_chain_origin+0xad/0x130 [ 860.487176][T17151] __msan_chain_origin+0x57/0xa0 [ 860.492405][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 860.497519][T17151] get_compat_msghdr+0x108/0x2b0 [ 860.502433][T17151] do_recvmmsg+0xdd1/0x22f0 [ 860.506922][T17151] __sys_recvmmsg+0x519/0x6f0 [ 860.511633][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 860.517704][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 860.523868][T17151] __do_fast_syscall_32+0x102/0x160 [ 860.529131][T17151] do_fast_syscall_32+0x6a/0xc0 [ 860.533960][T17151] do_SYSENTER_32+0x73/0x90 [ 860.538450][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 860.544743][T17151] [ 860.547048][T17151] Uninit was stored to memory at: [ 860.552065][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 860.557774][T17151] __msan_chain_origin+0x57/0xa0 [ 860.562703][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 860.567789][T17151] get_compat_msghdr+0x108/0x2b0 [ 860.572718][T17151] do_recvmmsg+0xdd1/0x22f0 [ 860.577195][T17151] __sys_recvmmsg+0x519/0x6f0 [ 860.581935][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 860.588001][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 860.594133][T17151] __do_fast_syscall_32+0x102/0x160 [ 860.599304][T17151] do_fast_syscall_32+0x6a/0xc0 [ 860.604131][T17151] do_SYSENTER_32+0x73/0x90 [ 860.608610][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 860.614911][T17151] [ 860.617325][T17151] Local variable ----msg_sys@do_recvmmsg created at: [ 860.624065][T17151] do_recvmmsg+0xbf/0x22f0 [ 860.628457][T17151] do_recvmmsg+0xbf/0x22f0 [ 860.857171][T17151] not chained 1500000 origins [ 860.861892][T17151] CPU: 1 PID: 17151 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 860.870655][T17151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 860.880704][T17151] Call Trace: [ 860.884005][T17151] dump_stack+0x21c/0x280 [ 860.888342][T17151] kmsan_internal_chain_origin+0x6f/0x130 [ 860.894072][T17151] ? skb_recv_datagram+0x46e/0x4f0 [ 860.899189][T17151] ? kmsan_get_metadata+0x116/0x180 [ 860.904495][T17151] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 860.910306][T17151] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 860.916375][T17151] ? bt_sock_recvmsg+0x522/0xc40 [ 860.921313][T17151] ? kmsan_get_metadata+0x116/0x180 [ 860.926544][T17151] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 860.932350][T17151] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 860.938415][T17151] ? kmsan_get_metadata+0x116/0x180 [ 860.943614][T17151] ? kmsan_internal_set_origin+0x85/0xc0 [ 860.949256][T17151] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 860.955346][T17151] ? _copy_from_user+0x1fd/0x300 [ 860.960293][T17151] ? kmsan_get_metadata+0x116/0x180 [ 860.965496][T17151] __msan_chain_origin+0x57/0xa0 [ 860.970444][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 860.975563][T17151] get_compat_msghdr+0x108/0x2b0 [ 860.980509][T17151] do_recvmmsg+0xdd1/0x22f0 [ 860.985022][T17151] ? kmsan_get_metadata+0x116/0x180 [ 860.990225][T17151] ? kmsan_internal_check_memory+0xb1/0x520 [ 860.996133][T17151] ? kmsan_get_metadata+0x116/0x180 [ 861.001312][T17151] ? kmsan_internal_set_origin+0x85/0xc0 [ 861.006926][T17151] ? __msan_poison_alloca+0xe9/0x110 [ 861.012227][T17151] ? __sys_recvmmsg+0xb5/0x6f0 [ 861.016971][T17151] __sys_recvmmsg+0x519/0x6f0 [ 861.021639][T17151] ? kmsan_get_metadata+0x116/0x180 [ 861.026814][T17151] ? kmsan_get_metadata+0x116/0x180 [ 861.032000][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 861.038229][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 861.044365][T17151] __do_fast_syscall_32+0x102/0x160 [ 861.049541][T17151] do_fast_syscall_32+0x6a/0xc0 [ 861.054369][T17151] do_SYSENTER_32+0x73/0x90 [ 861.058955][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 861.065270][T17151] RIP: 0023:0xf7fb7549 [ 861.069343][T17151] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 861.088929][T17151] RSP: 002b:00000000f55b10cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 861.097408][T17151] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 861.105456][T17151] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 861.113420][T17151] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 861.121371][T17151] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 861.129329][T17151] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 861.137277][T17151] Uninit was stored to memory at: [ 861.142297][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 861.147993][T17151] __msan_chain_origin+0x57/0xa0 [ 861.152911][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 861.157999][T17151] get_compat_msghdr+0x108/0x2b0 [ 861.162930][T17151] do_recvmmsg+0xdd1/0x22f0 [ 861.167424][T17151] __sys_recvmmsg+0x519/0x6f0 [ 861.172095][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 861.178138][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 861.184270][T17151] __do_fast_syscall_32+0x102/0x160 [ 861.189447][T17151] do_fast_syscall_32+0x6a/0xc0 [ 861.194292][T17151] do_SYSENTER_32+0x73/0x90 [ 861.198774][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 861.205070][T17151] [ 861.207372][T17151] Uninit was stored to memory at: [ 861.212372][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 861.218063][T17151] __msan_chain_origin+0x57/0xa0 [ 861.222979][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 861.228065][T17151] get_compat_msghdr+0x108/0x2b0 [ 861.232977][T17151] do_recvmmsg+0xdd1/0x22f0 [ 861.237454][T17151] __sys_recvmmsg+0x519/0x6f0 [ 861.242105][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 861.248167][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 861.254300][T17151] __do_fast_syscall_32+0x102/0x160 [ 861.259474][T17151] do_fast_syscall_32+0x6a/0xc0 [ 861.264322][T17151] do_SYSENTER_32+0x73/0x90 [ 861.268825][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 861.275142][T17151] [ 861.277451][T17151] Uninit was stored to memory at: [ 861.282454][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 861.288148][T17151] __msan_chain_origin+0x57/0xa0 [ 861.293092][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 861.298191][T17151] get_compat_msghdr+0x108/0x2b0 [ 861.303125][T17151] do_recvmmsg+0xdd1/0x22f0 [ 861.307698][T17151] __sys_recvmmsg+0x519/0x6f0 [ 861.312374][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 861.318417][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 861.324548][T17151] __do_fast_syscall_32+0x102/0x160 [ 861.329723][T17151] do_fast_syscall_32+0x6a/0xc0 [ 861.334549][T17151] do_SYSENTER_32+0x73/0x90 [ 861.339031][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 861.345338][T17151] [ 861.347639][T17151] Uninit was stored to memory at: [ 861.352643][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 861.358368][T17151] __msan_chain_origin+0x57/0xa0 [ 861.363283][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 861.368368][T17151] get_compat_msghdr+0x108/0x2b0 [ 861.373316][T17151] do_recvmmsg+0xdd1/0x22f0 [ 861.377847][T17151] __sys_recvmmsg+0x519/0x6f0 [ 861.382503][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 861.388550][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 861.394688][T17151] __do_fast_syscall_32+0x102/0x160 [ 861.399966][T17151] do_fast_syscall_32+0x6a/0xc0 [ 861.404804][T17151] do_SYSENTER_32+0x73/0x90 [ 861.409333][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 861.415630][T17151] [ 861.417935][T17151] Uninit was stored to memory at: [ 861.422955][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 861.428659][T17151] __msan_chain_origin+0x57/0xa0 [ 861.433572][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 861.438658][T17151] get_compat_msghdr+0x108/0x2b0 [ 861.443593][T17151] do_recvmmsg+0xdd1/0x22f0 [ 861.448076][T17151] __sys_recvmmsg+0x519/0x6f0 [ 861.452744][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 861.458800][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 861.464951][T17151] __do_fast_syscall_32+0x102/0x160 [ 861.470146][T17151] do_fast_syscall_32+0x6a/0xc0 [ 861.474992][T17151] do_SYSENTER_32+0x73/0x90 [ 861.479486][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 861.485782][T17151] [ 861.488109][T17151] Uninit was stored to memory at: [ 861.493177][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 861.498890][T17151] __msan_chain_origin+0x57/0xa0 [ 861.503803][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 861.508891][T17151] get_compat_msghdr+0x108/0x2b0 [ 861.513805][T17151] do_recvmmsg+0xdd1/0x22f0 [ 861.518284][T17151] __sys_recvmmsg+0x519/0x6f0 [ 861.522949][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 861.528994][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 861.535127][T17151] __do_fast_syscall_32+0x102/0x160 [ 861.540312][T17151] do_fast_syscall_32+0x6a/0xc0 [ 861.545141][T17151] do_SYSENTER_32+0x73/0x90 [ 861.549636][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 861.555934][T17151] [ 861.558268][T17151] Uninit was stored to memory at: [ 861.563290][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 861.569089][T17151] __msan_chain_origin+0x57/0xa0 [ 861.574054][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 861.579151][T17151] get_compat_msghdr+0x108/0x2b0 [ 861.584075][T17151] do_recvmmsg+0xdd1/0x22f0 [ 861.588555][T17151] __sys_recvmmsg+0x519/0x6f0 [ 861.593210][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 861.599273][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 861.605406][T17151] __do_fast_syscall_32+0x102/0x160 [ 861.610582][T17151] do_fast_syscall_32+0x6a/0xc0 [ 861.615414][T17151] do_SYSENTER_32+0x73/0x90 [ 861.619914][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 861.626216][T17151] [ 861.628532][T17151] Local variable ----msg_sys@do_recvmmsg created at: [ 861.635195][T17151] do_recvmmsg+0xbf/0x22f0 [ 861.639595][T17151] do_recvmmsg+0xbf/0x22f0 [ 861.935946][T17151] not chained 1510000 origins [ 861.940720][T17151] CPU: 1 PID: 17151 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 861.949497][T17151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 861.959552][T17151] Call Trace: [ 861.962852][T17151] dump_stack+0x21c/0x280 [ 861.967197][T17151] kmsan_internal_chain_origin+0x6f/0x130 [ 861.972926][T17151] ? skb_recv_datagram+0x46e/0x4f0 [ 861.978032][T17151] ? kmsan_get_metadata+0x116/0x180 [ 861.983345][T17151] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 861.989141][T17151] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 861.995190][T17151] ? bt_sock_recvmsg+0x522/0xc40 [ 862.000217][T17151] ? kmsan_get_metadata+0x116/0x180 [ 862.005400][T17151] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 862.011185][T17151] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 862.017245][T17151] ? kmsan_get_metadata+0x116/0x180 [ 862.022423][T17151] ? kmsan_internal_set_origin+0x85/0xc0 [ 862.028038][T17151] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 862.034090][T17151] ? _copy_from_user+0x1fd/0x300 [ 862.039006][T17151] ? kmsan_get_metadata+0x116/0x180 [ 862.044205][T17151] __msan_chain_origin+0x57/0xa0 [ 862.049127][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 862.054229][T17151] get_compat_msghdr+0x108/0x2b0 [ 862.059151][T17151] do_recvmmsg+0xdd1/0x22f0 [ 862.063642][T17151] ? kmsan_get_metadata+0x116/0x180 [ 862.068820][T17151] ? kmsan_internal_check_memory+0xb1/0x520 [ 862.074696][T17151] ? kmsan_get_metadata+0x116/0x180 [ 862.079994][T17151] ? kmsan_internal_set_origin+0x85/0xc0 [ 862.085608][T17151] ? __msan_poison_alloca+0xe9/0x110 [ 862.090897][T17151] ? __sys_recvmmsg+0xb5/0x6f0 [ 862.095752][T17151] __sys_recvmmsg+0x519/0x6f0 [ 862.100456][T17151] ? kmsan_get_metadata+0x116/0x180 [ 862.105632][T17151] ? kmsan_get_metadata+0x116/0x180 [ 862.110811][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 862.116862][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 862.122997][T17151] __do_fast_syscall_32+0x102/0x160 [ 862.128177][T17151] do_fast_syscall_32+0x6a/0xc0 [ 862.133026][T17151] do_SYSENTER_32+0x73/0x90 [ 862.137512][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 862.143834][T17151] RIP: 0023:0xf7fb7549 [ 862.147903][T17151] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 862.167488][T17151] RSP: 002b:00000000f55b10cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 862.175892][T17151] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 862.183863][T17151] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 862.191835][T17151] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 862.199811][T17151] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 862.207781][T17151] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 862.215732][T17151] Uninit was stored to memory at: [ 862.220748][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 862.226464][T17151] __msan_chain_origin+0x57/0xa0 [ 862.231383][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 862.236487][T17151] get_compat_msghdr+0x108/0x2b0 [ 862.241408][T17151] do_recvmmsg+0xdd1/0x22f0 [ 862.245900][T17151] __sys_recvmmsg+0x519/0x6f0 [ 862.250558][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 862.256604][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 862.262738][T17151] __do_fast_syscall_32+0x102/0x160 [ 862.267962][T17151] do_fast_syscall_32+0x6a/0xc0 [ 862.272791][T17151] do_SYSENTER_32+0x73/0x90 [ 862.277284][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 862.283578][T17151] [ 862.285881][T17151] Uninit was stored to memory at: [ 862.290976][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 862.296696][T17151] __msan_chain_origin+0x57/0xa0 [ 862.301615][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 862.306701][T17151] get_compat_msghdr+0x108/0x2b0 [ 862.311614][T17151] do_recvmmsg+0xdd1/0x22f0 [ 862.316091][T17151] __sys_recvmmsg+0x519/0x6f0 [ 862.320749][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 862.326792][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 862.332924][T17151] __do_fast_syscall_32+0x102/0x160 [ 862.338110][T17151] do_fast_syscall_32+0x6a/0xc0 [ 862.342942][T17151] do_SYSENTER_32+0x73/0x90 [ 862.347438][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 862.353733][T17151] [ 862.356057][T17151] Uninit was stored to memory at: [ 862.361095][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 862.366790][T17151] __msan_chain_origin+0x57/0xa0 [ 862.371704][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 862.376789][T17151] get_compat_msghdr+0x108/0x2b0 [ 862.381709][T17151] do_recvmmsg+0xdd1/0x22f0 [ 862.386203][T17151] __sys_recvmmsg+0x519/0x6f0 [ 862.391210][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 862.397272][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 862.403953][T17151] __do_fast_syscall_32+0x102/0x160 [ 862.409133][T17151] do_fast_syscall_32+0x6a/0xc0 [ 862.413961][T17151] do_SYSENTER_32+0x73/0x90 [ 862.418453][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 862.424748][T17151] [ 862.427062][T17151] Uninit was stored to memory at: [ 862.432062][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 862.437753][T17151] __msan_chain_origin+0x57/0xa0 [ 862.442664][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 862.447764][T17151] get_compat_msghdr+0x108/0x2b0 [ 862.452781][T17151] do_recvmmsg+0xdd1/0x22f0 [ 862.457262][T17151] __sys_recvmmsg+0x519/0x6f0 [ 862.461915][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 862.467958][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 862.474090][T17151] __do_fast_syscall_32+0x102/0x160 [ 862.479265][T17151] do_fast_syscall_32+0x6a/0xc0 [ 862.484094][T17151] do_SYSENTER_32+0x73/0x90 [ 862.488581][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 862.494879][T17151] [ 862.497189][T17151] Uninit was stored to memory at: [ 862.502207][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 862.507955][T17151] __msan_chain_origin+0x57/0xa0 [ 862.512878][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 862.517983][T17151] get_compat_msghdr+0x108/0x2b0 [ 862.522906][T17151] do_recvmmsg+0xdd1/0x22f0 [ 862.527391][T17151] __sys_recvmmsg+0x519/0x6f0 [ 862.532045][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 862.538175][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 862.544321][T17151] __do_fast_syscall_32+0x102/0x160 [ 862.549506][T17151] do_fast_syscall_32+0x6a/0xc0 [ 862.554346][T17151] do_SYSENTER_32+0x73/0x90 [ 862.558836][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 862.565344][T17151] [ 862.567651][T17151] Uninit was stored to memory at: [ 862.572656][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 862.578355][T17151] __msan_chain_origin+0x57/0xa0 [ 862.583268][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 862.588367][T17151] get_compat_msghdr+0x108/0x2b0 [ 862.593300][T17151] do_recvmmsg+0xdd1/0x22f0 [ 862.597781][T17151] __sys_recvmmsg+0x519/0x6f0 [ 862.602473][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 862.608547][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 862.614694][T17151] __do_fast_syscall_32+0x102/0x160 [ 862.619876][T17151] do_fast_syscall_32+0x6a/0xc0 [ 862.624708][T17151] do_SYSENTER_32+0x73/0x90 [ 862.629196][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 862.635521][T17151] [ 862.637840][T17151] Uninit was stored to memory at: [ 862.642866][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 862.648572][T17151] __msan_chain_origin+0x57/0xa0 [ 862.653484][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 862.658581][T17151] get_compat_msghdr+0x108/0x2b0 [ 862.663493][T17151] do_recvmmsg+0xdd1/0x22f0 [ 862.667972][T17151] __sys_recvmmsg+0x519/0x6f0 [ 862.672624][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 862.678698][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 862.684841][T17151] __do_fast_syscall_32+0x102/0x160 [ 862.690036][T17151] do_fast_syscall_32+0x6a/0xc0 [ 862.694872][T17151] do_SYSENTER_32+0x73/0x90 [ 862.699366][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 862.705665][T17151] [ 862.707995][T17151] Local variable ----msg_sys@do_recvmmsg created at: [ 862.714664][T17151] do_recvmmsg+0xbf/0x22f0 [ 862.719074][T17151] do_recvmmsg+0xbf/0x22f0 [ 862.962213][T17151] not chained 1520000 origins [ 862.966946][T17151] CPU: 1 PID: 17151 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 862.975701][T17151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 862.985843][T17151] Call Trace: [ 862.989153][T17151] dump_stack+0x21c/0x280 [ 862.993506][T17151] kmsan_internal_chain_origin+0x6f/0x130 [ 862.999233][T17151] ? skb_recv_datagram+0x46e/0x4f0 [ 863.004356][T17151] ? kmsan_get_metadata+0x116/0x180 [ 863.009561][T17151] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 863.015373][T17151] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 863.021449][T17151] ? bt_sock_recvmsg+0x522/0xc40 [ 863.026389][T17151] ? kmsan_get_metadata+0x116/0x180 [ 863.031652][T17151] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 863.037457][T17151] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 863.043521][T17151] ? kmsan_get_metadata+0x116/0x180 [ 863.048720][T17151] ? kmsan_internal_set_origin+0x85/0xc0 [ 863.054363][T17151] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 863.060499][T17151] ? _copy_from_user+0x1fd/0x300 [ 863.065526][T17151] ? kmsan_get_metadata+0x116/0x180 [ 863.070729][T17151] __msan_chain_origin+0x57/0xa0 [ 863.075687][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 863.080807][T17151] get_compat_msghdr+0x108/0x2b0 [ 863.085807][T17151] do_recvmmsg+0xdd1/0x22f0 [ 863.090327][T17151] ? kmsan_get_metadata+0x116/0x180 [ 863.095529][T17151] ? kmsan_internal_check_memory+0xb1/0x520 [ 863.101424][T17151] ? kmsan_get_metadata+0x116/0x180 [ 863.106631][T17151] ? kmsan_internal_set_origin+0x85/0xc0 [ 863.112267][T17151] ? __msan_poison_alloca+0xe9/0x110 [ 863.117578][T17151] ? __sys_recvmmsg+0xb5/0x6f0 [ 863.122347][T17151] __sys_recvmmsg+0x519/0x6f0 [ 863.127029][T17151] ? kmsan_get_metadata+0x116/0x180 [ 863.132232][T17151] ? kmsan_get_metadata+0x116/0x180 [ 863.137435][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 863.143591][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 863.149725][T17151] __do_fast_syscall_32+0x102/0x160 [ 863.154904][T17151] do_fast_syscall_32+0x6a/0xc0 [ 863.159905][T17151] do_SYSENTER_32+0x73/0x90 [ 863.164396][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 863.170724][T17151] RIP: 0023:0xf7fb7549 [ 863.174926][T17151] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 863.194587][T17151] RSP: 002b:00000000f55b10cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 863.203023][T17151] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 863.210976][T17151] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 863.218929][T17151] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 863.226883][T17151] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 863.234862][T17151] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 863.242812][T17151] Uninit was stored to memory at: [ 863.247820][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 863.253532][T17151] __msan_chain_origin+0x57/0xa0 [ 863.258448][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 863.263544][T17151] get_compat_msghdr+0x108/0x2b0 [ 863.268463][T17151] do_recvmmsg+0xdd1/0x22f0 [ 863.272944][T17151] __sys_recvmmsg+0x519/0x6f0 [ 863.277614][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 863.283662][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 863.289811][T17151] __do_fast_syscall_32+0x102/0x160 [ 863.295259][T17151] do_fast_syscall_32+0x6a/0xc0 [ 863.300103][T17151] do_SYSENTER_32+0x73/0x90 [ 863.304600][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 863.310898][T17151] [ 863.313305][T17151] Uninit was stored to memory at: [ 863.318336][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 863.324048][T17151] __msan_chain_origin+0x57/0xa0 [ 863.328965][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 863.334067][T17151] get_compat_msghdr+0x108/0x2b0 [ 863.338999][T17151] do_recvmmsg+0xdd1/0x22f0 [ 863.343502][T17151] __sys_recvmmsg+0x519/0x6f0 [ 863.348181][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 863.354227][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 863.360370][T17151] __do_fast_syscall_32+0x102/0x160 [ 863.365547][T17151] do_fast_syscall_32+0x6a/0xc0 [ 863.370391][T17151] do_SYSENTER_32+0x73/0x90 [ 863.374891][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 863.381216][T17151] [ 863.383524][T17151] Uninit was stored to memory at: [ 863.388531][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 863.394252][T17151] __msan_chain_origin+0x57/0xa0 [ 863.399165][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 863.404278][T17151] get_compat_msghdr+0x108/0x2b0 [ 863.409192][T17151] do_recvmmsg+0xdd1/0x22f0 [ 863.413685][T17151] __sys_recvmmsg+0x519/0x6f0 [ 863.418354][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 863.424416][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 863.430565][T17151] __do_fast_syscall_32+0x102/0x160 [ 863.435743][T17151] do_fast_syscall_32+0x6a/0xc0 [ 863.440597][T17151] do_SYSENTER_32+0x73/0x90 [ 863.445084][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 863.451393][T17151] [ 863.453695][T17151] Uninit was stored to memory at: [ 863.458710][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 863.464419][T17151] __msan_chain_origin+0x57/0xa0 [ 863.469331][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 863.474431][T17151] get_compat_msghdr+0x108/0x2b0 [ 863.479361][T17151] do_recvmmsg+0xdd1/0x22f0 [ 863.483851][T17151] __sys_recvmmsg+0x519/0x6f0 [ 863.488528][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 863.494591][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 863.500748][T17151] __do_fast_syscall_32+0x102/0x160 [ 863.505936][T17151] do_fast_syscall_32+0x6a/0xc0 [ 863.510767][T17151] do_SYSENTER_32+0x73/0x90 [ 863.515251][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 863.521554][T17151] [ 863.523876][T17151] Uninit was stored to memory at: [ 863.528907][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 863.534637][T17151] __msan_chain_origin+0x57/0xa0 [ 863.539583][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 863.544674][T17151] get_compat_msghdr+0x108/0x2b0 [ 863.549662][T17151] do_recvmmsg+0xdd1/0x22f0 [ 863.554189][T17151] __sys_recvmmsg+0x519/0x6f0 [ 863.558872][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 863.564943][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 863.571121][T17151] __do_fast_syscall_32+0x102/0x160 [ 863.576324][T17151] do_fast_syscall_32+0x6a/0xc0 [ 863.581185][T17151] do_SYSENTER_32+0x73/0x90 [ 863.585705][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 863.592021][T17151] [ 863.594343][T17151] Uninit was stored to memory at: [ 863.599366][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 863.605082][T17151] __msan_chain_origin+0x57/0xa0 [ 863.610037][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 863.615153][T17151] get_compat_msghdr+0x108/0x2b0 [ 863.620083][T17151] do_recvmmsg+0xdd1/0x22f0 [ 863.624579][T17151] __sys_recvmmsg+0x519/0x6f0 [ 863.629252][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 863.635319][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 863.641451][T17151] __do_fast_syscall_32+0x102/0x160 [ 863.646624][T17151] do_fast_syscall_32+0x6a/0xc0 [ 863.651453][T17151] do_SYSENTER_32+0x73/0x90 [ 863.655935][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 863.662261][T17151] [ 863.664563][T17151] Uninit was stored to memory at: [ 863.669564][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 863.675260][T17151] __msan_chain_origin+0x57/0xa0 [ 863.680289][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 863.685386][T17151] get_compat_msghdr+0x108/0x2b0 [ 863.690302][T17151] do_recvmmsg+0xdd1/0x22f0 [ 863.694782][T17151] __sys_recvmmsg+0x519/0x6f0 [ 863.699435][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 863.705481][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 863.711616][T17151] __do_fast_syscall_32+0x102/0x160 [ 863.716791][T17151] do_fast_syscall_32+0x6a/0xc0 [ 863.721628][T17151] do_SYSENTER_32+0x73/0x90 [ 863.726311][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 863.732637][T17151] [ 863.734950][T17151] Local variable ----msg_sys@do_recvmmsg created at: [ 863.741621][T17151] do_recvmmsg+0xbf/0x22f0 [ 863.746084][T17151] do_recvmmsg+0xbf/0x22f0 [ 864.024394][T17151] not chained 1530000 origins [ 864.029114][T17151] CPU: 0 PID: 17151 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 864.037869][T17151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 864.047978][T17151] Call Trace: [ 864.051259][T17151] dump_stack+0x21c/0x280 [ 864.055700][T17151] kmsan_internal_chain_origin+0x6f/0x130 [ 864.061423][T17151] ? skb_recv_datagram+0x46e/0x4f0 [ 864.066513][T17151] ? kmsan_get_metadata+0x116/0x180 [ 864.071692][T17151] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 864.077488][T17151] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 864.083540][T17151] ? bt_sock_recvmsg+0x522/0xc40 [ 864.088468][T17151] ? kmsan_get_metadata+0x116/0x180 [ 864.093671][T17151] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 864.099489][T17151] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 864.105597][T17151] ? kmsan_get_metadata+0x116/0x180 [ 864.110793][T17151] ? kmsan_internal_set_origin+0x85/0xc0 [ 864.116446][T17151] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 864.122515][T17151] ? _copy_from_user+0x1fd/0x300 [ 864.127434][T17151] ? kmsan_get_metadata+0x116/0x180 [ 864.132621][T17151] __msan_chain_origin+0x57/0xa0 [ 864.137661][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 864.142762][T17151] get_compat_msghdr+0x108/0x2b0 [ 864.147728][T17151] do_recvmmsg+0xdd1/0x22f0 [ 864.152300][T17151] ? kmsan_get_metadata+0x116/0x180 [ 864.157479][T17151] ? kmsan_internal_check_memory+0xb1/0x520 [ 864.163356][T17151] ? kmsan_get_metadata+0x116/0x180 [ 864.168533][T17151] ? kmsan_internal_set_origin+0x85/0xc0 [ 864.174157][T17151] ? __msan_poison_alloca+0xe9/0x110 [ 864.179421][T17151] ? __sys_recvmmsg+0xb5/0x6f0 [ 864.184182][T17151] __sys_recvmmsg+0x519/0x6f0 [ 864.188838][T17151] ? kmsan_get_metadata+0x116/0x180 [ 864.194137][T17151] ? kmsan_get_metadata+0x116/0x180 [ 864.199331][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 864.205400][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 864.211538][T17151] __do_fast_syscall_32+0x102/0x160 [ 864.216726][T17151] do_fast_syscall_32+0x6a/0xc0 [ 864.221585][T17151] do_SYSENTER_32+0x73/0x90 [ 864.226074][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 864.232379][T17151] RIP: 0023:0xf7fb7549 [ 864.236429][T17151] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 864.256016][T17151] RSP: 002b:00000000f55b10cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 864.264497][T17151] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 864.272463][T17151] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 864.280417][T17151] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 864.288372][T17151] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 864.296346][T17151] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 864.304301][T17151] Uninit was stored to memory at: [ 864.309309][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 864.315010][T17151] __msan_chain_origin+0x57/0xa0 [ 864.319924][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 864.325198][T17151] get_compat_msghdr+0x108/0x2b0 [ 864.330137][T17151] do_recvmmsg+0xdd1/0x22f0 [ 864.334637][T17151] __sys_recvmmsg+0x519/0x6f0 [ 864.339294][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 864.345349][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 864.351547][T17151] __do_fast_syscall_32+0x102/0x160 [ 864.356726][T17151] do_fast_syscall_32+0x6a/0xc0 [ 864.361575][T17151] do_SYSENTER_32+0x73/0x90 [ 864.366059][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 864.372358][T17151] [ 864.374778][T17151] Uninit was stored to memory at: [ 864.379785][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 864.385510][T17151] __msan_chain_origin+0x57/0xa0 [ 864.390436][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 864.395530][T17151] get_compat_msghdr+0x108/0x2b0 [ 864.400450][T17151] do_recvmmsg+0xdd1/0x22f0 [ 864.404940][T17151] __sys_recvmmsg+0x519/0x6f0 [ 864.409594][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 864.415641][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 864.421791][T17151] __do_fast_syscall_32+0x102/0x160 [ 864.426982][T17151] do_fast_syscall_32+0x6a/0xc0 [ 864.431811][T17151] do_SYSENTER_32+0x73/0x90 [ 864.436295][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 864.442597][T17151] [ 864.444914][T17151] Uninit was stored to memory at: [ 864.449947][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 864.455646][T17151] __msan_chain_origin+0x57/0xa0 [ 864.460565][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 864.465652][T17151] get_compat_msghdr+0x108/0x2b0 [ 864.470580][T17151] do_recvmmsg+0xdd1/0x22f0 [ 864.475072][T17151] __sys_recvmmsg+0x519/0x6f0 [ 864.479779][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 864.485830][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 864.492114][T17151] __do_fast_syscall_32+0x102/0x160 [ 864.497297][T17151] do_fast_syscall_32+0x6a/0xc0 [ 864.502129][T17151] do_SYSENTER_32+0x73/0x90 [ 864.506717][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 864.513016][T17151] [ 864.515322][T17151] Uninit was stored to memory at: [ 864.520343][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 864.526046][T17151] __msan_chain_origin+0x57/0xa0 [ 864.530974][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 864.536076][T17151] get_compat_msghdr+0x108/0x2b0 [ 864.541007][T17151] do_recvmmsg+0xdd1/0x22f0 [ 864.545515][T17151] __sys_recvmmsg+0x519/0x6f0 [ 864.550186][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 864.556234][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 864.562366][T17151] __do_fast_syscall_32+0x102/0x160 [ 864.567547][T17151] do_fast_syscall_32+0x6a/0xc0 [ 864.572379][T17151] do_SYSENTER_32+0x73/0x90 [ 864.576865][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 864.583281][T17151] [ 864.585601][T17151] Uninit was stored to memory at: [ 864.590606][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 864.596323][T17151] __msan_chain_origin+0x57/0xa0 [ 864.601242][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 864.606336][T17151] get_compat_msghdr+0x108/0x2b0 [ 864.611316][T17151] do_recvmmsg+0xdd1/0x22f0 [ 864.615800][T17151] __sys_recvmmsg+0x519/0x6f0 [ 864.620457][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 864.626517][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 864.632668][T17151] __do_fast_syscall_32+0x102/0x160 [ 864.637847][T17151] do_fast_syscall_32+0x6a/0xc0 [ 864.642692][T17151] do_SYSENTER_32+0x73/0x90 [ 864.647205][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 864.653545][T17151] [ 864.655848][T17151] Uninit was stored to memory at: [ 864.660851][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 864.666546][T17151] __msan_chain_origin+0x57/0xa0 [ 864.671462][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 864.676553][T17151] get_compat_msghdr+0x108/0x2b0 [ 864.681488][T17151] do_recvmmsg+0xdd1/0x22f0 [ 864.685968][T17151] __sys_recvmmsg+0x519/0x6f0 [ 864.690630][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 864.696693][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 864.702826][T17151] __do_fast_syscall_32+0x102/0x160 [ 864.708031][T17151] do_fast_syscall_32+0x6a/0xc0 [ 864.712864][T17151] do_SYSENTER_32+0x73/0x90 [ 864.717347][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 864.723645][T17151] [ 864.725970][T17151] Uninit was stored to memory at: [ 864.731001][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 864.736697][T17151] __msan_chain_origin+0x57/0xa0 [ 864.741627][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 864.746716][T17151] get_compat_msghdr+0x108/0x2b0 [ 864.751664][T17151] do_recvmmsg+0xdd1/0x22f0 [ 864.756162][T17151] __sys_recvmmsg+0x519/0x6f0 [ 864.760832][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 864.766878][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 864.773047][T17151] __do_fast_syscall_32+0x102/0x160 [ 864.778222][T17151] do_fast_syscall_32+0x6a/0xc0 [ 864.783084][T17151] do_SYSENTER_32+0x73/0x90 [ 864.787582][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 864.793878][T17151] [ 864.796183][T17151] Local variable ----msg_sys@do_recvmmsg created at: [ 864.802852][T17151] do_recvmmsg+0xbf/0x22f0 [ 864.807262][T17151] do_recvmmsg+0xbf/0x22f0 [ 865.065151][T17151] not chained 1540000 origins [ 865.069866][T17151] CPU: 0 PID: 17151 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 865.078624][T17151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 865.088685][T17151] Call Trace: [ 865.091990][T17151] dump_stack+0x21c/0x280 [ 865.096324][T17151] kmsan_internal_chain_origin+0x6f/0x130 [ 865.102053][T17151] ? skb_recv_datagram+0x46e/0x4f0 [ 865.107238][T17151] ? kmsan_get_metadata+0x116/0x180 [ 865.112445][T17151] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 865.118256][T17151] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 865.124328][T17151] ? bt_sock_recvmsg+0x522/0xc40 [ 865.129267][T17151] ? kmsan_get_metadata+0x116/0x180 [ 865.134531][T17151] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 865.140342][T17151] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 865.146410][T17151] ? kmsan_get_metadata+0x116/0x180 [ 865.151628][T17151] ? kmsan_internal_set_origin+0x85/0xc0 [ 865.157281][T17151] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 865.163356][T17151] ? _copy_from_user+0x1fd/0x300 [ 865.168298][T17151] ? kmsan_get_metadata+0x116/0x180 [ 865.173498][T17151] __msan_chain_origin+0x57/0xa0 [ 865.178452][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 865.183584][T17151] get_compat_msghdr+0x108/0x2b0 [ 865.188532][T17151] do_recvmmsg+0xdd1/0x22f0 [ 865.193044][T17151] ? kmsan_get_metadata+0x116/0x180 [ 865.198246][T17151] ? kmsan_internal_check_memory+0xb1/0x520 [ 865.204412][T17151] ? kmsan_get_metadata+0x116/0x180 [ 865.209612][T17151] ? kmsan_internal_set_origin+0x85/0xc0 [ 865.215251][T17151] ? __msan_poison_alloca+0xe9/0x110 [ 865.220542][T17151] ? __sys_recvmmsg+0xb5/0x6f0 [ 865.225314][T17151] __sys_recvmmsg+0x519/0x6f0 [ 865.229996][T17151] ? kmsan_get_metadata+0x116/0x180 [ 865.235198][T17151] ? kmsan_get_metadata+0x116/0x180 [ 865.240509][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 865.246588][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 865.252747][T17151] __do_fast_syscall_32+0x102/0x160 [ 865.257960][T17151] do_fast_syscall_32+0x6a/0xc0 [ 865.262819][T17151] do_SYSENTER_32+0x73/0x90 [ 865.267334][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 865.273660][T17151] RIP: 0023:0xf7fb7549 [ 865.277732][T17151] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 865.297331][T17151] RSP: 002b:00000000f55b10cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 865.305747][T17151] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 865.313699][T17151] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 865.321649][T17151] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 865.329596][T17151] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 865.337550][T17151] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 865.345501][T17151] Uninit was stored to memory at: [ 865.350772][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 865.356564][T17151] __msan_chain_origin+0x57/0xa0 [ 865.361502][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 865.366601][T17151] get_compat_msghdr+0x108/0x2b0 [ 865.371531][T17151] do_recvmmsg+0xdd1/0x22f0 [ 865.376028][T17151] __sys_recvmmsg+0x519/0x6f0 [ 865.380698][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 865.386757][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 865.392903][T17151] __do_fast_syscall_32+0x102/0x160 [ 865.398210][T17151] do_fast_syscall_32+0x6a/0xc0 [ 865.403203][T17151] do_SYSENTER_32+0x73/0x90 [ 865.407691][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 865.414135][T17151] [ 865.416460][T17151] Uninit was stored to memory at: [ 865.421481][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 865.427196][T17151] __msan_chain_origin+0x57/0xa0 [ 865.432125][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 865.437225][T17151] get_compat_msghdr+0x108/0x2b0 [ 865.442237][T17151] do_recvmmsg+0xdd1/0x22f0 [ 865.446797][T17151] __sys_recvmmsg+0x519/0x6f0 [ 865.451470][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 865.457528][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 865.463689][T17151] __do_fast_syscall_32+0x102/0x160 [ 865.468871][T17151] do_fast_syscall_32+0x6a/0xc0 [ 865.473729][T17151] do_SYSENTER_32+0x73/0x90 [ 865.478214][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 865.484533][T17151] [ 865.486856][T17151] Uninit was stored to memory at: [ 865.491871][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 865.497608][T17151] __msan_chain_origin+0x57/0xa0 [ 865.502526][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 865.507633][T17151] get_compat_msghdr+0x108/0x2b0 [ 865.512565][T17151] do_recvmmsg+0xdd1/0x22f0 [ 865.517057][T17151] __sys_recvmmsg+0x519/0x6f0 [ 865.521728][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 865.527787][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 865.533924][T17151] __do_fast_syscall_32+0x102/0x160 [ 865.539103][T17151] do_fast_syscall_32+0x6a/0xc0 [ 865.543949][T17151] do_SYSENTER_32+0x73/0x90 [ 865.548438][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 865.554737][T17151] [ 865.557043][T17151] Uninit was stored to memory at: [ 865.562045][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 865.567760][T17151] __msan_chain_origin+0x57/0xa0 [ 865.572696][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 865.577827][T17151] get_compat_msghdr+0x108/0x2b0 [ 865.582753][T17151] do_recvmmsg+0xdd1/0x22f0 [ 865.587234][T17151] __sys_recvmmsg+0x519/0x6f0 [ 865.591921][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 865.598000][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 865.604134][T17151] __do_fast_syscall_32+0x102/0x160 [ 865.609411][T17151] do_fast_syscall_32+0x6a/0xc0 [ 865.614286][T17151] do_SYSENTER_32+0x73/0x90 [ 865.618771][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 865.625084][T17151] [ 865.627407][T17151] Uninit was stored to memory at: [ 865.632423][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 865.638135][T17151] __msan_chain_origin+0x57/0xa0 [ 865.643055][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 865.648161][T17151] get_compat_msghdr+0x108/0x2b0 [ 865.653095][T17151] do_recvmmsg+0xdd1/0x22f0 [ 865.657591][T17151] __sys_recvmmsg+0x519/0x6f0 [ 865.662250][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 865.668311][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 865.674468][T17151] __do_fast_syscall_32+0x102/0x160 [ 865.679810][T17151] do_fast_syscall_32+0x6a/0xc0 [ 865.684648][T17151] do_SYSENTER_32+0x73/0x90 [ 865.689133][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 865.695445][T17151] [ 865.697753][T17151] Uninit was stored to memory at: [ 865.702759][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 865.708452][T17151] __msan_chain_origin+0x57/0xa0 [ 865.713468][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 865.718578][T17151] get_compat_msghdr+0x108/0x2b0 [ 865.723509][T17151] do_recvmmsg+0xdd1/0x22f0 [ 865.728013][T17151] __sys_recvmmsg+0x519/0x6f0 [ 865.732691][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 865.738746][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 865.744963][T17151] __do_fast_syscall_32+0x102/0x160 [ 865.750315][T17151] do_fast_syscall_32+0x6a/0xc0 [ 865.755198][T17151] do_SYSENTER_32+0x73/0x90 [ 865.759681][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 865.765978][T17151] [ 865.768280][T17151] Uninit was stored to memory at: [ 865.773295][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 865.779005][T17151] __msan_chain_origin+0x57/0xa0 [ 865.783923][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 865.789018][T17151] get_compat_msghdr+0x108/0x2b0 [ 865.793936][T17151] do_recvmmsg+0xdd1/0x22f0 [ 865.798418][T17151] __sys_recvmmsg+0x519/0x6f0 [ 865.803075][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 865.809117][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 865.815303][T17151] __do_fast_syscall_32+0x102/0x160 [ 865.820481][T17151] do_fast_syscall_32+0x6a/0xc0 [ 865.825312][T17151] do_SYSENTER_32+0x73/0x90 [ 865.829803][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 865.836253][T17151] [ 865.838576][T17151] Local variable ----msg_sys@do_recvmmsg created at: [ 865.845229][T17151] do_recvmmsg+0xbf/0x22f0 [ 865.849622][T17151] do_recvmmsg+0xbf/0x22f0 [ 866.114248][T17151] not chained 1550000 origins [ 866.118968][T17151] CPU: 0 PID: 17151 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 866.127814][T17151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 866.137870][T17151] Call Trace: [ 866.141176][T17151] dump_stack+0x21c/0x280 [ 866.145514][T17151] kmsan_internal_chain_origin+0x6f/0x130 [ 866.151248][T17151] ? skb_recv_datagram+0x46e/0x4f0 [ 866.156362][T17151] ? kmsan_get_metadata+0x116/0x180 [ 866.161562][T17151] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 866.167362][T17151] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 866.173423][T17151] ? bt_sock_recvmsg+0x522/0xc40 [ 866.178341][T17151] ? kmsan_get_metadata+0x116/0x180 [ 866.183533][T17151] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 866.189331][T17151] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 866.195383][T17151] ? kmsan_get_metadata+0x116/0x180 [ 866.200575][T17151] ? kmsan_internal_set_origin+0x85/0xc0 [ 866.206193][T17151] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 866.212275][T17151] ? _copy_from_user+0x1fd/0x300 [ 866.217206][T17151] ? kmsan_get_metadata+0x116/0x180 [ 866.222395][T17151] __msan_chain_origin+0x57/0xa0 [ 866.227313][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 866.232425][T17151] get_compat_msghdr+0x108/0x2b0 [ 866.237341][T17151] do_recvmmsg+0xdd1/0x22f0 [ 866.241825][T17151] ? kmsan_get_metadata+0x116/0x180 [ 866.246998][T17151] ? kmsan_internal_check_memory+0xb1/0x520 [ 866.252890][T17151] ? kmsan_get_metadata+0x116/0x180 [ 866.258064][T17151] ? kmsan_internal_set_origin+0x85/0xc0 [ 866.263671][T17151] ? __msan_poison_alloca+0xe9/0x110 [ 866.268944][T17151] ? __sys_recvmmsg+0xb5/0x6f0 [ 866.273684][T17151] __sys_recvmmsg+0x519/0x6f0 [ 866.278337][T17151] ? kmsan_get_metadata+0x116/0x180 [ 866.283514][T17151] ? kmsan_get_metadata+0x116/0x180 [ 866.288699][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 866.294750][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 866.300892][T17151] __do_fast_syscall_32+0x102/0x160 [ 866.306162][T17151] do_fast_syscall_32+0x6a/0xc0 [ 866.311012][T17151] do_SYSENTER_32+0x73/0x90 [ 866.315685][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 866.321987][T17151] RIP: 0023:0xf7fb7549 [ 866.326035][T17151] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 866.345631][T17151] RSP: 002b:00000000f55b10cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 866.354034][T17151] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 866.361993][T17151] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 866.370049][T17151] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 866.378084][T17151] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 866.386034][T17151] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 866.393983][T17151] Uninit was stored to memory at: [ 866.398987][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 866.404682][T17151] __msan_chain_origin+0x57/0xa0 [ 866.409596][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 866.414681][T17151] get_compat_msghdr+0x108/0x2b0 [ 866.419595][T17151] do_recvmmsg+0xdd1/0x22f0 [ 866.424075][T17151] __sys_recvmmsg+0x519/0x6f0 [ 866.428725][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 866.434767][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 866.440904][T17151] __do_fast_syscall_32+0x102/0x160 [ 866.446078][T17151] do_fast_syscall_32+0x6a/0xc0 [ 866.450908][T17151] do_SYSENTER_32+0x73/0x90 [ 866.455387][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 866.461680][T17151] [ 866.463999][T17151] Uninit was stored to memory at: [ 866.469016][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 866.474724][T17151] __msan_chain_origin+0x57/0xa0 [ 866.479636][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 866.484739][T17151] get_compat_msghdr+0x108/0x2b0 [ 866.489651][T17151] do_recvmmsg+0xdd1/0x22f0 [ 866.494137][T17151] __sys_recvmmsg+0x519/0x6f0 [ 866.498795][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 866.504840][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 866.510990][T17151] __do_fast_syscall_32+0x102/0x160 [ 866.516180][T17151] do_fast_syscall_32+0x6a/0xc0 [ 866.521009][T17151] do_SYSENTER_32+0x73/0x90 [ 866.525491][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 866.531885][T17151] [ 866.534197][T17151] Uninit was stored to memory at: [ 866.539211][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 866.544908][T17151] __msan_chain_origin+0x57/0xa0 [ 866.549822][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 866.554970][T17151] get_compat_msghdr+0x108/0x2b0 [ 866.559884][T17151] do_recvmmsg+0xdd1/0x22f0 [ 866.564399][T17151] __sys_recvmmsg+0x519/0x6f0 [ 866.569054][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 866.575099][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 866.581233][T17151] __do_fast_syscall_32+0x102/0x160 [ 866.586408][T17151] do_fast_syscall_32+0x6a/0xc0 [ 866.591278][T17151] do_SYSENTER_32+0x73/0x90 [ 866.595768][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 866.602064][T17151] [ 866.604365][T17151] Uninit was stored to memory at: [ 866.609384][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 866.615080][T17151] __msan_chain_origin+0x57/0xa0 [ 866.619992][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 866.625084][T17151] get_compat_msghdr+0x108/0x2b0 [ 866.630008][T17151] do_recvmmsg+0xdd1/0x22f0 [ 866.634535][T17151] __sys_recvmmsg+0x519/0x6f0 [ 866.639200][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 866.645246][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 866.651378][T17151] __do_fast_syscall_32+0x102/0x160 [ 866.656555][T17151] do_fast_syscall_32+0x6a/0xc0 [ 866.661398][T17151] do_SYSENTER_32+0x73/0x90 [ 866.665903][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 866.672198][T17151] [ 866.674514][T17151] Uninit was stored to memory at: [ 866.679519][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 866.685242][T17151] __msan_chain_origin+0x57/0xa0 [ 866.690169][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 866.695268][T17151] get_compat_msghdr+0x108/0x2b0 [ 866.700197][T17151] do_recvmmsg+0xdd1/0x22f0 [ 866.704682][T17151] __sys_recvmmsg+0x519/0x6f0 [ 866.709341][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 866.715408][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 866.721539][T17151] __do_fast_syscall_32+0x102/0x160 [ 866.726718][T17151] do_fast_syscall_32+0x6a/0xc0 [ 866.731560][T17151] do_SYSENTER_32+0x73/0x90 [ 866.736064][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 866.742361][T17151] [ 866.744662][T17151] Uninit was stored to memory at: [ 866.749662][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 866.755370][T17151] __msan_chain_origin+0x57/0xa0 [ 866.760316][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 866.765420][T17151] get_compat_msghdr+0x108/0x2b0 [ 866.770445][T17151] do_recvmmsg+0xdd1/0x22f0 [ 866.775011][T17151] __sys_recvmmsg+0x519/0x6f0 [ 866.779666][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 866.785709][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 866.791852][T17151] __do_fast_syscall_32+0x102/0x160 [ 866.797057][T17151] do_fast_syscall_32+0x6a/0xc0 [ 866.801905][T17151] do_SYSENTER_32+0x73/0x90 [ 866.806386][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 866.812680][T17151] [ 866.814981][T17151] Uninit was stored to memory at: [ 866.819979][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 866.825778][T17151] __msan_chain_origin+0x57/0xa0 [ 866.830701][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 866.835798][T17151] get_compat_msghdr+0x108/0x2b0 [ 866.840722][T17151] do_recvmmsg+0xdd1/0x22f0 [ 866.845235][T17151] __sys_recvmmsg+0x519/0x6f0 [ 866.849911][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 866.855957][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 866.862092][T17151] __do_fast_syscall_32+0x102/0x160 [ 866.867278][T17151] do_fast_syscall_32+0x6a/0xc0 [ 866.872110][T17151] do_SYSENTER_32+0x73/0x90 [ 866.876852][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 866.883148][T17151] [ 866.885452][T17151] Local variable ----msg_sys@do_recvmmsg created at: [ 866.892106][T17151] do_recvmmsg+0xbf/0x22f0 [ 866.896507][T17151] do_recvmmsg+0xbf/0x22f0 [ 867.149065][T17151] not chained 1560000 origins [ 867.153891][T17151] CPU: 0 PID: 17151 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 867.162999][T17151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 867.173054][T17151] Call Trace: [ 867.176355][T17151] dump_stack+0x21c/0x280 [ 867.180691][T17151] kmsan_internal_chain_origin+0x6f/0x130 [ 867.186420][T17151] ? skb_recv_datagram+0x46e/0x4f0 [ 867.191533][T17151] ? kmsan_get_metadata+0x116/0x180 [ 867.196732][T17151] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 867.202539][T17151] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 867.208636][T17151] ? bt_sock_recvmsg+0x522/0xc40 [ 867.213604][T17151] ? kmsan_get_metadata+0x116/0x180 [ 867.218908][T17151] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 867.224736][T17151] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 867.230803][T17151] ? kmsan_get_metadata+0x116/0x180 [ 867.236011][T17151] ? kmsan_internal_set_origin+0x85/0xc0 [ 867.241657][T17151] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 867.247732][T17151] ? _copy_from_user+0x1fd/0x300 [ 867.252672][T17151] ? kmsan_get_metadata+0x116/0x180 [ 867.257882][T17151] __msan_chain_origin+0x57/0xa0 [ 867.262828][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 867.267963][T17151] get_compat_msghdr+0x108/0x2b0 [ 867.272918][T17151] do_recvmmsg+0xdd1/0x22f0 [ 867.277432][T17151] ? kmsan_get_metadata+0x116/0x180 [ 867.282634][T17151] ? kmsan_internal_check_memory+0xb1/0x520 [ 867.288527][T17151] ? kmsan_get_metadata+0x116/0x180 [ 867.293727][T17151] ? kmsan_internal_set_origin+0x85/0xc0 [ 867.299358][T17151] ? __msan_poison_alloca+0xe9/0x110 [ 867.304644][T17151] ? __sys_recvmmsg+0xb5/0x6f0 [ 867.309412][T17151] __sys_recvmmsg+0x519/0x6f0 [ 867.314112][T17151] ? kmsan_get_metadata+0x116/0x180 [ 867.319326][T17151] ? kmsan_get_metadata+0x116/0x180 [ 867.324535][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 867.330619][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 867.336780][T17151] __do_fast_syscall_32+0x102/0x160 [ 867.341988][T17151] do_fast_syscall_32+0x6a/0xc0 [ 867.346859][T17151] do_SYSENTER_32+0x73/0x90 [ 867.351370][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 867.357696][T17151] RIP: 0023:0xf7fb7549 [ 867.361758][T17151] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 867.381450][T17151] RSP: 002b:00000000f55b10cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 867.389857][T17151] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 867.397806][T17151] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 867.405761][T17151] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 867.413730][T17151] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 867.421704][T17151] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 867.429666][T17151] Uninit was stored to memory at: [ 867.434672][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 867.440479][T17151] __msan_chain_origin+0x57/0xa0 [ 867.445398][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 867.450496][T17151] get_compat_msghdr+0x108/0x2b0 [ 867.455416][T17151] do_recvmmsg+0xdd1/0x22f0 [ 867.459902][T17151] __sys_recvmmsg+0x519/0x6f0 [ 867.464574][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 867.470628][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 867.476773][T17151] __do_fast_syscall_32+0x102/0x160 [ 867.481961][T17151] do_fast_syscall_32+0x6a/0xc0 [ 867.486799][T17151] do_SYSENTER_32+0x73/0x90 [ 867.491283][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 867.497575][T17151] [ 867.499875][T17151] Uninit was stored to memory at: [ 867.504990][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 867.510710][T17151] __msan_chain_origin+0x57/0xa0 [ 867.515805][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 867.520913][T17151] get_compat_msghdr+0x108/0x2b0 [ 867.525856][T17151] do_recvmmsg+0xdd1/0x22f0 [ 867.530337][T17151] __sys_recvmmsg+0x519/0x6f0 [ 867.535009][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 867.541151][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 867.547295][T17151] __do_fast_syscall_32+0x102/0x160 [ 867.552470][T17151] do_fast_syscall_32+0x6a/0xc0 [ 867.557296][T17151] do_SYSENTER_32+0x73/0x90 [ 867.561791][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 867.568095][T17151] [ 867.570405][T17151] Uninit was stored to memory at: [ 867.575407][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 867.581113][T17151] __msan_chain_origin+0x57/0xa0 [ 867.586040][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 867.591346][T17151] get_compat_msghdr+0x108/0x2b0 [ 867.596265][T17151] do_recvmmsg+0xdd1/0x22f0 [ 867.600760][T17151] __sys_recvmmsg+0x519/0x6f0 [ 867.605440][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 867.611502][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 867.617676][T17151] __do_fast_syscall_32+0x102/0x160 [ 867.622899][T17151] do_fast_syscall_32+0x6a/0xc0 [ 867.627741][T17151] do_SYSENTER_32+0x73/0x90 [ 867.632223][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 867.638518][T17151] [ 867.640826][T17151] Uninit was stored to memory at: [ 867.645841][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 867.651536][T17151] __msan_chain_origin+0x57/0xa0 [ 867.656452][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 867.661549][T17151] get_compat_msghdr+0x108/0x2b0 [ 867.666740][T17151] do_recvmmsg+0xdd1/0x22f0 [ 867.671234][T17151] __sys_recvmmsg+0x519/0x6f0 [ 867.675889][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 867.681943][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 867.688087][T17151] __do_fast_syscall_32+0x102/0x160 [ 867.693263][T17151] do_fast_syscall_32+0x6a/0xc0 [ 867.698114][T17151] do_SYSENTER_32+0x73/0x90 [ 867.702615][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 867.708924][T17151] [ 867.711230][T17151] Uninit was stored to memory at: [ 867.716237][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 867.722125][T17151] __msan_chain_origin+0x57/0xa0 [ 867.727056][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 867.732159][T17151] get_compat_msghdr+0x108/0x2b0 [ 867.737112][T17151] do_recvmmsg+0xdd1/0x22f0 [ 867.741614][T17151] __sys_recvmmsg+0x519/0x6f0 [ 867.746282][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 867.752454][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 867.758587][T17151] __do_fast_syscall_32+0x102/0x160 [ 867.763765][T17151] do_fast_syscall_32+0x6a/0xc0 [ 867.768592][T17151] do_SYSENTER_32+0x73/0x90 [ 867.773274][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 867.779579][T17151] [ 867.781887][T17151] Uninit was stored to memory at: [ 867.786908][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 867.792607][T17151] __msan_chain_origin+0x57/0xa0 [ 867.797887][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 867.803001][T17151] get_compat_msghdr+0x108/0x2b0 [ 867.808109][T17151] do_recvmmsg+0xdd1/0x22f0 [ 867.812589][T17151] __sys_recvmmsg+0x519/0x6f0 [ 867.817241][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 867.823300][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 867.829446][T17151] __do_fast_syscall_32+0x102/0x160 [ 867.834623][T17151] do_fast_syscall_32+0x6a/0xc0 [ 867.839478][T17151] do_SYSENTER_32+0x73/0x90 [ 867.843963][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 867.850256][T17151] [ 867.852566][T17151] Uninit was stored to memory at: [ 867.857659][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 867.863368][T17151] __msan_chain_origin+0x57/0xa0 [ 867.868295][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 867.873391][T17151] get_compat_msghdr+0x108/0x2b0 [ 867.878306][T17151] do_recvmmsg+0xdd1/0x22f0 [ 867.882798][T17151] __sys_recvmmsg+0x519/0x6f0 [ 867.887466][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 867.893511][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 867.899660][T17151] __do_fast_syscall_32+0x102/0x160 [ 867.904950][T17151] do_fast_syscall_32+0x6a/0xc0 [ 867.909776][T17151] do_SYSENTER_32+0x73/0x90 [ 867.914348][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 867.920649][T17151] [ 867.922969][T17151] Local variable ----msg_sys@do_recvmmsg created at: [ 867.929634][T17151] do_recvmmsg+0xbf/0x22f0 [ 867.934029][T17151] do_recvmmsg+0xbf/0x22f0 [ 868.223827][T17151] not chained 1570000 origins [ 868.228623][T17151] CPU: 1 PID: 17151 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 868.237395][T17151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 868.247425][T17151] Call Trace: [ 868.250786][T17151] dump_stack+0x21c/0x280 [ 868.255224][T17151] kmsan_internal_chain_origin+0x6f/0x130 [ 868.261011][T17151] ? skb_recv_datagram+0x46e/0x4f0 [ 868.266098][T17151] ? kmsan_get_metadata+0x116/0x180 [ 868.271271][T17151] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 868.277050][T17151] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 868.283092][T17151] ? bt_sock_recvmsg+0x522/0xc40 [ 868.288004][T17151] ? kmsan_get_metadata+0x116/0x180 [ 868.293174][T17151] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 868.298954][T17151] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 868.304994][T17151] ? kmsan_get_metadata+0x116/0x180 [ 868.310164][T17151] ? kmsan_internal_set_origin+0x85/0xc0 [ 868.315790][T17151] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 868.321922][T17151] ? _copy_from_user+0x1fd/0x300 [ 868.326855][T17151] ? kmsan_get_metadata+0x116/0x180 [ 868.332031][T17151] __msan_chain_origin+0x57/0xa0 [ 868.336966][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 868.342072][T17151] get_compat_msghdr+0x108/0x2b0 [ 868.346987][T17151] do_recvmmsg+0xdd1/0x22f0 [ 868.351469][T17151] ? kmsan_get_metadata+0x116/0x180 [ 868.356641][T17151] ? kmsan_internal_check_memory+0xb1/0x520 [ 868.362509][T17151] ? kmsan_get_metadata+0x116/0x180 [ 868.367706][T17151] ? kmsan_internal_set_origin+0x85/0xc0 [ 868.373320][T17151] ? __msan_poison_alloca+0xe9/0x110 [ 868.378592][T17151] ? __sys_recvmmsg+0xb5/0x6f0 [ 868.383343][T17151] __sys_recvmmsg+0x519/0x6f0 [ 868.388109][T17151] ? kmsan_get_metadata+0x116/0x180 [ 868.393297][T17151] ? kmsan_get_metadata+0x116/0x180 [ 868.398506][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 868.404554][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 868.410773][T17151] __do_fast_syscall_32+0x102/0x160 [ 868.415950][T17151] do_fast_syscall_32+0x6a/0xc0 [ 868.420877][T17151] do_SYSENTER_32+0x73/0x90 [ 868.425419][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 868.431802][T17151] RIP: 0023:0xf7fb7549 [ 868.435863][T17151] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 868.455555][T17151] RSP: 002b:00000000f55b10cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 868.463947][T17151] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 868.471909][T17151] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 868.479855][T17151] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 868.487805][T17151] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 868.495760][T17151] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 868.503710][T17151] Uninit was stored to memory at: [ 868.508715][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 868.514407][T17151] __msan_chain_origin+0x57/0xa0 [ 868.519341][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 868.524436][T17151] get_compat_msghdr+0x108/0x2b0 [ 868.529348][T17151] do_recvmmsg+0xdd1/0x22f0 [ 868.533837][T17151] __sys_recvmmsg+0x519/0x6f0 [ 868.538516][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 868.544573][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 868.550704][T17151] __do_fast_syscall_32+0x102/0x160 [ 868.555878][T17151] do_fast_syscall_32+0x6a/0xc0 [ 868.560706][T17151] do_SYSENTER_32+0x73/0x90 [ 868.565346][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 868.571674][T17151] [ 868.574101][T17151] Uninit was stored to memory at: [ 868.579198][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 868.584896][T17151] __msan_chain_origin+0x57/0xa0 [ 868.589836][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 868.594923][T17151] get_compat_msghdr+0x108/0x2b0 [ 868.599933][T17151] do_recvmmsg+0xdd1/0x22f0 [ 868.604444][T17151] __sys_recvmmsg+0x519/0x6f0 [ 868.609196][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 868.615247][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 868.621380][T17151] __do_fast_syscall_32+0x102/0x160 [ 868.626557][T17151] do_fast_syscall_32+0x6a/0xc0 [ 868.631385][T17151] do_SYSENTER_32+0x73/0x90 [ 868.635879][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 868.642179][T17151] [ 868.644499][T17151] Uninit was stored to memory at: [ 868.649545][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 868.655330][T17151] __msan_chain_origin+0x57/0xa0 [ 868.660241][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 868.665325][T17151] get_compat_msghdr+0x108/0x2b0 [ 868.670238][T17151] do_recvmmsg+0xdd1/0x22f0 [ 868.674716][T17151] __sys_recvmmsg+0x519/0x6f0 [ 868.679416][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 868.685472][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 868.691604][T17151] __do_fast_syscall_32+0x102/0x160 [ 868.696789][T17151] do_fast_syscall_32+0x6a/0xc0 [ 868.701624][T17151] do_SYSENTER_32+0x73/0x90 [ 868.706109][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 868.712404][T17151] [ 868.714711][T17151] Uninit was stored to memory at: [ 868.719713][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 868.725408][T17151] __msan_chain_origin+0x57/0xa0 [ 868.730320][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 868.735406][T17151] get_compat_msghdr+0x108/0x2b0 [ 868.740317][T17151] do_recvmmsg+0xdd1/0x22f0 [ 868.744806][T17151] __sys_recvmmsg+0x519/0x6f0 [ 868.749474][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 868.755517][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 868.761647][T17151] __do_fast_syscall_32+0x102/0x160 [ 868.767031][T17151] do_fast_syscall_32+0x6a/0xc0 [ 868.771857][T17151] do_SYSENTER_32+0x73/0x90 [ 868.776334][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 868.782624][T17151] [ 868.784941][T17151] Uninit was stored to memory at: [ 868.789951][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 868.795644][T17151] __msan_chain_origin+0x57/0xa0 [ 868.800567][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 868.805753][T17151] get_compat_msghdr+0x108/0x2b0 [ 868.810678][T17151] do_recvmmsg+0xdd1/0x22f0 [ 868.815153][T17151] __sys_recvmmsg+0x519/0x6f0 [ 868.819803][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 868.825854][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 868.831981][T17151] __do_fast_syscall_32+0x102/0x160 [ 868.837151][T17151] do_fast_syscall_32+0x6a/0xc0 [ 868.842001][T17151] do_SYSENTER_32+0x73/0x90 [ 868.846494][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 868.852800][T17151] [ 868.855101][T17151] Uninit was stored to memory at: [ 868.860102][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 868.865793][T17151] __msan_chain_origin+0x57/0xa0 [ 868.870792][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 868.875876][T17151] get_compat_msghdr+0x108/0x2b0 [ 868.880802][T17151] do_recvmmsg+0xdd1/0x22f0 [ 868.885277][T17151] __sys_recvmmsg+0x519/0x6f0 [ 868.889930][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 868.895970][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 868.902099][T17151] __do_fast_syscall_32+0x102/0x160 [ 868.907271][T17151] do_fast_syscall_32+0x6a/0xc0 [ 868.912096][T17151] do_SYSENTER_32+0x73/0x90 [ 868.916576][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 868.922881][T17151] [ 868.925181][T17151] Uninit was stored to memory at: [ 868.930177][T17151] kmsan_internal_chain_origin+0xad/0x130 [ 868.935868][T17151] __msan_chain_origin+0x57/0xa0 [ 868.940779][T17151] __get_compat_msghdr+0x6db/0x9d0 [ 868.945952][T17151] get_compat_msghdr+0x108/0x2b0 [ 868.950905][T17151] do_recvmmsg+0xdd1/0x22f0 [ 868.955404][T17151] __sys_recvmmsg+0x519/0x6f0 [ 868.960066][T17151] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 868.966111][T17151] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 868.972250][T17151] __do_fast_syscall_32+0x102/0x160 [ 868.977431][T17151] do_fast_syscall_32+0x6a/0xc0 [ 868.982265][T17151] do_SYSENTER_32+0x73/0x90 [ 868.986742][T17151] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 868.993036][T17151] [ 868.995425][T17151] Local variable ----msg_sys@do_recvmmsg created at: [ 869.002072][T17151] do_recvmmsg+0xbf/0x22f0 [ 869.006472][T17151] do_recvmmsg+0xbf/0x22f0 08:09:16 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r1 = dup2(r0, r0) shutdown(r1, 0x0) recvmmsg(r1, &(0x7f0000000000), 0x4000223, 0x0, 0x0) 08:09:16 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x25, 0x0, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:09:16 executing program 5: syz_usb_connect$cdc_ecm(0x5, 0x5b, &(0x7f0000000040)=ANY=[@ANYBLOB="12010003020000082505a1a4400001020301090249000101e5201f090400c203050000000a24060000f6491e10bd05240075000d24810005000000ffff0900050905810340deda941a18ea171cf7e4b208c109050302000445efff2e5f278f4eebc9e0ff3a492d9454ef63b0e3c42c30000000000000"], &(0x7f0000000140)={0xa, &(0x7f0000000000)={0xa, 0x6, 0x110, 0xb, 0x0, 0x1, 0x9f, 0x4}, 0x5, &(0x7f00000000c0)={0x5, 0xf, 0x5}}) openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000100)='/dev/btrfs-control\x00', 0x2c0100, 0x0) 08:09:16 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff) mount$fuse(0x20000000, &(0x7f00000004c0)='./file0\x00', 0x0, 0x7a04, 0x0) chdir(&(0x7f0000000100)='./file0\x00') r0 = open(&(0x7f0000000080)='./bus\x00', 0x0, 0x0) fstat(r0, &(0x7f0000002b00)) 08:09:16 executing program 4: getsockopt$inet_sctp6_SCTP_STATUS(0xffffffffffffffff, 0x84, 0xe, 0x0, &(0x7f00000000c0)) openat$tun(0xffffffffffffff9c, &(0x7f0000000140)='/dev/net/tun\x00', 0x20080, 0x0) r0 = perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0xd}, 0x1140}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000000700fff64017db9820000000000000d423ffff630627e59aa146175dd106736d173f0fc7ec6e2656000000004932d1cd5300000000c03948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f62acdfe80819a277d9079cc4cbee0ab17b299b81f2d2740144e00da971f954c96d74c92fad7e34bd552cc36c2442eac2d624609abe06206080000026ec43c6da4"], 0x259) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x2400, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x5) setsockopt$inet_sctp_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, 0x0, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = openat$btrfs_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r6, r7, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r6, &(0x7f0000000100)={0x28, 0x2, 0x0, {0x0, 0x9e28, 0xfffffffffffffff7}}, 0x28) 08:09:16 executing program 2: perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000180)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000000)={0xffffffffffffffff}, 0x13f}}, 0x20) write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000500)={0xe, 0x18, 0xfa00, @id_afonly={&(0x7f00000004c0), r1, 0x0, 0x2, 0x4}}, 0x20) [ 870.200929][ T8473] usb 6-1: new high-speed USB device number 5 using dummy_hcd 08:09:17 executing program 2: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$unix(r0, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000140)="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", 0xfa}, {&(0x7f0000000280)="47ae36930d13d3dff65f05085289dae2bc6eda3265560d55d19cebe50e156c93dbcdaca0b3487e5fe062e28bbb194c4f28c65f8370df45cccccff1919459431596785c0c2e6cf57f0901261e6a4d0d97a725f04ddf", 0x55}, {&(0x7f0000000040)="30cd93de8c24d7d52b2ef0da75fcdf18f2f26c7540964b12408f2ca5ed0000000069c1820b", 0x22}], 0x63, 0x0, 0x0, 0x400}, 0x0) 08:09:17 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x5c, 0x0, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:09:17 executing program 1: syz_emit_ethernet(0x1062, &(0x7f00000000c0)={@broadcast, @empty, @val, {@ipv4}}, 0x0) [ 870.450779][ T8473] usb 6-1: Using ep0 maxpacket: 8 [ 870.682088][ T8473] usb 6-1: config 1 has an invalid descriptor of length 24, skipping remainder of the config [ 870.695032][ T8473] usb 6-1: config 1 interface 0 altsetting 194 endpoint 0x81 has an invalid bInterval 218, changing to 11 [ 870.707183][ T8473] usb 6-1: config 1 interface 0 altsetting 194 endpoint 0x81 has invalid maxpacket 1600, setting to 1024 [ 870.718592][ T8473] usb 6-1: config 1 interface 0 altsetting 194 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 870.732144][ T8473] usb 6-1: config 1 interface 0 has no altsetting 0 08:09:18 executing program 2: syz_emit_ethernet(0x126d, &(0x7f0000001340)={@broadcast, @empty, @val, {@ipv6}}, 0x0) 08:09:18 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x300, 0x0, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:09:18 executing program 1: syz_emit_ethernet(0x4a, &(0x7f0000001200)={@broadcast, @local, @val, {@ipv4}}, 0x0) [ 871.183192][ T8473] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 871.192606][ T8473] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 871.203381][ T8473] usb 6-1: Product: syz [ 871.207736][ T8473] usb 6-1: Manufacturer: syz [ 871.212985][ T8473] usb 6-1: SerialNumber: syz [ 871.395582][T17171] raw-gadget gadget: fail, usb_ep_enable returned -22 [ 871.741285][ T8473] usb 6-1: USB disconnect, device number 5 [ 872.453854][ T2082] usb 6-1: new high-speed USB device number 6 using dummy_hcd [ 872.700869][ T2082] usb 6-1: Using ep0 maxpacket: 8 [ 872.901955][ T2082] usb 6-1: config 1 has an invalid descriptor of length 24, skipping remainder of the config [ 872.912524][ T2082] usb 6-1: config 1 interface 0 altsetting 194 endpoint 0x81 has an invalid bInterval 218, changing to 11 [ 872.924301][ T2082] usb 6-1: config 1 interface 0 altsetting 194 endpoint 0x81 has invalid maxpacket 1600, setting to 1024 [ 872.935886][ T2082] usb 6-1: config 1 interface 0 altsetting 194 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 872.950103][ T2082] usb 6-1: config 1 interface 0 has no altsetting 0 [ 873.240935][ T2082] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 873.251108][ T2082] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 873.259200][ T2082] usb 6-1: Product: syz [ 873.322166][ T2082] usb 6-1: can't set config #1, error -71 [ 873.341342][ T2082] usb 6-1: USB disconnect, device number 6 [ 874.028336][ T8472] device hsr_slave_0 left promiscuous mode [ 874.044975][ T8472] device hsr_slave_1 left promiscuous mode [ 874.054916][ T8472] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 874.062907][ T8472] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 874.087744][ T8472] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 874.095492][ T8472] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 874.113725][ T8472] device bridge_slave_1 left promiscuous mode [ 874.120399][ T8472] bridge0: port 2(bridge_slave_1) entered disabled state [ 874.136605][ T8472] device bridge_slave_0 left promiscuous mode [ 874.143574][ T8472] bridge0: port 1(bridge_slave_0) entered disabled state [ 874.174885][ T8472] device veth1_macvtap left promiscuous mode [ 874.181283][ T8472] device veth0_macvtap left promiscuous mode [ 874.187424][ T8472] device veth1_vlan left promiscuous mode [ 874.193555][ T8472] device veth0_vlan left promiscuous mode [ 876.280889][ T8472] team0 (unregistering): Port device team_slave_1 removed [ 876.301681][ T8472] team0 (unregistering): Port device team_slave_0 removed [ 876.319271][ T8472] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 876.339543][ T8472] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 876.411889][ T8472] bond0 (unregistering): Released all slaves [ 876.490343][T17243] IPVS: ftp: loaded support on port[0] = 21 [ 876.698469][T17243] chnl_net:caif_netlink_parms(): no params data found [ 876.828217][T17243] bridge0: port 1(bridge_slave_0) entered blocking state [ 876.836849][T17243] bridge0: port 1(bridge_slave_0) entered disabled state [ 876.846582][T17243] device bridge_slave_0 entered promiscuous mode [ 876.861631][T17243] bridge0: port 2(bridge_slave_1) entered blocking state [ 876.868880][T17243] bridge0: port 2(bridge_slave_1) entered disabled state [ 876.878665][T17243] device bridge_slave_1 entered promiscuous mode [ 876.930307][T17243] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 876.948512][T17243] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 876.993531][T17243] team0: Port device team_slave_0 added [ 877.006124][T17243] team0: Port device team_slave_1 added [ 877.054526][T17243] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 877.062198][T17243] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 877.088546][T17243] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 877.108031][T17243] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 877.115812][T17243] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 877.142042][T17243] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 877.209342][T17243] device hsr_slave_0 entered promiscuous mode [ 877.219440][T17243] device hsr_slave_1 entered promiscuous mode [ 877.229436][T17243] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 877.237249][T17243] Cannot create hsr debugfs directory [ 877.473195][ T32] Bluetooth: hci3: command 0x0409 tx timeout [ 877.720373][T17243] 8021q: adding VLAN 0 to HW filter on device bond0 [ 877.747268][ T8474] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 877.757664][ T8474] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 877.775025][T17243] 8021q: adding VLAN 0 to HW filter on device team0 [ 877.788447][ T8473] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 877.798558][ T8473] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 877.808210][ T8473] bridge0: port 1(bridge_slave_0) entered blocking state [ 877.815598][ T8473] bridge0: port 1(bridge_slave_0) entered forwarding state [ 877.826410][ T8473] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 877.842300][ T8474] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 877.852482][ T8474] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 877.863087][ T8474] bridge0: port 2(bridge_slave_1) entered blocking state [ 877.870332][ T8474] bridge0: port 2(bridge_slave_1) entered forwarding state [ 877.888688][ T8474] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 877.909312][ T8474] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 877.928736][ T8473] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 877.938525][ T8473] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 877.949508][ T8473] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 877.968490][ T8474] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 877.979125][ T8474] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 878.000233][ T8474] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 878.009920][ T8474] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 878.028874][ T8474] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 878.038919][ T8474] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 878.058809][T17243] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 878.096129][ T8474] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 878.104107][ T8474] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 878.127348][T17243] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 878.226556][ T8867] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 878.237034][ T8867] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 878.287426][ T8867] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 878.297146][ T8867] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 878.316309][T17243] device veth0_vlan entered promiscuous mode [ 878.328188][ T8473] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 878.338102][ T8473] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 878.360209][T17243] device veth1_vlan entered promiscuous mode [ 878.406325][T10613] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 878.415682][T10613] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 878.425095][T10613] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 878.434968][T10613] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 878.454027][T17243] device veth0_macvtap entered promiscuous mode [ 878.470262][T17243] device veth1_macvtap entered promiscuous mode [ 878.506032][T17243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 878.517854][T17243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 878.527948][T17243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 878.538704][T17243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 878.548852][T17243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 878.559738][T17243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 878.570000][T17243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 878.580622][T17243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 878.590891][T17243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 878.601635][T17243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 878.615381][T17243] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 878.631354][T10613] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 878.640886][T10613] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 878.649384][T10613] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 878.659679][T10613] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 878.669895][T17243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 878.682725][T17243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 878.693019][T17243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 878.703639][T17243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 878.713691][T17243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 878.724322][T17243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 878.734298][T17243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 878.744913][T17243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 878.755017][T17243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 878.765651][T17243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 878.778159][T17243] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 878.793679][ T8867] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 878.803781][ T8867] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 879.065221][T13686] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 879.074087][T13686] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 879.082627][T10613] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 879.192915][T13686] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 879.201464][T13686] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 879.209460][T10613] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 879.561440][T10613] Bluetooth: hci3: command 0x041b tx timeout [ 879.772788][T17474] not chained 1580000 origins [ 879.777518][T17474] CPU: 1 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 879.786510][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 879.796546][T17474] Call Trace: [ 879.799872][T17474] dump_stack+0x21c/0x280 [ 879.804203][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 879.809944][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 879.815036][T17474] ? kmsan_get_metadata+0x116/0x180 [ 879.820237][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 879.826044][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 879.832102][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 879.837070][T17474] ? kmsan_get_metadata+0x116/0x180 [ 879.842251][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 879.848034][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 879.854121][T17474] ? kmsan_get_metadata+0x116/0x180 [ 879.859307][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 879.864931][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 879.870983][T17474] ? _copy_from_user+0x1fd/0x300 [ 879.875901][T17474] ? kmsan_get_metadata+0x116/0x180 [ 879.881092][T17474] __msan_chain_origin+0x57/0xa0 [ 879.886024][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 879.891129][T17474] get_compat_msghdr+0x108/0x2b0 [ 879.896066][T17474] do_recvmmsg+0xdd1/0x22f0 [ 879.900566][T17474] ? kmsan_get_metadata+0x116/0x180 [ 879.905766][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 879.911655][T17474] ? kmsan_get_metadata+0x116/0x180 [ 879.916845][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 879.922471][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 879.927743][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 879.932501][T17474] __sys_recvmmsg+0x519/0x6f0 [ 879.937178][T17474] ? kmsan_get_metadata+0x116/0x180 [ 879.942378][T17474] ? kmsan_get_metadata+0x116/0x180 [ 879.947581][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 879.953656][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 879.959795][T17474] __do_fast_syscall_32+0x102/0x160 [ 879.964977][T17474] do_fast_syscall_32+0x6a/0xc0 [ 879.969821][T17474] do_SYSENTER_32+0x73/0x90 [ 879.974321][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 879.980634][T17474] RIP: 0023:0xf7f58549 [ 879.984692][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 880.004365][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 880.012761][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 880.020724][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 880.028699][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 880.036652][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 880.044601][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 880.052567][T17474] Uninit was stored to memory at: [ 880.057574][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 880.063298][T17474] __msan_chain_origin+0x57/0xa0 [ 880.068238][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 880.073328][T17474] get_compat_msghdr+0x108/0x2b0 [ 880.078266][T17474] do_recvmmsg+0xdd1/0x22f0 [ 880.082756][T17474] __sys_recvmmsg+0x519/0x6f0 [ 880.087410][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 880.093465][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 880.099783][T17474] __do_fast_syscall_32+0x102/0x160 [ 880.104979][T17474] do_fast_syscall_32+0x6a/0xc0 [ 880.109842][T17474] do_SYSENTER_32+0x73/0x90 [ 880.114338][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 880.120659][T17474] [ 880.122985][T17474] Uninit was stored to memory at: [ 880.128016][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 880.133725][T17474] __msan_chain_origin+0x57/0xa0 [ 880.138664][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 880.143775][T17474] get_compat_msghdr+0x108/0x2b0 [ 880.148714][T17474] do_recvmmsg+0xdd1/0x22f0 [ 880.153216][T17474] __sys_recvmmsg+0x519/0x6f0 [ 880.157905][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 880.163971][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 880.170116][T17474] __do_fast_syscall_32+0x102/0x160 [ 880.175302][T17474] do_fast_syscall_32+0x6a/0xc0 [ 880.180137][T17474] do_SYSENTER_32+0x73/0x90 [ 880.184634][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 880.190938][T17474] [ 880.193268][T17474] Uninit was stored to memory at: [ 880.198276][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 880.203994][T17474] __msan_chain_origin+0x57/0xa0 [ 880.208922][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 880.214032][T17474] get_compat_msghdr+0x108/0x2b0 [ 880.218970][T17474] do_recvmmsg+0xdd1/0x22f0 [ 880.223460][T17474] __sys_recvmmsg+0x519/0x6f0 [ 880.228125][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 880.234284][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 880.240433][T17474] __do_fast_syscall_32+0x102/0x160 [ 880.245617][T17474] do_fast_syscall_32+0x6a/0xc0 [ 880.250456][T17474] do_SYSENTER_32+0x73/0x90 [ 880.254950][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 880.261250][T17474] [ 880.263560][T17474] Uninit was stored to memory at: [ 880.268577][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 880.274283][T17474] __msan_chain_origin+0x57/0xa0 [ 880.279207][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 880.284304][T17474] get_compat_msghdr+0x108/0x2b0 [ 880.289310][T17474] do_recvmmsg+0xdd1/0x22f0 [ 880.293924][T17474] __sys_recvmmsg+0x519/0x6f0 [ 880.298591][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 880.304732][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 880.310874][T17474] __do_fast_syscall_32+0x102/0x160 [ 880.316056][T17474] do_fast_syscall_32+0x6a/0xc0 [ 880.320897][T17474] do_SYSENTER_32+0x73/0x90 [ 880.325417][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 880.331721][T17474] [ 880.334032][T17474] Uninit was stored to memory at: [ 880.339041][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 880.344750][T17474] __msan_chain_origin+0x57/0xa0 [ 880.349669][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 880.354762][T17474] get_compat_msghdr+0x108/0x2b0 [ 880.359681][T17474] do_recvmmsg+0xdd1/0x22f0 [ 880.364168][T17474] __sys_recvmmsg+0x519/0x6f0 [ 880.368848][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 880.374902][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 880.381039][T17474] __do_fast_syscall_32+0x102/0x160 [ 880.386235][T17474] do_fast_syscall_32+0x6a/0xc0 [ 880.391099][T17474] do_SYSENTER_32+0x73/0x90 [ 880.395589][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 880.401986][T17474] [ 880.404297][T17474] Uninit was stored to memory at: [ 880.409307][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 880.415012][T17474] __msan_chain_origin+0x57/0xa0 [ 880.419939][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 880.425035][T17474] get_compat_msghdr+0x108/0x2b0 [ 880.429967][T17474] do_recvmmsg+0xdd1/0x22f0 [ 880.434456][T17474] __sys_recvmmsg+0x519/0x6f0 [ 880.439121][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 880.445174][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 880.451316][T17474] __do_fast_syscall_32+0x102/0x160 [ 880.456502][T17474] do_fast_syscall_32+0x6a/0xc0 [ 880.461340][T17474] do_SYSENTER_32+0x73/0x90 [ 880.465835][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 880.472135][T17474] [ 880.474461][T17474] Uninit was stored to memory at: [ 880.479560][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 880.485264][T17474] __msan_chain_origin+0x57/0xa0 [ 880.490188][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 880.495285][T17474] get_compat_msghdr+0x108/0x2b0 [ 880.500208][T17474] do_recvmmsg+0xdd1/0x22f0 [ 880.504696][T17474] __sys_recvmmsg+0x519/0x6f0 [ 880.509360][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 880.515439][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 880.521633][T17474] __do_fast_syscall_32+0x102/0x160 [ 880.526826][T17474] do_fast_syscall_32+0x6a/0xc0 [ 880.531684][T17474] do_SYSENTER_32+0x73/0x90 [ 880.536265][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 880.542567][T17474] [ 880.544882][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 880.551549][T17474] do_recvmmsg+0xbf/0x22f0 [ 880.555955][T17474] do_recvmmsg+0xbf/0x22f0 [ 880.917690][T17474] not chained 1590000 origins [ 880.922495][T17474] CPU: 1 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 880.931339][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 880.941405][T17474] Call Trace: [ 880.944704][T17474] dump_stack+0x21c/0x280 [ 880.949040][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 880.954768][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 880.959887][T17474] ? kmsan_get_metadata+0x116/0x180 [ 880.965085][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 880.970911][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 880.976995][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 880.981934][T17474] ? kmsan_get_metadata+0x116/0x180 [ 880.987160][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 880.992973][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 880.999266][T17474] ? kmsan_get_metadata+0x116/0x180 [ 881.004575][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 881.010214][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 881.016394][T17474] ? _copy_from_user+0x1fd/0x300 [ 881.021333][T17474] ? kmsan_get_metadata+0x116/0x180 [ 881.026670][T17474] __msan_chain_origin+0x57/0xa0 [ 881.031619][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 881.036894][T17474] get_compat_msghdr+0x108/0x2b0 [ 881.042087][T17474] do_recvmmsg+0xdd1/0x22f0 [ 881.046763][T17474] ? kmsan_get_metadata+0x116/0x180 [ 881.051967][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 881.057883][T17474] ? kmsan_get_metadata+0x116/0x180 [ 881.063205][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 881.068837][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 881.074123][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 881.078887][T17474] __sys_recvmmsg+0x519/0x6f0 [ 881.083577][T17474] ? kmsan_get_metadata+0x116/0x180 [ 881.088773][T17474] ? kmsan_get_metadata+0x116/0x180 [ 881.093978][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 881.100056][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 881.106219][T17474] __do_fast_syscall_32+0x102/0x160 [ 881.111445][T17474] do_fast_syscall_32+0x6a/0xc0 [ 881.116313][T17474] do_SYSENTER_32+0x73/0x90 [ 881.120825][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 881.127151][T17474] RIP: 0023:0xf7f58549 [ 881.131361][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 881.151017][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 881.159434][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 881.167411][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 881.175396][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 881.183364][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 881.191338][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 881.199453][T17474] Uninit was stored to memory at: [ 881.204567][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 881.210286][T17474] __msan_chain_origin+0x57/0xa0 [ 881.215312][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 881.220440][T17474] get_compat_msghdr+0x108/0x2b0 [ 881.225555][T17474] do_recvmmsg+0xdd1/0x22f0 [ 881.230066][T17474] __sys_recvmmsg+0x519/0x6f0 [ 881.234807][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 881.240982][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 881.247119][T17474] __do_fast_syscall_32+0x102/0x160 [ 881.252299][T17474] do_fast_syscall_32+0x6a/0xc0 [ 881.257139][T17474] do_SYSENTER_32+0x73/0x90 [ 881.261708][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 881.268018][T17474] [ 881.270325][T17474] Uninit was stored to memory at: [ 881.275332][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 881.281142][T17474] __msan_chain_origin+0x57/0xa0 [ 881.286057][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 881.291147][T17474] get_compat_msghdr+0x108/0x2b0 [ 881.296069][T17474] do_recvmmsg+0xdd1/0x22f0 [ 881.300547][T17474] __sys_recvmmsg+0x519/0x6f0 [ 881.305202][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 881.311246][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 881.317378][T17474] __do_fast_syscall_32+0x102/0x160 [ 881.322553][T17474] do_fast_syscall_32+0x6a/0xc0 [ 881.327383][T17474] do_SYSENTER_32+0x73/0x90 [ 881.331879][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 881.338181][T17474] [ 881.340500][T17474] Uninit was stored to memory at: [ 881.345516][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 881.351212][T17474] __msan_chain_origin+0x57/0xa0 [ 881.356149][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 881.361243][T17474] get_compat_msghdr+0x108/0x2b0 [ 881.366159][T17474] do_recvmmsg+0xdd1/0x22f0 [ 881.370663][T17474] __sys_recvmmsg+0x519/0x6f0 [ 881.375416][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 881.381460][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 881.387598][T17474] __do_fast_syscall_32+0x102/0x160 [ 881.392789][T17474] do_fast_syscall_32+0x6a/0xc0 [ 881.397615][T17474] do_SYSENTER_32+0x73/0x90 [ 881.402097][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 881.408406][T17474] [ 881.410717][T17474] Uninit was stored to memory at: [ 881.415729][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 881.421432][T17474] __msan_chain_origin+0x57/0xa0 [ 881.426442][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 881.431561][T17474] get_compat_msghdr+0x108/0x2b0 [ 881.436490][T17474] do_recvmmsg+0xdd1/0x22f0 [ 881.440982][T17474] __sys_recvmmsg+0x519/0x6f0 [ 881.445675][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 881.451742][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 881.457916][T17474] __do_fast_syscall_32+0x102/0x160 [ 881.463095][T17474] do_fast_syscall_32+0x6a/0xc0 [ 881.467933][T17474] do_SYSENTER_32+0x73/0x90 [ 881.472448][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 881.478854][T17474] [ 881.481176][T17474] Uninit was stored to memory at: [ 881.486181][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 881.491885][T17474] __msan_chain_origin+0x57/0xa0 [ 881.496810][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 881.501909][T17474] get_compat_msghdr+0x108/0x2b0 [ 881.506833][T17474] do_recvmmsg+0xdd1/0x22f0 [ 881.511342][T17474] __sys_recvmmsg+0x519/0x6f0 [ 881.516122][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 881.522167][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 881.528298][T17474] __do_fast_syscall_32+0x102/0x160 [ 881.533471][T17474] do_fast_syscall_32+0x6a/0xc0 [ 881.538324][T17474] do_SYSENTER_32+0x73/0x90 [ 881.542940][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 881.549253][T17474] [ 881.551574][T17474] Uninit was stored to memory at: [ 881.556589][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 881.562284][T17474] __msan_chain_origin+0x57/0xa0 [ 881.567201][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 881.572290][T17474] get_compat_msghdr+0x108/0x2b0 [ 881.577203][T17474] do_recvmmsg+0xdd1/0x22f0 [ 881.581715][T17474] __sys_recvmmsg+0x519/0x6f0 [ 881.586486][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 881.592531][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 881.598661][T17474] __do_fast_syscall_32+0x102/0x160 [ 881.603842][T17474] do_fast_syscall_32+0x6a/0xc0 [ 881.608672][T17474] do_SYSENTER_32+0x73/0x90 [ 881.613158][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 881.619581][T17474] [ 881.621888][T17474] Uninit was stored to memory at: [ 881.626901][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 881.632620][T17474] __msan_chain_origin+0x57/0xa0 [ 881.637537][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 881.642625][T17474] get_compat_msghdr+0x108/0x2b0 [ 881.647555][T17474] do_recvmmsg+0xdd1/0x22f0 [ 881.652103][T17474] __sys_recvmmsg+0x519/0x6f0 [ 881.656805][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 881.662860][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 881.669004][T17474] __do_fast_syscall_32+0x102/0x160 [ 881.674188][T17474] do_fast_syscall_32+0x6a/0xc0 [ 881.679015][T17474] do_SYSENTER_32+0x73/0x90 [ 881.683551][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 881.689853][T17474] [ 881.692174][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 881.698836][T17474] do_recvmmsg+0xbf/0x22f0 [ 881.703224][T17474] do_recvmmsg+0xbf/0x22f0 [ 881.732904][T10613] Bluetooth: hci3: command 0x040f tx timeout [ 881.987708][T17474] not chained 1600000 origins [ 881.992509][T17474] CPU: 1 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 882.001288][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 882.011407][T17474] Call Trace: [ 882.014704][T17474] dump_stack+0x21c/0x280 [ 882.019041][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 882.024846][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 882.029966][T17474] ? kmsan_get_metadata+0x116/0x180 [ 882.035170][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 882.040984][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 882.047042][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 882.051960][T17474] ? kmsan_get_metadata+0x116/0x180 [ 882.057188][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 882.062991][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 882.069150][T17474] ? kmsan_get_metadata+0x116/0x180 [ 882.074433][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 882.080070][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 882.086142][T17474] ? _copy_from_user+0x1fd/0x300 [ 882.091059][T17474] ? kmsan_get_metadata+0x116/0x180 [ 882.096270][T17474] __msan_chain_origin+0x57/0xa0 [ 882.101207][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 882.106303][T17474] get_compat_msghdr+0x108/0x2b0 [ 882.111234][T17474] do_recvmmsg+0xdd1/0x22f0 [ 882.115732][T17474] ? kmsan_get_metadata+0x116/0x180 [ 882.120909][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 882.126800][T17474] ? kmsan_get_metadata+0x116/0x180 [ 882.131980][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 882.137590][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 882.142887][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 882.147631][T17474] __sys_recvmmsg+0x519/0x6f0 [ 882.152300][T17474] ? kmsan_get_metadata+0x116/0x180 [ 882.157491][T17474] ? kmsan_get_metadata+0x116/0x180 [ 882.162692][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 882.168753][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 882.174888][T17474] __do_fast_syscall_32+0x102/0x160 [ 882.180065][T17474] do_fast_syscall_32+0x6a/0xc0 [ 882.184891][T17474] do_SYSENTER_32+0x73/0x90 [ 882.189378][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 882.195680][T17474] RIP: 0023:0xf7f58549 [ 882.199726][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 882.219311][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 882.227705][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 882.235655][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 882.243612][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 882.251585][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 882.259685][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 882.267650][T17474] Uninit was stored to memory at: [ 882.272659][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 882.278358][T17474] __msan_chain_origin+0x57/0xa0 [ 882.283277][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 882.288368][T17474] get_compat_msghdr+0x108/0x2b0 [ 882.293306][T17474] do_recvmmsg+0xdd1/0x22f0 [ 882.297806][T17474] __sys_recvmmsg+0x519/0x6f0 [ 882.302466][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 882.308509][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 882.314652][T17474] __do_fast_syscall_32+0x102/0x160 [ 882.319840][T17474] do_fast_syscall_32+0x6a/0xc0 [ 882.324680][T17474] do_SYSENTER_32+0x73/0x90 [ 882.329163][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 882.335474][T17474] [ 882.337803][T17474] Uninit was stored to memory at: [ 882.342827][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 882.348521][T17474] __msan_chain_origin+0x57/0xa0 [ 882.353450][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 882.358537][T17474] get_compat_msghdr+0x108/0x2b0 [ 882.363464][T17474] do_recvmmsg+0xdd1/0x22f0 [ 882.367980][T17474] __sys_recvmmsg+0x519/0x6f0 [ 882.372640][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 882.378725][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 882.384887][T17474] __do_fast_syscall_32+0x102/0x160 [ 882.390084][T17474] do_fast_syscall_32+0x6a/0xc0 [ 882.394920][T17474] do_SYSENTER_32+0x73/0x90 [ 882.399431][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 882.405741][T17474] [ 882.408043][T17474] Uninit was stored to memory at: [ 882.413045][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 882.418755][T17474] __msan_chain_origin+0x57/0xa0 [ 882.423666][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 882.428747][T17474] get_compat_msghdr+0x108/0x2b0 [ 882.433659][T17474] do_recvmmsg+0xdd1/0x22f0 [ 882.438153][T17474] __sys_recvmmsg+0x519/0x6f0 [ 882.442807][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 882.448852][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 882.454984][T17474] __do_fast_syscall_32+0x102/0x160 [ 882.460168][T17474] do_fast_syscall_32+0x6a/0xc0 [ 882.465003][T17474] do_SYSENTER_32+0x73/0x90 [ 882.469498][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 882.475796][T17474] [ 882.478098][T17474] Uninit was stored to memory at: [ 882.483110][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 882.488812][T17474] __msan_chain_origin+0x57/0xa0 [ 882.493726][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 882.498811][T17474] get_compat_msghdr+0x108/0x2b0 [ 882.503725][T17474] do_recvmmsg+0xdd1/0x22f0 [ 882.508203][T17474] __sys_recvmmsg+0x519/0x6f0 [ 882.512873][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 882.519097][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 882.525225][T17474] __do_fast_syscall_32+0x102/0x160 [ 882.530401][T17474] do_fast_syscall_32+0x6a/0xc0 [ 882.535222][T17474] do_SYSENTER_32+0x73/0x90 [ 882.539707][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 882.546000][T17474] [ 882.548299][T17474] Uninit was stored to memory at: [ 882.553298][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 882.558987][T17474] __msan_chain_origin+0x57/0xa0 [ 882.563924][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 882.569039][T17474] get_compat_msghdr+0x108/0x2b0 [ 882.573964][T17474] do_recvmmsg+0xdd1/0x22f0 [ 882.578440][T17474] __sys_recvmmsg+0x519/0x6f0 [ 882.583266][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 882.589318][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 882.595454][T17474] __do_fast_syscall_32+0x102/0x160 [ 882.600636][T17474] do_fast_syscall_32+0x6a/0xc0 [ 882.605471][T17474] do_SYSENTER_32+0x73/0x90 [ 882.609968][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 882.616261][T17474] [ 882.618571][T17474] Uninit was stored to memory at: [ 882.623571][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 882.629276][T17474] __msan_chain_origin+0x57/0xa0 [ 882.634196][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 882.639372][T17474] get_compat_msghdr+0x108/0x2b0 [ 882.644418][T17474] do_recvmmsg+0xdd1/0x22f0 [ 882.648896][T17474] __sys_recvmmsg+0x519/0x6f0 [ 882.653548][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 882.659597][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 882.665732][T17474] __do_fast_syscall_32+0x102/0x160 [ 882.670928][T17474] do_fast_syscall_32+0x6a/0xc0 [ 882.675767][T17474] do_SYSENTER_32+0x73/0x90 [ 882.680307][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 882.686603][T17474] [ 882.688905][T17474] Uninit was stored to memory at: [ 882.693904][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 882.699632][T17474] __msan_chain_origin+0x57/0xa0 [ 882.704542][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 882.709624][T17474] get_compat_msghdr+0x108/0x2b0 [ 882.714539][T17474] do_recvmmsg+0xdd1/0x22f0 [ 882.719541][T17474] __sys_recvmmsg+0x519/0x6f0 [ 882.724198][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 882.730241][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 882.736372][T17474] __do_fast_syscall_32+0x102/0x160 [ 882.741566][T17474] do_fast_syscall_32+0x6a/0xc0 [ 882.746393][T17474] do_SYSENTER_32+0x73/0x90 [ 882.750939][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 882.757232][T17474] [ 882.759534][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 882.766180][T17474] do_recvmmsg+0xbf/0x22f0 [ 882.770572][T17474] do_recvmmsg+0xbf/0x22f0 [ 883.058484][T17474] not chained 1610000 origins [ 883.063232][T17474] CPU: 1 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 883.071995][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 883.082046][T17474] Call Trace: [ 883.085343][T17474] dump_stack+0x21c/0x280 [ 883.089681][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 883.095408][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 883.100524][T17474] ? kmsan_get_metadata+0x116/0x180 [ 883.105722][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 883.111531][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 883.117630][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 883.122568][T17474] ? kmsan_get_metadata+0x116/0x180 [ 883.127768][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 883.133576][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 883.139666][T17474] ? kmsan_get_metadata+0x116/0x180 [ 883.144864][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 883.150518][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 883.156562][T17474] ? _copy_from_user+0x1fd/0x300 [ 883.161489][T17474] ? kmsan_get_metadata+0x116/0x180 [ 883.166671][T17474] __msan_chain_origin+0x57/0xa0 [ 883.171586][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 883.176675][T17474] get_compat_msghdr+0x108/0x2b0 [ 883.181606][T17474] do_recvmmsg+0xdd1/0x22f0 [ 883.186119][T17474] ? kmsan_get_metadata+0x116/0x180 [ 883.191400][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 883.197370][T17474] ? kmsan_get_metadata+0x116/0x180 [ 883.202555][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 883.208179][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 883.213487][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 883.218229][T17474] __sys_recvmmsg+0x519/0x6f0 [ 883.223011][T17474] ? kmsan_get_metadata+0x116/0x180 [ 883.228185][T17474] ? kmsan_get_metadata+0x116/0x180 [ 883.233371][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 883.239420][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 883.245580][T17474] __do_fast_syscall_32+0x102/0x160 [ 883.250767][T17474] do_fast_syscall_32+0x6a/0xc0 [ 883.255604][T17474] do_SYSENTER_32+0x73/0x90 [ 883.260085][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 883.266390][T17474] RIP: 0023:0xf7f58549 [ 883.270450][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 883.290049][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 883.298441][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 883.306401][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 883.314435][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 883.322385][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 883.330428][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 883.338392][T17474] Uninit was stored to memory at: [ 883.343400][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 883.349885][T17474] __msan_chain_origin+0x57/0xa0 [ 883.354798][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 883.359885][T17474] get_compat_msghdr+0x108/0x2b0 [ 883.364805][T17474] do_recvmmsg+0xdd1/0x22f0 [ 883.369464][T17474] __sys_recvmmsg+0x519/0x6f0 [ 883.374114][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 883.380169][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 883.386315][T17474] __do_fast_syscall_32+0x102/0x160 [ 883.391505][T17474] do_fast_syscall_32+0x6a/0xc0 [ 883.396332][T17474] do_SYSENTER_32+0x73/0x90 [ 883.400824][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 883.407126][T17474] [ 883.409426][T17474] Uninit was stored to memory at: [ 883.414425][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 883.420119][T17474] __msan_chain_origin+0x57/0xa0 [ 883.425038][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 883.430295][T17474] get_compat_msghdr+0x108/0x2b0 [ 883.435211][T17474] do_recvmmsg+0xdd1/0x22f0 [ 883.439686][T17474] __sys_recvmmsg+0x519/0x6f0 [ 883.444338][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 883.450405][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 883.456549][T17474] __do_fast_syscall_32+0x102/0x160 [ 883.461734][T17474] do_fast_syscall_32+0x6a/0xc0 [ 883.466568][T17474] do_SYSENTER_32+0x73/0x90 [ 883.471054][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 883.477348][T17474] [ 883.479650][T17474] Uninit was stored to memory at: [ 883.484652][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 883.490368][T17474] __msan_chain_origin+0x57/0xa0 [ 883.495301][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 883.500410][T17474] get_compat_msghdr+0x108/0x2b0 [ 883.505326][T17474] do_recvmmsg+0xdd1/0x22f0 [ 883.509806][T17474] __sys_recvmmsg+0x519/0x6f0 [ 883.514473][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 883.520517][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 883.526653][T17474] __do_fast_syscall_32+0x102/0x160 [ 883.531831][T17474] do_fast_syscall_32+0x6a/0xc0 [ 883.536660][T17474] do_SYSENTER_32+0x73/0x90 [ 883.541139][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 883.547445][T17474] [ 883.549747][T17474] Uninit was stored to memory at: [ 883.554755][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 883.560447][T17474] __msan_chain_origin+0x57/0xa0 [ 883.565445][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 883.570531][T17474] get_compat_msghdr+0x108/0x2b0 [ 883.575453][T17474] do_recvmmsg+0xdd1/0x22f0 [ 883.579929][T17474] __sys_recvmmsg+0x519/0x6f0 [ 883.584590][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 883.590830][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 883.597015][T17474] __do_fast_syscall_32+0x102/0x160 [ 883.602241][T17474] do_fast_syscall_32+0x6a/0xc0 [ 883.607290][T17474] do_SYSENTER_32+0x73/0x90 [ 883.611782][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 883.618078][T17474] [ 883.620383][T17474] Uninit was stored to memory at: [ 883.625389][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 883.631269][T17474] __msan_chain_origin+0x57/0xa0 [ 883.636184][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 883.641272][T17474] get_compat_msghdr+0x108/0x2b0 [ 883.646205][T17474] do_recvmmsg+0xdd1/0x22f0 [ 883.650701][T17474] __sys_recvmmsg+0x519/0x6f0 [ 883.655389][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 883.661437][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 883.667659][T17474] __do_fast_syscall_32+0x102/0x160 [ 883.672841][T17474] do_fast_syscall_32+0x6a/0xc0 [ 883.677673][T17474] do_SYSENTER_32+0x73/0x90 [ 883.682160][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 883.688467][T17474] [ 883.690770][T17474] Uninit was stored to memory at: [ 883.695787][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 883.701494][T17474] __msan_chain_origin+0x57/0xa0 [ 883.706419][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 883.711527][T17474] get_compat_msghdr+0x108/0x2b0 [ 883.716441][T17474] do_recvmmsg+0xdd1/0x22f0 [ 883.720934][T17474] __sys_recvmmsg+0x519/0x6f0 [ 883.725588][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 883.731630][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 883.737760][T17474] __do_fast_syscall_32+0x102/0x160 [ 883.742944][T17474] do_fast_syscall_32+0x6a/0xc0 [ 883.747770][T17474] do_SYSENTER_32+0x73/0x90 [ 883.752253][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 883.758558][T17474] [ 883.760859][T17474] Uninit was stored to memory at: [ 883.765856][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 883.771549][T17474] __msan_chain_origin+0x57/0xa0 [ 883.776459][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 883.781554][T17474] get_compat_msghdr+0x108/0x2b0 [ 883.786585][T17474] do_recvmmsg+0xdd1/0x22f0 [ 883.791064][T17474] __sys_recvmmsg+0x519/0x6f0 [ 883.795730][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 883.801789][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 883.807928][T17474] __do_fast_syscall_32+0x102/0x160 [ 883.813108][T17474] do_fast_syscall_32+0x6a/0xc0 [ 883.817931][T17474] do_SYSENTER_32+0x73/0x90 [ 883.822499][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 883.828896][T17474] [ 883.831207][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 883.837856][T17474] do_recvmmsg+0xbf/0x22f0 [ 883.842251][T17474] do_recvmmsg+0xbf/0x22f0 [ 883.869272][ T8869] Bluetooth: hci3: command 0x0419 tx timeout [ 884.091867][T17474] not chained 1620000 origins [ 884.096650][T17474] CPU: 1 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 884.105403][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 884.115454][T17474] Call Trace: [ 884.118929][T17474] dump_stack+0x21c/0x280 [ 884.123356][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 884.129084][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 884.134206][T17474] ? kmsan_get_metadata+0x116/0x180 [ 884.139512][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 884.145326][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 884.151399][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 884.156343][T17474] ? kmsan_get_metadata+0x116/0x180 [ 884.161549][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 884.167357][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 884.173512][T17474] ? kmsan_get_metadata+0x116/0x180 [ 884.178714][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 884.184349][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 884.190418][T17474] ? _copy_from_user+0x1fd/0x300 [ 884.195443][T17474] ? kmsan_get_metadata+0x116/0x180 [ 884.200641][T17474] __msan_chain_origin+0x57/0xa0 [ 884.205586][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 884.210709][T17474] get_compat_msghdr+0x108/0x2b0 [ 884.215661][T17474] do_recvmmsg+0xdd1/0x22f0 [ 884.220173][T17474] ? kmsan_get_metadata+0x116/0x180 [ 884.225377][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 884.231274][T17474] ? kmsan_get_metadata+0x116/0x180 [ 884.236494][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 884.242131][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 884.247423][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 884.252231][T17474] __sys_recvmmsg+0x519/0x6f0 [ 884.256917][T17474] ? kmsan_get_metadata+0x116/0x180 [ 884.262121][T17474] ? kmsan_get_metadata+0x116/0x180 [ 884.267335][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 884.273508][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 884.279668][T17474] __do_fast_syscall_32+0x102/0x160 [ 884.284874][T17474] do_fast_syscall_32+0x6a/0xc0 [ 884.289737][T17474] do_SYSENTER_32+0x73/0x90 [ 884.294250][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 884.300586][T17474] RIP: 0023:0xf7f58549 [ 884.304671][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 884.324279][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 884.332698][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 884.340792][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 884.348762][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 884.356809][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 884.364787][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 884.372757][T17474] Uninit was stored to memory at: [ 884.377786][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 884.383499][T17474] __msan_chain_origin+0x57/0xa0 [ 884.388479][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 884.393589][T17474] get_compat_msghdr+0x108/0x2b0 [ 884.398531][T17474] do_recvmmsg+0xdd1/0x22f0 [ 884.403035][T17474] __sys_recvmmsg+0x519/0x6f0 [ 884.407870][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 884.413961][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 884.420137][T17474] __do_fast_syscall_32+0x102/0x160 [ 884.425345][T17474] do_fast_syscall_32+0x6a/0xc0 [ 884.430202][T17474] do_SYSENTER_32+0x73/0x90 [ 884.434711][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 884.441025][T17474] [ 884.443348][T17474] Uninit was stored to memory at: [ 884.448398][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 884.454125][T17474] __msan_chain_origin+0x57/0xa0 [ 884.459187][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 884.464303][T17474] get_compat_msghdr+0x108/0x2b0 [ 884.469961][T17474] do_recvmmsg+0xdd1/0x22f0 [ 884.474442][T17474] __sys_recvmmsg+0x519/0x6f0 [ 884.479204][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 884.485362][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 884.491549][T17474] __do_fast_syscall_32+0x102/0x160 [ 884.496812][T17474] do_fast_syscall_32+0x6a/0xc0 [ 884.501678][T17474] do_SYSENTER_32+0x73/0x90 [ 884.506161][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 884.512548][T17474] [ 884.514895][T17474] Uninit was stored to memory at: [ 884.519912][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 884.525695][T17474] __msan_chain_origin+0x57/0xa0 [ 884.530650][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 884.535785][T17474] get_compat_msghdr+0x108/0x2b0 [ 884.540827][T17474] do_recvmmsg+0xdd1/0x22f0 [ 884.545319][T17474] __sys_recvmmsg+0x519/0x6f0 [ 884.550024][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 884.556071][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 884.562203][T17474] __do_fast_syscall_32+0x102/0x160 [ 884.567380][T17474] do_fast_syscall_32+0x6a/0xc0 [ 884.572212][T17474] do_SYSENTER_32+0x73/0x90 [ 884.576692][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 884.583103][T17474] [ 884.585407][T17474] Uninit was stored to memory at: [ 884.590457][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 884.596150][T17474] __msan_chain_origin+0x57/0xa0 [ 884.601128][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 884.606252][T17474] get_compat_msghdr+0x108/0x2b0 [ 884.611174][T17474] do_recvmmsg+0xdd1/0x22f0 [ 884.615670][T17474] __sys_recvmmsg+0x519/0x6f0 [ 884.620352][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 884.626413][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 884.632558][T17474] __do_fast_syscall_32+0x102/0x160 [ 884.637741][T17474] do_fast_syscall_32+0x6a/0xc0 [ 884.642570][T17474] do_SYSENTER_32+0x73/0x90 [ 884.647074][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 884.653369][T17474] [ 884.655669][T17474] Uninit was stored to memory at: [ 884.660668][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 884.666360][T17474] __msan_chain_origin+0x57/0xa0 [ 884.671458][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 884.676545][T17474] get_compat_msghdr+0x108/0x2b0 [ 884.681460][T17474] do_recvmmsg+0xdd1/0x22f0 [ 884.685970][T17474] __sys_recvmmsg+0x519/0x6f0 [ 884.690637][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 884.696980][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 884.703146][T17474] __do_fast_syscall_32+0x102/0x160 [ 884.708321][T17474] do_fast_syscall_32+0x6a/0xc0 [ 884.713159][T17474] do_SYSENTER_32+0x73/0x90 [ 884.717654][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 884.723976][T17474] [ 884.726282][T17474] Uninit was stored to memory at: [ 884.731284][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 884.736991][T17474] __msan_chain_origin+0x57/0xa0 [ 884.741943][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 884.747031][T17474] get_compat_msghdr+0x108/0x2b0 [ 884.752031][T17474] do_recvmmsg+0xdd1/0x22f0 [ 884.756510][T17474] __sys_recvmmsg+0x519/0x6f0 [ 884.761190][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 884.767232][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 884.773361][T17474] __do_fast_syscall_32+0x102/0x160 [ 884.778530][T17474] do_fast_syscall_32+0x6a/0xc0 [ 884.783357][T17474] do_SYSENTER_32+0x73/0x90 [ 884.787837][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 884.794131][T17474] [ 884.796431][T17474] Uninit was stored to memory at: [ 884.801428][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 884.807119][T17474] __msan_chain_origin+0x57/0xa0 [ 884.812130][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 884.817271][T17474] get_compat_msghdr+0x108/0x2b0 [ 884.822206][T17474] do_recvmmsg+0xdd1/0x22f0 [ 884.826700][T17474] __sys_recvmmsg+0x519/0x6f0 [ 884.831355][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 884.837399][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 884.843531][T17474] __do_fast_syscall_32+0x102/0x160 [ 884.848715][T17474] do_fast_syscall_32+0x6a/0xc0 [ 884.853544][T17474] do_SYSENTER_32+0x73/0x90 [ 884.858023][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 884.864330][T17474] [ 884.866638][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 884.873841][T17474] do_recvmmsg+0xbf/0x22f0 [ 884.878234][T17474] do_recvmmsg+0xbf/0x22f0 [ 885.148750][T17474] not chained 1630000 origins [ 885.153482][T17474] CPU: 1 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 885.162324][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 885.172872][T17474] Call Trace: [ 885.176168][T17474] dump_stack+0x21c/0x280 [ 885.180489][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 885.186273][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 885.191360][T17474] ? kmsan_get_metadata+0x116/0x180 [ 885.196531][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 885.202312][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 885.208376][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 885.213289][T17474] ? kmsan_get_metadata+0x116/0x180 [ 885.218464][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 885.224260][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 885.230312][T17474] ? kmsan_get_metadata+0x116/0x180 [ 885.235518][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 885.241151][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 885.247212][T17474] ? _copy_from_user+0x1fd/0x300 [ 885.252129][T17474] ? kmsan_get_metadata+0x116/0x180 [ 885.257301][T17474] __msan_chain_origin+0x57/0xa0 [ 885.262219][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 885.267773][T17474] get_compat_msghdr+0x108/0x2b0 [ 885.272691][T17474] do_recvmmsg+0xdd1/0x22f0 [ 885.277172][T17474] ? kmsan_get_metadata+0x116/0x180 [ 885.282361][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 885.288231][T17474] ? kmsan_get_metadata+0x116/0x180 [ 885.293418][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 885.299024][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 885.304292][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 885.309045][T17474] __sys_recvmmsg+0x519/0x6f0 [ 885.313708][T17474] ? kmsan_get_metadata+0x116/0x180 [ 885.318893][T17474] ? kmsan_get_metadata+0x116/0x180 [ 885.324083][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 885.330130][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 885.336268][T17474] __do_fast_syscall_32+0x102/0x160 [ 885.341554][T17474] do_fast_syscall_32+0x6a/0xc0 [ 885.346398][T17474] do_SYSENTER_32+0x73/0x90 [ 885.350882][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 885.357183][T17474] RIP: 0023:0xf7f58549 [ 885.361239][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 885.381198][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 885.389587][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 885.397534][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 885.405488][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 885.413465][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 885.421425][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 885.429386][T17474] Uninit was stored to memory at: [ 885.434407][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 885.440127][T17474] __msan_chain_origin+0x57/0xa0 [ 885.445057][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 885.450153][T17474] get_compat_msghdr+0x108/0x2b0 [ 885.455067][T17474] do_recvmmsg+0xdd1/0x22f0 [ 885.459545][T17474] __sys_recvmmsg+0x519/0x6f0 [ 885.464199][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 885.470694][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 885.476824][T17474] __do_fast_syscall_32+0x102/0x160 [ 885.482034][T17474] do_fast_syscall_32+0x6a/0xc0 [ 885.486879][T17474] do_SYSENTER_32+0x73/0x90 [ 885.491389][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 885.497823][T17474] [ 885.500144][T17474] Uninit was stored to memory at: [ 885.505162][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 885.510861][T17474] __msan_chain_origin+0x57/0xa0 [ 885.515777][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 885.520958][T17474] get_compat_msghdr+0x108/0x2b0 [ 885.525928][T17474] do_recvmmsg+0xdd1/0x22f0 [ 885.530503][T17474] __sys_recvmmsg+0x519/0x6f0 [ 885.535160][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 885.541222][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 885.547374][T17474] __do_fast_syscall_32+0x102/0x160 [ 885.552550][T17474] do_fast_syscall_32+0x6a/0xc0 [ 885.557378][T17474] do_SYSENTER_32+0x73/0x90 [ 885.561861][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 885.568764][T17474] [ 885.571168][T17474] Uninit was stored to memory at: [ 885.576175][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 885.581963][T17474] __msan_chain_origin+0x57/0xa0 [ 885.586949][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 885.592047][T17474] get_compat_msghdr+0x108/0x2b0 [ 885.596962][T17474] do_recvmmsg+0xdd1/0x22f0 [ 885.601441][T17474] __sys_recvmmsg+0x519/0x6f0 [ 885.606097][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 885.612143][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 885.618288][T17474] __do_fast_syscall_32+0x102/0x160 [ 885.623467][T17474] do_fast_syscall_32+0x6a/0xc0 [ 885.628293][T17474] do_SYSENTER_32+0x73/0x90 [ 885.632793][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 885.639098][T17474] [ 885.641422][T17474] Uninit was stored to memory at: [ 885.646444][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 885.652158][T17474] __msan_chain_origin+0x57/0xa0 [ 885.657117][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 885.662308][T17474] get_compat_msghdr+0x108/0x2b0 [ 885.667225][T17474] do_recvmmsg+0xdd1/0x22f0 [ 885.671702][T17474] __sys_recvmmsg+0x519/0x6f0 [ 885.676353][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 885.682396][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 885.688529][T17474] __do_fast_syscall_32+0x102/0x160 [ 885.693749][T17474] do_fast_syscall_32+0x6a/0xc0 [ 885.698605][T17474] do_SYSENTER_32+0x73/0x90 [ 885.703117][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 885.709429][T17474] [ 885.711733][T17474] Uninit was stored to memory at: [ 885.716748][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 885.722580][T17474] __msan_chain_origin+0x57/0xa0 [ 885.727499][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 885.732607][T17474] get_compat_msghdr+0x108/0x2b0 [ 885.737558][T17474] do_recvmmsg+0xdd1/0x22f0 [ 885.742067][T17474] __sys_recvmmsg+0x519/0x6f0 [ 885.746747][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 885.752790][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 885.758919][T17474] __do_fast_syscall_32+0x102/0x160 [ 885.764091][T17474] do_fast_syscall_32+0x6a/0xc0 [ 885.768915][T17474] do_SYSENTER_32+0x73/0x90 [ 885.773396][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 885.779691][T17474] [ 885.782006][T17474] Uninit was stored to memory at: [ 885.787019][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 885.792715][T17474] __msan_chain_origin+0x57/0xa0 [ 885.797628][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 885.802716][T17474] get_compat_msghdr+0x108/0x2b0 [ 885.807630][T17474] do_recvmmsg+0xdd1/0x22f0 [ 885.812123][T17474] __sys_recvmmsg+0x519/0x6f0 [ 885.816779][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 885.822834][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 885.828965][T17474] __do_fast_syscall_32+0x102/0x160 [ 885.834151][T17474] do_fast_syscall_32+0x6a/0xc0 [ 885.838980][T17474] do_SYSENTER_32+0x73/0x90 [ 885.843578][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 885.849907][T17474] [ 885.852211][T17474] Uninit was stored to memory at: [ 885.857316][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 885.863024][T17474] __msan_chain_origin+0x57/0xa0 [ 885.868455][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 885.873538][T17474] get_compat_msghdr+0x108/0x2b0 [ 885.878455][T17474] do_recvmmsg+0xdd1/0x22f0 [ 885.882940][T17474] __sys_recvmmsg+0x519/0x6f0 [ 885.887767][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 885.893810][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 885.900027][T17474] __do_fast_syscall_32+0x102/0x160 [ 885.905202][T17474] do_fast_syscall_32+0x6a/0xc0 [ 885.910120][T17474] do_SYSENTER_32+0x73/0x90 [ 885.914603][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 885.920996][T17474] [ 885.923300][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 885.929970][T17474] do_recvmmsg+0xbf/0x22f0 [ 885.934360][T17474] do_recvmmsg+0xbf/0x22f0 [ 886.215720][T17474] not chained 1640000 origins [ 886.220447][T17474] CPU: 1 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 886.229201][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 886.239257][T17474] Call Trace: [ 886.242557][T17474] dump_stack+0x21c/0x280 [ 886.246963][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 886.252691][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 886.257804][T17474] ? kmsan_get_metadata+0x116/0x180 [ 886.263100][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 886.268917][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 886.275046][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 886.280022][T17474] ? kmsan_get_metadata+0x116/0x180 [ 886.285221][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 886.291040][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 886.297108][T17474] ? kmsan_get_metadata+0x116/0x180 [ 886.302310][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 886.308038][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 886.314145][T17474] ? _copy_from_user+0x1fd/0x300 [ 886.319085][T17474] ? kmsan_get_metadata+0x116/0x180 [ 886.324283][T17474] __msan_chain_origin+0x57/0xa0 [ 886.329225][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 886.334362][T17474] get_compat_msghdr+0x108/0x2b0 [ 886.339292][T17474] do_recvmmsg+0xdd1/0x22f0 [ 886.343778][T17474] ? kmsan_get_metadata+0x116/0x180 [ 886.348955][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 886.354824][T17474] ? kmsan_get_metadata+0x116/0x180 [ 886.360005][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 886.365617][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 886.370881][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 886.375620][T17474] __sys_recvmmsg+0x519/0x6f0 [ 886.380287][T17474] ? kmsan_get_metadata+0x116/0x180 [ 886.385473][T17474] ? kmsan_get_metadata+0x116/0x180 [ 886.390653][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 886.396698][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 886.402848][T17474] __do_fast_syscall_32+0x102/0x160 [ 886.408036][T17474] do_fast_syscall_32+0x6a/0xc0 [ 886.412868][T17474] do_SYSENTER_32+0x73/0x90 [ 886.417352][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 886.423654][T17474] RIP: 0023:0xf7f58549 [ 886.427703][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 886.447288][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 886.455681][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 886.463663][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 886.471617][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 886.479566][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 886.487527][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 886.495524][T17474] Uninit was stored to memory at: [ 886.500531][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 886.506252][T17474] __msan_chain_origin+0x57/0xa0 [ 886.511168][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 886.516260][T17474] get_compat_msghdr+0x108/0x2b0 [ 886.521175][T17474] do_recvmmsg+0xdd1/0x22f0 [ 886.525652][T17474] __sys_recvmmsg+0x519/0x6f0 [ 886.530317][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 886.536370][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 886.542507][T17474] __do_fast_syscall_32+0x102/0x160 [ 886.547686][T17474] do_fast_syscall_32+0x6a/0xc0 [ 886.552516][T17474] do_SYSENTER_32+0x73/0x90 [ 886.556995][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 886.563305][T17474] [ 886.565626][T17474] Uninit was stored to memory at: [ 886.570657][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 886.576355][T17474] __msan_chain_origin+0x57/0xa0 [ 886.581294][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 886.586397][T17474] get_compat_msghdr+0x108/0x2b0 [ 886.591338][T17474] do_recvmmsg+0xdd1/0x22f0 [ 886.595821][T17474] __sys_recvmmsg+0x519/0x6f0 [ 886.600565][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 886.606616][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 886.612753][T17474] __do_fast_syscall_32+0x102/0x160 [ 886.617930][T17474] do_fast_syscall_32+0x6a/0xc0 [ 886.622775][T17474] do_SYSENTER_32+0x73/0x90 [ 886.627259][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 886.633554][T17474] [ 886.635859][T17474] Uninit was stored to memory at: [ 886.640895][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 886.646674][T17474] __msan_chain_origin+0x57/0xa0 [ 886.651588][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 886.656675][T17474] get_compat_msghdr+0x108/0x2b0 [ 886.661608][T17474] do_recvmmsg+0xdd1/0x22f0 [ 886.666182][T17474] __sys_recvmmsg+0x519/0x6f0 [ 886.670845][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 886.676895][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 886.683031][T17474] __do_fast_syscall_32+0x102/0x160 [ 886.688293][T17474] do_fast_syscall_32+0x6a/0xc0 [ 886.693159][T17474] do_SYSENTER_32+0x73/0x90 [ 886.697742][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 886.704040][T17474] [ 886.706341][T17474] Uninit was stored to memory at: [ 886.711344][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 886.717055][T17474] __msan_chain_origin+0x57/0xa0 [ 886.721985][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 886.727075][T17474] get_compat_msghdr+0x108/0x2b0 [ 886.731992][T17474] do_recvmmsg+0xdd1/0x22f0 [ 886.736470][T17474] __sys_recvmmsg+0x519/0x6f0 [ 886.741140][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 886.747184][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 886.753317][T17474] __do_fast_syscall_32+0x102/0x160 [ 886.758494][T17474] do_fast_syscall_32+0x6a/0xc0 [ 886.763349][T17474] do_SYSENTER_32+0x73/0x90 [ 886.768116][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 886.774420][T17474] [ 886.776731][T17474] Uninit was stored to memory at: [ 886.781745][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 886.787556][T17474] __msan_chain_origin+0x57/0xa0 [ 886.792558][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 886.797643][T17474] get_compat_msghdr+0x108/0x2b0 [ 886.802558][T17474] do_recvmmsg+0xdd1/0x22f0 [ 886.807037][T17474] __sys_recvmmsg+0x519/0x6f0 [ 886.811692][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 886.817752][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 886.823912][T17474] __do_fast_syscall_32+0x102/0x160 [ 886.829087][T17474] do_fast_syscall_32+0x6a/0xc0 [ 886.833914][T17474] do_SYSENTER_32+0x73/0x90 [ 886.838409][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 886.844717][T17474] [ 886.847019][T17474] Uninit was stored to memory at: [ 886.852023][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 886.857735][T17474] __msan_chain_origin+0x57/0xa0 [ 886.863270][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 886.868408][T17474] get_compat_msghdr+0x108/0x2b0 [ 886.873348][T17474] do_recvmmsg+0xdd1/0x22f0 [ 886.877828][T17474] __sys_recvmmsg+0x519/0x6f0 [ 886.882484][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 886.888547][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 886.894676][T17474] __do_fast_syscall_32+0x102/0x160 [ 886.899848][T17474] do_fast_syscall_32+0x6a/0xc0 [ 886.904675][T17474] do_SYSENTER_32+0x73/0x90 [ 886.909155][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 886.915449][T17474] [ 886.917751][T17474] Uninit was stored to memory at: [ 886.922754][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 886.928450][T17474] __msan_chain_origin+0x57/0xa0 [ 886.933364][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 886.938545][T17474] get_compat_msghdr+0x108/0x2b0 [ 886.943469][T17474] do_recvmmsg+0xdd1/0x22f0 [ 886.947962][T17474] __sys_recvmmsg+0x519/0x6f0 [ 886.952632][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 886.958675][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 886.964808][T17474] __do_fast_syscall_32+0x102/0x160 [ 886.970004][T17474] do_fast_syscall_32+0x6a/0xc0 [ 886.974846][T17474] do_SYSENTER_32+0x73/0x90 [ 886.979698][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 886.986009][T17474] [ 886.988313][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 886.994970][T17474] do_recvmmsg+0xbf/0x22f0 [ 886.999416][T17474] do_recvmmsg+0xbf/0x22f0 [ 887.329478][T17474] not chained 1650000 origins [ 887.334202][T17474] CPU: 1 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 887.342961][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 887.353012][T17474] Call Trace: [ 887.356319][T17474] dump_stack+0x21c/0x280 [ 887.360655][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 887.366382][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 887.371493][T17474] ? kmsan_get_metadata+0x116/0x180 [ 887.376671][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 887.382481][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 887.388539][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 887.393452][T17474] ? kmsan_get_metadata+0x116/0x180 [ 887.398627][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 887.404419][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 887.410460][T17474] ? kmsan_get_metadata+0x116/0x180 [ 887.415635][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 887.421250][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 887.427382][T17474] ? _copy_from_user+0x1fd/0x300 [ 887.432299][T17474] ? kmsan_get_metadata+0x116/0x180 [ 887.437498][T17474] __msan_chain_origin+0x57/0xa0 [ 887.442433][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 887.447526][T17474] get_compat_msghdr+0x108/0x2b0 [ 887.452795][T17474] do_recvmmsg+0xdd1/0x22f0 [ 887.457276][T17474] ? kmsan_get_metadata+0x116/0x180 [ 887.462466][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 887.468337][T17474] ? kmsan_get_metadata+0x116/0x180 [ 887.473514][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 887.479145][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 887.484431][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 887.489245][T17474] __sys_recvmmsg+0x519/0x6f0 [ 887.493916][T17474] ? kmsan_get_metadata+0x116/0x180 [ 887.499098][T17474] ? kmsan_get_metadata+0x116/0x180 [ 887.504283][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 887.510359][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 887.516525][T17474] __do_fast_syscall_32+0x102/0x160 [ 887.521705][T17474] do_fast_syscall_32+0x6a/0xc0 [ 887.526538][T17474] do_SYSENTER_32+0x73/0x90 [ 887.531059][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 887.537366][T17474] RIP: 0023:0xf7f58549 [ 887.541419][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 887.561013][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 887.569758][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 887.577812][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 887.585784][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 887.593772][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 887.601723][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 887.609673][T17474] Uninit was stored to memory at: [ 887.614704][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 887.620413][T17474] __msan_chain_origin+0x57/0xa0 [ 887.625333][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 887.630422][T17474] get_compat_msghdr+0x108/0x2b0 [ 887.635338][T17474] do_recvmmsg+0xdd1/0x22f0 [ 887.639821][T17474] __sys_recvmmsg+0x519/0x6f0 [ 887.644515][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 887.650561][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 887.656696][T17474] __do_fast_syscall_32+0x102/0x160 [ 887.661918][T17474] do_fast_syscall_32+0x6a/0xc0 [ 887.666749][T17474] do_SYSENTER_32+0x73/0x90 [ 887.671238][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 887.677548][T17474] [ 887.679852][T17474] Uninit was stored to memory at: [ 887.684861][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 887.690667][T17474] __msan_chain_origin+0x57/0xa0 [ 887.695588][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 887.700692][T17474] get_compat_msghdr+0x108/0x2b0 [ 887.705624][T17474] do_recvmmsg+0xdd1/0x22f0 [ 887.710106][T17474] __sys_recvmmsg+0x519/0x6f0 [ 887.714769][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 887.720829][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 887.726973][T17474] __do_fast_syscall_32+0x102/0x160 [ 887.732179][T17474] do_fast_syscall_32+0x6a/0xc0 [ 887.737008][T17474] do_SYSENTER_32+0x73/0x90 [ 887.741501][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 887.747801][T17474] [ 887.750107][T17474] Uninit was stored to memory at: [ 887.755122][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 887.760816][T17474] __msan_chain_origin+0x57/0xa0 [ 887.765729][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 887.770831][T17474] get_compat_msghdr+0x108/0x2b0 [ 887.775748][T17474] do_recvmmsg+0xdd1/0x22f0 [ 887.780228][T17474] __sys_recvmmsg+0x519/0x6f0 [ 887.784887][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 887.790958][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 887.797106][T17474] __do_fast_syscall_32+0x102/0x160 [ 887.802285][T17474] do_fast_syscall_32+0x6a/0xc0 [ 887.807128][T17474] do_SYSENTER_32+0x73/0x90 [ 887.811627][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 887.817920][T17474] [ 887.820222][T17474] Uninit was stored to memory at: [ 887.825226][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 887.830919][T17474] __msan_chain_origin+0x57/0xa0 [ 887.835833][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 887.840936][T17474] get_compat_msghdr+0x108/0x2b0 [ 887.845867][T17474] do_recvmmsg+0xdd1/0x22f0 [ 887.850347][T17474] __sys_recvmmsg+0x519/0x6f0 [ 887.855000][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 887.861078][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 887.867213][T17474] __do_fast_syscall_32+0x102/0x160 [ 887.872389][T17474] do_fast_syscall_32+0x6a/0xc0 [ 887.877215][T17474] do_SYSENTER_32+0x73/0x90 [ 887.881710][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 887.888006][T17474] [ 887.890324][T17474] Uninit was stored to memory at: [ 887.895330][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 887.901032][T17474] __msan_chain_origin+0x57/0xa0 [ 887.905948][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 887.911039][T17474] get_compat_msghdr+0x108/0x2b0 [ 887.915952][T17474] do_recvmmsg+0xdd1/0x22f0 [ 887.920431][T17474] __sys_recvmmsg+0x519/0x6f0 [ 887.925086][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 887.931130][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 887.937282][T17474] __do_fast_syscall_32+0x102/0x160 [ 887.942458][T17474] do_fast_syscall_32+0x6a/0xc0 [ 887.947299][T17474] do_SYSENTER_32+0x73/0x90 [ 887.951796][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 887.958089][T17474] [ 887.960391][T17474] Uninit was stored to memory at: [ 887.965392][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 887.971083][T17474] __msan_chain_origin+0x57/0xa0 [ 887.976015][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 887.981105][T17474] get_compat_msghdr+0x108/0x2b0 [ 887.986076][T17474] do_recvmmsg+0xdd1/0x22f0 [ 887.990559][T17474] __sys_recvmmsg+0x519/0x6f0 [ 887.995225][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 888.001282][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 888.007418][T17474] __do_fast_syscall_32+0x102/0x160 [ 888.012598][T17474] do_fast_syscall_32+0x6a/0xc0 [ 888.017427][T17474] do_SYSENTER_32+0x73/0x90 [ 888.021911][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 888.028208][T17474] [ 888.030513][T17474] Uninit was stored to memory at: [ 888.035514][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 888.041227][T17474] __msan_chain_origin+0x57/0xa0 [ 888.046152][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 888.051240][T17474] get_compat_msghdr+0x108/0x2b0 [ 888.056160][T17474] do_recvmmsg+0xdd1/0x22f0 [ 888.060646][T17474] __sys_recvmmsg+0x519/0x6f0 [ 888.065320][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 888.071886][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 888.078043][T17474] __do_fast_syscall_32+0x102/0x160 [ 888.083219][T17474] do_fast_syscall_32+0x6a/0xc0 [ 888.088049][T17474] do_SYSENTER_32+0x73/0x90 [ 888.092530][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 888.098836][T17474] [ 888.101186][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 888.107857][T17474] do_recvmmsg+0xbf/0x22f0 [ 888.112303][T17474] do_recvmmsg+0xbf/0x22f0 [ 888.377802][T17474] not chained 1660000 origins [ 888.382519][T17474] CPU: 1 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 888.391277][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 888.401493][T17474] Call Trace: [ 888.404796][T17474] dump_stack+0x21c/0x280 [ 888.409129][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 888.415018][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 888.420140][T17474] ? kmsan_get_metadata+0x116/0x180 [ 888.425341][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 888.431204][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 888.437288][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 888.442279][T17474] ? kmsan_get_metadata+0x116/0x180 [ 888.447494][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 888.453352][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 888.459423][T17474] ? kmsan_get_metadata+0x116/0x180 [ 888.464623][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 888.470781][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 888.476848][T17474] ? _copy_from_user+0x1fd/0x300 [ 888.481787][T17474] ? kmsan_get_metadata+0x116/0x180 [ 888.486987][T17474] __msan_chain_origin+0x57/0xa0 [ 888.491942][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 888.497135][T17474] get_compat_msghdr+0x108/0x2b0 [ 888.502081][T17474] do_recvmmsg+0xdd1/0x22f0 [ 888.506596][T17474] ? kmsan_get_metadata+0x116/0x180 [ 888.511799][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 888.517694][T17474] ? kmsan_get_metadata+0x116/0x180 [ 888.522894][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 888.528522][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 888.533787][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 888.538538][T17474] __sys_recvmmsg+0x519/0x6f0 [ 888.543297][T17474] ? kmsan_get_metadata+0x116/0x180 [ 888.548471][T17474] ? kmsan_get_metadata+0x116/0x180 [ 888.553647][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 888.559690][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 888.566170][T17474] __do_fast_syscall_32+0x102/0x160 [ 888.571359][T17474] do_fast_syscall_32+0x6a/0xc0 [ 888.576187][T17474] do_SYSENTER_32+0x73/0x90 [ 888.580682][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 888.587027][T17474] RIP: 0023:0xf7f58549 [ 888.591078][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 888.610676][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 888.619103][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 888.627056][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 888.635008][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 888.642975][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 888.650927][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 888.658901][T17474] Uninit was stored to memory at: [ 888.663937][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 888.669638][T17474] __msan_chain_origin+0x57/0xa0 [ 888.674558][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 888.679657][T17474] get_compat_msghdr+0x108/0x2b0 [ 888.684683][T17474] do_recvmmsg+0xdd1/0x22f0 [ 888.689164][T17474] __sys_recvmmsg+0x519/0x6f0 [ 888.693833][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 888.699894][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 888.706032][T17474] __do_fast_syscall_32+0x102/0x160 [ 888.711228][T17474] do_fast_syscall_32+0x6a/0xc0 [ 888.716091][T17474] do_SYSENTER_32+0x73/0x90 [ 888.720594][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 888.726920][T17474] [ 888.729238][T17474] Uninit was stored to memory at: [ 888.734241][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 888.739944][T17474] __msan_chain_origin+0x57/0xa0 [ 888.744860][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 888.749952][T17474] get_compat_msghdr+0x108/0x2b0 [ 888.754918][T17474] do_recvmmsg+0xdd1/0x22f0 [ 888.759398][T17474] __sys_recvmmsg+0x519/0x6f0 [ 888.764053][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 888.770104][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 888.776234][T17474] __do_fast_syscall_32+0x102/0x160 [ 888.781410][T17474] do_fast_syscall_32+0x6a/0xc0 [ 888.786250][T17474] do_SYSENTER_32+0x73/0x90 [ 888.790734][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 888.797028][T17474] [ 888.799327][T17474] Uninit was stored to memory at: [ 888.804342][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 888.810034][T17474] __msan_chain_origin+0x57/0xa0 [ 888.814965][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 888.820066][T17474] get_compat_msghdr+0x108/0x2b0 [ 888.824996][T17474] do_recvmmsg+0xdd1/0x22f0 [ 888.829475][T17474] __sys_recvmmsg+0x519/0x6f0 [ 888.834147][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 888.840287][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 888.846435][T17474] __do_fast_syscall_32+0x102/0x160 [ 888.851611][T17474] do_fast_syscall_32+0x6a/0xc0 [ 888.856439][T17474] do_SYSENTER_32+0x73/0x90 [ 888.860944][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 888.867239][T17474] [ 888.869541][T17474] Uninit was stored to memory at: [ 888.874554][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 888.880263][T17474] __msan_chain_origin+0x57/0xa0 [ 888.885204][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 888.890394][T17474] get_compat_msghdr+0x108/0x2b0 [ 888.895308][T17474] do_recvmmsg+0xdd1/0x22f0 [ 888.899785][T17474] __sys_recvmmsg+0x519/0x6f0 [ 888.904439][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 888.910495][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 888.916663][T17474] __do_fast_syscall_32+0x102/0x160 [ 888.921853][T17474] do_fast_syscall_32+0x6a/0xc0 [ 888.926683][T17474] do_SYSENTER_32+0x73/0x90 [ 888.931170][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 888.937596][T17474] [ 888.939951][T17474] Uninit was stored to memory at: [ 888.944959][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 888.950661][T17474] __msan_chain_origin+0x57/0xa0 [ 888.955576][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 888.960662][T17474] get_compat_msghdr+0x108/0x2b0 [ 888.965587][T17474] do_recvmmsg+0xdd1/0x22f0 [ 888.970067][T17474] __sys_recvmmsg+0x519/0x6f0 [ 888.974729][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 888.980775][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 888.986933][T17474] __do_fast_syscall_32+0x102/0x160 [ 888.992110][T17474] do_fast_syscall_32+0x6a/0xc0 [ 888.996940][T17474] do_SYSENTER_32+0x73/0x90 [ 889.001423][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 889.007721][T17474] [ 889.010026][T17474] Uninit was stored to memory at: [ 889.015041][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 889.020751][T17474] __msan_chain_origin+0x57/0xa0 [ 889.025679][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 889.030769][T17474] get_compat_msghdr+0x108/0x2b0 [ 889.035691][T17474] do_recvmmsg+0xdd1/0x22f0 [ 889.040193][T17474] __sys_recvmmsg+0x519/0x6f0 [ 889.044855][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 889.050908][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 889.057039][T17474] __do_fast_syscall_32+0x102/0x160 [ 889.062216][T17474] do_fast_syscall_32+0x6a/0xc0 [ 889.067043][T17474] do_SYSENTER_32+0x73/0x90 [ 889.071538][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 889.077844][T17474] [ 889.080153][T17474] Uninit was stored to memory at: [ 889.085153][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 889.090860][T17474] __msan_chain_origin+0x57/0xa0 [ 889.095784][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 889.100887][T17474] get_compat_msghdr+0x108/0x2b0 [ 889.105812][T17474] do_recvmmsg+0xdd1/0x22f0 [ 889.110302][T17474] __sys_recvmmsg+0x519/0x6f0 [ 889.114961][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 889.121013][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 889.127155][T17474] __do_fast_syscall_32+0x102/0x160 [ 889.132353][T17474] do_fast_syscall_32+0x6a/0xc0 [ 889.137181][T17474] do_SYSENTER_32+0x73/0x90 [ 889.141673][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 889.147979][T17474] [ 889.150523][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 889.157175][T17474] do_recvmmsg+0xbf/0x22f0 [ 889.161584][T17474] do_recvmmsg+0xbf/0x22f0 [ 889.424529][T17474] not chained 1670000 origins [ 889.429245][T17474] CPU: 0 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 889.438088][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 889.448169][T17474] Call Trace: [ 889.451475][T17474] dump_stack+0x21c/0x280 [ 889.455811][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 889.461538][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 889.466649][T17474] ? kmsan_get_metadata+0x116/0x180 [ 889.471995][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 889.477811][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 889.483877][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 889.488823][T17474] ? kmsan_get_metadata+0x116/0x180 [ 889.494110][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 889.499919][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 889.506005][T17474] ? kmsan_get_metadata+0x116/0x180 [ 889.511209][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 889.516851][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 889.522924][T17474] ? _copy_from_user+0x1fd/0x300 [ 889.527864][T17474] ? kmsan_get_metadata+0x116/0x180 [ 889.533336][T17474] __msan_chain_origin+0x57/0xa0 [ 889.538280][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 889.543489][T17474] get_compat_msghdr+0x108/0x2b0 [ 889.548429][T17474] do_recvmmsg+0xdd1/0x22f0 [ 889.552940][T17474] ? kmsan_get_metadata+0x116/0x180 [ 889.558143][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 889.564051][T17474] ? kmsan_get_metadata+0x116/0x180 [ 889.569249][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 889.574886][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 889.580178][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 889.584943][T17474] __sys_recvmmsg+0x519/0x6f0 [ 889.589609][T17474] ? kmsan_get_metadata+0x116/0x180 [ 889.594793][T17474] ? kmsan_get_metadata+0x116/0x180 [ 889.599968][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 889.606144][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 889.612297][T17474] __do_fast_syscall_32+0x102/0x160 [ 889.617491][T17474] do_fast_syscall_32+0x6a/0xc0 [ 889.622350][T17474] do_SYSENTER_32+0x73/0x90 [ 889.626947][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 889.633264][T17474] RIP: 0023:0xf7f58549 [ 889.637398][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 889.656982][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 889.665372][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 889.673324][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 889.681272][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 889.689224][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 889.697175][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 889.705136][T17474] Uninit was stored to memory at: [ 889.710155][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 889.715927][T17474] __msan_chain_origin+0x57/0xa0 [ 889.720865][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 889.725975][T17474] get_compat_msghdr+0x108/0x2b0 [ 889.730909][T17474] do_recvmmsg+0xdd1/0x22f0 [ 889.735411][T17474] __sys_recvmmsg+0x519/0x6f0 [ 889.740077][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 889.746122][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 889.752268][T17474] __do_fast_syscall_32+0x102/0x160 [ 889.757457][T17474] do_fast_syscall_32+0x6a/0xc0 [ 889.762286][T17474] do_SYSENTER_32+0x73/0x90 [ 889.766769][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 889.773071][T17474] [ 889.775387][T17474] Uninit was stored to memory at: [ 889.780389][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 889.786078][T17474] __msan_chain_origin+0x57/0xa0 [ 889.791004][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 889.796119][T17474] get_compat_msghdr+0x108/0x2b0 [ 889.801036][T17474] do_recvmmsg+0xdd1/0x22f0 [ 889.805514][T17474] __sys_recvmmsg+0x519/0x6f0 [ 889.810166][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 889.816212][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 889.822354][T17474] __do_fast_syscall_32+0x102/0x160 [ 889.827528][T17474] do_fast_syscall_32+0x6a/0xc0 [ 889.832377][T17474] do_SYSENTER_32+0x73/0x90 [ 889.836883][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 889.843201][T17474] [ 889.845544][T17474] Uninit was stored to memory at: [ 889.850575][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 889.856284][T17474] __msan_chain_origin+0x57/0xa0 [ 889.861202][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 889.866289][T17474] get_compat_msghdr+0x108/0x2b0 [ 889.871224][T17474] do_recvmmsg+0xdd1/0x22f0 [ 889.875719][T17474] __sys_recvmmsg+0x519/0x6f0 [ 889.880391][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 889.886531][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 889.892677][T17474] __do_fast_syscall_32+0x102/0x160 [ 889.897969][T17474] do_fast_syscall_32+0x6a/0xc0 [ 889.902799][T17474] do_SYSENTER_32+0x73/0x90 [ 889.907304][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 889.913603][T17474] [ 889.915927][T17474] Uninit was stored to memory at: [ 889.920945][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 889.926649][T17474] __msan_chain_origin+0x57/0xa0 [ 889.931581][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 889.936683][T17474] get_compat_msghdr+0x108/0x2b0 [ 889.941615][T17474] do_recvmmsg+0xdd1/0x22f0 [ 889.946187][T17474] __sys_recvmmsg+0x519/0x6f0 [ 889.950858][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 889.956917][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 889.963070][T17474] __do_fast_syscall_32+0x102/0x160 [ 889.968247][T17474] do_fast_syscall_32+0x6a/0xc0 [ 889.973098][T17474] do_SYSENTER_32+0x73/0x90 [ 889.977593][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 889.983986][T17474] [ 889.986291][T17474] Uninit was stored to memory at: [ 889.991303][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 889.997019][T17474] __msan_chain_origin+0x57/0xa0 [ 890.001949][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 890.007052][T17474] get_compat_msghdr+0x108/0x2b0 [ 890.011984][T17474] do_recvmmsg+0xdd1/0x22f0 [ 890.016488][T17474] __sys_recvmmsg+0x519/0x6f0 [ 890.021145][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 890.027190][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 890.033337][T17474] __do_fast_syscall_32+0x102/0x160 [ 890.038536][T17474] do_fast_syscall_32+0x6a/0xc0 [ 890.043383][T17474] do_SYSENTER_32+0x73/0x90 [ 890.047883][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 890.054179][T17474] [ 890.056484][T17474] Uninit was stored to memory at: [ 890.061589][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 890.067299][T17474] __msan_chain_origin+0x57/0xa0 [ 890.072230][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 890.077328][T17474] get_compat_msghdr+0x108/0x2b0 [ 890.082254][T17474] do_recvmmsg+0xdd1/0x22f0 [ 890.086732][T17474] __sys_recvmmsg+0x519/0x6f0 [ 890.091401][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 890.097519][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 890.103652][T17474] __do_fast_syscall_32+0x102/0x160 [ 890.108828][T17474] do_fast_syscall_32+0x6a/0xc0 [ 890.113660][T17474] do_SYSENTER_32+0x73/0x90 [ 890.118154][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 890.124475][T17474] [ 890.126795][T17474] Uninit was stored to memory at: [ 890.131811][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 890.137697][T17474] __msan_chain_origin+0x57/0xa0 [ 890.142619][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 890.147712][T17474] get_compat_msghdr+0x108/0x2b0 [ 890.152817][T17474] do_recvmmsg+0xdd1/0x22f0 [ 890.157312][T17474] __sys_recvmmsg+0x519/0x6f0 [ 890.161982][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 890.168043][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 890.174189][T17474] __do_fast_syscall_32+0x102/0x160 [ 890.179379][T17474] do_fast_syscall_32+0x6a/0xc0 [ 890.184210][T17474] do_SYSENTER_32+0x73/0x90 [ 890.188691][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 890.194988][T17474] [ 890.197295][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 890.203955][T17474] do_recvmmsg+0xbf/0x22f0 [ 890.208367][T17474] do_recvmmsg+0xbf/0x22f0 [ 890.457432][T17474] not chained 1680000 origins [ 890.462151][T17474] CPU: 0 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 890.471427][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 890.481477][T17474] Call Trace: [ 890.484778][T17474] dump_stack+0x21c/0x280 [ 890.489114][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 890.494844][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 890.499961][T17474] ? kmsan_get_metadata+0x116/0x180 [ 890.505173][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 890.510994][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 890.517065][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 890.522006][T17474] ? kmsan_get_metadata+0x116/0x180 [ 890.527296][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 890.533109][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 890.539179][T17474] ? kmsan_get_metadata+0x116/0x180 [ 890.544379][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 890.550017][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 890.556160][T17474] ? _copy_from_user+0x1fd/0x300 [ 890.561104][T17474] ? kmsan_get_metadata+0x116/0x180 [ 890.566311][T17474] __msan_chain_origin+0x57/0xa0 [ 890.571924][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 890.577043][T17474] get_compat_msghdr+0x108/0x2b0 [ 890.581988][T17474] do_recvmmsg+0xdd1/0x22f0 [ 890.586529][T17474] ? kmsan_get_metadata+0x116/0x180 [ 890.591766][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 890.597662][T17474] ? kmsan_get_metadata+0x116/0x180 [ 890.602938][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 890.608570][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 890.613864][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 890.618738][T17474] __sys_recvmmsg+0x519/0x6f0 [ 890.623420][T17474] ? kmsan_get_metadata+0x116/0x180 [ 890.628773][T17474] ? kmsan_get_metadata+0x116/0x180 [ 890.634023][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 890.640069][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 890.646362][T17474] __do_fast_syscall_32+0x102/0x160 [ 890.651557][T17474] do_fast_syscall_32+0x6a/0xc0 [ 890.656401][T17474] do_SYSENTER_32+0x73/0x90 [ 890.660945][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 890.667278][T17474] RIP: 0023:0xf7f58549 [ 890.671330][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 890.691002][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 890.699409][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 890.707363][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 890.715312][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 890.723262][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 890.731220][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 890.739282][T17474] Uninit was stored to memory at: [ 890.744422][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 890.750117][T17474] __msan_chain_origin+0x57/0xa0 [ 890.755143][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 890.760251][T17474] get_compat_msghdr+0x108/0x2b0 [ 890.765181][T17474] do_recvmmsg+0xdd1/0x22f0 [ 890.769667][T17474] __sys_recvmmsg+0x519/0x6f0 [ 890.774382][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 890.780437][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 890.786581][T17474] __do_fast_syscall_32+0x102/0x160 [ 890.791758][T17474] do_fast_syscall_32+0x6a/0xc0 [ 890.796595][T17474] do_SYSENTER_32+0x73/0x90 [ 890.801180][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 890.807488][T17474] [ 890.809791][T17474] Uninit was stored to memory at: [ 890.814792][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 890.820496][T17474] __msan_chain_origin+0x57/0xa0 [ 890.825425][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 890.830523][T17474] get_compat_msghdr+0x108/0x2b0 [ 890.835448][T17474] do_recvmmsg+0xdd1/0x22f0 [ 890.839942][T17474] __sys_recvmmsg+0x519/0x6f0 [ 890.844614][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 890.850693][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 890.856837][T17474] __do_fast_syscall_32+0x102/0x160 [ 890.862028][T17474] do_fast_syscall_32+0x6a/0xc0 [ 890.866902][T17474] do_SYSENTER_32+0x73/0x90 [ 890.871391][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 890.877689][T17474] [ 890.879995][T17474] Uninit was stored to memory at: [ 890.884996][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 890.890703][T17474] __msan_chain_origin+0x57/0xa0 [ 890.895628][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 890.900726][T17474] get_compat_msghdr+0x108/0x2b0 [ 890.905652][T17474] do_recvmmsg+0xdd1/0x22f0 [ 890.910129][T17474] __sys_recvmmsg+0x519/0x6f0 [ 890.914784][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 890.920843][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 890.926988][T17474] __do_fast_syscall_32+0x102/0x160 [ 890.932171][T17474] do_fast_syscall_32+0x6a/0xc0 [ 890.936998][T17474] do_SYSENTER_32+0x73/0x90 [ 890.941498][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 890.947988][T17474] [ 890.950294][T17474] Uninit was stored to memory at: [ 890.955305][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 890.961019][T17474] __msan_chain_origin+0x57/0xa0 [ 890.966036][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 890.971127][T17474] get_compat_msghdr+0x108/0x2b0 [ 890.976041][T17474] do_recvmmsg+0xdd1/0x22f0 [ 890.980535][T17474] __sys_recvmmsg+0x519/0x6f0 [ 890.985200][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 890.991245][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 890.997393][T17474] __do_fast_syscall_32+0x102/0x160 [ 891.002594][T17474] do_fast_syscall_32+0x6a/0xc0 [ 891.007442][T17474] do_SYSENTER_32+0x73/0x90 [ 891.011958][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 891.018253][T17474] [ 891.020573][T17474] Uninit was stored to memory at: [ 891.025587][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 891.031402][T17474] __msan_chain_origin+0x57/0xa0 [ 891.036323][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 891.041421][T17474] get_compat_msghdr+0x108/0x2b0 [ 891.046357][T17474] do_recvmmsg+0xdd1/0x22f0 [ 891.050848][T17474] __sys_recvmmsg+0x519/0x6f0 [ 891.055513][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 891.061569][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 891.067729][T17474] __do_fast_syscall_32+0x102/0x160 [ 891.072920][T17474] do_fast_syscall_32+0x6a/0xc0 [ 891.077749][T17474] do_SYSENTER_32+0x73/0x90 [ 891.082246][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 891.088550][T17474] [ 891.090855][T17474] Uninit was stored to memory at: [ 891.095870][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 891.101575][T17474] __msan_chain_origin+0x57/0xa0 [ 891.106500][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 891.111585][T17474] get_compat_msghdr+0x108/0x2b0 [ 891.116497][T17474] do_recvmmsg+0xdd1/0x22f0 [ 891.120992][T17474] __sys_recvmmsg+0x519/0x6f0 [ 891.125684][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 891.131745][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 891.137901][T17474] __do_fast_syscall_32+0x102/0x160 [ 891.143079][T17474] do_fast_syscall_32+0x6a/0xc0 [ 891.147907][T17474] do_SYSENTER_32+0x73/0x90 [ 891.152391][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 891.158686][T17474] [ 891.161007][T17474] Uninit was stored to memory at: [ 891.166020][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 891.171729][T17474] __msan_chain_origin+0x57/0xa0 [ 891.176673][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 891.181774][T17474] get_compat_msghdr+0x108/0x2b0 [ 891.186699][T17474] do_recvmmsg+0xdd1/0x22f0 [ 891.191184][T17474] __sys_recvmmsg+0x519/0x6f0 [ 891.195838][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 891.201893][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 891.208035][T17474] __do_fast_syscall_32+0x102/0x160 [ 891.213212][T17474] do_fast_syscall_32+0x6a/0xc0 [ 891.218039][T17474] do_SYSENTER_32+0x73/0x90 [ 891.222552][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 891.228860][T17474] [ 891.231178][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 891.237830][T17474] do_recvmmsg+0xbf/0x22f0 [ 891.242234][T17474] do_recvmmsg+0xbf/0x22f0 [ 891.518327][T17474] not chained 1690000 origins [ 891.523041][T17474] CPU: 0 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 891.531792][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 891.541840][T17474] Call Trace: [ 891.545139][T17474] dump_stack+0x21c/0x280 [ 891.549474][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 891.555199][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 891.560509][T17474] ? kmsan_get_metadata+0x116/0x180 [ 891.565710][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 891.571518][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 891.577677][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 891.582636][T17474] ? kmsan_get_metadata+0x116/0x180 [ 891.588228][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 891.594042][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 891.600108][T17474] ? kmsan_get_metadata+0x116/0x180 [ 891.605307][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 891.610949][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 891.617021][T17474] ? _copy_from_user+0x1fd/0x300 [ 891.621949][T17474] ? kmsan_get_metadata+0x116/0x180 [ 891.627178][T17474] __msan_chain_origin+0x57/0xa0 [ 891.632098][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 891.637208][T17474] get_compat_msghdr+0x108/0x2b0 [ 891.642139][T17474] do_recvmmsg+0xdd1/0x22f0 [ 891.646648][T17474] ? kmsan_get_metadata+0x116/0x180 [ 891.651825][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 891.657710][T17474] ? kmsan_get_metadata+0x116/0x180 [ 891.662989][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 891.668610][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 891.673895][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 891.678659][T17474] __sys_recvmmsg+0x519/0x6f0 [ 891.683506][T17474] ? kmsan_get_metadata+0x116/0x180 [ 891.688691][T17474] ? kmsan_get_metadata+0x116/0x180 [ 891.693884][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 891.699942][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 891.706078][T17474] __do_fast_syscall_32+0x102/0x160 [ 891.711272][T17474] do_fast_syscall_32+0x6a/0xc0 [ 891.716120][T17474] do_SYSENTER_32+0x73/0x90 [ 891.720621][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 891.726937][T17474] RIP: 0023:0xf7f58549 [ 891.730986][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 891.750668][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 891.759075][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 891.767621][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 891.775587][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 891.783550][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 891.791534][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 891.799527][T17474] Uninit was stored to memory at: [ 891.804539][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 891.810245][T17474] __msan_chain_origin+0x57/0xa0 [ 891.815187][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 891.820298][T17474] get_compat_msghdr+0x108/0x2b0 [ 891.825228][T17474] do_recvmmsg+0xdd1/0x22f0 [ 891.829722][T17474] __sys_recvmmsg+0x519/0x6f0 [ 891.834380][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 891.840546][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 891.846693][T17474] __do_fast_syscall_32+0x102/0x160 [ 891.851891][T17474] do_fast_syscall_32+0x6a/0xc0 [ 891.856722][T17474] do_SYSENTER_32+0x73/0x90 [ 891.861306][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 891.868037][T17474] [ 891.870344][T17474] Uninit was stored to memory at: [ 891.875382][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 891.881092][T17474] __msan_chain_origin+0x57/0xa0 [ 891.886039][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 891.891142][T17474] get_compat_msghdr+0x108/0x2b0 [ 891.896071][T17474] do_recvmmsg+0xdd1/0x22f0 [ 891.900563][T17474] __sys_recvmmsg+0x519/0x6f0 [ 891.905324][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 891.911374][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 891.917512][T17474] __do_fast_syscall_32+0x102/0x160 [ 891.922713][T17474] do_fast_syscall_32+0x6a/0xc0 [ 891.927557][T17474] do_SYSENTER_32+0x73/0x90 [ 891.932052][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 891.938359][T17474] [ 891.940678][T17474] Uninit was stored to memory at: [ 891.945708][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 891.951435][T17474] __msan_chain_origin+0x57/0xa0 [ 891.956368][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 891.961485][T17474] get_compat_msghdr+0x108/0x2b0 [ 891.966415][T17474] do_recvmmsg+0xdd1/0x22f0 [ 891.970915][T17474] __sys_recvmmsg+0x519/0x6f0 [ 891.975590][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 891.981662][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 891.987823][T17474] __do_fast_syscall_32+0x102/0x160 [ 891.993019][T17474] do_fast_syscall_32+0x6a/0xc0 [ 891.997851][T17474] do_SYSENTER_32+0x73/0x90 [ 892.002350][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 892.008658][T17474] [ 892.010966][T17474] Uninit was stored to memory at: [ 892.015971][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 892.021679][T17474] __msan_chain_origin+0x57/0xa0 [ 892.026610][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 892.031715][T17474] get_compat_msghdr+0x108/0x2b0 [ 892.036631][T17474] do_recvmmsg+0xdd1/0x22f0 [ 892.041127][T17474] __sys_recvmmsg+0x519/0x6f0 [ 892.045806][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 892.051863][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 892.058011][T17474] __do_fast_syscall_32+0x102/0x160 [ 892.063201][T17474] do_fast_syscall_32+0x6a/0xc0 [ 892.068032][T17474] do_SYSENTER_32+0x73/0x90 [ 892.072535][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 892.078836][T17474] [ 892.081152][T17474] Uninit was stored to memory at: [ 892.086167][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 892.091876][T17474] __msan_chain_origin+0x57/0xa0 [ 892.096815][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 892.101940][T17474] get_compat_msghdr+0x108/0x2b0 [ 892.106888][T17474] do_recvmmsg+0xdd1/0x22f0 [ 892.111422][T17474] __sys_recvmmsg+0x519/0x6f0 [ 892.116077][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 892.122221][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 892.128370][T17474] __do_fast_syscall_32+0x102/0x160 [ 892.133547][T17474] do_fast_syscall_32+0x6a/0xc0 [ 892.138389][T17474] do_SYSENTER_32+0x73/0x90 [ 892.142888][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 892.149200][T17474] [ 892.151517][T17474] Uninit was stored to memory at: [ 892.156530][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 892.162240][T17474] __msan_chain_origin+0x57/0xa0 [ 892.167175][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 892.172268][T17474] get_compat_msghdr+0x108/0x2b0 [ 892.177196][T17474] do_recvmmsg+0xdd1/0x22f0 [ 892.181690][T17474] __sys_recvmmsg+0x519/0x6f0 [ 892.186373][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 892.192435][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 892.198604][T17474] __do_fast_syscall_32+0x102/0x160 [ 892.203786][T17474] do_fast_syscall_32+0x6a/0xc0 [ 892.208620][T17474] do_SYSENTER_32+0x73/0x90 [ 892.213105][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 892.219511][T17474] [ 892.221825][T17474] Uninit was stored to memory at: [ 892.226859][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 892.232576][T17474] __msan_chain_origin+0x57/0xa0 [ 892.237507][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 892.242616][T17474] get_compat_msghdr+0x108/0x2b0 [ 892.247544][T17474] do_recvmmsg+0xdd1/0x22f0 [ 892.252029][T17474] __sys_recvmmsg+0x519/0x6f0 [ 892.256684][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 892.262745][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 892.268890][T17474] __do_fast_syscall_32+0x102/0x160 [ 892.274266][T17474] do_fast_syscall_32+0x6a/0xc0 [ 892.279110][T17474] do_SYSENTER_32+0x73/0x90 [ 892.283598][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 892.289895][T17474] [ 892.292215][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 892.298885][T17474] do_recvmmsg+0xbf/0x22f0 [ 892.303295][T17474] do_recvmmsg+0xbf/0x22f0 [ 892.557989][T17474] not chained 1700000 origins [ 892.562729][T17474] CPU: 1 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 892.571498][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 892.581553][T17474] Call Trace: [ 892.584868][T17474] dump_stack+0x21c/0x280 [ 892.589204][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 892.594930][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 892.600053][T17474] ? kmsan_get_metadata+0x116/0x180 [ 892.605255][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 892.611091][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 892.617225][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 892.622193][T17474] ? kmsan_get_metadata+0x116/0x180 [ 892.627466][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 892.633275][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 892.639342][T17474] ? kmsan_get_metadata+0x116/0x180 [ 892.644543][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 892.650180][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 892.656249][T17474] ? _copy_from_user+0x1fd/0x300 [ 892.661186][T17474] ? kmsan_get_metadata+0x116/0x180 [ 892.666388][T17474] __msan_chain_origin+0x57/0xa0 [ 892.671333][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 892.676450][T17474] get_compat_msghdr+0x108/0x2b0 [ 892.681395][T17474] do_recvmmsg+0xdd1/0x22f0 [ 892.685908][T17474] ? kmsan_get_metadata+0x116/0x180 [ 892.691126][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 892.697030][T17474] ? kmsan_get_metadata+0x116/0x180 [ 892.702228][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 892.707883][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 892.713187][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 892.717959][T17474] __sys_recvmmsg+0x519/0x6f0 [ 892.722639][T17474] ? kmsan_get_metadata+0x116/0x180 [ 892.727828][T17474] ? kmsan_get_metadata+0x116/0x180 [ 892.733010][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 892.739058][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 892.745209][T17474] __do_fast_syscall_32+0x102/0x160 [ 892.750388][T17474] do_fast_syscall_32+0x6a/0xc0 [ 892.755217][T17474] do_SYSENTER_32+0x73/0x90 [ 892.759701][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 892.766005][T17474] RIP: 0023:0xf7f58549 [ 892.770582][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 892.790227][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 892.798629][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 892.806587][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 892.814661][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 892.822620][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 892.830578][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 892.838556][T17474] Uninit was stored to memory at: [ 892.843576][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 892.849300][T17474] __msan_chain_origin+0x57/0xa0 [ 892.854217][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 892.859315][T17474] get_compat_msghdr+0x108/0x2b0 [ 892.864230][T17474] do_recvmmsg+0xdd1/0x22f0 [ 892.868796][T17474] __sys_recvmmsg+0x519/0x6f0 [ 892.873454][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 892.879500][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 892.885634][T17474] __do_fast_syscall_32+0x102/0x160 [ 892.890954][T17474] do_fast_syscall_32+0x6a/0xc0 [ 892.895780][T17474] do_SYSENTER_32+0x73/0x90 [ 892.900292][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 892.906594][T17474] [ 892.908993][T17474] Uninit was stored to memory at: [ 892.914013][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 892.919709][T17474] __msan_chain_origin+0x57/0xa0 [ 892.924623][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 892.929728][T17474] get_compat_msghdr+0x108/0x2b0 [ 892.934643][T17474] do_recvmmsg+0xdd1/0x22f0 [ 892.939124][T17474] __sys_recvmmsg+0x519/0x6f0 [ 892.943792][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 892.949850][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 892.956084][T17474] __do_fast_syscall_32+0x102/0x160 [ 892.961263][T17474] do_fast_syscall_32+0x6a/0xc0 [ 892.966093][T17474] do_SYSENTER_32+0x73/0x90 [ 892.970619][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 892.976931][T17474] [ 892.979300][T17474] Uninit was stored to memory at: [ 892.984317][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 892.990018][T17474] __msan_chain_origin+0x57/0xa0 [ 892.994950][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 893.000041][T17474] get_compat_msghdr+0x108/0x2b0 [ 893.004957][T17474] do_recvmmsg+0xdd1/0x22f0 [ 893.009440][T17474] __sys_recvmmsg+0x519/0x6f0 [ 893.014116][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 893.020197][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 893.026342][T17474] __do_fast_syscall_32+0x102/0x160 [ 893.031519][T17474] do_fast_syscall_32+0x6a/0xc0 [ 893.036358][T17474] do_SYSENTER_32+0x73/0x90 [ 893.040863][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 893.047176][T17474] [ 893.049478][T17474] Uninit was stored to memory at: [ 893.054504][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 893.060222][T17474] __msan_chain_origin+0x57/0xa0 [ 893.065142][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 893.070237][T17474] get_compat_msghdr+0x108/0x2b0 [ 893.075183][T17474] do_recvmmsg+0xdd1/0x22f0 [ 893.079677][T17474] __sys_recvmmsg+0x519/0x6f0 [ 893.084332][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 893.090375][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 893.096503][T17474] __do_fast_syscall_32+0x102/0x160 [ 893.101679][T17474] do_fast_syscall_32+0x6a/0xc0 [ 893.106511][T17474] do_SYSENTER_32+0x73/0x90 [ 893.110996][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 893.117292][T17474] [ 893.119600][T17474] Uninit was stored to memory at: [ 893.125042][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 893.130741][T17474] __msan_chain_origin+0x57/0xa0 [ 893.135656][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 893.140742][T17474] get_compat_msghdr+0x108/0x2b0 [ 893.145657][T17474] do_recvmmsg+0xdd1/0x22f0 [ 893.150136][T17474] __sys_recvmmsg+0x519/0x6f0 [ 893.154808][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 893.160949][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 893.167079][T17474] __do_fast_syscall_32+0x102/0x160 [ 893.172270][T17474] do_fast_syscall_32+0x6a/0xc0 [ 893.177139][T17474] do_SYSENTER_32+0x73/0x90 [ 893.181623][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 893.187919][T17474] [ 893.190259][T17474] Uninit was stored to memory at: [ 893.195270][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 893.200963][T17474] __msan_chain_origin+0x57/0xa0 [ 893.205872][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 893.210956][T17474] get_compat_msghdr+0x108/0x2b0 [ 893.215880][T17474] do_recvmmsg+0xdd1/0x22f0 [ 893.220372][T17474] __sys_recvmmsg+0x519/0x6f0 [ 893.225035][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 893.231090][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 893.237236][T17474] __do_fast_syscall_32+0x102/0x160 [ 893.242410][T17474] do_fast_syscall_32+0x6a/0xc0 [ 893.247239][T17474] do_SYSENTER_32+0x73/0x90 [ 893.251725][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 893.258031][T17474] [ 893.260342][T17474] Uninit was stored to memory at: [ 893.265342][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 893.271140][T17474] __msan_chain_origin+0x57/0xa0 [ 893.276075][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 893.281286][T17474] get_compat_msghdr+0x108/0x2b0 [ 893.286222][T17474] do_recvmmsg+0xdd1/0x22f0 [ 893.290726][T17474] __sys_recvmmsg+0x519/0x6f0 [ 893.295389][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 893.301437][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 893.307575][T17474] __do_fast_syscall_32+0x102/0x160 [ 893.312790][T17474] do_fast_syscall_32+0x6a/0xc0 [ 893.317620][T17474] do_SYSENTER_32+0x73/0x90 [ 893.322109][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 893.328401][T17474] [ 893.330706][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 893.337354][T17474] do_recvmmsg+0xbf/0x22f0 [ 893.341766][T17474] do_recvmmsg+0xbf/0x22f0 [ 893.667581][T17474] not chained 1710000 origins [ 893.672301][T17474] CPU: 0 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 893.681142][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 893.691284][T17474] Call Trace: [ 893.694579][T17474] dump_stack+0x21c/0x280 [ 893.698958][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 893.704687][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 893.709800][T17474] ? kmsan_get_metadata+0x116/0x180 [ 893.715096][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 893.720952][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 893.727020][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 893.731958][T17474] ? kmsan_get_metadata+0x116/0x180 [ 893.737133][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 893.742924][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 893.748974][T17474] ? kmsan_get_metadata+0x116/0x180 [ 893.754150][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 893.759762][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 893.765807][T17474] ? _copy_from_user+0x1fd/0x300 [ 893.770724][T17474] ? kmsan_get_metadata+0x116/0x180 [ 893.775976][T17474] __msan_chain_origin+0x57/0xa0 [ 893.780947][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 893.786043][T17474] get_compat_msghdr+0x108/0x2b0 [ 893.790971][T17474] do_recvmmsg+0xdd1/0x22f0 [ 893.795455][T17474] ? kmsan_get_metadata+0x116/0x180 [ 893.800645][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 893.806666][T17474] ? kmsan_get_metadata+0x116/0x180 [ 893.811848][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 893.817459][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 893.822835][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 893.827582][T17474] __sys_recvmmsg+0x519/0x6f0 [ 893.832254][T17474] ? kmsan_get_metadata+0x116/0x180 [ 893.837449][T17474] ? kmsan_get_metadata+0x116/0x180 [ 893.842741][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 893.848829][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 893.854966][T17474] __do_fast_syscall_32+0x102/0x160 [ 893.860153][T17474] do_fast_syscall_32+0x6a/0xc0 [ 893.865012][T17474] do_SYSENTER_32+0x73/0x90 [ 893.869501][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 893.875804][T17474] RIP: 0023:0xf7f58549 [ 893.879853][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 893.899441][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 893.907860][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 893.915831][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 893.923791][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 893.931856][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 893.939812][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 893.947779][T17474] Uninit was stored to memory at: [ 893.952829][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 893.958535][T17474] __msan_chain_origin+0x57/0xa0 [ 893.963454][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 893.968553][T17474] get_compat_msghdr+0x108/0x2b0 [ 893.973469][T17474] do_recvmmsg+0xdd1/0x22f0 [ 893.977954][T17474] __sys_recvmmsg+0x519/0x6f0 [ 893.982613][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 893.988656][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 893.994793][T17474] __do_fast_syscall_32+0x102/0x160 [ 893.999970][T17474] do_fast_syscall_32+0x6a/0xc0 [ 894.004822][T17474] do_SYSENTER_32+0x73/0x90 [ 894.009321][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 894.015619][T17474] [ 894.017943][T17474] Uninit was stored to memory at: [ 894.022959][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 894.028673][T17474] __msan_chain_origin+0x57/0xa0 [ 894.033598][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 894.038693][T17474] get_compat_msghdr+0x108/0x2b0 [ 894.043609][T17474] do_recvmmsg+0xdd1/0x22f0 [ 894.048099][T17474] __sys_recvmmsg+0x519/0x6f0 [ 894.052753][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 894.058841][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 894.065002][T17474] __do_fast_syscall_32+0x102/0x160 [ 894.070193][T17474] do_fast_syscall_32+0x6a/0xc0 [ 894.075048][T17474] do_SYSENTER_32+0x73/0x90 [ 894.079531][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 894.085826][T17474] [ 894.088129][T17474] Uninit was stored to memory at: [ 894.093132][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 894.098826][T17474] __msan_chain_origin+0x57/0xa0 [ 894.103755][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 894.108843][T17474] get_compat_msghdr+0x108/0x2b0 [ 894.113763][T17474] do_recvmmsg+0xdd1/0x22f0 [ 894.118242][T17474] __sys_recvmmsg+0x519/0x6f0 [ 894.122898][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 894.128940][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 894.135077][T17474] __do_fast_syscall_32+0x102/0x160 [ 894.140270][T17474] do_fast_syscall_32+0x6a/0xc0 [ 894.145112][T17474] do_SYSENTER_32+0x73/0x90 [ 894.149607][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 894.155905][T17474] [ 894.158209][T17474] Uninit was stored to memory at: [ 894.163212][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 894.169019][T17474] __msan_chain_origin+0x57/0xa0 [ 894.173935][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 894.179036][T17474] get_compat_msghdr+0x108/0x2b0 [ 894.183961][T17474] do_recvmmsg+0xdd1/0x22f0 [ 894.188445][T17474] __sys_recvmmsg+0x519/0x6f0 [ 894.193119][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 894.199188][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 894.205321][T17474] __do_fast_syscall_32+0x102/0x160 [ 894.210526][T17474] do_fast_syscall_32+0x6a/0xc0 [ 894.215363][T17474] do_SYSENTER_32+0x73/0x90 [ 894.219842][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 894.226139][T17474] [ 894.228445][T17474] Uninit was stored to memory at: [ 894.233458][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 894.239151][T17474] __msan_chain_origin+0x57/0xa0 [ 894.244092][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 894.249220][T17474] get_compat_msghdr+0x108/0x2b0 [ 894.254135][T17474] do_recvmmsg+0xdd1/0x22f0 [ 894.258630][T17474] __sys_recvmmsg+0x519/0x6f0 [ 894.263286][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 894.269330][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 894.275465][T17474] __do_fast_syscall_32+0x102/0x160 [ 894.280661][T17474] do_fast_syscall_32+0x6a/0xc0 [ 894.285497][T17474] do_SYSENTER_32+0x73/0x90 [ 894.289996][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 894.296308][T17474] [ 894.298613][T17474] Uninit was stored to memory at: [ 894.303617][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 894.309323][T17474] __msan_chain_origin+0x57/0xa0 [ 894.314240][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 894.319336][T17474] get_compat_msghdr+0x108/0x2b0 [ 894.324253][T17474] do_recvmmsg+0xdd1/0x22f0 [ 894.328733][T17474] __sys_recvmmsg+0x519/0x6f0 [ 894.333389][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 894.339432][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 894.345581][T17474] __do_fast_syscall_32+0x102/0x160 [ 894.350781][T17474] do_fast_syscall_32+0x6a/0xc0 [ 894.355622][T17474] do_SYSENTER_32+0x73/0x90 [ 894.360121][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 894.366427][T17474] [ 894.368729][T17474] Uninit was stored to memory at: [ 894.373732][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 894.379424][T17474] __msan_chain_origin+0x57/0xa0 [ 894.384343][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 894.389479][T17474] get_compat_msghdr+0x108/0x2b0 [ 894.394404][T17474] do_recvmmsg+0xdd1/0x22f0 [ 894.398971][T17474] __sys_recvmmsg+0x519/0x6f0 [ 894.403630][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 894.409674][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 894.415896][T17474] __do_fast_syscall_32+0x102/0x160 [ 894.421076][T17474] do_fast_syscall_32+0x6a/0xc0 [ 894.426001][T17474] do_SYSENTER_32+0x73/0x90 [ 894.430494][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 894.436805][T17474] [ 894.439124][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 894.445789][T17474] do_recvmmsg+0xbf/0x22f0 [ 894.450211][T17474] do_recvmmsg+0xbf/0x22f0 [ 894.740658][T17474] not chained 1720000 origins [ 894.745367][T17474] CPU: 0 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 894.754222][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 894.764280][T17474] Call Trace: [ 894.767590][T17474] dump_stack+0x21c/0x280 [ 894.771937][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 894.777663][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 894.782781][T17474] ? kmsan_get_metadata+0x116/0x180 [ 894.787989][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 894.793815][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 894.799886][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 894.804832][T17474] ? kmsan_get_metadata+0x116/0x180 [ 894.810051][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 894.815882][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 894.821933][T17474] ? kmsan_get_metadata+0x116/0x180 [ 894.827113][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 894.832727][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 894.838772][T17474] ? _copy_from_user+0x1fd/0x300 [ 894.843688][T17474] ? kmsan_get_metadata+0x116/0x180 [ 894.848864][T17474] __msan_chain_origin+0x57/0xa0 [ 894.853826][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 894.858932][T17474] get_compat_msghdr+0x108/0x2b0 [ 894.863855][T17474] do_recvmmsg+0xdd1/0x22f0 [ 894.868338][T17474] ? kmsan_get_metadata+0x116/0x180 [ 894.873538][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 894.879415][T17474] ? kmsan_get_metadata+0x116/0x180 [ 894.884595][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 894.890217][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 894.895493][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 894.900246][T17474] __sys_recvmmsg+0x519/0x6f0 [ 894.904914][T17474] ? kmsan_get_metadata+0x116/0x180 [ 894.910139][T17474] ? kmsan_get_metadata+0x116/0x180 [ 894.915369][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 894.921433][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 894.927584][T17474] __do_fast_syscall_32+0x102/0x160 [ 894.932785][T17474] do_fast_syscall_32+0x6a/0xc0 [ 894.937628][T17474] do_SYSENTER_32+0x73/0x90 [ 894.942150][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 894.948454][T17474] RIP: 0023:0xf7f58549 [ 894.952506][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 894.972142][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 894.980550][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 894.988500][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 894.996448][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 895.004397][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 895.012347][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 895.020304][T17474] Uninit was stored to memory at: [ 895.025319][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 895.031028][T17474] __msan_chain_origin+0x57/0xa0 [ 895.035969][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 895.041074][T17474] get_compat_msghdr+0x108/0x2b0 [ 895.045991][T17474] do_recvmmsg+0xdd1/0x22f0 [ 895.050485][T17474] __sys_recvmmsg+0x519/0x6f0 [ 895.055170][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 895.061233][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 895.067383][T17474] __do_fast_syscall_32+0x102/0x160 [ 895.072579][T17474] do_fast_syscall_32+0x6a/0xc0 [ 895.077421][T17474] do_SYSENTER_32+0x73/0x90 [ 895.081910][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 895.088298][T17474] [ 895.090737][T17474] Uninit was stored to memory at: [ 895.095746][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 895.101449][T17474] __msan_chain_origin+0x57/0xa0 [ 895.106720][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 895.111943][T17474] get_compat_msghdr+0x108/0x2b0 [ 895.116877][T17474] do_recvmmsg+0xdd1/0x22f0 [ 895.121367][T17474] __sys_recvmmsg+0x519/0x6f0 [ 895.126067][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 895.132114][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 895.138246][T17474] __do_fast_syscall_32+0x102/0x160 [ 895.143437][T17474] do_fast_syscall_32+0x6a/0xc0 [ 895.148291][T17474] do_SYSENTER_32+0x73/0x90 [ 895.152789][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 895.159089][T17474] [ 895.161398][T17474] Uninit was stored to memory at: [ 895.166414][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 895.172112][T17474] __msan_chain_origin+0x57/0xa0 [ 895.177029][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 895.182122][T17474] get_compat_msghdr+0x108/0x2b0 [ 895.187050][T17474] do_recvmmsg+0xdd1/0x22f0 [ 895.191533][T17474] __sys_recvmmsg+0x519/0x6f0 [ 895.196213][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 895.202260][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 895.208394][T17474] __do_fast_syscall_32+0x102/0x160 [ 895.213572][T17474] do_fast_syscall_32+0x6a/0xc0 [ 895.218403][T17474] do_SYSENTER_32+0x73/0x90 [ 895.222887][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 895.229190][T17474] [ 895.231494][T17474] Uninit was stored to memory at: [ 895.236494][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 895.242191][T17474] __msan_chain_origin+0x57/0xa0 [ 895.247107][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 895.252310][T17474] get_compat_msghdr+0x108/0x2b0 [ 895.257277][T17474] do_recvmmsg+0xdd1/0x22f0 [ 895.261759][T17474] __sys_recvmmsg+0x519/0x6f0 [ 895.266420][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 895.272481][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 895.278609][T17474] __do_fast_syscall_32+0x102/0x160 [ 895.283786][T17474] do_fast_syscall_32+0x6a/0xc0 [ 895.288626][T17474] do_SYSENTER_32+0x73/0x90 [ 895.293126][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 895.299421][T17474] [ 895.301723][T17474] Uninit was stored to memory at: [ 895.306741][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 895.312443][T17474] __msan_chain_origin+0x57/0xa0 [ 895.317358][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 895.322445][T17474] get_compat_msghdr+0x108/0x2b0 [ 895.327374][T17474] do_recvmmsg+0xdd1/0x22f0 [ 895.331853][T17474] __sys_recvmmsg+0x519/0x6f0 [ 895.336527][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 895.342585][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 895.348714][T17474] __do_fast_syscall_32+0x102/0x160 [ 895.353893][T17474] do_fast_syscall_32+0x6a/0xc0 [ 895.358720][T17474] do_SYSENTER_32+0x73/0x90 [ 895.363218][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 895.369613][T17474] [ 895.371918][T17474] Uninit was stored to memory at: [ 895.376926][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 895.382628][T17474] __msan_chain_origin+0x57/0xa0 [ 895.387545][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 895.392634][T17474] get_compat_msghdr+0x108/0x2b0 [ 895.397564][T17474] do_recvmmsg+0xdd1/0x22f0 [ 895.402046][T17474] __sys_recvmmsg+0x519/0x6f0 [ 895.406701][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 895.412760][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 895.418917][T17474] __do_fast_syscall_32+0x102/0x160 [ 895.424140][T17474] do_fast_syscall_32+0x6a/0xc0 [ 895.428975][T17474] do_SYSENTER_32+0x73/0x90 [ 895.433462][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 895.439759][T17474] [ 895.442068][T17474] Uninit was stored to memory at: [ 895.447079][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 895.452779][T17474] __msan_chain_origin+0x57/0xa0 [ 895.457695][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 895.462791][T17474] get_compat_msghdr+0x108/0x2b0 [ 895.467710][T17474] do_recvmmsg+0xdd1/0x22f0 [ 895.472209][T17474] __sys_recvmmsg+0x519/0x6f0 [ 895.476890][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 895.482992][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 895.489128][T17474] __do_fast_syscall_32+0x102/0x160 [ 895.494365][T17474] do_fast_syscall_32+0x6a/0xc0 [ 895.499205][T17474] do_SYSENTER_32+0x73/0x90 [ 895.503791][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 895.510268][T17474] [ 895.512575][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 895.519241][T17474] do_recvmmsg+0xbf/0x22f0 [ 895.523649][T17474] do_recvmmsg+0xbf/0x22f0 [ 895.775374][T17474] not chained 1730000 origins [ 895.780093][T17474] CPU: 0 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 895.788849][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 895.798916][T17474] Call Trace: [ 895.802218][T17474] dump_stack+0x21c/0x280 [ 895.806586][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 895.812402][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 895.817560][T17474] ? kmsan_get_metadata+0x116/0x180 [ 895.822833][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 895.828680][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 895.834749][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 895.839689][T17474] ? kmsan_get_metadata+0x116/0x180 [ 895.844886][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 895.850692][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 895.856757][T17474] ? kmsan_get_metadata+0x116/0x180 [ 895.861979][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 895.867623][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 895.873698][T17474] ? _copy_from_user+0x1fd/0x300 [ 895.878641][T17474] ? kmsan_get_metadata+0x116/0x180 [ 895.883845][T17474] __msan_chain_origin+0x57/0xa0 [ 895.888789][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 895.893910][T17474] get_compat_msghdr+0x108/0x2b0 [ 895.898855][T17474] do_recvmmsg+0xdd1/0x22f0 [ 895.903369][T17474] ? kmsan_get_metadata+0x116/0x180 [ 895.908583][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 895.914483][T17474] ? kmsan_get_metadata+0x116/0x180 [ 895.919687][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 895.925341][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 895.930634][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 895.935401][T17474] __sys_recvmmsg+0x519/0x6f0 [ 895.940082][T17474] ? kmsan_get_metadata+0x116/0x180 [ 895.945284][T17474] ? kmsan_get_metadata+0x116/0x180 [ 895.950493][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 895.956567][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 895.962717][T17474] __do_fast_syscall_32+0x102/0x160 [ 895.967899][T17474] do_fast_syscall_32+0x6a/0xc0 [ 895.972746][T17474] do_SYSENTER_32+0x73/0x90 [ 895.977244][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 895.983551][T17474] RIP: 0023:0xf7f58549 [ 895.987600][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 896.007300][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 896.015815][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 896.023896][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 896.031859][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 896.039921][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 896.047991][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 896.055961][T17474] Uninit was stored to memory at: [ 896.060974][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 896.066669][T17474] __msan_chain_origin+0x57/0xa0 [ 896.071598][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 896.076698][T17474] get_compat_msghdr+0x108/0x2b0 [ 896.081628][T17474] do_recvmmsg+0xdd1/0x22f0 [ 896.086216][T17474] __sys_recvmmsg+0x519/0x6f0 [ 896.090906][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 896.096975][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 896.103197][T17474] __do_fast_syscall_32+0x102/0x160 [ 896.108376][T17474] do_fast_syscall_32+0x6a/0xc0 [ 896.113208][T17474] do_SYSENTER_32+0x73/0x90 [ 896.117794][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 896.124090][T17474] [ 896.126394][T17474] Uninit was stored to memory at: [ 896.131408][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 896.137120][T17474] __msan_chain_origin+0x57/0xa0 [ 896.142125][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 896.147306][T17474] get_compat_msghdr+0x108/0x2b0 [ 896.152676][T17474] do_recvmmsg+0xdd1/0x22f0 [ 896.157179][T17474] __sys_recvmmsg+0x519/0x6f0 [ 896.161839][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 896.167896][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 896.174032][T17474] __do_fast_syscall_32+0x102/0x160 [ 896.179205][T17474] do_fast_syscall_32+0x6a/0xc0 [ 896.184032][T17474] do_SYSENTER_32+0x73/0x90 [ 896.188516][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 896.194813][T17474] [ 896.197125][T17474] Uninit was stored to memory at: [ 896.202129][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 896.207838][T17474] __msan_chain_origin+0x57/0xa0 [ 896.212769][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 896.217962][T17474] get_compat_msghdr+0x108/0x2b0 [ 896.222889][T17474] do_recvmmsg+0xdd1/0x22f0 [ 896.227397][T17474] __sys_recvmmsg+0x519/0x6f0 [ 896.232066][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 896.238125][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 896.244262][T17474] __do_fast_syscall_32+0x102/0x160 [ 896.249436][T17474] do_fast_syscall_32+0x6a/0xc0 [ 896.254266][T17474] do_SYSENTER_32+0x73/0x90 [ 896.258747][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 896.265042][T17474] [ 896.267351][T17474] Uninit was stored to memory at: [ 896.272364][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 896.278072][T17474] __msan_chain_origin+0x57/0xa0 [ 896.283027][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 896.288165][T17474] get_compat_msghdr+0x108/0x2b0 [ 896.293103][T17474] do_recvmmsg+0xdd1/0x22f0 [ 896.297588][T17474] __sys_recvmmsg+0x519/0x6f0 [ 896.302243][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 896.308489][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 896.314626][T17474] __do_fast_syscall_32+0x102/0x160 [ 896.319801][T17474] do_fast_syscall_32+0x6a/0xc0 [ 896.324628][T17474] do_SYSENTER_32+0x73/0x90 [ 896.329108][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 896.335579][T17474] [ 896.337969][T17474] Uninit was stored to memory at: [ 896.343006][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 896.348701][T17474] __msan_chain_origin+0x57/0xa0 [ 896.353631][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 896.358732][T17474] get_compat_msghdr+0x108/0x2b0 [ 896.363650][T17474] do_recvmmsg+0xdd1/0x22f0 [ 896.368134][T17474] __sys_recvmmsg+0x519/0x6f0 [ 896.372820][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 896.378889][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 896.385103][T17474] __do_fast_syscall_32+0x102/0x160 [ 896.390289][T17474] do_fast_syscall_32+0x6a/0xc0 [ 896.395144][T17474] do_SYSENTER_32+0x73/0x90 [ 896.399635][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 896.405986][T17474] [ 896.408288][T17474] Uninit was stored to memory at: [ 896.413352][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 896.419046][T17474] __msan_chain_origin+0x57/0xa0 [ 896.423997][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 896.429086][T17474] get_compat_msghdr+0x108/0x2b0 [ 896.434016][T17474] do_recvmmsg+0xdd1/0x22f0 [ 896.438508][T17474] __sys_recvmmsg+0x519/0x6f0 [ 896.443161][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 896.449315][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 896.455491][T17474] __do_fast_syscall_32+0x102/0x160 [ 896.460686][T17474] do_fast_syscall_32+0x6a/0xc0 [ 896.465546][T17474] do_SYSENTER_32+0x73/0x90 [ 896.470027][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 896.476333][T17474] [ 896.478635][T17474] Uninit was stored to memory at: [ 896.483640][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 896.489343][T17474] __msan_chain_origin+0x57/0xa0 [ 896.494280][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 896.499387][T17474] get_compat_msghdr+0x108/0x2b0 [ 896.504304][T17474] do_recvmmsg+0xdd1/0x22f0 [ 896.508783][T17474] __sys_recvmmsg+0x519/0x6f0 [ 896.513452][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 896.519509][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 896.525655][T17474] __do_fast_syscall_32+0x102/0x160 [ 896.530951][T17474] do_fast_syscall_32+0x6a/0xc0 [ 896.535824][T17474] do_SYSENTER_32+0x73/0x90 [ 896.540314][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 896.546615][T17474] [ 896.548936][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 896.555615][T17474] do_recvmmsg+0xbf/0x22f0 [ 896.560004][T17474] do_recvmmsg+0xbf/0x22f0 [ 896.822097][T17474] not chained 1740000 origins [ 896.826815][T17474] CPU: 1 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 896.835583][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 896.845639][T17474] Call Trace: [ 896.848938][T17474] dump_stack+0x21c/0x280 [ 896.853272][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 896.859013][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 896.864138][T17474] ? kmsan_get_metadata+0x116/0x180 [ 896.869342][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 896.875192][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 896.881260][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 896.886199][T17474] ? kmsan_get_metadata+0x116/0x180 [ 896.891439][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 896.897257][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 896.903330][T17474] ? kmsan_get_metadata+0x116/0x180 [ 896.908572][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 896.914194][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 896.920238][T17474] ? _copy_from_user+0x1fd/0x300 [ 896.925149][T17474] ? kmsan_get_metadata+0x116/0x180 [ 896.930343][T17474] __msan_chain_origin+0x57/0xa0 [ 896.935312][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 896.940406][T17474] get_compat_msghdr+0x108/0x2b0 [ 896.945324][T17474] do_recvmmsg+0xdd1/0x22f0 [ 896.949808][T17474] ? kmsan_get_metadata+0x116/0x180 [ 896.954987][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 896.960858][T17474] ? kmsan_get_metadata+0x116/0x180 [ 896.966034][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 896.971655][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 896.976955][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 896.981887][T17474] __sys_recvmmsg+0x519/0x6f0 [ 896.986577][T17474] ? kmsan_get_metadata+0x116/0x180 [ 896.991752][T17474] ? kmsan_get_metadata+0x116/0x180 [ 896.996968][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 897.003025][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 897.009175][T17474] __do_fast_syscall_32+0x102/0x160 [ 897.014364][T17474] do_fast_syscall_32+0x6a/0xc0 [ 897.019190][T17474] do_SYSENTER_32+0x73/0x90 [ 897.023677][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 897.029978][T17474] RIP: 0023:0xf7f58549 [ 897.034026][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 897.053608][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 897.061998][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 897.069946][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 897.077899][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 897.085863][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 897.093827][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 897.101780][T17474] Uninit was stored to memory at: [ 897.106782][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 897.112481][T17474] __msan_chain_origin+0x57/0xa0 [ 897.117401][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 897.122498][T17474] get_compat_msghdr+0x108/0x2b0 [ 897.127412][T17474] do_recvmmsg+0xdd1/0x22f0 [ 897.131906][T17474] __sys_recvmmsg+0x519/0x6f0 [ 897.136571][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 897.142609][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 897.148736][T17474] __do_fast_syscall_32+0x102/0x160 [ 897.153911][T17474] do_fast_syscall_32+0x6a/0xc0 [ 897.158739][T17474] do_SYSENTER_32+0x73/0x90 [ 897.163221][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 897.169514][T17474] [ 897.171835][T17474] Uninit was stored to memory at: [ 897.176865][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 897.182561][T17474] __msan_chain_origin+0x57/0xa0 [ 897.187475][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 897.192560][T17474] get_compat_msghdr+0x108/0x2b0 [ 897.197471][T17474] do_recvmmsg+0xdd1/0x22f0 [ 897.201950][T17474] __sys_recvmmsg+0x519/0x6f0 [ 897.206600][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 897.212657][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 897.218792][T17474] __do_fast_syscall_32+0x102/0x160 [ 897.223965][T17474] do_fast_syscall_32+0x6a/0xc0 [ 897.228797][T17474] do_SYSENTER_32+0x73/0x90 [ 897.233281][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 897.239574][T17474] [ 897.241877][T17474] Uninit was stored to memory at: [ 897.246899][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 897.252605][T17474] __msan_chain_origin+0x57/0xa0 [ 897.257527][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 897.262623][T17474] get_compat_msghdr+0x108/0x2b0 [ 897.267544][T17474] do_recvmmsg+0xdd1/0x22f0 [ 897.272024][T17474] __sys_recvmmsg+0x519/0x6f0 [ 897.276677][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 897.282739][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 897.288871][T17474] __do_fast_syscall_32+0x102/0x160 [ 897.294055][T17474] do_fast_syscall_32+0x6a/0xc0 [ 897.298893][T17474] do_SYSENTER_32+0x73/0x90 [ 897.303392][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 897.309692][T17474] [ 897.312002][T17474] Uninit was stored to memory at: [ 897.317020][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 897.322718][T17474] __msan_chain_origin+0x57/0xa0 [ 897.327635][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 897.332845][T17474] get_compat_msghdr+0x108/0x2b0 [ 897.337763][T17474] do_recvmmsg+0xdd1/0x22f0 [ 897.342251][T17474] __sys_recvmmsg+0x519/0x6f0 [ 897.346920][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 897.352970][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 897.359105][T17474] __do_fast_syscall_32+0x102/0x160 [ 897.364290][T17474] do_fast_syscall_32+0x6a/0xc0 [ 897.369138][T17474] do_SYSENTER_32+0x73/0x90 [ 897.373629][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 897.379931][T17474] [ 897.382238][T17474] Uninit was stored to memory at: [ 897.387257][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 897.392971][T17474] __msan_chain_origin+0x57/0xa0 [ 897.397899][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 897.403007][T17474] get_compat_msghdr+0x108/0x2b0 [ 897.407929][T17474] do_recvmmsg+0xdd1/0x22f0 [ 897.412437][T17474] __sys_recvmmsg+0x519/0x6f0 [ 897.417115][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 897.423256][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 897.429545][T17474] __do_fast_syscall_32+0x102/0x160 [ 897.434728][T17474] do_fast_syscall_32+0x6a/0xc0 [ 897.439557][T17474] do_SYSENTER_32+0x73/0x90 [ 897.444079][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 897.450384][T17474] [ 897.452686][T17474] Uninit was stored to memory at: [ 897.457701][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 897.463399][T17474] __msan_chain_origin+0x57/0xa0 [ 897.468334][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 897.473435][T17474] get_compat_msghdr+0x108/0x2b0 [ 897.478358][T17474] do_recvmmsg+0xdd1/0x22f0 [ 897.482842][T17474] __sys_recvmmsg+0x519/0x6f0 [ 897.487513][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 897.493574][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 897.499708][T17474] __do_fast_syscall_32+0x102/0x160 [ 897.504905][T17474] do_fast_syscall_32+0x6a/0xc0 [ 897.509742][T17474] do_SYSENTER_32+0x73/0x90 [ 897.514235][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 897.520546][T17474] [ 897.522855][T17474] Uninit was stored to memory at: [ 897.527858][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 897.533644][T17474] __msan_chain_origin+0x57/0xa0 [ 897.538572][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 897.543685][T17474] get_compat_msghdr+0x108/0x2b0 [ 897.548615][T17474] do_recvmmsg+0xdd1/0x22f0 [ 897.553099][T17474] __sys_recvmmsg+0x519/0x6f0 [ 897.557777][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 897.563821][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 897.569956][T17474] __do_fast_syscall_32+0x102/0x160 [ 897.575151][T17474] do_fast_syscall_32+0x6a/0xc0 [ 897.579996][T17474] do_SYSENTER_32+0x73/0x90 [ 897.584487][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 897.590778][T17474] [ 897.593082][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 897.599768][T17474] do_recvmmsg+0xbf/0x22f0 [ 897.604178][T17474] do_recvmmsg+0xbf/0x22f0 [ 897.916654][T17474] not chained 1750000 origins [ 897.921368][T17474] CPU: 1 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 897.930125][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 897.940178][T17474] Call Trace: [ 897.943482][T17474] dump_stack+0x21c/0x280 [ 897.947840][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 897.953581][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 897.958865][T17474] ? kmsan_get_metadata+0x116/0x180 [ 897.964046][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 897.969861][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 897.975911][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 897.980825][T17474] ? kmsan_get_metadata+0x116/0x180 [ 897.985996][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 897.991781][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 897.997885][T17474] ? kmsan_get_metadata+0x116/0x180 [ 898.003075][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 898.008778][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 898.014819][T17474] ? _copy_from_user+0x1fd/0x300 [ 898.019748][T17474] ? kmsan_get_metadata+0x116/0x180 [ 898.024937][T17474] __msan_chain_origin+0x57/0xa0 [ 898.029872][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 898.034994][T17474] get_compat_msghdr+0x108/0x2b0 [ 898.039925][T17474] do_recvmmsg+0xdd1/0x22f0 [ 898.044448][T17474] ? kmsan_get_metadata+0x116/0x180 [ 898.049622][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 898.055550][T17474] ? kmsan_get_metadata+0x116/0x180 [ 898.060727][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 898.066335][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 898.071607][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 898.076443][T17474] __sys_recvmmsg+0x519/0x6f0 [ 898.081099][T17474] ? kmsan_get_metadata+0x116/0x180 [ 898.086275][T17474] ? kmsan_get_metadata+0x116/0x180 [ 898.091450][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 898.097495][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 898.103638][T17474] __do_fast_syscall_32+0x102/0x160 [ 898.108814][T17474] do_fast_syscall_32+0x6a/0xc0 [ 898.113644][T17474] do_SYSENTER_32+0x73/0x90 [ 898.118221][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 898.124522][T17474] RIP: 0023:0xf7f58549 [ 898.128567][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 898.148155][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 898.156553][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 898.164501][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 898.172449][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 898.180413][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 898.188359][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 898.196308][T17474] Uninit was stored to memory at: [ 898.201319][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 898.207013][T17474] __msan_chain_origin+0x57/0xa0 [ 898.211980][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 898.217065][T17474] get_compat_msghdr+0x108/0x2b0 [ 898.222014][T17474] do_recvmmsg+0xdd1/0x22f0 [ 898.226496][T17474] __sys_recvmmsg+0x519/0x6f0 [ 898.231152][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 898.237201][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 898.243470][T17474] __do_fast_syscall_32+0x102/0x160 [ 898.248645][T17474] do_fast_syscall_32+0x6a/0xc0 [ 898.253559][T17474] do_SYSENTER_32+0x73/0x90 [ 898.258039][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 898.264390][T17474] [ 898.266725][T17474] Uninit was stored to memory at: [ 898.271758][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 898.277473][T17474] __msan_chain_origin+0x57/0xa0 [ 898.282387][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 898.287471][T17474] get_compat_msghdr+0x108/0x2b0 [ 898.292383][T17474] do_recvmmsg+0xdd1/0x22f0 [ 898.296860][T17474] __sys_recvmmsg+0x519/0x6f0 [ 898.301536][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 898.307591][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 898.313739][T17474] __do_fast_syscall_32+0x102/0x160 [ 898.318913][T17474] do_fast_syscall_32+0x6a/0xc0 [ 898.323743][T17474] do_SYSENTER_32+0x73/0x90 [ 898.328237][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 898.334622][T17474] [ 898.336933][T17474] Uninit was stored to memory at: [ 898.341975][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 898.347671][T17474] __msan_chain_origin+0x57/0xa0 [ 898.352593][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 898.357774][T17474] get_compat_msghdr+0x108/0x2b0 [ 898.362685][T17474] do_recvmmsg+0xdd1/0x22f0 [ 898.367163][T17474] __sys_recvmmsg+0x519/0x6f0 [ 898.371904][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 898.378033][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 898.384164][T17474] __do_fast_syscall_32+0x102/0x160 [ 898.389348][T17474] do_fast_syscall_32+0x6a/0xc0 [ 898.394175][T17474] do_SYSENTER_32+0x73/0x90 [ 898.398682][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 898.404982][T17474] [ 898.407293][T17474] Uninit was stored to memory at: [ 898.412302][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 898.417995][T17474] __msan_chain_origin+0x57/0xa0 [ 898.423003][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 898.428090][T17474] get_compat_msghdr+0x108/0x2b0 [ 898.433014][T17474] do_recvmmsg+0xdd1/0x22f0 [ 898.437492][T17474] __sys_recvmmsg+0x519/0x6f0 [ 898.442152][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 898.448197][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 898.454331][T17474] __do_fast_syscall_32+0x102/0x160 [ 898.459517][T17474] do_fast_syscall_32+0x6a/0xc0 [ 898.464361][T17474] do_SYSENTER_32+0x73/0x90 [ 898.468909][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 898.475238][T17474] [ 898.477542][T17474] Uninit was stored to memory at: [ 898.482543][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 898.488245][T17474] __msan_chain_origin+0x57/0xa0 [ 898.493268][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 898.498483][T17474] get_compat_msghdr+0x108/0x2b0 [ 898.503485][T17474] do_recvmmsg+0xdd1/0x22f0 [ 898.508134][T17474] __sys_recvmmsg+0x519/0x6f0 [ 898.512790][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 898.518869][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 898.525037][T17474] __do_fast_syscall_32+0x102/0x160 [ 898.530216][T17474] do_fast_syscall_32+0x6a/0xc0 [ 898.535044][T17474] do_SYSENTER_32+0x73/0x90 [ 898.539525][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 898.545824][T17474] [ 898.548139][T17474] Uninit was stored to memory at: [ 898.553156][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 898.558879][T17474] __msan_chain_origin+0x57/0xa0 [ 898.563801][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 898.568899][T17474] get_compat_msghdr+0x108/0x2b0 [ 898.573814][T17474] do_recvmmsg+0xdd1/0x22f0 [ 898.578295][T17474] __sys_recvmmsg+0x519/0x6f0 [ 898.582949][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 898.588990][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 898.595118][T17474] __do_fast_syscall_32+0x102/0x160 [ 898.600289][T17474] do_fast_syscall_32+0x6a/0xc0 [ 898.605115][T17474] do_SYSENTER_32+0x73/0x90 [ 898.609617][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 898.615910][T17474] [ 898.618213][T17474] Uninit was stored to memory at: [ 898.623240][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 898.628936][T17474] __msan_chain_origin+0x57/0xa0 [ 898.633858][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 898.639031][T17474] get_compat_msghdr+0x108/0x2b0 [ 898.643973][T17474] do_recvmmsg+0xdd1/0x22f0 [ 898.648551][T17474] __sys_recvmmsg+0x519/0x6f0 [ 898.653235][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 898.659276][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 898.665408][T17474] __do_fast_syscall_32+0x102/0x160 [ 898.670618][T17474] do_fast_syscall_32+0x6a/0xc0 [ 898.675448][T17474] do_SYSENTER_32+0x73/0x90 [ 898.680020][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 898.686319][T17474] [ 898.688676][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 898.695344][T17474] do_recvmmsg+0xbf/0x22f0 [ 898.699741][T17474] do_recvmmsg+0xbf/0x22f0 [ 898.936776][T17474] not chained 1760000 origins [ 898.941476][T17474] CPU: 1 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 898.950230][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 898.960295][T17474] Call Trace: [ 898.963590][T17474] dump_stack+0x21c/0x280 [ 898.967925][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 898.973759][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 898.978905][T17474] ? kmsan_get_metadata+0x116/0x180 [ 898.984136][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 898.989943][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 898.996010][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 899.000945][T17474] ? kmsan_get_metadata+0x116/0x180 [ 899.006141][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 899.011950][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 899.018015][T17474] ? kmsan_get_metadata+0x116/0x180 [ 899.023332][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 899.028965][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 899.035048][T17474] ? _copy_from_user+0x1fd/0x300 [ 899.039986][T17474] ? kmsan_get_metadata+0x116/0x180 [ 899.045182][T17474] __msan_chain_origin+0x57/0xa0 [ 899.050120][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 899.055239][T17474] get_compat_msghdr+0x108/0x2b0 [ 899.060189][T17474] do_recvmmsg+0xdd1/0x22f0 [ 899.064701][T17474] ? kmsan_get_metadata+0x116/0x180 [ 899.069909][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 899.075827][T17474] ? kmsan_get_metadata+0x116/0x180 [ 899.081024][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 899.086675][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 899.091978][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 899.096745][T17474] __sys_recvmmsg+0x519/0x6f0 [ 899.101465][T17474] ? kmsan_get_metadata+0x116/0x180 [ 899.106851][T17474] ? kmsan_get_metadata+0x116/0x180 [ 899.112058][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 899.118140][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 899.124300][T17474] __do_fast_syscall_32+0x102/0x160 [ 899.129514][T17474] do_fast_syscall_32+0x6a/0xc0 [ 899.134367][T17474] do_SYSENTER_32+0x73/0x90 [ 899.138895][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 899.145217][T17474] RIP: 0023:0xf7f58549 [ 899.149277][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 899.169129][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 899.177614][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 899.185566][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 899.193512][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 899.201459][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 899.209407][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 899.217369][T17474] Uninit was stored to memory at: [ 899.222382][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 899.228167][T17474] __msan_chain_origin+0x57/0xa0 [ 899.233082][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 899.238166][T17474] get_compat_msghdr+0x108/0x2b0 [ 899.243081][T17474] do_recvmmsg+0xdd1/0x22f0 [ 899.247579][T17474] __sys_recvmmsg+0x519/0x6f0 [ 899.252239][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 899.258292][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 899.264449][T17474] __do_fast_syscall_32+0x102/0x160 [ 899.269624][T17474] do_fast_syscall_32+0x6a/0xc0 [ 899.274449][T17474] do_SYSENTER_32+0x73/0x90 [ 899.278928][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 899.285220][T17474] [ 899.287521][T17474] Uninit was stored to memory at: [ 899.292533][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 899.298237][T17474] __msan_chain_origin+0x57/0xa0 [ 899.303170][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 899.308350][T17474] get_compat_msghdr+0x108/0x2b0 [ 899.313265][T17474] do_recvmmsg+0xdd1/0x22f0 [ 899.317763][T17474] __sys_recvmmsg+0x519/0x6f0 [ 899.322591][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 899.328634][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 899.334774][T17474] __do_fast_syscall_32+0x102/0x160 [ 899.339945][T17474] do_fast_syscall_32+0x6a/0xc0 [ 899.344779][T17474] do_SYSENTER_32+0x73/0x90 [ 899.349258][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 899.355639][T17474] [ 899.357946][T17474] Uninit was stored to memory at: [ 899.362960][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 899.368685][T17474] __msan_chain_origin+0x57/0xa0 [ 899.373619][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 899.378706][T17474] get_compat_msghdr+0x108/0x2b0 [ 899.383625][T17474] do_recvmmsg+0xdd1/0x22f0 [ 899.388103][T17474] __sys_recvmmsg+0x519/0x6f0 [ 899.392756][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 899.398803][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 899.404934][T17474] __do_fast_syscall_32+0x102/0x160 [ 899.410129][T17474] do_fast_syscall_32+0x6a/0xc0 [ 899.414962][T17474] do_SYSENTER_32+0x73/0x90 [ 899.419443][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 899.425744][T17474] [ 899.428055][T17474] Uninit was stored to memory at: [ 899.433058][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 899.438752][T17474] __msan_chain_origin+0x57/0xa0 [ 899.443664][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 899.448758][T17474] get_compat_msghdr+0x108/0x2b0 [ 899.453672][T17474] do_recvmmsg+0xdd1/0x22f0 [ 899.458157][T17474] __sys_recvmmsg+0x519/0x6f0 [ 899.462826][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 899.468958][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 899.475528][T17474] __do_fast_syscall_32+0x102/0x160 [ 899.480710][T17474] do_fast_syscall_32+0x6a/0xc0 [ 899.485541][T17474] do_SYSENTER_32+0x73/0x90 [ 899.490023][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 899.496326][T17474] [ 899.498717][T17474] Uninit was stored to memory at: [ 899.503720][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 899.509422][T17474] __msan_chain_origin+0x57/0xa0 [ 899.514356][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 899.519455][T17474] get_compat_msghdr+0x108/0x2b0 [ 899.524384][T17474] do_recvmmsg+0xdd1/0x22f0 [ 899.528871][T17474] __sys_recvmmsg+0x519/0x6f0 [ 899.533538][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 899.539587][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 899.545722][T17474] __do_fast_syscall_32+0x102/0x160 [ 899.550926][T17474] do_fast_syscall_32+0x6a/0xc0 [ 899.555751][T17474] do_SYSENTER_32+0x73/0x90 [ 899.560231][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 899.566530][T17474] [ 899.568843][T17474] Uninit was stored to memory at: [ 899.573847][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 899.579542][T17474] __msan_chain_origin+0x57/0xa0 [ 899.584468][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 899.589566][T17474] get_compat_msghdr+0x108/0x2b0 [ 899.594489][T17474] do_recvmmsg+0xdd1/0x22f0 [ 899.598984][T17474] __sys_recvmmsg+0x519/0x6f0 [ 899.603674][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 899.609727][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 899.616040][T17474] __do_fast_syscall_32+0x102/0x160 [ 899.621227][T17474] do_fast_syscall_32+0x6a/0xc0 [ 899.626071][T17474] do_SYSENTER_32+0x73/0x90 [ 899.630550][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 899.636845][T17474] [ 899.639147][T17474] Uninit was stored to memory at: [ 899.644236][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 899.649950][T17474] __msan_chain_origin+0x57/0xa0 [ 899.654890][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 899.659977][T17474] get_compat_msghdr+0x108/0x2b0 [ 899.664897][T17474] do_recvmmsg+0xdd1/0x22f0 [ 899.669393][T17474] __sys_recvmmsg+0x519/0x6f0 [ 899.674074][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 899.680136][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 899.686265][T17474] __do_fast_syscall_32+0x102/0x160 [ 899.691440][T17474] do_fast_syscall_32+0x6a/0xc0 [ 899.696265][T17474] do_SYSENTER_32+0x73/0x90 [ 899.700745][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 899.707067][T17474] [ 899.709376][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 899.716031][T17474] do_recvmmsg+0xbf/0x22f0 [ 899.720485][T17474] do_recvmmsg+0xbf/0x22f0 [ 899.971537][T17474] not chained 1770000 origins [ 899.976244][T17474] CPU: 1 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 899.985080][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 899.995131][T17474] Call Trace: [ 899.998421][T17474] dump_stack+0x21c/0x280 [ 900.002907][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 900.008649][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 900.013763][T17474] ? kmsan_get_metadata+0x116/0x180 [ 900.018974][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 900.024792][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 900.030866][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 900.035798][T17474] ? kmsan_get_metadata+0x116/0x180 [ 900.041001][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 900.046813][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 900.052890][T17474] ? kmsan_get_metadata+0x116/0x180 [ 900.058164][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 900.063776][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 900.069819][T17474] ? _copy_from_user+0x1fd/0x300 [ 900.074739][T17474] ? kmsan_get_metadata+0x116/0x180 [ 900.079917][T17474] __msan_chain_origin+0x57/0xa0 [ 900.084833][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 900.089931][T17474] get_compat_msghdr+0x108/0x2b0 [ 900.094858][T17474] do_recvmmsg+0xdd1/0x22f0 [ 900.099346][T17474] ? kmsan_get_metadata+0x116/0x180 [ 900.104560][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 900.110424][T17474] ? kmsan_get_metadata+0x116/0x180 [ 900.115591][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 900.121194][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 900.126452][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 900.131192][T17474] __sys_recvmmsg+0x519/0x6f0 [ 900.135841][T17474] ? kmsan_get_metadata+0x116/0x180 [ 900.141016][T17474] ? kmsan_get_metadata+0x116/0x180 [ 900.146190][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 900.152254][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 900.158396][T17474] __do_fast_syscall_32+0x102/0x160 [ 900.163585][T17474] do_fast_syscall_32+0x6a/0xc0 [ 900.168413][T17474] do_SYSENTER_32+0x73/0x90 [ 900.172899][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 900.179213][T17474] RIP: 0023:0xf7f58549 [ 900.183309][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 900.202989][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 900.211383][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 900.219331][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 900.227282][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 900.235321][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 900.243295][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 900.251253][T17474] Uninit was stored to memory at: [ 900.256265][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 900.261960][T17474] __msan_chain_origin+0x57/0xa0 [ 900.266912][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 900.272015][T17474] get_compat_msghdr+0x108/0x2b0 [ 900.276946][T17474] do_recvmmsg+0xdd1/0x22f0 [ 900.281540][T17474] __sys_recvmmsg+0x519/0x6f0 [ 900.286391][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 900.292523][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 900.298650][T17474] __do_fast_syscall_32+0x102/0x160 [ 900.303823][T17474] do_fast_syscall_32+0x6a/0xc0 [ 900.308649][T17474] do_SYSENTER_32+0x73/0x90 [ 900.313129][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 900.319434][T17474] [ 900.321754][T17474] Uninit was stored to memory at: [ 900.326757][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 900.332453][T17474] __msan_chain_origin+0x57/0xa0 [ 900.337454][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 900.342641][T17474] get_compat_msghdr+0x108/0x2b0 [ 900.347566][T17474] do_recvmmsg+0xdd1/0x22f0 [ 900.352045][T17474] __sys_recvmmsg+0x519/0x6f0 [ 900.356696][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 900.362739][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 900.368870][T17474] __do_fast_syscall_32+0x102/0x160 [ 900.374046][T17474] do_fast_syscall_32+0x6a/0xc0 [ 900.378873][T17474] do_SYSENTER_32+0x73/0x90 [ 900.383371][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 900.389756][T17474] [ 900.392062][T17474] Uninit was stored to memory at: [ 900.397071][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 900.402765][T17474] __msan_chain_origin+0x57/0xa0 [ 900.407687][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 900.412776][T17474] get_compat_msghdr+0x108/0x2b0 [ 900.417697][T17474] do_recvmmsg+0xdd1/0x22f0 [ 900.422179][T17474] __sys_recvmmsg+0x519/0x6f0 [ 900.426852][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 900.432899][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 900.439046][T17474] __do_fast_syscall_32+0x102/0x160 [ 900.444238][T17474] do_fast_syscall_32+0x6a/0xc0 [ 900.449067][T17474] do_SYSENTER_32+0x73/0x90 [ 900.453644][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 900.459938][T17474] [ 900.462250][T17474] Uninit was stored to memory at: [ 900.467257][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 900.472954][T17474] __msan_chain_origin+0x57/0xa0 [ 900.477871][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 900.482974][T17474] get_compat_msghdr+0x108/0x2b0 [ 900.487903][T17474] do_recvmmsg+0xdd1/0x22f0 [ 900.492394][T17474] __sys_recvmmsg+0x519/0x6f0 [ 900.497048][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 900.503099][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 900.509230][T17474] __do_fast_syscall_32+0x102/0x160 [ 900.514500][T17474] do_fast_syscall_32+0x6a/0xc0 [ 900.519323][T17474] do_SYSENTER_32+0x73/0x90 [ 900.523805][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 900.530100][T17474] [ 900.532401][T17474] Uninit was stored to memory at: [ 900.537398][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 900.543091][T17474] __msan_chain_origin+0x57/0xa0 [ 900.548005][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 900.553095][T17474] get_compat_msghdr+0x108/0x2b0 [ 900.558007][T17474] do_recvmmsg+0xdd1/0x22f0 [ 900.562492][T17474] __sys_recvmmsg+0x519/0x6f0 [ 900.567145][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 900.573285][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 900.579422][T17474] __do_fast_syscall_32+0x102/0x160 [ 900.584627][T17474] do_fast_syscall_32+0x6a/0xc0 [ 900.589570][T17474] do_SYSENTER_32+0x73/0x90 [ 900.594065][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 900.600445][T17474] [ 900.602751][T17474] Uninit was stored to memory at: [ 900.607924][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 900.613742][T17474] __msan_chain_origin+0x57/0xa0 [ 900.618745][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 900.623887][T17474] get_compat_msghdr+0x108/0x2b0 [ 900.628919][T17474] do_recvmmsg+0xdd1/0x22f0 [ 900.633487][T17474] __sys_recvmmsg+0x519/0x6f0 [ 900.638162][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 900.644245][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 900.650378][T17474] __do_fast_syscall_32+0x102/0x160 [ 900.655679][T17474] do_fast_syscall_32+0x6a/0xc0 [ 900.660519][T17474] do_SYSENTER_32+0x73/0x90 [ 900.665006][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 900.671309][T17474] [ 900.673617][T17474] Uninit was stored to memory at: [ 900.678617][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 900.684311][T17474] __msan_chain_origin+0x57/0xa0 [ 900.689310][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 900.694404][T17474] get_compat_msghdr+0x108/0x2b0 [ 900.699326][T17474] do_recvmmsg+0xdd1/0x22f0 [ 900.703806][T17474] __sys_recvmmsg+0x519/0x6f0 [ 900.708461][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 900.714508][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 900.720649][T17474] __do_fast_syscall_32+0x102/0x160 [ 900.725824][T17474] do_fast_syscall_32+0x6a/0xc0 [ 900.730660][T17474] do_SYSENTER_32+0x73/0x90 [ 900.735141][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 900.741432][T17474] [ 900.743735][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 900.750394][T17474] do_recvmmsg+0xbf/0x22f0 [ 900.754795][T17474] do_recvmmsg+0xbf/0x22f0 [ 901.048795][T17474] not chained 1780000 origins [ 901.053512][T17474] CPU: 0 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 901.062531][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 901.072580][T17474] Call Trace: [ 901.075874][T17474] dump_stack+0x21c/0x280 [ 901.080214][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 901.085939][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 901.091053][T17474] ? kmsan_get_metadata+0x116/0x180 [ 901.096251][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 901.102059][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 901.108132][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 901.113074][T17474] ? kmsan_get_metadata+0x116/0x180 [ 901.118277][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 901.124088][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 901.130241][T17474] ? kmsan_get_metadata+0x116/0x180 [ 901.135512][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 901.141158][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 901.147229][T17474] ? _copy_from_user+0x1fd/0x300 [ 901.152168][T17474] ? kmsan_get_metadata+0x116/0x180 [ 901.157363][T17474] __msan_chain_origin+0x57/0xa0 [ 901.162304][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 901.167524][T17474] get_compat_msghdr+0x108/0x2b0 [ 901.172471][T17474] do_recvmmsg+0xdd1/0x22f0 [ 901.176968][T17474] ? kmsan_get_metadata+0x116/0x180 [ 901.182145][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 901.188011][T17474] ? kmsan_get_metadata+0x116/0x180 [ 901.193186][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 901.198794][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 901.204073][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 901.208827][T17474] __sys_recvmmsg+0x519/0x6f0 [ 901.213512][T17474] ? kmsan_get_metadata+0x116/0x180 [ 901.218696][T17474] ? kmsan_get_metadata+0x116/0x180 [ 901.223928][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 901.229979][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 901.236115][T17474] __do_fast_syscall_32+0x102/0x160 [ 901.241407][T17474] do_fast_syscall_32+0x6a/0xc0 [ 901.246235][T17474] do_SYSENTER_32+0x73/0x90 [ 901.250718][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 901.257018][T17474] RIP: 0023:0xf7f58549 [ 901.261062][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 901.280646][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 901.289122][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 901.297081][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 901.305059][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 901.313016][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 901.320974][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 901.329032][T17474] Uninit was stored to memory at: [ 901.334049][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 901.339846][T17474] __msan_chain_origin+0x57/0xa0 [ 901.344760][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 901.349845][T17474] get_compat_msghdr+0x108/0x2b0 [ 901.354759][T17474] do_recvmmsg+0xdd1/0x22f0 [ 901.359237][T17474] __sys_recvmmsg+0x519/0x6f0 [ 901.363906][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 901.369959][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 901.376089][T17474] __do_fast_syscall_32+0x102/0x160 [ 901.381272][T17474] do_fast_syscall_32+0x6a/0xc0 [ 901.386110][T17474] do_SYSENTER_32+0x73/0x90 [ 901.390608][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 901.396908][T17474] [ 901.399208][T17474] Uninit was stored to memory at: [ 901.404235][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 901.409943][T17474] __msan_chain_origin+0x57/0xa0 [ 901.414870][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 901.419955][T17474] get_compat_msghdr+0x108/0x2b0 [ 901.424891][T17474] do_recvmmsg+0xdd1/0x22f0 [ 901.429377][T17474] __sys_recvmmsg+0x519/0x6f0 [ 901.434121][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 901.440176][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 901.446327][T17474] __do_fast_syscall_32+0x102/0x160 [ 901.451508][T17474] do_fast_syscall_32+0x6a/0xc0 [ 901.456331][T17474] do_SYSENTER_32+0x73/0x90 [ 901.460813][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 901.467108][T17474] [ 901.469411][T17474] Uninit was stored to memory at: [ 901.474449][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 901.480153][T17474] __msan_chain_origin+0x57/0xa0 [ 901.485089][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 901.490198][T17474] get_compat_msghdr+0x108/0x2b0 [ 901.495120][T17474] do_recvmmsg+0xdd1/0x22f0 [ 901.499600][T17474] __sys_recvmmsg+0x519/0x6f0 [ 901.504260][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 901.510318][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 901.516466][T17474] __do_fast_syscall_32+0x102/0x160 [ 901.521652][T17474] do_fast_syscall_32+0x6a/0xc0 [ 901.526652][T17474] do_SYSENTER_32+0x73/0x90 [ 901.531133][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 901.537427][T17474] [ 901.539732][T17474] Uninit was stored to memory at: [ 901.544827][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 901.550532][T17474] __msan_chain_origin+0x57/0xa0 [ 901.555451][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 901.560627][T17474] get_compat_msghdr+0x108/0x2b0 [ 901.565539][T17474] do_recvmmsg+0xdd1/0x22f0 [ 901.570115][T17474] __sys_recvmmsg+0x519/0x6f0 [ 901.574826][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 901.580868][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 901.587012][T17474] __do_fast_syscall_32+0x102/0x160 [ 901.592199][T17474] do_fast_syscall_32+0x6a/0xc0 [ 901.597052][T17474] do_SYSENTER_32+0x73/0x90 [ 901.601535][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 901.607830][T17474] [ 901.610137][T17474] Uninit was stored to memory at: [ 901.615150][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 901.620844][T17474] __msan_chain_origin+0x57/0xa0 [ 901.625756][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 901.630842][T17474] get_compat_msghdr+0x108/0x2b0 [ 901.635765][T17474] do_recvmmsg+0xdd1/0x22f0 [ 901.640258][T17474] __sys_recvmmsg+0x519/0x6f0 [ 901.644954][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 901.651018][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 901.657186][T17474] __do_fast_syscall_32+0x102/0x160 [ 901.662362][T17474] do_fast_syscall_32+0x6a/0xc0 [ 901.667245][T17474] do_SYSENTER_32+0x73/0x90 [ 901.671727][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 901.678017][T17474] [ 901.680325][T17474] Uninit was stored to memory at: [ 901.685443][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 901.691226][T17474] __msan_chain_origin+0x57/0xa0 [ 901.696230][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 901.701329][T17474] get_compat_msghdr+0x108/0x2b0 [ 901.706243][T17474] do_recvmmsg+0xdd1/0x22f0 [ 901.710810][T17474] __sys_recvmmsg+0x519/0x6f0 [ 901.715567][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 901.721626][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 901.727759][T17474] __do_fast_syscall_32+0x102/0x160 [ 901.732932][T17474] do_fast_syscall_32+0x6a/0xc0 [ 901.737759][T17474] do_SYSENTER_32+0x73/0x90 [ 901.742243][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 901.748543][T17474] [ 901.750843][T17474] Uninit was stored to memory at: [ 901.755843][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 901.761547][T17474] __msan_chain_origin+0x57/0xa0 [ 901.766474][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 901.771571][T17474] get_compat_msghdr+0x108/0x2b0 [ 901.776484][T17474] do_recvmmsg+0xdd1/0x22f0 [ 901.780962][T17474] __sys_recvmmsg+0x519/0x6f0 [ 901.785627][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 901.791671][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 901.797888][T17474] __do_fast_syscall_32+0x102/0x160 [ 901.803073][T17474] do_fast_syscall_32+0x6a/0xc0 [ 901.807899][T17474] do_SYSENTER_32+0x73/0x90 [ 901.812381][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 901.818684][T17474] [ 901.821002][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 901.827650][T17474] do_recvmmsg+0xbf/0x22f0 [ 901.832044][T17474] do_recvmmsg+0xbf/0x22f0 [ 902.117089][T17474] not chained 1790000 origins [ 902.121835][T17474] CPU: 0 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 902.130671][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 902.140724][T17474] Call Trace: [ 902.144026][T17474] dump_stack+0x21c/0x280 [ 902.148456][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 902.154184][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 902.159298][T17474] ? kmsan_get_metadata+0x116/0x180 [ 902.164502][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 902.170311][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 902.176354][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 902.181268][T17474] ? kmsan_get_metadata+0x116/0x180 [ 902.186530][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 902.192400][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 902.198448][T17474] ? kmsan_get_metadata+0x116/0x180 [ 902.203642][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 902.209268][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 902.215314][T17474] ? _copy_from_user+0x1fd/0x300 [ 902.220228][T17474] ? kmsan_get_metadata+0x116/0x180 [ 902.225409][T17474] __msan_chain_origin+0x57/0xa0 [ 902.230330][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 902.235450][T17474] get_compat_msghdr+0x108/0x2b0 [ 902.240383][T17474] do_recvmmsg+0xdd1/0x22f0 [ 902.244869][T17474] ? kmsan_get_metadata+0x116/0x180 [ 902.250056][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 902.255935][T17474] ? kmsan_get_metadata+0x116/0x180 [ 902.261111][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 902.266724][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 902.272039][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 902.276777][T17474] __sys_recvmmsg+0x519/0x6f0 [ 902.281432][T17474] ? kmsan_get_metadata+0x116/0x180 [ 902.286606][T17474] ? kmsan_get_metadata+0x116/0x180 [ 902.291786][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 902.297832][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 902.303967][T17474] __do_fast_syscall_32+0x102/0x160 [ 902.309146][T17474] do_fast_syscall_32+0x6a/0xc0 [ 902.313978][T17474] do_SYSENTER_32+0x73/0x90 [ 902.318467][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 902.324783][T17474] RIP: 0023:0xf7f58549 [ 902.328843][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 902.348434][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 902.356835][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 902.364794][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 902.372746][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 902.380697][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 902.388643][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 902.396595][T17474] Uninit was stored to memory at: [ 902.401605][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 902.407312][T17474] __msan_chain_origin+0x57/0xa0 [ 902.412315][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 902.417409][T17474] get_compat_msghdr+0x108/0x2b0 [ 902.422348][T17474] do_recvmmsg+0xdd1/0x22f0 [ 902.426910][T17474] __sys_recvmmsg+0x519/0x6f0 [ 902.431600][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 902.437662][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 902.443974][T17474] __do_fast_syscall_32+0x102/0x160 [ 902.449150][T17474] do_fast_syscall_32+0x6a/0xc0 [ 902.453999][T17474] do_SYSENTER_32+0x73/0x90 [ 902.458483][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 902.464786][T17474] [ 902.467091][T17474] Uninit was stored to memory at: [ 902.472117][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 902.477846][T17474] __msan_chain_origin+0x57/0xa0 [ 902.482773][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 902.487864][T17474] get_compat_msghdr+0x108/0x2b0 [ 902.492801][T17474] do_recvmmsg+0xdd1/0x22f0 [ 902.497286][T17474] __sys_recvmmsg+0x519/0x6f0 [ 902.501944][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 902.507990][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 902.514133][T17474] __do_fast_syscall_32+0x102/0x160 [ 902.519316][T17474] do_fast_syscall_32+0x6a/0xc0 [ 902.524174][T17474] do_SYSENTER_32+0x73/0x90 [ 902.528662][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 902.534964][T17474] [ 902.537292][T17474] Uninit was stored to memory at: [ 902.542312][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 902.548020][T17474] __msan_chain_origin+0x57/0xa0 [ 902.552966][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 902.558055][T17474] get_compat_msghdr+0x108/0x2b0 [ 902.562969][T17474] do_recvmmsg+0xdd1/0x22f0 [ 902.567448][T17474] __sys_recvmmsg+0x519/0x6f0 [ 902.572106][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 902.578170][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 902.584316][T17474] __do_fast_syscall_32+0x102/0x160 [ 902.589490][T17474] do_fast_syscall_32+0x6a/0xc0 [ 902.594334][T17474] do_SYSENTER_32+0x73/0x90 [ 902.598818][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 902.605132][T17474] [ 902.607436][T17474] Uninit was stored to memory at: [ 902.612440][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 902.618134][T17474] __msan_chain_origin+0x57/0xa0 [ 902.623049][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 902.628137][T17474] get_compat_msghdr+0x108/0x2b0 [ 902.633063][T17474] do_recvmmsg+0xdd1/0x22f0 [ 902.637554][T17474] __sys_recvmmsg+0x519/0x6f0 [ 902.642232][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 902.648287][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 902.654422][T17474] __do_fast_syscall_32+0x102/0x160 [ 902.659706][T17474] do_fast_syscall_32+0x6a/0xc0 [ 902.664551][T17474] do_SYSENTER_32+0x73/0x90 [ 902.669034][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 902.675332][T17474] [ 902.677660][T17474] Uninit was stored to memory at: [ 902.682664][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 902.688358][T17474] __msan_chain_origin+0x57/0xa0 [ 902.693273][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 902.698359][T17474] get_compat_msghdr+0x108/0x2b0 [ 902.703274][T17474] do_recvmmsg+0xdd1/0x22f0 [ 902.707757][T17474] __sys_recvmmsg+0x519/0x6f0 [ 902.712431][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 902.718473][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 902.724607][T17474] __do_fast_syscall_32+0x102/0x160 [ 902.729802][T17474] do_fast_syscall_32+0x6a/0xc0 [ 902.734877][T17474] do_SYSENTER_32+0x73/0x90 [ 902.739384][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 902.745691][T17474] [ 902.748022][T17474] Uninit was stored to memory at: [ 902.753044][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 902.758761][T17474] __msan_chain_origin+0x57/0xa0 [ 902.763702][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 902.768808][T17474] get_compat_msghdr+0x108/0x2b0 [ 902.773758][T17474] do_recvmmsg+0xdd1/0x22f0 [ 902.778270][T17474] __sys_recvmmsg+0x519/0x6f0 [ 902.782942][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 902.789009][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 902.795155][T17474] __do_fast_syscall_32+0x102/0x160 [ 902.800347][T17474] do_fast_syscall_32+0x6a/0xc0 [ 902.805194][T17474] do_SYSENTER_32+0x73/0x90 [ 902.809691][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 902.815995][T17474] [ 902.818308][T17474] Uninit was stored to memory at: [ 902.823322][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 902.829058][T17474] __msan_chain_origin+0x57/0xa0 [ 902.833993][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 902.839128][T17474] get_compat_msghdr+0x108/0x2b0 [ 902.844059][T17474] do_recvmmsg+0xdd1/0x22f0 [ 902.848733][T17474] __sys_recvmmsg+0x519/0x6f0 [ 902.853728][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 902.859784][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 902.865953][T17474] __do_fast_syscall_32+0x102/0x160 [ 902.871141][T17474] do_fast_syscall_32+0x6a/0xc0 [ 902.875984][T17474] do_SYSENTER_32+0x73/0x90 [ 902.880493][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 902.886796][T17474] [ 902.889111][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 902.895791][T17474] do_recvmmsg+0xbf/0x22f0 [ 902.900219][T17474] do_recvmmsg+0xbf/0x22f0 [ 903.181452][T17474] not chained 1800000 origins [ 903.186188][T17474] CPU: 0 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 903.194945][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 903.205108][T17474] Call Trace: [ 903.208407][T17474] dump_stack+0x21c/0x280 [ 903.212745][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 903.218496][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 903.223618][T17474] ? kmsan_get_metadata+0x116/0x180 [ 903.228834][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 903.234661][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 903.240763][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 903.245706][T17474] ? kmsan_get_metadata+0x116/0x180 [ 903.250916][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 903.256730][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 903.262896][T17474] ? kmsan_get_metadata+0x116/0x180 [ 903.268098][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 903.273742][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 903.279813][T17474] ? _copy_from_user+0x1fd/0x300 [ 903.284753][T17474] ? kmsan_get_metadata+0x116/0x180 [ 903.289953][T17474] __msan_chain_origin+0x57/0xa0 [ 903.294902][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 903.300027][T17474] get_compat_msghdr+0x108/0x2b0 [ 903.304974][T17474] do_recvmmsg+0xdd1/0x22f0 [ 903.309480][T17474] ? kmsan_get_metadata+0x116/0x180 [ 903.314705][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 903.320624][T17474] ? kmsan_get_metadata+0x116/0x180 [ 903.325837][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 903.331477][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 903.336764][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 903.341530][T17474] __sys_recvmmsg+0x519/0x6f0 [ 903.346211][T17474] ? kmsan_get_metadata+0x116/0x180 [ 903.351418][T17474] ? kmsan_get_metadata+0x116/0x180 [ 903.356716][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 903.362783][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 903.369003][T17474] __do_fast_syscall_32+0x102/0x160 [ 903.374181][T17474] do_fast_syscall_32+0x6a/0xc0 [ 903.379061][T17474] do_SYSENTER_32+0x73/0x90 [ 903.383549][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 903.389871][T17474] RIP: 0023:0xf7f58549 [ 903.393968][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 903.413895][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 903.422289][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 903.430263][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 903.438222][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 903.446193][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 903.454154][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 903.462120][T17474] Uninit was stored to memory at: [ 903.467264][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 903.472979][T17474] __msan_chain_origin+0x57/0xa0 [ 903.477896][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 903.482996][T17474] get_compat_msghdr+0x108/0x2b0 [ 903.487923][T17474] do_recvmmsg+0xdd1/0x22f0 [ 903.492407][T17474] __sys_recvmmsg+0x519/0x6f0 [ 903.497161][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 903.503212][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 903.509348][T17474] __do_fast_syscall_32+0x102/0x160 [ 903.514550][T17474] do_fast_syscall_32+0x6a/0xc0 [ 903.519417][T17474] do_SYSENTER_32+0x73/0x90 [ 903.523899][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 903.530218][T17474] [ 903.532533][T17474] Uninit was stored to memory at: [ 903.537538][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 903.543351][T17474] __msan_chain_origin+0x57/0xa0 [ 903.548295][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 903.553396][T17474] get_compat_msghdr+0x108/0x2b0 [ 903.558325][T17474] do_recvmmsg+0xdd1/0x22f0 [ 903.562840][T17474] __sys_recvmmsg+0x519/0x6f0 [ 903.567524][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 903.573588][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 903.579739][T17474] __do_fast_syscall_32+0x102/0x160 [ 903.584924][T17474] do_fast_syscall_32+0x6a/0xc0 [ 903.589761][T17474] do_SYSENTER_32+0x73/0x90 [ 903.594278][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 903.600678][T17474] [ 903.603047][T17474] Uninit was stored to memory at: [ 903.608051][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 903.613766][T17474] __msan_chain_origin+0x57/0xa0 [ 903.618682][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 903.623778][T17474] get_compat_msghdr+0x108/0x2b0 [ 903.628697][T17474] do_recvmmsg+0xdd1/0x22f0 [ 903.633193][T17474] __sys_recvmmsg+0x519/0x6f0 [ 903.637887][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 903.643967][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 903.650121][T17474] __do_fast_syscall_32+0x102/0x160 [ 903.655313][T17474] do_fast_syscall_32+0x6a/0xc0 [ 903.660157][T17474] do_SYSENTER_32+0x73/0x90 [ 903.664715][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 903.671020][T17474] [ 903.673334][T17474] Uninit was stored to memory at: [ 903.678384][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 903.684093][T17474] __msan_chain_origin+0x57/0xa0 [ 903.689022][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 903.694113][T17474] get_compat_msghdr+0x108/0x2b0 [ 903.699147][T17474] do_recvmmsg+0xdd1/0x22f0 [ 903.703636][T17474] __sys_recvmmsg+0x519/0x6f0 [ 903.708296][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 903.714354][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 903.720528][T17474] __do_fast_syscall_32+0x102/0x160 [ 903.725815][T17474] do_fast_syscall_32+0x6a/0xc0 [ 903.730658][T17474] do_SYSENTER_32+0x73/0x90 [ 903.735151][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 903.741453][T17474] [ 903.743789][T17474] Uninit was stored to memory at: [ 903.748793][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 903.754491][T17474] __msan_chain_origin+0x57/0xa0 [ 903.759408][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 903.764514][T17474] get_compat_msghdr+0x108/0x2b0 [ 903.769458][T17474] do_recvmmsg+0xdd1/0x22f0 [ 903.773944][T17474] __sys_recvmmsg+0x519/0x6f0 [ 903.778603][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 903.784651][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 903.790795][T17474] __do_fast_syscall_32+0x102/0x160 [ 903.796000][T17474] do_fast_syscall_32+0x6a/0xc0 [ 903.800840][T17474] do_SYSENTER_32+0x73/0x90 [ 903.805334][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 903.811654][T17474] [ 903.813964][T17474] Uninit was stored to memory at: [ 903.818970][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 903.824671][T17474] __msan_chain_origin+0x57/0xa0 [ 903.829590][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 903.834680][T17474] get_compat_msghdr+0x108/0x2b0 [ 903.839597][T17474] do_recvmmsg+0xdd1/0x22f0 [ 903.844083][T17474] __sys_recvmmsg+0x519/0x6f0 [ 903.848746][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 903.854817][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 903.860976][T17474] __do_fast_syscall_32+0x102/0x160 [ 903.866178][T17474] do_fast_syscall_32+0x6a/0xc0 [ 903.871037][T17474] do_SYSENTER_32+0x73/0x90 [ 903.875544][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 903.881840][T17474] [ 903.884142][T17474] Uninit was stored to memory at: [ 903.889161][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 903.894857][T17474] __msan_chain_origin+0x57/0xa0 [ 903.899781][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 903.904885][T17474] get_compat_msghdr+0x108/0x2b0 [ 903.909814][T17474] do_recvmmsg+0xdd1/0x22f0 [ 903.914294][T17474] __sys_recvmmsg+0x519/0x6f0 [ 903.918960][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 903.925022][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 903.931179][T17474] __do_fast_syscall_32+0x102/0x160 [ 903.936379][T17474] do_fast_syscall_32+0x6a/0xc0 [ 903.941220][T17474] do_SYSENTER_32+0x73/0x90 [ 903.945730][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 903.952034][T17474] [ 903.954391][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 903.961070][T17474] do_recvmmsg+0xbf/0x22f0 [ 903.965478][T17474] do_recvmmsg+0xbf/0x22f0 [ 904.226690][T17474] not chained 1810000 origins [ 904.231406][T17474] CPU: 0 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 904.240245][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 904.250308][T17474] Call Trace: [ 904.253609][T17474] dump_stack+0x21c/0x280 [ 904.257950][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 904.263695][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 904.268811][T17474] ? kmsan_get_metadata+0x116/0x180 [ 904.274013][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 904.279826][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 904.285900][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 904.290844][T17474] ? kmsan_get_metadata+0x116/0x180 [ 904.296397][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 904.302207][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 904.308281][T17474] ? kmsan_get_metadata+0x116/0x180 [ 904.313480][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 904.319120][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 904.325205][T17474] ? _copy_from_user+0x1fd/0x300 [ 904.330146][T17474] ? kmsan_get_metadata+0x116/0x180 [ 904.335348][T17474] __msan_chain_origin+0x57/0xa0 [ 904.340291][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 904.345538][T17474] get_compat_msghdr+0x108/0x2b0 [ 904.350510][T17474] do_recvmmsg+0xdd1/0x22f0 [ 904.355021][T17474] ? kmsan_get_metadata+0x116/0x180 [ 904.360225][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 904.366154][T17474] ? kmsan_get_metadata+0x116/0x180 [ 904.371355][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 904.376990][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 904.382279][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 904.387075][T17474] __sys_recvmmsg+0x519/0x6f0 [ 904.391771][T17474] ? kmsan_get_metadata+0x116/0x180 [ 904.396973][T17474] ? kmsan_get_metadata+0x116/0x180 [ 904.402178][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 904.408262][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 904.414428][T17474] __do_fast_syscall_32+0x102/0x160 [ 904.419635][T17474] do_fast_syscall_32+0x6a/0xc0 [ 904.424493][T17474] do_SYSENTER_32+0x73/0x90 [ 904.429005][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 904.435330][T17474] RIP: 0023:0xf7f58549 [ 904.439404][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 904.459101][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 904.467524][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 904.475504][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 904.483478][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 904.491453][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 904.499440][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 904.507415][T17474] Uninit was stored to memory at: [ 904.512457][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 904.518179][T17474] __msan_chain_origin+0x57/0xa0 [ 904.523120][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 904.528230][T17474] get_compat_msghdr+0x108/0x2b0 [ 904.533170][T17474] do_recvmmsg+0xdd1/0x22f0 [ 904.537678][T17474] __sys_recvmmsg+0x519/0x6f0 [ 904.542350][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 904.548406][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 904.554615][T17474] __do_fast_syscall_32+0x102/0x160 [ 904.559792][T17474] do_fast_syscall_32+0x6a/0xc0 [ 904.564625][T17474] do_SYSENTER_32+0x73/0x90 [ 904.569188][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 904.575528][T17474] [ 904.577835][T17474] Uninit was stored to memory at: [ 904.582851][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 904.588716][T17474] __msan_chain_origin+0x57/0xa0 [ 904.593651][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 904.598908][T17474] get_compat_msghdr+0x108/0x2b0 [ 904.603830][T17474] do_recvmmsg+0xdd1/0x22f0 [ 904.608359][T17474] __sys_recvmmsg+0x519/0x6f0 [ 904.613016][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 904.619061][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 904.625196][T17474] __do_fast_syscall_32+0x102/0x160 [ 904.630480][T17474] do_fast_syscall_32+0x6a/0xc0 [ 904.635321][T17474] do_SYSENTER_32+0x73/0x90 [ 904.639813][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 904.646147][T17474] [ 904.648460][T17474] Uninit was stored to memory at: [ 904.653465][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 904.659163][T17474] __msan_chain_origin+0x57/0xa0 [ 904.664080][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 904.669170][T17474] get_compat_msghdr+0x108/0x2b0 [ 904.674100][T17474] do_recvmmsg+0xdd1/0x22f0 [ 904.678595][T17474] __sys_recvmmsg+0x519/0x6f0 [ 904.683251][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 904.689320][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 904.695475][T17474] __do_fast_syscall_32+0x102/0x160 [ 904.700655][T17474] do_fast_syscall_32+0x6a/0xc0 [ 904.705532][T17474] do_SYSENTER_32+0x73/0x90 [ 904.710036][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 904.716341][T17474] [ 904.718644][T17474] Uninit was stored to memory at: [ 904.723648][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 904.729343][T17474] __msan_chain_origin+0x57/0xa0 [ 904.734261][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 904.739458][T17474] get_compat_msghdr+0x108/0x2b0 [ 904.744377][T17474] do_recvmmsg+0xdd1/0x22f0 [ 904.748855][T17474] __sys_recvmmsg+0x519/0x6f0 [ 904.753511][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 904.759563][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 904.765693][T17474] __do_fast_syscall_32+0x102/0x160 [ 904.770881][T17474] do_fast_syscall_32+0x6a/0xc0 [ 904.775720][T17474] do_SYSENTER_32+0x73/0x90 [ 904.780216][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 904.786533][T17474] [ 904.788842][T17474] Uninit was stored to memory at: [ 904.793858][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 904.799562][T17474] __msan_chain_origin+0x57/0xa0 [ 904.804476][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 904.809562][T17474] get_compat_msghdr+0x108/0x2b0 [ 904.814478][T17474] do_recvmmsg+0xdd1/0x22f0 [ 904.818984][T17474] __sys_recvmmsg+0x519/0x6f0 [ 904.823747][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 904.829796][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 904.835941][T17474] __do_fast_syscall_32+0x102/0x160 [ 904.841134][T17474] do_fast_syscall_32+0x6a/0xc0 [ 904.846048][T17474] do_SYSENTER_32+0x73/0x90 [ 904.850542][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 904.856848][T17474] [ 904.859152][T17474] Uninit was stored to memory at: [ 904.864153][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 904.869849][T17474] __msan_chain_origin+0x57/0xa0 [ 904.874762][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 904.879852][T17474] get_compat_msghdr+0x108/0x2b0 [ 904.884791][T17474] do_recvmmsg+0xdd1/0x22f0 [ 904.889280][T17474] __sys_recvmmsg+0x519/0x6f0 [ 904.894059][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 904.900128][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 904.906271][T17474] __do_fast_syscall_32+0x102/0x160 [ 904.911459][T17474] do_fast_syscall_32+0x6a/0xc0 [ 904.916307][T17474] do_SYSENTER_32+0x73/0x90 [ 904.920788][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 904.927086][T17474] [ 904.929648][T17474] Uninit was stored to memory at: [ 904.934665][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 904.940373][T17474] __msan_chain_origin+0x57/0xa0 [ 904.945312][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 904.950404][T17474] get_compat_msghdr+0x108/0x2b0 [ 904.955338][T17474] do_recvmmsg+0xdd1/0x22f0 [ 904.959816][T17474] __sys_recvmmsg+0x519/0x6f0 [ 904.964471][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 904.970703][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 904.976847][T17474] __do_fast_syscall_32+0x102/0x160 [ 904.982029][T17474] do_fast_syscall_32+0x6a/0xc0 [ 904.986865][T17474] do_SYSENTER_32+0x73/0x90 [ 904.991379][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 904.997698][T17474] [ 905.000021][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 905.006782][T17474] do_recvmmsg+0xbf/0x22f0 [ 905.011249][T17474] do_recvmmsg+0xbf/0x22f0 [ 905.278587][T17474] not chained 1820000 origins [ 905.283298][T17474] CPU: 0 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 905.292249][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 905.302303][T17474] Call Trace: [ 905.305617][T17474] dump_stack+0x21c/0x280 [ 905.309925][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 905.315629][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 905.320759][T17474] ? kmsan_get_metadata+0x116/0x180 [ 905.325946][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 905.332269][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 905.338363][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 905.343281][T17474] ? kmsan_get_metadata+0x116/0x180 [ 905.348491][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 905.354278][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 905.360409][T17474] ? kmsan_get_metadata+0x116/0x180 [ 905.365582][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 905.371194][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 905.377236][T17474] ? _copy_from_user+0x1fd/0x300 [ 905.382152][T17474] ? kmsan_get_metadata+0x116/0x180 [ 905.387326][T17474] __msan_chain_origin+0x57/0xa0 [ 905.392244][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 905.397334][T17474] get_compat_msghdr+0x108/0x2b0 [ 905.402279][T17474] do_recvmmsg+0xdd1/0x22f0 [ 905.406777][T17474] ? kmsan_get_metadata+0x116/0x180 [ 905.412041][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 905.417912][T17474] ? kmsan_get_metadata+0x116/0x180 [ 905.423098][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 905.428706][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 905.433985][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 905.438749][T17474] __sys_recvmmsg+0x519/0x6f0 [ 905.443458][T17474] ? kmsan_get_metadata+0x116/0x180 [ 905.448644][T17474] ? kmsan_get_metadata+0x116/0x180 [ 905.453917][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 905.460007][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 905.466153][T17474] __do_fast_syscall_32+0x102/0x160 [ 905.471341][T17474] do_fast_syscall_32+0x6a/0xc0 [ 905.476171][T17474] do_SYSENTER_32+0x73/0x90 [ 905.480655][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 905.486956][T17474] RIP: 0023:0xf7f58549 [ 905.491017][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 905.510616][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 905.519026][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 905.526977][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 905.534931][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 905.542892][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 905.550856][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 905.558910][T17474] Uninit was stored to memory at: [ 905.563968][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 905.569675][T17474] __msan_chain_origin+0x57/0xa0 [ 905.574593][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 905.579692][T17474] get_compat_msghdr+0x108/0x2b0 [ 905.584611][T17474] do_recvmmsg+0xdd1/0x22f0 [ 905.589093][T17474] __sys_recvmmsg+0x519/0x6f0 [ 905.593927][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 905.599986][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 905.606241][T17474] __do_fast_syscall_32+0x102/0x160 [ 905.611496][T17474] do_fast_syscall_32+0x6a/0xc0 [ 905.616323][T17474] do_SYSENTER_32+0x73/0x90 [ 905.620806][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 905.627102][T17474] [ 905.629400][T17474] Uninit was stored to memory at: [ 905.634457][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 905.640168][T17474] __msan_chain_origin+0x57/0xa0 [ 905.645098][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 905.650198][T17474] get_compat_msghdr+0x108/0x2b0 [ 905.655126][T17474] do_recvmmsg+0xdd1/0x22f0 [ 905.659609][T17474] __sys_recvmmsg+0x519/0x6f0 [ 905.664372][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 905.670505][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 905.676639][T17474] __do_fast_syscall_32+0x102/0x160 [ 905.681827][T17474] do_fast_syscall_32+0x6a/0xc0 [ 905.686654][T17474] do_SYSENTER_32+0x73/0x90 [ 905.691140][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 905.697435][T17474] [ 905.699736][T17474] Uninit was stored to memory at: [ 905.704815][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 905.710525][T17474] __msan_chain_origin+0x57/0xa0 [ 905.715454][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 905.720544][T17474] get_compat_msghdr+0x108/0x2b0 [ 905.725457][T17474] do_recvmmsg+0xdd1/0x22f0 [ 905.729935][T17474] __sys_recvmmsg+0x519/0x6f0 [ 905.734601][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 905.740775][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 905.746907][T17474] __do_fast_syscall_32+0x102/0x160 [ 905.752085][T17474] do_fast_syscall_32+0x6a/0xc0 [ 905.756913][T17474] do_SYSENTER_32+0x73/0x90 [ 905.761631][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 905.767995][T17474] [ 905.770307][T17474] Uninit was stored to memory at: [ 905.775332][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 905.781096][T17474] __msan_chain_origin+0x57/0xa0 [ 905.786013][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 905.791135][T17474] get_compat_msghdr+0x108/0x2b0 [ 905.796132][T17474] do_recvmmsg+0xdd1/0x22f0 [ 905.800777][T17474] __sys_recvmmsg+0x519/0x6f0 [ 905.805480][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 905.811544][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 905.817732][T17474] __do_fast_syscall_32+0x102/0x160 [ 905.822914][T17474] do_fast_syscall_32+0x6a/0xc0 [ 905.827783][T17474] do_SYSENTER_32+0x73/0x90 [ 905.832403][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 905.838700][T17474] [ 905.841006][T17474] Uninit was stored to memory at: [ 905.846009][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 905.851707][T17474] __msan_chain_origin+0x57/0xa0 [ 905.856622][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 905.861722][T17474] get_compat_msghdr+0x108/0x2b0 [ 905.866643][T17474] do_recvmmsg+0xdd1/0x22f0 [ 905.871257][T17474] __sys_recvmmsg+0x519/0x6f0 [ 905.875914][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 905.881980][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 905.888164][T17474] __do_fast_syscall_32+0x102/0x160 [ 905.893366][T17474] do_fast_syscall_32+0x6a/0xc0 [ 905.898279][T17474] do_SYSENTER_32+0x73/0x90 [ 905.902767][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 905.909063][T17474] [ 905.911368][T17474] Uninit was stored to memory at: [ 905.916379][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 905.922078][T17474] __msan_chain_origin+0x57/0xa0 [ 905.926995][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 905.932085][T17474] get_compat_msghdr+0x108/0x2b0 [ 905.937002][T17474] do_recvmmsg+0xdd1/0x22f0 [ 905.941480][T17474] __sys_recvmmsg+0x519/0x6f0 [ 905.946134][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 905.952181][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 905.958322][T17474] __do_fast_syscall_32+0x102/0x160 [ 905.963499][T17474] do_fast_syscall_32+0x6a/0xc0 [ 905.968346][T17474] do_SYSENTER_32+0x73/0x90 [ 905.972837][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 905.979132][T17474] [ 905.981433][T17474] Uninit was stored to memory at: [ 905.986436][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 905.992142][T17474] __msan_chain_origin+0x57/0xa0 [ 905.997068][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 906.002177][T17474] get_compat_msghdr+0x108/0x2b0 [ 906.007089][T17474] do_recvmmsg+0xdd1/0x22f0 [ 906.011583][T17474] __sys_recvmmsg+0x519/0x6f0 [ 906.016254][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 906.022312][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 906.028456][T17474] __do_fast_syscall_32+0x102/0x160 [ 906.033647][T17474] do_fast_syscall_32+0x6a/0xc0 [ 906.038498][T17474] do_SYSENTER_32+0x73/0x90 [ 906.042994][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 906.049376][T17474] [ 906.051679][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 906.058353][T17474] do_recvmmsg+0xbf/0x22f0 [ 906.062747][T17474] do_recvmmsg+0xbf/0x22f0 [ 906.308871][T17474] not chained 1830000 origins [ 906.313588][T17474] CPU: 0 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 906.322340][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 906.332462][T17474] Call Trace: [ 906.335829][T17474] dump_stack+0x21c/0x280 [ 906.340163][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 906.345889][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 906.351003][T17474] ? kmsan_get_metadata+0x116/0x180 [ 906.356203][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 906.362088][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 906.368166][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 906.373542][T17474] ? kmsan_get_metadata+0x116/0x180 [ 906.378740][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 906.384547][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 906.390616][T17474] ? kmsan_get_metadata+0x116/0x180 [ 906.395815][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 906.401452][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 906.407520][T17474] ? _copy_from_user+0x1fd/0x300 [ 906.412461][T17474] ? kmsan_get_metadata+0x116/0x180 [ 906.417659][T17474] __msan_chain_origin+0x57/0xa0 [ 906.422600][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 906.427725][T17474] get_compat_msghdr+0x108/0x2b0 [ 906.432674][T17474] do_recvmmsg+0xdd1/0x22f0 [ 906.437194][T17474] ? kmsan_get_metadata+0x116/0x180 [ 906.442397][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 906.448294][T17474] ? kmsan_get_metadata+0x116/0x180 [ 906.453493][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 906.459122][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 906.464408][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 906.469177][T17474] __sys_recvmmsg+0x519/0x6f0 [ 906.473862][T17474] ? kmsan_get_metadata+0x116/0x180 [ 906.479094][T17474] ? kmsan_get_metadata+0x116/0x180 [ 906.484411][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 906.490497][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 906.496668][T17474] __do_fast_syscall_32+0x102/0x160 [ 906.502016][T17474] do_fast_syscall_32+0x6a/0xc0 [ 906.506861][T17474] do_SYSENTER_32+0x73/0x90 [ 906.511348][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 906.517659][T17474] RIP: 0023:0xf7f58549 [ 906.521717][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 906.541311][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 906.549716][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 906.557665][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 906.565613][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 906.573573][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 906.581522][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 906.589568][T17474] Uninit was stored to memory at: [ 906.594574][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 906.600281][T17474] __msan_chain_origin+0x57/0xa0 [ 906.605211][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 906.610300][T17474] get_compat_msghdr+0x108/0x2b0 [ 906.615212][T17474] do_recvmmsg+0xdd1/0x22f0 [ 906.619694][T17474] __sys_recvmmsg+0x519/0x6f0 [ 906.624346][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 906.630621][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 906.636768][T17474] __do_fast_syscall_32+0x102/0x160 [ 906.642011][T17474] do_fast_syscall_32+0x6a/0xc0 [ 906.646837][T17474] do_SYSENTER_32+0x73/0x90 [ 906.651346][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 906.657672][T17474] [ 906.659983][T17474] Uninit was stored to memory at: [ 906.664994][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 906.670688][T17474] __msan_chain_origin+0x57/0xa0 [ 906.675667][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 906.680754][T17474] get_compat_msghdr+0x108/0x2b0 [ 906.685718][T17474] do_recvmmsg+0xdd1/0x22f0 [ 906.690197][T17474] __sys_recvmmsg+0x519/0x6f0 [ 906.694850][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 906.700899][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 906.707029][T17474] __do_fast_syscall_32+0x102/0x160 [ 906.712206][T17474] do_fast_syscall_32+0x6a/0xc0 [ 906.717029][T17474] do_SYSENTER_32+0x73/0x90 [ 906.721598][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 906.727892][T17474] [ 906.730194][T17474] Uninit was stored to memory at: [ 906.735200][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 906.740919][T17474] __msan_chain_origin+0x57/0xa0 [ 906.745833][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 906.750936][T17474] get_compat_msghdr+0x108/0x2b0 [ 906.756000][T17474] do_recvmmsg+0xdd1/0x22f0 [ 906.760496][T17474] __sys_recvmmsg+0x519/0x6f0 [ 906.765258][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 906.771306][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 906.777435][T17474] __do_fast_syscall_32+0x102/0x160 [ 906.782610][T17474] do_fast_syscall_32+0x6a/0xc0 [ 906.787454][T17474] do_SYSENTER_32+0x73/0x90 [ 906.791937][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 906.798232][T17474] [ 906.800532][T17474] Uninit was stored to memory at: [ 906.805555][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 906.811296][T17474] __msan_chain_origin+0x57/0xa0 [ 906.816210][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 906.821448][T17474] get_compat_msghdr+0x108/0x2b0 [ 906.826364][T17474] do_recvmmsg+0xdd1/0x22f0 [ 906.830847][T17474] __sys_recvmmsg+0x519/0x6f0 [ 906.835643][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 906.841703][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 906.847834][T17474] __do_fast_syscall_32+0x102/0x160 [ 906.853009][T17474] do_fast_syscall_32+0x6a/0xc0 [ 906.857910][T17474] do_SYSENTER_32+0x73/0x90 [ 906.862519][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 906.868813][T17474] [ 906.871123][T17474] Uninit was stored to memory at: [ 906.876251][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 906.882124][T17474] __msan_chain_origin+0x57/0xa0 [ 906.887087][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 906.892216][T17474] get_compat_msghdr+0x108/0x2b0 [ 906.897127][T17474] do_recvmmsg+0xdd1/0x22f0 [ 906.901607][T17474] __sys_recvmmsg+0x519/0x6f0 [ 906.906261][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 906.912415][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 906.918559][T17474] __do_fast_syscall_32+0x102/0x160 [ 906.923736][T17474] do_fast_syscall_32+0x6a/0xc0 [ 906.928565][T17474] do_SYSENTER_32+0x73/0x90 [ 906.933046][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 906.939379][T17474] [ 906.941697][T17474] Uninit was stored to memory at: [ 906.946700][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 906.952393][T17474] __msan_chain_origin+0x57/0xa0 [ 906.957311][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 906.962401][T17474] get_compat_msghdr+0x108/0x2b0 [ 906.967316][T17474] do_recvmmsg+0xdd1/0x22f0 [ 906.971826][T17474] __sys_recvmmsg+0x519/0x6f0 [ 906.976483][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 906.982542][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 906.988686][T17474] __do_fast_syscall_32+0x102/0x160 [ 906.993885][T17474] do_fast_syscall_32+0x6a/0xc0 [ 906.998834][T17474] do_SYSENTER_32+0x73/0x90 [ 907.003422][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 907.009717][T17474] [ 907.012020][T17474] Uninit was stored to memory at: [ 907.017023][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 907.022771][T17474] __msan_chain_origin+0x57/0xa0 [ 907.027686][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 907.032790][T17474] get_compat_msghdr+0x108/0x2b0 [ 907.037737][T17474] do_recvmmsg+0xdd1/0x22f0 [ 907.042251][T17474] __sys_recvmmsg+0x519/0x6f0 [ 907.047019][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 907.053066][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 907.059199][T17474] __do_fast_syscall_32+0x102/0x160 [ 907.064430][T17474] do_fast_syscall_32+0x6a/0xc0 [ 907.069258][T17474] do_SYSENTER_32+0x73/0x90 [ 907.073760][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 907.080077][T17474] [ 907.082395][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 907.089044][T17474] do_recvmmsg+0xbf/0x22f0 [ 907.093446][T17474] do_recvmmsg+0xbf/0x22f0 [ 907.366681][T17474] not chained 1840000 origins [ 907.371432][T17474] CPU: 0 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 907.380186][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 907.390256][T17474] Call Trace: [ 907.393593][T17474] dump_stack+0x21c/0x280 [ 907.398066][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 907.403794][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 907.408913][T17474] ? kmsan_get_metadata+0x116/0x180 [ 907.414210][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 907.420017][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 907.426086][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 907.431029][T17474] ? kmsan_get_metadata+0x116/0x180 [ 907.436232][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 907.442065][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 907.448132][T17474] ? kmsan_get_metadata+0x116/0x180 [ 907.453332][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 907.458974][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 907.465064][T17474] ? _copy_from_user+0x1fd/0x300 [ 907.470005][T17474] ? kmsan_get_metadata+0x116/0x180 [ 907.475233][T17474] __msan_chain_origin+0x57/0xa0 [ 907.480207][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 907.485341][T17474] get_compat_msghdr+0x108/0x2b0 [ 907.490310][T17474] do_recvmmsg+0xdd1/0x22f0 [ 907.494834][T17474] ? kmsan_get_metadata+0x116/0x180 [ 907.500911][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 907.506810][T17474] ? kmsan_get_metadata+0x116/0x180 [ 907.512027][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 907.517694][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 907.522969][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 907.527719][T17474] __sys_recvmmsg+0x519/0x6f0 [ 907.532379][T17474] ? kmsan_get_metadata+0x116/0x180 [ 907.537555][T17474] ? kmsan_get_metadata+0x116/0x180 [ 907.542758][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 907.548818][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 907.554962][T17474] __do_fast_syscall_32+0x102/0x160 [ 907.560165][T17474] do_fast_syscall_32+0x6a/0xc0 [ 907.565080][T17474] do_SYSENTER_32+0x73/0x90 [ 907.569668][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 907.575971][T17474] RIP: 0023:0xf7f58549 [ 907.580048][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 907.599750][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 907.608148][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 907.616099][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 907.624085][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 907.632039][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 907.639993][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 907.647978][T17474] Uninit was stored to memory at: [ 907.653005][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 907.658727][T17474] __msan_chain_origin+0x57/0xa0 [ 907.663681][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 907.668769][T17474] get_compat_msghdr+0x108/0x2b0 [ 907.673690][T17474] do_recvmmsg+0xdd1/0x22f0 [ 907.678182][T17474] __sys_recvmmsg+0x519/0x6f0 [ 907.682852][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 907.689355][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 907.695489][T17474] __do_fast_syscall_32+0x102/0x160 [ 907.700678][T17474] do_fast_syscall_32+0x6a/0xc0 [ 907.705520][T17474] do_SYSENTER_32+0x73/0x90 [ 907.710019][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 907.716337][T17474] [ 907.718655][T17474] Uninit was stored to memory at: [ 907.723662][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 907.729357][T17474] __msan_chain_origin+0x57/0xa0 [ 907.734273][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 907.739365][T17474] get_compat_msghdr+0x108/0x2b0 [ 907.744299][T17474] do_recvmmsg+0xdd1/0x22f0 [ 907.748795][T17474] __sys_recvmmsg+0x519/0x6f0 [ 907.753456][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 907.759502][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 907.765639][T17474] __do_fast_syscall_32+0x102/0x160 [ 907.770824][T17474] do_fast_syscall_32+0x6a/0xc0 [ 907.775652][T17474] do_SYSENTER_32+0x73/0x90 [ 907.780146][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 907.786452][T17474] [ 907.788754][T17474] Uninit was stored to memory at: [ 907.793757][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 907.799453][T17474] __msan_chain_origin+0x57/0xa0 [ 907.804389][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 907.809476][T17474] get_compat_msghdr+0x108/0x2b0 [ 907.814391][T17474] do_recvmmsg+0xdd1/0x22f0 [ 907.818872][T17474] __sys_recvmmsg+0x519/0x6f0 [ 907.823574][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 907.829615][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 907.835763][T17474] __do_fast_syscall_32+0x102/0x160 [ 907.840962][T17474] do_fast_syscall_32+0x6a/0xc0 [ 907.845805][T17474] do_SYSENTER_32+0x73/0x90 [ 907.850304][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 907.856607][T17474] [ 907.858912][T17474] Uninit was stored to memory at: [ 907.863964][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 907.869687][T17474] __msan_chain_origin+0x57/0xa0 [ 907.874604][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 907.879704][T17474] get_compat_msghdr+0x108/0x2b0 [ 907.884620][T17474] do_recvmmsg+0xdd1/0x22f0 [ 907.889125][T17474] __sys_recvmmsg+0x519/0x6f0 [ 907.893807][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 907.899849][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 907.905994][T17474] __do_fast_syscall_32+0x102/0x160 [ 907.911268][T17474] do_fast_syscall_32+0x6a/0xc0 [ 907.916097][T17474] do_SYSENTER_32+0x73/0x90 [ 907.920595][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 907.926913][T17474] [ 907.929220][T17474] Uninit was stored to memory at: [ 907.934223][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 907.939950][T17474] __msan_chain_origin+0x57/0xa0 [ 907.944890][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 907.949991][T17474] get_compat_msghdr+0x108/0x2b0 [ 907.955045][T17474] do_recvmmsg+0xdd1/0x22f0 [ 907.959526][T17474] __sys_recvmmsg+0x519/0x6f0 [ 907.964198][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 907.970274][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 907.976421][T17474] __do_fast_syscall_32+0x102/0x160 [ 907.981734][T17474] do_fast_syscall_32+0x6a/0xc0 [ 907.986609][T17474] do_SYSENTER_32+0x73/0x90 [ 907.991180][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 907.997472][T17474] [ 907.999771][T17474] Uninit was stored to memory at: [ 908.004877][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 908.010585][T17474] __msan_chain_origin+0x57/0xa0 [ 908.015537][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 908.020638][T17474] get_compat_msghdr+0x108/0x2b0 [ 908.025572][T17474] do_recvmmsg+0xdd1/0x22f0 [ 908.030063][T17474] __sys_recvmmsg+0x519/0x6f0 [ 908.034729][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 908.040806][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 908.046970][T17474] __do_fast_syscall_32+0x102/0x160 [ 908.052160][T17474] do_fast_syscall_32+0x6a/0xc0 [ 908.056997][T17474] do_SYSENTER_32+0x73/0x90 [ 908.061580][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 908.067928][T17474] [ 908.070233][T17474] Uninit was stored to memory at: [ 908.075238][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 908.080950][T17474] __msan_chain_origin+0x57/0xa0 [ 908.085878][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 908.090980][T17474] get_compat_msghdr+0x108/0x2b0 [ 908.095945][T17474] do_recvmmsg+0xdd1/0x22f0 [ 908.100452][T17474] __sys_recvmmsg+0x519/0x6f0 [ 908.105218][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 908.111274][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 908.117428][T17474] __do_fast_syscall_32+0x102/0x160 [ 908.122715][T17474] do_fast_syscall_32+0x6a/0xc0 [ 908.127556][T17474] do_SYSENTER_32+0x73/0x90 [ 908.132041][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 908.138335][T17474] [ 908.140645][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 908.147308][T17474] do_recvmmsg+0xbf/0x22f0 [ 908.151701][T17474] do_recvmmsg+0xbf/0x22f0 [ 908.427341][T17474] not chained 1850000 origins [ 908.432063][T17474] CPU: 1 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 908.440817][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 908.450876][T17474] Call Trace: [ 908.454174][T17474] dump_stack+0x21c/0x280 [ 908.458508][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 908.464236][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 908.469349][T17474] ? kmsan_get_metadata+0x116/0x180 [ 908.474667][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 908.480478][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 908.486548][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 908.491478][T17474] ? kmsan_get_metadata+0x116/0x180 [ 908.496655][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 908.502447][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 908.508487][T17474] ? kmsan_get_metadata+0x116/0x180 [ 908.513666][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 908.519489][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 908.525622][T17474] ? _copy_from_user+0x1fd/0x300 [ 908.530693][T17474] ? kmsan_get_metadata+0x116/0x180 [ 908.535870][T17474] __msan_chain_origin+0x57/0xa0 [ 908.540785][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 908.545875][T17474] get_compat_msghdr+0x108/0x2b0 [ 908.550791][T17474] do_recvmmsg+0xdd1/0x22f0 [ 908.555400][T17474] ? kmsan_get_metadata+0x116/0x180 [ 908.560580][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 908.566451][T17474] ? kmsan_get_metadata+0x116/0x180 [ 908.571629][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 908.577251][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 908.582521][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 908.587301][T17474] __sys_recvmmsg+0x519/0x6f0 [ 908.592264][T17474] ? kmsan_get_metadata+0x116/0x180 [ 908.597456][T17474] ? kmsan_get_metadata+0x116/0x180 [ 908.602639][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 908.608786][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 908.614952][T17474] __do_fast_syscall_32+0x102/0x160 [ 908.620146][T17474] do_fast_syscall_32+0x6a/0xc0 [ 908.625133][T17474] do_SYSENTER_32+0x73/0x90 [ 908.629710][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 908.636010][T17474] RIP: 0023:0xf7f58549 [ 908.640053][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 908.659647][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 908.668050][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 908.676001][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 908.684044][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 908.692184][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 908.700338][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 908.708498][T17474] Uninit was stored to memory at: [ 908.713633][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 908.719330][T17474] __msan_chain_origin+0x57/0xa0 [ 908.724247][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 908.729334][T17474] get_compat_msghdr+0x108/0x2b0 [ 908.734251][T17474] do_recvmmsg+0xdd1/0x22f0 [ 908.738729][T17474] __sys_recvmmsg+0x519/0x6f0 [ 908.743385][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 908.749531][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 908.755665][T17474] __do_fast_syscall_32+0x102/0x160 [ 908.760852][T17474] do_fast_syscall_32+0x6a/0xc0 [ 908.765697][T17474] do_SYSENTER_32+0x73/0x90 [ 908.770181][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 908.776473][T17474] [ 908.778772][T17474] Uninit was stored to memory at: [ 908.783781][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 908.789485][T17474] __msan_chain_origin+0x57/0xa0 [ 908.794398][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 908.799494][T17474] get_compat_msghdr+0x108/0x2b0 [ 908.804540][T17474] do_recvmmsg+0xdd1/0x22f0 [ 908.809017][T17474] __sys_recvmmsg+0x519/0x6f0 [ 908.813670][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 908.819714][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 908.825854][T17474] __do_fast_syscall_32+0x102/0x160 [ 908.831040][T17474] do_fast_syscall_32+0x6a/0xc0 [ 908.835874][T17474] do_SYSENTER_32+0x73/0x90 [ 908.840353][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 908.846655][T17474] [ 908.848967][T17474] Uninit was stored to memory at: [ 908.853968][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 908.859661][T17474] __msan_chain_origin+0x57/0xa0 [ 908.864587][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 908.869673][T17474] get_compat_msghdr+0x108/0x2b0 [ 908.874588][T17474] do_recvmmsg+0xdd1/0x22f0 [ 908.879066][T17474] __sys_recvmmsg+0x519/0x6f0 [ 908.883753][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 908.889810][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 908.895956][T17474] __do_fast_syscall_32+0x102/0x160 [ 908.901133][T17474] do_fast_syscall_32+0x6a/0xc0 [ 908.905957][T17474] do_SYSENTER_32+0x73/0x90 [ 908.910437][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 908.916729][T17474] [ 908.919028][T17474] Uninit was stored to memory at: [ 908.924038][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 908.929732][T17474] __msan_chain_origin+0x57/0xa0 [ 908.934647][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 908.939745][T17474] get_compat_msghdr+0x108/0x2b0 [ 908.944660][T17474] do_recvmmsg+0xdd1/0x22f0 [ 908.949162][T17474] __sys_recvmmsg+0x519/0x6f0 [ 908.953816][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 908.959857][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 908.966031][T17474] __do_fast_syscall_32+0x102/0x160 [ 908.971211][T17474] do_fast_syscall_32+0x6a/0xc0 [ 908.976039][T17474] do_SYSENTER_32+0x73/0x90 [ 908.980532][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 908.986830][T17474] [ 908.989157][T17474] Uninit was stored to memory at: [ 908.994187][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 908.999881][T17474] __msan_chain_origin+0x57/0xa0 [ 909.004805][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 909.009894][T17474] get_compat_msghdr+0x108/0x2b0 [ 909.014815][T17474] do_recvmmsg+0xdd1/0x22f0 [ 909.019294][T17474] __sys_recvmmsg+0x519/0x6f0 [ 909.023952][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 909.029998][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 909.036131][T17474] __do_fast_syscall_32+0x102/0x160 [ 909.041308][T17474] do_fast_syscall_32+0x6a/0xc0 [ 909.046147][T17474] do_SYSENTER_32+0x73/0x90 [ 909.050648][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 909.056943][T17474] [ 909.059255][T17474] Uninit was stored to memory at: [ 909.064343][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 909.070049][T17474] __msan_chain_origin+0x57/0xa0 [ 909.074962][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 909.080051][T17474] get_compat_msghdr+0x108/0x2b0 [ 909.084964][T17474] do_recvmmsg+0xdd1/0x22f0 [ 909.089456][T17474] __sys_recvmmsg+0x519/0x6f0 [ 909.094125][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 909.100181][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 909.106315][T17474] __do_fast_syscall_32+0x102/0x160 [ 909.111517][T17474] do_fast_syscall_32+0x6a/0xc0 [ 909.116342][T17474] do_SYSENTER_32+0x73/0x90 [ 909.120823][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 909.127203][T17474] [ 909.129606][T17474] Uninit was stored to memory at: [ 909.134606][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 909.140388][T17474] __msan_chain_origin+0x57/0xa0 [ 909.145312][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 909.150410][T17474] get_compat_msghdr+0x108/0x2b0 [ 909.155336][T17474] do_recvmmsg+0xdd1/0x22f0 [ 909.159812][T17474] __sys_recvmmsg+0x519/0x6f0 [ 909.164465][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 909.170597][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 909.176730][T17474] __do_fast_syscall_32+0x102/0x160 [ 909.181935][T17474] do_fast_syscall_32+0x6a/0xc0 [ 909.186778][T17474] do_SYSENTER_32+0x73/0x90 [ 909.191272][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 909.197581][T17474] [ 909.199913][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 909.206597][T17474] do_recvmmsg+0xbf/0x22f0 [ 909.211000][T17474] do_recvmmsg+0xbf/0x22f0 [ 909.495921][T17474] not chained 1860000 origins [ 909.500642][T17474] CPU: 1 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 909.509396][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 909.519534][T17474] Call Trace: [ 909.522830][T17474] dump_stack+0x21c/0x280 [ 909.527169][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 909.532899][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 909.538081][T17474] ? kmsan_get_metadata+0x116/0x180 [ 909.543281][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 909.549086][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 909.555156][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 909.560096][T17474] ? kmsan_get_metadata+0x116/0x180 [ 909.565381][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 909.571195][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 909.577261][T17474] ? kmsan_get_metadata+0x116/0x180 [ 909.582464][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 909.588310][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 909.594455][T17474] ? _copy_from_user+0x1fd/0x300 [ 909.599368][T17474] ? kmsan_get_metadata+0x116/0x180 [ 909.604609][T17474] __msan_chain_origin+0x57/0xa0 [ 909.609526][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 909.614615][T17474] get_compat_msghdr+0x108/0x2b0 [ 909.619544][T17474] do_recvmmsg+0xdd1/0x22f0 [ 909.624035][T17474] ? kmsan_get_metadata+0x116/0x180 [ 909.629247][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 909.635125][T17474] ? kmsan_get_metadata+0x116/0x180 [ 909.640425][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 909.646033][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 909.651295][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 909.656047][T17474] __sys_recvmmsg+0x519/0x6f0 [ 909.660699][T17474] ? kmsan_get_metadata+0x116/0x180 [ 909.665871][T17474] ? kmsan_get_metadata+0x116/0x180 [ 909.671182][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 909.677229][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 909.683384][T17474] __do_fast_syscall_32+0x102/0x160 [ 909.688561][T17474] do_fast_syscall_32+0x6a/0xc0 [ 909.693408][T17474] do_SYSENTER_32+0x73/0x90 [ 909.697904][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 909.704222][T17474] RIP: 0023:0xf7f58549 [ 909.708282][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 909.727865][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 909.736256][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 909.744204][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 909.752431][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 909.760417][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 909.768452][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 909.776412][T17474] Uninit was stored to memory at: [ 909.781427][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 909.787207][T17474] __msan_chain_origin+0x57/0xa0 [ 909.792142][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 909.797253][T17474] get_compat_msghdr+0x108/0x2b0 [ 909.802255][T17474] do_recvmmsg+0xdd1/0x22f0 [ 909.806751][T17474] __sys_recvmmsg+0x519/0x6f0 [ 909.811421][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 909.817463][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 909.823599][T17474] __do_fast_syscall_32+0x102/0x160 [ 909.828775][T17474] do_fast_syscall_32+0x6a/0xc0 [ 909.833603][T17474] do_SYSENTER_32+0x73/0x90 [ 909.838082][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 909.844400][T17474] [ 909.846713][T17474] Uninit was stored to memory at: [ 909.851863][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 909.857640][T17474] __msan_chain_origin+0x57/0xa0 [ 909.862565][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 909.867650][T17474] get_compat_msghdr+0x108/0x2b0 [ 909.872564][T17474] do_recvmmsg+0xdd1/0x22f0 [ 909.877040][T17474] __sys_recvmmsg+0x519/0x6f0 [ 909.881693][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 909.887744][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 909.893876][T17474] __do_fast_syscall_32+0x102/0x160 [ 909.899074][T17474] do_fast_syscall_32+0x6a/0xc0 [ 909.903913][T17474] do_SYSENTER_32+0x73/0x90 [ 909.908433][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 909.914839][T17474] [ 909.917143][T17474] Uninit was stored to memory at: [ 909.922263][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 909.927964][T17474] __msan_chain_origin+0x57/0xa0 [ 909.932882][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 909.937966][T17474] get_compat_msghdr+0x108/0x2b0 [ 909.942892][T17474] do_recvmmsg+0xdd1/0x22f0 [ 909.947371][T17474] __sys_recvmmsg+0x519/0x6f0 [ 909.952031][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 909.958077][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 909.964261][T17474] __do_fast_syscall_32+0x102/0x160 [ 909.969435][T17474] do_fast_syscall_32+0x6a/0xc0 [ 909.974312][T17474] do_SYSENTER_32+0x73/0x90 [ 909.978883][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 909.985280][T17474] [ 909.987583][T17474] Uninit was stored to memory at: [ 909.992587][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 909.998291][T17474] __msan_chain_origin+0x57/0xa0 [ 910.003205][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 910.008290][T17474] get_compat_msghdr+0x108/0x2b0 [ 910.013219][T17474] do_recvmmsg+0xdd1/0x22f0 [ 910.017701][T17474] __sys_recvmmsg+0x519/0x6f0 [ 910.022354][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 910.028395][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 910.034536][T17474] __do_fast_syscall_32+0x102/0x160 [ 910.039712][T17474] do_fast_syscall_32+0x6a/0xc0 [ 910.044541][T17474] do_SYSENTER_32+0x73/0x90 [ 910.049113][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 910.055464][T17474] [ 910.057766][T17474] Uninit was stored to memory at: [ 910.062770][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 910.068465][T17474] __msan_chain_origin+0x57/0xa0 [ 910.073467][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 910.078577][T17474] get_compat_msghdr+0x108/0x2b0 [ 910.083499][T17474] do_recvmmsg+0xdd1/0x22f0 [ 910.087991][T17474] __sys_recvmmsg+0x519/0x6f0 [ 910.092755][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 910.098809][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 910.104940][T17474] __do_fast_syscall_32+0x102/0x160 [ 910.110119][T17474] do_fast_syscall_32+0x6a/0xc0 [ 910.114956][T17474] do_SYSENTER_32+0x73/0x90 [ 910.119529][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 910.125934][T17474] [ 910.128238][T17474] Uninit was stored to memory at: [ 910.133240][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 910.138941][T17474] __msan_chain_origin+0x57/0xa0 [ 910.143941][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 910.149026][T17474] get_compat_msghdr+0x108/0x2b0 [ 910.153957][T17474] do_recvmmsg+0xdd1/0x22f0 [ 910.158441][T17474] __sys_recvmmsg+0x519/0x6f0 [ 910.163095][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 910.169138][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 910.175270][T17474] __do_fast_syscall_32+0x102/0x160 [ 910.180443][T17474] do_fast_syscall_32+0x6a/0xc0 [ 910.185269][T17474] do_SYSENTER_32+0x73/0x90 [ 910.189766][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 910.196077][T17474] [ 910.198376][T17474] Uninit was stored to memory at: [ 910.203378][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 910.209168][T17474] __msan_chain_origin+0x57/0xa0 [ 910.214094][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 910.219216][T17474] get_compat_msghdr+0x108/0x2b0 [ 910.224131][T17474] do_recvmmsg+0xdd1/0x22f0 [ 910.228608][T17474] __sys_recvmmsg+0x519/0x6f0 [ 910.233278][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 910.239404][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 910.245619][T17474] __do_fast_syscall_32+0x102/0x160 [ 910.250804][T17474] do_fast_syscall_32+0x6a/0xc0 [ 910.255630][T17474] do_SYSENTER_32+0x73/0x90 [ 910.260125][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 910.266419][T17474] [ 910.268719][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 910.275368][T17474] do_recvmmsg+0xbf/0x22f0 [ 910.279758][T17474] do_recvmmsg+0xbf/0x22f0 [ 910.519810][T17474] not chained 1870000 origins [ 910.524540][T17474] CPU: 1 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 910.533297][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 910.543433][T17474] Call Trace: [ 910.546737][T17474] dump_stack+0x21c/0x280 [ 910.551072][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 910.556795][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 910.561907][T17474] ? kmsan_get_metadata+0x116/0x180 [ 910.567190][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 910.572993][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 910.579058][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 910.584011][T17474] ? kmsan_get_metadata+0x116/0x180 [ 910.589210][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 910.595020][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 910.601119][T17474] ? kmsan_get_metadata+0x116/0x180 [ 910.606318][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 910.611967][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 910.618034][T17474] ? _copy_from_user+0x1fd/0x300 [ 910.623066][T17474] ? kmsan_get_metadata+0x116/0x180 [ 910.628264][T17474] __msan_chain_origin+0x57/0xa0 [ 910.633294][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 910.638414][T17474] get_compat_msghdr+0x108/0x2b0 [ 910.643405][T17474] do_recvmmsg+0xdd1/0x22f0 [ 910.647917][T17474] ? kmsan_get_metadata+0x116/0x180 [ 910.653131][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 910.659025][T17474] ? kmsan_get_metadata+0x116/0x180 [ 910.664225][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 910.669862][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 910.675151][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 910.679918][T17474] __sys_recvmmsg+0x519/0x6f0 [ 910.684616][T17474] ? kmsan_get_metadata+0x116/0x180 [ 910.689792][T17474] ? kmsan_get_metadata+0x116/0x180 [ 910.694967][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 910.701014][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 910.707155][T17474] __do_fast_syscall_32+0x102/0x160 [ 910.712331][T17474] do_fast_syscall_32+0x6a/0xc0 [ 910.717158][T17474] do_SYSENTER_32+0x73/0x90 [ 910.721642][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 910.727957][T17474] RIP: 0023:0xf7f58549 [ 910.732069][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 910.751740][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 910.760154][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 910.768137][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 910.776095][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 910.784042][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 910.792094][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 910.800043][T17474] Uninit was stored to memory at: [ 910.805077][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 910.810774][T17474] __msan_chain_origin+0x57/0xa0 [ 910.815777][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 910.820864][T17474] get_compat_msghdr+0x108/0x2b0 [ 910.825794][T17474] do_recvmmsg+0xdd1/0x22f0 [ 910.830287][T17474] __sys_recvmmsg+0x519/0x6f0 [ 910.834965][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 910.841009][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 910.847148][T17474] __do_fast_syscall_32+0x102/0x160 [ 910.852320][T17474] do_fast_syscall_32+0x6a/0xc0 [ 910.857146][T17474] do_SYSENTER_32+0x73/0x90 [ 910.861645][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 910.868038][T17474] [ 910.870348][T17474] Uninit was stored to memory at: [ 910.875426][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 910.881145][T17474] __msan_chain_origin+0x57/0xa0 [ 910.886066][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 910.891164][T17474] get_compat_msghdr+0x108/0x2b0 [ 910.896077][T17474] do_recvmmsg+0xdd1/0x22f0 [ 910.900658][T17474] __sys_recvmmsg+0x519/0x6f0 [ 910.905310][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 910.911354][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 910.917480][T17474] __do_fast_syscall_32+0x102/0x160 [ 910.922655][T17474] do_fast_syscall_32+0x6a/0xc0 [ 910.927570][T17474] do_SYSENTER_32+0x73/0x90 [ 910.932071][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 910.938480][T17474] [ 910.940783][T17474] Uninit was stored to memory at: [ 910.945785][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 910.951487][T17474] __msan_chain_origin+0x57/0xa0 [ 910.956408][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 910.961494][T17474] get_compat_msghdr+0x108/0x2b0 [ 910.966415][T17474] do_recvmmsg+0xdd1/0x22f0 [ 910.970895][T17474] __sys_recvmmsg+0x519/0x6f0 [ 910.975548][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 910.981590][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 910.987730][T17474] __do_fast_syscall_32+0x102/0x160 [ 910.992916][T17474] do_fast_syscall_32+0x6a/0xc0 [ 910.997742][T17474] do_SYSENTER_32+0x73/0x90 [ 911.002223][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 911.008531][T17474] [ 911.010859][T17474] Uninit was stored to memory at: [ 911.015963][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 911.021656][T17474] __msan_chain_origin+0x57/0xa0 [ 911.026569][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 911.031653][T17474] get_compat_msghdr+0x108/0x2b0 [ 911.036571][T17474] do_recvmmsg+0xdd1/0x22f0 [ 911.041049][T17474] __sys_recvmmsg+0x519/0x6f0 [ 911.045719][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 911.051760][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 911.057890][T17474] __do_fast_syscall_32+0x102/0x160 [ 911.063080][T17474] do_fast_syscall_32+0x6a/0xc0 [ 911.067907][T17474] do_SYSENTER_32+0x73/0x90 [ 911.072399][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 911.078807][T17474] [ 911.081117][T17474] Uninit was stored to memory at: [ 911.086116][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 911.091817][T17474] __msan_chain_origin+0x57/0xa0 [ 911.096729][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 911.101824][T17474] get_compat_msghdr+0x108/0x2b0 [ 911.106856][T17474] do_recvmmsg+0xdd1/0x22f0 [ 911.111334][T17474] __sys_recvmmsg+0x519/0x6f0 [ 911.115987][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 911.122043][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 911.128181][T17474] __do_fast_syscall_32+0x102/0x160 [ 911.133354][T17474] do_fast_syscall_32+0x6a/0xc0 [ 911.138196][T17474] do_SYSENTER_32+0x73/0x90 [ 911.142688][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 911.148980][T17474] [ 911.151278][T17474] Uninit was stored to memory at: [ 911.156277][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 911.161990][T17474] __msan_chain_origin+0x57/0xa0 [ 911.166935][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 911.172117][T17474] get_compat_msghdr+0x108/0x2b0 [ 911.177040][T17474] do_recvmmsg+0xdd1/0x22f0 [ 911.181525][T17474] __sys_recvmmsg+0x519/0x6f0 [ 911.186179][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 911.192221][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 911.198454][T17474] __do_fast_syscall_32+0x102/0x160 [ 911.203657][T17474] do_fast_syscall_32+0x6a/0xc0 [ 911.208481][T17474] do_SYSENTER_32+0x73/0x90 [ 911.212960][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 911.219251][T17474] [ 911.221551][T17474] Uninit was stored to memory at: [ 911.226550][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 911.232244][T17474] __msan_chain_origin+0x57/0xa0 [ 911.237158][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 911.242260][T17474] get_compat_msghdr+0x108/0x2b0 [ 911.247174][T17474] do_recvmmsg+0xdd1/0x22f0 [ 911.251664][T17474] __sys_recvmmsg+0x519/0x6f0 [ 911.256313][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 911.262351][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 911.268477][T17474] __do_fast_syscall_32+0x102/0x160 [ 911.273734][T17474] do_fast_syscall_32+0x6a/0xc0 [ 911.278568][T17474] do_SYSENTER_32+0x73/0x90 [ 911.283050][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 911.289344][T17474] [ 911.291650][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 911.298295][T17474] do_recvmmsg+0xbf/0x22f0 [ 911.302684][T17474] do_recvmmsg+0xbf/0x22f0 [ 911.563570][T17474] not chained 1880000 origins [ 911.568283][T17474] CPU: 1 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 911.577038][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 911.587186][T17474] Call Trace: [ 911.590476][T17474] dump_stack+0x21c/0x280 [ 911.594811][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 911.600541][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 911.605657][T17474] ? kmsan_get_metadata+0x116/0x180 [ 911.610855][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 911.616661][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 911.622750][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 911.627688][T17474] ? kmsan_get_metadata+0x116/0x180 [ 911.632919][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 911.638725][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 911.644943][T17474] ? kmsan_get_metadata+0x116/0x180 [ 911.650132][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 911.655909][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 911.661963][T17474] ? _copy_from_user+0x1fd/0x300 [ 911.666877][T17474] ? kmsan_get_metadata+0x116/0x180 [ 911.672052][T17474] __msan_chain_origin+0x57/0xa0 [ 911.677081][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 911.682287][T17474] get_compat_msghdr+0x108/0x2b0 [ 911.687201][T17474] do_recvmmsg+0xdd1/0x22f0 [ 911.691696][T17474] ? kmsan_get_metadata+0x116/0x180 [ 911.696870][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 911.702735][T17474] ? kmsan_get_metadata+0x116/0x180 [ 911.707918][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 911.713534][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 911.718812][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 911.723562][T17474] __sys_recvmmsg+0x519/0x6f0 [ 911.728214][T17474] ? kmsan_get_metadata+0x116/0x180 [ 911.733398][T17474] ? kmsan_get_metadata+0x116/0x180 [ 911.738673][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 911.744718][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 911.750875][T17474] __do_fast_syscall_32+0x102/0x160 [ 911.756066][T17474] do_fast_syscall_32+0x6a/0xc0 [ 911.760895][T17474] do_SYSENTER_32+0x73/0x90 [ 911.765378][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 911.771698][T17474] RIP: 0023:0xf7f58549 [ 911.775746][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 911.795327][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 911.803717][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 911.811665][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 911.819711][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 911.827661][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 911.835610][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 911.843570][T17474] Uninit was stored to memory at: [ 911.848570][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 911.854275][T17474] __msan_chain_origin+0x57/0xa0 [ 911.859204][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 911.864326][T17474] get_compat_msghdr+0x108/0x2b0 [ 911.869255][T17474] do_recvmmsg+0xdd1/0x22f0 [ 911.873815][T17474] __sys_recvmmsg+0x519/0x6f0 [ 911.878668][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 911.884709][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 911.890839][T17474] __do_fast_syscall_32+0x102/0x160 [ 911.896111][T17474] do_fast_syscall_32+0x6a/0xc0 [ 911.900936][T17474] do_SYSENTER_32+0x73/0x90 [ 911.905425][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 911.911719][T17474] [ 911.914021][T17474] Uninit was stored to memory at: [ 911.919070][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 911.924762][T17474] __msan_chain_origin+0x57/0xa0 [ 911.929674][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 911.934758][T17474] get_compat_msghdr+0x108/0x2b0 [ 911.939682][T17474] do_recvmmsg+0xdd1/0x22f0 [ 911.944251][T17474] __sys_recvmmsg+0x519/0x6f0 [ 911.948902][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 911.954959][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 911.961199][T17474] __do_fast_syscall_32+0x102/0x160 [ 911.966391][T17474] do_fast_syscall_32+0x6a/0xc0 [ 911.971217][T17474] do_SYSENTER_32+0x73/0x90 [ 911.975695][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 911.981990][T17474] [ 911.984294][T17474] Uninit was stored to memory at: [ 911.989293][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 911.994996][T17474] __msan_chain_origin+0x57/0xa0 [ 911.999914][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 912.005096][T17474] get_compat_msghdr+0x108/0x2b0 [ 912.010012][T17474] do_recvmmsg+0xdd1/0x22f0 [ 912.014503][T17474] __sys_recvmmsg+0x519/0x6f0 [ 912.019163][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 912.025207][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 912.031334][T17474] __do_fast_syscall_32+0x102/0x160 [ 912.036502][T17474] do_fast_syscall_32+0x6a/0xc0 [ 912.041336][T17474] do_SYSENTER_32+0x73/0x90 [ 912.045813][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 912.052105][T17474] [ 912.054444][T17474] Uninit was stored to memory at: [ 912.059634][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 912.065554][T17474] __msan_chain_origin+0x57/0xa0 [ 912.070559][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 912.075652][T17474] get_compat_msghdr+0x108/0x2b0 [ 912.080579][T17474] do_recvmmsg+0xdd1/0x22f0 [ 912.085062][T17474] __sys_recvmmsg+0x519/0x6f0 [ 912.089728][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 912.095775][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 912.101905][T17474] __do_fast_syscall_32+0x102/0x160 [ 912.107093][T17474] do_fast_syscall_32+0x6a/0xc0 [ 912.111920][T17474] do_SYSENTER_32+0x73/0x90 [ 912.116423][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 912.122721][T17474] [ 912.125043][T17474] Uninit was stored to memory at: [ 912.130092][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 912.135817][T17474] __msan_chain_origin+0x57/0xa0 [ 912.140729][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 912.145913][T17474] get_compat_msghdr+0x108/0x2b0 [ 912.150828][T17474] do_recvmmsg+0xdd1/0x22f0 [ 912.155315][T17474] __sys_recvmmsg+0x519/0x6f0 [ 912.159987][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 912.166082][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 912.172304][T17474] __do_fast_syscall_32+0x102/0x160 [ 912.177484][T17474] do_fast_syscall_32+0x6a/0xc0 [ 912.182307][T17474] do_SYSENTER_32+0x73/0x90 [ 912.186788][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 912.193084][T17474] [ 912.195387][T17474] Uninit was stored to memory at: [ 912.200398][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 912.206100][T17474] __msan_chain_origin+0x57/0xa0 [ 912.211027][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 912.216115][T17474] get_compat_msghdr+0x108/0x2b0 [ 912.221028][T17474] do_recvmmsg+0xdd1/0x22f0 [ 912.225510][T17474] __sys_recvmmsg+0x519/0x6f0 [ 912.230164][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 912.236206][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 912.242336][T17474] __do_fast_syscall_32+0x102/0x160 [ 912.247510][T17474] do_fast_syscall_32+0x6a/0xc0 [ 912.252344][T17474] do_SYSENTER_32+0x73/0x90 [ 912.256842][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 912.263143][T17474] [ 912.265460][T17474] Uninit was stored to memory at: [ 912.270462][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 912.276157][T17474] __msan_chain_origin+0x57/0xa0 [ 912.281068][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 912.286172][T17474] get_compat_msghdr+0x108/0x2b0 [ 912.291104][T17474] do_recvmmsg+0xdd1/0x22f0 [ 912.295589][T17474] __sys_recvmmsg+0x519/0x6f0 [ 912.300239][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 912.306279][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 912.312421][T17474] __do_fast_syscall_32+0x102/0x160 [ 912.317593][T17474] do_fast_syscall_32+0x6a/0xc0 [ 912.322418][T17474] do_SYSENTER_32+0x73/0x90 [ 912.326918][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 912.333214][T17474] [ 912.335602][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 912.342248][T17474] do_recvmmsg+0xbf/0x22f0 [ 912.346640][T17474] do_recvmmsg+0xbf/0x22f0 [ 912.578479][T17474] not chained 1890000 origins [ 912.583408][T17474] CPU: 1 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 912.592161][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 912.602208][T17474] Call Trace: [ 912.605504][T17474] dump_stack+0x21c/0x280 [ 912.610188][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 912.615938][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 912.621052][T17474] ? kmsan_get_metadata+0x116/0x180 [ 912.626250][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 912.632089][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 912.638155][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 912.643183][T17474] ? kmsan_get_metadata+0x116/0x180 [ 912.648459][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 912.654265][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 912.660329][T17474] ? kmsan_get_metadata+0x116/0x180 [ 912.665526][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 912.671192][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 912.677263][T17474] ? _copy_from_user+0x1fd/0x300 [ 912.682203][T17474] ? kmsan_get_metadata+0x116/0x180 [ 912.687406][T17474] __msan_chain_origin+0x57/0xa0 [ 912.692348][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 912.697465][T17474] get_compat_msghdr+0x108/0x2b0 [ 912.702412][T17474] do_recvmmsg+0xdd1/0x22f0 [ 912.706954][T17474] ? kmsan_get_metadata+0x116/0x180 [ 912.712156][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 912.718056][T17474] ? kmsan_get_metadata+0x116/0x180 [ 912.723256][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 912.728910][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 912.734283][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 912.739055][T17474] __sys_recvmmsg+0x519/0x6f0 [ 912.743832][T17474] ? kmsan_get_metadata+0x116/0x180 [ 912.749006][T17474] ? kmsan_get_metadata+0x116/0x180 [ 912.754188][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 912.760258][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 912.766391][T17474] __do_fast_syscall_32+0x102/0x160 [ 912.771590][T17474] do_fast_syscall_32+0x6a/0xc0 [ 912.776437][T17474] do_SYSENTER_32+0x73/0x90 [ 912.780933][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 912.787255][T17474] RIP: 0023:0xf7f58549 [ 912.791319][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 912.810916][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 912.819309][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 912.827257][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 912.835208][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 912.843163][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 912.851113][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 912.859084][T17474] Uninit was stored to memory at: [ 912.864088][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 912.869791][T17474] __msan_chain_origin+0x57/0xa0 [ 912.874715][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 912.879830][T17474] get_compat_msghdr+0x108/0x2b0 [ 912.884798][T17474] do_recvmmsg+0xdd1/0x22f0 [ 912.889278][T17474] __sys_recvmmsg+0x519/0x6f0 [ 912.893934][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 912.899993][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 912.906126][T17474] __do_fast_syscall_32+0x102/0x160 [ 912.911314][T17474] do_fast_syscall_32+0x6a/0xc0 [ 912.916141][T17474] do_SYSENTER_32+0x73/0x90 [ 912.920624][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 912.926931][T17474] [ 912.929235][T17474] Uninit was stored to memory at: [ 912.934248][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 912.939950][T17474] __msan_chain_origin+0x57/0xa0 [ 912.944938][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 912.950027][T17474] get_compat_msghdr+0x108/0x2b0 [ 912.954943][T17474] do_recvmmsg+0xdd1/0x22f0 [ 912.959433][T17474] __sys_recvmmsg+0x519/0x6f0 [ 912.964090][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 912.970135][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 912.976270][T17474] __do_fast_syscall_32+0x102/0x160 [ 912.981467][T17474] do_fast_syscall_32+0x6a/0xc0 [ 912.986347][T17474] do_SYSENTER_32+0x73/0x90 [ 912.990845][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 912.997158][T17474] [ 912.999477][T17474] Uninit was stored to memory at: [ 913.004478][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 913.010200][T17474] __msan_chain_origin+0x57/0xa0 [ 913.015114][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 913.020204][T17474] get_compat_msghdr+0x108/0x2b0 [ 913.025133][T17474] do_recvmmsg+0xdd1/0x22f0 [ 913.029618][T17474] __sys_recvmmsg+0x519/0x6f0 [ 913.034304][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 913.040368][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 913.046513][T17474] __do_fast_syscall_32+0x102/0x160 [ 913.051692][T17474] do_fast_syscall_32+0x6a/0xc0 [ 913.056521][T17474] do_SYSENTER_32+0x73/0x90 [ 913.061004][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 913.067299][T17474] [ 913.069613][T17474] Uninit was stored to memory at: [ 913.074629][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 913.080340][T17474] __msan_chain_origin+0x57/0xa0 [ 913.085260][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 913.090351][T17474] get_compat_msghdr+0x108/0x2b0 [ 913.095265][T17474] do_recvmmsg+0xdd1/0x22f0 [ 913.099769][T17474] __sys_recvmmsg+0x519/0x6f0 [ 913.104427][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 913.110475][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 913.116607][T17474] __do_fast_syscall_32+0x102/0x160 [ 913.121805][T17474] do_fast_syscall_32+0x6a/0xc0 [ 913.126646][T17474] do_SYSENTER_32+0x73/0x90 [ 913.131128][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 913.137429][T17474] [ 913.139753][T17474] Uninit was stored to memory at: [ 913.144756][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 913.150452][T17474] __msan_chain_origin+0x57/0xa0 [ 913.155454][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 913.160544][T17474] get_compat_msghdr+0x108/0x2b0 [ 913.165473][T17474] do_recvmmsg+0xdd1/0x22f0 [ 913.169955][T17474] __sys_recvmmsg+0x519/0x6f0 [ 913.174616][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 913.180661][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 913.186800][T17474] __do_fast_syscall_32+0x102/0x160 [ 913.192328][T17474] do_fast_syscall_32+0x6a/0xc0 [ 913.197261][T17474] do_SYSENTER_32+0x73/0x90 [ 913.201744][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 913.208050][T17474] [ 913.210353][T17474] Uninit was stored to memory at: [ 913.215359][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 913.221056][T17474] __msan_chain_origin+0x57/0xa0 [ 913.225971][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 913.231059][T17474] get_compat_msghdr+0x108/0x2b0 [ 913.235975][T17474] do_recvmmsg+0xdd1/0x22f0 [ 913.240581][T17474] __sys_recvmmsg+0x519/0x6f0 [ 913.245248][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 913.251289][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 913.257426][T17474] __do_fast_syscall_32+0x102/0x160 [ 913.262617][T17474] do_fast_syscall_32+0x6a/0xc0 [ 913.267467][T17474] do_SYSENTER_32+0x73/0x90 [ 913.271955][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 913.278249][T17474] [ 913.280553][T17474] Uninit was stored to memory at: [ 913.285558][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 913.291274][T17474] __msan_chain_origin+0x57/0xa0 [ 913.296221][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 913.301307][T17474] get_compat_msghdr+0x108/0x2b0 [ 913.306244][T17474] do_recvmmsg+0xdd1/0x22f0 [ 913.310725][T17474] __sys_recvmmsg+0x519/0x6f0 [ 913.315393][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 913.321436][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 913.327566][T17474] __do_fast_syscall_32+0x102/0x160 [ 913.332741][T17474] do_fast_syscall_32+0x6a/0xc0 [ 913.337574][T17474] do_SYSENTER_32+0x73/0x90 [ 913.342053][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 913.348348][T17474] [ 913.350652][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 913.357298][T17474] do_recvmmsg+0xbf/0x22f0 [ 913.361702][T17474] do_recvmmsg+0xbf/0x22f0 [ 913.597246][T17474] not chained 1900000 origins [ 913.601961][T17474] CPU: 0 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 913.610721][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 913.620771][T17474] Call Trace: [ 913.624072][T17474] dump_stack+0x21c/0x280 [ 913.628407][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 913.634157][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 913.639272][T17474] ? kmsan_get_metadata+0x116/0x180 [ 913.644473][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 913.650332][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 913.656401][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 913.661345][T17474] ? kmsan_get_metadata+0x116/0x180 [ 913.666634][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 913.672449][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 913.678517][T17474] ? kmsan_get_metadata+0x116/0x180 [ 913.683716][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 913.689394][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 913.695473][T17474] ? _copy_from_user+0x1fd/0x300 [ 913.700414][T17474] ? kmsan_get_metadata+0x116/0x180 [ 913.705618][T17474] __msan_chain_origin+0x57/0xa0 [ 913.710560][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 913.715691][T17474] get_compat_msghdr+0x108/0x2b0 [ 913.720639][T17474] do_recvmmsg+0xdd1/0x22f0 [ 913.725155][T17474] ? kmsan_get_metadata+0x116/0x180 [ 913.730359][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 913.736268][T17474] ? kmsan_get_metadata+0x116/0x180 [ 913.741479][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 913.747115][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 913.752410][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 913.757191][T17474] __sys_recvmmsg+0x519/0x6f0 [ 913.761871][T17474] ? kmsan_get_metadata+0x116/0x180 [ 913.767071][T17474] ? kmsan_get_metadata+0x116/0x180 [ 913.772277][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 913.778336][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 913.784572][T17474] __do_fast_syscall_32+0x102/0x160 [ 913.789778][T17474] do_fast_syscall_32+0x6a/0xc0 [ 913.794708][T17474] do_SYSENTER_32+0x73/0x90 [ 913.799218][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 913.805585][T17474] RIP: 0023:0xf7f58549 [ 913.809665][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 913.829255][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 913.837648][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 913.845600][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 913.853564][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 913.861520][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 913.869493][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 913.877456][T17474] Uninit was stored to memory at: [ 913.882551][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 913.888245][T17474] __msan_chain_origin+0x57/0xa0 [ 913.893162][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 913.898251][T17474] get_compat_msghdr+0x108/0x2b0 [ 913.903172][T17474] do_recvmmsg+0xdd1/0x22f0 [ 913.907653][T17474] __sys_recvmmsg+0x519/0x6f0 [ 913.912322][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 913.918381][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 913.924521][T17474] __do_fast_syscall_32+0x102/0x160 [ 913.929707][T17474] do_fast_syscall_32+0x6a/0xc0 [ 913.934553][T17474] do_SYSENTER_32+0x73/0x90 [ 913.939118][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 913.945416][T17474] [ 913.947842][T17474] Uninit was stored to memory at: [ 913.952848][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 913.958596][T17474] __msan_chain_origin+0x57/0xa0 [ 913.963520][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 913.968609][T17474] get_compat_msghdr+0x108/0x2b0 [ 913.973584][T17474] do_recvmmsg+0xdd1/0x22f0 [ 913.978066][T17474] __sys_recvmmsg+0x519/0x6f0 [ 913.982723][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 913.988769][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 913.994946][T17474] __do_fast_syscall_32+0x102/0x160 [ 914.000139][T17474] do_fast_syscall_32+0x6a/0xc0 [ 914.004987][T17474] do_SYSENTER_32+0x73/0x90 [ 914.009500][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 914.015801][T17474] [ 914.018103][T17474] Uninit was stored to memory at: [ 914.023121][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 914.028831][T17474] __msan_chain_origin+0x57/0xa0 [ 914.033766][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 914.038854][T17474] get_compat_msghdr+0x108/0x2b0 [ 914.043772][T17474] do_recvmmsg+0xdd1/0x22f0 [ 914.048251][T17474] __sys_recvmmsg+0x519/0x6f0 [ 914.052907][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 914.058960][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 914.065095][T17474] __do_fast_syscall_32+0x102/0x160 [ 914.070287][T17474] do_fast_syscall_32+0x6a/0xc0 [ 914.075146][T17474] do_SYSENTER_32+0x73/0x90 [ 914.079628][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 914.085923][T17474] [ 914.088241][T17474] Uninit was stored to memory at: [ 914.093246][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 914.098956][T17474] __msan_chain_origin+0x57/0xa0 [ 914.103872][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 914.108965][T17474] get_compat_msghdr+0x108/0x2b0 [ 914.113902][T17474] do_recvmmsg+0xdd1/0x22f0 [ 914.118411][T17474] __sys_recvmmsg+0x519/0x6f0 [ 914.123090][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 914.129134][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 914.135270][T17474] __do_fast_syscall_32+0x102/0x160 [ 914.140450][T17474] do_fast_syscall_32+0x6a/0xc0 [ 914.145294][T17474] do_SYSENTER_32+0x73/0x90 [ 914.149802][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 914.156114][T17474] [ 914.158446][T17474] Uninit was stored to memory at: [ 914.163448][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 914.169142][T17474] __msan_chain_origin+0x57/0xa0 [ 914.174062][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 914.179150][T17474] get_compat_msghdr+0x108/0x2b0 [ 914.184103][T17474] do_recvmmsg+0xdd1/0x22f0 [ 914.188582][T17474] __sys_recvmmsg+0x519/0x6f0 [ 914.193236][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 914.199292][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 914.205426][T17474] __do_fast_syscall_32+0x102/0x160 [ 914.210620][T17474] do_fast_syscall_32+0x6a/0xc0 [ 914.215466][T17474] do_SYSENTER_32+0x73/0x90 [ 914.219961][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 914.226269][T17474] [ 914.228600][T17474] Uninit was stored to memory at: [ 914.233605][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 914.239302][T17474] __msan_chain_origin+0x57/0xa0 [ 914.244216][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 914.249310][T17474] get_compat_msghdr+0x108/0x2b0 [ 914.254223][T17474] do_recvmmsg+0xdd1/0x22f0 [ 914.258699][T17474] __sys_recvmmsg+0x519/0x6f0 [ 914.263364][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 914.269422][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 914.275556][T17474] __do_fast_syscall_32+0x102/0x160 [ 914.280737][T17474] do_fast_syscall_32+0x6a/0xc0 [ 914.285566][T17474] do_SYSENTER_32+0x73/0x90 [ 914.290088][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 914.296409][T17474] [ 914.298721][T17474] Uninit was stored to memory at: [ 914.303723][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 914.309437][T17474] __msan_chain_origin+0x57/0xa0 [ 914.314372][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 914.319471][T17474] get_compat_msghdr+0x108/0x2b0 [ 914.324388][T17474] do_recvmmsg+0xdd1/0x22f0 [ 914.328872][T17474] __sys_recvmmsg+0x519/0x6f0 [ 914.333548][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 914.339610][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 914.345777][T17474] __do_fast_syscall_32+0x102/0x160 [ 914.350967][T17474] do_fast_syscall_32+0x6a/0xc0 [ 914.355808][T17474] do_SYSENTER_32+0x73/0x90 [ 914.360296][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 914.366592][T17474] [ 914.368899][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 914.375570][T17474] do_recvmmsg+0xbf/0x22f0 [ 914.379992][T17474] do_recvmmsg+0xbf/0x22f0 [ 914.610835][T17474] not chained 1910000 origins [ 914.615557][T17474] CPU: 0 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 914.624340][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 914.634393][T17474] Call Trace: [ 914.637690][T17474] dump_stack+0x21c/0x280 [ 914.642026][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 914.647759][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 914.652882][T17474] ? kmsan_get_metadata+0x116/0x180 [ 914.658100][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 914.663909][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 914.669997][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 914.674941][T17474] ? kmsan_get_metadata+0x116/0x180 [ 914.680165][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 914.686012][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 914.692082][T17474] ? kmsan_get_metadata+0x116/0x180 [ 914.697295][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 914.702939][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 914.709010][T17474] ? _copy_from_user+0x1fd/0x300 [ 914.713947][T17474] ? kmsan_get_metadata+0x116/0x180 [ 914.719148][T17474] __msan_chain_origin+0x57/0xa0 [ 914.724093][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 914.729221][T17474] get_compat_msghdr+0x108/0x2b0 [ 914.734165][T17474] do_recvmmsg+0xdd1/0x22f0 [ 914.738675][T17474] ? kmsan_get_metadata+0x116/0x180 [ 914.743876][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 914.749771][T17474] ? kmsan_get_metadata+0x116/0x180 [ 914.754972][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 914.760612][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 914.765920][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 914.770704][T17474] __sys_recvmmsg+0x519/0x6f0 [ 914.775386][T17474] ? kmsan_get_metadata+0x116/0x180 [ 914.780590][T17474] ? kmsan_get_metadata+0x116/0x180 [ 914.785833][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 914.791910][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 914.798054][T17474] __do_fast_syscall_32+0x102/0x160 [ 914.803232][T17474] do_fast_syscall_32+0x6a/0xc0 [ 914.808063][T17474] do_SYSENTER_32+0x73/0x90 [ 914.812561][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 914.818877][T17474] RIP: 0023:0xf7f58549 [ 914.822942][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 914.842631][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 914.851033][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 914.859026][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 914.866992][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 914.874959][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 914.882933][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 914.890893][T17474] Uninit was stored to memory at: [ 914.895926][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 914.901625][T17474] __msan_chain_origin+0x57/0xa0 [ 914.906557][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 914.911659][T17474] get_compat_msghdr+0x108/0x2b0 [ 914.916595][T17474] do_recvmmsg+0xdd1/0x22f0 [ 914.921101][T17474] __sys_recvmmsg+0x519/0x6f0 [ 914.925777][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 914.931869][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 914.938106][T17474] __do_fast_syscall_32+0x102/0x160 [ 914.943286][T17474] do_fast_syscall_32+0x6a/0xc0 [ 914.948141][T17474] do_SYSENTER_32+0x73/0x90 [ 914.952640][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 914.959004][T17474] [ 914.961309][T17474] Uninit was stored to memory at: [ 914.966313][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 914.972022][T17474] __msan_chain_origin+0x57/0xa0 [ 914.976968][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 914.982073][T17474] get_compat_msghdr+0x108/0x2b0 [ 914.987013][T17474] do_recvmmsg+0xdd1/0x22f0 [ 914.991505][T17474] __sys_recvmmsg+0x519/0x6f0 [ 914.996188][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 915.002235][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 915.008368][T17474] __do_fast_syscall_32+0x102/0x160 [ 915.013545][T17474] do_fast_syscall_32+0x6a/0xc0 [ 915.018374][T17474] do_SYSENTER_32+0x73/0x90 [ 915.022857][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 915.029163][T17474] [ 915.031478][T17474] Uninit was stored to memory at: [ 915.036495][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 915.042204][T17474] __msan_chain_origin+0x57/0xa0 [ 915.047143][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 915.052250][T17474] get_compat_msghdr+0x108/0x2b0 [ 915.057198][T17474] do_recvmmsg+0xdd1/0x22f0 [ 915.061780][T17474] __sys_recvmmsg+0x519/0x6f0 [ 915.066432][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 915.072486][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 915.078661][T17474] __do_fast_syscall_32+0x102/0x160 [ 915.083856][T17474] do_fast_syscall_32+0x6a/0xc0 [ 915.088684][T17474] do_SYSENTER_32+0x73/0x90 [ 915.093205][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 915.099500][T17474] [ 915.101802][T17474] Uninit was stored to memory at: [ 915.106801][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 915.112505][T17474] __msan_chain_origin+0x57/0xa0 [ 915.117470][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 915.122664][T17474] get_compat_msghdr+0x108/0x2b0 [ 915.127594][T17474] do_recvmmsg+0xdd1/0x22f0 [ 915.132093][T17474] __sys_recvmmsg+0x519/0x6f0 [ 915.136766][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 915.143011][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 915.149145][T17474] __do_fast_syscall_32+0x102/0x160 [ 915.154346][T17474] do_fast_syscall_32+0x6a/0xc0 [ 915.159185][T17474] do_SYSENTER_32+0x73/0x90 [ 915.163669][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 915.169970][T17474] [ 915.172300][T17474] Uninit was stored to memory at: [ 915.177322][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 915.183020][T17474] __msan_chain_origin+0x57/0xa0 [ 915.187937][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 915.193029][T17474] get_compat_msghdr+0x108/0x2b0 [ 915.197944][T17474] do_recvmmsg+0xdd1/0x22f0 [ 915.202424][T17474] __sys_recvmmsg+0x519/0x6f0 [ 915.207078][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 915.213122][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 915.219250][T17474] __do_fast_syscall_32+0x102/0x160 [ 915.224451][T17474] do_fast_syscall_32+0x6a/0xc0 [ 915.229278][T17474] do_SYSENTER_32+0x73/0x90 [ 915.233776][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 915.240097][T17474] [ 915.242413][T17474] Uninit was stored to memory at: [ 915.247420][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 915.253120][T17474] __msan_chain_origin+0x57/0xa0 [ 915.258035][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 915.263135][T17474] get_compat_msghdr+0x108/0x2b0 [ 915.268061][T17474] do_recvmmsg+0xdd1/0x22f0 [ 915.272551][T17474] __sys_recvmmsg+0x519/0x6f0 [ 915.277227][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 915.283271][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 915.289433][T17474] __do_fast_syscall_32+0x102/0x160 [ 915.294622][T17474] do_fast_syscall_32+0x6a/0xc0 [ 915.299451][T17474] do_SYSENTER_32+0x73/0x90 [ 915.303934][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 915.310234][T17474] [ 915.312560][T17474] Uninit was stored to memory at: [ 915.317593][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 915.323290][T17474] __msan_chain_origin+0x57/0xa0 [ 915.328214][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 915.333302][T17474] get_compat_msghdr+0x108/0x2b0 [ 915.338243][T17474] do_recvmmsg+0xdd1/0x22f0 [ 915.342812][T17474] __sys_recvmmsg+0x519/0x6f0 [ 915.347467][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 915.353514][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 915.359644][T17474] __do_fast_syscall_32+0x102/0x160 [ 915.364824][T17474] do_fast_syscall_32+0x6a/0xc0 [ 915.369740][T17474] do_SYSENTER_32+0x73/0x90 [ 915.374237][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 915.380561][T17474] [ 915.382866][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 915.389514][T17474] do_recvmmsg+0xbf/0x22f0 [ 915.393920][T17474] do_recvmmsg+0xbf/0x22f0 [ 915.638947][T17474] not chained 1920000 origins [ 915.643698][T17474] CPU: 0 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 915.652458][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 915.662512][T17474] Call Trace: [ 915.665810][T17474] dump_stack+0x21c/0x280 [ 915.670160][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 915.675911][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 915.681026][T17474] ? kmsan_get_metadata+0x116/0x180 [ 915.686226][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 915.692038][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 915.698114][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 915.703059][T17474] ? kmsan_get_metadata+0x116/0x180 [ 915.708295][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 915.714213][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 915.720280][T17474] ? kmsan_get_metadata+0x116/0x180 [ 915.725499][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 915.731141][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 915.737210][T17474] ? _copy_from_user+0x1fd/0x300 [ 915.742143][T17474] ? kmsan_get_metadata+0x116/0x180 [ 915.747321][T17474] __msan_chain_origin+0x57/0xa0 [ 915.752360][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 915.757468][T17474] get_compat_msghdr+0x108/0x2b0 [ 915.762394][T17474] do_recvmmsg+0xdd1/0x22f0 [ 915.766881][T17474] ? kmsan_get_metadata+0x116/0x180 [ 915.772058][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 915.777942][T17474] ? kmsan_get_metadata+0x116/0x180 [ 915.783175][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 915.788786][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 915.794051][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 915.798848][T17474] __sys_recvmmsg+0x519/0x6f0 [ 915.803504][T17474] ? kmsan_get_metadata+0x116/0x180 [ 915.808706][T17474] ? kmsan_get_metadata+0x116/0x180 [ 915.813892][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 915.819944][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 915.826091][T17474] __do_fast_syscall_32+0x102/0x160 [ 915.831271][T17474] do_fast_syscall_32+0x6a/0xc0 [ 915.836114][T17474] do_SYSENTER_32+0x73/0x90 [ 915.840599][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 915.846922][T17474] RIP: 0023:0xf7f58549 [ 915.850983][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 915.870568][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 915.878969][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 915.886940][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 915.894891][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 915.902842][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 915.910799][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 915.918754][T17474] Uninit was stored to memory at: [ 915.923764][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 915.929467][T17474] __msan_chain_origin+0x57/0xa0 [ 915.934392][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 915.939485][T17474] get_compat_msghdr+0x108/0x2b0 [ 915.944457][T17474] do_recvmmsg+0xdd1/0x22f0 [ 915.948971][T17474] __sys_recvmmsg+0x519/0x6f0 [ 915.953650][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 915.959697][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 915.965831][T17474] __do_fast_syscall_32+0x102/0x160 [ 915.971044][T17474] do_fast_syscall_32+0x6a/0xc0 [ 915.975908][T17474] do_SYSENTER_32+0x73/0x90 [ 915.980394][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 915.986693][T17474] [ 915.988996][T17474] Uninit was stored to memory at: [ 915.994010][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 915.999706][T17474] __msan_chain_origin+0x57/0xa0 [ 916.004637][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 916.009722][T17474] get_compat_msghdr+0x108/0x2b0 [ 916.014642][T17474] do_recvmmsg+0xdd1/0x22f0 [ 916.019225][T17474] __sys_recvmmsg+0x519/0x6f0 [ 916.023880][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 916.029955][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 916.036102][T17474] __do_fast_syscall_32+0x102/0x160 [ 916.041278][T17474] do_fast_syscall_32+0x6a/0xc0 [ 916.046121][T17474] do_SYSENTER_32+0x73/0x90 [ 916.050713][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 916.057021][T17474] [ 916.059342][T17474] Uninit was stored to memory at: [ 916.064367][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 916.070076][T17474] __msan_chain_origin+0x57/0xa0 [ 916.075006][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 916.080123][T17474] get_compat_msghdr+0x108/0x2b0 [ 916.085041][T17474] do_recvmmsg+0xdd1/0x22f0 [ 916.089519][T17474] __sys_recvmmsg+0x519/0x6f0 [ 916.094184][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 916.100227][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 916.106362][T17474] __do_fast_syscall_32+0x102/0x160 [ 916.111535][T17474] do_fast_syscall_32+0x6a/0xc0 [ 916.116483][T17474] do_SYSENTER_32+0x73/0x90 [ 916.120969][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 916.127307][T17474] [ 916.129615][T17474] Uninit was stored to memory at: [ 916.134618][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 916.140326][T17474] __msan_chain_origin+0x57/0xa0 [ 916.145277][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 916.150469][T17474] get_compat_msghdr+0x108/0x2b0 [ 916.155400][T17474] do_recvmmsg+0xdd1/0x22f0 [ 916.159903][T17474] __sys_recvmmsg+0x519/0x6f0 [ 916.164595][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 916.170641][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 916.176772][T17474] __do_fast_syscall_32+0x102/0x160 [ 916.181961][T17474] do_fast_syscall_32+0x6a/0xc0 [ 916.186794][T17474] do_SYSENTER_32+0x73/0x90 [ 916.191279][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 916.197587][T17474] [ 916.199890][T17474] Uninit was stored to memory at: [ 916.204948][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 916.210733][T17474] __msan_chain_origin+0x57/0xa0 [ 916.215649][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 916.220744][T17474] get_compat_msghdr+0x108/0x2b0 [ 916.225660][T17474] do_recvmmsg+0xdd1/0x22f0 [ 916.230141][T17474] __sys_recvmmsg+0x519/0x6f0 [ 916.234821][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 916.240879][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 916.247111][T17474] __do_fast_syscall_32+0x102/0x160 [ 916.252301][T17474] do_fast_syscall_32+0x6a/0xc0 [ 916.257173][T17474] do_SYSENTER_32+0x73/0x90 [ 916.261672][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 916.267977][T17474] [ 916.270288][T17474] Uninit was stored to memory at: [ 916.275430][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 916.281127][T17474] __msan_chain_origin+0x57/0xa0 [ 916.286040][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 916.291128][T17474] get_compat_msghdr+0x108/0x2b0 [ 916.296128][T17474] do_recvmmsg+0xdd1/0x22f0 [ 916.300605][T17474] __sys_recvmmsg+0x519/0x6f0 [ 916.305258][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 916.311303][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 916.317455][T17474] __do_fast_syscall_32+0x102/0x160 [ 916.322628][T17474] do_fast_syscall_32+0x6a/0xc0 [ 916.327472][T17474] do_SYSENTER_32+0x73/0x90 [ 916.332056][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 916.338351][T17474] [ 916.340681][T17474] Uninit was stored to memory at: [ 916.345683][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 916.351378][T17474] __msan_chain_origin+0x57/0xa0 [ 916.356297][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 916.361413][T17474] get_compat_msghdr+0x108/0x2b0 [ 916.366356][T17474] do_recvmmsg+0xdd1/0x22f0 [ 916.370837][T17474] __sys_recvmmsg+0x519/0x6f0 [ 916.375495][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 916.381578][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 916.387824][T17474] __do_fast_syscall_32+0x102/0x160 [ 916.393019][T17474] do_fast_syscall_32+0x6a/0xc0 [ 916.397846][T17474] do_SYSENTER_32+0x73/0x90 [ 916.402328][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 916.408637][T17474] [ 916.410976][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 916.417623][T17474] do_recvmmsg+0xbf/0x22f0 [ 916.422020][T17474] do_recvmmsg+0xbf/0x22f0 [ 916.648511][T17474] not chained 1930000 origins [ 916.653241][T17474] CPU: 0 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 916.661992][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 916.672063][T17474] Call Trace: [ 916.675362][T17474] dump_stack+0x21c/0x280 [ 916.679696][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 916.685514][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 916.690633][T17474] ? kmsan_get_metadata+0x116/0x180 [ 916.695856][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 916.701667][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 916.707944][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 916.712883][T17474] ? kmsan_get_metadata+0x116/0x180 [ 916.718082][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 916.723901][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 916.730069][T17474] ? kmsan_get_metadata+0x116/0x180 [ 916.735267][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 916.740909][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 916.746986][T17474] ? _copy_from_user+0x1fd/0x300 [ 916.751930][T17474] ? kmsan_get_metadata+0x116/0x180 [ 916.757131][T17474] __msan_chain_origin+0x57/0xa0 [ 916.762246][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 916.767363][T17474] get_compat_msghdr+0x108/0x2b0 [ 916.772306][T17474] do_recvmmsg+0xdd1/0x22f0 [ 916.776864][T17474] ? kmsan_get_metadata+0x116/0x180 [ 916.782067][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 916.787975][T17474] ? kmsan_get_metadata+0x116/0x180 [ 916.793174][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 916.798810][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 916.804112][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 916.808884][T17474] __sys_recvmmsg+0x519/0x6f0 [ 916.813571][T17474] ? kmsan_get_metadata+0x116/0x180 [ 916.818942][T17474] ? kmsan_get_metadata+0x116/0x180 [ 916.824234][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 916.830463][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 916.836727][T17474] __do_fast_syscall_32+0x102/0x160 [ 916.841933][T17474] do_fast_syscall_32+0x6a/0xc0 [ 916.846788][T17474] do_SYSENTER_32+0x73/0x90 [ 916.851383][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 916.857704][T17474] RIP: 0023:0xf7f58549 [ 916.861777][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 916.881384][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 916.889806][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 916.897767][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 916.905719][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 916.913670][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 916.921628][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 916.929592][T17474] Uninit was stored to memory at: [ 916.934666][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 916.940373][T17474] __msan_chain_origin+0x57/0xa0 [ 916.945297][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 916.950386][T17474] get_compat_msghdr+0x108/0x2b0 [ 916.955298][T17474] do_recvmmsg+0xdd1/0x22f0 [ 916.959786][T17474] __sys_recvmmsg+0x519/0x6f0 [ 916.964454][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 916.970759][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 916.976893][T17474] __do_fast_syscall_32+0x102/0x160 [ 916.982081][T17474] do_fast_syscall_32+0x6a/0xc0 [ 916.986922][T17474] do_SYSENTER_32+0x73/0x90 [ 916.991406][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 916.997725][T17474] [ 917.000031][T17474] Uninit was stored to memory at: [ 917.005045][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 917.010739][T17474] __msan_chain_origin+0x57/0xa0 [ 917.015651][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 917.020749][T17474] get_compat_msghdr+0x108/0x2b0 [ 917.025687][T17474] do_recvmmsg+0xdd1/0x22f0 [ 917.030193][T17474] __sys_recvmmsg+0x519/0x6f0 [ 917.034859][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 917.040923][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 917.047083][T17474] __do_fast_syscall_32+0x102/0x160 [ 917.052370][T17474] do_fast_syscall_32+0x6a/0xc0 [ 917.057287][T17474] do_SYSENTER_32+0x73/0x90 [ 917.061785][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 917.068217][T17474] [ 917.070517][T17474] Uninit was stored to memory at: [ 917.076057][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 917.081778][T17474] __msan_chain_origin+0x57/0xa0 [ 917.086707][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 917.091810][T17474] get_compat_msghdr+0x108/0x2b0 [ 917.096736][T17474] do_recvmmsg+0xdd1/0x22f0 [ 917.101229][T17474] __sys_recvmmsg+0x519/0x6f0 [ 917.105895][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 917.111955][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 917.118285][T17474] __do_fast_syscall_32+0x102/0x160 [ 917.123463][T17474] do_fast_syscall_32+0x6a/0xc0 [ 917.128289][T17474] do_SYSENTER_32+0x73/0x90 [ 917.132786][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 917.139114][T17474] [ 917.141421][T17474] Uninit was stored to memory at: [ 917.146436][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 917.152130][T17474] __msan_chain_origin+0x57/0xa0 [ 917.157044][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 917.162257][T17474] get_compat_msghdr+0x108/0x2b0 [ 917.167194][T17474] do_recvmmsg+0xdd1/0x22f0 [ 917.171677][T17474] __sys_recvmmsg+0x519/0x6f0 [ 917.176328][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 917.182562][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 917.188693][T17474] __do_fast_syscall_32+0x102/0x160 [ 917.193869][T17474] do_fast_syscall_32+0x6a/0xc0 [ 917.198712][T17474] do_SYSENTER_32+0x73/0x90 [ 917.203205][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 917.209494][T17474] [ 917.211807][T17474] Uninit was stored to memory at: [ 917.216806][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 917.222593][T17474] __msan_chain_origin+0x57/0xa0 [ 917.227521][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 917.232605][T17474] get_compat_msghdr+0x108/0x2b0 [ 917.237514][T17474] do_recvmmsg+0xdd1/0x22f0 [ 917.242006][T17474] __sys_recvmmsg+0x519/0x6f0 [ 917.246673][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 917.252718][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 917.258848][T17474] __do_fast_syscall_32+0x102/0x160 [ 917.264026][T17474] do_fast_syscall_32+0x6a/0xc0 [ 917.268853][T17474] do_SYSENTER_32+0x73/0x90 [ 917.273345][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 917.279643][T17474] [ 917.281987][T17474] Uninit was stored to memory at: [ 917.287004][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 917.292699][T17474] __msan_chain_origin+0x57/0xa0 [ 917.297702][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 917.302788][T17474] get_compat_msghdr+0x108/0x2b0 [ 917.307724][T17474] do_recvmmsg+0xdd1/0x22f0 [ 917.312294][T17474] __sys_recvmmsg+0x519/0x6f0 [ 917.316945][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 917.323006][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 917.329134][T17474] __do_fast_syscall_32+0x102/0x160 [ 917.334310][T17474] do_fast_syscall_32+0x6a/0xc0 [ 917.339136][T17474] do_SYSENTER_32+0x73/0x90 [ 917.343620][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 917.350023][T17474] [ 917.352336][T17474] Uninit was stored to memory at: [ 917.357564][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 917.363361][T17474] __msan_chain_origin+0x57/0xa0 [ 917.368285][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 917.373468][T17474] get_compat_msghdr+0x108/0x2b0 [ 917.378416][T17474] do_recvmmsg+0xdd1/0x22f0 [ 917.382926][T17474] __sys_recvmmsg+0x519/0x6f0 [ 917.387600][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 917.393682][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 917.399825][T17474] __do_fast_syscall_32+0x102/0x160 [ 917.405067][T17474] do_fast_syscall_32+0x6a/0xc0 [ 917.409923][T17474] do_SYSENTER_32+0x73/0x90 [ 917.414591][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 917.420924][T17474] [ 917.423241][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 917.429904][T17474] do_recvmmsg+0xbf/0x22f0 [ 917.434497][T17474] do_recvmmsg+0xbf/0x22f0 [ 917.723635][T17474] not chained 1940000 origins [ 917.728463][T17474] CPU: 0 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 917.737205][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 917.747372][T17474] Call Trace: [ 917.750649][T17474] dump_stack+0x21c/0x280 [ 917.754972][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 917.760687][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 917.765876][T17474] ? kmsan_get_metadata+0x116/0x180 [ 917.771052][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 917.776834][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 917.782896][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 917.787911][T17474] ? kmsan_get_metadata+0x116/0x180 [ 917.793105][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 917.798907][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 917.804992][T17474] ? kmsan_get_metadata+0x116/0x180 [ 917.810168][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 917.815795][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 917.821851][T17474] ? _copy_from_user+0x1fd/0x300 [ 917.826906][T17474] ? kmsan_get_metadata+0x116/0x180 [ 917.832083][T17474] __msan_chain_origin+0x57/0xa0 [ 917.836997][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 917.842101][T17474] get_compat_msghdr+0x108/0x2b0 [ 917.847027][T17474] do_recvmmsg+0xdd1/0x22f0 [ 917.851510][T17474] ? kmsan_get_metadata+0x116/0x180 [ 917.856683][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 917.862573][T17474] ? kmsan_get_metadata+0x116/0x180 [ 917.867755][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 917.873364][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 917.878630][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 917.883371][T17474] __sys_recvmmsg+0x519/0x6f0 [ 917.888023][T17474] ? kmsan_get_metadata+0x116/0x180 [ 917.893295][T17474] ? kmsan_get_metadata+0x116/0x180 [ 917.898480][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 917.904541][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 917.910690][T17474] __do_fast_syscall_32+0x102/0x160 [ 917.915869][T17474] do_fast_syscall_32+0x6a/0xc0 [ 917.920713][T17474] do_SYSENTER_32+0x73/0x90 [ 917.925209][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 917.931602][T17474] RIP: 0023:0xf7f58549 [ 917.935650][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 917.955233][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 917.963639][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 917.971589][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 917.979534][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 917.987485][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 917.995433][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 918.003385][T17474] Uninit was stored to memory at: [ 918.008388][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 918.014091][T17474] __msan_chain_origin+0x57/0xa0 [ 918.019042][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 918.024131][T17474] get_compat_msghdr+0x108/0x2b0 [ 918.029041][T17474] do_recvmmsg+0xdd1/0x22f0 [ 918.033563][T17474] __sys_recvmmsg+0x519/0x6f0 [ 918.038228][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 918.044272][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 918.050406][T17474] __do_fast_syscall_32+0x102/0x160 [ 918.055583][T17474] do_fast_syscall_32+0x6a/0xc0 [ 918.060437][T17474] do_SYSENTER_32+0x73/0x90 [ 918.064936][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 918.071282][T17474] [ 918.073584][T17474] Uninit was stored to memory at: [ 918.078585][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 918.084294][T17474] __msan_chain_origin+0x57/0xa0 [ 918.089207][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 918.094307][T17474] get_compat_msghdr+0x108/0x2b0 [ 918.099237][T17474] do_recvmmsg+0xdd1/0x22f0 [ 918.103753][T17474] __sys_recvmmsg+0x519/0x6f0 [ 918.108432][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 918.114479][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 918.120637][T17474] __do_fast_syscall_32+0x102/0x160 [ 918.125836][T17474] do_fast_syscall_32+0x6a/0xc0 [ 918.130692][T17474] do_SYSENTER_32+0x73/0x90 [ 918.135177][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 918.141477][T17474] [ 918.143788][T17474] Uninit was stored to memory at: [ 918.148797][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 918.154589][T17474] __msan_chain_origin+0x57/0xa0 [ 918.159516][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 918.164620][T17474] get_compat_msghdr+0x108/0x2b0 [ 918.169533][T17474] do_recvmmsg+0xdd1/0x22f0 [ 918.174026][T17474] __sys_recvmmsg+0x519/0x6f0 [ 918.178679][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 918.184915][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 918.191056][T17474] __do_fast_syscall_32+0x102/0x160 [ 918.196317][T17474] do_fast_syscall_32+0x6a/0xc0 [ 918.201157][T17474] do_SYSENTER_32+0x73/0x90 [ 918.205654][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 918.211968][T17474] [ 918.214272][T17474] Uninit was stored to memory at: [ 918.219285][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 918.224987][T17474] __msan_chain_origin+0x57/0xa0 [ 918.229936][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 918.235045][T17474] get_compat_msghdr+0x108/0x2b0 [ 918.239973][T17474] do_recvmmsg+0xdd1/0x22f0 [ 918.244477][T17474] __sys_recvmmsg+0x519/0x6f0 [ 918.249129][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 918.255175][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 918.261321][T17474] __do_fast_syscall_32+0x102/0x160 [ 918.266507][T17474] do_fast_syscall_32+0x6a/0xc0 [ 918.271333][T17474] do_SYSENTER_32+0x73/0x90 [ 918.275814][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 918.282112][T17474] [ 918.284422][T17474] Uninit was stored to memory at: [ 918.289424][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 918.295120][T17474] __msan_chain_origin+0x57/0xa0 [ 918.300044][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 918.305164][T17474] get_compat_msghdr+0x108/0x2b0 [ 918.310106][T17474] do_recvmmsg+0xdd1/0x22f0 [ 918.314600][T17474] __sys_recvmmsg+0x519/0x6f0 [ 918.319266][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 918.325324][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 918.331514][T17474] __do_fast_syscall_32+0x102/0x160 [ 918.336689][T17474] do_fast_syscall_32+0x6a/0xc0 [ 918.341535][T17474] do_SYSENTER_32+0x73/0x90 [ 918.346047][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 918.352452][T17474] [ 918.354799][T17474] Uninit was stored to memory at: [ 918.359809][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 918.365607][T17474] __msan_chain_origin+0x57/0xa0 [ 918.370522][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 918.375606][T17474] get_compat_msghdr+0x108/0x2b0 [ 918.380543][T17474] do_recvmmsg+0xdd1/0x22f0 [ 918.385058][T17474] __sys_recvmmsg+0x519/0x6f0 [ 918.389711][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 918.395784][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 918.401932][T17474] __do_fast_syscall_32+0x102/0x160 [ 918.407133][T17474] do_fast_syscall_32+0x6a/0xc0 [ 918.411984][T17474] do_SYSENTER_32+0x73/0x90 [ 918.416465][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 918.422868][T17474] [ 918.425168][T17474] Uninit was stored to memory at: [ 918.430169][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 918.435961][T17474] __msan_chain_origin+0x57/0xa0 [ 918.440887][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 918.445984][T17474] get_compat_msghdr+0x108/0x2b0 [ 918.450910][T17474] do_recvmmsg+0xdd1/0x22f0 [ 918.455576][T17474] __sys_recvmmsg+0x519/0x6f0 [ 918.460328][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 918.466380][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 918.472530][T17474] __do_fast_syscall_32+0x102/0x160 [ 918.477703][T17474] do_fast_syscall_32+0x6a/0xc0 [ 918.482547][T17474] do_SYSENTER_32+0x73/0x90 [ 918.487045][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 918.493344][T17474] [ 918.495648][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 918.502313][T17474] do_recvmmsg+0xbf/0x22f0 [ 918.506716][T17474] do_recvmmsg+0xbf/0x22f0 [ 919.036149][T17474] not chained 1950000 origins [ 919.040954][T17474] CPU: 0 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 919.049705][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 919.059757][T17474] Call Trace: [ 919.063057][T17474] dump_stack+0x21c/0x280 [ 919.067396][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 919.073214][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 919.078330][T17474] ? kmsan_get_metadata+0x116/0x180 [ 919.083538][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 919.089344][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 919.095411][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 919.100353][T17474] ? kmsan_get_metadata+0x116/0x180 [ 919.105554][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 919.111362][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 919.117434][T17474] ? kmsan_get_metadata+0x116/0x180 [ 919.122634][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 919.128292][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 919.134360][T17474] ? _copy_from_user+0x1fd/0x300 [ 919.139299][T17474] ? kmsan_get_metadata+0x116/0x180 [ 919.144515][T17474] __msan_chain_origin+0x57/0xa0 [ 919.149453][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 919.154574][T17474] get_compat_msghdr+0x108/0x2b0 [ 919.159508][T17474] do_recvmmsg+0xdd1/0x22f0 [ 919.163994][T17474] ? kmsan_get_metadata+0x116/0x180 [ 919.169166][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 919.175037][T17474] ? kmsan_get_metadata+0x116/0x180 [ 919.180255][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 919.185991][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 919.191256][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 919.196005][T17474] __sys_recvmmsg+0x519/0x6f0 [ 919.200660][T17474] ? kmsan_get_metadata+0x116/0x180 [ 919.205840][T17474] ? kmsan_get_metadata+0x116/0x180 [ 919.211029][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 919.217077][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 919.223220][T17474] __do_fast_syscall_32+0x102/0x160 [ 919.228425][T17474] do_fast_syscall_32+0x6a/0xc0 [ 919.233257][T17474] do_SYSENTER_32+0x73/0x90 [ 919.237747][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 919.244046][T17474] RIP: 0023:0xf7f58549 [ 919.248091][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 919.267685][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 919.276077][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 919.284026][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 919.291974][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 919.299929][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 919.307889][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 919.315840][T17474] Uninit was stored to memory at: [ 919.320853][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 919.326543][T17474] __msan_chain_origin+0x57/0xa0 [ 919.331470][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 919.336658][T17474] get_compat_msghdr+0x108/0x2b0 [ 919.341590][T17474] do_recvmmsg+0xdd1/0x22f0 [ 919.346070][T17474] __sys_recvmmsg+0x519/0x6f0 [ 919.350723][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 919.356858][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 919.363047][T17474] __do_fast_syscall_32+0x102/0x160 [ 919.368227][T17474] do_fast_syscall_32+0x6a/0xc0 [ 919.373057][T17474] do_SYSENTER_32+0x73/0x90 [ 919.377537][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 919.383829][T17474] [ 919.386136][T17474] Uninit was stored to memory at: [ 919.391150][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 919.396850][T17474] __msan_chain_origin+0x57/0xa0 [ 919.401764][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 919.406860][T17474] get_compat_msghdr+0x108/0x2b0 [ 919.411794][T17474] do_recvmmsg+0xdd1/0x22f0 [ 919.416273][T17474] __sys_recvmmsg+0x519/0x6f0 [ 919.420926][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 919.427062][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 919.433202][T17474] __do_fast_syscall_32+0x102/0x160 [ 919.438464][T17474] do_fast_syscall_32+0x6a/0xc0 [ 919.443306][T17474] do_SYSENTER_32+0x73/0x90 [ 919.447810][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 919.454106][T17474] [ 919.456417][T17474] Uninit was stored to memory at: [ 919.461429][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 919.467136][T17474] __msan_chain_origin+0x57/0xa0 [ 919.472054][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 919.477150][T17474] get_compat_msghdr+0x108/0x2b0 [ 919.482076][T17474] do_recvmmsg+0xdd1/0x22f0 [ 919.486553][T17474] __sys_recvmmsg+0x519/0x6f0 [ 919.491206][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 919.497343][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 919.503482][T17474] __do_fast_syscall_32+0x102/0x160 [ 919.508660][T17474] do_fast_syscall_32+0x6a/0xc0 [ 919.513489][T17474] do_SYSENTER_32+0x73/0x90 [ 919.518015][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 919.524399][T17474] [ 919.526704][T17474] Uninit was stored to memory at: [ 919.531791][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 919.537535][T17474] __msan_chain_origin+0x57/0xa0 [ 919.542451][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 919.547567][T17474] get_compat_msghdr+0x108/0x2b0 [ 919.552510][T17474] do_recvmmsg+0xdd1/0x22f0 [ 919.557017][T17474] __sys_recvmmsg+0x519/0x6f0 [ 919.561706][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 919.568011][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 919.574143][T17474] __do_fast_syscall_32+0x102/0x160 [ 919.579316][T17474] do_fast_syscall_32+0x6a/0xc0 [ 919.584143][T17474] do_SYSENTER_32+0x73/0x90 [ 919.588634][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 919.594928][T17474] [ 919.597231][T17474] Uninit was stored to memory at: [ 919.602231][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 919.607975][T17474] __msan_chain_origin+0x57/0xa0 [ 919.612893][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 919.617980][T17474] get_compat_msghdr+0x108/0x2b0 [ 919.622895][T17474] do_recvmmsg+0xdd1/0x22f0 [ 919.627376][T17474] __sys_recvmmsg+0x519/0x6f0 [ 919.632044][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 919.638177][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 919.644324][T17474] __do_fast_syscall_32+0x102/0x160 [ 919.649498][T17474] do_fast_syscall_32+0x6a/0xc0 [ 919.654327][T17474] do_SYSENTER_32+0x73/0x90 [ 919.658804][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 919.665123][T17474] [ 919.667426][T17474] Uninit was stored to memory at: [ 919.672427][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 919.678119][T17474] __msan_chain_origin+0x57/0xa0 [ 919.683034][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 919.688119][T17474] get_compat_msghdr+0x108/0x2b0 [ 919.693037][T17474] do_recvmmsg+0xdd1/0x22f0 [ 919.697522][T17474] __sys_recvmmsg+0x519/0x6f0 [ 919.702179][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 919.708229][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 919.714375][T17474] __do_fast_syscall_32+0x102/0x160 [ 919.719564][T17474] do_fast_syscall_32+0x6a/0xc0 [ 919.724434][T17474] do_SYSENTER_32+0x73/0x90 [ 919.728916][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 919.735300][T17474] [ 919.737636][T17474] Uninit was stored to memory at: [ 919.742666][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 919.748359][T17474] __msan_chain_origin+0x57/0xa0 [ 919.753284][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 919.758367][T17474] get_compat_msghdr+0x108/0x2b0 [ 919.763279][T17474] do_recvmmsg+0xdd1/0x22f0 [ 919.767759][T17474] __sys_recvmmsg+0x519/0x6f0 [ 919.772417][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 919.778466][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 919.784621][T17474] __do_fast_syscall_32+0x102/0x160 [ 919.789808][T17474] do_fast_syscall_32+0x6a/0xc0 [ 919.794659][T17474] do_SYSENTER_32+0x73/0x90 [ 919.799141][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 919.805523][T17474] [ 919.807827][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 919.814478][T17474] do_recvmmsg+0xbf/0x22f0 [ 919.818868][T17474] do_recvmmsg+0xbf/0x22f0 [ 920.078759][T17474] not chained 1960000 origins [ 920.083557][T17474] CPU: 0 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 920.092307][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 920.102363][T17474] Call Trace: [ 920.105659][T17474] dump_stack+0x21c/0x280 [ 920.109997][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 920.115726][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 920.120847][T17474] ? kmsan_get_metadata+0x116/0x180 [ 920.126136][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 920.131947][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 920.138009][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 920.142994][T17474] ? kmsan_get_metadata+0x116/0x180 [ 920.148193][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 920.154001][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 920.160070][T17474] ? kmsan_get_metadata+0x116/0x180 [ 920.165272][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 920.170915][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 920.176984][T17474] ? _copy_from_user+0x1fd/0x300 [ 920.181924][T17474] ? kmsan_get_metadata+0x116/0x180 [ 920.187122][T17474] __msan_chain_origin+0x57/0xa0 [ 920.192062][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 920.197181][T17474] get_compat_msghdr+0x108/0x2b0 [ 920.202133][T17474] do_recvmmsg+0xdd1/0x22f0 [ 920.206640][T17474] ? kmsan_get_metadata+0x116/0x180 [ 920.211840][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 920.217824][T17474] ? kmsan_get_metadata+0x116/0x180 [ 920.223029][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 920.228659][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 920.233952][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 920.238717][T17474] __sys_recvmmsg+0x519/0x6f0 [ 920.243394][T17474] ? kmsan_get_metadata+0x116/0x180 [ 920.248591][T17474] ? kmsan_get_metadata+0x116/0x180 [ 920.253795][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 920.259868][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 920.266028][T17474] __do_fast_syscall_32+0x102/0x160 [ 920.271233][T17474] do_fast_syscall_32+0x6a/0xc0 [ 920.276089][T17474] do_SYSENTER_32+0x73/0x90 [ 920.280599][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 920.286929][T17474] RIP: 0023:0xf7f58549 [ 920.290985][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 920.310587][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 920.319037][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 920.327075][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 920.335027][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 920.342973][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 920.350935][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 920.358908][T17474] Uninit was stored to memory at: [ 920.363922][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 920.369614][T17474] __msan_chain_origin+0x57/0xa0 [ 920.374615][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 920.379753][T17474] get_compat_msghdr+0x108/0x2b0 [ 920.384771][T17474] do_recvmmsg+0xdd1/0x22f0 [ 920.389256][T17474] __sys_recvmmsg+0x519/0x6f0 [ 920.393942][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 920.399991][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 920.406124][T17474] __do_fast_syscall_32+0x102/0x160 [ 920.411321][T17474] do_fast_syscall_32+0x6a/0xc0 [ 920.416163][T17474] do_SYSENTER_32+0x73/0x90 [ 920.420734][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 920.427115][T17474] [ 920.429447][T17474] Uninit was stored to memory at: [ 920.434448][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 920.440155][T17474] __msan_chain_origin+0x57/0xa0 [ 920.445201][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 920.450303][T17474] get_compat_msghdr+0x108/0x2b0 [ 920.455243][T17474] do_recvmmsg+0xdd1/0x22f0 [ 920.459748][T17474] __sys_recvmmsg+0x519/0x6f0 [ 920.464424][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 920.470480][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 920.476621][T17474] __do_fast_syscall_32+0x102/0x160 [ 920.481880][T17474] do_fast_syscall_32+0x6a/0xc0 [ 920.486705][T17474] do_SYSENTER_32+0x73/0x90 [ 920.491203][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 920.497518][T17474] [ 920.499825][T17474] Uninit was stored to memory at: [ 920.504912][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 920.510614][T17474] __msan_chain_origin+0x57/0xa0 [ 920.515539][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 920.520625][T17474] get_compat_msghdr+0x108/0x2b0 [ 920.525537][T17474] do_recvmmsg+0xdd1/0x22f0 [ 920.530025][T17474] __sys_recvmmsg+0x519/0x6f0 [ 920.534706][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 920.540757][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 920.546897][T17474] __do_fast_syscall_32+0x102/0x160 [ 920.552082][T17474] do_fast_syscall_32+0x6a/0xc0 [ 920.556929][T17474] do_SYSENTER_32+0x73/0x90 [ 920.561426][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 920.567720][T17474] [ 920.570045][T17474] Uninit was stored to memory at: [ 920.575055][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 920.580907][T17474] __msan_chain_origin+0x57/0xa0 [ 920.585858][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 920.590959][T17474] get_compat_msghdr+0x108/0x2b0 [ 920.595901][T17474] do_recvmmsg+0xdd1/0x22f0 [ 920.600392][T17474] __sys_recvmmsg+0x519/0x6f0 [ 920.605053][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 920.611134][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 920.617274][T17474] __do_fast_syscall_32+0x102/0x160 [ 920.622450][T17474] do_fast_syscall_32+0x6a/0xc0 [ 920.627271][T17474] do_SYSENTER_32+0x73/0x90 [ 920.631764][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 920.638066][T17474] [ 920.640369][T17474] Uninit was stored to memory at: [ 920.645371][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 920.651093][T17474] __msan_chain_origin+0x57/0xa0 [ 920.656022][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 920.661122][T17474] get_compat_msghdr+0x108/0x2b0 [ 920.666048][T17474] do_recvmmsg+0xdd1/0x22f0 [ 920.670541][T17474] __sys_recvmmsg+0x519/0x6f0 [ 920.675225][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 920.681269][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 920.687399][T17474] __do_fast_syscall_32+0x102/0x160 [ 920.692576][T17474] do_fast_syscall_32+0x6a/0xc0 [ 920.697507][T17474] do_SYSENTER_32+0x73/0x90 [ 920.701992][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 920.708283][T17474] [ 920.710591][T17474] Uninit was stored to memory at: [ 920.715605][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 920.721303][T17474] __msan_chain_origin+0x57/0xa0 [ 920.726337][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 920.731450][T17474] get_compat_msghdr+0x108/0x2b0 [ 920.736375][T17474] do_recvmmsg+0xdd1/0x22f0 [ 920.740874][T17474] __sys_recvmmsg+0x519/0x6f0 [ 920.745638][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 920.751698][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 920.757860][T17474] __do_fast_syscall_32+0x102/0x160 [ 920.763072][T17474] do_fast_syscall_32+0x6a/0xc0 [ 920.767931][T17474] do_SYSENTER_32+0x73/0x90 [ 920.772427][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 920.778823][T17474] [ 920.781125][T17474] Uninit was stored to memory at: [ 920.786133][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 920.791841][T17474] __msan_chain_origin+0x57/0xa0 [ 920.796770][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 920.801855][T17474] get_compat_msghdr+0x108/0x2b0 [ 920.806768][T17474] do_recvmmsg+0xdd1/0x22f0 [ 920.811265][T17474] __sys_recvmmsg+0x519/0x6f0 [ 920.815927][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 920.821968][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 920.828104][T17474] __do_fast_syscall_32+0x102/0x160 [ 920.833292][T17474] do_fast_syscall_32+0x6a/0xc0 [ 920.838118][T17474] do_SYSENTER_32+0x73/0x90 [ 920.842601][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 920.848994][T17474] [ 920.851391][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 920.858051][T17474] do_recvmmsg+0xbf/0x22f0 [ 920.862464][T17474] do_recvmmsg+0xbf/0x22f0 [ 921.135008][T17474] not chained 1970000 origins [ 921.139833][T17474] CPU: 1 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 921.148592][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 921.158744][T17474] Call Trace: [ 921.162012][T17474] dump_stack+0x21c/0x280 [ 921.166320][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 921.172050][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 921.177152][T17474] ? kmsan_get_metadata+0x116/0x180 [ 921.182400][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 921.188228][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 921.194306][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 921.199217][T17474] ? kmsan_get_metadata+0x116/0x180 [ 921.204429][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 921.210211][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 921.216343][T17474] ? kmsan_get_metadata+0x116/0x180 [ 921.221529][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 921.227141][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 921.233181][T17474] ? _copy_from_user+0x1fd/0x300 [ 921.238090][T17474] ? kmsan_get_metadata+0x116/0x180 [ 921.243264][T17474] __msan_chain_origin+0x57/0xa0 [ 921.248179][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 921.253280][T17474] get_compat_msghdr+0x108/0x2b0 [ 921.258205][T17474] do_recvmmsg+0xdd1/0x22f0 [ 921.262727][T17474] ? kmsan_get_metadata+0x116/0x180 [ 921.267899][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 921.273869][T17474] ? kmsan_get_metadata+0x116/0x180 [ 921.279076][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 921.284685][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 921.289954][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 921.294694][T17474] __sys_recvmmsg+0x519/0x6f0 [ 921.299344][T17474] ? kmsan_get_metadata+0x116/0x180 [ 921.304516][T17474] ? kmsan_get_metadata+0x116/0x180 [ 921.309702][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 921.315757][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 921.321891][T17474] __do_fast_syscall_32+0x102/0x160 [ 921.327067][T17474] do_fast_syscall_32+0x6a/0xc0 [ 921.331897][T17474] do_SYSENTER_32+0x73/0x90 [ 921.336379][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 921.342691][T17474] RIP: 0023:0xf7f58549 [ 921.346737][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 921.366406][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 921.374835][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 921.382926][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 921.390874][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 921.398817][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 921.406765][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 921.414715][T17474] Uninit was stored to memory at: [ 921.419730][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 921.425529][T17474] __msan_chain_origin+0x57/0xa0 [ 921.430448][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 921.435533][T17474] get_compat_msghdr+0x108/0x2b0 [ 921.440468][T17474] do_recvmmsg+0xdd1/0x22f0 [ 921.444946][T17474] __sys_recvmmsg+0x519/0x6f0 [ 921.449600][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 921.455742][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 921.461880][T17474] __do_fast_syscall_32+0x102/0x160 [ 921.467056][T17474] do_fast_syscall_32+0x6a/0xc0 [ 921.471905][T17474] do_SYSENTER_32+0x73/0x90 [ 921.476404][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 921.482791][T17474] [ 921.485099][T17474] Uninit was stored to memory at: [ 921.490104][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 921.495799][T17474] __msan_chain_origin+0x57/0xa0 [ 921.500713][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 921.505929][T17474] get_compat_msghdr+0x108/0x2b0 [ 921.510846][T17474] do_recvmmsg+0xdd1/0x22f0 [ 921.515367][T17474] __sys_recvmmsg+0x519/0x6f0 [ 921.520019][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 921.526061][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 921.532191][T17474] __do_fast_syscall_32+0x102/0x160 [ 921.537374][T17474] do_fast_syscall_32+0x6a/0xc0 [ 921.542295][T17474] do_SYSENTER_32+0x73/0x90 [ 921.546789][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 921.553097][T17474] [ 921.555426][T17474] Uninit was stored to memory at: [ 921.560537][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 921.566241][T17474] __msan_chain_origin+0x57/0xa0 [ 921.571160][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 921.576246][T17474] get_compat_msghdr+0x108/0x2b0 [ 921.581188][T17474] do_recvmmsg+0xdd1/0x22f0 [ 921.585699][T17474] __sys_recvmmsg+0x519/0x6f0 [ 921.590363][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 921.596403][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 921.602594][T17474] __do_fast_syscall_32+0x102/0x160 [ 921.607773][T17474] do_fast_syscall_32+0x6a/0xc0 [ 921.612599][T17474] do_SYSENTER_32+0x73/0x90 [ 921.617080][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 921.623371][T17474] [ 921.625714][T17474] Uninit was stored to memory at: [ 921.630750][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 921.636454][T17474] __msan_chain_origin+0x57/0xa0 [ 921.641366][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 921.646451][T17474] get_compat_msghdr+0x108/0x2b0 [ 921.651364][T17474] do_recvmmsg+0xdd1/0x22f0 [ 921.655842][T17474] __sys_recvmmsg+0x519/0x6f0 [ 921.660546][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 921.666586][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 921.672717][T17474] __do_fast_syscall_32+0x102/0x160 [ 921.677914][T17474] do_fast_syscall_32+0x6a/0xc0 [ 921.682753][T17474] do_SYSENTER_32+0x73/0x90 [ 921.687249][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 921.693547][T17474] [ 921.695848][T17474] Uninit was stored to memory at: [ 921.700949][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 921.706642][T17474] __msan_chain_origin+0x57/0xa0 [ 921.711556][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 921.716652][T17474] get_compat_msghdr+0x108/0x2b0 [ 921.721653][T17474] do_recvmmsg+0xdd1/0x22f0 [ 921.726225][T17474] __sys_recvmmsg+0x519/0x6f0 [ 921.730880][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 921.736919][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 921.743054][T17474] __do_fast_syscall_32+0x102/0x160 [ 921.748231][T17474] do_fast_syscall_32+0x6a/0xc0 [ 921.753068][T17474] do_SYSENTER_32+0x73/0x90 [ 921.757549][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 921.763934][T17474] [ 921.766248][T17474] Uninit was stored to memory at: [ 921.771336][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 921.777025][T17474] __msan_chain_origin+0x57/0xa0 [ 921.782022][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 921.787121][T17474] get_compat_msghdr+0x108/0x2b0 [ 921.792048][T17474] do_recvmmsg+0xdd1/0x22f0 [ 921.796536][T17474] __sys_recvmmsg+0x519/0x6f0 [ 921.801220][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 921.807263][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 921.813393][T17474] __do_fast_syscall_32+0x102/0x160 [ 921.818565][T17474] do_fast_syscall_32+0x6a/0xc0 [ 921.823393][T17474] do_SYSENTER_32+0x73/0x90 [ 921.827884][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 921.834177][T17474] [ 921.836477][T17474] Uninit was stored to memory at: [ 921.841499][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 921.847197][T17474] __msan_chain_origin+0x57/0xa0 [ 921.852122][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 921.857208][T17474] get_compat_msghdr+0x108/0x2b0 [ 921.862120][T17474] do_recvmmsg+0xdd1/0x22f0 [ 921.866598][T17474] __sys_recvmmsg+0x519/0x6f0 [ 921.871249][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 921.877300][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 921.883514][T17474] __do_fast_syscall_32+0x102/0x160 [ 921.888697][T17474] do_fast_syscall_32+0x6a/0xc0 [ 921.893561][T17474] do_SYSENTER_32+0x73/0x90 [ 921.898044][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 921.904339][T17474] [ 921.906652][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 921.913322][T17474] do_recvmmsg+0xbf/0x22f0 [ 921.917715][T17474] do_recvmmsg+0xbf/0x22f0 [ 922.201628][T17474] not chained 1980000 origins [ 922.206479][T17474] CPU: 1 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 922.215228][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 922.225320][T17474] Call Trace: [ 922.228645][T17474] dump_stack+0x21c/0x280 [ 922.232981][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 922.238716][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 922.243831][T17474] ? kmsan_get_metadata+0x116/0x180 [ 922.249129][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 922.254936][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 922.261129][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 922.266072][T17474] ? kmsan_get_metadata+0x116/0x180 [ 922.271271][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 922.277081][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 922.283148][T17474] ? kmsan_get_metadata+0x116/0x180 [ 922.288343][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 922.293990][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 922.300056][T17474] ? _copy_from_user+0x1fd/0x300 [ 922.305090][T17474] ? kmsan_get_metadata+0x116/0x180 [ 922.310267][T17474] __msan_chain_origin+0x57/0xa0 [ 922.315183][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 922.320283][T17474] get_compat_msghdr+0x108/0x2b0 [ 922.325197][T17474] do_recvmmsg+0xdd1/0x22f0 [ 922.329691][T17474] ? kmsan_get_metadata+0x116/0x180 [ 922.334874][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 922.340741][T17474] ? kmsan_get_metadata+0x116/0x180 [ 922.345923][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 922.351533][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 922.356810][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 922.361549][T17474] __sys_recvmmsg+0x519/0x6f0 [ 922.366203][T17474] ? kmsan_get_metadata+0x116/0x180 [ 922.371389][T17474] ? kmsan_get_metadata+0x116/0x180 [ 922.376563][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 922.382603][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 922.388740][T17474] __do_fast_syscall_32+0x102/0x160 [ 922.393916][T17474] do_fast_syscall_32+0x6a/0xc0 [ 922.398744][T17474] do_SYSENTER_32+0x73/0x90 [ 922.403467][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 922.409986][T17474] RIP: 0023:0xf7f58549 [ 922.414054][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 922.433668][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 922.442064][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 922.450119][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 922.458157][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 922.466108][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 922.474057][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 922.482013][T17474] Uninit was stored to memory at: [ 922.487120][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 922.492830][T17474] __msan_chain_origin+0x57/0xa0 [ 922.497744][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 922.502844][T17474] get_compat_msghdr+0x108/0x2b0 [ 922.507796][T17474] do_recvmmsg+0xdd1/0x22f0 [ 922.512296][T17474] __sys_recvmmsg+0x519/0x6f0 [ 922.516948][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 922.522987][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 922.529208][T17474] __do_fast_syscall_32+0x102/0x160 [ 922.534395][T17474] do_fast_syscall_32+0x6a/0xc0 [ 922.539233][T17474] do_SYSENTER_32+0x73/0x90 [ 922.543724][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 922.550016][T17474] [ 922.552316][T17474] Uninit was stored to memory at: [ 922.557318][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 922.563025][T17474] __msan_chain_origin+0x57/0xa0 [ 922.567956][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 922.573146][T17474] get_compat_msghdr+0x108/0x2b0 [ 922.578111][T17474] do_recvmmsg+0xdd1/0x22f0 [ 922.582627][T17474] __sys_recvmmsg+0x519/0x6f0 [ 922.587284][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 922.593341][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 922.599475][T17474] __do_fast_syscall_32+0x102/0x160 [ 922.604752][T17474] do_fast_syscall_32+0x6a/0xc0 [ 922.609596][T17474] do_SYSENTER_32+0x73/0x90 [ 922.614083][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 922.620378][T17474] [ 922.622700][T17474] Uninit was stored to memory at: [ 922.627704][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 922.633403][T17474] __msan_chain_origin+0x57/0xa0 [ 922.638317][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 922.643413][T17474] get_compat_msghdr+0x108/0x2b0 [ 922.648327][T17474] do_recvmmsg+0xdd1/0x22f0 [ 922.652804][T17474] __sys_recvmmsg+0x519/0x6f0 [ 922.657474][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 922.663603][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 922.669742][T17474] __do_fast_syscall_32+0x102/0x160 [ 922.674917][T17474] do_fast_syscall_32+0x6a/0xc0 [ 922.679741][T17474] do_SYSENTER_32+0x73/0x90 [ 922.684219][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 922.690512][T17474] [ 922.692811][T17474] Uninit was stored to memory at: [ 922.697808][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 922.703501][T17474] __msan_chain_origin+0x57/0xa0 [ 922.708426][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 922.713633][T17474] get_compat_msghdr+0x108/0x2b0 [ 922.718546][T17474] do_recvmmsg+0xdd1/0x22f0 [ 922.723036][T17474] __sys_recvmmsg+0x519/0x6f0 [ 922.727689][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 922.733731][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 922.740141][T17474] __do_fast_syscall_32+0x102/0x160 [ 922.745423][T17474] do_fast_syscall_32+0x6a/0xc0 [ 922.750373][T17474] do_SYSENTER_32+0x73/0x90 [ 922.754969][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 922.761262][T17474] [ 922.763563][T17474] Uninit was stored to memory at: [ 922.768563][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 922.774258][T17474] __msan_chain_origin+0x57/0xa0 [ 922.779182][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 922.784292][T17474] get_compat_msghdr+0x108/0x2b0 [ 922.789223][T17474] do_recvmmsg+0xdd1/0x22f0 [ 922.793714][T17474] __sys_recvmmsg+0x519/0x6f0 [ 922.798369][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 922.804441][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 922.810590][T17474] __do_fast_syscall_32+0x102/0x160 [ 922.815794][T17474] do_fast_syscall_32+0x6a/0xc0 [ 922.820637][T17474] do_SYSENTER_32+0x73/0x90 [ 922.825118][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 922.831424][T17474] [ 922.833726][T17474] Uninit was stored to memory at: [ 922.838740][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 922.844435][T17474] __msan_chain_origin+0x57/0xa0 [ 922.849347][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 922.854444][T17474] get_compat_msghdr+0x108/0x2b0 [ 922.859355][T17474] do_recvmmsg+0xdd1/0x22f0 [ 922.864045][T17474] __sys_recvmmsg+0x519/0x6f0 [ 922.868695][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 922.874735][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 922.880962][T17474] __do_fast_syscall_32+0x102/0x160 [ 922.886143][T17474] do_fast_syscall_32+0x6a/0xc0 [ 922.890977][T17474] do_SYSENTER_32+0x73/0x90 [ 922.895573][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 922.901871][T17474] [ 922.904253][T17474] Uninit was stored to memory at: [ 922.909343][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 922.915053][T17474] __msan_chain_origin+0x57/0xa0 [ 922.919980][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 922.925080][T17474] get_compat_msghdr+0x108/0x2b0 [ 922.929996][T17474] do_recvmmsg+0xdd1/0x22f0 [ 922.934489][T17474] __sys_recvmmsg+0x519/0x6f0 [ 922.939162][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 922.945204][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 922.951336][T17474] __do_fast_syscall_32+0x102/0x160 [ 922.956526][T17474] do_fast_syscall_32+0x6a/0xc0 [ 922.961359][T17474] do_SYSENTER_32+0x73/0x90 [ 922.965845][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 922.972138][T17474] [ 922.974443][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 922.981101][T17474] do_recvmmsg+0xbf/0x22f0 [ 922.985496][T17474] do_recvmmsg+0xbf/0x22f0 [ 923.235675][T17474] not chained 1990000 origins [ 923.240391][T17474] CPU: 1 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 923.249146][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 923.259209][T17474] Call Trace: [ 923.262521][T17474] dump_stack+0x21c/0x280 [ 923.266874][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 923.272711][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 923.277827][T17474] ? kmsan_get_metadata+0x116/0x180 [ 923.283029][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 923.288832][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 923.294908][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 923.299848][T17474] ? kmsan_get_metadata+0x116/0x180 [ 923.305050][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 923.310854][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 923.317036][T17474] ? kmsan_get_metadata+0x116/0x180 [ 923.322237][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 923.327899][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 923.333979][T17474] ? _copy_from_user+0x1fd/0x300 [ 923.338935][T17474] ? kmsan_get_metadata+0x116/0x180 [ 923.344130][T17474] __msan_chain_origin+0x57/0xa0 [ 923.349252][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 923.354369][T17474] get_compat_msghdr+0x108/0x2b0 [ 923.359317][T17474] do_recvmmsg+0xdd1/0x22f0 [ 923.363814][T17474] ? kmsan_get_metadata+0x116/0x180 [ 923.368988][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 923.374854][T17474] ? kmsan_get_metadata+0x116/0x180 [ 923.380039][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 923.385647][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 923.390907][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 923.395646][T17474] __sys_recvmmsg+0x519/0x6f0 [ 923.400297][T17474] ? kmsan_get_metadata+0x116/0x180 [ 923.405515][T17474] ? kmsan_get_metadata+0x116/0x180 [ 923.410705][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 923.416763][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 923.422898][T17474] __do_fast_syscall_32+0x102/0x160 [ 923.428081][T17474] do_fast_syscall_32+0x6a/0xc0 [ 923.432930][T17474] do_SYSENTER_32+0x73/0x90 [ 923.437426][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 923.443727][T17474] RIP: 0023:0xf7f58549 [ 923.447773][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 923.467382][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 923.475772][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 923.483722][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 923.491684][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 923.499819][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 923.507856][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 923.515806][T17474] Uninit was stored to memory at: [ 923.520812][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 923.526522][T17474] __msan_chain_origin+0x57/0xa0 [ 923.531468][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 923.536579][T17474] get_compat_msghdr+0x108/0x2b0 [ 923.541492][T17474] do_recvmmsg+0xdd1/0x22f0 [ 923.545968][T17474] __sys_recvmmsg+0x519/0x6f0 [ 923.550635][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 923.556676][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 923.562822][T17474] __do_fast_syscall_32+0x102/0x160 [ 923.567996][T17474] do_fast_syscall_32+0x6a/0xc0 [ 923.572822][T17474] do_SYSENTER_32+0x73/0x90 [ 923.577308][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 923.583601][T17474] [ 923.585957][T17474] Uninit was stored to memory at: [ 923.590969][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 923.596668][T17474] __msan_chain_origin+0x57/0xa0 [ 923.601596][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 923.606776][T17474] get_compat_msghdr+0x108/0x2b0 [ 923.611691][T17474] do_recvmmsg+0xdd1/0x22f0 [ 923.616171][T17474] __sys_recvmmsg+0x519/0x6f0 [ 923.620871][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 923.626945][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 923.633084][T17474] __do_fast_syscall_32+0x102/0x160 [ 923.638259][T17474] do_fast_syscall_32+0x6a/0xc0 [ 923.643086][T17474] do_SYSENTER_32+0x73/0x90 [ 923.647579][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 923.653874][T17474] [ 923.656267][T17474] Uninit was stored to memory at: [ 923.661283][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 923.666977][T17474] __msan_chain_origin+0x57/0xa0 [ 923.671898][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 923.676985][T17474] get_compat_msghdr+0x108/0x2b0 [ 923.681988][T17474] do_recvmmsg+0xdd1/0x22f0 [ 923.686479][T17474] __sys_recvmmsg+0x519/0x6f0 [ 923.691217][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 923.697270][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 923.703411][T17474] __do_fast_syscall_32+0x102/0x160 [ 923.708587][T17474] do_fast_syscall_32+0x6a/0xc0 [ 923.713416][T17474] do_SYSENTER_32+0x73/0x90 [ 923.717896][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 923.724199][T17474] [ 923.726505][T17474] Uninit was stored to memory at: [ 923.731517][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 923.737229][T17474] __msan_chain_origin+0x57/0xa0 [ 923.742145][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 923.747232][T17474] get_compat_msghdr+0x108/0x2b0 [ 923.752154][T17474] do_recvmmsg+0xdd1/0x22f0 [ 923.756645][T17474] __sys_recvmmsg+0x519/0x6f0 [ 923.761296][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 923.767337][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 923.773565][T17474] __do_fast_syscall_32+0x102/0x160 [ 923.778825][T17474] do_fast_syscall_32+0x6a/0xc0 [ 923.783650][T17474] do_SYSENTER_32+0x73/0x90 [ 923.788228][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 923.794521][T17474] [ 923.796833][T17474] Uninit was stored to memory at: [ 923.801838][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 923.807537][T17474] __msan_chain_origin+0x57/0xa0 [ 923.812451][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 923.817534][T17474] get_compat_msghdr+0x108/0x2b0 [ 923.822455][T17474] do_recvmmsg+0xdd1/0x22f0 [ 923.826945][T17474] __sys_recvmmsg+0x519/0x6f0 [ 923.831772][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 923.837819][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 923.843949][T17474] __do_fast_syscall_32+0x102/0x160 [ 923.849133][T17474] do_fast_syscall_32+0x6a/0xc0 [ 923.853960][T17474] do_SYSENTER_32+0x73/0x90 [ 923.858438][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 923.864745][T17474] [ 923.867059][T17474] Uninit was stored to memory at: [ 923.872058][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 923.877758][T17474] __msan_chain_origin+0x57/0xa0 [ 923.882676][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 923.887760][T17474] get_compat_msghdr+0x108/0x2b0 [ 923.892671][T17474] do_recvmmsg+0xdd1/0x22f0 [ 923.897147][T17474] __sys_recvmmsg+0x519/0x6f0 [ 923.901809][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 923.907858][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 923.914082][T17474] __do_fast_syscall_32+0x102/0x160 [ 923.919422][T17474] do_fast_syscall_32+0x6a/0xc0 [ 923.924353][T17474] do_SYSENTER_32+0x73/0x90 [ 923.928849][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 923.935146][T17474] [ 923.937460][T17474] Uninit was stored to memory at: [ 923.942565][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 923.948307][T17474] __msan_chain_origin+0x57/0xa0 [ 923.953453][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 923.958576][T17474] get_compat_msghdr+0x108/0x2b0 [ 923.963497][T17474] do_recvmmsg+0xdd1/0x22f0 [ 923.968038][T17474] __sys_recvmmsg+0x519/0x6f0 [ 923.972725][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 923.979079][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 923.985218][T17474] __do_fast_syscall_32+0x102/0x160 [ 923.990493][T17474] do_fast_syscall_32+0x6a/0xc0 [ 923.995343][T17474] do_SYSENTER_32+0x73/0x90 [ 923.999837][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 924.006142][T17474] [ 924.008451][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 924.015113][T17474] do_recvmmsg+0xbf/0x22f0 [ 924.019506][T17474] do_recvmmsg+0xbf/0x22f0 [ 924.285587][T17474] not chained 2000000 origins [ 924.290307][T17474] CPU: 1 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 924.299073][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 924.309121][T17474] Call Trace: [ 924.312415][T17474] dump_stack+0x21c/0x280 [ 924.316749][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 924.322469][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 924.327578][T17474] ? kmsan_get_metadata+0x116/0x180 [ 924.332773][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 924.338756][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 924.344823][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 924.349850][T17474] ? kmsan_get_metadata+0x116/0x180 [ 924.355061][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 924.360965][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 924.367036][T17474] ? kmsan_get_metadata+0x116/0x180 [ 924.372235][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 924.377873][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 924.384040][T17474] ? _copy_from_user+0x1fd/0x300 [ 924.388969][T17474] ? kmsan_get_metadata+0x116/0x180 [ 924.394147][T17474] __msan_chain_origin+0x57/0xa0 [ 924.399062][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 924.404150][T17474] get_compat_msghdr+0x108/0x2b0 [ 924.409080][T17474] do_recvmmsg+0xdd1/0x22f0 [ 924.413572][T17474] ? kmsan_get_metadata+0x116/0x180 [ 924.418755][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 924.424621][T17474] ? kmsan_get_metadata+0x116/0x180 [ 924.429790][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 924.435394][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 924.440665][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 924.445408][T17474] __sys_recvmmsg+0x519/0x6f0 [ 924.450091][T17474] ? kmsan_get_metadata+0x116/0x180 [ 924.455425][T17474] ? kmsan_get_metadata+0x116/0x180 [ 924.460709][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 924.466759][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 924.473003][T17474] __do_fast_syscall_32+0x102/0x160 [ 924.478189][T17474] do_fast_syscall_32+0x6a/0xc0 [ 924.483107][T17474] do_SYSENTER_32+0x73/0x90 [ 924.487797][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 924.494105][T17474] RIP: 0023:0xf7f58549 [ 924.498226][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 924.517822][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 924.526252][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 924.534309][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 924.542346][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 924.550320][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 924.558295][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 924.566333][T17474] Uninit was stored to memory at: [ 924.571450][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 924.577144][T17474] __msan_chain_origin+0x57/0xa0 [ 924.582058][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 924.587143][T17474] get_compat_msghdr+0x108/0x2b0 [ 924.592058][T17474] do_recvmmsg+0xdd1/0x22f0 [ 924.596536][T17474] __sys_recvmmsg+0x519/0x6f0 [ 924.601193][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 924.607240][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 924.613384][T17474] __do_fast_syscall_32+0x102/0x160 [ 924.618605][T17474] do_fast_syscall_32+0x6a/0xc0 [ 924.623600][T17474] do_SYSENTER_32+0x73/0x90 [ 924.628087][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 924.634381][T17474] [ 924.636681][T17474] Uninit was stored to memory at: [ 924.641680][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 924.647373][T17474] __msan_chain_origin+0x57/0xa0 [ 924.652296][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 924.657484][T17474] get_compat_msghdr+0x108/0x2b0 [ 924.662437][T17474] do_recvmmsg+0xdd1/0x22f0 [ 924.666938][T17474] __sys_recvmmsg+0x519/0x6f0 [ 924.671631][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 924.677849][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 924.684760][T17474] __do_fast_syscall_32+0x102/0x160 [ 924.690059][T17474] do_fast_syscall_32+0x6a/0xc0 [ 924.694884][T17474] do_SYSENTER_32+0x73/0x90 [ 924.699365][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 924.705669][T17474] [ 924.707980][T17474] Uninit was stored to memory at: [ 924.712987][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 924.718683][T17474] __msan_chain_origin+0x57/0xa0 [ 924.723597][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 924.728683][T17474] get_compat_msghdr+0x108/0x2b0 [ 924.733593][T17474] do_recvmmsg+0xdd1/0x22f0 [ 924.738073][T17474] __sys_recvmmsg+0x519/0x6f0 [ 924.742759][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 924.748827][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 924.754974][T17474] __do_fast_syscall_32+0x102/0x160 [ 924.760166][T17474] do_fast_syscall_32+0x6a/0xc0 [ 924.764992][T17474] do_SYSENTER_32+0x73/0x90 [ 924.769490][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 924.775786][T17474] [ 924.778086][T17474] Uninit was stored to memory at: [ 924.783084][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 924.788774][T17474] __msan_chain_origin+0x57/0xa0 [ 924.793687][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 924.798770][T17474] get_compat_msghdr+0x108/0x2b0 [ 924.803682][T17474] do_recvmmsg+0xdd1/0x22f0 [ 924.808173][T17474] __sys_recvmmsg+0x519/0x6f0 [ 924.812827][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 924.818869][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 924.825010][T17474] __do_fast_syscall_32+0x102/0x160 [ 924.830197][T17474] do_fast_syscall_32+0x6a/0xc0 [ 924.835021][T17474] do_SYSENTER_32+0x73/0x90 [ 924.839501][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 924.845797][T17474] [ 924.848100][T17474] Uninit was stored to memory at: [ 924.853110][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 924.858816][T17474] __msan_chain_origin+0x57/0xa0 [ 924.863759][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 924.868859][T17474] get_compat_msghdr+0x108/0x2b0 [ 924.873771][T17474] do_recvmmsg+0xdd1/0x22f0 [ 924.878348][T17474] __sys_recvmmsg+0x519/0x6f0 [ 924.883003][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 924.889040][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 924.895169][T17474] __do_fast_syscall_32+0x102/0x160 [ 924.900346][T17474] do_fast_syscall_32+0x6a/0xc0 [ 924.905184][T17474] do_SYSENTER_32+0x73/0x90 [ 924.909676][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 924.915988][T17474] [ 924.918290][T17474] Uninit was stored to memory at: [ 924.923299][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 924.928993][T17474] __msan_chain_origin+0x57/0xa0 [ 924.933932][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 924.939016][T17474] get_compat_msghdr+0x108/0x2b0 [ 924.943938][T17474] do_recvmmsg+0xdd1/0x22f0 [ 924.948432][T17474] __sys_recvmmsg+0x519/0x6f0 [ 924.953089][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 924.959149][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 924.965306][T17474] __do_fast_syscall_32+0x102/0x160 [ 924.970485][T17474] do_fast_syscall_32+0x6a/0xc0 [ 924.975311][T17474] do_SYSENTER_32+0x73/0x90 [ 924.979808][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 924.986117][T17474] [ 924.988420][T17474] Uninit was stored to memory at: [ 924.993430][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 924.999123][T17474] __msan_chain_origin+0x57/0xa0 [ 925.004050][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 925.009136][T17474] get_compat_msghdr+0x108/0x2b0 [ 925.014049][T17474] do_recvmmsg+0xdd1/0x22f0 [ 925.018530][T17474] __sys_recvmmsg+0x519/0x6f0 [ 925.023185][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 925.029228][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 925.035458][T17474] __do_fast_syscall_32+0x102/0x160 [ 925.040636][T17474] do_fast_syscall_32+0x6a/0xc0 [ 925.045461][T17474] do_SYSENTER_32+0x73/0x90 [ 925.049943][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 925.056237][T17474] [ 925.058543][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 925.065199][T17474] do_recvmmsg+0xbf/0x22f0 [ 925.069595][T17474] do_recvmmsg+0xbf/0x22f0 [ 925.333327][T17474] not chained 2010000 origins [ 925.338134][T17474] CPU: 1 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 925.346887][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 925.356968][T17474] Call Trace: [ 925.360364][T17474] dump_stack+0x21c/0x280 [ 925.364698][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 925.370452][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 925.375567][T17474] ? kmsan_get_metadata+0x116/0x180 [ 925.380815][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 925.386623][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 925.392697][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 925.397724][T17474] ? kmsan_get_metadata+0x116/0x180 [ 925.402964][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 925.408794][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 925.414861][T17474] ? kmsan_get_metadata+0x116/0x180 [ 925.420059][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 925.425699][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 925.431768][T17474] ? _copy_from_user+0x1fd/0x300 [ 925.436710][T17474] ? kmsan_get_metadata+0x116/0x180 [ 925.441905][T17474] __msan_chain_origin+0x57/0xa0 [ 925.446857][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 925.451954][T17474] get_compat_msghdr+0x108/0x2b0 [ 925.456890][T17474] do_recvmmsg+0xdd1/0x22f0 [ 925.461375][T17474] ? kmsan_get_metadata+0x116/0x180 [ 925.466569][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 925.472452][T17474] ? kmsan_get_metadata+0x116/0x180 [ 925.477648][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 925.483265][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 925.488567][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 925.493330][T17474] __sys_recvmmsg+0x519/0x6f0 [ 925.498030][T17474] ? kmsan_get_metadata+0x116/0x180 [ 925.503207][T17474] ? kmsan_get_metadata+0x116/0x180 [ 925.508382][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 925.514546][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 925.520677][T17474] __do_fast_syscall_32+0x102/0x160 [ 925.525852][T17474] do_fast_syscall_32+0x6a/0xc0 [ 925.530683][T17474] do_SYSENTER_32+0x73/0x90 [ 925.535165][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 925.541500][T17474] RIP: 0023:0xf7f58549 [ 925.545545][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 925.565129][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 925.573635][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 925.581603][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 925.589554][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 925.597503][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 925.605452][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 925.613413][T17474] Uninit was stored to memory at: [ 925.618430][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 925.624124][T17474] __msan_chain_origin+0x57/0xa0 [ 925.629038][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 925.634129][T17474] get_compat_msghdr+0x108/0x2b0 [ 925.639058][T17474] do_recvmmsg+0xdd1/0x22f0 [ 925.643545][T17474] __sys_recvmmsg+0x519/0x6f0 [ 925.648205][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 925.654250][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 925.660383][T17474] __do_fast_syscall_32+0x102/0x160 [ 925.665557][T17474] do_fast_syscall_32+0x6a/0xc0 [ 925.670408][T17474] do_SYSENTER_32+0x73/0x90 [ 925.674927][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 925.681246][T17474] [ 925.683569][T17474] Uninit was stored to memory at: [ 925.688588][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 925.694386][T17474] __msan_chain_origin+0x57/0xa0 [ 925.699297][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 925.704400][T17474] get_compat_msghdr+0x108/0x2b0 [ 925.709318][T17474] do_recvmmsg+0xdd1/0x22f0 [ 925.713799][T17474] __sys_recvmmsg+0x519/0x6f0 [ 925.718454][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 925.724498][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 925.730631][T17474] __do_fast_syscall_32+0x102/0x160 [ 925.735807][T17474] do_fast_syscall_32+0x6a/0xc0 [ 925.740633][T17474] do_SYSENTER_32+0x73/0x90 [ 925.745113][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 925.751416][T17474] [ 925.753717][T17474] Uninit was stored to memory at: [ 925.758721][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 925.764511][T17474] __msan_chain_origin+0x57/0xa0 [ 925.769423][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 925.774514][T17474] get_compat_msghdr+0x108/0x2b0 [ 925.779439][T17474] do_recvmmsg+0xdd1/0x22f0 [ 925.783974][T17474] __sys_recvmmsg+0x519/0x6f0 [ 925.788628][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 925.794669][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 925.800810][T17474] __do_fast_syscall_32+0x102/0x160 [ 925.805984][T17474] do_fast_syscall_32+0x6a/0xc0 [ 925.810825][T17474] do_SYSENTER_32+0x73/0x90 [ 925.815305][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 925.821614][T17474] [ 925.823916][T17474] Uninit was stored to memory at: [ 925.828923][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 925.834623][T17474] __msan_chain_origin+0x57/0xa0 [ 925.839536][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 925.844625][T17474] get_compat_msghdr+0x108/0x2b0 [ 925.849541][T17474] do_recvmmsg+0xdd1/0x22f0 [ 925.854033][T17474] __sys_recvmmsg+0x519/0x6f0 [ 925.858700][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 925.864743][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 925.870874][T17474] __do_fast_syscall_32+0x102/0x160 [ 925.876073][T17474] do_fast_syscall_32+0x6a/0xc0 [ 925.880911][T17474] do_SYSENTER_32+0x73/0x90 [ 925.885421][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 925.891717][T17474] [ 925.894019][T17474] Uninit was stored to memory at: [ 925.899020][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 925.904715][T17474] __msan_chain_origin+0x57/0xa0 [ 925.909637][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 925.914734][T17474] get_compat_msghdr+0x108/0x2b0 [ 925.919670][T17474] do_recvmmsg+0xdd1/0x22f0 [ 925.924153][T17474] __sys_recvmmsg+0x519/0x6f0 [ 925.928805][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 925.934848][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 925.940978][T17474] __do_fast_syscall_32+0x102/0x160 [ 925.946152][T17474] do_fast_syscall_32+0x6a/0xc0 [ 925.950980][T17474] do_SYSENTER_32+0x73/0x90 [ 925.955461][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 925.961756][T17474] [ 925.964061][T17474] Uninit was stored to memory at: [ 925.969097][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 925.974807][T17474] __msan_chain_origin+0x57/0xa0 [ 925.979723][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 925.984830][T17474] get_compat_msghdr+0x108/0x2b0 [ 925.989775][T17474] do_recvmmsg+0xdd1/0x22f0 [ 925.994365][T17474] __sys_recvmmsg+0x519/0x6f0 [ 925.999019][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 926.005063][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 926.011227][T17474] __do_fast_syscall_32+0x102/0x160 [ 926.016404][T17474] do_fast_syscall_32+0x6a/0xc0 [ 926.021233][T17474] do_SYSENTER_32+0x73/0x90 [ 926.025741][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 926.032036][T17474] [ 926.034337][T17474] Uninit was stored to memory at: [ 926.039364][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 926.045072][T17474] __msan_chain_origin+0x57/0xa0 [ 926.050001][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 926.055174][T17474] get_compat_msghdr+0x108/0x2b0 [ 926.060090][T17474] do_recvmmsg+0xdd1/0x22f0 [ 926.064591][T17474] __sys_recvmmsg+0x519/0x6f0 [ 926.069247][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 926.075298][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 926.081446][T17474] __do_fast_syscall_32+0x102/0x160 [ 926.086634][T17474] do_fast_syscall_32+0x6a/0xc0 [ 926.091492][T17474] do_SYSENTER_32+0x73/0x90 [ 926.095975][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 926.102288][T17474] [ 926.104593][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 926.111261][T17474] do_recvmmsg+0xbf/0x22f0 [ 926.115659][T17474] do_recvmmsg+0xbf/0x22f0 [ 926.385088][T17474] not chained 2020000 origins [ 926.389798][T17474] CPU: 1 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 926.398550][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 926.408595][T17474] Call Trace: [ 926.411975][T17474] dump_stack+0x21c/0x280 [ 926.416314][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 926.422043][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 926.427179][T17474] ? kmsan_get_metadata+0x116/0x180 [ 926.432385][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 926.438194][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 926.444261][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 926.449211][T17474] ? kmsan_get_metadata+0x116/0x180 [ 926.454398][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 926.460181][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 926.466224][T17474] ? kmsan_get_metadata+0x116/0x180 [ 926.471406][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 926.477014][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 926.483056][T17474] ? _copy_from_user+0x1fd/0x300 [ 926.487968][T17474] ? kmsan_get_metadata+0x116/0x180 [ 926.493144][T17474] __msan_chain_origin+0x57/0xa0 [ 926.498080][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 926.503225][T17474] get_compat_msghdr+0x108/0x2b0 [ 926.508175][T17474] do_recvmmsg+0xdd1/0x22f0 [ 926.512658][T17474] ? kmsan_get_metadata+0x116/0x180 [ 926.517827][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 926.523732][T17474] ? kmsan_get_metadata+0x116/0x180 [ 926.528904][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 926.534512][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 926.539861][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 926.544598][T17474] __sys_recvmmsg+0x519/0x6f0 [ 926.549301][T17474] ? kmsan_get_metadata+0x116/0x180 [ 926.554477][T17474] ? kmsan_get_metadata+0x116/0x180 [ 926.559702][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 926.565761][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 926.571897][T17474] __do_fast_syscall_32+0x102/0x160 [ 926.577089][T17474] do_fast_syscall_32+0x6a/0xc0 [ 926.581931][T17474] do_SYSENTER_32+0x73/0x90 [ 926.586417][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 926.592730][T17474] RIP: 0023:0xf7f58549 [ 926.596785][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 926.616493][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 926.624965][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 926.632914][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 926.640868][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 926.648818][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 926.656765][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 926.664712][T17474] Uninit was stored to memory at: [ 926.669735][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 926.675431][T17474] __msan_chain_origin+0x57/0xa0 [ 926.680346][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 926.685443][T17474] get_compat_msghdr+0x108/0x2b0 [ 926.690443][T17474] do_recvmmsg+0xdd1/0x22f0 [ 926.694926][T17474] __sys_recvmmsg+0x519/0x6f0 [ 926.699585][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 926.705646][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 926.711798][T17474] __do_fast_syscall_32+0x102/0x160 [ 926.716990][T17474] do_fast_syscall_32+0x6a/0xc0 [ 926.721817][T17474] do_SYSENTER_32+0x73/0x90 [ 926.726407][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 926.732758][T17474] [ 926.735120][T17474] Uninit was stored to memory at: [ 926.740125][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 926.745862][T17474] __msan_chain_origin+0x57/0xa0 [ 926.750803][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 926.755979][T17474] get_compat_msghdr+0x108/0x2b0 [ 926.760908][T17474] do_recvmmsg+0xdd1/0x22f0 [ 926.765385][T17474] __sys_recvmmsg+0x519/0x6f0 [ 926.770041][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 926.776107][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 926.782239][T17474] __do_fast_syscall_32+0x102/0x160 [ 926.787435][T17474] do_fast_syscall_32+0x6a/0xc0 [ 926.792280][T17474] do_SYSENTER_32+0x73/0x90 [ 926.796782][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 926.803083][T17474] [ 926.805404][T17474] Uninit was stored to memory at: [ 926.810419][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 926.816133][T17474] __msan_chain_origin+0x57/0xa0 [ 926.821063][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 926.826152][T17474] get_compat_msghdr+0x108/0x2b0 [ 926.831080][T17474] do_recvmmsg+0xdd1/0x22f0 [ 926.835563][T17474] __sys_recvmmsg+0x519/0x6f0 [ 926.840229][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 926.846283][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 926.852422][T17474] __do_fast_syscall_32+0x102/0x160 [ 926.857601][T17474] do_fast_syscall_32+0x6a/0xc0 [ 926.862433][T17474] do_SYSENTER_32+0x73/0x90 [ 926.866919][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 926.873220][T17474] [ 926.875523][T17474] Uninit was stored to memory at: [ 926.880529][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 926.886238][T17474] __msan_chain_origin+0x57/0xa0 [ 926.891248][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 926.896424][T17474] get_compat_msghdr+0x108/0x2b0 [ 926.901522][T17474] do_recvmmsg+0xdd1/0x22f0 [ 926.906014][T17474] __sys_recvmmsg+0x519/0x6f0 [ 926.910698][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 926.916744][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 926.922967][T17474] __do_fast_syscall_32+0x102/0x160 [ 926.928151][T17474] do_fast_syscall_32+0x6a/0xc0 [ 926.932975][T17474] do_SYSENTER_32+0x73/0x90 [ 926.937454][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 926.943760][T17474] [ 926.946078][T17474] Uninit was stored to memory at: [ 926.951097][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 926.956802][T17474] __msan_chain_origin+0x57/0xa0 [ 926.961749][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 926.966834][T17474] get_compat_msghdr+0x108/0x2b0 [ 926.971768][T17474] do_recvmmsg+0xdd1/0x22f0 [ 926.976249][T17474] __sys_recvmmsg+0x519/0x6f0 [ 926.980911][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 926.987066][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 926.993203][T17474] __do_fast_syscall_32+0x102/0x160 [ 926.998376][T17474] do_fast_syscall_32+0x6a/0xc0 [ 927.003286][T17474] do_SYSENTER_32+0x73/0x90 [ 927.007779][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 927.014101][T17474] [ 927.016405][T17474] Uninit was stored to memory at: [ 927.021406][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 927.027097][T17474] __msan_chain_origin+0x57/0xa0 [ 927.032010][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 927.037094][T17474] get_compat_msghdr+0x108/0x2b0 [ 927.042003][T17474] do_recvmmsg+0xdd1/0x22f0 [ 927.046484][T17474] __sys_recvmmsg+0x519/0x6f0 [ 927.051146][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 927.057196][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 927.063324][T17474] __do_fast_syscall_32+0x102/0x160 [ 927.068497][T17474] do_fast_syscall_32+0x6a/0xc0 [ 927.073322][T17474] do_SYSENTER_32+0x73/0x90 [ 927.077804][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 927.084098][T17474] [ 927.086400][T17474] Uninit was stored to memory at: [ 927.091398][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 927.097092][T17474] __msan_chain_origin+0x57/0xa0 [ 927.102014][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 927.107097][T17474] get_compat_msghdr+0x108/0x2b0 [ 927.112027][T17474] do_recvmmsg+0xdd1/0x22f0 [ 927.116531][T17474] __sys_recvmmsg+0x519/0x6f0 [ 927.121187][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 927.127230][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 927.133374][T17474] __do_fast_syscall_32+0x102/0x160 [ 927.138548][T17474] do_fast_syscall_32+0x6a/0xc0 [ 927.143374][T17474] do_SYSENTER_32+0x73/0x90 [ 927.147854][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 927.154152][T17474] [ 927.156455][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 927.163191][T17474] do_recvmmsg+0xbf/0x22f0 [ 927.167579][T17474] do_recvmmsg+0xbf/0x22f0 [ 927.425694][T17474] not chained 2030000 origins [ 927.430410][T17474] CPU: 1 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 927.439174][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 927.449304][T17474] Call Trace: [ 927.452594][T17474] dump_stack+0x21c/0x280 [ 927.456952][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 927.462690][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 927.467804][T17474] ? kmsan_get_metadata+0x116/0x180 [ 927.473004][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 927.478827][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 927.485075][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 927.490013][T17474] ? kmsan_get_metadata+0x116/0x180 [ 927.495211][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 927.501289][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 927.507442][T17474] ? kmsan_get_metadata+0x116/0x180 [ 927.512641][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 927.518360][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 927.524497][T17474] ? _copy_from_user+0x1fd/0x300 [ 927.529530][T17474] ? kmsan_get_metadata+0x116/0x180 [ 927.534736][T17474] __msan_chain_origin+0x57/0xa0 [ 927.539675][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 927.544792][T17474] get_compat_msghdr+0x108/0x2b0 [ 927.549738][T17474] do_recvmmsg+0xdd1/0x22f0 [ 927.554243][T17474] ? kmsan_get_metadata+0x116/0x180 [ 927.559433][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 927.565320][T17474] ? kmsan_get_metadata+0x116/0x180 [ 927.570496][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 927.576101][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 927.581361][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 927.586101][T17474] __sys_recvmmsg+0x519/0x6f0 [ 927.590753][T17474] ? kmsan_get_metadata+0x116/0x180 [ 927.595926][T17474] ? kmsan_get_metadata+0x116/0x180 [ 927.601112][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 927.607157][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 927.613292][T17474] __do_fast_syscall_32+0x102/0x160 [ 927.618535][T17474] do_fast_syscall_32+0x6a/0xc0 [ 927.623625][T17474] do_SYSENTER_32+0x73/0x90 [ 927.628158][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 927.634512][T17474] RIP: 0023:0xf7f58549 [ 927.638558][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 927.658141][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 927.666533][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 927.674484][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 927.682430][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 927.690391][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 927.698635][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 927.706675][T17474] Uninit was stored to memory at: [ 927.711770][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 927.717467][T17474] __msan_chain_origin+0x57/0xa0 [ 927.722384][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 927.727481][T17474] get_compat_msghdr+0x108/0x2b0 [ 927.732400][T17474] do_recvmmsg+0xdd1/0x22f0 [ 927.736882][T17474] __sys_recvmmsg+0x519/0x6f0 [ 927.741537][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 927.747580][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 927.753718][T17474] __do_fast_syscall_32+0x102/0x160 [ 927.758898][T17474] do_fast_syscall_32+0x6a/0xc0 [ 927.763738][T17474] do_SYSENTER_32+0x73/0x90 [ 927.768222][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 927.774529][T17474] [ 927.776938][T17474] Uninit was stored to memory at: [ 927.781942][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 927.787644][T17474] __msan_chain_origin+0x57/0xa0 [ 927.792570][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 927.797749][T17474] get_compat_msghdr+0x108/0x2b0 [ 927.802663][T17474] do_recvmmsg+0xdd1/0x22f0 [ 927.807158][T17474] __sys_recvmmsg+0x519/0x6f0 [ 927.811824][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 927.817960][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 927.824099][T17474] __do_fast_syscall_32+0x102/0x160 [ 927.829294][T17474] do_fast_syscall_32+0x6a/0xc0 [ 927.834161][T17474] do_SYSENTER_32+0x73/0x90 [ 927.838738][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 927.845043][T17474] [ 927.847351][T17474] Uninit was stored to memory at: [ 927.852350][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 927.858053][T17474] __msan_chain_origin+0x57/0xa0 [ 927.862980][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 927.868073][T17474] get_compat_msghdr+0x108/0x2b0 [ 927.873082][T17474] do_recvmmsg+0xdd1/0x22f0 [ 927.877562][T17474] __sys_recvmmsg+0x519/0x6f0 [ 927.882216][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 927.888256][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 927.894383][T17474] __do_fast_syscall_32+0x102/0x160 [ 927.899558][T17474] do_fast_syscall_32+0x6a/0xc0 [ 927.904392][T17474] do_SYSENTER_32+0x73/0x90 [ 927.908870][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 927.915165][T17474] [ 927.917465][T17474] Uninit was stored to memory at: [ 927.922477][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 927.928177][T17474] __msan_chain_origin+0x57/0xa0 [ 927.933096][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 927.938182][T17474] get_compat_msghdr+0x108/0x2b0 [ 927.943186][T17474] do_recvmmsg+0xdd1/0x22f0 [ 927.947666][T17474] __sys_recvmmsg+0x519/0x6f0 [ 927.952319][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 927.958358][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 927.964485][T17474] __do_fast_syscall_32+0x102/0x160 [ 927.969657][T17474] do_fast_syscall_32+0x6a/0xc0 [ 927.974493][T17474] do_SYSENTER_32+0x73/0x90 [ 927.978972][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 927.985265][T17474] [ 927.987567][T17474] Uninit was stored to memory at: [ 927.992590][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 927.998283][T17474] __msan_chain_origin+0x57/0xa0 [ 928.003198][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 928.008279][T17474] get_compat_msghdr+0x108/0x2b0 [ 928.013190][T17474] do_recvmmsg+0xdd1/0x22f0 [ 928.017670][T17474] __sys_recvmmsg+0x519/0x6f0 [ 928.022321][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 928.028448][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 928.034597][T17474] __do_fast_syscall_32+0x102/0x160 [ 928.039790][T17474] do_fast_syscall_32+0x6a/0xc0 [ 928.044619][T17474] do_SYSENTER_32+0x73/0x90 [ 928.049112][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 928.055593][T17474] [ 928.057900][T17474] Uninit was stored to memory at: [ 928.062903][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 928.068599][T17474] __msan_chain_origin+0x57/0xa0 [ 928.073599][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 928.078707][T17474] get_compat_msghdr+0x108/0x2b0 [ 928.083634][T17474] do_recvmmsg+0xdd1/0x22f0 [ 928.088199][T17474] __sys_recvmmsg+0x519/0x6f0 [ 928.092877][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 928.098922][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 928.105075][T17474] __do_fast_syscall_32+0x102/0x160 [ 928.110261][T17474] do_fast_syscall_32+0x6a/0xc0 [ 928.115177][T17474] do_SYSENTER_32+0x73/0x90 [ 928.119658][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 928.125960][T17474] [ 928.128260][T17474] Uninit was stored to memory at: [ 928.133257][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 928.138982][T17474] __msan_chain_origin+0x57/0xa0 [ 928.143986][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 928.149101][T17474] get_compat_msghdr+0x108/0x2b0 [ 928.154029][T17474] do_recvmmsg+0xdd1/0x22f0 [ 928.158521][T17474] __sys_recvmmsg+0x519/0x6f0 [ 928.163176][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 928.169217][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 928.175349][T17474] __do_fast_syscall_32+0x102/0x160 [ 928.180544][T17474] do_fast_syscall_32+0x6a/0xc0 [ 928.185370][T17474] do_SYSENTER_32+0x73/0x90 [ 928.189868][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 928.196174][T17474] [ 928.198476][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 928.205123][T17474] do_recvmmsg+0xbf/0x22f0 [ 928.209510][T17474] do_recvmmsg+0xbf/0x22f0 [ 928.497335][T17474] not chained 2040000 origins [ 928.502073][T17474] CPU: 0 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 928.510834][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 928.520971][T17474] Call Trace: [ 928.524271][T17474] dump_stack+0x21c/0x280 [ 928.528616][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 928.534343][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 928.539461][T17474] ? kmsan_get_metadata+0x116/0x180 [ 928.544747][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 928.550726][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 928.556799][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 928.561740][T17474] ? kmsan_get_metadata+0x116/0x180 [ 928.566941][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 928.572760][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 928.578969][T17474] ? kmsan_get_metadata+0x116/0x180 [ 928.584176][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 928.589830][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 928.595904][T17474] ? _copy_from_user+0x1fd/0x300 [ 928.600859][T17474] ? kmsan_get_metadata+0x116/0x180 [ 928.606073][T17474] __msan_chain_origin+0x57/0xa0 [ 928.611018][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 928.616141][T17474] get_compat_msghdr+0x108/0x2b0 [ 928.621104][T17474] do_recvmmsg+0xdd1/0x22f0 [ 928.625615][T17474] ? kmsan_get_metadata+0x116/0x180 [ 928.630812][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 928.636706][T17474] ? kmsan_get_metadata+0x116/0x180 [ 928.641994][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 928.647631][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 928.652925][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 928.657696][T17474] __sys_recvmmsg+0x519/0x6f0 [ 928.662415][T17474] ? kmsan_get_metadata+0x116/0x180 [ 928.667629][T17474] ? kmsan_get_metadata+0x116/0x180 [ 928.672865][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 928.678945][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 928.685201][T17474] __do_fast_syscall_32+0x102/0x160 [ 928.690396][T17474] do_fast_syscall_32+0x6a/0xc0 [ 928.695237][T17474] do_SYSENTER_32+0x73/0x90 [ 928.699734][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 928.706061][T17474] RIP: 0023:0xf7f58549 [ 928.710125][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 928.729751][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 928.738338][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 928.746289][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 928.754242][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 928.762190][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 928.770150][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 928.778151][T17474] Uninit was stored to memory at: [ 928.783173][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 928.788922][T17474] __msan_chain_origin+0x57/0xa0 [ 928.793854][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 928.798940][T17474] get_compat_msghdr+0x108/0x2b0 [ 928.803851][T17474] do_recvmmsg+0xdd1/0x22f0 [ 928.808328][T17474] __sys_recvmmsg+0x519/0x6f0 [ 928.812981][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 928.819021][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 928.825151][T17474] __do_fast_syscall_32+0x102/0x160 [ 928.830440][T17474] do_fast_syscall_32+0x6a/0xc0 [ 928.835277][T17474] do_SYSENTER_32+0x73/0x90 [ 928.839774][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 928.846118][T17474] [ 928.848418][T17474] Uninit was stored to memory at: [ 928.853434][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 928.859163][T17474] __msan_chain_origin+0x57/0xa0 [ 928.864118][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 928.869300][T17474] get_compat_msghdr+0x108/0x2b0 [ 928.874225][T17474] do_recvmmsg+0xdd1/0x22f0 [ 928.878712][T17474] __sys_recvmmsg+0x519/0x6f0 [ 928.883383][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 928.889424][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 928.895591][T17474] __do_fast_syscall_32+0x102/0x160 [ 928.900792][T17474] do_fast_syscall_32+0x6a/0xc0 [ 928.905743][T17474] do_SYSENTER_32+0x73/0x90 [ 928.910241][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 928.916547][T17474] [ 928.918866][T17474] Uninit was stored to memory at: [ 928.923881][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 928.929589][T17474] __msan_chain_origin+0x57/0xa0 [ 928.934529][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 928.939761][T17474] get_compat_msghdr+0x108/0x2b0 [ 928.944695][T17474] do_recvmmsg+0xdd1/0x22f0 [ 928.949303][T17474] __sys_recvmmsg+0x519/0x6f0 [ 928.953991][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 928.960051][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 928.966254][T17474] __do_fast_syscall_32+0x102/0x160 [ 928.971445][T17474] do_fast_syscall_32+0x6a/0xc0 [ 928.976299][T17474] do_SYSENTER_32+0x73/0x90 [ 928.980783][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 928.987077][T17474] [ 928.989379][T17474] Uninit was stored to memory at: [ 928.994383][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 929.000093][T17474] __msan_chain_origin+0x57/0xa0 [ 929.005040][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 929.010142][T17474] get_compat_msghdr+0x108/0x2b0 [ 929.015067][T17474] do_recvmmsg+0xdd1/0x22f0 [ 929.019552][T17474] __sys_recvmmsg+0x519/0x6f0 [ 929.024234][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 929.030292][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 929.036434][T17474] __do_fast_syscall_32+0x102/0x160 [ 929.041919][T17474] do_fast_syscall_32+0x6a/0xc0 [ 929.046748][T17474] do_SYSENTER_32+0x73/0x90 [ 929.051246][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 929.057557][T17474] [ 929.059874][T17474] Uninit was stored to memory at: [ 929.064876][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 929.070584][T17474] __msan_chain_origin+0x57/0xa0 [ 929.075511][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 929.080614][T17474] get_compat_msghdr+0x108/0x2b0 [ 929.085528][T17474] do_recvmmsg+0xdd1/0x22f0 [ 929.090020][T17474] __sys_recvmmsg+0x519/0x6f0 [ 929.094700][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 929.100745][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 929.106903][T17474] __do_fast_syscall_32+0x102/0x160 [ 929.112091][T17474] do_fast_syscall_32+0x6a/0xc0 [ 929.116940][T17474] do_SYSENTER_32+0x73/0x90 [ 929.121439][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 929.127819][T17474] [ 929.130124][T17474] Uninit was stored to memory at: [ 929.135134][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 929.140830][T17474] __msan_chain_origin+0x57/0xa0 [ 929.145743][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 929.150868][T17474] get_compat_msghdr+0x108/0x2b0 [ 929.155897][T17474] do_recvmmsg+0xdd1/0x22f0 [ 929.160402][T17474] __sys_recvmmsg+0x519/0x6f0 [ 929.165067][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 929.171125][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 929.177275][T17474] __do_fast_syscall_32+0x102/0x160 [ 929.182452][T17474] do_fast_syscall_32+0x6a/0xc0 [ 929.187301][T17474] do_SYSENTER_32+0x73/0x90 [ 929.191807][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 929.198115][T17474] [ 929.200419][T17474] Uninit was stored to memory at: [ 929.205421][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 929.211130][T17474] __msan_chain_origin+0x57/0xa0 [ 929.216062][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 929.221164][T17474] get_compat_msghdr+0x108/0x2b0 [ 929.226180][T17474] do_recvmmsg+0xdd1/0x22f0 [ 929.230671][T17474] __sys_recvmmsg+0x519/0x6f0 [ 929.235345][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 929.241404][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 929.247535][T17474] __do_fast_syscall_32+0x102/0x160 [ 929.252718][T17474] do_fast_syscall_32+0x6a/0xc0 [ 929.257544][T17474] do_SYSENTER_32+0x73/0x90 [ 929.262128][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 929.268434][T17474] [ 929.270746][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 929.277407][T17474] do_recvmmsg+0xbf/0x22f0 [ 929.281800][T17474] do_recvmmsg+0xbf/0x22f0 [ 929.627949][T17474] not chained 2050000 origins [ 929.632752][T17474] CPU: 0 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 929.641523][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 929.651569][T17474] Call Trace: [ 929.654840][T17474] dump_stack+0x21c/0x280 [ 929.659181][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 929.664885][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 929.669996][T17474] ? kmsan_get_metadata+0x116/0x180 [ 929.675242][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 929.681023][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 929.687067][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 929.691977][T17474] ? kmsan_get_metadata+0x116/0x180 [ 929.697148][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 929.702928][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 929.708966][T17474] ? kmsan_get_metadata+0x116/0x180 [ 929.714137][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 929.719745][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 929.725785][T17474] ? _copy_from_user+0x1fd/0x300 [ 929.730697][T17474] ? kmsan_get_metadata+0x116/0x180 [ 929.735870][T17474] __msan_chain_origin+0x57/0xa0 [ 929.740786][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 929.745875][T17474] get_compat_msghdr+0x108/0x2b0 [ 929.750791][T17474] do_recvmmsg+0xdd1/0x22f0 [ 929.755268][T17474] ? kmsan_get_metadata+0x116/0x180 [ 929.760445][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 929.766315][T17474] ? kmsan_get_metadata+0x116/0x180 [ 929.771504][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 929.777141][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 929.782404][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 929.787145][T17474] __sys_recvmmsg+0x519/0x6f0 [ 929.791812][T17474] ? kmsan_get_metadata+0x116/0x180 [ 929.796987][T17474] ? kmsan_get_metadata+0x116/0x180 [ 929.802164][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 929.808249][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 929.814384][T17474] __do_fast_syscall_32+0x102/0x160 [ 929.819571][T17474] do_fast_syscall_32+0x6a/0xc0 [ 929.824408][T17474] do_SYSENTER_32+0x73/0x90 [ 929.828887][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 929.835276][T17474] RIP: 0023:0xf7f58549 [ 929.839358][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 929.858940][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 929.867333][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 929.875292][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 929.883276][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 929.891231][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 929.899175][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 929.907121][T17474] Uninit was stored to memory at: [ 929.912205][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 929.917897][T17474] __msan_chain_origin+0x57/0xa0 [ 929.922819][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 929.928148][T17474] get_compat_msghdr+0x108/0x2b0 [ 929.933081][T17474] do_recvmmsg+0xdd1/0x22f0 [ 929.937558][T17474] __sys_recvmmsg+0x519/0x6f0 [ 929.942210][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 929.948253][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 929.954383][T17474] __do_fast_syscall_32+0x102/0x160 [ 929.959585][T17474] do_fast_syscall_32+0x6a/0xc0 [ 929.964424][T17474] do_SYSENTER_32+0x73/0x90 [ 929.968917][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 929.975210][T17474] [ 929.977531][T17474] Uninit was stored to memory at: [ 929.982551][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 929.988246][T17474] __msan_chain_origin+0x57/0xa0 [ 929.993175][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 929.998286][T17474] get_compat_msghdr+0x108/0x2b0 [ 930.003199][T17474] do_recvmmsg+0xdd1/0x22f0 [ 930.007676][T17474] __sys_recvmmsg+0x519/0x6f0 [ 930.012330][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 930.018369][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 930.024497][T17474] __do_fast_syscall_32+0x102/0x160 [ 930.029683][T17474] do_fast_syscall_32+0x6a/0xc0 [ 930.034522][T17474] do_SYSENTER_32+0x73/0x90 [ 930.039002][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 930.045294][T17474] [ 930.047594][T17474] Uninit was stored to memory at: [ 930.052616][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 930.058309][T17474] __msan_chain_origin+0x57/0xa0 [ 930.063221][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 930.068305][T17474] get_compat_msghdr+0x108/0x2b0 [ 930.073220][T17474] do_recvmmsg+0xdd1/0x22f0 [ 930.077696][T17474] __sys_recvmmsg+0x519/0x6f0 [ 930.082353][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 930.088398][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 930.094527][T17474] __do_fast_syscall_32+0x102/0x160 [ 930.099712][T17474] do_fast_syscall_32+0x6a/0xc0 [ 930.104548][T17474] do_SYSENTER_32+0x73/0x90 [ 930.109028][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 930.115325][T17474] [ 930.117641][T17474] Uninit was stored to memory at: [ 930.122653][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 930.128344][T17474] __msan_chain_origin+0x57/0xa0 [ 930.133264][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 930.138348][T17474] get_compat_msghdr+0x108/0x2b0 [ 930.143258][T17474] do_recvmmsg+0xdd1/0x22f0 [ 930.147734][T17474] __sys_recvmmsg+0x519/0x6f0 [ 930.152388][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 930.158430][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 930.164561][T17474] __do_fast_syscall_32+0x102/0x160 [ 930.169747][T17474] do_fast_syscall_32+0x6a/0xc0 [ 930.174583][T17474] do_SYSENTER_32+0x73/0x90 [ 930.179062][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 930.185371][T17474] [ 930.187675][T17474] Uninit was stored to memory at: [ 930.192771][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 930.198559][T17474] __msan_chain_origin+0x57/0xa0 [ 930.203482][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 930.208567][T17474] get_compat_msghdr+0x108/0x2b0 [ 930.213489][T17474] do_recvmmsg+0xdd1/0x22f0 [ 930.217966][T17474] __sys_recvmmsg+0x519/0x6f0 [ 930.222621][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 930.228661][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 930.234790][T17474] __do_fast_syscall_32+0x102/0x160 [ 930.239964][T17474] do_fast_syscall_32+0x6a/0xc0 [ 930.244786][T17474] do_SYSENTER_32+0x73/0x90 [ 930.249263][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 930.255557][T17474] [ 930.257857][T17474] Uninit was stored to memory at: [ 930.262866][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 930.268558][T17474] __msan_chain_origin+0x57/0xa0 [ 930.273475][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 930.278559][T17474] get_compat_msghdr+0x108/0x2b0 [ 930.283568][T17474] do_recvmmsg+0xdd1/0x22f0 [ 930.288056][T17474] __sys_recvmmsg+0x519/0x6f0 [ 930.292714][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 930.298766][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 930.304925][T17474] __do_fast_syscall_32+0x102/0x160 [ 930.310193][T17474] do_fast_syscall_32+0x6a/0xc0 [ 930.315047][T17474] do_SYSENTER_32+0x73/0x90 [ 930.319539][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 930.325850][T17474] [ 930.328154][T17474] Uninit was stored to memory at: [ 930.333160][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 930.338880][T17474] __msan_chain_origin+0x57/0xa0 [ 930.343815][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 930.348907][T17474] get_compat_msghdr+0x108/0x2b0 [ 930.353842][T17474] do_recvmmsg+0xdd1/0x22f0 [ 930.358340][T17474] __sys_recvmmsg+0x519/0x6f0 [ 930.363002][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 930.369048][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 930.375185][T17474] __do_fast_syscall_32+0x102/0x160 [ 930.380367][T17474] do_fast_syscall_32+0x6a/0xc0 [ 930.385198][T17474] do_SYSENTER_32+0x73/0x90 [ 930.389698][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 930.396008][T17474] [ 930.398321][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 930.404977][T17474] do_recvmmsg+0xbf/0x22f0 [ 930.409372][T17474] do_recvmmsg+0xbf/0x22f0 [ 930.684466][T17474] not chained 2060000 origins [ 930.689397][T17474] CPU: 0 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 930.698158][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 930.708217][T17474] Call Trace: [ 930.711522][T17474] dump_stack+0x21c/0x280 [ 930.715894][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 930.721632][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 930.726755][T17474] ? kmsan_get_metadata+0x116/0x180 [ 930.731969][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 930.737783][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 930.743872][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 930.748822][T17474] ? kmsan_get_metadata+0x116/0x180 [ 930.754053][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 930.759876][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 930.765949][T17474] ? kmsan_get_metadata+0x116/0x180 [ 930.771161][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 930.776808][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 930.782904][T17474] ? _copy_from_user+0x1fd/0x300 [ 930.787855][T17474] ? kmsan_get_metadata+0x116/0x180 [ 930.793056][T17474] __msan_chain_origin+0x57/0xa0 [ 930.798020][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 930.803147][T17474] get_compat_msghdr+0x108/0x2b0 [ 930.808099][T17474] do_recvmmsg+0xdd1/0x22f0 [ 930.812615][T17474] ? kmsan_get_metadata+0x116/0x180 [ 930.817823][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 930.823721][T17474] ? kmsan_get_metadata+0x116/0x180 [ 930.828913][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 930.834530][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 930.839923][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 930.844683][T17474] __sys_recvmmsg+0x519/0x6f0 [ 930.849339][T17474] ? kmsan_get_metadata+0x116/0x180 [ 930.854519][T17474] ? kmsan_get_metadata+0x116/0x180 [ 930.859832][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 930.865894][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 930.872038][T17474] __do_fast_syscall_32+0x102/0x160 [ 930.877232][T17474] do_fast_syscall_32+0x6a/0xc0 [ 930.882081][T17474] do_SYSENTER_32+0x73/0x90 [ 930.886580][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 930.892894][T17474] RIP: 0023:0xf7f58549 [ 930.896960][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 930.916558][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 930.924968][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 930.933063][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 930.941027][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 930.948992][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 930.956946][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 930.964907][T17474] Uninit was stored to memory at: [ 930.969932][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 930.975652][T17474] __msan_chain_origin+0x57/0xa0 [ 930.980582][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 930.985690][T17474] get_compat_msghdr+0x108/0x2b0 [ 930.990613][T17474] do_recvmmsg+0xdd1/0x22f0 [ 930.995113][T17474] __sys_recvmmsg+0x519/0x6f0 [ 930.999784][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 931.005864][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 931.012021][T17474] __do_fast_syscall_32+0x102/0x160 [ 931.017203][T17474] do_fast_syscall_32+0x6a/0xc0 [ 931.022432][T17474] do_SYSENTER_32+0x73/0x90 [ 931.026950][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 931.033323][T17474] [ 931.035641][T17474] Uninit was stored to memory at: [ 931.040664][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 931.046465][T17474] __msan_chain_origin+0x57/0xa0 [ 931.051390][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 931.056590][T17474] get_compat_msghdr+0x108/0x2b0 [ 931.061567][T17474] do_recvmmsg+0xdd1/0x22f0 [ 931.066230][T17474] __sys_recvmmsg+0x519/0x6f0 [ 931.070898][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 931.076962][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 931.083106][T17474] __do_fast_syscall_32+0x102/0x160 [ 931.088288][T17474] do_fast_syscall_32+0x6a/0xc0 [ 931.093123][T17474] do_SYSENTER_32+0x73/0x90 [ 931.097760][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 931.104183][T17474] [ 931.106508][T17474] Uninit was stored to memory at: [ 931.111537][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 931.117275][T17474] __msan_chain_origin+0x57/0xa0 [ 931.122208][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 931.127314][T17474] get_compat_msghdr+0x108/0x2b0 [ 931.132238][T17474] do_recvmmsg+0xdd1/0x22f0 [ 931.136737][T17474] __sys_recvmmsg+0x519/0x6f0 [ 931.141416][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 931.147483][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 931.153625][T17474] __do_fast_syscall_32+0x102/0x160 [ 931.158808][T17474] do_fast_syscall_32+0x6a/0xc0 [ 931.163723][T17474] do_SYSENTER_32+0x73/0x90 [ 931.168212][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 931.174524][T17474] [ 931.176836][T17474] Uninit was stored to memory at: [ 931.181856][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 931.187693][T17474] __msan_chain_origin+0x57/0xa0 [ 931.192619][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 931.197838][T17474] get_compat_msghdr+0x108/0x2b0 [ 931.202821][T17474] do_recvmmsg+0xdd1/0x22f0 [ 931.207410][T17474] __sys_recvmmsg+0x519/0x6f0 [ 931.212091][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 931.218167][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 931.224317][T17474] __do_fast_syscall_32+0x102/0x160 [ 931.229517][T17474] do_fast_syscall_32+0x6a/0xc0 [ 931.234366][T17474] do_SYSENTER_32+0x73/0x90 [ 931.238864][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 931.245192][T17474] [ 931.247524][T17474] Uninit was stored to memory at: [ 931.252533][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 931.258232][T17474] __msan_chain_origin+0x57/0xa0 [ 931.263156][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 931.268370][T17474] get_compat_msghdr+0x108/0x2b0 [ 931.273393][T17474] do_recvmmsg+0xdd1/0x22f0 [ 931.277910][T17474] __sys_recvmmsg+0x519/0x6f0 [ 931.282573][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 931.288626][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 931.294785][T17474] __do_fast_syscall_32+0x102/0x160 [ 931.300065][T17474] do_fast_syscall_32+0x6a/0xc0 [ 931.304917][T17474] do_SYSENTER_32+0x73/0x90 [ 931.309423][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 931.315735][T17474] [ 931.318046][T17474] Uninit was stored to memory at: [ 931.323052][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 931.328753][T17474] __msan_chain_origin+0x57/0xa0 [ 931.333796][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 931.338886][T17474] get_compat_msghdr+0x108/0x2b0 [ 931.343824][T17474] do_recvmmsg+0xdd1/0x22f0 [ 931.348308][T17474] __sys_recvmmsg+0x519/0x6f0 [ 931.352992][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 931.359066][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 931.365295][T17474] __do_fast_syscall_32+0x102/0x160 [ 931.370478][T17474] do_fast_syscall_32+0x6a/0xc0 [ 931.375400][T17474] do_SYSENTER_32+0x73/0x90 [ 931.379903][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 931.386273][T17474] [ 931.388596][T17474] Uninit was stored to memory at: [ 931.393616][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 931.399332][T17474] __msan_chain_origin+0x57/0xa0 [ 931.404254][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 931.409343][T17474] get_compat_msghdr+0x108/0x2b0 [ 931.414267][T17474] do_recvmmsg+0xdd1/0x22f0 [ 931.418751][T17474] __sys_recvmmsg+0x519/0x6f0 [ 931.423411][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 931.429460][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 931.435753][T17474] __do_fast_syscall_32+0x102/0x160 [ 931.440960][T17474] do_fast_syscall_32+0x6a/0xc0 [ 931.445814][T17474] do_SYSENTER_32+0x73/0x90 [ 931.450313][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 931.456613][T17474] [ 931.459055][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 931.465716][T17474] do_recvmmsg+0xbf/0x22f0 [ 931.470125][T17474] do_recvmmsg+0xbf/0x22f0 [ 931.699745][T17474] not chained 2070000 origins [ 931.704596][T17474] CPU: 0 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 931.713353][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 931.723411][T17474] Call Trace: [ 931.726755][T17474] dump_stack+0x21c/0x280 [ 931.731132][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 931.736865][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 931.741989][T17474] ? kmsan_get_metadata+0x116/0x180 [ 931.747193][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 931.753007][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 931.759082][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 931.764110][T17474] ? kmsan_get_metadata+0x116/0x180 [ 931.769312][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 931.775211][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 931.781287][T17474] ? kmsan_get_metadata+0x116/0x180 [ 931.786581][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 931.792226][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 931.798387][T17474] ? _copy_from_user+0x1fd/0x300 [ 931.803390][T17474] ? kmsan_get_metadata+0x116/0x180 [ 931.808688][T17474] __msan_chain_origin+0x57/0xa0 [ 931.813629][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 931.818751][T17474] get_compat_msghdr+0x108/0x2b0 [ 931.823704][T17474] do_recvmmsg+0xdd1/0x22f0 [ 931.828230][T17474] ? kmsan_get_metadata+0x116/0x180 [ 931.833439][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 931.839358][T17474] ? kmsan_get_metadata+0x116/0x180 [ 931.844558][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 931.850199][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 931.855517][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 931.860291][T17474] __sys_recvmmsg+0x519/0x6f0 [ 931.864978][T17474] ? kmsan_get_metadata+0x116/0x180 [ 931.870184][T17474] ? kmsan_get_metadata+0x116/0x180 [ 931.875468][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 931.881542][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 931.887707][T17474] __do_fast_syscall_32+0x102/0x160 [ 931.893068][T17474] do_fast_syscall_32+0x6a/0xc0 [ 931.898006][T17474] do_SYSENTER_32+0x73/0x90 [ 931.902558][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 931.908866][T17474] RIP: 0023:0xf7f58549 [ 931.912928][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 931.932611][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 931.941123][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 931.949325][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 931.957309][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 931.965338][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 931.973303][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 931.981269][T17474] Uninit was stored to memory at: [ 931.986311][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 931.992143][T17474] __msan_chain_origin+0x57/0xa0 [ 931.997603][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 932.002814][T17474] get_compat_msghdr+0x108/0x2b0 [ 932.007739][T17474] do_recvmmsg+0xdd1/0x22f0 [ 932.012268][T17474] __sys_recvmmsg+0x519/0x6f0 [ 932.016931][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 932.022989][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 932.029129][T17474] __do_fast_syscall_32+0x102/0x160 [ 932.034310][T17474] do_fast_syscall_32+0x6a/0xc0 [ 932.039142][T17474] do_SYSENTER_32+0x73/0x90 [ 932.043632][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 932.049944][T17474] [ 932.052265][T17474] Uninit was stored to memory at: [ 932.057272][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 932.062976][T17474] __msan_chain_origin+0x57/0xa0 [ 932.067898][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 932.072996][T17474] get_compat_msghdr+0x108/0x2b0 [ 932.077917][T17474] do_recvmmsg+0xdd1/0x22f0 [ 932.082411][T17474] __sys_recvmmsg+0x519/0x6f0 [ 932.087105][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 932.093155][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 932.099292][T17474] __do_fast_syscall_32+0x102/0x160 [ 932.104489][T17474] do_fast_syscall_32+0x6a/0xc0 [ 932.109337][T17474] do_SYSENTER_32+0x73/0x90 [ 932.113848][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 932.120159][T17474] [ 932.122480][T17474] Uninit was stored to memory at: [ 932.127613][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 932.133330][T17474] __msan_chain_origin+0x57/0xa0 [ 932.138420][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 932.143607][T17474] get_compat_msghdr+0x108/0x2b0 [ 932.148556][T17474] do_recvmmsg+0xdd1/0x22f0 [ 932.153165][T17474] __sys_recvmmsg+0x519/0x6f0 [ 932.157845][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 932.163933][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 932.170087][T17474] __do_fast_syscall_32+0x102/0x160 [ 932.175485][T17474] do_fast_syscall_32+0x6a/0xc0 [ 932.180332][T17474] do_SYSENTER_32+0x73/0x90 [ 932.184867][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 932.191172][T17474] [ 932.193484][T17474] Uninit was stored to memory at: [ 932.198541][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 932.204330][T17474] __msan_chain_origin+0x57/0xa0 [ 932.209250][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 932.214346][T17474] get_compat_msghdr+0x108/0x2b0 [ 932.219269][T17474] do_recvmmsg+0xdd1/0x22f0 [ 932.223859][T17474] __sys_recvmmsg+0x519/0x6f0 [ 932.228520][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 932.234637][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 932.240790][T17474] __do_fast_syscall_32+0x102/0x160 [ 932.245984][T17474] do_fast_syscall_32+0x6a/0xc0 [ 932.250820][T17474] do_SYSENTER_32+0x73/0x90 [ 932.255306][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 932.261613][T17474] [ 932.263934][T17474] Uninit was stored to memory at: [ 932.268940][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 932.274641][T17474] __msan_chain_origin+0x57/0xa0 [ 932.279660][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 932.284770][T17474] get_compat_msghdr+0x108/0x2b0 [ 932.289743][T17474] do_recvmmsg+0xdd1/0x22f0 [ 932.294241][T17474] __sys_recvmmsg+0x519/0x6f0 [ 932.299002][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 932.305140][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 932.311275][T17474] __do_fast_syscall_32+0x102/0x160 [ 932.316479][T17474] do_fast_syscall_32+0x6a/0xc0 [ 932.321334][T17474] do_SYSENTER_32+0x73/0x90 [ 932.325892][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 932.332282][T17474] [ 932.334612][T17474] Uninit was stored to memory at: [ 932.339633][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 932.345351][T17474] __msan_chain_origin+0x57/0xa0 [ 932.350283][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 932.355395][T17474] get_compat_msghdr+0x108/0x2b0 [ 932.360334][T17474] do_recvmmsg+0xdd1/0x22f0 [ 932.364827][T17474] __sys_recvmmsg+0x519/0x6f0 [ 932.369522][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 932.375799][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 932.381950][T17474] __do_fast_syscall_32+0x102/0x160 [ 932.387139][T17474] do_fast_syscall_32+0x6a/0xc0 [ 932.391973][T17474] do_SYSENTER_32+0x73/0x90 [ 932.396462][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 932.402770][T17474] [ 932.405105][T17474] Uninit was stored to memory at: [ 932.410131][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 932.415926][T17474] __msan_chain_origin+0x57/0xa0 [ 932.420862][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 932.425964][T17474] get_compat_msghdr+0x108/0x2b0 [ 932.430897][T17474] do_recvmmsg+0xdd1/0x22f0 [ 932.435413][T17474] __sys_recvmmsg+0x519/0x6f0 [ 932.440099][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 932.446220][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 932.452360][T17474] __do_fast_syscall_32+0x102/0x160 [ 932.457558][T17474] do_fast_syscall_32+0x6a/0xc0 [ 932.462408][T17474] do_SYSENTER_32+0x73/0x90 [ 932.466917][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 932.473568][T17474] [ 932.476022][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 932.482721][T17474] do_recvmmsg+0xbf/0x22f0 [ 932.487136][T17474] do_recvmmsg+0xbf/0x22f0 [ 932.746651][T17474] not chained 2080000 origins [ 932.751472][T17474] CPU: 0 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 932.760328][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 932.770383][T17474] Call Trace: [ 932.773822][T17474] dump_stack+0x21c/0x280 [ 932.778159][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 932.783888][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 932.789015][T17474] ? kmsan_get_metadata+0x116/0x180 [ 932.794221][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 932.800050][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 932.806124][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 932.811086][T17474] ? kmsan_get_metadata+0x116/0x180 [ 932.816311][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 932.822168][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 932.828547][T17474] ? kmsan_get_metadata+0x116/0x180 [ 932.833726][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 932.839429][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 932.845493][T17474] ? _copy_from_user+0x1fd/0x300 [ 932.850558][T17474] ? kmsan_get_metadata+0x116/0x180 [ 932.855946][T17474] __msan_chain_origin+0x57/0xa0 [ 932.860872][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 932.865970][T17474] get_compat_msghdr+0x108/0x2b0 [ 932.871009][T17474] do_recvmmsg+0xdd1/0x22f0 [ 932.875592][T17474] ? kmsan_get_metadata+0x116/0x180 [ 932.880835][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 932.886711][T17474] ? kmsan_get_metadata+0x116/0x180 [ 932.892066][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 932.897712][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 932.902978][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 932.907749][T17474] __sys_recvmmsg+0x519/0x6f0 [ 932.912415][T17474] ? kmsan_get_metadata+0x116/0x180 [ 932.917628][T17474] ? kmsan_get_metadata+0x116/0x180 [ 932.922814][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 932.928911][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 932.935071][T17474] __do_fast_syscall_32+0x102/0x160 [ 932.940258][T17474] do_fast_syscall_32+0x6a/0xc0 [ 932.945101][T17474] do_SYSENTER_32+0x73/0x90 [ 932.949610][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 932.956191][T17474] RIP: 0023:0xf7f58549 [ 932.960366][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 932.980162][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 932.988579][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 932.996705][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 933.004732][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 933.012749][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 933.020704][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 933.028660][T17474] Uninit was stored to memory at: [ 933.033673][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 933.039404][T17474] __msan_chain_origin+0x57/0xa0 [ 933.044329][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 933.049433][T17474] get_compat_msghdr+0x108/0x2b0 [ 933.054372][T17474] do_recvmmsg+0xdd1/0x22f0 [ 933.058883][T17474] __sys_recvmmsg+0x519/0x6f0 [ 933.063555][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 933.069621][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 933.075767][T17474] __do_fast_syscall_32+0x102/0x160 [ 933.080977][T17474] do_fast_syscall_32+0x6a/0xc0 [ 933.085811][T17474] do_SYSENTER_32+0x73/0x90 [ 933.090314][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 933.096659][T17474] [ 933.098967][T17474] Uninit was stored to memory at: [ 933.103976][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 933.109678][T17474] __msan_chain_origin+0x57/0xa0 [ 933.114595][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 933.119699][T17474] get_compat_msghdr+0x108/0x2b0 [ 933.124631][T17474] do_recvmmsg+0xdd1/0x22f0 [ 933.129117][T17474] __sys_recvmmsg+0x519/0x6f0 [ 933.133785][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 933.139839][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 933.145979][T17474] __do_fast_syscall_32+0x102/0x160 [ 933.151177][T17474] do_fast_syscall_32+0x6a/0xc0 [ 933.156119][T17474] do_SYSENTER_32+0x73/0x90 [ 933.160609][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 933.166912][T17474] [ 933.169221][T17474] Uninit was stored to memory at: [ 933.174229][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 933.179943][T17474] __msan_chain_origin+0x57/0xa0 [ 933.184960][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 933.190138][T17474] get_compat_msghdr+0x108/0x2b0 [ 933.195072][T17474] do_recvmmsg+0xdd1/0x22f0 [ 933.199658][T17474] __sys_recvmmsg+0x519/0x6f0 [ 933.204333][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 933.210391][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 933.216531][T17474] __do_fast_syscall_32+0x102/0x160 [ 933.221714][T17474] do_fast_syscall_32+0x6a/0xc0 [ 933.226640][T17474] do_SYSENTER_32+0x73/0x90 [ 933.231217][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 933.237519][T17474] [ 933.239833][T17474] Uninit was stored to memory at: [ 933.244840][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 933.250543][T17474] __msan_chain_origin+0x57/0xa0 [ 933.255478][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 933.260680][T17474] get_compat_msghdr+0x108/0x2b0 [ 933.265625][T17474] do_recvmmsg+0xdd1/0x22f0 [ 933.270155][T17474] __sys_recvmmsg+0x519/0x6f0 [ 933.274828][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 933.280879][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 933.287015][T17474] __do_fast_syscall_32+0x102/0x160 [ 933.292197][T17474] do_fast_syscall_32+0x6a/0xc0 [ 933.297031][T17474] do_SYSENTER_32+0x73/0x90 [ 933.301563][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 933.307865][T17474] [ 933.310269][T17474] Uninit was stored to memory at: [ 933.315308][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 933.321131][T17474] __msan_chain_origin+0x57/0xa0 [ 933.326052][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 933.331149][T17474] get_compat_msghdr+0x108/0x2b0 [ 933.336065][T17474] do_recvmmsg+0xdd1/0x22f0 [ 933.340549][T17474] __sys_recvmmsg+0x519/0x6f0 [ 933.345206][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 933.351375][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 933.357527][T17474] __do_fast_syscall_32+0x102/0x160 [ 933.362732][T17474] do_fast_syscall_32+0x6a/0xc0 [ 933.367599][T17474] do_SYSENTER_32+0x73/0x90 [ 933.372088][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 933.378490][T17474] [ 933.380884][T17474] Uninit was stored to memory at: [ 933.385906][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 933.391608][T17474] __msan_chain_origin+0x57/0xa0 [ 933.396526][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 933.401648][T17474] get_compat_msghdr+0x108/0x2b0 [ 933.406570][T17474] do_recvmmsg+0xdd1/0x22f0 [ 933.411147][T17474] __sys_recvmmsg+0x519/0x6f0 [ 933.415807][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 933.421873][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 933.428024][T17474] __do_fast_syscall_32+0x102/0x160 [ 933.433206][T17474] do_fast_syscall_32+0x6a/0xc0 [ 933.438040][T17474] do_SYSENTER_32+0x73/0x90 [ 933.442726][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 933.449024][T17474] [ 933.451462][T17474] Uninit was stored to memory at: [ 933.456475][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 933.462202][T17474] __msan_chain_origin+0x57/0xa0 [ 933.467298][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 933.472406][T17474] get_compat_msghdr+0x108/0x2b0 [ 933.477355][T17474] do_recvmmsg+0xdd1/0x22f0 [ 933.481844][T17474] __sys_recvmmsg+0x519/0x6f0 [ 933.486522][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 933.492573][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 933.498812][T17474] __do_fast_syscall_32+0x102/0x160 [ 933.504081][T17474] do_fast_syscall_32+0x6a/0xc0 [ 933.508933][T17474] do_SYSENTER_32+0x73/0x90 [ 933.513440][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 933.519829][T17474] [ 933.522138][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 933.528789][T17474] do_recvmmsg+0xbf/0x22f0 [ 933.533216][T17474] do_recvmmsg+0xbf/0x22f0 [ 933.778935][T17474] not chained 2090000 origins [ 933.783798][T17474] CPU: 0 PID: 17474 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 933.792556][T17474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 933.802617][T17474] Call Trace: [ 933.806090][T17474] dump_stack+0x21c/0x280 [ 933.810432][T17474] kmsan_internal_chain_origin+0x6f/0x130 [ 933.816205][T17474] ? skb_recv_datagram+0x46e/0x4f0 [ 933.821386][T17474] ? kmsan_get_metadata+0x116/0x180 [ 933.826595][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 933.832408][T17474] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 933.838531][T17474] ? bt_sock_recvmsg+0x522/0xc40 [ 933.843475][T17474] ? kmsan_get_metadata+0x116/0x180 [ 933.848682][T17474] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 933.854494][T17474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 933.860566][T17474] ? kmsan_get_metadata+0x116/0x180 [ 933.865768][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 933.871417][T17474] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 933.877493][T17474] ? _copy_from_user+0x1fd/0x300 [ 933.882449][T17474] ? kmsan_get_metadata+0x116/0x180 [ 933.887656][T17474] __msan_chain_origin+0x57/0xa0 [ 933.892605][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 933.897727][T17474] get_compat_msghdr+0x108/0x2b0 [ 933.902697][T17474] do_recvmmsg+0xdd1/0x22f0 [ 933.907215][T17474] ? kmsan_get_metadata+0x116/0x180 [ 933.912561][T17474] ? kmsan_internal_check_memory+0xb1/0x520 [ 933.918458][T17474] ? kmsan_get_metadata+0x116/0x180 [ 933.923664][T17474] ? kmsan_internal_set_origin+0x85/0xc0 [ 933.929309][T17474] ? __msan_poison_alloca+0xe9/0x110 [ 933.934615][T17474] ? __sys_recvmmsg+0xb5/0x6f0 [ 933.939378][T17474] __sys_recvmmsg+0x519/0x6f0 [ 933.944219][T17474] ? kmsan_get_metadata+0x116/0x180 [ 933.949420][T17474] ? kmsan_get_metadata+0x116/0x180 [ 933.954732][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 933.960867][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 933.967005][T17474] __do_fast_syscall_32+0x102/0x160 [ 933.972295][T17474] do_fast_syscall_32+0x6a/0xc0 [ 933.977145][T17474] do_SYSENTER_32+0x73/0x90 [ 933.981760][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 933.988231][T17474] RIP: 0023:0xf7f58549 [ 933.992377][T17474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 934.012380][T17474] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 934.020781][T17474] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000 [ 934.028738][T17474] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 934.036807][T17474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 934.044791][T17474] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 934.052899][T17474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 934.060893][T17474] Uninit was stored to memory at: [ 934.065924][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 934.071639][T17474] __msan_chain_origin+0x57/0xa0 [ 934.076563][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 934.081672][T17474] get_compat_msghdr+0x108/0x2b0 [ 934.086608][T17474] do_recvmmsg+0xdd1/0x22f0 [ 934.091095][T17474] __sys_recvmmsg+0x519/0x6f0 [ 934.095787][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 934.101941][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 934.108078][T17474] __do_fast_syscall_32+0x102/0x160 [ 934.113260][T17474] do_fast_syscall_32+0x6a/0xc0 [ 934.118092][T17474] do_SYSENTER_32+0x73/0x90 [ 934.122585][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 934.128888][T17474] [ 934.131197][T17474] Uninit was stored to memory at: [ 934.136205][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 934.141923][T17474] __msan_chain_origin+0x57/0xa0 [ 934.146931][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 934.152025][T17474] get_compat_msghdr+0x108/0x2b0 [ 934.156955][T17474] do_recvmmsg+0xdd1/0x22f0 [ 934.161470][T17474] __sys_recvmmsg+0x519/0x6f0 [ 934.166152][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 934.172202][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 934.178342][T17474] __do_fast_syscall_32+0x102/0x160 [ 934.183536][T17474] do_fast_syscall_32+0x6a/0xc0 [ 934.188560][T17474] do_SYSENTER_32+0x73/0x90 [ 934.193068][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 934.199388][T17474] [ 934.201833][T17474] Uninit was stored to memory at: [ 934.206934][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 934.212697][T17474] __msan_chain_origin+0x57/0xa0 [ 934.217621][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 934.222731][T17474] get_compat_msghdr+0x108/0x2b0 [ 934.227671][T17474] do_recvmmsg+0xdd1/0x22f0 [ 934.232157][T17474] __sys_recvmmsg+0x519/0x6f0 [ 934.236907][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 934.243277][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 934.249414][T17474] __do_fast_syscall_32+0x102/0x160 [ 934.254625][T17474] do_fast_syscall_32+0x6a/0xc0 [ 934.259465][T17474] do_SYSENTER_32+0x73/0x90 [ 934.264049][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 934.270613][T17474] [ 934.272919][T17474] Uninit was stored to memory at: [ 934.277933][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 934.283647][T17474] __msan_chain_origin+0x57/0xa0 [ 934.288566][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 934.293654][T17474] get_compat_msghdr+0x108/0x2b0 [ 934.298659][T17474] do_recvmmsg+0xdd1/0x22f0 [ 934.303161][T17474] __sys_recvmmsg+0x519/0x6f0 [ 934.307828][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 934.313889][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 934.320029][T17474] __do_fast_syscall_32+0x102/0x160 [ 934.325299][T17474] do_fast_syscall_32+0x6a/0xc0 [ 934.330132][T17474] do_SYSENTER_32+0x73/0x90 [ 934.334643][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 934.341079][T17474] [ 934.343387][T17474] Uninit was stored to memory at: [ 934.348407][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 934.354123][T17474] __msan_chain_origin+0x57/0xa0 [ 934.359086][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 934.364182][T17474] get_compat_msghdr+0x108/0x2b0 [ 934.369098][T17474] do_recvmmsg+0xdd1/0x22f0 [ 934.373583][T17474] __sys_recvmmsg+0x519/0x6f0 [ 934.378242][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 934.384298][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 934.390442][T17474] __do_fast_syscall_32+0x102/0x160 [ 934.395685][T17474] do_fast_syscall_32+0x6a/0xc0 [ 934.400524][T17474] do_SYSENTER_32+0x73/0x90 [ 934.405066][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 934.411375][T17474] [ 934.413697][T17474] Uninit was stored to memory at: [ 934.418706][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 934.424408][T17474] __msan_chain_origin+0x57/0xa0 [ 934.429548][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 934.434720][T17474] get_compat_msghdr+0x108/0x2b0 [ 934.439739][T17474] do_recvmmsg+0xdd1/0x22f0 [ 934.444237][T17474] __sys_recvmmsg+0x519/0x6f0 [ 934.448897][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 934.455076][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 934.461212][T17474] __do_fast_syscall_32+0x102/0x160 [ 934.466393][T17474] do_fast_syscall_32+0x6a/0xc0 [ 934.471242][T17474] do_SYSENTER_32+0x73/0x90 [ 934.475735][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 934.482094][T17474] [ 934.484409][T17474] Uninit was stored to memory at: [ 934.489450][T17474] kmsan_internal_chain_origin+0xad/0x130 [ 934.495222][T17474] __msan_chain_origin+0x57/0xa0 [ 934.500143][T17474] __get_compat_msghdr+0x6db/0x9d0 [ 934.505231][T17474] get_compat_msghdr+0x108/0x2b0 [ 934.510163][T17474] do_recvmmsg+0xdd1/0x22f0 [ 934.514847][T17474] __sys_recvmmsg+0x519/0x6f0 [ 934.519532][T17474] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 934.525616][T17474] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 934.531784][T17474] __do_fast_syscall_32+0x102/0x160 [ 934.536967][T17474] do_fast_syscall_32+0x6a/0xc0 [ 934.541870][T17474] do_SYSENTER_32+0x73/0x90 [ 934.546381][T17474] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 934.552685][T17474] [ 934.555029][T17474] Local variable ----msg_sys@do_recvmmsg created at: [ 934.561684][T17474] do_recvmmsg+0xbf/0x22f0 [ 934.566080][T17474] do_recvmmsg+0xbf/0x22f0 08:10:22 executing program 5: r0 = socket$l2tp6(0xa, 0x2, 0x73) bind$l2tp6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x20) 08:10:22 executing program 1: syz_emit_ethernet(0x2a, &(0x7f0000000240)={@broadcast, @remote, @val, {@ipv4}}, 0x0) 08:10:22 executing program 2: recvfrom(0xffffffffffffffff, 0x0, 0xfffffffffffffdf4, 0x0, 0x0, 0xffffff11) 08:10:22 executing program 4: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000140)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_sha384\x00'}, 0x58) bind$alg(r0, &(0x7f0000000280)={0x26, 'rng\x00', 0x0, 0x0, 'ansi_cprng\x00'}, 0x58) 08:10:22 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x500, 0x0, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:22 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000200)='mptcp_pm\x00') sendmsg$MPTCP_PM_CMD_GET_ADDR(r2, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000740)={0x18, r3, 0x3, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x4}]}, 0x18}}, 0x0) 08:10:22 executing program 5: r0 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r0, &(0x7f0000000040)={0x18, 0x0, {0x1, @empty, 'xfrm0\x00'}}, 0x1e) 08:10:22 executing program 2: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/rtc0\x00', 0x0, 0x0) ioctl$RTC_ALM_SET(r0, 0x80287010, &(0x7f0000000080)) 08:10:23 executing program 1: r0 = socket$l2tp6(0xa, 0x2, 0x73) bind$l2tp6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x20) sendto$l2tp6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x0, 0x0}}, 0x20) 08:10:23 executing program 4: r0 = socket$nl_sock_diag(0x10, 0x3, 0x4) sendmsg$DCCPDIAG_GETSOCK(r0, &(0x7f0000005180)={0x0, 0x0, &(0x7f0000005140)={0x0}}, 0x0) 08:10:23 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x600, 0x0, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:23 executing program 5: prctl$PR_SET_MM_AUXV(0x23, 0xc, &(0x7f0000000000)="bd", 0x1) 08:10:23 executing program 2: timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x989680}}, 0x0) 08:10:23 executing program 1: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x0, 0x0) ioctl$DRM_IOCTL_ADD_MAP(r0, 0xc0286415, &(0x7f0000000000)={&(0x7f0000ff9000/0x4000)=nil}) 08:10:23 executing program 4: r0 = syz_mount_image$vfat(&(0x7f00000000c0)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x3, &(0x7f0000000300)=[{&(0x7f0000000000)="eb3c906d6b66732e66617400028001000240000004f801", 0x17}, {&(0x7f0000000380)="57595a4b414c4c45522020085ac19f69b8f2b2b1ea1b8a0ac9135eed1df1d1001cc2", 0x22, 0x600}, {0x0, 0x0, 0x10e00}], 0x0, &(0x7f0000000600)=ANY=[]) mkdirat(r0, &(0x7f0000000040)='./file1\x00', 0x0) 08:10:23 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x700, 0x0, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:24 executing program 5: syz_emit_ethernet(0x15, &(0x7f00000000c0)={@link_local, @dev, @val={@void}, {@llc={0x4, {@llc={0x0, 0x0, "da"}}}}}, 0x0) [ 938.891293][T13686] device hsr_slave_0 left promiscuous mode [ 938.909378][T13686] device hsr_slave_1 left promiscuous mode [ 938.925263][T13686] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 938.932890][T13686] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 938.949730][T13686] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 938.957277][T13686] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 938.981814][T13686] device bridge_slave_1 left promiscuous mode [ 938.991111][T13686] bridge0: port 2(bridge_slave_1) entered disabled state [ 939.005615][T13686] device bridge_slave_0 left promiscuous mode [ 939.012633][T13686] bridge0: port 1(bridge_slave_0) entered disabled state [ 939.039233][T13686] device veth1_macvtap left promiscuous mode [ 939.045512][T13686] device veth0_macvtap left promiscuous mode [ 939.051839][T13686] device veth1_vlan left promiscuous mode [ 939.057697][T13686] device veth0_vlan left promiscuous mode [ 941.128052][T13686] team0 (unregistering): Port device team_slave_1 removed [ 941.148048][T13686] team0 (unregistering): Port device team_slave_0 removed [ 941.163804][T13686] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 941.178975][T13686] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 941.252947][T13686] bond0 (unregistering): Released all slaves [ 941.324415][T17550] IPVS: ftp: loaded support on port[0] = 21 [ 941.516704][T17550] chnl_net:caif_netlink_parms(): no params data found [ 941.621927][T17550] bridge0: port 1(bridge_slave_0) entered blocking state [ 941.629103][T17550] bridge0: port 1(bridge_slave_0) entered disabled state [ 941.639631][T17550] device bridge_slave_0 entered promiscuous mode [ 941.653580][T17550] bridge0: port 2(bridge_slave_1) entered blocking state [ 941.660901][T17550] bridge0: port 2(bridge_slave_1) entered disabled state [ 941.670490][T17550] device bridge_slave_1 entered promiscuous mode [ 941.720290][T17550] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 941.739169][T17550] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 941.785646][T17550] team0: Port device team_slave_0 added [ 941.798264][T17550] team0: Port device team_slave_1 added [ 941.845157][T17550] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 941.852567][T17550] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 941.879802][T17550] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 941.896108][T17550] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 941.903524][T17550] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 941.930901][T17550] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 942.005458][T17550] device hsr_slave_0 entered promiscuous mode [ 942.015066][T17550] device hsr_slave_1 entered promiscuous mode [ 942.023924][T17550] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 942.032381][T17550] Cannot create hsr debugfs directory [ 942.269611][ T8473] Bluetooth: hci3: command 0x0409 tx timeout [ 942.323108][T17550] bridge0: port 2(bridge_slave_1) entered blocking state [ 942.330435][T17550] bridge0: port 2(bridge_slave_1) entered forwarding state [ 942.338219][T17550] bridge0: port 1(bridge_slave_0) entered blocking state [ 942.345815][T17550] bridge0: port 1(bridge_slave_0) entered forwarding state [ 942.363246][ T8469] bridge0: port 1(bridge_slave_0) entered disabled state [ 942.374015][ T8469] bridge0: port 2(bridge_slave_1) entered disabled state [ 942.507195][T17550] 8021q: adding VLAN 0 to HW filter on device bond0 [ 942.532759][T10613] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 942.542023][T10613] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 942.558841][T17550] 8021q: adding VLAN 0 to HW filter on device team0 [ 942.576251][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 942.586176][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 942.595696][ T7] bridge0: port 1(bridge_slave_0) entered blocking state [ 942.603069][ T7] bridge0: port 1(bridge_slave_0) entered forwarding state [ 942.620086][ T8474] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 942.629280][ T8474] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 942.638679][ T8474] bridge0: port 2(bridge_slave_1) entered blocking state [ 942.646059][ T8474] bridge0: port 2(bridge_slave_1) entered forwarding state [ 942.666247][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 942.687089][T10613] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 942.705770][T10613] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 942.715783][T10613] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 942.726619][T10613] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 942.743647][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 942.753777][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 942.779193][ T8474] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 942.788943][ T8474] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 942.810045][ T8474] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 942.819251][ T8474] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 942.835376][T17550] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 942.864751][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 942.872521][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 942.900984][T17550] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 942.997655][ T8473] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 943.010169][ T8473] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 943.046171][ T8474] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 943.055778][ T8474] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 943.067556][ T8474] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 943.077008][ T8474] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 943.099261][T17550] device veth0_vlan entered promiscuous mode [ 943.121095][T17550] device veth1_vlan entered promiscuous mode [ 943.160975][ T8474] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 943.170082][ T8474] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 943.179264][ T8474] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 943.189203][ T8474] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 943.207634][T17550] device veth0_macvtap entered promiscuous mode [ 943.222889][T17550] device veth1_macvtap entered promiscuous mode [ 943.256902][T17550] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 943.267730][T17550] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 943.277834][T17550] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 943.288481][T17550] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 943.300851][T17550] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 943.311489][T17550] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 943.321578][T17550] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 943.332154][T17550] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 943.342221][T17550] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 943.352808][T17550] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 943.365109][T17550] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 943.375141][ T8474] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 943.384639][ T8474] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 943.395885][ T8474] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 943.406080][ T8474] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 943.425857][T17550] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 943.436980][T17550] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 943.447093][T17550] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 943.457682][T17550] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 943.467859][T17550] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 943.478497][T17550] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 943.488697][T17550] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 943.499387][T17550] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 943.509551][T17550] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 943.520160][T17550] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 943.532853][T17550] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 943.540918][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 943.551130][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 943.815177][T13697] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 943.823465][T13697] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 943.865377][ T8867] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 943.895746][T14060] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 943.905956][T14060] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 943.916868][ T8867] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 08:10:31 executing program 3: r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_int(r0, 0x107, 0x8, &(0x7f0000000000), 0x4) 08:10:31 executing program 1: socket$packet(0x11, 0x3, 0x300) pselect6(0x40, &(0x7f0000000400)={0x9}, 0x0, 0x0, 0x0, 0x0) 08:10:31 executing program 2: r0 = open(&(0x7f0000000080)='./file0\x00', 0xd76ae67d7f18c2dc, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) preadv(r1, &(0x7f00000014c0)=[{0x0}], 0x1, 0x0, 0x0) 08:10:31 executing program 4: syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/cgroup\x00') 08:10:31 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x900, 0x0, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:31 executing program 5: r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000004a80)='/dev/fuse\x00', 0x2, 0x0) syz_mount_image$fuse(&(0x7f0000000000)='fuse\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) mount$fuseblk(&(0x7f0000000080)='/dev/loop0\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x1a4d020, 0x0) [ 944.275841][ T33] audit: type=1800 audit(1610698231.558:10): pid=17791 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="file0" dev="sda1" ino=15871 res=0 errno=0 [ 944.350880][ T8867] Bluetooth: hci3: command 0x041b tx timeout 08:10:31 executing program 2: socket$inet(0x2, 0xa, 0xffff) 08:10:31 executing program 1: r0 = add_key$fscrypt_v1(&(0x7f0000000000)='logon\x00', &(0x7f0000000040)={'fscrypt:', @desc4='85baa174f0cb1142'}, &(0x7f0000000080)={0x0, "a2e639e5b037c101e1092726be0b717f43af64d97e5127ff05ab3884f7b9978dac0b6a75982d9505f86c9813c3cdd417433765dcd2b29d59d684426c6cfb4e6f"}, 0x48, 0xfffffffffffffffd) keyctl$clear(0x7, r0) 08:10:31 executing program 4: r0 = add_key$fscrypt_v1(&(0x7f0000000040)='logon\x00', &(0x7f0000000200)={'fscrypt:', @desc2='e355a76a11a1be18'}, &(0x7f0000000240)={0x0, "1a68738383998068114f0aa645c460a163eb495ba8c987ba18aa90dfae56108af447221a1e0d2613a1ce7c4ff7c437b3f288dcd1d4c69fb569767d2d2afdbcfc"}, 0x48, 0xfffffffffffffffc) add_key$keyring(&(0x7f0000000140)='keyring\x00', 0x0, 0x0, 0x0, r0) keyctl$negate(0xd, 0x0, 0x8, r0) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) socketpair(0x15, 0x80b, 0x0, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x480, 0x0) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000000480)={0x0, 0x0, "513598b2fbd4df3a3220aafb7ec645f34dff83413ad39146d28ff86b98412216cee3414a2a4242439110789e4fef491d5d5d684dbb1d9306c0bf58b97d3b831bd092940cabc516ec09d5d62174e25e3307d27047e7920d205b326360625b79c73ea33cad43870fc44decc9fc60aed5fec32ce976350c06d57beecb77ff29ee1928dfb21055cf00e27de9f1a17c725a823e6fd3e0b99ace329695cad7bef5fa86e0c9ab384cb366d2b3cf904a349ea139d35756a8d948ab79f6962206c460be1855c21db48d3120b9d49beed7529de2e8b4cf723282676eb6983125ce719a1463230e773828e4cc417a6bae4fd544f1f3a637957ba9072483e08fc4455584b55b", "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"}) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r1, 0xd000943e, &(0x7f0000001480)={r2, 0x0, "c1b0dc68b0fe8fa285af00888fdbc96089b6058f98ab537aa8c73506cfcee714ca9f52c98ca707943f576ba37f526fe1d1a716949521c6559de1363a9e9729c74f7982a19c0584ba6f2071e1a9a600f2e618f36f6eb9577273156331013ec0a9df0badc39e140aecd3fa0cacf5b974ba888e18a9b4c7757f458896673f867412a53154e665c9acb73d10d650efbab777800a4c11011d3f4542fca19dfcd57b29255d0e0b89c0c9d8f289515ff75807ea82e7b835b1ae1ea66e129361513907199a79d183a244326f0c788d19134d5c9548799c7ef5f918d4fe61cc71a098720f9bc0f781879d726079fdb0ec4d2f9e27c732695225625bd85c6c59824159a6c4", "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"}) keyctl$setperm(0x5, r0, 0x9010008) r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_ADD(r3, 0x4c80, 0x0) ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0xb) syz_open_dev$vcsa(0x0, 0x0, 0x0) r4 = syz_open_dev$vcsa(0x0, 0x0, 0x0) ioctl$DRM_IOCTL_RES_CTX(r4, 0xc0106426, &(0x7f0000000200)={0x0, 0x0}) ioctl$LOOP_CHANGE_FD(r4, 0x4c06, 0xffffffffffffffff) ioctl$DRM_IOCTL_MODE_GETPROPBLOB(r4, 0xc01064ac, &(0x7f0000000080)={0x1, 0x21, &(0x7f0000000000)=""/33}) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, 0x0) 08:10:31 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0xa00, 0x0, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:32 executing program 3: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ttyS3\x00', 0x0, 0x0) ioctl$TCSETAF(r0, 0x5408, &(0x7f0000000740)={0x7, 0x0, 0x0, 0x0, 0x0, "d4de1910f9998fbe"}) 08:10:32 executing program 2: openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080)='/dev/fuse\x00', 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100)='fuse\x00', 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r0, &(0x7f00000103c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f}}, 0x50) syz_fuse_handle_req(r0, &(0x7f000000e3c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_fuse_handle_req(r0, &(0x7f0000004200)="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", 0x2000, &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x78, 0x0, 0x0, {0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}}}, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_fuse_handle_req(r0, &(0x7f0000006380)="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", 0x2000, &(0x7f0000001100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x18}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r2 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x84842, 0x0) write(r2, &(0x7f0000004200), 0x0) 08:10:32 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$IPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x41, &(0x7f0000000000)=ANY=[@ANYBLOB="6d616e676c65000000000000000000000000000000000000000000000000000005"], 0x78) 08:10:32 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0xb00, 0x0, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:32 executing program 4: perf_event_open(&(0x7f0000001340)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x218}}, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001880)=ANY=[@ANYBLOB="020100021000000000000600000000000800130000ffff400000d2a82be90000e592c300fcffff390000ff0f00000000e00073000000000000000000000035000000000000000000000e02ff00000000030006000000000002000004000000bb0000e00000000000030005000000000002"], 0x80}}, 0x0) r0 = socket$key(0xf, 0x3, 0x2) sendmmsg(r0, &(0x7f0000000180), 0x400000000000002, 0x0) sendmsg$key(0xffffffffffffffff, 0x0, 0x0) pipe(&(0x7f0000000040)) 08:10:32 executing program 5: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @ext={0x2a, &(0x7f0000000280)="c4c691019919da078a0098d1e0a793b040f762910000000000000022addee07bee0d6333b5cacd890100"}}], 0x1c) wait4(0x0, 0x0, 0x80000000, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)}, {&(0x7f0000000000)="0832f497d38350418e4bb321019511dc5df26e9a0b7ecb6974f527cc14538d1efb1ffe03284f6d33265be9c604b293f20e96beeb2aa4c457ac37a3a3f1ce8682500fcecd80", 0x45}], 0x2, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x17) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) r1 = getpid() tkill(r1, 0x2f) 08:10:32 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_CIPSOV4_C_LISTALL(r0, &(0x7f0000001cc0)={&(0x7f00000017c0), 0xc, &(0x7f0000001c80)={&(0x7f0000001840)={0x14}, 0x14}}, 0x0) 08:10:33 executing program 5: syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000001800)='NLBL_CIPSOv4\x00') 08:10:33 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @ext={0x33, &(0x7f0000000280)="c4c691019919da078a0098d1e0a793b040f762910000000000000022addee07bee0d6333b5cacd8901000000322ff660202251"}}], 0x1c) wait4(0x0, 0x0, 0x80000000, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)}, {&(0x7f0000000000)="0832f497d38350418e4bb321019511dc5df26e9a0b7ecb6974f527cc14538d1efb1ffe03284f6d33265be9c604b293f20e96beeb2aa4c457ac37a3a3f1ce8682500fcecd80", 0x45}], 0x2, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x17) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) r1 = getpid() tkill(r1, 0x2f) 08:10:33 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={[], [], @multicast2}}, 0x1c) sendmsg$inet6(r0, &(0x7f0000000340)={&(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={[], [], @broadcast}}, 0x1c, 0x0}, 0x20004000) 08:10:33 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0xc00, 0x0, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:33 executing program 3: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000280)={0x1}, 0x8) 08:10:33 executing program 5: openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ttyS3\x00', 0x400, 0x0) [ 946.348251][ T33] audit: type=1800 audit(1610698233.628:11): pid=17839 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="/" dev="fuse" ino=1 res=0 errno=0 [ 946.429698][ T8473] Bluetooth: hci3: command 0x040f tx timeout 08:10:33 executing program 2: ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x0) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$GIO_SCRNMAP(r0, 0x4b40, &(0x7f0000000040)=""/157) syz_open_dev$vcsa(&(0x7f0000000100)='/dev/vcsa#\x00', 0x0, 0x0) socketpair(0x0, 0x0, 0x0, &(0x7f0000000200)) socket$inet_tcp(0x2, 0x1, 0x0) 08:10:33 executing program 1: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ttyS3\x00', 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(r0, 0x5456, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, "cffae5ff7a2dfa79556d2a9cc43ab8c61e1354"}) 08:10:33 executing program 4: syz_mount_image$vfat(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000940)='tmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000300)='./file0\x00') r0 = memfd_create(&(0x7f00000002c0)='system.snckprotoname\x00', 0x0) mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0) write(r0, &(0x7f0000000100)="75502217f9b5d18c0f80c2864f3cfd037f8866ff8113d026555e67808fc0452b0cc9a94da247808aab2dfcf06b220d9657e03942a99a95fd97110ec232d72c76a9bf8197b41d7cfbfb4eefd393ea938611531e61b8abe6fbf17a3fdb7b6195796b410957de2bc3cc167f8b55db1506422b054a0427c74b85e6017c2cffb8f9a0", 0x80) symlink(&(0x7f0000001000)='./file0\x00', &(0x7f0000000080)='./file0\x00') open(&(0x7f0000000300)='./file0\x00', 0x48d40, 0x0) 08:10:33 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0xd00, 0x0, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:33 executing program 3: ioctl$TIOCNOTTY(0xffffffffffffffff, 0x5422) syz_open_dev$tty1(0xc, 0x4, 0x3) ioctl$PIO_SCRNMAP(0xffffffffffffffff, 0x4b41, &(0x7f0000000000)="8ebb080d96b751beb846fafb73035e26d4ef0a683cd52c47edb9fdab27007b2c7d342266cec308fd3f44b92a9ee43a15763ce940e0feac27051bb32c9fa02c8f412db819534d6464d00a671b64e25e5b1ac91ca42211dbf4a0e961fe858ff9344f34eb13dd81b3df5e6d9dcf5e9e8c04f9a5919e4710127cfb07298df3e07af9cb1885746672") setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x1, &(0x7f00000000c0)=0x1ff, 0x4) r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ttyS3\x00', 0x2000, 0x0) ioctl$TCSBRKP(r0, 0x5425, 0x7) ioctl$TIOCGDEV(r0, 0x80045432, &(0x7f0000000140)) ioctl$FIONREAD(0xffffffffffffffff, 0x541b, &(0x7f0000000180)) ioctl$BINDER_GET_NODE_INFO_FOR_REF(0xffffffffffffffff, 0xc018620c, &(0x7f0000000340)) syz_open_dev$tty1(0xc, 0x4, 0x3) 08:10:34 executing program 5: openat$vcs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs\x00', 0x40000, 0x0) 08:10:34 executing program 1: openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080)='/dev/fuse\x00', 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100)='fuse\x00', 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r0, &(0x7f00000103c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f}}, 0x50) syz_fuse_handle_req(r0, &(0x7f000000e3c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = dup2(r2, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x0, 0x0) r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080)='/dev/fuse\x00', 0x42, 0x0) mount$fuse(0x0, &(0x7f00000042c0)='./file0\x00', &(0x7f0000002000)='fuse\x00', 0x0, &(0x7f00000021c0)={{'fd', 0x3d, r5}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) ioctl$DRM_IOCTL_GET_CLIENT(r4, 0xc0286405, 0x0) 08:10:34 executing program 4: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ttyS3\x00', 0x0, 0x0) ioctl$KDGETKEYCODE(r0, 0x4b4c, 0x0) 08:10:34 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0xe00, 0x0, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:34 executing program 2: syz_mount_image$vfat(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000940)='tmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000300)='./file0\x00') r0 = memfd_create(&(0x7f00000002c0)='system.snckprotoname\x00', 0x0) mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0) write(r0, &(0x7f0000000100)="75502217f9b5d18c0f80c2864f3cfd037f8866ff8113d026555e67808fc0452b0cc9a94da247808aab2dfcf06b220d9657e03942a99a95fd97110ec232d72c76a9bf8197b41d7cfbfb4eefd393ea938611531e61b8abe6fbf17a3fdb7b6195796b410957de2bc3cc167f8b55db1506422b054a0427c74b85e6017c2cffb8f9a0", 0x80) symlink(&(0x7f0000001000)='./file0\x00', &(0x7f0000000080)='./file0\x00') open(&(0x7f0000000300)='./file0\x00', 0x48d40, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) 08:10:34 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000007880)={0x0, 0x0, &(0x7f0000002dc0)=[{&(0x7f0000001840)=ANY=[@ANYBLOB="1c0000001e0001de"], 0x1c}], 0x1}, 0x0) 08:10:34 executing program 4: openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ttyS3\x00', 0x30000, 0x0) 08:10:34 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x1100, 0x0, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:35 executing program 2: syz_mount_image$vfat(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000940)='tmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000300)='./file0\x00') r0 = memfd_create(&(0x7f00000002c0)='system.snckprotoname\x00', 0x0) mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0) write(r0, &(0x7f0000000100)="75502217f9b5d18c0f80c2864f3cfd037f8866ff8113d026555e67808fc0452b0cc9a94da247808aab2dfcf06b220d9657e03942a99a95fd97110ec232d72c76a9bf8197b41d7cfbfb4eefd393ea938611531e61b8abe6fbf17a3fdb7b6195796b410957de2bc3cc167f8b55db1506422b054a0427c74b85e6017c2cffb8f9a0", 0x80) symlink(&(0x7f0000001000)='./file0\x00', &(0x7f0000000080)='./file0\x00') open(&(0x7f0000000300)='./file0\x00', 0x48d40, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) 08:10:35 executing program 3: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) move_mount(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x4) 08:10:35 executing program 4: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ttyS3\x00', 0x0, 0x0) syz_genetlink_get_family_id$netlbl_cipso(0x0) ioctl$TCSETAF(r0, 0x5408, &(0x7f0000000740)={0x0, 0x0, 0x0, 0x0, 0x0, "d4de1910f9998fbe"}) 08:10:35 executing program 5: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_udp_encap(r0, 0x11, 0x64, &(0x7f0000000440), 0x4) 08:10:35 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x1200, 0x0, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:35 executing program 1: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ttyS3\x00', 0x0, 0x0) ioctl$TCSBRKP(r0, 0x5425, 0x0) 08:10:35 executing program 3: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @ext={0x1a, &(0x7f0000000280)="c4c691019919da078a0098d1e0a793b040f76291000000000000"}}], 0x1c) wait4(0x0, 0x0, 0x80000000, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)}, {&(0x7f0000000000)="0832f497d38350418e4bb321019511dc5df26e9a0b7ecb6974f527cc14538d1efb1ffe03284f6d33265be9c604b293f20e96beeb2aa4c457ac37a3a3f1ce8682500fcecd80", 0x45}], 0x2, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x17) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)="9cd6c0f039d9025dd8d52abe58c79d735087274ae8deb4978f1c66562ecf4b73aae95dbe2125f72103") r1 = getpid() tkill(r1, 0x2f) 08:10:35 executing program 2: syz_mount_image$vfat(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000940)='tmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000300)='./file0\x00') r0 = memfd_create(&(0x7f00000002c0)='system.snckprotoname\x00', 0x0) mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0) write(r0, &(0x7f0000000100)="75502217f9b5d18c0f80c2864f3cfd037f8866ff8113d026555e67808fc0452b0cc9a94da247808aab2dfcf06b220d9657e03942a99a95fd97110ec232d72c76a9bf8197b41d7cfbfb4eefd393ea938611531e61b8abe6fbf17a3fdb7b6195796b410957de2bc3cc167f8b55db1506422b054a0427c74b85e6017c2cffb8f9a0", 0x80) symlink(&(0x7f0000001000)='./file0\x00', &(0x7f0000000080)='./file0\x00') open(&(0x7f0000000300)='./file0\x00', 0x48d40, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) 08:10:35 executing program 5: bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000004280)={&(0x7f0000004240)='iocost_ioc_vrate_adj\x00'}, 0x10) [ 948.521954][ T8473] Bluetooth: hci3: command 0x0419 tx timeout 08:10:35 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_CIPSOV4_C_LISTALL(r0, &(0x7f0000001cc0)={0x0, 0x0, 0x0}, 0x0) 08:10:36 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x2500, 0x0, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:36 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=@deltaction={0x14, 0x31, 0x0, 0x0, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x0) writev(r0, &(0x7f0000000000)=[{&(0x7f00000000c0)="39000000130009006900000000000000ab008000200000004600010707000014190001001000000800005068000000000000ef38bf461e59d7", 0x39}], 0x1) writev(r0, &(0x7f0000000040)=[{&(0x7f0000000080)="390000001000090468fe07002b0000fe0100ee002000000045000c070307001404001600120003000e04000001000000000000000000060020", 0x73}], 0x1) 08:10:36 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x2, 0x3, 0x3f0, 0x198, 0x0, 0x198, 0x198, 0x198, 0x358, 0x358, 0x358, 0x358, 0x358, 0x3, 0x0, {[{{@ip={@multicast2, @broadcast, 0x0, 0x0, 'vcan0\x00', 'wg1\x00'}, 0x0, 0x158, 0x198, 0x0, {}, [@common=@unspec=@string={{0xc0, 'string\x00'}, {0x0, 0x0, 'fsm\x00', "0d0004000000000000000404fff0cf81dfd28c89544e14cd3e01dd24289831866346c88621039b284c3ff45c42995560a99952bed40cf5a8b9fb6133db7e2378d5afd35f4c16827f55b3af494e39e8fb330200000000000032b6a99a8d87298e88a94cb519f5c17631af916a7dbaae5592e8b15900000100", 0x2}}, @inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0x0, 0x0, "631499f89a95e49806ea7f9eaecf0b0fd0691f86bb9a323cbbaffc30fb26"}}}, {{@ip={@remote, @multicast2, 0x0, 0x0, 'team_slave_1\x00', 'netdevsim0\x00'}, 0x0, 0x98, 0x1c0, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x0, 0x0, 'system_u:object_r:system_cron_spool_t:s0\x00'}}}], {{[], 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x450) 08:10:36 executing program 2: syz_mount_image$vfat(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000940)='tmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000300)='./file0\x00') r0 = memfd_create(&(0x7f00000002c0)='system.snckprotoname\x00', 0x0) mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0) write(r0, &(0x7f0000000100)="75502217f9b5d18c0f80c2864f3cfd037f8866ff8113d026555e67808fc0452b0cc9a94da247808aab2dfcf06b220d9657e03942a99a95fd97110ec232d72c76a9bf8197b41d7cfbfb4eefd393ea938611531e61b8abe6fbf17a3fdb7b6195796b410957de2bc3cc167f8b55db1506422b054a0427c74b85e6017c2cffb8f9a0", 0x80) symlink(&(0x7f0000001000)='./file0\x00', &(0x7f0000000080)='./file0\x00') open(&(0x7f0000000300)='./file0\x00', 0x48d40, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) 08:10:36 executing program 4: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000300)='loginuid\x00') pipe(0x0) r1 = getpgrp(0x0) perf_event_open(&(0x7f0000000280)={0x0, 0x70, 0x45, 0x20, 0x42, 0x0, 0x0, 0x4, 0x88a84, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x765, 0x4, @perf_config_ext={0x5, 0x5}, 0x0, 0x0, 0x80000000, 0x2, 0x2, 0x4, 0x8}, r1, 0x8, 0xffffffffffffffff, 0x0) r2 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41ba, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) close(0xffffffffffffffff) perf_event_open(&(0x7f0000000c80)={0x4, 0xce, 0x4, 0x81, 0xfa, 0x1, 0x0, 0x80000000, 0x20, 0x2, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x5, 0x0, @perf_bp={&(0x7f0000000a40), 0xd}, 0x8000, 0x10001, 0x101, 0x5, 0x0, 0x7}, r1, 0xc, r2, 0x9) perf_event_open(&(0x7f0000000040)={0x4, 0x70, 0x81, 0x1, 0x8, 0x0, 0x0, 0x7, 0x6000, 0x8, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x6, 0x4, @perf_config_ext={0x8, 0x7f}, 0x8002, 0x0, 0x0, 0x7, 0x0, 0x566e, 0x3}, r1, 0xf, 0xffffffffffffffff, 0x3) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) 08:10:36 executing program 1: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2001001, 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x8020, &(0x7f0000000240)='9p\x00') 08:10:36 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x5c00, 0x0, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:37 executing program 5: r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000004a80)='/dev/fuse\x00', 0x2, 0x0) syz_mount_image$fuse(&(0x7f0000000000)='fuse\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) 08:10:37 executing program 4: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000640)='net/mcfilter6\x00') read$char_usb(r0, 0x0, 0x0) 08:10:37 executing program 2: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/seq\x00', 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f00000002c0)={{0x80}, 'port1\x00', 0x0, 0x20002}) 08:10:37 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0xff00, 0x0, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:37 executing program 5: open(&(0x7f0000000300)='./file0\x00', 0x161242, 0x0) r0 = inotify_init() inotify_add_watch(r0, &(0x7f0000000000)='./file0\x00', 0x82000008) inotify_add_watch(r0, &(0x7f0000000280)='./file0\x00', 0x80) [ 950.626218][T17949] EXT4-fs (sda1): Unrecognized mount option "9p" or missing value [ 950.682308][T17971] EXT4-fs (sda1): Unrecognized mount option "9p" or missing value [ 950.687636][T17943] bridge0: port 2(bridge_slave_1) entered disabled state 08:10:38 executing program 2: r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000300)='loginuid\x00') pipe(0x0) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r4 = getpgrp(0x0) perf_event_open(0x0, r4, 0x8, 0xffffffffffffffff, 0x8) r5 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41ba, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) close(r2) perf_event_open(&(0x7f0000000c80)={0x4, 0xce, 0x4, 0x81, 0xfa, 0x0, 0x0, 0x80000000, 0x20, 0x2, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x5, 0x4, @perf_bp={&(0x7f0000000a40), 0xd}, 0x8000, 0x0, 0x101, 0x5, 0x9086, 0x7, 0x6}, r4, 0xc, r5, 0x9) perf_event_open(&(0x7f0000000040)={0x4, 0x70, 0x81, 0x1, 0x8, 0x5c, 0x0, 0x7, 0x6000, 0x8, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x6, 0x4, @perf_config_ext={0x8, 0x7f}, 0x8002, 0x0, 0x0, 0x7, 0x100000001, 0x566e, 0x3}, r4, 0xf, r0, 0x3) ioctl$TCSETS(r3, 0x5441, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) writev(r5, &(0x7f0000000480)=[{&(0x7f0000000340)}, {&(0x7f0000000380)="673b4286aa63e45e1cc611924210f2c057aae333c2cd535d416314d5b6c5e4d2f37239f8a38d053d133f767690d3ce1b1b61b79664a5bc057c11d08d413ed55e20d8537167a4feb84e6e1810d8c4b4eb287962dfabe5e9d549d16a588262353aa526a4c980d39d063d5b8b5ab5b725ad543246df57f8bf153cfa41a2c7aa3376973755a4be589f8d171a0f8b57f6d7fc9b39c91431552d88bda14b5eb0e78b2cf011309cb70543aa877f044284881b596141289b130b628503061c9814125a6a5c65aecb6323eaffe3b03891ea25d1b7ba", 0xd1}], 0x2) [ 951.018333][T17946] netlink: 1 bytes leftover after parsing attributes in process `syz-executor.3'. [ 951.027907][T17946] : renamed from bridge_slave_1 [ 951.088658][T17946] bridge0: port 2() entered blocking state [ 951.094986][T17946] bridge0: port 2() entered forwarding state [ 951.106538][T17968] netlink: 1 bytes leftover after parsing attributes in process `syz-executor.3'. 08:10:38 executing program 3: open(&(0x7f0000000300)='./file0\x00', 0x161242, 0x0) r0 = inotify_init() r1 = inotify_add_watch(r0, &(0x7f0000000040)='./file0\x00', 0x8400013c) inotify_rm_watch(r0, r1) 08:10:38 executing program 1: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2001001, 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x8020, &(0x7f0000000240)='9p\x00') 08:10:38 executing program 4: r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000004a80)='/dev/fuse\x00', 0x2, 0x0) syz_mount_image$fuse(&(0x7f0000000000)='fuse\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) mount$fuseblk(0x0, &(0x7f0000002340)='./file0\x00', 0x0, 0x80000, 0x0) 08:10:38 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x1000000, 0x0, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:38 executing program 5: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @ext={0x39, &(0x7f0000000280)="c4c691019919da078a0098d1e0a793b040f762910000000000000022addee07bee0d6333b5cacd8901000000322ff6602022511253508b5a44"}}], 0x1c) wait4(0x0, 0x0, 0x80000000, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)}, {&(0x7f0000000000)="0832f497d38350418e4bb321019511dc5df26e9a0b7ecb6974f527cc14538d1efb1ffe03284f6d33265be9c604b293f20e96beeb2aa4c457ac37a3a3f1ce8682500fcecd80", 0x45}], 0x2, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x17) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) r1 = getpid() tkill(r1, 0x2f) [ 951.466285][T17992] EXT4-fs (sda1): Unrecognized mount option "9p" or missing value 08:10:39 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$PIO_UNIMAP(r0, 0x4b67, &(0x7f0000000600)={0x2, &(0x7f00000005c0)=[{}, {}]}) 08:10:39 executing program 1: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2001001, 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x8020, &(0x7f0000000240)='9p\x00') 08:10:39 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x2000000, 0x0, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:39 executing program 3: syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f00000001c0)="eb3c906d6b66732e66617400028001000240000004f8", 0x16}, {0x0, 0x0, 0x600}], 0x8000, &(0x7f0000000180)) 08:10:39 executing program 5: ustat(0x7, &(0x7f0000000100)) [ 952.075843][T18009] EXT4-fs (sda1): Unrecognized mount option "9p" or missing value 08:10:39 executing program 1: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2001001, 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x8020, &(0x7f0000000240)='9p\x00') 08:10:39 executing program 2: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r2 = getpgrp(0x0) perf_event_open(&(0x7f0000000c80)={0x4, 0xce, 0x4, 0x81, 0xfa, 0x1, 0x0, 0x80000000, 0x20, 0x2, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x5, 0x4, @perf_bp={&(0x7f0000000a40), 0xd}, 0x8000, 0x10001, 0x101, 0x5, 0x9086, 0x7, 0x6}, r2, 0xc, 0xffffffffffffffff, 0x9) ioctl$TCSETS(r1, 0x5441, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) 08:10:39 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x3000000, 0x0, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:39 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_CIPSOV4_C_LISTALL(r0, &(0x7f0000001cc0)={&(0x7f00000017c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000001c80)={&(0x7f0000001840)={0x14}, 0x14}}, 0x0) 08:10:39 executing program 5: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_SIOCDELRT(r0, 0x890c, &(0x7f00000007c0)={0x0, @rc={0x1f, @fixed}, @llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, @isdn}) [ 952.740965][T18030] EXT4-fs (sda1): Unrecognized mount option "9p" or missing value 08:10:40 executing program 3: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @ext={0x2e, &(0x7f0000000280)="c4c691019919da078a0098d1e0a793b040f762910000000000000022addee07bee0d6333b5cacd8901000000322f"}}], 0x1c) wait4(0x0, 0x0, 0x80000000, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)}, {&(0x7f0000000000)="0832f497d38350418e4bb321019511dc5df26e9a0b7ecb6974f527cc14538d1efb1ffe03284f6d33265be9c604b293f20e96beeb2aa4c457ac37a3a3f1ce8682500fcecd80", 0x45}], 0x2, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x17) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) r1 = getpid() tkill(r1, 0x2f) 08:10:40 executing program 1: syz_mount_image$vfat(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000940)='tmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000300)='./file0\x00') mknod(&(0x7f00000001c0)='./file0\x00', 0xffffc000, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x6841, 0x0) 08:10:40 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x4000000, 0x0, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:40 executing program 2: openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x321000, 0x0) 08:10:40 executing program 5: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @ext={0x4a, &(0x7f0000000280)="c4c691019919da078a0098d1e0a793b040f762910000000000000022addee07bee0d6333b5cacd8901000000322ff6602022511253508b5a4496728c2a46e1bc340e29b9ab9b7136283e"}}], 0x1c) wait4(0x0, 0x0, 0x80000000, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)}, {&(0x7f0000000000)="0832f497d38350418e4bb321019511dc5df26e9a0b7ecb6974f527cc14538d1efb1ffe03284f6d33265be9c604b293f20e96beeb2aa4c457ac37a3a3f1ce8682500fcecd80", 0x45}], 0x2, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x17) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) r1 = getpid() tkill(r1, 0x2f) 08:10:40 executing program 4: perf_event_open(&(0x7f0000001340)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x218}}, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001880)=ANY=[@ANYBLOB="020100021000000000000600000000000800130000ffff400000d2a82be90000e592c300fcffff390000ff0f000000"], 0x80}}, 0x0) r0 = socket$key(0xf, 0x3, 0x2) sendmmsg(r0, &(0x7f0000000180), 0x400000000000002, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff}) close(r1) 08:10:40 executing program 3: r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop-control\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0) openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000300)='loginuid\x00') r3 = getpgrp(0x0) r4 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41ba, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) close(r2) perf_event_open(0x0, r3, 0xc, r4, 0x9) perf_event_open(&(0x7f0000000040)={0x4, 0x70, 0x0, 0x1, 0x0, 0x5c, 0x0, 0x7, 0x6000, 0x8, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x6, 0x4, @perf_config_ext={0x8, 0x7f}, 0x8002, 0x0, 0x0, 0x7, 0x100000001, 0x566e, 0x3}, r3, 0xf, r0, 0x3) ioctl$TCSETS(0xffffffffffffffff, 0x5441, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) 08:10:40 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x5000000, 0x0, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:41 executing program 1: syz_mount_image$vfat(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000940)='tmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000300)='./file0\x00') mknod(&(0x7f00000001c0)='./file0\x00', 0xffffc000, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x6841, 0x0) 08:10:41 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$sock_linger(r0, 0x1, 0xd, 0x0, 0x0) 08:10:41 executing program 5: syz_mount_image$vfat(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000940)='tmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000300)='./file0\x00') mknod(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0) 08:10:41 executing program 4: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @ext={0x30, &(0x7f0000000280)="c4c691019919da078a0098d1e0a793b040f762910000000000000022addee07bee0d6333b5cacd8901000000322ff660"}}], 0x1c) wait4(0x0, 0x0, 0x80000000, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)}, {&(0x7f0000000000)="0832f497d38350418e4bb321019511dc5df26e9a0b7ecb6974f527cc14538d1efb1ffe03284f6d33265be9c604b293f20e96beeb2aa4c457ac37a3a3f1ce8682500fcecd80", 0x45}], 0x2, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x17) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)="9cd6c0f039d9025dd8d52abe58c79d735087274ae8deb4978f1c66562ecf4b73aae95dbe2125f72103") r1 = getpid() tkill(r1, 0x2f) 08:10:41 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$PIO_UNIMAP(r0, 0x4b67, &(0x7f0000000600)={0x1, &(0x7f00000005c0)=[{}]}) 08:10:41 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x6000000, 0x0, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:41 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSKBMODE(r0, 0x4b45, 0x0) 08:10:41 executing program 5: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$GIO_SCRNMAP(r0, 0x4b40, &(0x7f0000000840)=""/55) 08:10:41 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000001840)='/dev/input/event#\x00', 0x0, 0x0) ioctl$EVIOCGKEYCODE_V2(r0, 0x80284504, &(0x7f0000000080)=""/124) 08:10:41 executing program 1: syz_mount_image$vfat(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000940)='tmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000300)='./file0\x00') mknod(&(0x7f00000001c0)='./file0\x00', 0xffffc000, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x6841, 0x0) 08:10:41 executing program 3: chdir(0x0) r0 = memfd_create(&(0x7f00000002c0)='system.snckprotoname\x00', 0x0) mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0) write(r0, &(0x7f0000000100)='uP\"', 0x3) symlink(&(0x7f0000001000)='./file0\x00', &(0x7f0000000080)='./file0\x00') open(&(0x7f0000000300)='./file0\x00', 0x48d40, 0x0) mount$fuse(0x0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0) 08:10:42 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x7000000, 0x0, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:42 executing program 2: write$UHID_INPUT(0xffffffffffffffff, 0x0, 0x0) 08:10:42 executing program 4: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @ext={0x24, &(0x7f0000000280)="c4c691019919da078a0098d1e0a793b040f762910000000000000022addee07bee0d6333"}}], 0x1c) wait4(0x0, 0x0, 0x80000000, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)}, {&(0x7f0000000000)="0832f497d38350418e4bb321019511dc5df26e9a0b7ecb6974f527cc14538d1efb1ffe03284f6d33265be9c604b293f20e96beeb2aa4c457ac37a3a3f1ce8682500fcecd80", 0x45}], 0x2, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x17) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) r1 = getpid() tkill(r1, 0x2f) 08:10:42 executing program 5: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @ext={0x2f, &(0x7f0000000280)="c4c691019919da078a0098d1e0a793b040f762910000000000000022addee07bee0d6333b5cacd8901000000322ff6"}}], 0x1c) wait4(0x0, 0x0, 0x80000000, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)}, {&(0x7f0000000000)="0832f497d38350418e4bb321019511dc5df26e9a0b7ecb6974f527cc14538d1efb1ffe03284f6d33265be9c604b293f20e96beeb2aa4c457ac37a3a3f1ce8682500fcecd80", 0x45}], 0x2, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x17) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) r1 = getpid() tkill(r1, 0x2f) 08:10:42 executing program 1: syz_mount_image$vfat(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000940)='tmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000300)='./file0\x00') mknod(&(0x7f00000001c0)='./file0\x00', 0xffffc000, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x6841, 0x0) 08:10:42 executing program 2: r0 = add_key$fscrypt_v1(&(0x7f0000000000)='logon\x00', &(0x7f0000000040)={'fscrypt:', @desc1='0000111122223333'}, &(0x7f0000000080)={0x0, "a2e639e5b037c101e1092726be0b717f43af64d97e5127ff05ab3884f7b9978dac0b6a75982d9505f86c9813c3cdd417433765dcd2b29d59d684426c6cfb4e6f"}, 0x48, 0xfffffffffffffffd) add_key$fscrypt_v1(&(0x7f0000000100)='logon\x00', &(0x7f0000000140)={'fscrypt:', @desc1='0000111122223333'}, &(0x7f0000000180)={0x0, "eaf91d9913666b7598e02133c404712556afc8d994af5e08941034c21b9e02884346d0bef32b1fbe53d3e167c076fea103fb6fc61814b74ede919cf426d8a153"}, 0x48, 0xfffffffffffffffe) keyctl$invalidate(0x15, r0) 08:10:42 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000940)='tmpfs\x00', 0x0, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) chdir(&(0x7f0000000300)='./file0\x00') r2 = memfd_create(&(0x7f00000002c0)='system.snckprotoname\x00', 0x0) mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r2, 0x0) write(r2, &(0x7f0000000100)="75502217f9b5d18c0f80c2864f3cfd037f8866ff8113d026555e67808fc0452b0cc9a94da247808aab2dfcf06b220d9657e03942a99a95fd97110ec232d72c76a9bf8197b41d7cfbfb4eefd393ea938611531e61b8abe6fbf17a3fdb7b6195796b410957de2bc3cc167f8b55db1506422b054a0427c74b85e6017c2cffb8f9a0", 0x80) symlink(&(0x7f0000001000)='./file0\x00', &(0x7f0000000080)='./file0\x00') open(&(0x7f0000000300)='./file0\x00', 0x48d40, 0x0) mount$9p_tcp(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0) 08:10:42 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x8000000, 0x0, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:42 executing program 5: openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080)='/dev/fuse\x00', 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100)='fuse\x00', 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r0, &(0x7f00000103c0)={0x2020, 0x0, 0x0}, 0x2020) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x10400}}, 0x50) syz_fuse_handle_req(r0, &(0x7f000000e3c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_fuse_handle_req(r0, &(0x7f0000004200)="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", 0x2000, &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x78, 0x0, 0x0, {0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}}}, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_fuse_handle_req(r0, &(0x7f00000021c0)="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", 0x2000, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x18}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_fuse_handle_req(r0, &(0x7f0000006380)="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", 0x2000, &(0x7f0000001100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x18}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r2 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x84842, 0x0) write(r2, &(0x7f0000004200)='t', 0x8800b00) 08:10:43 executing program 1: semctl$SEM_INFO(0x0, 0x0, 0x13, &(0x7f0000000000)=""/42) 08:10:43 executing program 4: openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080)='/dev/fuse\x00', 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100)='fuse\x00', 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r0, &(0x7f00000103c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f}}, 0x50) syz_fuse_handle_req(r0, &(0x7f000000e3c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r2 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x0, 0x0) ioctl$DRM_IOCTL_GET_CLIENT(r2, 0xc0096616, &(0x7f0000000280)) 08:10:43 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000280), 0x8) 08:10:43 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000940)='tmpfs\x00', 0x0, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) chdir(&(0x7f0000000300)='./file0\x00') r2 = memfd_create(&(0x7f00000002c0)='system.snckprotoname\x00', 0x0) mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r2, 0x0) write(r2, &(0x7f0000000100)="75502217f9b5d18c0f80c2864f3cfd037f8866ff8113d026555e67808fc0452b0cc9a94da247808aab2dfcf06b220d9657e03942a99a95fd97110ec232d72c76a9bf8197b41d7cfbfb4eefd393ea938611531e61b8abe6fbf17a3fdb7b6195796b410957de2bc3cc167f8b55db1506422b054a0427c74b85e6017c2cffb8f9a0", 0x80) symlink(&(0x7f0000001000)='./file0\x00', &(0x7f0000000080)='./file0\x00') open(&(0x7f0000000300)='./file0\x00', 0x48d40, 0x0) mount$9p_tcp(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0) 08:10:43 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x9000000, 0x0, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:43 executing program 1: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$unix(r0, &(0x7f0000002a80)={0x0, 0x0, 0x0}, 0x0) sendmsg$unix(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000140)="984391bb0623926872ab001d4a4d7becd3f5f41ceab44757dec18a4d03ef6e78d30d8847efac5f811b3145fcf54ada89e83c92e348657214c730194876d9cae3d753093a191bd9ee83f6414fa26cf49e6fd9382012c5f83839662c281e", 0x5d}], 0x1}, 0x0) pipe2(&(0x7f0000001300)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) dup2(r2, r1) 08:10:43 executing program 2: perf_event_open(&(0x7f00000024c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001, 0x0, @perf_config_ext={0xa4}, 0x0, 0x10000, 0x1}, 0x0, 0x2, 0xffffffffffffffff, 0x0) r0 = fsmount(0xffffffffffffffff, 0x0, 0x2) chdir(0x0) r1 = creat(&(0x7f0000000080)='./bus\x00', 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ftruncate(r1, 0x208200) r2 = open(&(0x7f0000000400)='./bus\x00', 0x14103e, 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/zero\x00', 0x0, 0x0) readv(r3, &(0x7f0000001900)=[{&(0x7f0000000080)=""/54, 0x36}, {0x0}, {&(0x7f0000000480)=""/82, 0x52}, {&(0x7f0000000500)=""/71, 0x47}, {&(0x7f0000000580)=""/107, 0x6b}, {&(0x7f0000000600)=""/240, 0xf0}, {0x0}, {&(0x7f0000001800)=""/254, 0xfe}], 0x8) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, r2, 0x0) read(r2, &(0x7f0000000180)=""/19, 0xfffffe47) perf_event_open(&(0x7f00000001c0)={0x5, 0x70, 0xb, 0x40, 0x7, 0xff, 0x0, 0x7f, 0x0, 0x4, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x2, @perf_bp={&(0x7f00000000c0), 0x6}, 0x8200, 0x1, 0x0, 0x3, 0x0, 0xfffeffff, 0x1}, 0xffffffffffffffff, 0x3, r0, 0x1) ioctl$EXT4_IOC_SWAP_BOOT(0xffffffffffffffff, 0x6611) r4 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ipvs(0x0) sendmsg$IPVS_CMD_NEW_DAEMON(r4, 0x0, 0x0) sendmsg$IPVS_CMD_SET_DEST(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x5, 0xc7, 0x0, 0x4, 0x0, 0x0, 0x60000, 0x4, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x7, @perf_bp={&(0x7f0000000000), 0x3}, 0x0, 0x64d, 0x0, 0x0, 0x7, 0x871}, 0xffffffffffffffff, 0xe, 0xffffffffffffffff, 0x19) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) 08:10:44 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0xa000000, 0x0, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:44 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000940)='tmpfs\x00', 0x0, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) chdir(&(0x7f0000000300)='./file0\x00') r2 = memfd_create(&(0x7f00000002c0)='system.snckprotoname\x00', 0x0) mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r2, 0x0) write(r2, &(0x7f0000000100)="75502217f9b5d18c0f80c2864f3cfd037f8866ff8113d026555e67808fc0452b0cc9a94da247808aab2dfcf06b220d9657e03942a99a95fd97110ec232d72c76a9bf8197b41d7cfbfb4eefd393ea938611531e61b8abe6fbf17a3fdb7b6195796b410957de2bc3cc167f8b55db1506422b054a0427c74b85e6017c2cffb8f9a0", 0x80) symlink(&(0x7f0000001000)='./file0\x00', &(0x7f0000000080)='./file0\x00') open(&(0x7f0000000300)='./file0\x00', 0x48d40, 0x0) mount$9p_tcp(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0) 08:10:44 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCGETD(r0, 0x5424, &(0x7f00000000c0)) [ 956.934269][ T33] audit: type=1800 audit(1610698244.208:12): pid=18133 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="/" dev="fuse" ino=1 res=0 errno=0 08:10:44 executing program 4: syz_open_dev$vcsa(&(0x7f00000000c0)='/dev/vcsa#\x00', 0xff, 0x4200) 08:10:44 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x40000) writev(r0, &(0x7f0000000000)=[{&(0x7f00000000c0)="39000000130009006900000000000000ab008000200000004600010707000014190001001000000800005068000000000000ef38bf461e59d7", 0x39}], 0x1) writev(r0, &(0x7f0000000040)=[{&(0x7f0000000080)="390000001000090468fe07002b0000fe0100ee002000000045000c070307001404001600120003000e04000001000000000000000000060020", 0x73}], 0x1) 08:10:44 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @ext={0x14, &(0x7f0000000280)="c4c691019919da078a0098d1e0a793b040f76291"}}], 0x1c) wait4(0x0, 0x0, 0x80000000, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)}, {&(0x7f0000000000)="0832f497d38350418e4bb321019511dc5df26e9a0b7ecb6974f527cc14538d1efb1ffe03284f6d33265be9c604b293f20e96beeb2aa4c457ac37a3a3f1ce8682500fcecd80", 0x45}], 0x2, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x17) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) r1 = getpid() tkill(r1, 0x2f) 08:10:44 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0xb000000, 0x0, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:45 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000940)='tmpfs\x00', 0x0, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) chdir(&(0x7f0000000300)='./file0\x00') r2 = memfd_create(&(0x7f00000002c0)='system.snckprotoname\x00', 0x0) mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r2, 0x0) write(r2, &(0x7f0000000100)="75502217f9b5d18c0f80c2864f3cfd037f8866ff8113d026555e67808fc0452b0cc9a94da247808aab2dfcf06b220d9657e03942a99a95fd97110ec232d72c76a9bf8197b41d7cfbfb4eefd393ea938611531e61b8abe6fbf17a3fdb7b6195796b410957de2bc3cc167f8b55db1506422b054a0427c74b85e6017c2cffb8f9a0", 0x80) symlink(&(0x7f0000001000)='./file0\x00', &(0x7f0000000080)='./file0\x00') open(&(0x7f0000000300)='./file0\x00', 0x48d40, 0x0) mount$9p_tcp(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0) 08:10:45 executing program 4: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @ext={0x30, &(0x7f0000000280)="c4c691019919da078a0098d1e0a793b040f762910000000000000022addee07bee0d6333b5cacd8901000000322ff660"}}], 0x1c) wait4(0x0, 0x0, 0x80000000, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)}, {&(0x7f0000000000)="0832f497d38350418e4bb321019511dc5df26e9a0b7ecb6974f527cc14538d1efb1ffe03284f6d33265be9c604b293f20e96beeb2aa4c457ac37a3a3f1ce8682500fcecd80", 0x45}], 0x2, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x17) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) r1 = getpid() tkill(r1, 0x2f) 08:10:45 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0xc000000, 0x0, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:46 executing program 1: uname(&(0x7f0000000200)=""/99) [ 958.983340][T18170] bridge0: port 2(bridge_slave_1) entered disabled state [ 959.739981][T18174] netlink: 1 bytes leftover after parsing attributes in process `syz-executor.5'. [ 959.749632][T18174] : renamed from bridge_slave_1 [ 959.813535][ T33] audit: type=1800 audit(1610698247.098:13): pid=18149 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed comm="syz-executor.2" name="bus" dev="sda1" ino=15906 res=0 errno=0 [ 959.871067][T18174] bridge0: port 2() entered blocking state [ 959.877313][T18174] bridge0: port 2() entered forwarding state [ 959.905064][T18179] netlink: 1 bytes leftover after parsing attributes in process `syz-executor.5'. [ 960.259886][T18178] bridge0: port 2() entered disabled state 08:10:47 executing program 2: r0 = add_key$fscrypt_v1(&(0x7f0000000000)='logon\x00', &(0x7f0000000480)={'fscrypt:', @desc4='85baa174f0cb1142'}, &(0x7f0000000080)={0x0, "b04cc101db092726be0b71f7b9978dac75982d9505f86c9813c3cdd417433765dcd2b29d59d68402006cfb4e6f00000000000000000011864bf8a7f7852b00"}, 0x48, 0xfffffffffffffffe) keyctl$setperm(0x5, r0, 0x0) add_key$fscrypt_v1(&(0x7f0000000340)='logon\x00', 0x0, 0x0, 0x0, r0) 08:10:47 executing program 4: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @ext={0x12, &(0x7f0000000280)="c4c691019919da078a0098d1e0a793b040f7"}}], 0x1c) wait4(0x0, 0x0, 0x80000000, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)}, {&(0x7f0000000000)="0832f497d38350418e4bb321019511dc5df26e9a0b7ecb6974f527cc14538d1efb1ffe03284f6d33265be9c604b293f20e96beeb2aa4c457ac37a3a3f1ce8682500fcecd80", 0x45}], 0x2, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x17) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) r1 = getpid() tkill(r1, 0x2f) 08:10:47 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_CIPSOV4_C_LISTALL(r0, &(0x7f0000001cc0)={&(0x7f00000017c0), 0xc, &(0x7f0000001c80)={0x0}}, 0x0) 08:10:47 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$GIO_SCRNMAP(r0, 0x4b40, &(0x7f0000000040)=""/157) syz_open_dev$vcsa(&(0x7f0000000100)='/dev/vcsa#\x00', 0x0, 0x0) socketpair(0x0, 0x0, 0x0, &(0x7f0000000200)) socket$inet_tcp(0x2, 0x1, 0x0) 08:10:47 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0xd000000, 0x0, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:47 executing program 5: syz_mount_image$vfat(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000940)='tmpfs\x00', 0x0, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) chdir(&(0x7f0000000300)='./file0\x00') r2 = memfd_create(&(0x7f00000002c0)='system.snckprotoname\x00', 0x0) mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r2, 0x0) write(r2, &(0x7f0000000100)="75502217f9b5d18c0f80c2864f3cfd037f8866ff8113d026555e67808fc0452b0cc9a94da247808aab2dfcf06b220d9657e03942a99a95fd97110ec232d72c76a9bf8197b41d7cfbfb4eefd393ea938611531e61b8abe6fbf17a3fdb7b6195796b410957de2bc3cc167f8b55db1506422b054a0427c74b85e6017c2cffb8f9a0", 0x80) symlink(&(0x7f0000001000)='./file0\x00', &(0x7f0000000080)='./file0\x00') open(&(0x7f0000000300)='./file0\x00', 0x48d40, 0x0) 08:10:48 executing program 3: sendmsg$NL80211_CMD_GET_WIPHY(0xffffffffffffffff, 0x0, 0x0) add_key$user(&(0x7f0000000140)='user\x00', 0x0, &(0x7f00000001c0), 0x0, 0xfffffffffffffffe) setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x0, 0x0, 0x0) syz_genetlink_get_family_id$nbd(&(0x7f00000002c0)='nbd\x00') sendmsg$MPTCP_PM_CMD_DEL_ADDR(0xffffffffffffffff, 0x0, 0x0) 08:10:48 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x2, 0x3, 0x3f0, 0x198, 0x0, 0x198, 0x198, 0x198, 0x358, 0x358, 0x358, 0x358, 0x358, 0x3, 0x0, {[{{@ip={@multicast2, @broadcast, 0x0, 0x0, 'vcan0\x00', 'wg1\x00'}, 0x0, 0x158, 0x198, 0x0, {}, [@common=@unspec=@string={{0xc0, 'string\x00'}, {0x0, 0x0, 'fsm\x00', "0d0004000000000000000404fff0cf81dfd28c89544e14cd3e01dd24289831866346c88621039b284c3ff45c42995560a99952bed40cf5a8b9fb6133db7e2378d5afd35f4c16827f55b3af494e39e8fb330200000000000032b6a99a8d87298e88a94cb519f5c17631af916a7dbaae5592e8b15900000100", 0xff}}, @inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0x0, 0x0, "631499f89a95e49806ea7f9eaecf0b0fd0691f86bb9a323cbbaffc30fb26"}}}, {{@ip={@remote, @multicast2, 0x0, 0x0, 'team_slave_1\x00', 'netdevsim0\x00'}, 0x0, 0x98, 0x1c0, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x0, 0x0, 'system_u:object_r:system_cron_spool_t:s0\x00'}}}], {{[], 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x450) 08:10:48 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0xe000000, 0x0, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:48 executing program 5: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDGETKEYCODE(r0, 0x4b4c, 0x0) 08:10:48 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = perf_event_open(&(0x7f0000001a40)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x101, 0x7e3c9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x7, 0x11, r2, 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000180)='/dev/zero\x00', 0x0, 0x0) readv(r3, &(0x7f0000001900)=[{&(0x7f0000000080)=""/54, 0x36}, {&(0x7f0000000400)=""/111, 0x6f}, {&(0x7f0000000480)=""/82, 0x52}, {&(0x7f0000000500)=""/71, 0x47}, {&(0x7f0000000580)=""/107, 0x6b}, {&(0x7f0000000600)=""/240, 0xfffffd74}, {&(0x7f0000000700)=""/4096, 0xcb7}, {&(0x7f00000001c0)=""/63, 0x3f}, {&(0x7f0000001700)=""/236, 0xec}, {&(0x7f0000001800)=""/254, 0xfe}], 0xa) 08:10:48 executing program 1: clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) wait4(0x0, 0x0, 0x80000000, 0x0) r0 = getpid() rt_tgsigqueueinfo(r0, r0, 0x13, &(0x7f0000000640)) ptrace(0x4206, r0) waitid(0x0, 0x0, 0x0, 0x4, 0x0) ptrace$PTRACE_SECCOMP_GET_FILTER(0x4207, r0, 0x0, 0x0) 08:10:49 executing program 4: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ttyS3\x00', 0x0, 0x0) ioctl$TCSETAF(r0, 0x5408, 0x0) 08:10:49 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x10000000, 0x0, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:49 executing program 5: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ttyS3\x00', 0x0, 0x0) ioctl$TCSBRKP(r0, 0x5425, 0x7) 08:10:49 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSKBMODE(r0, 0x4b45, &(0x7f0000000280)) 08:10:49 executing program 2: mmap$binder(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1, 0x11, 0xffffffffffffffff, 0x9016) 08:10:49 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x11000000, 0x0, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:49 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/packet\x00') read$FUSE(r0, &(0x7f0000004080)={0x2020}, 0x2020) 08:10:49 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$GIO_SCRNMAP(r0, 0x4b40, &(0x7f0000000040)=""/157) socketpair(0x0, 0x0, 0x0, &(0x7f0000000200)) 08:10:49 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$vfat(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000940)='tmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000300)='./file0\x00') r2 = memfd_create(&(0x7f00000002c0)='system.snckprotoname\x00', 0x0) mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r2, 0x0) write(r2, &(0x7f0000000100)="75502217f9b5d18c0f80c2864f3cfd037f8866ff8113d026555e67808fc0452b0cc9a94da247808aab2dfcf06b220d9657e03942a99a95fd97110ec232d72c76a9bf8197b41d7cfbfb4eefd393ea938611531e61b8abe6fbf17a3fdb7b6195796b410957de2bc3cc167f8b55db1506422b054a0427c74b85e6017c2cffb8f9a0", 0x80) symlink(&(0x7f0000001000)='./file0\x00', &(0x7f0000000080)='./file0\x00') open(&(0x7f0000000300)='./file0\x00', 0x48d40, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) 08:10:49 executing program 1: openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080)='/dev/fuse\x00', 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100)='fuse\x00', 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r0, &(0x7f00000103c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f}}, 0x50) syz_fuse_handle_req(r0, &(0x7f000000e3c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r2 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0x22, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$DRM_IOCTL_GET_CLIENT(r2, 0xc0286405, 0x0) 08:10:50 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x12000000, 0x0, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:50 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000240)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000080)=[{&(0x7f0000000000)="eb3c906d6b66732e66617400028001000240000004f801", 0x17}, {0x0, 0x0, 0x10e00}], 0x0, &(0x7f0000000280)=ANY=[]) getdents64(r0, &(0x7f00000003c0)=""/4096, 0x1000) 08:10:50 executing program 4: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2001001, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mount$9p_virtio(&(0x7f00000002c0)='syz\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x1040020, 0x0) socket$inet(0x2, 0x4000000000000001, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x20000000, 0x0, 0x0) 08:10:50 executing program 2: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @ext={0x27, &(0x7f0000000280)="c4c691019919da078a0098d1e0a793b040f762910000000000000022addee07bee0d6333b5cacd"}}], 0x1c) wait4(0x0, 0x0, 0x80000000, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)}, {&(0x7f0000000000)="0832f497d38350418e4bb321019511dc5df26e9a0b7ecb6974f527cc14538d1efb1ffe03284f6d33265be9c604b293f20e96beeb2aa4c457ac37a3a3f1ce8682500fcecd80", 0x45}], 0x2, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x17) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) r1 = getpid() tkill(r1, 0x2f) 08:10:50 executing program 5: openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyS3\x00', 0x481, 0x0) [ 963.204353][T18269] EXT4-fs (sda1): re-mounted. Opts: (null) [ 963.281874][T18269] EXT4-fs (sda1): re-mounted. Opts: (null) 08:10:50 executing program 5: r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000300)='loginuid\x00') pipe(0x0) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r4 = getpgrp(0x0) perf_event_open(&(0x7f0000000280)={0x0, 0x70, 0x45, 0x20, 0x42, 0x0, 0x0, 0x4, 0x88a84, 0x9, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x765, 0x4, @perf_config_ext={0x5, 0x5}, 0x0, 0x20000000000, 0x80000000, 0x2, 0x2, 0x4}, r4, 0x8, 0xffffffffffffffff, 0x8) r5 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41ba, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) close(r2) perf_event_open(&(0x7f0000000040)={0x4, 0x70, 0x81, 0x1, 0x8, 0x5c, 0x0, 0x7, 0x6000, 0x8, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x6, 0x4, @perf_config_ext={0x8, 0x7f}, 0x8002, 0x0, 0x0, 0x7, 0x100000001, 0x566e, 0x3}, r4, 0xf, r0, 0x3) ioctl$TCSETS(r3, 0x5441, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) writev(r5, &(0x7f0000000480)=[{&(0x7f0000000340)}, {&(0x7f0000000380)="673b4286aa63e45e1cc611924210f2c057aae333c2cd535d416314d5b6c5e4d2f37239f8a38d053d133f767690d3ce1b1b61b79664a5bc057c11d08d413ed55e20d8537167a4feb84e6e1810d8c4b4eb287962dfabe5e9d549d16a588262353aa526a4c980d39d063d5b8b5ab5b725ad543246df57f8bf153cfa41a2c7aa3376973755a4be589f8d171a0f8b57f6d7fc9b39c91431552d88bda14b5eb0e78b2cf011309cb70543aa877f044284881b596141289b130b628503061c9814125a6a5c65aecb6323eaffe3b03891ea25d1b7ba", 0xd1}], 0x2) 08:10:50 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x25000000, 0x0, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:50 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000240)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000080)=[{&(0x7f0000000000)="eb3c906d6b66732e66617400028001000240000004f801", 0x17}, {0x0, 0x0, 0x10e00}], 0x0, &(0x7f0000000280)=ANY=[]) getdents64(r0, &(0x7f00000003c0)=""/4096, 0x1000) 08:10:50 executing program 4: bpf$MAP_CREATE(0x0, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, [], 0x0, 0xffffffffffffffff, 0x3}, 0x40) 08:10:50 executing program 2: openat$proc_capi20(0xffffffffffffff9c, 0x0, 0x200000, 0x0) socket$inet6(0xa, 0x0, 0xfffffffc) r0 = socket$inet6_dccp(0xa, 0x6, 0x0) ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) bind$inet6(0xffffffffffffffff, 0x0, 0x0) recvfrom$inet6(0xffffffffffffffff, &(0x7f0000001d40)=""/55, 0x37, 0x23, &(0x7f0000001d80)={0xa, 0x4e20, 0x7ff, @mcast2, 0x8}, 0x1c) syz_open_dev$vbi(&(0x7f0000001dc0)='/dev/vbi#\x00', 0x2, 0x2) 08:10:51 executing program 1: openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cachefiles\x00', 0x0, 0x0) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000d80)='/dev/cachefiles\x00', 0x0, 0x0) 08:10:51 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000240)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000080)=[{&(0x7f0000000000)="eb3c906d6b66732e66617400028001000240000004f801", 0x17}, {0x0, 0x0, 0x10e00}], 0x0, &(0x7f0000000280)=ANY=[]) getdents64(r0, &(0x7f00000003c0)=""/4096, 0x1000) 08:10:51 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x5c000000, 0x0, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:51 executing program 5: socket(0x2, 0x3, 0x8) 08:10:51 executing program 1: r0 = socket$inet(0x2, 0xa, 0x0) getsockopt$inet_pktinfo(r0, 0x0, 0x8, 0x0, 0x0) 08:10:51 executing program 4: syz_mount_image$fuse(&(0x7f0000000000)='fuse\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0xc0ed0000, &(0x7f00000000c0)={{'fd'}, 0x2c, {'rootmode'}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {'group_id', 0x3d, 0xee00}}) 08:10:52 executing program 2: ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0) r0 = syz_io_uring_setup(0x5a99, &(0x7f0000000840), &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f00000008c0), &(0x7f0000000900)) io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) 08:10:52 executing program 5: r0 = socket$netlink(0x10, 0x3, 0xa) bind$netlink(r0, &(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc) [ 964.930210][T18334] fuse: Bad value for 'fd' [ 964.944771][T18334] fuse: Bad value for 'fd' 08:10:52 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0xff000000, 0x0, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:52 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000240)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000080)=[{&(0x7f0000000000)="eb3c906d6b66732e66617400028001000240000004f801", 0x17}, {0x0, 0x0, 0x10e00}], 0x0, &(0x7f0000000280)=ANY=[]) getdents64(r0, &(0x7f00000003c0)=""/4096, 0x1000) 08:10:52 executing program 1: syz_open_dev$binderN(&(0x7f0000000040)='/dev/binder#\x00', 0x0, 0x0) 08:10:52 executing program 2: semget(0x3, 0x0, 0x601) 08:10:52 executing program 5: openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000780)='/proc/capi/capi20\x00', 0x0, 0x0) 08:10:52 executing program 4: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cuse\x00', 0x2, 0x0) syz_mount_image$fuse(&(0x7f0000000000)='fuse\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x8000}, 0x2c, {'user_id', 0x3d, 0xee01}, 0x2c, {'group_id', 0x3d, 0xee00}}) 08:10:52 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x0, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) [ 965.686267][T18355] fuse: Bad value for 'user_id' 08:10:53 executing program 2: syz_io_uring_setup(0x40d8, &(0x7f00000012c0)={0x0, 0xce2}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000001340), &(0x7f0000001380)) 08:10:53 executing program 1: sendmsg$netlink(0xffffffffffffffff, 0x0, 0xf78145f0f8b93ad0) 08:10:53 executing program 5: syz_io_uring_setup(0x7fc5, &(0x7f0000000100), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000180), 0x0) 08:10:53 executing program 4: r0 = socket$inet6_dccp(0xa, 0x6, 0x0) setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x2a, 0x0, 0x0) 08:10:53 executing program 3: syz_open_dev$usbfs(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0x1000, 0x86601) 08:10:53 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x2, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:53 executing program 1: syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x0, 0x0) 08:10:53 executing program 2: syz_open_dev$vcsu(&(0x7f00000007c0)='/dev/vcsu#\x00', 0x0, 0x0) 08:10:53 executing program 4: syz_io_uring_setup(0x1019, &(0x7f0000000140)={0x0, 0x40af, 0x3c}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) 08:10:53 executing program 5: r0 = socket$kcm(0x29, 0x2, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f00000001c0)={0xffffffffffffffff}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, 0x0) 08:10:54 executing program 3: r0 = syz_open_dev$sndctrl(&(0x7f0000000040)='/dev/snd/controlC#\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_TLV_COMMAND(r0, 0xc1105518, 0x0) 08:10:54 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x3, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:54 executing program 1: mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000300)) 08:10:54 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cuse\x00', 0x2, 0x0) read$FUSE(r0, &(0x7f00000001c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INTERRUPT(r0, &(0x7f0000000140)={0x10, 0xfffffffffffffff5, r1}, 0x10) 08:10:54 executing program 1: r0 = fsopen(&(0x7f0000000000)='qnx4\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) 08:10:54 executing program 3: syz_open_dev$sndctrl(&(0x7f0000000040)='/dev/snd/controlC#\x00', 0x7, 0x181a00) 08:10:54 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x222}, 0x48) socket$kcm(0x11, 0xa, 0x300) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe80, 0xfffffffe, &(0x7f00000000c0)="b9ff03c6630d698cb89e0bf088ca1fffffff0e000000633a77fbac14143fee", 0x0, 0x2f, 0x0, 0x4000, 0xfffffffffffffe2a}, 0x28) 08:10:54 executing program 2: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x8, &(0x7f0000000080)={0x2000000}, 0x14) 08:10:54 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x4, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:55 executing program 5: syz_open_dev$vcsu(&(0x7f0000000000)='/dev/vcsu#\x00', 0x0, 0x0) socketpair(0x0, 0x0, 0x0, &(0x7f0000000080)) 08:10:55 executing program 1: r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000007c0)='/dev/net/tun\x00', 0x0, 0x0) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, 0x0) 08:10:55 executing program 2: syz_mount_image$fuse(&(0x7f0000000000)='fuse\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x1020, &(0x7f00000000c0)={{'fd'}, 0x2c, {'rootmode'}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {'group_id', 0x3d, 0xee00}}) 08:10:55 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x5, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:55 executing program 3: socketpair(0x11, 0x0, 0x0, &(0x7f00000007c0)) 08:10:55 executing program 4: bpf$MAP_CREATE(0x0, &(0x7f00000000c0)={0x1d, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x40) 08:10:55 executing program 5: r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) syz_mount_image$fuse(&(0x7f0000000000)='fuse\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x8000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {'group_id', 0x3d, 0xee00}}) 08:10:55 executing program 1: r0 = socket$inet6_dccp(0xa, 0x6, 0x0) ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, 0x0) 08:10:55 executing program 2: r0 = socket$inet6(0xa, 0x3, 0x14) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x0, 0x0}}, 0x1c) 08:10:56 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x6, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:56 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x25, &(0x7f0000000080)={0x2000000}, 0x14) 08:10:56 executing program 4: r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f0000000000)={&(0x7f0000ffe000/0x2000)=nil, 0x2000}, &(0x7f0000000040)=0xfffffe60) [ 968.908378][T18440] fuse: Bad value for 'user_id' 08:10:56 executing program 5: r0 = socket$kcm(0x29, 0x2, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f00000001c0)={0xffffffffffffffff}) recvmsg(r1, &(0x7f00000005c0)={&(0x7f0000000000)=@in6, 0x80, &(0x7f0000000540)=[{0x0}, {0x0}], 0x2}, 0x0) 08:10:56 executing program 2: pkey_mprotect(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x3000009, 0xffffffffffffffff) [ 969.172501][T18448] TCP: TCP_TX_DELAY enabled 08:10:56 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x4) bind$netlink(r0, &(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000000000)=0x10, 0x4) 08:10:56 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x7, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:56 executing program 3: syz_io_uring_setup(0x4641, &(0x7f0000000280)={0x0, 0xb2e6, 0x8}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000300), &(0x7f0000000340)) 08:10:56 executing program 4: r0 = socket$inet_mptcp(0x2, 0x1, 0x106) recvmmsg(r0, &(0x7f0000001040)=[{{0x0, 0x0, 0x0}}], 0x1, 0x10000, 0x0) 08:10:57 executing program 5: r0 = socket$netlink(0x10, 0x3, 0xc) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000000000)=0x10, 0x4) 08:10:57 executing program 2: r0 = syz_open_dev$sndctrl(&(0x7f0000000040)='/dev/snd/controlC#\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000000)={0x1, 0x8, [0x0, 0x0]}) 08:10:57 executing program 1: socketpair(0x1d, 0x0, 0x6, &(0x7f0000001680)) 08:10:57 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x8, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:57 executing program 4: r0 = socket$qrtr(0x2a, 0x2, 0x0) connect$qrtr(r0, &(0x7f0000004b40), 0xc) 08:10:57 executing program 3: socket$isdn(0x22, 0x3, 0xc8884048cda0b3ca) 08:10:57 executing program 5: io_uring_setup(0x13d6, &(0x7f0000000000)={0x0, 0x2e50, 0x10, 0x0, 0x111}) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(0xffffffffffffffff, 0xc08c5334, &(0x7f0000000080)={0x9, 0x4, 0x0, 'queue1\x00', 0x100}) r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000280)='/dev/cachefiles\x00', 0xc2080, 0x0) socket$inet6(0xa, 0x4, 0xfff) ioctl$HIDIOCGRAWNAME(r0, 0x80404804, &(0x7f0000000900)) 08:10:57 executing program 2: socketpair(0xa, 0x5, 0x0, &(0x7f0000000140)) 08:10:57 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x4) sendmsg$netlink(r0, &(0x7f0000002240)={0x0, 0x0, &(0x7f0000002200)=[{&(0x7f0000000240)={0x10}, 0x10}, {&(0x7f0000000940)={0x10, 0x1f, 0x1}, 0x10}], 0x2}, 0x0) 08:10:57 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x9, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:58 executing program 4: syz_mount_image$erofs(&(0x7f0000000340)='erofs\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, &(0x7f0000001680), 0x80044c, &(0x7f0000001740)) 08:10:58 executing program 3: r0 = syz_open_dev$sndctrl(&(0x7f0000000040)='/dev/snd/controlC#\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_TLV_COMMAND(r0, 0x40405515, 0x0) 08:10:58 executing program 2: syz_genetlink_get_family_id$SEG6(&(0x7f0000000680)='SEG6\x00') 08:10:58 executing program 5: r0 = syz_open_dev$binderN(&(0x7f0000000040)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r0, 0xc018620b, &(0x7f0000000080)) [ 971.101002][T18505] erofs: (device loop4): erofs_read_superblock: cannot find valid erofs superblock 08:10:58 executing program 1: r0 = syz_open_dev$vcsu(&(0x7f0000000000)='/dev/vcsu#\x00', 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x8000000) 08:10:58 executing program 3: socketpair(0x2, 0x3, 0x11, &(0x7f0000000140)) [ 971.176783][T18505] erofs: (device loop4): erofs_read_superblock: cannot find valid erofs superblock 08:10:58 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0xa, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:58 executing program 4: syz_open_dev$sndctrl(&(0x7f0000000040)='/dev/snd/controlC#\x00', 0x0, 0x0) syz_open_dev$sndctrl(&(0x7f00000001c0)='/dev/snd/controlC#\x00', 0x0, 0x64000) [ 971.509624][T18521] binder: 18517:18521 ioctl 4018620d 0 returned -22 [ 971.551752][T18521] binder: 18517:18521 ioctl 4018620d 0 returned -22 08:10:58 executing program 2: r0 = syz_open_dev$sndctrl(&(0x7f0000000040)='/dev/snd/controlC#\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_CARD_INFO(r0, 0x81785501, &(0x7f0000000080)=""/178) 08:10:59 executing program 1: socket$inet6(0xa, 0x0, 0xfffffffc) 08:10:59 executing program 5: r0 = socket$inet_mptcp(0x2, 0x1, 0x106) recvmmsg(r0, &(0x7f0000003a40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x10100, 0x0) 08:10:59 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0xb, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:59 executing program 3: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000140)='syzkaller\x00', 0x7, 0xce, &(0x7f0000000180)=""/206, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) 08:10:59 executing program 4: r0 = syz_open_dev$vcsu(&(0x7f0000000000)='/dev/vcsu#\x00', 0x200, 0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, 0x0) 08:10:59 executing program 2: syz_io_uring_setup(0x68db, &(0x7f0000000000), &(0x7f0000fee000/0xf000)=nil, &(0x7f0000ff9000/0x1000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 08:10:59 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000000240)={0x0, 0x14, &(0x7f0000000000)=[{&(0x7f0000000280)={0x28, 0x10, 0xd}, 0x28}], 0x1}, 0x0) 08:10:59 executing program 3: r0 = socket$inet_smc(0x2b, 0x1, 0x0) getsockopt$inet_tcp_int(r0, 0x6, 0x4, 0x0, &(0x7f0000000200)) 08:10:59 executing program 5: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000280)='/dev/cachefiles\x00', 0x0, 0x0) syz_mount_image$fuse(&(0x7f0000000040)='fuse\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x1000}, 0x2c, {'user_id'}, 0x2c, {'group_id', 0x3d, 0xee00}}) 08:10:59 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0xc, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:10:59 executing program 4: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x9, 0x9, &(0x7f0000000200)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x64, 0x1000, &(0x7f0000000300)=""/4096, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) [ 972.542467][T18547] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. 08:11:00 executing program 3: r0 = socket$inet6_dccp(0xa, 0x6, 0x0) getsockopt$inet6_dccp_buf(r0, 0x21, 0x0, 0x0, 0x0) [ 972.761110][T18557] fuse: Bad value for 'group_id' 08:11:00 executing program 2: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x5, &(0x7f00000000c0)=@framed={{}, [@ldst={0x0, 0x0, 0x1}, @generic={0xff}]}, &(0x7f0000000140)='syzkaller\x00', 0x7, 0xce, &(0x7f0000000180)=""/206, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000300), 0x8, 0x10, 0x0}, 0x78) 08:11:00 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_UNLABEL_C_STATICADD(r0, &(0x7f0000000d40)={0x0, 0x0, &(0x7f0000000d00)={&(0x7f0000000cc0)={0x14}, 0x14}}, 0x80d0) 08:11:00 executing program 5: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) bind$inet6(r0, &(0x7f0000001c00)={0xa, 0x4e24, 0x0, @mcast2, 0xff}, 0x1c) 08:11:00 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0xd, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:00 executing program 4: r0 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000780)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0) write$cgroup_freezer_state(r0, 0x0, 0x0) 08:11:00 executing program 1: r0 = socket$kcm(0x29, 0x2, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f00000001c0)={0xffffffffffffffff}) mmap$xdp(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0x13, r1, 0x0) 08:11:00 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000004200)={0x0, 0x0, &(0x7f0000004180)=[{&(0x7f0000000140)={0x28, 0x20, 0x1, 0x0, 0x0, "", [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x28}], 0x1}, 0x0) 08:11:00 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x29, 0x1, 0x0, 0x0) 08:11:00 executing program 5: socketpair(0x10, 0x0, 0x7fffffff, &(0x7f0000000140)) 08:11:01 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0xe, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:01 executing program 4: r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETCARRIER(r0, 0x400454e2, 0x0) 08:11:01 executing program 1: r0 = socket$inet6_dccp(0xa, 0x6, 0x0) ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, &(0x7f0000001a80)={@empty}) 08:11:01 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) getsockopt$netlink(r0, 0x10e, 0x5, &(0x7f0000000080)=""/103, &(0x7f0000000100)=0x67) 08:11:01 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x4) sendmsg$netlink(r0, &(0x7f0000002240)={0x0, 0x0, &(0x7f0000002200)=[{&(0x7f0000000940)={0x10, 0x1f, 0x1}, 0x10}], 0x1}, 0x0) 08:11:01 executing program 5: syz_mount_image$fuse(&(0x7f0000000240)='fuse\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x0, 0x0, 0x24008, &(0x7f00000002c0)={{'fd'}, 0x2c, {'rootmode'}, 0x2c, {'user_id', 0x3d, 0xee00}, 0x2c, {'group_id', 0x3d, 0xffffffffffffffff}}) 08:11:01 executing program 4: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cachefiles\x00', 0x2002, 0x0) write$FUSE_DIRENT(r0, 0x0, 0x5f) 08:11:01 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x10, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:01 executing program 2: r0 = openat$vimc1(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video1\x00', 0x2, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, 0x0) 08:11:01 executing program 3: syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x0, 0x400080) 08:11:01 executing program 1: r0 = socket$kcm(0x29, 0x2, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f00000001c0)={0xffffffffffffffff}) sendmsg$xdp(r1, &(0x7f0000000580)={&(0x7f0000000000), 0x10, 0x0}, 0x0) 08:11:01 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000004200)={0x0, 0x0, &(0x7f0000004180)=[{&(0x7f0000000140)={0x14, 0x20, 0x1, 0x0, 0x0, "", [@nested={0x4}]}, 0x14}], 0x1}, 0x0) 08:11:02 executing program 4: r0 = socket$can_j1939(0x1d, 0x2, 0x7) recvmsg$can_j1939(r0, &(0x7f0000000380)={&(0x7f0000000040)=@pppol2tpv3in6, 0xc5, &(0x7f0000000240), 0x0, &(0x7f0000000280)=""/235, 0xeb}, 0x0) 08:11:02 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x11, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:02 executing program 2: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) bind$inet6(r0, &(0x7f0000001c00)={0xa, 0x4e24, 0x0, @mcast2}, 0x1c) 08:11:02 executing program 5: socketpair(0x1d, 0x0, 0x11, &(0x7f0000000140)) 08:11:02 executing program 1: syz_io_uring_setup(0x40d8, &(0x7f00000012c0), &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000001340), &(0x7f0000001380)) 08:11:02 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCL_SELLOADLUT(r0, 0x541c, 0x0) 08:11:02 executing program 4: io_uring_setup(0x644a, &(0x7f0000000040)={0x0, 0xa9bd}) syz_io_uring_setup(0x7d19, &(0x7f00000000c0)={0x0, 0x0, 0x1}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 08:11:02 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x12, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:03 executing program 2: socket$inet6_sctp(0xa, 0x0, 0x84) bind$inet6(0xffffffffffffffff, 0x0, 0x0) 08:11:03 executing program 5: r0 = socket$inet6_udp(0xa, 0x2, 0x0) getsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000340)={@empty}, &(0x7f0000000380)=0x20) 08:11:03 executing program 1: socket$inet(0x2, 0xd, 0x0) 08:11:03 executing program 3: syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x0) 08:11:03 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x25, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:03 executing program 4: syz_io_uring_setup(0x2504, &(0x7f00000011c0)={0x0, 0x2ebb}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000001240), &(0x7f0000001280)) 08:11:03 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cuse\x00', 0x2, 0x0) read$FUSE(r0, &(0x7f00000001c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INTERRUPT(r0, &(0x7f0000000140)={0x10, 0x0, r1}, 0x10) read$FUSE(r0, &(0x7f0000002200)={0x2020}, 0x2020) 08:11:03 executing program 3: r0 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x9, 0x400080) ioctl$SNDRV_PCM_IOCTL_STATUS_EXT64(r0, 0xc0984124, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}) ioctl$SNDRV_PCM_IOCTL_STATUS_EXT64(0xffffffffffffffff, 0xc0984124, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}) openat$tun(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/net/tun\x00', 0x10000, 0x0) ioctl$BTRFS_IOC_START_SYNC(0xffffffffffffffff, 0x80089418, 0x0) r1 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/debug/binder/transaction_log\x00', 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x14, 0x3, &(0x7f00000002c0)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x3cde}, @func], &(0x7f0000000300)='syzkaller\x00', 0x200, 0xbc, &(0x7f0000000340)=""/188, 0x40f00, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000400)={0x4, 0x4}, 0x8, 0x10, &(0x7f0000000440)={0x0, 0x0, 0x3ff}, 0x10, 0xffffffffffffffff}, 0x78) ioctl$TUNSETFILTEREBPF(r1, 0x800454e1, 0x0) ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, 0x0) syz_io_uring_setup(0x5a99, &(0x7f0000000840)={0x0, 0x302f, 0x0, 0x2, 0x368}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f00000008c0), &(0x7f0000000900)) openat$cgroup_freezer_state(0xffffffffffffffff, &(0x7f0000000980)='freezer.state\x00', 0x2, 0x0) 08:11:03 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_UNLABEL_C_STATICADD(r0, &(0x7f0000000d40)={&(0x7f0000000c40), 0xc, &(0x7f0000000d00)={&(0x7f0000000cc0)={0x14}, 0x14}}, 0x80d0) 08:11:03 executing program 2: recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x80012180, 0x0) 08:11:04 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x5c, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:04 executing program 5: openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cachefiles\x00', 0x4000, 0x0) 08:11:04 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000000)={'wg0\x00'}) 08:11:04 executing program 1: socketpair(0x18, 0x0, 0x9, &(0x7f0000000040)) 08:11:04 executing program 3: syz_mount_image$fuse(&(0x7f0000000000)='fuse\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)={{'fd', 0xa}, 0x2c, {'rootmode'}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {'group_id', 0x3d, 0xee00}}) 08:11:04 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) write$FUSE_DIRENT(r0, &(0x7f0000000140)={0x10}, 0x10) 08:11:04 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x300, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:04 executing program 4: syz_io_uring_setup(0x7fc5, &(0x7f0000000100)={0x0, 0x5c6, 0x8}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000180), &(0x7f00000001c0)) 08:11:04 executing program 5: openat$tun(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/net/tun\x00', 0x10000, 0x0) [ 977.609664][T18706] fuse: Unknown parameter 'fd [ 977.609664][T18706] 0xffffffffffffffff' [ 977.632604][T18706] fuse: Unknown parameter 'fd [ 977.632604][T18706] 0xffffffffffffffff' 08:11:05 executing program 2: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000000)="0f34", 0x2}], 0x1, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f00000005c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xd4, 0xd4, 0x6, [@const, @enum={0x0, 0xb, 0x0, 0x6, 0x4, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}]}, @ptr, @restrict, @func_proto={0x0, 0x5, 0x0, 0xd, 0x0, [{}, {}, {}, {}, {}]}, @array]}, {0x0, [0x0, 0x0, 0x0, 0x0]}}, 0x0, 0xf2}, 0x20) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f00000193c0)=""/102389, 0x18ff5}], 0x0, 0x0, 0x0, 0x0) tkill(r0, 0x40) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 08:11:05 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_UNLABEL_C_STATICADD(r0, &(0x7f0000000d40)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000d00)={&(0x7f0000000cc0)={0x14}, 0x14}}, 0x0) 08:11:05 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) write$FUSE_DIRENT(r0, 0x0, 0x7ffffffff000) 08:11:05 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x500, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:05 executing program 5: openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000280)='/dev/cachefiles\x00', 0x0, 0x0) 08:11:05 executing program 4: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000580)='/dev/ptmx\x00', 0x0, 0x0) openat$ptmx(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/ptmx\x00', 0x121000, 0x0) 08:11:05 executing program 1: syz_open_dev$vcsu(&(0x7f0000000000)='/dev/vcsu#\x00', 0x0, 0x0) ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000080)={0x0, 0x2}) openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000780)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0) syz_io_uring_setup(0x40d8, &(0x7f00000012c0)={0x0, 0xce2, 0x0, 0x0, 0x3dc}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000001340), &(0x7f0000001380)) openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000780)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0) syz_io_uring_setup(0xb3e, &(0x7f0000001080)={0x0, 0x2aae, 0x0, 0x3}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000001100), &(0x7f0000001140)) 08:11:05 executing program 3: syz_open_dev$media(&(0x7f0000001280)='/dev/media#\x00', 0x9, 0x0) 08:11:05 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x600, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:05 executing program 5: r0 = socket$inet_udp(0x2, 0x2, 0x0) sendmsg$GTP_CMD_GETPDP(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0) 08:11:06 executing program 4: r0 = socket$kcm(0x29, 0x2, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f00000001c0)={0xffffffffffffffff}) recvmsg(r1, 0x0, 0x0) 08:11:06 executing program 1: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x4, &(0x7f0000000000)=@raw=[@call, @func={0x85, 0x0, 0x1, 0x0, 0x7}, @btf_id={0x18, 0x5}], &(0x7f0000000040)='syzkaller\x00', 0x4, 0xce, &(0x7f0000000140)=""/206, 0x0, 0x12, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) 08:11:08 executing program 2: r0 = socket$rds(0x15, 0x5, 0x0) sendmsg$rds(r0, &(0x7f0000000700)={0x0, 0x0, 0x0}, 0x4000010) 08:11:08 executing program 3: r0 = syz_open_dev$vcsu(&(0x7f0000000000)='/dev/vcsu#\x00', 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x3000006, 0x13, r0, 0x8000000) 08:11:08 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x700, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:08 executing program 5: r0 = syz_open_dev$sndctrl(&(0x7f0000000040)='/dev/snd/controlC#\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_TLV_COMMAND(r0, 0xc4c85513, 0x0) 08:11:08 executing program 4: mq_getsetattr(0xffffffffffffffff, &(0x7f00000000c0), &(0x7f0000000100)) 08:11:08 executing program 1: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000b40)='/dev/snd/seq\x00', 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, 0x0) 08:11:08 executing program 3: clock_getres(0x0, &(0x7f0000000c00)) 08:11:08 executing program 4: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000002240)={0x0, 0x0, &(0x7f0000002200)=[{&(0x7f0000000940)={0x10, 0x1f, 0x1}, 0x10}], 0x1}, 0x0) 08:11:08 executing program 5: syz_io_uring_setup(0x40d8, &(0x7f00000012c0), &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000001340), 0x0) syz_io_uring_setup(0xb3e, &(0x7f0000001080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000001100), &(0x7f0000001140)) 08:11:08 executing program 1: r0 = syz_open_dev$sndctrl(&(0x7f0000000040)='/dev/snd/controlC#\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000000)=0x9) 08:11:08 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x900, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:08 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_UNLABEL_C_STATICLIST(r0, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000700)={0x0}}, 0x0) syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000c80)='NLBL_UNLBL\x00') 08:11:09 executing program 4: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cuse\x00', 0x2, 0x0) read$FUSE(r0, &(0x7f00000001c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INTERRUPT(r0, &(0x7f0000000140)={0x10, 0xc, r1}, 0x10) 08:11:09 executing program 1: syz_open_dev$sndctrl(&(0x7f0000000000)='/dev/snd/controlC#\x00', 0xffffffffffffffff, 0x403c0) 08:11:09 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000002240)={0x0, 0x0, &(0x7f0000002200)=[{&(0x7f0000000240)={0x10, 0x1a}, 0x10}, {&(0x7f0000000580)={0x10}, 0x10}], 0x2}, 0x0) 08:11:09 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0xa00, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:09 executing program 5: syz_mount_image$fuse(&(0x7f0000000000)='fuse\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)={{'fd', 0x2c}, 0x2c, {'rootmode'}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {'group_id', 0x3d, 0xee00}}) 08:11:09 executing program 2: openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20\x00', 0x200000, 0x0) [ 982.498389][T18822] fuse: Bad value for 'fd' 08:11:09 executing program 4: syz_io_uring_setup(0x2504, &(0x7f00000011c0), &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000001240), &(0x7f0000001280)) [ 982.577364][T18822] fuse: Bad value for 'fd' 08:11:09 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_UNLABEL_C_STATICADD(r0, &(0x7f0000000d40)={&(0x7f0000000c40), 0xc, &(0x7f0000000d00)={0x0}}, 0x0) 08:11:10 executing program 1: syz_open_dev$vcsu(&(0x7f0000002600)='/dev/vcsu#\x00', 0x0, 0x2400) 08:11:10 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0xb00, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:10 executing program 5: socketpair(0xa, 0x2, 0x3a, &(0x7f0000000140)) 08:11:10 executing program 2: r0 = syz_open_dev$sndctrl(&(0x7f0000000040)='/dev/snd/controlC#\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(r0, 0x80dc5521, &(0x7f0000000080)=""/210) 08:11:10 executing program 1: syz_io_uring_setup(0x1e5d, &(0x7f0000000040), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000000c0)=0x0, &(0x7f0000000100)) syz_io_uring_setup(0x0, &(0x7f0000000140), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000200)=0x0) syz_io_uring_submit(r0, r1, &(0x7f0000000240)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) 08:11:10 executing program 4: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000002240)={0x0, 0x0, &(0x7f0000002200)=[{&(0x7f0000000240)={0x10, 0x1a}, 0x10}, {&(0x7f0000000940)={0x14, 0x1f, 0x1, 0x0, 0x0, "", [@nested={0x4}]}, 0x14}], 0x2}, 0x0) 08:11:10 executing program 3: r0 = syz_io_uring_setup(0x68db, &(0x7f0000000000), &(0x7f0000fee000/0xf000)=nil, &(0x7f0000ff9000/0x1000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) io_uring_register$IORING_UNREGISTER_PERSONALITY(r0, 0xa, 0x0, 0x0) 08:11:10 executing program 2: r0 = socket(0x22, 0x3, 0x0) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x29, 0x36, 0x0, 0x0) 08:11:10 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0xc00, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:10 executing program 5: openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000280)='/dev/cachefiles\x00', 0xc2080, 0x0) 08:11:10 executing program 4: syz_open_dev$vcsu(&(0x7f0000000000)='/dev/vcsu#\x00', 0x0, 0x51befe1500dc968d) 08:11:11 executing program 1: syz_open_dev$sndpcmp(0x0, 0x0, 0x0) r0 = syz_io_uring_setup(0x5a99, &(0x7f0000000840), &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f00000008c0), &(0x7f0000000900)) io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) 08:11:11 executing program 2: r0 = fsopen(&(0x7f00000000c0)='btrfs\x00', 0x0) fsconfig$FSCONFIG_SET_BINARY(r0, 0x2, &(0x7f0000000100)='\x00', &(0x7f0000000140), 0x0) 08:11:11 executing program 3: bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_ext={0x1c, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) 08:11:11 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_UNLABEL_C_STATICADD(r0, &(0x7f0000000d40)={0x0, 0x0, &(0x7f0000000d00)={0x0}}, 0x0) 08:11:11 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0xd00, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:11 executing program 4: r0 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20\x00', 0x200000, 0x0) accept4$inet6(r0, 0x0, 0x0, 0x0) 08:11:11 executing program 2: socketpair(0x0, 0x0, 0x0, &(0x7f0000000080)) socket$kcm(0x29, 0x5, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, 0x0) 08:11:11 executing program 3: socketpair(0x1, 0x2, 0x0, &(0x7f0000000140)) 08:11:11 executing program 5: r0 = fsopen(&(0x7f00000000c0)='btrfs\x00', 0x0) fsconfig$FSCONFIG_SET_BINARY(r0, 0x2, 0x0, 0x0, 0x0) 08:11:11 executing program 1: r0 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x9, 0x400080) ioctl$SNDRV_PCM_IOCTL_STATUS_EXT64(r0, 0xc0984124, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}) ioctl$SNDRV_PCM_IOCTL_STATUS_EXT64(0xffffffffffffffff, 0xc0984124, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/net/tun\x00', 0x10000, 0x0) ioctl$TUNSETCARRIER(r1, 0x400454e2, &(0x7f0000000200)=0x1) ioctl$BTRFS_IOC_START_SYNC(r0, 0x80089418, &(0x7f0000000240)) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x14, 0x3, &(0x7f00000002c0)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x3cde, 0x0, 0x0, 0x0, 0x200}, @func={0x85, 0x0, 0x1, 0x0, 0x6}], &(0x7f0000000300)='syzkaller\x00', 0x200, 0xbc, &(0x7f0000000340)=""/188, 0x40f00, 0x4, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000400)={0x4, 0x4}, 0x8, 0x10, &(0x7f0000000440)={0x0, 0xb, 0x3ff, 0x5}, 0x10, 0xffffffffffffffff}, 0x78) ioctl$TUNSETFILTEREBPF(0xffffffffffffffff, 0x800454e1, &(0x7f0000000500)=r2) bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x1a, 0x8, &(0x7f0000000580)=@raw=[@generic={0xa9, 0x5, 0x4, 0xfffd, 0x1f}, @call={0x85, 0x0, 0x0, 0x45}, @func={0x85, 0x0, 0x1, 0x0, 0x4}, @map={0x18, 0x9}, @jmp={0x5, 0x1, 0x7, 0x0, 0x1, 0x18, 0x10}, @map={0x18, 0x1, 0x1, 0x0, r2}], &(0x7f00000005c0)='syzkaller\x00', 0x1, 0x0, &(0x7f0000000600), 0x41100, 0x1c, [], 0x0, 0x1e, 0xffffffffffffffff, 0x8, &(0x7f0000000640)={0x3, 0x1}, 0x8, 0x10, &(0x7f0000000680)={0x5, 0x5}, 0x10, 0x0, r2}, 0x78) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, &(0x7f0000000740)) syz_open_dev$vcsu(&(0x7f00000007c0)='/dev/vcsu#\x00', 0x7, 0x4040) syz_io_uring_setup(0x5a99, &(0x7f0000000840)={0x0, 0x302f, 0x10, 0x2, 0x368}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f00000008c0), &(0x7f0000000900)) 08:11:11 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0xe00, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:12 executing program 4: r0 = syz_io_uring_setup(0xb3e, &(0x7f0000001080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000001100), &(0x7f0000001140)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x12, r0, 0x8000000) 08:11:12 executing program 3: syz_mount_image$fuse(&(0x7f0000000000)='fuse\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x300, &(0x7f00000000c0)={{'fd'}, 0x2c, {'rootmode'}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {'group_id', 0x3d, 0xee00}}) 08:11:12 executing program 5: r0 = socket$kcm(0x29, 0x2, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f00000001c0)={0xffffffffffffffff}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f0000001640)={0x0, [], 0x0, "7bcb1ba92a17eb"}) 08:11:12 executing program 1: setsockopt$bt_hci_HCI_DATA_DIR(0xffffffffffffffff, 0x0, 0x1, 0x0, 0x0) 08:11:12 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x1100, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:12 executing program 2: r0 = socket$inet6(0xa, 0x3, 0x4) getsockopt$IP6T_SO_GET_REVISION_TARGET(r0, 0x29, 0x45, 0x0, 0x0) [ 985.411689][T18928] fuse: Bad value for 'fd' [ 985.423243][T18928] fuse: Bad value for 'fd' 08:11:12 executing program 4: mq_getsetattr(0xffffffffffffffff, &(0x7f00000000c0)={0x80000000}, &(0x7f0000000100)) 08:11:12 executing program 3: openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x0, 0x0) 08:11:13 executing program 1: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_DIRENT(r0, 0x0, 0x50) 08:11:13 executing program 5: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) recvmmsg(r0, &(0x7f0000004940)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) 08:11:13 executing program 2: r0 = semget(0x0, 0x0, 0x0) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0xfff7]) 08:11:13 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x1200, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:13 executing program 4: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4) getsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000240), &(0x7f0000000280)=0x14) 08:11:13 executing program 3: socketpair(0x1, 0x2, 0x0, &(0x7f0000000140)={0xffffffffffffffff}) recvmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0) 08:11:13 executing program 1: r0 = socket$kcm(0x29, 0x2, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f00000001c0)={0xffffffffffffffff}) bind$vsock_stream(r1, 0x0, 0x0) 08:11:13 executing program 2: semctl$GETZCNT(0x0, 0x2, 0xf, 0x0) 08:11:13 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x2500, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:13 executing program 4: mq_open(&(0x7f0000000000)='\x00\xd9\xeb\x00', 0x0, 0x0, &(0x7f0000000040)) 08:11:13 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0xb, &(0x7f0000000000)=0x10, 0x4) 08:11:14 executing program 2: r0 = socket$kcm(0x29, 0x2, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f00000001c0)={0xffffffffffffffff}) ioctl$sock_qrtr_TIOCINQ(r1, 0x541b, 0x0) 08:11:14 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x5c00, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:14 executing program 5: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000000)="0f34", 0x2}], 0x1, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f00000005c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xf9, 0xf9, 0x5, [@const, @datasec={0x0, 0x2, 0x0, 0xf, 0x1, [{}, {}], "e8"}, @enum={0x0, 0xb, 0x0, 0x6, 0x4, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}]}, @ptr, @restrict, @func_proto={0x0, 0x5, 0x0, 0xd, 0x0, [{}, {}, {}, {}, {}]}, @array]}, {0x0, [0x0, 0x0, 0x0]}}, 0x0, 0x119}, 0x20) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f00000193c0)=""/102389, 0x18ff5}], 0x0, 0x0, 0x0, 0x0) tkill(r0, 0x40) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 08:11:14 executing program 1: ioctl$sock_kcm_SIOCKCMUNATTACH(0xffffffffffffffff, 0x89e1, 0x0) socketpair(0x0, 0x0, 0x0, &(0x7f0000000080)) r0 = socket$kcm(0x29, 0x5, 0x0) ioctl$sock_kcm_SIOCKCMUNATTACH(r0, 0x89e1, &(0x7f0000000180)) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000001640)={0x7fffffff, [], 0x20, "7bcb1ba92a17eb"}) openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000004640)='/dev/vhost-vsock\x00', 0x2, 0x0) 08:11:14 executing program 4: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x1, &(0x7f0000000000)=@raw=[@call], &(0x7f0000000040)='syzkaller\x00', 0x4, 0xce, &(0x7f0000000140)=""/206, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) 08:11:14 executing program 2: bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000005c0)=@bpf_ext={0x1c, 0x0, 0x0, &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) 08:11:14 executing program 3: socketpair(0x25, 0x5, 0x80, &(0x7f0000000000)) 08:11:14 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0xff00, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:15 executing program 4: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000001cc0)={0x0, 0xa, 0x0, 0x5, 0x9, 0x7ff}) 08:11:15 executing program 1: bpf$PROG_LOAD(0x5, 0x0, 0x0) syz_io_uring_setup(0x5a99, &(0x7f0000000840), &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f00000008c0), &(0x7f0000000900)) 08:11:15 executing program 2: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0}, 0x30) 08:11:15 executing program 3: syz_mount_image$fuse(&(0x7f0000000000)='fuse\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x2010, 0x0, &(0x7f00000000c0)={{'fd'}, 0x2c, {'rootmode'}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {'group_id', 0x3d, 0xee00}}) [ 988.367306][T19009] fuse: Bad value for 'fd' [ 988.431104][T19009] fuse: Bad value for 'fd' 08:11:15 executing program 1: r0 = socket$inet6_dccp(0xa, 0x6, 0x0) setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x2a, &(0x7f0000000000)={0x0, {{0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x0, 0x0}}}}, 0x88) 08:11:15 executing program 2: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x22, &(0x7f0000000080)={0x2000000}, 0x14) 08:11:17 executing program 5: r0 = fsopen(&(0x7f0000000040)='tracefs\x00', 0x0) fsconfig$FSCONFIG_SET_PATH(r0, 0x3, &(0x7f0000000080)=',\x00', &(0x7f00000000c0)='./file0\x00', 0xffffffffffffff9c) 08:11:17 executing program 3: syz_open_dev$usbfs(&(0x7f00000000c0)='/dev/bus/usb/00#/00#\x00', 0x3, 0x4101) 08:11:17 executing program 4: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cuse\x00', 0x2, 0x0) syz_mount_image$fuse(&(0x7f0000000040)='fuse\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000004240)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@default_permissions='default_permissions'}, {@allow_other='allow_other'}]}}) 08:11:17 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x1000000, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:17 executing program 1: r0 = syz_open_dev$sndctrl(&(0x7f0000000040)='/dev/snd/controlC#\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_TLV_COMMAND(r0, 0x10, 0x0) 08:11:17 executing program 2: r0 = socket$qrtr(0x2a, 0x2, 0x0) ioctl$BTRFS_IOC_TREE_SEARCH_V2(r0, 0xc0709411, 0x0) [ 990.943939][T19052] fuse: Bad value for 'fd' 08:11:18 executing program 2: syz_open_dev$vcsu(&(0x7f0000000040)='/dev/vcsu#\x00', 0x0, 0x24555ea3e9f9f29e) 08:11:18 executing program 1: socketpair(0xa, 0x2, 0x73, &(0x7f0000000140)) 08:11:18 executing program 3: semget(0x1, 0x600, 0x0) 08:11:18 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x2000000, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:18 executing program 4: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cuse\x00', 0x2, 0x0) read$FUSE(r0, &(0x7f00000001c0)={0x2020, 0x0, 0x0}, 0x2020) read$FUSE(r0, &(0x7f0000004240)={0x2020}, 0x2020) write$FUSE_INTERRUPT(r0, &(0x7f0000000140)={0x10, 0x0, r1}, 0x10) 08:11:18 executing program 5: add_key$keyring(&(0x7f0000000780)='keyring\x00', 0x0, 0x0, 0x0, 0x0) 08:11:19 executing program 2: socketpair(0x10, 0x2, 0x9, &(0x7f0000000140)) 08:11:19 executing program 3: r0 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000780)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x8000000) 08:11:19 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x3000000, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:19 executing program 1: bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x1a, 0x1, &(0x7f0000000580)=@raw=[@generic], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) 08:11:19 executing program 5: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x2, &(0x7f0000000000)=@raw=[@call, @func={0x85, 0x0, 0x1, 0x0, 0x7}], &(0x7f0000000040)='syzkaller\x00', 0x4, 0xce, &(0x7f0000000140)=""/206, 0x40f00, 0x12, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) 08:11:19 executing program 4: syz_io_uring_setup(0x40d8, &(0x7f00000012c0), &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000001340), 0x0) syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000001100), 0x0) 08:11:19 executing program 2: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x0, 0x9, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) 08:11:19 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x4000000, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:19 executing program 1: socket$qrtr(0x2a, 0x2, 0x0) 08:11:19 executing program 3: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cuse\x00', 0x2, 0x0) read$FUSE(r0, &(0x7f00000001c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INTERRUPT(r0, &(0x7f0000000140)={0x10, 0x0, r1}, 0x10) 08:11:20 executing program 5: bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_ext={0x1c, 0x0, 0x0, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) 08:11:20 executing program 4: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) bind$inet6(r0, 0x0, 0x0) 08:11:20 executing program 1: r0 = socket(0x11, 0x3, 0x0) ioctl$BTRFS_IOC_TREE_SEARCH_V2(r0, 0xc0709411, 0x0) 08:11:20 executing program 2: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x1, &(0x7f0000000000)=@raw=[@call], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) 08:11:20 executing program 3: socket$packet(0x11, 0x2, 0x300) socketpair(0x11, 0x2, 0x0, &(0x7f0000000140)) 08:11:20 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x5000000, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:20 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0xc, &(0x7f0000000000)=0x10, 0x4) 08:11:21 executing program 4: select(0x40, &(0x7f0000000700), 0x0, &(0x7f0000000780)={0x8}, 0x0) 08:11:21 executing program 1: syz_open_dev$hidraw(&(0x7f0000002500)='/dev/hidraw#\x00', 0x0, 0x0) 08:11:21 executing program 2: ioctl$sock_kcm_SIOCKCMUNATTACH(0xffffffffffffffff, 0x89e1, 0x0) socketpair(0x0, 0x0, 0x0, &(0x7f0000000080)) ioctl$sock_kcm_SIOCKCMUNATTACH(0xffffffffffffffff, 0x89e1, &(0x7f0000000180)) 08:11:21 executing program 3: ioctl$sock_kcm_SIOCKCMUNATTACH(0xffffffffffffffff, 0x89e1, 0x0) socketpair(0x0, 0x0, 0x0, &(0x7f0000000080)) socket$kcm(0x29, 0x5, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, 0x0) 08:11:21 executing program 5: socketpair(0x65a6b530072aa1f8, 0x0, 0x0, &(0x7f0000000000)) 08:11:21 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x6000000, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:21 executing program 4: syz_io_uring_setup(0x0, &(0x7f0000000780), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000800), &(0x7f0000000840)) 08:11:21 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000002540)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=[@rights={{0x10}}], 0x10}, 0x0) 08:11:21 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$netlink(r0, &(0x7f00000058c0)={0x0, 0x0, &(0x7f0000005840)=[{&(0x7f0000000180)={0x15c, 0x13, 0x100, 0x70bd2d, 0x25dfdbfe, "", [@generic="3dd63261dc", @generic="92874c40511295c44c78a707d708a77c345267595d5e6bb28e986a293300fc443de623f88f10e8789fab8b0a3eef848cb57f20e6c305ad85767037ef7406a77d6fa8d9bedab25ba0e2dd4721273a731e2c5f196ad4cdb62d68ba44eadb9f0b03548a0ef95e4a19781f8b22b0e0f1fcd10b7c98dd04cfd10f3ecb55cd2188c2b0ca65b1a2bcaeeae2e6355e8231a68089f9f83c5071b1069ec45d81ca78cd4daefc3a55cbf343c8719b87cfb803d04e625400", @nested={0x91, 0x5c, 0x0, 0x1, [@generic="c9b71f7bf94bafb98878cede1fcf96cf90de8a0947933b27e7feff8a5b39566489fe5e648a7dcc372f5d28076a88df003736361ad49c149038e0972445c336e4c28cc4d049945408f7c0bebca88b9a6f67d3408d4b01e506", @typed={0x8, 0x67, 0x0, 0x0, @pid}, @generic="830b311394662d8d5139b6f6b2d74c14c1680edcc2e2777fd7f87bc986ba852da7673e1514", @typed={0x8, 0x16, 0x0, 0x0, @uid=0xee00}]}]}, 0x15c}, {&(0x7f0000000300)={0x1c, 0x3c, 0x100, 0x3, 0x25dfdbfe, "", [@typed={0xc, 0x33, 0x0, 0x0, @u64=0x1}]}, 0x1c}, {&(0x7f0000000340)={0x1284, 0x2c, 0x100, 0x70bd2c, 0x25dfdbfc, "", [@typed={0x8, 0x21, 0x0, 0x0, @ipv4=@empty}, @generic, @nested={0xc, 0x4e, 0x0, 0x1, [@typed={0x8, 0x8b, 0x0, 0x0, @ipv4=@rand_addr=0x64010102}]}, @nested={0x1259, 0x43, 0x0, 0x1, [@generic="cf8ce7b57c8f178bf70c40c1bcc281879ab93730db8b2831c94083b591f126bdcaa1772b031f84a77f8a1c43f2d5bfe2f26ce6e288c2d94dac6cc6e6122e4d0970d48c48278df721dab27ecf0f9a6ca51a9fe17f8880dae6dc552d604d49c7b75a042d912b46d610840f45dcf5ebbd96c7544a64a668e500a7204effc0cc417ef475a94f19a3dd4fda59a39dd80e0e5bd9711be876d7197e97afdacaa6811f", @generic="97542e91280b8fddfe67032af77457fb91c7aed0713ab52c858506229f7d217fd3f8b9fa17630051b1af19b434005cc3f6602bf8eb4d6dc23ebf81fbb76033df341b10fa365f6f409e511d45e9482e8f6666a3330165a1fe5db49baaa8eb60666bf309a43d1e234f2bc7ebe31d750c2011d96cd24e6eb958", @typed={0x8, 0x90, 0x0, 0x0, @fd}, @generic="de310c378dda586d4f628334c2db6161c7950d55ce149cfca4124b78829457d8ba4004a0619483f0abe319c82d5c55aa1a8325d489f0db8bd60e611421911fac110cabafaaf3664dc400a81728997e70022c1701bccb2b0e31b7bcd718ae905406d3f297d80170ae67e3802da62ef9dc8f44cd8b0a50aa4de7891a0265b53eaa9ac04166b6af530c4ceb61fb1ad321c9838b1856f64e2be3a18746cfc581e4437493a3b12f244d6aaa1305c5612ceecccbfd95dc25c06eb3e42dc13632ca83c54480e5e111841c004d4a5a8d6bab1106b62672b56ffa93e615d26057db20c34d52d524b13f32d7b6a6d80ae8b9707665", @generic="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", @generic, @typed={0x8, 0x35, 0x0, 0x0, @uid=0xee01}, @generic="b1d0712f4066ed0eab26e6f0c4416a2b85ada3381f4395a6d765e1a93f424c97452ba8cf7c249e9fd497fb49de1dc34ef730db04f6e611222a8de02a436c"]}, @nested={0x4, 0x42, 0x0, 0x1, [@generic]}]}, 0x1284}], 0x3, 0x0, 0x0, 0x4020000}, 0x20000040) 08:11:22 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x7000000, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:22 executing program 3: sendmsg$nl_route(0xffffffffffffffff, 0x0, 0xd9011677848d4e79) 08:11:22 executing program 5: syz_open_procfs$namespace(0x0, &(0x7f0000002040)='ns/pid_for_children\x00') 08:11:22 executing program 4: r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000004a80)='/dev/fuse\x00', 0x2, 0x0) syz_mount_image$fuse(&(0x7f0000000000)='fuse\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) mount$fuseblk(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x20000, 0x0) 08:11:22 executing program 1: r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000200)='/dev/bsg\x00', 0x0, 0x0) sendmsg$TEAM_CMD_OPTIONS_GET(r0, 0x0, 0x0) 08:11:22 executing program 2: perf_event_open$cgroup(&(0x7f00000002c0)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 08:11:22 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x8000000, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:22 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) sendmsg$inet6(r0, &(0x7f0000001900)={&(0x7f0000000200)={0xa, 0x4e21, 0x0, @empty, 0x1}, 0x1c, 0x0, 0x0, &(0x7f00000019c0)=ANY=[@ANYBLOB="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"], 0x218}, 0x0) 08:11:22 executing program 5: bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000140)={0xffffffffffffffff}, 0x4) 08:11:22 executing program 1: r0 = openat$ttyS3(0xffffff9c, &(0x7f00000000c0)='/dev/ttyS3\x00', 0x0, 0x0) ioctl$TCXONC(r0, 0x540a, 0x3) 08:11:23 executing program 2: eventfd2(0x0, 0x0) eventfd2(0x0, 0x0) 08:11:23 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r0, 0x89f2, &(0x7f00000001c0)={'sit0\x00', &(0x7f0000000140)={'sit0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @loopback, @empty}}) 08:11:23 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x9000000, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:23 executing program 5: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$VT_RESIZE(r0, 0x5609, &(0x7f0000000000)={0x400}) 08:11:23 executing program 4: pselect6(0x40, &(0x7f0000000000)={0xdf1}, &(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140)={&(0x7f0000000100)={[0x401]}, 0x8}) 08:11:23 executing program 1: syz_mount_image$fuse(0x0, &(0x7f0000000040)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$fuse(0x0, &(0x7f0000000000)='./file1/file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 08:11:23 executing program 2: r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000004a80)='/dev/fuse\x00', 0x2, 0x0) syz_mount_image$fuse(&(0x7f0000000000)='fuse\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) read$FUSE(r0, &(0x7f00000001c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_WRITE(r0, &(0x7f0000000080)={0x18, 0x0, r1}, 0x18) syz_mount_image$fuse(&(0x7f00000000c0)='fuse\x00', &(0x7f0000002280)='./file0\x00', 0x0, 0x0, 0x0, 0x100000, &(0x7f00000022c0)={{'fd'}, 0x2c, {'rootmode'}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) 08:11:24 executing program 3: r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) getsockopt$sock_timeval(r0, 0x1, 0x0, 0x0, &(0x7f0000000380)) 08:11:24 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0xa000000, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:24 executing program 5: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$VT_RESIZE(r0, 0x5609, &(0x7f0000000000)={0x400}) 08:11:24 executing program 1: perf_event_open(&(0x7f0000000680)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x4) 08:11:24 executing program 4: perf_event_open$cgroup(&(0x7f0000000000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 08:11:24 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$netlink(r0, &(0x7f00000058c0)={&(0x7f0000000140)=@proc={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000005840)=[{&(0x7f0000000180)={0x160, 0x0, 0x0, 0x0, 0x0, "", [@generic="3dd63261dc", @generic="92874c40511295c44c78a707d708a77c345267595d5e6bb28e986a293300fc443de623f88f10e8789fab8b0a3eef848cb57f20e6c305ad85767037ef7406a77d6fa8d9bedab25ba0e2dd4721273a731e2c5f196ad4cdb62d68ba44eadb9f0b03548a0ef95e4a19781f8b22b0e0f1fcd10b7c98dd04cfd10f3ecb55cd2188c2b0ca65b1a2bcaeeae2e6355e8231a68089f9f83c5071b1069ec45d81ca78cd4daefc3a55cbf343c8719b87cfb803d04e625400e94d", @nested={0x91, 0x0, 0x0, 0x1, [@generic="c9b71f7bf94bafb98878cede1fcf96cf90de8a0947933b27e7feff8a5b39566489fe5e648a7dcc372f5d28076a88df003736361ad49c149038e0972445c336e4c28cc4d049945408f7c0bebca88b9a6f67d3408d4b01e506", @typed={0x8, 0x0, 0x0, 0x0, @pid}, @generic="830b311394662d8d5139b6f6b2d74c14c1680edcc2e2777fd7f87bc986ba852da7673e1514", @typed={0x8, 0x0, 0x0, 0x0, @uid=0xee00}]}]}, 0x160}, {&(0x7f0000000300)={0x1c, 0x0, 0x0, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64}]}, 0x1c}, {&(0x7f0000000340)={0x1448, 0x0, 0x0, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@empty}, @generic="55c4190a6226ca0c48c6d203614e55152c0553c4c817a6be7f75cfa97d3ef6ac63fd26c5dbb8a75acc", @nested={0xc, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @ipv4}]}, @nested={0x12f5, 0x0, 0x0, 0x1, [@generic="cf8ce7b57c8f178bf70c40c1bcc281879ab93730db8b2831c94083b591f126bdcaa1772b031f84a77f8a1c43f2d5bfe2f26ce6e288c2d94dac6cc6e6122e4d0970d48c48278df721dab27ecf0f9a6ca51a9fe17f8880dae6dc552d604d49c7b75a042d912b46d610840f45dcf5ebbd96c7544a64a668e500a7204effc0cc417ef475a94f19a3dd4fda59a39dd80e0e5bd9711be876d7197e97afdacaa6811f", @generic="97542e91280b8fddfe67032af77457fb91c7aed0713ab52c858506229f7d217fd3f8b9fa17630051b1af19b434005cc3f6602bf8eb4d6dc23ebf81fbb76033df341b10fa365f6f409e511d45e9482e8f6666a3330165a1fe5db49baaa8eb60666bf309a43d1e234f2bc7ebe31d750c2011d96cd24e6eb958", @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="de310c378dda586d4f628334c2db6161c7950d55ce149cfca4124b78829457d8ba4004a0619483f0abe319c82d5c55aa1a8325d489f0db8bd60e611421911fac110cabafaaf3664dc400a81728997e70022c1701bccb2b0e31b7bcd718ae905406d3f297d80170ae67e3802da62ef9dc8f44cd8b0a50aa4de7891a0265b53eaa9ac04166b6af530c4ceb61fb1ad321c9838b1856f64e2be3a18746cfc581e4437493a3b12f244d6aaa1305c5612ceecccbfd95dc25c06eb3e42dc13632ca83c54480e5e111841c004d4a5a8d6bab1106b62672b56ffa93e615d26057db20c34d52d524b13f32d7b6a6d80ae8b9707665", @generic="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", @generic="10b0af0af7105d92f751067a4057f2285f8ea20cff75a1626ad51f3617b70b6c16", @generic="e50545146b062ebcae03737d2a13d73dd60695d29ce4fca245baf755773df513b1af991d984089e37708aae63fd201dd3e256b9832c0b55b38500df85ae7f089cf16c209d3be32218c241d282033c7134ba3a6b3e1ca84c9a26c23e7d24f556b58a70876dd13103b0001", @typed={0x8, 0x0, 0x0, 0x0, @uid=0xee01}, @generic="b1d0712f4066ed0eab26e6f0c4416a2b85ada3381f4395a6d765e1a93f424c97452ba8cf7c249e9fd497fb49de1dc34ef730db04f6e611222a8de0", @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@mcast1}]}, @typed={0x4}, @nested={0xf9, 0x0, 0x0, 0x1, [@generic="4b817f061c9dcb2777cc05ab59d905d1ba696831e577fefd8c7a95766c5676356fde9906eb3cfc95c4500bc06534cdfc6c8f8ec2f459d6776c34585f8492f81efa2ecc6a7e451366779fde221c98d595474c627e6fc26c93c5fce26916b56cd2aa413e9f51c39465561510d9c13e64736c0aee71aae9e659837d061ca19097bcb9d3c4ab1728b20051dd444b31a38d437ea8389d6c085fb416429039f62f596525cc4db51bf90453e04d93c1e41681e91a005c38cdc149863b808220ac38c7d97e9eea409ef429112c254ecbb0b75d118754e1f72d998e57c697668d31a8b43593480868ef7c25d4e3dcd17bb813f36163dd046ae6"]}]}, 0x1448}, {&(0x7f00000017c0)={0x900, 0x0, 0x0, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @u32}, @typed={0x8e5, 0x0, 0x0, 0x0, @binary="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"}]}, 0x900}], 0x4}, 0x0) 08:11:24 executing program 3: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000003b80)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=@ipv6_delroute={0x24, 0x19, 0x1, 0x0, 0x0, {}, [@RTA_ENCAP_TYPE={0x6}]}, 0x24}}, 0x0) 08:11:24 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0xb000000, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:24 executing program 5: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$VT_RESIZE(r0, 0x5609, &(0x7f0000000000)={0x400}) 08:11:24 executing program 4: munmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000) msync(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1) 08:11:25 executing program 1: r0 = openat$full(0xffffff9c, &(0x7f0000000380)='/dev/full\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000000500)={0x2020}, 0xfffffd38) 08:11:25 executing program 2: r0 = openat$ttyS3(0xffffff9c, &(0x7f0000000040)='/dev/ttyS3\x00', 0x0, 0x0) ioctl$TCSETSW(r0, 0x5414, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "e872e1fbf3f1ad9f57a45166533be412a061bc"}) 08:11:25 executing program 3: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ttyS3\x00', 0x40100, 0x0) read$FUSE(r0, &(0x7f0000000140)={0x2020}, 0x2020) 08:11:25 executing program 5: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$VT_RESIZE(r0, 0x5609, &(0x7f0000000000)={0x400}) 08:11:25 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0xc000000, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:25 executing program 4: perf_event_open(&(0x7f0000000140)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 08:11:25 executing program 5: r0 = request_key(&(0x7f0000000300)='user\x00', &(0x7f0000000340)={'syz', 0x2}, &(0x7f0000000540)='\x00\x00\x00l\x1c\xa4\t\xe0\'\\\x84]\x85\xc6\xe5\xf3\xc1Vr~)B\x9c\"\xf1$\x94\x00\xe3\xa3\xa3\xe3\x17\xaa(c\xca\x1c\xf3+\x96\xb3\xd6\x80-S\x02\x94\xa2\buO\xf0\x01\xb2+\xcc\x12\x12?\x00\xc0', 0x0) request_key(&(0x7f0000000080)='user\x00', &(0x7f00000000c0)={'syz', 0x3}, &(0x7f0000000100)='[{/^--(\x00', r0) 08:11:25 executing program 2: pselect6(0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)={0x0}) 08:11:26 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0xd000000, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:26 executing program 4: syz_mount_image$fuse(0x0, 0x0, 0x0, 0x0, 0xc226000000000000, 0x0, 0x0) 08:11:26 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_GET_API_VERSION(r0, 0xae00, 0x0) 08:11:26 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000006000)={'ip_vti0\x00', &(0x7f0000000080)=ANY=[@ANYBLOB="72797a746e6c3f6ccd97320000000000", @ANYBLOB="00100020000038"]}) 08:11:26 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0xe000000, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:26 executing program 3: r0 = socket$nl_route(0x10, 0x3, 0x0) bind$netlink(r0, &(0x7f0000000000)={0x10, 0x0, 0x25dfdbfe}, 0xc) 08:11:26 executing program 4: syz_mount_image$fuse(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$fuseblk(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f0000000140)={{'fd'}, 0x2c, {'rootmode'}, 0x2c, {'user_id', 0x3d, 0xee00}, 0x2c, {'group_id', 0x3d, 0xee00}, 0x2c, {[], [{@rootcontext={'rootcontext', 0x3d, 'root'}}, {@fscontext={'fscontext', 0x3d, 'staff_u'}}]}}) 08:11:27 executing program 5: syz_mount_image$fuse(&(0x7f0000008940)='fuse\x00', &(0x7f0000008980)='./file0\x00', 0x0, 0x0, 0x0, 0x1801, &(0x7f000000ca40)={{'fd'}, 0x2c, {'rootmode'}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) 08:11:27 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x10000000, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:27 executing program 1: syz_mount_image$fuse(&(0x7f0000001b80)='fuse\x00', &(0x7f0000001bc0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000003c80)=ANY=[]) 08:11:27 executing program 2: openat$bsg(0xffffffffffffff9c, &(0x7f0000000a00)='/dev/bsg\x00', 0x104800, 0x0) 08:11:27 executing program 3: syz_usb_connect$printer(0x0, 0x2d, &(0x7f0000000000)={{0x12, 0x1, 0x250, 0x0, 0x0, 0x0, 0x20, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1}}]}}, &(0x7f0000000600)={0x0, 0x0, 0x8, &(0x7f0000000080)={0x5, 0xf, 0x8, 0x1, [@generic={0x3, 0x10, 0xa}]}}) 08:11:27 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$netlink(r0, &(0x7f00000058c0)={0x0, 0x0, &(0x7f0000005840)=[{&(0x7f0000000180)={0x10, 0x0, 0x310d}, 0x10}], 0x1}, 0x0) 08:11:27 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x11000000, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:27 executing program 5: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x11, 0x1, &(0x7f0000000040)=@raw=[@func={0x85, 0x0, 0x1, 0x0, 0xffffffff}], &(0x7f00000000c0)='GPL\x00', 0x4, 0xc1, &(0x7f0000000380)=""/193, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x74) 08:11:27 executing program 1: sigaltstack(&(0x7f0000455000/0x2000)=nil, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000440)='pagemap\x00') r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) sendfile(r1, r0, &(0x7f0000000040)=0x100060, 0xa808) 08:11:27 executing program 2: openat$bsg(0xffffffffffffff9c, &(0x7f00000019c0)='/dev/bsg\x00', 0x6b0802, 0x0) 08:11:28 executing program 4: r0 = socket$pppl2tp(0x18, 0x1, 0x1) ioctl$SIOCSIFMTU(r0, 0x8922, &(0x7f0000000000)={'netpci0\x00'}) [ 1000.728647][ T8867] usb 4-1: new high-speed USB device number 2 using dummy_hcd 08:11:28 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_WOL_SET(r0, &(0x7f0000000c80)={0x0, 0x0, &(0x7f0000000c40)={0x0, 0xa48}}, 0x0) [ 1000.979106][ T8867] usb 4-1: Using ep0 maxpacket: 32 08:11:28 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_WOL_SET(r0, &(0x7f0000000c80)={0x0, 0x0, &(0x7f0000000c40)={&(0x7f0000001f00)=ANY=[@ANYBLOB='H\n\x00\x00', @ANYRES16=0x0, @ANYBLOB="04"], 0xa48}}, 0x0) 08:11:28 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x12000000, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:28 executing program 2: pselect6(0x0, 0x0, &(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140)={&(0x7f0000000100)={[0x401]}, 0x8}) [ 1001.208738][ T8867] usb 4-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 1001.429681][ T8867] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 1001.439070][ T8867] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1001.447244][ T8867] usb 4-1: Product: syz [ 1001.454061][ T8867] usb 4-1: Manufacturer: syz [ 1001.459209][ T8867] usb 4-1: SerialNumber: syz 08:11:28 executing program 1: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_MSG_GETRULE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x7, 0xa, 0x301}, 0x14}}, 0x0) [ 1001.892071][ T8867] usb 4-1: USB disconnect, device number 2 [ 1002.688932][ T8867] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 1002.948706][ T8867] usb 4-1: Using ep0 maxpacket: 32 [ 1003.198733][ T8867] usb 4-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 08:11:30 executing program 3: r0 = syz_mount_image$ext4(0x0, &(0x7f00000008c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=ANY=[]) perf_event_open(&(0x7f00000003c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x204400, 0x8) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000540)={{{@in=@local, @in6=@remote}}, {{@in=@local}, 0x0, @in=@loopback}}, 0x0) statx(r0, &(0x7f0000000380)='./file1\x00', 0x6000, 0x0, &(0x7f0000009a00)) lsetxattr$system_posix_acl(0x0, 0x0, 0x0, 0x0, 0x2) ioctl$KVM_SET_LAPIC(r3, 0x4008ae89, &(0x7f0000000640)={"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"}) pivot_root(0x0, 0x0) 08:11:30 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f0000000080)) ioctl$KVM_SET_PIT(r3, 0xae60, 0x0) 08:11:30 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000006000)={'ip_vti0\x00', &(0x7f0000000080)=ANY=[]}) 08:11:30 executing program 2: pselect6(0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)={0x0}) clock_getres(0x3, &(0x7f0000000180)) 08:11:30 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x25000000, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:30 executing program 1: mount$fuseblk(&(0x7f0000000000)='/dev/loop0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='fuseblk\x00', 0x0, &(0x7f0000000340)=ANY=[]) [ 1003.412309][ T8867] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 1003.421908][ T8867] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1003.430160][ T8867] usb 4-1: Product: syz [ 1003.434430][ T8867] usb 4-1: Manufacturer: syz [ 1003.608592][ T8867] usb 4-1: can't set config #1, error -71 [ 1003.648847][ T8867] usb 4-1: USB disconnect, device number 3 08:11:31 executing program 1: bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x2, [@union, @struct={0x0, 0x1, 0x0, 0x4, 0x0, 0x0, [{0xb}]}]}}, 0x0, 0x3e}, 0x20) 08:11:31 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x5c000000, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:31 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/psched\x00') read$FUSE(r0, 0x0, 0x0) 08:11:31 executing program 4: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='loginuid\x00') read(r0, &(0x7f0000000040)=""/17, 0x11) 08:11:31 executing program 3: pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) clock_getres(0x0, &(0x7f0000000180)) 08:11:31 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0xff000000, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:31 executing program 1: perf_event_open$cgroup(&(0x7f00000002c0)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb9}, 0xffffffffffffffff, 0x7, 0xffffffffffffffff, 0x0) 08:11:31 executing program 5: r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000200)='/dev/bsg\x00', 0x452301, 0x0) read$FUSE(r0, 0x0, 0x0) 08:11:31 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000001580)=@newtfilter={0xec8, 0x2c, 0x8, 0x70bd2c, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0xc, 0x1}, {0x0, 0xb}, {0x6, 0x2}}, [@TCA_CHAIN={0x8, 0xb, 0x9}, @filter_kind_options=@f_route={{0xa, 0x1, 'route\x00'}, {0xcd0, 0x2, [@TCA_ROUTE4_ACT={0xa4, 0x6, [@m_ct={0xa0, 0x0, 0x0, 0x0, {{0x7, 0x1, 'ct\x00'}, {0x64, 0x2, 0x0, 0x1, [@TCA_CT_ZONE={0x6, 0x4, 0xae69}, @TCA_CT_MARK_MASK={0x8, 0x6, 0x8}, @TCA_CT_PARMS={0x18, 0x1, {0x80, 0x80000001, 0x1, 0xa6}}, @TCA_CT_LABELS_MASK={0x14, 0x8, "445b4ac2816c45cf1f3410ce964fbbe7"}, @TCA_CT_ACTION={0x6, 0x3, 0x7}, @TCA_CT_ZONE={0x6, 0x4, 0xffc0}, @TCA_CT_NAT_IPV6_MAX={0x14, 0xc, @rand_addr=' \x01\x00'}]}, {0x16, 0x6, "b760753cda4fb945d2a9493a51bc2e03df70"}, {0xc}, {0xc, 0x8, {0x1, 0x5}}}}]}, @TCA_ROUTE4_POLICE={0xc28, 0x5, [@TCA_POLICE_RESULT={0x8, 0x5, 0x7fff}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x1}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x6}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x8, 0x1f, 0x7fffffff, 0x6f3a, 0x8001, 0x200, 0x3, 0x5, 0x8, 0x7, 0x9, 0x9, 0x7, 0x2, 0x82, 0x4, 0x80, 0x0, 0x1, 0x7f, 0x80, 0x8001, 0x100, 0x8, 0x2a000, 0x0, 0x6, 0xff, 0x8, 0x0, 0x260, 0x3, 0x3f, 0x400, 0x7fffffff, 0x7ff, 0x0, 0x800, 0x1, 0x3, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x718, 0x5c89, 0x81, 0x2, 0x24, 0x7fff, 0x9, 0x0, 0x8001, 0x3f, 0x1, 0x3, 0x1000, 0x4737, 0x7, 0x0, 0x0, 0x0, 0x4, 0x3ae, 0x1e1, 0x8000, 0x5, 0x1, 0x2, 0xd3, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x1ff, 0x200, 0x7, 0x2, 0xea, 0x1, 0x7, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xae9100, 0x3923af4d, 0x3, 0xffff0764, 0x800, 0x3, 0x5, 0x0, 0x3f, 0x7, 0x8, 0x0, 0x1, 0x0, 0x4, 0x0, 0x5, 0x0, 0x6a12e719, 0x86, 0x3, 0x1, 0x3, 0x8, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38, 0x400, 0x4, 0x0, 0xc38, 0x1, 0x3, 0x0, 0x8, 0xfffffffa, 0x1, 0x4, 0x3, 0x8, 0x1996, 0x4, 0x2, 0x6, 0x4, 0x8000, 0x8, 0x0, 0x2, 0x100, 0x7fff, 0x8, 0xfffff19f, 0x0, 0x3f, 0x0, 0x8, 0x8, 0x80000001, 0x7ff, 0x401, 0x3, 0x1, 0x1, 0x100, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f, 0xfffffff7, 0x8000, 0x5604, 0xce27, 0x100, 0xffffffff, 0x80000, 0x5]}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x5e4, 0x7f, 0x8, 0x0, 0x2, 0x6, 0x20, 0x5, 0x7f, 0xffffffff, 0x7f, 0x2, 0x6, 0x0, 0x10001, 0x0, 0x2, 0x80000000, 0x765a, 0x80, 0x4, 0x0, 0x200, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0x2, 0x3, 0x6, 0x1d76a86a, 0x6, 0x9, 0x80f, 0x7, 0x3f, 0xfffffffe, 0x28, 0x80, 0x1, 0x6, 0x6, 0xfffffff8, 0x8, 0xc28, 0x7f00, 0x33, 0x14, 0x7fffffff, 0x8000, 0x10000, 0x27f5, 0xccb, 0xf, 0x31f946f8, 0x1, 0x5, 0x6, 0x3f, 0xa6, 0x7, 0x7fff, 0x7fffffff, 0x2, 0x1ff, 0x7fff, 0x47, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x80000000, 0x1000, 0x0, 0x0, 0xfff, 0x2, 0x0, 0x0, 0x0, 0x4, 0x8d13, 0x1, 0x0, 0x0, 0x3, 0x4, 0x2, 0x4, 0x2, 0x401, 0x0, 0x0, 0x7, 0x0, 0xffffffff, 0x0, 0x4, 0x3, 0xfffffffc, 0x5, 0xcfd, 0x6, 0x0, 0x7, 0xfffffffb, 0x40, 0x3ff, 0xc8, 0x8, 0x80000000, 0x200, 0x7, 0x7f52, 0x8000, 0x6, 0x4bd, 0x2, 0x7fff, 0x3, 0x9, 0x7, 0x8, 0x3f, 0xf033, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x99d, 0x5d8, 0x9, 0xd5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x78a7, 0x6, 0x1b, 0x9, 0x2, 0x2, 0x101, 0x0, 0x9, 0x4, 0x0, 0x8, 0x5, 0x7fffffff, 0xd9d9, 0x2b55b58, 0x8000, 0x8000, 0x7, 0x1, 0x3, 0x7fff, 0x7, 0x0, 0x0, 0x9, 0x1f, 0x80000000, 0x3, 0x5, 0xf7c7, 0x1f, 0x0, 0xc695, 0x81, 0x3f, 0x9, 0x1, 0xffff, 0x9, 0x8, 0x2, 0xfffffffe, 0x5, 0xe55, 0x0, 0x0, 0x100, 0xfffff800, 0xffffffe0, 0x8, 0x2, 0x1a74, 0x200, 0x8, 0x10000, 0x3, 0x59f7, 0x400, 0x74, 0x6, 0x8, 0x7, 0x8, 0x0, 0x0, 0x8000, 0x5, 0x80000000, 0x1, 0x4, 0x8]}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x7, 0x3352, 0x10000, 0x6, 0x80000001, 0x8, 0xeb, 0x1000, 0x9, 0x2, 0x6, 0x10001, 0x79, 0x7, 0x80000001, 0x9, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0x8, 0x9, 0x4, 0x4, 0x0, 0x3, 0x0, 0x8, 0x7, 0xa1d, 0xa50, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x5, 0x7f, 0x8000000, 0x1, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x96, 0x2b, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x52, 0x7ff, 0x8, 0x3d82a962, 0x1ff, 0x1b300000, 0x6, 0x40, 0x3, 0x4, 0x7, 0x400, 0x5e9, 0x0, 0xfff, 0x6, 0x8001, 0x3, 0x3ff, 0x6, 0x3f, 0xd9, 0x8, 0x0, 0x7, 0x87e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x7, 0x1, 0x401, 0x4000000, 0x4, 0xfff, 0x0, 0x0, 0x7ff, 0x4, 0x3e, 0x1, 0x80, 0x3f, 0x0, 0x100]}]}]}}, @filter_kind_options=@f_bpf={{0x8, 0x1, 'bpf\x00'}, {0x198, 0x2, [@TCA_BPF_ACT={0x194, 0x1, [@m_sample={0x30, 0x0, 0x0, 0x0, {{0xb, 0x1, 'sample\x00'}, {0x4}, {0x4}, {0xc}, {0xc}}}, @m_xt={0x160, 0xa, 0x0, 0x0, {{0x7, 0x1, 'xt\x00'}, {0x108, 0x2, 0x0, 0x1, [@TCA_IPT_TARG={0x103, 0x6, {0xd4c, 'nat\x00', 0x0, 0x2, "283e19b75de973da22529c5c15ef22b1408c972cc1da15aa7e579461ae7c3673755bbe017c24d50f39d7012d5558612b6a019576782b01cefa6affd4eae7d927df938db593d9b4d9f2667ce4789ef9bf253fa0db6334c477b19f5e94f9da1693d7b701a18b806fb926b456ec6c6e6f58e4876d62039de8fe2aef2190f1a44ffce66678cdb90f7cd8935ebe4c6e2e0938e55de070f5245a1b78bbf1de44427b89a363913536fd054ccd7ae009fb3b94dfb6e4b8ecd86f0c0649075180778214709c4c5d431bcd546293f0c7d12a8e9f92aca9287a719ab60ddd"}}]}, {0x32, 0x6, "6704962e344920080f5f388b3a38b8f8264951a2ed5be231bc1959f39839b27ccad98c84fc1d121ab58f676ede36"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x2}}}}]}]}}, @filter_kind_options=@f_cgroup={{0xb, 0x1, 'cgroup\x00'}, {0x4}}, @TCA_RATE={0x6, 0x5, {0x8, 0x16}}, @TCA_CHAIN={0x8, 0xb, 0x1f}]}, 0xec8}, 0x1, 0x0, 0x0, 0x40}, 0x0) 08:11:32 executing program 2: socket$inet(0x2, 0x0, 0x80000000) 08:11:32 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x0, 0x0, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:32 executing program 1: perf_event_open$cgroup(&(0x7f00000000c0)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) getresgid(&(0x7f0000002440), &(0x7f0000002480), &(0x7f00000024c0)) 08:11:32 executing program 5: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000080)=@ipv6_delroute={0x1c, 0x19, 0x1, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1200}}, 0x1c}}, 0x0) 08:11:32 executing program 2: r0 = openat$bsg(0xffffffffffffff9c, &(0x7f00000019c0)='/dev/bsg\x00', 0x6b0802, 0x0) openat$cgroup_devices(r0, &(0x7f0000001c80)='devices.allow\x00', 0x2, 0x0) 08:11:32 executing program 4: r0 = timerfd_create(0x7, 0x0) timerfd_settime(r0, 0x0, &(0x7f0000000200)={{}, {0x0, 0x989680}}, 0x0) 08:11:32 executing program 1: pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000000080), 0x0, 0x0) 08:11:33 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x2, 0x0, @ipv4={[], [], @local}}, 0x1c) listen(r0, 0xb9) r1 = socket$inet_tcp(0x2, 0x1, 0x0) connect$inet(r1, &(0x7f0000000040)={0x2, 0x2, @local}, 0x10) 08:11:33 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x0, 0x2, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:33 executing program 5: r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000200)='/dev/bsg\x00', 0x452301, 0x0) ioctl$ASHMEM_SET_PROT_MASK(r0, 0x40087705, 0x0) 08:11:33 executing program 2: syz_mount_image$fuse(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$fuse(0x0, &(0x7f0000000000)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 08:11:33 executing program 4: perf_event_open$cgroup(&(0x7f00000000c0)={0x0, 0x20000130, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 08:11:33 executing program 5: syz_mount_image$fuse(&(0x7f0000008940)='fuse\x00', &(0x7f0000008980)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f000000ca40)={{'fd'}, 0x2c, {'rootmode'}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) 08:11:33 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x0, 0x3, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:33 executing program 2: bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000580)=@bpf_lsm={0x1d, 0x3, &(0x7f00000003c0)=@framed, &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) 08:11:33 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000000)={@private1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x20) 08:11:33 executing program 3: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000001580)=@newtfilter={0xec4, 0x2c, 0x0, 0x0, 0x0, {}, [@TCA_CHAIN={0x8, 0xb, 0x9}, @filter_kind_options=@f_route={{0xa, 0x1, 'route\x00'}, {0xcec, 0x2, [@TCA_ROUTE4_ACT={0xa4, 0x6, [@m_ct={0xa0, 0x13, 0x0, 0x0, {{0x7, 0x1, 'ct\x00'}, {0x64, 0x2, 0x0, 0x1, [@TCA_CT_ZONE={0x6, 0x4, 0xae69}, @TCA_CT_MARK_MASK={0x8, 0x6, 0x8}, @TCA_CT_PARMS={0x18, 0x1, {0x80, 0x80000001, 0x1, 0xa6, 0x3}}, @TCA_CT_LABELS_MASK={0x14, 0x8, "445b4ac2816c45cf1f3410ce964fbbe7"}, @TCA_CT_ACTION={0x6, 0x3, 0x7}, @TCA_CT_ZONE={0x6, 0x4, 0xffc0}, @TCA_CT_NAT_IPV6_MAX={0x14, 0xc, @rand_addr=' \x01\x00'}]}, {0x16, 0x6, "b760753cda4fb945d2a9493a51bc2e03df70"}, {0xc}, {0xc, 0x8, {0x1, 0x5}}}}]}, @TCA_ROUTE4_POLICE={0xc3c, 0x5, [@TCA_POLICE_RESULT={0x8}, @TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x2, 0x101, 0x0, 0x9, 0x4, 0x0, 0x8, 0x5, 0x7fffffff, 0xd9d9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x2, 0xfffffffe, 0x5, 0xe55, 0x2, 0x9, 0x100, 0xfffff800, 0xffffffe0, 0x8, 0x2, 0x1a74, 0x200, 0x8, 0x10000, 0x3, 0x59f7, 0x400, 0x74, 0x6, 0x8, 0x7, 0x8, 0x8, 0xffff, 0x8000, 0x5, 0x80000000]}, @TCA_POLICE_PEAKRATE64={0xc}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x3d82a962, 0x1ff, 0x1b300000, 0x6, 0x40, 0x3, 0x4, 0x7, 0x400, 0x5e9, 0x7f, 0xfff, 0x6, 0x8001, 0x3, 0x3ff, 0x6, 0x3f, 0xd9, 0x8, 0x0, 0x7, 0x87e, 0x6, 0x80000000, 0x7fff, 0x0, 0x20, 0x5, 0x6, 0x0, 0x4, 0x2, 0x5, 0x20, 0x5, 0x0, 0x6, 0x3, 0x70, 0x3, 0xeed0, 0x4, 0x0, 0x4, 0x7f, 0x6, 0x7, 0x1, 0x401, 0x4000000, 0x4, 0xfff, 0x5, 0x0, 0x7ff, 0x4, 0x3e, 0x1, 0x0, 0x3f, 0x0, 0x100, 0x72a18d5, 0xebd, 0x1f, 0x9a, 0x8, 0x39, 0x3, 0xd612, 0x5, 0x7fffffff, 0x9, 0x5, 0x8000, 0xffff8e25, 0xfffff108, 0x5, 0x3ff, 0x3, 0x0, 0x0, 0x1, 0x8, 0x6, 0x10001, 0x267b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, 0x7, 0x9, 0xbb5c, 0xfff]}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x1}]}, @TCA_ROUTE4_CLASSID={0x8, 0x1, {0xffe0, 0x3}}]}}, @filter_kind_options=@f_bpf={{0x8, 0x1, 'bpf\x00'}, {0x104, 0x2, [@TCA_BPF_ACT={0x100, 0x1, [@m_sample={0x30, 0x0, 0x0, 0x0, {{0xb, 0x1, 'sample\x00'}, {0x4}, {0x4}, {0xc}, {0xc}}}, @m_ife={0x48, 0x7, 0x0, 0x0, {{0x8, 0x1, 'ife\x00'}, {0x10, 0x2, 0x0, 0x1, [@TCA_IFE_METALST={0x4}, @TCA_IFE_METALST={0x8, 0x6, [@IFE_META_TCINDEX={0x4, 0x5, @void}]}]}, {0x11, 0x6, "7d8b031db69798ba927a4a7aae"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x2}}}}, @m_tunnel_key={0x84, 0x1b, 0x0, 0x0, {{0xf, 0x1, 'tunnel_key\x00'}, {0x14, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_NO_CSUM={0x5, 0xa, 0x1}, @TCA_TUNNEL_KEY_ENC_DST_PORT={0x6, 0x9, 0x4e21}]}, {0x42, 0x6, "48f44d75d21119f1acef1cdfa322bff6df737b60839cc86a9f16282e36ccf29627845d26435d43166bcbeed454b241c9b9546e967c67427b087112f3e5ea"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x2}}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x25, 0x16}}, @TCA_RATE={0x6, 0x5, {0x6, 0x1}}, @filter_kind_options=@f_cgroup={{0xb, 0x1, 'cgroup\x00'}, {0x78, 0x2, [@TCA_CGROUP_ACT={0x74, 0x1, [@m_vlan={0x30, 0x0, 0x0, 0x0, {{0x9, 0x1, 'vlan\x00'}, {0x4}, {0x4}, {0xc}, {0xc}}}, @m_ctinfo={0x40, 0x0, 0x0, 0x0, {{0xb, 0x1, 'ctinfo\x00'}, {0x4}, {0x11, 0x6, "7c118f3e89f0b2680944e34360"}, {0xc}, {0xc}}}]}]}}]}, 0xec4}, 0x1, 0x0, 0x0, 0x40}, 0x0) [ 1006.552407][T19398] fuse: Bad value for 'fd' [ 1006.563395][T19398] fuse: Bad value for 'fd' 08:11:34 executing program 5: r0 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1) sendmsg$nfc_llcp(r0, &(0x7f00000004c0)={&(0x7f0000000180)={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "2d8cefcf0c0478b59b86da20d2f3b250b4e4d4676f152e0e9b3223eb516a99aa59e167c78c63378d6e8ae5972d18ad06088051b8a33ba5fa8bf00ec73b8550"}, 0x60, &(0x7f0000000380)=[{0x0}, {0x0}], 0x2, &(0x7f00000003c0)={0x10}, 0x10}, 0x0) 08:11:34 executing program 1: openat$ashmem(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ashmem\x00', 0x84c0, 0x0) 08:11:34 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x0, 0x4, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:34 executing program 4: r0 = socket$pppl2tp(0x18, 0x1, 0x1) ioctl$SIOCGIFMTU(r0, 0x8921, &(0x7f0000000740)={'bond_slave_0\x00'}) 08:11:34 executing program 2: r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000004a80)='/dev/fuse\x00', 0x2, 0x0) syz_mount_image$fuse(&(0x7f0000000000)='fuse\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_INVAL_ENTRY(r0, &(0x7f0000000080)={0x26, 0x3, 0x0, {0x0, 0x5, 0x0, 'fuse\x00'}}, 0x26) 08:11:34 executing program 3: mprotect(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2) mlock(&(0x7f0000ffc000/0x4000)=nil, 0x4000) madvise(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0) mlock(&(0x7f0000ffd000/0x2000)=nil, 0x2000) 08:11:34 executing program 5: r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000200)='/dev/bsg\x00', 0x0, 0x0) perf_event_open$cgroup(&(0x7f00000000c0)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 08:11:34 executing program 4: getgroups(0x1, &(0x7f0000002040)=[0xffffffffffffffff]) 08:11:34 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x0, 0x5, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:34 executing program 1: r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) bind$nfc_llcp(r0, &(0x7f0000000400)={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "6488bee566e286558bd33004d64e9e6b1eb0c79f53a909a73fcec9f5fbaa6622000000000004005709dd91bd0f4e0df47f3aa2a3ba6b0e13e55dd1e74500"}, 0x60) 08:11:34 executing program 2: perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2409, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 08:11:34 executing program 3: r0 = socket$inet_udp(0x2, 0x2, 0x0) sendmmsg$inet(r0, &(0x7f0000000bc0)=[{{&(0x7f0000000340)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x27}}, 0x10, 0x0, 0x0, &(0x7f0000000600)=[@ip_tos_int={{0x14}}], 0x18}}, {{&(0x7f0000000640)={0x2, 0x4e24, @private}, 0x10, 0x0, 0x0, &(0x7f0000000880)=[@ip_ttl={{0x14, 0x0, 0x2, 0x3}}, @ip_tos_int={{0x14, 0x0, 0x1, 0xfff}}], 0x30}}], 0x2, 0x44) 08:11:35 executing program 5: r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bsg\x00', 0x2880c0, 0x0) read$FUSE(r0, 0x0, 0x0) 08:11:35 executing program 4: r0 = socket(0x1, 0x2, 0x0) sendmsg$ETHTOOL_MSG_PAUSE_GET(r0, &(0x7f0000000280)={&(0x7f0000000000), 0xc, &(0x7f0000000240)={0x0}}, 0x0) 08:11:35 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000500)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000004c0)={&(0x7f0000001580)=@newtfilter={0x1ec4, 0x2c, 0x0, 0x0, 0x0, {}, [@TCA_CHAIN={0x8}, @filter_kind_options=@f_route={{0xa, 0x1, 'route\x00'}, {0xcfc, 0x2, [@TCA_ROUTE4_ACT={0xa4, 0x6, [@m_ct={0xa0, 0x0, 0x0, 0x0, {{0x7, 0x1, 'ct\x00'}, {0x64, 0x2, 0x0, 0x1, [@TCA_CT_ZONE={0x6}, @TCA_CT_MARK_MASK={0x8}, @TCA_CT_PARMS={0x18}, @TCA_CT_LABELS_MASK={0x14, 0x8, "445b4ac2816c45cf1f3410ce964fbbe7"}, @TCA_CT_ACTION={0x6}, @TCA_CT_ZONE={0x6}, @TCA_CT_NAT_IPV6_MAX={0x14, 0xc, @rand_addr=' \x01\x00'}]}, {0x15, 0x6, "b760753cda4fb945d2a9493a51bc2e03df"}, {0xc}, {0xc}}}]}, @TCA_ROUTE4_POLICE={0xc3c, 0x5, [@TCA_POLICE_RESULT={0x8}, @TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_PEAKRATE64={0xc}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_AVRATE={0x8}]}, @TCA_ROUTE4_CLASSID={0x8}, @TCA_ROUTE4_CLASSID={0x8}, @TCA_ROUTE4_IIF={0x8}]}}, @filter_kind_options=@f_bpf={{0x8, 0x1, 'bpf\x00'}, {0x9a8, 0x2, [@TCA_BPF_ACT={0x4e8, 0x1, [@m_vlan={0x138, 0x0, 0x0, 0x0, {{0x9, 0x1, 'vlan\x00'}, {0x1c, 0x2, 0x0, 0x1, [@TCA_VLAN_PUSH_VLAN_PROTOCOL={0x6}, @TCA_VLAN_PUSH_VLAN_PROTOCOL={0x6}, @TCA_VLAN_PUSH_VLAN_ID={0x6}]}, {0xf1, 0x6, "543f416ac51c6c3ed5065921eb8e5f790ce90654a0be3cfbdfc298a3087c6ccf701b74561e44c0f2b9f53f5d22f3d157eb75fe8effa4466d9c5857bab66b5f50dddb065e17b6871dfee71625eed62d4849ecd6ca27efb1592a65cd340b349bd64cc4b005b1e206927b15fa4907758eeb62047bf123e7acf7dd45ab1d5980a93822105509181a5c6df2b3bdd2e22ed78c234546a4701ec14abca8f97ad75c8094caf21cd131af20db796395e96d5e8ea794fa38d5d003e0025f150b18bc9e9d0a2af3caf3c9f2022358a7992aebcc685a654c0bf6c2ed05480407d25d7f54acc951a74fcb3d8b2ef702ea89b43a"}, {0xc}, {0xc}}}, @m_sample={0x124, 0x0, 0x0, 0x0, {{0xb, 0x1, 'sample\x00'}, {0x2c, 0x2, 0x0, 0x1, [@TCA_SAMPLE_RATE={0x8}, @TCA_SAMPLE_PSAMPLE_GROUP={0x8}, @TCA_SAMPLE_PARMS={0x18}]}, {0xcd, 0x6, "fb3eb7c17f06528a58e3dd89d4cdb2dd1f1a105f199c831ac0f26af935283950a1bcc341331838cb3024386010aad75de7e8bb09d3af4a2916274e25c89c53484ccde9f211b9a5b7874a90c702273e8d331e7393f2f0336c3f8de700c6acee7c8e675f01988eb08c12a01e6b3e34906f3f749129adc62dedb8cb7bd8a820d7073483b19c3f148449f52dec3792eeeea08a2472613f6b8583f0615967ffa78942be68c918f3b9f632a68e680b14f8a9dc29f9dc7fd39d271a4ece45183c563d5f7e532a6cd6726190db"}, {0xc}, {0xc}}}, @m_xt={0x160, 0x0, 0x0, 0x0, {{0x7, 0x1, 'xt\x00'}, {0x108, 0x2, 0x0, 0x1, [@TCA_IPT_TARG={0x101, 0x6, {0x0, 'nat\x00', 0x0, 0x0, "283e19b75de973da22529c5c15ef22b1408c972cc1da15aa7e579461ae7c3673755bbe017c24d50f39d7012d5558612b6a019576782b01cefa6affd4eae7d927df938db593d9b4d9f2667ce4789ef9bf253fa0db6334c477b19f5e94f9da1693d7b701a18b806fb926b456ec6c6e6f58e4876d62039de8fe2aef2190f1a44ffce66678cdb90f7cd8935ebe4c6e2e0938e55de070f5245a1b78bbf1de44427b89a363913536fd054ccd7ae009fb3b94dfb6e4b8ecd86f0c0649075180778214709c4c5d431bcd546293f0c7d12a8e9f92aca9287a719ab6"}}]}, {0x31, 0x6, "6704962e344920080f5f388b3a38b8f8264951a2ed5be231bc1959f39839b27ccad98c84fc1d121ab58f676ede"}, {0xc}, {0xc}}}, @m_ife={0x9c, 0x0, 0x0, 0x0, {{0x8, 0x1, 'ife\x00'}, {0x64, 0x2, 0x0, 0x1, [@TCA_IFE_TYPE={0x6}, @TCA_IFE_SMAC={0xa, 0x4, @dev}, @TCA_IFE_METALST={0x4}, @TCA_IFE_SMAC={0xa, 0x4, @remote}, @TCA_IFE_METALST={0x34, 0x6, [@IFE_META_SKBMARK={0x4, 0x1, @void}, @IFE_META_TCINDEX={0x6}, @IFE_META_PRIO={0x4, 0x3, @void}, @IFE_META_SKBMARK={0x4, 0x1, @void}, @IFE_META_TCINDEX={0x4, 0x5, @void}, @IFE_META_TCINDEX={0x4, 0x5, @void}, @IFE_META_TCINDEX={0x6}, @IFE_META_TCINDEX={0x4, 0x5, @void}, @IFE_META_PRIO={0x8}]}, @TCA_IFE_METALST={0x8, 0x6, [@IFE_META_TCINDEX={0x4, 0x5, @void}]}]}, {0x11, 0x6, "7d8b031db69798ba927a4a7aae"}, {0xc}, {0xc}}}, @m_tunnel_key={0x8c, 0x0, 0x0, 0x0, {{0xf, 0x1, 'tunnel_key\x00'}, {0x1c, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_NO_CSUM={0x5}, @TCA_TUNNEL_KEY_ENC_IPV4_SRC={0x8, 0x3, @private}, @TCA_TUNNEL_KEY_ENC_DST_PORT={0x6}]}, {0x41, 0x6, "48f44d75d21119f1acef1cdfa322bff6df737b60839cc86a9f16282e36ccf29627845d26435d43166bcbeed454b241c9b9546e967c67427b087112f3e5"}, {0xc}, {0xc}}}]}, @TCA_BPF_POLICE={0x4bc, 0x2, [@TCA_POLICE_TBF={0x3c}, @TCA_POLICE_PEAKRATE={0x404}, @TCA_POLICE_RESULT={0x8}, @TCA_POLICE_RATE64={0xc}, @TCA_POLICE_PEAKRATE64={0xc}, @TCA_POLICE_TBF={0x3c}, @TCA_POLICE_RESULT={0x8}, @TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_PEAKRATE64={0xc}]}]}}, @TCA_RATE={0x6}, @TCA_RATE={0x6}, @TCA_CHAIN={0x8}, @filter_kind_options=@f_cgroup={{0xb, 0x1, 'cgroup\x00'}, {0x7bc, 0x2, [@TCA_CGROUP_ACT={0x7b8, 0x1, [@m_ipt={0x278, 0x0, 0x0, 0x0, {{0x8, 0x1, 'ipt\x00'}, {0x1a4, 0x2, 0x0, 0x1, [@TCA_IPT_TARG={0x119, 0x6, {0x0, 'filter\x00', 0x0, 0x0, "8c31fb8fe47c5f6c3d5a592f9d9d3958fef1e093838556afa5d9461f09522fc004acffe87823d8819cfee2ab17ef1d8d6ac438bd9ec3f9aa5e2c0a10c386723c27995e1497be095c2a0baeeedd32cb5c7a0dff79fec9e58670d8c5caacfed104bd196c45ec5ba3bd3bcd9ec99fe2f17904ea323160775ac9e863da772f18ef333e7b61cfd9475c5515c7e6951cdd6e328e86410f76c026a34a3ec9aeceb2187a8f24740a0d054f8173cc2e1bc7b7c234a13c2cd155bfd32e6f74394c44bf3727d46587d97e073fe61ec222b48e7c1b36acedd31d51e8e605918c720c2a6fcd70d76da53e1efdcc4a48e6b61045730a"}}, @TCA_IPT_INDEX={0x8}, @TCA_IPT_TARG={0x4d, 0x6, {0x0, 'nat\x00', 0x0, 0x0, "563f87b3e01d61565699957b1f433152812b088f969dff108adabbb5c2770e34127d70"}}, @TCA_IPT_TABLE={0x24, 0x1, 'filter\x00'}, @TCA_IPT_HOOK={0x8}]}, {0xad, 0x6, "409281e60213774d2b1b6fee12cc0a81602abc2d3f35dee3209c0c2155b6ef1b343d968da255bad775a04cb826e725df07d09c724b9029656a4259fe51c5a8f14cc5e69cecef212e503a9c8f4d46c35262c42883756983d0df62817d0d19e5b2345f82552e8dd3b30d2c2b7b2b245bf6625e4393c162fd463102e99f5c4759fc110cc722bdccc2cc0ad16da503568aa5dad55a34685db75cc9017b1604c3bed2cc3392411a32a93f38"}, {0xc}, {0xc}}}, @m_sample={0x140, 0x0, 0x0, 0x0, {{0xb, 0x1, 'sample\x00'}, {0x54, 0x2, 0x0, 0x1, [@TCA_SAMPLE_RATE={0x8}, @TCA_SAMPLE_RATE={0x8}, @TCA_SAMPLE_TRUNC_SIZE={0x8}, @TCA_SAMPLE_PARMS={0x18}, @TCA_SAMPLE_PSAMPLE_GROUP={0x8}, @TCA_SAMPLE_TRUNC_SIZE={0x8}, @TCA_SAMPLE_TRUNC_SIZE={0x8}, @TCA_SAMPLE_RATE={0x8}]}, {0xc1, 0x6, "a67c06b3488a3aadb6cf2f7b169d15bf535078cff76073615e56e999b1260c4f207d6e721760a835df4aed61fa7bd7fe6b230c244d022c5ed8712699706786c719322ffd0c33a454764a1b351a00d3a122e474e63e51d5bbf50a86323d7e4ab3e0bba1bcef5145cbeaea50438a8dc5e9621c0bfc4110cc4b23ce5cb855ee4cd11414054a86494c505b6194065232330509e69e1596760a7fe4a5da8f5802d7d007d3a493edb17712052fb035bb5db710b816059ac995f4e222830abfeb"}, {0xc}, {0xc}}}, @m_sample={0xb0, 0x0, 0x0, 0x0, {{0xb, 0x1, 'sample\x00'}, {0x6c, 0x2, 0x0, 0x1, [@TCA_SAMPLE_TRUNC_SIZE={0x8}, @TCA_SAMPLE_PARMS={0x18}, @TCA_SAMPLE_PARMS={0x18}, @TCA_SAMPLE_RATE={0x8}, @TCA_SAMPLE_TRUNC_SIZE={0x8}, @TCA_SAMPLE_TRUNC_SIZE={0x8}, @TCA_SAMPLE_PSAMPLE_GROUP={0x8}, @TCA_SAMPLE_PSAMPLE_GROUP={0x8}, @TCA_SAMPLE_PSAMPLE_GROUP={0x8}]}, {0x19, 0x6, "a4e3243159d416ab4d6ccd51a373771ec19f612bce"}, {0xc}, {0xc}}}, @m_mirred={0xec, 0x0, 0x0, 0x0, {{0xb, 0x1, 'mirred\x00'}, {0x64, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20}, @TCA_MIRRED_PARMS={0x20}, @TCA_MIRRED_PARMS={0x20}]}, {0x5d, 0x6, "f7d7bccf14b6c5f768b7583af74ca36fb1db01b2e6eb5c303d4d3c93eaab3b6fb4e2db118f4da10f16aa57082029e263f6a7a395fd2817f7a506b3ba5b4f9141c57ba612b22532ae6be7f6f41e9c67906cde870cd4559ce1cf"}, {0xc}, {0xc}}}, @m_gact={0x7c, 0x0, 0x0, 0x0, {{0x9, 0x1, 'gact\x00'}, {0x4}, {0x4d, 0x6, "263b73516309f1695986af774ed11870b3838ec11b6fa2ce62fab81901d4a09a15d0393473db3668e61c1cb50ac23836647ee34ccf4b22a6157e36c7b7ea9fcde263a27ae60b9e0443"}, {0xc}, {0xc}}}, @m_bpf={0xfc, 0x0, 0x0, 0x0, {{0x8, 0x1, 'bpf\x00'}, {0x18, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_FD={0x8}, @TCA_ACT_BPF_NAME={0xc, 0x6, './file0\x00'}]}, {0xbd, 0x6, "0beae47302b5aaf5e1502f6777d2c1cfc7e92aa47d452a5d3defd551d90f9e0a89efca9dab431adca9aea3c66d95f6fa42bac4a95a316c35b4240fd3de13904a5eab61ce9e05ffe34f73a40e43711d3e7e79aae27c8cbbc2b91611dac04bdffdc80259bdf0b1bcaf364dbc58bc7321ae8df3f8b7a9dfd552998e50c983be8a86e74dbe8adcaabc1b94ebaae19217af49ed77a230284e4b07927d3a022b590f4edb7bc69161227eb60fc20ba5bcfea26a9e4a371873b444baf7"}, {0xc}, {0xc}}}, @m_vlan={0xe8, 0x0, 0x0, 0x0, {{0x9, 0x1, 'vlan\x00'}, {0x1c, 0x2, 0x0, 0x1, [@TCA_VLAN_PUSH_VLAN_PRIORITY={0x5}, @TCA_VLAN_PUSH_VLAN_PRIORITY={0x5}, @TCA_VLAN_PUSH_VLAN_PRIORITY={0x5}]}, {0xa1, 0x6, "524adaee8bbd2714d8492237ebd5b896fd1906b05fe0cb7b8a6125ca40f2dc0434729747490cf99a4ac5eb6676a11bd252e5f58393ef5f41bc1e1e82343108b114ad27c0509e18804f50fa98e2cfc374478bf327aff882a8815de5074595938a40d2a42b4ec671f0343529662c92e2bb1027a20105b38587a8781b9154344d73830ffdbaa635d0b35cc6e0c5c2e596aac2a7b351ea3b54eaa9593ca070"}, {0xc}, {0xc}}}]}]}}]}, 0x1ec4}}, 0x0) 08:11:35 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x0, 0x6, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:35 executing program 2: perf_event_open$cgroup(&(0x7f00000000c0)={0x8, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 08:11:35 executing program 3: syz_open_procfs$namespace(0x0, &(0x7f0000002080)='ns/user\x00') 08:11:35 executing program 5: openat$bsg(0xffffffffffffff9c, &(0x7f0000000180)='/dev/bsg\x00', 0x200, 0x0) 08:11:35 executing program 4: r0 = openat$bsg(0xffffffffffffff9c, &(0x7f00000019c0)='/dev/bsg\x00', 0x0, 0x0) openat$cgroup_devices(r0, &(0x7f0000001c80)='devices.allow\x00', 0x2, 0x0) 08:11:36 executing program 1: r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000200)='/dev/bsg\x00', 0x0, 0x0) accept4$nfc_llcp(r0, 0x0, 0x0, 0x0) 08:11:36 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x0, 0x7, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:36 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000001580)=@newtfilter={0xec4, 0x2c, 0x0, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0x0, 0x1}, {0x0, 0xb}, {0x6, 0x2}}, [@filter_kind_options=@f_route={{0xa, 0x1, 'route\x00'}, {0xc68, 0x2, [@TCA_ROUTE4_ACT={0x30, 0x6, [@m_ct={0x2c, 0x0, 0x0, 0x0, {{0x7, 0x1, 'ct\x00'}, {0x4}, {0x4}, {0xc}, {0xc}}}]}, @TCA_ROUTE4_POLICE={0xc34, 0x5, [@TCA_POLICE_RESULT={0x8, 0x5, 0x7fff}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x1}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x6}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x8, 0x1f, 0x7fffffff, 0x6f3a, 0x8001, 0x200, 0x3, 0x5, 0x8, 0x7, 0x9, 0x9, 0x7, 0x2, 0x82, 0x4, 0x80, 0x0, 0x1, 0x7f, 0x80, 0x8001, 0x0, 0x8, 0x2a000, 0x0, 0x6, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x5, 0x899a, 0x0, 0x0, 0x1, 0x88000000, 0x7, 0x4, 0x4, 0x81, 0x718, 0x5c89, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x4737, 0x7, 0x0, 0x1ff, 0x7, 0x4, 0x3ae, 0x1e1, 0x8000, 0x0, 0x0, 0x2, 0xd3, 0x5, 0x5890, 0x2, 0x7df4, 0x7ed, 0x1ff, 0x28, 0xffffffff, 0xa34f, 0x3, 0x2, 0x0, 0x8, 0x1ff, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x4, 0x0, 0x5, 0x0, 0x6a12e719, 0x86, 0x3, 0x1, 0x3, 0x8, 0x7, 0x8, 0x0, 0x1, 0x1, 0x81, 0x6, 0x0, 0x38, 0x400, 0x0, 0x0, 0xc38, 0x1, 0x3, 0x0, 0x8, 0xfffffffa, 0x1, 0x4, 0x3, 0x8, 0x1996, 0x4, 0x2, 0x6, 0x4, 0x8000, 0x8, 0x0, 0x2, 0x100, 0x7fff, 0x8, 0xfffff19f, 0x3, 0x3f, 0x7ff, 0x8, 0x8, 0x80000001, 0x7ff, 0x401, 0x3, 0x1, 0x1, 0x100, 0x7fffffff, 0x2b, 0x0, 0x0, 0x5, 0x6, 0x0, 0x4, 0x100, 0x8, 0x6, 0x3, 0x4, 0x6, 0x800, 0x4, 0x6, 0x2, 0x400, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0x7ff, 0x1, 0x55, 0x8, 0x7fffffff, 0x80000001, 0x9, 0x7, 0x1, 0x80, 0x1000, 0x3f, 0xfffffff7, 0x8000, 0x5604, 0xce27]}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0xfffffff8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x27f5, 0x0, 0x0, 0x31f946f8, 0x1, 0x5, 0x6, 0x0, 0xa6, 0x7, 0x7fff, 0x7fffffff, 0x2, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0xf3, 0x3, 0x3, 0x4, 0x2, 0x4, 0x2, 0x401, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x9, 0x7, 0x8, 0x3f, 0xf033, 0xfffffff9, 0x8, 0x10001, 0xffffffff, 0xffffff85, 0x9, 0x4, 0x4, 0x76, 0x6, 0x0, 0x5329, 0x0, 0x0, 0x0, 0x2, 0x2, 0x7, 0x99d, 0x0, 0x9, 0xd5, 0x1, 0xffff, 0xbf3e, 0x0, 0x0, 0x0, 0x0, 0x6, 0x1b, 0x9, 0x2, 0x2, 0x101, 0x0, 0x9, 0x4, 0x0, 0x8, 0x5, 0x7fffffff, 0xd9d9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x2, 0xfffffffe, 0x5, 0xe55, 0x2, 0x9, 0x100, 0xfffff800, 0xffffffe0, 0x8, 0x0, 0x1a74, 0x200, 0x8, 0x10000, 0x3, 0x59f7, 0x400, 0x74, 0x6, 0x8, 0x0, 0x0, 0x8, 0xffff, 0x8000, 0x5, 0x80000000, 0x1, 0x4, 0x8]}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x4}, @TCA_POLICE_RATE={0x404, 0x2, [0x9, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x4, 0x80000000, 0x101, 0x8, 0x7fffffff, 0x8, 0x9, 0x4, 0x4, 0x55, 0x3, 0x80000000, 0x8, 0x7, 0xa1d, 0xa50, 0x66, 0xff, 0x2, 0x9, 0x1000, 0x7ff, 0x5, 0x5, 0x7f, 0x8000000, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x96, 0x2b, 0x20, 0x8000, 0x0, 0x4, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0xfffffff7, 0x4, 0xb5b7, 0x1ed, 0x8001, 0x200, 0x10001, 0xfffffffe, 0xf1ca, 0x6, 0x9, 0x80, 0x1, 0xffffffff, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x3ff, 0x6, 0x3f, 0xd9, 0x8, 0x0, 0x7, 0x87e, 0x6, 0x80000000, 0x7fff, 0x0, 0x20, 0x5, 0x6, 0x0, 0x4, 0x2, 0x5, 0x20, 0x5, 0x0, 0x6, 0x3, 0x70, 0x3, 0xeed0, 0x4, 0x0, 0x4, 0x7f, 0x6, 0x7, 0x1, 0x401, 0x4000000, 0x4, 0xfff, 0x5, 0x0, 0x7ff, 0x4, 0x3e, 0x1, 0x0, 0x3f, 0x0, 0x100, 0x72a18d5, 0xebd, 0x1f, 0x9a, 0x8, 0x39, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x8000, 0xffff8e25, 0xfffff108, 0x5, 0x3ff, 0x3, 0x0, 0x0, 0x1, 0x8, 0x6, 0x10001, 0x267b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2]}]}]}}, @filter_kind_options=@f_bpf={{0x8, 0x1, 'bpf\x00'}, {0xe4, 0x2, [@TCA_BPF_ACT={0xe0, 0x1, [@m_sample={0x30, 0x0, 0x0, 0x0, {{0xb, 0x1, 'sample\x00'}, {0x4}, {0x4}, {0xc}, {0xc}}}, @m_ife={0x48, 0x7, 0x0, 0x0, {{0x8, 0x1, 'ife\x00'}, {0x10, 0x2, 0x0, 0x1, [@TCA_IFE_METALST={0x4}, @TCA_IFE_METALST={0x8, 0x6, [@IFE_META_TCINDEX={0x4, 0x5, @void}]}]}, {0x11, 0x6, "7d8b031db69798ba927a4a7aae"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x2}}}}, @m_tunnel_key={0x64, 0x1b, 0x0, 0x0, {{0xf, 0x1, 'tunnel_key\x00'}, {0x14, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_NO_CSUM={0x5}, @TCA_TUNNEL_KEY_ENC_DST_PORT={0x6, 0x9, 0x4e21}]}, {0x23, 0x6, "48f44d75d21119f1acef1cdfa322bff6df737b60839cc86a9f16282e36ccf2"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x2}}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x25, 0x16}}, @TCA_RATE={0x6, 0x5, {0x6, 0x1}}, @filter_kind_options=@f_cgroup={{0xb, 0x1, 'cgroup\x00'}, {0x114, 0x2, [@TCA_CGROUP_ACT={0x110, 0x1, [@m_vlan={0x30, 0x0, 0x0, 0x0, {{0x9, 0x1, 'vlan\x00'}, {0x4}, {0x4}, {0xc}, {0xc}}}, @m_ctinfo={0xdc, 0x11, 0x0, 0x0, {{0xb, 0x1, 'ctinfo\x00'}, {0x14, 0x2, 0x0, 0x1, [@TCA_CTINFO_PARMS_DSCP_MASK={0x8, 0x5, 0x6}, @TCA_CTINFO_PARMS_DSCP_STATEMASK={0x8, 0x6, 0x1f}]}, {0xa0, 0x6, "7c118f3e89f0b2680944e34360f65d5382a5b9ac40463039f05c6b96097e76b392c8d8d7ca68f674c88f448e383f29333f294991c480e18c09660ad5accbb9c89d9c02c1a4ed5f17148c736a36891f17c47515aca4c21d82a0c6adcc08ef60e58b182a2c4b6bd85781f1bcd4cca45e23d8ab721a2220a85a912caedcd11b266b287862d31103eab421b70a892b07450feab20b90abbd69e593b3c262"}, {0xc}, {0xc, 0x8, {0x3, 0x3}}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x8, 0x16}}, @TCA_CHAIN={0x8, 0xb, 0x1f}]}, 0xec4}, 0x1, 0x0, 0x0, 0x40}, 0x0) 08:11:36 executing program 3: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_BEGIN_FF_UPLOAD(r0, 0xc06855c8, 0x0) 08:11:36 executing program 5: r0 = openat$ttyS3(0xffffff9c, &(0x7f0000000040)='/dev/ttyS3\x00', 0x0, 0x0) ioctl$TCSETSW(r0, 0x5411, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "e872e1fbf3f1ad9f57a45166533be412a061bc"}) 08:11:36 executing program 4: r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000004a80)='/dev/fuse\x00', 0x2, 0x0) syz_mount_image$fuse(&(0x7f0000000000)='fuse\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) syz_mount_image$fuse(&(0x7f00000000c0)='fuse\x00', &(0x7f0000002280)='./file0\x00', 0x0, 0x0, 0x0, 0x101020, &(0x7f00000022c0)={{'fd'}, 0x2c, {'rootmode'}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) 08:11:36 executing program 1: syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000001100)={{0x12, 0x1, 0x250, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}}}]}}]}}, &(0x7f0000001340)={0x0, 0x0, 0x1c, &(0x7f00000011c0)={0x5, 0xf, 0x1c, 0x2, [@ss_container_id={0x14, 0x10, 0x4, 0x0, "4a17a3e46e020daf0bdcac582134c8d3"}, @generic={0x3, 0x10, 0xa}]}}) 08:11:36 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x0, 0x8, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:36 executing program 2: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r0, 0x8902, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x781000, 0x0) syz_usb_connect$cdc_ecm(0x3, 0x57, &(0x7f0000001100)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x45, 0x1, 0x1, 0x0, 0x80, 0x80, [{{0x9, 0x4, 0x0, 0x4, 0x2, 0x2, 0x6, 0x0, 0x0, {{0x7, 0x24, 0x6, 0x0, 0x0, "b388"}, {0x5, 0x24, 0x0, 0x7ff}, {0xd, 0x24, 0xf, 0x1, 0x2, 0x8, 0x0, 0x9b}, [@mbim_extended={0x8, 0x24, 0x1c, 0x0, 0x9}]}, {[], {{0x9, 0x5, 0x82, 0x2, 0x400, 0xff, 0x0, 0xc0}}, {{0x9, 0x5, 0x3, 0x2, 0x400, 0xf9, 0x1}}}}}]}}]}}, 0x0) 08:11:36 executing program 3: r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000004a80)='/dev/fuse\x00', 0x2, 0x0) syz_mount_image$fuse(&(0x7f0000000000)='fuse\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_DELETE(r0, &(0x7f0000000180)={0x10, 0x3}, 0x10) 08:11:37 executing program 5: pipe2(0x0, 0x0) pipe2(&(0x7f0000001300), 0x0) 08:11:37 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x0, 0x9, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) [ 1009.928325][ T8869] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 1009.991832][ T8473] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 1010.168702][ T8869] usb 2-1: Using ep0 maxpacket: 8 08:11:37 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$netlink(r0, &(0x7f00000058c0)={0x0, 0x0, &(0x7f0000005840)=[{&(0x7f0000000180)={0x160, 0x13, 0x100, 0x70bd2d, 0x25dfdbfe, "", [@generic="3dd63261dc", @generic="92874c40511295c44c78a707d708a77c345267595d5e6bb28e986a293300fc443de623f88f10e8789fab8b0a3eef848cb57f20e6c305ad85767037ef7406a77d6fa8d9bedab25ba0e2dd4721273a731e2c5f196ad4cdb62d68ba44eadb9f0b03548a0ef95e4a19781f8b22b0e0f1fcd10b7c98dd04cfd10f3ecb55cd2188c2b0ca65b1a2bcaeeae2e6355e8231a68089f9f83c5071b1069ec45d81ca78cd4daefc3a55cbf343c8719b87cfb803d04e625400e94d", @nested={0x91, 0x5c, 0x0, 0x1, [@generic="c9b71f7bf94bafb98878cede1fcf96cf90de8a0947933b27e7feff8a5b39566489fe5e648a7dcc372f5d28076a88df003736361ad49c149038e0972445c336e4c28cc4d049945408f7c0bebca88b9a6f67d3408d4b01e506", @typed={0x8, 0x0, 0x0, 0x0, @pid}, @generic="830b311394662d8d5139b6f6b2d74c14c1680edcc2e2777fd7f87bc986ba852da7673e1514", @typed={0x8, 0x16, 0x0, 0x0, @uid=0xee00}]}]}, 0x160}, {&(0x7f0000000300)={0x1c, 0x3c, 0x100, 0x3, 0x25dfdbfe, "", [@typed={0xc, 0x33, 0x0, 0x0, @u64=0x1}]}, 0x1c}, {&(0x7f0000000340)={0xd34, 0x0, 0x0, 0x0, 0x0, "", [@typed={0x8, 0x21, 0x0, 0x0, @ipv4=@empty}, @generic="55c4190a6226ca0c48c6d203614e55152c0553c4c817a6be7f75cfa97d3ef6ac63fd26c5dbb8a75acc152334", @nested={0xc, 0x4e, 0x0, 0x1, [@typed={0x8, 0x8b, 0x0, 0x0, @ipv4}]}, @nested={0xce1, 0x0, 0x0, 0x1, [@generic="cf8ce7b57c8f178bf70c40c1bcc281879ab93730db8b2831c94083b591f126bdcaa1772b031f84a77f8a1c43f2d5bfe2f26ce6e288c2d94dac6cc6e6122e4d0970d48c48278df721dab27ecf0f9a6ca51a9fe17f8880dae6dc552d604d49c7b75a042d912b46d610840f45dcf5ebbd96c7544a64a668e500a7204effc0cc417ef475a94f19a3dd4fda59a39dd80e0e5bd9711be876d7197e97afdacaa6811f", @generic="97542e91280b8fddfe67032af77457fb91c7aed0713ab52c858506229f7d217fd3f8b9fa17630051b1af19b434005cc3f6602bf8eb4d6dc23ebf81fbb76033df341b10fa365f6f409e511d45e9482e8f6666a3330165a1fe5db49baaa8eb60666bf309a43d1e234f2bc7ebe31d750c2011d96cd24e6eb958", @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="de310c378dda586d4f628334c2db6161c7950d55ce149cfca4124b78829457d8ba4004a0619483f0abe319c82d5c55aa1a8325d489f0db8bd60e611421911fac110cabafaaf3664dc400a81728997e70022c1701bccb2b0e31b7bcd718ae905406d3f297d80170ae67e3802da62ef9dc8f44cd8b0a50aa4de7891a0265b53eaa9ac04166b6af530c4ceb61fb1ad321c9838b1856f64e2be3a18746cfc581e4437493a3b12f244d6aaa1305c5612ceecccbfd95dc25c06eb3e42dc13632ca83c54480e5e111841c004d4a5a8d6bab1106b62672b56ffa93e615d26057db20c34d52d524b13f32d7b6a6d80ae8b9707665", @generic="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"]}]}, 0xd34}, {&(0x7f00000017c0)={0x14, 0x0, 0x1, 0x0, 0x0, "", [@nested={0x4}]}, 0x14}], 0x4, 0x0, 0x0, 0x4020000}, 0x20000040) 08:11:37 executing program 5: bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000580)=@bpf_lsm={0x1d, 0x3, &(0x7f00000003c0)=@framed, &(0x7f0000000400)='GPL\x00', 0xf0, 0x8e, &(0x7f0000000440)=""/142, 0x0, 0x0, [], 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000500)={0x7, 0x4}, 0x8, 0x10, &(0x7f0000000540)={0x1, 0x9, 0x8, 0x6}, 0x10}, 0x78) [ 1010.275505][ T8473] usb 3-1: Using ep0 maxpacket: 8 08:11:37 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x0, 0xa, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) [ 1010.374187][ T8869] usb 2-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0 [ 1010.409480][ T8473] usb 3-1: config 1 interface 0 altsetting 4 bulk endpoint 0x82 has invalid maxpacket 1024 [ 1010.419697][ T8473] usb 3-1: config 1 interface 0 altsetting 4 bulk endpoint 0x3 has invalid maxpacket 1024 [ 1010.429846][ T8473] usb 3-1: config 1 interface 0 has no altsetting 0 [ 1010.549767][ T8869] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 1010.559133][ T8869] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1010.568586][ T8869] usb 2-1: Product: syz [ 1010.572955][ T8869] usb 2-1: Manufacturer: syz [ 1010.577636][ T8869] usb 2-1: SerialNumber: syz 08:11:37 executing program 4: openat$bsg(0xffffffffffffff9c, &(0x7f0000000200)='/dev/bsg\x00', 0xa4742, 0x0) [ 1010.632778][ T8473] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 1010.642128][ T8473] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1010.650477][ T8473] usb 3-1: Product: syz [ 1010.654734][ T8473] usb 3-1: Manufacturer: syz [ 1010.659525][ T8473] usb 3-1: SerialNumber: syz [ 1010.820703][ T8869] cdc_ether: probe of 2-1:1.0 failed with error -22 08:11:38 executing program 3: r0 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000280)='TIPCv2\x00') r1 = socket$netlink(0x10, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(r1, &(0x7f00000020c0)={0x0, 0x0, &(0x7f0000002080)={&(0x7f0000001e00)={0x14, r0}, 0x14}}, 0x0) [ 1010.911358][T19485] raw-gadget gadget: fail, usb_ep_enable returned -22 08:11:38 executing program 5: r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) getsockopt$sock_timeval(r0, 0x1, 0x0, 0x0, 0x0) [ 1010.952123][T19485] raw-gadget gadget: fail, usb_ep_enable returned -22 [ 1011.024382][ T8469] usb 2-1: USB disconnect, device number 2 [ 1011.249953][ T8473] cdc_ether: probe of 3-1:1.0 failed with error -71 [ 1011.289004][ T8473] usb 3-1: USB disconnect, device number 6 [ 1011.809043][T17448] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 1012.049012][T17448] usb 2-1: Using ep0 maxpacket: 8 [ 1012.276175][T17448] usb 2-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0 [ 1012.449846][T17448] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 1012.459246][T17448] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1012.467337][T17448] usb 2-1: Product: syz [ 1012.471910][T17448] usb 2-1: Manufacturer: syz [ 1012.476604][T17448] usb 2-1: SerialNumber: syz [ 1012.540239][T17448] cdc_ether: probe of 2-1:1.0 failed with error -22 08:11:39 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$netlink(r0, &(0x7f00000058c0)={0x0, 0x0, &(0x7f0000005840)=[{0x0}, {&(0x7f00000017c0)={0x1170, 0x0, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x89, 0x0, 0x0, @u32=0x7b}, @typed={0x1004, 0x73, 0x0, 0x0, @binary="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"}, @nested={0x154, 0x0, 0x0, 0x1, [@generic, @typed={0xc, 0x5d, 0x0, 0x0, @u64=0x8000}, @typed={0x14, 0x33, 0x0, 0x0, @ipv6=@empty}, @generic="f018bc27704904fd5805", @typed={0x12, 0x6b, 0x0, 0x0, @str='./cgroup/syz1\x00'}, @typed={0x42, 0x47, 0x0, 0x0, @binary="7af3a741d81ffa9ea8db51747b84db22dc25cc24655519b99096e15db40d0a6b06fdb1279059f5ca16c021e0aa7fd819ee5f9e8b321020a719349e00eb2c"}, @typed={0x8, 0x5d, 0x0, 0x0, @u32}, @typed={0x14, 0x6f, 0x0, 0x0, @ipv6=@private0}, @typed={0x8, 0x3d, 0x0, 0x0, @fd}, @generic="8e76834ecd9942f46f7587c3b07424e3c78e07472a899f9f00be2910c306c56c0b2a265d942e090093511c29f9f0cb364f2bb17552d7daee67629b62b324a21c94399467bc1ae4d1ba01959b0fdeddbbf1b58e9dc0d5f4fd6447e1ba279a676b32e31f5cee03fe74723da930d96e5a1fbb34dd05dd66d58335d0c0e922de6572fd73a6411886f3f8639a83a40b94cee3bf6292983db29e98fa65929df1d4ed933ce05591a979cf01f761"]}]}, 0x1170}], 0x2}, 0x0) [ 1012.598593][ T8469] usb 2-1: USB disconnect, device number 3 08:11:39 executing program 4: r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001c00)='/dev/fuse\x00', 0x2, 0x0) syz_mount_image$fuse(&(0x7f0000001b80)='fuse\x00', &(0x7f0000001bc0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000003c80)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000140000,']) 08:11:39 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x0, 0xb, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:39 executing program 3: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000001580)=@newtfilter={0xec4, 0x2c, 0x8, 0x70bd2c, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0xc, 0x1}, {0x0, 0xb}, {0x6, 0x2}}, [@TCA_CHAIN={0x8}, @filter_kind_options=@f_route={{0xa, 0x1, 'route\x00'}, {0xcb0, 0x2, [@TCA_ROUTE4_ACT={0x58, 0x6, [@m_ct={0x54, 0x13, 0x0, 0x0, {{0x7, 0x1, 'ct\x00'}, {0x20, 0x2, 0x0, 0x1, [@TCA_CT_ZONE={0x6}, @TCA_CT_NAT_IPV6_MAX={0x14, 0xc, @rand_addr=' \x01\x00'}]}, {0xd, 0x6, "b760753cda4fb945d2"}, {0xc}, {0xc}}}]}, @TCA_ROUTE4_POLICE={0xc3c, 0x5, [@TCA_POLICE_RESULT={0x8}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x1}, @TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x8, 0x1f, 0x7fffffff, 0x6f3a, 0x8001, 0x200, 0x3, 0x5, 0x8, 0x7, 0x9, 0x9, 0x7, 0x2, 0x82, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0x7ff, 0x1, 0x800, 0x1, 0x3, 0x2, 0x40, 0xfffffffe, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0xff, 0x1000, 0x1, 0x3, 0x7d, 0x7, 0x5, 0x899a, 0x5, 0x8, 0x1, 0x88000000, 0x7, 0x4, 0x4, 0x81, 0x718, 0x5c89, 0x81, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1000, 0x4737, 0x7, 0x0, 0x1ff, 0x7, 0x4, 0x3ae, 0x1e1, 0x8000, 0x5, 0x1, 0x2, 0xd3, 0x5, 0x5890, 0x2, 0x7df4, 0x7ed, 0x1ff, 0x28, 0xffffffff, 0xa34f, 0x3, 0x2, 0x0, 0x8, 0x1ff, 0x200, 0x7, 0x2, 0xea, 0x1, 0x7, 0x49, 0x2, 0xfe00000, 0x2, 0xf2408b44, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x5, 0x38, 0x400, 0x4, 0x0, 0xc38, 0x1, 0x3, 0x0, 0x8, 0xfffffffa, 0x1, 0x4, 0x3, 0x8, 0x1996, 0x4, 0x2, 0x6, 0x4, 0x8000, 0x8, 0x0, 0x2, 0x100, 0x7fff, 0x8, 0xfffff19f, 0x3, 0x3f, 0x7ff, 0x8, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, 0x1, 0x100, 0x7fffffff, 0x2b, 0x3ff, 0xfffffffc, 0x5, 0x6, 0x0, 0x4, 0x100, 0x8, 0x6, 0x3, 0x4, 0x6, 0x800, 0x4, 0x6, 0x2, 0x400, 0x1, 0x2, 0x7f, 0x10000, 0x7, 0x9, 0x7fffffff, 0x7ff, 0x1, 0x55, 0x8, 0x7fffffff, 0x80000001, 0x9, 0x7, 0x1, 0x80, 0x1000, 0x3f, 0xfffffff7, 0x8000]}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x200, 0x6, 0xba1, 0x93d, 0x49db, 0x0, 0x0, 0x0, 0xffffffff, 0x80000001, 0x7fffffff, 0x2, 0x0, 0x6, 0x1d76a86a, 0x6, 0x9, 0x80f, 0x7, 0x3f, 0xfffffffe, 0x28, 0x80, 0x1, 0x6, 0x6, 0xfffffff8, 0x8, 0xc28, 0x7f00, 0x33, 0x14, 0x7fffffff, 0x8000, 0x10000, 0x27f5, 0xccb, 0xf, 0x31f946f8, 0x1, 0x5, 0x6, 0x3f, 0xa6, 0x7, 0x7fff, 0x7fffffff, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x10001, 0x2, 0x8, 0x0, 0x0, 0x0, 0x3, 0x401, 0x7, 0x0, 0x0, 0x1000, 0x200, 0x20, 0xfff, 0x2, 0x8001, 0x7f, 0x3f0000, 0x4, 0x8d13, 0x1, 0xf3, 0x3, 0x3, 0x4, 0x2, 0x0, 0x2, 0x401, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x4, 0x3, 0xfffffffc, 0x5, 0xcfd, 0x6, 0x0, 0x7, 0xfffffffb, 0x40, 0x3ff, 0xc8, 0x8, 0x80000000, 0x200, 0x7, 0x7f52, 0x8000, 0x0, 0x0, 0x2, 0x7fff, 0x3, 0x0, 0x7, 0x8, 0x3f, 0xf033, 0xfffffff9, 0x8, 0x10001, 0xffffffff, 0xffffff85, 0x9, 0x4, 0x4, 0x76, 0x6, 0x0, 0x5329, 0x81, 0x1, 0x80000001, 0x2, 0x2, 0x7, 0x99d, 0x5d8, 0x9, 0xd5, 0x1, 0xffff, 0xbf3e, 0x0, 0x0, 0x1, 0x78a7, 0x6, 0x1b, 0x9, 0x2, 0x2, 0x101, 0x0, 0x9, 0x4, 0x0, 0x8, 0x5, 0x7fffffff, 0xd9d9, 0x2b55b58, 0x8000, 0x8000, 0x7, 0x0, 0x3, 0x0, 0x0, 0x1, 0x1, 0x9, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x3f, 0x9, 0x1, 0xffff, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x8, 0x8, 0xffff, 0x8000, 0x5, 0x80000000, 0x1, 0x4, 0x8]}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x4}, @TCA_POLICE_RATE={0x404, 0x2, [0x9, 0x8, 0x7, 0x3352, 0x10000, 0x6, 0x80000001, 0x8, 0xeb, 0x1000, 0x9, 0x2, 0x0, 0x10001, 0x79, 0x7, 0x80000001, 0x9, 0x7f, 0x6, 0xffffa7a4, 0x7, 0x0, 0x0, 0x4c5b916d, 0x2, 0x4, 0x80000000, 0x0, 0x8, 0x7fffffff, 0x8, 0x9, 0x4, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x57d, 0x1, 0x2, 0x7, 0x74, 0x1, 0x28e, 0x7, 0x96, 0x2b, 0x20, 0x8000, 0x1, 0x4, 0x2, 0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x6, 0x0, 0xfffffff7, 0x4, 0xb5b7, 0x1ed, 0x8001, 0x200, 0x10001, 0xfffffffe, 0xf1ca, 0x6, 0x9, 0x80, 0x1, 0xffffffff, 0x6, 0x81, 0x0, 0x800, 0xee0, 0x80000000, 0x7fffffff, 0x100, 0x80, 0xff, 0xc1, 0x0, 0x53d, 0x3ff, 0x0, 0x2d6f, 0x4, 0x0, 0x1000, 0xbe, 0x9, 0x0, 0x6, 0x401, 0x80000000, 0x3758, 0x52, 0x7ff, 0x8, 0x3d82a962, 0x1ff, 0x1b300000, 0x6, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x100, 0x72a18d5, 0xebd, 0x1f, 0x9a, 0x8, 0x39, 0x3, 0xd612, 0x5, 0x7fffffff, 0x9, 0x5, 0x8000, 0xffff8e25, 0xfffff108, 0x5, 0x3ff, 0x3, 0x1, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x7, 0x1, 0x7ff, 0xd9, 0x7, 0x1, 0x2, 0x7, 0x9, 0xbb5c, 0xfff]}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x1}]}, @TCA_ROUTE4_CLASSID={0x8, 0x1, {0xffe0, 0x3}}, @TCA_ROUTE4_CLASSID={0x8, 0x1, {0xffe0, 0x8}}, @TCA_ROUTE4_IIF={0x8}]}}, @filter_kind_options=@f_bpf={{0x8, 0x1, 'bpf\x00'}, {0x1b4, 0x2, [@TCA_BPF_ACT={0x1b0, 0x1, [@m_vlan={0xf4, 0x0, 0x0, 0x0, {{0x9, 0x1, 'vlan\x00'}, {0x1c, 0x2, 0x0, 0x1, [@TCA_VLAN_PUSH_VLAN_PROTOCOL={0x6, 0x4, 0x88a8}, @TCA_VLAN_PUSH_VLAN_PROTOCOL={0x6, 0x4, 0x18aa8}, @TCA_VLAN_PUSH_VLAN_ID={0x6, 0x3, 0xfb5}]}, {0xb0, 0x6, "543f416ac51c6c3ed5065921eb8e5f790ce90654a0be3cfbdfc298a3087c6ccf701b74561e44c0f2b9f53f5d22f3d157eb75fe8effa4466d9c5857bab66b5f50dddb065e17b6871dfee71625eed62d4849ecd6ca27efb1592a65cd340b349bd64cc4b005b1e206927b15fa4907758eeb62047bf123e7acf7dd45ab1d5980a93822105509181a5c6df2b3bdd2e22ed78c234546a4701ec14abca8f97ad75c8094caf21cd131af20db796395e9"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2, 0x2}}}}, @m_ife={0x2c, 0x0, 0x0, 0x0, {{0x8, 0x1, 'ife\x00'}, {0x4}, {0x4}, {0xc}, {0xc}}}, @m_tunnel_key={0x8c, 0x1b, 0x0, 0x0, {{0xf, 0x1, 'tunnel_key\x00'}, {0x1c, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_NO_CSUM={0x5, 0xa, 0x1}, @TCA_TUNNEL_KEY_ENC_IPV4_SRC={0x8, 0x3, @private=0xa010101}, @TCA_TUNNEL_KEY_ENC_DST_PORT={0x6, 0x9, 0x4e21}]}, {0x42, 0x6, "48f44d75d21119f1acef1cdfa322bff6df737b60839cc86a9f16282e36ccf29627845d26435d43166bcbeed454b241c9b9546e967c67427b087112f3e5ea"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x2}}}}]}]}}, @filter_kind_options=@f_cgroup={{0xb, 0x1, 'cgroup\x00'}, {0x4}}, @TCA_RATE={0x6, 0x5, {0x8, 0x16}}, @TCA_CHAIN={0x8, 0xb, 0x1f}]}, 0xec4}}, 0x0) 08:11:39 executing program 5: r0 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1) sendmsg$nfc_llcp(r0, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)={0x28, 0x0, 0x0, "a78f02b615896b0bb7611865e5ef5ee854"}, 0x28}, 0x0) 08:11:39 executing program 2: r0 = add_key$fscrypt_v1(&(0x7f0000000080)='logon\x00', &(0x7f00000000c0)={'fscrypt:', @desc1='0000111122223333'}, &(0x7f0000000100)={0x0, "a259315d022ccc4c3db6f30de3cad3165065df6e3b9e0721208fe030a5cc5a6ab4d1f46ad7933956a0c085c8cac68d4c028207bcfb9b8c8941a6508bb187d767"}, 0x48, 0xffffffffffffffff) keyctl$update(0x5, r0, 0x0, 0x0) add_key$fscrypt_v1(&(0x7f0000000080)='logon\x00', &(0x7f00000000c0)={'fscrypt:', @desc1='0000111122223333'}, &(0x7f0000000100)={0x0, "a259315d022ccc4c3db6f30de3cad3165065df6e3b9e0721208fe030a5cc5a6ab4d1f46ad7933956a0c085c8cac68d4c028207bcfb9b8c8941a6508bb187d767"}, 0x48, 0xffffffffffffffff) 08:11:40 executing program 3: r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000004a80)='/dev/fuse\x00', 0x2, 0x0) syz_mount_image$fuse(&(0x7f0000000000)='fuse\x00', &(0x7f0000000040)='./file0\x00', 0xe3010000, 0x0, 0x0, 0x0, &(0x7f0000002380)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) read$FUSE(r0, &(0x7f0000000180)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_WRITE(r0, &(0x7f0000000080)={0x18, 0x0, r1}, 0x18) 08:11:40 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000006000)={'ip_vti0\x00', &(0x7f0000000080)=ANY=[@ANYBLOB="72797a746e6c3f6ccd9732000000", @ANYBLOB="00100020000038"]}) 08:11:40 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) sendmmsg$inet6(r0, &(0x7f0000004900)=[{{&(0x7f0000000040)={0xa, 0x4e20, 0x0, @dev, 0x4}, 0x1c, 0x0}}], 0x1, 0x40812) 08:11:40 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x0, 0xc, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:40 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000400)) 08:11:40 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) getsockname$netlink(r0, &(0x7f0000000240), &(0x7f0000000280)=0xc) 08:11:41 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000006000)={'ip_vti0\x00', 0x0}) 08:11:41 executing program 2: r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000004a80)='/dev/fuse\x00', 0x2, 0x0) syz_mount_image$fuse(&(0x7f0000000000)='fuse\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) syz_mount_image$fuse(&(0x7f0000000000)='fuse\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0xa44422, &(0x7f0000000340)=ANY=[]) 08:11:41 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x0, 0xd, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:41 executing program 3: syz_mount_image$fuse(&(0x7f0000008940)='fuse\x00', &(0x7f0000008980)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f000000ca40)={{'fd'}, 0x2c, {'rootmode'}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[], [{@seclabel='seclabel'}]}}) 08:11:41 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$netlink(r0, &(0x7f00000058c0)={0x0, 0x0, &(0x7f0000005840)=[{&(0x7f0000000180)={0x10}, 0x10}, {&(0x7f00000017c0)={0x10, 0x0, 0x1}, 0x10}], 0x2}, 0x0) 08:11:41 executing program 1: r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000004a80)='/dev/fuse\x00', 0x2, 0x0) syz_mount_image$fuse(&(0x7f0000000000)='fuse\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) syz_mount_image$fuse(&(0x7f0000000180)='fuse\x00', &(0x7f0000002240)='./file0\x00', 0x0, 0x0, 0x0, 0x82c, &(0x7f00000043c0)={{'fd'}, 0x2c, {'rootmode'}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) [ 1014.607422][T19610] fuse: Bad value for 'fd' [ 1014.627480][T19610] fuse: Bad value for 'fd' 08:11:41 executing program 4: syz_io_uring_setup(0x0, &(0x7f0000000780), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, 0x0, 0x0) 08:11:42 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x0, 0xe, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:42 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4) 08:11:42 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$netlink(r0, &(0x7f00000058c0)={0x0, 0x0, &(0x7f0000005840)=[{0x0}, {0x0}, {&(0x7f0000000340)={0x10}, 0x10}], 0x3}, 0x0) 08:11:42 executing program 4: r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000004a80)='/dev/fuse\x00', 0x2, 0x0) syz_mount_image$fuse(&(0x7f0000000000)='fuse\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) syz_mount_image$fuse(&(0x7f00000000c0)='fuse\x00', &(0x7f0000002280)='./file0\x00', 0x0, 0x0, 0x0, 0x104000, &(0x7f00000022c0)={{'fd'}, 0x2c, {'rootmode'}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) 08:11:42 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x0, 0x10, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:42 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000040)={'gre0\x00', &(0x7f0000000180)={'gre0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @rand_addr, @dev}}}}) 08:11:42 executing program 2: r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001c00)='/dev/fuse\x00', 0x2, 0x0) syz_mount_image$fuse(&(0x7f0000001b80)='fuse\x00', &(0x7f0000001bc0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000003c80)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0']) 08:11:42 executing program 3: r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001c00)='/dev/fuse\x00', 0x2, 0x0) syz_mount_image$fuse(&(0x7f0000001b80)='fuse\x00', &(0x7f0000001bc0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000003c80)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000140000', @ANYRESDEC=0xee00]) 08:11:42 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@private0, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x2}}, {{@in=@multicast2, 0x0, 0x3c}, 0x2, @in6=@mcast1, 0x0, 0x4}}, 0xe8) 08:11:43 executing program 5: perf_event_open$cgroup(&(0x7f00000000c0)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 08:11:43 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x0, 0x11, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) [ 1015.785067][T19642] fuse: Bad value for 'rootmode' [ 1015.921856][T19645] fuse: Invalid rootmode 08:11:43 executing program 3: mmap$perf(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x2) 08:11:43 executing program 2: syz_mount_image$fuse(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x2000c, 0x0) 08:11:43 executing program 5: syz_mount_image$fuse(&(0x7f0000001b80)='fuse\x00', &(0x7f0000001bc0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000003c80)=ANY=[@ANYBLOB=',rootmode=']) 08:11:43 executing program 1: r0 = openat$ttyS3(0xffffff9c, &(0x7f0000000040)='/dev/ttyS3\x00', 0x0, 0x0) ioctl$TCSETSW(r0, 0x5425, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "e872e1fbf3f1ad9f57a45166533be412a061bc"}) [ 1016.369330][T19657] fuse: Bad value for 'rootmode' [ 1016.412391][T19657] fuse: Bad value for 'rootmode' 08:11:43 executing program 4: r0 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1) sendmsg$nfc_llcp(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000380)=[{0x0}, {0x0}], 0x2, &(0x7f00000003c0)={0x28, 0x0, 0x0, "a78f02b615896b0bb7611865e5ef5ee854"}, 0x28}, 0x0) 08:11:43 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x0, 0x12, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:43 executing program 3: syz_mount_image$fuse(&(0x7f0000001b80)='fuse\x00', &(0x7f0000001bc0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000003c80)=ANY=[@ANYBLOB=',rootmode=00000000000000000140000,user_id']) 08:11:43 executing program 5: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb, 0x1, 'clsact\x00'}]}, 0x30}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000340)=@delchain={0x24, 0x64, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff3, 0xffff}}}, 0x24}}, 0x0) 08:11:44 executing program 2: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0}, 0x30) [ 1016.954650][T19674] fuse: Bad value for 'user_id' 08:11:44 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x0, 0x25, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) [ 1016.996614][T19674] fuse: Bad value for 'user_id' 08:11:44 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x48085) 08:11:44 executing program 5: bpf$PROG_LOAD(0x5, &(0x7f0000000e40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) 08:11:44 executing program 3: bpf$MAP_CREATE(0x0, &(0x7f0000000140)={0xc}, 0x40) 08:11:44 executing program 2: bpf$OBJ_GET_PROG(0x7, &(0x7f0000000780)={0x0, 0x0, 0xc}, 0x10) 08:11:44 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x0, 0x5c, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:45 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCDELRT(r0, 0x890c, &(0x7f0000000040)={0x0, @isdn, @llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, @llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}}) 08:11:45 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040)='nl80211\x00') sendmsg$NL80211_CMD_GET_WIPHY(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x3c}, @void, @void}}}, 0x1c}}, 0x0) 08:11:45 executing program 5: socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000500)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$tipc(r0, &(0x7f0000000280)={&(0x7f0000000040)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x2}}, 0x10, 0x0}, 0x0) 08:11:45 executing program 3: r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fuse\x00', 0x2, 0x0) syz_fuse_handle_req(r0, &(0x7f0000000040)="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", 0x2000, &(0x7f0000006ac0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 08:11:45 executing program 2: syz_mount_image$fuse(&(0x7f0000001b80)='fuse\x00', &(0x7f0000001bc0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000003c80)=ANY=[@ANYBLOB=',ro']) 08:11:45 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x0, 0x300, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:45 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000140)={'batadv_slave_1\x00', 0x0}) sendmmsg$inet6(r0, &(0x7f00000013c0)=[{{&(0x7f0000000040)={0xa, 0x4e20, 0x0, @dev, 0x4}, 0x1c, 0x0, 0x0, &(0x7f0000001440)=[@flowinfo={{0x14, 0x29, 0xb, 0x4}}, @flowinfo={{0x14}}, @pktinfo={{0x24, 0x29, 0x32, {@initdev={0xfe, 0x88, [], 0x0, 0x0}, r2}}}], 0x58}}], 0x1, 0x0) 08:11:45 executing program 1: r0 = getpid() r1 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000200)='/dev/bsg\x00', 0x0, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={r0, r1, 0x0, 0x0, 0x0}, 0x30) 08:11:45 executing program 5: r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) ioctl$sock_SIOCGIFVLAN_SET_VLAN_EGRESS_PRIORITY_CMD(r0, 0x8982, 0x0) 08:11:45 executing program 3: r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) bind$nfc_llcp(r0, &(0x7f0000000400)={0x27, 0x0, 0x0, 0x0, 0x40, 0x0, "6488bee566e286558bd33004d64e9e6b1eb0c79f53a909a73fcec9f5fbaa6622000000000004005709dd91bd0f4e0df47f3aa2a3ba6b0e13e55dd1e74500"}, 0x60) 08:11:45 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) sendto$inet(r0, &(0x7f0000000000)="3d8518a6fe6a84819c6c73904fe49ecec393289a940e03ad5c60b91f4f08ee9933b9b3e78c4b19946bd6a55047c2528680c7aa64287a58c5fee27df9b187e3d67520e39dec73e5df3fb5c01f74946c4e75dd5bc96e83dbfca9b3471b8c", 0x5d, 0x20009, &(0x7f0000000100)={0x10, 0x2}, 0x10) 08:11:45 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x0, 0x500, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:46 executing program 4: openat$fuse(0xffffffffffffff9c, &(0x7f0000000980)='/dev/fuse\x00', 0x2, 0x0) 08:11:46 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040)='nl80211\x00') sendmsg$NL80211_CMD_SET_CHANNEL(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01090000000000000000410000005b044da3fce41f0c009900000000000000000008"], 0x28}}, 0x0) 08:11:46 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$VT_ACTIVATE(r0, 0x4b61, 0x8) 08:11:46 executing program 3: r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000200)='/dev/bsg\x00', 0x0, 0x0) mmap$perf(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x1000004, 0x10, r0, 0x0) 08:11:46 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000001580)=@newtfilter={0x1080, 0x2c, 0x0, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0xc, 0x1}, {0x0, 0xb}, {0x6, 0x2}}, [@filter_kind_options=@f_route={{0xa, 0x1, 'route\x00'}, {0x840, 0x2, [@TCA_ROUTE4_ACT={0x30, 0x6, [@m_ct={0x2c, 0x0, 0x0, 0x0, {{0x7, 0x1, 'ct\x00'}, {0x4}, {0x4}, {0xc}, {0xc}}}]}, @TCA_ROUTE4_POLICE={0x80c, 0x5, [@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x2a000, 0x0, 0x6, 0xff, 0x8, 0x0, 0x260, 0x3, 0x3f, 0x400, 0x7fffffff, 0x7ff, 0x1, 0x800, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x2, 0xfff, 0x20, 0x0, 0x0, 0x1f, 0x3, 0x1, 0x81, 0xff, 0x1000, 0x1, 0x3, 0x7d, 0x7, 0x5, 0x0, 0x0, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x49, 0x0, 0xfe00000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3f, 0x7, 0x8, 0x0, 0x1, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x81, 0x6, 0x5, 0x38, 0x400, 0x4, 0x0, 0xc38, 0x1, 0x3, 0x0, 0x8, 0xfffffffa, 0x1, 0x4, 0x3, 0x8, 0x1996]}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x5e4, 0x0, 0x8, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x49db, 0x400, 0x0, 0x1, 0xffffffff, 0x80000001, 0x7fffffff, 0x2, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x27f5, 0xccb, 0xf, 0x31f946f8, 0x1, 0x5, 0x6, 0x3f, 0xa6, 0x7, 0x7fff, 0x7fffffff, 0x2, 0x1ff, 0x7fff, 0x47, 0x22, 0xffffff80, 0x9, 0x1ff, 0x8000, 0x6, 0x5, 0x40, 0x4, 0x3, 0x0, 0x0, 0x0, 0x20, 0x7, 0x1, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x7, 0x0, 0xffffffff, 0x0, 0x4, 0x3, 0xfffffffc, 0x5, 0xcfd, 0x6, 0x0, 0x7, 0xfffffffb, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4bd, 0x2, 0x7fff, 0x3, 0x9, 0x7, 0x8, 0x3f, 0x0, 0xfffffff9, 0x8, 0x10001, 0xffffffff, 0xffffff85, 0x9, 0x4, 0x4, 0x76, 0x6, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x2, 0x7, 0x99d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x1f, 0x80000000, 0x3, 0x5, 0xf7c7, 0x1f, 0x7, 0xc695, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x2, 0x9, 0x100, 0xfffff800, 0xffffffe0, 0x8, 0x2, 0x1a74, 0x200, 0x8, 0x10000, 0x3, 0x59f7, 0x400, 0x74, 0x6, 0x8, 0x7, 0x8, 0x8, 0xffff, 0x8000, 0x5, 0x80000000, 0x1, 0x4]}]}]}}, @filter_kind_options=@f_bpf={{0x8, 0x1, 'bpf\x00'}, {0x7e8, 0x2, [@TCA_BPF_ACT={0x334, 0x1, [@m_vlan={0x40, 0x18, 0x0, 0x0, {{0x9, 0x1, 'vlan\x00'}, {0x14, 0x2, 0x0, 0x1, [@TCA_VLAN_PUSH_VLAN_PROTOCOL={0x6}, @TCA_VLAN_PUSH_VLAN_ID={0x6, 0x3, 0xfb5}]}, {0x4}, {0xc}, {0xc}}}, @m_sample={0x124, 0xb, 0x0, 0x0, {{0xb, 0x1, 'sample\x00'}, {0x2c, 0x2, 0x0, 0x1, [@TCA_SAMPLE_RATE={0x8, 0x3, 0x10001}, @TCA_SAMPLE_PSAMPLE_GROUP={0x8, 0x5, 0x6}, @TCA_SAMPLE_PARMS={0x18, 0x2, {0x8001, 0x699, 0x4, 0x7}}]}, {0xd0, 0x6, "fb3eb7c17f06528a58e3dd89d4cdb2dd1f1a105f199c831ac0f26af935283950a1bcc341331838cb3024386010aad75de7e8bb09d3af4a2916274e25c89c53484ccde9f211b9a5b7874a90c702273e8d331e7393f2f0336c3f8de700c6acee7c8e675f01988eb08c12a01e6b3e34906f3f749129adc62dedb8cb7bd8a820d7073483b19c3f148449f52dec3792eeeea08a2472613f6b8583f0615967ffa78942be68c918f3b9f632a68e680b14f8a9dc29f9dc7fd39d271a4ece45183c563d5f7e532a6cd6726190dbc16707"}, {0xc}, {0xc, 0x8, {0x2, 0x3}}}}, @m_xt={0xa4, 0xa, 0x0, 0x0, {{0x7, 0x1, 'xt\x00'}, {0x4c, 0x2, 0x0, 0x1, [@TCA_IPT_TARG={0x46, 0x6, {0xd4c, 'nat\x00', 0x0, 0x2, "283e19b75de973da22529c5c15ef22b1408c972cc1da15aa7e579461"}}]}, {0x32, 0x6, "6704962e344920080f5f388b3a38b8f8264951a2ed5be231bc1959f39839b27ccad98c84fc1d121ab58f676ede36"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x2}}}}, @m_ife={0x9c, 0x7, 0x0, 0x0, {{0x8, 0x1, 'ife\x00'}, {0x64, 0x2, 0x0, 0x1, [@TCA_IFE_TYPE={0x6, 0x5, 0x3}, @TCA_IFE_SMAC={0xa, 0x4, @dev={[], 0x3a}}, @TCA_IFE_METALST={0x4}, @TCA_IFE_SMAC={0xa, 0x4, @remote}, @TCA_IFE_METALST={0x34, 0x6, [@IFE_META_SKBMARK={0x4, 0x1, @void}, @IFE_META_TCINDEX={0x6, 0x5, @val=0x20}, @IFE_META_PRIO={0x4, 0x3, @void}, @IFE_META_SKBMARK={0x4, 0x1, @void}, @IFE_META_TCINDEX={0x4, 0x5, @void}, @IFE_META_TCINDEX={0x4, 0x5, @void}, @IFE_META_TCINDEX={0x6, 0x5, @val=0x401}, @IFE_META_TCINDEX={0x4, 0x5, @void}, @IFE_META_PRIO={0x8, 0x3, @val=0x9}]}, @TCA_IFE_METALST={0x8, 0x6, [@IFE_META_TCINDEX={0x4, 0x5, @void}]}]}, {0x11, 0x6, "7d8b031db69798ba927a4a7aae"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x2}}}}, @m_tunnel_key={0x8c, 0x1b, 0x0, 0x0, {{0xf, 0x1, 'tunnel_key\x00'}, {0x1c, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_NO_CSUM={0x5, 0xa, 0x1}, @TCA_TUNNEL_KEY_ENC_IPV4_SRC={0x8, 0x3, @private=0xa010101}, @TCA_TUNNEL_KEY_ENC_DST_PORT={0x6, 0x9, 0x4e21}]}, {0x42, 0x6, "48f44d75d21119f1acef1cdfa322bff6df737b60839cc86a9f16282e36ccf29627845d26435d43166bcbeed454b241c9b9546e967c67427b087112f3e5ea"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x2}}}}]}, @TCA_BPF_POLICE={0x4b0, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x38fa, 0x0, 0xffffffff, 0xf8b, 0xffffd6d3, {0x3, 0x0, 0x4, 0xfffe, 0xad6, 0x2}, {0x81, 0x0, 0x865, 0x5, 0x2}, 0xffff, 0x8, 0x1ff}}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x6, 0xee81, 0x9, 0x0, 0x8, 0x1, 0xcec, 0x5, 0x200, 0x8, 0x3, 0x40, 0x1000, 0x1ff, 0x7ff, 0x1, 0x0, 0x0, 0xffff81a1, 0x8, 0x0, 0x4e5, 0x8001, 0x3, 0x8, 0x811, 0x85d, 0x39, 0xfff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x7ff, 0x22aa, 0x6e85, 0x3, 0x3649, 0xe3, 0x7, 0xffff8001, 0x4, 0x3, 0xc000, 0x40, 0x7e5cf502, 0x800, 0xe00000, 0x7fffffff, 0xfa1f, 0x100, 0xffff, 0x4, 0xfffffe00, 0x1, 0x5, 0x4000, 0x1f9e, 0x81, 0x6, 0x6, 0x4, 0x20, 0x656e, 0x40, 0x9, 0x10000, 0x2, 0x10000, 0x200, 0x0, 0x1, 0x36, 0x7ff, 0x0, 0x3d6d, 0x0, 0x100, 0x6, 0x6, 0x1, 0xc83, 0x1f, 0x5, 0x7fff, 0x1, 0x3, 0x98, 0x6, 0x3, 0x6, 0xfffffffa, 0xfffffff9, 0x8, 0x7, 0x7ff, 0x1, 0x0, 0x3, 0x6, 0x3ff, 0x7ff, 0x7, 0x401, 0x0, 0x0, 0x4d280, 0x0, 0x0, 0xfffffff9, 0x1, 0xfffff6ad, 0x7, 0x5e, 0x7ff, 0x4, 0x8, 0x6, 0x4, 0x8001, 0x2, 0x4, 0x6, 0x0, 0x0, 0xa0e, 0x4, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb, 0x400, 0x5, 0x0, 0x60, 0x5, 0x101, 0x1, 0x100, 0x6, 0x7, 0x4d05, 0xfff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x3, 0x7, 0x200, 0x4, 0x5, 0x80, 0x0, 0x0, 0x6, 0x0, 0x7, 0x0, 0x0, 0x8, 0x5, 0x9, 0x1f, 0x80, 0xfffffff8, 0x80, 0x10000000, 0x4, 0x9, 0x69cb, 0x9, 0x10000, 0x5, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x6, 0x8, 0x5, 0xdd0c42a4, 0x80, 0xff, 0x2def, 0x8, 0x800, 0x10001, 0xfff, 0x10001, 0x3f, 0x81, 0x3f, 0x2c88, 0x9, 0x8000, 0x80, 0x0, 0x0, 0x5, 0x4, 0x367]}, @TCA_POLICE_RESULT={0x8, 0x5, 0x3}, @TCA_POLICE_PEAKRATE64={0xc}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x6, 0x7, 0x6, 0x1000, {0x4, 0x1, 0x0, 0x180, 0x8000, 0x7fffffff}, {0x6, 0x1, 0x5, 0x9, 0xc9f, 0x8}, 0x4, 0x80000001, 0xffffef8f}}, @TCA_POLICE_RESULT={0x8, 0x5, 0xff}, @TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0xe445}]}]}}, @filter_kind_options=@f_cgroup={{0xb, 0x1, 'cgroup\x00'}, {0x4}}, @TCA_RATE={0x6, 0x5, {0x8, 0x16}}, @TCA_CHAIN={0x8, 0xb, 0x1f}]}, 0x1080}, 0x1, 0x0, 0x0, 0x40}, 0x0) 08:11:46 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x0, 0x600, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) [ 1019.180132][T19731] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.5'. [ 1019.289314][T19732] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.5'. 08:11:46 executing program 1: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x11, 0x3, &(0x7f0000000000)=@framed, &(0x7f00000000c0)='GPL\x00', 0x5, 0xc5, &(0x7f0000000100)=""/197, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x0, 0x2, &(0x7f0000000300)=@raw=[@map], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r0}, 0x78) 08:11:46 executing program 4: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@fwd={0x1}]}}, &(0x7f0000000140)=""/250, 0x26, 0xfa, 0x5}, 0x20) 08:11:46 executing program 5: bpf$BPF_BTF_LOAD(0x12, &(0x7f00000183c0)={&(0x7f0000000f80)=ANY=[@ANYBLOB="9feb01001800000000000000100000001000"], &(0x7f0000000000)=""/158, 0x2a, 0x9e, 0x8}, 0x20) bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000480)={0x101}, 0x8) 08:11:46 executing program 2: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0xa, 0x5, 0x7, 0x7}, 0x40) bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x4}, 0x38) 08:11:47 executing program 3: bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x2, 0x4, 0xf69, 0x9, 0x0, 0xffffffffffffffff, 0x0, [], 0x0, 0xffffffffffffffff, 0x0, 0x2}, 0x40) [ 1019.836687][T19747] BPF:Unsupported section found 08:11:47 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x0, 0x700, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) [ 1019.877786][T19747] BPF:Unsupported section found 08:11:47 executing program 4: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0xa, 0x5, 0x7, 0x7}, 0x40) close(r0) 08:11:47 executing program 5: r0 = socket$kcm(0x29, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f00000006c0)={&(0x7f00000001c0)=@ipx={0x4, 0x0, 0x0, "19fa80a70d60"}, 0x80, &(0x7f0000000240)=[{&(0x7f0000000080)="b0bb3ad59f84064c8a99ccbdcd51cd86f4f5ba401ac42a3ad7cb254a5fb5c5bffd3cafed453aec74f616b78c6dc3534a8c81998bf7c92198a2f32b280e7aca28edf98bfda1bf6ac9f0637f22a7b01f0ad34c5d94941f71ef6b6ee2d87e8e9f86f938d33befdc9c1f000000ff8bb9c133232f27760aa2dd9d2b681e37b15a8622dbf35d54a4e8bf150595925e9d5abd1ebe6196cfe39e0ea3543fada08e53d296b2ea27fa1ccf105e35ae06bc40a945fd820ba445f64fda078b0acb61ca1369ccbbfa94e70bf20a784d", 0xfeb5}, {&(0x7f0000000180)="7d1f6daec3c112af5b7e8474", 0xc}, {&(0x7f0000000700)="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", 0x112}, {&(0x7f00000002c0)="8791c5ba1ddd4bf7f10cea7d18ae0eab517ad3b93ed74bdc9254db3b7e0f1c2a4cfeab52ba0ad4395765002808abedc8e26d0610b199b94cf17ff58d386a90b444f8b14e69b604000000000000006dea83f3c674f31289eca9049140495194e32ec09cd8bca5874b175757e8f283cd356463f391fa776b95396f66af93619badd3d016300a3073d54f3f88a86c473d7100a6737a16e0c6b0f8003cb0ed6a7a3390a200430f4666ea87958358", 0xac}, {&(0x7f0000000380)="e75a529e68cc433024a1fa2d2e033b8d9539fd21ea075b276fcce8f64ce4f4b5975097b66126585d05cf548204d87eba7d2a7ac4cd032e0ecea8a5ec7d0ad7c9bc32cd6b6312693af264035ae5b7e892d0596901d23dac40a96cc7e21bbd382cab3b2617bef2f16beed38ebcdea461ad9a", 0x71}, {&(0x7f0000000000)="d3a5c645f8fb1ca2630395e0bd61eb46dfd059abc51498416c111379cb2309f8a472095feb667029191af0d01a8be55b4d29b1b693d851f3f817f78068f492c8f765c4e7517288d5674ccde9f6c10ef2", 0x50}, {&(0x7f0000000480)="a9680db293b12e2d9d9616ab3e5f14dcac9c2a58bfe4da989b86266978f9cd63ac794ced8d293b79d1dd5c4e9df8a4a1a2e218be1756610cd90f364a8b477330a8dbcaf37bf89952e353650a69fa86aa1fe3534f1de8c6b8254665a4559495d182d5cf3fbec410b13becf894cea969db7a625a4769a7ef614fced80c40e18bf628acaec80e99256e04318d6b1fc918ef52aa985fea0de85b5c7e8167e8d8447d957b5cc8fcb04ae6019fe688db89f99563669dbb9c78c25d17784d35046d682b7e2d5af045d82fa502bea4e60b156c50a0440db432453ff1e1dd8382c7d930107bc8e026956dde520f2119bfd5238b6af83b3ae4ff3883", 0xf7}, {&(0x7f0000000580)="28363d19bcf0beac91355f1bfe5cedfe5b4a5625e8ac5ea983a881fa37e6d558b803451c1422eec07bbc000e27251d307be0a70f3b47d886adbbf3596beba06b0e5423f10d5da8f857bfb98c2933257fbc66344e1840686615f069202310e1830dc654f403df9cd56e84994eeaf14671f056413796fd835c92b99eb79a316c3b2c4a6508fe8d9f93fa6533af2ec8b581f6020957b71ba454272f070606693ee993249d0ced55539919ff638a28269f1b44763997df5bd97f162d738027809d46ae998b3678b1e8c3cf5ab0f810ff9af95aafc5ad602803ee5c172d43290d09940070b090f04da18162", 0xe9}], 0x8, &(0x7f0000000840)=ANY=[@ANYBLOB="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"], 0x230}, 0x24004000) 08:11:47 executing program 2: bpf$BPF_BTF_LOAD(0x12, &(0x7f00000183c0)={&(0x7f00000182c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@array={0x0, 0x0, 0x0, 0x2}]}}, &(0x7f0000018300)=""/143, 0x32, 0x8f, 0x8}, 0x20) 08:11:47 executing program 1: bpf$BPF_BTF_LOAD(0x12, &(0x7f00000183c0)={&(0x7f00000182c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x10, 0x10, 0x2, [@int={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5}]}}, &(0x7f0000000000)=""/158, 0x2a, 0x9e, 0x8}, 0x20) 08:11:47 executing program 3: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x10, 0x10, 0x3, [@var={0x1, 0x0, 0x0, 0xe, 0x2}]}, {0x0, [0x2e]}}, &(0x7f0000000380)=""/250, 0x2b, 0xfa, 0x1}, 0x20) 08:11:47 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x0, 0x900, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:47 executing program 4: socketpair(0x26, 0x5, 0x0, &(0x7f0000000240)) [ 1020.532320][T19761] BPF:[2] Invalid kind:0 [ 1020.577516][T19761] BPF:[2] Invalid kind:0 [ 1020.591171][T19762] BPF:[1] INT (anon) [ 1020.595349][T19762] BPF:size=0 bits_offset=0 nr_bits=0 encoding=UNKN [ 1020.603688][T19762] BPF: [ 1020.606533][T19762] BPF:Unsupported encoding [ 1020.611482][T19762] BPF: [ 1020.611482][T19762] 08:11:48 executing program 5: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@array={0x0, 0x0, 0x0, 0x3, 0x0, {0x5, 0x1}}]}}, &(0x7f0000000140)=""/234, 0x32, 0xea, 0x2}, 0x20) [ 1020.682538][T19762] BPF:[1] INT (anon) [ 1020.686720][T19762] BPF:size=0 bits_offset=0 nr_bits=0 encoding=UNKN [ 1020.693875][T19762] BPF: [ 1020.696737][T19762] BPF:Unsupported encoding [ 1020.702811][T19762] BPF: [ 1020.702811][T19762] 08:11:48 executing program 2: bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000380)=ANY=[@ANYBLOB="b702000000000400bfa30000000000000703000000feffff7a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001000000b7050000000000006a0a00fe0d0000008500000012000000b70000000000000095000000000000004e6206cdbc8db4c7b4dc1a7d3f7912d65d7d790c0ee500ac0c18cc51be3ad073c4e9dae5610d98bb13c860621e34217879efa921c59c7cc25e4a0da652625d9e58490d3fc684748b423e2a290490d9539b5c38ecd90567f875ceb68e2fbed5cdb3567c6386d5bd795cf9808186640af54759efb604d2c03f9378e47cff43094b2adbbd5f962ec90ea36db403006c5b5dc55358fa06c99efad4c5f6e094c2de1751c3ed760e6e17302cf9cb8e489fa1d6a4ca0b5e6447b09920eea91ed083d4296ae7c8aa81e50000"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) bpf$MAP_CREATE(0x0, &(0x7f0000000500)={0x7}, 0x2c) bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000040), 0xc) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r0, 0x0, 0x714, 0x9d4, &(0x7f0000000080)="52d3814e7fffff3bad6c48eff04c", 0x0, 0x8dc}, 0x28) 08:11:48 executing program 3: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x203, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffcca}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r0, 0x18000000000002e0, 0xe, 0x0, &(0x7f0000000040)="b95b03b708030000009e40f005dd", 0x0, 0x92, 0x6000000000000000, 0x0, 0x0, 0x0, 0x0}, 0x48) 08:11:48 executing program 1: bpf$MAP_CREATE(0x0, &(0x7f00000006c0)={0xb, 0x0, 0x0, 0xfffff000}, 0x40) 08:11:48 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000018ac0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg(r0, &(0x7f000000c5c0)={0x0, 0x0, 0x0, 0x0, &(0x7f000000c500)=[{0x18, 0x1, 0x1, "94"}], 0x18}, 0x0) 08:11:48 executing program 0: unshare(0x20020400) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x0, 0x0, 0xa00, 0x0, "468a5b3cf849504067aa6e252da3c9a35911d9478014e50c4818b343c6af96ca79038753a9be4707e296408b1754ab36be85837e8fd02c91780f1260eb41e75d", "2c943b9382ceba2a2e5a907d113635e90367d708256fcb3a533e607b3f453d6f"}) 08:11:48 executing program 5: perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) [ 1021.291786][T19778] ===================================================== [ 1021.298845][T19778] BUG: KMSAN: uninit-value in br_dev_xmit+0x71b/0x1aa0 [ 1021.305687][T19778] CPU: 1 PID: 19778 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 1021.314430][T19778] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1021.324475][T19778] Call Trace: [ 1021.327762][T19778] dump_stack+0x21c/0x280 [ 1021.332088][T19778] kmsan_report+0xfb/0x1e0 [ 1021.336516][T19778] __msan_warning+0x5f/0xa0 [ 1021.341528][T19778] br_dev_xmit+0x71b/0x1aa0 [ 1021.346028][T19778] ? br_net_exit+0x250/0x250 [ 1021.350659][T19778] xmit_one+0x2b6/0x760 [ 1021.354814][T19778] __dev_queue_xmit+0x3426/0x4590 [ 1021.359829][T19778] ? skb_release_data+0x6df/0xdb0 [ 1021.364869][T19778] dev_queue_xmit+0x4b/0x60 [ 1021.369392][T19778] __bpf_redirect+0x148d/0x1700 [ 1021.374241][T19778] bpf_clone_redirect+0x4a1/0x660 [ 1021.379259][T19778] ? build_skb+0x8a/0x7d0 [ 1021.383622][T19778] ___bpf_prog_run+0x4279/0x93e0 [ 1021.388548][T19778] ? bpf_csum_level+0x760/0x760 [ 1021.393411][T19778] __bpf_prog_run512+0x12e/0x190 [ 1021.398335][T19778] ? build_skb+0x8a/0x7d0 [ 1021.402665][T19778] ? __se_sys_bpf+0x8e/0xa0 [ 1021.407158][T19778] ? __ia32_sys_bpf+0x4a/0x70 [ 1021.411827][T19778] ? do_fast_syscall_32+0x6a/0xc0 [ 1021.416851][T19778] ? pirq_vlsi_set+0x170/0x310 [ 1021.421604][T19778] ? entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1021.428100][T19778] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1021.434192][T19778] ? __perf_event_task_sched_in+0xf62/0xfd0 [ 1021.440072][T19778] ? kmsan_get_metadata+0x116/0x180 [ 1021.445258][T19778] ? kmsan_get_metadata+0x116/0x180 [ 1021.450533][T19778] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1021.456325][T19778] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 1021.462380][T19778] ? should_fail+0x72/0x9e0 [ 1021.466966][T19778] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1021.472763][T19778] ? kmsan_get_metadata+0x116/0x180 [ 1021.477950][T19778] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1021.483739][T19778] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1021.489822][T19778] ? ktime_get+0x390/0x470 [ 1021.494226][T19778] ? kmsan_get_metadata+0x4f/0x180 [ 1021.499327][T19778] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1021.505155][T19778] ? __bpf_prog_run480+0x190/0x190 [ 1021.510305][T19778] bpf_test_run+0x54c/0xe40 [ 1021.514817][T19778] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1021.520700][T19778] bpf_prog_test_run_skb+0x1906/0x34f0 [ 1021.526155][T19778] ? __bpf_prog_test_run_raw_tp+0x410/0x410 [ 1021.532041][T19778] __do_sys_bpf+0xbfd9/0x1aee0 [ 1021.536795][T19778] ? kmsan_internal_set_origin+0x85/0xc0 [ 1021.542414][T19778] ? kmsan_get_metadata+0x116/0x180 [ 1021.547596][T19778] ? kmsan_get_metadata+0x116/0x180 [ 1021.552778][T19778] ? kmsan_get_metadata+0x116/0x180 [ 1021.558064][T19778] ? kmsan_internal_check_memory+0xb1/0x520 [ 1021.563957][T19778] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 1021.570017][T19778] ? should_fail+0x72/0x9e0 [ 1021.574522][T19778] ? kmsan_get_metadata+0x116/0x180 [ 1021.579708][T19778] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1021.585514][T19778] ? kmsan_get_metadata+0x116/0x180 [ 1021.590718][T19778] ? kmsan_get_metadata+0x116/0x180 [ 1021.595919][T19778] __se_sys_bpf+0x8e/0xa0 [ 1021.600256][T19778] __ia32_sys_bpf+0x4a/0x70 [ 1021.604756][T19778] __do_fast_syscall_32+0x102/0x160 [ 1021.609953][T19778] do_fast_syscall_32+0x6a/0xc0 [ 1021.614888][T19778] do_SYSENTER_32+0x73/0x90 [ 1021.619384][T19778] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1021.625696][T19778] RIP: 0023:0xf7f55549 [ 1021.629758][T19778] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1021.649376][T19778] RSP: 002b:00000000f554f0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000165 [ 1021.657777][T19778] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00000000200000c0 [ 1021.665735][T19778] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000 [ 1021.673694][T19778] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1021.681652][T19778] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1021.689631][T19778] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1021.697591][T19778] [ 1021.699902][T19778] Uninit was created at: [ 1021.704142][T19778] kmsan_internal_poison_shadow+0x5c/0xf0 [ 1021.709939][T19778] kmsan_slab_alloc+0x8d/0xe0 [ 1021.714611][T19778] __kmalloc_node_track_caller+0xa48/0x1610 [ 1021.720495][T19778] pskb_expand_head+0x25e/0x1e20 [ 1021.725442][T19778] skb_ensure_writable+0x4cf/0x590 [ 1021.730547][T19778] bpf_clone_redirect+0x25d/0x660 [ 1021.735561][T19778] ___bpf_prog_run+0x4279/0x93e0 [ 1021.740503][T19778] __bpf_prog_run512+0x12e/0x190 [ 1021.745431][T19778] bpf_test_run+0x54c/0xe40 [ 1021.749926][T19778] bpf_prog_test_run_skb+0x1906/0x34f0 [ 1021.755376][T19778] __do_sys_bpf+0xbfd9/0x1aee0 [ 1021.760130][T19778] __se_sys_bpf+0x8e/0xa0 [ 1021.764453][T19778] __ia32_sys_bpf+0x4a/0x70 [ 1021.768952][T19778] __do_fast_syscall_32+0x102/0x160 [ 1021.774145][T19778] do_fast_syscall_32+0x6a/0xc0 [ 1021.778996][T19778] do_SYSENTER_32+0x73/0x90 [ 1021.783491][T19778] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1021.789811][T19778] ===================================================== [ 1021.796725][T19778] Disabling lock debugging due to kernel taint [ 1021.802862][T19778] Kernel panic - not syncing: panic_on_warn set ... [ 1021.809447][T19778] CPU: 1 PID: 19778 Comm: syz-executor.3 Tainted: G B 5.10.0-rc4-syzkaller #0 [ 1021.819577][T19778] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1021.829619][T19778] Call Trace: [ 1021.832905][T19778] dump_stack+0x21c/0x280 [ 1021.837281][T19778] panic+0x4c6/0xea7 [ 1021.841172][T19778] ? add_taint+0x17c/0x210 [ 1021.845591][T19778] kmsan_report+0x1de/0x1e0 [ 1021.850081][T19778] __msan_warning+0x5f/0xa0 [ 1021.854578][T19778] br_dev_xmit+0x71b/0x1aa0 [ 1021.859090][T19778] ? br_net_exit+0x250/0x250 [ 1021.863673][T19778] xmit_one+0x2b6/0x760 [ 1021.867826][T19778] __dev_queue_xmit+0x3426/0x4590 [ 1021.872840][T19778] ? skb_release_data+0x6df/0xdb0 [ 1021.877869][T19778] dev_queue_xmit+0x4b/0x60 [ 1021.882377][T19778] __bpf_redirect+0x148d/0x1700 [ 1021.887225][T19778] bpf_clone_redirect+0x4a1/0x660 [ 1021.892249][T19778] ? build_skb+0x8a/0x7d0 [ 1021.896588][T19778] ___bpf_prog_run+0x4279/0x93e0 [ 1021.901611][T19778] ? bpf_csum_level+0x760/0x760 [ 1021.906468][T19778] __bpf_prog_run512+0x12e/0x190 [ 1021.911397][T19778] ? build_skb+0x8a/0x7d0 [ 1021.915717][T19778] ? __se_sys_bpf+0x8e/0xa0 [ 1021.920212][T19778] ? __ia32_sys_bpf+0x4a/0x70 [ 1021.924884][T19778] ? do_fast_syscall_32+0x6a/0xc0 [ 1021.929899][T19778] ? pirq_vlsi_set+0x170/0x310 [ 1021.934656][T19778] ? entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1021.941152][T19778] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1021.947211][T19778] ? __perf_event_task_sched_in+0xf62/0xfd0 [ 1021.953111][T19778] ? kmsan_get_metadata+0x116/0x180 [ 1021.958308][T19778] ? kmsan_get_metadata+0x116/0x180 [ 1021.963512][T19778] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1021.969311][T19778] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 1021.975463][T19778] ? should_fail+0x72/0x9e0 [ 1021.979960][T19778] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1021.985762][T19778] ? kmsan_get_metadata+0x116/0x180 [ 1021.990951][T19778] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1021.996749][T19778] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1022.002806][T19778] ? ktime_get+0x390/0x470 [ 1022.007218][T19778] ? kmsan_get_metadata+0x4f/0x180 [ 1022.012323][T19778] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1022.018120][T19778] ? __bpf_prog_run480+0x190/0x190 [ 1022.023235][T19778] bpf_test_run+0x54c/0xe40 [ 1022.027738][T19778] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1022.033671][T19778] bpf_prog_test_run_skb+0x1906/0x34f0 [ 1022.039128][T19778] ? __bpf_prog_test_run_raw_tp+0x410/0x410 [ 1022.045009][T19778] __do_sys_bpf+0xbfd9/0x1aee0 [ 1022.049777][T19778] ? kmsan_internal_set_origin+0x85/0xc0 [ 1022.055404][T19778] ? kmsan_get_metadata+0x116/0x180 [ 1022.060590][T19778] ? kmsan_get_metadata+0x116/0x180 [ 1022.065775][T19778] ? kmsan_get_metadata+0x116/0x180 [ 1022.070965][T19778] ? kmsan_internal_check_memory+0xb1/0x520 [ 1022.076848][T19778] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 1022.082923][T19778] ? should_fail+0x72/0x9e0 [ 1022.087420][T19778] ? kmsan_get_metadata+0x116/0x180 [ 1022.092608][T19778] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1022.098403][T19778] ? kmsan_get_metadata+0x116/0x180 [ 1022.103590][T19778] ? kmsan_get_metadata+0x116/0x180 [ 1022.108778][T19778] __se_sys_bpf+0x8e/0xa0 [ 1022.113099][T19778] __ia32_sys_bpf+0x4a/0x70 [ 1022.117596][T19778] __do_fast_syscall_32+0x102/0x160 [ 1022.122784][T19778] do_fast_syscall_32+0x6a/0xc0 [ 1022.127626][T19778] do_SYSENTER_32+0x73/0x90 [ 1022.132123][T19778] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1022.138433][T19778] RIP: 0023:0xf7f55549 [ 1022.142528][T19778] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1022.162119][T19778] RSP: 002b:00000000f554f0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000165 [ 1022.170521][T19778] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00000000200000c0 [ 1022.178484][T19778] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000 [ 1022.186526][T19778] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1022.194489][T19778] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1022.202469][T19778] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1022.211365][T19778] Kernel Offset: disabled [ 1022.221924][T19778] Rebooting in 86400 seconds..