffffffff, &(0x7f0000000780)='./file1\x00', 0x4000, 0x7ff, 0x0)
lseek(r2, 0x200, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5}, 0x0)
r3 = open(&(0x7f0000000440)='./bus\x00', 0x24080, 0x0)
sendfile(r2, r3, 0x0, 0x10000)

[ 1782.938672][T23987] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1782.968308][T23987] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1782.983946][T23986] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1782.992080][   T24] kauditd_printk_skb: 2 callbacks suppressed
[ 1782.992152][   T24] audit: type=1800 audit(2000001031.860:848): pid=23989 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="file0" dev="sda1" ino=1186 res=0 errno=0
[ 1783.010331][T23983] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1783.086137][   T24] audit: type=1804 audit(2000001031.910:849): pid=23988 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="bus" dev="sda1" ino=1185 res=1 errno=0
[ 1783.107545][   T24] audit: type=1800 audit(2000001031.910:850): pid=23988 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=1185 res=0 errno=0
[ 1783.128958][   T24] audit: type=1804 audit(2000001031.920:851): pid=23989 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="file0" dev="sda1" ino=1186 res=1 errno=0
[ 1783.247183][T23994] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1783.279935][T23991] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1783.337056][T23994] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1783.370042][T23982] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
03:50:32 executing program 5:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000003480)=@updsa={0x15c, 0x1a, 0x1, 0x0, 0x0, {{@in6=@mcast2, @in6=@mcast1}, {@in=@broadcast, 0x0, 0x33}, @in=@private, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth={0x69, 0x1, {{'cmac(aes)\x00'}, 0x108, "f82e82e41fd8175ded1c0072c573ecc1e8247399978b710a642b26e7cdb1479505"}}]}, 0x15c}}, 0x0)

[ 1783.659082][T23999] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'.
03:50:32 executing program 5:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000003480)=@updsa={0x15c, 0x1a, 0x1, 0x0, 0x0, {{@in6=@mcast2, @in6=@mcast1}, {@in=@broadcast, 0x0, 0x33}, @in=@private, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth={0x69, 0x1, {{'cmac(aes)\x00'}, 0x108, "f82e82e41fd8175ded1c0072c573ecc1e8247399978b710a642b26e7cdb1479505"}}]}, 0x15c}}, 0x0)

03:50:32 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x40, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IE={0x11, 0x2a, [@random={0xdd, 0xb, 'abcdefghijk'}]}, @NL80211_ATTR_SCAN_SSIDS={0x10, 0x2d, 0x0, 0x1, [{0xa, 0x0, @default_ap_ssid}]}]}, 0x40}}, 0x0)
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000040)=@mgmt_frame=@beacon={@wo_ht={{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}, 0x36)
nanosleep(&(0x7f0000000080)={0x0, 0x4c4b40}, &(0x7f00000000c0))
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000340)=@mgmt_frame=@probe_response={@wo_ht={{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void}, 0x36)

[ 1783.934507][T23531] Bluetooth: hci0: command 0x040f tx timeout
03:50:33 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r0, &(0x7f0000000280)={0x10, 0x0, 0x25dfdbfc, 0x1000000}, 0xc)
bind$netlink(r0, &(0x7f0000000000)={0x10, 0x0, 0x25dfdbfc, 0x1}, 0xc)

[ 1784.226689][T24003] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'.
03:50:33 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r0, &(0x7f0000000280)={0x10, 0x0, 0x25dfdbfc, 0x1000000}, 0xc)
bind$netlink(r0, &(0x7f0000000000)={0x10, 0x0, 0x25dfdbfc, 0x1}, 0xc)

03:50:33 executing program 5:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000003480)=@updsa={0x15c, 0x1a, 0x1, 0x0, 0x0, {{@in6=@mcast2, @in6=@mcast1}, {@in=@broadcast, 0x0, 0x33}, @in=@private, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth={0x69, 0x1, {{'cmac(aes)\x00'}, 0x108, "f82e82e41fd8175ded1c0072c573ecc1e8247399978b710a642b26e7cdb1479505"}}]}, 0x15c}}, 0x0)

[ 1784.395798][T24008] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1784.466337][T24006] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1784.544110][T24010] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'.
03:50:33 executing program 5:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000003480)=@updsa={0x15c, 0x1a, 0x1, 0x0, 0x0, {{@in6=@mcast2, @in6=@mcast1}, {@in=@broadcast, 0x0, 0x33}, @in=@private, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth={0x69, 0x1, {{'cmac(aes)\x00'}, 0x108, "f82e82e41fd8175ded1c0072c573ecc1e8247399978b710a642b26e7cdb1479505"}}]}, 0x15c}}, 0x0)

03:50:33 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r0, &(0x7f0000000280)={0x10, 0x0, 0x25dfdbfc, 0x1000000}, 0xc)
bind$netlink(r0, &(0x7f0000000000)={0x10, 0x0, 0x25dfdbfc, 0x1}, 0xc)

[ 1785.159712][T24015] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 1786.017315][T21396] Bluetooth: hci0: command 0x0419 tx timeout
[ 1786.504927][ T3676] device hsr_slave_0 left promiscuous mode
[ 1786.520468][ T3676] device hsr_slave_1 left promiscuous mode
[ 1786.529394][ T3676] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1786.537573][ T3676] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1786.550525][ T3676] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1786.558225][ T3676] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1786.570755][ T3676] device bridge_slave_1 left promiscuous mode
[ 1786.577801][ T3676] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1786.599853][ T3676] device bridge_slave_0 left promiscuous mode
[ 1786.606721][ T3676] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1786.631238][ T3676] device veth1_macvtap left promiscuous mode
[ 1786.637503][ T3676] device veth0_macvtap left promiscuous mode
[ 1786.645275][ T3676] device veth1_vlan left promiscuous mode
[ 1786.651248][ T3676] device veth0_vlan left promiscuous mode
[ 1788.202613][ T3676] bond4 (unregistering): (slave bridge8): Releasing backup interface
[ 1788.269399][ T3676] bond4 (unregistering): Released all slaves
[ 1788.299731][ T3676] bond3 (unregistering): (slave bridge7): Releasing backup interface
[ 1788.352372][ T3676] bond3 (unregistering): Released all slaves
[ 1788.378282][ T3676] bond2 (unregistering): (slave bridge6): Releasing backup interface
[ 1788.441464][ T3676] bond2 (unregistering): Released all slaves
[ 1788.469507][ T3676] bond1 (unregistering): (slave bridge5): Releasing backup interface
[ 1788.531739][ T3676] bond1 (unregistering): Released all slaves
[ 1788.919996][ T3513] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1788.929907][ T3513] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1788.947577][ T3513] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1788.960468][ T3513] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1788.978766][ T3513] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 1788.987190][ T3513] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1789.097844][ T3676] team0 (unregistering): Port device team_slave_1 removed
[ 1789.130354][ T3676] team0 (unregistering): Port device team_slave_0 removed
[ 1789.155859][ T3676] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1789.186040][ T3676] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1789.249789][ T3513] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1789.258669][ T3513] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1789.280235][ T3513] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1789.294712][ T3513] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1789.307262][   T44] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[ 1789.315785][   T44] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1789.425125][ T3676] bond0 (unregistering): Released all slaves
[ 1789.564042][T24021] vcan0 speed is unknown, defaulting to 1000
[ 1789.812719][T24022] vcan0 speed is unknown, defaulting to 1000
[ 1790.398944][T24022] chnl_net:caif_netlink_parms(): no params data found
[ 1790.587812][T24021] chnl_net:caif_netlink_parms(): no params data found
[ 1791.052344][T23703] Bluetooth: hci3: command 0x0409 tx timeout
[ 1791.101149][T24021] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1791.108739][T24021] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1791.119237][T24021] device bridge_slave_0 entered promiscuous mode
[ 1791.135240][T24021] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1791.142861][T24021] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1791.155196][T24021] device bridge_slave_1 entered promiscuous mode
[ 1791.165946][T24022] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1791.173522][T24022] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1791.184292][T24022] device bridge_slave_0 entered promiscuous mode
[ 1791.283580][T24022] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1791.291054][T24022] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1791.304890][T24022] device bridge_slave_1 entered promiscuous mode
[ 1791.325524][T24021] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1791.375839][T24021] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1791.385697][T23703] Bluetooth: hci4: command 0x0409 tx timeout
[ 1791.505864][T24022] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1791.521044][T24021] team0: Port device team_slave_0 added
[ 1791.536398][T24022] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1791.560887][T24021] team0: Port device team_slave_1 added
[ 1791.711316][T24021] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1791.718695][T24021] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1791.745250][T24021] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1791.762180][T24022] team0: Port device team_slave_0 added
[ 1791.780266][T24022] team0: Port device team_slave_1 added
[ 1791.852671][T24021] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1791.859754][T24021] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1791.888590][T24021] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1791.903511][T24022] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1791.911171][T24022] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1791.937653][T24022] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1791.955655][T24022] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1791.963073][T24022] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1791.990965][T24022] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1792.147899][T24021] device hsr_slave_0 entered promiscuous mode
[ 1792.158807][T24021] device hsr_slave_1 entered promiscuous mode
[ 1792.168217][T24021] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1792.176976][T24021] Cannot create hsr debugfs directory
[ 1792.208557][T24022] device hsr_slave_0 entered promiscuous mode
[ 1792.230032][T24022] device hsr_slave_1 entered promiscuous mode
[ 1792.253864][T24022] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1792.261651][T24022] Cannot create hsr debugfs directory
[ 1793.132723][T23531] Bluetooth: hci3: command 0x041b tx timeout
[ 1793.190923][T24021] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1793.236033][T24000] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1793.246455][T24000] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1793.285424][T24021] 8021q: adding VLAN 0 to HW filter on device team0
[ 1793.315704][T23531] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1793.326984][T23531] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1793.337401][T23531] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1793.344885][T23531] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1793.357656][T23531] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1793.383360][T24022] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1793.410058][T24000] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1793.421376][T24000] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1793.432001][T24000] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1793.439418][T24000] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1793.452735][T23531] Bluetooth: hci4: command 0x041b tx timeout
[ 1793.502094][T24022] 8021q: adding VLAN 0 to HW filter on device team0
[ 1793.524161][T24000] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1793.537104][T24000] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1793.547852][T24000] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1793.558158][T24000] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1793.585293][T23531] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1793.597368][T23531] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1793.662019][T23531] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1793.673347][T23531] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1793.684526][T23531] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1793.697002][T23531] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1793.704493][T23531] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1793.714203][T23531] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1793.726172][T23531] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1793.737963][T23531] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1793.748682][T23531] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1793.759170][T23531] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1793.766624][T23531] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1793.776226][T23531] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1793.786946][T23531] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1793.810560][T23531] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1793.823170][T23531] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1793.847100][T24000] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1793.858873][T24000] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1793.881635][T24021] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1793.919008][T21396] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1793.984269][T21396] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1793.996924][T21396] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1794.008658][T21396] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1794.020625][T21396] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1794.031416][T21396] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1794.042444][T21396] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1794.096564][T21396] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1794.107950][T21396] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1794.116334][T21396] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1794.124699][T21396] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1794.135793][T21396] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1794.151532][T24022] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1794.171242][T24021] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1794.320365][T24000] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1794.329360][T24000] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1794.392929][T24022] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1795.198831][T24000] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1795.210074][T24000] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1795.224122][T21396] Bluetooth: hci3: command 0x040f tx timeout
[ 1795.319329][T24022] device veth0_vlan entered promiscuous mode
[ 1795.334328][T23531] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1795.345879][T23531] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1795.358502][T23531] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1795.369753][T23531] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1795.386430][T23531] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1795.397461][T23531] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1795.461655][T24000] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1795.473202][T24000] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1795.498571][T24022] device veth1_vlan entered promiscuous mode
[ 1795.512681][T23703] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1795.523801][T23703] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1795.534440][T23703] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1795.543738][T21396] Bluetooth: hci4: command 0x040f tx timeout
[ 1795.551293][T24021] device veth0_vlan entered promiscuous mode
[ 1795.624979][T24021] device veth1_vlan entered promiscuous mode
[ 1795.736952][T23703] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1795.748259][T23703] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1795.760333][T23703] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1795.771463][T23703] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1795.783324][T23703] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1795.825502][T24022] device veth0_macvtap entered promiscuous mode
[ 1795.839344][T24021] device veth0_macvtap entered promiscuous mode
[ 1795.851724][T23703] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1795.863873][T23703] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1795.875649][T23703] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1795.898645][T24021] device veth1_macvtap entered promiscuous mode
[ 1795.929965][T23703] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1795.944853][T24022] device veth1_macvtap entered promiscuous mode
[ 1796.019023][T24021] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1796.029981][T24021] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1796.041115][T24021] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1796.052108][T24021] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1796.062257][T24021] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1796.072902][T24021] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1796.082990][T24021] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1796.093747][T24021] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1796.103934][T24021] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1796.114567][T24021] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1796.130582][T24021] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1796.147771][T24022] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1796.158560][T24022] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1796.171090][T24022] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1796.182054][T24022] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1796.192065][T24022] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1796.202690][T24022] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1796.212785][T24022] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1796.223398][T24022] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1796.233653][T24022] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1796.244430][T24022] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1796.254444][T24022] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1796.265125][T24022] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1796.280338][T24022] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1796.288498][T23703] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1796.300257][T23703] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1796.313026][T23703] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1796.324708][T23703] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1796.345914][T24021] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1796.356632][T24021] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1796.366743][T24021] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1796.377951][T24021] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1796.388111][T24021] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1796.398836][T24021] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1796.408922][T24021] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1796.419590][T24021] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1796.429741][T24021] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1796.440391][T24021] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1796.450541][T24021] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1796.461145][T24021] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1796.477015][T24021] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1796.488491][T24022] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1796.499362][T24022] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1796.509388][T24022] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1796.520397][T24022] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1796.530529][T24022] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1796.541194][T24022] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1796.552875][T24022] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1796.563579][T24022] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1796.573599][T24022] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1796.584291][T24022] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1796.594391][T24022] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1796.605081][T24022] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1796.615096][T24022] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1796.625783][T24022] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1796.640106][T24022] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1796.668531][T24000] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1796.681331][T24000] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1796.693162][T24000] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1796.704994][T24000] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1797.292723][T24000] Bluetooth: hci3: command 0x0419 tx timeout
[ 1797.612983][T24000] Bluetooth: hci4: command 0x0419 tx timeout
[ 1798.153407][  T999] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1798.161928][  T999] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1798.211569][T21396] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1798.269499][   T52] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1798.277922][   T52] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1798.289131][T24000] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1798.457337][T24099] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1798.482634][T24099] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1798.645887][ T3676] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1798.654236][ T3676] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1798.670111][T21396] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1798.724524][ T3669] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1798.734442][ T3669] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1798.748693][T21396] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
03:50:47 executing program 0:
futex(&(0x7f0000000000), 0x5, 0x0, 0x0, &(0x7f0000000040), 0xa0200004)
clock_gettime(0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)

03:50:47 executing program 2:
r0 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r0, &(0x7f0000000280)={0x10, 0x0, 0x25dfdbfc, 0x1000000}, 0xc)
bind$netlink(r0, &(0x7f0000000000)={0x10, 0x0, 0x25dfdbfc, 0x1}, 0xc)

[ 1798.976965][T24105] futex_wake_op: syz-executor.0 tries to shift op by 512; fix this program
[ 1799.007235][T24102] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1799.056433][T24102] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
03:50:48 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x40, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IE={0x11, 0x2a, [@random={0xdd, 0xb, 'abcdefghijk'}]}, @NL80211_ATTR_SCAN_SSIDS={0x10, 0x2d, 0x0, 0x1, [{0xa, 0x0, @default_ap_ssid}]}]}, 0x40}}, 0x0)
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000040)=@mgmt_frame=@beacon={@wo_ht={{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}, 0x36)
nanosleep(&(0x7f0000000080)={0x0, 0x4c4b40}, &(0x7f00000000c0))
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000340)=@mgmt_frame=@probe_response={@wo_ht={{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void}, 0x36)

03:50:48 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r0, &(0x7f0000000280)={0x10, 0x0, 0x25dfdbfc, 0x1000000}, 0xc)
bind$netlink(r0, &(0x7f0000000000)={0x10, 0x0, 0x25dfdbfc, 0x1}, 0xc)

03:50:48 executing program 3:
r0 = openat$sysfs(0xffffff9c, &(0x7f0000002100)='/sys/module/ttm', 0x254000, 0x0)
setns(r0, 0x0)

03:50:48 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/igmp6\x00')
lseek(r0, 0xffff, 0x0)

03:50:48 executing program 2:
r0 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r0, &(0x7f0000000280)={0x10, 0x0, 0x25dfdbfc, 0x1000000}, 0xc)
bind$netlink(r0, &(0x7f0000000000)={0x10, 0x0, 0x25dfdbfc, 0x1}, 0xc)

03:50:48 executing program 0:
futex(&(0x7f0000000000), 0x5, 0x0, 0x0, &(0x7f0000000040), 0xa0200004)
clock_gettime(0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)

03:50:48 executing program 1:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000080)=ANY=[@ANYBLOB="b702000000000000bfa30000000000004503000000fefff67a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000007704000001000000b7050000220000006a0a00fe00000000850000000b000000b70000004dc50000950000000000000089c81f20273d16b72eb83ec5a3b061773f04a2082ba8cedf8510e63fb112cf6956e09d1938ef3b217e0f6ae30b"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffde9}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000400)={r0, 0x0, 0x10, 0x0, &(0x7f0000000040)="a663f3cb268109f6eb4f5724bcbe848a", 0x0, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xd09)

[ 1799.633132][T24111] futex_wake_op: syz-executor.0 tries to shift op by 512; fix this program
03:50:48 executing program 3:
r0 = openat$sysfs(0xffffff9c, &(0x7f0000002100)='/sys/module/ttm', 0x254000, 0x0)
setns(r0, 0x0)

03:50:48 executing program 2:
r0 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r0, &(0x7f0000000280)={0x10, 0x0, 0x25dfdbfc, 0x1000000}, 0xc)
bind$netlink(r0, &(0x7f0000000000)={0x10, 0x0, 0x25dfdbfc, 0x1}, 0xc)

[ 1799.685722][T24120] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
03:50:48 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/igmp6\x00')
lseek(r0, 0xffff, 0x0)

[ 1799.773587][T24120] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
03:50:48 executing program 0:
futex(&(0x7f0000000000), 0x5, 0x0, 0x0, &(0x7f0000000040), 0xa0200004)
clock_gettime(0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)

03:50:49 executing program 2:
r0 = epoll_create(0x2)
pipe(&(0x7f00000004c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000500))
epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r1, &(0x7f0000000000))

03:50:49 executing program 3:
r0 = openat$sysfs(0xffffff9c, &(0x7f0000002100)='/sys/module/ttm', 0x254000, 0x0)
setns(r0, 0x0)

[ 1800.223247][T24132] futex_wake_op: syz-executor.0 tries to shift op by 512; fix this program
03:50:49 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
r2 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000004c0)={0x3c, r1, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}]}, 0x3c}}, 0x0)

03:50:49 executing program 0:
futex(&(0x7f0000000000), 0x5, 0x0, 0x0, &(0x7f0000000040), 0xa0200004)
clock_gettime(0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)

03:50:49 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/igmp6\x00')
lseek(r0, 0xffff, 0x0)

03:50:49 executing program 2:
r0 = epoll_create(0x2)
pipe(&(0x7f00000004c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000500))
epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r1, &(0x7f0000000000))

[ 1800.716979][T24142] futex_wake_op: syz-executor.0 tries to shift op by 512; fix this program
03:50:49 executing program 4:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10000000140, 0x1e7d, 0x2d51, 0x40, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x1, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x1}}}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="002205"], 0x0}, 0x0)

03:50:49 executing program 1:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000080)=ANY=[@ANYBLOB="b702000000000000bfa30000000000004503000000fefff67a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000007704000001000000b7050000220000006a0a00fe00000000850000000b000000b70000004dc50000950000000000000089c81f20273d16b72eb83ec5a3b061773f04a2082ba8cedf8510e63fb112cf6956e09d1938ef3b217e0f6ae30b"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffde9}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000400)={r0, 0x0, 0x10, 0x0, &(0x7f0000000040)="a663f3cb268109f6eb4f5724bcbe848a", 0x0, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xd09)

03:50:49 executing program 3:
r0 = openat$sysfs(0xffffff9c, &(0x7f0000002100)='/sys/module/ttm', 0x254000, 0x0)
setns(r0, 0x0)

03:50:49 executing program 0:
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
getsockopt$EBT_SO_GET_INFO(r0, 0x10d, 0x80, &(0x7f0000000000)={'nat\x00'}, &(0x7f00000000c0)=0x78)

03:50:49 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/igmp6\x00')
lseek(r0, 0xffff, 0x0)

03:50:50 executing program 2:
r0 = epoll_create(0x2)
pipe(&(0x7f00000004c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000500))
epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r1, &(0x7f0000000000))

03:50:50 executing program 0:
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
getsockopt$EBT_SO_GET_INFO(r0, 0x10d, 0x80, &(0x7f0000000000)={'nat\x00'}, &(0x7f00000000c0)=0x78)

03:50:50 executing program 3:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x13, 0x4, &(0x7f00000001c0)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x22}]}, &(0x7f0000000200)='GPL\x00', 0x1, 0xa6, &(0x7f0000000240)=""/166, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

[ 1801.472499][T23531] usb 5-1: new high-speed USB device number 34 using dummy_hcd
03:50:50 executing program 2:
r0 = epoll_create(0x2)
pipe(&(0x7f00000004c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000500))
epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r1, &(0x7f0000000000))

03:50:50 executing program 5:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_ADD_COUNTERS(r0, 0x29, 0x41, &(0x7f0000000080)={'raw\x00', 0x2, [{}, {}]}, 0x44)

[ 1801.843600][T23531] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1801.854980][T23531] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1801.865182][T23531] usb 5-1: New USB device found, idVendor=1e7d, idProduct=2d51, bcdDevice= 0.40
[ 1801.874502][T23531] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
03:50:50 executing program 0:
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
getsockopt$EBT_SO_GET_INFO(r0, 0x10d, 0x80, &(0x7f0000000000)={'nat\x00'}, &(0x7f00000000c0)=0x78)

03:50:50 executing program 3:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x13, 0x4, &(0x7f00000001c0)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x22}]}, &(0x7f0000000200)='GPL\x00', 0x1, 0xa6, &(0x7f0000000240)=""/166, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

[ 1802.086786][T23531] usb 5-1: config 0 descriptor??
[ 1802.566729][T23531] koneplus 0003:1E7D:2D51.001A: unknown main item tag 0x0
[ 1802.606309][T23531] koneplus 0003:1E7D:2D51.001A: hidraw0: USB HID v0.00 Device [HID 1e7d:2d51] on usb-dummy_hcd.4-1/input0
[ 1802.773070][T24000] usb 5-1: USB disconnect, device number 34
03:50:52 executing program 4:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10000000140, 0x1e7d, 0x2d51, 0x40, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x1, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x1}}}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="002205"], 0x0}, 0x0)

03:50:52 executing program 5:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_ADD_COUNTERS(r0, 0x29, 0x41, &(0x7f0000000080)={'raw\x00', 0x2, [{}, {}]}, 0x44)

03:50:52 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @erspan={{0xb}, {0x10, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_IGNORE_DF={0x5, 0x13, 0x1}]}}}]}, 0x40}}, 0x0)

03:50:52 executing program 1:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000080)=ANY=[@ANYBLOB="b702000000000000bfa30000000000004503000000fefff67a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000007704000001000000b7050000220000006a0a00fe00000000850000000b000000b70000004dc50000950000000000000089c81f20273d16b72eb83ec5a3b061773f04a2082ba8cedf8510e63fb112cf6956e09d1938ef3b217e0f6ae30b"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffde9}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000400)={r0, 0x0, 0x10, 0x0, &(0x7f0000000040)="a663f3cb268109f6eb4f5724bcbe848a", 0x0, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xd09)

03:50:52 executing program 0:
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
getsockopt$EBT_SO_GET_INFO(r0, 0x10d, 0x80, &(0x7f0000000000)={'nat\x00'}, &(0x7f00000000c0)=0x78)

03:50:52 executing program 3:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x13, 0x4, &(0x7f00000001c0)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x22}]}, &(0x7f0000000200)='GPL\x00', 0x1, 0xa6, &(0x7f0000000240)=""/166, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

03:50:52 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @erspan={{0xb}, {0x10, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_IGNORE_DF={0x5, 0x13, 0x1}]}}}]}, 0x40}}, 0x0)

03:50:52 executing program 5:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_ADD_COUNTERS(r0, 0x29, 0x41, &(0x7f0000000080)={'raw\x00', 0x2, [{}, {}]}, 0x44)

03:50:52 executing program 3:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x13, 0x4, &(0x7f00000001c0)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x22}]}, &(0x7f0000000200)='GPL\x00', 0x1, 0xa6, &(0x7f0000000240)=""/166, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

03:50:52 executing program 0:
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
setsockopt$SO_J1939_PROMISC(r0, 0x6b, 0x2, &(0x7f0000000040), 0x4)

03:50:52 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @erspan={{0xb}, {0x10, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_IGNORE_DF={0x5, 0x13, 0x1}]}}}]}, 0x40}}, 0x0)

03:50:52 executing program 0:
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
setsockopt$SO_J1939_PROMISC(r0, 0x6b, 0x2, &(0x7f0000000040), 0x4)

[ 1803.952126][T21396] usb 5-1: new high-speed USB device number 35 using dummy_hcd
[ 1804.352572][T21396] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1804.365541][T21396] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1804.375914][T21396] usb 5-1: New USB device found, idVendor=1e7d, idProduct=2d51, bcdDevice= 0.40
[ 1804.385228][T21396] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1804.480820][T21396] usb 5-1: config 0 descriptor??
[ 1804.946773][T21396] koneplus 0003:1E7D:2D51.001B: unknown main item tag 0x0
[ 1804.958556][T21396] koneplus 0003:1E7D:2D51.001B: hidraw0: USB HID v0.00 Device [HID 1e7d:2d51] on usb-dummy_hcd.4-1/input0
[ 1805.163186][T24000] usb 5-1: USB disconnect, device number 35
[ 1805.224452][ T1192] ieee802154 phy1 wpan1: encryption failed: -22
03:50:54 executing program 3:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0xe, 0x4, &(0x7f0000000080)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x2f}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

03:50:54 executing program 5:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_ADD_COUNTERS(r0, 0x29, 0x41, &(0x7f0000000080)={'raw\x00', 0x2, [{}, {}]}, 0x44)

03:50:54 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @erspan={{0xb}, {0x10, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_IGNORE_DF={0x5, 0x13, 0x1}]}}}]}, 0x40}}, 0x0)

03:50:54 executing program 0:
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
setsockopt$SO_J1939_PROMISC(r0, 0x6b, 0x2, &(0x7f0000000040), 0x4)

03:50:54 executing program 1:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000080)=ANY=[@ANYBLOB="b702000000000000bfa30000000000004503000000fefff67a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000007704000001000000b7050000220000006a0a00fe00000000850000000b000000b70000004dc50000950000000000000089c81f20273d16b72eb83ec5a3b061773f04a2082ba8cedf8510e63fb112cf6956e09d1938ef3b217e0f6ae30b"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffde9}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000400)={r0, 0x0, 0x10, 0x0, &(0x7f0000000040)="a663f3cb268109f6eb4f5724bcbe848a", 0x0, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xd09)

03:50:54 executing program 4:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10000000140, 0x1e7d, 0x2d51, 0x40, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x1, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x1}}}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="002205"], 0x0}, 0x0)

03:50:54 executing program 0:
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
setsockopt$SO_J1939_PROMISC(r0, 0x6b, 0x2, &(0x7f0000000040), 0x4)

03:50:54 executing program 2:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x74)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='sys_exit\x00', r0}, 0x10)
timer_create(0x5, 0x0, 0x0)

03:50:54 executing program 5:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000001000)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000000c0)='\x00\x00\x00\x00\x00\x00\x00\x00', 0x8)
r1 = accept4$alg(r0, 0x0, 0x0, 0x0)
sendmmsg$sock(r1, &(0x7f0000002780)=[{{0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000580)="4689e77cf305bcadbe9e7517efc1eb0cf3aba2a40486e56b64b78514c0da5106b142e35def41b430862aceb964800b79591d7e1d4697e1de1817e9f0d3287b6e06f2645ece3f9c85010a0d7b97b380b0226ee4890d5e84e81e8950c006f5b4c70ecb8d25ce7f0a372e9ed49781bd20fae75fa4d1eaf10c73673f18ea16681e952fe5db60e59ced9565b47dcc1e801cd612a382417bbdbbc589143fcab209ede2dff890ae44a43ab98441cee5d86f17", 0xaf}, {&(0x7f00000007c0)='W', 0x1}, {&(0x7f0000000800)="5134f46d821517afc827c3", 0xb}, {&(0x7f0000000840)="a202806d8e9d33d45b21dbf95b554627cdb33f0db8ca68e7d0d095634ca8f550af4fa0f11d321a0356be45a2bb0fcf7b681bea20a8eb3a80dd3c77e5470724b1cd39c4c027a5d3f5bfdf94f64c25734e983d7276a6e9f1142bca20fd5604ac8d54d7fa444d13e2dea235fb3255e413a4a2483264f66c", 0x76}], 0x4}}], 0x1, 0x0)

03:50:54 executing program 3:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0xe, 0x4, &(0x7f0000000080)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x2f}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

03:50:55 executing program 5:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000001000)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000000c0)='\x00\x00\x00\x00\x00\x00\x00\x00', 0x8)
r1 = accept4$alg(r0, 0x0, 0x0, 0x0)
sendmmsg$sock(r1, &(0x7f0000002780)=[{{0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000580)="4689e77cf305bcadbe9e7517efc1eb0cf3aba2a40486e56b64b78514c0da5106b142e35def41b430862aceb964800b79591d7e1d4697e1de1817e9f0d3287b6e06f2645ece3f9c85010a0d7b97b380b0226ee4890d5e84e81e8950c006f5b4c70ecb8d25ce7f0a372e9ed49781bd20fae75fa4d1eaf10c73673f18ea16681e952fe5db60e59ced9565b47dcc1e801cd612a382417bbdbbc589143fcab209ede2dff890ae44a43ab98441cee5d86f17", 0xaf}, {&(0x7f00000007c0)='W', 0x1}, {&(0x7f0000000800)="5134f46d821517afc827c3", 0xb}, {&(0x7f0000000840)="a202806d8e9d33d45b21dbf95b554627cdb33f0db8ca68e7d0d095634ca8f550af4fa0f11d321a0356be45a2bb0fcf7b681bea20a8eb3a80dd3c77e5470724b1cd39c4c027a5d3f5bfdf94f64c25734e983d7276a6e9f1142bca20fd5604ac8d54d7fa444d13e2dea235fb3255e413a4a2483264f66c", 0x76}], 0x4}}], 0x1, 0x0)

03:50:55 executing program 2:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x74)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='sys_exit\x00', r0}, 0x10)
timer_create(0x5, 0x0, 0x0)

03:50:55 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000001c0), r0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_ADD(r2, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)={&(0x7f0000000700)={0x38, r1, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_TAGLST={0x4}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MLSLVLLST={0x10, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x3}]}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}]}, 0x38}}, 0x0)

[ 1806.433426][T21396] usb 5-1: new high-speed USB device number 36 using dummy_hcd
03:50:55 executing program 3:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0xe, 0x4, &(0x7f0000000080)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x2f}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

03:50:55 executing program 2:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x74)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='sys_exit\x00', r0}, 0x10)
timer_create(0x5, 0x0, 0x0)

[ 1806.813029][T21396] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1806.825872][T21396] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1806.836259][T21396] usb 5-1: New USB device found, idVendor=1e7d, idProduct=2d51, bcdDevice= 0.40
[ 1806.845589][T21396] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1806.877806][T24223] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
03:50:55 executing program 5:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000001000)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000000c0)='\x00\x00\x00\x00\x00\x00\x00\x00', 0x8)
r1 = accept4$alg(r0, 0x0, 0x0, 0x0)
sendmmsg$sock(r1, &(0x7f0000002780)=[{{0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000580)="4689e77cf305bcadbe9e7517efc1eb0cf3aba2a40486e56b64b78514c0da5106b142e35def41b430862aceb964800b79591d7e1d4697e1de1817e9f0d3287b6e06f2645ece3f9c85010a0d7b97b380b0226ee4890d5e84e81e8950c006f5b4c70ecb8d25ce7f0a372e9ed49781bd20fae75fa4d1eaf10c73673f18ea16681e952fe5db60e59ced9565b47dcc1e801cd612a382417bbdbbc589143fcab209ede2dff890ae44a43ab98441cee5d86f17", 0xaf}, {&(0x7f00000007c0)='W', 0x1}, {&(0x7f0000000800)="5134f46d821517afc827c3", 0xb}, {&(0x7f0000000840)="a202806d8e9d33d45b21dbf95b554627cdb33f0db8ca68e7d0d095634ca8f550af4fa0f11d321a0356be45a2bb0fcf7b681bea20a8eb3a80dd3c77e5470724b1cd39c4c027a5d3f5bfdf94f64c25734e983d7276a6e9f1142bca20fd5604ac8d54d7fa444d13e2dea235fb3255e413a4a2483264f66c", 0x76}], 0x4}}], 0x1, 0x0)

[ 1807.005596][T21396] usb 5-1: config 0 descriptor??
03:50:55 executing program 1:
r0 = syz_io_uring_setup(0x184, &(0x7f0000000080), &(0x7f0000147000/0x2000)=nil, &(0x7f0000149000/0x3000)=nil, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet(0x2, 0xa, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000340)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@rxrpc=@in4={0x21, 0x4, 0x2, 0x10}, 0x80, 0x0, 0x0, &(0x7f0000000d80)=ANY=[@ANYBLOB='H'], 0x48}}, 0x0)
io_uring_enter(r0, 0x45f5, 0x0, 0x0, 0x0, 0x1800)

[ 1807.364212][T24231] syz-executor.1 uses obsolete (PF_INET,SOCK_PACKET)
[ 1807.506723][T21396] koneplus 0003:1E7D:2D51.001C: unknown main item tag 0x0
[ 1807.520906][T21396] koneplus 0003:1E7D:2D51.001C: hidraw0: USB HID v0.00 Device [HID 1e7d:2d51] on usb-dummy_hcd.4-1/input0
[ 1807.722581][T24000] usb 5-1: USB disconnect, device number 36
03:50:57 executing program 2:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x74)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='sys_exit\x00', r0}, 0x10)
timer_create(0x5, 0x0, 0x0)

03:50:57 executing program 3:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0xe, 0x4, &(0x7f0000000080)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x2f}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

03:50:57 executing program 5:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000001000)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000000c0)='\x00\x00\x00\x00\x00\x00\x00\x00', 0x8)
r1 = accept4$alg(r0, 0x0, 0x0, 0x0)
sendmmsg$sock(r1, &(0x7f0000002780)=[{{0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000580)="4689e77cf305bcadbe9e7517efc1eb0cf3aba2a40486e56b64b78514c0da5106b142e35def41b430862aceb964800b79591d7e1d4697e1de1817e9f0d3287b6e06f2645ece3f9c85010a0d7b97b380b0226ee4890d5e84e81e8950c006f5b4c70ecb8d25ce7f0a372e9ed49781bd20fae75fa4d1eaf10c73673f18ea16681e952fe5db60e59ced9565b47dcc1e801cd612a382417bbdbbc589143fcab209ede2dff890ae44a43ab98441cee5d86f17", 0xaf}, {&(0x7f00000007c0)='W', 0x1}, {&(0x7f0000000800)="5134f46d821517afc827c3", 0xb}, {&(0x7f0000000840)="a202806d8e9d33d45b21dbf95b554627cdb33f0db8ca68e7d0d095634ca8f550af4fa0f11d321a0356be45a2bb0fcf7b681bea20a8eb3a80dd3c77e5470724b1cd39c4c027a5d3f5bfdf94f64c25734e983d7276a6e9f1142bca20fd5604ac8d54d7fa444d13e2dea235fb3255e413a4a2483264f66c", 0x76}], 0x4}}], 0x1, 0x0)

03:50:57 executing program 1:
r0 = syz_io_uring_setup(0x184, &(0x7f0000000080), &(0x7f0000147000/0x2000)=nil, &(0x7f0000149000/0x3000)=nil, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet(0x2, 0xa, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000340)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@rxrpc=@in4={0x21, 0x4, 0x2, 0x10}, 0x80, 0x0, 0x0, &(0x7f0000000d80)=ANY=[@ANYBLOB='H'], 0x48}}, 0x0)
io_uring_enter(r0, 0x45f5, 0x0, 0x0, 0x0, 0x1800)

03:50:57 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000001c0), r0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_ADD(r2, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)={&(0x7f0000000700)={0x38, r1, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_TAGLST={0x4}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MLSLVLLST={0x10, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x3}]}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}]}, 0x38}}, 0x0)

03:50:57 executing program 4:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10000000140, 0x1e7d, 0x2d51, 0x40, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x1, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x1}}}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="002205"], 0x0}, 0x0)

[ 1808.327520][T24237] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
03:50:57 executing program 5:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000001c0), r0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_ADD(r2, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)={&(0x7f0000000700)={0x38, r1, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_TAGLST={0x4}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MLSLVLLST={0x10, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x3}]}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}]}, 0x38}}, 0x0)

03:50:57 executing program 2:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x30, 0x30, 0x4, [@fwd={0x2}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x3, 0x3}}, @restrict]}, {0x0, [0x0, 0x5f]}}, &(0x7f0000000100)=""/201, 0x4c, 0xc9, 0x1}, 0x20)

03:50:57 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000001c0), r0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_ADD(r2, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)={&(0x7f0000000700)={0x38, r1, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_TAGLST={0x4}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MLSLVLLST={0x10, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x3}]}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}]}, 0x38}}, 0x0)

03:50:57 executing program 1:
r0 = syz_io_uring_setup(0x184, &(0x7f0000000080), &(0x7f0000147000/0x2000)=nil, &(0x7f0000149000/0x3000)=nil, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet(0x2, 0xa, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000340)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@rxrpc=@in4={0x21, 0x4, 0x2, 0x10}, 0x80, 0x0, 0x0, &(0x7f0000000d80)=ANY=[@ANYBLOB='H'], 0x48}}, 0x0)
io_uring_enter(r0, 0x45f5, 0x0, 0x0, 0x0, 0x1800)

03:50:57 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={0x0}, 0x1, 0x0, 0x0, 0x4000000}, 0x8001)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'geneve1\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@newlink={0x48, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r1}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GENEVE_REMOTE6={0x14, 0x7, @empty}]}}}]}, 0x48}}, 0x0)

[ 1808.825553][T24246] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'.
03:50:57 executing program 2:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x30, 0x30, 0x4, [@fwd={0x2}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x3, 0x3}}, @restrict]}, {0x0, [0x0, 0x5f]}}, &(0x7f0000000100)=""/201, 0x4c, 0xc9, 0x1}, 0x20)

[ 1808.893772][T21396] usb 5-1: new high-speed USB device number 37 using dummy_hcd
03:50:57 executing program 5:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000001c0), r0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_ADD(r2, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)={&(0x7f0000000700)={0x38, r1, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_TAGLST={0x4}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MLSLVLLST={0x10, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x3}]}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}]}, 0x38}}, 0x0)

[ 1808.946712][T24253] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
03:50:57 executing program 1:
r0 = syz_io_uring_setup(0x184, &(0x7f0000000080), &(0x7f0000147000/0x2000)=nil, &(0x7f0000149000/0x3000)=nil, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = socket$inet(0x2, 0xa, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000340)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@rxrpc=@in4={0x21, 0x4, 0x2, 0x10}, 0x80, 0x0, 0x0, &(0x7f0000000d80)=ANY=[@ANYBLOB='H'], 0x48}}, 0x0)
io_uring_enter(r0, 0x45f5, 0x0, 0x0, 0x0, 0x1800)

03:50:57 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={0x0}, 0x1, 0x0, 0x0, 0x4000000}, 0x8001)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'geneve1\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@newlink={0x48, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r1}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GENEVE_REMOTE6={0x14, 0x7, @empty}]}}}]}, 0x48}}, 0x0)

03:50:58 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000001c0), r0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_ADD(r2, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)={&(0x7f0000000700)={0x38, r1, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_TAGLST={0x4}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MLSLVLLST={0x10, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x3}]}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}]}, 0x38}}, 0x0)

03:50:58 executing program 2:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x30, 0x30, 0x4, [@fwd={0x2}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x3, 0x3}}, @restrict]}, {0x0, [0x0, 0x5f]}}, &(0x7f0000000100)=""/201, 0x4c, 0xc9, 0x1}, 0x20)

[ 1809.296041][T21396] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1809.307325][T21396] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1809.317419][T21396] usb 5-1: New USB device found, idVendor=1e7d, idProduct=2d51, bcdDevice= 0.40
[ 1809.326754][T21396] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1809.332995][T24258] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 1809.472994][T21396] usb 5-1: config 0 descriptor??
[ 1809.516777][T24263] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1809.956911][T21396] koneplus 0003:1E7D:2D51.001D: unknown main item tag 0x0
[ 1809.969888][T21396] koneplus 0003:1E7D:2D51.001D: hidraw0: USB HID v0.00 Device [HID 1e7d:2d51] on usb-dummy_hcd.4-1/input0
[ 1810.162761][T24000] usb 5-1: USB disconnect, device number 37
03:50:59 executing program 0:
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x89a0, &(0x7f0000000040)={'syzkaller0\x00'})
r1 = socket$packet(0x11, 0x2, 0x300)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'syzkaller0\x00', <r3=>0x0})
setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000180)={r3, 0x1, 0x6, @random="70d3da20e6a1"}, 0x10)
setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f00000000c0)={r3, 0x2, 0x6}, 0x10)
r4 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x89a1, &(0x7f0000000040)={'syzkaller0\x00'})

03:50:59 executing program 1:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r1 = socket$nl_audit(0x10, 0x3, 0x9)
sendfile(r1, r0, 0x0, 0x61c2c9d9)

03:50:59 executing program 5:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000001c0), r0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_ADD(r2, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)={&(0x7f0000000700)={0x38, r1, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_TAGLST={0x4}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MLSLVLLST={0x10, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x3}]}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}]}, 0x38}}, 0x0)

03:50:59 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={0x0}, 0x1, 0x0, 0x0, 0x4000000}, 0x8001)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'geneve1\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@newlink={0x48, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r1}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GENEVE_REMOTE6={0x14, 0x7, @empty}]}}}]}, 0x48}}, 0x0)

03:50:59 executing program 2:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x30, 0x30, 0x4, [@fwd={0x2}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x3, 0x3}}, @restrict]}, {0x0, [0x0, 0x5f]}}, &(0x7f0000000100)=""/201, 0x4c, 0xc9, 0x1}, 0x20)

[ 1810.865796][T24275] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 1810.964257][T24278] device syzkaller0 entered promiscuous mode
03:51:00 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={0x0}, 0x1, 0x0, 0x0, 0x4000000}, 0x8001)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'geneve1\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@newlink={0x48, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r1}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GENEVE_REMOTE6={0x14, 0x7, @empty}]}}}]}, 0x48}}, 0x0)

03:51:00 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000300)=@filter={'filter\x00', 0xe, 0x0, 0x90, [], 0x11000000, 0x0, &(0x7f0000000240)=[{}, {}, {}]}, 0xe0)

[ 1811.175355][T24274] device syzkaller0 left promiscuous mode
03:51:00 executing program 2:
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000180)='proc\x00', 0x0, 0x0)
r0 = inotify_init()
inotify_add_watch(r0, &(0x7f0000000200)='./file0\x00', 0x22000828)
r1 = open$dir(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
getdents64(r1, &(0x7f0000002240)=""/4088, 0x5bf)
getdents(r1, &(0x7f0000000040)=""/245, 0xf5)
getdents(r1, &(0x7f0000000340)=""/47, 0x2f)

03:51:00 executing program 4:
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r0, &(0x7f0000000500)={&(0x7f0000000080)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000380)=[{0x0}, {&(0x7f0000000280)=""/34, 0xd000}], 0x2}, 0x0)

03:51:00 executing program 5:
r0 = creat(&(0x7f00000001c0)='./file0\x00', 0x0)
close(r0)
r1 = openat$vim2m(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
ioctl$vim2m_VIDIOC_REQBUFS(r1, 0xc0145608, &(0x7f0000000000)={0x22, 0x1, 0x1})
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
mount$9p_fd(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000640), 0x0, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}})

03:51:00 executing program 0:
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x89a0, &(0x7f0000000040)={'syzkaller0\x00'})
r1 = socket$packet(0x11, 0x2, 0x300)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'syzkaller0\x00', <r3=>0x0})
setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000180)={r3, 0x1, 0x6, @random="70d3da20e6a1"}, 0x10)
setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f00000000c0)={r3, 0x2, 0x6}, 0x10)
r4 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x89a1, &(0x7f0000000040)={'syzkaller0\x00'})

03:51:00 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000180)=0x400000001, 0xc2)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f0000000140)=0x1, 0x4)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @empty}, 0x1c)
setsockopt$inet6_opts(r0, 0x29, 0x3b, 0x0, 0x0)
io_setup(0xb, &(0x7f0000000280)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f00000004c0)=[&(0x7f0000000000)={0x180a, 0x0, 0x0, 0x1, 0x0, r0, 0x0}])

03:51:00 executing program 2:
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000180)='proc\x00', 0x0, 0x0)
r0 = inotify_init()
inotify_add_watch(r0, &(0x7f0000000200)='./file0\x00', 0x22000828)
r1 = open$dir(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
getdents64(r1, &(0x7f0000002240)=""/4088, 0x5bf)
getdents(r1, &(0x7f0000000040)=""/245, 0xf5)
getdents(r1, &(0x7f0000000340)=""/47, 0x2f)

03:51:00 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000300)=@filter={'filter\x00', 0xe, 0x0, 0x90, [], 0x11000000, 0x0, &(0x7f0000000240)=[{}, {}, {}]}, 0xe0)

03:51:00 executing program 3:
r0 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010001fff0000056800080000faff0000", @ANYRES32=0x0, @ANYBLOB="0000000000000000280012800a00010076786c616e0000001800028014001000d9"], 0x48}}, 0x0)
sendmmsg$alg(r0, &(0x7f00000000c0), 0x492492492492627, 0x0)

[ 1812.013043][T24294] device syzkaller0 entered promiscuous mode
03:51:01 executing program 2:
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000180)='proc\x00', 0x0, 0x0)
r0 = inotify_init()
inotify_add_watch(r0, &(0x7f0000000200)='./file0\x00', 0x22000828)
r1 = open$dir(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
getdents64(r1, &(0x7f0000002240)=""/4088, 0x5bf)
getdents(r1, &(0x7f0000000040)=""/245, 0xf5)
getdents(r1, &(0x7f0000000340)=""/47, 0x2f)

03:51:01 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000180)=0x400000001, 0xc2)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f0000000140)=0x1, 0x4)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @empty}, 0x1c)
setsockopt$inet6_opts(r0, 0x29, 0x3b, 0x0, 0x0)
io_setup(0xb, &(0x7f0000000280)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f00000004c0)=[&(0x7f0000000000)={0x180a, 0x0, 0x0, 0x1, 0x0, r0, 0x0}])

03:51:01 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000300)=@filter={'filter\x00', 0xe, 0x0, 0x90, [], 0x11000000, 0x0, &(0x7f0000000240)=[{}, {}, {}]}, 0xe0)

[ 1812.158483][T24294] device syzkaller0 left promiscuous mode
03:51:01 executing program 3:
r0 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010001fff0000056800080000faff0000", @ANYRES32=0x0, @ANYBLOB="0000000000000000280012800a00010076786c616e0000001800028014001000d9"], 0x48}}, 0x0)
sendmmsg$alg(r0, &(0x7f00000000c0), 0x492492492492627, 0x0)

03:51:01 executing program 0:
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x89a0, &(0x7f0000000040)={'syzkaller0\x00'})
r1 = socket$packet(0x11, 0x2, 0x300)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'syzkaller0\x00', <r3=>0x0})
setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000180)={r3, 0x1, 0x6, @random="70d3da20e6a1"}, 0x10)
setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f00000000c0)={r3, 0x2, 0x6}, 0x10)
r4 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x89a1, &(0x7f0000000040)={'syzkaller0\x00'})

03:51:01 executing program 2:
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000180)='proc\x00', 0x0, 0x0)
r0 = inotify_init()
inotify_add_watch(r0, &(0x7f0000000200)='./file0\x00', 0x22000828)
r1 = open$dir(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
getdents64(r1, &(0x7f0000002240)=""/4088, 0x5bf)
getdents(r1, &(0x7f0000000040)=""/245, 0xf5)
getdents(r1, &(0x7f0000000340)=""/47, 0x2f)

[ 1812.875821][T24313] device syzkaller0 entered promiscuous mode
[ 1812.954021][T24312] device syzkaller0 left promiscuous mode
03:51:02 executing program 5:
r0 = creat(&(0x7f00000001c0)='./file0\x00', 0x0)
close(r0)
r1 = openat$vim2m(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
ioctl$vim2m_VIDIOC_REQBUFS(r1, 0xc0145608, &(0x7f0000000000)={0x22, 0x1, 0x1})
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
mount$9p_fd(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000640), 0x0, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}})

03:51:02 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000180)=0x400000001, 0xc2)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f0000000140)=0x1, 0x4)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @empty}, 0x1c)
setsockopt$inet6_opts(r0, 0x29, 0x3b, 0x0, 0x0)
io_setup(0xb, &(0x7f0000000280)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f00000004c0)=[&(0x7f0000000000)={0x180a, 0x0, 0x0, 0x1, 0x0, r0, 0x0}])

03:51:02 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000300)=@filter={'filter\x00', 0xe, 0x0, 0x90, [], 0x11000000, 0x0, &(0x7f0000000240)=[{}, {}, {}]}, 0xe0)

03:51:02 executing program 3:
r0 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010001fff0000056800080000faff0000", @ANYRES32=0x0, @ANYBLOB="0000000000000000280012800a00010076786c616e0000001800028014001000d9"], 0x48}}, 0x0)
sendmmsg$alg(r0, &(0x7f00000000c0), 0x492492492492627, 0x0)

03:51:02 executing program 0:
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x89a0, &(0x7f0000000040)={'syzkaller0\x00'})
r1 = socket$packet(0x11, 0x2, 0x300)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'syzkaller0\x00', <r3=>0x0})
setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000180)={r3, 0x1, 0x6, @random="70d3da20e6a1"}, 0x10)
setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f00000000c0)={r3, 0x2, 0x6}, 0x10)
r4 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x89a1, &(0x7f0000000040)={'syzkaller0\x00'})

03:51:02 executing program 2:
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000001a00), 0x0, 0x0)
unshare(0x2000400)
read$FUSE(r0, 0x0, 0x0)

03:51:02 executing program 3:
r0 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010001fff0000056800080000faff0000", @ANYRES32=0x0, @ANYBLOB="0000000000000000280012800a00010076786c616e0000001800028014001000d9"], 0x48}}, 0x0)
sendmmsg$alg(r0, &(0x7f00000000c0), 0x492492492492627, 0x0)

03:51:02 executing program 1:
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet6(0x10, 0x3, 0x0)
sendto$inet6(r2, &(0x7f0000000140)="1ba0000016001d0d89fdc5cbdd045798707bed4dca141a780f0f8e", 0xff3b, 0x0, 0x0, 0x0)
recvfrom$inet6(r2, &(0x7f0000000000)=""/28, 0x1c, 0x0, 0x0, 0x0)
writev(0xffffffffffffffff, &(0x7f00000002c0)=[{&(0x7f0000000000)="48050000150019", 0x7}], 0x1)
write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x400000, 0x0)

03:51:02 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000180)=0x400000001, 0xc2)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f0000000140)=0x1, 0x4)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @empty}, 0x1c)
setsockopt$inet6_opts(r0, 0x29, 0x3b, 0x0, 0x0)
io_setup(0xb, &(0x7f0000000280)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f00000004c0)=[&(0x7f0000000000)={0x180a, 0x0, 0x0, 0x1, 0x0, r0, 0x0}])

03:51:02 executing program 2:
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000001a00), 0x0, 0x0)
unshare(0x2000400)
read$FUSE(r0, 0x0, 0x0)

03:51:02 executing program 0:
unshare(0x6c060000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x380000f, 0x6031, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_CONTINUE(r0, 0x8010aa01, &(0x7f0000000100)={{&(0x7f000047e000/0x3000)=nil, 0x3000}})
ioctl$UFFDIO_WRITEPROTECT(r0, 0xc020aa07, &(0x7f0000000000)={{&(0x7f0000ffa000/0x4000)=nil, 0x4000}})

[ 1813.963058][T24339] netlink: 1320 bytes leftover after parsing attributes in process `syz-executor.1'.
03:51:03 executing program 2:
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000001a00), 0x0, 0x0)
unshare(0x2000400)
read$FUSE(r0, 0x0, 0x0)

[ 1814.281090][T24343] vcan0 speed is unknown, defaulting to 1000
03:51:03 executing program 5:
r0 = creat(&(0x7f00000001c0)='./file0\x00', 0x0)
close(r0)
r1 = openat$vim2m(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
ioctl$vim2m_VIDIOC_REQBUFS(r1, 0xc0145608, &(0x7f0000000000)={0x22, 0x1, 0x1})
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
mount$9p_fd(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000640), 0x0, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}})

03:51:03 executing program 3:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f0000001c00)=ANY=[@ANYBLOB="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"], &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f0000000200)=""/4096, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x3b)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000400)={r0, 0xffffff7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

03:51:03 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_BEACON(r0, &(0x7f0000000e00)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000b80)={0x80, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_BEACON_HEAD={0x63, 0xe, {@wo_ht={{0x0, 0x2}, {}, @device_b}, 0x0, @random, 0x0, @void, @void, @void, @void, @void, @void, @val={0x25, 0x3}, @val={0x2a, 0x1}, @val={0x3c, 0x4}, @val={0x2d, 0x1a}, @val={0x72, 0x6}, @val={0x71, 0x7}, @void}}]}, 0x80}}, 0x0)

03:51:04 executing program 2:
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000001a00), 0x0, 0x0)
unshare(0x2000400)
read$FUSE(r0, 0x0, 0x0)

03:51:04 executing program 1:
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet6(0x10, 0x3, 0x0)
sendto$inet6(r2, &(0x7f0000000140)="1ba0000016001d0d89fdc5cbdd045798707bed4dca141a780f0f8e", 0xff3b, 0x0, 0x0, 0x0)
recvfrom$inet6(r2, &(0x7f0000000000)=""/28, 0x1c, 0x0, 0x0, 0x0)
writev(0xffffffffffffffff, &(0x7f00000002c0)=[{&(0x7f0000000000)="48050000150019", 0x7}], 0x1)
write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x400000, 0x0)

03:51:04 executing program 2:
r0 = creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39ddd8)
close(r0)
execve(&(0x7f0000000080)='./file0\x00', 0x0, &(0x7f0000000380)=[&(0x7f00000002c0)='=\x00'])

[ 1815.357832][T24358] netlink: 1320 bytes leftover after parsing attributes in process `syz-executor.1'.
03:51:04 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_BEACON(r0, &(0x7f0000000e00)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000b80)={0x80, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_BEACON_HEAD={0x63, 0xe, {@wo_ht={{0x0, 0x2}, {}, @device_b}, 0x0, @random, 0x0, @void, @void, @void, @void, @void, @void, @val={0x25, 0x3}, @val={0x2a, 0x1}, @val={0x3c, 0x4}, @val={0x2d, 0x1a}, @val={0x72, 0x6}, @val={0x71, 0x7}, @void}}]}, 0x80}}, 0x0)

03:51:04 executing program 3:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f0000001c00)=ANY=[@ANYBLOB="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"], &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f0000000200)=""/4096, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x3b)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000400)={r0, 0xffffff7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

03:51:04 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_BEACON(r0, &(0x7f0000000e00)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000b80)={0x80, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_BEACON_HEAD={0x63, 0xe, {@wo_ht={{0x0, 0x2}, {}, @device_b}, 0x0, @random, 0x0, @void, @void, @void, @void, @void, @void, @val={0x25, 0x3}, @val={0x2a, 0x1}, @val={0x3c, 0x4}, @val={0x2d, 0x1a}, @val={0x72, 0x6}, @val={0x71, 0x7}, @void}}]}, 0x80}}, 0x0)

03:51:04 executing program 3:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f0000001c00)=ANY=[@ANYBLOB="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"], &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f0000000200)=""/4096, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x3b)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000400)={r0, 0xffffff7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

03:51:06 executing program 0:
unshare(0x6c060000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x380000f, 0x6031, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_CONTINUE(r0, 0x8010aa01, &(0x7f0000000100)={{&(0x7f000047e000/0x3000)=nil, 0x3000}})
ioctl$UFFDIO_WRITEPROTECT(r0, 0xc020aa07, &(0x7f0000000000)={{&(0x7f0000ffa000/0x4000)=nil, 0x4000}})

03:51:06 executing program 2:
r0 = creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39ddd8)
close(r0)
execve(&(0x7f0000000080)='./file0\x00', 0x0, &(0x7f0000000380)=[&(0x7f00000002c0)='=\x00'])

03:51:06 executing program 1:
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet6(0x10, 0x3, 0x0)
sendto$inet6(r2, &(0x7f0000000140)="1ba0000016001d0d89fdc5cbdd045798707bed4dca141a780f0f8e", 0xff3b, 0x0, 0x0, 0x0)
recvfrom$inet6(r2, &(0x7f0000000000)=""/28, 0x1c, 0x0, 0x0, 0x0)
writev(0xffffffffffffffff, &(0x7f00000002c0)=[{&(0x7f0000000000)="48050000150019", 0x7}], 0x1)
write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x400000, 0x0)

03:51:06 executing program 5:
r0 = creat(&(0x7f00000001c0)='./file0\x00', 0x0)
close(r0)
r1 = openat$vim2m(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
ioctl$vim2m_VIDIOC_REQBUFS(r1, 0xc0145608, &(0x7f0000000000)={0x22, 0x1, 0x1})
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
mount$9p_fd(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000640), 0x0, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}})

03:51:06 executing program 3:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f0000001c00)=ANY=[@ANYBLOB="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"], &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f0000000200)=""/4096, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x3b)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000400)={r0, 0xffffff7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

03:51:06 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_BEACON(r0, &(0x7f0000000e00)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000b80)={0x80, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_BEACON_HEAD={0x63, 0xe, {@wo_ht={{0x0, 0x2}, {}, @device_b}, 0x0, @random, 0x0, @void, @void, @void, @void, @void, @void, @val={0x25, 0x3}, @val={0x2a, 0x1}, @val={0x3c, 0x4}, @val={0x2d, 0x1a}, @val={0x72, 0x6}, @val={0x71, 0x7}, @void}}]}, 0x80}}, 0x0)

[ 1817.627499][T24386] netlink: 1320 bytes leftover after parsing attributes in process `syz-executor.1'.
03:51:06 executing program 4:
unshare(0x6c060000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x380000f, 0x6031, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_CONTINUE(r0, 0x8010aa01, &(0x7f0000000100)={{&(0x7f000047e000/0x3000)=nil, 0x3000}})
ioctl$UFFDIO_WRITEPROTECT(r0, 0xc020aa07, &(0x7f0000000000)={{&(0x7f0000ffa000/0x4000)=nil, 0x4000}})

[ 1817.902033][T24390] vcan0 speed is unknown, defaulting to 1000
[ 1817.905390][T24388] 9pnet_fd: Insufficient options for proto=fd
03:51:06 executing program 3:
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f00000007c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)

03:51:07 executing program 3:
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f00000007c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)

03:51:07 executing program 2:
r0 = creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39ddd8)
close(r0)
execve(&(0x7f0000000080)='./file0\x00', 0x0, &(0x7f0000000380)=[&(0x7f00000002c0)='=\x00'])

03:51:07 executing program 1:
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet6(0x10, 0x3, 0x0)
sendto$inet6(r2, &(0x7f0000000140)="1ba0000016001d0d89fdc5cbdd045798707bed4dca141a780f0f8e", 0xff3b, 0x0, 0x0, 0x0)
recvfrom$inet6(r2, &(0x7f0000000000)=""/28, 0x1c, 0x0, 0x0, 0x0)
writev(0xffffffffffffffff, &(0x7f00000002c0)=[{&(0x7f0000000000)="48050000150019", 0x7}], 0x1)
write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x400000, 0x0)

03:51:07 executing program 3:
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f00000007c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)

[ 1818.807698][T24405] netlink: 1320 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 1819.181360][T24396] vcan0 speed is unknown, defaulting to 1000
03:51:11 executing program 0:
unshare(0x6c060000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x380000f, 0x6031, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_CONTINUE(r0, 0x8010aa01, &(0x7f0000000100)={{&(0x7f000047e000/0x3000)=nil, 0x3000}})
ioctl$UFFDIO_WRITEPROTECT(r0, 0xc020aa07, &(0x7f0000000000)={{&(0x7f0000ffa000/0x4000)=nil, 0x4000}})

03:51:11 executing program 2:
r0 = creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39ddd8)
close(r0)
execve(&(0x7f0000000080)='./file0\x00', 0x0, &(0x7f0000000380)=[&(0x7f00000002c0)='=\x00'])

03:51:11 executing program 3:
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f00000007c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)

03:51:11 executing program 5:
pipe(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000180)=ANY=[@ANYBLOB="7a40080200190000000000ff01ff04"], 0x4240a2a0)
socket$inet(0x2, 0x200000003, 0x84)
bind$inet(r2, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r2, &(0x7f0000001280)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x1000, 0x0)

03:51:11 executing program 1:
unshare(0x40400)
r0 = socket$pptp(0x18, 0x1, 0x2)
connect$pptp(r0, 0x0, 0x0)

03:51:11 executing program 1:
unshare(0x40400)
r0 = socket$pptp(0x18, 0x1, 0x2)
connect$pptp(r0, 0x0, 0x0)

[ 1822.913442][T24421] vcan0 speed is unknown, defaulting to 1000
03:51:11 executing program 4:
unshare(0x6c060000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x380000f, 0x6031, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_CONTINUE(r0, 0x8010aa01, &(0x7f0000000100)={{&(0x7f000047e000/0x3000)=nil, 0x3000}})
ioctl$UFFDIO_WRITEPROTECT(r0, 0xc020aa07, &(0x7f0000000000)={{&(0x7f0000ffa000/0x4000)=nil, 0x4000}})

03:51:11 executing program 3:
mount$fuseblk(0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="0420eb00000000000001090000007f0008000000b4f1a0930136388520a54a95a0a13f4ada47f103d4a9e0a1e40300bb7c0d1832120bb29f66c45420de69658b4a042d06"])
r0 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
add_key(&(0x7f0000000080)='pkcs7_test\x00', 0x0, &(0x7f0000000200)="3081a3", 0x1001, r0)

[ 1823.217018][T24427] PKCS7: Unknown OID: [5] (bad)
[ 1823.222304][T24427] PKCS7: Only support pkcs7_signedData type
03:51:12 executing program 1:
unshare(0x40400)
r0 = socket$pptp(0x18, 0x1, 0x2)
connect$pptp(r0, 0x0, 0x0)

03:51:12 executing program 3:
mount$fuseblk(0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="0420eb00000000000001090000007f0008000000b4f1a0930136388520a54a95a0a13f4ada47f103d4a9e0a1e40300bb7c0d1832120bb29f66c45420de69658b4a042d06"])
r0 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
add_key(&(0x7f0000000080)='pkcs7_test\x00', 0x0, &(0x7f0000000200)="3081a3", 0x1001, r0)

03:51:12 executing program 2:
r0 = syz_open_dev$sndctrl(&(0x7f0000000580), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f00000002c0)=0x9)
poll(&(0x7f00000001c0)=[{r0}], 0x1, 0x0)

03:51:12 executing program 2:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=@newqdisc={0x24}, 0x24}}, 0x0)
getsockname$packet(r1, &(0x7f0000000080)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000140)=@newqdisc={0x48, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_cbs={{0x8}, {0x1c, 0x2, @TCA_CBS_PARMS={0x18, 0x1, {0x7}}}}]}, 0x48}}, 0x0)

[ 1823.925495][T24438] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1824.544983][T24428] vcan0 speed is unknown, defaulting to 1000
03:51:16 executing program 0:
unshare(0x6c060000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x380000f, 0x6031, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_CONTINUE(r0, 0x8010aa01, &(0x7f0000000100)={{&(0x7f000047e000/0x3000)=nil, 0x3000}})
ioctl$UFFDIO_WRITEPROTECT(r0, 0xc020aa07, &(0x7f0000000000)={{&(0x7f0000ffa000/0x4000)=nil, 0x4000}})

03:51:16 executing program 5:
pipe(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000180)=ANY=[@ANYBLOB="7a40080200190000000000ff01ff04"], 0x4240a2a0)
socket$inet(0x2, 0x200000003, 0x84)
bind$inet(r2, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r2, &(0x7f0000001280)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x1000, 0x0)

03:51:16 executing program 1:
unshare(0x40400)
r0 = socket$pptp(0x18, 0x1, 0x2)
connect$pptp(r0, 0x0, 0x0)

03:51:16 executing program 2:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=@newqdisc={0x24}, 0x24}}, 0x0)
getsockname$packet(r1, &(0x7f0000000080)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000140)=@newqdisc={0x48, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_cbs={{0x8}, {0x1c, 0x2, @TCA_CBS_PARMS={0x18, 0x1, {0x7}}}}]}, 0x48}}, 0x0)

03:51:16 executing program 3:
mount$fuseblk(0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="0420eb00000000000001090000007f0008000000b4f1a0930136388520a54a95a0a13f4ada47f103d4a9e0a1e40300bb7c0d1832120bb29f66c45420de69658b4a042d06"])
r0 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
add_key(&(0x7f0000000080)='pkcs7_test\x00', 0x0, &(0x7f0000000200)="3081a3", 0x1001, r0)

03:51:16 executing program 4:
unshare(0x6c060000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x380000f, 0x6031, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_CONTINUE(r0, 0x8010aa01, &(0x7f0000000100)={{&(0x7f000047e000/0x3000)=nil, 0x3000}})
ioctl$UFFDIO_WRITEPROTECT(r0, 0xc020aa07, &(0x7f0000000000)={{&(0x7f0000ffa000/0x4000)=nil, 0x4000}})

[ 1827.774759][T24450] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1827.777344][T24451] PKCS7: Unknown OID: [5] (bad)
[ 1827.789760][T24451] PKCS7: Only support pkcs7_signedData type
03:51:16 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=@newqdisc={0x24}, 0x24}}, 0x0)
getsockname$packet(r1, &(0x7f0000000080)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000140)=@newqdisc={0x48, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_cbs={{0x8}, {0x1c, 0x2, @TCA_CBS_PARMS={0x18, 0x1, {0x7}}}}]}, 0x48}}, 0x0)

[ 1828.041738][T24457] vcan0 speed is unknown, defaulting to 1000
03:51:16 executing program 3:
mount$fuseblk(0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="0420eb00000000000001090000007f0008000000b4f1a0930136388520a54a95a0a13f4ada47f103d4a9e0a1e40300bb7c0d1832120bb29f66c45420de69658b4a042d06"])
r0 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
add_key(&(0x7f0000000080)='pkcs7_test\x00', 0x0, &(0x7f0000000200)="3081a3", 0x1001, r0)

03:51:17 executing program 2:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=@newqdisc={0x24}, 0x24}}, 0x0)
getsockname$packet(r1, &(0x7f0000000080)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000140)=@newqdisc={0x48, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_cbs={{0x8}, {0x1c, 0x2, @TCA_CBS_PARMS={0x18, 0x1, {0x7}}}}]}, 0x48}}, 0x0)

[ 1828.368552][T24453] vcan0 speed is unknown, defaulting to 1000
[ 1828.456250][T24460] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 1828.569986][T24462] PKCS7: Unknown OID: [5] (bad)
[ 1828.575247][T24462] PKCS7: Only support pkcs7_signedData type
03:51:17 executing program 5:
pipe(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000180)=ANY=[@ANYBLOB="7a40080200190000000000ff01ff04"], 0x4240a2a0)
socket$inet(0x2, 0x200000003, 0x84)
bind$inet(r2, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r2, &(0x7f0000001280)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x1000, 0x0)

03:51:17 executing program 3:
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x24, &(0x7f0000000180)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00'}, 0x30)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000500)='freezer.self_freezing\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000100)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
read(r1, 0x0, 0x3)

[ 1828.764025][T24464] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'.
03:51:17 executing program 3:
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x24, &(0x7f0000000180)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00'}, 0x30)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000500)='freezer.self_freezing\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000100)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
read(r1, 0x0, 0x3)

03:51:20 executing program 4:
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000480)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENT(r2, &(0x7f0000000380)=ANY=[@ANYBLOB='P'], 0x50)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@uname={'uname', 0x2c, 'trans=fd,'}}]}})

03:51:20 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=@newqdisc={0x24}, 0x24}}, 0x0)
getsockname$packet(r1, &(0x7f0000000080)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000140)=@newqdisc={0x48, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_cbs={{0x8}, {0x1c, 0x2, @TCA_CBS_PARMS={0x18, 0x1, {0x7}}}}]}, 0x48}}, 0x0)

03:51:20 executing program 2:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=@newqdisc={0x24}, 0x24}}, 0x0)
getsockname$packet(r1, &(0x7f0000000080)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000140)=@newqdisc={0x48, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_cbs={{0x8}, {0x1c, 0x2, @TCA_CBS_PARMS={0x18, 0x1, {0x7}}}}]}, 0x48}}, 0x0)

03:51:20 executing program 0:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000480)=@getspdinfo={0x14, 0x25, 0x1}, 0x14}}, 0x0)

03:51:20 executing program 3:
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x24, &(0x7f0000000180)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00'}, 0x30)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000500)='freezer.self_freezing\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000100)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
read(r1, 0x0, 0x3)

03:51:20 executing program 5:
pipe(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000180)=ANY=[@ANYBLOB="7a40080200190000000000ff01ff04"], 0x4240a2a0)
socket$inet(0x2, 0x200000003, 0x84)
bind$inet(r2, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r2, &(0x7f0000001280)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x1000, 0x0)

[ 1831.668397][T24482] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'.
03:51:20 executing program 3:
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x24, &(0x7f0000000180)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00'}, 0x30)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000500)='freezer.self_freezing\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000100)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
read(r1, 0x0, 0x3)

[ 1831.913025][T24483] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'.
03:51:20 executing program 4:
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000480)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENT(r2, &(0x7f0000000380)=ANY=[@ANYBLOB='P'], 0x50)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@uname={'uname', 0x2c, 'trans=fd,'}}]}})

03:51:20 executing program 0:
r0 = socket$rds(0x15, 0x5, 0x0)
sendmmsg$inet6(r0, &(0x7f00000025c0)=[{{&(0x7f00000012c0)={0xa, 0x0, 0x0, @mcast2}, 0x1c, 0x0}}], 0x1, 0x0)

03:51:21 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=@newqdisc={0x24}, 0x24}}, 0x0)
getsockname$packet(r1, &(0x7f0000000080)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000140)=@newqdisc={0x48, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_cbs={{0x8}, {0x1c, 0x2, @TCA_CBS_PARMS={0x18, 0x1, {0x7}}}}]}, 0x48}}, 0x0)

03:51:21 executing program 2:
unshare(0x2a040600)
r0 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r0, &(0x7f00000006c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
connect$unix(r0, &(0x7f0000000000)=@file={0x0, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

03:51:21 executing program 0:
r0 = socket$rds(0x15, 0x5, 0x0)
sendmmsg$inet6(r0, &(0x7f00000025c0)=[{{&(0x7f00000012c0)={0xa, 0x0, 0x0, @mcast2}, 0x1c, 0x0}}], 0x1, 0x0)

[ 1832.593313][T24500] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'.
03:51:21 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000680)={0x54, r1, 0x1, 0x0, 0x0, {0x25}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x8e, 0x2}, {0xc, 0x8f, 0x200}, {0xc, 0x90, 0x81}}]}, 0x54}}, 0x0)

03:51:21 executing program 4:
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000480)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENT(r2, &(0x7f0000000380)=ANY=[@ANYBLOB='P'], 0x50)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@uname={'uname', 0x2c, 'trans=fd,'}}]}})

03:51:21 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @loopback}, 0x1c)
listen(r0, 0x0)
ioctl$sock_inet6_tcp_SIOCOUTQNSD(r0, 0x894b, &(0x7f0000000000))
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x20000004, &(0x7f000031e000)={0xa, 0x4e22}, 0x1c)
r2 = socket$inet6(0x10, 0x3, 0x4)
ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, &(0x7f0000000100)={0x8, 0x1, 0xb50b, 0xf8, 0x1f})
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000080)={0x0, <r4=>0x0}, &(0x7f00000000c0)=0x5)
setuid(r4)
sendto$inet6(r2, &(0x7f0000000040)="4c00000012001f15b9409b849ac00a00a57840030000000000f0030038c88cc055c5ac27a6c5b00400bf46d323456536005ad94a461cdbfee9bdb9423523598451d1ec0cffc8792cd8000000", 0x4c, 0x0, 0x0, 0x0)

03:51:21 executing program 2:
unshare(0x2a040600)
r0 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r0, &(0x7f00000006c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
connect$unix(r0, &(0x7f0000000000)=@file={0x0, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

03:51:22 executing program 0:
r0 = socket$rds(0x15, 0x5, 0x0)
sendmmsg$inet6(r0, &(0x7f00000025c0)=[{{&(0x7f00000012c0)={0xa, 0x0, 0x0, @mcast2}, 0x1c, 0x0}}], 0x1, 0x0)

03:51:22 executing program 3:
unshare(0x2a040600)
r0 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r0, &(0x7f00000006c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
connect$unix(r0, &(0x7f0000000000)=@file={0x0, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

03:51:22 executing program 1:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000340), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY(r0, &(0x7f0000000300)={0x13, 0x10, 0xfa00, {&(0x7f0000001540), r1}}, 0x18)

03:51:22 executing program 4:
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000480)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENT(r2, &(0x7f0000000380)=ANY=[@ANYBLOB='P'], 0x50)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@uname={'uname', 0x2c, 'trans=fd,'}}]}})

03:51:22 executing program 1:
r0 = socket$packet(0x11, 0x4000000000002, 0x300)
setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
poll(&(0x7f00000003c0)=[{r0}], 0x1, 0x0)

03:51:22 executing program 2:
unshare(0x2a040600)
r0 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r0, &(0x7f00000006c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
connect$unix(r0, &(0x7f0000000000)=@file={0x0, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

03:51:22 executing program 3:
unshare(0x2a040600)
r0 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r0, &(0x7f00000006c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
connect$unix(r0, &(0x7f0000000000)=@file={0x0, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

03:51:22 executing program 0:
r0 = socket$rds(0x15, 0x5, 0x0)
sendmmsg$inet6(r0, &(0x7f00000025c0)=[{{&(0x7f00000012c0)={0xa, 0x0, 0x0, @mcast2}, 0x1c, 0x0}}], 0x1, 0x0)

03:51:22 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @loopback}, 0x1c)
listen(r0, 0x0)
ioctl$sock_inet6_tcp_SIOCOUTQNSD(r0, 0x894b, &(0x7f0000000000))
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x20000004, &(0x7f000031e000)={0xa, 0x4e22}, 0x1c)
r2 = socket$inet6(0x10, 0x3, 0x4)
ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, &(0x7f0000000100)={0x8, 0x1, 0xb50b, 0xf8, 0x1f})
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000080)={0x0, <r4=>0x0}, &(0x7f00000000c0)=0x5)
setuid(r4)
sendto$inet6(r2, &(0x7f0000000040)="4c00000012001f15b9409b849ac00a00a57840030000000000f0030038c88cc055c5ac27a6c5b00400bf46d323456536005ad94a461cdbfee9bdb9423523598451d1ec0cffc8792cd8000000", 0x4c, 0x0, 0x0, 0x0)

03:51:22 executing program 1:
r0 = socket$packet(0x11, 0x4000000000002, 0x300)
setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
poll(&(0x7f00000003c0)=[{r0}], 0x1, 0x0)

03:51:23 executing program 2:
unshare(0x2a040600)
r0 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r0, &(0x7f00000006c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
connect$unix(r0, &(0x7f0000000000)=@file={0x0, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

03:51:23 executing program 3:
unshare(0x2a040600)
r0 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r0, &(0x7f00000006c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
connect$unix(r0, &(0x7f0000000000)=@file={0x0, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

03:51:23 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @loopback}, 0x1c)
listen(r0, 0x0)
ioctl$sock_inet6_tcp_SIOCOUTQNSD(r0, 0x894b, &(0x7f0000000000))
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x20000004, &(0x7f000031e000)={0xa, 0x4e22}, 0x1c)
r2 = socket$inet6(0x10, 0x3, 0x4)
ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, &(0x7f0000000100)={0x8, 0x1, 0xb50b, 0xf8, 0x1f})
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000080)={0x0, <r4=>0x0}, &(0x7f00000000c0)=0x5)
setuid(r4)
sendto$inet6(r2, &(0x7f0000000040)="4c00000012001f15b9409b849ac00a00a57840030000000000f0030038c88cc055c5ac27a6c5b00400bf46d323456536005ad94a461cdbfee9bdb9423523598451d1ec0cffc8792cd8000000", 0x4c, 0x0, 0x0, 0x0)

03:51:23 executing program 0:
r0 = socket(0x10, 0x803, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0), r2)
getsockname$packet(r2, &(0x7f0000000380)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000500)=@newqdisc={0x2c, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8}, {0x4}}]}, 0x30}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8}, {0x4}}]}, 0x30}}, 0x0)

03:51:23 executing program 1:
r0 = socket$packet(0x11, 0x4000000000002, 0x300)
setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
poll(&(0x7f00000003c0)=[{r0}], 0x1, 0x0)

03:51:23 executing program 2:
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
connect$nfc_llcp(r0, &(0x7f0000000040)={0x27, 0x0, 0x0, 0x0, 0xfc, 0x0, "f169a727ee5fa4f7f13c6fa99919b922ec736d26f72178d5b54df0c38e6be631882fa43749ec29285a025a3b85e7908c6d3891366e5d6aa3dd3a6514e04113"}, 0x60)

[ 1834.735480][T24542] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1834.821862][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
03:51:23 executing program 3:
ioctl$SNDRV_TIMER_IOCTL_GINFO(0xffffffffffffffff, 0xc0f85403, &(0x7f00000004c0)={{0x0, 0x2, 0x80, 0x2}, 0x1, 0x7, 'id1\x00', 'timer0\x00', 0x0, 0x4, 0x8, 0x7, 0x9})
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x10b)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f00000000c0)={0x0, 0x0, {0x0, @struct}, {0x0, @struct}, {0x0, @struct}})
ftruncate(r0, 0x800)
lseek(r0, 0x200, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x24000, 0x0)
sendfile(r0, r1, 0x0, 0x1dd00)
finit_module(r1, &(0x7f0000000080)='(-.]\x00', 0x3)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000600)={&(0x7f00000005c0)='./bus\x00', 0x0, 0x38}, 0x10)
fcntl$addseals(r0, 0x409, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xa, 0x4, &(0x7f0000000640)=ANY=[@ANYBLOB="b400000000000000dd0a00000000000073010f8d7fbe1db54cfd2b97aad01e4100000000009500000000000000"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xb5}, 0x48)

03:51:24 executing program 0:
r0 = socket(0x10, 0x803, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0), r2)
getsockname$packet(r2, &(0x7f0000000380)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000500)=@newqdisc={0x2c, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8}, {0x4}}]}, 0x30}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8}, {0x4}}]}, 0x30}}, 0x0)

03:51:24 executing program 1:
r0 = socket$packet(0x11, 0x4000000000002, 0x300)
setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
poll(&(0x7f00000003c0)=[{r0}], 0x1, 0x0)

03:51:24 executing program 2:
r0 = socket$isdn_base(0x22, 0x3, 0x0)
ioctl$IMGETCOUNT(r0, 0x8912, &(0x7f0000000d00))

03:51:24 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @loopback}, 0x1c)
listen(r0, 0x0)
ioctl$sock_inet6_tcp_SIOCOUTQNSD(r0, 0x894b, &(0x7f0000000000))
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x20000004, &(0x7f000031e000)={0xa, 0x4e22}, 0x1c)
r2 = socket$inet6(0x10, 0x3, 0x4)
ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, &(0x7f0000000100)={0x8, 0x1, 0xb50b, 0xf8, 0x1f})
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000080)={0x0, <r4=>0x0}, &(0x7f00000000c0)=0x5)
setuid(r4)
sendto$inet6(r2, &(0x7f0000000040)="4c00000012001f15b9409b849ac00a00a57840030000000000f0030038c88cc055c5ac27a6c5b00400bf46d323456536005ad94a461cdbfee9bdb9423523598451d1ec0cffc8792cd8000000", 0x4c, 0x0, 0x0, 0x0)

[ 1835.335165][   T24] audit: type=1804 audit(2000001084.210:852): pid=24554 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir992009587/syzkaller.fbtXYn/41/bus" dev="sda1" ino=1168 res=1 errno=0
[ 1835.361397][   T24] audit: type=1800 audit(2000001084.210:853): pid=24554 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1168 res=0 errno=0
03:51:24 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @loopback}, 0x1c)
listen(r0, 0x0)
ioctl$sock_inet6_tcp_SIOCOUTQNSD(r0, 0x894b, &(0x7f0000000000))
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x20000004, &(0x7f000031e000)={0xa, 0x4e22}, 0x1c)
r2 = socket$inet6(0x10, 0x3, 0x4)
ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, &(0x7f0000000100)={0x8, 0x1, 0xb50b, 0xf8, 0x1f})
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000080)={0x0, <r4=>0x0}, &(0x7f00000000c0)=0x5)
setuid(r4)
sendto$inet6(r2, &(0x7f0000000040)="4c00000012001f15b9409b849ac00a00a57840030000000000f0030038c88cc055c5ac27a6c5b00400bf46d323456536005ad94a461cdbfee9bdb9423523598451d1ec0cffc8792cd8000000", 0x4c, 0x0, 0x0, 0x0)

03:51:24 executing program 3:
ioctl$SNDRV_TIMER_IOCTL_GINFO(0xffffffffffffffff, 0xc0f85403, &(0x7f00000004c0)={{0x0, 0x2, 0x80, 0x2}, 0x1, 0x7, 'id1\x00', 'timer0\x00', 0x0, 0x4, 0x8, 0x7, 0x9})
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x10b)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f00000000c0)={0x0, 0x0, {0x0, @struct}, {0x0, @struct}, {0x0, @struct}})
ftruncate(r0, 0x800)
lseek(r0, 0x200, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x24000, 0x0)
sendfile(r0, r1, 0x0, 0x1dd00)
finit_module(r1, &(0x7f0000000080)='(-.]\x00', 0x3)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000600)={&(0x7f00000005c0)='./bus\x00', 0x0, 0x38}, 0x10)
fcntl$addseals(r0, 0x409, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xa, 0x4, &(0x7f0000000640)=ANY=[@ANYBLOB="b400000000000000dd0a00000000000073010f8d7fbe1db54cfd2b97aad01e4100000000009500000000000000"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xb5}, 0x48)

03:51:24 executing program 1:
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=@newqdisc={0x38, 0x24, 0x0, 0x0, 0x0, {}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}}, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000003c0)=@newqdisc={0x30, 0x24, 0xe0b, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x4}}]}, 0x30}}, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

[ 1835.676049][T24562] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'.
03:51:24 executing program 2:
r0 = socket$isdn_base(0x22, 0x3, 0x0)
ioctl$IMGETCOUNT(r0, 0x8912, &(0x7f0000000d00))

[ 1835.863550][   T24] audit: type=1804 audit(2000001084.740:854): pid=24569 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir992009587/syzkaller.fbtXYn/42/bus" dev="sda1" ino=1158 res=1 errno=0
[ 1835.889155][   T24] audit: type=1800 audit(2000001084.740:855): pid=24569 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1158 res=0 errno=0
[ 1836.052560][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[ 1836.226307][T24574] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
03:51:25 executing program 0:
r0 = socket(0x10, 0x803, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0), r2)
getsockname$packet(r2, &(0x7f0000000380)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000500)=@newqdisc={0x2c, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8}, {0x4}}]}, 0x30}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8}, {0x4}}]}, 0x30}}, 0x0)

03:51:25 executing program 1:
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=@newqdisc={0x38, 0x24, 0x0, 0x0, 0x0, {}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}}, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000003c0)=@newqdisc={0x30, 0x24, 0xe0b, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x4}}]}, 0x30}}, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

03:51:25 executing program 2:
r0 = socket$isdn_base(0x22, 0x3, 0x0)
ioctl$IMGETCOUNT(r0, 0x8912, &(0x7f0000000d00))

03:51:25 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @loopback}, 0x1c)
listen(r0, 0x0)
ioctl$sock_inet6_tcp_SIOCOUTQNSD(r0, 0x894b, &(0x7f0000000000))
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x20000004, &(0x7f000031e000)={0xa, 0x4e22}, 0x1c)
r2 = socket$inet6(0x10, 0x3, 0x4)
ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, &(0x7f0000000100)={0x8, 0x1, 0xb50b, 0xf8, 0x1f})
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000080)={0x0, <r4=>0x0}, &(0x7f00000000c0)=0x5)
setuid(r4)
sendto$inet6(r2, &(0x7f0000000040)="4c00000012001f15b9409b849ac00a00a57840030000000000f0030038c88cc055c5ac27a6c5b00400bf46d323456536005ad94a461cdbfee9bdb9423523598451d1ec0cffc8792cd8000000", 0x4c, 0x0, 0x0, 0x0)

03:51:25 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @loopback}, 0x1c)
listen(r0, 0x0)
ioctl$sock_inet6_tcp_SIOCOUTQNSD(r0, 0x894b, &(0x7f0000000000))
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x20000004, &(0x7f000031e000)={0xa, 0x4e22}, 0x1c)
r2 = socket$inet6(0x10, 0x3, 0x4)
ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, &(0x7f0000000100)={0x8, 0x1, 0xb50b, 0xf8, 0x1f})
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000080)={0x0, <r4=>0x0}, &(0x7f00000000c0)=0x5)
setuid(r4)
sendto$inet6(r2, &(0x7f0000000040)="4c00000012001f15b9409b849ac00a00a57840030000000000f0030038c88cc055c5ac27a6c5b00400bf46d323456536005ad94a461cdbfee9bdb9423523598451d1ec0cffc8792cd8000000", 0x4c, 0x0, 0x0, 0x0)

[ 1836.622199][T24580] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'.
03:51:25 executing program 3:
ioctl$SNDRV_TIMER_IOCTL_GINFO(0xffffffffffffffff, 0xc0f85403, &(0x7f00000004c0)={{0x0, 0x2, 0x80, 0x2}, 0x1, 0x7, 'id1\x00', 'timer0\x00', 0x0, 0x4, 0x8, 0x7, 0x9})
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x10b)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f00000000c0)={0x0, 0x0, {0x0, @struct}, {0x0, @struct}, {0x0, @struct}})
ftruncate(r0, 0x800)
lseek(r0, 0x200, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x24000, 0x0)
sendfile(r0, r1, 0x0, 0x1dd00)
finit_module(r1, &(0x7f0000000080)='(-.]\x00', 0x3)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000600)={&(0x7f00000005c0)='./bus\x00', 0x0, 0x38}, 0x10)
fcntl$addseals(r0, 0x409, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xa, 0x4, &(0x7f0000000640)=ANY=[@ANYBLOB="b400000000000000dd0a00000000000073010f8d7fbe1db54cfd2b97aad01e4100000000009500000000000000"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xb5}, 0x48)

[ 1836.925197][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
03:51:25 executing program 2:
r0 = socket$isdn_base(0x22, 0x3, 0x0)
ioctl$IMGETCOUNT(r0, 0x8912, &(0x7f0000000d00))

03:51:25 executing program 0:
r0 = socket(0x10, 0x803, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0), r2)
getsockname$packet(r2, &(0x7f0000000380)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000500)=@newqdisc={0x2c, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8}, {0x4}}]}, 0x30}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8}, {0x4}}]}, 0x30}}, 0x0)

[ 1837.074231][T24591] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 1837.280813][   T24] audit: type=1804 audit(2000001086.150:856): pid=24593 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir992009587/syzkaller.fbtXYn/43/bus" dev="sda1" ino=1158 res=1 errno=0
[ 1837.306532][   T24] audit: type=1800 audit(2000001086.150:857): pid=24593 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1158 res=0 errno=0
03:51:26 executing program 1:
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=@newqdisc={0x38, 0x24, 0x0, 0x0, 0x0, {}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}}, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000003c0)=@newqdisc={0x30, 0x24, 0xe0b, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x4}}]}, 0x30}}, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

[ 1837.466232][T24598] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'.
03:51:26 executing program 4:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/wireless\x00')
read$eventfd(r0, &(0x7f0000000300), 0x7ffff000)

03:51:26 executing program 2:
setreuid(0xee01, 0xee00)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={<r1=>0x0}, &(0x7f00000001c0)=0x57)
prlimit64(r1, 0x0, 0x0, 0x0)

03:51:26 executing program 0:
socket(0x22, 0x0, 0x3)

[ 1837.965856][T24603] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
03:51:27 executing program 3:
ioctl$SNDRV_TIMER_IOCTL_GINFO(0xffffffffffffffff, 0xc0f85403, &(0x7f00000004c0)={{0x0, 0x2, 0x80, 0x2}, 0x1, 0x7, 'id1\x00', 'timer0\x00', 0x0, 0x4, 0x8, 0x7, 0x9})
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x10b)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f00000000c0)={0x0, 0x0, {0x0, @struct}, {0x0, @struct}, {0x0, @struct}})
ftruncate(r0, 0x800)
lseek(r0, 0x200, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x24000, 0x0)
sendfile(r0, r1, 0x0, 0x1dd00)
finit_module(r1, &(0x7f0000000080)='(-.]\x00', 0x3)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000600)={&(0x7f00000005c0)='./bus\x00', 0x0, 0x38}, 0x10)
fcntl$addseals(r0, 0x409, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xa, 0x4, &(0x7f0000000640)=ANY=[@ANYBLOB="b400000000000000dd0a00000000000073010f8d7fbe1db54cfd2b97aad01e4100000000009500000000000000"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xb5}, 0x48)

03:51:27 executing program 5:
rt_sigprocmask(0x0, &(0x7f0000000100)={[0x79cd]}, 0x0, 0x8)
pipe(&(0x7f0000000280)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write(r1, &(0x7f0000000140)="6d527cd53870164a3a0d4b64fb0d7bebad2dce076e7768215970e33adf15173c9e665cff10727f6273ef2aace367c13b8e834788d7da2d60077ebc24a796b221a2f39fd294dc01861206b499138d02ebf3cfc3b11f0e18858568476bac483df9c4d0a61da2d2f9b7c4cb601c0141f209fc9e06d9457920a9a749a23ccd52eb91db50189627774719cf91bd6e63a2b8a3b657c0e438ffc3e275b03ef0f384a0c1f20143b7b87f2e34729b000000805e0ad338423d4200f349c545516c46bb9f104a3816b12950faa20fab5827bc62a8d4cc12c4c8954308a933d63aa66cdb3646a37626de7361b5338c197dd3e6844dafcb4338dce0b79ee41da150eca12fbd36b4873ce8e4747b63e8830ee6c32f254d37792053e2b77cc86279ea843600"/297, 0x3accf8d5)
ppoll(&(0x7f0000000000)=[{r0}], 0x1, &(0x7f0000000080), 0x0, 0x0)
close(r0)

03:51:27 executing program 4:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/wireless\x00')
read$eventfd(r0, &(0x7f0000000300), 0x7ffff000)

03:51:27 executing program 1:
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=@newqdisc={0x38, 0x24, 0x0, 0x0, 0x0, {}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}}, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000003c0)=@newqdisc={0x30, 0x24, 0xe0b, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x4}}]}, 0x30}}, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

03:51:27 executing program 2:
setreuid(0xee01, 0xee00)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={<r1=>0x0}, &(0x7f00000001c0)=0x57)
prlimit64(r1, 0x0, 0x0, 0x0)

03:51:27 executing program 0:
socket(0x22, 0x0, 0x3)

03:51:27 executing program 5:
rt_sigprocmask(0x0, &(0x7f0000000100)={[0x79cd]}, 0x0, 0x8)
pipe(&(0x7f0000000280)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write(r1, &(0x7f0000000140)="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"/297, 0x3accf8d5)
ppoll(&(0x7f0000000000)=[{r0}], 0x1, &(0x7f0000000080), 0x0, 0x0)
close(r0)

[ 1838.632731][   T24] audit: type=1804 audit(2000001087.500:858): pid=24616 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir992009587/syzkaller.fbtXYn/44/bus" dev="sda1" ino=1173 res=1 errno=0
[ 1838.659023][   T24] audit: type=1800 audit(2000001087.510:859): pid=24616 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1173 res=0 errno=0
03:51:27 executing program 4:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/wireless\x00')
read$eventfd(r0, &(0x7f0000000300), 0x7ffff000)

03:51:27 executing program 3:
r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
bind$rose(r0, &(0x7f0000000000)=@full={0x2, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x0, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast]}, 0x40)

[ 1838.816722][T24621] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
03:51:27 executing program 2:
setreuid(0xee01, 0xee00)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={<r1=>0x0}, &(0x7f00000001c0)=0x57)
prlimit64(r1, 0x0, 0x0, 0x0)

03:51:27 executing program 0:
socket(0x22, 0x0, 0x3)

03:51:27 executing program 5:
rt_sigprocmask(0x0, &(0x7f0000000100)={[0x79cd]}, 0x0, 0x8)
pipe(&(0x7f0000000280)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write(r1, &(0x7f0000000140)="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"/297, 0x3accf8d5)
ppoll(&(0x7f0000000000)=[{r0}], 0x1, &(0x7f0000000080), 0x0, 0x0)
close(r0)

03:51:28 executing program 1:
unshare(0x20040400)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0x19, &(0x7f0000000040), 0x4)

03:51:28 executing program 4:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/wireless\x00')
read$eventfd(r0, &(0x7f0000000300), 0x7ffff000)

03:51:28 executing program 2:
setreuid(0xee01, 0xee00)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={<r1=>0x0}, &(0x7f00000001c0)=0x57)
prlimit64(r1, 0x0, 0x0, 0x0)

03:51:28 executing program 3:
r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
bind$rose(r0, &(0x7f0000000000)=@full={0x2, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x0, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast]}, 0x40)

03:51:28 executing program 0:
socket(0x22, 0x0, 0x3)

03:51:28 executing program 5:
rt_sigprocmask(0x0, &(0x7f0000000100)={[0x79cd]}, 0x0, 0x8)
pipe(&(0x7f0000000280)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write(r1, &(0x7f0000000140)="6d527cd53870164a3a0d4b64fb0d7bebad2dce076e7768215970e33adf15173c9e665cff10727f6273ef2aace367c13b8e834788d7da2d60077ebc24a796b221a2f39fd294dc01861206b499138d02ebf3cfc3b11f0e18858568476bac483df9c4d0a61da2d2f9b7c4cb601c0141f209fc9e06d9457920a9a749a23ccd52eb91db50189627774719cf91bd6e63a2b8a3b657c0e438ffc3e275b03ef0f384a0c1f20143b7b87f2e34729b000000805e0ad338423d4200f349c545516c46bb9f104a3816b12950faa20fab5827bc62a8d4cc12c4c8954308a933d63aa66cdb3646a37626de7361b5338c197dd3e6844dafcb4338dce0b79ee41da150eca12fbd36b4873ce8e4747b63e8830ee6c32f254d37792053e2b77cc86279ea843600"/297, 0x3accf8d5)
ppoll(&(0x7f0000000000)=[{r0}], 0x1, &(0x7f0000000080), 0x0, 0x0)
close(r0)

03:51:28 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, &(0x7f0000000080), 0x4)

03:51:28 executing program 3:
r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
bind$rose(r0, &(0x7f0000000000)=@full={0x2, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x0, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast]}, 0x40)

03:51:28 executing program 2:
r0 = syz_open_dev$I2C(&(0x7f00000001c0), 0x0, 0x0)
ioctl$I2C_SLAVE_FORCE(r0, 0x706, 0xffffffffffffffc1)

03:51:28 executing program 1:
unshare(0x20040400)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0x19, &(0x7f0000000040), 0x4)

03:51:28 executing program 0:
syz_mount_image$reiserfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000040)=[{&(0x7f0000010000)="0040000068020000973d00001200000000000000843d00005500000073564d38840300001e000000000027d00010cc0302000100526549734572334673", 0x3d, 0x2000}, {&(0x7f00000000c0)="0000020000000000000000ed15000000001e0000843d00000004000073564d388403", 0x22, 0x3d96000}], 0x0, &(0x7f0000000580)=ANY=[])

03:51:29 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, &(0x7f0000000080), 0x4)

03:51:29 executing program 5:
r0 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$VIDIOC_QUERYCTRL(r0, 0xc0445624, &(0x7f0000000180)={0x8f99800, 0x0, "d596afb009e4397ec3dc13ff156a80048ef828d2c55d7b16920c8039a3eb3a81"})

03:51:29 executing program 3:
r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
bind$rose(r0, &(0x7f0000000000)=@full={0x2, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x0, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast]}, 0x40)

03:51:29 executing program 2:
r0 = socket(0x11, 0x800000003, 0x0)
bind(r0, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000640)=0x14)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000004c0)=@newqdisc={0x3c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_codel={{0xa}, {0xc, 0x2, [@TCA_CODEL_LIMIT={0x8}]}}]}, 0x3c}}, 0x0)

03:51:29 executing program 1:
unshare(0x20040400)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0x19, &(0x7f0000000040), 0x4)

[ 1840.531313][T24663] loop0: detected capacity change from 0 to 252256
03:51:29 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, &(0x7f0000000080), 0x4)

[ 1840.692044][T24663] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 1840.705722][T24663] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
03:51:29 executing program 5:
r0 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$VIDIOC_QUERYCTRL(r0, 0xc0445624, &(0x7f0000000180)={0x8f99800, 0x0, "d596afb009e4397ec3dc13ff156a80048ef828d2c55d7b16920c8039a3eb3a81"})

[ 1840.797654][T24663] REISERFS (device loop0): using ordered data mode
[ 1840.804541][T24663] reiserfs: using flush barriers
[ 1840.817078][T24663] REISERFS (device loop0): journal params: device loop0, size 15748, journal first block 18, max trans len 1024, max batch 900, max commit age 0, max trans age 30
03:51:29 executing program 2:
r0 = socket(0x11, 0x800000003, 0x0)
bind(r0, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000640)=0x14)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000004c0)=@newqdisc={0x3c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_codel={{0xa}, {0xc, 0x2, [@TCA_CODEL_LIMIT={0x8}]}}]}, 0x3c}}, 0x0)

[ 1840.849916][T24663] REISERFS (device loop0): checking transaction log (loop0)
[ 1840.916741][T24663] REISERFS warning: reiserfs-5090 is_tree_node: node level 0 does not match to the expected one -1
[ 1840.928627][T24663] REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 15767. Fsck?
[ 1840.939812][T24663] REISERFS (device loop0): Remounting filesystem read-only
[ 1840.947315][T24663] REISERFS error (device loop0): vs-13070 reiserfs_read_locked_inode: i/o failure occurred trying to find stat data of [1 2 0x0 SD]
03:51:29 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="050000130000000000000600000008000300", @ANYRES32=r3, @ANYBLOB="0800050009"], 0x24}}, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="050000000000000000002101000008000300", @ANYRES32=r3], 0x1c}}, 0x0)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r5=>0x0})
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r6, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x98f}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0)
syz_80211_join_ibss(&(0x7f0000000140)='wlan1\x00', &(0x7f0000000040)=@default_ap_ssid, 0x1, 0x0)

[ 1840.961223][T24663] REISERFS warning (device loop0):  reiserfs_fill_super: corrupt root inode, run fsck
03:51:30 executing program 1:
unshare(0x20040400)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0x19, &(0x7f0000000040), 0x4)

03:51:30 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, &(0x7f0000000080), 0x4)

03:51:30 executing program 0:
syz_mount_image$reiserfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000040)=[{&(0x7f0000010000)="0040000068020000973d00001200000000000000843d00005500000073564d38840300001e000000000027d00010cc0302000100526549734572334673", 0x3d, 0x2000}, {&(0x7f00000000c0)="0000020000000000000000ed15000000001e0000843d00000004000073564d388403", 0x22, 0x3d96000}], 0x0, &(0x7f0000000580)=ANY=[])

03:51:30 executing program 5:
r0 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$VIDIOC_QUERYCTRL(r0, 0xc0445624, &(0x7f0000000180)={0x8f99800, 0x0, "d596afb009e4397ec3dc13ff156a80048ef828d2c55d7b16920c8039a3eb3a81"})

03:51:30 executing program 2:
r0 = socket(0x11, 0x800000003, 0x0)
bind(r0, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000640)=0x14)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000004c0)=@newqdisc={0x3c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_codel={{0xa}, {0xc, 0x2, [@TCA_CODEL_LIMIT={0x8}]}}]}, 0x3c}}, 0x0)

03:51:30 executing program 1:
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x2, 0x840000000003, 0x2)
setsockopt$inet_int(r0, 0x0, 0xd0, &(0x7f0000000000), 0x4)

[ 1841.605370][  T999] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1841.613790][  T999] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
03:51:30 executing program 4:
creat(&(0x7f0000000240)='./file0\x00', 0x0)
syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x12, &(0x7f0000000200)=[{&(0x7f0000010000)="1020f5f201000b0009000000030000000c0000000900000002000000010000000000000000400000000000000b0000001e0000000200000002000000020000000200000016000000000400000004000000080000000c00000010000000140000030000000100000002000000345ebaf34e504cb39c9eb6804eb5c91d00", 0x7d, 0x400}, {&(0x7f0000010100)="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"/288, 0x120, 0x860}, {&(0x7f0000010400)='\x00\x00\x00\x00Linux version 5.7.10-1rodete2-amd64 (glinux-team@google.com) (gcc version 9.3.0 (Debian 9.3.0-12), GNU ld (GNU Binutils for Debian) 2.34) #1 SMP Debian 5.7.10-1rodete2 (2020-0', 0xb3, 0xb80}, {&(0x7f0000010500)="00000000780100"/24, 0x18, 0xc80}, {0x0}, {&(0x7f0000010700)="1020f5f201000b0009000000030000000c0000000900000002000000010000000000000000400000000000000b0000001e0000000200000002000000020000000200000016000000000400000004000000080000000c00000010000000140000030000000100000002000000", 0x6c, 0x1400}, {&(0x7f0000010e00)="29b0cc280000000000020000000000000b00000000000000150000001500000010000000140000001200000010000000ffffffffffffffffffffffffffffffffffffffff030006000000000000000000000000000e0000000200000000000000ffffffffffffffffffffffffffffffffffffffff05000000000000000000000000000000c5010000060000000100000007000000070000000a0000004000000040000000fc0f", 0xa6, 0x400000}, {&(0x7f0000010f00)="00000000000000000000000000000000000000000000000000000000317c894a", 0x20, 0x400fe0}, {&(0x7f0000011000)="00000000000000000000000000000000000000000000000000000006", 0x1c, 0x4011e0}, {0x0}, {&(0x7f0000011400)="000000000000000000000000000000000000000000120000000510ec", 0x1c, 0x401320}, {&(0x7f0000011500)="00000014000000020c6000", 0xb, 0x401380}, {&(0x7f0000011b00)="000000000000000000000000000000000000000000000000000000010000000029b0cc280000000000020000000000000b00000000000000150000001500000010000000140000001200000010000000ffffffffffffffffffffffffffffffffffffffff030006000000000000000000000000000e0000000200000000000000ffffffffffffffffffffffffffffffffffffffff05000000000000000000000000000000c5010000060000000100000007000000070000000a0000004000000040000000fc0f", 0xc6, 0x404fe0}, {&(0x7f0000011c00)="00000000000000000000000000000000000000000000000000000000317c894a", 0x20, 0x405fe0}, {0x0}, {&(0x7f0000013000)="0000000000000000000001000000010000000002000000010000000003000000013c", 0x22, 0xc00000}, {&(0x7f0000014500)="ed4100205cf90100535f010003000000001000000000000002", 0x19, 0x3c01000}, {&(0x7f0000014700)="00000000000000000300000003", 0xd, 0x3c01fe0}], 0x0, &(0x7f0000014b00))

03:51:30 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="050000130000000000000600000008000300", @ANYRES32=r3, @ANYBLOB="0800050009"], 0x24}}, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="050000000000000000002101000008000300", @ANYRES32=r3], 0x1c}}, 0x0)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r5=>0x0})
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r6, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x98f}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0)
syz_80211_join_ibss(&(0x7f0000000140)='wlan1\x00', &(0x7f0000000040)=@default_ap_ssid, 0x1, 0x0)

[ 1841.874113][T24693] loop0: detected capacity change from 0 to 252256
03:51:30 executing program 5:
r0 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$VIDIOC_QUERYCTRL(r0, 0xc0445624, &(0x7f0000000180)={0x8f99800, 0x0, "d596afb009e4397ec3dc13ff156a80048ef828d2c55d7b16920c8039a3eb3a81"})

[ 1841.965129][T24693] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 1841.979617][T24693] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[ 1841.993250][T24693] REISERFS (device loop0): using ordered data mode
[ 1842.000253][T24693] reiserfs: using flush barriers
[ 1842.107775][T24693] REISERFS (device loop0): journal params: device loop0, size 15748, journal first block 18, max trans len 1024, max batch 900, max commit age 0, max trans age 30
03:51:31 executing program 2:
r0 = socket(0x11, 0x800000003, 0x0)
bind(r0, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000640)=0x14)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000004c0)=@newqdisc={0x3c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_codel={{0xa}, {0xc, 0x2, [@TCA_CODEL_LIMIT={0x8}]}}]}, 0x3c}}, 0x0)

[ 1842.208655][T24699] loop4: detected capacity change from 0 to 245791
03:51:31 executing program 1:
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x2, 0x840000000003, 0x2)
setsockopt$inet_int(r0, 0x0, 0xd0, &(0x7f0000000000), 0x4)

[ 1842.304573][T24693] REISERFS (device loop0): checking transaction log (loop0)
[ 1842.314425][T24699] F2FS-fs (loop4): invalid crc_offset: 0
[ 1842.416290][T24693] REISERFS warning: reiserfs-5090 is_tree_node: node level 0 does not match to the expected one -1
[ 1842.428258][T24693] REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 15767. Fsck?
[ 1842.439326][T24693] REISERFS (device loop0): Remounting filesystem read-only
[ 1842.447214][T24693] REISERFS error (device loop0): vs-13070 reiserfs_read_locked_inode: i/o failure occurred trying to find stat data of [1 2 0x0 SD]
[ 1842.463759][T24693] REISERFS warning (device loop0):  reiserfs_fill_super: corrupt root inode, run fsck
[ 1842.480366][T24699] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (5370960581195771945, 0)
[ 1842.596540][ T3669] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1842.605027][ T3669] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
03:51:31 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="050000130000000000000600000008000300", @ANYRES32=r3, @ANYBLOB="0800050009"], 0x24}}, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="050000000000000000002101000008000300", @ANYRES32=r3], 0x1c}}, 0x0)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r5=>0x0})
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r6, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x98f}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0)
syz_80211_join_ibss(&(0x7f0000000140)='wlan1\x00', &(0x7f0000000040)=@default_ap_ssid, 0x1, 0x0)

03:51:31 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="050000130000000000000600000008000300", @ANYRES32=r3, @ANYBLOB="0800050009"], 0x24}}, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="050000000000000000002101000008000300", @ANYRES32=r3], 0x1c}}, 0x0)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r5=>0x0})
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r6, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x98f}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0)
syz_80211_join_ibss(&(0x7f0000000140)='wlan1\x00', &(0x7f0000000040)=@default_ap_ssid, 0x1, 0x0)

03:51:31 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="050000130000000000000600000008000300", @ANYRES32=r3, @ANYBLOB="0800050009"], 0x24}}, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="050000000000000000002101000008000300", @ANYRES32=r3], 0x1c}}, 0x0)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r5=>0x0})
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r6, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x98f}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0)
syz_80211_join_ibss(&(0x7f0000000140)='wlan1\x00', &(0x7f0000000040)=@default_ap_ssid, 0x1, 0x0)

03:51:32 executing program 0:
syz_mount_image$reiserfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000040)=[{&(0x7f0000010000)="0040000068020000973d00001200000000000000843d00005500000073564d38840300001e000000000027d00010cc0302000100526549734572334673", 0x3d, 0x2000}, {&(0x7f00000000c0)="0000020000000000000000ed15000000001e0000843d00000004000073564d388403", 0x22, 0x3d96000}], 0x0, &(0x7f0000000580)=ANY=[])

03:51:32 executing program 1:
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x2, 0x840000000003, 0x2)
setsockopt$inet_int(r0, 0x0, 0xd0, &(0x7f0000000000), 0x4)

[ 1843.340683][T10698] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1843.349220][T10698] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1843.423190][    T8] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1843.431353][    T8] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1843.452745][ T3669] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1843.460710][ T3669] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
03:51:32 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="050000130000000000000600000008000300", @ANYRES32=r3, @ANYBLOB="0800050009"], 0x24}}, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="050000000000000000002101000008000300", @ANYRES32=r3], 0x1c}}, 0x0)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r5=>0x0})
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r6, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x98f}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0)
syz_80211_join_ibss(&(0x7f0000000140)='wlan1\x00', &(0x7f0000000040)=@default_ap_ssid, 0x1, 0x0)

03:51:32 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="050000130000000000000600000008000300", @ANYRES32=r3, @ANYBLOB="0800050009"], 0x24}}, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="050000000000000000002101000008000300", @ANYRES32=r3], 0x1c}}, 0x0)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r5=>0x0})
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r6, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x98f}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0)
syz_80211_join_ibss(&(0x7f0000000140)='wlan1\x00', &(0x7f0000000040)=@default_ap_ssid, 0x1, 0x0)

[ 1843.910903][T24725] loop0: detected capacity change from 0 to 252256
[ 1844.029362][T24725] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 1844.044393][T24725] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[ 1844.076440][T24725] REISERFS (device loop0): using ordered data mode
[ 1844.083421][T24725] reiserfs: using flush barriers
[ 1844.153427][T24725] REISERFS (device loop0): journal params: device loop0, size 15748, journal first block 18, max trans len 1024, max batch 900, max commit age 0, max trans age 30
[ 1844.234649][T24725] REISERFS (device loop0): checking transaction log (loop0)
[ 1844.269991][ T3669] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1844.278454][ T3669] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1844.297618][T24725] REISERFS warning: reiserfs-5090 is_tree_node: node level 0 does not match to the expected one -1
[ 1844.309441][T24725] REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 15767. Fsck?
[ 1844.320499][T24725] REISERFS (device loop0): Remounting filesystem read-only
[ 1844.328029][T24725] REISERFS error (device loop0): vs-13070 reiserfs_read_locked_inode: i/o failure occurred trying to find stat data of [1 2 0x0 SD]
[ 1844.342516][T24725] REISERFS warning (device loop0):  reiserfs_fill_super: corrupt root inode, run fsck
[ 1844.371329][   T52] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1844.380130][   T52] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
03:51:33 executing program 4:
creat(&(0x7f0000000240)='./file0\x00', 0x0)
syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x12, &(0x7f0000000200)=[{&(0x7f0000010000)="1020f5f201000b0009000000030000000c0000000900000002000000010000000000000000400000000000000b0000001e0000000200000002000000020000000200000016000000000400000004000000080000000c00000010000000140000030000000100000002000000345ebaf34e504cb39c9eb6804eb5c91d00", 0x7d, 0x400}, {&(0x7f0000010100)="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"/288, 0x120, 0x860}, {&(0x7f0000010400)='\x00\x00\x00\x00Linux version 5.7.10-1rodete2-amd64 (glinux-team@google.com) (gcc version 9.3.0 (Debian 9.3.0-12), GNU ld (GNU Binutils for Debian) 2.34) #1 SMP Debian 5.7.10-1rodete2 (2020-0', 0xb3, 0xb80}, {&(0x7f0000010500)="00000000780100"/24, 0x18, 0xc80}, {0x0}, {&(0x7f0000010700)="1020f5f201000b0009000000030000000c0000000900000002000000010000000000000000400000000000000b0000001e0000000200000002000000020000000200000016000000000400000004000000080000000c00000010000000140000030000000100000002000000", 0x6c, 0x1400}, {&(0x7f0000010e00)="29b0cc280000000000020000000000000b00000000000000150000001500000010000000140000001200000010000000ffffffffffffffffffffffffffffffffffffffff030006000000000000000000000000000e0000000200000000000000ffffffffffffffffffffffffffffffffffffffff05000000000000000000000000000000c5010000060000000100000007000000070000000a0000004000000040000000fc0f", 0xa6, 0x400000}, {&(0x7f0000010f00)="00000000000000000000000000000000000000000000000000000000317c894a", 0x20, 0x400fe0}, {&(0x7f0000011000)="00000000000000000000000000000000000000000000000000000006", 0x1c, 0x4011e0}, {0x0}, {&(0x7f0000011400)="000000000000000000000000000000000000000000120000000510ec", 0x1c, 0x401320}, {&(0x7f0000011500)="00000014000000020c6000", 0xb, 0x401380}, {&(0x7f0000011b00)="000000000000000000000000000000000000000000000000000000010000000029b0cc280000000000020000000000000b00000000000000150000001500000010000000140000001200000010000000ffffffffffffffffffffffffffffffffffffffff030006000000000000000000000000000e0000000200000000000000ffffffffffffffffffffffffffffffffffffffff05000000000000000000000000000000c5010000060000000100000007000000070000000a0000004000000040000000fc0f", 0xc6, 0x404fe0}, {&(0x7f0000011c00)="00000000000000000000000000000000000000000000000000000000317c894a", 0x20, 0x405fe0}, {0x0}, {&(0x7f0000013000)="0000000000000000000001000000010000000002000000010000000003000000013c", 0x22, 0xc00000}, {&(0x7f0000014500)="ed4100205cf90100535f010003000000001000000000000002", 0x19, 0x3c01000}, {&(0x7f0000014700)="00000000000000000300000003", 0xd, 0x3c01fe0}], 0x0, &(0x7f0000014b00))

03:51:33 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="050000130000000000000600000008000300", @ANYRES32=r3, @ANYBLOB="0800050009"], 0x24}}, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="050000000000000000002101000008000300", @ANYRES32=r3], 0x1c}}, 0x0)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r5=>0x0})
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r6, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x98f}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0)
syz_80211_join_ibss(&(0x7f0000000140)='wlan1\x00', &(0x7f0000000040)=@default_ap_ssid, 0x1, 0x0)

03:51:33 executing program 1:
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x2, 0x840000000003, 0x2)
setsockopt$inet_int(r0, 0x0, 0xd0, &(0x7f0000000000), 0x4)

03:51:33 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="050000130000000000000600000008000300", @ANYRES32=r3, @ANYBLOB="0800050009"], 0x24}}, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="050000000000000000002101000008000300", @ANYRES32=r3], 0x1c}}, 0x0)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r5=>0x0})
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r6, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x98f}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0)
syz_80211_join_ibss(&(0x7f0000000140)='wlan1\x00', &(0x7f0000000040)=@default_ap_ssid, 0x1, 0x0)

03:51:33 executing program 3:
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000240)={0x0, <r2=>0x0}, &(0x7f0000000280)=0x5)
setuid(r2)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x10, 0x1403, 0x1}, 0x10}}, 0x0)

03:51:33 executing program 1:
clock_settime(0x0, &(0x7f0000000040)={0xfffffffffffffff8})

[ 1844.926757][   T52] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1844.935546][   T52] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1845.030989][T24742] loop4: detected capacity change from 0 to 245791
[ 1845.126087][T24742] F2FS-fs (loop4): invalid crc_offset: 0
03:51:34 executing program 1:
clock_settime(0x0, &(0x7f0000000040)={0xfffffffffffffff8})

03:51:34 executing program 3:
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000240)={0x0, <r2=>0x0}, &(0x7f0000000280)=0x5)
setuid(r2)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x10, 0x1403, 0x1}, 0x10}}, 0x0)

[ 1845.196821][T13890] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1845.205475][T13890] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
03:51:34 executing program 0:
syz_mount_image$reiserfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000040)=[{&(0x7f0000010000)="0040000068020000973d00001200000000000000843d00005500000073564d38840300001e000000000027d00010cc0302000100526549734572334673", 0x3d, 0x2000}, {&(0x7f00000000c0)="0000020000000000000000ed15000000001e0000843d00000004000073564d388403", 0x22, 0x3d96000}], 0x0, &(0x7f0000000580)=ANY=[])

03:51:34 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="050000130000000000000600000008000300", @ANYRES32=r3, @ANYBLOB="0800050009"], 0x24}}, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="050000000000000000002101000008000300", @ANYRES32=r3], 0x1c}}, 0x0)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r5=>0x0})
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r6, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x98f}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0)
syz_80211_join_ibss(&(0x7f0000000140)='wlan1\x00', &(0x7f0000000040)=@default_ap_ssid, 0x1, 0x0)

[ 1845.299168][T24742] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (5370960581195771945, 0)
03:51:34 executing program 2:
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xf, &(0x7f0000000100)=0x800b, 0x4)
bind$packet(0xffffffffffffffff, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random="19fbf2a8efdb"}, 0x14)
r0 = socket(0x200000100000011, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'sit0\x00', <r1=>0x0})
r2 = syz_open_dev$vcsn(&(0x7f0000000700), 0x5, 0x20e043)
setsockopt$packet_int(r2, 0x107, 0xc, &(0x7f0000000100)=0x800b, 0x4)
bind$packet(r0, &(0x7f0000000040)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @random="19fbf2a8efdb"}, 0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000080)={&(0x7f0000000bc0)=ANY=[@ANYRES64=r0, @ANYRES32=r1, @ANYRES32=r2, @ANYRES32=r1, @ANYBLOB="150003000200000001010000c35b03000000000000000000"], 0x164}, 0x1, 0x0, 0x0, 0x804}, 0x4000000)
r3 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d)
bind$inet(r3, &(0x7f0000000000)={0x2, 0x4e23, @multicast1}, 0x10)
bind$inet(r3, &(0x7f0000000440)={0x2, 0x4e23, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0x2}]}, 0x10)
sendto$inet(r3, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f0000000600)=0x1801, 0x4)
sendmmsg(r3, &(0x7f0000000b80)=[{{0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f0000000240)="1146609899dfe011644ecb927f58de61e22ad8dd211806cc9a6b365eea8da455eb0abea3b7f777cfe906d55290d84e74ce476ae4a446bbe4911520d679c96b55b6f43d2d1c0e60f0e800b130831fda9f85ea7f8c434352609ed422cbe4d814cbde69c4f6424c2de3b04f4d796994762d0e4c3079ac2e1fc4ca7388a40562c8a19716c8b369e5a558f39a046bd7aae94fe40110ec8c272dd6f896e6c99aa0b775e2fef4b717ac53e7fd3522c7f7abcdd3bda96ed3d8b4999e", 0xb8}, {&(0x7f0000000300)="65af99cbc29fdb477842545eede79fa5ff", 0x11}], 0x2}}], 0x1, 0x0)
sendto$inet(r3, &(0x7f00000012c0)="0c268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x1c08, 0x11, 0x0, 0x27)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x40800, 0x0, 0x4d)
sendmmsg$sock(r3, &(0x7f0000000b00)=[{{0x0, 0x0, &(0x7f0000000800)=[{&(0x7f0000000100)="519f1a5a1476f4d019e158720c8d14df6797038516d1e2fe527f32707abdaf29a402586848ca044bcf15a1dd1c228655cdc4fda5089e8a59fea60fa6a1eaa1d9b6a0c8aa489b7667619e7df30c80a344d83140c9976cbf8aaaef9c7ee768c7385fa99ff3fc28384e7d5b46d7d9acd31acaa0c4e3b9eae27f47a490880ca8f5ca8be3852680d089812efd83c2d5f4353f0a3beed37306328b71682ded5da03e6200e29e6f5cb55fe186db6cd2546e6e9f6085ea3b5f2f1c17aa34e7304f14b5adb12d6656be12", 0xc6}, {&(0x7f0000000200)="467921408a0ee7ece1f7f1e4d4cb981567360527068e9f5b2d70d9b9c86f4561b9df010b2307fd9f2ef15e5806dcd5ff71288854bcd3f0e81bb64afc686782f51a8e1b5f1df216e748d4964dbb041ac2842c5bc582e99292e25aabdfab073de58fe987a35bbcf0be3f54657a2a392e1083abdc1effbb2b", 0x77}, {&(0x7f0000000300)="2e5243b2c681411b842d2d761f5409575c2aff072748e4ffff9de09f2aa60cb769a598c2291b93d60662a6eb95379b402703f57cf6f2d3f8f50fbb380dd458ac8abf75ecc0665d97f36b4311e4c5b2981973da28c5f268014f5af7dc0d0a84f13f107017285c49f2e4b4c1289ec9cfd26640781ead4878b41d4fd2210a912250632195498d5313501b514902b1e210f7906d0d6b1a1e0d9df79d6e6850de6635e85f083c940881e330238e289328337ce83eefbe5a87a0597ced871de84592832e0316c1f3860950dc34cd94d126c5032ae9acd46e60fb92b945e00a54cab5d2a8fe9e2c42cb2a2ef0b6c01bd9", 0xed}, {&(0x7f0000000480)="71bdb8e399d176cba36d5d95ec5e358cfe1b02ebf0fe89dc626d8433a0e06fe83470409b018e6ce6f4c7bf6f", 0x2c}, {&(0x7f0000000500)="d1feb5284aceeb66760438de0c1cc8858d5ce0b5e94189636f5b0ecffd3bb53e4b4d88abcffac217f8c8da4c7bf9874768c3cf8e78c79c088e4f8dc922ecebaa56050a4d03149031e39b5dc446148d9568377860f78f9917a2d073ecd3ae738bcc3aa9ee9293adfd356f40d161f02976c6a2d89d9ed14535f372adea5c277d6e2fcde35d1f2d6b286d399ff0ea7b46ff8c1cc13c43ed4cb4d91cd24354c8f735c1a7b67cc93741a9012f55f6455f7606c44c37fc899ed27798e4a4f57dc8429b4ef445651261fe8d2a7345ba5dcc4b883a", 0xd1}, {&(0x7f0000000600)="6a298aceb660ab5ffddb109406b127d83993a534fb1c8f774451ea1d55707a42c57ba492d5a7ac80028ecfecf47eb32b3651cfb770ce14d3c16baec20050f8da104f2c81fb3165552c71d2ddea86e0bc118a6e636ff9ee6f28e2c1f6b5f3206ef91655eeff2b8137113022878fc6c40b6eb96f01835f480230c14457e1c5803ac37beec8d707a0d52bd9402d81aa5289bc810219f12a6ac9e0b9f77c0b4b1906baf0f6f0192301f900baf9482de351bc4b19bdea11c2800b66b89fbf93ee78a7ad807e78898be9f29c5d57f61c89cfa85e0c5a52d1ba", 0xd6}, {0x0}, {&(0x7f00000007c0)}], 0x8}}], 0x1, 0x0)
copy_file_range(r0, &(0x7f0000000740)=0x1, 0xffffffffffffffff, &(0x7f0000000780)=0x6, 0xb2, 0x0)

03:51:34 executing program 1:
clock_settime(0x0, &(0x7f0000000040)={0xfffffffffffffff8})

[ 1846.039514][T24762] loop0: detected capacity change from 0 to 252256
[ 1846.162347][T24757] ------------[ cut here ]------------
[ 1846.167943][T24757] WARNING: CPU: 0 PID: 24757 at net/mac80211/offchannel.c:401 ieee80211_start_next_roc+0x246/0x2f0
[ 1846.179286][T24757] Modules linked in:
[ 1846.185888][T24757] CPU: 0 PID: 24757 Comm: syz-executor.5 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1846.196583][T24757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1846.206904][T24757] =====================================================
[ 1846.214021][T24757] BUG: KMSAN: uninit-value in kallsyms_lookup_buildid+0x1f2/0xb10
[ 1846.221907][T24757]  kallsyms_lookup_buildid+0x1f2/0xb10
[ 1846.227480][T24757]  __sprint_symbol+0x16a/0x650
[ 1846.232299][T24757]  sprint_symbol+0x80/0x90
[ 1846.236790][T24757]  symbol_string+0x44a/0x6e0
[ 1846.241453][T24757]  pointer+0x135a/0x1f70
[ 1846.245735][T24757]  vsnprintf+0x198c/0x3460
[ 1846.250198][T24757]  vprintk_store+0x52e/0x2110
[ 1846.254996][T24757]  vprintk_emit+0x276/0xa70
[ 1846.259562][T24757]  vprintk_default+0x8a/0xa0
[ 1846.264194][T24757]  vprintk+0x163/0x180
[ 1846.268311][T24757]  _printk+0x191/0x1d3
[ 1846.272436][T24757]  show_iret_regs+0x139/0x2f0
[ 1846.277220][T24757]  __show_regs+0x71/0x1040
[ 1846.281699][T24757]  show_regs+0xc0/0x160
[ 1846.285910][T24757]  __warn+0x3c2/0x730
[ 1846.289936][T24757]  report_bug+0x8eb/0xae0
[ 1846.294308][T24757]  handle_bug+0x41/0x70
[ 1846.298510][T24757]  exc_invalid_op+0x1b/0x50
[ 1846.303067][T24757]  asm_exc_invalid_op+0x12/0x20
[ 1846.308051][T24757]  ieee80211_start_next_roc+0x246/0x2f0
[ 1846.313653][T24757]  __ieee80211_scan_completed+0xa52/0xae0
[ 1846.319426][T24757]  ieee80211_scan_cancel+0x28c/0x480
[ 1846.324764][T24757]  ieee80211_do_stop+0x1c3/0x3370
[ 1846.329849][T24757]  ieee80211_if_change_type+0xa9b/0x14c0
[ 1846.335542][T24757]  ieee80211_change_iface+0xe6/0x850
[ 1846.340881][T24757]  rdev_change_virtual_intf+0x102/0x480
[ 1846.346538][T24757]  cfg80211_change_iface+0xa42/0x10c0
[ 1846.351964][T24757]  nl80211_set_interface+0xc45/0xf60
[ 1846.357361][T24757]  genl_rcv_msg+0x1526/0x1620
[ 1846.358382][T24762] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 1846.362134][T24757]  netlink_rcv_skb+0x41a/0x7a0
[ 1846.362194][T24757]  genl_rcv+0x67/0x90
[ 1846.362248][T24757]  netlink_unicast+0x10a0/0x1370
[ 1846.362302][T24757]  netlink_sendmsg+0x14e1/0x1720
[ 1846.362358][T24757]  __sys_sendto+0x9f2/0xc70
[ 1846.362412][T24757]  __se_compat_sys_socketcall+0x975/0x1600
[ 1846.362474][T24757]  __ia32_compat_sys_socketcall+0x95/0xc0
[ 1846.362535][T24757]  __do_fast_syscall_32+0x95/0xf0
[ 1846.375830][T24762] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[ 1846.380273][T24757]  do_fast_syscall_32+0x33/0x70
[ 1846.429188][T24757]  do_SYSENTER_32+0x1b/0x20
[ 1846.433752][T24757]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1846.440141][T24757] 
[ 1846.442482][T24757] Local variable buf created at:
[ 1846.447427][T24757]  ieee80211_debugfs_key_update_default+0x5a/0x570
[ 1846.454078][T24757]  ieee80211_free_keys_iface+0x8da/0x940
[ 1846.459805][T24757] 
[ 1846.462139][T24757] CPU: 0 PID: 24757 Comm: syz-executor.5 Not tainted 5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1846.472334][T24757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1846.482511][T24757] =====================================================
[ 1846.489473][T24757] Disabling lock debugging due to kernel taint
[ 1846.495645][T24757] Kernel panic - not syncing: kmsan.panic set ...
[ 1846.502093][T24757] CPU: 0 PID: 24757 Comm: syz-executor.5 Tainted: G    B             5.18.0-syzkaller-16253-g2f3064574275 #0
[ 1846.513781][T24757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1846.524337][T24757] Call Trace:
[ 1846.527671][T24757]  <TASK>
[ 1846.530710][T24757]  dump_stack_lvl+0x200/0x28c
[ 1846.535627][T24757]  dump_stack+0x29/0x2c
[ 1846.539917][T24757]  panic+0x502/0xc7a
[ 1846.543887][T24757]  ? add_taint+0x185/0x210
[ 1846.548354][T24757]  ? console_unlock+0x1bb0/0x20e0
[ 1846.553434][T24757]  kmsan_report+0x2cc/0x2d0
[ 1846.558025][T24757]  ? __msan_warning+0x92/0x110
[ 1846.562832][T24757]  ? kallsyms_lookup_buildid+0x1f2/0xb10
[ 1846.568516][T24757]  ? __sprint_symbol+0x16a/0x650
[ 1846.573519][T24757]  ? sprint_symbol+0x80/0x90
[ 1846.578149][T24757]  ? symbol_string+0x44a/0x6e0
[ 1846.582948][T24757]  ? pointer+0x135a/0x1f70
[ 1846.587391][T24757]  ? vsnprintf+0x198c/0x3460
[ 1846.592008][T24757]  ? vprintk_store+0x52e/0x2110
[ 1846.596917][T24757]  ? vprintk_emit+0x276/0xa70
[ 1846.601743][T24757]  ? vprintk_default+0x8a/0xa0
[ 1846.606537][T24757]  ? vprintk+0x163/0x180
[ 1846.610812][T24757]  ? _printk+0x191/0x1d3
[ 1846.615097][T24757]  ? show_iret_regs+0x139/0x2f0
[ 1846.619982][T24757]  ? __show_regs+0x71/0x1040
[ 1846.624607][T24757]  ? show_regs+0xc0/0x160
[ 1846.628965][T24757]  ? __warn+0x3c2/0x730
[ 1846.633155][T24757]  ? report_bug+0x8eb/0xae0
[ 1846.637688][T24757]  ? handle_bug+0x41/0x70
[ 1846.642050][T24757]  ? exc_invalid_op+0x1b/0x50
[ 1846.646762][T24757]  ? asm_exc_invalid_op+0x12/0x20
[ 1846.651830][T24757]  ? ieee80211_start_next_roc+0x246/0x2f0
[ 1846.657593][T24757]  ? __ieee80211_scan_completed+0xa52/0xae0
[ 1846.663527][T24757]  ? ieee80211_scan_cancel+0x28c/0x480
[ 1846.669027][T24757]  ? ieee80211_do_stop+0x1c3/0x3370
[ 1846.674274][T24757]  ? ieee80211_if_change_type+0xa9b/0x14c0
[ 1846.680131][T24757]  ? ieee80211_change_iface+0xe6/0x850
[ 1846.685629][T24757]  ? rdev_change_virtual_intf+0x102/0x480
[ 1846.691378][T24757]  ? cfg80211_change_iface+0xa42/0x10c0
[ 1846.696957][T24757]  ? nl80211_set_interface+0xc45/0xf60
[ 1846.702475][T24757]  ? genl_rcv_msg+0x1526/0x1620
[ 1846.707374][T24757]  ? netlink_rcv_skb+0x41a/0x7a0
[ 1846.712348][T24757]  ? genl_rcv+0x67/0x90
[ 1846.716541][T24757]  ? netlink_unicast+0x10a0/0x1370
[ 1846.721692][T24757]  ? netlink_sendmsg+0x14e1/0x1720
[ 1846.726845][T24757]  ? __sys_sendto+0x9f2/0xc70
[ 1846.731584][T24757]  ? __se_compat_sys_socketcall+0x975/0x1600
[ 1846.737615][T24757]  ? __ia32_compat_sys_socketcall+0x95/0xc0
[ 1846.743553][T24757]  ? __do_fast_syscall_32+0x95/0xf0
[ 1846.748794][T24757]  ? do_fast_syscall_32+0x33/0x70
[ 1846.753853][T24757]  ? do_SYSENTER_32+0x1b/0x20
[ 1846.758563][T24757]  ? entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1846.765115][T24757]  ? filter_irq_stacks+0xb9/0x230
[ 1846.770188][T24757]  ? kmsan_get_metadata+0x33/0x220
[ 1846.775347][T24757]  ? __sprint_symbol+0xd5/0x650
[ 1846.780229][T24757]  ? kmsan_get_metadata+0x33/0x220
[ 1846.785385][T24757]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1846.791237][T24757]  ? ieee80211_start_next_roc+0x246/0x2f0
[ 1846.797000][T24757]  __msan_warning+0x92/0x110
[ 1846.801632][T24757]  kallsyms_lookup_buildid+0x1f2/0xb10
[ 1846.807130][T24757]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1846.813422][T24757]  ? ieee80211_start_next_roc+0x246/0x2f0
[ 1846.819183][T24757]  ? ieee80211_start_next_roc+0x246/0x2f0
[ 1846.824944][T24757]  __sprint_symbol+0x16a/0x650
[ 1846.829745][T24757]  ? ieee80211_start_next_roc+0x246/0x2f0
[ 1846.835521][T24757]  sprint_symbol+0x80/0x90
[ 1846.839972][T24757]  ? ieee80211_start_next_roc+0x246/0x2f0
[ 1846.845733][T24757]  symbol_string+0x44a/0x6e0
[ 1846.850355][T24757]  ? ieee80211_start_next_roc+0x246/0x2f0
[ 1846.856119][T24757]  ? format_decode+0x50/0x18e0
[ 1846.860915][T24757]  ? filter_irq_stacks+0xb9/0x230
[ 1846.865995][T24757]  ? __stack_depot_save+0x21/0x4b0
[ 1846.871150][T24757]  ? kmsan_get_metadata+0x33/0x220
[ 1846.876305][T24757]  ? kmsan_get_metadata+0x33/0x220
[ 1846.881459][T24757]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1846.887313][T24757]  pointer+0x135a/0x1f70
[ 1846.891592][T24757]  ? ieee80211_start_next_roc+0x246/0x2f0
[ 1846.897353][T24757]  ? kmsan_get_metadata+0x33/0x220
[ 1846.902527][T24757]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1846.908383][T24757]  ? ieee80211_start_next_roc+0x246/0x2f0
[ 1846.914146][T24757]  ? ieee80211_start_next_roc+0x246/0x2f0
[ 1846.919903][T24757]  vsnprintf+0x198c/0x3460
[ 1846.924370][T24757]  vprintk_store+0x52e/0x2110
[ 1846.929188][T24757]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1846.935066][T24757]  ? kmsan_get_metadata+0x33/0x220
[ 1846.940599][T24757]  vprintk_emit+0x276/0xa70
[ 1846.945176][T24757]  vprintk_default+0x8a/0xa0
[ 1846.949820][T24757]  vprintk+0x163/0x180
[ 1846.953946][T24757]  _printk+0x191/0x1d3
[ 1846.958087][T24757]  ? ieee80211_start_next_roc+0x246/0x2f0
[ 1846.963868][T24757]  ? print_worker_info+0x192/0x6a0
[ 1846.969096][T24757]  show_iret_regs+0x139/0x2f0
[ 1846.973953][T24757]  ? ieee80211_start_next_roc+0x246/0x2f0
[ 1846.979738][T24757]  __show_regs+0x71/0x1040
[ 1846.984224][T24757]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1846.990140][T24757]  show_regs+0xc0/0x160
[ 1846.994351][T24757]  __warn+0x3c2/0x730
[ 1846.998480][T24757]  ? ieee80211_start_next_roc+0x246/0x2f0
[ 1847.004309][T24757]  report_bug+0x8eb/0xae0
[ 1847.008693][T24757]  ? ieee80211_start_next_roc+0x246/0x2f0
[ 1847.014461][T24757]  handle_bug+0x41/0x70
[ 1847.018657][T24757]  exc_invalid_op+0x1b/0x50
[ 1847.023198][T24757]  asm_exc_invalid_op+0x12/0x20
[ 1847.028079][T24757] RIP: 0010:ieee80211_start_next_roc+0x246/0x2f0
[ 1847.034639][T24757] Code: 00 8b 7d bc 48 89 c3 e8 e8 e5 4c f3 48 89 d8 e9 36 ff ff ff 44 89 ff e8 d8 e5 4c f3 45 84 ed 0f 84 67 ff ff ff e8 ca 24 bc f2 <0f> 0b e9 90 00 00 00 8b 7d d4 e8 bb e5 4c f3 e9 64 ff ff ff 8b 3a
[ 1847.054281][T24757] RSP: 0018:ffff8880919a7098 EFLAGS: 00010283
[ 1847.060373][T24757] RAX: ffffffff8f09b6b6 RBX: ffff88803ab68f00 RCX: 0000000000040000
[ 1847.068366][T24757] RDX: ffffc9000a8b2000 RSI: 00000000000015d9 RDI: 00000000000015da
[ 1847.076373][T24757] RBP: ffff8880919a70f8 R08: ffffffff8f09b600 R09: ffff88803a369b18
[ 1847.084630][T24757] R10: 0000000000000000 R11: ffff88803ceb8000 R12: 0000000000000000
[ 1847.092622][T24757] R13: 0000000000000001 R14: ffff88803ceb8b40 R15: 0000000000000000
[ 1847.100630][T24757]  ? ieee80211_start_next_roc+0x190/0x2f0
[ 1847.106413][T24757]  ? ieee80211_start_next_roc+0x246/0x2f0
[ 1847.112198][T24757]  ? ieee80211_start_next_roc+0x246/0x2f0
[ 1847.118092][T24757]  __ieee80211_scan_completed+0xa52/0xae0
[ 1847.123891][T24757]  ieee80211_scan_cancel+0x28c/0x480
[ 1847.129245][T24757]  ieee80211_do_stop+0x1c3/0x3370
[ 1847.134328][T24757]  ? synchronize_rcu_expedited+0x975/0xbd0
[ 1847.140179][T24757]  ? rcu_exp_sel_wait_wake+0x12f0/0x12f0
[ 1847.145847][T24757]  ? wake_bit_function+0x530/0x530
[ 1847.150998][T24757]  ? mutex_is_locked+0x29/0x80
[ 1847.155796][T24757]  ieee80211_if_change_type+0xa9b/0x14c0
[ 1847.161496][T24757]  ieee80211_change_iface+0xe6/0x850
[ 1847.166828][T24757]  ? ieee80211_del_iface+0x60/0x60
[ 1847.171976][T24757]  rdev_change_virtual_intf+0x102/0x480
[ 1847.177563][T24757]  cfg80211_change_iface+0xa42/0x10c0
[ 1847.182992][T24757]  nl80211_set_interface+0xc45/0xf60
[ 1847.188361][T24757]  ? nl80211_dump_interface+0xce0/0xce0
[ 1847.193981][T24757]  genl_rcv_msg+0x1526/0x1620
[ 1847.198719][T24757]  ? nl80211_dump_interface+0xce0/0xce0
[ 1847.204343][T24757]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1847.210631][T24757]  ? kmsan_get_metadata+0x33/0x220
[ 1847.215791][T24757]  netlink_rcv_skb+0x41a/0x7a0
[ 1847.220592][T24757]  ? genl_bind+0x520/0x520
[ 1847.225064][T24757]  genl_rcv+0x67/0x90
[ 1847.229118][T24757]  ? genl_pernet_exit+0xa0/0xa0
[ 1847.234020][T24757]  netlink_unicast+0x10a0/0x1370
[ 1847.239013][T24757]  netlink_sendmsg+0x14e1/0x1720
[ 1847.244009][T24757]  ? netlink_getsockopt+0x11c0/0x11c0
[ 1847.249430][T24757]  __sys_sendto+0x9f2/0xc70
[ 1847.254020][T24757]  ? kmsan_internal_set_shadow_origin+0x62/0xe0
[ 1847.260328][T24757]  ? kmsan_get_metadata+0x33/0x220
[ 1847.265493][T24757]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1847.271351][T24757]  __se_compat_sys_socketcall+0x975/0x1600
[ 1847.277220][T24757]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1847.283085][T24757]  ? kmsan_get_metadata+0x33/0x220
[ 1847.288324][T24757]  ? kmsan_get_shadow_origin_ptr+0x9a/0xf0
[ 1847.294181][T24757]  __ia32_compat_sys_socketcall+0x95/0xc0
[ 1847.299968][T24757]  __do_fast_syscall_32+0x95/0xf0
[ 1847.305041][T24757]  do_fast_syscall_32+0x33/0x70
[ 1847.309940][T24757]  do_SYSENTER_32+0x1b/0x20
[ 1847.314477][T24757]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1847.320847][T24757] RIP: 0023:0xf7fd2549
[ 1847.324929][T24757] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 1847.344570][T24757] RSP: 002b:00000000f7fcc440 EFLAGS: 00000286 ORIG_RAX: 0000000000000066
[ 1847.353014][T24757] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00000000f7fcc454
[ 1847.361019][T24757] RDX: 0000000000000000 RSI: 00000000f6f36000 RDI: 00000000f7fcc5c0
[ 1847.369095][T24757] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1847.377080][T24757] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1847.385066][T24757] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1847.393069][T24757]  </TASK>
[ 1847.396297][T24757] Kernel Offset: disabled
[ 1847.400621][T24757] Rebooting in 86400 seconds..